search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Increment array when comparing, from Harald Barth
[heimdal.git] / lib / hx509 / revoke.c
blob4b53a6fc72db4e2a5d8ec1e09d868089bb264cca
1 /*
2 * Copyright (c) 2006 - 2007 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 *
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 *
17 * 3. Neither the name of the Institute nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
33
34 /**
35 * @page page_revoke Revocation methods
36 *
37 * There are two revocation method for PKIX/X.509: CRL and OCSP.
38 * Revocation is needed if the private key is lost and
39 * stolen. Depending on how picky you are, you might want to make
40 * revocation for destroyed private keys too (smartcard broken), but
41 * that should not be a problem.
42 *
43 * CRL is a list of certifiates that have expired.
44 *
45 * OCSP is an online checking method where the requestor sends a list
46 * of certificates to the OCSP server to return a signed reply if they
47 * are valid or not. Some services sends a OCSP reply as part of the
48 * hand-shake to make the revoktion decision simpler/faster for the
49 * client.
50 */
51
52 #include "hx_locl.h"
53
54 struct revoke_crl {
55 char *path;
56 time_t last_modfied;
57 CRLCertificateList crl;
58 int verified;
59 int failed_verify;
60 };
61
62 struct revoke_ocsp {
63 char *path;
64 time_t last_modfied;
65 OCSPBasicOCSPResponse ocsp;
66 hx509_certs certs;
67 hx509_cert signer;
68 };
69
70
71 struct hx509_revoke_ctx_data {
72 unsigned int ref;
73 struct {
74 struct revoke_crl *val;
75 size_t len;
76 } crls;
77 struct {
78 struct revoke_ocsp *val;
79 size_t len;
80 } ocsps;
81 };
82
83 /**
84 * Allocate a revokation context. Free with hx509_revoke_free().
85 *
86 * @param context A hx509 context.
87 * @param ctx returns a newly allocated revokation context.
88 *
89 * @return An hx509 error code, see hx509_get_error_string().
90 *
91 * @ingroup hx509_revoke
92 */
93
94 int
95 hx509_revoke_init(hx509_context context, hx509_revoke_ctx *ctx)
96 {
97 *ctx = calloc(1, sizeof(**ctx));
98 if (*ctx == NULL)
99 return ENOMEM;
100
101 (*ctx)->ref = 1;
102 (*ctx)->crls.len = 0;
103 (*ctx)->crls.val = NULL;
104 (*ctx)->ocsps.len = 0;
105 (*ctx)->ocsps.val = NULL;
106
107 return 0;
108 }
109
110 hx509_revoke_ctx
111 _hx509_revoke_ref(hx509_revoke_ctx ctx)
112 {
113 if (ctx == NULL)
114 return NULL;
115 if (ctx->ref == 0)
116 _hx509_abort("revoke ctx refcount == 0 on ref");
117 ctx->ref++;
118 if (ctx->ref == UINT_MAX)
119 _hx509_abort("revoke ctx refcount == UINT_MAX on ref");
120 return ctx;
121 }
122
123 static void
124 free_ocsp(struct revoke_ocsp *ocsp)
125 {
126 free(ocsp->path);
127 free_OCSPBasicOCSPResponse(&ocsp->ocsp);
128 hx509_certs_free(&ocsp->certs);
129 hx509_cert_free(ocsp->signer);
130 }
131
132 /**
133 * Free a hx509 revokation context.
134 *
135 * @param ctx context to be freed
136 *
137 * @ingroup hx509_revoke
138 */
139
140 void
141 hx509_revoke_free(hx509_revoke_ctx *ctx)
142 {
143 size_t i ;
144
145 if (ctx == NULL || *ctx == NULL)
146 return;
147
148 if ((*ctx)->ref == 0)
149 _hx509_abort("revoke ctx refcount == 0 on free");
150 if (--(*ctx)->ref > 0)
151 return;
152
153 for (i = 0; i < (*ctx)->crls.len; i++) {
154 free((*ctx)->crls.val[i].path);
155 free_CRLCertificateList(&(*ctx)->crls.val[i].crl);
156 }
157
158 for (i = 0; i < (*ctx)->ocsps.len; i++)
159 free_ocsp(&(*ctx)->ocsps.val[i]);
160 free((*ctx)->ocsps.val);
161
162 free((*ctx)->crls.val);
163
164 memset(*ctx, 0, sizeof(**ctx));
165 free(*ctx);
166 *ctx = NULL;
167 }
168
169 static int
170 verify_ocsp(hx509_context context,
171 struct revoke_ocsp *ocsp,
172 time_t time_now,
173 hx509_certs certs,
174 hx509_cert parent)
175 {
176 hx509_cert signer = NULL;
177 hx509_query q;
178 int ret;
179
180 _hx509_query_clear(&q);
181
182 /*
183 * Need to match on issuer too in case there are two CA that have
184 * issued the same name to a certificate. One example of this is
185 * the www.openvalidation.org test's ocsp validator.
186 */
187
188 q.match = HX509_QUERY_MATCH_ISSUER_NAME;
189 q.issuer_name = &_hx509_get_cert(parent)->tbsCertificate.issuer;
190
191 switch(ocsp->ocsp.tbsResponseData.responderID.element) {
192 case choice_OCSPResponderID_byName:
193 q.match |= HX509_QUERY_MATCH_SUBJECT_NAME;
194 q.subject_name = &ocsp->ocsp.tbsResponseData.responderID.u.byName;
195 break;
196 case choice_OCSPResponderID_byKey:
197 q.match |= HX509_QUERY_MATCH_KEY_HASH_SHA1;
198 q.keyhash_sha1 = &ocsp->ocsp.tbsResponseData.responderID.u.byKey;
199 break;
200 }
201
202 ret = hx509_certs_find(context, certs, &q, &signer);
203 if (ret && ocsp->certs)
204 ret = hx509_certs_find(context, ocsp->certs, &q, &signer);
205 if (ret)
206 goto out;
207
208 /*
209 * If signer certificate isn't the CA certificate, lets check the
210 * it is the CA that signed the signer certificate and the OCSP EKU
211 * is set.
212 */
213 if (hx509_cert_cmp(signer, parent) != 0) {
214 Certificate *p = _hx509_get_cert(parent);
215 Certificate *s = _hx509_get_cert(signer);
216
217 ret = _hx509_cert_is_parent_cmp(s, p, 0);
218 if (ret != 0) {
219 ret = HX509_PARENT_NOT_CA;
220 hx509_set_error_string(context, 0, ret, "Revoke OCSP signer is "
221 "doesn't have CA as signer certificate");
222 goto out;
223 }
224
225 ret = _hx509_verify_signature_bitstring(context,
226 parent,
227 &s->signatureAlgorithm,
228 &s->tbsCertificate._save,
229 &s->signatureValue);
230 if (ret) {
231 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
232 "OCSP signer signature invalid");
233 goto out;
234 }
235
236 ret = hx509_cert_check_eku(context, signer,
237 &asn1_oid_id_pkix_kp_OCSPSigning, 0);
238 if (ret)
239 goto out;
240 }
241
242 ret = _hx509_verify_signature_bitstring(context,
243 signer,
244 &ocsp->ocsp.signatureAlgorithm,
245 &ocsp->ocsp.tbsResponseData._save,
246 &ocsp->ocsp.signature);
247 if (ret) {
248 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
249 "OCSP signature invalid");
250 goto out;
251 }
252
253 ocsp->signer = signer;
254 signer = NULL;
255 out:
256 if (signer)
257 hx509_cert_free(signer);
258
259 return ret;
260 }
261
262 /*
263 *
264 */
265
266 static int
267 parse_ocsp_basic(const void *data, size_t length, OCSPBasicOCSPResponse *basic)
268 {
269 OCSPResponse resp;
270 size_t size;
271 int ret;
272
273 memset(basic, 0, sizeof(*basic));
274
275 ret = decode_OCSPResponse(data, length, &resp, &size);
276 if (ret)
277 return ret;
278 if (length != size) {
279 free_OCSPResponse(&resp);
280 return ASN1_EXTRA_DATA;
281 }
282
283 switch (resp.responseStatus) {
284 case successful:
285 break;
286 default:
287 free_OCSPResponse(&resp);
288 return HX509_REVOKE_WRONG_DATA;
289 }
290
291 if (resp.responseBytes == NULL) {
292 free_OCSPResponse(&resp);
293 return EINVAL;
294 }
295
296 ret = der_heim_oid_cmp(&resp.responseBytes->responseType,
297 &asn1_oid_id_pkix_ocsp_basic);
298 if (ret != 0) {
299 free_OCSPResponse(&resp);
300 return HX509_REVOKE_WRONG_DATA;
301 }
302
303 ret = decode_OCSPBasicOCSPResponse(resp.responseBytes->response.data,
304 resp.responseBytes->response.length,
305 basic,
306 &size);
307 if (ret) {
308 free_OCSPResponse(&resp);
309 return ret;
310 }
311 if (size != resp.responseBytes->response.length) {
312 free_OCSPResponse(&resp);
313 free_OCSPBasicOCSPResponse(basic);
314 return ASN1_EXTRA_DATA;
315 }
316 free_OCSPResponse(&resp);
317
318 return 0;
319 }
320
321 /*
322 *
323 */
324
325 static int
326 load_ocsp(hx509_context context, struct revoke_ocsp *ocsp)
327 {
328 OCSPBasicOCSPResponse basic;
329 hx509_certs certs = NULL;
330 size_t length;
331 struct stat sb;
332 void *data;
333 int ret;
334
335 ret = rk_undumpdata(ocsp->path, &data, &length);
336 if (ret)
337 return ret;
338
339 ret = stat(ocsp->path, &sb);
340 if (ret)
341 return errno;
342
343 ret = parse_ocsp_basic(data, length, &basic);
344 rk_xfree(data);
345 if (ret) {
346 hx509_set_error_string(context, 0, ret,
347 "Failed to parse OCSP response");
348 return ret;
349 }
350
351 if (basic.certs) {
352 size_t i;
353
354 ret = hx509_certs_init(context, "MEMORY:ocsp-certs", 0,
355 NULL, &certs);
356 if (ret) {
357 free_OCSPBasicOCSPResponse(&basic);
358 return ret;
359 }
360
361 for (i = 0; i < basic.certs->len; i++) {
362 hx509_cert c;
363
364 c = hx509_cert_init(context, &basic.certs->val[i], NULL);
365 if (c == NULL)
366 continue;
367
368 ret = hx509_certs_add(context, certs, c);
369 hx509_cert_free(c);
370 if (ret)
371 continue;
372 }
373 }
374
375 ocsp->last_modfied = sb.st_mtime;
376
377 free_OCSPBasicOCSPResponse(&ocsp->ocsp);
378 hx509_certs_free(&ocsp->certs);
379 hx509_cert_free(ocsp->signer);
380
381 ocsp->ocsp = basic;
382 ocsp->certs = certs;
383 ocsp->signer = NULL;
384
385 return 0;
386 }
387
388 /**
389 * Add a OCSP file to the revokation context.
390 *
391 * @param context hx509 context
392 * @param ctx hx509 revokation context
393 * @param path path to file that is going to be added to the context.
394 *
395 * @return An hx509 error code, see hx509_get_error_string().
396 *
397 * @ingroup hx509_revoke
398 */
399
400 int
401 hx509_revoke_add_ocsp(hx509_context context,
402 hx509_revoke_ctx ctx,
403 const char *path)
404 {
405 void *data;
406 int ret;
407 size_t i;
408
409 if (strncmp(path, "FILE:", 5) != 0) {
410 hx509_set_error_string(context, 0, HX509_UNSUPPORTED_OPERATION,
411 "unsupport type in %s", path);
412 return HX509_UNSUPPORTED_OPERATION;
413 }
414
415 path += 5;
416
417 for (i = 0; i < ctx->ocsps.len; i++) {
418 if (strcmp(ctx->ocsps.val[0].path, path) == 0)
419 return 0;
420 }
421
422 data = realloc(ctx->ocsps.val,
423 (ctx->ocsps.len + 1) * sizeof(ctx->ocsps.val[0]));
424 if (data == NULL) {
425 hx509_clear_error_string(context);
426 return ENOMEM;
427 }
428
429 ctx->ocsps.val = data;
430
431 memset(&ctx->ocsps.val[ctx->ocsps.len], 0,
432 sizeof(ctx->ocsps.val[0]));
433
434 ctx->ocsps.val[ctx->ocsps.len].path = strdup(path);
435 if (ctx->ocsps.val[ctx->ocsps.len].path == NULL) {
436 hx509_clear_error_string(context);
437 return ENOMEM;
438 }
439
440 ret = load_ocsp(context, &ctx->ocsps.val[ctx->ocsps.len]);
441 if (ret) {
442 free(ctx->ocsps.val[ctx->ocsps.len].path);
443 return ret;
444 }
445 ctx->ocsps.len++;
446
447 return ret;
448 }
449
450 /*
451 *
452 */
453
454 static int
455 verify_crl(hx509_context context,
456 hx509_revoke_ctx ctx,
457 CRLCertificateList *crl,
458 time_t time_now,
459 hx509_certs certs,
460 hx509_cert parent)
461 {
462 hx509_cert signer;
463 hx509_query q;
464 time_t t;
465 int ret;
466
467 t = _hx509_Time2time_t(&crl->tbsCertList.thisUpdate);
468 if (t > time_now) {
469 hx509_set_error_string(context, 0, HX509_CRL_USED_BEFORE_TIME,
470 "CRL used before time");
471 return HX509_CRL_USED_BEFORE_TIME;
472 }
473
474 if (crl->tbsCertList.nextUpdate == NULL) {
475 hx509_set_error_string(context, 0, HX509_CRL_INVALID_FORMAT,
476 "CRL missing nextUpdate");
477 return HX509_CRL_INVALID_FORMAT;
478 }
479
480 t = _hx509_Time2time_t(crl->tbsCertList.nextUpdate);
481 if (t < time_now) {
482 hx509_set_error_string(context, 0, HX509_CRL_USED_AFTER_TIME,
483 "CRL used after time");
484 return HX509_CRL_USED_AFTER_TIME;
485 }
486
487 _hx509_query_clear(&q);
488
489 /*
490 * If it's the signer have CRLSIGN bit set, use that as the signer
491 * cert for the certificate, otherwise, search for a certificate.
492 */
493 if (_hx509_check_key_usage(context, parent, 1 << 6, FALSE) == 0) {
494 signer = hx509_cert_ref(parent);
495 } else {
496 q.match = HX509_QUERY_MATCH_SUBJECT_NAME;
497 q.match |= HX509_QUERY_KU_CRLSIGN;
498 q.subject_name = &crl->tbsCertList.issuer;
499
500 ret = hx509_certs_find(context, certs, &q, &signer);
501 if (ret) {
502 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
503 "Failed to find certificate for CRL");
504 return ret;
505 }
506 }
507
508 ret = _hx509_verify_signature_bitstring(context,
509 signer,
510 &crl->signatureAlgorithm,
511 &crl->tbsCertList._save,
512 &crl->signatureValue);
513 if (ret) {
514 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
515 "CRL signature invalid");
516 goto out;
517 }
518
519 /*
520 * If signer is not CA cert, need to check revoke status of this
521 * CRL signing cert too, this include all parent CRL signer cert
522 * up to the root *sigh*, assume root at least hve CERTSIGN flag
523 * set.
524 */
525 while (_hx509_check_key_usage(context, signer, 1 << 5, TRUE)) {
526 hx509_cert crl_parent;
527
528 _hx509_query_clear(&q);
529
530 q.match = HX509_QUERY_MATCH_SUBJECT_NAME;
531 q.match |= HX509_QUERY_KU_CRLSIGN;
532 q.subject_name = &_hx509_get_cert(signer)->tbsCertificate.issuer;
533
534 ret = hx509_certs_find(context, certs, &q, &crl_parent);
535 if (ret) {
536 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
537 "Failed to find parent of CRL signer");
538 goto out;
539 }
540
541 ret = hx509_revoke_verify(context,
542 ctx,
543 certs,
544 time_now,
545 signer,
546 crl_parent);
547 hx509_cert_free(signer);
548 signer = crl_parent;
549 if (ret) {
550 hx509_set_error_string(context, HX509_ERROR_APPEND, ret,
551 "Failed to verify revoke "
552 "status of CRL signer");
553 goto out;
554 }
555 }
556
557 out:
558 hx509_cert_free(signer);
559
560 return ret;
561 }
562
563 static int
564 crl_parser(hx509_context context, const char *type,
565 const hx509_pem_header *header,
566 const void *data, size_t len, void *ctx)
567 {
568 CRLCertificateList *crl = (CRLCertificateList *)ctx;
569 size_t size;
570 int ret;
571
572 if (strcasecmp("X509 CRL", type) != 0)
573 return HX509_CRYPTO_SIG_INVALID_FORMAT;
574
575 ret = decode_CRLCertificateList(data, len, crl, &size);
576 if (ret)
577 return ret;
578
579 /* check signature is aligned */
580 if (crl->signatureValue.length & 7) {
581 free_CRLCertificateList(crl);
582 return HX509_CRYPTO_SIG_INVALID_FORMAT;
583 }
584
585 return 0;
586 }
587
588 static int
589 load_crl(hx509_context context, const char *path, time_t *t, CRLCertificateList *crl)
590 {
591 struct stat sb;
592 size_t length;
593 void *data;
594 FILE *f;
595 int ret;
596
597 memset(crl, 0, sizeof(*crl));
598
599 ret = stat(path, &sb);
600 if (ret)
601 return errno;
602
603 *t = sb.st_mtime;
604
605 if ((f = fopen(path, "r")) == NULL)
606 return errno;
607
608 rk_cloexec_file(f);
609
610 ret = hx509_pem_read(context, f, crl_parser, crl);
611 fclose(f);
612
613 if (ret == HX509_PARSING_KEY_FAILED) {
614
615 ret = rk_undumpdata(path, &data, &length);
616 if (ret)
617 return ret;
618
619 ret = crl_parser(context, "X509 CRL", NULL, data, length, crl);
620 rk_xfree(data);
621 }
622 return ret;
623 }
624
625 /**
626 * Add a CRL file to the revokation context.
627 *
628 * @param context hx509 context
629 * @param ctx hx509 revokation context
630 * @param path path to file that is going to be added to the context.
631 *
632 * @return An hx509 error code, see hx509_get_error_string().
633 *
634 * @ingroup hx509_revoke
635 */
636
637 int
638 hx509_revoke_add_crl(hx509_context context,
639 hx509_revoke_ctx ctx,
640 const char *path)
641 {
642 void *data;
643 size_t i;
644 int ret;
645
646 if (strncmp(path, "FILE:", 5) != 0) {
647 hx509_set_error_string(context, 0, HX509_UNSUPPORTED_OPERATION,
648 "unsupport type in %s", path);
649 return HX509_UNSUPPORTED_OPERATION;
650 }
651
652
653 path += 5;
654
655 for (i = 0; i < ctx->crls.len; i++) {
656 if (strcmp(ctx->crls.val[i].path, path) == 0)
657 return 0;
658 }
659
660 data = realloc(ctx->crls.val,
661 (ctx->crls.len + 1) * sizeof(ctx->crls.val[0]));
662 if (data == NULL) {
663 hx509_clear_error_string(context);
664 return ENOMEM;
665 }
666 ctx->crls.val = data;
667
668 memset(&ctx->crls.val[ctx->crls.len], 0, sizeof(ctx->crls.val[0]));
669
670 ctx->crls.val[ctx->crls.len].path = strdup(path);
671 if (ctx->crls.val[ctx->crls.len].path == NULL) {
672 hx509_clear_error_string(context);
673 return ENOMEM;
674 }
675
676 ret = load_crl(context,
677 path,
678 &ctx->crls.val[ctx->crls.len].last_modfied,
679 &ctx->crls.val[ctx->crls.len].crl);
680 if (ret) {
681 free(ctx->crls.val[ctx->crls.len].path);
682 return ret;
683 }
684
685 ctx->crls.len++;
686
687 return ret;
688 }
689
690 /**
691 * Check that a certificate is not expired according to a revokation
692 * context. Also need the parent certificte to the check OCSP
693 * parent identifier.
694 *
695 * @param context hx509 context
696 * @param ctx hx509 revokation context
697 * @param certs
698 * @param now
699 * @param cert
700 * @param parent_cert
701 *
702 * @return An hx509 error code, see hx509_get_error_string().
703 *
704 * @ingroup hx509_revoke
705 */
706
707 int
708 hx509_revoke_verify(hx509_context context,
709 hx509_revoke_ctx ctx,
710 hx509_certs certs,
711 time_t now,
712 hx509_cert cert,
713 hx509_cert parent_cert)
714 {
715 const Certificate *c = _hx509_get_cert(cert);
716 const Certificate *p = _hx509_get_cert(parent_cert);
717 unsigned long i, j, k;
718 int ret;
719
720 hx509_clear_error_string(context);
721
722 for (i = 0; i < ctx->ocsps.len; i++) {
723 struct revoke_ocsp *ocsp = &ctx->ocsps.val[i];
724 struct stat sb;
725
726 /* check this ocsp apply to this cert */
727
728 /* check if there is a newer version of the file */
729 ret = stat(ocsp->path, &sb);
730 if (ret == 0 && ocsp->last_modfied != sb.st_mtime) {
731 ret = load_ocsp(context, ocsp);
732 if (ret)
733 continue;
734 }
735
736 /* verify signature in ocsp if not already done */
737 if (ocsp->signer == NULL) {
738 ret = verify_ocsp(context, ocsp, now, certs, parent_cert);
739 if (ret)
740 continue;
741 }
742
743 for (j = 0; j < ocsp->ocsp.tbsResponseData.responses.len; j++) {
744 heim_octet_string os;
745
746 ret = der_heim_integer_cmp(&ocsp->ocsp.tbsResponseData.responses.val[j].certID.serialNumber,
747 &c->tbsCertificate.serialNumber);
748 if (ret != 0)
749 continue;
750
751 /* verify issuer hashes hash */
752 ret = _hx509_verify_signature(context,
753 NULL,
754 &ocsp->ocsp.tbsResponseData.responses.val[i].certID.hashAlgorithm,
755 &c->tbsCertificate.issuer._save,
756 &ocsp->ocsp.tbsResponseData.responses.val[i].certID.issuerNameHash);
757 if (ret != 0)
758 continue;
759
760 os.data = p->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.data;
761 os.length = p->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.length / 8;
762
763 ret = _hx509_verify_signature(context,
764 NULL,
765 &ocsp->ocsp.tbsResponseData.responses.val[j].certID.hashAlgorithm,
766 &os,
767 &ocsp->ocsp.tbsResponseData.responses.val[j].certID.issuerKeyHash);
768 if (ret != 0)
769 continue;
770
771 switch (ocsp->ocsp.tbsResponseData.responses.val[j].certStatus.element) {
772 case choice_OCSPCertStatus_good:
773 break;
774 case choice_OCSPCertStatus_revoked:
775 hx509_set_error_string(context, 0,
776 HX509_CERT_REVOKED,
777 "Certificate revoked by issuer in OCSP");
778 return HX509_CERT_REVOKED;
779 case choice_OCSPCertStatus_unknown:
780 continue;
781 }
782
783 /* don't allow the update to be in the future */
784 if (ocsp->ocsp.tbsResponseData.responses.val[j].thisUpdate >
785 now + context->ocsp_time_diff)
786 continue;
787
788 /* don't allow the next update to be in the past */
789 if (ocsp->ocsp.tbsResponseData.responses.val[j].nextUpdate) {
790 if (*ocsp->ocsp.tbsResponseData.responses.val[j].nextUpdate < now)
791 continue;
792 } /* else should force a refetch, but can we ? */
793
794 return 0;
795 }
796 }
797
798 for (i = 0; i < ctx->crls.len; i++) {
799 struct revoke_crl *crl = &ctx->crls.val[i];
800 struct stat sb;
801 int diff;
802
803 /* check if cert.issuer == crls.val[i].crl.issuer */
804 ret = _hx509_name_cmp(&c->tbsCertificate.issuer,
805 &crl->crl.tbsCertList.issuer, &diff);
806 if (ret || diff)
807 continue;
808
809 ret = stat(crl->path, &sb);
810 if (ret == 0 && crl->last_modfied != sb.st_mtime) {
811 CRLCertificateList cl;
812
813 ret = load_crl(context, crl->path, &crl->last_modfied, &cl);
814 if (ret == 0) {
815 free_CRLCertificateList(&crl->crl);
816 crl->crl = cl;
817 crl->verified = 0;
818 crl->failed_verify = 0;
819 }
820 }
821 if (crl->failed_verify)
822 continue;
823
824 /* verify signature in crl if not already done */
825 if (crl->verified == 0) {
826 ret = verify_crl(context, ctx, &crl->crl, now, certs, parent_cert);
827 if (ret) {
828 crl->failed_verify = 1;
829 continue;
830 }
831 crl->verified = 1;
832 }
833
834 if (crl->crl.tbsCertList.crlExtensions) {
835 for (j = 0; j < crl->crl.tbsCertList.crlExtensions->len; j++) {
836 if (crl->crl.tbsCertList.crlExtensions->val[j].critical) {
837 hx509_set_error_string(context, 0,
838 HX509_CRL_UNKNOWN_EXTENSION,
839 "Unknown CRL extension");
840 return HX509_CRL_UNKNOWN_EXTENSION;
841 }
842 }
843 }
844
845 if (crl->crl.tbsCertList.revokedCertificates == NULL)
846 return 0;
847
848 /* check if cert is in crl */
849 for (j = 0; j < crl->crl.tbsCertList.revokedCertificates->len; j++) {
850 time_t t;
851
852 ret = der_heim_integer_cmp(&crl->crl.tbsCertList.revokedCertificates->val[j].userCertificate,
853 &c->tbsCertificate.serialNumber);
854 if (ret != 0)
855 continue;
856
857 t = _hx509_Time2time_t(&crl->crl.tbsCertList.revokedCertificates->val[j].revocationDate);
858 if (t > now)
859 continue;
860
861 if (crl->crl.tbsCertList.revokedCertificates->val[j].crlEntryExtensions)
862 for (k = 0; k < crl->crl.tbsCertList.revokedCertificates->val[j].crlEntryExtensions->len; k++)
863 if (crl->crl.tbsCertList.revokedCertificates->val[j].crlEntryExtensions->val[k].critical)
864 return HX509_CRL_UNKNOWN_EXTENSION;
865
866 hx509_set_error_string(context, 0,
867 HX509_CERT_REVOKED,
868 "Certificate revoked by issuer in CRL");
869 return HX509_CERT_REVOKED;
870 }
871
872 return 0;
873 }
874
875
876 if (context->flags & HX509_CTX_VERIFY_MISSING_OK)
877 return 0;
878 hx509_set_error_string(context, HX509_ERROR_APPEND,
879 HX509_REVOKE_STATUS_MISSING,
880 "No revoke status found for "
881 "certificates");
882 return HX509_REVOKE_STATUS_MISSING;
883 }
884
885 struct ocsp_add_ctx {
886 OCSPTBSRequest *req;
887 hx509_certs certs;
888 const AlgorithmIdentifier *digest;
889 hx509_cert parent;
890 };
891
892 static int
893 add_to_req(hx509_context context, void *ptr, hx509_cert cert)
894 {
895 struct ocsp_add_ctx *ctx = ptr;
896 OCSPInnerRequest *one;
897 hx509_cert parent = NULL;
898 Certificate *p, *c = _hx509_get_cert(cert);
899 heim_octet_string os;
900 int ret;
901 hx509_query q;
902 void *d;
903
904 d = realloc(ctx->req->requestList.val,
905 sizeof(ctx->req->requestList.val[0]) *
906 (ctx->req->requestList.len + 1));
907 if (d == NULL)
908 return ENOMEM;
909 ctx->req->requestList.val = d;
910
911 one = &ctx->req->requestList.val[ctx->req->requestList.len];
912 memset(one, 0, sizeof(*one));
913
914 _hx509_query_clear(&q);
915
916 q.match |= HX509_QUERY_FIND_ISSUER_CERT;
917 q.subject = c;
918
919 ret = hx509_certs_find(context, ctx->certs, &q, &parent);
920 if (ret)
921 goto out;
922
923 if (ctx->parent) {
924 if (hx509_cert_cmp(ctx->parent, parent) != 0) {
925 ret = HX509_REVOKE_NOT_SAME_PARENT;
926 hx509_set_error_string(context, 0, ret,
927 "Not same parent certifate as "
928 "last certificate in request");
929 goto out;
930 }
931 } else
932 ctx->parent = hx509_cert_ref(parent);
933
934 p = _hx509_get_cert(parent);
935
936 ret = copy_AlgorithmIdentifier(ctx->digest, &one->reqCert.hashAlgorithm);
937 if (ret)
938 goto out;
939
940 ret = _hx509_create_signature(context,
941 NULL,
942 &one->reqCert.hashAlgorithm,
943 &c->tbsCertificate.issuer._save,
944 NULL,
945 &one->reqCert.issuerNameHash);
946 if (ret)
947 goto out;
948
949 os.data = p->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.data;
950 os.length =
951 p->tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.length / 8;
952
953 ret = _hx509_create_signature(context,
954 NULL,
955 &one->reqCert.hashAlgorithm,
956 &os,
957 NULL,
958 &one->reqCert.issuerKeyHash);
959 if (ret)
960 goto out;
961
962 ret = copy_CertificateSerialNumber(&c->tbsCertificate.serialNumber,
963 &one->reqCert.serialNumber);
964 if (ret)
965 goto out;
966
967 ctx->req->requestList.len++;
968 out:
969 hx509_cert_free(parent);
970 if (ret) {
971 free_OCSPInnerRequest(one);
972 memset(one, 0, sizeof(*one));
973 }
974
975 return ret;
976 }
977
978 /**
979 * Create an OCSP request for a set of certificates.
980 *
981 * @param context a hx509 context
982 * @param reqcerts list of certificates to request ocsp data for
983 * @param pool certificate pool to use when signing
984 * @param signer certificate to use to sign the request
985 * @param digest the signing algorithm in the request, if NULL use the
986 * default signature algorithm,
987 * @param request the encoded request, free with free_heim_octet_string().
988 * @param nonce nonce in the request, free with free_heim_octet_string().
989 *
990 * @return An hx509 error code, see hx509_get_error_string().
991 *
992 * @ingroup hx509_revoke
993 */
994
995 int
996 hx509_ocsp_request(hx509_context context,
997 hx509_certs reqcerts,
998 hx509_certs pool,
999 hx509_cert signer,
1000 const AlgorithmIdentifier *digest,
1001 heim_octet_string *request,
1002 heim_octet_string *nonce)
1003 {
1004 OCSPRequest req;
1005 size_t size;
1006 int ret;
1007 struct ocsp_add_ctx ctx;
1008 Extensions *es;
1009
1010 memset(&req, 0, sizeof(req));
1011
1012 if (digest == NULL)
1013 digest = _hx509_crypto_default_digest_alg;
1014
1015 ctx.req = &req.tbsRequest;
1016 ctx.certs = pool;
1017 ctx.digest = digest;
1018 ctx.parent = NULL;
1019
1020 ret = hx509_certs_iter_f(context, reqcerts, add_to_req, &ctx);
1021 hx509_cert_free(ctx.parent);
1022 if (ret)
1023 goto out;
1024
1025 if (nonce) {
1026 req.tbsRequest.requestExtensions =
1027 calloc(1, sizeof(*req.tbsRequest.requestExtensions));
1028 if (req.tbsRequest.requestExtensions == NULL) {
1029 ret = ENOMEM;
1030 goto out;
1031 }
1032
1033 es = req.tbsRequest.requestExtensions;
1034
1035 es->val = calloc(es->len, sizeof(es->val[0]));
1036 if (es->val == NULL) {
1037 ret = ENOMEM;
1038 goto out;
1039 }
1040 es->len = 1;
1041 ret = der_copy_oid(&asn1_oid_id_pkix_ocsp_nonce, &es->val[0].extnID);
1042 if (ret) {
1043 free_OCSPRequest(&req);
1044 return ret;
1045 }
1046
1047 es->val[0].extnValue.data = malloc(10);
1048 if (es->val[0].extnValue.data == NULL) {
1049 ret = ENOMEM;
1050 goto out;
1051 }
1052 es->val[0].extnValue.length = 10;
1053
1054 ret = RAND_bytes(es->val[0].extnValue.data,
1055 es->val[0].extnValue.length);
1056 if (ret != 1) {
1057 ret = HX509_CRYPTO_INTERNAL_ERROR;
1058 goto out;
1059 }
1060 ret = der_copy_octet_string(nonce, &es->val[0].extnValue);
1061 if (ret) {
1062 ret = ENOMEM;
1063 goto out;
1064 }
1065 }
1066
1067 ASN1_MALLOC_ENCODE(OCSPRequest, request->data, request->length,
1068 &req, &size, ret);
1069 free_OCSPRequest(&req);
1070 if (ret)
1071 goto out;
1072 if (size != request->length)
1073 _hx509_abort("internal ASN.1 encoder error");
1074
1075 return 0;
1076
1077 out:
1078 free_OCSPRequest(&req);
1079 return ret;
1080 }
1081
1082 static char *
1083 printable_time(time_t t)
1084 {
1085 static char s[128];
1086 char *p;
1087 if ((p = ctime(&t)) == NULL)
1088 strlcpy(s, "?", sizeof(s));
1089 else {
1090 strlcpy(s, p + 4, sizeof(s));
1091 s[20] = 0;
1092 }
1093 return s;
1094 }
1095
1096 /*
1097 *
1098 */
1099
1100 static int
1101 print_ocsp(hx509_context context, struct revoke_ocsp *ocsp, FILE *out)
1102 {
1103 int ret = 0;
1104 size_t i;
1105
1106 fprintf(out, "signer: ");
1107
1108 switch(ocsp->ocsp.tbsResponseData.responderID.element) {
1109 case choice_OCSPResponderID_byName: {
1110 hx509_name n;
1111 char *s;
1112 _hx509_name_from_Name(&ocsp->ocsp.tbsResponseData.responderID.u.byName, &n);
1113 hx509_name_to_string(n, &s);
1114 hx509_name_free(&n);
1115 fprintf(out, " byName: %s\n", s);
1116 free(s);
1117 break;
1118 }
1119 case choice_OCSPResponderID_byKey: {
1120 char *s;
1121 hex_encode(ocsp->ocsp.tbsResponseData.responderID.u.byKey.data,
1122 ocsp->ocsp.tbsResponseData.responderID.u.byKey.length,
1123 &s);
1124 fprintf(out, " byKey: %s\n", s);
1125 free(s);
1126 break;
1127 }
1128 default:
1129 _hx509_abort("choice_OCSPResponderID unknown");
1130 break;
1131 }
1132
1133 fprintf(out, "producedAt: %s\n",
1134 printable_time(ocsp->ocsp.tbsResponseData.producedAt));
1135
1136 fprintf(out, "replies: %d\n", ocsp->ocsp.tbsResponseData.responses.len);
1137
1138 for (i = 0; i < ocsp->ocsp.tbsResponseData.responses.len; i++) {
1139 const char *status;
1140 switch (ocsp->ocsp.tbsResponseData.responses.val[i].certStatus.element) {
1141 case choice_OCSPCertStatus_good:
1142 status = "good";
1143 break;
1144 case choice_OCSPCertStatus_revoked:
1145 status = "revoked";
1146 break;
1147 case choice_OCSPCertStatus_unknown:
1148 status = "unknown";
1149 break;
1150 default:
1151 status = "element unknown";
1152 }
1153
1154 fprintf(out, "\t%zu. status: %s\n", i, status);
1155
1156 fprintf(out, "\tthisUpdate: %s\n",
1157 printable_time(ocsp->ocsp.tbsResponseData.responses.val[i].thisUpdate));
1158 if (ocsp->ocsp.tbsResponseData.responses.val[i].nextUpdate)
1159 fprintf(out, "\tproducedAt: %s\n",
1160 printable_time(ocsp->ocsp.tbsResponseData.responses.val[i].thisUpdate));
1161
1162 }
1163
1164 fprintf(out, "appended certs:\n");
1165 if (ocsp->certs)
1166 ret = hx509_certs_iter_f(context, ocsp->certs, hx509_ci_print_names, out);
1167
1168 return ret;
1169 }
1170
1171 static int
1172 print_crl(hx509_context context, struct revoke_crl *crl, FILE *out)
1173 {
1174 {
1175 hx509_name n;
1176 char *s;
1177 _hx509_name_from_Name(&crl->crl.tbsCertList.issuer, &n);
1178 hx509_name_to_string(n, &s);
1179 hx509_name_free(&n);
1180 fprintf(out, " issuer: %s\n", s);
1181 free(s);
1182 }
1183
1184 fprintf(out, " thisUpdate: %s\n",
1185 printable_time(_hx509_Time2time_t(&crl->crl.tbsCertList.thisUpdate)));
1186
1187 return 0;
1188 }
1189
1190
1191 /*
1192 *
1193 */
1194
1195 int
1196 hx509_revoke_print(hx509_context context,
1197 hx509_revoke_ctx ctx,
1198 FILE *out)
1199 {
1200 int saved_ret = 0, ret;
1201 size_t n;
1202
1203 for (n = 0; n < ctx->ocsps.len; n++) {
1204 struct revoke_ocsp *ocsp = &ctx->ocsps.val[n];
1205
1206 fprintf(out, "OCSP %s\n", ocsp->path);
1207
1208 ret = print_ocsp(context, ocsp, out);
1209 if (ret) {
1210 fprintf(out, "failure printing OCSP: %d\n", ret);
1211 saved_ret = ret;
1212 }
1213 }
1214
1215 for (n = 0; n < ctx->crls.len; n++) {
1216 struct revoke_crl *crl = &ctx->crls.val[n];
1217
1218 fprintf(out, "CRL %s\n", crl->path);
1219
1220 ret = print_crl(context, crl, out);
1221 if (ret) {
1222 fprintf(out, "failure printing CRL: %d\n", ret);
1223 saved_ret = ret;
1224 }
1225 }
1226 return saved_ret;
1227
1228 }
1229
1230 /**
1231 * Print the OCSP reply stored in a file.
1232 *
1233 * @param context a hx509 context
1234 * @param path path to a file with a OCSP reply
1235 * @param out the out FILE descriptor to print the reply on
1236 *
1237 * @return An hx509 error code, see hx509_get_error_string().
1238 *
1239 * @ingroup hx509_revoke
1240 */
1241
1242 int
1243 hx509_revoke_ocsp_print(hx509_context context, const char *path, FILE *out)
1244 {
1245 struct revoke_ocsp ocsp;
1246 int ret;
1247
1248 if (out == NULL)
1249 out = stdout;
1250
1251 memset(&ocsp, 0, sizeof(ocsp));
1252
1253 ocsp.path = strdup(path);
1254 if (ocsp.path == NULL)
1255 return ENOMEM;
1256
1257 ret = load_ocsp(context, &ocsp);
1258 if (ret) {
1259 free_ocsp(&ocsp);
1260 return ret;
1261 }
1262
1263 ret = print_ocsp(context, &ocsp, out);
1264
1265 free_ocsp(&ocsp);
1266 return ret;
1267 }
1268
1269 /**
1270 * Verify that the certificate is part of the OCSP reply and it's not
1271 * expired. Doesn't verify signature the OCSP reply or it's done by a
1272 * authorized sender, that is assumed to be already done.
1273 *
1274 * @param context a hx509 context
1275 * @param now the time right now, if 0, use the current time.
1276 * @param cert the certificate to verify
1277 * @param flags flags control the behavior
1278 * @param data pointer to the encode ocsp reply
1279 * @param length the length of the encode ocsp reply
1280 * @param expiration return the time the OCSP will expire and need to
1281 * be rechecked.
1282 *
1283 * @return An hx509 error code, see hx509_get_error_string().
1284 *
1285 * @ingroup hx509_verify
1286 */
1287
1288 int
1289 hx509_ocsp_verify(hx509_context context,
1290 time_t now,
1291 hx509_cert cert,
1292 int flags,
1293 const void *data, size_t length,
1294 time_t *expiration)
1295 {
1296 const Certificate *c = _hx509_get_cert(cert);
1297 OCSPBasicOCSPResponse basic;
1298 int ret;
1299 size_t i;
1300
1301 if (now == 0)
1302 now = time(NULL);
1303
1304 *expiration = 0;
1305
1306 ret = parse_ocsp_basic(data, length, &basic);
1307 if (ret) {
1308 hx509_set_error_string(context, 0, ret,
1309 "Failed to parse OCSP response");
1310 return ret;
1311 }
1312
1313 for (i = 0; i < basic.tbsResponseData.responses.len; i++) {
1314
1315 ret = der_heim_integer_cmp(&basic.tbsResponseData.responses.val[i].certID.serialNumber,
1316 &c->tbsCertificate.serialNumber);
1317 if (ret != 0)
1318 continue;
1319
1320 /* verify issuer hashes hash */
1321 ret = _hx509_verify_signature(context,
1322 NULL,
1323 &basic.tbsResponseData.responses.val[i].certID.hashAlgorithm,
1324 &c->tbsCertificate.issuer._save,
1325 &basic.tbsResponseData.responses.val[i].certID.issuerNameHash);
1326 if (ret != 0)
1327 continue;
1328
1329 switch (basic.tbsResponseData.responses.val[i].certStatus.element) {
1330 case choice_OCSPCertStatus_good:
1331 break;
1332 case choice_OCSPCertStatus_revoked:
1333 case choice_OCSPCertStatus_unknown:
1334 continue;
1335 }
1336
1337 /* don't allow the update to be in the future */
1338 if (basic.tbsResponseData.responses.val[i].thisUpdate >
1339 now + context->ocsp_time_diff)
1340 continue;
1341
1342 /* don't allow the next update to be in the past */
1343 if (basic.tbsResponseData.responses.val[i].nextUpdate) {
1344 if (*basic.tbsResponseData.responses.val[i].nextUpdate < now)
1345 continue;
1346 *expiration = *basic.tbsResponseData.responses.val[i].nextUpdate;
1347 } else
1348 *expiration = now;
1349
1350 free_OCSPBasicOCSPResponse(&basic);
1351 return 0;
1352 }
1353
1354 free_OCSPBasicOCSPResponse(&basic);
1355
1356 {
1357 hx509_name name;
1358 char *subject;
1359
1360 ret = hx509_cert_get_subject(cert, &name);
1361 if (ret) {
1362 hx509_clear_error_string(context);
1363 goto out;
1364 }
1365 ret = hx509_name_to_string(name, &subject);
1366 hx509_name_free(&name);
1367 if (ret) {
1368 hx509_clear_error_string(context);
1369 goto out;
1370 }
1371 hx509_set_error_string(context, 0, HX509_CERT_NOT_IN_OCSP,
1372 "Certificate %s not in OCSP response "
1373 "or not good",
1374 subject);
1375 free(subject);
1376 }
1377 out:
1378 return HX509_CERT_NOT_IN_OCSP;
1379 }
1380
1381 struct hx509_crl {
1382 hx509_certs revoked;
1383 time_t expire;
1384 };
1385
1386 /**
1387 * Create a CRL context. Use hx509_crl_free() to free the CRL context.
1388 *
1389 * @param context a hx509 context.
1390 * @param crl return pointer to a newly allocated CRL context.
1391 *
1392 * @return An hx509 error code, see hx509_get_error_string().
1393 *
1394 * @ingroup hx509_verify
1395 */
1396
1397 int
1398 hx509_crl_alloc(hx509_context context, hx509_crl *crl)
1399 {
1400 int ret;
1401
1402 *crl = calloc(1, sizeof(**crl));
1403 if (*crl == NULL) {
1404 hx509_set_error_string(context, 0, ENOMEM, "out of memory");
1405 return ENOMEM;
1406 }
1407
1408 ret = hx509_certs_init(context, "MEMORY:crl", 0, NULL, &(*crl)->revoked);
1409 if (ret) {
1410 free(*crl);
1411 *crl = NULL;
1412 return ret;
1413 }
1414 (*crl)->expire = 0;
1415 return ret;
1416 }
1417
1418 /**
1419 * Add revoked certificate to an CRL context.
1420 *
1421 * @param context a hx509 context.
1422 * @param crl the CRL to add the revoked certificate to.
1423 * @param certs keyset of certificate to revoke.
1424 *
1425 * @return An hx509 error code, see hx509_get_error_string().
1426 *
1427 * @ingroup hx509_verify
1428 */
1429
1430 int
1431 hx509_crl_add_revoked_certs(hx509_context context,
1432 hx509_crl crl,
1433 hx509_certs certs)
1434 {
1435 return hx509_certs_merge(context, crl->revoked, certs);
1436 }
1437
1438 /**
1439 * Set the lifetime of a CRL context.
1440 *
1441 * @param context a hx509 context.
1442 * @param crl a CRL context
1443 * @param delta delta time the certificate is valid, library adds the
1444 * current time to this.
1445 *
1446 * @return An hx509 error code, see hx509_get_error_string().
1447 *
1448 * @ingroup hx509_verify
1449 */
1450
1451 int
1452 hx509_crl_lifetime(hx509_context context, hx509_crl crl, int delta)
1453 {
1454 crl->expire = time(NULL) + delta;
1455 return 0;
1456 }
1457
1458 /**
1459 * Free a CRL context.
1460 *
1461 * @param context a hx509 context.
1462 * @param crl a CRL context to free.
1463 *
1464 * @ingroup hx509_verify
1465 */
1466
1467 void
1468 hx509_crl_free(hx509_context context, hx509_crl *crl)
1469 {
1470 if (*crl == NULL)
1471 return;
1472 hx509_certs_free(&(*crl)->revoked);
1473 memset(*crl, 0, sizeof(**crl));
1474 free(*crl);
1475 *crl = NULL;
1476 }
1477
1478 static int
1479 add_revoked(hx509_context context, void *ctx, hx509_cert cert)
1480 {
1481 TBSCRLCertList *c = ctx;
1482 unsigned int num;
1483 void *ptr;
1484 int ret;
1485
1486 num = c->revokedCertificates->len;
1487 ptr = realloc(c->revokedCertificates->val,
1488 (num + 1) * sizeof(c->revokedCertificates->val[0]));
1489 if (ptr == NULL) {
1490 hx509_clear_error_string(context);
1491 return ENOMEM;
1492 }
1493 c->revokedCertificates->val = ptr;
1494
1495 ret = hx509_cert_get_serialnumber(cert,
1496 &c->revokedCertificates->val[num].userCertificate);
1497 if (ret) {
1498 hx509_clear_error_string(context);
1499 return ret;
1500 }
1501 c->revokedCertificates->val[num].revocationDate.element =
1502 choice_Time_generalTime;
1503 c->revokedCertificates->val[num].revocationDate.u.generalTime =
1504 time(NULL) - 3600 * 24;
1505 c->revokedCertificates->val[num].crlEntryExtensions = NULL;
1506
1507 c->revokedCertificates->len++;
1508
1509 return 0;
1510 }
1511
1512 /**
1513 * Sign a CRL and return an encode certificate.
1514 *
1515 * @param context a hx509 context.
1516 * @param signer certificate to sign the CRL with
1517 * @param crl the CRL to sign
1518 * @param os return the signed and encoded CRL, free with
1519 * free_heim_octet_string()
1520 *
1521 * @return An hx509 error code, see hx509_get_error_string().
1522 *
1523 * @ingroup hx509_verify
1524 */
1525
1526 int
1527 hx509_crl_sign(hx509_context context,
1528 hx509_cert signer,
1529 hx509_crl crl,
1530 heim_octet_string *os)
1531 {
1532 const AlgorithmIdentifier *sigalg = _hx509_crypto_default_sig_alg;
1533 CRLCertificateList c;
1534 size_t size;
1535 int ret;
1536 hx509_private_key signerkey;
1537
1538 memset(&c, 0, sizeof(c));
1539
1540 signerkey = _hx509_cert_private_key(signer);
1541 if (signerkey == NULL) {
1542 ret = HX509_PRIVATE_KEY_MISSING;
1543 hx509_set_error_string(context, 0, ret,
1544 "Private key missing for CRL signing");
1545 return ret;
1546 }
1547
1548 c.tbsCertList.version = malloc(sizeof(*c.tbsCertList.version));
1549 if (c.tbsCertList.version == NULL) {
1550 hx509_set_error_string(context, 0, ENOMEM, "out of memory");
1551 return ENOMEM;
1552 }
1553
1554 *c.tbsCertList.version = 1;
1555
1556 ret = copy_AlgorithmIdentifier(sigalg, &c.tbsCertList.signature);
1557 if (ret) {
1558 hx509_clear_error_string(context);
1559 goto out;
1560 }
1561
1562 ret = copy_Name(&_hx509_get_cert(signer)->tbsCertificate.issuer,
1563 &c.tbsCertList.issuer);
1564 if (ret) {
1565 hx509_clear_error_string(context);
1566 goto out;
1567 }
1568
1569 c.tbsCertList.thisUpdate.element = choice_Time_generalTime;
1570 c.tbsCertList.thisUpdate.u.generalTime = time(NULL) - 24 * 3600;
1571
1572 c.tbsCertList.nextUpdate = malloc(sizeof(*c.tbsCertList.nextUpdate));
1573 if (c.tbsCertList.nextUpdate == NULL) {
1574 hx509_set_error_string(context, 0, ENOMEM, "out of memory");
1575 ret = ENOMEM;
1576 goto out;
1577 }
1578
1579 {
1580 time_t next = crl->expire;
1581 if (next == 0)
1582 next = time(NULL) + 24 * 3600 * 365;
1583
1584 c.tbsCertList.nextUpdate->element = choice_Time_generalTime;
1585 c.tbsCertList.nextUpdate->u.generalTime = next;
1586 }
1587
1588 c.tbsCertList.revokedCertificates =
1589 calloc(1, sizeof(*c.tbsCertList.revokedCertificates));
1590 if (c.tbsCertList.revokedCertificates == NULL) {
1591 hx509_set_error_string(context, 0, ENOMEM, "out of memory");
1592 ret = ENOMEM;
1593 goto out;
1594 }
1595 c.tbsCertList.crlExtensions = NULL;
1596
1597 ret = hx509_certs_iter_f(context, crl->revoked, add_revoked, &c.tbsCertList);
1598 if (ret)
1599 goto out;
1600
1601 /* if not revoked certs, remove OPTIONAL entry */
1602 if (c.tbsCertList.revokedCertificates->len == 0) {
1603 free(c.tbsCertList.revokedCertificates);
1604 c.tbsCertList.revokedCertificates = NULL;
1605 }
1606
1607 ASN1_MALLOC_ENCODE(TBSCRLCertList, os->data, os->length,
1608 &c.tbsCertList, &size, ret);
1609 if (ret) {
1610 hx509_set_error_string(context, 0, ret, "failed to encode tbsCRL");
1611 goto out;
1612 }
1613 if (size != os->length)
1614 _hx509_abort("internal ASN.1 encoder error");
1615
1616
1617 ret = _hx509_create_signature_bitstring(context,
1618 signerkey,
1619 sigalg,
1620 os,
1621 &c.signatureAlgorithm,
1622 &c.signatureValue);
1623 free(os->data);
1624 if (ret) {
1625 hx509_set_error_string(context, 0, ret, "Failed to sign CRL");
1626 goto out;
1627 }
1628
1629 ASN1_MALLOC_ENCODE(CRLCertificateList, os->data, os->length,
1630 &c, &size, ret);
1631 if (ret) {
1632 hx509_set_error_string(context, 0, ret, "failed to encode CRL");
1633 goto out;
1634 }
1635 if (size != os->length)
1636 _hx509_abort("internal ASN.1 encoder error");
1637
1638 free_CRLCertificateList(&c);
1639
1640 return 0;
1641
1642 out:
1643 free_CRLCertificateList(&c);
1644 return ret;
1645 }
Heimdal