search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
cast away enum warnings
[heimdal.git] / lib / hx509 / cert.c
blobfdc1304e9f1e6b2e2e7861af26b3d806d5f10891
1 /*
2 * Copyright (c) 2004 - 2007 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34 #include "hx_locl.h"
35 #include "crypto-headers.h"
36 #include <rtbl.h>
37
38 /**
39 * @page page_cert The basic certificate
40 *
41 * The basic hx509 cerificate object in hx509 is hx509_cert. The
42 * hx509_cert object is representing one X509/PKIX certificate and
43 * associated attributes; like private key, friendly name, etc.
44 *
45 * A hx509_cert object is usully found via the keyset interfaces (@ref
46 * page_keyset), but its also possible to create a certificate
47 * directly from a parsed object with hx509_cert_init() and
48 * hx509_cert_init_data().
49 *
50 * See the library functions here: @ref hx509_cert
51 */
52
53 struct hx509_verify_ctx_data {
54 hx509_certs trust_anchors;
55 int flags;
56 #define HX509_VERIFY_CTX_F_TIME_SET 1
57 #define HX509_VERIFY_CTX_F_ALLOW_PROXY_CERTIFICATE 2
58 #define HX509_VERIFY_CTX_F_REQUIRE_RFC3280 4
59 #define HX509_VERIFY_CTX_F_CHECK_TRUST_ANCHORS 8
60 #define HX509_VERIFY_CTX_F_NO_DEFAULT_ANCHORS 16
61 #define HX509_VERIFY_CTX_F_NO_BEST_BEFORE_CHECK 32
62 time_t time_now;
63 unsigned int max_depth;
64 #define HX509_VERIFY_MAX_DEPTH 30
65 hx509_revoke_ctx revoke_ctx;
66 };
67
68 #define REQUIRE_RFC3280(ctx) ((ctx)->flags & HX509_VERIFY_CTX_F_REQUIRE_RFC3280)
69 #define CHECK_TA(ctx) ((ctx)->flags & HX509_VERIFY_CTX_F_CHECK_TRUST_ANCHORS)
70 #define ALLOW_DEF_TA(ctx) (((ctx)->flags & HX509_VERIFY_CTX_F_NO_DEFAULT_ANCHORS) == 0)
71
72 struct _hx509_cert_attrs {
73 size_t len;
74 hx509_cert_attribute *val;
75 };
76
77 struct hx509_cert_data {
78 unsigned int ref;
79 char *friendlyname;
80 Certificate *data;
81 hx509_private_key private_key;
82 struct _hx509_cert_attrs attrs;
83 hx509_name basename;
84 _hx509_cert_release_func release;
85 void *ctx;
86 };
87
88 typedef struct hx509_name_constraints {
89 NameConstraints *val;
90 size_t len;
91 } hx509_name_constraints;
92
93 #define GeneralSubtrees_SET(g,var) \
94 (g)->len = (var)->len, (g)->val = (var)->val;
95
96 static void
97 init_context_once(void *ignored)
98 {
99
100 ENGINE_add_conf_module();
101 OpenSSL_add_all_algorithms();
102 }
103
104 /**
105 * Creates a hx509 context that most functions in the library
106 * uses. The context is only allowed to be used by one thread at each
107 * moment. Free the context with hx509_context_free().
108 *
109 * @param context Returns a pointer to new hx509 context.
110 *
111 * @return Returns an hx509 error code.
112 *
113 * @ingroup hx509
114 */
115
116 int
117 hx509_context_init(hx509_context *context)
118 {
119 static heim_base_once_t init_context = HEIM_BASE_ONCE_INIT;
120
121 *context = calloc(1, sizeof(**context));
122 if (*context == NULL)
123 return ENOMEM;
124
125 heim_base_once_f(&init_context, NULL, init_context_once);
126
127 _hx509_ks_null_register(*context);
128 _hx509_ks_mem_register(*context);
129 _hx509_ks_file_register(*context);
130 _hx509_ks_pkcs12_register(*context);
131 _hx509_ks_pkcs11_register(*context);
132 _hx509_ks_dir_register(*context);
133 _hx509_ks_keychain_register(*context);
134
135 (*context)->ocsp_time_diff = HX509_DEFAULT_OCSP_TIME_DIFF;
136
137 initialize_hx_error_table_r(&(*context)->et_list);
138 initialize_asn1_error_table_r(&(*context)->et_list);
139
140 #ifdef HX509_DEFAULT_ANCHORS
141 (void)hx509_certs_init(*context, HX509_DEFAULT_ANCHORS, 0,
142 NULL, &(*context)->default_trust_anchors);
143 #endif
144
145 return 0;
146 }
147
148 /**
149 * Selects if the hx509_revoke_verify() function is going to require
150 * the existans of a revokation method (OCSP, CRL) or not. Note that
151 * hx509_verify_path(), hx509_cms_verify_signed(), and other function
152 * call hx509_revoke_verify().
153 *
154 * @param context hx509 context to change the flag for.
155 * @param flag zero, revokation method required, non zero missing
156 * revokation method ok
157 *
158 * @ingroup hx509_verify
159 */
160
161 void
162 hx509_context_set_missing_revoke(hx509_context context, int flag)
163 {
164 if (flag)
165 context->flags |= HX509_CTX_VERIFY_MISSING_OK;
166 else
167 context->flags &= ~HX509_CTX_VERIFY_MISSING_OK;
168 }
169
170 /**
171 * Free the context allocated by hx509_context_init().
172 *
173 * @param context context to be freed.
174 *
175 * @ingroup hx509
176 */
177
178 void
179 hx509_context_free(hx509_context *context)
180 {
181 hx509_clear_error_string(*context);
182 if ((*context)->ks_ops) {
183 free((*context)->ks_ops);
184 (*context)->ks_ops = NULL;
185 }
186 (*context)->ks_num_ops = 0;
187 free_error_table ((*context)->et_list);
188 if ((*context)->querystat)
189 free((*context)->querystat);
190 memset(*context, 0, sizeof(**context));
191 free(*context);
192 *context = NULL;
193 }
194
195 /*
196 *
197 */
198
199 Certificate *
200 _hx509_get_cert(hx509_cert cert)
201 {
202 return cert->data;
203 }
204
205 /*
206 *
207 */
208
209 int
210 _hx509_cert_get_version(const Certificate *t)
211 {
212 return t->tbsCertificate.version ? *t->tbsCertificate.version + 1 : 1;
213 }
214
215 /**
216 * Allocate and init an hx509 certificate object from the decoded
217 * certificate `c´.
218 *
219 * @param context A hx509 context.
220 * @param c
221 * @param error
222 *
223 * @return Returns an hx509 certificate
224 *
225 * @ingroup hx509_cert
226 */
227
228 hx509_cert
229 hx509_cert_init(hx509_context context, const Certificate *c, heim_error_t *error)
230 {
231 hx509_cert cert;
232 int ret;
233
234 cert = malloc(sizeof(*cert));
235 if (cert == NULL) {
236 if (error)
237 *error = heim_error_create_enomem();
238 return NULL;
239 }
240 cert->ref = 1;
241 cert->friendlyname = NULL;
242 cert->attrs.len = 0;
243 cert->attrs.val = NULL;
244 cert->private_key = NULL;
245 cert->basename = NULL;
246 cert->release = NULL;
247 cert->ctx = NULL;
248
249 cert->data = calloc(1, sizeof(*(cert->data)));
250 if (cert->data == NULL) {
251 free(cert);
252 if (error)
253 *error = heim_error_create_enomem();
254 return NULL;
255 }
256 ret = copy_Certificate(c, cert->data);
257 if (ret) {
258 free(cert->data);
259 free(cert);
260 cert = NULL;
261 }
262 return cert;
263 }
264
265 /**
266 * Just like hx509_cert_init(), but instead of a decode certificate
267 * takes an pointer and length to a memory region that contains a
268 * DER/BER encoded certificate.
269 *
270 * If the memory region doesn't contain just the certificate and
271 * nothing more the function will fail with
272 * HX509_EXTRA_DATA_AFTER_STRUCTURE.
273 *
274 * @param context A hx509 context.
275 * @param ptr pointer to memory region containing encoded certificate.
276 * @param len length of memory region.
277 * @param error possibly returns an error
278 *
279 * @return An hx509 certificate
280 *
281 * @ingroup hx509_cert
282 */
283
284 hx509_cert
285 hx509_cert_init_data(hx509_context context,
286 const void *ptr,
287 size_t len,
288 heim_error_t *error)
289 {
290 hx509_cert cert;
291 Certificate t;
292 size_t size;
293 int ret;
294
295 ret = decode_Certificate(ptr, len, &t, &size);
296 if (ret) {
297 if (error)
298 *error = heim_error_create(ret, "Failed to decode certificate");
299 return NULL;
300 }
301 if (size != len) {
302 free_Certificate(&t);
303 if (error)
304 *error = heim_error_create(HX509_EXTRA_DATA_AFTER_STRUCTURE,
305 "Extra data after certificate");
306 return NULL;
307 }
308
309 cert = hx509_cert_init(context, &t, error);
310 free_Certificate(&t);
311 return cert;
312 }
313
314 void
315 _hx509_cert_set_release(hx509_cert cert,
316 _hx509_cert_release_func release,
317 void *ctx)
318 {
319 cert->release = release;
320 cert->ctx = ctx;
321 }
322
323
324 /* Doesn't make a copy of `private_key'. */
325
326 int
327 _hx509_cert_assign_key(hx509_cert cert, hx509_private_key private_key)
328 {
329 if (cert->private_key)
330 hx509_private_key_free(&cert->private_key);
331 cert->private_key = _hx509_private_key_ref(private_key);
332 return 0;
333 }
334
335 /**
336 * Free reference to the hx509 certificate object, if the refcounter
337 * reaches 0, the object if freed. Its allowed to pass in NULL.
338 *
339 * @param cert the cert to free.
340 *
341 * @ingroup hx509_cert
342 */
343
344 void
345 hx509_cert_free(hx509_cert cert)
346 {
347 size_t i;
348
349 if (cert == NULL)
350 return;
351
352 if (cert->ref <= 0)
353 _hx509_abort("cert refcount <= 0 on free");
354 if (--cert->ref > 0)
355 return;
356
357 if (cert->release)
358 (cert->release)(cert, cert->ctx);
359
360 if (cert->private_key)
361 hx509_private_key_free(&cert->private_key);
362
363 free_Certificate(cert->data);
364 free(cert->data);
365
366 for (i = 0; i < cert->attrs.len; i++) {
367 der_free_octet_string(&cert->attrs.val[i]->data);
368 der_free_oid(&cert->attrs.val[i]->oid);
369 free(cert->attrs.val[i]);
370 }
371 free(cert->attrs.val);
372 free(cert->friendlyname);
373 if (cert->basename)
374 hx509_name_free(&cert->basename);
375 memset(cert, 0, sizeof(*cert));
376 free(cert);
377 }
378
379 /**
380 * Add a reference to a hx509 certificate object.
381 *
382 * @param cert a pointer to an hx509 certificate object.
383 *
384 * @return the same object as is passed in.
385 *
386 * @ingroup hx509_cert
387 */
388
389 hx509_cert
390 hx509_cert_ref(hx509_cert cert)
391 {
392 if (cert == NULL)
393 return NULL;
394 if (cert->ref <= 0)
395 _hx509_abort("cert refcount <= 0");
396 cert->ref++;
397 if (cert->ref == 0)
398 _hx509_abort("cert refcount == 0");
399 return cert;
400 }
401
402 /**
403 * Allocate an verification context that is used fo control the
404 * verification process.
405 *
406 * @param context A hx509 context.
407 * @param ctx returns a pointer to a hx509_verify_ctx object.
408 *
409 * @return An hx509 error code, see hx509_get_error_string().
410 *
411 * @ingroup hx509_verify
412 */
413
414 int
415 hx509_verify_init_ctx(hx509_context context, hx509_verify_ctx *ctx)
416 {
417 hx509_verify_ctx c;
418
419 c = calloc(1, sizeof(*c));
420 if (c == NULL)
421 return ENOMEM;
422
423 c->max_depth = HX509_VERIFY_MAX_DEPTH;
424
425 *ctx = c;
426
427 return 0;
428 }
429
430 /**
431 * Free an hx509 verification context.
432 *
433 * @param ctx the context to be freed.
434 *
435 * @ingroup hx509_verify
436 */
437
438 void
439 hx509_verify_destroy_ctx(hx509_verify_ctx ctx)
440 {
441 if (ctx) {
442 hx509_certs_free(&ctx->trust_anchors);
443 hx509_revoke_free(&ctx->revoke_ctx);
444 memset(ctx, 0, sizeof(*ctx));
445 }
446 free(ctx);
447 }
448
449 /**
450 * Set the trust anchors in the verification context, makes an
451 * reference to the keyset, so the consumer can free the keyset
452 * independent of the destruction of the verification context (ctx).
453 * If there already is a keyset attached, it's released.
454 *
455 * @param ctx a verification context
456 * @param set a keyset containing the trust anchors.
457 *
458 * @ingroup hx509_verify
459 */
460
461 void
462 hx509_verify_attach_anchors(hx509_verify_ctx ctx, hx509_certs set)
463 {
464 if (ctx->trust_anchors)
465 hx509_certs_free(&ctx->trust_anchors);
466 ctx->trust_anchors = hx509_certs_ref(set);
467 }
468
469 /**
470 * Attach an revocation context to the verfication context, , makes an
471 * reference to the revoke context, so the consumer can free the
472 * revoke context independent of the destruction of the verification
473 * context. If there is no revoke context, the verification process is
474 * NOT going to check any verification status.
475 *
476 * @param ctx a verification context.
477 * @param revoke_ctx a revoke context.
478 *
479 * @ingroup hx509_verify
480 */
481
482 void
483 hx509_verify_attach_revoke(hx509_verify_ctx ctx, hx509_revoke_ctx revoke_ctx)
484 {
485 if (ctx->revoke_ctx)
486 hx509_revoke_free(&ctx->revoke_ctx);
487 ctx->revoke_ctx = _hx509_revoke_ref(revoke_ctx);
488 }
489
490 /**
491 * Set the clock time the the verification process is going to
492 * use. Used to check certificate in the past and future time. If not
493 * set the current time will be used.
494 *
495 * @param ctx a verification context.
496 * @param t the time the verifiation is using.
497 *
498 *
499 * @ingroup hx509_verify
500 */
501
502 void
503 hx509_verify_set_time(hx509_verify_ctx ctx, time_t t)
504 {
505 ctx->flags |= HX509_VERIFY_CTX_F_TIME_SET;
506 ctx->time_now = t;
507 }
508
509 time_t
510 _hx509_verify_get_time(hx509_verify_ctx ctx)
511 {
512 return ctx->time_now;
513 }
514
515 /**
516 * Set the maximum depth of the certificate chain that the path
517 * builder is going to try.
518 *
519 * @param ctx a verification context
520 * @param max_depth maxium depth of the certificate chain, include
521 * trust anchor.
522 *
523 * @ingroup hx509_verify
524 */
525
526 void
527 hx509_verify_set_max_depth(hx509_verify_ctx ctx, unsigned int max_depth)
528 {
529 ctx->max_depth = max_depth;
530 }
531
532 /**
533 * Allow or deny the use of proxy certificates
534 *
535 * @param ctx a verification context
536 * @param boolean if non zero, allow proxy certificates.
537 *
538 * @ingroup hx509_verify
539 */
540
541 void
542 hx509_verify_set_proxy_certificate(hx509_verify_ctx ctx, int boolean)
543 {
544 if (boolean)
545 ctx->flags |= HX509_VERIFY_CTX_F_ALLOW_PROXY_CERTIFICATE;
546 else
547 ctx->flags &= ~HX509_VERIFY_CTX_F_ALLOW_PROXY_CERTIFICATE;
548 }
549
550 /**
551 * Select strict RFC3280 verification of certificiates. This means
552 * checking key usage on CA certificates, this will make version 1
553 * certificiates unuseable.
554 *
555 * @param ctx a verification context
556 * @param boolean if non zero, use strict verification.
557 *
558 * @ingroup hx509_verify
559 */
560
561 void
562 hx509_verify_set_strict_rfc3280_verification(hx509_verify_ctx ctx, int boolean)
563 {
564 if (boolean)
565 ctx->flags |= HX509_VERIFY_CTX_F_REQUIRE_RFC3280;
566 else
567 ctx->flags &= ~HX509_VERIFY_CTX_F_REQUIRE_RFC3280;
568 }
569
570 /**
571 * Allow using the operating system builtin trust anchors if no other
572 * trust anchors are configured.
573 *
574 * @param ctx a verification context
575 * @param boolean if non zero, useing the operating systems builtin
576 * trust anchors.
577 *
578 *
579 * @return An hx509 error code, see hx509_get_error_string().
580 *
581 * @ingroup hx509_cert
582 */
583
584 void
585 hx509_verify_ctx_f_allow_default_trustanchors(hx509_verify_ctx ctx, int boolean)
586 {
587 if (boolean)
588 ctx->flags &= ~HX509_VERIFY_CTX_F_NO_DEFAULT_ANCHORS;
589 else
590 ctx->flags |= HX509_VERIFY_CTX_F_NO_DEFAULT_ANCHORS;
591 }
592
593 void
594 hx509_verify_ctx_f_allow_best_before_signature_algs(hx509_context ctx,
595 int boolean)
596 {
597 if (boolean)
598 ctx->flags &= ~HX509_VERIFY_CTX_F_NO_BEST_BEFORE_CHECK;
599 else
600 ctx->flags |= HX509_VERIFY_CTX_F_NO_BEST_BEFORE_CHECK;
601 }
602
603 static const Extension *
604 find_extension(const Certificate *cert, const heim_oid *oid, size_t *idx)
605 {
606 const TBSCertificate *c = &cert->tbsCertificate;
607
608 if (c->version == NULL || *c->version < 2 || c->extensions == NULL)
609 return NULL;
610
611 for (;*idx < c->extensions->len; (*idx)++) {
612 if (der_heim_oid_cmp(&c->extensions->val[*idx].extnID, oid) == 0)
613 return &c->extensions->val[(*idx)++];
614 }
615 return NULL;
616 }
617
618 static int
619 find_extension_auth_key_id(const Certificate *subject,
620 AuthorityKeyIdentifier *ai)
621 {
622 const Extension *e;
623 size_t size;
624 size_t i = 0;
625
626 memset(ai, 0, sizeof(*ai));
627
628 e = find_extension(subject, &asn1_oid_id_x509_ce_authorityKeyIdentifier, &i);
629 if (e == NULL)
630 return HX509_EXTENSION_NOT_FOUND;
631
632 return decode_AuthorityKeyIdentifier(e->extnValue.data,
633 e->extnValue.length,
634 ai, &size);
635 }
636
637 int
638 _hx509_find_extension_subject_key_id(const Certificate *issuer,
639 SubjectKeyIdentifier *si)
640 {
641 const Extension *e;
642 size_t size;
643 size_t i = 0;
644
645 memset(si, 0, sizeof(*si));
646
647 e = find_extension(issuer, &asn1_oid_id_x509_ce_subjectKeyIdentifier, &i);
648 if (e == NULL)
649 return HX509_EXTENSION_NOT_FOUND;
650
651 return decode_SubjectKeyIdentifier(e->extnValue.data,
652 e->extnValue.length,
653 si, &size);
654 }
655
656 static int
657 find_extension_name_constraints(const Certificate *subject,
658 NameConstraints *nc)
659 {
660 const Extension *e;
661 size_t size;
662 size_t i = 0;
663
664 memset(nc, 0, sizeof(*nc));
665
666 e = find_extension(subject, &asn1_oid_id_x509_ce_nameConstraints, &i);
667 if (e == NULL)
668 return HX509_EXTENSION_NOT_FOUND;
669
670 return decode_NameConstraints(e->extnValue.data,
671 e->extnValue.length,
672 nc, &size);
673 }
674
675 static int
676 find_extension_subject_alt_name(const Certificate *cert, size_t *i,
677 GeneralNames *sa)
678 {
679 const Extension *e;
680 size_t size;
681
682 memset(sa, 0, sizeof(*sa));
683
684 e = find_extension(cert, &asn1_oid_id_x509_ce_subjectAltName, i);
685 if (e == NULL)
686 return HX509_EXTENSION_NOT_FOUND;
687
688 return decode_GeneralNames(e->extnValue.data,
689 e->extnValue.length,
690 sa, &size);
691 }
692
693 static int
694 find_extension_eku(const Certificate *cert, ExtKeyUsage *eku)
695 {
696 const Extension *e;
697 size_t size;
698 size_t i = 0;
699
700 memset(eku, 0, sizeof(*eku));
701
702 e = find_extension(cert, &asn1_oid_id_x509_ce_extKeyUsage, &i);
703 if (e == NULL)
704 return HX509_EXTENSION_NOT_FOUND;
705
706 return decode_ExtKeyUsage(e->extnValue.data,
707 e->extnValue.length,
708 eku, &size);
709 }
710
711 static int
712 add_to_list(hx509_octet_string_list *list, const heim_octet_string *entry)
713 {
714 void *p;
715 int ret;
716
717 p = realloc(list->val, (list->len + 1) * sizeof(list->val[0]));
718 if (p == NULL)
719 return ENOMEM;
720 list->val = p;
721 ret = der_copy_octet_string(entry, &list->val[list->len]);
722 if (ret)
723 return ret;
724 list->len++;
725 return 0;
726 }
727
728 /**
729 * Free a list of octet strings returned by another hx509 library
730 * function.
731 *
732 * @param list list to be freed.
733 *
734 * @ingroup hx509_misc
735 */
736
737 void
738 hx509_free_octet_string_list(hx509_octet_string_list *list)
739 {
740 size_t i;
741 for (i = 0; i < list->len; i++)
742 der_free_octet_string(&list->val[i]);
743 free(list->val);
744 list->val = NULL;
745 list->len = 0;
746 }
747
748 /**
749 * Return a list of subjectAltNames specified by oid in the
750 * certificate. On error the
751 *
752 * The returned list of octet string should be freed with
753 * hx509_free_octet_string_list().
754 *
755 * @param context A hx509 context.
756 * @param cert a hx509 certificate object.
757 * @param oid an oid to for SubjectAltName.
758 * @param list list of matching SubjectAltName.
759 *
760 * @return An hx509 error code, see hx509_get_error_string().
761 *
762 * @ingroup hx509_cert
763 */
764
765 int
766 hx509_cert_find_subjectAltName_otherName(hx509_context context,
767 hx509_cert cert,
768 const heim_oid *oid,
769 hx509_octet_string_list *list)
770 {
771 GeneralNames sa;
772 int ret;
773 size_t i, j;
774
775 list->val = NULL;
776 list->len = 0;
777
778 i = 0;
779 while (1) {
780 ret = find_extension_subject_alt_name(_hx509_get_cert(cert), &i, &sa);
781 i++;
782 if (ret == HX509_EXTENSION_NOT_FOUND) {
783 return 0;
784 } else if (ret != 0) {
785 hx509_set_error_string(context, 0, ret, "Error searching for SAN");
786 hx509_free_octet_string_list(list);
787 return ret;
788 }
789
790 for (j = 0; j < sa.len; j++) {
791 if (sa.val[j].element == choice_GeneralName_otherName &&
792 der_heim_oid_cmp(&sa.val[j].u.otherName.type_id, oid) == 0)
793 {
794 ret = add_to_list(list, &sa.val[j].u.otherName.value);
795 if (ret) {
796 hx509_set_error_string(context, 0, ret,
797 "Error adding an exra SAN to "
798 "return list");
799 hx509_free_octet_string_list(list);
800 free_GeneralNames(&sa);
801 return ret;
802 }
803 }
804 }
805 free_GeneralNames(&sa);
806 }
807 }
808
809
810 static int
811 check_key_usage(hx509_context context, const Certificate *cert,
812 unsigned flags, int req_present)
813 {
814 const Extension *e;
815 KeyUsage ku;
816 size_t size;
817 int ret;
818 size_t i = 0;
819 unsigned ku_flags;
820
821 if (_hx509_cert_get_version(cert) < 3)
822 return 0;
823
824 e = find_extension(cert, &asn1_oid_id_x509_ce_keyUsage, &i);
825 if (e == NULL) {
826 if (req_present) {
827 hx509_set_error_string(context, 0, HX509_KU_CERT_MISSING,
828 "Required extension key "
829 "usage missing from certifiate");
830 return HX509_KU_CERT_MISSING;
831 }
832 return 0;
833 }
834
835 ret = decode_KeyUsage(e->extnValue.data, e->extnValue.length, &ku, &size);
836 if (ret)
837 return ret;
838 ku_flags = KeyUsage2int(ku);
839 if ((ku_flags & flags) != flags) {
840 unsigned missing = (~ku_flags) & flags;
841 char buf[256], *name;
842
843 unparse_flags(missing, asn1_KeyUsage_units(), buf, sizeof(buf));
844 _hx509_unparse_Name(&cert->tbsCertificate.subject, &name);
845 hx509_set_error_string(context, 0, HX509_KU_CERT_MISSING,
846 "Key usage %s required but missing "
847 "from certifiate %s", buf, name);
848 free(name);
849 return HX509_KU_CERT_MISSING;
850 }
851 return 0;
852 }
853
854 /*
855 * Return 0 on matching key usage 'flags' for 'cert', otherwise return
856 * an error code. If 'req_present' the existance is required of the
857 * KeyUsage extension.
858 */
859
860 int
861 _hx509_check_key_usage(hx509_context context, hx509_cert cert,
862 unsigned flags, int req_present)
863 {
864 return check_key_usage(context, _hx509_get_cert(cert), flags, req_present);
865 }
866
867 enum certtype { PROXY_CERT, EE_CERT, CA_CERT };
868
869 static int
870 check_basic_constraints(hx509_context context, const Certificate *cert,
871 enum certtype type, size_t depth)
872 {
873 BasicConstraints bc;
874 const Extension *e;
875 size_t size;
876 int ret;
877 size_t i = 0;
878
879 if (_hx509_cert_get_version(cert) < 3)
880 return 0;
881
882 e = find_extension(cert, &asn1_oid_id_x509_ce_basicConstraints, &i);
883 if (e == NULL) {
884 switch(type) {
885 case PROXY_CERT:
886 case EE_CERT:
887 return 0;
888 case CA_CERT: {
889 char *name;
890 ret = _hx509_unparse_Name(&cert->tbsCertificate.subject, &name);
891 assert(ret == 0);
892 hx509_set_error_string(context, 0, HX509_EXTENSION_NOT_FOUND,
893 "basicConstraints missing from "
894 "CA certifiacte %s", name);
895 free(name);
896 return HX509_EXTENSION_NOT_FOUND;
897 }
898 }
899 }
900
901 ret = decode_BasicConstraints(e->extnValue.data,
902 e->extnValue.length, &bc,
903 &size);
904 if (ret)
905 return ret;
906 switch(type) {
907 case PROXY_CERT:
908 if (bc.cA != NULL && *bc.cA)
909 ret = HX509_PARENT_IS_CA;
910 break;
911 case EE_CERT:
912 ret = 0;
913 break;
914 case CA_CERT:
915 if (bc.cA == NULL || !*bc.cA)
916 ret = HX509_PARENT_NOT_CA;
917 else if (bc.pathLenConstraint)
918 if (depth - 1 > *bc.pathLenConstraint)
919 ret = HX509_CA_PATH_TOO_DEEP;
920 break;
921 }
922 free_BasicConstraints(&bc);
923 return ret;
924 }
925
926 int
927 _hx509_cert_is_parent_cmp(const Certificate *subject,
928 const Certificate *issuer,
929 int allow_self_signed)
930 {
931 int diff;
932 AuthorityKeyIdentifier ai;
933 SubjectKeyIdentifier si;
934 int ret_ai, ret_si, ret;
935
936 ret = _hx509_name_cmp(&issuer->tbsCertificate.subject,
937 &subject->tbsCertificate.issuer,
938 &diff);
939 if (ret)
940 return ret;
941 if (diff)
942 return diff;
943
944 memset(&ai, 0, sizeof(ai));
945 memset(&si, 0, sizeof(si));
946
947 /*
948 * Try to find AuthorityKeyIdentifier, if it's not present in the
949 * subject certificate nor the parent.
950 */
951
952 ret_ai = find_extension_auth_key_id(subject, &ai);
953 if (ret_ai && ret_ai != HX509_EXTENSION_NOT_FOUND)
954 return 1;
955 ret_si = _hx509_find_extension_subject_key_id(issuer, &si);
956 if (ret_si && ret_si != HX509_EXTENSION_NOT_FOUND)
957 return -1;
958
959 if (ret_si && ret_ai)
960 goto out;
961 if (ret_ai)
962 goto out;
963 if (ret_si) {
964 if (allow_self_signed) {
965 diff = 0;
966 goto out;
967 } else if (ai.keyIdentifier) {
968 diff = -1;
969 goto out;
970 }
971 }
972
973 if (ai.keyIdentifier == NULL) {
974 Name name;
975
976 if (ai.authorityCertIssuer == NULL)
977 return -1;
978 if (ai.authorityCertSerialNumber == NULL)
979 return -1;
980
981 diff = der_heim_integer_cmp(ai.authorityCertSerialNumber,
982 &issuer->tbsCertificate.serialNumber);
983 if (diff)
984 return diff;
985 if (ai.authorityCertIssuer->len != 1)
986 return -1;
987 if (ai.authorityCertIssuer->val[0].element != choice_GeneralName_directoryName)
988 return -1;
989
990 name.element = (enum Name_enum)
991 ai.authorityCertIssuer->val[0].u.directoryName.element;
992 name.u.rdnSequence =
993 ai.authorityCertIssuer->val[0].u.directoryName.u.rdnSequence;
994
995 ret = _hx509_name_cmp(&issuer->tbsCertificate.subject,
996 &name,
997 &diff);
998 if (ret)
999 return ret;
1000 if (diff)
1001 return diff;
1002 diff = 0;
1003 } else
1004 diff = der_heim_octet_string_cmp(ai.keyIdentifier, &si);
1005 if (diff)
1006 goto out;
1007
1008 out:
1009 free_AuthorityKeyIdentifier(&ai);
1010 free_SubjectKeyIdentifier(&si);
1011 return diff;
1012 }
1013
1014 static int
1015 certificate_is_anchor(hx509_context context,
1016 hx509_certs trust_anchors,
1017 const hx509_cert cert)
1018 {
1019 hx509_query q;
1020 hx509_cert c;
1021 int ret;
1022
1023 if (trust_anchors == NULL)
1024 return 0;
1025
1026 _hx509_query_clear(&q);
1027
1028 q.match = HX509_QUERY_MATCH_CERTIFICATE;
1029 q.certificate = _hx509_get_cert(cert);
1030
1031 ret = hx509_certs_find(context, trust_anchors, &q, &c);
1032 if (ret == 0)
1033 hx509_cert_free(c);
1034 return ret == 0;
1035 }
1036
1037 static int
1038 certificate_is_self_signed(hx509_context context,
1039 const Certificate *cert,
1040 int *self_signed)
1041 {
1042 int ret, diff;
1043 ret = _hx509_name_cmp(&cert->tbsCertificate.subject,
1044 &cert->tbsCertificate.issuer, &diff);
1045 *self_signed = (diff == 0);
1046 if (ret) {
1047 hx509_set_error_string(context, 0, ret,
1048 "Failed to check if self signed");
1049 } else
1050 ret = _hx509_self_signed_valid(context, &cert->signatureAlgorithm);
1051
1052 return ret;
1053 }
1054
1055 /*
1056 * The subjectName is "null" when it's empty set of relative DBs.
1057 */
1058
1059 static int
1060 subject_null_p(const Certificate *c)
1061 {
1062 return c->tbsCertificate.subject.u.rdnSequence.len == 0;
1063 }
1064
1065
1066 static int
1067 find_parent(hx509_context context,
1068 time_t time_now,
1069 hx509_certs trust_anchors,
1070 hx509_path *path,
1071 hx509_certs pool,
1072 hx509_cert current,
1073 hx509_cert *parent)
1074 {
1075 AuthorityKeyIdentifier ai;
1076 hx509_query q;
1077 int ret;
1078
1079 *parent = NULL;
1080 memset(&ai, 0, sizeof(ai));
1081
1082 _hx509_query_clear(&q);
1083
1084 if (!subject_null_p(current->data)) {
1085 q.match |= HX509_QUERY_FIND_ISSUER_CERT;
1086 q.subject = _hx509_get_cert(current);
1087 } else {
1088 ret = find_extension_auth_key_id(current->data, &ai);
1089 if (ret) {
1090 hx509_set_error_string(context, 0, HX509_CERTIFICATE_MALFORMED,
1091 "Subjectless certificate missing AuthKeyID");
1092 return HX509_CERTIFICATE_MALFORMED;
1093 }
1094
1095 if (ai.keyIdentifier == NULL) {
1096 free_AuthorityKeyIdentifier(&ai);
1097 hx509_set_error_string(context, 0, HX509_CERTIFICATE_MALFORMED,
1098 "Subjectless certificate missing keyIdentifier "
1099 "inside AuthKeyID");
1100 return HX509_CERTIFICATE_MALFORMED;
1101 }
1102
1103 q.subject_id = ai.keyIdentifier;
1104 q.match = HX509_QUERY_MATCH_SUBJECT_KEY_ID;
1105 }
1106
1107 q.path = path;
1108 q.match |= HX509_QUERY_NO_MATCH_PATH;
1109
1110 if (pool) {
1111 q.timenow = time_now;
1112 q.match |= HX509_QUERY_MATCH_TIME;
1113
1114 ret = hx509_certs_find(context, pool, &q, parent);
1115 if (ret == 0) {
1116 free_AuthorityKeyIdentifier(&ai);
1117 return 0;
1118 }
1119 q.match &= ~HX509_QUERY_MATCH_TIME;
1120 }
1121
1122 if (trust_anchors) {
1123 ret = hx509_certs_find(context, trust_anchors, &q, parent);
1124 if (ret == 0) {
1125 free_AuthorityKeyIdentifier(&ai);
1126 return ret;
1127 }
1128 }
1129 free_AuthorityKeyIdentifier(&ai);
1130
1131 {
1132 hx509_name name;
1133 char *str;
1134
1135 ret = hx509_cert_get_subject(current, &name);
1136 if (ret) {
1137 hx509_clear_error_string(context);
1138 return HX509_ISSUER_NOT_FOUND;
1139 }
1140 ret = hx509_name_to_string(name, &str);
1141 hx509_name_free(&name);
1142 if (ret) {
1143 hx509_clear_error_string(context);
1144 return HX509_ISSUER_NOT_FOUND;
1145 }
1146
1147 hx509_set_error_string(context, 0, HX509_ISSUER_NOT_FOUND,
1148 "Failed to find issuer for "
1149 "certificate with subject: '%s'", str);
1150 free(str);
1151 }
1152 return HX509_ISSUER_NOT_FOUND;
1153 }
1154
1155 /*
1156 *
1157 */
1158
1159 static int
1160 is_proxy_cert(hx509_context context,
1161 const Certificate *cert,
1162 ProxyCertInfo *rinfo)
1163 {
1164 ProxyCertInfo info;
1165 const Extension *e;
1166 size_t size;
1167 int ret;
1168 size_t i = 0;
1169
1170 if (rinfo)
1171 memset(rinfo, 0, sizeof(*rinfo));
1172
1173 e = find_extension(cert, &asn1_oid_id_pkix_pe_proxyCertInfo, &i);
1174 if (e == NULL) {
1175 hx509_clear_error_string(context);
1176 return HX509_EXTENSION_NOT_FOUND;
1177 }
1178
1179 ret = decode_ProxyCertInfo(e->extnValue.data,
1180 e->extnValue.length,
1181 &info,
1182 &size);
1183 if (ret) {
1184 hx509_clear_error_string(context);
1185 return ret;
1186 }
1187 if (size != e->extnValue.length) {
1188 free_ProxyCertInfo(&info);
1189 hx509_clear_error_string(context);
1190 return HX509_EXTRA_DATA_AFTER_STRUCTURE;
1191 }
1192 if (rinfo == NULL)
1193 free_ProxyCertInfo(&info);
1194 else
1195 *rinfo = info;
1196
1197 return 0;
1198 }
1199
1200 /*
1201 * Path operations are like MEMORY based keyset, but with exposed
1202 * internal so we can do easy searches.
1203 */
1204
1205 int
1206 _hx509_path_append(hx509_context context, hx509_path *path, hx509_cert cert)
1207 {
1208 hx509_cert *val;
1209 val = realloc(path->val, (path->len + 1) * sizeof(path->val[0]));
1210 if (val == NULL) {
1211 hx509_set_error_string(context, 0, ENOMEM, "out of memory");
1212 return ENOMEM;
1213 }
1214
1215 path->val = val;
1216 path->val[path->len] = hx509_cert_ref(cert);
1217 path->len++;
1218
1219 return 0;
1220 }
1221
1222 void
1223 _hx509_path_free(hx509_path *path)
1224 {
1225 unsigned i;
1226
1227 for (i = 0; i < path->len; i++)
1228 hx509_cert_free(path->val[i]);
1229 free(path->val);
1230 path->val = NULL;
1231 path->len = 0;
1232 }
1233
1234 /*
1235 * Find path by looking up issuer for the top certificate and continue
1236 * until an anchor certificate is found or max limit is found. A
1237 * certificate never included twice in the path.
1238 *
1239 * If the trust anchors are not given, calculate optimistic path, just
1240 * follow the chain upward until we no longer find a parent or we hit
1241 * the max path limit. In this case, a failure will always be returned
1242 * depending on what error condition is hit first.
1243 *
1244 * The path includes a path from the top certificate to the anchor
1245 * certificate.
1246 *
1247 * The caller needs to free `path´ both on successful built path and
1248 * failure.
1249 */
1250
1251 int
1252 _hx509_calculate_path(hx509_context context,
1253 int flags,
1254 time_t time_now,
1255 hx509_certs anchors,
1256 unsigned int max_depth,
1257 hx509_cert cert,
1258 hx509_certs pool,
1259 hx509_path *path)
1260 {
1261 hx509_cert parent, current;
1262 int ret;
1263
1264 if (max_depth == 0)
1265 max_depth = HX509_VERIFY_MAX_DEPTH;
1266
1267 ret = _hx509_path_append(context, path, cert);
1268 if (ret)
1269 return ret;
1270
1271 current = hx509_cert_ref(cert);
1272
1273 while (!certificate_is_anchor(context, anchors, current)) {
1274
1275 ret = find_parent(context, time_now, anchors, path,
1276 pool, current, &parent);
1277 hx509_cert_free(current);
1278 if (ret)
1279 return ret;
1280
1281 ret = _hx509_path_append(context, path, parent);
1282 if (ret)
1283 return ret;
1284 current = parent;
1285
1286 if (path->len > max_depth) {
1287 hx509_cert_free(current);
1288 hx509_set_error_string(context, 0, HX509_PATH_TOO_LONG,
1289 "Path too long while bulding "
1290 "certificate chain");
1291 return HX509_PATH_TOO_LONG;
1292 }
1293 }
1294
1295 if ((flags & HX509_CALCULATE_PATH_NO_ANCHOR) &&
1296 path->len > 0 &&
1297 certificate_is_anchor(context, anchors, path->val[path->len - 1]))
1298 {
1299 hx509_cert_free(path->val[path->len - 1]);
1300 path->len--;
1301 }
1302
1303 hx509_cert_free(current);
1304 return 0;
1305 }
1306
1307 int
1308 _hx509_AlgorithmIdentifier_cmp(const AlgorithmIdentifier *p,
1309 const AlgorithmIdentifier *q)
1310 {
1311 int diff;
1312 diff = der_heim_oid_cmp(&p->algorithm, &q->algorithm);
1313 if (diff)
1314 return diff;
1315 if (p->parameters) {
1316 if (q->parameters)
1317 return heim_any_cmp(p->parameters,
1318 q->parameters);
1319 else
1320 return 1;
1321 } else {
1322 if (q->parameters)
1323 return -1;
1324 else
1325 return 0;
1326 }
1327 }
1328
1329 int
1330 _hx509_Certificate_cmp(const Certificate *p, const Certificate *q)
1331 {
1332 int diff;
1333 diff = der_heim_bit_string_cmp(&p->signatureValue, &q->signatureValue);
1334 if (diff)
1335 return diff;
1336 diff = _hx509_AlgorithmIdentifier_cmp(&p->signatureAlgorithm,
1337 &q->signatureAlgorithm);
1338 if (diff)
1339 return diff;
1340 diff = der_heim_octet_string_cmp(&p->tbsCertificate._save,
1341 &q->tbsCertificate._save);
1342 return diff;
1343 }
1344
1345 /**
1346 * Compare to hx509 certificate object, useful for sorting.
1347 *
1348 * @param p a hx509 certificate object.
1349 * @param q a hx509 certificate object.
1350 *
1351 * @return 0 the objects are the same, returns > 0 is p is "larger"
1352 * then q, < 0 if p is "smaller" then q.
1353 *
1354 * @ingroup hx509_cert
1355 */
1356
1357 int
1358 hx509_cert_cmp(hx509_cert p, hx509_cert q)
1359 {
1360 return _hx509_Certificate_cmp(p->data, q->data);
1361 }
1362
1363 /**
1364 * Return the name of the issuer of the hx509 certificate.
1365 *
1366 * @param p a hx509 certificate object.
1367 * @param name a pointer to a hx509 name, should be freed by
1368 * hx509_name_free().
1369 *
1370 * @return An hx509 error code, see hx509_get_error_string().
1371 *
1372 * @ingroup hx509_cert
1373 */
1374
1375 int
1376 hx509_cert_get_issuer(hx509_cert p, hx509_name *name)
1377 {
1378 return _hx509_name_from_Name(&p->data->tbsCertificate.issuer, name);
1379 }
1380
1381 /**
1382 * Return the name of the subject of the hx509 certificate.
1383 *
1384 * @param p a hx509 certificate object.
1385 * @param name a pointer to a hx509 name, should be freed by
1386 * hx509_name_free(). See also hx509_cert_get_base_subject().
1387 *
1388 * @return An hx509 error code, see hx509_get_error_string().
1389 *
1390 * @ingroup hx509_cert
1391 */
1392
1393 int
1394 hx509_cert_get_subject(hx509_cert p, hx509_name *name)
1395 {
1396 return _hx509_name_from_Name(&p->data->tbsCertificate.subject, name);
1397 }
1398
1399 /**
1400 * Return the name of the base subject of the hx509 certificate. If
1401 * the certiicate is a verified proxy certificate, the this function
1402 * return the base certificate (root of the proxy chain). If the proxy
1403 * certificate is not verified with the base certificate
1404 * HX509_PROXY_CERTIFICATE_NOT_CANONICALIZED is returned.
1405 *
1406 * @param context a hx509 context.
1407 * @param c a hx509 certificate object.
1408 * @param name a pointer to a hx509 name, should be freed by
1409 * hx509_name_free(). See also hx509_cert_get_subject().
1410 *
1411 * @return An hx509 error code, see hx509_get_error_string().
1412 *
1413 * @ingroup hx509_cert
1414 */
1415
1416 int
1417 hx509_cert_get_base_subject(hx509_context context, hx509_cert c,
1418 hx509_name *name)
1419 {
1420 if (c->basename)
1421 return hx509_name_copy(context, c->basename, name);
1422 if (is_proxy_cert(context, c->data, NULL) == 0) {
1423 int ret = HX509_PROXY_CERTIFICATE_NOT_CANONICALIZED;
1424 hx509_set_error_string(context, 0, ret,
1425 "Proxy certificate have not been "
1426 "canonicalize yet, no base name");
1427 return ret;
1428 }
1429 return _hx509_name_from_Name(&c->data->tbsCertificate.subject, name);
1430 }
1431
1432 /**
1433 * Get serial number of the certificate.
1434 *
1435 * @param p a hx509 certificate object.
1436 * @param i serial number, should be freed ith der_free_heim_integer().
1437 *
1438 * @return An hx509 error code, see hx509_get_error_string().
1439 *
1440 * @ingroup hx509_cert
1441 */
1442
1443 int
1444 hx509_cert_get_serialnumber(hx509_cert p, heim_integer *i)
1445 {
1446 return der_copy_heim_integer(&p->data->tbsCertificate.serialNumber, i);
1447 }
1448
1449 /**
1450 * Get notBefore time of the certificate.
1451 *
1452 * @param p a hx509 certificate object.
1453 *
1454 * @return return not before time
1455 *
1456 * @ingroup hx509_cert
1457 */
1458
1459 time_t
1460 hx509_cert_get_notBefore(hx509_cert p)
1461 {
1462 return _hx509_Time2time_t(&p->data->tbsCertificate.validity.notBefore);
1463 }
1464
1465 /**
1466 * Get notAfter time of the certificate.
1467 *
1468 * @param p a hx509 certificate object.
1469 *
1470 * @return return not after time.
1471 *
1472 * @ingroup hx509_cert
1473 */
1474
1475 time_t
1476 hx509_cert_get_notAfter(hx509_cert p)
1477 {
1478 return _hx509_Time2time_t(&p->data->tbsCertificate.validity.notAfter);
1479 }
1480
1481 /**
1482 * Get the SubjectPublicKeyInfo structure from the hx509 certificate.
1483 *
1484 * @param context a hx509 context.
1485 * @param p a hx509 certificate object.
1486 * @param spki SubjectPublicKeyInfo, should be freed with
1487 * free_SubjectPublicKeyInfo().
1488 *
1489 * @return An hx509 error code, see hx509_get_error_string().
1490 *
1491 * @ingroup hx509_cert
1492 */
1493
1494 int
1495 hx509_cert_get_SPKI(hx509_context context, hx509_cert p, SubjectPublicKeyInfo *spki)
1496 {
1497 int ret;
1498
1499 ret = copy_SubjectPublicKeyInfo(&p->data->tbsCertificate.subjectPublicKeyInfo, spki);
1500 if (ret)
1501 hx509_set_error_string(context, 0, ret, "Failed to copy SPKI");
1502 return ret;
1503 }
1504
1505 /**
1506 * Get the AlgorithmIdentifier from the hx509 certificate.
1507 *
1508 * @param context a hx509 context.
1509 * @param p a hx509 certificate object.
1510 * @param alg AlgorithmIdentifier, should be freed with
1511 * free_AlgorithmIdentifier(). The algorithmidentifier is
1512 * typicly rsaEncryption, or id-ecPublicKey, or some other
1513 * public key mechanism.
1514 *
1515 * @return An hx509 error code, see hx509_get_error_string().
1516 *
1517 * @ingroup hx509_cert
1518 */
1519
1520 int
1521 hx509_cert_get_SPKI_AlgorithmIdentifier(hx509_context context,
1522 hx509_cert p,
1523 AlgorithmIdentifier *alg)
1524 {
1525 int ret;
1526
1527 ret = copy_AlgorithmIdentifier(&p->data->tbsCertificate.subjectPublicKeyInfo.algorithm, alg);
1528 if (ret)
1529 hx509_set_error_string(context, 0, ret,
1530 "Failed to copy SPKI AlgorithmIdentifier");
1531 return ret;
1532 }
1533
1534 static int
1535 get_x_unique_id(hx509_context context, const char *name,
1536 const heim_bit_string *cert, heim_bit_string *subject)
1537 {
1538 int ret;
1539
1540 if (cert == NULL) {
1541 ret = HX509_EXTENSION_NOT_FOUND;
1542 hx509_set_error_string(context, 0, ret, "%s unique id doesn't exists", name);
1543 return ret;
1544 }
1545 ret = der_copy_bit_string(cert, subject);
1546 if (ret) {
1547 hx509_set_error_string(context, 0, ret, "malloc out of memory", name);
1548 return ret;
1549 }
1550 return 0;
1551 }
1552
1553 /**
1554 * Get a copy of the Issuer Unique ID
1555 *
1556 * @param context a hx509_context
1557 * @param p a hx509 certificate
1558 * @param issuer the issuer id returned, free with der_free_bit_string()
1559 *
1560 * @return An hx509 error code, see hx509_get_error_string(). The
1561 * error code HX509_EXTENSION_NOT_FOUND is returned if the certificate
1562 * doesn't have a issuerUniqueID
1563 *
1564 * @ingroup hx509_cert
1565 */
1566
1567 int
1568 hx509_cert_get_issuer_unique_id(hx509_context context, hx509_cert p, heim_bit_string *issuer)
1569 {
1570 return get_x_unique_id(context, "issuer", p->data->tbsCertificate.issuerUniqueID, issuer);
1571 }
1572
1573 /**
1574 * Get a copy of the Subect Unique ID
1575 *
1576 * @param context a hx509_context
1577 * @param p a hx509 certificate
1578 * @param subject the subject id returned, free with der_free_bit_string()
1579 *
1580 * @return An hx509 error code, see hx509_get_error_string(). The
1581 * error code HX509_EXTENSION_NOT_FOUND is returned if the certificate
1582 * doesn't have a subjectUniqueID
1583 *
1584 * @ingroup hx509_cert
1585 */
1586
1587 int
1588 hx509_cert_get_subject_unique_id(hx509_context context, hx509_cert p, heim_bit_string *subject)
1589 {
1590 return get_x_unique_id(context, "subject", p->data->tbsCertificate.subjectUniqueID, subject);
1591 }
1592
1593
1594 hx509_private_key
1595 _hx509_cert_private_key(hx509_cert p)
1596 {
1597 return p->private_key;
1598 }
1599
1600 int
1601 hx509_cert_have_private_key(hx509_cert p)
1602 {
1603 return p->private_key ? 1 : 0;
1604 }
1605
1606
1607 int
1608 _hx509_cert_private_key_exportable(hx509_cert p)
1609 {
1610 if (p->private_key == NULL)
1611 return 0;
1612 return _hx509_private_key_exportable(p->private_key);
1613 }
1614
1615 int
1616 _hx509_cert_private_decrypt(hx509_context context,
1617 const heim_octet_string *ciphertext,
1618 const heim_oid *encryption_oid,
1619 hx509_cert p,
1620 heim_octet_string *cleartext)
1621 {
1622 cleartext->data = NULL;
1623 cleartext->length = 0;
1624
1625 if (p->private_key == NULL) {
1626 hx509_set_error_string(context, 0, HX509_PRIVATE_KEY_MISSING,
1627 "Private key missing");
1628 return HX509_PRIVATE_KEY_MISSING;
1629 }
1630
1631 return hx509_private_key_private_decrypt(context,
1632 ciphertext,
1633 encryption_oid,
1634 p->private_key,
1635 cleartext);
1636 }
1637
1638 int
1639 hx509_cert_public_encrypt(hx509_context context,
1640 const heim_octet_string *cleartext,
1641 const hx509_cert p,
1642 heim_oid *encryption_oid,
1643 heim_octet_string *ciphertext)
1644 {
1645 return _hx509_public_encrypt(context,
1646 cleartext, p->data,
1647 encryption_oid, ciphertext);
1648 }
1649
1650 /*
1651 *
1652 */
1653
1654 time_t
1655 _hx509_Time2time_t(const Time *t)
1656 {
1657 switch(t->element) {
1658 case choice_Time_utcTime:
1659 return t->u.utcTime;
1660 case choice_Time_generalTime:
1661 return t->u.generalTime;
1662 }
1663 return 0;
1664 }
1665
1666 /*
1667 *
1668 */
1669
1670 static int
1671 init_name_constraints(hx509_name_constraints *nc)
1672 {
1673 memset(nc, 0, sizeof(*nc));
1674 return 0;
1675 }
1676
1677 static int
1678 add_name_constraints(hx509_context context, const Certificate *c, int not_ca,
1679 hx509_name_constraints *nc)
1680 {
1681 NameConstraints tnc;
1682 int ret;
1683
1684 ret = find_extension_name_constraints(c, &tnc);
1685 if (ret == HX509_EXTENSION_NOT_FOUND)
1686 return 0;
1687 else if (ret) {
1688 hx509_set_error_string(context, 0, ret, "Failed getting NameConstraints");
1689 return ret;
1690 } else if (not_ca) {
1691 ret = HX509_VERIFY_CONSTRAINTS;
1692 hx509_set_error_string(context, 0, ret, "Not a CA and "
1693 "have NameConstraints");
1694 } else {
1695 NameConstraints *val;
1696 val = realloc(nc->val, sizeof(nc->val[0]) * (nc->len + 1));
1697 if (val == NULL) {
1698 hx509_clear_error_string(context);
1699 ret = ENOMEM;
1700 goto out;
1701 }
1702 nc->val = val;
1703 ret = copy_NameConstraints(&tnc, &nc->val[nc->len]);
1704 if (ret) {
1705 hx509_clear_error_string(context);
1706 goto out;
1707 }
1708 nc->len += 1;
1709 }
1710 out:
1711 free_NameConstraints(&tnc);
1712 return ret;
1713 }
1714
1715 static int
1716 match_RDN(const RelativeDistinguishedName *c,
1717 const RelativeDistinguishedName *n)
1718 {
1719 size_t i;
1720
1721 if (c->len != n->len)
1722 return HX509_NAME_CONSTRAINT_ERROR;
1723
1724 for (i = 0; i < n->len; i++) {
1725 int diff, ret;
1726
1727 if (der_heim_oid_cmp(&c->val[i].type, &n->val[i].type) != 0)
1728 return HX509_NAME_CONSTRAINT_ERROR;
1729 ret = _hx509_name_ds_cmp(&c->val[i].value, &n->val[i].value, &diff);
1730 if (ret)
1731 return ret;
1732 if (diff != 0)
1733 return HX509_NAME_CONSTRAINT_ERROR;
1734 }
1735 return 0;
1736 }
1737
1738 static int
1739 match_X501Name(const Name *c, const Name *n)
1740 {
1741 size_t i;
1742 int ret;
1743
1744 if (c->element != choice_Name_rdnSequence
1745 || n->element != choice_Name_rdnSequence)
1746 return 0;
1747 if (c->u.rdnSequence.len > n->u.rdnSequence.len)
1748 return HX509_NAME_CONSTRAINT_ERROR;
1749 for (i = 0; i < c->u.rdnSequence.len; i++) {
1750 ret = match_RDN(&c->u.rdnSequence.val[i], &n->u.rdnSequence.val[i]);
1751 if (ret)
1752 return ret;
1753 }
1754 return 0;
1755 }
1756
1757
1758 static int
1759 match_general_name(const GeneralName *c, const GeneralName *n, int *match)
1760 {
1761 /*
1762 * Name constraints only apply to the same name type, see RFC3280,
1763 * 4.2.1.11.
1764 */
1765 assert(c->element == n->element);
1766
1767 switch(c->element) {
1768 case choice_GeneralName_otherName:
1769 if (der_heim_oid_cmp(&c->u.otherName.type_id,
1770 &n->u.otherName.type_id) != 0)
1771 return HX509_NAME_CONSTRAINT_ERROR;
1772 if (heim_any_cmp(&c->u.otherName.value,
1773 &n->u.otherName.value) != 0)
1774 return HX509_NAME_CONSTRAINT_ERROR;
1775 *match = 1;
1776 return 0;
1777 case choice_GeneralName_rfc822Name: {
1778 const char *s;
1779 size_t len1, len2;
1780 s = memchr(c->u.rfc822Name.data, '@', c->u.rfc822Name.length);
1781 if (s) {
1782 if (der_printable_string_cmp(&c->u.rfc822Name, &n->u.rfc822Name) != 0)
1783 return HX509_NAME_CONSTRAINT_ERROR;
1784 } else {
1785 s = memchr(n->u.rfc822Name.data, '@', n->u.rfc822Name.length);
1786 if (s == NULL)
1787 return HX509_NAME_CONSTRAINT_ERROR;
1788 len1 = c->u.rfc822Name.length;
1789 len2 = n->u.rfc822Name.length -
1790 (s - ((char *)n->u.rfc822Name.data));
1791 if (len1 > len2)
1792 return HX509_NAME_CONSTRAINT_ERROR;
1793 if (memcmp(s + 1 + len2 - len1, c->u.rfc822Name.data, len1) != 0)
1794 return HX509_NAME_CONSTRAINT_ERROR;
1795 if (len1 < len2 && s[len2 - len1 + 1] != '.')
1796 return HX509_NAME_CONSTRAINT_ERROR;
1797 }
1798 *match = 1;
1799 return 0;
1800 }
1801 case choice_GeneralName_dNSName: {
1802 size_t lenc, lenn;
1803 char *ptr;
1804
1805 lenc = c->u.dNSName.length;
1806 lenn = n->u.dNSName.length;
1807 if (lenc > lenn)
1808 return HX509_NAME_CONSTRAINT_ERROR;
1809 ptr = n->u.dNSName.data;
1810 if (memcmp(&ptr[lenn - lenc], c->u.dNSName.data, lenc) != 0)
1811 return HX509_NAME_CONSTRAINT_ERROR;
1812 if (lenn != lenc && ptr[lenn - lenc - 1] != '.')
1813 return HX509_NAME_CONSTRAINT_ERROR;
1814 *match = 1;
1815 return 0;
1816 }
1817 case choice_GeneralName_directoryName: {
1818 Name c_name, n_name;
1819 int ret;
1820
1821 c_name._save.data = NULL;
1822 c_name._save.length = 0;
1823 c_name.element = (enum Name_enum)c->u.directoryName.element;
1824 c_name.u.rdnSequence = c->u.directoryName.u.rdnSequence;
1825
1826 n_name._save.data = NULL;
1827 n_name._save.length = 0;
1828 n_name.element = (enum Name_enum)n->u.directoryName.element;
1829 n_name.u.rdnSequence = n->u.directoryName.u.rdnSequence;
1830
1831 ret = match_X501Name(&c_name, &n_name);
1832 if (ret == 0)
1833 *match = 1;
1834 return ret;
1835 }
1836 case choice_GeneralName_uniformResourceIdentifier:
1837 case choice_GeneralName_iPAddress:
1838 case choice_GeneralName_registeredID:
1839 default:
1840 return HX509_NAME_CONSTRAINT_ERROR;
1841 }
1842 }
1843
1844 static int
1845 match_alt_name(const GeneralName *n, const Certificate *c,
1846 int *same, int *match)
1847 {
1848 GeneralNames sa;
1849 int ret;
1850 size_t i, j;
1851
1852 i = 0;
1853 do {
1854 ret = find_extension_subject_alt_name(c, &i, &sa);
1855 if (ret == HX509_EXTENSION_NOT_FOUND) {
1856 ret = 0;
1857 break;
1858 } else if (ret != 0)
1859 break;
1860
1861 for (j = 0; j < sa.len; j++) {
1862 if (n->element == sa.val[j].element) {
1863 *same = 1;
1864 ret = match_general_name(n, &sa.val[j], match);
1865 }
1866 }
1867 free_GeneralNames(&sa);
1868 } while (1);
1869 return ret;
1870 }
1871
1872
1873 static int
1874 match_tree(const GeneralSubtrees *t, const Certificate *c, int *match)
1875 {
1876 int name, alt_name, same;
1877 unsigned int i;
1878 int ret = 0;
1879
1880 name = alt_name = same = *match = 0;
1881 for (i = 0; i < t->len; i++) {
1882 if (t->val[i].minimum && t->val[i].maximum)
1883 return HX509_RANGE;
1884
1885 /*
1886 * If the constraint apply to directoryNames, test is with
1887 * subjectName of the certificate if the certificate have a
1888 * non-null (empty) subjectName.
1889 */
1890
1891 if (t->val[i].base.element == choice_GeneralName_directoryName
1892 && !subject_null_p(c))
1893 {
1894 GeneralName certname;
1895
1896 memset(&certname, 0, sizeof(certname));
1897 certname.element = choice_GeneralName_directoryName;
1898 certname.u.directoryName.element = (enum GeneralName_directoryName_enum)
1899 c->tbsCertificate.subject.element;
1900 certname.u.directoryName.u.rdnSequence =
1901 c->tbsCertificate.subject.u.rdnSequence;
1902
1903 ret = match_general_name(&t->val[i].base, &certname, &name);
1904 }
1905
1906 /* Handle subjectAltNames, this is icky since they
1907 * restrictions only apply if the subjectAltName is of the
1908 * same type. So if there have been a match of type, require
1909 * altname to be set.
1910 */
1911 ret = match_alt_name(&t->val[i].base, c, &same, &alt_name);
1912 }
1913 if (name && (!same || alt_name))
1914 *match = 1;
1915 return ret;
1916 }
1917
1918 static int
1919 check_name_constraints(hx509_context context,
1920 const hx509_name_constraints *nc,
1921 const Certificate *c)
1922 {
1923 int match, ret;
1924 size_t i;
1925
1926 for (i = 0 ; i < nc->len; i++) {
1927 GeneralSubtrees gs;
1928
1929 if (nc->val[i].permittedSubtrees) {
1930 GeneralSubtrees_SET(&gs, nc->val[i].permittedSubtrees);
1931 ret = match_tree(&gs, c, &match);
1932 if (ret) {
1933 hx509_clear_error_string(context);
1934 return ret;
1935 }
1936 /* allow null subjectNames, they wont matches anything */
1937 if (match == 0 && !subject_null_p(c)) {
1938 hx509_set_error_string(context, 0, HX509_VERIFY_CONSTRAINTS,
1939 "Error verify constraints, "
1940 "certificate didn't match any "
1941 "permitted subtree");
1942 return HX509_VERIFY_CONSTRAINTS;
1943 }
1944 }
1945 if (nc->val[i].excludedSubtrees) {
1946 GeneralSubtrees_SET(&gs, nc->val[i].excludedSubtrees);
1947 ret = match_tree(&gs, c, &match);
1948 if (ret) {
1949 hx509_clear_error_string(context);
1950 return ret;
1951 }
1952 if (match) {
1953 hx509_set_error_string(context, 0, HX509_VERIFY_CONSTRAINTS,
1954 "Error verify constraints, "
1955 "certificate included in excluded "
1956 "subtree");
1957 return HX509_VERIFY_CONSTRAINTS;
1958 }
1959 }
1960 }
1961 return 0;
1962 }
1963
1964 static void
1965 free_name_constraints(hx509_name_constraints *nc)
1966 {
1967 size_t i;
1968
1969 for (i = 0 ; i < nc->len; i++)
1970 free_NameConstraints(&nc->val[i]);
1971 free(nc->val);
1972 }
1973
1974 /**
1975 * Build and verify the path for the certificate to the trust anchor
1976 * specified in the verify context. The path is constructed from the
1977 * certificate, the pool and the trust anchors.
1978 *
1979 * @param context A hx509 context.
1980 * @param ctx A hx509 verification context.
1981 * @param cert the certificate to build the path from.
1982 * @param pool A keyset of certificates to build the chain from.
1983 *
1984 * @return An hx509 error code, see hx509_get_error_string().
1985 *
1986 * @ingroup hx509_verify
1987 */
1988
1989 int
1990 hx509_verify_path(hx509_context context,
1991 hx509_verify_ctx ctx,
1992 hx509_cert cert,
1993 hx509_certs pool)
1994 {
1995 hx509_name_constraints nc;
1996 hx509_path path;
1997 int ret, proxy_cert_depth, selfsigned_depth, diff;
1998 size_t i, k;
1999 enum certtype type;
2000 Name proxy_issuer;
2001 hx509_certs anchors = NULL;
2002
2003 memset(&proxy_issuer, 0, sizeof(proxy_issuer));
2004
2005 ret = init_name_constraints(&nc);
2006 if (ret)
2007 return ret;
2008
2009 path.val = NULL;
2010 path.len = 0;
2011
2012 if ((ctx->flags & HX509_VERIFY_CTX_F_TIME_SET) == 0)
2013 ctx->time_now = time(NULL);
2014
2015 /*
2016 *
2017 */
2018 if (ctx->trust_anchors)
2019 anchors = hx509_certs_ref(ctx->trust_anchors);
2020 else if (context->default_trust_anchors && ALLOW_DEF_TA(ctx))
2021 anchors = hx509_certs_ref(context->default_trust_anchors);
2022 else {
2023 ret = hx509_certs_init(context, "MEMORY:no-TA", 0, NULL, &anchors);
2024 if (ret)
2025 goto out;
2026 }
2027
2028 /*
2029 * Calculate the path from the certificate user presented to the
2030 * to an anchor.
2031 */
2032 ret = _hx509_calculate_path(context, 0, ctx->time_now,
2033 anchors, ctx->max_depth,
2034 cert, pool, &path);
2035 if (ret)
2036 goto out;
2037
2038 /*
2039 * Check CA and proxy certificate chain from the top of the
2040 * certificate chain. Also check certificate is valid with respect
2041 * to the current time.
2042 *
2043 */
2044
2045 proxy_cert_depth = 0;
2046 selfsigned_depth = 0;
2047
2048 if (ctx->flags & HX509_VERIFY_CTX_F_ALLOW_PROXY_CERTIFICATE)
2049 type = PROXY_CERT;
2050 else
2051 type = EE_CERT;
2052
2053 for (i = 0; i < path.len; i++) {
2054 Certificate *c;
2055 time_t t;
2056
2057 c = _hx509_get_cert(path.val[i]);
2058
2059 /*
2060 * Lets do some basic check on issuer like
2061 * keyUsage.keyCertSign and basicConstraints.cA bit depending
2062 * on what type of certificate this is.
2063 */
2064
2065 switch (type) {
2066 case CA_CERT:
2067
2068 /* XXX make constants for keyusage */
2069 ret = check_key_usage(context, c, 1 << 5,
2070 REQUIRE_RFC3280(ctx) ? TRUE : FALSE);
2071 if (ret) {
2072 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
2073 "Key usage missing from CA certificate");
2074 goto out;
2075 }
2076
2077 /* self signed cert doesn't add to path length */
2078 if (i + 1 != path.len) {
2079 int selfsigned;
2080
2081 ret = certificate_is_self_signed(context, c, &selfsigned);
2082 if (ret)
2083 goto out;
2084 if (selfsigned)
2085 selfsigned_depth++;
2086 }
2087
2088 break;
2089 case PROXY_CERT: {
2090 ProxyCertInfo info;
2091
2092 if (is_proxy_cert(context, c, &info) == 0) {
2093 size_t j;
2094
2095 if (info.pCPathLenConstraint != NULL &&
2096 *info.pCPathLenConstraint < i)
2097 {
2098 free_ProxyCertInfo(&info);
2099 ret = HX509_PATH_TOO_LONG;
2100 hx509_set_error_string(context, 0, ret,
2101 "Proxy certificate chain "
2102 "longer then allowed");
2103 goto out;
2104 }
2105 /* XXX MUST check info.proxyPolicy */
2106 free_ProxyCertInfo(&info);
2107
2108 j = 0;
2109 if (find_extension(c, &asn1_oid_id_x509_ce_subjectAltName, &j)) {
2110 ret = HX509_PROXY_CERT_INVALID;
2111 hx509_set_error_string(context, 0, ret,
2112 "Proxy certificate have explicity "
2113 "forbidden subjectAltName");
2114 goto out;
2115 }
2116
2117 j = 0;
2118 if (find_extension(c, &asn1_oid_id_x509_ce_issuerAltName, &j)) {
2119 ret = HX509_PROXY_CERT_INVALID;
2120 hx509_set_error_string(context, 0, ret,
2121 "Proxy certificate have explicity "
2122 "forbidden issuerAltName");
2123 goto out;
2124 }
2125
2126 /*
2127 * The subject name of the proxy certificate should be
2128 * CN=XXX,<proxy issuer>, prune of CN and check if its
2129 * the same over the whole chain of proxy certs and
2130 * then check with the EE cert when we get to it.
2131 */
2132
2133 if (proxy_cert_depth) {
2134 ret = _hx509_name_cmp(&proxy_issuer, &c->tbsCertificate.subject, &diff);
2135 if (ret) {
2136 hx509_set_error_string(context, 0, ret, "Out of memory");
2137 goto out;
2138 }
2139 if (diff) {
2140 ret = HX509_PROXY_CERT_NAME_WRONG;
2141 hx509_set_error_string(context, 0, ret,
2142 "Base proxy name not right");
2143 goto out;
2144 }
2145 }
2146
2147 free_Name(&proxy_issuer);
2148
2149 ret = copy_Name(&c->tbsCertificate.subject, &proxy_issuer);
2150 if (ret) {
2151 hx509_clear_error_string(context);
2152 goto out;
2153 }
2154
2155 j = proxy_issuer.u.rdnSequence.len;
2156 if (proxy_issuer.u.rdnSequence.len < 2
2157 || proxy_issuer.u.rdnSequence.val[j - 1].len > 1
2158 || der_heim_oid_cmp(&proxy_issuer.u.rdnSequence.val[j - 1].val[0].type,
2159 &asn1_oid_id_at_commonName))
2160 {
2161 ret = HX509_PROXY_CERT_NAME_WRONG;
2162 hx509_set_error_string(context, 0, ret,
2163 "Proxy name too short or "
2164 "does not have Common name "
2165 "at the top");
2166 goto out;
2167 }
2168
2169 free_RelativeDistinguishedName(&proxy_issuer.u.rdnSequence.val[j - 1]);
2170 proxy_issuer.u.rdnSequence.len -= 1;
2171
2172 ret = _hx509_name_cmp(&proxy_issuer, &c->tbsCertificate.issuer, &diff);
2173 if (ret) {
2174 hx509_set_error_string(context, 0, ret, "Out of memory");
2175 goto out;
2176 }
2177 if (diff != 0) {
2178 ret = HX509_PROXY_CERT_NAME_WRONG;
2179 hx509_set_error_string(context, 0, ret,
2180 "Proxy issuer name not as expected");
2181 goto out;
2182 }
2183
2184 break;
2185 } else {
2186 /*
2187 * Now we are done with the proxy certificates, this
2188 * cert was an EE cert and we we will fall though to
2189 * EE checking below.
2190 */
2191 type = EE_CERT;
2192 /* FALLTHOUGH */
2193 }
2194 }
2195 case EE_CERT:
2196 /*
2197 * If there where any proxy certificates in the chain
2198 * (proxy_cert_depth > 0), check that the proxy issuer
2199 * matched proxy certificates "base" subject.
2200 */
2201 if (proxy_cert_depth) {
2202
2203 ret = _hx509_name_cmp(&proxy_issuer,
2204 &c->tbsCertificate.subject, &diff);
2205 if (ret) {
2206 hx509_set_error_string(context, 0, ret, "out of memory");
2207 goto out;
2208 }
2209 if (diff) {
2210 ret = HX509_PROXY_CERT_NAME_WRONG;
2211 hx509_clear_error_string(context);
2212 goto out;
2213 }
2214 if (cert->basename)
2215 hx509_name_free(&cert->basename);
2216
2217 ret = _hx509_name_from_Name(&proxy_issuer, &cert->basename);
2218 if (ret) {
2219 hx509_clear_error_string(context);
2220 goto out;
2221 }
2222 }
2223
2224 break;
2225 }
2226
2227 ret = check_basic_constraints(context, c, type,
2228 i - proxy_cert_depth - selfsigned_depth);
2229 if (ret)
2230 goto out;
2231
2232 /*
2233 * Don't check the trust anchors expiration time since they
2234 * are transported out of band, from RFC3820.
2235 */
2236 if (i + 1 != path.len || CHECK_TA(ctx)) {
2237
2238 t = _hx509_Time2time_t(&c->tbsCertificate.validity.notBefore);
2239 if (t > ctx->time_now) {
2240 ret = HX509_CERT_USED_BEFORE_TIME;
2241 hx509_clear_error_string(context);
2242 goto out;
2243 }
2244 t = _hx509_Time2time_t(&c->tbsCertificate.validity.notAfter);
2245 if (t < ctx->time_now) {
2246 ret = HX509_CERT_USED_AFTER_TIME;
2247 hx509_clear_error_string(context);
2248 goto out;
2249 }
2250 }
2251
2252 if (type == EE_CERT)
2253 type = CA_CERT;
2254 else if (type == PROXY_CERT)
2255 proxy_cert_depth++;
2256 }
2257
2258 /*
2259 * Verify constraints, do this backward so path constraints are
2260 * checked in the right order.
2261 */
2262
2263 for (ret = 0, k = path.len; k > 0; k--) {
2264 Certificate *c;
2265 int selfsigned;
2266 i = k - 1;
2267
2268 c = _hx509_get_cert(path.val[i]);
2269
2270 ret = certificate_is_self_signed(context, c, &selfsigned);
2271 if (ret)
2272 goto out;
2273
2274 /* verify name constraints, not for selfsigned and anchor */
2275 if (!selfsigned || i + 1 != path.len) {
2276 ret = check_name_constraints(context, &nc, c);
2277 if (ret) {
2278 goto out;
2279 }
2280 }
2281 ret = add_name_constraints(context, c, i == 0, &nc);
2282 if (ret)
2283 goto out;
2284
2285 /* XXX verify all other silly constraints */
2286
2287 }
2288
2289 /*
2290 * Verify that no certificates has been revoked.
2291 */
2292
2293 if (ctx->revoke_ctx) {
2294 hx509_certs certs;
2295
2296 ret = hx509_certs_init(context, "MEMORY:revoke-certs", 0,
2297 NULL, &certs);
2298 if (ret)
2299 goto out;
2300
2301 for (i = 0; i < path.len; i++) {
2302 ret = hx509_certs_add(context, certs, path.val[i]);
2303 if (ret) {
2304 hx509_certs_free(&certs);
2305 goto out;
2306 }
2307 }
2308 ret = hx509_certs_merge(context, certs, pool);
2309 if (ret) {
2310 hx509_certs_free(&certs);
2311 goto out;
2312 }
2313
2314 for (i = 0; i < path.len - 1; i++) {
2315 size_t parent = (i < path.len - 1) ? i + 1 : i;
2316
2317 ret = hx509_revoke_verify(context,
2318 ctx->revoke_ctx,
2319 certs,
2320 ctx->time_now,
2321 path.val[i],
2322 path.val[parent]);
2323 if (ret) {
2324 hx509_certs_free(&certs);
2325 goto out;
2326 }
2327 }
2328 hx509_certs_free(&certs);
2329 }
2330
2331 /*
2332 * Verify signatures, do this backward so public key working
2333 * parameter is passed up from the anchor up though the chain.
2334 */
2335
2336 for (k = path.len; k > 0; k--) {
2337 hx509_cert signer;
2338 Certificate *c;
2339 i = k - 1;
2340
2341 c = _hx509_get_cert(path.val[i]);
2342
2343 /* is last in chain (trust anchor) */
2344 if (i + 1 == path.len) {
2345 int selfsigned;
2346
2347 signer = path.val[i];
2348
2349 ret = certificate_is_self_signed(context, signer->data, &selfsigned);
2350 if (ret)
2351 goto out;
2352
2353 /* if trust anchor is not self signed, don't check sig */
2354 if (!selfsigned)
2355 continue;
2356 } else {
2357 /* take next certificate in chain */
2358 signer = path.val[i + 1];
2359 }
2360
2361 /* verify signatureValue */
2362 ret = _hx509_verify_signature_bitstring(context,
2363 signer,
2364 &c->signatureAlgorithm,
2365 &c->tbsCertificate._save,
2366 &c->signatureValue);
2367 if (ret) {
2368 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
2369 "Failed to verify signature of certificate");
2370 goto out;
2371 }
2372 /*
2373 * Verify that the sigature algorithm is not weak. Ignore
2374 * trust anchors since they are provisioned by the user.
2375 */
2376
2377 if (i + 1 != path.len && (ctx->flags & HX509_VERIFY_CTX_F_NO_BEST_BEFORE_CHECK) == 0) {
2378 ret = _hx509_signature_is_weak(context, &c->signatureAlgorithm);
2379 if (ret)
2380 goto out;
2381 }
2382 }
2383
2384 out:
2385 hx509_certs_free(&anchors);
2386 free_Name(&proxy_issuer);
2387 free_name_constraints(&nc);
2388 _hx509_path_free(&path);
2389
2390 return ret;
2391 }
2392
2393 /**
2394 * Verify a signature made using the private key of an certificate.
2395 *
2396 * @param context A hx509 context.
2397 * @param signer the certificate that made the signature.
2398 * @param alg algorthm that was used to sign the data.
2399 * @param data the data that was signed.
2400 * @param sig the sigature to verify.
2401 *
2402 * @return An hx509 error code, see hx509_get_error_string().
2403 *
2404 * @ingroup hx509_crypto
2405 */
2406
2407 int
2408 hx509_verify_signature(hx509_context context,
2409 const hx509_cert signer,
2410 const AlgorithmIdentifier *alg,
2411 const heim_octet_string *data,
2412 const heim_octet_string *sig)
2413 {
2414 return _hx509_verify_signature(context, signer, alg, data, sig);
2415 }
2416
2417 int
2418 _hx509_verify_signature_bitstring(hx509_context context,
2419 const hx509_cert signer,
2420 const AlgorithmIdentifier *alg,
2421 const heim_octet_string *data,
2422 const heim_bit_string *sig)
2423 {
2424 heim_octet_string os;
2425
2426 if (sig->length & 7) {
2427 hx509_set_error_string(context, 0, HX509_CRYPTO_SIG_INVALID_FORMAT,
2428 "signature not multiple of 8 bits");
2429 return HX509_CRYPTO_SIG_INVALID_FORMAT;
2430 }
2431
2432 os.data = sig->data;
2433 os.length = sig->length / 8;
2434
2435 return _hx509_verify_signature(context, signer, alg, data, &os);
2436 }
2437
2438
2439
2440 /**
2441 * Verify that the certificate is allowed to be used for the hostname
2442 * and address.
2443 *
2444 * @param context A hx509 context.
2445 * @param cert the certificate to match with
2446 * @param flags Flags to modify the behavior:
2447 * - HX509_VHN_F_ALLOW_NO_MATCH no match is ok
2448 * @param type type of hostname:
2449 * - HX509_HN_HOSTNAME for plain hostname.
2450 * - HX509_HN_DNSSRV for DNS SRV names.
2451 * @param hostname the hostname to check
2452 * @param sa address of the host
2453 * @param sa_size length of address
2454 *
2455 * @return An hx509 error code, see hx509_get_error_string().
2456 *
2457 * @ingroup hx509_cert
2458 */
2459
2460 int
2461 hx509_verify_hostname(hx509_context context,
2462 const hx509_cert cert,
2463 int flags,
2464 hx509_hostname_type type,
2465 const char *hostname,
2466 const struct sockaddr *sa,
2467 /* XXX krb5_socklen_t */ int sa_size)
2468 {
2469 GeneralNames san;
2470 const Name *name;
2471 int ret;
2472 size_t i, j, k;
2473
2474 if (sa && sa_size <= 0)
2475 return EINVAL;
2476
2477 memset(&san, 0, sizeof(san));
2478
2479 i = 0;
2480 do {
2481 ret = find_extension_subject_alt_name(cert->data, &i, &san);
2482 if (ret == HX509_EXTENSION_NOT_FOUND)
2483 break;
2484 else if (ret != 0)
2485 return HX509_PARSING_NAME_FAILED;
2486
2487 for (j = 0; j < san.len; j++) {
2488 switch (san.val[j].element) {
2489 case choice_GeneralName_dNSName: {
2490 heim_printable_string hn;
2491 hn.data = rk_UNCONST(hostname);
2492 hn.length = strlen(hostname);
2493
2494 if (der_printable_string_cmp(&san.val[j].u.dNSName, &hn) == 0) {
2495 free_GeneralNames(&san);
2496 return 0;
2497 }
2498 break;
2499 }
2500 default:
2501 break;
2502 }
2503 }
2504 free_GeneralNames(&san);
2505 } while (1);
2506
2507 name = &cert->data->tbsCertificate.subject;
2508
2509 /* Find first CN= in the name, and try to match the hostname on that */
2510 for (ret = 0, k = name->u.rdnSequence.len; ret == 0 && k > 0; k--) {
2511 i = k - 1;
2512 for (j = 0; ret == 0 && j < name->u.rdnSequence.val[i].len; j++) {
2513 AttributeTypeAndValue *n = &name->u.rdnSequence.val[i].val[j];
2514
2515 if (der_heim_oid_cmp(&n->type, &asn1_oid_id_at_commonName) == 0) {
2516 DirectoryString *ds = &n->value;
2517 switch (ds->element) {
2518 case choice_DirectoryString_printableString: {
2519 heim_printable_string hn;
2520 hn.data = rk_UNCONST(hostname);
2521 hn.length = strlen(hostname);
2522
2523 if (der_printable_string_cmp(&ds->u.printableString, &hn) == 0)
2524 return 0;
2525 break;
2526 }
2527 case choice_DirectoryString_ia5String: {
2528 heim_ia5_string hn;
2529 hn.data = rk_UNCONST(hostname);
2530 hn.length = strlen(hostname);
2531
2532 if (der_ia5_string_cmp(&ds->u.ia5String, &hn) == 0)
2533 return 0;
2534 break;
2535 }
2536 case choice_DirectoryString_utf8String:
2537 if (strcasecmp(ds->u.utf8String, hostname) == 0)
2538 return 0;
2539 default:
2540 break;
2541 }
2542 ret = HX509_NAME_CONSTRAINT_ERROR;
2543 }
2544 }
2545 }
2546
2547 if ((flags & HX509_VHN_F_ALLOW_NO_MATCH) == 0)
2548 ret = HX509_NAME_CONSTRAINT_ERROR;
2549
2550 return ret;
2551 }
2552
2553 int
2554 _hx509_set_cert_attribute(hx509_context context,
2555 hx509_cert cert,
2556 const heim_oid *oid,
2557 const heim_octet_string *attr)
2558 {
2559 hx509_cert_attribute a;
2560 void *d;
2561
2562 if (hx509_cert_get_attribute(cert, oid) != NULL)
2563 return 0;
2564
2565 d = realloc(cert->attrs.val,
2566 sizeof(cert->attrs.val[0]) * (cert->attrs.len + 1));
2567 if (d == NULL) {
2568 hx509_clear_error_string(context);
2569 return ENOMEM;
2570 }
2571 cert->attrs.val = d;
2572
2573 a = malloc(sizeof(*a));
2574 if (a == NULL)
2575 return ENOMEM;
2576
2577 der_copy_octet_string(attr, &a->data);
2578 der_copy_oid(oid, &a->oid);
2579
2580 cert->attrs.val[cert->attrs.len] = a;
2581 cert->attrs.len++;
2582
2583 return 0;
2584 }
2585
2586 /**
2587 * Get an external attribute for the certificate, examples are
2588 * friendly name and id.
2589 *
2590 * @param cert hx509 certificate object to search
2591 * @param oid an oid to search for.
2592 *
2593 * @return an hx509_cert_attribute, only valid as long as the
2594 * certificate is referenced.
2595 *
2596 * @ingroup hx509_cert
2597 */
2598
2599 hx509_cert_attribute
2600 hx509_cert_get_attribute(hx509_cert cert, const heim_oid *oid)
2601 {
2602 size_t i;
2603 for (i = 0; i < cert->attrs.len; i++)
2604 if (der_heim_oid_cmp(oid, &cert->attrs.val[i]->oid) == 0)
2605 return cert->attrs.val[i];
2606 return NULL;
2607 }
2608
2609 /**
2610 * Set the friendly name on the certificate.
2611 *
2612 * @param cert The certificate to set the friendly name on
2613 * @param name Friendly name.
2614 *
2615 * @return An hx509 error code, see hx509_get_error_string().
2616 *
2617 * @ingroup hx509_cert
2618 */
2619
2620 int
2621 hx509_cert_set_friendly_name(hx509_cert cert, const char *name)
2622 {
2623 if (cert->friendlyname)
2624 free(cert->friendlyname);
2625 cert->friendlyname = strdup(name);
2626 if (cert->friendlyname == NULL)
2627 return ENOMEM;
2628 return 0;
2629 }
2630
2631 /**
2632 * Get friendly name of the certificate.
2633 *
2634 * @param cert cert to get the friendly name from.
2635 *
2636 * @return an friendly name or NULL if there is. The friendly name is
2637 * only valid as long as the certificate is referenced.
2638 *
2639 * @ingroup hx509_cert
2640 */
2641
2642 const char *
2643 hx509_cert_get_friendly_name(hx509_cert cert)
2644 {
2645 hx509_cert_attribute a;
2646 PKCS9_friendlyName n;
2647 size_t sz;
2648 int ret;
2649 size_t i;
2650
2651 if (cert->friendlyname)
2652 return cert->friendlyname;
2653
2654 a = hx509_cert_get_attribute(cert, &asn1_oid_id_pkcs_9_at_friendlyName);
2655 if (a == NULL) {
2656 hx509_name name;
2657
2658 ret = hx509_cert_get_subject(cert, &name);
2659 if (ret)
2660 return NULL;
2661 ret = hx509_name_to_string(name, &cert->friendlyname);
2662 hx509_name_free(&name);
2663 if (ret)
2664 return NULL;
2665 return cert->friendlyname;
2666 }
2667
2668 ret = decode_PKCS9_friendlyName(a->data.data, a->data.length, &n, &sz);
2669 if (ret)
2670 return NULL;
2671
2672 if (n.len != 1) {
2673 free_PKCS9_friendlyName(&n);
2674 return NULL;
2675 }
2676
2677 cert->friendlyname = malloc(n.val[0].length + 1);
2678 if (cert->friendlyname == NULL) {
2679 free_PKCS9_friendlyName(&n);
2680 return NULL;
2681 }
2682
2683 for (i = 0; i < n.val[0].length; i++) {
2684 if (n.val[0].data[i] <= 0xff)
2685 cert->friendlyname[i] = n.val[0].data[i] & 0xff;
2686 else
2687 cert->friendlyname[i] = 'X';
2688 }
2689 cert->friendlyname[i] = '\0';
2690 free_PKCS9_friendlyName(&n);
2691
2692 return cert->friendlyname;
2693 }
2694
2695 void
2696 _hx509_query_clear(hx509_query *q)
2697 {
2698 memset(q, 0, sizeof(*q));
2699 }
2700
2701 /**
2702 * Allocate an query controller. Free using hx509_query_free().
2703 *
2704 * @param context A hx509 context.
2705 * @param q return pointer to a hx509_query.
2706 *
2707 * @return An hx509 error code, see hx509_get_error_string().
2708 *
2709 * @ingroup hx509_cert
2710 */
2711
2712 int
2713 hx509_query_alloc(hx509_context context, hx509_query **q)
2714 {
2715 *q = calloc(1, sizeof(**q));
2716 if (*q == NULL)
2717 return ENOMEM;
2718 return 0;
2719 }
2720
2721
2722 /**
2723 * Set match options for the hx509 query controller.
2724 *
2725 * @param q query controller.
2726 * @param option options to control the query controller.
2727 *
2728 * @return An hx509 error code, see hx509_get_error_string().
2729 *
2730 * @ingroup hx509_cert
2731 */
2732
2733 void
2734 hx509_query_match_option(hx509_query *q, hx509_query_option option)
2735 {
2736 switch(option) {
2737 case HX509_QUERY_OPTION_PRIVATE_KEY:
2738 q->match |= HX509_QUERY_PRIVATE_KEY;
2739 break;
2740 case HX509_QUERY_OPTION_KU_ENCIPHERMENT:
2741 q->match |= HX509_QUERY_KU_ENCIPHERMENT;
2742 break;
2743 case HX509_QUERY_OPTION_KU_DIGITALSIGNATURE:
2744 q->match |= HX509_QUERY_KU_DIGITALSIGNATURE;
2745 break;
2746 case HX509_QUERY_OPTION_KU_KEYCERTSIGN:
2747 q->match |= HX509_QUERY_KU_KEYCERTSIGN;
2748 break;
2749 case HX509_QUERY_OPTION_END:
2750 default:
2751 break;
2752 }
2753 }
2754
2755 /**
2756 * Set the issuer and serial number of match in the query
2757 * controller. The function make copies of the isser and serial number.
2758 *
2759 * @param q a hx509 query controller
2760 * @param issuer issuer to search for
2761 * @param serialNumber the serialNumber of the issuer.
2762 *
2763 * @return An hx509 error code, see hx509_get_error_string().
2764 *
2765 * @ingroup hx509_cert
2766 */
2767
2768 int
2769 hx509_query_match_issuer_serial(hx509_query *q,
2770 const Name *issuer,
2771 const heim_integer *serialNumber)
2772 {
2773 int ret;
2774 if (q->serial) {
2775 der_free_heim_integer(q->serial);
2776 free(q->serial);
2777 }
2778 q->serial = malloc(sizeof(*q->serial));
2779 if (q->serial == NULL)
2780 return ENOMEM;
2781 ret = der_copy_heim_integer(serialNumber, q->serial);
2782 if (ret) {
2783 free(q->serial);
2784 q->serial = NULL;
2785 return ret;
2786 }
2787 if (q->issuer_name) {
2788 free_Name(q->issuer_name);
2789 free(q->issuer_name);
2790 }
2791 q->issuer_name = malloc(sizeof(*q->issuer_name));
2792 if (q->issuer_name == NULL)
2793 return ENOMEM;
2794 ret = copy_Name(issuer, q->issuer_name);
2795 if (ret) {
2796 free(q->issuer_name);
2797 q->issuer_name = NULL;
2798 return ret;
2799 }
2800 q->match |= HX509_QUERY_MATCH_SERIALNUMBER|HX509_QUERY_MATCH_ISSUER_NAME;
2801 return 0;
2802 }
2803
2804 /**
2805 * Set the query controller to match on a friendly name
2806 *
2807 * @param q a hx509 query controller.
2808 * @param name a friendly name to match on
2809 *
2810 * @return An hx509 error code, see hx509_get_error_string().
2811 *
2812 * @ingroup hx509_cert
2813 */
2814
2815 int
2816 hx509_query_match_friendly_name(hx509_query *q, const char *name)
2817 {
2818 if (q->friendlyname)
2819 free(q->friendlyname);
2820 q->friendlyname = strdup(name);
2821 if (q->friendlyname == NULL)
2822 return ENOMEM;
2823 q->match |= HX509_QUERY_MATCH_FRIENDLY_NAME;
2824 return 0;
2825 }
2826
2827 /**
2828 * Set the query controller to require an one specific EKU (extended
2829 * key usage). Any previous EKU matching is overwitten. If NULL is
2830 * passed in as the eku, the EKU requirement is reset.
2831 *
2832 * @param q a hx509 query controller.
2833 * @param eku an EKU to match on.
2834 *
2835 * @return An hx509 error code, see hx509_get_error_string().
2836 *
2837 * @ingroup hx509_cert
2838 */
2839
2840 int
2841 hx509_query_match_eku(hx509_query *q, const heim_oid *eku)
2842 {
2843 int ret;
2844
2845 if (eku == NULL) {
2846 if (q->eku) {
2847 der_free_oid(q->eku);
2848 free(q->eku);
2849 q->eku = NULL;
2850 }
2851 q->match &= ~HX509_QUERY_MATCH_EKU;
2852 } else {
2853 if (q->eku) {
2854 der_free_oid(q->eku);
2855 } else {
2856 q->eku = calloc(1, sizeof(*q->eku));
2857 if (q->eku == NULL)
2858 return ENOMEM;
2859 }
2860 ret = der_copy_oid(eku, q->eku);
2861 if (ret) {
2862 free(q->eku);
2863 q->eku = NULL;
2864 return ret;
2865 }
2866 q->match |= HX509_QUERY_MATCH_EKU;
2867 }
2868 return 0;
2869 }
2870
2871 int
2872 hx509_query_match_expr(hx509_context context, hx509_query *q, const char *expr)
2873 {
2874 if (q->expr) {
2875 _hx509_expr_free(q->expr);
2876 q->expr = NULL;
2877 }
2878
2879 if (expr == NULL) {
2880 q->match &= ~HX509_QUERY_MATCH_EXPR;
2881 } else {
2882 q->expr = _hx509_expr_parse(expr);
2883 if (q->expr)
2884 q->match |= HX509_QUERY_MATCH_EXPR;
2885 }
2886
2887 return 0;
2888 }
2889
2890 /**
2891 * Set the query controller to match using a specific match function.
2892 *
2893 * @param q a hx509 query controller.
2894 * @param func function to use for matching, if the argument is NULL,
2895 * the match function is removed.
2896 * @param ctx context passed to the function.
2897 *
2898 * @return An hx509 error code, see hx509_get_error_string().
2899 *
2900 * @ingroup hx509_cert
2901 */
2902
2903 int
2904 hx509_query_match_cmp_func(hx509_query *q,
2905 int (*func)(hx509_context, hx509_cert, void *),
2906 void *ctx)
2907 {
2908 if (func)
2909 q->match |= HX509_QUERY_MATCH_FUNCTION;
2910 else
2911 q->match &= ~HX509_QUERY_MATCH_FUNCTION;
2912 q->cmp_func = func;
2913 q->cmp_func_ctx = ctx;
2914 return 0;
2915 }
2916
2917 /**
2918 * Free the query controller.
2919 *
2920 * @param context A hx509 context.
2921 * @param q a pointer to the query controller.
2922 *
2923 * @ingroup hx509_cert
2924 */
2925
2926 void
2927 hx509_query_free(hx509_context context, hx509_query *q)
2928 {
2929 if (q == NULL)
2930 return;
2931
2932 if (q->serial) {
2933 der_free_heim_integer(q->serial);
2934 free(q->serial);
2935 }
2936 if (q->issuer_name) {
2937 free_Name(q->issuer_name);
2938 free(q->issuer_name);
2939 }
2940 if (q->eku) {
2941 der_free_oid(q->eku);
2942 free(q->eku);
2943 }
2944 if (q->friendlyname)
2945 free(q->friendlyname);
2946 if (q->expr)
2947 _hx509_expr_free(q->expr);
2948
2949 memset(q, 0, sizeof(*q));
2950 free(q);
2951 }
2952
2953 int
2954 _hx509_query_match_cert(hx509_context context, const hx509_query *q, hx509_cert cert)
2955 {
2956 Certificate *c = _hx509_get_cert(cert);
2957 int ret, diff;
2958
2959 _hx509_query_statistic(context, 1, q);
2960
2961 if ((q->match & HX509_QUERY_FIND_ISSUER_CERT) &&
2962 _hx509_cert_is_parent_cmp(q->subject, c, 0) != 0)
2963 return 0;
2964
2965 if ((q->match & HX509_QUERY_MATCH_CERTIFICATE) &&
2966 _hx509_Certificate_cmp(q->certificate, c) != 0)
2967 return 0;
2968
2969 if ((q->match & HX509_QUERY_MATCH_SERIALNUMBER)
2970 && der_heim_integer_cmp(&c->tbsCertificate.serialNumber, q->serial) != 0)
2971 return 0;
2972
2973 if (q->match & HX509_QUERY_MATCH_ISSUER_NAME) {
2974 ret = _hx509_name_cmp(&c->tbsCertificate.issuer, q->issuer_name, &diff);
2975 if (ret || diff)
2976 return 0;
2977 }
2978
2979 if (q->match & HX509_QUERY_MATCH_SUBJECT_NAME) {
2980 ret = _hx509_name_cmp(&c->tbsCertificate.subject, q->subject_name, &diff);
2981 if (ret || diff)
2982 return 0;
2983 }
2984
2985 if (q->match & HX509_QUERY_MATCH_SUBJECT_KEY_ID) {
2986 SubjectKeyIdentifier si;
2987
2988 ret = _hx509_find_extension_subject_key_id(c, &si);
2989 if (ret == 0) {
2990 if (der_heim_octet_string_cmp(&si, q->subject_id) != 0)
2991 ret = 1;
2992 free_SubjectKeyIdentifier(&si);
2993 }
2994 if (ret)
2995 return 0;
2996 }
2997 if ((q->match & HX509_QUERY_MATCH_ISSUER_ID))
2998 return 0;
2999 if ((q->match & HX509_QUERY_PRIVATE_KEY) &&
3000 _hx509_cert_private_key(cert) == NULL)
3001 return 0;
3002
3003 {
3004 unsigned ku = 0;
3005 if (q->match & HX509_QUERY_KU_DIGITALSIGNATURE)
3006 ku |= (1 << 0);
3007 if (q->match & HX509_QUERY_KU_NONREPUDIATION)
3008 ku |= (1 << 1);
3009 if (q->match & HX509_QUERY_KU_ENCIPHERMENT)
3010 ku |= (1 << 2);
3011 if (q->match & HX509_QUERY_KU_DATAENCIPHERMENT)
3012 ku |= (1 << 3);
3013 if (q->match & HX509_QUERY_KU_KEYAGREEMENT)
3014 ku |= (1 << 4);
3015 if (q->match & HX509_QUERY_KU_KEYCERTSIGN)
3016 ku |= (1 << 5);
3017 if (q->match & HX509_QUERY_KU_CRLSIGN)
3018 ku |= (1 << 6);
3019 if (ku && check_key_usage(context, c, ku, TRUE))
3020 return 0;
3021 }
3022 if ((q->match & HX509_QUERY_ANCHOR))
3023 return 0;
3024
3025 if (q->match & HX509_QUERY_MATCH_LOCAL_KEY_ID) {
3026 hx509_cert_attribute a;
3027
3028 a = hx509_cert_get_attribute(cert, &asn1_oid_id_pkcs_9_at_localKeyId);
3029 if (a == NULL)
3030 return 0;
3031 if (der_heim_octet_string_cmp(&a->data, q->local_key_id) != 0)
3032 return 0;
3033 }
3034
3035 if (q->match & HX509_QUERY_NO_MATCH_PATH) {
3036 size_t i;
3037
3038 for (i = 0; i < q->path->len; i++)
3039 if (hx509_cert_cmp(q->path->val[i], cert) == 0)
3040 return 0;
3041 }
3042 if (q->match & HX509_QUERY_MATCH_FRIENDLY_NAME) {
3043 const char *name = hx509_cert_get_friendly_name(cert);
3044 if (name == NULL)
3045 return 0;
3046 if (strcasecmp(q->friendlyname, name) != 0)
3047 return 0;
3048 }
3049 if (q->match & HX509_QUERY_MATCH_FUNCTION) {
3050 ret = (*q->cmp_func)(context, cert, q->cmp_func_ctx);
3051 if (ret != 0)
3052 return 0;
3053 }
3054
3055 if (q->match & HX509_QUERY_MATCH_KEY_HASH_SHA1) {
3056 heim_octet_string os;
3057
3058 os.data = c->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.data;
3059 os.length =
3060 c->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.length / 8;
3061
3062 ret = _hx509_verify_signature(context,
3063 NULL,
3064 hx509_signature_sha1(),
3065 &os,
3066 q->keyhash_sha1);
3067 if (ret != 0)
3068 return 0;
3069 }
3070
3071 if (q->match & HX509_QUERY_MATCH_TIME) {
3072 time_t t;
3073 t = _hx509_Time2time_t(&c->tbsCertificate.validity.notBefore);
3074 if (t > q->timenow)
3075 return 0;
3076 t = _hx509_Time2time_t(&c->tbsCertificate.validity.notAfter);
3077 if (t < q->timenow)
3078 return 0;
3079 }
3080
3081 /* If an EKU is required, check the cert for it. */
3082 if ((q->match & HX509_QUERY_MATCH_EKU) &&
3083 hx509_cert_check_eku(context, cert, q->eku, 0))
3084 return 0;
3085
3086 if ((q->match & HX509_QUERY_MATCH_EXPR)) {
3087 hx509_env env = NULL;
3088
3089 ret = _hx509_cert_to_env(context, cert, &env);
3090 if (ret)
3091 return 0;
3092
3093 ret = _hx509_expr_eval(context, env, q->expr);
3094 hx509_env_free(&env);
3095 if (ret == 0)
3096 return 0;
3097 }
3098
3099 if (q->match & ~HX509_QUERY_MASK)
3100 return 0;
3101
3102 return 1;
3103 }
3104
3105 /**
3106 * Set a statistic file for the query statistics.
3107 *
3108 * @param context A hx509 context.
3109 * @param fn statistics file name
3110 *
3111 * @ingroup hx509_cert
3112 */
3113
3114 void
3115 hx509_query_statistic_file(hx509_context context, const char *fn)
3116 {
3117 if (context->querystat)
3118 free(context->querystat);
3119 context->querystat = strdup(fn);
3120 }
3121
3122 void
3123 _hx509_query_statistic(hx509_context context, int type, const hx509_query *q)
3124 {
3125 FILE *f;
3126 if (context->querystat == NULL)
3127 return;
3128 f = fopen(context->querystat, "a");
3129 if (f == NULL)
3130 return;
3131 rk_cloexec_file(f);
3132 fprintf(f, "%d %d\n", type, q->match);
3133 fclose(f);
3134 }
3135
3136 static const char *statname[] = {
3137 "find issuer cert",
3138 "match serialnumber",
3139 "match issuer name",
3140 "match subject name",
3141 "match subject key id",
3142 "match issuer id",
3143 "private key",
3144 "ku encipherment",
3145 "ku digitalsignature",
3146 "ku keycertsign",
3147 "ku crlsign",
3148 "ku nonrepudiation",
3149 "ku keyagreement",
3150 "ku dataencipherment",
3151 "anchor",
3152 "match certificate",
3153 "match local key id",
3154 "no match path",
3155 "match friendly name",
3156 "match function",
3157 "match key hash sha1",
3158 "match time"
3159 };
3160
3161 struct stat_el {
3162 unsigned long stats;
3163 unsigned int index;
3164 };
3165
3166
3167 static int
3168 stat_sort(const void *a, const void *b)
3169 {
3170 const struct stat_el *ae = a;
3171 const struct stat_el *be = b;
3172 return be->stats - ae->stats;
3173 }
3174
3175 /**
3176 * Unparse the statistics file and print the result on a FILE descriptor.
3177 *
3178 * @param context A hx509 context.
3179 * @param printtype tyep to print
3180 * @param out the FILE to write the data on.
3181 *
3182 * @ingroup hx509_cert
3183 */
3184
3185 void
3186 hx509_query_unparse_stats(hx509_context context, int printtype, FILE *out)
3187 {
3188 rtbl_t t;
3189 FILE *f;
3190 int type, mask, num;
3191 size_t i;
3192 unsigned long multiqueries = 0, totalqueries = 0;
3193 struct stat_el stats[32];
3194
3195 if (context->querystat == NULL)
3196 return;
3197 f = fopen(context->querystat, "r");
3198 if (f == NULL) {
3199 fprintf(out, "No statistic file %s: %s.\n",
3200 context->querystat, strerror(errno));
3201 return;
3202 }
3203 rk_cloexec_file(f);
3204
3205 for (i = 0; i < sizeof(stats)/sizeof(stats[0]); i++) {
3206 stats[i].index = i;
3207 stats[i].stats = 0;
3208 }
3209
3210 while (fscanf(f, "%d %d\n", &type, &mask) == 2) {
3211 if (type != printtype)
3212 continue;
3213 num = i = 0;
3214 while (mask && i < sizeof(stats)/sizeof(stats[0])) {
3215 if (mask & 1) {
3216 stats[i].stats++;
3217 num++;
3218 }
3219 mask = mask >>1 ;
3220 i++;
3221 }
3222 if (num > 1)
3223 multiqueries++;
3224 totalqueries++;
3225 }
3226 fclose(f);
3227
3228 qsort(stats, sizeof(stats)/sizeof(stats[0]), sizeof(stats[0]), stat_sort);
3229
3230 t = rtbl_create();
3231 if (t == NULL)
3232 errx(1, "out of memory");
3233
3234 rtbl_set_separator (t, " ");
3235
3236 rtbl_add_column_by_id (t, 0, "Name", 0);
3237 rtbl_add_column_by_id (t, 1, "Counter", 0);
3238
3239
3240 for (i = 0; i < sizeof(stats)/sizeof(stats[0]); i++) {
3241 char str[10];
3242
3243 if (stats[i].index < sizeof(statname)/sizeof(statname[0]))
3244 rtbl_add_column_entry_by_id (t, 0, statname[stats[i].index]);
3245 else {
3246 snprintf(str, sizeof(str), "%d", stats[i].index);
3247 rtbl_add_column_entry_by_id (t, 0, str);
3248 }
3249 snprintf(str, sizeof(str), "%lu", stats[i].stats);
3250 rtbl_add_column_entry_by_id (t, 1, str);
3251 }
3252
3253 rtbl_format(t, out);
3254 rtbl_destroy(t);
3255
3256 fprintf(out, "\nQueries: multi %lu total %lu\n",
3257 multiqueries, totalqueries);
3258 }
3259
3260 /**
3261 * Check the extended key usage on the hx509 certificate.
3262 *
3263 * @param context A hx509 context.
3264 * @param cert A hx509 context.
3265 * @param eku the EKU to check for
3266 * @param allow_any_eku if the any EKU is set, allow that to be a
3267 * substitute.
3268 *
3269 * @return An hx509 error code, see hx509_get_error_string().
3270 *
3271 * @ingroup hx509_cert
3272 */
3273
3274 int
3275 hx509_cert_check_eku(hx509_context context, hx509_cert cert,
3276 const heim_oid *eku, int allow_any_eku)
3277 {
3278 ExtKeyUsage e;
3279 int ret;
3280 size_t i;
3281
3282 ret = find_extension_eku(_hx509_get_cert(cert), &e);
3283 if (ret) {
3284 hx509_clear_error_string(context);
3285 return ret;
3286 }
3287
3288 for (i = 0; i < e.len; i++) {
3289 if (der_heim_oid_cmp(eku, &e.val[i]) == 0) {
3290 free_ExtKeyUsage(&e);
3291 return 0;
3292 }
3293 if (allow_any_eku) {
3294 #if 0
3295 if (der_heim_oid_cmp(id_any_eku, &e.val[i]) == 0) {
3296 free_ExtKeyUsage(&e);
3297 return 0;
3298 }
3299 #endif
3300 }
3301 }
3302 free_ExtKeyUsage(&e);
3303 hx509_clear_error_string(context);
3304 return HX509_CERTIFICATE_MISSING_EKU;
3305 }
3306
3307 int
3308 _hx509_cert_get_keyusage(hx509_context context,
3309 hx509_cert c,
3310 KeyUsage *ku)
3311 {
3312 Certificate *cert;
3313 const Extension *e;
3314 size_t size;
3315 int ret;
3316 size_t i = 0;
3317
3318 memset(ku, 0, sizeof(*ku));
3319
3320 cert = _hx509_get_cert(c);
3321
3322 if (_hx509_cert_get_version(cert) < 3)
3323 return 0;
3324
3325 e = find_extension(cert, &asn1_oid_id_x509_ce_keyUsage, &i);
3326 if (e == NULL)
3327 return HX509_KU_CERT_MISSING;
3328
3329 ret = decode_KeyUsage(e->extnValue.data, e->extnValue.length, ku, &size);
3330 if (ret)
3331 return ret;
3332 return 0;
3333 }
3334
3335 int
3336 _hx509_cert_get_eku(hx509_context context,
3337 hx509_cert cert,
3338 ExtKeyUsage *e)
3339 {
3340 int ret;
3341
3342 memset(e, 0, sizeof(*e));
3343
3344 ret = find_extension_eku(_hx509_get_cert(cert), e);
3345 if (ret && ret != HX509_EXTENSION_NOT_FOUND) {
3346 hx509_clear_error_string(context);
3347 return ret;
3348 }
3349 return 0;
3350 }
3351
3352 /**
3353 * Encodes the hx509 certificate as a DER encode binary.
3354 *
3355 * @param context A hx509 context.
3356 * @param c the certificate to encode.
3357 * @param os the encode certificate, set to NULL, 0 on case of
3358 * error. Free the os->data with hx509_xfree().
3359 *
3360 * @return An hx509 error code, see hx509_get_error_string().
3361 *
3362 * @ingroup hx509_cert
3363 */
3364
3365 int
3366 hx509_cert_binary(hx509_context context, hx509_cert c, heim_octet_string *os)
3367 {
3368 size_t size;
3369 int ret;
3370
3371 os->data = NULL;
3372 os->length = 0;
3373
3374 ASN1_MALLOC_ENCODE(Certificate, os->data, os->length,
3375 _hx509_get_cert(c), &size, ret);
3376 if (ret) {
3377 os->data = NULL;
3378 os->length = 0;
3379 return ret;
3380 }
3381 if (os->length != size)
3382 _hx509_abort("internal ASN.1 encoder error");
3383
3384 return ret;
3385 }
3386
3387 /*
3388 * Last to avoid lost __attribute__s due to #undef.
3389 */
3390
3391 #undef __attribute__
3392 #define __attribute__(X)
3393
3394 void
3395 _hx509_abort(const char *fmt, ...)
3396 __attribute__ ((noreturn, format (printf, 1, 2)))
3397 {
3398 va_list ap;
3399 va_start(ap, fmt);
3400 vprintf(fmt, ap);
3401 va_end(ap);
3402 printf("\n");
3403 fflush(stdout);
3404 abort();
3405 }
3406
3407 /**
3408 * Free a data element allocated in the library.
3409 *
3410 * @param ptr data to be freed.
3411 *
3412 * @ingroup hx509_misc
3413 */
3414
3415 void
3416 hx509_xfree(void *ptr)
3417 {
3418 free(ptr);
3419 }
3420
3421 /**
3422 *
3423 */
3424
3425 int
3426 _hx509_cert_to_env(hx509_context context, hx509_cert cert, hx509_env *env)
3427 {
3428 ExtKeyUsage eku;
3429 hx509_name name;
3430 char *buf;
3431 int ret;
3432 hx509_env envcert = NULL;
3433
3434 *env = NULL;
3435
3436 /* version */
3437 ret = asprintf(&buf, "%d", _hx509_cert_get_version(_hx509_get_cert(cert)));
3438 if (ret == -1)
3439 goto out;
3440 ret = hx509_env_add(context, &envcert, "version", buf);
3441 free(buf);
3442 if (ret)
3443 goto out;
3444
3445 /* subject */
3446 ret = hx509_cert_get_subject(cert, &name);
3447 if (ret)
3448 goto out;
3449
3450 ret = hx509_name_to_string(name, &buf);
3451 if (ret) {
3452 hx509_name_free(&name);
3453 goto out;
3454 }
3455
3456 ret = hx509_env_add(context, &envcert, "subject", buf);
3457 hx509_name_free(&name);
3458 if (ret)
3459 goto out;
3460
3461 /* issuer */
3462 ret = hx509_cert_get_issuer(cert, &name);
3463 if (ret)
3464 goto out;
3465
3466 ret = hx509_name_to_string(name, &buf);
3467 hx509_name_free(&name);
3468 if (ret)
3469 goto out;
3470
3471 ret = hx509_env_add(context, &envcert, "issuer", buf);
3472 hx509_xfree(buf);
3473 if (ret)
3474 goto out;
3475
3476 /* eku */
3477
3478 ret = _hx509_cert_get_eku(context, cert, &eku);
3479 if (ret == HX509_EXTENSION_NOT_FOUND)
3480 ;
3481 else if (ret != 0)
3482 goto out;
3483 else {
3484 size_t i;
3485 hx509_env enveku = NULL;
3486
3487 for (i = 0; i < eku.len; i++) {
3488
3489 ret = der_print_heim_oid(&eku.val[i], '.', &buf);
3490 if (ret) {
3491 free_ExtKeyUsage(&eku);
3492 hx509_env_free(&enveku);
3493 goto out;
3494 }
3495 ret = hx509_env_add(context, &enveku, buf, "oid-name-here");
3496 free(buf);
3497 if (ret) {
3498 free_ExtKeyUsage(&eku);
3499 hx509_env_free(&enveku);
3500 goto out;
3501 }
3502 }
3503 free_ExtKeyUsage(&eku);
3504
3505 ret = hx509_env_add_binding(context, &envcert, "eku", enveku);
3506 if (ret) {
3507 hx509_env_free(&enveku);
3508 goto out;
3509 }
3510 }
3511
3512 {
3513 Certificate *c = _hx509_get_cert(cert);
3514 heim_octet_string os, sig;
3515 hx509_env envhash = NULL;
3516
3517 os.data = c->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.data;
3518 os.length =
3519 c->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.length / 8;
3520
3521 ret = _hx509_create_signature(context,
3522 NULL,
3523 hx509_signature_sha1(),
3524 &os,
3525 NULL,
3526 &sig);
3527 if (ret != 0)
3528 goto out;
3529
3530 ret = hex_encode(sig.data, sig.length, &buf);
3531 der_free_octet_string(&sig);
3532 if (ret < 0) {
3533 ret = ENOMEM;
3534 hx509_set_error_string(context, 0, ret,
3535 "Out of memory");
3536 goto out;
3537 }
3538
3539 ret = hx509_env_add(context, &envhash, "sha1", buf);
3540 free(buf);
3541 if (ret)
3542 goto out;
3543
3544 ret = hx509_env_add_binding(context, &envcert, "hash", envhash);
3545 if (ret) {
3546 hx509_env_free(&envhash);
3547 goto out;
3548 }
3549 }
3550
3551 ret = hx509_env_add_binding(context, env, "certificate", envcert);
3552 if (ret)
3553 goto out;
3554
3555 return 0;
3556
3557 out:
3558 hx509_env_free(&envcert);
3559 return ret;
3560 }
3561
3562 /**
3563 * Print a simple representation of a certificate
3564 *
3565 * @param context A hx509 context, can be NULL
3566 * @param cert certificate to print
3567 * @param out the stdio output stream, if NULL, stdout is used
3568 *
3569 * @return An hx509 error code
3570 *
3571 * @ingroup hx509_cert
3572 */
3573
3574 int
3575 hx509_print_cert(hx509_context context, hx509_cert cert, FILE *out)
3576 {
3577 hx509_name name;
3578 char *str;
3579 int ret;
3580
3581 if (out == NULL)
3582 out = stderr;
3583
3584 ret = hx509_cert_get_issuer(cert, &name);
3585 if (ret)
3586 return ret;
3587 hx509_name_to_string(name, &str);
3588 hx509_name_free(&name);
3589 fprintf(out, " issuer: \"%s\"\n", str);
3590 free(str);
3591
3592 ret = hx509_cert_get_subject(cert, &name);
3593 if (ret)
3594 return ret;
3595 hx509_name_to_string(name, &str);
3596 hx509_name_free(&name);
3597 fprintf(out, " subject: \"%s\"\n", str);
3598 free(str);
3599
3600 {
3601 heim_integer serialNumber;
3602
3603 ret = hx509_cert_get_serialnumber(cert, &serialNumber);
3604 if (ret)
3605 return ret;
3606 ret = der_print_hex_heim_integer(&serialNumber, &str);
3607 if (ret)
3608 return ret;
3609 der_free_heim_integer(&serialNumber);
3610 fprintf(out, " serial: %s\n", str);
3611 free(str);
3612 }
3613
3614 printf(" keyusage: ");
3615 ret = hx509_cert_keyusage_print(context, cert, &str);
3616 if (ret == 0) {
3617 fprintf(out, "%s\n", str);
3618 free(str);
3619 } else
3620 fprintf(out, "no");
3621
3622 return 0;
3623 }
Heimdal