1656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project/* apps/crl2p7.c */ 2656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 3656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * All rights reserved. 4656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 5656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * This package is an SSL implementation written 6656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * by Eric Young (eay@cryptsoft.com). 7656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * The implementation was written so as to conform with Netscapes SSL. 8656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 9656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * This library is free for commercial and non-commercial use as long as 10656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * the following conditions are aheared to. The following conditions 11656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * apply to all code found in this distribution, be it the RC4, RSA, 12656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * lhash, DES, etc., code; not just the SSL code. The SSL documentation 13656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * included with this distribution is covered by the same copyright terms 14656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * except that the holder is Tim Hudson (tjh@cryptsoft.com). 15656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 16656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Copyright remains Eric Young's, and as such any Copyright notices in 17656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * the code are not to be removed. 18656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * If this package is used in a product, Eric Young should be given attribution 19656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * as the author of the parts of the library used. 20656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * This can be in the form of a textual message at program startup or 21656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * in documentation (online or textual) provided with the package. 22656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 23656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Redistribution and use in source and binary forms, with or without 24656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * modification, are permitted provided that the following conditions 25656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * are met: 26656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 1. Redistributions of source code must retain the copyright 27656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * notice, this list of conditions and the following disclaimer. 28656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 2. Redistributions in binary form must reproduce the above copyright 29656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * notice, this list of conditions and the following disclaimer in the 30656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * documentation and/or other materials provided with the distribution. 31656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 3. All advertising materials mentioning features or use of this software 32656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * must display the following acknowledgement: 33656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * "This product includes cryptographic software written by 34656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Eric Young (eay@cryptsoft.com)" 35656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * The word 'cryptographic' can be left out if the rouines from the library 36656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * being used are not cryptographic related :-). 37656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 4. If you include any Windows specific code (or a derivative thereof) from 38656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * the apps directory (application code) you must include an acknowledgement: 39656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 40656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 41656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 42656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 43656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 44656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 45656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 46656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 47656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 48656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 49656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 50656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 51656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * SUCH DAMAGE. 52656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 53656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * The licence and distribution terms for any publically available version or 54656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * derivative of this code cannot be changed. i.e. this code cannot simply be 55656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * copied and put under another distribution licence 56656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * [including the GNU Public Licence.] 57656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project */ 58656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 59656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project/* This was written by Gordon Chaffee <chaffee@plateau.cs.berkeley.edu> 60656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * and donated 'to the cause' along with lots and lots of other fixes to 61656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * the library. */ 62656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 63656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <stdio.h> 64656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <string.h> 65656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <sys/types.h> 66656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include "apps.h" 67656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/err.h> 68656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/evp.h> 69656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/x509.h> 70656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/pkcs7.h> 71656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/pem.h> 72656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/objects.h> 73656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 74656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectstatic int add_certs_from_file(STACK_OF(X509) *stack, char *certfile); 75656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#undef PROG 76656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#define PROG crl2pkcs7_main 77656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 78656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project/* -inform arg - input format - default PEM (DER or PEM) 79656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * -outform arg - output format - default PEM 80656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * -in arg - input file - default stdin 81656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * -out arg - output file - default stdout 82656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project */ 83656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 84656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectint MAIN(int, char **); 85656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 86656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectint MAIN(int argc, char **argv) 87656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 88656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int i,badops=0; 89656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO *in=NULL,*out=NULL; 90656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int informat,outformat; 91656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project char *infile,*outfile,*prog,*certfile; 92656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project PKCS7 *p7 = NULL; 93656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project PKCS7_SIGNED *p7s = NULL; 94656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_CRL *crl=NULL; 95221304ee937bc0910948a8be1320cb8cc4eb6d36Brian Carlstrom STACK_OF(OPENSSL_STRING) *certflst=NULL; 96656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project STACK_OF(X509_CRL) *crl_stack=NULL; 97656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project STACK_OF(X509) *cert_stack=NULL; 98656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int ret=1,nocrl=0; 99656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 100656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project apps_startup(); 101656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 102656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (bio_err == NULL) 103656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((bio_err=BIO_new(BIO_s_file())) != NULL) 104656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT); 105656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 106656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project infile=NULL; 107656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project outfile=NULL; 108656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project informat=FORMAT_PEM; 109656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project outformat=FORMAT_PEM; 110656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 111656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project prog=argv[0]; 112656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argc--; 113656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argv++; 114656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project while (argc >= 1) 115656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 116656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (strcmp(*argv,"-inform") == 0) 117656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 118656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 119656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project informat=str2fmt(*(++argv)); 120656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 121656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-outform") == 0) 122656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 123656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 124656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project outformat=str2fmt(*(++argv)); 125656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 126656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-in") == 0) 127656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 128656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 129656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project infile= *(++argv); 130656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 131656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-nocrl") == 0) 132656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 133656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project nocrl=1; 134656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 135656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-out") == 0) 136656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 137656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 138656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project outfile= *(++argv); 139656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 140656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-certfile") == 0) 141656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 142656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 143221304ee937bc0910948a8be1320cb8cc4eb6d36Brian Carlstrom if(!certflst) certflst = sk_OPENSSL_STRING_new_null(); 144221304ee937bc0910948a8be1320cb8cc4eb6d36Brian Carlstrom sk_OPENSSL_STRING_push(certflst,*(++argv)); 145656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 146656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 147656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 148656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"unknown option %s\n",*argv); 149656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project badops=1; 150656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project break; 151656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 152656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argc--; 153656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argv++; 154656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 155656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 156656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (badops) 157656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 158656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectbad: 159656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"%s [options] <infile >outfile\n",prog); 160656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"where options are\n"); 161656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err," -inform arg input format - DER or PEM\n"); 162656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err," -outform arg output format - DER or PEM\n"); 163656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err," -in arg input file\n"); 164656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err," -out arg output file\n"); 165656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err," -certfile arg certificates file of chain to a trusted CA\n"); 166656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err," (can be used more than once)\n"); 167656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err," -nocrl no crl to load, just certs from '-certfile'\n"); 168656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ret = 1; 169656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 170656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 171656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 172656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_load_crypto_strings(); 173656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 174656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project in=BIO_new(BIO_s_file()); 175656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project out=BIO_new(BIO_s_file()); 176656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((in == NULL) || (out == NULL)) 177656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 178656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_print_errors(bio_err); 179656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 180656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 181656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 182656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!nocrl) 183656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 184656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (infile == NULL) 185656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_set_fp(in,stdin,BIO_NOCLOSE); 186656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 187656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 188656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (BIO_read_filename(in,infile) <= 0) 189656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 190656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project perror(infile); 191656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 192656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 193656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 194656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 195656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (informat == FORMAT_ASN1) 196656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project crl=d2i_X509_CRL_bio(in,NULL); 197656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (informat == FORMAT_PEM) 198656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project crl=PEM_read_bio_X509_CRL(in,NULL,NULL,NULL); 199656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else { 200656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"bad input format specified for input crl\n"); 201656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 202656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 203656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (crl == NULL) 204656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 205656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"unable to load CRL\n"); 206656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_print_errors(bio_err); 207656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 208656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 209656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 210656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 211656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((p7=PKCS7_new()) == NULL) goto end; 212656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((p7s=PKCS7_SIGNED_new()) == NULL) goto end; 213656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project p7->type=OBJ_nid2obj(NID_pkcs7_signed); 214656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project p7->d.sign=p7s; 215656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project p7s->contents->type=OBJ_nid2obj(NID_pkcs7_data); 216656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 217656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!ASN1_INTEGER_set(p7s->version,1)) goto end; 218656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((crl_stack=sk_X509_CRL_new_null()) == NULL) goto end; 219656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project p7s->crl=crl_stack; 220656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (crl != NULL) 221656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 222656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project sk_X509_CRL_push(crl_stack,crl); 223656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project crl=NULL; /* now part of p7 for OPENSSL_freeing */ 224656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 225656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 226656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((cert_stack=sk_X509_new_null()) == NULL) goto end; 227656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project p7s->cert=cert_stack; 228656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 229221304ee937bc0910948a8be1320cb8cc4eb6d36Brian Carlstrom if(certflst) for(i = 0; i < sk_OPENSSL_STRING_num(certflst); i++) { 230221304ee937bc0910948a8be1320cb8cc4eb6d36Brian Carlstrom certfile = sk_OPENSSL_STRING_value(certflst, i); 231656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (add_certs_from_file(cert_stack,certfile) < 0) 232656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 233656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err, "error loading certificates\n"); 234656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_print_errors(bio_err); 235656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 236656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 237656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 238656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 239221304ee937bc0910948a8be1320cb8cc4eb6d36Brian Carlstrom sk_OPENSSL_STRING_free(certflst); 240656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 241656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (outfile == NULL) 242656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 243656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_set_fp(out,stdout,BIO_NOCLOSE); 244656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#ifdef OPENSSL_SYS_VMS 245656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 246656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO *tmpbio = BIO_new(BIO_f_linebuffer()); 247656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project out = BIO_push(tmpbio, out); 248656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 249656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#endif 250656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 251656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 252656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 253656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (BIO_write_filename(out,outfile) <= 0) 254656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 255656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project perror(outfile); 256656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 257656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 258656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 259656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 260656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (outformat == FORMAT_ASN1) 261656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project i=i2d_PKCS7_bio(out,p7); 262656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (outformat == FORMAT_PEM) 263656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project i=PEM_write_bio_PKCS7(out,p7); 264656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else { 265656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"bad output format specified for outfile\n"); 266656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 267656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 268656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!i) 269656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 270656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"unable to write pkcs7 object\n"); 271656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_print_errors(bio_err); 272656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 273656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 274656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ret=0; 275656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectend: 276656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (in != NULL) BIO_free(in); 277656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (out != NULL) BIO_free_all(out); 278656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (p7 != NULL) PKCS7_free(p7); 279656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (crl != NULL) X509_CRL_free(crl); 280656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 281656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project apps_shutdown(); 282656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project OPENSSL_EXIT(ret); 283656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 284656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 285656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project/* 286656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project *---------------------------------------------------------------------- 287656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * int add_certs_from_file 288656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 289656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Read a list of certificates to be checked from a file. 290656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 291656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Results: 292656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * number of certs added if successful, -1 if not. 293656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project *---------------------------------------------------------------------- 294656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project */ 295656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectstatic int add_certs_from_file(STACK_OF(X509) *stack, char *certfile) 296656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 297656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO *in=NULL; 298656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int count=0; 299656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int ret= -1; 300656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project STACK_OF(X509_INFO) *sk=NULL; 301656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_INFO *xi; 302656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 303656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project in=BIO_new(BIO_s_file()); 304656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((in == NULL) || (BIO_read_filename(in,certfile) <= 0)) 305656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 306656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"error opening the file, %s\n",certfile); 307656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 308656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 309656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 310656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project /* This loads from a file, a stack of x509/crl/pkey sets */ 311656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project sk=PEM_X509_INFO_read_bio(in,NULL,NULL,NULL); 312656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (sk == NULL) { 313656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"error reading the file, %s\n",certfile); 314656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 315656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 316656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 317656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project /* scan over it and pull out the CRL's */ 318656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project while (sk_X509_INFO_num(sk)) 319656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 320656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project xi=sk_X509_INFO_shift(sk); 321656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (xi->x509 != NULL) 322656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 323656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project sk_X509_push(stack,xi->x509); 324656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project xi->x509=NULL; 325656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project count++; 326656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 327656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_INFO_free(xi); 328656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 329656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 330656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ret=count; 331656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectend: 332656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project /* never need to OPENSSL_free x */ 333656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (in != NULL) BIO_free(in); 334656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (sk != NULL) sk_X509_INFO_free(sk); 335656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project return(ret); 336656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 337656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 338