Symaptic: os/ossrv/ssl/libcrypto/src/crypto/x509v3/v3

sl@0	1	/* v3_sxnet.c */
sl@0	2	/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
sl@0	3	* project 1999.
sl@0	4	*/
sl@0	5	/* ====================================================================
sl@0	6	* Copyright (c) 1999 The OpenSSL Project. All rights reserved.
sl@0	7	*
sl@0	8	* Redistribution and use in source and binary forms, with or without
sl@0	9	* modification, are permitted provided that the following conditions
sl@0	10	* are met:
sl@0	11	*
sl@0	12	* 1. Redistributions of source code must retain the above copyright
sl@0	13	* notice, this list of conditions and the following disclaimer.
sl@0	14	*
sl@0	15	* 2. Redistributions in binary form must reproduce the above copyright
sl@0	16	* notice, this list of conditions and the following disclaimer in
sl@0	17	* the documentation and/or other materials provided with the
sl@0	18	* distribution.
sl@0	19	*
sl@0	20	* 3. All advertising materials mentioning features or use of this
sl@0	21	* software must display the following acknowledgment:
sl@0	22	* "This product includes software developed by the OpenSSL Project
sl@0	23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
sl@0	24	*
sl@0	25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
sl@0	26	* endorse or promote products derived from this software without
sl@0	27	* prior written permission. For written permission, please contact
sl@0	28	* licensing@OpenSSL.org.
sl@0	29	*
sl@0	30	* 5. Products derived from this software may not be called "OpenSSL"
sl@0	31	* nor may "OpenSSL" appear in their names without prior written
sl@0	32	* permission of the OpenSSL Project.
sl@0	33	*
sl@0	34	* 6. Redistributions of any form whatsoever must retain the following
sl@0	35	* acknowledgment:
sl@0	36	* "This product includes software developed by the OpenSSL Project
sl@0	37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
sl@0	38	*
sl@0	39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
sl@0	40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
sl@0	41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
sl@0	42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
sl@0	43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
sl@0	44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
sl@0	45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
sl@0	46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
sl@0	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
sl@0	48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
sl@0	49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
sl@0	50	* OF THE POSSIBILITY OF SUCH DAMAGE.
sl@0	51	* ====================================================================
sl@0	52	*
sl@0	53	* This product includes cryptographic software written by Eric Young
sl@0	54	* (eay@cryptsoft.com). This product includes software written by Tim
sl@0	55	* Hudson (tjh@cryptsoft.com).
sl@0	56	*
sl@0	57	*/
sl@0	58	/*
sl@0	59	© Portions copyright (c) 2006 Nokia Corporation. All rights reserved.
sl@0	60	*/
sl@0	61
sl@0	62	#include <stdio.h>
sl@0	63	#include "cryptlib.h"
sl@0	64	#include <openssl/conf.h>
sl@0	65	#include <openssl/asn1.h>
sl@0	66	#include <openssl/asn1t.h>
sl@0	67	#include <openssl/x509v3.h>
sl@0	68	#if (defined(SYMBIAN) && (defined(__WINSCW__) \|\| defined(__WINS__)))
sl@0	69	#include "libcrypto_wsd_macros.h"
sl@0	70	#include "libcrypto_wsd.h"
sl@0	71	#endif
sl@0	72
sl@0	73
sl@0	74	/* Support for Thawte strong extranet extension */
sl@0	75
sl@0	76	#define SXNET_TEST
sl@0	77
sl@0	78	static int sxnet_i2r(X509V3_EXT_METHOD method, SXNET sx, BIO *out, int indent);
sl@0	79	#ifdef SXNET_TEST
sl@0	80	static SXNET * sxnet_v2i(X509V3_EXT_METHOD method, X509V3_CTX ctx,
sl@0	81	STACK_OF(CONF_VALUE) *nval);
sl@0	82	#endif
sl@0	83	#ifndef EMULATOR
sl@0	84	X509V3_EXT_METHOD v3_sxnet = {
sl@0	85	NID_sxnet, X509V3_EXT_MULTILINE, ASN1_ITEM_ref(SXNET),
sl@0	86	0,0,0,0,
sl@0	87	0,0,
sl@0	88	0,
sl@0	89	#ifdef SXNET_TEST
sl@0	90	(X509V3_EXT_V2I)sxnet_v2i,
sl@0	91	#else
sl@0	92	0,
sl@0	93	#endif
sl@0	94	(X509V3_EXT_I2R)sxnet_i2r,
sl@0	95	0,
sl@0	96	NULL
sl@0	97	};
sl@0	98	#else
sl@0	99	const X509V3_EXT_METHOD v3_sxnet = {
sl@0	100	NID_sxnet, X509V3_EXT_MULTILINE, ASN1_ITEM_ref(SXNET),
sl@0	101	0,0,0,0,
sl@0	102	0,0,
sl@0	103	0,
sl@0	104	#ifdef SXNET_TEST
sl@0	105	(X509V3_EXT_V2I)sxnet_v2i,
sl@0	106	#else
sl@0	107	0,
sl@0	108	#endif
sl@0	109	(X509V3_EXT_I2R)sxnet_i2r,
sl@0	110	0,
sl@0	111	NULL
sl@0	112	};
sl@0	113	#endif
sl@0	114
sl@0	115	ASN1_SEQUENCE(SXNETID) = {
sl@0	116	ASN1_SIMPLE(SXNETID, zone, ASN1_INTEGER),
sl@0	117	ASN1_SIMPLE(SXNETID, user, ASN1_OCTET_STRING)
sl@0	118	} ASN1_SEQUENCE_END(SXNETID)
sl@0	119
sl@0	120	IMPLEMENT_ASN1_FUNCTIONS(SXNETID)
sl@0	121
sl@0	122	ASN1_SEQUENCE(SXNET) = {
sl@0	123	ASN1_SIMPLE(SXNET, version, ASN1_INTEGER),
sl@0	124	ASN1_SEQUENCE_OF(SXNET, ids, SXNETID)
sl@0	125	} ASN1_SEQUENCE_END(SXNET)
sl@0	126
sl@0	127	IMPLEMENT_ASN1_FUNCTIONS(SXNET)
sl@0	128
sl@0	129	static int sxnet_i2r(X509V3_EXT_METHOD method, SXNET sx, BIO *out,
sl@0	130	int indent)
sl@0	131	{
sl@0	132	long v;
sl@0	133	char *tmp;
sl@0	134	SXNETID *id;
sl@0	135	int i;
sl@0	136	v = ASN1_INTEGER_get(sx->version);
sl@0	137	BIO_printf(out, "%*sVersion: %ld (0x%lX)", indent, "", v + 1, v);
sl@0	138	for(i = 0; i < sk_SXNETID_num(sx->ids); i++) {
sl@0	139	id = sk_SXNETID_value(sx->ids, i);
sl@0	140	tmp = i2s_ASN1_INTEGER(NULL, id->zone);
sl@0	141	BIO_printf(out, "\n%*sZone: %s, User: ", indent, "", tmp);
sl@0	142	OPENSSL_free(tmp);
sl@0	143	M_ASN1_OCTET_STRING_print(out, id->user);
sl@0	144	}
sl@0	145	return 1;
sl@0	146	}
sl@0	147
sl@0	148	#ifdef SXNET_TEST
sl@0	149
sl@0	150	/* NBB: this is used for testing only. It should not be used for anything
sl@0	151	* else because it will just take static IDs from the configuration file and
sl@0	152	* they should really be separate values for each user.
sl@0	153	*/
sl@0	154
sl@0	155
sl@0	156	static SXNET * sxnet_v2i(X509V3_EXT_METHOD method, X509V3_CTX ctx,
sl@0	157	STACK_OF(CONF_VALUE) *nval)
sl@0	158	{
sl@0	159	CONF_VALUE *cnf;
sl@0	160	SXNET *sx = NULL;
sl@0	161	int i;
sl@0	162	for(i = 0; i < sk_CONF_VALUE_num(nval); i++) {
sl@0	163	cnf = sk_CONF_VALUE_value(nval, i);
sl@0	164	if(!SXNET_add_id_asc(&sx, cnf->name, cnf->value, -1))
sl@0	165	return NULL;
sl@0	166	}
sl@0	167	return sx;
sl@0	168	}
sl@0	169
sl@0	170
sl@0	171	#endif
sl@0	172
sl@0	173	/* Strong Extranet utility functions */
sl@0	174
sl@0	175	/* Add an id given the zone as an ASCII number */
sl@0	176
sl@0	177	EXPORT_C int SXNET_add_id_asc(SXNET *psx, char zone, char *user,
sl@0	178	int userlen)
sl@0	179	{
sl@0	180	ASN1_INTEGER *izone = NULL;
sl@0	181	if(!(izone = s2i_ASN1_INTEGER(NULL, zone))) {
sl@0	182	X509V3err(X509V3_F_SXNET_ADD_ID_ASC,X509V3_R_ERROR_CONVERTING_ZONE);
sl@0	183	return 0;
sl@0	184	}
sl@0	185	return SXNET_add_id_INTEGER(psx, izone, user, userlen);
sl@0	186	}
sl@0	187
sl@0	188	/* Add an id given the zone as an unsigned long */
sl@0	189
sl@0	190	EXPORT_C int SXNET_add_id_ulong(SXNET *psx, unsigned long lzone, char user,
sl@0	191	int userlen)
sl@0	192	{
sl@0	193	ASN1_INTEGER *izone = NULL;
sl@0	194	if(!(izone = M_ASN1_INTEGER_new()) \|\| !ASN1_INTEGER_set(izone, lzone)) {
sl@0	195	X509V3err(X509V3_F_SXNET_ADD_ID_ULONG,ERR_R_MALLOC_FAILURE);
sl@0	196	M_ASN1_INTEGER_free(izone);
sl@0	197	return 0;
sl@0	198	}
sl@0	199	return SXNET_add_id_INTEGER(psx, izone, user, userlen);
sl@0	200
sl@0	201	}
sl@0	202
sl@0	203	/* Add an id given the zone as an ASN1_INTEGER.
sl@0	204	* Note this version uses the passed integer and doesn't make a copy so don't
sl@0	205	* free it up afterwards.
sl@0	206	*/
sl@0	207
sl@0	208	EXPORT_C int SXNET_add_id_INTEGER(SXNET *psx, ASN1_INTEGER zone, char *user,
sl@0	209	int userlen)
sl@0	210	{
sl@0	211	SXNET *sx = NULL;
sl@0	212	SXNETID *id = NULL;
sl@0	213	if(!psx \|\| !zone \|\| !user) {
sl@0	214	X509V3err(X509V3_F_SXNET_ADD_ID_INTEGER,X509V3_R_INVALID_NULL_ARGUMENT);
sl@0	215	return 0;
sl@0	216	}
sl@0	217	if(userlen == -1) userlen = strlen(user);
sl@0	218	if(userlen > 64) {
sl@0	219	X509V3err(X509V3_F_SXNET_ADD_ID_INTEGER,X509V3_R_USER_TOO_LONG);
sl@0	220	return 0;
sl@0	221	}
sl@0	222	if(!*psx) {
sl@0	223	if(!(sx = SXNET_new())) goto err;
sl@0	224	if(!ASN1_INTEGER_set(sx->version, 0)) goto err;
sl@0	225	*psx = sx;
sl@0	226	} else sx = *psx;
sl@0	227	if(SXNET_get_id_INTEGER(sx, zone)) {
sl@0	228	X509V3err(X509V3_F_SXNET_ADD_ID_INTEGER,X509V3_R_DUPLICATE_ZONE_ID);
sl@0	229	return 0;
sl@0	230	}
sl@0	231
sl@0	232	if(!(id = SXNETID_new())) goto err;
sl@0	233	if(userlen == -1) userlen = strlen(user);
sl@0	234
sl@0	235	if(!M_ASN1_OCTET_STRING_set(id->user, user, userlen)) goto err;
sl@0	236	if(!sk_SXNETID_push(sx->ids, id)) goto err;
sl@0	237	id->zone = zone;
sl@0	238	return 1;
sl@0	239
sl@0	240	err:
sl@0	241	X509V3err(X509V3_F_SXNET_ADD_ID_INTEGER,ERR_R_MALLOC_FAILURE);
sl@0	242	SXNETID_free(id);
sl@0	243	SXNET_free(sx);
sl@0	244	*psx = NULL;
sl@0	245	return 0;
sl@0	246	}
sl@0	247
sl@0	248	EXPORT_C ASN1_OCTET_STRING SXNET_get_id_asc(SXNET sx, char *zone)
sl@0	249	{
sl@0	250	ASN1_INTEGER *izone = NULL;
sl@0	251	ASN1_OCTET_STRING *oct;
sl@0	252	if(!(izone = s2i_ASN1_INTEGER(NULL, zone))) {
sl@0	253	X509V3err(X509V3_F_SXNET_GET_ID_ASC,X509V3_R_ERROR_CONVERTING_ZONE);
sl@0	254	return NULL;
sl@0	255	}
sl@0	256	oct = SXNET_get_id_INTEGER(sx, izone);
sl@0	257	M_ASN1_INTEGER_free(izone);
sl@0	258	return oct;
sl@0	259	}
sl@0	260
sl@0	261	EXPORT_C ASN1_OCTET_STRING SXNET_get_id_ulong(SXNET sx, unsigned long lzone)
sl@0	262	{
sl@0	263	ASN1_INTEGER *izone = NULL;
sl@0	264	ASN1_OCTET_STRING *oct;
sl@0	265	if(!(izone = M_ASN1_INTEGER_new()) \|\| !ASN1_INTEGER_set(izone, lzone)) {
sl@0	266	X509V3err(X509V3_F_SXNET_GET_ID_ULONG,ERR_R_MALLOC_FAILURE);
sl@0	267	M_ASN1_INTEGER_free(izone);
sl@0	268	return NULL;
sl@0	269	}
sl@0	270	oct = SXNET_get_id_INTEGER(sx, izone);
sl@0	271	M_ASN1_INTEGER_free(izone);
sl@0	272	return oct;
sl@0	273	}
sl@0	274
sl@0	275	EXPORT_C ASN1_OCTET_STRING SXNET_get_id_INTEGER(SXNET sx, ASN1_INTEGER *zone)
sl@0	276	{
sl@0	277	SXNETID *id;
sl@0	278	int i;
sl@0	279	for(i = 0; i < sk_SXNETID_num(sx->ids); i++) {
sl@0	280	id = sk_SXNETID_value(sx->ids, i);
sl@0	281	if(!M_ASN1_INTEGER_cmp(id->zone, zone)) return id->user;
sl@0	282	}
sl@0	283	return NULL;
sl@0	284	}
sl@0	285
sl@0	286	IMPLEMENT_STACK_OF(SXNETID)
sl@0	287	IMPLEMENT_ASN1_SET_OF(SXNETID)

author	sl
	Tue, 10 Jun 2014 14:32:02 +0200
changeset 1	260cb5ec6c19
permissions	-rw-r--r--