x509name.c revision 160814
155714Skris/* crypto/x509/x509name.c */ 255714Skris/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 355714Skris * All rights reserved. 455714Skris * 555714Skris * This package is an SSL implementation written 655714Skris * by Eric Young (eay@cryptsoft.com). 755714Skris * The implementation was written so as to conform with Netscapes SSL. 855714Skris * 955714Skris * This library is free for commercial and non-commercial use as long as 1055714Skris * the following conditions are aheared to. The following conditions 1155714Skris * apply to all code found in this distribution, be it the RC4, RSA, 1255714Skris * lhash, DES, etc., code; not just the SSL code. The SSL documentation 1355714Skris * included with this distribution is covered by the same copyright terms 1455714Skris * except that the holder is Tim Hudson (tjh@cryptsoft.com). 1555714Skris * 1655714Skris * Copyright remains Eric Young's, and as such any Copyright notices in 1755714Skris * the code are not to be removed. 1855714Skris * If this package is used in a product, Eric Young should be given attribution 1955714Skris * as the author of the parts of the library used. 2055714Skris * This can be in the form of a textual message at program startup or 2155714Skris * in documentation (online or textual) provided with the package. 2255714Skris * 2355714Skris * Redistribution and use in source and binary forms, with or without 2455714Skris * modification, are permitted provided that the following conditions 2555714Skris * are met: 2655714Skris * 1. Redistributions of source code must retain the copyright 2755714Skris * notice, this list of conditions and the following disclaimer. 2855714Skris * 2. Redistributions in binary form must reproduce the above copyright 2955714Skris * notice, this list of conditions and the following disclaimer in the 3055714Skris * documentation and/or other materials provided with the distribution. 3155714Skris * 3. All advertising materials mentioning features or use of this software 3255714Skris * must display the following acknowledgement: 3355714Skris * "This product includes cryptographic software written by 3455714Skris * Eric Young (eay@cryptsoft.com)" 3555714Skris * The word 'cryptographic' can be left out if the rouines from the library 3655714Skris * being used are not cryptographic related :-). 3755714Skris * 4. If you include any Windows specific code (or a derivative thereof) from 3855714Skris * the apps directory (application code) you must include an acknowledgement: 3955714Skris * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 4055714Skris * 4155714Skris * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 4255714Skris * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 4355714Skris * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 4455714Skris * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 4555714Skris * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 4655714Skris * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 4755714Skris * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 4855714Skris * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 4955714Skris * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 5055714Skris * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 5155714Skris * SUCH DAMAGE. 5255714Skris * 5355714Skris * The licence and distribution terms for any publically available version or 5455714Skris * derivative of this code cannot be changed. i.e. this code cannot simply be 5555714Skris * copied and put under another distribution licence 5655714Skris * [including the GNU Public Licence.] 5755714Skris */ 5855714Skris 5955714Skris#include <stdio.h> 6055714Skris#include <openssl/stack.h> 6155714Skris#include "cryptlib.h" 6255714Skris#include <openssl/asn1.h> 6355714Skris#include <openssl/objects.h> 6455714Skris#include <openssl/evp.h> 6555714Skris#include <openssl/x509.h> 6655714Skris 6755714Skrisint X509_NAME_get_text_by_NID(X509_NAME *name, int nid, char *buf, int len) 6855714Skris { 6955714Skris ASN1_OBJECT *obj; 7055714Skris 7155714Skris obj=OBJ_nid2obj(nid); 7255714Skris if (obj == NULL) return(-1); 7355714Skris return(X509_NAME_get_text_by_OBJ(name,obj,buf,len)); 7455714Skris } 7555714Skris 7655714Skrisint X509_NAME_get_text_by_OBJ(X509_NAME *name, ASN1_OBJECT *obj, char *buf, 7755714Skris int len) 7855714Skris { 7955714Skris int i; 8055714Skris ASN1_STRING *data; 8155714Skris 8255714Skris i=X509_NAME_get_index_by_OBJ(name,obj,-1); 8355714Skris if (i < 0) return(-1); 8455714Skris data=X509_NAME_ENTRY_get_data(X509_NAME_get_entry(name,i)); 8555714Skris i=(data->length > (len-1))?(len-1):data->length; 8655714Skris if (buf == NULL) return(data->length); 8755714Skris memcpy(buf,data->data,i); 8855714Skris buf[i]='\0'; 8955714Skris return(i); 9055714Skris } 9155714Skris 9255714Skrisint X509_NAME_entry_count(X509_NAME *name) 9355714Skris { 9455714Skris if (name == NULL) return(0); 9555714Skris return(sk_X509_NAME_ENTRY_num(name->entries)); 9655714Skris } 9755714Skris 9855714Skrisint X509_NAME_get_index_by_NID(X509_NAME *name, int nid, int lastpos) 9955714Skris { 10055714Skris ASN1_OBJECT *obj; 10155714Skris 10255714Skris obj=OBJ_nid2obj(nid); 10355714Skris if (obj == NULL) return(-2); 10455714Skris return(X509_NAME_get_index_by_OBJ(name,obj,lastpos)); 10555714Skris } 10655714Skris 10755714Skris/* NOTE: you should be passsing -1, not 0 as lastpos */ 10855714Skrisint X509_NAME_get_index_by_OBJ(X509_NAME *name, ASN1_OBJECT *obj, 10955714Skris int lastpos) 11055714Skris { 11155714Skris int n; 11255714Skris X509_NAME_ENTRY *ne; 11355714Skris STACK_OF(X509_NAME_ENTRY) *sk; 11455714Skris 11555714Skris if (name == NULL) return(-1); 11655714Skris if (lastpos < 0) 11755714Skris lastpos= -1; 11855714Skris sk=name->entries; 11955714Skris n=sk_X509_NAME_ENTRY_num(sk); 12055714Skris for (lastpos++; lastpos < n; lastpos++) 12155714Skris { 12255714Skris ne=sk_X509_NAME_ENTRY_value(sk,lastpos); 12355714Skris if (OBJ_cmp(ne->object,obj) == 0) 12455714Skris return(lastpos); 12555714Skris } 12655714Skris return(-1); 12755714Skris } 12855714Skris 12955714SkrisX509_NAME_ENTRY *X509_NAME_get_entry(X509_NAME *name, int loc) 13055714Skris { 13155714Skris if(name == NULL || sk_X509_NAME_ENTRY_num(name->entries) <= loc 13255714Skris || loc < 0) 13355714Skris return(NULL); 13455714Skris else 13555714Skris return(sk_X509_NAME_ENTRY_value(name->entries,loc)); 13655714Skris } 13755714Skris 13855714SkrisX509_NAME_ENTRY *X509_NAME_delete_entry(X509_NAME *name, int loc) 13955714Skris { 14055714Skris X509_NAME_ENTRY *ret; 14155714Skris int i,n,set_prev,set_next; 14255714Skris STACK_OF(X509_NAME_ENTRY) *sk; 14355714Skris 14455714Skris if (name == NULL || sk_X509_NAME_ENTRY_num(name->entries) <= loc 14555714Skris || loc < 0) 14655714Skris return(NULL); 14755714Skris sk=name->entries; 14855714Skris ret=sk_X509_NAME_ENTRY_delete(sk,loc); 14955714Skris n=sk_X509_NAME_ENTRY_num(sk); 15055714Skris name->modified=1; 15155714Skris if (loc == n) return(ret); 15255714Skris 15355714Skris /* else we need to fixup the set field */ 15455714Skris if (loc != 0) 15555714Skris set_prev=(sk_X509_NAME_ENTRY_value(sk,loc-1))->set; 15655714Skris else 15755714Skris set_prev=ret->set-1; 15855714Skris set_next=sk_X509_NAME_ENTRY_value(sk,loc)->set; 15955714Skris 16055714Skris /* set_prev is the previous set 16155714Skris * set is the current set 16255714Skris * set_next is the following 16355714Skris * prev 1 1 1 1 1 1 1 1 16455714Skris * set 1 1 2 2 16555714Skris * next 1 1 2 2 2 2 3 2 16655714Skris * so basically only if prev and next differ by 2, then 16755714Skris * re-number down by 1 */ 16855714Skris if (set_prev+1 < set_next) 16955714Skris for (i=loc; i<n; i++) 17055714Skris sk_X509_NAME_ENTRY_value(sk,i)->set--; 17155714Skris return(ret); 17255714Skris } 17355714Skris 17459191Skrisint X509_NAME_add_entry_by_OBJ(X509_NAME *name, ASN1_OBJECT *obj, int type, 17559191Skris unsigned char *bytes, int len, int loc, int set) 17659191Skris{ 17759191Skris X509_NAME_ENTRY *ne; 17859191Skris int ret; 17959191Skris ne = X509_NAME_ENTRY_create_by_OBJ(NULL, obj, type, bytes, len); 18059191Skris if(!ne) return 0; 18159191Skris ret = X509_NAME_add_entry(name, ne, loc, set); 18259191Skris X509_NAME_ENTRY_free(ne); 18359191Skris return ret; 18459191Skris} 18559191Skris 18659191Skrisint X509_NAME_add_entry_by_NID(X509_NAME *name, int nid, int type, 18759191Skris unsigned char *bytes, int len, int loc, int set) 18859191Skris{ 18959191Skris X509_NAME_ENTRY *ne; 19059191Skris int ret; 19159191Skris ne = X509_NAME_ENTRY_create_by_NID(NULL, nid, type, bytes, len); 19259191Skris if(!ne) return 0; 19359191Skris ret = X509_NAME_add_entry(name, ne, loc, set); 19459191Skris X509_NAME_ENTRY_free(ne); 19559191Skris return ret; 19659191Skris} 19759191Skris 198160814Ssimonint X509_NAME_add_entry_by_txt(X509_NAME *name, const char *field, int type, 199160814Ssimon const unsigned char *bytes, int len, int loc, int set) 20059191Skris{ 20159191Skris X509_NAME_ENTRY *ne; 20259191Skris int ret; 20359191Skris ne = X509_NAME_ENTRY_create_by_txt(NULL, field, type, bytes, len); 20459191Skris if(!ne) return 0; 20559191Skris ret = X509_NAME_add_entry(name, ne, loc, set); 20659191Skris X509_NAME_ENTRY_free(ne); 20759191Skris return ret; 20859191Skris} 20959191Skris 21055714Skris/* if set is -1, append to previous set, 0 'a new one', and 1, 21155714Skris * prepend to the guy we are about to stomp on. */ 21255714Skrisint X509_NAME_add_entry(X509_NAME *name, X509_NAME_ENTRY *ne, int loc, 21355714Skris int set) 21455714Skris { 21555714Skris X509_NAME_ENTRY *new_name=NULL; 21655714Skris int n,i,inc; 21755714Skris STACK_OF(X509_NAME_ENTRY) *sk; 21855714Skris 21955714Skris if (name == NULL) return(0); 22055714Skris sk=name->entries; 22155714Skris n=sk_X509_NAME_ENTRY_num(sk); 22255714Skris if (loc > n) loc=n; 22355714Skris else if (loc < 0) loc=n; 22455714Skris 22555714Skris name->modified=1; 22655714Skris 22755714Skris if (set == -1) 22855714Skris { 22955714Skris if (loc == 0) 23055714Skris { 23155714Skris set=0; 23255714Skris inc=1; 23355714Skris } 23455714Skris else 23555714Skris { 23655714Skris set=sk_X509_NAME_ENTRY_value(sk,loc-1)->set; 23755714Skris inc=0; 23855714Skris } 23955714Skris } 24055714Skris else /* if (set >= 0) */ 24155714Skris { 24255714Skris if (loc >= n) 24355714Skris { 24455714Skris if (loc != 0) 24555714Skris set=sk_X509_NAME_ENTRY_value(sk,loc-1)->set+1; 24655714Skris else 24755714Skris set=0; 24855714Skris } 24955714Skris else 25055714Skris set=sk_X509_NAME_ENTRY_value(sk,loc)->set; 25155714Skris inc=(set == 0)?1:0; 25255714Skris } 25355714Skris 25455714Skris if ((new_name=X509_NAME_ENTRY_dup(ne)) == NULL) 25555714Skris goto err; 25655714Skris new_name->set=set; 25755714Skris if (!sk_X509_NAME_ENTRY_insert(sk,new_name,loc)) 25855714Skris { 25955714Skris X509err(X509_F_X509_NAME_ADD_ENTRY,ERR_R_MALLOC_FAILURE); 26055714Skris goto err; 26155714Skris } 26255714Skris if (inc) 26355714Skris { 26455714Skris n=sk_X509_NAME_ENTRY_num(sk); 26555714Skris for (i=loc+1; i<n; i++) 26655714Skris sk_X509_NAME_ENTRY_value(sk,i-1)->set+=1; 26755714Skris } 26855714Skris return(1); 26955714Skriserr: 27055714Skris if (new_name != NULL) 27155714Skris X509_NAME_ENTRY_free(new_name); 27255714Skris return(0); 27355714Skris } 27455714Skris 27559191SkrisX509_NAME_ENTRY *X509_NAME_ENTRY_create_by_txt(X509_NAME_ENTRY **ne, 276160814Ssimon const char *field, int type, const unsigned char *bytes, int len) 27759191Skris { 27859191Skris ASN1_OBJECT *obj; 27959191Skris X509_NAME_ENTRY *nentry; 28059191Skris 28159191Skris obj=OBJ_txt2obj(field, 0); 28259191Skris if (obj == NULL) 28359191Skris { 28459191Skris X509err(X509_F_X509_NAME_ENTRY_CREATE_BY_TXT, 28559191Skris X509_R_INVALID_FIELD_NAME); 28659191Skris ERR_add_error_data(2, "name=", field); 28759191Skris return(NULL); 28859191Skris } 28959191Skris nentry = X509_NAME_ENTRY_create_by_OBJ(ne,obj,type,bytes,len); 29059191Skris ASN1_OBJECT_free(obj); 29159191Skris return nentry; 29259191Skris } 29359191Skris 29455714SkrisX509_NAME_ENTRY *X509_NAME_ENTRY_create_by_NID(X509_NAME_ENTRY **ne, int nid, 29555714Skris int type, unsigned char *bytes, int len) 29655714Skris { 29755714Skris ASN1_OBJECT *obj; 29859191Skris X509_NAME_ENTRY *nentry; 29955714Skris 30055714Skris obj=OBJ_nid2obj(nid); 30155714Skris if (obj == NULL) 30255714Skris { 30355714Skris X509err(X509_F_X509_NAME_ENTRY_CREATE_BY_NID,X509_R_UNKNOWN_NID); 30455714Skris return(NULL); 30555714Skris } 30659191Skris nentry = X509_NAME_ENTRY_create_by_OBJ(ne,obj,type,bytes,len); 30759191Skris ASN1_OBJECT_free(obj); 30859191Skris return nentry; 30955714Skris } 31055714Skris 31155714SkrisX509_NAME_ENTRY *X509_NAME_ENTRY_create_by_OBJ(X509_NAME_ENTRY **ne, 312160814Ssimon ASN1_OBJECT *obj, int type, const unsigned char *bytes, int len) 31355714Skris { 31455714Skris X509_NAME_ENTRY *ret; 31555714Skris 31655714Skris if ((ne == NULL) || (*ne == NULL)) 31755714Skris { 31855714Skris if ((ret=X509_NAME_ENTRY_new()) == NULL) 31955714Skris return(NULL); 32055714Skris } 32155714Skris else 32255714Skris ret= *ne; 32355714Skris 32455714Skris if (!X509_NAME_ENTRY_set_object(ret,obj)) 32555714Skris goto err; 32655714Skris if (!X509_NAME_ENTRY_set_data(ret,type,bytes,len)) 32755714Skris goto err; 32859191Skris 32955714Skris if ((ne != NULL) && (*ne == NULL)) *ne=ret; 33055714Skris return(ret); 33155714Skriserr: 33255714Skris if ((ne == NULL) || (ret != *ne)) 33355714Skris X509_NAME_ENTRY_free(ret); 33455714Skris return(NULL); 33555714Skris } 33655714Skris 33755714Skrisint X509_NAME_ENTRY_set_object(X509_NAME_ENTRY *ne, ASN1_OBJECT *obj) 33855714Skris { 33955714Skris if ((ne == NULL) || (obj == NULL)) 34055714Skris { 34155714Skris X509err(X509_F_X509_NAME_ENTRY_SET_OBJECT,ERR_R_PASSED_NULL_PARAMETER); 34255714Skris return(0); 34355714Skris } 34455714Skris ASN1_OBJECT_free(ne->object); 34555714Skris ne->object=OBJ_dup(obj); 34655714Skris return((ne->object == NULL)?0:1); 34755714Skris } 34855714Skris 34955714Skrisint X509_NAME_ENTRY_set_data(X509_NAME_ENTRY *ne, int type, 350160814Ssimon const unsigned char *bytes, int len) 35155714Skris { 35255714Skris int i; 35355714Skris 35455714Skris if ((ne == NULL) || ((bytes == NULL) && (len != 0))) return(0); 35559191Skris if((type > 0) && (type & MBSTRING_FLAG)) 35659191Skris return ASN1_STRING_set_by_NID(&ne->value, bytes, 35759191Skris len, type, 35859191Skris OBJ_obj2nid(ne->object)) ? 1 : 0; 35955714Skris if (len < 0) len=strlen((char *)bytes); 36055714Skris i=ASN1_STRING_set(ne->value,bytes,len); 36155714Skris if (!i) return(0); 36255714Skris if (type != V_ASN1_UNDEF) 36355714Skris { 36455714Skris if (type == V_ASN1_APP_CHOOSE) 36555714Skris ne->value->type=ASN1_PRINTABLE_type(bytes,len); 36655714Skris else 36755714Skris ne->value->type=type; 36855714Skris } 36955714Skris return(1); 37055714Skris } 37155714Skris 37255714SkrisASN1_OBJECT *X509_NAME_ENTRY_get_object(X509_NAME_ENTRY *ne) 37355714Skris { 37455714Skris if (ne == NULL) return(NULL); 37555714Skris return(ne->object); 37655714Skris } 37755714Skris 37855714SkrisASN1_STRING *X509_NAME_ENTRY_get_data(X509_NAME_ENTRY *ne) 37955714Skris { 38055714Skris if (ne == NULL) return(NULL); 38155714Skris return(ne->value); 38255714Skris } 38355714Skris 384