crypto/x509v3/v3_scts.c

   1 /* v3_scts.c */
   2 /* Written by Rob Stradling (rob@comodo.com) for the OpenSSL project 2014.
   3  */
   4 /* ====================================================================
   5  * Copyright (c) 2014 The OpenSSL Project.  All rights reserved.
   6  *
   7  * Redistribution and use in source and binary forms, with or without
   8  * modification, are permitted provided that the following conditions
   9  * are met:
  10  *
  11  * 1. Redistributions of source code must retain the above copyright
  12  *    notice, this list of conditions and the following disclaimer.
  13  *
  14  * 2. Redistributions in binary form must reproduce the above copyright
  15  *    notice, this list of conditions and the following disclaimer in
  16  *    the documentation and/or other materials provided with the
  17  *    distribution.
  18  *
  19  * 3. All advertising materials mentioning features or use of this
  20  *    software must display the following acknowledgment:
  21  *    "This product includes software developed by the OpenSSL Project
  22  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
  23  *
  24  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  25  *    endorse or promote products derived from this software without
  26  *    prior written permission. For written permission, please contact
  27  *    licensing@OpenSSL.org.
  28  *
  29  * 5. Products derived from this software may not be called "OpenSSL"
  30  *    nor may "OpenSSL" appear in their names without prior written
  31  *    permission of the OpenSSL Project.
  32  *
  33  * 6. Redistributions of any form whatsoever must retain the following
  34  *    acknowledgment:
  35  *    "This product includes software developed by the OpenSSL Project
  36  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
  37  *
  38  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  39  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  40  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  41  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
  42  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  43  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  44  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  45  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  46  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  47  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  48  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  49  * OF THE POSSIBILITY OF SUCH DAMAGE.
  50  * ====================================================================
  51  *
  52  * This product includes cryptographic software written by Eric Young
  53  * (eay@cryptsoft.com).  This product includes software written by Tim
  54  * Hudson (tjh@cryptsoft.com).
  55  *
  56  */
  57
  58
  59 #include <stdio.h>
  60 #include "cryptlib.h"
  61 #include <openssl/asn1.h>
  62 #include <openssl/x509v3.h>
  63 #include <openssl/bn.h>
  64 #include "../ssl/ssl_locl.h"
  65
  66 #if (defined(_WIN32) || defined(_WIN64)) && !defined(__MINGW32__)
  67 #define SCTS_TIMESTAMP unsigned __int64
  68 #elif defined(__arch64__)
  69 #define SCTS_TIMESTAMP unsigned long
  70 #else
  71 #define SCTS_TIMESTAMP unsigned long long
  72 #endif
  73
  74
  75 static int i2r_scts(X509V3_EXT_METHOD *method, ASN1_OCTET_STRING *oct, BIO *out, int indent);
  76
  77 const X509V3_EXT_METHOD v3_ct_scts[] = {
  78 { NID_ct_precert_scts, 0, ASN1_ITEM_ref(ASN1_OCTET_STRING),
  79 0,0,0,0,
  80 0,0,0,0,
  81 (X509V3_EXT_I2R)i2r_scts, NULL,
  82 NULL},
  83
  84 { NID_ct_cert_scts, 0, ASN1_ITEM_ref(ASN1_OCTET_STRING),
  85 0,0,0,0,
  86 0,0,0,0,
  87 (X509V3_EXT_I2R)i2r_scts, NULL,
  88 NULL},
  89 };
  90
  91 static void tls12_signature_print(BIO *out, const unsigned char *data)
  92         {
  93         int nid = NID_undef;
  94         /* RFC6962 only permits two signature algorithms */
  95         if (data[0] == TLSEXT_hash_sha256)
  96                 {
  97                 if (data[1] == TLSEXT_signature_rsa)
  98                         nid = NID_sha256WithRSAEncryption;
  99                 else if (data[1] == TLSEXT_signature_ecdsa)
 100                         nid = NID_ecdsa_with_SHA256;
 101                 }
 102         if (nid == NID_undef)
 103                 BIO_printf(out, "%02X%02X", data[0], data[1]);
 104         else
 105                 BIO_printf(out, "%s", OBJ_nid2ln(nid));
 106         }
 107
 108 static void timestamp_print(BIO *out, SCTS_TIMESTAMP timestamp)
 109         {
 110         ASN1_GENERALIZEDTIME *gen;
 111         char genstr[20];
 112         gen = ASN1_GENERALIZEDTIME_new();
 113         ASN1_GENERALIZEDTIME_adj(gen, (time_t)0,
 114                                         (int)(timestamp / 86400000),
 115                                         (timestamp % 86400000) / 1000);
 116         /* Note GeneralizedTime from ASN1_GENERALIZETIME_adj is always 15
 117          * characters long with a final Z. Update it with fractional seconds.
 118          */
 119         BIO_snprintf(genstr, sizeof(genstr), "%.14s.%03dZ",
 120                                 ASN1_STRING_data(gen),
 121                                 (unsigned int)(timestamp % 1000));
 122         ASN1_GENERALIZEDTIME_set_string(gen, genstr);
 123         ASN1_GENERALIZEDTIME_print(out, gen);
 124         ASN1_GENERALIZEDTIME_free(gen);
 125         }
 126
 127 static int i2r_scts(X509V3_EXT_METHOD *method, ASN1_OCTET_STRING *oct,
 128                        BIO *out, int indent)
 129         {
 130         SCTS_TIMESTAMP timestamp;
 131         unsigned char* data = oct->data;
 132         unsigned short listlen, sctlen = 0, fieldlen;
 133
 134         if (oct->length < 2)
 135                 return 0;
 136         n2s(data, listlen);
 137         if (listlen != oct->length - 2)
 138                 return 0;
 139
 140         while (listlen > 0)
 141                 {
 142                 if (listlen < 2)
 143                         return 0;
 144                 n2s(data, sctlen);
 145                 listlen -= 2;
 146
 147                 if ((sctlen < 1) || (sctlen > listlen))
 148                         return 0;
 149                 listlen -= sctlen;
 150
 151                 BIO_printf(out, "%*sSigned Certificate Timestamp:", indent,
 152                            "");
 153                 BIO_printf(out, "\n%*sVersion   : ", indent + 4, "");
 154
 155                 if (*data == 0)         /* SCT v1 */
 156                         {
 157                         BIO_printf(out, "v1(0)");
 158
 159                         /* Fixed-length header:
 160                          *              struct {
 161                          * (1 byte)       Version sct_version;
 162                          * (32 bytes)     LogID id;
 163                          * (8 bytes)      uint64 timestamp;
 164                          * (2 bytes + ?)  CtExtensions extensions;
 165                          */
 166                         if (sctlen < 43)
 167                                 return 0;
 168                         sctlen -= 43;
 169
 170                         BIO_printf(out, "\n%*sLog ID    : ", indent + 4, "");
 171                         BIO_hex_string(out, indent + 16, 16, data + 1, 32);
 172
 173                         data += 33;
 174                         n2l8(data, timestamp);
 175                         BIO_printf(out, "\n%*sTimestamp : ", indent + 4, "");
 176                         timestamp_print(out, timestamp);
 177
 178                         n2s(data, fieldlen);
 179                         if (sctlen < fieldlen)
 180                                 return 0;
 181                         sctlen -= fieldlen;
 182                         BIO_printf(out, "\n%*sExtensions: ", indent + 4, "");
 183                         if (fieldlen == 0)
 184                                 BIO_printf(out, "none");
 185                         else
 186                                 BIO_hex_string(out, indent + 16, 16, data,
 187                                                fieldlen);
 188                         data += fieldlen;
 189
 190                         /* digitally-signed struct header:
 191                          * (1 byte) Hash algorithm
 192                          * (1 byte) Signature algorithm
 193                          * (2 bytes + ?) Signature
 194                          */
 195                         if (sctlen < 4)
 196                                 return 0;
 197                         sctlen -= 4;
 198
 199                         BIO_printf(out, "\n%*sSignature : ", indent + 4, "");
 200                         tls12_signature_print(out, data);
 201                         data += 2;
 202                         n2s(data, fieldlen);
 203                         if (sctlen != fieldlen)
 204                                 return 0;
 205                         BIO_printf(out, "\n%*s            ", indent + 4, "");
 206                         BIO_hex_string(out, indent + 16, 16, data, fieldlen);
 207                         data += fieldlen;
 208                         }
 209                 else                    /* Unknown version */
 210                         {
 211                         BIO_printf(out, "unknown\n%*s", indent + 16, "");
 212                         BIO_hex_string(out, indent + 16, 16, data, sctlen);
 213                         data += sctlen;
 214                         }
 215
 216                 if (listlen > 0) BIO_printf(out, "\n");
 217                 }
 218
 219         return 1;
 220         }