|
1 /* v3_bitst.c */ |
|
2 /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL |
|
3 * project 1999. |
|
4 */ |
|
5 /* ==================================================================== |
|
6 * Copyright (c) 1999 The OpenSSL Project. All rights reserved. |
|
7 * |
|
8 * Redistribution and use in source and binary forms, with or without |
|
9 * modification, are permitted provided that the following conditions |
|
10 * are met: |
|
11 * |
|
12 * 1. Redistributions of source code must retain the above copyright |
|
13 * notice, this list of conditions and the following disclaimer. |
|
14 * |
|
15 * 2. Redistributions in binary form must reproduce the above copyright |
|
16 * notice, this list of conditions and the following disclaimer in |
|
17 * the documentation and/or other materials provided with the |
|
18 * distribution. |
|
19 * |
|
20 * 3. All advertising materials mentioning features or use of this |
|
21 * software must display the following acknowledgment: |
|
22 * "This product includes software developed by the OpenSSL Project |
|
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" |
|
24 * |
|
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to |
|
26 * endorse or promote products derived from this software without |
|
27 * prior written permission. For written permission, please contact |
|
28 * licensing@OpenSSL.org. |
|
29 * |
|
30 * 5. Products derived from this software may not be called "OpenSSL" |
|
31 * nor may "OpenSSL" appear in their names without prior written |
|
32 * permission of the OpenSSL Project. |
|
33 * |
|
34 * 6. Redistributions of any form whatsoever must retain the following |
|
35 * acknowledgment: |
|
36 * "This product includes software developed by the OpenSSL Project |
|
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" |
|
38 * |
|
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY |
|
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
|
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR |
|
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR |
|
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
|
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
|
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; |
|
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
|
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, |
|
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
|
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
|
50 * OF THE POSSIBILITY OF SUCH DAMAGE. |
|
51 * ==================================================================== |
|
52 * |
|
53 * This product includes cryptographic software written by Eric Young |
|
54 * (eay@cryptsoft.com). This product includes software written by Tim |
|
55 * Hudson (tjh@cryptsoft.com). |
|
56 * |
|
57 */ |
|
58 /* |
|
59 © Portions copyright (c) 2006 Nokia Corporation. All rights reserved. |
|
60 */ |
|
61 |
|
62 |
|
63 #include <stdio.h> |
|
64 #include "cryptlib.h" |
|
65 #include <openssl/conf.h> |
|
66 #include <openssl/x509v3.h> |
|
67 #if (defined(SYMBIAN) && (defined(__WINSCW__) || defined(__WINS__))) |
|
68 #include "libcrypto_wsd_macros.h" |
|
69 #include "libcrypto_wsd.h" |
|
70 #endif |
|
71 |
|
72 #ifndef EMULATOR |
|
73 static BIT_STRING_BITNAME ns_cert_type_table[] = { |
|
74 {0, "SSL Client", "client"}, |
|
75 {1, "SSL Server", "server"}, |
|
76 {2, "S/MIME", "email"}, |
|
77 {3, "Object Signing", "objsign"}, |
|
78 {4, "Unused", "reserved"}, |
|
79 {5, "SSL CA", "sslCA"}, |
|
80 {6, "S/MIME CA", "emailCA"}, |
|
81 {7, "Object Signing CA", "objCA"}, |
|
82 {-1, NULL, NULL} |
|
83 }; |
|
84 |
|
85 static BIT_STRING_BITNAME key_usage_type_table[] = { |
|
86 {0, "Digital Signature", "digitalSignature"}, |
|
87 {1, "Non Repudiation", "nonRepudiation"}, |
|
88 {2, "Key Encipherment", "keyEncipherment"}, |
|
89 {3, "Data Encipherment", "dataEncipherment"}, |
|
90 {4, "Key Agreement", "keyAgreement"}, |
|
91 {5, "Certificate Sign", "keyCertSign"}, |
|
92 {6, "CRL Sign", "cRLSign"}, |
|
93 {7, "Encipher Only", "encipherOnly"}, |
|
94 {8, "Decipher Only", "decipherOnly"}, |
|
95 {-1, NULL, NULL} |
|
96 }; |
|
97 #else |
|
98 static const BIT_STRING_BITNAME ns_cert_type_table[] = { |
|
99 {0, "SSL Client", "client"}, |
|
100 {1, "SSL Server", "server"}, |
|
101 {2, "S/MIME", "email"}, |
|
102 {3, "Object Signing", "objsign"}, |
|
103 {4, "Unused", "reserved"}, |
|
104 {5, "SSL CA", "sslCA"}, |
|
105 {6, "S/MIME CA", "emailCA"}, |
|
106 {7, "Object Signing CA", "objCA"}, |
|
107 {-1, NULL, NULL} |
|
108 }; |
|
109 |
|
110 static const BIT_STRING_BITNAME key_usage_type_table[] = { |
|
111 {0, "Digital Signature", "digitalSignature"}, |
|
112 {1, "Non Repudiation", "nonRepudiation"}, |
|
113 {2, "Key Encipherment", "keyEncipherment"}, |
|
114 {3, "Data Encipherment", "dataEncipherment"}, |
|
115 {4, "Key Agreement", "keyAgreement"}, |
|
116 {5, "Certificate Sign", "keyCertSign"}, |
|
117 {6, "CRL Sign", "cRLSign"}, |
|
118 {7, "Encipher Only", "encipherOnly"}, |
|
119 {8, "Decipher Only", "decipherOnly"}, |
|
120 {-1, NULL, NULL} |
|
121 }; |
|
122 #endif |
|
123 |
|
124 #ifndef EMULATOR |
|
125 X509V3_EXT_METHOD v3_nscert = EXT_BITSTRING(NID_netscape_cert_type,(BIT_STRING_BITNAME*) ns_cert_type_table); |
|
126 X509V3_EXT_METHOD v3_key_usage = EXT_BITSTRING(NID_key_usage, (BIT_STRING_BITNAME*)key_usage_type_table); |
|
127 #else |
|
128 const X509V3_EXT_METHOD v3_nscert = EXT_BITSTRING(NID_netscape_cert_type,(BIT_STRING_BITNAME*) ns_cert_type_table); |
|
129 const X509V3_EXT_METHOD v3_key_usage = EXT_BITSTRING(NID_key_usage, (BIT_STRING_BITNAME*)key_usage_type_table); |
|
130 #endif |
|
131 EXPORT_C STACK_OF(CONF_VALUE) *i2v_ASN1_BIT_STRING(X509V3_EXT_METHOD *method, |
|
132 ASN1_BIT_STRING *bits, STACK_OF(CONF_VALUE) *ret) |
|
133 { |
|
134 BIT_STRING_BITNAME *bnam; |
|
135 for(bnam =method->usr_data; bnam->lname; bnam++) { |
|
136 if(ASN1_BIT_STRING_get_bit(bits, bnam->bitnum)) |
|
137 X509V3_add_value(bnam->lname, NULL, &ret); |
|
138 } |
|
139 return ret; |
|
140 } |
|
141 |
|
142 EXPORT_C ASN1_BIT_STRING *v2i_ASN1_BIT_STRING(X509V3_EXT_METHOD *method, |
|
143 X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval) |
|
144 { |
|
145 CONF_VALUE *val; |
|
146 ASN1_BIT_STRING *bs; |
|
147 int i; |
|
148 BIT_STRING_BITNAME *bnam; |
|
149 if(!(bs = M_ASN1_BIT_STRING_new())) { |
|
150 X509V3err(X509V3_F_V2I_ASN1_BIT_STRING,ERR_R_MALLOC_FAILURE); |
|
151 return NULL; |
|
152 } |
|
153 for(i = 0; i < sk_CONF_VALUE_num(nval); i++) { |
|
154 val = sk_CONF_VALUE_value(nval, i); |
|
155 for(bnam = method->usr_data; bnam->lname; bnam++) { |
|
156 if(!strcmp(bnam->sname, val->name) || |
|
157 !strcmp(bnam->lname, val->name) ) { |
|
158 if(!ASN1_BIT_STRING_set_bit(bs, bnam->bitnum, 1)) { |
|
159 X509V3err(X509V3_F_V2I_ASN1_BIT_STRING, |
|
160 ERR_R_MALLOC_FAILURE); |
|
161 M_ASN1_BIT_STRING_free(bs); |
|
162 return NULL; |
|
163 } |
|
164 break; |
|
165 } |
|
166 } |
|
167 if(!bnam->lname) { |
|
168 X509V3err(X509V3_F_V2I_ASN1_BIT_STRING, |
|
169 X509V3_R_UNKNOWN_BIT_STRING_ARGUMENT); |
|
170 X509V3_conf_err(val); |
|
171 M_ASN1_BIT_STRING_free(bs); |
|
172 return NULL; |
|
173 } |
|
174 } |
|
175 return bs; |
|
176 } |
|
177 |
|
178 |