|
1 /* crypto/asn1/t_req.c */ |
|
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
|
3 * All rights reserved. |
|
4 * |
|
5 * This package is an SSL implementation written |
|
6 * by Eric Young (eay@cryptsoft.com). |
|
7 * The implementation was written so as to conform with Netscapes SSL. |
|
8 * |
|
9 * This library is free for commercial and non-commercial use as long as |
|
10 * the following conditions are aheared to. The following conditions |
|
11 * apply to all code found in this distribution, be it the RC4, RSA, |
|
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation |
|
13 * included with this distribution is covered by the same copyright terms |
|
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com). |
|
15 * |
|
16 * Copyright remains Eric Young's, and as such any Copyright notices in |
|
17 * the code are not to be removed. |
|
18 * If this package is used in a product, Eric Young should be given attribution |
|
19 * as the author of the parts of the library used. |
|
20 * This can be in the form of a textual message at program startup or |
|
21 * in documentation (online or textual) provided with the package. |
|
22 * |
|
23 * Redistribution and use in source and binary forms, with or without |
|
24 * modification, are permitted provided that the following conditions |
|
25 * are met: |
|
26 * 1. Redistributions of source code must retain the copyright |
|
27 * notice, this list of conditions and the following disclaimer. |
|
28 * 2. Redistributions in binary form must reproduce the above copyright |
|
29 * notice, this list of conditions and the following disclaimer in the |
|
30 * documentation and/or other materials provided with the distribution. |
|
31 * 3. All advertising materials mentioning features or use of this software |
|
32 * must display the following acknowledgement: |
|
33 * "This product includes cryptographic software written by |
|
34 * Eric Young (eay@cryptsoft.com)" |
|
35 * The word 'cryptographic' can be left out if the rouines from the library |
|
36 * being used are not cryptographic related :-). |
|
37 * 4. If you include any Windows specific code (or a derivative thereof) from |
|
38 * the apps directory (application code) you must include an acknowledgement: |
|
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" |
|
40 * |
|
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND |
|
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
|
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
|
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE |
|
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
|
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS |
|
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
|
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT |
|
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY |
|
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF |
|
51 * SUCH DAMAGE. |
|
52 * |
|
53 * The licence and distribution terms for any publically available version or |
|
54 * derivative of this code cannot be changed. i.e. this code cannot simply be |
|
55 * copied and put under another distribution licence |
|
56 * [including the GNU Public Licence.] |
|
57 */ |
|
58 |
|
59 #include <stdio.h> |
|
60 #include "cryptlib.h" |
|
61 #include <openssl/buffer.h> |
|
62 #include <openssl/bn.h> |
|
63 #include <openssl/objects.h> |
|
64 #include <openssl/x509.h> |
|
65 #include <openssl/x509v3.h> |
|
66 #ifndef OPENSSL_NO_RSA |
|
67 #include <openssl/rsa.h> |
|
68 #endif |
|
69 #ifndef OPENSSL_NO_DSA |
|
70 #include <openssl/dsa.h> |
|
71 #endif |
|
72 |
|
73 #ifndef OPENSSL_NO_FP_API |
|
74 EXPORT_C int X509_REQ_print_fp(FILE *fp, X509_REQ *x) |
|
75 { |
|
76 BIO *b; |
|
77 int ret; |
|
78 |
|
79 if ((b=BIO_new(BIO_s_file())) == NULL) |
|
80 { |
|
81 X509err(X509_F_X509_REQ_PRINT_FP,ERR_R_BUF_LIB); |
|
82 return(0); |
|
83 } |
|
84 BIO_set_fp(b,fp,BIO_NOCLOSE); |
|
85 ret=X509_REQ_print(b, x); |
|
86 BIO_free(b); |
|
87 return(ret); |
|
88 } |
|
89 #endif |
|
90 |
|
91 EXPORT_C int X509_REQ_print_ex(BIO *bp, X509_REQ *x, unsigned long nmflags, unsigned long cflag) |
|
92 { |
|
93 unsigned long l; |
|
94 int i; |
|
95 const char *neg; |
|
96 X509_REQ_INFO *ri; |
|
97 EVP_PKEY *pkey; |
|
98 STACK_OF(X509_ATTRIBUTE) *sk; |
|
99 STACK_OF(X509_EXTENSION) *exts; |
|
100 char mlch = ' '; |
|
101 int nmindent = 0; |
|
102 |
|
103 if((nmflags & XN_FLAG_SEP_MASK) == XN_FLAG_SEP_MULTILINE) { |
|
104 mlch = '\n'; |
|
105 nmindent = 12; |
|
106 } |
|
107 |
|
108 if(nmflags == X509_FLAG_COMPAT) |
|
109 nmindent = 16; |
|
110 |
|
111 |
|
112 ri=x->req_info; |
|
113 if(!(cflag & X509_FLAG_NO_HEADER)) |
|
114 { |
|
115 if (BIO_write(bp,"Certificate Request:\n",21) <= 0) goto err; |
|
116 if (BIO_write(bp," Data:\n",10) <= 0) goto err; |
|
117 } |
|
118 if(!(cflag & X509_FLAG_NO_VERSION)) |
|
119 { |
|
120 neg=(ri->version->type == V_ASN1_NEG_INTEGER)?"-":""; |
|
121 l=0; |
|
122 for (i=0; i<ri->version->length; i++) |
|
123 { l<<=8; l+=ri->version->data[i]; } |
|
124 if(BIO_printf(bp,"%8sVersion: %s%lu (%s0x%lx)\n","",neg,l,neg, |
|
125 l) <= 0) |
|
126 goto err; |
|
127 } |
|
128 if(!(cflag & X509_FLAG_NO_SUBJECT)) |
|
129 { |
|
130 if (BIO_printf(bp," Subject:%c",mlch) <= 0) goto err; |
|
131 if (X509_NAME_print_ex(bp,ri->subject,nmindent, nmflags) < 0) goto err; |
|
132 if (BIO_write(bp,"\n",1) <= 0) goto err; |
|
133 } |
|
134 if(!(cflag & X509_FLAG_NO_PUBKEY)) |
|
135 { |
|
136 if (BIO_write(bp," Subject Public Key Info:\n",33) <= 0) |
|
137 goto err; |
|
138 if (BIO_printf(bp,"%12sPublic Key Algorithm: ","") <= 0) |
|
139 goto err; |
|
140 if (i2a_ASN1_OBJECT(bp, ri->pubkey->algor->algorithm) <= 0) |
|
141 goto err; |
|
142 if (BIO_puts(bp, "\n") <= 0) |
|
143 goto err; |
|
144 |
|
145 pkey=X509_REQ_get_pubkey(x); |
|
146 if (pkey == NULL) |
|
147 { |
|
148 BIO_printf(bp,"%12sUnable to load Public Key\n",""); |
|
149 ERR_print_errors(bp); |
|
150 } |
|
151 else |
|
152 #ifndef OPENSSL_NO_RSA |
|
153 if (pkey->type == EVP_PKEY_RSA) |
|
154 { |
|
155 BIO_printf(bp,"%12sRSA Public Key: (%d bit)\n","", |
|
156 BN_num_bits(pkey->pkey.rsa->n)); |
|
157 RSA_print(bp,pkey->pkey.rsa,16); |
|
158 } |
|
159 else |
|
160 #endif |
|
161 #ifndef OPENSSL_NO_DSA |
|
162 if (pkey->type == EVP_PKEY_DSA) |
|
163 { |
|
164 BIO_printf(bp,"%12sDSA Public Key:\n",""); |
|
165 DSA_print(bp,pkey->pkey.dsa,16); |
|
166 } |
|
167 else |
|
168 #endif |
|
169 #ifndef OPENSSL_NO_EC |
|
170 if (pkey->type == EVP_PKEY_EC) |
|
171 { |
|
172 BIO_printf(bp, "%12sEC Public Key: \n",""); |
|
173 EC_KEY_print(bp, pkey->pkey.ec, 16); |
|
174 } |
|
175 else |
|
176 #endif |
|
177 BIO_printf(bp,"%12sUnknown Public Key:\n",""); |
|
178 |
|
179 EVP_PKEY_free(pkey); |
|
180 } |
|
181 |
|
182 if(!(cflag & X509_FLAG_NO_ATTRIBUTES)) |
|
183 { |
|
184 /* may not be */ |
|
185 if(BIO_printf(bp,"%8sAttributes:\n","") <= 0) |
|
186 goto err; |
|
187 |
|
188 sk=x->req_info->attributes; |
|
189 if (sk_X509_ATTRIBUTE_num(sk) == 0) |
|
190 { |
|
191 if(BIO_printf(bp,"%12sa0:00\n","") <= 0) |
|
192 goto err; |
|
193 } |
|
194 else |
|
195 { |
|
196 for (i=0; i<sk_X509_ATTRIBUTE_num(sk); i++) |
|
197 { |
|
198 ASN1_TYPE *at; |
|
199 X509_ATTRIBUTE *a; |
|
200 ASN1_BIT_STRING *bs=NULL; |
|
201 ASN1_TYPE *t; |
|
202 int j,type=0,count=1,ii=0; |
|
203 |
|
204 a=sk_X509_ATTRIBUTE_value(sk,i); |
|
205 if(X509_REQ_extension_nid(OBJ_obj2nid(a->object))) |
|
206 continue; |
|
207 if(BIO_printf(bp,"%12s","") <= 0) |
|
208 goto err; |
|
209 if ((j=i2a_ASN1_OBJECT(bp,a->object)) > 0) |
|
210 { |
|
211 if (a->single) |
|
212 { |
|
213 t=a->value.single; |
|
214 type=t->type; |
|
215 bs=t->value.bit_string; |
|
216 } |
|
217 else |
|
218 { |
|
219 ii=0; |
|
220 count=sk_ASN1_TYPE_num(a->value.set); |
|
221 get_next: |
|
222 at=sk_ASN1_TYPE_value(a->value.set,ii); |
|
223 type=at->type; |
|
224 bs=at->value.asn1_string; |
|
225 } |
|
226 } |
|
227 for (j=25-j; j>0; j--) |
|
228 if (BIO_write(bp," ",1) != 1) goto err; |
|
229 if (BIO_puts(bp,":") <= 0) goto err; |
|
230 if ( (type == V_ASN1_PRINTABLESTRING) || |
|
231 (type == V_ASN1_T61STRING) || |
|
232 (type == V_ASN1_IA5STRING)) |
|
233 { |
|
234 if (BIO_write(bp,(char *)bs->data,bs->length) |
|
235 != bs->length) |
|
236 goto err; |
|
237 BIO_puts(bp,"\n"); |
|
238 } |
|
239 else |
|
240 { |
|
241 BIO_puts(bp,"unable to print attribute\n"); |
|
242 } |
|
243 if (++ii < count) goto get_next; |
|
244 } |
|
245 } |
|
246 } |
|
247 if(!(cflag & X509_FLAG_NO_EXTENSIONS)) |
|
248 { |
|
249 exts = X509_REQ_get_extensions(x); |
|
250 if(exts) |
|
251 { |
|
252 BIO_printf(bp,"%8sRequested Extensions:\n",""); |
|
253 for (i=0; i<sk_X509_EXTENSION_num(exts); i++) |
|
254 { |
|
255 ASN1_OBJECT *obj; |
|
256 X509_EXTENSION *ex; |
|
257 int j; |
|
258 ex=sk_X509_EXTENSION_value(exts, i); |
|
259 if (BIO_printf(bp,"%12s","") <= 0) goto err; |
|
260 obj=X509_EXTENSION_get_object(ex); |
|
261 i2a_ASN1_OBJECT(bp,obj); |
|
262 j=X509_EXTENSION_get_critical(ex); |
|
263 if (BIO_printf(bp,": %s\n",j?"critical":"") <= 0) |
|
264 goto err; |
|
265 if(!X509V3_EXT_print(bp, ex, cflag, 16)) |
|
266 { |
|
267 BIO_printf(bp, "%16s", ""); |
|
268 M_ASN1_OCTET_STRING_print(bp,ex->value); |
|
269 } |
|
270 if (BIO_write(bp,"\n",1) <= 0) goto err; |
|
271 } |
|
272 sk_X509_EXTENSION_pop_free(exts, X509_EXTENSION_free); |
|
273 } |
|
274 } |
|
275 |
|
276 if(!(cflag & X509_FLAG_NO_SIGDUMP)) |
|
277 { |
|
278 if(!X509_signature_print(bp, x->sig_alg, x->signature)) goto err; |
|
279 } |
|
280 |
|
281 return(1); |
|
282 err: |
|
283 X509err(X509_F_X509_REQ_PRINT_EX,ERR_R_BUF_LIB); |
|
284 return(0); |
|
285 } |
|
286 |
|
287 EXPORT_C int X509_REQ_print(BIO *bp, X509_REQ *x) |
|
288 { |
|
289 return X509_REQ_print_ex(bp, x, XN_FLAG_COMPAT, X509_FLAG_COMPAT); |
|
290 } |