155714Skris/* crypto/x509/x509name.c */ 255714Skris/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 355714Skris * All rights reserved. 455714Skris * 555714Skris * This package is an SSL implementation written 655714Skris * by Eric Young (eay@cryptsoft.com). 755714Skris * The implementation was written so as to conform with Netscapes SSL. 8296341Sdelphij * 955714Skris * This library is free for commercial and non-commercial use as long as 1055714Skris * the following conditions are aheared to. The following conditions 1155714Skris * apply to all code found in this distribution, be it the RC4, RSA, 1255714Skris * lhash, DES, etc., code; not just the SSL code. The SSL documentation 1355714Skris * included with this distribution is covered by the same copyright terms 1455714Skris * except that the holder is Tim Hudson (tjh@cryptsoft.com). 15296341Sdelphij * 1655714Skris * Copyright remains Eric Young's, and as such any Copyright notices in 1755714Skris * the code are not to be removed. 1855714Skris * If this package is used in a product, Eric Young should be given attribution 1955714Skris * as the author of the parts of the library used. 2055714Skris * This can be in the form of a textual message at program startup or 2155714Skris * in documentation (online or textual) provided with the package. 22296341Sdelphij * 2355714Skris * Redistribution and use in source and binary forms, with or without 2455714Skris * modification, are permitted provided that the following conditions 2555714Skris * are met: 2655714Skris * 1. Redistributions of source code must retain the copyright 2755714Skris * notice, this list of conditions and the following disclaimer. 2855714Skris * 2. Redistributions in binary form must reproduce the above copyright 2955714Skris * notice, this list of conditions and the following disclaimer in the 3055714Skris * documentation and/or other materials provided with the distribution. 3155714Skris * 3. All advertising materials mentioning features or use of this software 3255714Skris * must display the following acknowledgement: 3355714Skris * "This product includes cryptographic software written by 3455714Skris * Eric Young (eay@cryptsoft.com)" 3555714Skris * The word 'cryptographic' can be left out if the rouines from the library 3655714Skris * being used are not cryptographic related :-). 37296341Sdelphij * 4. If you include any Windows specific code (or a derivative thereof) from 3855714Skris * the apps directory (application code) you must include an acknowledgement: 3955714Skris * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 40296341Sdelphij * 4155714Skris * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 4255714Skris * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 4355714Skris * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 4455714Skris * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 4555714Skris * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 4655714Skris * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 4755714Skris * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 4855714Skris * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 4955714Skris * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 5055714Skris * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 5155714Skris * SUCH DAMAGE. 52296341Sdelphij * 5355714Skris * The licence and distribution terms for any publically available version or 5455714Skris * derivative of this code cannot be changed. i.e. this code cannot simply be 5555714Skris * copied and put under another distribution licence 5655714Skris * [including the GNU Public Licence.] 5755714Skris */ 5855714Skris 5955714Skris#include <stdio.h> 6055714Skris#include <openssl/stack.h> 6155714Skris#include "cryptlib.h" 6255714Skris#include <openssl/asn1.h> 6355714Skris#include <openssl/objects.h> 6455714Skris#include <openssl/evp.h> 6555714Skris#include <openssl/x509.h> 6655714Skris 6755714Skrisint X509_NAME_get_text_by_NID(X509_NAME *name, int nid, char *buf, int len) 68296341Sdelphij{ 69296341Sdelphij ASN1_OBJECT *obj; 7055714Skris 71296341Sdelphij obj = OBJ_nid2obj(nid); 72296341Sdelphij if (obj == NULL) 73296341Sdelphij return (-1); 74296341Sdelphij return (X509_NAME_get_text_by_OBJ(name, obj, buf, len)); 75296341Sdelphij} 7655714Skris 7755714Skrisint X509_NAME_get_text_by_OBJ(X509_NAME *name, ASN1_OBJECT *obj, char *buf, 78296341Sdelphij int len) 79296341Sdelphij{ 80296341Sdelphij int i; 81296341Sdelphij ASN1_STRING *data; 8255714Skris 83296341Sdelphij i = X509_NAME_get_index_by_OBJ(name, obj, -1); 84296341Sdelphij if (i < 0) 85296341Sdelphij return (-1); 86296341Sdelphij data = X509_NAME_ENTRY_get_data(X509_NAME_get_entry(name, i)); 87296341Sdelphij i = (data->length > (len - 1)) ? (len - 1) : data->length; 88296341Sdelphij if (buf == NULL) 89296341Sdelphij return (data->length); 90296341Sdelphij memcpy(buf, data->data, i); 91296341Sdelphij buf[i] = '\0'; 92296341Sdelphij return (i); 93296341Sdelphij} 9455714Skris 9555714Skrisint X509_NAME_entry_count(X509_NAME *name) 96296341Sdelphij{ 97296341Sdelphij if (name == NULL) 98296341Sdelphij return (0); 99296341Sdelphij return (sk_X509_NAME_ENTRY_num(name->entries)); 100296341Sdelphij} 10155714Skris 10255714Skrisint X509_NAME_get_index_by_NID(X509_NAME *name, int nid, int lastpos) 103296341Sdelphij{ 104296341Sdelphij ASN1_OBJECT *obj; 10555714Skris 106296341Sdelphij obj = OBJ_nid2obj(nid); 107296341Sdelphij if (obj == NULL) 108296341Sdelphij return (-2); 109296341Sdelphij return (X509_NAME_get_index_by_OBJ(name, obj, lastpos)); 110296341Sdelphij} 11155714Skris 11255714Skris/* NOTE: you should be passsing -1, not 0 as lastpos */ 113296341Sdelphijint X509_NAME_get_index_by_OBJ(X509_NAME *name, ASN1_OBJECT *obj, int lastpos) 114296341Sdelphij{ 115296341Sdelphij int n; 116296341Sdelphij X509_NAME_ENTRY *ne; 117296341Sdelphij STACK_OF(X509_NAME_ENTRY) *sk; 11855714Skris 119296341Sdelphij if (name == NULL) 120296341Sdelphij return (-1); 121296341Sdelphij if (lastpos < 0) 122296341Sdelphij lastpos = -1; 123296341Sdelphij sk = name->entries; 124296341Sdelphij n = sk_X509_NAME_ENTRY_num(sk); 125296341Sdelphij for (lastpos++; lastpos < n; lastpos++) { 126296341Sdelphij ne = sk_X509_NAME_ENTRY_value(sk, lastpos); 127296341Sdelphij if (OBJ_cmp(ne->object, obj) == 0) 128296341Sdelphij return (lastpos); 129296341Sdelphij } 130296341Sdelphij return (-1); 131296341Sdelphij} 13255714Skris 13355714SkrisX509_NAME_ENTRY *X509_NAME_get_entry(X509_NAME *name, int loc) 134296341Sdelphij{ 135296341Sdelphij if (name == NULL || sk_X509_NAME_ENTRY_num(name->entries) <= loc 136296341Sdelphij || loc < 0) 137296341Sdelphij return (NULL); 138296341Sdelphij else 139296341Sdelphij return (sk_X509_NAME_ENTRY_value(name->entries, loc)); 140296341Sdelphij} 14155714Skris 14255714SkrisX509_NAME_ENTRY *X509_NAME_delete_entry(X509_NAME *name, int loc) 143296341Sdelphij{ 144296341Sdelphij X509_NAME_ENTRY *ret; 145296341Sdelphij int i, n, set_prev, set_next; 146296341Sdelphij STACK_OF(X509_NAME_ENTRY) *sk; 14755714Skris 148296341Sdelphij if (name == NULL || sk_X509_NAME_ENTRY_num(name->entries) <= loc 149296341Sdelphij || loc < 0) 150296341Sdelphij return (NULL); 151296341Sdelphij sk = name->entries; 152296341Sdelphij ret = sk_X509_NAME_ENTRY_delete(sk, loc); 153296341Sdelphij n = sk_X509_NAME_ENTRY_num(sk); 154296341Sdelphij name->modified = 1; 155296341Sdelphij if (loc == n) 156296341Sdelphij return (ret); 15755714Skris 158296341Sdelphij /* else we need to fixup the set field */ 159296341Sdelphij if (loc != 0) 160296341Sdelphij set_prev = (sk_X509_NAME_ENTRY_value(sk, loc - 1))->set; 161296341Sdelphij else 162296341Sdelphij set_prev = ret->set - 1; 163296341Sdelphij set_next = sk_X509_NAME_ENTRY_value(sk, loc)->set; 16455714Skris 165296341Sdelphij /*- 166296341Sdelphij * set_prev is the previous set 167296341Sdelphij * set is the current set 168296341Sdelphij * set_next is the following 169296341Sdelphij * prev 1 1 1 1 1 1 1 1 170296341Sdelphij * set 1 1 2 2 171296341Sdelphij * next 1 1 2 2 2 2 3 2 172296341Sdelphij * so basically only if prev and next differ by 2, then 173296341Sdelphij * re-number down by 1 174296341Sdelphij */ 175296341Sdelphij if (set_prev + 1 < set_next) 176296341Sdelphij for (i = loc; i < n; i++) 177296341Sdelphij sk_X509_NAME_ENTRY_value(sk, i)->set--; 178296341Sdelphij return (ret); 179296341Sdelphij} 18055714Skris 18159191Skrisint X509_NAME_add_entry_by_OBJ(X509_NAME *name, ASN1_OBJECT *obj, int type, 182296341Sdelphij unsigned char *bytes, int len, int loc, 183296341Sdelphij int set) 18459191Skris{ 185296341Sdelphij X509_NAME_ENTRY *ne; 186296341Sdelphij int ret; 187296341Sdelphij ne = X509_NAME_ENTRY_create_by_OBJ(NULL, obj, type, bytes, len); 188296341Sdelphij if (!ne) 189296341Sdelphij return 0; 190296341Sdelphij ret = X509_NAME_add_entry(name, ne, loc, set); 191296341Sdelphij X509_NAME_ENTRY_free(ne); 192296341Sdelphij return ret; 19359191Skris} 19459191Skris 19559191Skrisint X509_NAME_add_entry_by_NID(X509_NAME *name, int nid, int type, 196296341Sdelphij unsigned char *bytes, int len, int loc, 197296341Sdelphij int set) 19859191Skris{ 199296341Sdelphij X509_NAME_ENTRY *ne; 200296341Sdelphij int ret; 201296341Sdelphij ne = X509_NAME_ENTRY_create_by_NID(NULL, nid, type, bytes, len); 202296341Sdelphij if (!ne) 203296341Sdelphij return 0; 204296341Sdelphij ret = X509_NAME_add_entry(name, ne, loc, set); 205296341Sdelphij X509_NAME_ENTRY_free(ne); 206296341Sdelphij return ret; 20759191Skris} 20859191Skris 209160814Ssimonint X509_NAME_add_entry_by_txt(X509_NAME *name, const char *field, int type, 210296341Sdelphij const unsigned char *bytes, int len, int loc, 211296341Sdelphij int set) 21259191Skris{ 213296341Sdelphij X509_NAME_ENTRY *ne; 214296341Sdelphij int ret; 215296341Sdelphij ne = X509_NAME_ENTRY_create_by_txt(NULL, field, type, bytes, len); 216296341Sdelphij if (!ne) 217296341Sdelphij return 0; 218296341Sdelphij ret = X509_NAME_add_entry(name, ne, loc, set); 219296341Sdelphij X509_NAME_ENTRY_free(ne); 220296341Sdelphij return ret; 22159191Skris} 22259191Skris 223296341Sdelphij/* 224296341Sdelphij * if set is -1, append to previous set, 0 'a new one', and 1, prepend to the 225296341Sdelphij * guy we are about to stomp on. 226296341Sdelphij */ 22755714Skrisint X509_NAME_add_entry(X509_NAME *name, X509_NAME_ENTRY *ne, int loc, 228296341Sdelphij int set) 229296341Sdelphij{ 230296341Sdelphij X509_NAME_ENTRY *new_name = NULL; 231296341Sdelphij int n, i, inc; 232296341Sdelphij STACK_OF(X509_NAME_ENTRY) *sk; 23355714Skris 234296341Sdelphij if (name == NULL) 235296341Sdelphij return (0); 236296341Sdelphij sk = name->entries; 237296341Sdelphij n = sk_X509_NAME_ENTRY_num(sk); 238296341Sdelphij if (loc > n) 239296341Sdelphij loc = n; 240296341Sdelphij else if (loc < 0) 241296341Sdelphij loc = n; 24255714Skris 243296341Sdelphij name->modified = 1; 24455714Skris 245296341Sdelphij if (set == -1) { 246296341Sdelphij if (loc == 0) { 247296341Sdelphij set = 0; 248296341Sdelphij inc = 1; 249296341Sdelphij } else { 250296341Sdelphij set = sk_X509_NAME_ENTRY_value(sk, loc - 1)->set; 251296341Sdelphij inc = 0; 252296341Sdelphij } 253296341Sdelphij } else { /* if (set >= 0) */ 25455714Skris 255296341Sdelphij if (loc >= n) { 256296341Sdelphij if (loc != 0) 257296341Sdelphij set = sk_X509_NAME_ENTRY_value(sk, loc - 1)->set + 1; 258296341Sdelphij else 259296341Sdelphij set = 0; 260296341Sdelphij } else 261296341Sdelphij set = sk_X509_NAME_ENTRY_value(sk, loc)->set; 262296341Sdelphij inc = (set == 0) ? 1 : 0; 263296341Sdelphij } 26455714Skris 265296341Sdelphij if ((new_name = X509_NAME_ENTRY_dup(ne)) == NULL) 266296341Sdelphij goto err; 267296341Sdelphij new_name->set = set; 268296341Sdelphij if (!sk_X509_NAME_ENTRY_insert(sk, new_name, loc)) { 269296341Sdelphij X509err(X509_F_X509_NAME_ADD_ENTRY, ERR_R_MALLOC_FAILURE); 270296341Sdelphij goto err; 271296341Sdelphij } 272296341Sdelphij if (inc) { 273296341Sdelphij n = sk_X509_NAME_ENTRY_num(sk); 274296341Sdelphij for (i = loc + 1; i < n; i++) 275296341Sdelphij sk_X509_NAME_ENTRY_value(sk, i - 1)->set += 1; 276296341Sdelphij } 277296341Sdelphij return (1); 278296341Sdelphij err: 279296341Sdelphij if (new_name != NULL) 280296341Sdelphij X509_NAME_ENTRY_free(new_name); 281296341Sdelphij return (0); 282296341Sdelphij} 283296341Sdelphij 28459191SkrisX509_NAME_ENTRY *X509_NAME_ENTRY_create_by_txt(X509_NAME_ENTRY **ne, 285296341Sdelphij const char *field, int type, 286296341Sdelphij const unsigned char *bytes, 287296341Sdelphij int len) 288296341Sdelphij{ 289296341Sdelphij ASN1_OBJECT *obj; 290296341Sdelphij X509_NAME_ENTRY *nentry; 29159191Skris 292296341Sdelphij obj = OBJ_txt2obj(field, 0); 293296341Sdelphij if (obj == NULL) { 294296341Sdelphij X509err(X509_F_X509_NAME_ENTRY_CREATE_BY_TXT, 295296341Sdelphij X509_R_INVALID_FIELD_NAME); 296296341Sdelphij ERR_add_error_data(2, "name=", field); 297296341Sdelphij return (NULL); 298296341Sdelphij } 299296341Sdelphij nentry = X509_NAME_ENTRY_create_by_OBJ(ne, obj, type, bytes, len); 300296341Sdelphij ASN1_OBJECT_free(obj); 301296341Sdelphij return nentry; 302296341Sdelphij} 30359191Skris 30455714SkrisX509_NAME_ENTRY *X509_NAME_ENTRY_create_by_NID(X509_NAME_ENTRY **ne, int nid, 305296341Sdelphij int type, unsigned char *bytes, 306296341Sdelphij int len) 307296341Sdelphij{ 308296341Sdelphij ASN1_OBJECT *obj; 309296341Sdelphij X509_NAME_ENTRY *nentry; 31055714Skris 311296341Sdelphij obj = OBJ_nid2obj(nid); 312296341Sdelphij if (obj == NULL) { 313296341Sdelphij X509err(X509_F_X509_NAME_ENTRY_CREATE_BY_NID, X509_R_UNKNOWN_NID); 314296341Sdelphij return (NULL); 315296341Sdelphij } 316296341Sdelphij nentry = X509_NAME_ENTRY_create_by_OBJ(ne, obj, type, bytes, len); 317296341Sdelphij ASN1_OBJECT_free(obj); 318296341Sdelphij return nentry; 319296341Sdelphij} 32055714Skris 32155714SkrisX509_NAME_ENTRY *X509_NAME_ENTRY_create_by_OBJ(X509_NAME_ENTRY **ne, 322296341Sdelphij ASN1_OBJECT *obj, int type, 323296341Sdelphij const unsigned char *bytes, 324296341Sdelphij int len) 325296341Sdelphij{ 326296341Sdelphij X509_NAME_ENTRY *ret; 32755714Skris 328296341Sdelphij if ((ne == NULL) || (*ne == NULL)) { 329296341Sdelphij if ((ret = X509_NAME_ENTRY_new()) == NULL) 330296341Sdelphij return (NULL); 331296341Sdelphij } else 332296341Sdelphij ret = *ne; 33355714Skris 334296341Sdelphij if (!X509_NAME_ENTRY_set_object(ret, obj)) 335296341Sdelphij goto err; 336296341Sdelphij if (!X509_NAME_ENTRY_set_data(ret, type, bytes, len)) 337296341Sdelphij goto err; 33859191Skris 339296341Sdelphij if ((ne != NULL) && (*ne == NULL)) 340296341Sdelphij *ne = ret; 341296341Sdelphij return (ret); 342296341Sdelphij err: 343296341Sdelphij if ((ne == NULL) || (ret != *ne)) 344296341Sdelphij X509_NAME_ENTRY_free(ret); 345296341Sdelphij return (NULL); 346296341Sdelphij} 34755714Skris 34855714Skrisint X509_NAME_ENTRY_set_object(X509_NAME_ENTRY *ne, ASN1_OBJECT *obj) 349296341Sdelphij{ 350296341Sdelphij if ((ne == NULL) || (obj == NULL)) { 351296341Sdelphij X509err(X509_F_X509_NAME_ENTRY_SET_OBJECT, 352296341Sdelphij ERR_R_PASSED_NULL_PARAMETER); 353296341Sdelphij return (0); 354296341Sdelphij } 355296341Sdelphij ASN1_OBJECT_free(ne->object); 356296341Sdelphij ne->object = OBJ_dup(obj); 357296341Sdelphij return ((ne->object == NULL) ? 0 : 1); 358296341Sdelphij} 35955714Skris 36055714Skrisint X509_NAME_ENTRY_set_data(X509_NAME_ENTRY *ne, int type, 361296341Sdelphij const unsigned char *bytes, int len) 362296341Sdelphij{ 363296341Sdelphij int i; 36455714Skris 365296341Sdelphij if ((ne == NULL) || ((bytes == NULL) && (len != 0))) 366296341Sdelphij return (0); 367296341Sdelphij if ((type > 0) && (type & MBSTRING_FLAG)) 368296341Sdelphij return ASN1_STRING_set_by_NID(&ne->value, bytes, 369296341Sdelphij len, type, 370296341Sdelphij OBJ_obj2nid(ne->object)) ? 1 : 0; 371296341Sdelphij if (len < 0) 372296341Sdelphij len = strlen((const char *)bytes); 373296341Sdelphij i = ASN1_STRING_set(ne->value, bytes, len); 374296341Sdelphij if (!i) 375296341Sdelphij return (0); 376296341Sdelphij if (type != V_ASN1_UNDEF) { 377296341Sdelphij if (type == V_ASN1_APP_CHOOSE) 378296341Sdelphij ne->value->type = ASN1_PRINTABLE_type(bytes, len); 379296341Sdelphij else 380296341Sdelphij ne->value->type = type; 381296341Sdelphij } 382296341Sdelphij return (1); 383296341Sdelphij} 38455714Skris 38555714SkrisASN1_OBJECT *X509_NAME_ENTRY_get_object(X509_NAME_ENTRY *ne) 386296341Sdelphij{ 387296341Sdelphij if (ne == NULL) 388296341Sdelphij return (NULL); 389296341Sdelphij return (ne->object); 390296341Sdelphij} 39155714Skris 39255714SkrisASN1_STRING *X509_NAME_ENTRY_get_data(X509_NAME_ENTRY *ne) 393296341Sdelphij{ 394296341Sdelphij if (ne == NULL) 395296341Sdelphij return (NULL); 396296341Sdelphij return (ne->value); 397296341Sdelphij} 398