Fix escaping when using the -subj option of "openssl req", document
[openssl.git] / apps / ca.c
1 /* apps/ca.c */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3  * All rights reserved.
4  *
5  * This package is an SSL implementation written
6  * by Eric Young (eay@cryptsoft.com).
7  * The implementation was written so as to conform with Netscapes SSL.
8  * 
9  * This library is free for commercial and non-commercial use as long as
10  * the following conditions are aheared to.  The following conditions
11  * apply to all code found in this distribution, be it the RC4, RSA,
12  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
13  * included with this distribution is covered by the same copyright terms
14  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15  * 
16  * Copyright remains Eric Young's, and as such any Copyright notices in
17  * the code are not to be removed.
18  * If this package is used in a product, Eric Young should be given attribution
19  * as the author of the parts of the library used.
20  * This can be in the form of a textual message at program startup or
21  * in documentation (online or textual) provided with the package.
22  * 
23  * Redistribution and use in source and binary forms, with or without
24  * modification, are permitted provided that the following conditions
25  * are met:
26  * 1. Redistributions of source code must retain the copyright
27  *    notice, this list of conditions and the following disclaimer.
28  * 2. Redistributions in binary form must reproduce the above copyright
29  *    notice, this list of conditions and the following disclaimer in the
30  *    documentation and/or other materials provided with the distribution.
31  * 3. All advertising materials mentioning features or use of this software
32  *    must display the following acknowledgement:
33  *    "This product includes cryptographic software written by
34  *     Eric Young (eay@cryptsoft.com)"
35  *    The word 'cryptographic' can be left out if the rouines from the library
36  *    being used are not cryptographic related :-).
37  * 4. If you include any Windows specific code (or a derivative thereof) from 
38  *    the apps directory (application code) you must include an acknowledgement:
39  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40  * 
41  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51  * SUCH DAMAGE.
52  * 
53  * The licence and distribution terms for any publically available version or
54  * derivative of this code cannot be changed.  i.e. this code cannot simply be
55  * copied and put under another distribution licence
56  * [including the GNU Public Licence.]
57  */
58
59 /* The PPKI stuff has been donated by Jeff Barber <jeffb@issl.atl.hp.com> */
60
61 #include <stdio.h>
62 #include <stdlib.h>
63 #include <string.h>
64 #include <ctype.h>
65 #include <sys/types.h>
66 #include <sys/stat.h>
67 #include "apps.h"
68 #include <openssl/conf.h>
69 #include <openssl/bio.h>
70 #include <openssl/err.h>
71 #include <openssl/bn.h>
72 #include <openssl/txt_db.h>
73 #include <openssl/evp.h>
74 #include <openssl/x509.h>
75 #include <openssl/x509v3.h>
76 #include <openssl/objects.h>
77 #include <openssl/ocsp.h>
78 #include <openssl/pem.h>
79
80 #ifdef OPENSSL_SYS_WINDOWS
81 #define strcasecmp _stricmp
82 #else
83 #include <strings.h>
84 #endif
85
86 #ifndef W_OK
87 #  ifdef OPENSSL_SYS_VMS
88 #    if defined(__DECC)
89 #      include <unistd.h>
90 #    else
91 #      include <unixlib.h>
92 #    endif
93 #  elif !defined(OPENSSL_SYS_VXWORKS)
94 #    include <sys/file.h>
95 #  endif
96 #endif
97
98 #ifndef W_OK
99 #  define F_OK 0
100 #  define X_OK 1
101 #  define W_OK 2
102 #  define R_OK 4
103 #endif
104
105 #undef PROG
106 #define PROG ca_main
107
108 #define BASE_SECTION    "ca"
109 #define CONFIG_FILE "openssl.cnf"
110
111 #define ENV_DEFAULT_CA          "default_ca"
112
113 #define ENV_DIR                 "dir"
114 #define ENV_CERTS               "certs"
115 #define ENV_CRL_DIR             "crl_dir"
116 #define ENV_CA_DB               "CA_DB"
117 #define ENV_NEW_CERTS_DIR       "new_certs_dir"
118 #define ENV_CERTIFICATE         "certificate"
119 #define ENV_SERIAL              "serial"
120 #define ENV_CRL                 "crl"
121 #define ENV_PRIVATE_KEY         "private_key"
122 #define ENV_RANDFILE            "RANDFILE"
123 #define ENV_DEFAULT_DAYS        "default_days"
124 #define ENV_DEFAULT_STARTDATE   "default_startdate"
125 #define ENV_DEFAULT_ENDDATE     "default_enddate"
126 #define ENV_DEFAULT_CRL_DAYS    "default_crl_days"
127 #define ENV_DEFAULT_CRL_HOURS   "default_crl_hours"
128 #define ENV_DEFAULT_MD          "default_md"
129 #define ENV_DEFAULT_EMAIL_DN    "email_in_dn"
130 #define ENV_PRESERVE            "preserve"
131 #define ENV_POLICY              "policy"
132 #define ENV_EXTENSIONS          "x509_extensions"
133 #define ENV_CRLEXT              "crl_extensions"
134 #define ENV_MSIE_HACK           "msie_hack"
135 #define ENV_NAMEOPT             "name_opt"
136 #define ENV_CERTOPT             "cert_opt"
137 #define ENV_EXTCOPY             "copy_extensions"
138
139 #define ENV_DATABASE            "database"
140
141 #define DB_type         0
142 #define DB_exp_date     1
143 #define DB_rev_date     2
144 #define DB_serial       3       /* index - unique */
145 #define DB_file         4       
146 #define DB_name         5       /* index - unique for active */
147 #define DB_NUMBER       6
148
149 #define DB_TYPE_REV     'R'
150 #define DB_TYPE_EXP     'E'
151 #define DB_TYPE_VAL     'V'
152
153 /* Additional revocation information types */
154
155 #define REV_NONE                0       /* No addditional information */
156 #define REV_CRL_REASON          1       /* Value is CRL reason code */
157 #define REV_HOLD                2       /* Value is hold instruction */
158 #define REV_KEY_COMPROMISE      3       /* Value is cert key compromise time */
159 #define REV_CA_COMPROMISE       4       /* Value is CA key compromise time */
160
161 static char *ca_usage[]={
162 "usage: ca args\n",
163 "\n",
164 " -verbose        - Talk alot while doing things\n",
165 " -config file    - A config file\n",
166 " -name arg       - The particular CA definition to use\n",
167 " -gencrl         - Generate a new CRL\n",
168 " -crldays days   - Days is when the next CRL is due\n",
169 " -crlhours hours - Hours is when the next CRL is due\n",
170 " -startdate YYMMDDHHMMSSZ  - certificate validity notBefore\n",
171 " -enddate YYMMDDHHMMSSZ    - certificate validity notAfter (overrides -days)\n",
172 " -days arg       - number of days to certify the certificate for\n",
173 " -md arg         - md to use, one of md2, md5, sha or sha1\n",
174 " -policy arg     - The CA 'policy' to support\n",
175 " -keyfile arg    - private key file\n",
176 " -keyform arg    - private key file format (PEM or ENGINE)\n",
177 " -key arg        - key to decode the private key if it is encrypted\n",
178 " -cert file      - The CA certificate\n",
179 " -in file        - The input PEM encoded certificate request(s)\n",
180 " -out file       - Where to put the output file(s)\n",
181 " -outdir dir     - Where to put output certificates\n",
182 " -infiles ....   - The last argument, requests to process\n",
183 " -spkac file     - File contains DN and signed public key and challenge\n",
184 " -ss_cert file   - File contains a self signed cert to sign\n",
185 " -preserveDN     - Don't re-order the DN\n",
186 " -noemailDN      - Don't add the EMAIL field into certificate' subject\n",
187 " -batch          - Don't ask questions\n",
188 " -msie_hack      - msie modifications to handle all those universal strings\n",
189 " -revoke file    - Revoke a certificate (given in file)\n",
190 " -subj arg       - Use arg instead of request's subject\n",
191 " -extensions ..  - Extension section (override value in config file)\n",
192 " -extfile file   - Configuration file with X509v3 extentions to add\n",
193 " -crlexts ..     - CRL extension section (override value in config file)\n",
194 " -engine e       - use engine e, possibly a hardware device.\n",
195 " -status serial  - Shows certificate status given the serial number\n",
196 " -updatedb       - Updates db for expired certificates\n",
197 NULL
198 };
199
200 #ifdef EFENCE
201 extern int EF_PROTECT_FREE;
202 extern int EF_PROTECT_BELOW;
203 extern int EF_ALIGNMENT;
204 #endif
205
206 static void lookup_fail(char *name,char *tag);
207 static unsigned long index_serial_hash(const char **a);
208 static int index_serial_cmp(const char **a, const char **b);
209 static unsigned long index_name_hash(const char **a);
210 static int index_name_qual(char **a);
211 static int index_name_cmp(const char **a,const char **b);
212 static BIGNUM *load_serial(char *serialfile);
213 static int save_serial(char *serialfile, BIGNUM *serial);
214 static int certify(X509 **xret, char *infile,EVP_PKEY *pkey,X509 *x509,
215                    const EVP_MD *dgst,STACK_OF(CONF_VALUE) *policy,TXT_DB *db,
216                    BIGNUM *serial, char *subj, int email_dn, char *startdate,
217                    char *enddate, long days, int batch, char *ext_sect, CONF *conf,
218                    int verbose, unsigned long certopt, unsigned long nameopt,
219                    int default_op, int ext_copy);
220 static int certify_cert(X509 **xret, char *infile,EVP_PKEY *pkey,X509 *x509,
221                         const EVP_MD *dgst,STACK_OF(CONF_VALUE) *policy,
222                         TXT_DB *db, BIGNUM *serial, char *subj, int email_dn,
223                         char *startdate, char *enddate, long days, int batch,
224                         char *ext_sect, CONF *conf,int verbose, unsigned long certopt,
225                         unsigned long nameopt, int default_op, int ext_copy,
226                         ENGINE *e);
227 static int certify_spkac(X509 **xret, char *infile,EVP_PKEY *pkey,X509 *x509,
228                          const EVP_MD *dgst,STACK_OF(CONF_VALUE) *policy,
229                          TXT_DB *db, BIGNUM *serial,char *subj, int email_dn,
230                          char *startdate, char *enddate, long days, char *ext_sect,
231                          CONF *conf, int verbose, unsigned long certopt, 
232                          unsigned long nameopt, int default_op, int ext_copy);
233 static int fix_data(int nid, int *type);
234 static void write_new_certificate(BIO *bp, X509 *x, int output_der, int notext);
235 static int do_body(X509 **xret, EVP_PKEY *pkey, X509 *x509, const EVP_MD *dgst,
236         STACK_OF(CONF_VALUE) *policy, TXT_DB *db, BIGNUM *serial,char *subj,
237         int email_dn, char *startdate, char *enddate, long days, int batch,
238         int verbose, X509_REQ *req, char *ext_sect, CONF *conf,
239         unsigned long certopt, unsigned long nameopt, int default_op,
240         int ext_copy);
241 static X509_NAME *do_subject(char *subject);
242 static int do_revoke(X509 *x509, TXT_DB *db, int ext, char *extval);
243 static int get_certificate_status(const char *ser_status, TXT_DB *db);
244 static int do_updatedb(TXT_DB *db);
245 static int check_time_format(char *str);
246 char *make_revocation_str(int rev_type, char *rev_arg);
247 int make_revoked(X509_REVOKED *rev, char *str);
248 int old_entry_print(BIO *bp, ASN1_OBJECT *obj, ASN1_STRING *str);
249 static CONF *conf=NULL;
250 static CONF *extconf=NULL;
251 static char *section=NULL;
252
253 static int preserve=0;
254 static int msie_hack=0;
255
256 static IMPLEMENT_LHASH_HASH_FN(index_serial_hash,const char **)
257 static IMPLEMENT_LHASH_COMP_FN(index_serial_cmp,const char **)
258 static IMPLEMENT_LHASH_HASH_FN(index_name_hash,const char **)
259 static IMPLEMENT_LHASH_COMP_FN(index_name_cmp,const char **)
260
261
262 int MAIN(int, char **);
263
264 int MAIN(int argc, char **argv)
265         {
266         ENGINE *e = NULL;
267         char *key=NULL,*passargin=NULL;
268         int free_key = 0;
269         int total=0;
270         int total_done=0;
271         int badops=0;
272         int ret=1;
273         int email_dn=1;
274         int req=0;
275         int verbose=0;
276         int gencrl=0;
277         int dorevoke=0;
278         int doupdatedb=0;
279         long crldays=0;
280         long crlhours=0;
281         long errorline= -1;
282         char *configfile=NULL;
283         char *md=NULL;
284         char *policy=NULL;
285         char *keyfile=NULL;
286         char *certfile=NULL;
287         int keyform=FORMAT_PEM;
288         char *infile=NULL;
289         char *spkac_file=NULL;
290         char *ss_cert_file=NULL;
291         char *ser_status=NULL;
292         EVP_PKEY *pkey=NULL;
293         int output_der = 0;
294         char *outfile=NULL;
295         char *outdir=NULL;
296         char *serialfile=NULL;
297         char *extensions=NULL;
298         char *extfile=NULL;
299         char *subj=NULL;
300         char *tmp_email_dn=NULL;
301         char *crl_ext=NULL;
302         int rev_type = REV_NONE;
303         char *rev_arg = NULL;
304         BIGNUM *serial=NULL;
305         char *startdate=NULL;
306         char *enddate=NULL;
307         long days=0;
308         int batch=0;
309         int notext=0;
310         unsigned long nameopt = 0, certopt = 0;
311         int default_op = 1;
312         int ext_copy = EXT_COPY_NONE;
313         X509 *x509=NULL;
314         X509 *x=NULL;
315         BIO *in=NULL,*out=NULL,*Sout=NULL,*Cout=NULL;
316         char *dbfile=NULL;
317         TXT_DB *db=NULL;
318         X509_CRL *crl=NULL;
319         X509_REVOKED *r=NULL;
320         ASN1_TIME *tmptm;
321         ASN1_INTEGER *tmpser;
322         char **pp,*p,*f;
323         int i,j;
324         long l;
325         const EVP_MD *dgst=NULL;
326         STACK_OF(CONF_VALUE) *attribs=NULL;
327         STACK_OF(X509) *cert_sk=NULL;
328 #undef BSIZE
329 #define BSIZE 256
330         MS_STATIC char buf[3][BSIZE];
331         char *randfile=NULL;
332         char *engine = NULL;
333
334 #ifdef EFENCE
335 EF_PROTECT_FREE=1;
336 EF_PROTECT_BELOW=1;
337 EF_ALIGNMENT=0;
338 #endif
339
340         apps_startup();
341
342         conf = NULL;
343         key = NULL;
344         section = NULL;
345
346         preserve=0;
347         msie_hack=0;
348         if (bio_err == NULL)
349                 if ((bio_err=BIO_new(BIO_s_file())) != NULL)
350                         BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT);
351
352         argc--;
353         argv++;
354         while (argc >= 1)
355                 {
356                 if      (strcmp(*argv,"-verbose") == 0)
357                         verbose=1;
358                 else if (strcmp(*argv,"-config") == 0)
359                         {
360                         if (--argc < 1) goto bad;
361                         configfile= *(++argv);
362                         }
363                 else if (strcmp(*argv,"-name") == 0)
364                         {
365                         if (--argc < 1) goto bad;
366                         section= *(++argv);
367                         }
368                 else if (strcmp(*argv,"-subj") == 0)
369                         {
370                         if (--argc < 1) goto bad;
371                         subj= *(++argv);
372                         /* preserve=1; */
373                         }
374                 else if (strcmp(*argv,"-startdate") == 0)
375                         {
376                         if (--argc < 1) goto bad;
377                         startdate= *(++argv);
378                         }
379                 else if (strcmp(*argv,"-enddate") == 0)
380                         {
381                         if (--argc < 1) goto bad;
382                         enddate= *(++argv);
383                         }
384                 else if (strcmp(*argv,"-days") == 0)
385                         {
386                         if (--argc < 1) goto bad;
387                         days=atoi(*(++argv));
388                         }
389                 else if (strcmp(*argv,"-md") == 0)
390                         {
391                         if (--argc < 1) goto bad;
392                         md= *(++argv);
393                         }
394                 else if (strcmp(*argv,"-policy") == 0)
395                         {
396                         if (--argc < 1) goto bad;
397                         policy= *(++argv);
398                         }
399                 else if (strcmp(*argv,"-keyfile") == 0)
400                         {
401                         if (--argc < 1) goto bad;
402                         keyfile= *(++argv);
403                         }
404                 else if (strcmp(*argv,"-keyform") == 0)
405                         {
406                         if (--argc < 1) goto bad;
407                         keyform=str2fmt(*(++argv));
408                         }
409                 else if (strcmp(*argv,"-passin") == 0)
410                         {
411                         if (--argc < 1) goto bad;
412                         passargin= *(++argv);
413                         }
414                 else if (strcmp(*argv,"-key") == 0)
415                         {
416                         if (--argc < 1) goto bad;
417                         key= *(++argv);
418                         }
419                 else if (strcmp(*argv,"-cert") == 0)
420                         {
421                         if (--argc < 1) goto bad;
422                         certfile= *(++argv);
423                         }
424                 else if (strcmp(*argv,"-in") == 0)
425                         {
426                         if (--argc < 1) goto bad;
427                         infile= *(++argv);
428                         req=1;
429                         }
430                 else if (strcmp(*argv,"-out") == 0)
431                         {
432                         if (--argc < 1) goto bad;
433                         outfile= *(++argv);
434                         }
435                 else if (strcmp(*argv,"-outdir") == 0)
436                         {
437                         if (--argc < 1) goto bad;
438                         outdir= *(++argv);
439                         }
440                 else if (strcmp(*argv,"-notext") == 0)
441                         notext=1;
442                 else if (strcmp(*argv,"-batch") == 0)
443                         batch=1;
444                 else if (strcmp(*argv,"-preserveDN") == 0)
445                         preserve=1;
446                 else if (strcmp(*argv,"-noemailDN") == 0)
447                         email_dn=0;
448                 else if (strcmp(*argv,"-gencrl") == 0)
449                         gencrl=1;
450                 else if (strcmp(*argv,"-msie_hack") == 0)
451                         msie_hack=1;
452                 else if (strcmp(*argv,"-crldays") == 0)
453                         {
454                         if (--argc < 1) goto bad;
455                         crldays= atol(*(++argv));
456                         }
457                 else if (strcmp(*argv,"-crlhours") == 0)
458                         {
459                         if (--argc < 1) goto bad;
460                         crlhours= atol(*(++argv));
461                         }
462                 else if (strcmp(*argv,"-infiles") == 0)
463                         {
464                         argc--;
465                         argv++;
466                         req=1;
467                         break;
468                         }
469                 else if (strcmp(*argv, "-ss_cert") == 0)
470                         {
471                         if (--argc < 1) goto bad;
472                         ss_cert_file = *(++argv);
473                         req=1;
474                         }
475                 else if (strcmp(*argv, "-spkac") == 0)
476                         {
477                         if (--argc < 1) goto bad;
478                         spkac_file = *(++argv);
479                         req=1;
480                         }
481                 else if (strcmp(*argv,"-revoke") == 0)
482                         {
483                         if (--argc < 1) goto bad;
484                         infile= *(++argv);
485                         dorevoke=1;
486                         }
487                 else if (strcmp(*argv,"-extensions") == 0)
488                         {
489                         if (--argc < 1) goto bad;
490                         extensions= *(++argv);
491                         }
492                 else if (strcmp(*argv,"-extfile") == 0)
493                         {
494                         if (--argc < 1) goto bad;
495                         extfile= *(++argv);
496                         }
497                 else if (strcmp(*argv,"-status") == 0)
498                         {
499                         if (--argc < 1) goto bad;
500                         ser_status= *(++argv);
501                         }
502                 else if (strcmp(*argv,"-updatedb") == 0)
503                         {
504                         doupdatedb=1;
505                         }
506                 else if (strcmp(*argv,"-crlexts") == 0)
507                         {
508                         if (--argc < 1) goto bad;
509                         crl_ext= *(++argv);
510                         }
511                 else if (strcmp(*argv,"-crl_reason") == 0)
512                         {
513                         if (--argc < 1) goto bad;
514                         rev_arg = *(++argv);
515                         rev_type = REV_CRL_REASON;
516                         }
517                 else if (strcmp(*argv,"-crl_hold") == 0)
518                         {
519                         if (--argc < 1) goto bad;
520                         rev_arg = *(++argv);
521                         rev_type = REV_HOLD;
522                         }
523                 else if (strcmp(*argv,"-crl_compromise") == 0)
524                         {
525                         if (--argc < 1) goto bad;
526                         rev_arg = *(++argv);
527                         rev_type = REV_KEY_COMPROMISE;
528                         }
529                 else if (strcmp(*argv,"-crl_CA_compromise") == 0)
530                         {
531                         if (--argc < 1) goto bad;
532                         rev_arg = *(++argv);
533                         rev_type = REV_CA_COMPROMISE;
534                         }
535                 else if (strcmp(*argv,"-engine") == 0)
536                         {
537                         if (--argc < 1) goto bad;
538                         engine= *(++argv);
539                         }
540                 else
541                         {
542 bad:
543                         BIO_printf(bio_err,"unknown option %s\n",*argv);
544                         badops=1;
545                         break;
546                         }
547                 argc--;
548                 argv++;
549                 }
550
551         if (badops)
552                 {
553                 for (pp=ca_usage; (*pp != NULL); pp++)
554                         BIO_printf(bio_err,"%s",*pp);
555                 goto err;
556                 }
557
558         ERR_load_crypto_strings();
559
560         e = setup_engine(bio_err, engine, 0);
561
562         /*****************************************************************/
563         if (configfile == NULL) configfile = getenv("OPENSSL_CONF");
564         if (configfile == NULL) configfile = getenv("SSLEAY_CONF");
565         if (configfile == NULL)
566                 {
567                 /* We will just use 'buf[0]' as a temporary buffer.  */
568 #ifdef OPENSSL_SYS_VMS
569                 strncpy(buf[0],X509_get_default_cert_area(),
570                         sizeof(buf[0])-1-sizeof(CONFIG_FILE));
571 #else
572                 strncpy(buf[0],X509_get_default_cert_area(),
573                         sizeof(buf[0])-2-sizeof(CONFIG_FILE));
574                 buf[0][sizeof(buf[0])-2-sizeof(CONFIG_FILE)]='\0';
575                 strcat(buf[0],"/");
576 #endif
577                 strcat(buf[0],CONFIG_FILE);
578                 configfile=buf[0];
579                 }
580
581         BIO_printf(bio_err,"Using configuration from %s\n",configfile);
582         conf = NCONF_new(NULL);
583         if (NCONF_load(conf,configfile,&errorline) <= 0)
584                 {
585                 if (errorline <= 0)
586                         BIO_printf(bio_err,"error loading the config file '%s'\n",
587                                 configfile);
588                 else
589                         BIO_printf(bio_err,"error on line %ld of config file '%s'\n"
590                                 ,errorline,configfile);
591                 goto err;
592                 }
593
594         if (!load_config(bio_err, conf))
595                 goto err;
596
597         /* Lets get the config section we are using */
598         if (section == NULL)
599                 {
600                 section=NCONF_get_string(conf,BASE_SECTION,ENV_DEFAULT_CA);
601                 if (section == NULL)
602                         {
603                         lookup_fail(BASE_SECTION,ENV_DEFAULT_CA);
604                         goto err;
605                         }
606                 }
607
608         if (conf != NULL)
609                 {
610                 p=NCONF_get_string(conf,NULL,"oid_file");
611                 if (p == NULL)
612                         ERR_clear_error();
613                 if (p != NULL)
614                         {
615                         BIO *oid_bio;
616
617                         oid_bio=BIO_new_file(p,"r");
618                         if (oid_bio == NULL) 
619                                 {
620                                 /*
621                                 BIO_printf(bio_err,"problems opening %s for extra oid's\n",p);
622                                 ERR_print_errors(bio_err);
623                                 */
624                                 ERR_clear_error();
625                                 }
626                         else
627                                 {
628                                 OBJ_create_objects(oid_bio);
629                                 BIO_free(oid_bio);
630                                 }
631                         }
632                 if (!add_oid_section(bio_err,conf)) 
633                         {
634                         ERR_print_errors(bio_err);
635                         goto err;
636                         }
637                 }
638
639         randfile = NCONF_get_string(conf, BASE_SECTION, "RANDFILE");
640         if (randfile == NULL)
641                 ERR_clear_error();
642         app_RAND_load_file(randfile, bio_err, 0);
643         
644         in=BIO_new(BIO_s_file());
645         out=BIO_new(BIO_s_file());
646         Sout=BIO_new(BIO_s_file());
647         Cout=BIO_new(BIO_s_file());
648         if ((in == NULL) || (out == NULL) || (Sout == NULL) || (Cout == NULL))
649                 {
650                 ERR_print_errors(bio_err);
651                 goto err;
652                 }
653
654         /*****************************************************************/
655         /* report status of cert with serial number given on command line */
656         if (ser_status)
657         {
658                 if ((dbfile=NCONF_get_string(conf,section,ENV_DATABASE)) == NULL)
659                         {
660                         lookup_fail(section,ENV_DATABASE);
661                         goto err;
662                         }
663                 if (BIO_read_filename(in,dbfile) <= 0)
664                         {
665                         perror(dbfile);
666                         BIO_printf(bio_err,"unable to open '%s'\n",dbfile);
667                         goto err;
668                         }
669                 db=TXT_DB_read(in,DB_NUMBER);
670                 if (db == NULL) goto err;
671
672                 if (!make_serial_index(db))
673                         goto err;
674
675                 if (get_certificate_status(ser_status,db) != 1)
676                         BIO_printf(bio_err,"Error verifying serial %s!\n",
677                                  ser_status);
678                 goto err;
679         }
680
681         /*****************************************************************/
682         /* we definitely need a public key, so let's get it */
683
684         if ((keyfile == NULL) && ((keyfile=NCONF_get_string(conf,
685                 section,ENV_PRIVATE_KEY)) == NULL))
686                 {
687                 lookup_fail(section,ENV_PRIVATE_KEY);
688                 goto err;
689                 }
690         if (!key)
691                 {
692                 free_key = 1;
693                 if (!app_passwd(bio_err, passargin, NULL, &key, NULL))
694                         {
695                         BIO_printf(bio_err,"Error getting password\n");
696                         goto err;
697                         }
698                 }
699         pkey = load_key(bio_err, keyfile, keyform, key, e, 
700                 "CA private key");
701         if (key) memset(key,0,strlen(key));
702         if (pkey == NULL)
703                 {
704                 /* load_key() has already printed an appropriate message */
705                 goto err;
706                 }
707
708         /*****************************************************************/
709         /* we need a certificate */
710         if ((certfile == NULL) && ((certfile=NCONF_get_string(conf,
711                 section,ENV_CERTIFICATE)) == NULL))
712                 {
713                 lookup_fail(section,ENV_CERTIFICATE);
714                 goto err;
715                 }
716         x509=load_cert(bio_err, certfile, FORMAT_PEM, NULL, e,
717                 "CA certificate");
718         if (x509 == NULL)
719                 goto err;
720
721         if (!X509_check_private_key(x509,pkey))
722                 {
723                 BIO_printf(bio_err,"CA certificate and CA private key do not match\n");
724                 goto err;
725                 }
726
727         f=NCONF_get_string(conf,BASE_SECTION,ENV_PRESERVE);
728         if (f == NULL)
729                 ERR_clear_error();
730         if ((f != NULL) && ((*f == 'y') || (*f == 'Y')))
731                 preserve=1;
732         f=NCONF_get_string(conf,BASE_SECTION,ENV_MSIE_HACK);
733         if (f == NULL)
734                 ERR_clear_error();
735         if ((f != NULL) && ((*f == 'y') || (*f == 'Y')))
736                 msie_hack=1;
737
738         f=NCONF_get_string(conf,section,ENV_NAMEOPT);
739
740         if (f)
741                 {
742                 if (!set_name_ex(&nameopt, f))
743                         {
744                         BIO_printf(bio_err, "Invalid name options: \"%s\"\n", f);
745                         goto err;
746                         }
747                 default_op = 0;
748                 }
749         else
750                 ERR_clear_error();
751
752         f=NCONF_get_string(conf,section,ENV_CERTOPT);
753
754         if (f)
755                 {
756                 if (!set_cert_ex(&certopt, f))
757                         {
758                         BIO_printf(bio_err, "Invalid certificate options: \"%s\"\n", f);
759                         goto err;
760                         }
761                 default_op = 0;
762                 }
763         else
764                 ERR_clear_error();
765
766         f=NCONF_get_string(conf,section,ENV_EXTCOPY);
767
768         if (f)
769                 {
770                 if (!set_ext_copy(&ext_copy, f))
771                         {
772                         BIO_printf(bio_err, "Invalid extension copy option: \"%s\"\n", f);
773                         goto err;
774                         }
775                 }
776         else
777                 ERR_clear_error();
778
779         /*****************************************************************/
780         /* lookup where to write new certificates */
781         if ((outdir == NULL) && (req))
782                 {
783                 struct stat sb;
784
785                 if ((outdir=NCONF_get_string(conf,section,ENV_NEW_CERTS_DIR))
786                         == NULL)
787                         {
788                         BIO_printf(bio_err,"there needs to be defined a directory for new certificate to be placed in\n");
789                         goto err;
790                         }
791 #ifndef OPENSSL_SYS_VMS
792             /* outdir is a directory spec, but access() for VMS demands a
793                filename.  In any case, stat(), below, will catch the problem
794                if outdir is not a directory spec, and the fopen() or open()
795                will catch an error if there is no write access.
796
797                Presumably, this problem could also be solved by using the DEC
798                C routines to convert the directory syntax to Unixly, and give
799                that to access().  However, time's too short to do that just
800                now.
801             */
802                 if (access(outdir,R_OK|W_OK|X_OK) != 0)
803                         {
804                         BIO_printf(bio_err,"I am unable to access the %s directory\n",outdir);
805                         perror(outdir);
806                         goto err;
807                         }
808
809                 if (stat(outdir,&sb) != 0)
810                         {
811                         BIO_printf(bio_err,"unable to stat(%s)\n",outdir);
812                         perror(outdir);
813                         goto err;
814                         }
815 #ifdef S_IFDIR
816                 if (!(sb.st_mode & S_IFDIR))
817                         {
818                         BIO_printf(bio_err,"%s need to be a directory\n",outdir);
819                         perror(outdir);
820                         goto err;
821                         }
822 #endif
823 #endif
824                 }
825
826         /*****************************************************************/
827         /* we need to load the database file */
828         if ((dbfile=NCONF_get_string(conf,section,ENV_DATABASE)) == NULL)
829                 {
830                 lookup_fail(section,ENV_DATABASE);
831                 goto err;
832                 }
833         if (BIO_read_filename(in,dbfile) <= 0)
834                 {
835                 perror(dbfile);
836                 BIO_printf(bio_err,"unable to open '%s'\n",dbfile);
837                 goto err;
838                 }
839         db=TXT_DB_read(in,DB_NUMBER);
840         if (db == NULL) goto err;
841
842         /* Lets check some fields */
843         for (i=0; i<sk_num(db->data); i++)
844                 {
845                 pp=(char **)sk_value(db->data,i);
846                 if ((pp[DB_type][0] != DB_TYPE_REV) &&
847                         (pp[DB_rev_date][0] != '\0'))
848                         {
849                         BIO_printf(bio_err,"entry %d: not revoked yet, but has a revocation date\n",i+1);
850                         goto err;
851                         }
852                 if ((pp[DB_type][0] == DB_TYPE_REV) &&
853                         !make_revoked(NULL, pp[DB_rev_date]))
854                         {
855                         BIO_printf(bio_err," in entry %d\n", i+1);
856                         goto err;
857                         }
858                 if (!check_time_format(pp[DB_exp_date]))
859                         {
860                         BIO_printf(bio_err,"entry %d: invalid expiry date\n",i+1);
861                         goto err;
862                         }
863                 p=pp[DB_serial];
864                 j=strlen(p);
865                 if (*p == '-')
866                         {
867                         p++;
868                         j--;
869                         }
870                 if ((j&1) || (j < 2))
871                         {
872                         BIO_printf(bio_err,"entry %d: bad serial number length (%d)\n",i+1,j);
873                         goto err;
874                         }
875                 while (*p)
876                         {
877                         if (!(  ((*p >= '0') && (*p <= '9')) ||
878                                 ((*p >= 'A') && (*p <= 'F')) ||
879                                 ((*p >= 'a') && (*p <= 'f')))  )
880                                 {
881                                 BIO_printf(bio_err,"entry %d: bad serial number characters, char pos %ld, char is '%c'\n",i+1,(long)(p-pp[DB_serial]),*p);
882                                 goto err;
883                                 }
884                         p++;
885                         }
886                 }
887         if (verbose)
888                 {
889                 BIO_set_fp(out,stdout,BIO_NOCLOSE|BIO_FP_TEXT); /* cannot fail */
890 #ifdef OPENSSL_SYS_VMS
891                 {
892                 BIO *tmpbio = BIO_new(BIO_f_linebuffer());
893                 out = BIO_push(tmpbio, out);
894                 }
895 #endif
896                 TXT_DB_write(out,db);
897                 BIO_printf(bio_err,"%d entries loaded from the database\n",
898                         db->data->num);
899                 BIO_printf(bio_err,"generating index\n");
900                 }
901         
902         if (!make_serial_index(db))
903                 goto err;
904
905         if (!TXT_DB_create_index(db, DB_name, index_name_qual,
906                         LHASH_HASH_FN(index_name_hash),
907                         LHASH_COMP_FN(index_name_cmp)))
908                 {
909                 BIO_printf(bio_err,"error creating name index:(%ld,%ld,%ld)\n",
910                         db->error,db->arg1,db->arg2);
911                 goto err;
912                 }
913
914         /*****************************************************************/
915         /* Update the db file for expired certificates */
916         if (doupdatedb)
917                 {
918                 if (verbose)
919                         BIO_printf(bio_err, "Updating %s ...\n",
920                                                         dbfile);
921
922                 i = do_updatedb(db);
923                 if (i == -1)
924                         {
925                         BIO_printf(bio_err,"Malloc failure\n");
926                         goto err;
927                         }
928                 else if (i == 0)
929                         {
930                         if (verbose) BIO_printf(bio_err,
931                                         "No entries found to mark expired\n"); 
932                         }
933                 else
934                         {
935                         out = BIO_new(BIO_s_file());
936                         if (out == NULL)
937                                 {
938                                 ERR_print_errors(bio_err);
939                                 goto err;
940                                 }
941
942 #ifndef OPENSSL_SYS_VMS
943                         j = BIO_snprintf(buf[0], sizeof buf[0], "%s.new", dbfile);
944 #else
945                         j = BIO_snprintf(buf[0], sizeof buf[0], "%s-new", dbfile);
946 #endif
947                         if (j < 0 || j >= sizeof buf[0])
948                                 {
949                                 BIO_printf(bio_err, "file name too long\n");
950                                 goto err;
951                                 }
952                         if (BIO_write_filename(out,buf[0]) <= 0)
953                                 {
954                                 perror(dbfile);
955                                 BIO_printf(bio_err,"unable to open '%s'\n",
956                                                                         dbfile);
957                                 goto err;
958                                 }
959                         j=TXT_DB_write(out,db);
960                         if (j <= 0) goto err;
961                         
962                         BIO_free(out);
963                         out = NULL;
964 #ifndef OPENSSL_SYS_VMS
965                         j = BIO_snprintf(buf[1], sizeof buf[1], "%s.old", dbfile);
966 #else
967                         j = BIO_snprintf(buf[1], sizeof buf[1], "%s-old", dbfile);
968 #endif
969                         if (j < 0 || j >= sizeof buf[1])
970                                 {
971                                 BIO_printf(bio_err, "file name too long\n");
972                                 goto err;
973                                 }
974                         if (rename(dbfile,buf[1]) < 0)
975                                 {
976                                 BIO_printf(bio_err,
977                                                 "unable to rename %s to %s\n",
978                                                 dbfile, buf[1]);
979                                 perror("reason");
980                                 goto err;
981                                 }
982                         if (rename(buf[0],dbfile) < 0)
983                                 {
984                                 BIO_printf(bio_err,
985                                                 "unable to rename %s to %s\n",
986                                                 buf[0],dbfile);
987                                 perror("reason");
988                                 rename(buf[1],dbfile);
989                                 goto err;
990                                 }
991                                 
992                         if (verbose) BIO_printf(bio_err,
993                                 "Done. %d entries marked as expired\n",i); 
994                         }
995                         goto err;
996                 }
997
998         /*****************************************************************/
999         /* Read extentions config file                                   */
1000         if (extfile)
1001                 {
1002                 extconf = NCONF_new(NULL);
1003                 if (NCONF_load(extconf,extfile,&errorline) <= 0)
1004                         {
1005                         if (errorline <= 0)
1006                                 BIO_printf(bio_err, "ERROR: loading the config file '%s'\n",
1007                                         extfile);
1008                         else
1009                                 BIO_printf(bio_err, "ERROR: on line %ld of config file '%s'\n",
1010                                         errorline,extfile);
1011                         ret = 1;
1012                         goto err;
1013                         }
1014
1015                 if (verbose)
1016                         BIO_printf(bio_err, "Succesfully loaded extensions file %s\n", extfile);
1017
1018                 /* We can have sections in the ext file */
1019                 if (!extensions && !(extensions = NCONF_get_string(extconf, "default", "extensions")))
1020                         extensions = "default";
1021                 }
1022
1023         /*****************************************************************/
1024         if (req || gencrl)
1025                 {
1026                 if (outfile != NULL)
1027                         {
1028                         if (BIO_write_filename(Sout,outfile) <= 0)
1029                                 {
1030                                 perror(outfile);
1031                                 goto err;
1032                                 }
1033                         }
1034                 else
1035                         {
1036                         BIO_set_fp(Sout,stdout,BIO_NOCLOSE|BIO_FP_TEXT);
1037 #ifdef OPENSSL_SYS_VMS
1038                         {
1039                         BIO *tmpbio = BIO_new(BIO_f_linebuffer());
1040                         Sout = BIO_push(tmpbio, Sout);
1041                         }
1042 #endif
1043                         }
1044                 }
1045
1046         if (req)
1047                 {
1048                 if ((md == NULL) && ((md=NCONF_get_string(conf,
1049                         section,ENV_DEFAULT_MD)) == NULL))
1050                         {
1051                         lookup_fail(section,ENV_DEFAULT_MD);
1052                         goto err;
1053                         }
1054                 if ((email_dn == 1) && ((tmp_email_dn=NCONF_get_string(conf,
1055                         section,ENV_DEFAULT_EMAIL_DN)) != NULL ))
1056                         {
1057                         if(strcmp(tmp_email_dn,"no") == 0)
1058                                 email_dn=0;
1059                         }
1060                 if ((dgst=EVP_get_digestbyname(md)) == NULL)
1061                         {
1062                         BIO_printf(bio_err,"%s is an unsupported message digest type\n",md);
1063                         goto err;
1064                         }
1065                 if (verbose)
1066                         BIO_printf(bio_err,"message digest is %s\n",
1067                                 OBJ_nid2ln(dgst->type));
1068                 if ((policy == NULL) && ((policy=NCONF_get_string(conf,
1069                         section,ENV_POLICY)) == NULL))
1070                         {
1071                         lookup_fail(section,ENV_POLICY);
1072                         goto err;
1073                         }
1074                 if (verbose)
1075                         BIO_printf(bio_err,"policy is %s\n",policy);
1076
1077                 if ((serialfile=NCONF_get_string(conf,section,ENV_SERIAL))
1078                         == NULL)
1079                         {
1080                         lookup_fail(section,ENV_SERIAL);
1081                         goto err;
1082                         }
1083
1084                 if (!extconf)
1085                         {
1086                         /* no '-extfile' option, so we look for extensions
1087                          * in the main configuration file */
1088                         if (!extensions)
1089                                 {
1090                                 extensions=NCONF_get_string(conf,section,
1091                                                                 ENV_EXTENSIONS);
1092                                 if (!extensions)
1093                                         ERR_clear_error();
1094                                 }
1095                         if (extensions)
1096                                 {
1097                                 /* Check syntax of file */
1098                                 X509V3_CTX ctx;
1099                                 X509V3_set_ctx_test(&ctx);
1100                                 X509V3_set_nconf(&ctx, conf);
1101                                 if (!X509V3_EXT_add_nconf(conf, &ctx, extensions,
1102                                                                 NULL))
1103                                         {
1104                                         BIO_printf(bio_err,
1105                                         "Error Loading extension section %s\n",
1106                                                                  extensions);
1107                                         ret = 1;
1108                                         goto err;
1109                                         }
1110                                 }
1111                         }
1112
1113                 if (startdate == NULL)
1114                         {
1115                         startdate=NCONF_get_string(conf,section,
1116                                 ENV_DEFAULT_STARTDATE);
1117                         if (startdate == NULL)
1118                                 ERR_clear_error();
1119                         }
1120                 if (startdate && !ASN1_UTCTIME_set_string(NULL,startdate))
1121                         {
1122                         BIO_printf(bio_err,"start date is invalid, it should be YYMMDDHHMMSSZ\n");
1123                         goto err;
1124                         }
1125                 if (startdate == NULL) startdate="today";
1126
1127                 if (enddate == NULL)
1128                         {
1129                         enddate=NCONF_get_string(conf,section,
1130                                 ENV_DEFAULT_ENDDATE);
1131                         if (enddate == NULL)
1132                                 ERR_clear_error();
1133                         }
1134                 if (enddate && !ASN1_UTCTIME_set_string(NULL,enddate))
1135                         {
1136                         BIO_printf(bio_err,"end date is invalid, it should be YYMMDDHHMMSSZ\n");
1137                         goto err;
1138                         }
1139
1140                 if (days == 0)
1141                         {
1142                         if(!NCONF_get_number(conf,section, ENV_DEFAULT_DAYS, &days))
1143                                 days = 0;
1144                         }
1145                 if (!enddate && (days == 0))
1146                         {
1147                         BIO_printf(bio_err,"cannot lookup how many days to certify for\n");
1148                         goto err;
1149                         }
1150
1151                 if ((serial=load_serial(serialfile)) == NULL)
1152                         {
1153                         BIO_printf(bio_err,"error while loading serial number\n");
1154                         goto err;
1155                         }
1156                 if (verbose)
1157                         {
1158                         if ((f=BN_bn2hex(serial)) == NULL) goto err;
1159                         BIO_printf(bio_err,"next serial number is %s\n",f);
1160                         OPENSSL_free(f);
1161                         }
1162
1163                 if ((attribs=NCONF_get_section(conf,policy)) == NULL)
1164                         {
1165                         BIO_printf(bio_err,"unable to find 'section' for %s\n",policy);
1166                         goto err;
1167                         }
1168
1169                 if ((cert_sk=sk_X509_new_null()) == NULL)
1170                         {
1171                         BIO_printf(bio_err,"Memory allocation failure\n");
1172                         goto err;
1173                         }
1174                 if (spkac_file != NULL)
1175                         {
1176                         total++;
1177                         j=certify_spkac(&x,spkac_file,pkey,x509,dgst,attribs,db,
1178                                 serial,subj,email_dn,startdate,enddate,days,extensions,
1179                                 conf,verbose,certopt,nameopt,default_op,ext_copy);
1180                         if (j < 0) goto err;
1181                         if (j > 0)
1182                                 {
1183                                 total_done++;
1184                                 BIO_printf(bio_err,"\n");
1185                                 if (!BN_add_word(serial,1)) goto err;
1186                                 if (!sk_X509_push(cert_sk,x))
1187                                         {
1188                                         BIO_printf(bio_err,"Memory allocation failure\n");
1189                                         goto err;
1190                                         }
1191                                 if (outfile)
1192                                         {
1193                                         output_der = 1;
1194                                         batch = 1;
1195                                         }
1196                                 }
1197                         }
1198                 if (ss_cert_file != NULL)
1199                         {
1200                         total++;
1201                         j=certify_cert(&x,ss_cert_file,pkey,x509,dgst,attribs,
1202                                 db,serial,subj,email_dn,startdate,enddate,days,batch,
1203                                 extensions,conf,verbose, certopt, nameopt,
1204                                 default_op, ext_copy, e);
1205                         if (j < 0) goto err;
1206                         if (j > 0)
1207                                 {
1208                                 total_done++;
1209                                 BIO_printf(bio_err,"\n");
1210                                 if (!BN_add_word(serial,1)) goto err;
1211                                 if (!sk_X509_push(cert_sk,x))
1212                                         {
1213                                         BIO_printf(bio_err,"Memory allocation failure\n");
1214                                         goto err;
1215                                         }
1216                                 }
1217                         }
1218                 if (infile != NULL)
1219                         {
1220                         total++;
1221                         j=certify(&x,infile,pkey,x509,dgst,attribs,db,
1222                                 serial,subj,email_dn,startdate,enddate,days,batch,
1223                                 extensions,conf,verbose, certopt, nameopt,
1224                                 default_op, ext_copy);
1225                         if (j < 0) goto err;
1226                         if (j > 0)
1227                                 {
1228                                 total_done++;
1229                                 BIO_printf(bio_err,"\n");
1230                                 if (!BN_add_word(serial,1)) goto err;
1231                                 if (!sk_X509_push(cert_sk,x))
1232                                         {
1233                                         BIO_printf(bio_err,"Memory allocation failure\n");
1234                                         goto err;
1235                                         }
1236                                 }
1237                         }
1238                 for (i=0; i<argc; i++)
1239                         {
1240                         total++;
1241                         j=certify(&x,argv[i],pkey,x509,dgst,attribs,db,
1242                                 serial,subj,email_dn,startdate,enddate,days,batch,
1243                                 extensions,conf,verbose, certopt, nameopt,
1244                                 default_op, ext_copy);
1245                         if (j < 0) goto err;
1246                         if (j > 0)
1247                                 {
1248                                 total_done++;
1249                                 BIO_printf(bio_err,"\n");
1250                                 if (!BN_add_word(serial,1)) goto err;
1251                                 if (!sk_X509_push(cert_sk,x))
1252                                         {
1253                                         BIO_printf(bio_err,"Memory allocation failure\n");
1254                                         goto err;
1255                                         }
1256                                 }
1257                         }       
1258                 /* we have a stack of newly certified certificates
1259                  * and a data base and serial number that need
1260                  * updating */
1261
1262                 if (sk_X509_num(cert_sk) > 0)
1263                         {
1264                         if (!batch)
1265                                 {
1266                                 BIO_printf(bio_err,"\n%d out of %d certificate requests certified, commit? [y/n]",total_done,total);
1267                                 (void)BIO_flush(bio_err);
1268                                 buf[0][0]='\0';
1269                                 fgets(buf[0],10,stdin);
1270                                 if ((buf[0][0] != 'y') && (buf[0][0] != 'Y'))
1271                                         {
1272                                         BIO_printf(bio_err,"CERTIFICATION CANCELED\n"); 
1273                                         ret=0;
1274                                         goto err;
1275                                         }
1276                                 }
1277
1278                         BIO_printf(bio_err,"Write out database with %d new entries\n",sk_X509_num(cert_sk));
1279
1280                         strncpy(buf[0],serialfile,BSIZE-4);
1281                         buf[0][BSIZE-4]='\0';
1282
1283 #ifdef OPENSSL_SYS_VMS
1284                         strcat(buf[0],"-new");
1285 #else
1286                         strcat(buf[0],".new");
1287 #endif
1288
1289                         if (!save_serial(buf[0],serial)) goto err;
1290
1291                         strncpy(buf[1],dbfile,BSIZE-4);
1292                         buf[1][BSIZE-4]='\0';
1293
1294 #ifdef OPENSSL_SYS_VMS
1295                         strcat(buf[1],"-new");
1296 #else
1297                         strcat(buf[1],".new");
1298 #endif
1299
1300                         if (BIO_write_filename(out,buf[1]) <= 0)
1301                                 {
1302                                 perror(dbfile);
1303                                 BIO_printf(bio_err,"unable to open '%s'\n",dbfile);
1304                                 goto err;
1305                                 }
1306                         l=TXT_DB_write(out,db);
1307                         if (l <= 0) goto err;
1308                         }
1309         
1310                 if (verbose)
1311                         BIO_printf(bio_err,"writing new certificates\n");
1312                 for (i=0; i<sk_X509_num(cert_sk); i++)
1313                         {
1314                         int k;
1315                         unsigned char *n;
1316
1317                         x=sk_X509_value(cert_sk,i);
1318
1319                         j=x->cert_info->serialNumber->length;
1320                         p=(char *)x->cert_info->serialNumber->data;
1321                         
1322                         strncpy(buf[2],outdir,BSIZE-(j*2)-6);
1323                         buf[2][BSIZE-(j*2)-6]='\0';
1324
1325 #ifndef OPENSSL_SYS_VMS
1326                         strcat(buf[2],"/");
1327 #endif
1328
1329                         n=(unsigned char *)&(buf[2][strlen(buf[2])]);
1330                         if (j > 0)
1331                                 {
1332                                 for (k=0; k<j; k++)
1333                                         {
1334                                         sprintf((char *)n,"%02X",(unsigned char)*(p++));
1335                                         n+=2;
1336                                         }
1337                                 }
1338                         else
1339                                 {
1340                                 *(n++)='0';
1341                                 *(n++)='0';
1342                                 }
1343                         *(n++)='.'; *(n++)='p'; *(n++)='e'; *(n++)='m';
1344                         *n='\0';
1345                         if (verbose)
1346                                 BIO_printf(bio_err,"writing %s\n",buf[2]);
1347
1348                         if (BIO_write_filename(Cout,buf[2]) <= 0)
1349                                 {
1350                                 perror(buf[2]);
1351                                 goto err;
1352                                 }
1353                         write_new_certificate(Cout,x, 0, notext);
1354                         write_new_certificate(Sout,x, output_der, notext);
1355                         }
1356
1357                 if (sk_X509_num(cert_sk))
1358                         {
1359                         /* Rename the database and the serial file */
1360                         strncpy(buf[2],serialfile,BSIZE-4);
1361                         buf[2][BSIZE-4]='\0';
1362
1363 #ifdef OPENSSL_SYS_VMS
1364                         strcat(buf[2],"-old");
1365 #else
1366                         strcat(buf[2],".old");
1367 #endif
1368
1369                         BIO_free(in);
1370                         BIO_free_all(out);
1371                         in=NULL;
1372                         out=NULL;
1373                         if (rename(serialfile,buf[2]) < 0)
1374                                 {
1375                                 BIO_printf(bio_err,"unable to rename %s to %s\n",
1376                                         serialfile,buf[2]);
1377                                 perror("reason");
1378                                 goto err;
1379                                 }
1380                         if (rename(buf[0],serialfile) < 0)
1381                                 {
1382                                 BIO_printf(bio_err,"unable to rename %s to %s\n",
1383                                         buf[0],serialfile);
1384                                 perror("reason");
1385                                 rename(buf[2],serialfile);
1386                                 goto err;
1387                                 }
1388
1389                         strncpy(buf[2],dbfile,BSIZE-4);
1390                         buf[2][BSIZE-4]='\0';
1391
1392 #ifdef OPENSSL_SYS_VMS
1393                         strcat(buf[2],"-old");
1394 #else
1395                         strcat(buf[2],".old");
1396 #endif
1397
1398                         if (rename(dbfile,buf[2]) < 0)
1399                                 {
1400                                 BIO_printf(bio_err,"unable to rename %s to %s\n",
1401                                         dbfile,buf[2]);
1402                                 perror("reason");
1403                                 goto err;
1404                                 }
1405                         if (rename(buf[1],dbfile) < 0)
1406                                 {
1407                                 BIO_printf(bio_err,"unable to rename %s to %s\n",
1408                                         buf[1],dbfile);
1409                                 perror("reason");
1410                                 rename(buf[2],dbfile);
1411                                 goto err;
1412                                 }
1413                         BIO_printf(bio_err,"Data Base Updated\n");
1414                         }
1415                 }
1416         
1417         /*****************************************************************/
1418         if (gencrl)
1419                 {
1420                 int crl_v2 = 0;
1421                 if (!crl_ext)
1422                         {
1423                         crl_ext=NCONF_get_string(conf,section,ENV_CRLEXT);
1424                         if (!crl_ext)
1425                                 ERR_clear_error();
1426                         }
1427                 if (crl_ext)
1428                         {
1429                         /* Check syntax of file */
1430                         X509V3_CTX ctx;
1431                         X509V3_set_ctx_test(&ctx);
1432                         X509V3_set_nconf(&ctx, conf);
1433                         if (!X509V3_EXT_add_nconf(conf, &ctx, crl_ext, NULL))
1434                                 {
1435                                 BIO_printf(bio_err,
1436                                  "Error Loading CRL extension section %s\n",
1437                                                                  crl_ext);
1438                                 ret = 1;
1439                                 goto err;
1440                                 }
1441                         }
1442
1443                 if (!crldays && !crlhours)
1444                         {
1445                         if (!NCONF_get_number(conf,section,
1446                                 ENV_DEFAULT_CRL_DAYS, &crldays))
1447                                 crldays = 0;
1448                         if (!NCONF_get_number(conf,section,
1449                                 ENV_DEFAULT_CRL_HOURS, &crlhours))
1450                                 crlhours = 0;
1451                         }
1452                 if ((crldays == 0) && (crlhours == 0))
1453                         {
1454                         BIO_printf(bio_err,"cannot lookup how long until the next CRL is issuer\n");
1455                         goto err;
1456                         }
1457
1458                 if (verbose) BIO_printf(bio_err,"making CRL\n");
1459                 if ((crl=X509_CRL_new()) == NULL) goto err;
1460                 if (!X509_CRL_set_issuer_name(crl, X509_get_issuer_name(x509))) goto err;
1461
1462                 tmptm = ASN1_TIME_new();
1463                 if (!tmptm) goto err;
1464                 X509_gmtime_adj(tmptm,0);
1465                 X509_CRL_set_lastUpdate(crl, tmptm);    
1466                 X509_gmtime_adj(tmptm,(crldays*24+crlhours)*60*60);
1467                 X509_CRL_set_nextUpdate(crl, tmptm);    
1468
1469                 ASN1_TIME_free(tmptm);
1470
1471                 for (i=0; i<sk_num(db->data); i++)
1472                         {
1473                         pp=(char **)sk_value(db->data,i);
1474                         if (pp[DB_type][0] == DB_TYPE_REV)
1475                                 {
1476                                 if ((r=X509_REVOKED_new()) == NULL) goto err;
1477                                 j = make_revoked(r, pp[DB_rev_date]);
1478                                 if (!j) goto err;
1479                                 if (j == 2) crl_v2 = 1;
1480                                 if (!BN_hex2bn(&serial, pp[DB_serial]))
1481                                         goto err;
1482                                 tmpser = BN_to_ASN1_INTEGER(serial, NULL);
1483                                 BN_free(serial);
1484                                 serial = NULL;
1485                                 if (!tmpser)
1486                                         goto err;
1487                                 X509_REVOKED_set_serialNumber(r, tmpser);
1488                                 ASN1_INTEGER_free(tmpser);
1489                                 X509_CRL_add0_revoked(crl,r);
1490                                 }
1491                         }
1492
1493                 /* sort the data so it will be written in serial
1494                  * number order */
1495                 X509_CRL_sort(crl);
1496
1497                 /* we now have a CRL */
1498                 if (verbose) BIO_printf(bio_err,"signing CRL\n");
1499                 if (md != NULL)
1500                         {
1501                         if ((dgst=EVP_get_digestbyname(md)) == NULL)
1502                                 {
1503                                 BIO_printf(bio_err,"%s is an unsupported message digest type\n",md);
1504                                 goto err;
1505                                 }
1506                         }
1507                 else
1508                         {
1509 #ifndef OPENSSL_NO_DSA
1510                         if (pkey->type == EVP_PKEY_DSA) 
1511                                 dgst=EVP_dss1();
1512                         else
1513 #endif
1514 #ifndef OPENSSL_NO_ECDSA
1515                         if (pkey->type == EVP_PKEY_ECDSA)
1516                                 dgst=EVP_ecdsa();
1517                         else
1518 #endif
1519                                 dgst=EVP_md5();
1520                         }
1521
1522                 /* Add any extensions asked for */
1523
1524                 if (crl_ext)
1525                         {
1526                         X509V3_CTX crlctx;
1527                         X509V3_set_ctx(&crlctx, x509, NULL, NULL, crl, 0);
1528                         X509V3_set_nconf(&crlctx, conf);
1529
1530                         if (!X509V3_EXT_CRL_add_nconf(conf, &crlctx,
1531                                 crl_ext, crl)) goto err;
1532                         }
1533                 if (crl_ext || crl_v2)
1534                         {
1535                         if (!X509_CRL_set_version(crl, 1))
1536                                 goto err; /* version 2 CRL */
1537                         }
1538
1539                 if (!X509_CRL_sign(crl,pkey,dgst)) goto err;
1540
1541                 PEM_write_bio_X509_CRL(Sout,crl);
1542                 }
1543         /*****************************************************************/
1544         if (dorevoke)
1545                 {
1546                 if (infile == NULL) 
1547                         {
1548                         BIO_printf(bio_err,"no input files\n");
1549                         goto err;
1550                         }
1551                 else
1552                         {
1553                         X509 *revcert;
1554                         revcert=load_cert(bio_err, infile, FORMAT_PEM,
1555                                 NULL, e, infile);
1556                         if (revcert == NULL)
1557                                 goto err;
1558                         j=do_revoke(revcert,db, rev_type, rev_arg);
1559                         if (j <= 0) goto err;
1560                         X509_free(revcert);
1561
1562                         strncpy(buf[0],dbfile,BSIZE-4);
1563                         buf[0][BSIZE-4]='\0';
1564 #ifndef OPENSSL_SYS_VMS
1565                         strcat(buf[0],".new");
1566 #else
1567                         strcat(buf[0],"-new");
1568 #endif
1569                         if (BIO_write_filename(out,buf[0]) <= 0)
1570                                 {
1571                                 perror(dbfile);
1572                                 BIO_printf(bio_err,"unable to open '%s'\n",dbfile);
1573                                 goto err;
1574                                 }
1575                         j=TXT_DB_write(out,db);
1576                         if (j <= 0) goto err;
1577                         strncpy(buf[1],dbfile,BSIZE-4);
1578                         buf[1][BSIZE-4]='\0';
1579 #ifndef OPENSSL_SYS_VMS
1580                         strcat(buf[1],".old");
1581 #else
1582                         strcat(buf[1],"-old");
1583 #endif
1584                         BIO_free(in);
1585                         in = NULL;
1586                         BIO_free(out);
1587                         out = NULL;
1588                         if (rename(dbfile,buf[1]) < 0)
1589                                 {
1590                                 BIO_printf(bio_err,"unable to rename %s to %s\n", dbfile, buf[1]);
1591                                 perror("reason");
1592                                 goto err;
1593                                 }
1594                         if (rename(buf[0],dbfile) < 0)
1595                                 {
1596                                 BIO_printf(bio_err,"unable to rename %s to %s\n", buf[0],dbfile);
1597                                 perror("reason");
1598                                 rename(buf[1],dbfile);
1599                                 goto err;
1600                                 }
1601                         BIO_printf(bio_err,"Data Base Updated\n"); 
1602                         }
1603                 }
1604         /*****************************************************************/
1605         ret=0;
1606 err:
1607         BIO_free_all(Cout);
1608         BIO_free_all(Sout);
1609         BIO_free_all(out);
1610         BIO_free_all(in);
1611
1612         sk_X509_pop_free(cert_sk,X509_free);
1613
1614         if (ret) ERR_print_errors(bio_err);
1615         app_RAND_write_file(randfile, bio_err);
1616         if (free_key)
1617                 OPENSSL_free(key);
1618         BN_free(serial);
1619         TXT_DB_free(db);
1620         EVP_PKEY_free(pkey);
1621         X509_free(x509);
1622         X509_CRL_free(crl);
1623         NCONF_free(conf);
1624         OBJ_cleanup();
1625         apps_shutdown();
1626         EXIT(ret);
1627         }
1628
1629 static void lookup_fail(char *name, char *tag)
1630         {
1631         BIO_printf(bio_err,"variable lookup failed for %s::%s\n",name,tag);
1632         }
1633
1634 static unsigned long index_serial_hash(const char **a)
1635         {
1636         const char *n;
1637
1638         n=a[DB_serial];
1639         while (*n == '0') n++;
1640         return(lh_strhash(n));
1641         }
1642
1643 static int index_serial_cmp(const char **a, const char **b)
1644         {
1645         const char *aa,*bb;
1646
1647         for (aa=a[DB_serial]; *aa == '0'; aa++);
1648         for (bb=b[DB_serial]; *bb == '0'; bb++);
1649         return(strcmp(aa,bb));
1650         }
1651
1652 static unsigned long index_name_hash(const char **a)
1653         { return(lh_strhash(a[DB_name])); }
1654
1655 static int index_name_qual(char **a)
1656         { return(a[0][0] == 'V'); }
1657
1658 static int index_name_cmp(const char **a, const char **b)
1659         { return(strcmp(a[DB_name],
1660              b[DB_name])); }
1661
1662 static BIGNUM *load_serial(char *serialfile)
1663         {
1664         BIO *in=NULL;
1665         BIGNUM *ret=NULL;
1666         MS_STATIC char buf[1024];
1667         ASN1_INTEGER *ai=NULL;
1668
1669         if ((in=BIO_new(BIO_s_file())) == NULL)
1670                 {
1671                 ERR_print_errors(bio_err);
1672                 goto err;
1673                 }
1674
1675         if (BIO_read_filename(in,serialfile) <= 0)
1676                 {
1677                 perror(serialfile);
1678                 goto err;
1679                 }
1680         ai=ASN1_INTEGER_new();
1681         if (ai == NULL) goto err;
1682         if (!a2i_ASN1_INTEGER(in,ai,buf,1024))
1683                 {
1684                 BIO_printf(bio_err,"unable to load number from %s\n",
1685                         serialfile);
1686                 goto err;
1687                 }
1688         ret=ASN1_INTEGER_to_BN(ai,NULL);
1689         if (ret == NULL)
1690                 {
1691                 BIO_printf(bio_err,"error converting number from bin to BIGNUM");
1692                 goto err;
1693                 }
1694 err:
1695         if (in != NULL) BIO_free(in);
1696         if (ai != NULL) ASN1_INTEGER_free(ai);
1697         return(ret);
1698         }
1699
1700 static int save_serial(char *serialfile, BIGNUM *serial)
1701         {
1702         BIO *out;
1703         int ret=0;
1704         ASN1_INTEGER *ai=NULL;
1705
1706         out=BIO_new(BIO_s_file());
1707         if (out == NULL)
1708                 {
1709                 ERR_print_errors(bio_err);
1710                 goto err;
1711                 }
1712         if (BIO_write_filename(out,serialfile) <= 0)
1713                 {
1714                 perror(serialfile);
1715                 goto err;
1716                 }
1717
1718         if ((ai=BN_to_ASN1_INTEGER(serial,NULL)) == NULL)
1719                 {
1720                 BIO_printf(bio_err,"error converting serial to ASN.1 format\n");
1721                 goto err;
1722                 }
1723         i2a_ASN1_INTEGER(out,ai);
1724         BIO_puts(out,"\n");
1725         ret=1;
1726 err:
1727         if (out != NULL) BIO_free_all(out);
1728         if (ai != NULL) ASN1_INTEGER_free(ai);
1729         return(ret);
1730         }
1731
1732 static int certify(X509 **xret, char *infile, EVP_PKEY *pkey, X509 *x509,
1733              const EVP_MD *dgst, STACK_OF(CONF_VALUE) *policy, TXT_DB *db,
1734              BIGNUM *serial, char *subj, int email_dn, char *startdate, char *enddate,
1735              long days, int batch, char *ext_sect, CONF *lconf, int verbose,
1736              unsigned long certopt, unsigned long nameopt, int default_op,
1737              int ext_copy)
1738         {
1739         X509_REQ *req=NULL;
1740         BIO *in=NULL;
1741         EVP_PKEY *pktmp=NULL;
1742         int ok= -1,i;
1743
1744         in=BIO_new(BIO_s_file());
1745
1746         if (BIO_read_filename(in,infile) <= 0)
1747                 {
1748                 perror(infile);
1749                 goto err;
1750                 }
1751         if ((req=PEM_read_bio_X509_REQ(in,NULL,NULL,NULL)) == NULL)
1752                 {
1753                 BIO_printf(bio_err,"Error reading certificate request in %s\n",
1754                         infile);
1755                 goto err;
1756                 }
1757         if (verbose)
1758                 X509_REQ_print(bio_err,req);
1759
1760         BIO_printf(bio_err,"Check that the request matches the signature\n");
1761
1762         if ((pktmp=X509_REQ_get_pubkey(req)) == NULL)
1763                 {
1764                 BIO_printf(bio_err,"error unpacking public key\n");
1765                 goto err;
1766                 }
1767         i=X509_REQ_verify(req,pktmp);
1768         EVP_PKEY_free(pktmp);
1769         if (i < 0)
1770                 {
1771                 ok=0;
1772                 BIO_printf(bio_err,"Signature verification problems....\n");
1773                 goto err;
1774                 }
1775         if (i == 0)
1776                 {
1777                 ok=0;
1778                 BIO_printf(bio_err,"Signature did not match the certificate request\n");
1779                 goto err;
1780                 }
1781         else
1782                 BIO_printf(bio_err,"Signature ok\n");
1783
1784         ok=do_body(xret,pkey,x509,dgst,policy,db,serial,subj, email_dn,
1785                 startdate,enddate,days,batch,verbose,req,ext_sect,lconf,
1786                 certopt, nameopt, default_op, ext_copy);
1787
1788 err:
1789         if (req != NULL) X509_REQ_free(req);
1790         if (in != NULL) BIO_free(in);
1791         return(ok);
1792         }
1793
1794 static int certify_cert(X509 **xret, char *infile, EVP_PKEY *pkey, X509 *x509,
1795              const EVP_MD *dgst, STACK_OF(CONF_VALUE) *policy, TXT_DB *db,
1796              BIGNUM *serial, char *subj, int email_dn, char *startdate, char *enddate,
1797              long days, int batch, char *ext_sect, CONF *lconf, int verbose,
1798              unsigned long certopt, unsigned long nameopt, int default_op,
1799              int ext_copy, ENGINE *e)
1800         {
1801         X509 *req=NULL;
1802         X509_REQ *rreq=NULL;
1803         EVP_PKEY *pktmp=NULL;
1804         int ok= -1,i;
1805
1806         if ((req=load_cert(bio_err, infile, FORMAT_PEM, NULL, e, infile)) == NULL)
1807                 goto err;
1808         if (verbose)
1809                 X509_print(bio_err,req);
1810
1811         BIO_printf(bio_err,"Check that the request matches the signature\n");
1812
1813         if ((pktmp=X509_get_pubkey(req)) == NULL)
1814                 {
1815                 BIO_printf(bio_err,"error unpacking public key\n");
1816                 goto err;
1817                 }
1818         i=X509_verify(req,pktmp);
1819         EVP_PKEY_free(pktmp);
1820         if (i < 0)
1821                 {
1822                 ok=0;
1823                 BIO_printf(bio_err,"Signature verification problems....\n");
1824                 goto err;
1825                 }
1826         if (i == 0)
1827                 {
1828                 ok=0;
1829                 BIO_printf(bio_err,"Signature did not match the certificate\n");
1830                 goto err;
1831                 }
1832         else
1833                 BIO_printf(bio_err,"Signature ok\n");
1834
1835         if ((rreq=X509_to_X509_REQ(req,NULL,EVP_md5())) == NULL)
1836                 goto err;
1837
1838         ok=do_body(xret,pkey,x509,dgst,policy,db,serial,subj,email_dn,startdate,enddate,
1839                 days,batch,verbose,rreq,ext_sect,lconf, certopt, nameopt, default_op,
1840                 ext_copy);
1841
1842 err:
1843         if (rreq != NULL) X509_REQ_free(rreq);
1844         if (req != NULL) X509_free(req);
1845         return(ok);
1846         }
1847
1848 static int do_body(X509 **xret, EVP_PKEY *pkey, X509 *x509, const EVP_MD *dgst,
1849              STACK_OF(CONF_VALUE) *policy, TXT_DB *db, BIGNUM *serial, char *subj,
1850              int email_dn, char *startdate, char *enddate, long days, int batch,
1851              int verbose, X509_REQ *req, char *ext_sect, CONF *lconf,
1852              unsigned long certopt, unsigned long nameopt, int default_op,
1853              int ext_copy)
1854         {
1855         X509_NAME *name=NULL,*CAname=NULL,*subject=NULL, *dn_subject=NULL;
1856         ASN1_UTCTIME *tm,*tmptm;
1857         ASN1_STRING *str,*str2;
1858         ASN1_OBJECT *obj;
1859         X509 *ret=NULL;
1860         X509_CINF *ci;
1861         X509_NAME_ENTRY *ne;
1862         X509_NAME_ENTRY *tne,*push;
1863         EVP_PKEY *pktmp;
1864         int ok= -1,i,j,last,nid;
1865         char *p;
1866         CONF_VALUE *cv;
1867         char *row[DB_NUMBER],**rrow,**irow=NULL;
1868         char buf[25];
1869
1870         tmptm=ASN1_UTCTIME_new();
1871         if (tmptm == NULL)
1872                 {
1873                 BIO_printf(bio_err,"malloc error\n");
1874                 return(0);
1875                 }
1876
1877         for (i=0; i<DB_NUMBER; i++)
1878                 row[i]=NULL;
1879
1880         if (subj)
1881                 {
1882                 X509_NAME *n = do_subject(subj);
1883
1884                 if (!n)
1885                         {
1886                         ERR_print_errors(bio_err);
1887                         goto err;
1888                         }
1889                 X509_REQ_set_subject_name(req,n);
1890                 req->req_info->enc.modified = 1;
1891                 X509_NAME_free(n);
1892                 }
1893
1894         if (default_op)
1895                 BIO_printf(bio_err,"The Subject's Distinguished Name is as follows\n");
1896
1897         name=X509_REQ_get_subject_name(req);
1898         for (i=0; i<X509_NAME_entry_count(name); i++)
1899                 {
1900                 ne= X509_NAME_get_entry(name,i);
1901                 str=X509_NAME_ENTRY_get_data(ne);
1902                 obj=X509_NAME_ENTRY_get_object(ne);
1903
1904                 if (msie_hack)
1905                         {
1906                         /* assume all type should be strings */
1907                         nid=OBJ_obj2nid(ne->object);
1908
1909                         if (str->type == V_ASN1_UNIVERSALSTRING)
1910                                 ASN1_UNIVERSALSTRING_to_string(str);
1911
1912                         if ((str->type == V_ASN1_IA5STRING) &&
1913                                 (nid != NID_pkcs9_emailAddress))
1914                                 str->type=V_ASN1_T61STRING;
1915
1916                         if ((nid == NID_pkcs9_emailAddress) &&
1917                                 (str->type == V_ASN1_PRINTABLESTRING))
1918                                 str->type=V_ASN1_IA5STRING;
1919                         }
1920
1921                 /* If no EMAIL is wanted in the subject */
1922                 if ((OBJ_obj2nid(obj) == NID_pkcs9_emailAddress) && (!email_dn))
1923                         continue;
1924
1925                 /* check some things */
1926                 if ((OBJ_obj2nid(obj) == NID_pkcs9_emailAddress) &&
1927                         (str->type != V_ASN1_IA5STRING))
1928                         {
1929                         BIO_printf(bio_err,"\nemailAddress type needs to be of type IA5STRING\n");
1930                         goto err;
1931                         }
1932                 if ((str->type != V_ASN1_BMPSTRING) && (str->type != V_ASN1_UTF8STRING))
1933                         {
1934                         j=ASN1_PRINTABLE_type(str->data,str->length);
1935                         if (    ((j == V_ASN1_T61STRING) &&
1936                                  (str->type != V_ASN1_T61STRING)) ||
1937                                 ((j == V_ASN1_IA5STRING) &&
1938                                  (str->type == V_ASN1_PRINTABLESTRING)))
1939                                 {
1940                                 BIO_printf(bio_err,"\nThe string contains characters that are illegal for the ASN.1 type\n");
1941                                 goto err;
1942                                 }
1943                         }
1944
1945                 if (default_op)
1946                         old_entry_print(bio_err, obj, str);
1947                 }
1948
1949         /* Ok, now we check the 'policy' stuff. */
1950         if ((subject=X509_NAME_new()) == NULL)
1951                 {
1952                 BIO_printf(bio_err,"Memory allocation failure\n");
1953                 goto err;
1954                 }
1955
1956         /* take a copy of the issuer name before we mess with it. */
1957         CAname=X509_NAME_dup(x509->cert_info->subject);
1958         if (CAname == NULL) goto err;
1959         str=str2=NULL;
1960
1961         for (i=0; i<sk_CONF_VALUE_num(policy); i++)
1962                 {
1963                 cv=sk_CONF_VALUE_value(policy,i); /* get the object id */
1964                 if ((j=OBJ_txt2nid(cv->name)) == NID_undef)
1965                         {
1966                         BIO_printf(bio_err,"%s:unknown object type in 'policy' configuration\n",cv->name);
1967                         goto err;
1968                         }
1969                 obj=OBJ_nid2obj(j);
1970
1971                 last= -1;
1972                 for (;;)
1973                         {
1974                         /* lookup the object in the supplied name list */
1975                         j=X509_NAME_get_index_by_OBJ(name,obj,last);
1976                         if (j < 0)
1977                                 {
1978                                 if (last != -1) break;
1979                                 tne=NULL;
1980                                 }
1981                         else
1982                                 {
1983                                 tne=X509_NAME_get_entry(name,j);
1984                                 }
1985                         last=j;
1986
1987                         /* depending on the 'policy', decide what to do. */
1988                         push=NULL;
1989                         if (strcmp(cv->value,"optional") == 0)
1990                                 {
1991                                 if (tne != NULL)
1992                                         push=tne;
1993                                 }
1994                         else if (strcmp(cv->value,"supplied") == 0)
1995                                 {
1996                                 if (tne == NULL)
1997                                         {
1998                                         BIO_printf(bio_err,"The %s field needed to be supplied and was missing\n",cv->name);
1999                                         goto err;
2000                                         }
2001                                 else
2002                                         push=tne;
2003                                 }
2004                         else if (strcmp(cv->value,"match") == 0)
2005                                 {
2006                                 int last2;
2007
2008                                 if (tne == NULL)
2009                                         {
2010                                         BIO_printf(bio_err,"The mandatory %s field was missing\n",cv->name);
2011                                         goto err;
2012                                         }
2013
2014                                 last2= -1;
2015
2016 again2:
2017                                 j=X509_NAME_get_index_by_OBJ(CAname,obj,last2);
2018                                 if ((j < 0) && (last2 == -1))
2019                                         {
2020                                         BIO_printf(bio_err,"The %s field does not exist in the CA certificate,\nthe 'policy' is misconfigured\n",cv->name);
2021                                         goto err;
2022                                         }
2023                                 if (j >= 0)
2024                                         {
2025                                         push=X509_NAME_get_entry(CAname,j);
2026                                         str=X509_NAME_ENTRY_get_data(tne);
2027                                         str2=X509_NAME_ENTRY_get_data(push);
2028                                         last2=j;
2029                                         if (ASN1_STRING_cmp(str,str2) != 0)
2030                                                 goto again2;
2031                                         }
2032                                 if (j < 0)
2033                                         {
2034                                         BIO_printf(bio_err,"The %s field needed to be the same in the\nCA certificate (%s) and the request (%s)\n",cv->name,((str2 == NULL)?"NULL":(char *)str2->data),((str == NULL)?"NULL":(char *)str->data));
2035                                         goto err;
2036                                         }
2037                                 }
2038                         else
2039                                 {
2040                                 BIO_printf(bio_err,"%s:invalid type in 'policy' configuration\n",cv->value);
2041                                 goto err;
2042                                 }
2043
2044                         if (push != NULL)
2045                                 {
2046                                 if (!X509_NAME_add_entry(subject,push, -1, 0))
2047                                         {
2048                                         if (push != NULL)
2049                                                 X509_NAME_ENTRY_free(push);
2050                                         BIO_printf(bio_err,"Memory allocation failure\n");
2051                                         goto err;
2052                                         }
2053                                 }
2054                         if (j < 0) break;
2055                         }
2056                 }
2057
2058         if (preserve)
2059                 {
2060                 X509_NAME_free(subject);
2061                 /* subject=X509_NAME_dup(X509_REQ_get_subject_name(req)); */
2062                 subject=X509_NAME_dup(name);
2063                 if (subject == NULL) goto err;
2064                 }
2065
2066         if (verbose)
2067                 BIO_printf(bio_err,"The subject name appears to be ok, checking data base for clashes\n");
2068
2069         /* Build the correct Subject if no e-mail is wanted in the subject */
2070         /* and add it later on because of the method extensions are added (altName) */
2071          
2072         if (email_dn)
2073                 dn_subject = subject;
2074         else
2075                 {
2076                 X509_NAME_ENTRY *tmpne;
2077                 /* Its best to dup the subject DN and then delete any email
2078                  * addresses because this retains its structure.
2079                  */
2080                 if (!(dn_subject = X509_NAME_dup(subject)))
2081                         {
2082                         BIO_printf(bio_err,"Memory allocation failure\n");
2083                         goto err;
2084                         }
2085                 while((i = X509_NAME_get_index_by_NID(dn_subject,
2086                                         NID_pkcs9_emailAddress, -1)) >= 0)
2087                         {
2088                         tmpne = X509_NAME_get_entry(dn_subject, i);
2089                         X509_NAME_delete_entry(dn_subject, i);
2090                         X509_NAME_ENTRY_free(tmpne);
2091                         }
2092                 }
2093
2094         row[DB_name]=X509_NAME_oneline(dn_subject,NULL,0);
2095         row[DB_serial]=BN_bn2hex(serial);
2096         if ((row[DB_name] == NULL) || (row[DB_serial] == NULL))
2097                 {
2098                 BIO_printf(bio_err,"Memory allocation failure\n");
2099                 goto err;
2100                 }
2101
2102         rrow=TXT_DB_get_by_index(db,DB_name,row);
2103         if (rrow != NULL)
2104                 {
2105                 BIO_printf(bio_err,"ERROR:There is already a certificate for %s\n",
2106                         row[DB_name]);
2107                 }
2108         else
2109                 {
2110                 rrow=TXT_DB_get_by_index(db,DB_serial,row);
2111                 if (rrow != NULL)
2112                         {
2113                         BIO_printf(bio_err,"ERROR:Serial number %s has already been issued,\n",
2114                                 row[DB_serial]);
2115                         BIO_printf(bio_err,"      check the database/serial_file for corruption\n");
2116                         }
2117                 }
2118
2119         if (rrow != NULL)
2120                 {
2121                 BIO_printf(bio_err,
2122                         "The matching entry has the following details\n");
2123                 if (rrow[DB_type][0] == 'E')
2124                         p="Expired";
2125                 else if (rrow[DB_type][0] == 'R')
2126                         p="Revoked";
2127                 else if (rrow[DB_type][0] == 'V')
2128                         p="Valid";
2129                 else
2130                         p="\ninvalid type, Data base error\n";
2131                 BIO_printf(bio_err,"Type          :%s\n",p);;
2132                 if (rrow[DB_type][0] == 'R')
2133                         {
2134                         p=rrow[DB_exp_date]; if (p == NULL) p="undef";
2135                         BIO_printf(bio_err,"Was revoked on:%s\n",p);
2136                         }
2137                 p=rrow[DB_exp_date]; if (p == NULL) p="undef";
2138                 BIO_printf(bio_err,"Expires on    :%s\n",p);
2139                 p=rrow[DB_serial]; if (p == NULL) p="undef";
2140                 BIO_printf(bio_err,"Serial Number :%s\n",p);
2141                 p=rrow[DB_file]; if (p == NULL) p="undef";
2142                 BIO_printf(bio_err,"File name     :%s\n",p);
2143                 p=rrow[DB_name]; if (p == NULL) p="undef";
2144                 BIO_printf(bio_err,"Subject Name  :%s\n",p);
2145                 ok= -1; /* This is now a 'bad' error. */
2146                 goto err;
2147                 }
2148
2149         /* We are now totally happy, lets make and sign the certificate */
2150         if (verbose)
2151                 BIO_printf(bio_err,"Everything appears to be ok, creating and signing the certificate\n");
2152
2153         if ((ret=X509_new()) == NULL) goto err;
2154         ci=ret->cert_info;
2155
2156 #ifdef X509_V3
2157         /* Make it an X509 v3 certificate. */
2158         if (!X509_set_version(x509,2)) goto err;
2159 #endif
2160
2161         if (BN_to_ASN1_INTEGER(serial,ci->serialNumber) == NULL)
2162                 goto err;
2163         if (!X509_set_issuer_name(ret,X509_get_subject_name(x509)))
2164                 goto err;
2165
2166         if (strcmp(startdate,"today") == 0)
2167                 X509_gmtime_adj(X509_get_notBefore(ret),0);
2168         else ASN1_UTCTIME_set_string(X509_get_notBefore(ret),startdate);
2169
2170         if (enddate == NULL)
2171                 X509_gmtime_adj(X509_get_notAfter(ret),(long)60*60*24*days);
2172         else ASN1_UTCTIME_set_string(X509_get_notAfter(ret),enddate);
2173
2174         if (!X509_set_subject_name(ret,subject)) goto err;
2175
2176         pktmp=X509_REQ_get_pubkey(req);
2177         i = X509_set_pubkey(ret,pktmp);
2178         EVP_PKEY_free(pktmp);
2179         if (!i) goto err;
2180
2181         /* Lets add the extensions, if there are any */
2182         if (ext_sect)
2183                 {
2184                 X509V3_CTX ctx;
2185                 if (ci->version == NULL)
2186                         if ((ci->version=ASN1_INTEGER_new()) == NULL)
2187                                 goto err;
2188                 ASN1_INTEGER_set(ci->version,2); /* version 3 certificate */
2189
2190                 /* Free the current entries if any, there should not
2191                  * be any I believe */
2192                 if (ci->extensions != NULL)
2193                         sk_X509_EXTENSION_pop_free(ci->extensions,
2194                                                    X509_EXTENSION_free);
2195
2196                 ci->extensions = NULL;
2197
2198                 /* Initialize the context structure */
2199                 X509V3_set_ctx(&ctx, x509, ret, req, NULL, 0);
2200
2201                 if (extconf)
2202                         {
2203                         if (verbose)
2204                                 BIO_printf(bio_err, "Extra configuration file found\n");
2205  
2206                         /* Use the extconf configuration db LHASH */
2207                         X509V3_set_nconf(&ctx, extconf);
2208  
2209                         /* Test the structure (needed?) */
2210                         /* X509V3_set_ctx_test(&ctx); */
2211
2212                         /* Adds exts contained in the configuration file */
2213                         if (!X509V3_EXT_add_nconf(extconf, &ctx, ext_sect,ret))
2214                                 {
2215                                 BIO_printf(bio_err,
2216                                     "ERROR: adding extensions in section %s\n",
2217                                                                 ext_sect);
2218                                 ERR_print_errors(bio_err);
2219                                 goto err;
2220                                 }
2221                         if (verbose)
2222                                 BIO_printf(bio_err, "Successfully added extensions from file.\n");
2223                         }
2224                 else if (ext_sect)
2225                         {
2226                         /* We found extensions to be set from config file */
2227                         X509V3_set_nconf(&ctx, lconf);
2228
2229                         if(!X509V3_EXT_add_nconf(lconf, &ctx, ext_sect, ret))
2230                                 {
2231                                 BIO_printf(bio_err, "ERROR: adding extensions in section %s\n", ext_sect);
2232                                 ERR_print_errors(bio_err);
2233                                 goto err;
2234                                 }
2235
2236                         if (verbose) 
2237                                 BIO_printf(bio_err, "Successfully added extensions from config\n");
2238                         }
2239                 }
2240
2241         /* Copy extensions from request (if any) */
2242
2243         if (!copy_extensions(ret, req, ext_copy))
2244                 {
2245                 BIO_printf(bio_err, "ERROR: adding extensions from request\n");
2246                 ERR_print_errors(bio_err);
2247                 goto err;
2248                 }
2249
2250         /* Set the right value for the noemailDN option */
2251         if( email_dn == 0 )
2252                 {
2253                 if (!X509_set_subject_name(ret,dn_subject)) goto err;
2254                 }
2255
2256         if (!default_op)
2257                 {
2258                 BIO_printf(bio_err, "Certificate Details:\n");
2259                 /* Never print signature details because signature not present */
2260                 certopt |= X509_FLAG_NO_SIGDUMP | X509_FLAG_NO_SIGNAME;
2261                 X509_print_ex(bio_err, ret, nameopt, certopt); 
2262                 }
2263
2264         BIO_printf(bio_err,"Certificate is to be certified until ");
2265         ASN1_UTCTIME_print(bio_err,X509_get_notAfter(ret));
2266         if (days) BIO_printf(bio_err," (%d days)",days);
2267         BIO_printf(bio_err, "\n");
2268
2269         if (!batch)
2270                 {
2271
2272                 BIO_printf(bio_err,"Sign the certificate? [y/n]:");
2273                 (void)BIO_flush(bio_err);
2274                 buf[0]='\0';
2275                 fgets(buf,sizeof(buf)-1,stdin);
2276                 if (!((buf[0] == 'y') || (buf[0] == 'Y')))
2277                         {
2278                         BIO_printf(bio_err,"CERTIFICATE WILL NOT BE CERTIFIED\n");
2279                         ok=0;
2280                         goto err;
2281                         }
2282                 }
2283
2284
2285 #ifndef OPENSSL_NO_DSA
2286         if (pkey->type == EVP_PKEY_DSA) dgst=EVP_dss1();
2287         pktmp=X509_get_pubkey(ret);
2288         if (EVP_PKEY_missing_parameters(pktmp) &&
2289                 !EVP_PKEY_missing_parameters(pkey))
2290                 EVP_PKEY_copy_parameters(pktmp,pkey);
2291         EVP_PKEY_free(pktmp);
2292 #endif
2293 #ifndef OPENSSL_NO_ECDSA
2294         if (pkey->type == EVP_PKEY_ECDSA)
2295                 dgst = EVP_ecdsa();
2296         pktmp = X509_get_pubkey(ret);
2297         if (EVP_PKEY_missing_parameters(pktmp) &&
2298                 !EVP_PKEY_missing_parameters(pkey))
2299                 EVP_PKEY_copy_parameters(pktmp, pkey);
2300         EVP_PKEY_free(pktmp);
2301 #endif
2302
2303
2304         if (!X509_sign(ret,pkey,dgst))
2305                 goto err;
2306
2307         /* We now just add it to the database */
2308         row[DB_type]=(char *)OPENSSL_malloc(2);
2309
2310         tm=X509_get_notAfter(ret);
2311         row[DB_exp_date]=(char *)OPENSSL_malloc(tm->length+1);
2312         memcpy(row[DB_exp_date],tm->data,tm->length);
2313         row[DB_exp_date][tm->length]='\0';
2314
2315         row[DB_rev_date]=NULL;
2316
2317         /* row[DB_serial] done already */
2318         row[DB_file]=(char *)OPENSSL_malloc(8);
2319         /* row[DB_name] done already */
2320
2321         if ((row[DB_type] == NULL) || (row[DB_exp_date] == NULL) ||
2322                 (row[DB_file] == NULL))
2323                 {
2324                 BIO_printf(bio_err,"Memory allocation failure\n");
2325                 goto err;
2326                 }
2327         strcpy(row[DB_file],"unknown");
2328         row[DB_type][0]='V';
2329         row[DB_type][1]='\0';
2330
2331         if ((irow=(char **)OPENSSL_malloc(sizeof(char *)*(DB_NUMBER+1))) == NULL)
2332                 {
2333                 BIO_printf(bio_err,"Memory allocation failure\n");
2334                 goto err;
2335                 }
2336
2337         for (i=0; i<DB_NUMBER; i++)
2338                 {
2339                 irow[i]=row[i];
2340                 row[i]=NULL;
2341                 }
2342         irow[DB_NUMBER]=NULL;
2343
2344         if (!TXT_DB_insert(db,irow))
2345                 {
2346                 BIO_printf(bio_err,"failed to update database\n");
2347                 BIO_printf(bio_err,"TXT_DB error number %ld\n",db->error);
2348                 goto err;
2349                 }
2350         ok=1;
2351 err:
2352         for (i=0; i<DB_NUMBER; i++)
2353                 if (row[i] != NULL) OPENSSL_free(row[i]);
2354
2355         if (CAname != NULL)
2356                 X509_NAME_free(CAname);
2357         if (subject != NULL)
2358                 X509_NAME_free(subject);
2359         if ((dn_subject != NULL) && !email_dn)
2360                 X509_NAME_free(dn_subject);
2361         if (tmptm != NULL)
2362                 ASN1_UTCTIME_free(tmptm);
2363         if (ok <= 0)
2364                 {
2365                 if (ret != NULL) X509_free(ret);
2366                 ret=NULL;
2367                 }
2368         else
2369                 *xret=ret;
2370         return(ok);
2371         }
2372
2373 static void write_new_certificate(BIO *bp, X509 *x, int output_der, int notext)
2374         {
2375
2376         if (output_der)
2377                 {
2378                 (void)i2d_X509_bio(bp,x);
2379                 return;
2380                 }
2381 #if 0
2382         /* ??? Not needed since X509_print prints all this stuff anyway */
2383         f=X509_NAME_oneline(X509_get_issuer_name(x),buf,256);
2384         BIO_printf(bp,"issuer :%s\n",f);
2385
2386         f=X509_NAME_oneline(X509_get_subject_name(x),buf,256);
2387         BIO_printf(bp,"subject:%s\n",f);
2388
2389         BIO_puts(bp,"serial :");
2390         i2a_ASN1_INTEGER(bp,x->cert_info->serialNumber);
2391         BIO_puts(bp,"\n\n");
2392 #endif
2393         if (!notext)X509_print(bp,x);
2394         PEM_write_bio_X509(bp,x);
2395         }
2396
2397 static int certify_spkac(X509 **xret, char *infile, EVP_PKEY *pkey, X509 *x509,
2398              const EVP_MD *dgst, STACK_OF(CONF_VALUE) *policy, TXT_DB *db,
2399              BIGNUM *serial, char *subj, int email_dn, char *startdate, char *enddate,
2400              long days, char *ext_sect, CONF *lconf, int verbose, unsigned long certopt,
2401              unsigned long nameopt, int default_op, int ext_copy)
2402         {
2403         STACK_OF(CONF_VALUE) *sk=NULL;
2404         LHASH *parms=NULL;
2405         X509_REQ *req=NULL;
2406         CONF_VALUE *cv=NULL;
2407         NETSCAPE_SPKI *spki = NULL;
2408         X509_REQ_INFO *ri;
2409         char *type,*buf;
2410         EVP_PKEY *pktmp=NULL;
2411         X509_NAME *n=NULL;
2412         X509_NAME_ENTRY *ne=NULL;
2413         int ok= -1,i,j;
2414         long errline;
2415         int nid;
2416
2417         /*
2418          * Load input file into a hash table.  (This is just an easy
2419          * way to read and parse the file, then put it into a convenient
2420          * STACK format).
2421          */
2422         parms=CONF_load(NULL,infile,&errline);
2423         if (parms == NULL)
2424                 {
2425                 BIO_printf(bio_err,"error on line %ld of %s\n",errline,infile);
2426                 ERR_print_errors(bio_err);
2427                 goto err;
2428                 }
2429
2430         sk=CONF_get_section(parms, "default");
2431         if (sk_CONF_VALUE_num(sk) == 0)
2432                 {
2433                 BIO_printf(bio_err, "no name/value pairs found in %s\n", infile);
2434                 CONF_free(parms);
2435                 goto err;
2436                 }
2437
2438         /*
2439          * Now create a dummy X509 request structure.  We don't actually
2440          * have an X509 request, but we have many of the components
2441          * (a public key, various DN components).  The idea is that we
2442          * put these components into the right X509 request structure
2443          * and we can use the same code as if you had a real X509 request.
2444          */
2445         req=X509_REQ_new();
2446         if (req == NULL)
2447                 {
2448                 ERR_print_errors(bio_err);
2449                 goto err;
2450                 }
2451
2452         /*
2453          * Build up the subject name set.
2454          */
2455         ri=req->req_info;
2456         n = ri->subject;
2457
2458         for (i = 0; ; i++)
2459                 {
2460                 if (sk_CONF_VALUE_num(sk) <= i) break;
2461
2462                 cv=sk_CONF_VALUE_value(sk,i);
2463                 type=cv->name;
2464                 /* Skip past any leading X. X: X, etc to allow for
2465                  * multiple instances
2466                  */
2467                 for (buf = cv->name; *buf ; buf++)
2468                         if ((*buf == ':') || (*buf == ',') || (*buf == '.'))
2469                                 {
2470                                 buf++;
2471                                 if (*buf) type = buf;
2472                                 break;
2473                                 }
2474
2475                 buf=cv->value;
2476                 if ((nid=OBJ_txt2nid(type)) == NID_undef)
2477                         {
2478                         if (strcmp(type, "SPKAC") == 0)
2479                                 {
2480                                 spki = NETSCAPE_SPKI_b64_decode(cv->value, -1);
2481                                 if (spki == NULL)
2482                                         {
2483                                         BIO_printf(bio_err,"unable to load Netscape SPKAC structure\n");
2484                                         ERR_print_errors(bio_err);
2485                                         goto err;
2486                                         }
2487                                 }
2488                         continue;
2489                         }
2490
2491                 /*
2492                 if ((nid == NID_pkcs9_emailAddress) && (email_dn == 0))
2493                         continue;
2494                 */
2495                 
2496                 j=ASN1_PRINTABLE_type((unsigned char *)buf,-1);
2497                 if (fix_data(nid, &j) == 0)
2498                         {
2499                         BIO_printf(bio_err,
2500                                 "invalid characters in string %s\n",buf);
2501                         goto err;
2502                         }
2503
2504                 if ((ne=X509_NAME_ENTRY_create_by_NID(&ne,nid,j,
2505                         (unsigned char *)buf,
2506                         strlen(buf))) == NULL)
2507                         goto err;
2508
2509                 if (!X509_NAME_add_entry(n,ne,-1, 0)) goto err;
2510                 }
2511         if (spki == NULL)
2512                 {
2513                 BIO_printf(bio_err,"Netscape SPKAC structure not found in %s\n",
2514                         infile);
2515                 goto err;
2516                 }
2517
2518         /*
2519          * Now extract the key from the SPKI structure.
2520          */
2521
2522         BIO_printf(bio_err,"Check that the SPKAC request matches the signature\n");
2523
2524         if ((pktmp=NETSCAPE_SPKI_get_pubkey(spki)) == NULL)
2525                 {
2526                 BIO_printf(bio_err,"error unpacking SPKAC public key\n");
2527                 goto err;
2528                 }
2529
2530         j = NETSCAPE_SPKI_verify(spki, pktmp);
2531         if (j <= 0)
2532                 {
2533                 BIO_printf(bio_err,"signature verification failed on SPKAC public key\n");
2534                 goto err;
2535                 }
2536         BIO_printf(bio_err,"Signature ok\n");
2537
2538         X509_REQ_set_pubkey(req,pktmp);
2539         EVP_PKEY_free(pktmp);
2540         ok=do_body(xret,pkey,x509,dgst,policy,db,serial,subj,email_dn,startdate,enddate,
2541                    days,1,verbose,req,ext_sect,lconf, certopt, nameopt, default_op,
2542                         ext_copy);
2543 err:
2544         if (req != NULL) X509_REQ_free(req);
2545         if (parms != NULL) CONF_free(parms);
2546         if (spki != NULL) NETSCAPE_SPKI_free(spki);
2547         if (ne != NULL) X509_NAME_ENTRY_free(ne);
2548
2549         return(ok);
2550         }
2551
2552 static int fix_data(int nid, int *type)
2553         {
2554         if (nid == NID_pkcs9_emailAddress)
2555                 *type=V_ASN1_IA5STRING;
2556         if ((nid == NID_commonName) && (*type == V_ASN1_IA5STRING))
2557                 *type=V_ASN1_T61STRING;
2558         if ((nid == NID_pkcs9_challengePassword) && (*type == V_ASN1_IA5STRING))
2559                 *type=V_ASN1_T61STRING;
2560         if ((nid == NID_pkcs9_unstructuredName) && (*type == V_ASN1_T61STRING))
2561                 return(0);
2562         if (nid == NID_pkcs9_unstructuredName)
2563                 *type=V_ASN1_IA5STRING;
2564         return(1);
2565         }
2566
2567 static int check_time_format(char *str)
2568         {
2569         ASN1_UTCTIME tm;
2570
2571         tm.data=(unsigned char *)str;
2572         tm.length=strlen(str);
2573         tm.type=V_ASN1_UTCTIME;
2574         return(ASN1_UTCTIME_check(&tm));
2575         }
2576
2577 static int do_revoke(X509 *x509, TXT_DB *db, int type, char *value)
2578         {
2579         ASN1_UTCTIME *tm=NULL;
2580         char *row[DB_NUMBER],**rrow,**irow;
2581         char *rev_str = NULL;
2582         BIGNUM *bn = NULL;
2583         int ok=-1,i;
2584
2585         for (i=0; i<DB_NUMBER; i++)
2586                 row[i]=NULL;
2587         row[DB_name]=X509_NAME_oneline(X509_get_subject_name(x509),NULL,0);
2588         bn = ASN1_INTEGER_to_BN(X509_get_serialNumber(x509),NULL);
2589         row[DB_serial]=BN_bn2hex(bn);
2590         BN_free(bn);
2591         if ((row[DB_name] == NULL) || (row[DB_serial] == NULL))
2592                 {
2593                 BIO_printf(bio_err,"Memory allocation failure\n");
2594                 goto err;
2595                 }
2596         /* We have to lookup by serial number because name lookup
2597          * skips revoked certs
2598          */
2599         rrow=TXT_DB_get_by_index(db,DB_serial,row);
2600         if (rrow == NULL)
2601                 {
2602                 BIO_printf(bio_err,"Adding Entry to DB for %s\n", row[DB_name]);
2603
2604                 /* We now just add it to the database */
2605                 row[DB_type]=(char *)OPENSSL_malloc(2);
2606
2607                 tm=X509_get_notAfter(x509);
2608                 row[DB_exp_date]=(char *)OPENSSL_malloc(tm->length+1);
2609                 memcpy(row[DB_exp_date],tm->data,tm->length);
2610                 row[DB_exp_date][tm->length]='\0';
2611
2612                 row[DB_rev_date]=NULL;
2613
2614                 /* row[DB_serial] done already */
2615                 row[DB_file]=(char *)OPENSSL_malloc(8);
2616
2617                 /* row[DB_name] done already */
2618
2619                 if ((row[DB_type] == NULL) || (row[DB_exp_date] == NULL) ||
2620                         (row[DB_file] == NULL))
2621                         {
2622                         BIO_printf(bio_err,"Memory allocation failure\n");
2623                         goto err;
2624                         }
2625                 strcpy(row[DB_file],"unknown");
2626                 row[DB_type][0]='V';
2627                 row[DB_type][1]='\0';
2628
2629                 if ((irow=(char **)OPENSSL_malloc(sizeof(char *)*(DB_NUMBER+1))) == NULL)
2630                         {
2631                         BIO_printf(bio_err,"Memory allocation failure\n");
2632                         goto err;
2633                         }
2634
2635                 for (i=0; i<DB_NUMBER; i++)
2636                         {
2637                         irow[i]=row[i];
2638                         row[i]=NULL;
2639                         }
2640                 irow[DB_NUMBER]=NULL;
2641
2642                 if (!TXT_DB_insert(db,irow))
2643                         {
2644                         BIO_printf(bio_err,"failed to update database\n");
2645                         BIO_printf(bio_err,"TXT_DB error number %ld\n",db->error);
2646                         goto err;
2647                         }
2648
2649                 /* Revoke Certificate */
2650                 ok = do_revoke(x509,db, type, value);
2651
2652                 goto err;
2653
2654                 }
2655         else if (index_name_cmp((const char **)row,(const char **)rrow))
2656                 {
2657                 BIO_printf(bio_err,"ERROR:name does not match %s\n",
2658                            row[DB_name]);
2659                 goto err;
2660                 }
2661         else if (rrow[DB_type][0]=='R')
2662                 {
2663                 BIO_printf(bio_err,"ERROR:Already revoked, serial number %s\n",
2664                            row[DB_serial]);
2665                 goto err;
2666                 }
2667         else
2668                 {
2669                 BIO_printf(bio_err,"Revoking Certificate %s.\n", rrow[DB_serial]);
2670                 rev_str = make_revocation_str(type, value);
2671                 if (!rev_str)
2672                         {
2673                         BIO_printf(bio_err, "Error in revocation arguments\n");
2674                         goto err;
2675                         }
2676                 rrow[DB_type][0]='R';
2677                 rrow[DB_type][1]='\0';
2678                 rrow[DB_rev_date] = rev_str;
2679                 }
2680         ok=1;
2681 err:
2682         for (i=0; i<DB_NUMBER; i++)
2683                 {
2684                 if (row[i] != NULL) 
2685                         OPENSSL_free(row[i]);
2686                 }
2687         return(ok);
2688         }
2689
2690 static int get_certificate_status(const char *serial, TXT_DB *db)
2691         {
2692         char *row[DB_NUMBER],**rrow;
2693         int ok=-1,i;
2694
2695         /* Free Resources */
2696         for (i=0; i<DB_NUMBER; i++)
2697                 row[i]=NULL;
2698
2699         /* Malloc needed char spaces */
2700         row[DB_serial] = OPENSSL_malloc(strlen(serial) + 2);
2701         if (row[DB_serial] == NULL)
2702                 {
2703                 BIO_printf(bio_err,"Malloc failure\n");
2704                 goto err;
2705                 }
2706
2707         if (strlen(serial) % 2)
2708                 {
2709                 /* Set the first char to 0 */;
2710                 row[DB_serial][0]='0';
2711
2712                 /* Copy String from serial to row[DB_serial] */
2713                 memcpy(row[DB_serial]+1, serial, strlen(serial));
2714                 row[DB_serial][strlen(serial)+1]='\0';
2715                 }
2716         else
2717                 {
2718                 /* Copy String from serial to row[DB_serial] */
2719                 memcpy(row[DB_serial], serial, strlen(serial));
2720                 row[DB_serial][strlen(serial)]='\0';
2721                 }
2722                         
2723         /* Make it Upper Case */
2724         for (i=0; row[DB_serial][i] != '\0'; i++)
2725                 row[DB_serial][i] = toupper(row[DB_serial][i]);
2726         
2727
2728         ok=1;
2729
2730         /* Search for the certificate */
2731         rrow=TXT_DB_get_by_index(db,DB_serial,row);
2732         if (rrow == NULL)
2733                 {
2734                 BIO_printf(bio_err,"Serial %s not present in db.\n",
2735                                  row[DB_serial]);
2736                 ok=-1;
2737                 goto err;
2738                 }
2739         else if (rrow[DB_type][0]=='V')
2740                 {
2741                 BIO_printf(bio_err,"%s=Valid (%c)\n",
2742                         row[DB_serial], rrow[DB_type][0]);
2743                 goto err;
2744                 }
2745         else if (rrow[DB_type][0]=='R')
2746                 {
2747                 BIO_printf(bio_err,"%s=Revoked (%c)\n",
2748                         row[DB_serial], rrow[DB_type][0]);
2749                 goto err;
2750                 }
2751         else if (rrow[DB_type][0]=='E')
2752                 {
2753                 BIO_printf(bio_err,"%s=Expired (%c)\n",
2754                         row[DB_serial], rrow[DB_type][0]);
2755                 goto err;
2756                 }
2757         else if (rrow[DB_type][0]=='S')
2758                 {
2759                 BIO_printf(bio_err,"%s=Suspended (%c)\n",
2760                         row[DB_serial], rrow[DB_type][0]);
2761                 goto err;
2762                 }
2763         else
2764                 {
2765                 BIO_printf(bio_err,"%s=Unknown (%c).\n",
2766                         row[DB_serial], rrow[DB_type][0]);
2767                 ok=-1;
2768                 }
2769 err:
2770         for (i=0; i<DB_NUMBER; i++)
2771                 {
2772                 if (row[i] != NULL)
2773                         OPENSSL_free(row[i]);
2774                 }
2775         return(ok);
2776         }
2777
2778 static int do_updatedb (TXT_DB *db)
2779         {
2780         ASN1_UTCTIME    *a_tm = NULL;
2781         int i, cnt = 0;
2782         int db_y2k, a_y2k;  /* flags = 1 if y >= 2000 */ 
2783         char **rrow, *a_tm_s;
2784
2785         a_tm = ASN1_UTCTIME_new();
2786
2787         /* get actual time and make a string */
2788         a_tm = X509_gmtime_adj(a_tm, 0);
2789         a_tm_s = (char *) OPENSSL_malloc(a_tm->length+1);
2790         if (a_tm_s == NULL)
2791                 {
2792                 cnt = -1;
2793                 goto err;
2794                 }
2795
2796         memcpy(a_tm_s, a_tm->data, a_tm->length);
2797         a_tm_s[a_tm->length] = '\0';
2798
2799         if (strncmp(a_tm_s, "49", 2) <= 0)
2800                 a_y2k = 1;
2801         else
2802                 a_y2k = 0;
2803
2804         for (i = 0; i < sk_num(db->data); i++)
2805                 {
2806                 rrow = (char **) sk_value(db->data, i);
2807
2808                 if (rrow[DB_type][0] == 'V')
2809                         {
2810                         /* ignore entries that are not valid */
2811                         if (strncmp(rrow[DB_exp_date], "49", 2) <= 0)
2812                                 db_y2k = 1;
2813                         else
2814                                 db_y2k = 0;
2815
2816                         if (db_y2k == a_y2k)
2817                                 {
2818                                 /* all on the same y2k side */
2819                                 if (strcmp(rrow[DB_exp_date], a_tm_s) <= 0)
2820                                         {
2821                                         rrow[DB_type][0]  = 'E';
2822                                         rrow[DB_type][1]  = '\0';
2823                                         cnt++;
2824
2825                                         BIO_printf(bio_err, "%s=Expired\n",
2826                                                         rrow[DB_serial]);
2827                                         }
2828                                 }
2829                         else if (db_y2k < a_y2k)
2830                                 {
2831                                 rrow[DB_type][0]  = 'E';
2832                                 rrow[DB_type][1]  = '\0';
2833                                 cnt++;
2834
2835                                 BIO_printf(bio_err, "%s=Expired\n",
2836                                                         rrow[DB_serial]);
2837                                 }
2838
2839                         }
2840                 }
2841
2842 err:
2843
2844         ASN1_UTCTIME_free(a_tm);
2845         OPENSSL_free(a_tm_s);
2846
2847         return (cnt);
2848         }
2849
2850 static char *crl_reasons[] = {
2851         /* CRL reason strings */
2852         "unspecified",
2853         "keyCompromise",
2854         "CACompromise",
2855         "affiliationChanged",
2856         "superseded", 
2857         "cessationOfOperation",
2858         "certificateHold",
2859         "removeFromCRL",
2860         /* Additional pseudo reasons */
2861         "holdInstruction",
2862         "keyTime",
2863         "CAkeyTime"
2864 };
2865
2866 #define NUM_REASONS (sizeof(crl_reasons) / sizeof(char *))
2867
2868 /* Given revocation information convert to a DB string.
2869  * The format of the string is:
2870  * revtime[,reason,extra]. Where 'revtime' is the
2871  * revocation time (the current time). 'reason' is the
2872  * optional CRL reason and 'extra' is any additional
2873  * argument
2874  */
2875
2876 char *make_revocation_str(int rev_type, char *rev_arg)
2877         {
2878         char *reason = NULL, *other = NULL, *str;
2879         ASN1_OBJECT *otmp;
2880         ASN1_UTCTIME *revtm = NULL;
2881         int i;
2882         switch (rev_type)
2883                 {
2884         case REV_NONE:
2885                 break;
2886
2887         case REV_CRL_REASON:
2888                 for (i = 0; i < 8; i++)
2889                         {
2890                         if (!strcasecmp(rev_arg, crl_reasons[i]))
2891                                 {
2892                                 reason = crl_reasons[i];
2893                                 break;
2894                                 }
2895                         }
2896                 if (reason == NULL)
2897                         {
2898                         BIO_printf(bio_err, "Unknown CRL reason %s\n", rev_arg);
2899                         return NULL;
2900                         }
2901                 break;
2902
2903         case REV_HOLD:
2904                 /* Argument is an OID */
2905
2906                 otmp = OBJ_txt2obj(rev_arg, 0);
2907                 ASN1_OBJECT_free(otmp);
2908
2909                 if (otmp == NULL)
2910                         {
2911                         BIO_printf(bio_err, "Invalid object identifier %s\n", rev_arg);
2912                         return NULL;
2913                         }
2914
2915                 reason = "holdInstruction";
2916                 other = rev_arg;
2917                 break;
2918                 
2919         case REV_KEY_COMPROMISE:
2920         case REV_CA_COMPROMISE:
2921
2922                 /* Argument is the key compromise time  */
2923                 if (!ASN1_GENERALIZEDTIME_set_string(NULL, rev_arg))
2924                         {       
2925                         BIO_printf(bio_err, "Invalid time format %s. Need YYYYMMDDHHMMSSZ\n", rev_arg);
2926                         return NULL;
2927                         }
2928                 other = rev_arg;
2929                 if (rev_type == REV_KEY_COMPROMISE)
2930                         reason = "keyTime";
2931                 else 
2932                         reason = "CAkeyTime";
2933
2934                 break;
2935
2936                 }
2937
2938         revtm = X509_gmtime_adj(NULL, 0);
2939
2940         i = revtm->length + 1;
2941
2942         if (reason) i += strlen(reason) + 1;
2943         if (other) i += strlen(other) + 1;
2944
2945         str = OPENSSL_malloc(i);
2946
2947         if (!str) return NULL;
2948
2949         strcpy(str, (char *)revtm->data);
2950         if (reason)
2951                 {
2952                 strcat(str, ",");
2953                 strcat(str, reason);
2954                 }
2955         if (other)
2956                 {
2957                 strcat(str, ",");
2958                 strcat(str, other);
2959                 }
2960         ASN1_UTCTIME_free(revtm);
2961         return str;
2962         }
2963
2964 /* Convert revocation field to X509_REVOKED entry 
2965  * return code:
2966  * 0 error
2967  * 1 OK
2968  * 2 OK and some extensions added (i.e. V2 CRL)
2969  */
2970
2971
2972 int make_revoked(X509_REVOKED *rev, char *str)
2973         {
2974         char *tmp = NULL;
2975         int reason_code = -1;
2976         int i, ret = 0;
2977         ASN1_OBJECT *hold = NULL;
2978         ASN1_GENERALIZEDTIME *comp_time = NULL;
2979         ASN1_ENUMERATED *rtmp = NULL;
2980
2981         ASN1_TIME *revDate = NULL;
2982
2983         i = unpack_revinfo(&revDate, &reason_code, &hold, &comp_time, str);
2984
2985         if (i == 0)
2986                 goto err;
2987
2988         if (rev && !X509_REVOKED_set_revocationDate(rev, revDate))
2989                 goto err;
2990
2991         if (rev && (reason_code != OCSP_REVOKED_STATUS_NOSTATUS))
2992                 {
2993                 rtmp = ASN1_ENUMERATED_new();
2994                 if (!rtmp || !ASN1_ENUMERATED_set(rtmp, reason_code))
2995                         goto err;
2996                 if (!X509_REVOKED_add1_ext_i2d(rev, NID_crl_reason, rtmp, 0, 0))
2997                         goto err;
2998                 }
2999
3000         if (rev && comp_time)
3001                 {
3002                 if (!X509_REVOKED_add1_ext_i2d(rev, NID_invalidity_date, comp_time, 0, 0))
3003                         goto err;
3004                 }
3005         if (rev && hold)
3006                 {
3007                 if (!X509_REVOKED_add1_ext_i2d(rev, NID_hold_instruction_code, hold, 0, 0))
3008                         goto err;
3009                 }
3010
3011         if (reason_code != OCSP_REVOKED_STATUS_NOSTATUS)
3012                 ret = 2;
3013         else ret = 1;
3014
3015         err:
3016
3017         if (tmp) OPENSSL_free(tmp);
3018         ASN1_OBJECT_free(hold);
3019         ASN1_GENERALIZEDTIME_free(comp_time);
3020         ASN1_ENUMERATED_free(rtmp);
3021         ASN1_TIME_free(revDate);
3022
3023         return ret;
3024         }
3025
3026 /*
3027  * subject is expected to be in the format /type0=value0/type1=value1/type2=...
3028  * where characters may be escaped by \
3029  */
3030 static X509_NAME *do_subject(char *subject)
3031         {
3032         size_t buflen = strlen (subject)+1; /* to copy the types and values into. due to escaping, the copy can only become shorter */
3033         char *buf = malloc (buflen);
3034         size_t max_ne = buflen / 2 + 1; /* maximum number of name elements */
3035         char **ne_types = malloc (max_ne * sizeof (char *));
3036         char **ne_values = malloc (max_ne * sizeof (char *));
3037
3038         char *sp = subject, *bp = buf;
3039         int i, ne_num = 0;
3040
3041         X509_NAME *n = NULL;
3042         int nid;
3043
3044         if (!buf || !ne_types || !ne_values)
3045         {
3046                 BIO_printf(bio_err, "malloc error\n");
3047                 goto error0;
3048         }
3049
3050         if (*subject != '/')
3051         {
3052                 BIO_printf(bio_err, "Subject does not start with '/'.\n");
3053                 goto error0;
3054         }
3055         sp++; /* skip leading / */
3056
3057         while (*sp)
3058         {
3059                 /* collect type */
3060                 ne_types[ne_num] = bp;
3061                 while (*sp)
3062                 {
3063                         if (*sp == '\\') /* is there anything to escape in the type...? */
3064                                 if (*++sp)
3065                                         *bp++ = *sp++;
3066                                 else
3067                                 {
3068                                         BIO_printf(bio_err, "escape character at end of string\n");
3069                                         goto error0;
3070                                 }
3071                         else if (*sp == '=')
3072                         {
3073                                 sp++;
3074                                 *bp++ = '\0';
3075                                 break;
3076                         }
3077                         else
3078                                 *bp++ = *sp++;
3079                 }
3080                 if (!*sp)
3081                 {
3082                         BIO_printf(bio_err, "end of string encountered while processing type of subject name element #%d\n", ne_num);
3083                         goto error0;
3084                 }
3085                 ne_values[ne_num] = bp;
3086                 while (*sp)
3087                 {
3088                         if (*sp == '\\')
3089                                 if (*++sp)
3090                                         *bp++ = *sp++;
3091                                 else
3092                                 {
3093                                         BIO_printf(bio_err, "escape character at end of string\n");
3094                                         goto error0;
3095                                 }
3096                         else if (*sp == '/')
3097                         {
3098                                 sp++;
3099                                 *bp++ = '\0';
3100                                 break;
3101                         }
3102                         else
3103                                 *bp++ = *sp++;
3104                 }
3105                 *bp++ = '\0';
3106                 ne_num++;
3107         }
3108
3109         if (!(n = X509_NAME_new()))
3110                 goto error0;
3111
3112         for (i = 0; i < ne_num; i++)
3113                 {
3114                 if ((nid=OBJ_txt2nid(ne_types[i])) == NID_undef)
3115                         {
3116                         BIO_printf(bio_err, "Subject Attribute %s has no known NID, skipped\n", ne_types[i]);
3117                         continue;
3118                         }
3119
3120                 if (!*ne_values[i])
3121                         {
3122                         BIO_printf(bio_err, "No value provided for Subject Attribute %s, skipped\n", ne_types[i]);
3123                         continue;
3124                         }
3125
3126                 if (!X509_NAME_add_entry_by_NID(n, nid, MBSTRING_ASC, (unsigned char*)ne_values[i], -1,-1,0))
3127                         goto error1;
3128                 }
3129
3130         free (ne_values);
3131         free (ne_types);
3132         free (buf);
3133         return n;
3134
3135 error1:
3136         X509_NAME_free(n);
3137 error0:
3138         free (ne_values);
3139         free (ne_types);
3140         free (buf);
3141         return NULL;
3142 }
3143
3144
3145 int old_entry_print(BIO *bp, ASN1_OBJECT *obj, ASN1_STRING *str)
3146         {
3147         char buf[25],*pbuf, *p;
3148         int j;
3149         j=i2a_ASN1_OBJECT(bp,obj);
3150         pbuf=buf;
3151         for (j=22-j; j>0; j--)
3152                 *(pbuf++)=' ';
3153         *(pbuf++)=':';
3154         *(pbuf++)='\0';
3155         BIO_puts(bp,buf);
3156
3157         if (str->type == V_ASN1_PRINTABLESTRING)
3158                 BIO_printf(bp,"PRINTABLE:'");
3159         else if (str->type == V_ASN1_T61STRING)
3160                 BIO_printf(bp,"T61STRING:'");
3161         else if (str->type == V_ASN1_IA5STRING)
3162                 BIO_printf(bp,"IA5STRING:'");
3163         else if (str->type == V_ASN1_UNIVERSALSTRING)
3164                 BIO_printf(bp,"UNIVERSALSTRING:'");
3165         else
3166                 BIO_printf(bp,"ASN.1 %2d:'",str->type);
3167                         
3168         p=(char *)str->data;
3169         for (j=str->length; j>0; j--)
3170                 {
3171                 if ((*p >= ' ') && (*p <= '~'))
3172                         BIO_printf(bp,"%c",*p);
3173                 else if (*p & 0x80)
3174                         BIO_printf(bp,"\\0x%02X",*p);
3175                 else if ((unsigned char)*p == 0xf7)
3176                         BIO_printf(bp,"^?");
3177                 else    BIO_printf(bp,"^%c",*p+'@');
3178                 p++;
3179                 }
3180         BIO_printf(bp,"'\n");
3181         return 1;
3182         }
3183
3184 int unpack_revinfo(ASN1_TIME **prevtm, int *preason, ASN1_OBJECT **phold, ASN1_GENERALIZEDTIME **pinvtm, char *str)
3185         {
3186         char *tmp = NULL;
3187         char *rtime_str, *reason_str = NULL, *arg_str = NULL, *p;
3188         int reason_code = -1;
3189         int i, ret = 0;
3190         ASN1_OBJECT *hold = NULL;
3191         ASN1_GENERALIZEDTIME *comp_time = NULL;
3192         tmp = BUF_strdup(str);
3193
3194         p = strchr(tmp, ',');
3195
3196         rtime_str = tmp;
3197
3198         if (p)
3199                 {
3200                 *p = '\0';
3201                 p++;
3202                 reason_str = p;
3203                 p = strchr(p, ',');
3204                 if (p)
3205                         {
3206                         *p = '\0';
3207                         arg_str = p + 1;
3208                         }
3209                 }
3210
3211         if (prevtm)
3212                 {
3213                 *prevtm = ASN1_UTCTIME_new();
3214                 if (!ASN1_UTCTIME_set_string(*prevtm, rtime_str))
3215                         {
3216                         BIO_printf(bio_err, "invalid revocation date %s\n", rtime_str);
3217                         goto err;
3218                         }
3219                 }
3220         if (reason_str)
3221                 {
3222                 for (i = 0; i < NUM_REASONS; i++)
3223                         {
3224                         if(!strcasecmp(reason_str, crl_reasons[i]))
3225                                 {
3226                                 reason_code = i;
3227                                 break;
3228                                 }
3229                         }
3230                 if (reason_code == OCSP_REVOKED_STATUS_NOSTATUS)
3231                         {
3232                         BIO_printf(bio_err, "invalid reason code %s\n", reason_str);
3233                         goto err;
3234                         }
3235
3236                 if (reason_code == 7)
3237                         reason_code = OCSP_REVOKED_STATUS_REMOVEFROMCRL;
3238                 else if (reason_code == 8)              /* Hold instruction */
3239                         {
3240                         if (!arg_str)
3241                                 {