kris
/
boringssl
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2555 Commits
12 Branches
38 MiB
 
 
 
 
 
 
Tree: f01fb5dc0e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f01fb5dc0e'
${ noResults }
boringssl/crypto/x509/x509.c

158 lines
5.3 KiB
Raw Blame History 

  1. /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)

  2.  * All rights reserved.

  3.  *

  4.  * This package is an SSL implementation written

  5.  * by Eric Young (eay@cryptsoft.com).

  6.  * The implementation was written so as to conform with Netscapes SSL.

  7.  *

  8.  * This library is free for commercial and non-commercial use as long as

  9.  * the following conditions are aheared to.  The following conditions

  10.  * apply to all code found in this distribution, be it the RC4, RSA,

  11.  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation

  12.  * included with this distribution is covered by the same copyright terms

  13.  * except that the holder is Tim Hudson (tjh@cryptsoft.com).

  14.  *

  15.  * Copyright remains Eric Young's, and as such any Copyright notices in

  16.  * the code are not to be removed.

  17.  * If this package is used in a product, Eric Young should be given attribution

  18.  * as the author of the parts of the library used.

  19.  * This can be in the form of a textual message at program startup or

  20.  * in documentation (online or textual) provided with the package.

  21.  *

  22.  * Redistribution and use in source and binary forms, with or without

  23.  * modification, are permitted provided that the following conditions

  24.  * are met:

  25.  * 1. Redistributions of source code must retain the copyright

  26.  *    notice, this list of conditions and the following disclaimer.

  27.  * 2. Redistributions in binary form must reproduce the above copyright

  28.  *    notice, this list of conditions and the following disclaimer in the

  29.  *    documentation and/or other materials provided with the distribution.

  30.  * 3. All advertising materials mentioning features or use of this software

  31.  *    must display the following acknowledgement:

  32.  *    "This product includes cryptographic software written by

  33.  *     Eric Young (eay@cryptsoft.com)"

  34.  *    The word 'cryptographic' can be left out if the rouines from the library

  35.  *    being used are not cryptographic related :-).

  36.  * 4. If you include any Windows specific code (or a derivative thereof) from

  37.  *    the apps directory (application code) you must include an acknowledgement:

  38.  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"

  39.  *

  40.  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND

  41.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  42.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  43.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

  44.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

  45.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

  46.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  47.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

  48.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

  49.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  50.  * SUCH DAMAGE.

  51.  *

  52.  * The licence and distribution terms for any publically available version or

  53.  * derivative of this code cannot be changed.  i.e. this code cannot simply be

  54.  * copied and put under another distribution licence

  55.  * [including the GNU Public Licence.] */

  56. 

  57. #include <openssl/x509.h>

  58. 

  59. #include <openssl/bio.h>

  60. #include <openssl/err.h>

  61. #include <openssl/mem.h>

  62. 

  63. 

  64. /* |X509_R_UNSUPPORTED_ALGORITHM| is no longer emitted, but continue to define

  65.  * it to avoid downstream churn. */

  66. OPENSSL_DECLARE_ERROR_REASON(X509, UNSUPPORTED_ALGORITHM)

  67. 

  68. int PKCS8_pkey_set0(PKCS8_PRIV_KEY_INFO *priv, ASN1_OBJECT *aobj, int version,

  69.                     int ptype, void *pval, uint8_t *penc, int penclen) {

  70.   uint8_t **ppenc = NULL;

  71.   if (version >= 0) {

  72.     if (!ASN1_INTEGER_set(priv->version, version)) {

  73.       return 0;

  74.     }

  75.   }

  76. 

  77.   if (penc) {

  78.     int pmtype;

  79.     ASN1_OCTET_STRING *oct;

  80. 

  81.     oct = ASN1_OCTET_STRING_new();

  82.     if (!oct) {

  83.       return 0;

  84.     }

  85.     oct->data = penc;

  86.     ppenc = &oct->data;

  87.     oct->length = penclen;

  88.     if (priv->broken == PKCS8_NO_OCTET) {

  89.       pmtype = V_ASN1_SEQUENCE;

  90.     } else {

  91.       pmtype = V_ASN1_OCTET_STRING;

  92.     }

  93.     ASN1_TYPE_set(priv->pkey, pmtype, oct);

  94.   }

  95. 

  96.   if (!X509_ALGOR_set0(priv->pkeyalg, aobj, ptype, pval)) {

  97.     /* If call fails do not swallow 'enc' */

  98.     if (ppenc) {

  99.       *ppenc = NULL;

  100.     }

  101.     return 0;

  102.   }

  103. 

  104.   return 1;

  105. }

  106. 

  107. int PKCS8_pkey_get0(ASN1_OBJECT **ppkalg, const uint8_t **pk, int *ppklen,

  108.                     X509_ALGOR **pa, PKCS8_PRIV_KEY_INFO *p8) {

  109.   if (ppkalg) {

  110.     *ppkalg = p8->pkeyalg->algorithm;

  111.   }

  112. 

  113.   if (p8->pkey->type == V_ASN1_OCTET_STRING) {

  114.     p8->broken = PKCS8_OK;

  115.     if (pk) {

  116.       *pk = p8->pkey->value.octet_string->data;

  117.       *ppklen = p8->pkey->value.octet_string->length;

  118.     }

  119.   } else if (p8->pkey->type == V_ASN1_SEQUENCE) {

  120.     p8->broken = PKCS8_NO_OCTET;

  121.     if (pk) {

  122.       *pk = p8->pkey->value.sequence->data;

  123.       *ppklen = p8->pkey->value.sequence->length;

  124.     }

  125.   } else {

  126.     return 0;

  127.   }

  128. 

  129.   if (pa) {

  130.     *pa = p8->pkeyalg;

  131.   }

  132.   return 1;

  133. }

  134. 

  135. int X509_signature_dump(BIO *bp, const ASN1_STRING *sig, int indent) {

  136.   const uint8_t *s;

  137.   int i, n;

  138. 

  139.   n = sig->length;

  140.   s = sig->data;

  141.   for (i = 0; i < n; i++) {

  142.     if ((i % 18) == 0) {

  143.       if (BIO_write(bp, "\n", 1) <= 0 ||

  144.           BIO_indent(bp, indent, indent) <= 0) {

  145.         return 0;

  146.       }

  147.     }

  148.     if (BIO_printf(bp, "%02x%s", s[i], ((i + 1) == n) ? "" : ":") <= 0) {

  149.       return 0;

  150.     }

  151.   }

  152.   if (BIO_write(bp, "\n", 1) != 1) {

  153.     return 0;

  154.   }

  155. 

  156.   return 1;

  157. }