|
Packit |
40b132 |
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
Packit |
40b132 |
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
Packit |
40b132 |
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* pkix_pl_oid.c
|
|
Packit |
40b132 |
*
|
|
Packit |
40b132 |
* OID Object Functions
|
|
Packit |
40b132 |
*
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
#include "pkix_pl_oid.h"
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/* --Private-OID-Functions---------------------------------------- */
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: pkix_pl_OID_Comparator
|
|
Packit |
40b132 |
* (see comments for PKIX_PL_ComparatorCallback in pkix_pl_system.h)
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
static PKIX_Error *
|
|
Packit |
40b132 |
pkix_pl_OID_Comparator(
|
|
Packit |
40b132 |
PKIX_PL_Object *firstObject,
|
|
Packit |
40b132 |
PKIX_PL_Object *secondObject,
|
|
Packit |
40b132 |
PKIX_Int32 *pRes,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
PKIX_PL_OID *firstOID = NULL;
|
|
Packit |
40b132 |
PKIX_PL_OID *secondOID = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "pkix_pl_OID_Comparator");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_THREE(firstObject, secondObject, pRes);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(pkix_CheckTypes
|
|
Packit |
40b132 |
(firstObject, secondObject, PKIX_OID_TYPE, plContext),
|
|
Packit |
40b132 |
PKIX_ARGUMENTSNOTOIDS);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
firstOID = (PKIX_PL_OID*)firstObject;
|
|
Packit |
40b132 |
secondOID = (PKIX_PL_OID*)secondObject;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
*pRes = (PKIX_Int32)SECITEM_CompareItem(&firstOID->derOid,
|
|
Packit |
40b132 |
&secondOID->derOid);
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: pkix_pl_OID_Destroy
|
|
Packit |
40b132 |
* (see comments for PKIX_PL_DestructorCallback in pkix_pl_system.h)
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
static PKIX_Error *
|
|
Packit |
40b132 |
pkix_pl_OID_Destroy(
|
|
Packit |
40b132 |
PKIX_PL_Object *object,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
PKIX_PL_OID *oid = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "pkix_pl_OID_Destroy");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_ONE(object);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(pkix_CheckType(object, PKIX_OID_TYPE, plContext),
|
|
Packit |
40b132 |
PKIX_OBJECTNOTANOID);
|
|
Packit |
40b132 |
oid = (PKIX_PL_OID*)object;
|
|
Packit |
40b132 |
SECITEM_FreeItem(&oid->derOid, PR_FALSE);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: pkix_pl_OID_Hashcode
|
|
Packit |
40b132 |
* (see comments for PKIX_PL_HashcodeCallback in pkix_pl_system.h)
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
static PKIX_Error *
|
|
Packit |
40b132 |
pkix_pl_OID_Hashcode(
|
|
Packit |
40b132 |
PKIX_PL_Object *object,
|
|
Packit |
40b132 |
PKIX_UInt32 *pHashcode,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
PKIX_PL_OID *oid = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "pkix_pl_OID_HashCode");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_TWO(object, pHashcode);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(pkix_CheckType(object, PKIX_OID_TYPE, plContext),
|
|
Packit |
40b132 |
PKIX_OBJECTNOTANOID);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
oid = (PKIX_PL_OID *)object;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(pkix_hash
|
|
Packit |
40b132 |
((unsigned char *)oid->derOid.data,
|
|
Packit |
40b132 |
oid->derOid.len * sizeof (char),
|
|
Packit |
40b132 |
pHashcode,
|
|
Packit |
40b132 |
plContext),
|
|
Packit |
40b132 |
PKIX_HASHFAILED);
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: pkix_pl_OID_Equals
|
|
Packit |
40b132 |
* (see comments for PKIX_PL_EqualsCallback in pkix_pl_system.h)
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
static PKIX_Error *
|
|
Packit |
40b132 |
pkix_pl_OID_Equals(
|
|
Packit |
40b132 |
PKIX_PL_Object *first,
|
|
Packit |
40b132 |
PKIX_PL_Object *second,
|
|
Packit |
40b132 |
PKIX_Boolean *pResult,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
PKIX_Int32 cmpResult;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "pkix_pl_OID_Equals");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_THREE(first, second, pResult);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(pkix_pl_OID_Comparator
|
|
Packit |
40b132 |
(first, second, &cmpResult, plContext),
|
|
Packit |
40b132 |
PKIX_OIDCOMPARATORFAILED);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
*pResult = (cmpResult == 0);
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: pkix_pl_OID_ToString
|
|
Packit |
40b132 |
* (see comments for PKIX_PL_ToStringCallback in pkix_pl_system.h)
|
|
Packit |
40b132 |
* Use this function only for printing OIDs and not to make any
|
|
Packit |
40b132 |
* critical security decision.
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
static PKIX_Error *
|
|
Packit |
40b132 |
pkix_pl_OID_ToString(
|
|
Packit |
40b132 |
PKIX_PL_Object *object,
|
|
Packit |
40b132 |
PKIX_PL_String **pString,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
PKIX_PL_OID *oid = NULL;
|
|
Packit |
40b132 |
char *oidString = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "pkix_pl_OID_toString");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_TWO(object, pString);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(pkix_CheckType(object, PKIX_OID_TYPE, plContext),
|
|
Packit |
40b132 |
PKIX_OBJECTNOTANOID);
|
|
Packit |
40b132 |
oid = (PKIX_PL_OID*)object;
|
|
Packit |
40b132 |
oidString = CERT_GetOidString(&oid->derOid);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(PKIX_PL_String_Create
|
|
Packit |
40b132 |
(PKIX_ESCASCII, oidString , 0, pString, plContext),
|
|
Packit |
40b132 |
PKIX_STRINGCREATEFAILED);
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
PR_smprintf_free(oidString);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: pkix_pl_OID_RegisterSelf
|
|
Packit |
40b132 |
* DESCRIPTION:
|
|
Packit |
40b132 |
* Registers PKIX_OID_TYPE and its related functions with systemClasses[]
|
|
Packit |
40b132 |
* THREAD SAFETY:
|
|
Packit |
40b132 |
* Not Thread Safe - for performance and complexity reasons
|
|
Packit |
40b132 |
*
|
|
Packit |
40b132 |
* Since this function is only called by PKIX_PL_Initialize, which should
|
|
Packit |
40b132 |
* only be called once, it is acceptable that this function is not
|
|
Packit |
40b132 |
* thread-safe.
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
PKIX_Error *
|
|
Packit |
40b132 |
pkix_pl_OID_RegisterSelf(
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
extern pkix_ClassTable_Entry systemClasses[PKIX_NUMTYPES];
|
|
Packit |
40b132 |
pkix_ClassTable_Entry *entry = &systemClasses[PKIX_OID_TYPE];
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "pkix_pl_OID_RegisterSelf");
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
entry->description = "OID";
|
|
Packit |
40b132 |
entry->typeObjectSize = sizeof(PKIX_PL_OID);
|
|
Packit |
40b132 |
entry->destructor = pkix_pl_OID_Destroy;
|
|
Packit |
40b132 |
entry->equalsFunction = pkix_pl_OID_Equals;
|
|
Packit |
40b132 |
entry->hashcodeFunction = pkix_pl_OID_Hashcode;
|
|
Packit |
40b132 |
entry->toStringFunction = pkix_pl_OID_ToString;
|
|
Packit |
40b132 |
entry->comparator = pkix_pl_OID_Comparator;
|
|
Packit |
40b132 |
entry->duplicateFunction = pkix_duplicateImmutable;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: pkix_pl_OID_GetCriticalExtensionOIDs
|
|
Packit |
40b132 |
* DESCRIPTION:
|
|
Packit |
40b132 |
*
|
|
Packit |
40b132 |
* Converts the extensions in "extensions" array that are critical to
|
|
Packit |
40b132 |
* PKIX_PL_OID and returns the result as a PKIX_List in "pPidList".
|
|
Packit |
40b132 |
* If there is no critical extension, an empty list is returned.
|
|
Packit |
40b132 |
*
|
|
Packit |
40b132 |
* PARAMETERS
|
|
Packit |
40b132 |
* "extension"
|
|
Packit |
40b132 |
* an array of extension pointers. May be NULL.
|
|
Packit |
40b132 |
* "pOidsList"
|
|
Packit |
40b132 |
* Address where the list of OIDs is returned. Must be non-NULL.
|
|
Packit |
40b132 |
* THREAD SAFETY:
|
|
Packit |
40b132 |
* Thread Safe (see Thread Safety Definitions in Programmer's Guide)
|
|
Packit |
40b132 |
* RETURNS:
|
|
Packit |
40b132 |
* Returns NULL if the function succeeds.
|
|
Packit |
40b132 |
* Returns a CRL Error if the function fails in a non-fatal way.
|
|
Packit |
40b132 |
* Returns a Fatal Error if the function fails in an unrecoverable way.
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
PKIX_Error *
|
|
Packit |
40b132 |
pkix_pl_OID_GetCriticalExtensionOIDs(
|
|
Packit |
40b132 |
CERTCertExtension **extensions,
|
|
Packit |
40b132 |
PKIX_List **pOidsList,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
PKIX_List *oidsList = NULL;
|
|
Packit |
40b132 |
PKIX_PL_OID *pkixOID = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "pkix_pl_OID_GetCriticalExtensionOIDs");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_ONE(pOidsList);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(PKIX_List_Create(&oidsList, plContext),
|
|
Packit |
40b132 |
PKIX_LISTCREATEFAILED);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
if (extensions) {
|
|
Packit |
40b132 |
while (*extensions) {
|
|
Packit |
40b132 |
CERTCertExtension *extension = NULL;
|
|
Packit |
40b132 |
SECItem *critical = NULL;
|
|
Packit |
40b132 |
SECItem *oid = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
extension = *extensions++;
|
|
Packit |
40b132 |
/* extension is critical ? */
|
|
Packit |
40b132 |
critical = &extension->critical;
|
|
Packit |
40b132 |
if (critical->len == 0 || critical->data[0] == 0) {
|
|
Packit |
40b132 |
continue;
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
oid = &extension->id;
|
|
Packit |
40b132 |
PKIX_CHECK(
|
|
Packit |
40b132 |
PKIX_PL_OID_CreateBySECItem(oid, &pkixOID, plContext),
|
|
Packit |
40b132 |
PKIX_OIDCREATEFAILED);
|
|
Packit |
40b132 |
PKIX_CHECK(
|
|
Packit |
40b132 |
PKIX_List_AppendItem(oidsList, (PKIX_PL_Object *)pkixOID,
|
|
Packit |
40b132 |
plContext),
|
|
Packit |
40b132 |
PKIX_LISTAPPENDITEMFAILED);
|
|
Packit |
40b132 |
PKIX_DECREF(pkixOID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
*pOidsList = oidsList;
|
|
Packit |
40b132 |
oidsList = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
PKIX_DECREF(oidsList);
|
|
Packit |
40b132 |
PKIX_DECREF(pkixOID);
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/* --Public-Functions------------------------------------------------------- */
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: PKIX_PL_OID_CreateBySECItem (see comments in pkix_pl_system.h)
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
PKIX_Error *
|
|
Packit |
40b132 |
PKIX_PL_OID_CreateBySECItem(
|
|
Packit |
40b132 |
SECItem *derOid,
|
|
Packit |
40b132 |
PKIX_PL_OID **pOID,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
PKIX_PL_OID *oid = NULL;
|
|
Packit |
40b132 |
SECStatus rv;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "PKIX_PL_OID_CreateBySECItem");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_TWO(pOID, derOid);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_CHECK(PKIX_PL_Object_Alloc
|
|
Packit |
40b132 |
(PKIX_OID_TYPE,
|
|
Packit |
40b132 |
sizeof (PKIX_PL_OID),
|
|
Packit |
40b132 |
(PKIX_PL_Object **)&oid,
|
|
Packit |
40b132 |
plContext),
|
|
Packit |
40b132 |
PKIX_COULDNOTCREATEOBJECT);
|
|
Packit |
40b132 |
rv = SECITEM_CopyItem(NULL, &oid->derOid, derOid);
|
|
Packit |
40b132 |
if (rv != SECSuccess) {
|
|
Packit |
40b132 |
PKIX_ERROR(PKIX_OUTOFMEMORY);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
*pOID = oid;
|
|
Packit |
40b132 |
oid = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
PKIX_DECREF(oid);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
/*
|
|
Packit |
40b132 |
* FUNCTION: PKIX_PL_OID_Create (see comments in pkix_pl_system.h)
|
|
Packit |
40b132 |
*/
|
|
Packit |
40b132 |
PKIX_Error *
|
|
Packit |
40b132 |
PKIX_PL_OID_Create(
|
|
Packit |
40b132 |
SECOidTag idtag,
|
|
Packit |
40b132 |
PKIX_PL_OID **pOID,
|
|
Packit |
40b132 |
void *plContext)
|
|
Packit |
40b132 |
{
|
|
Packit |
40b132 |
SECOidData *oidData = NULL;
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
PKIX_ENTER(OID, "PKIX_PL_OID_Create");
|
|
Packit |
40b132 |
PKIX_NULLCHECK_ONE(pOID);
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
oidData = SECOID_FindOIDByTag((SECOidTag)idtag);
|
|
Packit |
40b132 |
if (!oidData) {
|
|
Packit |
40b132 |
PKIX_ERROR(PKIX_SECOIDFINDOIDTAGDESCRIPTIONFAILED);
|
|
Packit |
40b132 |
}
|
|
Packit |
40b132 |
|
|
Packit |
40b132 |
pkixErrorResult =
|
|
Packit |
40b132 |
PKIX_PL_OID_CreateBySECItem(&oidData->oid, pOID, plContext);
|
|
Packit |
40b132 |
cleanup:
|
|
Packit |
40b132 |
PKIX_RETURN(OID);
|
|
Packit |
40b132 |
}
|