ssl_cert.c 19.5 KB
Newer Older
1
/*! \file ssl/ssl_cert.c */
2
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 * 
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 * 
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from 
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 * 
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 * 
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */
58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105
/* ====================================================================
 * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer. 
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in
 *    the documentation and/or other materials provided with the
 *    distribution.
 *
 * 3. All advertising materials mentioning features or use of this
 *    software must display the following acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
 *
 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
 *    endorse or promote products derived from this software without
 *    prior written permission. For written permission, please contact
 *    openssl-core@OpenSSL.org.
 *
 * 5. Products derived from this software may not be called "OpenSSL"
 *    nor may "OpenSSL" appear in their names without prior written
 *    permission of the OpenSSL Project.
 *
 * 6. Redistributions of any form whatsoever must retain the following
 *    acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
 *
 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 * OF THE POSSIBILITY OF SUCH DAMAGE.
 * ====================================================================
 */
106 107

#include <stdio.h>
A
Andy Polyakov 已提交
108

109
#include "e_os.h"
A
Andy Polyakov 已提交
110 111 112 113
#ifndef NO_SYS_TYPES_H
# include <sys/types.h>
#endif

114
#if !defined(OPENSSL_SYS_WIN32) && !defined(OPENSSL_SYS_VMS) && !defined(NeXT) && !defined(MAC_OS_pre_X)
115
#include <dirent.h>
116
#endif
A
Andy Polyakov 已提交
117

U
Ulf Möller 已提交
118 119 120
#ifdef NeXT
#include <sys/dir.h>
#define dirent direct
U
Ulf Möller 已提交
121
#endif
A
Andy Polyakov 已提交
122

123 124 125
#include <openssl/objects.h>
#include <openssl/bio.h>
#include <openssl/pem.h>
126
#include <openssl/x509v3.h>
127 128
#include "ssl_locl.h"

U
Ulf Möller 已提交
129
int SSL_get_ex_data_X509_STORE_CTX_idx(void)
130
	{
B
Bodo Möller 已提交
131
	static volatile int ssl_x509_store_ctx_idx= -1;
132 133 134

	if (ssl_x509_store_ctx_idx < 0)
		{
B
Bodo Möller 已提交
135 136 137 138 139 140 141 142 143 144 145
		/* any write lock will do; usually this branch
		 * will only be taken once anyway */
		CRYPTO_w_lock(CRYPTO_LOCK_SSL_CTX);
		
		if (ssl_x509_store_ctx_idx < 0)
			{
			ssl_x509_store_ctx_idx=X509_STORE_CTX_get_ex_new_index(
				0,"SSL for verify callback",NULL,NULL,NULL);
			}
		
		CRYPTO_w_unlock(CRYPTO_LOCK_SSL_CTX);
146
		}
B
Bodo Möller 已提交
147
	return ssl_x509_store_ctx_idx;
148 149
	}

U
Ulf Möller 已提交
150
CERT *ssl_cert_new(void)
151 152 153
	{
	CERT *ret;

154
	ret=(CERT *)OPENSSL_malloc(sizeof(CERT));
155 156 157 158 159 160 161 162 163 164 165 166 167
	if (ret == NULL)
		{
		SSLerr(SSL_F_SSL_CERT_NEW,ERR_R_MALLOC_FAILURE);
		return(NULL);
		}
	memset(ret,0,sizeof(CERT));

	ret->key= &(ret->pkeys[SSL_PKEY_RSA_ENC]);
	ret->references=1;

	return(ret);
	}

168 169 170 171 172
CERT *ssl_cert_dup(CERT *cert)
	{
	CERT *ret;
	int i;

173
	ret = (CERT *)OPENSSL_malloc(sizeof(CERT));
174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189
	if (ret == NULL)
		{
		SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_MALLOC_FAILURE);
		return(NULL);
		}

	memset(ret, 0, sizeof(CERT));

	ret->key = &ret->pkeys[cert->key - &cert->pkeys[0]];
	/* or ret->key = ret->pkeys + (cert->key - cert->pkeys),
	 * if you find that more readable */

	ret->valid = cert->valid;
	ret->mask = cert->mask;
	ret->export_mask = cert->export_mask;

190
#ifndef OPENSSL_NO_RSA
191 192 193 194 195 196 197 198
	if (cert->rsa_tmp != NULL)
		{
		ret->rsa_tmp = cert->rsa_tmp;
		CRYPTO_add(&ret->rsa_tmp->references, 1, CRYPTO_LOCK_RSA);
		}
	ret->rsa_tmp_cb = cert->rsa_tmp_cb;
#endif

199
#ifndef OPENSSL_NO_DH
200 201
	if (cert->dh_tmp != NULL)
		{
202
		/* DH parameters don't have a reference count */
203 204 205
		ret->dh_tmp = DHparams_dup(cert->dh_tmp);
		if (ret->dh_tmp == NULL)
			{
206
			SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_DH_LIB);
207 208
			goto err;
			}
209 210 211 212 213
		if (cert->dh_tmp->priv_key)
			{
			BIGNUM *b = BN_dup(cert->dh_tmp->priv_key);
			if (!b)
				{
214
				SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_BN_LIB);
215 216 217 218 219 220 221 222 223
				goto err;
				}
			ret->dh_tmp->priv_key = b;
			}
		if (cert->dh_tmp->pub_key)
			{
			BIGNUM *b = BN_dup(cert->dh_tmp->pub_key);
			if (!b)
				{
224
				SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_BN_LIB);
225 226 227 228
				goto err;
				}
			ret->dh_tmp->pub_key = b;
			}
229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281
		}
	ret->dh_tmp_cb = cert->dh_tmp_cb;
#endif

	for (i = 0; i < SSL_PKEY_NUM; i++)
		{
		if (cert->pkeys[i].x509 != NULL)
			{
			ret->pkeys[i].x509 = cert->pkeys[i].x509;
			CRYPTO_add(&ret->pkeys[i].x509->references, 1,
				CRYPTO_LOCK_X509);
			}
		
		if (cert->pkeys[i].privatekey != NULL)
			{
			ret->pkeys[i].privatekey = cert->pkeys[i].privatekey;
			CRYPTO_add(&ret->pkeys[i].privatekey->references, 1,
				CRYPTO_LOCK_EVP_PKEY);

			switch(i) 
				{
				/* If there was anything special to do for
				 * certain types of keys, we'd do it here.
				 * (Nothing at the moment, I think.) */

			case SSL_PKEY_RSA_ENC:
			case SSL_PKEY_RSA_SIGN:
				/* We have an RSA key. */
				break;
				
			case SSL_PKEY_DSA_SIGN:
				/* We have a DSA key. */
				break;
				
			case SSL_PKEY_DH_RSA:
			case SSL_PKEY_DH_DSA:
				/* We have a DH key. */
				break;
				
			default:
				/* Can't happen. */
				SSLerr(SSL_F_SSL_CERT_DUP, SSL_R_LIBRARY_BUG);
				}
			}
		}
	
	/* ret->extra_certs *should* exist, but currently the own certificate
	 * chain is held inside SSL_CTX */

	ret->references=1;

	return(ret);
	
282
#ifndef OPENSSL_NO_DH /* avoid 'unreferenced label' warning if OPENSSL_NO_DH is defined */
283
err:
284
#endif
285
#ifndef OPENSSL_NO_RSA
286 287 288
	if (ret->rsa_tmp != NULL)
		RSA_free(ret->rsa_tmp);
#endif
289
#ifndef OPENSSL_NO_DH
290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305
	if (ret->dh_tmp != NULL)
		DH_free(ret->dh_tmp);
#endif

	for (i = 0; i < SSL_PKEY_NUM; i++)
		{
		if (ret->pkeys[i].x509 != NULL)
			X509_free(ret->pkeys[i].x509);
		if (ret->pkeys[i].privatekey != NULL)
			EVP_PKEY_free(ret->pkeys[i].privatekey);
		}

	return NULL;
	}


306
void ssl_cert_free(CERT *c)
307 308 309
	{
	int i;

B
Ben Laurie 已提交
310 311 312
	if(c == NULL)
	    return;

313
	i=CRYPTO_add(&c->references,-1,CRYPTO_LOCK_SSL_CERT);
314 315 316
#ifdef REF_PRINT
	REF_PRINT("CERT",c);
#endif
317 318 319 320 321 322 323 324 325
	if (i > 0) return;
#ifdef REF_CHECK
	if (i < 0)
		{
		fprintf(stderr,"ssl_cert_free, bad reference count\n");
		abort(); /* ok */
		}
#endif

326
#ifndef OPENSSL_NO_RSA
327 328
	if (c->rsa_tmp) RSA_free(c->rsa_tmp);
#endif
329
#ifndef OPENSSL_NO_DH
330 331 332 333 334 335 336 337 338 339 340 341 342 343
	if (c->dh_tmp) DH_free(c->dh_tmp);
#endif

	for (i=0; i<SSL_PKEY_NUM; i++)
		{
		if (c->pkeys[i].x509 != NULL)
			X509_free(c->pkeys[i].x509);
		if (c->pkeys[i].privatekey != NULL)
			EVP_PKEY_free(c->pkeys[i].privatekey);
#if 0
		if (c->pkeys[i].publickey != NULL)
			EVP_PKEY_free(c->pkeys[i].publickey);
#endif
		}
344
	OPENSSL_free(c);
345 346
	}

347 348 349 350 351 352
int ssl_cert_inst(CERT **o)
	{
	/* Create a CERT if there isn't already one
	 * (which cannot really happen, as it is initially created in
	 * SSL_CTX_new; but the earlier code usually allows for that one
	 * being non-existant, so we follow that behaviour, as it might
B
Bodo Möller 已提交
353 354 355 356 357 358
	 * turn out that there actually is a reason for it -- but I'm
	 * not sure that *all* of the existing code could cope with
	 * s->cert being NULL, otherwise we could do without the
	 * initialization in SSL_CTX_new).
	 */
	
359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374
	if (o == NULL) 
		{
		SSLerr(SSL_F_SSL_CERT_INST, ERR_R_PASSED_NULL_PARAMETER);
		return(0);
		}
	if (*o == NULL)
		{
		if ((*o = ssl_cert_new()) == NULL)
			{
			SSLerr(SSL_F_SSL_CERT_INST, ERR_R_MALLOC_FAILURE);
			return(0);
			}
		}
	return(1);
	}

375 376

SESS_CERT *ssl_sess_cert_new(void)
377
	{
378 379
	SESS_CERT *ret;

380
	ret = OPENSSL_malloc(sizeof *ret);
381
	if (ret == NULL)
382
		{
383 384
		SSLerr(SSL_F_SSL_SESS_CERT_NEW, ERR_R_MALLOC_FAILURE);
		return NULL;
385
		}
386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408

	memset(ret, 0 ,sizeof *ret);
	ret->peer_key = &(ret->peer_pkeys[SSL_PKEY_RSA_ENC]);
	ret->references = 1;

	return ret;
	}

void ssl_sess_cert_free(SESS_CERT *sc)
	{
	int i;

	if (sc == NULL)
		return;

	i = CRYPTO_add(&sc->references, -1, CRYPTO_LOCK_SSL_SESS_CERT);
#ifdef REF_PRINT
	REF_PRINT("SESS_CERT", sc);
#endif
	if (i > 0)
		return;
#ifdef REF_CHECK
	if (i < 0)
409
		{
410 411
		fprintf(stderr,"ssl_sess_cert_free, bad reference count\n");
		abort(); /* ok */
412
		}
413
#endif
414

415 416 417 418 419 420 421 422 423 424 425 426 427 428 429
	/* i == 0 */
	if (sc->cert_chain != NULL)
		sk_X509_pop_free(sc->cert_chain, X509_free);
	for (i = 0; i < SSL_PKEY_NUM; i++)
		{
		if (sc->peer_pkeys[i].x509 != NULL)
			X509_free(sc->peer_pkeys[i].x509);
#if 0 /* We don't have the peer's private key.  These lines are just
	   * here as a reminder that we're still using a not-quite-appropriate
	   * data structure. */
		if (sc->peer_pkeys[i].privatekey != NULL)
			EVP_PKEY_free(sc->peer_pkeys[i].privatekey);
#endif
		}

430
#ifndef OPENSSL_NO_RSA
431 432 433
	if (sc->peer_rsa_tmp != NULL)
		RSA_free(sc->peer_rsa_tmp);
#endif
434
#ifndef OPENSSL_NO_DH
435 436 437 438
	if (sc->peer_dh_tmp != NULL)
		DH_free(sc->peer_dh_tmp);
#endif

439
	OPENSSL_free(sc);
440 441 442
	}

int ssl_set_peer_cert_type(SESS_CERT *sc,int type)
443
	{
444
	sc->peer_cert_type = type;
445 446 447
	return(1);
	}

B
Ben Laurie 已提交
448
int ssl_verify_cert_chain(SSL *s,STACK_OF(X509) *sk)
449 450 451 452 453
	{
	X509 *x;
	int i;
	X509_STORE_CTX ctx;

B
Ben Laurie 已提交
454
	if ((sk == NULL) || (sk_X509_num(sk) == 0))
455 456
		return(0);

B
Ben Laurie 已提交
457
	x=sk_X509_value(sk,0);
458
	X509_STORE_CTX_init(&ctx,s->ctx->cert_store,x,sk);
459 460
	if (SSL_get_verify_depth(s) >= 0)
		X509_STORE_CTX_set_depth(&ctx, SSL_get_verify_depth(s));
D
 
Dr. Stephen Henson 已提交
461
	X509_STORE_CTX_set_ex_data(&ctx,SSL_get_ex_data_X509_STORE_CTX_idx(),s);
B
Bodo Möller 已提交
462

463 464 465
	/* We need to set the verify purpose. The purpose can be determined by
	 * the context: if its a server it will verify SSL client certificates
	 * or vice versa.
B
Bodo Möller 已提交
466 467 468 469 470
	 */
	if (s->server)
		i = X509_PURPOSE_SSL_CLIENT;
	else
		i = X509_PURPOSE_SSL_SERVER;
471 472

	X509_STORE_CTX_purpose_inherit(&ctx, i, s->purpose, s->trust);
473

L
Indent.  
Lutz Jänicke 已提交
474
	if (s->verify_callback)
475
		X509_STORE_CTX_set_verify_cb(&ctx, s->verify_callback);
476

477
	if (s->ctx->app_verify_callback != NULL)
B
Bodo Möller 已提交
478
		i=s->ctx->app_verify_callback(&ctx); /* should pass app_verify_arg */
479
	else
480
		{
481
#ifndef OPENSSL_NO_X509_VERIFY
482
		i=X509_verify_cert(&ctx);
483 484 485 486 487 488
#else
		i=0;
		ctx.error=X509_V_ERR_APPLICATION_VERIFICATION;
		SSLerr(SSL_F_SSL_VERIFY_CERT_CHAIN,SSL_R_NO_VERIFY_CALLBACK);
#endif
		}
489 490

	s->verify_result=ctx.error;
491
	X509_STORE_CTX_cleanup(&ctx);
492 493 494 495

	return(i);
	}

U
Ulf Möller 已提交
496
static void set_client_CA_list(STACK_OF(X509_NAME) **ca_list,STACK_OF(X509_NAME) *list)
497 498
	{
	if (*ca_list != NULL)
B
Ben Laurie 已提交
499
		sk_X509_NAME_pop_free(*ca_list,X509_NAME_free);
500 501 502 503

	*ca_list=list;
	}

B
Ben Laurie 已提交
504
STACK_OF(X509_NAME) *SSL_dup_CA_list(STACK_OF(X509_NAME) *sk)
505 506
	{
	int i;
B
Ben Laurie 已提交
507
	STACK_OF(X509_NAME) *ret;
508 509
	X509_NAME *name;

B
Ben Laurie 已提交
510 511
	ret=sk_X509_NAME_new_null();
	for (i=0; i<sk_X509_NAME_num(sk); i++)
512
		{
B
Ben Laurie 已提交
513 514
		name=X509_NAME_dup(sk_X509_NAME_value(sk,i));
		if ((name == NULL) || !sk_X509_NAME_push(ret,name))
515
			{
B
Ben Laurie 已提交
516
			sk_X509_NAME_pop_free(ret,X509_NAME_free);
517 518 519 520 521 522
			return(NULL);
			}
		}
	return(ret);
	}

B
Ben Laurie 已提交
523
void SSL_set_client_CA_list(SSL *s,STACK_OF(X509_NAME) *list)
524 525 526 527
	{
	set_client_CA_list(&(s->client_CA),list);
	}

B
Ben Laurie 已提交
528
void SSL_CTX_set_client_CA_list(SSL_CTX *ctx,STACK_OF(X509_NAME) *list)
529 530 531 532
	{
	set_client_CA_list(&(ctx->client_CA),list);
	}

B
Ben Laurie 已提交
533
STACK_OF(X509_NAME) *SSL_CTX_get_client_CA_list(SSL_CTX *ctx)
534 535 536 537
	{
	return(ctx->client_CA);
	}

B
Ben Laurie 已提交
538
STACK_OF(X509_NAME) *SSL_get_client_CA_list(SSL *s)
539 540 541
	{
	if (s->type == SSL_ST_CONNECT)
		{ /* we are in the client */
542 543
		if (((s->version>>8) == SSL3_VERSION_MAJOR) &&
			(s->s3 != NULL))
544 545 546 547 548 549 550 551 552 553 554 555 556
			return(s->s3->tmp.ca_names);
		else
			return(NULL);
		}
	else
		{
		if (s->client_CA != NULL)
			return(s->client_CA);
		else
			return(s->ctx->client_CA);
		}
	}

B
Ben Laurie 已提交
557
static int add_client_CA(STACK_OF(X509_NAME) **sk,X509 *x)
558 559 560 561
	{
	X509_NAME *name;

	if (x == NULL) return(0);
B
Ben Laurie 已提交
562
	if ((*sk == NULL) && ((*sk=sk_X509_NAME_new_null()) == NULL))
563 564 565 566 567
		return(0);
		
	if ((name=X509_NAME_dup(X509_get_subject_name(x))) == NULL)
		return(0);

B
Ben Laurie 已提交
568
	if (!sk_X509_NAME_push(*sk,name))
569 570 571 572 573 574 575
		{
		X509_NAME_free(name);
		return(0);
		}
	return(1);
	}

576
int SSL_add_client_CA(SSL *ssl,X509 *x)
577 578 579 580
	{
	return(add_client_CA(&(ssl->client_CA),x));
	}

581
int SSL_CTX_add_client_CA(SSL_CTX *ctx,X509 *x)
582 583 584 585
	{
	return(add_client_CA(&(ctx->client_CA),x));
	}

586
static int xname_cmp(const X509_NAME * const *a, const X509_NAME * const *b)
587 588 589 590
	{
	return(X509_NAME_cmp(*a,*b));
	}

591
#ifndef OPENSSL_NO_STDIO
592 593 594 595 596 597 598 599
/*!
 * Load CA certs from a file into a ::STACK. Note that it is somewhat misnamed;
 * it doesn't really have anything to do with clients (except that a common use
 * for a stack of CAs is to send it to the client). Actually, it doesn't have
 * much to do with CAs, either, since it will load any old cert.
 * \param file the file containing one or more certs.
 * \return a ::STACK containing the certs.
 */
B
Ben Laurie 已提交
600
STACK_OF(X509_NAME) *SSL_load_client_CA_file(const char *file)
601 602 603 604
	{
	BIO *in;
	X509 *x=NULL;
	X509_NAME *xn=NULL;
B
Ben Laurie 已提交
605
	STACK_OF(X509_NAME) *ret,*sk;
606

607
	ret=sk_X509_NAME_new_null();
608
	sk=sk_X509_NAME_new(xname_cmp);
609 610 611

	in=BIO_new(BIO_s_file_internal());

612 613 614 615 616 617 618 619 620 621 622
	if ((ret == NULL) || (sk == NULL) || (in == NULL))
		{
		SSLerr(SSL_F_SSL_LOAD_CLIENT_CA_FILE,ERR_R_MALLOC_FAILURE);
		goto err;
		}
	
	if (!BIO_read_filename(in,file))
		goto err;

	for (;;)
		{
623
		if (PEM_read_bio_X509(in,&x,NULL,NULL) == NULL)
624 625 626 627 628
			break;
		if ((xn=X509_get_subject_name(x)) == NULL) goto err;
		/* check for duplicates */
		xn=X509_NAME_dup(xn);
		if (xn == NULL) goto err;
B
Ben Laurie 已提交
629
		if (sk_X509_NAME_find(sk,xn) >= 0)
630 631 632
			X509_NAME_free(xn);
		else
			{
B
Ben Laurie 已提交
633 634
			sk_X509_NAME_push(sk,xn);
			sk_X509_NAME_push(ret,xn);
635 636 637 638 639 640
			}
		}

	if (0)
		{
err:
B
Ben Laurie 已提交
641
		if (ret != NULL) sk_X509_NAME_pop_free(ret,X509_NAME_free);
642 643
		ret=NULL;
		}
B
Ben Laurie 已提交
644
	if (sk != NULL) sk_X509_NAME_free(sk);
645 646 647 648
	if (in != NULL) BIO_free(in);
	if (x != NULL) X509_free(x);
	return(ret);
	}
649
#endif
650

651 652 653 654 655 656 657 658 659
/*!
 * Add a file of certs to a stack.
 * \param stack the stack to add to.
 * \param file the file to add from. All certs in this file that are not
 * already in the stack will be added.
 * \return 1 for success, 0 for failure. Note that in the case of failure some
 * certs may have been added to \c stack.
 */

B
Ben Laurie 已提交
660 661
int SSL_add_file_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack,
					const char *file)
662
	{
663 664 665 666
	BIO *in;
	X509 *x=NULL;
	X509_NAME *xn=NULL;
	int ret=1;
667
	int (*oldcmp)(const X509_NAME * const *a, const X509_NAME * const *b);
668
	
669 670 671 672 673 674 675 676 677 678 679 680 681 682 683 684 685 686 687 688 689 690 691 692 693
	oldcmp=sk_X509_NAME_set_cmp_func(stack,xname_cmp);
	
	in=BIO_new(BIO_s_file_internal());
	
	if (in == NULL)
		{
		SSLerr(SSL_F_SSL_ADD_FILE_CERT_SUBJECTS_TO_STACK,ERR_R_MALLOC_FAILURE);
		goto err;
		}
	
	if (!BIO_read_filename(in,file))
		goto err;
	
	for (;;)
		{
		if (PEM_read_bio_X509(in,&x,NULL,NULL) == NULL)
			break;
		if ((xn=X509_get_subject_name(x)) == NULL) goto err;
		xn=X509_NAME_dup(xn);
		if (xn == NULL) goto err;
		if (sk_X509_NAME_find(stack,xn) >= 0)
			X509_NAME_free(xn);
		else
			sk_X509_NAME_push(stack,xn);
		}
694

695 696
	if (0)
		{
697
err:
698 699 700 701 702 703 704 705
		ret=0;
		}
	if(in != NULL)
		BIO_free(in);
	if(x != NULL)
		X509_free(x);
	
	sk_X509_NAME_set_cmp_func(stack,oldcmp);
706

707 708
	return ret;
	}
709 710 711 712 713 714

/*!
 * Add a directory of certs to a stack.
 * \param stack the stack to append to.
 * \param dir the directory to append from. All files in this directory will be
 * examined as potential certs. Any that are acceptable to
715
 * SSL_add_dir_cert_subjects_to_stack() that are not already in the stack will be
716 717 718 719 720
 * included.
 * \return 1 for success, 0 for failure. Note that in the case of failure some
 * certs may have been added to \c stack.
 */

721 722
#ifndef OPENSSL_SYS_WIN32
#ifndef OPENSSL_SYS_VMS		/* XXXX This may be fixed in the future */
A
Andy Polyakov 已提交
723
#ifndef MAC_OS_pre_X
724

B
Ben Laurie 已提交
725 726
int SSL_add_dir_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack,
				       const char *dir)
727
	{
728 729 730
	DIR *d;
	struct dirent *dstruct;
	int ret = 0;
731

732 733
	CRYPTO_w_lock(CRYPTO_LOCK_READDIR);
	d = opendir(dir);
734

735 736 737 738 739 740 741 742
	/* Note that a side effect is that the CAs will be sorted by name */
	if(!d)
		{
		SYSerr(SYS_F_OPENDIR, get_last_sys_error());
		ERR_add_error_data(3, "opendir('", dir, "')");
		SSLerr(SSL_F_SSL_ADD_DIR_CERT_SUBJECTS_TO_STACK, ERR_R_SYS_LIB);
		goto err;
		}
743
	
744 745 746 747 748 749 750 751 752 753 754 755 756 757 758 759 760 761
	while((dstruct=readdir(d)))
		{
		char buf[1024];
		int r;
		
		if(strlen(dir)+strlen(dstruct->d_name)+2 > sizeof buf)
			{
			SSLerr(SSL_F_SSL_ADD_DIR_CERT_SUBJECTS_TO_STACK,SSL_R_PATH_TOO_LONG);
			goto err;
			}
		
		r = BIO_snprintf(buf,sizeof buf,"%s/%s",dir,dstruct->d_name);
		if (r <= 0 || r >= sizeof buf)
			goto err;
		if(!SSL_add_file_cert_subjects_to_stack(stack,buf))
			goto err;
		}
	ret = 1;
762

763
err:	
764 765 766
	CRYPTO_w_unlock(CRYPTO_LOCK_READDIR);
	return ret;
	}
767 768

#endif
U
Ulf Möller 已提交
769
#endif
A
Andy Polyakov 已提交
770
#endif