14969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin/* 24969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project 34969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin * 2001. 44969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin */ 5d9e397b599b13d642138480a28c14db7a136bf0Adam Langley/* ==================================================================== 6d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * Copyright (c) 2001 The OpenSSL Project. All rights reserved. 7d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 8d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * Redistribution and use in source and binary forms, with or without 9d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * modification, are permitted provided that the following conditions 10d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * are met: 11d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 12d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 1. Redistributions of source code must retain the above copyright 134969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin * notice, this list of conditions and the following disclaimer. 14d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 15d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 2. Redistributions in binary form must reproduce the above copyright 16d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * notice, this list of conditions and the following disclaimer in 17d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * the documentation and/or other materials provided with the 18d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * distribution. 19d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 20d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 3. All advertising materials mentioning features or use of this 21d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * software must display the following acknowledgment: 22d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * "This product includes software developed by the OpenSSL Project 23d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" 24d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 25d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to 26d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * endorse or promote products derived from this software without 27d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * prior written permission. For written permission, please contact 28d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * licensing@OpenSSL.org. 29d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 30d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 5. Products derived from this software may not be called "OpenSSL" 31d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * nor may "OpenSSL" appear in their names without prior written 32d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * permission of the OpenSSL Project. 33d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 34d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 6. Redistributions of any form whatsoever must retain the following 35d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * acknowledgment: 36d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * "This product includes software developed by the OpenSSL Project 37d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" 38d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 39d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY 40d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 41d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 42d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR 43d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, 44d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 45d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 46d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 47d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 48d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 49d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED 50d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * OF THE POSSIBILITY OF SUCH DAMAGE. 51d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * ==================================================================== 52d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * 53d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * This product includes cryptographic software written by Eric Young 54d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * (eay@cryptsoft.com). This product includes software written by Tim 55d9e397b599b13d642138480a28c14db7a136bf0Adam Langley * Hudson (tjh@cryptsoft.com). */ 56d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 57d9e397b599b13d642138480a28c14db7a136bf0Adam Langley#include <openssl/asn1.h> 58d9e397b599b13d642138480a28c14db7a136bf0Adam Langley#include <openssl/evp.h> 59d9e397b599b13d642138480a28c14db7a136bf0Adam Langley#include <openssl/obj.h> 60d9e397b599b13d642138480a28c14db7a136bf0Adam Langley#include <openssl/x509.h> 61d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 62b8494591d1b1a143f3b192d845c238bbf3bc629dKenny Root#include "../internal.h" 63b8494591d1b1a143f3b192d845c238bbf3bc629dKenny Root 64d9e397b599b13d642138480a28c14db7a136bf0Adam Langleyint X509_CRL_set_version(X509_CRL *x, long version) 654969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 664969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (x == NULL) 674969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (0); 684969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (x->crl->version == NULL) { 694969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if ((x->crl->version = M_ASN1_INTEGER_new()) == NULL) 704969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (0); 714969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 724969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (ASN1_INTEGER_set(x->crl->version, version)); 734969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 74d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 75d9e397b599b13d642138480a28c14db7a136bf0Adam Langleyint X509_CRL_set_issuer_name(X509_CRL *x, X509_NAME *name) 764969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 774969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if ((x == NULL) || (x->crl == NULL)) 784969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (0); 794969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (X509_NAME_set(&x->crl->issuer, name)); 804969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 81d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 82d9e397b599b13d642138480a28c14db7a136bf0Adam Langleyint X509_CRL_set_lastUpdate(X509_CRL *x, const ASN1_TIME *tm) 834969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 844969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin ASN1_TIME *in; 854969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin 864969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (x == NULL) 874969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (0); 884969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = x->crl->lastUpdate; 894969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != tm) { 904969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = M_ASN1_TIME_dup(tm); 914969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != NULL) { 924969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin M_ASN1_TIME_free(x->crl->lastUpdate); 934969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin x->crl->lastUpdate = in; 944969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 954969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 964969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (in != NULL); 974969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 98d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 99d9e397b599b13d642138480a28c14db7a136bf0Adam Langleyint X509_CRL_set_nextUpdate(X509_CRL *x, const ASN1_TIME *tm) 1004969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 1014969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin ASN1_TIME *in; 1024969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin 1034969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (x == NULL) 1044969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (0); 1054969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = x->crl->nextUpdate; 1064969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != tm) { 1074969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = M_ASN1_TIME_dup(tm); 1084969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != NULL) { 1094969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin M_ASN1_TIME_free(x->crl->nextUpdate); 1104969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin x->crl->nextUpdate = in; 1114969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 1124969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 1134969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (in != NULL); 1144969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 115d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 116d9e397b599b13d642138480a28c14db7a136bf0Adam Langleyint X509_CRL_sort(X509_CRL *c) 1174969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 1184969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin size_t i; 1194969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin X509_REVOKED *r; 1204969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin /* 1214969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin * sort the data so it will be written in serial number order 1224969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin */ 1234969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin sk_X509_REVOKED_sort(c->crl->revoked); 1244969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin for (i = 0; i < sk_X509_REVOKED_num(c->crl->revoked); i++) { 1254969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin r = sk_X509_REVOKED_value(c->crl->revoked, i); 1264969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin r->sequence = i; 1274969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 1284969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin c->crl->enc.modified = 1; 1294969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return 1; 1304969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 131d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 132c895d6b1c580258e72e1ed3fcc86d38970ded9e1David Benjaminint X509_CRL_up_ref(X509_CRL *crl) 1334969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 1344969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin CRYPTO_refcount_inc(&crl->references); 135c895d6b1c580258e72e1ed3fcc86d38970ded9e1David Benjamin return 1; 1364969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 137b8494591d1b1a143f3b192d845c238bbf3bc629dKenny Root 138d9e397b599b13d642138480a28c14db7a136bf0Adam Langleyint X509_REVOKED_set_revocationDate(X509_REVOKED *x, ASN1_TIME *tm) 1394969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 1404969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin ASN1_TIME *in; 1414969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin 1424969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (x == NULL) 1434969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (0); 1444969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = x->revocationDate; 1454969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != tm) { 1464969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = M_ASN1_TIME_dup(tm); 1474969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != NULL) { 1484969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin M_ASN1_TIME_free(x->revocationDate); 1494969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin x->revocationDate = in; 1504969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 1514969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 1524969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (in != NULL); 1534969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 154d9e397b599b13d642138480a28c14db7a136bf0Adam Langley 155d9e397b599b13d642138480a28c14db7a136bf0Adam Langleyint X509_REVOKED_set_serialNumber(X509_REVOKED *x, ASN1_INTEGER *serial) 1564969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin{ 1574969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin ASN1_INTEGER *in; 1584969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin 1594969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (x == NULL) 1604969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (0); 1614969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = x->serialNumber; 1624969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != serial) { 1634969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin in = M_ASN1_INTEGER_dup(serial); 1644969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin if (in != NULL) { 1654969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin M_ASN1_INTEGER_free(x->serialNumber); 1664969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin x->serialNumber = in; 1674969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 1684969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin } 1694969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin return (in != NULL); 1704969cc9b0ab2905ec478277f50ed3849b37a6c6bDavid Benjamin} 171