kris
/
boringssl
1
0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Toiminta
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1387 Commitit
12 Branchit
38 MiB
 
 
 
 
 
 
Puu: cff0b90cbb
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'cff0b90cbb'
${ noResults }
boringssl/crypto/x509v3/pcy_data.c

138 rivejä
4.3 KiB
Raaka Blame Historia 

  1. /* pcy_data.c */

  2. /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL

  3.  * project 2004.

  4.  */

  5. /* ====================================================================

  6.  * Copyright (c) 2004 The OpenSSL Project.  All rights reserved.

  7.  *

  8.  * Redistribution and use in source and binary forms, with or without

  9.  * modification, are permitted provided that the following conditions

  10.  * are met:

  11.  *

  12.  * 1. Redistributions of source code must retain the above copyright

  13.  *    notice, this list of conditions and the following disclaimer. 

  14.  *

  15.  * 2. Redistributions in binary form must reproduce the above copyright

  16.  *    notice, this list of conditions and the following disclaimer in

  17.  *    the documentation and/or other materials provided with the

  18.  *    distribution.

  19.  *

  20.  * 3. All advertising materials mentioning features or use of this

  21.  *    software must display the following acknowledgment:

  22.  *    "This product includes software developed by the OpenSSL Project

  23.  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"

  24.  *

  25.  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to

  26.  *    endorse or promote products derived from this software without

  27.  *    prior written permission. For written permission, please contact

  28.  *    licensing@OpenSSL.org.

  29.  *

  30.  * 5. Products derived from this software may not be called "OpenSSL"

  31.  *    nor may "OpenSSL" appear in their names without prior written

  32.  *    permission of the OpenSSL Project.

  33.  *

  34.  * 6. Redistributions of any form whatsoever must retain the following

  35.  *    acknowledgment:

  36.  *    "This product includes software developed by the OpenSSL Project

  37.  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"

  38.  *

  39.  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY

  40.  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  41.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR

  42.  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR

  43.  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  44.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

  45.  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  46.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  47.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

  48.  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

  49.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

  50.  * OF THE POSSIBILITY OF SUCH DAMAGE.

  51.  * ====================================================================

  52.  *

  53.  * This product includes cryptographic software written by Eric Young

  54.  * (eay@cryptsoft.com).  This product includes software written by Tim

  55.  * Hudson (tjh@cryptsoft.com).

  56.  *

  57.  */

  58. 

  59. #include <openssl/mem.h>

  60. #include <openssl/obj.h>

  61. #include <openssl/x509.h>

  62. #include <openssl/x509v3.h>

  63. 

  64. #include "pcy_int.h"

  65. 

  66. 

  67. /* Policy Node routines */

  68. 

  69. void policy_data_free(X509_POLICY_DATA *data)

  70. 	{

  71. 	ASN1_OBJECT_free(data->valid_policy);

  72. 	/* Don't free qualifiers if shared */

  73. 	if (!(data->flags & POLICY_DATA_FLAG_SHARED_QUALIFIERS))

  74. 		sk_POLICYQUALINFO_pop_free(data->qualifier_set,

  75. 					POLICYQUALINFO_free);

  76. 	sk_ASN1_OBJECT_pop_free(data->expected_policy_set, ASN1_OBJECT_free);

  77. 	OPENSSL_free(data);

  78. 	}

  79. 

  80. /* Create a data based on an existing policy. If 'id' is NULL use the

  81.  * oid in the policy, otherwise use 'id'. This behaviour covers the two

  82.  * types of data in RFC3280: data with from a CertificatePolcies extension

  83.  * and additional data with just the qualifiers of anyPolicy and ID from

  84.  * another source.

  85.  */

  86. 

  87. X509_POLICY_DATA *policy_data_new(POLICYINFO *policy,

  88. 					const ASN1_OBJECT *cid, int crit)

  89. 	{

  90. 	X509_POLICY_DATA *ret;

  91. 	ASN1_OBJECT *id;

  92. 	if (!policy && !cid)

  93. 		return NULL;

  94. 	if (cid)

  95. 		{

  96. 		id = OBJ_dup(cid);

  97. 		if (!id)

  98. 			return NULL;

  99. 		}

  100. 	else

  101. 		id = NULL;

  102. 	ret = OPENSSL_malloc(sizeof(X509_POLICY_DATA));

  103. 	if (!ret)

  104. 		return NULL;

  105. 	ret->expected_policy_set = sk_ASN1_OBJECT_new_null();

  106. 	if (!ret->expected_policy_set)

  107. 		{

  108. 		OPENSSL_free(ret);

  109. 		if (id)

  110. 			ASN1_OBJECT_free(id);

  111. 		return NULL;

  112. 		}

  113. 

  114. 	if (crit)

  115. 		ret->flags = POLICY_DATA_FLAG_CRITICAL;

  116. 	else

  117. 		ret->flags = 0;

  118. 

  119. 	if (id)

  120. 		ret->valid_policy = id;

  121. 	else

  122. 		{

  123. 		ret->valid_policy = policy->policyid;

  124. 		policy->policyid = NULL;

  125. 		}

  126. 

  127. 	if (policy)

  128. 		{

  129. 		ret->qualifier_set = policy->qualifiers;

  130. 		policy->qualifiers = NULL;

  131. 		}

  132. 	else

  133. 		ret->qualifier_set = NULL;

  134. 

  135. 	return ret;

  136. 	}