sl@0: /* v3_bitst.c */ sl@0: /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL sl@0: * project 1999. sl@0: */ sl@0: /* ==================================================================== sl@0: * Copyright (c) 1999 The OpenSSL Project. All rights reserved. sl@0: * sl@0: * Redistribution and use in source and binary forms, with or without sl@0: * modification, are permitted provided that the following conditions sl@0: * are met: sl@0: * sl@0: * 1. Redistributions of source code must retain the above copyright sl@0: * notice, this list of conditions and the following disclaimer. sl@0: * sl@0: * 2. Redistributions in binary form must reproduce the above copyright sl@0: * notice, this list of conditions and the following disclaimer in sl@0: * the documentation and/or other materials provided with the sl@0: * distribution. sl@0: * sl@0: * 3. All advertising materials mentioning features or use of this sl@0: * software must display the following acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" sl@0: * sl@0: * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to sl@0: * endorse or promote products derived from this software without sl@0: * prior written permission. For written permission, please contact sl@0: * licensing@OpenSSL.org. sl@0: * sl@0: * 5. Products derived from this software may not be called "OpenSSL" sl@0: * nor may "OpenSSL" appear in their names without prior written sl@0: * permission of the OpenSSL Project. sl@0: * sl@0: * 6. Redistributions of any form whatsoever must retain the following sl@0: * acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" sl@0: * sl@0: * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY sl@0: * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE sl@0: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR sl@0: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR sl@0: * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, sl@0: * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT sl@0: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; sl@0: * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) sl@0: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, sl@0: * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) sl@0: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED sl@0: * OF THE POSSIBILITY OF SUCH DAMAGE. sl@0: * ==================================================================== sl@0: * sl@0: * This product includes cryptographic software written by Eric Young sl@0: * (eay@cryptsoft.com). This product includes software written by Tim sl@0: * Hudson (tjh@cryptsoft.com). sl@0: * sl@0: */ sl@0: /* sl@0: © Portions copyright (c) 2006 Nokia Corporation. All rights reserved. sl@0: */ sl@0: sl@0: sl@0: #include sl@0: #include "cryptlib.h" sl@0: #include sl@0: #include sl@0: #if (defined(SYMBIAN) && (defined(__WINSCW__) || defined(__WINS__))) sl@0: #include "libcrypto_wsd_macros.h" sl@0: #include "libcrypto_wsd.h" sl@0: #endif sl@0: sl@0: #ifndef EMULATOR sl@0: static BIT_STRING_BITNAME ns_cert_type_table[] = { sl@0: {0, "SSL Client", "client"}, sl@0: {1, "SSL Server", "server"}, sl@0: {2, "S/MIME", "email"}, sl@0: {3, "Object Signing", "objsign"}, sl@0: {4, "Unused", "reserved"}, sl@0: {5, "SSL CA", "sslCA"}, sl@0: {6, "S/MIME CA", "emailCA"}, sl@0: {7, "Object Signing CA", "objCA"}, sl@0: {-1, NULL, NULL} sl@0: }; sl@0: sl@0: static BIT_STRING_BITNAME key_usage_type_table[] = { sl@0: {0, "Digital Signature", "digitalSignature"}, sl@0: {1, "Non Repudiation", "nonRepudiation"}, sl@0: {2, "Key Encipherment", "keyEncipherment"}, sl@0: {3, "Data Encipherment", "dataEncipherment"}, sl@0: {4, "Key Agreement", "keyAgreement"}, sl@0: {5, "Certificate Sign", "keyCertSign"}, sl@0: {6, "CRL Sign", "cRLSign"}, sl@0: {7, "Encipher Only", "encipherOnly"}, sl@0: {8, "Decipher Only", "decipherOnly"}, sl@0: {-1, NULL, NULL} sl@0: }; sl@0: #else sl@0: static const BIT_STRING_BITNAME ns_cert_type_table[] = { sl@0: {0, "SSL Client", "client"}, sl@0: {1, "SSL Server", "server"}, sl@0: {2, "S/MIME", "email"}, sl@0: {3, "Object Signing", "objsign"}, sl@0: {4, "Unused", "reserved"}, sl@0: {5, "SSL CA", "sslCA"}, sl@0: {6, "S/MIME CA", "emailCA"}, sl@0: {7, "Object Signing CA", "objCA"}, sl@0: {-1, NULL, NULL} sl@0: }; sl@0: sl@0: static const BIT_STRING_BITNAME key_usage_type_table[] = { sl@0: {0, "Digital Signature", "digitalSignature"}, sl@0: {1, "Non Repudiation", "nonRepudiation"}, sl@0: {2, "Key Encipherment", "keyEncipherment"}, sl@0: {3, "Data Encipherment", "dataEncipherment"}, sl@0: {4, "Key Agreement", "keyAgreement"}, sl@0: {5, "Certificate Sign", "keyCertSign"}, sl@0: {6, "CRL Sign", "cRLSign"}, sl@0: {7, "Encipher Only", "encipherOnly"}, sl@0: {8, "Decipher Only", "decipherOnly"}, sl@0: {-1, NULL, NULL} sl@0: }; sl@0: #endif sl@0: sl@0: #ifndef EMULATOR sl@0: X509V3_EXT_METHOD v3_nscert = EXT_BITSTRING(NID_netscape_cert_type,(BIT_STRING_BITNAME*) ns_cert_type_table); sl@0: X509V3_EXT_METHOD v3_key_usage = EXT_BITSTRING(NID_key_usage, (BIT_STRING_BITNAME*)key_usage_type_table); sl@0: #else sl@0: const X509V3_EXT_METHOD v3_nscert = EXT_BITSTRING(NID_netscape_cert_type,(BIT_STRING_BITNAME*) ns_cert_type_table); sl@0: const X509V3_EXT_METHOD v3_key_usage = EXT_BITSTRING(NID_key_usage, (BIT_STRING_BITNAME*)key_usage_type_table); sl@0: #endif sl@0: EXPORT_C STACK_OF(CONF_VALUE) *i2v_ASN1_BIT_STRING(X509V3_EXT_METHOD *method, sl@0: ASN1_BIT_STRING *bits, STACK_OF(CONF_VALUE) *ret) sl@0: { sl@0: BIT_STRING_BITNAME *bnam; sl@0: for(bnam =method->usr_data; bnam->lname; bnam++) { sl@0: if(ASN1_BIT_STRING_get_bit(bits, bnam->bitnum)) sl@0: X509V3_add_value(bnam->lname, NULL, &ret); sl@0: } sl@0: return ret; sl@0: } sl@0: sl@0: EXPORT_C ASN1_BIT_STRING *v2i_ASN1_BIT_STRING(X509V3_EXT_METHOD *method, sl@0: X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval) sl@0: { sl@0: CONF_VALUE *val; sl@0: ASN1_BIT_STRING *bs; sl@0: int i; sl@0: BIT_STRING_BITNAME *bnam; sl@0: if(!(bs = M_ASN1_BIT_STRING_new())) { sl@0: X509V3err(X509V3_F_V2I_ASN1_BIT_STRING,ERR_R_MALLOC_FAILURE); sl@0: return NULL; sl@0: } sl@0: for(i = 0; i < sk_CONF_VALUE_num(nval); i++) { sl@0: val = sk_CONF_VALUE_value(nval, i); sl@0: for(bnam = method->usr_data; bnam->lname; bnam++) { sl@0: if(!strcmp(bnam->sname, val->name) || sl@0: !strcmp(bnam->lname, val->name) ) { sl@0: if(!ASN1_BIT_STRING_set_bit(bs, bnam->bitnum, 1)) { sl@0: X509V3err(X509V3_F_V2I_ASN1_BIT_STRING, sl@0: ERR_R_MALLOC_FAILURE); sl@0: M_ASN1_BIT_STRING_free(bs); sl@0: return NULL; sl@0: } sl@0: break; sl@0: } sl@0: } sl@0: if(!bnam->lname) { sl@0: X509V3err(X509V3_F_V2I_ASN1_BIT_STRING, sl@0: X509V3_R_UNKNOWN_BIT_STRING_ARGUMENT); sl@0: X509V3_conf_err(val); sl@0: M_ASN1_BIT_STRING_free(bs); sl@0: return NULL; sl@0: } sl@0: } sl@0: return bs; sl@0: } sl@0: sl@0: