/src/openssl/crypto/x509/x509_ext.c

Source
/*
 * Copyright 1995-2017 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <stdio.h>
#include "internal/cryptlib.h"
#include <openssl/asn1.h>
#include <openssl/objects.h>
#include <openssl/evp.h>
#include <openssl/x509.h>
#include "crypto/x509.h"
#include <openssl/x509v3.h>

int X509_CRL_get_ext_count(const X509_CRL *x)
{
    return X509v3_get_ext_count(x->crl.extensions);
}

int X509_CRL_get_ext_by_NID(const X509_CRL *x, int nid, int lastpos)
{
    return X509v3_get_ext_by_NID(x->crl.extensions, nid, lastpos);
}

int X509_CRL_get_ext_by_OBJ(const X509_CRL *x, const ASN1_OBJECT *obj,
    int lastpos)
{
    return X509v3_get_ext_by_OBJ(x->crl.extensions, obj, lastpos);
}

int X509_CRL_get_ext_by_critical(const X509_CRL *x, int crit, int lastpos)
{
    return X509v3_get_ext_by_critical(x->crl.extensions, crit, lastpos);
}

const X509_EXTENSION *X509_CRL_get_ext(const X509_CRL *x, int loc)
{
    return X509v3_get_ext(x->crl.extensions, loc);
}

static X509_EXTENSION *delete_ext(STACK_OF(X509_EXTENSION) **sk, int loc)
{
    X509_EXTENSION *ret = X509v3_delete_ext(*sk, loc);

    /* Empty extension lists are omitted. */
    if (*sk != NULL && sk_X509_EXTENSION_num(*sk) == 0) {
        sk_X509_EXTENSION_pop_free(*sk, X509_EXTENSION_free);
        *sk = NULL;
    }
    return ret;
}

X509_EXTENSION *X509_CRL_delete_ext(X509_CRL *x, int loc)
{
    return delete_ext(&x->crl.extensions, loc);
}

void *X509_CRL_get_ext_d2i(const X509_CRL *x, int nid, int *crit, int *idx)
{
    return X509V3_get_d2i(x->crl.extensions, nid, crit, idx);
}

int X509_CRL_add1_ext_i2d(X509_CRL *x, int nid, void *value, int crit,
    unsigned long flags)
{
    return X509V3_add1_i2d(&x->crl.extensions, nid, value, crit, flags);
}

int X509_CRL_add_ext(X509_CRL *x, const X509_EXTENSION *ex, int loc)
{
    return (X509v3_add_ext(&(x->crl.extensions), ex, loc) != NULL);
}

int X509_get_ext_count(const X509 *x)
{
    return X509v3_get_ext_count(x->cert_info.extensions);
}

int X509_get_ext_by_NID(const X509 *x, int nid, int lastpos)
{
    return X509v3_get_ext_by_NID(x->cert_info.extensions, nid, lastpos);
}

int X509_get_ext_by_OBJ(const X509 *x, const ASN1_OBJECT *obj, int lastpos)
{
    return X509v3_get_ext_by_OBJ(x->cert_info.extensions, obj, lastpos);
}

int X509_get_ext_by_critical(const X509 *x, int crit, int lastpos)
{
    return (X509v3_get_ext_by_critical(x->cert_info.extensions, crit, lastpos));
}

const X509_EXTENSION *X509_get_ext(const X509 *x, int loc)
{
    return X509v3_get_ext(x->cert_info.extensions, loc);
}

X509_EXTENSION *X509_delete_ext(X509 *x, int loc)
{
    X509_EXTENSION *ret;

    if (x->cert_info.extensions == NULL)
        return NULL;
    if ((ret = delete_ext(&x->cert_info.extensions, loc)) != NULL)
        x->cert_info.enc.modified = 1;
    return ret;
}

int X509_add_ext(X509 *x, const X509_EXTENSION *ex, int loc)
{
    STACK_OF(X509_EXTENSION) *exts = x->cert_info.extensions;

    if (X509v3_add_ext(&exts, ex, loc) == NULL)
        return 0;
    /*
     * A duplicate empty SKID/AKID extension can displace a prior non-empty
     * one, but is then not itself added, so, somewhat counter-intutively,  the
     * the extension list can become empty after an "add", in which case we must
     * drop the extension stack entirely, setting it to NULL.  The extensions
     * list is either non-empty or absent.
     */
    if (sk_X509_EXTENSION_num(exts) != 0) {
        x->cert_info.extensions = exts;
    } else {
        sk_X509_EXTENSION_free(exts);
        sk_X509_EXTENSION_pop_free(x->cert_info.extensions, X509_EXTENSION_free);
        x->cert_info.extensions = NULL;
    }
    x->cert_info.enc.modified = 1;
    return 1;
}

void *X509_get_ext_d2i(const X509 *x, int nid, int *crit, int *idx)
{
    return X509V3_get_d2i(x->cert_info.extensions, nid, crit, idx);
}

int X509_add1_ext_i2d(X509 *x, int nid, void *value, int crit,
    unsigned long flags)
{
    /*
     * Assume modified, sadly the underlying function does not tell us whether
     * changes were made, or not.
     */
    x->cert_info.enc.modified = 1;
    return X509V3_add1_i2d(&x->cert_info.extensions, nid, value, crit,
        flags);
}

int X509_REVOKED_get_ext_count(const X509_REVOKED *x)
{
    return X509v3_get_ext_count(x->extensions);
}

int X509_REVOKED_get_ext_by_NID(const X509_REVOKED *x, int nid, int lastpos)
{
    return X509v3_get_ext_by_NID(x->extensions, nid, lastpos);
}

int X509_REVOKED_get_ext_by_OBJ(const X509_REVOKED *x, const ASN1_OBJECT *obj,
    int lastpos)
{
    return X509v3_get_ext_by_OBJ(x->extensions, obj, lastpos);
}

int X509_REVOKED_get_ext_by_critical(const X509_REVOKED *x, int crit, int lastpos)
{
    return X509v3_get_ext_by_critical(x->extensions, crit, lastpos);
}

const X509_EXTENSION *X509_REVOKED_get_ext(const X509_REVOKED *x, int loc)
{
    return X509v3_get_ext(x->extensions, loc);
}

X509_EXTENSION *X509_REVOKED_delete_ext(X509_REVOKED *x, int loc)
{
    return delete_ext(&x->extensions, loc);
}

int X509_REVOKED_add_ext(X509_REVOKED *x, X509_EXTENSION *ex, int loc)
{
    return (X509v3_add_ext(&(x->extensions), ex, loc) != NULL);
}

void *X509_REVOKED_get_ext_d2i(const X509_REVOKED *x, int nid, int *crit, int *idx)
{
    return X509V3_get_d2i(x->extensions, nid, crit, idx);
}

int X509_REVOKED_add1_ext_i2d(X509_REVOKED *x, int nid, void *value, int crit,
    unsigned long flags)
{
    return X509V3_add1_i2d(&x->extensions, nid, value, crit, flags);
}

Coverage Report

Created: 2026-03-03 06:43

Line	Count	Source
1		/*
2		* Copyright 1995-2017 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the Apache License 2.0 (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		#include <stdio.h>
11		#include "internal/cryptlib.h"
12		#include <openssl/asn1.h>
13		#include <openssl/objects.h>
14		#include <openssl/evp.h>
15		#include <openssl/x509.h>
16		#include "crypto/x509.h"
17		#include <openssl/x509v3.h>
18
19		int X509_CRL_get_ext_count(const X509_CRL *x)
20	0	{
21	0	return X509v3_get_ext_count(x->crl.extensions);
22	0	}
23
24		int X509_CRL_get_ext_by_NID(const X509_CRL *x, int nid, int lastpos)
25	0	{
26	0	return X509v3_get_ext_by_NID(x->crl.extensions, nid, lastpos);
27	0	}
28
29		int X509_CRL_get_ext_by_OBJ(const X509_CRL x, const ASN1_OBJECT obj,
30		int lastpos)
31	0	{
32	0	return X509v3_get_ext_by_OBJ(x->crl.extensions, obj, lastpos);
33	0	}
34
35		int X509_CRL_get_ext_by_critical(const X509_CRL *x, int crit, int lastpos)
36	0	{
37	0	return X509v3_get_ext_by_critical(x->crl.extensions, crit, lastpos);
38	0	}
39
40		const X509_EXTENSION X509_CRL_get_ext(const X509_CRL x, int loc)
41	0	{
42	0	return X509v3_get_ext(x->crl.extensions, loc);
43	0	}
44
45		static X509_EXTENSION delete_ext(STACK_OF(X509_EXTENSION) *sk, int loc)
46	0	{
47	0	X509_EXTENSION ret = X509v3_delete_ext(sk, loc);
48
49		/* Empty extension lists are omitted. */
50	0	if (sk != NULL && sk_X509_EXTENSION_num(sk) == 0) {
51	0	sk_X509_EXTENSION_pop_free(*sk, X509_EXTENSION_free);
52	0	*sk = NULL;
53	0	}
54	0	return ret;
55	0	}
56
57		X509_EXTENSION X509_CRL_delete_ext(X509_CRL x, int loc)
58	0	{
59	0	return delete_ext(&x->crl.extensions, loc);
60	0	}
61
62		void X509_CRL_get_ext_d2i(const X509_CRL x, int nid, int crit, int idx)
63	0	{
64	0	return X509V3_get_d2i(x->crl.extensions, nid, crit, idx);
65	0	}
66
67		int X509_CRL_add1_ext_i2d(X509_CRL x, int nid, void value, int crit,
68		unsigned long flags)
69	0	{
70	0	return X509V3_add1_i2d(&x->crl.extensions, nid, value, crit, flags);
71	0	}
72
73		int X509_CRL_add_ext(X509_CRL x, const X509_EXTENSION ex, int loc)
74	0	{
75	0	return (X509v3_add_ext(&(x->crl.extensions), ex, loc) != NULL);
76	0	}
77
78		int X509_get_ext_count(const X509 *x)
79	0	{
80	0	return X509v3_get_ext_count(x->cert_info.extensions);
81	0	}
82
83		int X509_get_ext_by_NID(const X509 *x, int nid, int lastpos)
84	0	{
85	0	return X509v3_get_ext_by_NID(x->cert_info.extensions, nid, lastpos);
86	0	}
87
88		int X509_get_ext_by_OBJ(const X509 x, const ASN1_OBJECT obj, int lastpos)
89	0	{
90	0	return X509v3_get_ext_by_OBJ(x->cert_info.extensions, obj, lastpos);
91	0	}
92
93		int X509_get_ext_by_critical(const X509 *x, int crit, int lastpos)
94	0	{
95	0	return (X509v3_get_ext_by_critical(x->cert_info.extensions, crit, lastpos));
96	0	}
97
98		const X509_EXTENSION X509_get_ext(const X509 x, int loc)
99	0	{
100	0	return X509v3_get_ext(x->cert_info.extensions, loc);
101	0	}
102
103		X509_EXTENSION X509_delete_ext(X509 x, int loc)
104	0	{
105	0	X509_EXTENSION *ret;
106
107	0	if (x->cert_info.extensions == NULL)
108	0	return NULL;
109	0	if ((ret = delete_ext(&x->cert_info.extensions, loc)) != NULL)
110	0	x->cert_info.enc.modified = 1;
111	0	return ret;
112	0	}
113
114		int X509_add_ext(X509 x, const X509_EXTENSION ex, int loc)
115	0	{
116	0	STACK_OF(X509_EXTENSION) *exts = x->cert_info.extensions;
117
118	0	if (X509v3_add_ext(&exts, ex, loc) == NULL)
119	0	return 0;
120		/*
121		* A duplicate empty SKID/AKID extension can displace a prior non-empty
122		* one, but is then not itself added, so, somewhat counter-intutively, the
123		* the extension list can become empty after an "add", in which case we must
124		* drop the extension stack entirely, setting it to NULL. The extensions
125		* list is either non-empty or absent.
126		*/
127	0	if (sk_X509_EXTENSION_num(exts) != 0) {
128	0	x->cert_info.extensions = exts;
129	0	} else {
130	0	sk_X509_EXTENSION_free(exts);
131	0	sk_X509_EXTENSION_pop_free(x->cert_info.extensions, X509_EXTENSION_free);
132	0	x->cert_info.extensions = NULL;
133	0	}
134	0	x->cert_info.enc.modified = 1;
135	0	return 1;
136	0	}
137
138		void X509_get_ext_d2i(const X509 x, int nid, int crit, int idx)
139	0	{
140	0	return X509V3_get_d2i(x->cert_info.extensions, nid, crit, idx);
141	0	}
142
143		int X509_add1_ext_i2d(X509 x, int nid, void value, int crit,
144		unsigned long flags)
145	0	{
146		/*
147		* Assume modified, sadly the underlying function does not tell us whether
148		* changes were made, or not.
149		*/
150	0	x->cert_info.enc.modified = 1;
151	0	return X509V3_add1_i2d(&x->cert_info.extensions, nid, value, crit,
152	0	flags);
153	0	}
154
155		int X509_REVOKED_get_ext_count(const X509_REVOKED *x)
156	0	{
157	0	return X509v3_get_ext_count(x->extensions);
158	0	}
159
160		int X509_REVOKED_get_ext_by_NID(const X509_REVOKED *x, int nid, int lastpos)
161	0	{
162	0	return X509v3_get_ext_by_NID(x->extensions, nid, lastpos);
163	0	}
164
165		int X509_REVOKED_get_ext_by_OBJ(const X509_REVOKED x, const ASN1_OBJECT obj,
166		int lastpos)
167	0	{
168	0	return X509v3_get_ext_by_OBJ(x->extensions, obj, lastpos);
169	0	}
170
171		int X509_REVOKED_get_ext_by_critical(const X509_REVOKED *x, int crit, int lastpos)
172	0	{
173	0	return X509v3_get_ext_by_critical(x->extensions, crit, lastpos);
174	0	}
175
176		const X509_EXTENSION X509_REVOKED_get_ext(const X509_REVOKED x, int loc)
177	0	{
178	0	return X509v3_get_ext(x->extensions, loc);
179	0	}
180
181		X509_EXTENSION X509_REVOKED_delete_ext(X509_REVOKED x, int loc)
182	0	{
183	0	return delete_ext(&x->extensions, loc);
184	0	}
185
186		int X509_REVOKED_add_ext(X509_REVOKED x, X509_EXTENSION ex, int loc)
187	0	{
188	0	return (X509v3_add_ext(&(x->extensions), ex, loc) != NULL);
189	0	}
190
191		void X509_REVOKED_get_ext_d2i(const X509_REVOKED x, int nid, int crit, int idx)
192	0	{
193	0	return X509V3_get_d2i(x->extensions, nid, crit, idx);
194	0	}
195
196		int X509_REVOKED_add1_ext_i2d(X509_REVOKED x, int nid, void value, int crit,
197		unsigned long flags)
198	0	{
199	0	return X509V3_add1_i2d(&x->extensions, nid, value, crit, flags);
200	0	}