Symaptic: os/ossrv/ssl/libcrypto/src/crypto/ocsp/ocsp

sl@0	1	/* ocsp_ht.c */
sl@0	2	/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
sl@0	3	* project 2000.
sl@0	4	*/
sl@0	5	/* ====================================================================
sl@0	6	* Copyright (c) 2000 The OpenSSL Project. All rights reserved.
sl@0	7	*
sl@0	8	* Redistribution and use in source and binary forms, with or without
sl@0	9	* modification, are permitted provided that the following conditions
sl@0	10	* are met:
sl@0	11	*
sl@0	12	* 1. Redistributions of source code must retain the above copyright
sl@0	13	* notice, this list of conditions and the following disclaimer.
sl@0	14	*
sl@0	15	* 2. Redistributions in binary form must reproduce the above copyright
sl@0	16	* notice, this list of conditions and the following disclaimer in
sl@0	17	* the documentation and/or other materials provided with the
sl@0	18	* distribution.
sl@0	19	*
sl@0	20	* 3. All advertising materials mentioning features or use of this
sl@0	21	* software must display the following acknowledgment:
sl@0	22	* "This product includes software developed by the OpenSSL Project
sl@0	23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
sl@0	24	*
sl@0	25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
sl@0	26	* endorse or promote products derived from this software without
sl@0	27	* prior written permission. For written permission, please contact
sl@0	28	* licensing@OpenSSL.org.
sl@0	29	*
sl@0	30	* 5. Products derived from this software may not be called "OpenSSL"
sl@0	31	* nor may "OpenSSL" appear in their names without prior written
sl@0	32	* permission of the OpenSSL Project.
sl@0	33	*
sl@0	34	* 6. Redistributions of any form whatsoever must retain the following
sl@0	35	* acknowledgment:
sl@0	36	* "This product includes software developed by the OpenSSL Project
sl@0	37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
sl@0	38	*
sl@0	39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
sl@0	40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
sl@0	41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
sl@0	42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
sl@0	43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
sl@0	44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
sl@0	45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
sl@0	46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
sl@0	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
sl@0	48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
sl@0	49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
sl@0	50	* OF THE POSSIBILITY OF SUCH DAMAGE.
sl@0	51	* ====================================================================
sl@0	52	*
sl@0	53	* This product includes cryptographic software written by Eric Young
sl@0	54	* (eay@cryptsoft.com). This product includes software written by Tim
sl@0	55	* Hudson (tjh@cryptsoft.com).
sl@0	56	*
sl@0	57	*/
sl@0	58	/*
sl@0	59	© Portions copyright (c) 2006 Nokia Corporation. All rights reserved.
sl@0	60	*/
sl@0	61
sl@0	62
sl@0	63	#include <openssl/asn1.h>
sl@0	64	#include <stdio.h>
sl@0	65	#include <stdlib.h>
sl@0	66	#include <ctype.h>
sl@0	67	#include <string.h>
sl@0	68	#include <openssl/ocsp.h>
sl@0	69	#include <openssl/err.h>
sl@0	70	#include <openssl/buffer.h>
sl@0	71	#if (defined(SYMBIAN) && (defined(__WINSCW__) \|\| defined(__WINS__)))
sl@0	72	#include "libcrypto_wsd_macros.h"
sl@0	73	#include "libcrypto_wsd.h"
sl@0	74	#endif
sl@0	75	#ifdef OPENSSL_SYS_SUNOS
sl@0	76	#define strtoul (unsigned long)strtol
sl@0	77	#endif /* OPENSSL_SYS_SUNOS */
sl@0	78
sl@0	79	/* Quick and dirty HTTP OCSP request handler.
sl@0	80	* Could make this a bit cleverer by adding
sl@0	81	* support for non blocking BIOs and a few
sl@0	82	* other refinements.
sl@0	83	*/
sl@0	84	#ifdef EMULATOR
sl@0	85	static const char req_txt[] =
sl@0	86	"POST %s HTTP/1.0\r\n\
sl@0	87	Content-Type: application/ocsp-request\r\n\
sl@0	88	Content-Length: %d\r\n\r\n";
sl@0	89	#endif
sl@0	90
sl@0	91
sl@0	92	EXPORT_C OCSP_RESPONSE OCSP_sendreq_bio(BIO b, char path, OCSP_REQUEST req)
sl@0	93	{
sl@0	94	BIO *mem = NULL;
sl@0	95	char tmpbuf[1024];
sl@0	96	OCSP_RESPONSE *resp = NULL;
sl@0	97	char p, q, *r;
sl@0	98	int len, retcode;
sl@0	99	#ifndef EMULATOR
sl@0	100	static char req_txt[] =
sl@0	101	"POST %s HTTP/1.0\r\n\
sl@0	102	Content-Type: application/ocsp-request\r\n\
sl@0	103	Content-Length: %d\r\n\r\n";
sl@0	104	#endif
sl@0	105
sl@0	106	len = i2d_OCSP_REQUEST(req, NULL);
sl@0	107	if(BIO_printf(b, req_txt, path, len) < 0) {
sl@0	108	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_WRITE_ERROR);
sl@0	109	goto err;
sl@0	110	}
sl@0	111	if(i2d_OCSP_REQUEST_bio(b, req) <= 0) {
sl@0	112	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_WRITE_ERROR);
sl@0	113	goto err;
sl@0	114	}
sl@0	115	if(!(mem = BIO_new(BIO_s_mem()))) goto err;
sl@0	116	/* Copy response to a memory BIO: socket bios can't do gets! */
sl@0	117	while ((len = BIO_read(b, tmpbuf, sizeof tmpbuf))) {
sl@0	118	if(len < 0) {
sl@0	119	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_READ_ERROR);
sl@0	120	goto err;
sl@0	121	}
sl@0	122	BIO_write(mem, tmpbuf, len);
sl@0	123	}
sl@0	124	if(BIO_gets(mem, tmpbuf, 512) <= 0) {
sl@0	125	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_RESPONSE_PARSE_ERROR);
sl@0	126	goto err;
sl@0	127	}
sl@0	128	/* Parse the HTTP response. This will look like this:
sl@0	129	* "HTTP/1.0 200 OK". We need to obtain the numeric code and
sl@0	130	* (optional) informational message.
sl@0	131	*/
sl@0	132
sl@0	133	/* Skip to first white space (passed protocol info) */
sl@0	134	for(p = tmpbuf; p && !isspace((unsigned char)p); p++) continue;
sl@0	135	if(!*p) {
sl@0	136	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_RESPONSE_PARSE_ERROR);
sl@0	137	goto err;
sl@0	138	}
sl@0	139	/* Skip past white space to start of response code */
sl@0	140	while(p && isspace((unsigned char)p)) p++;
sl@0	141	if(!*p) {
sl@0	142	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_RESPONSE_PARSE_ERROR);
sl@0	143	goto err;
sl@0	144	}
sl@0	145	/* Find end of response code: first whitespace after start of code */
sl@0	146	for(q = p; q && !isspace((unsigned char)q); q++) continue;
sl@0	147	if(!*q) {
sl@0	148	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_RESPONSE_PARSE_ERROR);
sl@0	149	goto err;
sl@0	150	}
sl@0	151	/* Set end of response code and start of message */
sl@0	152	*q++ = 0;
sl@0	153	/* Attempt to parse numeric code */
sl@0	154	retcode = strtoul(p, &r, 10);
sl@0	155	if(*r) goto err;
sl@0	156	/* Skip over any leading white space in message */
sl@0	157	while(q && isspace((unsigned char)q)) q++;
sl@0	158	if(*q) {
sl@0	159	/* Finally zap any trailing white space in message (include CRLF) */
sl@0	160	/* We know q has a non white space character so this is OK */
sl@0	161	for(r = q + strlen(q) - 1; isspace((unsigned char)r); r--) r = 0;
sl@0	162	}
sl@0	163	if(retcode != 200) {
sl@0	164	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_SERVER_RESPONSE_ERROR);
sl@0	165	if(!*q) {
sl@0	166	ERR_add_error_data(2, "Code=", p);
sl@0	167	}
sl@0	168	else {
sl@0	169	ERR_add_error_data(4, "Code=", p, ",Reason=", q);
sl@0	170	}
sl@0	171	goto err;
sl@0	172	}
sl@0	173	/* Find blank line marking beginning of content */
sl@0	174	while(BIO_gets(mem, tmpbuf, 512) > 0)
sl@0	175	{
sl@0	176	for(p = tmpbuf; p && isspace((unsigned char)p); p++) continue;
sl@0	177	if(!*p) break;
sl@0	178	}
sl@0	179	if(*p) {
sl@0	180	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,OCSP_R_NO_CONTENT);
sl@0	181	goto err;
sl@0	182	}
sl@0	183	if(!(resp = d2i_OCSP_RESPONSE_bio(mem, NULL))) {
sl@0	184	OCSPerr(OCSP_F_OCSP_SENDREQ_BIO,ERR_R_NESTED_ASN1_ERROR);
sl@0	185	goto err;
sl@0	186	}
sl@0	187	err:
sl@0	188	BIO_free(mem);
sl@0	189	return resp;
sl@0	190	}

author	sl
	Tue, 10 Jun 2014 14:32:02 +0200
changeset 1	260cb5ec6c19
permissions	-rw-r--r--