1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/os/ossrv/ssl/libcrypto/src/crypto/x509v3/pcy_node.c Fri Jun 15 03:10:57 2012 +0200
1.3 @@ -0,0 +1,158 @@
1.4 +/* pcy_node.c */
1.5 +/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
1.6 + * project 2004.
1.7 + */
1.8 +/* ====================================================================
1.9 + * Copyright (c) 2004 The OpenSSL Project. All rights reserved.
1.10 + *
1.11 + * Redistribution and use in source and binary forms, with or without
1.12 + * modification, are permitted provided that the following conditions
1.13 + * are met:
1.14 + *
1.15 + * 1. Redistributions of source code must retain the above copyright
1.16 + * notice, this list of conditions and the following disclaimer.
1.17 + *
1.18 + * 2. Redistributions in binary form must reproduce the above copyright
1.19 + * notice, this list of conditions and the following disclaimer in
1.20 + * the documentation and/or other materials provided with the
1.21 + * distribution.
1.22 + *
1.23 + * 3. All advertising materials mentioning features or use of this
1.24 + * software must display the following acknowledgment:
1.25 + * "This product includes software developed by the OpenSSL Project
1.26 + * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
1.27 + *
1.28 + * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
1.29 + * endorse or promote products derived from this software without
1.30 + * prior written permission. For written permission, please contact
1.31 + * licensing@OpenSSL.org.
1.32 + *
1.33 + * 5. Products derived from this software may not be called "OpenSSL"
1.34 + * nor may "OpenSSL" appear in their names without prior written
1.35 + * permission of the OpenSSL Project.
1.36 + *
1.37 + * 6. Redistributions of any form whatsoever must retain the following
1.38 + * acknowledgment:
1.39 + * "This product includes software developed by the OpenSSL Project
1.40 + * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
1.41 + *
1.42 + * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
1.43 + * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.44 + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
1.45 + * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
1.46 + * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
1.47 + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
1.48 + * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
1.49 + * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.50 + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
1.51 + * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
1.52 + * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
1.53 + * OF THE POSSIBILITY OF SUCH DAMAGE.
1.54 + * ====================================================================
1.55 + *
1.56 + * This product includes cryptographic software written by Eric Young
1.57 + * (eay@cryptsoft.com). This product includes software written by Tim
1.58 + * Hudson (tjh@cryptsoft.com).
1.59 + *
1.60 + */
1.61 +
1.62 +#include <openssl/asn1.h>
1.63 +#include <openssl/x509.h>
1.64 +#include <openssl/x509v3.h>
1.65 +
1.66 +#include "pcy_int.h"
1.67 +
1.68 +static int node_cmp(const X509_POLICY_NODE * const *a,
1.69 + const X509_POLICY_NODE * const *b)
1.70 + {
1.71 + return OBJ_cmp((*a)->data->valid_policy, (*b)->data->valid_policy);
1.72 + }
1.73 +
1.74 +EXPORT_C STACK_OF(X509_POLICY_NODE) *policy_node_cmp_new(void)
1.75 + {
1.76 + return sk_X509_POLICY_NODE_new(node_cmp);
1.77 + }
1.78 +
1.79 +EXPORT_C X509_POLICY_NODE *tree_find_sk(STACK_OF(X509_POLICY_NODE) *nodes,
1.80 + const ASN1_OBJECT *id)
1.81 + {
1.82 + X509_POLICY_DATA n;
1.83 + X509_POLICY_NODE l;
1.84 + int idx;
1.85 +
1.86 + n.valid_policy = (ASN1_OBJECT *)id;
1.87 + l.data = &n;
1.88 +
1.89 + idx = sk_X509_POLICY_NODE_find(nodes, &l);
1.90 + if (idx == -1)
1.91 + return NULL;
1.92 +
1.93 + return sk_X509_POLICY_NODE_value(nodes, idx);
1.94 +
1.95 + }
1.96 +
1.97 +EXPORT_C X509_POLICY_NODE *level_find_node(const X509_POLICY_LEVEL *level,
1.98 + const ASN1_OBJECT *id)
1.99 + {
1.100 + return tree_find_sk(level->nodes, id);
1.101 + }
1.102 +
1.103 +EXPORT_C X509_POLICY_NODE *level_add_node(X509_POLICY_LEVEL *level,
1.104 + X509_POLICY_DATA *data,
1.105 + X509_POLICY_NODE *parent,
1.106 + X509_POLICY_TREE *tree)
1.107 + {
1.108 + X509_POLICY_NODE *node;
1.109 + node = OPENSSL_malloc(sizeof(X509_POLICY_NODE));
1.110 + if (!node)
1.111 + return NULL;
1.112 + node->data = data;
1.113 + node->parent = parent;
1.114 + node->nchild = 0;
1.115 + if (level)
1.116 + {
1.117 + if (OBJ_obj2nid(data->valid_policy) == NID_any_policy)
1.118 + {
1.119 + if (level->anyPolicy)
1.120 + goto node_error;
1.121 + level->anyPolicy = node;
1.122 + }
1.123 + else
1.124 + {
1.125 +
1.126 + if (!level->nodes)
1.127 + level->nodes = policy_node_cmp_new();
1.128 + if (!level->nodes)
1.129 + goto node_error;
1.130 + if (!sk_X509_POLICY_NODE_push(level->nodes, node))
1.131 + goto node_error;
1.132 + }
1.133 + }
1.134 +
1.135 + if (tree)
1.136 + {
1.137 + if (!tree->extra_data)
1.138 + tree->extra_data = sk_X509_POLICY_DATA_new_null();
1.139 + if (!tree->extra_data)
1.140 + goto node_error;
1.141 + if (!sk_X509_POLICY_DATA_push(tree->extra_data, data))
1.142 + goto node_error;
1.143 + }
1.144 +
1.145 + if (parent)
1.146 + parent->nchild++;
1.147 +
1.148 + return node;
1.149 +
1.150 + node_error:
1.151 + policy_node_free(node);
1.152 + return 0;
1.153 +
1.154 + }
1.155 +
1.156 +EXPORT_C void policy_node_free(X509_POLICY_NODE *node)
1.157 + {
1.158 + OPENSSL_free(node);
1.159 + }
1.160 +
1.161 +