Add support for the noCheck OCSP extension. This is
[openssl.git] / crypto / x509v3 / v3_info.c
1 /* v3_info.c */
2 /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
3  * project 1999.
4  */
5 /* ====================================================================
6  * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
7  *
8  * Redistribution and use in source and binary forms, with or without
9  * modification, are permitted provided that the following conditions
10  * are met:
11  *
12  * 1. Redistributions of source code must retain the above copyright
13  *    notice, this list of conditions and the following disclaimer. 
14  *
15  * 2. Redistributions in binary form must reproduce the above copyright
16  *    notice, this list of conditions and the following disclaimer in
17  *    the documentation and/or other materials provided with the
18  *    distribution.
19  *
20  * 3. All advertising materials mentioning features or use of this
21  *    software must display the following acknowledgment:
22  *    "This product includes software developed by the OpenSSL Project
23  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24  *
25  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26  *    endorse or promote products derived from this software without
27  *    prior written permission. For written permission, please contact
28  *    licensing@OpenSSL.org.
29  *
30  * 5. Products derived from this software may not be called "OpenSSL"
31  *    nor may "OpenSSL" appear in their names without prior written
32  *    permission of the OpenSSL Project.
33  *
34  * 6. Redistributions of any form whatsoever must retain the following
35  *    acknowledgment:
36  *    "This product includes software developed by the OpenSSL Project
37  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38  *
39  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
43  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50  * OF THE POSSIBILITY OF SUCH DAMAGE.
51  * ====================================================================
52  *
53  * This product includes cryptographic software written by Eric Young
54  * (eay@cryptsoft.com).  This product includes software written by Tim
55  * Hudson (tjh@cryptsoft.com).
56  *
57  */
58
59 #include <stdio.h>
60 #include "cryptlib.h"
61 #include <openssl/conf.h>
62 #include <openssl/asn1.h>
63 #include <openssl/asn1t.h>
64 #include <openssl/x509v3.h>
65
66 static STACK_OF(CONF_VALUE) *i2v_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
67                                 AUTHORITY_INFO_ACCESS *ainfo,
68                                                 STACK_OF(CONF_VALUE) *ret);
69 static AUTHORITY_INFO_ACCESS *v2i_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
70                                  X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval);
71
72 X509V3_EXT_METHOD v3_info =
73 { NID_info_access, X509V3_EXT_MULTILINE, &AUTHORITY_INFO_ACCESS_it,
74 0,0,0,0,
75 0,0,
76 (X509V3_EXT_I2V)i2v_AUTHORITY_INFO_ACCESS,
77 (X509V3_EXT_V2I)v2i_AUTHORITY_INFO_ACCESS,
78 0,0,
79 NULL};
80
81 ASN1_SEQUENCE(ACCESS_DESCRIPTION) = {
82         ASN1_SIMPLE(ACCESS_DESCRIPTION, method, ASN1_OBJECT),
83         ASN1_SIMPLE(ACCESS_DESCRIPTION, location, GENERAL_NAME)
84 } ASN1_SEQUENCE_END(ACCESS_DESCRIPTION);
85
86 IMPLEMENT_ASN1_FUNCTIONS(ACCESS_DESCRIPTION)
87
88 ASN1_ITEM_TEMPLATE(AUTHORITY_INFO_ACCESS) = 
89         ASN1_EX_TEMPLATE_TYPE(ASN1_TFLG_SEQUENCE_OF, 0, GeneralNames, ACCESS_DESCRIPTION)
90 ASN1_ITEM_TEMPLATE_END(AUTHORITY_INFO_ACCESS);
91
92 IMPLEMENT_ASN1_FUNCTIONS(AUTHORITY_INFO_ACCESS)
93
94 static STACK_OF(CONF_VALUE) *i2v_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
95                                 AUTHORITY_INFO_ACCESS *ainfo,
96                                                 STACK_OF(CONF_VALUE) *ret)
97 {
98         ACCESS_DESCRIPTION *desc;
99         int i;
100         char objtmp[80], *ntmp;
101         CONF_VALUE *vtmp;
102         for(i = 0; i < sk_ACCESS_DESCRIPTION_num(ainfo); i++) {
103                 desc = sk_ACCESS_DESCRIPTION_value(ainfo, i);
104                 ret = i2v_GENERAL_NAME(method, desc->location, ret);
105                 if(!ret) break;
106                 vtmp = sk_CONF_VALUE_value(ret, i);
107                 i2t_ASN1_OBJECT(objtmp, 80, desc->method);
108                 ntmp = OPENSSL_malloc(strlen(objtmp) + strlen(vtmp->name) + 5);
109                 if(!ntmp) {
110                         X509V3err(X509V3_F_I2V_AUTHORITY_INFO_ACCESS,
111                                         ERR_R_MALLOC_FAILURE);
112                         return NULL;
113                 }
114                 strcpy(ntmp, objtmp);
115                 strcat(ntmp, " - ");
116                 strcat(ntmp, vtmp->name);
117                 OPENSSL_free(vtmp->name);
118                 vtmp->name = ntmp;
119                 
120         }
121         if(!ret) return sk_CONF_VALUE_new_null();
122         return ret;
123 }
124
125 static AUTHORITY_INFO_ACCESS *v2i_AUTHORITY_INFO_ACCESS(X509V3_EXT_METHOD *method,
126                                  X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval)
127 {
128         AUTHORITY_INFO_ACCESS *ainfo = NULL;
129         CONF_VALUE *cnf, ctmp;
130         ACCESS_DESCRIPTION *acc;
131         int i, objlen;
132         char *objtmp, *ptmp;
133         if(!(ainfo = sk_ACCESS_DESCRIPTION_new_null())) {
134                 X509V3err(X509V3_F_V2I_ACCESS_DESCRIPTION,ERR_R_MALLOC_FAILURE);
135                 return NULL;
136         }
137         for(i = 0; i < sk_CONF_VALUE_num(nval); i++) {
138                 cnf = sk_CONF_VALUE_value(nval, i);
139                 if(!(acc = ACCESS_DESCRIPTION_new())
140                         || !sk_ACCESS_DESCRIPTION_push(ainfo, acc)) {
141                         X509V3err(X509V3_F_V2I_ACCESS_DESCRIPTION,ERR_R_MALLOC_FAILURE);
142                         goto err;
143                 }
144                 ptmp = strchr(cnf->name, ';');
145                 if(!ptmp) {
146                         X509V3err(X509V3_F_V2I_ACCESS_DESCRIPTION,X509V3_R_INVALID_SYNTAX);
147                         goto err;
148                 }
149                 objlen = ptmp - cnf->name;
150                 ctmp.name = ptmp + 1;
151                 ctmp.value = cnf->value;
152                 if(!(acc->location = v2i_GENERAL_NAME(method, ctx, &ctmp)))
153                                                                  goto err; 
154                 if(!(objtmp = OPENSSL_malloc(objlen + 1))) {
155                         X509V3err(X509V3_F_V2I_ACCESS_DESCRIPTION,ERR_R_MALLOC_FAILURE);
156                         goto err;
157                 }
158                 strncpy(objtmp, cnf->name, objlen);
159                 objtmp[objlen] = 0;
160                 acc->method = OBJ_txt2obj(objtmp, 0);
161                 if(!acc->method) {
162                         X509V3err(X509V3_F_V2I_ACCESS_DESCRIPTION,X509V3_R_BAD_OBJECT);
163                         ERR_add_error_data(2, "value=", objtmp);
164                         OPENSSL_free(objtmp);
165                         goto err;
166                 }
167                 OPENSSL_free(objtmp);
168
169         }
170         return ainfo;
171         err:
172         sk_ACCESS_DESCRIPTION_pop_free(ainfo, ACCESS_DESCRIPTION_free);
173         return NULL;
174 }
175
176 int i2a_ACCESS_DESCRIPTION(BIO *bp, ACCESS_DESCRIPTION* a)
177         {
178         i2a_ASN1_OBJECT(bp, a->method);
179 #ifdef UNDEF
180         i2a_GENERAL_NAME(bp, a->location);
181 #endif
182         return 2;
183         }