crypto/x509v3/v3_scts.c

   1 /* v3_scts.c */
   2 /* Written by Rob Stradling (rob@comodo.com) for the OpenSSL project 2014.
   3  */
   4 /* ====================================================================
   5  * Copyright (c) 2014 The OpenSSL Project.  All rights reserved.
   6  *
   7  * Redistribution and use in source and binary forms, with or without
   8  * modification, are permitted provided that the following conditions
   9  * are met:
  10  *
  11  * 1. Redistributions of source code must retain the above copyright
  12  *    notice, this list of conditions and the following disclaimer.
  13  *
  14  * 2. Redistributions in binary form must reproduce the above copyright
  15  *    notice, this list of conditions and the following disclaimer in
  16  *    the documentation and/or other materials provided with the
  17  *    distribution.
  18  *
  19  * 3. All advertising materials mentioning features or use of this
  20  *    software must display the following acknowledgment:
  21  *    "This product includes software developed by the OpenSSL Project
  22  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
  23  *
  24  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  25  *    endorse or promote products derived from this software without
  26  *    prior written permission. For written permission, please contact
  27  *    licensing@OpenSSL.org.
  28  *
  29  * 5. Products derived from this software may not be called "OpenSSL"
  30  *    nor may "OpenSSL" appear in their names without prior written
  31  *    permission of the OpenSSL Project.
  32  *
  33  * 6. Redistributions of any form whatsoever must retain the following
  34  *    acknowledgment:
  35  *    "This product includes software developed by the OpenSSL Project
  36  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
  37  *
  38  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  39  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  40  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  41  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
  42  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  43  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  44  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  45  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  46  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  47  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  48  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  49  * OF THE POSSIBILITY OF SUCH DAMAGE.
  50  * ====================================================================
  51  *
  52  * This product includes cryptographic software written by Eric Young
  53  * (eay@cryptsoft.com).  This product includes software written by Tim
  54  * Hudson (tjh@cryptsoft.com).
  55  *
  56  */
  57
  58
  59 #include <stdio.h>
  60 #include "cryptlib.h"
  61 #include <openssl/asn1.h>
  62 #include <openssl/x509v3.h>
  63 #include <openssl/bn.h>
  64 #include "../ssl/ssl_locl.h"
  65
  66 #if (defined(_WIN32) || defined(_WIN64)) && !defined(__MINGW32__)
  67 #define SCTS_TIMESTAMP unsigned __int64
  68 #elif defined(__arch64__)
  69 #define SCTS_TIMESTAMP unsigned long
  70 #else
  71 #define SCTS_TIMESTAMP unsigned long long
  72 #endif
  73
  74 #define n2l8(c,l)       (l =((SCTS_TIMESTAMP)(*((c)++)))<<56, \
  75                          l|=((SCTS_TIMESTAMP)(*((c)++)))<<48, \
  76                          l|=((SCTS_TIMESTAMP)(*((c)++)))<<40, \
  77                          l|=((SCTS_TIMESTAMP)(*((c)++)))<<32, \
  78                          l|=((SCTS_TIMESTAMP)(*((c)++)))<<24, \
  79                          l|=((SCTS_TIMESTAMP)(*((c)++)))<<16, \
  80                          l|=((SCTS_TIMESTAMP)(*((c)++)))<< 8, \
  81                          l|=((SCTS_TIMESTAMP)(*((c)++))))
  82
  83
  84 static int i2r_scts(X509V3_EXT_METHOD *method, ASN1_OCTET_STRING *oct, BIO *out, int indent);
  85
  86 const X509V3_EXT_METHOD v3_ct_scts[] = {
  87 { NID_ct_precert_scts, 0, ASN1_ITEM_ref(ASN1_OCTET_STRING),
  88 0,0,0,0,
  89 0,0,0,0,
  90 (X509V3_EXT_I2R)i2r_scts, NULL,
  91 NULL},
  92
  93 { NID_ct_cert_scts, 0, ASN1_ITEM_ref(ASN1_OCTET_STRING),
  94 0,0,0,0,
  95 0,0,0,0,
  96 (X509V3_EXT_I2R)i2r_scts, NULL,
  97 NULL},
  98 };
  99
 100 static void tls12_signature_print(BIO *out, const unsigned char *data)
 101         {
 102         int nid = NID_undef;
 103         /* RFC6962 only permits two signature algorithms */
 104         if (data[0] == TLSEXT_hash_sha256)
 105                 {
 106                 if (data[1] == TLSEXT_signature_rsa)
 107                         nid = NID_sha256WithRSAEncryption;
 108                 else if (data[1] == TLSEXT_signature_ecdsa)
 109                         nid = NID_ecdsa_with_SHA256;
 110                 }
 111         if (nid == NID_undef)
 112                 BIO_printf(out, "%02X%02X", data[0], data[1]);
 113         else
 114                 BIO_printf(out, "%s", OBJ_nid2ln(nid));
 115         }
 116
 117 static void timestamp_print(BIO *out, SCTS_TIMESTAMP timestamp)
 118         {
 119         ASN1_GENERALIZEDTIME *gen;
 120         char genstr[20];
 121         gen = ASN1_GENERALIZEDTIME_new();
 122         ASN1_GENERALIZEDTIME_adj(gen, (time_t)0,
 123                                         (int)(timestamp / 86400000),
 124                                         (timestamp % 86400000) / 1000);
 125         /* Note GeneralizedTime from ASN1_GENERALIZETIME_adj is always 15
 126          * characters long with a final Z. Update it with fractional seconds.
 127          */
 128         BIO_snprintf(genstr, sizeof(genstr), "%.14s.%03dZ",
 129                                 ASN1_STRING_data(gen),
 130                                 (unsigned int)(timestamp % 1000));
 131         ASN1_GENERALIZEDTIME_set_string(gen, genstr);
 132         ASN1_GENERALIZEDTIME_print(out, gen);
 133         ASN1_GENERALIZEDTIME_free(gen);
 134         }
 135
 136 static int i2r_scts(X509V3_EXT_METHOD *method, ASN1_OCTET_STRING *oct,
 137                        BIO *out, int indent)
 138         {
 139         SCTS_TIMESTAMP timestamp;
 140         unsigned char* data = oct->data;
 141         unsigned short listlen, sctlen = 0, fieldlen;
 142
 143         if (oct->length < 2)
 144                 return 0;
 145         n2s(data, listlen);
 146         if (listlen != oct->length - 2)
 147                 return 0;
 148
 149         while (listlen > 0)
 150                 {
 151                 if (listlen < 2)
 152                         return 0;
 153                 n2s(data, sctlen);
 154                 listlen -= 2;
 155
 156                 if ((sctlen < 1) || (sctlen > listlen))
 157                         return 0;
 158                 listlen -= sctlen;
 159
 160                 BIO_printf(out, "%*sSigned Certificate Timestamp:", indent,
 161                            "");
 162                 BIO_printf(out, "\n%*sVersion   : ", indent + 4, "");
 163
 164                 if (*data == 0)         /* SCT v1 */
 165                         {
 166                         BIO_printf(out, "v1(0)");
 167
 168                         /* Fixed-length header:
 169                          *              struct {
 170                          * (1 byte)       Version sct_version;
 171                          * (32 bytes)     LogID id;
 172                          * (8 bytes)      uint64 timestamp;
 173                          * (2 bytes + ?)  CtExtensions extensions;
 174                          */
 175                         if (sctlen < 43)
 176                                 return 0;
 177                         sctlen -= 43;
 178
 179                         BIO_printf(out, "\n%*sLog ID    : ", indent + 4, "");
 180                         BIO_hex_string(out, indent + 16, 16, data + 1, 32);
 181
 182                         data += 33;
 183                         n2l8(data, timestamp);
 184                         BIO_printf(out, "\n%*sTimestamp : ", indent + 4, "");
 185                         timestamp_print(out, timestamp);
 186
 187                         n2s(data, fieldlen);
 188                         if (sctlen < fieldlen)
 189                                 return 0;
 190                         sctlen -= fieldlen;
 191                         BIO_printf(out, "\n%*sExtensions: ", indent + 4, "");
 192                         if (fieldlen == 0)
 193                                 BIO_printf(out, "none");
 194                         else
 195                                 BIO_hex_string(out, indent + 16, 16, data,
 196                                                fieldlen);
 197                         data += fieldlen;
 198
 199                         /* digitally-signed struct header:
 200                          * (1 byte) Hash algorithm
 201                          * (1 byte) Signature algorithm
 202                          * (2 bytes + ?) Signature
 203                          */
 204                         if (sctlen < 4)
 205                                 return 0;
 206                         sctlen -= 4;
 207
 208                         BIO_printf(out, "\n%*sSignature : ", indent + 4, "");
 209                         tls12_signature_print(out, data);
 210                         data += 2;
 211                         n2s(data, fieldlen);
 212                         if (sctlen != fieldlen)
 213                                 return 0;
 214                         BIO_printf(out, "\n%*s            ", indent + 4, "");
 215                         BIO_hex_string(out, indent + 16, 16, data, fieldlen);
 216                         data += fieldlen;
 217                         }
 218                 else                    /* Unknown version */
 219                         {
 220                         BIO_printf(out, "unknown\n%*s", indent + 16, "");
 221                         BIO_hex_string(out, indent + 16, 16, data, sctlen);
 222                         data += sctlen;
 223                         }
 224
 225                 if (listlen > 0) BIO_printf(out, "\n");
 226                 }
 227
 228         return 1;
 229         }