|
1 /* v3_skey.c */ |
|
2 /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL |
|
3 * project 1999. |
|
4 */ |
|
5 /* ==================================================================== |
|
6 * Copyright (c) 1999 The OpenSSL Project. All rights reserved. |
|
7 * |
|
8 * Redistribution and use in source and binary forms, with or without |
|
9 * modification, are permitted provided that the following conditions |
|
10 * are met: |
|
11 * |
|
12 * 1. Redistributions of source code must retain the above copyright |
|
13 * notice, this list of conditions and the following disclaimer. |
|
14 * |
|
15 * 2. Redistributions in binary form must reproduce the above copyright |
|
16 * notice, this list of conditions and the following disclaimer in |
|
17 * the documentation and/or other materials provided with the |
|
18 * distribution. |
|
19 * |
|
20 * 3. All advertising materials mentioning features or use of this |
|
21 * software must display the following acknowledgment: |
|
22 * "This product includes software developed by the OpenSSL Project |
|
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" |
|
24 * |
|
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to |
|
26 * endorse or promote products derived from this software without |
|
27 * prior written permission. For written permission, please contact |
|
28 * licensing@OpenSSL.org. |
|
29 * |
|
30 * 5. Products derived from this software may not be called "OpenSSL" |
|
31 * nor may "OpenSSL" appear in their names without prior written |
|
32 * permission of the OpenSSL Project. |
|
33 * |
|
34 * 6. Redistributions of any form whatsoever must retain the following |
|
35 * acknowledgment: |
|
36 * "This product includes software developed by the OpenSSL Project |
|
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" |
|
38 * |
|
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY |
|
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
|
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR |
|
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR |
|
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
|
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
|
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; |
|
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
|
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, |
|
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
|
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
|
50 * OF THE POSSIBILITY OF SUCH DAMAGE. |
|
51 * ==================================================================== |
|
52 * |
|
53 * This product includes cryptographic software written by Eric Young |
|
54 * (eay@cryptsoft.com). This product includes software written by Tim |
|
55 * Hudson (tjh@cryptsoft.com). |
|
56 * |
|
57 */ |
|
58 /* |
|
59 © Portions copyright (c) 2006 Nokia Corporation. All rights reserved. |
|
60 */ |
|
61 |
|
62 |
|
63 #include <stdio.h> |
|
64 #include "cryptlib.h" |
|
65 #include <openssl/x509v3.h> |
|
66 #if (defined(SYMBIAN) && (defined(__WINSCW__) || defined(__WINS__))) |
|
67 #include "libcrypto_wsd_macros.h" |
|
68 #include "libcrypto_wsd.h" |
|
69 #endif |
|
70 |
|
71 |
|
72 static ASN1_OCTET_STRING *s2i_skey_id(X509V3_EXT_METHOD *method, X509V3_CTX *ctx, char *str); |
|
73 #ifndef EMULATOR |
|
74 X509V3_EXT_METHOD v3_skey_id = { |
|
75 NID_subject_key_identifier, 0, ASN1_ITEM_ref(ASN1_OCTET_STRING), |
|
76 0,0,0,0, |
|
77 (X509V3_EXT_I2S)i2s_ASN1_OCTET_STRING, |
|
78 (X509V3_EXT_S2I)s2i_skey_id, |
|
79 0,0,0,0, |
|
80 NULL}; |
|
81 #else |
|
82 const X509V3_EXT_METHOD v3_skey_id = { |
|
83 NID_subject_key_identifier, 0, ASN1_ITEM_ref(ASN1_OCTET_STRING), |
|
84 0,0,0,0, |
|
85 (X509V3_EXT_I2S)i2s_ASN1_OCTET_STRING, |
|
86 (X509V3_EXT_S2I)s2i_skey_id, |
|
87 0,0,0,0, |
|
88 NULL}; |
|
89 |
|
90 #endif |
|
91 EXPORT_C char *i2s_ASN1_OCTET_STRING(X509V3_EXT_METHOD *method, |
|
92 ASN1_OCTET_STRING *oct) |
|
93 { |
|
94 return hex_to_string(oct->data, oct->length); |
|
95 } |
|
96 |
|
97 EXPORT_C ASN1_OCTET_STRING *s2i_ASN1_OCTET_STRING(X509V3_EXT_METHOD *method, |
|
98 X509V3_CTX *ctx, char *str) |
|
99 { |
|
100 ASN1_OCTET_STRING *oct; |
|
101 long length; |
|
102 |
|
103 if(!(oct = M_ASN1_OCTET_STRING_new())) { |
|
104 X509V3err(X509V3_F_S2I_ASN1_OCTET_STRING,ERR_R_MALLOC_FAILURE); |
|
105 return NULL; |
|
106 } |
|
107 |
|
108 if(!(oct->data = string_to_hex(str, &length))) { |
|
109 M_ASN1_OCTET_STRING_free(oct); |
|
110 return NULL; |
|
111 } |
|
112 |
|
113 oct->length = length; |
|
114 |
|
115 return oct; |
|
116 |
|
117 } |
|
118 |
|
119 static ASN1_OCTET_STRING *s2i_skey_id(X509V3_EXT_METHOD *method, |
|
120 X509V3_CTX *ctx, char *str) |
|
121 { |
|
122 ASN1_OCTET_STRING *oct; |
|
123 ASN1_BIT_STRING *pk; |
|
124 unsigned char pkey_dig[EVP_MAX_MD_SIZE]; |
|
125 unsigned int diglen; |
|
126 |
|
127 if(strcmp(str, "hash")) return s2i_ASN1_OCTET_STRING(method, ctx, str); |
|
128 |
|
129 if(!(oct = M_ASN1_OCTET_STRING_new())) { |
|
130 X509V3err(X509V3_F_S2I_SKEY_ID,ERR_R_MALLOC_FAILURE); |
|
131 return NULL; |
|
132 } |
|
133 |
|
134 if(ctx && (ctx->flags == CTX_TEST)) return oct; |
|
135 |
|
136 if(!ctx || (!ctx->subject_req && !ctx->subject_cert)) { |
|
137 X509V3err(X509V3_F_S2I_SKEY_ID,X509V3_R_NO_PUBLIC_KEY); |
|
138 goto err; |
|
139 } |
|
140 |
|
141 if(ctx->subject_req) |
|
142 pk = ctx->subject_req->req_info->pubkey->public_key; |
|
143 else pk = ctx->subject_cert->cert_info->key->public_key; |
|
144 |
|
145 if(!pk) { |
|
146 X509V3err(X509V3_F_S2I_SKEY_ID,X509V3_R_NO_PUBLIC_KEY); |
|
147 goto err; |
|
148 } |
|
149 |
|
150 EVP_Digest(pk->data, pk->length, pkey_dig, &diglen, EVP_sha1(), NULL); |
|
151 |
|
152 if(!M_ASN1_OCTET_STRING_set(oct, pkey_dig, diglen)) { |
|
153 X509V3err(X509V3_F_S2I_SKEY_ID,ERR_R_MALLOC_FAILURE); |
|
154 goto err; |
|
155 } |
|
156 |
|
157 return oct; |
|
158 |
|
159 err: |
|
160 M_ASN1_OCTET_STRING_free(oct); |
|
161 return NULL; |
|
162 } |