Line data Source code
1 : /* v3_skey.c */
2 : /*
3 : * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
4 : * 1999.
5 : */
6 : /* ====================================================================
7 : * Copyright (c) 1999 The OpenSSL Project. All rights reserved.
8 : *
9 : * Redistribution and use in source and binary forms, with or without
10 : * modification, are permitted provided that the following conditions
11 : * are met:
12 : *
13 : * 1. Redistributions of source code must retain the above copyright
14 : * notice, this list of conditions and the following disclaimer.
15 : *
16 : * 2. Redistributions in binary form must reproduce the above copyright
17 : * notice, this list of conditions and the following disclaimer in
18 : * the documentation and/or other materials provided with the
19 : * distribution.
20 : *
21 : * 3. All advertising materials mentioning features or use of this
22 : * software must display the following acknowledgment:
23 : * "This product includes software developed by the OpenSSL Project
24 : * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
25 : *
26 : * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
27 : * endorse or promote products derived from this software without
28 : * prior written permission. For written permission, please contact
29 : * licensing@OpenSSL.org.
30 : *
31 : * 5. Products derived from this software may not be called "OpenSSL"
32 : * nor may "OpenSSL" appear in their names without prior written
33 : * permission of the OpenSSL Project.
34 : *
35 : * 6. Redistributions of any form whatsoever must retain the following
36 : * acknowledgment:
37 : * "This product includes software developed by the OpenSSL Project
38 : * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
39 : *
40 : * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
41 : * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42 : * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
43 : * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
44 : * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
45 : * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
46 : * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
47 : * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 : * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
49 : * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
50 : * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
51 : * OF THE POSSIBILITY OF SUCH DAMAGE.
52 : * ====================================================================
53 : *
54 : * This product includes cryptographic software written by Eric Young
55 : * (eay@cryptsoft.com). This product includes software written by Tim
56 : * Hudson (tjh@cryptsoft.com).
57 : *
58 : */
59 :
60 : #include <stdio.h>
61 : #include "cryptlib.h"
62 : #include <openssl/x509v3.h>
63 :
64 : static ASN1_OCTET_STRING *s2i_skey_id(X509V3_EXT_METHOD *method,
65 : X509V3_CTX *ctx, char *str);
66 : const X509V3_EXT_METHOD v3_skey_id = {
67 : NID_subject_key_identifier, 0, ASN1_ITEM_ref(ASN1_OCTET_STRING),
68 : 0, 0, 0, 0,
69 : (X509V3_EXT_I2S)i2s_ASN1_OCTET_STRING,
70 : (X509V3_EXT_S2I)s2i_skey_id,
71 : 0, 0, 0, 0,
72 : NULL
73 : };
74 :
75 0 : char *i2s_ASN1_OCTET_STRING(X509V3_EXT_METHOD *method, ASN1_OCTET_STRING *oct)
76 : {
77 0 : return hex_to_string(oct->data, oct->length);
78 : }
79 :
80 0 : ASN1_OCTET_STRING *s2i_ASN1_OCTET_STRING(X509V3_EXT_METHOD *method,
81 : X509V3_CTX *ctx, char *str)
82 : {
83 : ASN1_OCTET_STRING *oct;
84 : long length;
85 :
86 0 : if (!(oct = M_ASN1_OCTET_STRING_new())) {
87 0 : X509V3err(X509V3_F_S2I_ASN1_OCTET_STRING, ERR_R_MALLOC_FAILURE);
88 0 : return NULL;
89 : }
90 :
91 0 : if (!(oct->data = string_to_hex(str, &length))) {
92 0 : M_ASN1_OCTET_STRING_free(oct);
93 0 : return NULL;
94 : }
95 :
96 0 : oct->length = length;
97 :
98 0 : return oct;
99 :
100 : }
101 :
102 0 : static ASN1_OCTET_STRING *s2i_skey_id(X509V3_EXT_METHOD *method,
103 : X509V3_CTX *ctx, char *str)
104 : {
105 : ASN1_OCTET_STRING *oct;
106 : ASN1_BIT_STRING *pk;
107 : unsigned char pkey_dig[EVP_MAX_MD_SIZE];
108 : unsigned int diglen;
109 :
110 0 : if (strcmp(str, "hash"))
111 0 : return s2i_ASN1_OCTET_STRING(method, ctx, str);
112 :
113 0 : if (!(oct = M_ASN1_OCTET_STRING_new())) {
114 0 : X509V3err(X509V3_F_S2I_SKEY_ID, ERR_R_MALLOC_FAILURE);
115 0 : return NULL;
116 : }
117 :
118 0 : if (ctx && (ctx->flags == CTX_TEST))
119 : return oct;
120 :
121 0 : if (!ctx || (!ctx->subject_req && !ctx->subject_cert)) {
122 0 : X509V3err(X509V3_F_S2I_SKEY_ID, X509V3_R_NO_PUBLIC_KEY);
123 0 : goto err;
124 : }
125 :
126 0 : if (ctx->subject_req)
127 0 : pk = ctx->subject_req->req_info->pubkey->public_key;
128 : else
129 0 : pk = ctx->subject_cert->cert_info->key->public_key;
130 :
131 0 : if (!pk) {
132 0 : X509V3err(X509V3_F_S2I_SKEY_ID, X509V3_R_NO_PUBLIC_KEY);
133 0 : goto err;
134 : }
135 :
136 0 : if (!EVP_Digest
137 0 : (pk->data, pk->length, pkey_dig, &diglen, EVP_sha1(), NULL))
138 : goto err;
139 :
140 0 : if (!M_ASN1_OCTET_STRING_set(oct, pkey_dig, diglen)) {
141 0 : X509V3err(X509V3_F_S2I_SKEY_ID, ERR_R_MALLOC_FAILURE);
142 0 : goto err;
143 : }
144 :
145 : return oct;
146 :
147 : err:
148 0 : M_ASN1_OCTET_STRING_free(oct);
149 0 : return NULL;
150 : }
|