1656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project/* apps/crl.c */ 2656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 3656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * All rights reserved. 4656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 5656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * This package is an SSL implementation written 6656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * by Eric Young (eay@cryptsoft.com). 7656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * The implementation was written so as to conform with Netscapes SSL. 8656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 9656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * This library is free for commercial and non-commercial use as long as 10656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * the following conditions are aheared to. The following conditions 11656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * apply to all code found in this distribution, be it the RC4, RSA, 12656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * lhash, DES, etc., code; not just the SSL code. The SSL documentation 13656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * included with this distribution is covered by the same copyright terms 14656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * except that the holder is Tim Hudson (tjh@cryptsoft.com). 15656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 16656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Copyright remains Eric Young's, and as such any Copyright notices in 17656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * the code are not to be removed. 18656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * If this package is used in a product, Eric Young should be given attribution 19656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * as the author of the parts of the library used. 20656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * This can be in the form of a textual message at program startup or 21656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * in documentation (online or textual) provided with the package. 22656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 23656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Redistribution and use in source and binary forms, with or without 24656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * modification, are permitted provided that the following conditions 25656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * are met: 26656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 1. Redistributions of source code must retain the copyright 27656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * notice, this list of conditions and the following disclaimer. 28656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 2. Redistributions in binary form must reproduce the above copyright 29656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * notice, this list of conditions and the following disclaimer in the 30656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * documentation and/or other materials provided with the distribution. 31656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 3. All advertising materials mentioning features or use of this software 32656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * must display the following acknowledgement: 33656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * "This product includes cryptographic software written by 34656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * Eric Young (eay@cryptsoft.com)" 35656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * The word 'cryptographic' can be left out if the rouines from the library 36656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * being used are not cryptographic related :-). 37656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 4. If you include any Windows specific code (or a derivative thereof) from 38656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * the apps directory (application code) you must include an acknowledgement: 39656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 40656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 41656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 42656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 43656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 44656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 45656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 46656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 47656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 48656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 49656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 50656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 51656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * SUCH DAMAGE. 52656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * 53656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * The licence and distribution terms for any publically available version or 54656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * derivative of this code cannot be changed. i.e. this code cannot simply be 55656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * copied and put under another distribution licence 56656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project * [including the GNU Public Licence.] 57656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project */ 58656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 59656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <stdio.h> 60656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <stdlib.h> 61656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <string.h> 62656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include "apps.h" 63656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/bio.h> 64656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/err.h> 65656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/x509.h> 66656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/x509v3.h> 67656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#include <openssl/pem.h> 68656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 69656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#undef PROG 70656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#define PROG crl_main 71656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 72656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#undef POSTFIX 73656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#define POSTFIX ".rvk" 74656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 75656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectstatic const char *crl_usage[]={ 76656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project"usage: crl args\n", 77656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project"\n", 78656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -inform arg - input format - default PEM (DER or PEM)\n", 79656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -outform arg - output format - default PEM\n", 80656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -text - print out a text format version\n", 81656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -in arg - input file - default stdin\n", 82656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -out arg - output file - default stdout\n", 83656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -hash - print hash value\n", 847f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#ifndef OPENSSL_NO_MD5 857f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root" -hash_old - print old-style (MD5) hash value\n", 867f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#endif 87656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -fingerprint - print the crl fingerprint\n", 88656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -issuer - print issuer DN\n", 89656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -lastupdate - lastUpdate field\n", 90656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -nextupdate - nextUpdate field\n", 91e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu" -crlnumber - print CRL number\n", 92656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -noout - no CRL output\n", 93656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -CAfile name - verify CRL using certificates in file \"name\"\n", 94656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -CApath dir - verify CRL using certificates in \"dir\"\n", 95656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project" -nameopt arg - various certificate name options\n", 96656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source ProjectNULL 97656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project}; 98656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 99656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectstatic X509_CRL *load_crl(char *file, int format); 100656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectstatic BIO *bio_out=NULL; 101656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 102656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectint MAIN(int, char **); 103656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 104656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectint MAIN(int argc, char **argv) 105656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 106656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project unsigned long nmflag = 0; 107656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_CRL *x=NULL; 108656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project char *CAfile = NULL, *CApath = NULL; 109656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int ret=1,i,num,badops=0; 110656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO *out=NULL; 111656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int informat,outformat; 112656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project char *infile=NULL,*outfile=NULL; 113656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int hash=0,issuer=0,lastupdate=0,nextupdate=0,noout=0,text=0; 1147f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#ifndef OPENSSL_NO_MD5 1157f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root int hash_old=0; 1167f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#endif 117e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu int fingerprint = 0, crlnumber = 0; 118656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project const char **pp; 119656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_STORE *store = NULL; 120656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_STORE_CTX ctx; 121656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_LOOKUP *lookup = NULL; 122656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_OBJECT xobj; 123656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project EVP_PKEY *pkey; 124656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int do_ver = 0; 125656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project const EVP_MD *md_alg,*digest=EVP_sha1(); 126656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 127656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project apps_startup(); 128656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 129656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (bio_err == NULL) 130656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((bio_err=BIO_new(BIO_s_file())) != NULL) 131656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT); 132656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 133656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!load_config(bio_err, NULL)) 134656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 135656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 136656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (bio_out == NULL) 137656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if ((bio_out=BIO_new(BIO_s_file())) != NULL) 138656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 139656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_set_fp(bio_out,stdout,BIO_NOCLOSE); 140656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#ifdef OPENSSL_SYS_VMS 141656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 142656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO *tmpbio = BIO_new(BIO_f_linebuffer()); 143656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project bio_out = BIO_push(tmpbio, bio_out); 144656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 145656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#endif 146656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 147656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 148656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project informat=FORMAT_PEM; 149656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project outformat=FORMAT_PEM; 150656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 151656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argc--; 152656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argv++; 153656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project num=0; 154656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project while (argc >= 1) 155656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 156656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#ifdef undef 157656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (strcmp(*argv,"-p") == 0) 158656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 159656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 160656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!args_from_file(++argv,Nargc,Nargv)) { goto end; }*/ 161656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 162656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#endif 163656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (strcmp(*argv,"-inform") == 0) 164656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 165656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 166656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project informat=str2fmt(*(++argv)); 167656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 168656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-outform") == 0) 169656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 170656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 171656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project outformat=str2fmt(*(++argv)); 172656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 173656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-in") == 0) 174656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 175656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 176656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project infile= *(++argv); 177656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 178656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-out") == 0) 179656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 180656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 181656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project outfile= *(++argv); 182656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 183656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-CApath") == 0) 184656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 185656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 186656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project CApath = *(++argv); 187656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project do_ver = 1; 188656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 189656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-CAfile") == 0) 190656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 191656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 192656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project CAfile = *(++argv); 193656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project do_ver = 1; 194656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 195656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-verify") == 0) 196656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project do_ver = 1; 197656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-text") == 0) 198656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project text = 1; 199656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-hash") == 0) 200656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project hash= ++num; 2017f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#ifndef OPENSSL_NO_MD5 2027f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root else if (strcmp(*argv,"-hash_old") == 0) 2037f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root hash_old= ++num; 2047f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#endif 205656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-nameopt") == 0) 206656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 207656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (--argc < 1) goto bad; 208656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!set_name_ex(&nmflag, *(++argv))) goto bad; 209656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 210656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-issuer") == 0) 211656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project issuer= ++num; 212656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-lastupdate") == 0) 213656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project lastupdate= ++num; 214656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-nextupdate") == 0) 215656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project nextupdate= ++num; 216656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-noout") == 0) 217656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project noout= ++num; 218656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (strcmp(*argv,"-fingerprint") == 0) 219656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project fingerprint= ++num; 220e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu else if (strcmp(*argv,"-crlnumber") == 0) 221e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu crlnumber= ++num; 222656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if ((md_alg=EVP_get_digestbyname(*argv + 1))) 223656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 224656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project /* ok */ 225656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project digest=md_alg; 226656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 227656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 228656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 229656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"unknown option %s\n",*argv); 230656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project badops=1; 231656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project break; 232656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 233656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argc--; 234656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project argv++; 235656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 236656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 237656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (badops) 238656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 239656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectbad: 240656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project for (pp=crl_usage; (*pp != NULL); pp++) 241656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"%s",*pp); 242656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 243656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 244656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 245656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_load_crypto_strings(); 246656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project x=load_crl(infile,informat); 247656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (x == NULL) { goto end; } 248656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 249656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if(do_ver) { 250656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project store = X509_STORE_new(); 251656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project lookup=X509_STORE_add_lookup(store,X509_LOOKUP_file()); 252656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (lookup == NULL) goto end; 253656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!X509_LOOKUP_load_file(lookup,CAfile,X509_FILETYPE_PEM)) 254656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_LOOKUP_load_file(lookup,NULL,X509_FILETYPE_DEFAULT); 255656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 256656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project lookup=X509_STORE_add_lookup(store,X509_LOOKUP_hash_dir()); 257656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (lookup == NULL) goto end; 258656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!X509_LOOKUP_add_dir(lookup,CApath,X509_FILETYPE_PEM)) 259656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_LOOKUP_add_dir(lookup,NULL,X509_FILETYPE_DEFAULT); 260656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_clear_error(); 261656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 262656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if(!X509_STORE_CTX_init(&ctx, store, NULL, NULL)) { 263656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err, 264656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project "Error initialising X509 store\n"); 265656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 266656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 267656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 268656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project i = X509_STORE_get_by_subject(&ctx, X509_LU_X509, 269656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_CRL_get_issuer(x), &xobj); 270656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if(i <= 0) { 271656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err, 272656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project "Error getting CRL issuer certificate\n"); 273656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 274656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 275656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project pkey = X509_get_pubkey(xobj.data.x509); 276656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_OBJECT_free_contents(&xobj); 277656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if(!pkey) { 278656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err, 279656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project "Error getting CRL issuer public key\n"); 280656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 281656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 282656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project i = X509_CRL_verify(x, pkey); 283656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project EVP_PKEY_free(pkey); 284656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if(i < 0) goto end; 285656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if(i == 0) BIO_printf(bio_err, "verify failure\n"); 286656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else BIO_printf(bio_err, "verify OK\n"); 287656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 288656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 289656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (num) 290656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 291656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project for (i=1; i<=num; i++) 292656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 293656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (issuer == i) 294656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 295656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project print_name(bio_out, "issuer=", X509_CRL_get_issuer(x), nmflag); 296656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 297e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu if (crlnumber == i) 298e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu { 299e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu ASN1_INTEGER *crlnum; 300e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu crlnum = X509_CRL_get_ext_d2i(x, NID_crl_number, 301e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu NULL, NULL); 302e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu BIO_printf(bio_out,"crlNumber="); 303e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu if (crlnum) 304e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu { 305e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu i2a_ASN1_INTEGER(bio_out, crlnum); 306e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu ASN1_INTEGER_free(crlnum); 307e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu } 308e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu else 309e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu BIO_puts(bio_out, "<NONE>"); 310e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu BIO_printf(bio_out,"\n"); 311e45f106cb6b47af1f21efe76e933bdea2f5dd1caNagendra Modadugu } 312656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (hash == i) 313656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 314656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"%08lx\n", 315656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_NAME_hash(X509_CRL_get_issuer(x))); 316656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 3177f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#ifndef OPENSSL_NO_MD5 3187f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root if (hash_old == i) 3197f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root { 3207f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root BIO_printf(bio_out,"%08lx\n", 3217f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root X509_NAME_hash_old( 3227f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root X509_CRL_get_issuer(x))); 3237f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root } 3247f7ea2d72f2e316ba518e82f06513e3477840c15Kenny Root#endif 325656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (lastupdate == i) 326656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 327656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"lastUpdate="); 328656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ASN1_TIME_print(bio_out, 329656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_CRL_get_lastUpdate(x)); 330656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"\n"); 331656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 332656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (nextupdate == i) 333656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 334656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"nextUpdate="); 335656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (X509_CRL_get_nextUpdate(x)) 336656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ASN1_TIME_print(bio_out, 337656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_CRL_get_nextUpdate(x)); 338656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 339656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"NONE"); 340656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"\n"); 341656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 342656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (fingerprint == i) 343656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 344656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project int j; 345656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project unsigned int n; 346656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project unsigned char md[EVP_MAX_MD_SIZE]; 347656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 348656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!X509_CRL_digest(x,digest,md,&n)) 349656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 350656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"out of memory\n"); 351656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 352656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 353656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"%s Fingerprint=", 354656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project OBJ_nid2sn(EVP_MD_type(digest))); 355656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project for (j=0; j<(int)n; j++) 356656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 357656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_out,"%02X%c",md[j], 358656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project (j+1 == (int)n) 359656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ?'\n':':'); 360656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 361656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 362656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 363656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 364656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 365656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project out=BIO_new(BIO_s_file()); 366656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (out == NULL) 367656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 368656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_print_errors(bio_err); 369656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 370656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 371656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 372656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (outfile == NULL) 373656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 374656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_set_fp(out,stdout,BIO_NOCLOSE); 375656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#ifdef OPENSSL_SYS_VMS 376656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 377656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO *tmpbio = BIO_new(BIO_f_linebuffer()); 378656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project out = BIO_push(tmpbio, out); 379656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 380656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project#endif 381656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 382656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 383656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 384656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (BIO_write_filename(out,outfile) <= 0) 385656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 386656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project perror(outfile); 387656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 388656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 389656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 390656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 391656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (text) X509_CRL_print(out, x); 392656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 393656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (noout) 394656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 395656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ret = 0; 396656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 397656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 398656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 399656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (outformat == FORMAT_ASN1) 400656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project i=(int)i2d_X509_CRL_bio(out,x); 401656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (outformat == FORMAT_PEM) 402656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project i=PEM_write_bio_X509_CRL(out,x); 403656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 404656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 405656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"bad output format specified for outfile\n"); 406656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 407656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 408656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (!i) { BIO_printf(bio_err,"unable to write CRL\n"); goto end; } 409656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ret=0; 410656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectend: 411656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_free_all(out); 412656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_free_all(bio_out); 413656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project bio_out=NULL; 414656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_CRL_free(x); 415656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if(store) { 416656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_STORE_CTX_cleanup(&ctx); 417656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_STORE_free(store); 418656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 419656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project apps_shutdown(); 420656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project OPENSSL_EXIT(ret); 421656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 422656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 423656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectstatic X509_CRL *load_crl(char *infile, int format) 424656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 425656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project X509_CRL *x=NULL; 426656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO *in=NULL; 427656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 428656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project in=BIO_new(BIO_s_file()); 429656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (in == NULL) 430656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 431656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_print_errors(bio_err); 432656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 433656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 434656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 435656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (infile == NULL) 436656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_set_fp(in,stdin,BIO_NOCLOSE); 437656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else 438656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 439656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (BIO_read_filename(in,infile) <= 0) 440656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 441656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project perror(infile); 442656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 443656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 444656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 445656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (format == FORMAT_ASN1) 446656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project x=d2i_X509_CRL_bio(in,NULL); 447656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else if (format == FORMAT_PEM) 448656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project x=PEM_read_bio_X509_CRL(in,NULL,NULL,NULL); 449656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project else { 450656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"bad input format specified for input crl\n"); 451656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 452656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 453656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project if (x == NULL) 454656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project { 455656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_printf(bio_err,"unable to load CRL\n"); 456656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project ERR_print_errors(bio_err); 457656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project goto end; 458656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 459656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 460656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Projectend: 461656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project BIO_free(in); 462656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project return(x); 463656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project } 464656d9c7f52f88b3a3daccafa7655dec086c4756eThe Android Open Source Project 465