1 /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
2  * project 1999. */
3 /* ====================================================================
4  * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
5  *
6  * Redistribution and use in source and binary forms, with or without
7  * modification, are permitted provided that the following conditions
8  * are met:
9  *
10  * 1. Redistributions of source code must retain the above copyright
11  *    notice, this list of conditions and the following disclaimer.
12  *
13  * 2. Redistributions in binary form must reproduce the above copyright
14  *    notice, this list of conditions and the following disclaimer in
15  *    the documentation and/or other materials provided with the
16  *    distribution.
17  *
18  * 3. All advertising materials mentioning features or use of this
19  *    software must display the following acknowledgment:
20  *    "This product includes software developed by the OpenSSL Project
21  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
22  *
23  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
24  *    endorse or promote products derived from this software without
25  *    prior written permission. For written permission, please contact
26  *    licensing@OpenSSL.org.
27  *
28  * 5. Products derived from this software may not be called "OpenSSL"
29  *    nor may "OpenSSL" appear in their names without prior written
30  *    permission of the OpenSSL Project.
31  *
32  * 6. Redistributions of any form whatsoever must retain the following
33  *    acknowledgment:
34  *    "This product includes software developed by the OpenSSL Project
35  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
36  *
37  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
38  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
39  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
40  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
41  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
42  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
43  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
44  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
45  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
46  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
47  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
48  * OF THE POSSIBILITY OF SUCH DAMAGE.
49  * ====================================================================
50  *
51  * This product includes cryptographic software written by Eric Young
52  * (eay@cryptsoft.com).  This product includes software written by Tim
53  * Hudson (tjh@cryptsoft.com). */
54 
55 #include <string.h>
56 
57 #include <openssl/base64.h>
58 #include <openssl/err.h>
59 #include <openssl/mem.h>
60 #include <openssl/x509.h>
61 
62 
NETSCAPE_SPKI_set_pubkey(NETSCAPE_SPKI * x,EVP_PKEY * pkey)63 int NETSCAPE_SPKI_set_pubkey(NETSCAPE_SPKI *x, EVP_PKEY *pkey)
64 {
65 	if ((x == NULL) || (x->spkac == NULL)) return(0);
66 	return(X509_PUBKEY_set(&(x->spkac->pubkey),pkey));
67 }
68 
NETSCAPE_SPKI_get_pubkey(NETSCAPE_SPKI * x)69 EVP_PKEY *NETSCAPE_SPKI_get_pubkey(NETSCAPE_SPKI *x)
70 {
71 	if ((x == NULL) || (x->spkac == NULL))
72 		return(NULL);
73 	return(X509_PUBKEY_get(x->spkac->pubkey));
74 }
75 
76 /* Load a Netscape SPKI from a base64 encoded string */
77 
NETSCAPE_SPKI_b64_decode(const char * str,int len)78 NETSCAPE_SPKI * NETSCAPE_SPKI_b64_decode(const char *str, int len)
79 {
80 	unsigned char *spki_der;
81 	const unsigned char *p;
82 	size_t spki_len;
83 	NETSCAPE_SPKI *spki;
84 	if (len <= 0)
85 		len = strlen(str);
86 	if (!EVP_DecodedLength(&spki_len, len)) {
87 		OPENSSL_PUT_ERROR(X509, X509_R_BASE64_DECODE_ERROR);
88 		return NULL;
89 	}
90 	if (!(spki_der = OPENSSL_malloc(spki_len))) {
91 		OPENSSL_PUT_ERROR(X509, ERR_R_MALLOC_FAILURE);
92 		return NULL;
93 	}
94 	if (!EVP_DecodeBase64(spki_der, &spki_len, spki_len, (const uint8_t *)str, len)) {
95 		OPENSSL_PUT_ERROR(X509, X509_R_BASE64_DECODE_ERROR);
96 		OPENSSL_free(spki_der);
97 		return NULL;
98 	}
99 	p = spki_der;
100 	spki = d2i_NETSCAPE_SPKI(NULL, &p, spki_len);
101 	OPENSSL_free(spki_der);
102 	return spki;
103 }
104 
105 /* Generate a base64 encoded string from an SPKI */
106 
NETSCAPE_SPKI_b64_encode(NETSCAPE_SPKI * spki)107 char * NETSCAPE_SPKI_b64_encode(NETSCAPE_SPKI *spki)
108 {
109 	unsigned char *der_spki, *p;
110 	char *b64_str;
111 	size_t b64_len;
112 	int der_len;
113 	der_len = i2d_NETSCAPE_SPKI(spki, NULL);
114 	if (!EVP_EncodedLength(&b64_len, der_len))
115 		{
116 		OPENSSL_PUT_ERROR(X509, ERR_R_OVERFLOW);
117 		return NULL;
118 		}
119 	der_spki = OPENSSL_malloc(der_len);
120 	if (der_spki == NULL) {
121 		OPENSSL_PUT_ERROR(X509, ERR_R_MALLOC_FAILURE);
122 		return NULL;
123 	}
124 	b64_str = OPENSSL_malloc(b64_len);
125 	if (b64_str == NULL) {
126 		OPENSSL_free(der_spki);
127 		OPENSSL_PUT_ERROR(X509, ERR_R_MALLOC_FAILURE);
128 		return NULL;
129 	}
130 	p = der_spki;
131 	i2d_NETSCAPE_SPKI(spki, &p);
132 	EVP_EncodeBlock((unsigned char *)b64_str, der_spki, der_len);
133 	OPENSSL_free(der_spki);
134 	return b64_str;
135 }
136