This commit was manufactured by cvs2git to create tag 'SSLeay_0_9_0b'.SSLeay_0_9_0b

author: cvs2svn <admin@example.com> 1998-10-05 20:13:17 +0000
committer: cvs2svn <admin@example.com> 1998-10-05 20:13:17 +0000
commit: e82f18fab47b698d93971f576f962a3068132912 (patch)
tree: 681519717892864935c3d0533cf171098afa649a /src/lib/libcrypto/x509/v3_x509.c
parent: 536c76cbb863bab152f19842ab88772c01e922c7 (diff)
download: openbsd-SSLeay_0_9_0b.tar.gz
openbsd-SSLeay_0_9_0b.tar.bz2
openbsd-SSLeay_0_9_0b.zip
1 files changed, 253 insertions, 0 deletions
diff --git a/src/lib/libcrypto/x509/v3_x509.c b/src/lib/libcrypto/x509/v3_x509.c
new file mode 100644
index 0000000000..f685aa4c71
--- /dev/null
+++ b/src/lib/libcrypto/x509/v3_x509.c
@@ -0,0 +1,253 @@
+/* crypto/x509/v3_x509.c */
+/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+#include <stdio.h>
+#include <ctype.h>
+#include "stack.h"
+#include "cryptlib.h"
+#include "bio.h"
+#include "asn1.h"
+#include "objects.h"
+#include "x509.h"
+#if 0
+static int i2a_key_usage(BIO *bp, X509 *x);
+static int a2i_key_usage(X509 *x, char *str, int len);
+#endif
+int X509v3_get_key_usage(X509 *x);
+int X509v3_set_key_usage(X509 *x,unsigned int use);
+int i2a_X509v3_key_usage(BIO *bp, unsigned int use);
+unsigned int a2i_X509v3_key_usage(char *p);
+#define STD_X509_EXT_NUM        9
+#if 0
+static X509_OBJECTS std_x509_ext[STD_X509_EXT_NUM]={
+{NID_subject_key_identifier,    NULL,NULL},
+{NID_key_usage,                 a2i_key_usage,i2a_key_usage}, /**/
+{NID_private_key_usage_period,  NULL,NULL},
+{NID_subject_alt_name,          NULL,NULL},
+{NID_issuer_alt_name,           NULL,NULL},
+{NID_basic_constraints,         NULL,NULL},
+{NID_crl_number,                NULL,NULL},
+{NID_certificate_policies,      NULL,NULL},
+{NID_authority_key_identifier,  NULL,NULL},
+        };
+#endif
+int X509v3_add_standard_extensions()
+        {
+#if 0
+        for (i=0; i<STD_X509_EXT_NUM; i++)
+                if (!X509v3_add_extension(&(std_x509_ext[i])))
+                        return(0);
+#endif
+        return(1);
+        }
+int X509v3_get_key_usage(x)
+X509 *x;
+        {
+        X509_EXTENSION *ext;
+        ASN1_STRING *st;
+        char *p;
+        int i;
+        i=X509_get_ext_by_NID(x,NID_key_usage,-1);
+        if (i < 0) return(X509v3_KU_UNDEF);
+        ext=X509_get_ext(x,i);
+        st=X509v3_unpack_string(NULL,V_ASN1_BIT_STRING,
+                X509_EXTENSION_get_data(X509_get_ext(x,i)));
+        p=(char *)ASN1_STRING_data(st);
+        if (ASN1_STRING_length(st) == 1)
+                i=p[0];
+        else if (ASN1_STRING_length(st) == 2)
+                i=p[0]|(p[1]<<8);
+        else
+                i=0;
+        return(i);
+        }
+static struct
+        {
+        char *name;
+        unsigned int value;
+        } key_usage_data[] ={
+        {"digitalSignature",    X509v3_KU_DIGITAL_SIGNATURE},
+        {"nonRepudiation",      X509v3_KU_NON_REPUDIATION},
+        {"keyEncipherment",     X509v3_KU_KEY_ENCIPHERMENT},
+        {"dataEncipherment",    X509v3_KU_DATA_ENCIPHERMENT},
+        {"keyAgreement",        X509v3_KU_KEY_AGREEMENT},
+        {"keyCertSign",         X509v3_KU_KEY_CERT_SIGN},
+        {"cRLSign",             X509v3_KU_CRL_SIGN},
+        {"encipherOnly",        X509v3_KU_ENCIPHER_ONLY},
+        {"decipherOnly",        X509v3_KU_DECIPHER_ONLY},
+        {NULL,0},
+        };
+#if 0
+static int a2i_key_usage(x,str,len)
+X509 *x;
+char *str;
+int len;
+        {
+        return(X509v3_set_key_usage(x,a2i_X509v3_key_usage(str)));
+        }
+static int i2a_key_usage(bp,x)
+BIO *bp;
+X509 *x;
+        {
+        return(i2a_X509v3_key_usage(bp,X509v3_get_key_usage(x)));
+        }
+#endif
+int i2a_X509v3_key_usage(bp,use)
+BIO *bp;
+unsigned int use;
+        {
+        int i=0,first=1;
+        for (;;)
+                {
+                if (use | key_usage_data[i].value)
+                        {
+                        BIO_printf(bp,"%s%s",((first)?"":" "),
+                                key_usage_data[i].name);
+                        first=0;
+                        }
+                }
+        return(1);
+        }
+unsigned int a2i_X509v3_key_usage(p)
+char *p;
+        {
+        unsigned int ret=0;
+        char *q,*s;
+        int i,n;
+        q=p;
+        for (;;)
+                {
+                while ((*q != '\0') && isalnum(*q))
+                        q++;
+                if (*q == '\0') break;
+                s=q++;
+                while (isalnum(*q))
+                        q++;
+                n=q-s;
+                i=0;
+                for (;;)
+                        {
+                        if (strncmp(key_usage_data[i].name,s,n) == 0)
+                                {
+                                ret|=key_usage_data[i].value;
+                                break;
+                                }
+                        i++;
+                        if (key_usage_data[i].name == NULL)
+                                return(X509v3_KU_UNDEF);
+                        }
+                }
+        return(ret);
+        }
+int X509v3_set_key_usage(x,use)
+X509 *x;
+unsigned int use;
+        {
+        ASN1_OCTET_STRING *os;
+        X509_EXTENSION *ext;
+        int i;
+        unsigned char data[4];
+        i=X509_get_ext_by_NID(x,NID_key_usage,-1);
+        if (i < 0)
+                {
+                i=X509_get_ext_count(x)+1;
+                if ((ext=X509_EXTENSION_new()) == NULL) return(0);
+                if (!X509_add_ext(x,ext,i))
+                        {
+                        X509_EXTENSION_free(ext);
+                        return(0);
+                        }
+                }
+        else
+                ext=X509_get_ext(x,i);
+        /* fill in 'ext' */
+        os=X509_EXTENSION_get_data(ext);
+        i=0;
+        if (use > 0)
+                {
+                i=1;
+                data[0]=use&0xff;
+                }
+        if (use > 0xff)
+                {
+                i=2;
+                data[1]=(use>>8)&0xff;
+                }
+        return((X509v3_pack_string(&os,V_ASN1_BIT_STRING,data,i) == NULL)?0:1);
+        }
author	cvs2svn <admin@example.com>	1998-10-05 20:13:17 +0000
committer	cvs2svn <admin@example.com>	1998-10-05 20:13:17 +0000
commit	e82f18fab47b698d93971f576f962a3068132912 (patch)
tree	681519717892864935c3d0533cf171098afa649a /src/lib/libcrypto/x509/v3_x509.c
parent	536c76cbb863bab152f19842ab88772c01e922c7 (diff)
download	openbsd-SSLeay_0_9_0b.tar.gz openbsd-SSLeay_0_9_0b.tar.bz2 openbsd-SSLeay_0_9_0b.zip

diff --git a/src/lib/libcrypto/x509/v3_x509.c b/src/lib/libcrypto/x509/v3_x509.c new file mode 100644 index 0000000000..f685aa4c71 --- /dev/null +++ b/src/lib/libcrypto/x509/v3_x509.c
@@ -0,0 +1,253 @@
	1	/* crypto/x509/v3_x509.c */
	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
	3	* All rights reserved.
	4	*
	5	* This package is an SSL implementation written
	6	* by Eric Young (eay@cryptsoft.com).
	7	* The implementation was written so as to conform with Netscapes SSL.
	8	*
	9	* This library is free for commercial and non-commercial use as long as
	10	* the following conditions are aheared to. The following conditions
	11	* apply to all code found in this distribution, be it the RC4, RSA,
	12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
	13	* included with this distribution is covered by the same copyright terms
	14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
	15	*
	16	* Copyright remains Eric Young's, and as such any Copyright notices in
	17	* the code are not to be removed.
	18	* If this package is used in a product, Eric Young should be given attribution
	19	* as the author of the parts of the library used.
	20	* This can be in the form of a textual message at program startup or
	21	* in documentation (online or textual) provided with the package.
	22	*
	23	* Redistribution and use in source and binary forms, with or without
	24	* modification, are permitted provided that the following conditions
	25	* are met:
	26	* 1. Redistributions of source code must retain the copyright
	27	* notice, this list of conditions and the following disclaimer.
	28	* 2. Redistributions in binary form must reproduce the above copyright
	29	* notice, this list of conditions and the following disclaimer in the
	30	* documentation and/or other materials provided with the distribution.
	31	* 3. All advertising materials mentioning features or use of this software
	32	* must display the following acknowledgement:
	33	* "This product includes cryptographic software written by
	34	* Eric Young (eay@cryptsoft.com)"
	35	* The word 'cryptographic' can be left out if the rouines from the library
	36	* being used are not cryptographic related :-).
	37	* 4. If you include any Windows specific code (or a derivative thereof) from
	38	* the apps directory (application code) you must include an acknowledgement:
	39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
	40	*
	41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
	42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
	45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
	46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
	47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
	49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
	50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
	51	* SUCH DAMAGE.
	52	*
	53	* The licence and distribution terms for any publically available version or
	54	* derivative of this code cannot be changed. i.e. this code cannot simply be
	55	* copied and put under another distribution licence
	56	* [including the GNU Public Licence.]
	57	*/
	58
	59	#include <stdio.h>
	60	#include <ctype.h>
	61	#include "stack.h"
	62	#include "cryptlib.h"
	63	#include "bio.h"
	64	#include "asn1.h"
	65	#include "objects.h"
	66	#include "x509.h"
	67
	68	#if 0
	69	static int i2a_key_usage(BIO bp, X509 x);
	70	static int a2i_key_usage(X509 x, char str, int len);
	71	#endif
	72
	73	int X509v3_get_key_usage(X509 *x);
	74	int X509v3_set_key_usage(X509 *x,unsigned int use);
	75	int i2a_X509v3_key_usage(BIO *bp, unsigned int use);
	76	unsigned int a2i_X509v3_key_usage(char *p);
	77
	78	#define STD_X509_EXT_NUM 9
	79
	80	#if 0
	81	static X509_OBJECTS std_x509_ext[STD_X509_EXT_NUM]={
	82	{NID_subject_key_identifier, NULL,NULL},
	83	{NID_key_usage, a2i_key_usage,i2a_key_usage}, /**/
	84	{NID_private_key_usage_period, NULL,NULL},
	85	{NID_subject_alt_name, NULL,NULL},
	86	{NID_issuer_alt_name, NULL,NULL},
	87	{NID_basic_constraints, NULL,NULL},
	88	{NID_crl_number, NULL,NULL},
	89	{NID_certificate_policies, NULL,NULL},
	90	{NID_authority_key_identifier, NULL,NULL},
	91	};
	92	#endif
	93
	94	int X509v3_add_standard_extensions()
	95	{
	96
	97	#if 0
	98	for (i=0; i<STD_X509_EXT_NUM; i++)
	99	if (!X509v3_add_extension(&(std_x509_ext[i])))
	100	return(0);
	101	#endif
	102	return(1);
	103	}
	104
	105	int X509v3_get_key_usage(x)
	106	X509 *x;
	107	{
	108	X509_EXTENSION *ext;
	109	ASN1_STRING *st;
	110	char *p;
	111	int i;
	112
	113	i=X509_get_ext_by_NID(x,NID_key_usage,-1);
	114	if (i < 0) return(X509v3_KU_UNDEF);
	115	ext=X509_get_ext(x,i);
	116	st=X509v3_unpack_string(NULL,V_ASN1_BIT_STRING,
	117	X509_EXTENSION_get_data(X509_get_ext(x,i)));
	118
	119	p=(char *)ASN1_STRING_data(st);
	120	if (ASN1_STRING_length(st) == 1)
	121	i=p[0];
	122	else if (ASN1_STRING_length(st) == 2)
	123	i=p[0]\|(p[1]<<8);
	124	else
	125	i=0;
	126	return(i);
	127	}
	128
	129	static struct
	130	{
	131	char *name;
	132	unsigned int value;
	133	} key_usage_data[] ={
	134	{"digitalSignature", X509v3_KU_DIGITAL_SIGNATURE},
	135	{"nonRepudiation", X509v3_KU_NON_REPUDIATION},
	136	{"keyEncipherment", X509v3_KU_KEY_ENCIPHERMENT},
	137	{"dataEncipherment", X509v3_KU_DATA_ENCIPHERMENT},
	138	{"keyAgreement", X509v3_KU_KEY_AGREEMENT},
	139	{"keyCertSign", X509v3_KU_KEY_CERT_SIGN},
	140	{"cRLSign", X509v3_KU_CRL_SIGN},
	141	{"encipherOnly", X509v3_KU_ENCIPHER_ONLY},
	142	{"decipherOnly", X509v3_KU_DECIPHER_ONLY},
	143	{NULL,0},
	144	};
	145
	146	#if 0
	147	static int a2i_key_usage(x,str,len)
	148	X509 *x;
	149	char *str;
	150	int len;
	151	{
	152	return(X509v3_set_key_usage(x,a2i_X509v3_key_usage(str)));
	153	}
	154
	155	static int i2a_key_usage(bp,x)
	156	BIO *bp;
	157	X509 *x;
	158	{
	159	return(i2a_X509v3_key_usage(bp,X509v3_get_key_usage(x)));
	160	}
	161	#endif
	162
	163	int i2a_X509v3_key_usage(bp,use)
	164	BIO *bp;
	165	unsigned int use;
	166	{
	167	int i=0,first=1;
	168
	169	for (;;)
	170	{
	171	if (use \| key_usage_data[i].value)
	172	{
	173	BIO_printf(bp,"%s%s",((first)?"":" "),
	174	key_usage_data[i].name);
	175	first=0;
	176	}
	177	}
	178	return(1);
	179	}
	180
	181	unsigned int a2i_X509v3_key_usage(p)
	182	char *p;
	183	{
	184	unsigned int ret=0;
	185	char q,s;
	186	int i,n;
	187
	188	q=p;
	189	for (;;)
	190	{
	191	while ((q != '\0') && isalnum(q))
	192	q++;
	193	if (*q == '\0') break;
	194	s=q++;
	195	while (isalnum(*q))
	196	q++;
	197	n=q-s;
	198	i=0;
	199	for (;;)
	200	{
	201	if (strncmp(key_usage_data[i].name,s,n) == 0)
	202	{
	203	ret\|=key_usage_data[i].value;
	204	break;
	205	}
	206	i++;
	207	if (key_usage_data[i].name == NULL)
	208	return(X509v3_KU_UNDEF);
	209	}
	210	}
	211	return(ret);
	212	}
	213
	214	int X509v3_set_key_usage(x,use)
	215	X509 *x;
	216	unsigned int use;
	217	{
	218	ASN1_OCTET_STRING *os;
	219	X509_EXTENSION *ext;
	220	int i;
	221	unsigned char data[4];
	222
	223	i=X509_get_ext_by_NID(x,NID_key_usage,-1);
	224	if (i < 0)
	225	{
	226	i=X509_get_ext_count(x)+1;
	227	if ((ext=X509_EXTENSION_new()) == NULL) return(0);
	228	if (!X509_add_ext(x,ext,i))
	229	{
	230	X509_EXTENSION_free(ext);
	231	return(0);
	232	}
	233	}
	234	else
	235	ext=X509_get_ext(x,i);
	236
	237	/* fill in 'ext' */
	238	os=X509_EXTENSION_get_data(ext);
	239
	240	i=0;
	241	if (use > 0)
	242	{
	243	i=1;
	244	data[0]=use&0xff;
	245	}
	246	if (use > 0xff)
	247	{
	248	i=2;
	249	data[1]=(use>>8)&0xff;
	250	}
	251	return((X509v3_pack_string(&os,V_ASN1_BIT_STRING,data,i) == NULL)?0:1);
	252	}
	253