Ruby  2.4.2p198(2017-09-14revision59899)
ossl_x509crl.c
Go to the documentation of this file.
1 /*
2  * 'OpenSSL for Ruby' project
3  * Copyright (C) 2001-2002 Michal Rokos <m.rokos@sh.cvut.cz>
4  * All rights reserved.
5  */
6 /*
7  * This program is licensed under the same licence as Ruby.
8  * (See the file 'LICENCE'.)
9  */
10 #include "ossl.h"
11 
12 #define NewX509CRL(klass) \
13  TypedData_Wrap_Struct((klass), &ossl_x509crl_type, 0)
14 #define SetX509CRL(obj, crl) do { \
15  if (!(crl)) { \
16  ossl_raise(rb_eRuntimeError, "CRL wasn't initialized!"); \
17  } \
18  RTYPEDDATA_DATA(obj) = (crl); \
19 } while (0)
20 #define GetX509CRL(obj, crl) do { \
21  TypedData_Get_Struct((obj), X509_CRL, &ossl_x509crl_type, (crl)); \
22  if (!(crl)) { \
23  ossl_raise(rb_eRuntimeError, "CRL wasn't initialized!"); \
24  } \
25 } while (0)
26 #define SafeGetX509CRL(obj, crl) do { \
27  OSSL_Check_Kind((obj), cX509CRL); \
28  GetX509CRL((obj), (crl)); \
29 } while (0)
30 
31 /*
32  * Classes
33  */
36 
37 static void
39 {
40  X509_CRL_free(ptr);
41 }
42 
44  "OpenSSL/X509/CRL",
45  {
47  },
49 };
50 
51 /*
52  * PUBLIC
53  */
54 X509_CRL *
56 {
57  X509_CRL *crl;
58 
59  SafeGetX509CRL(obj, crl);
60 
61  return crl;
62 }
63 
64 X509_CRL *
66 {
67  X509_CRL *crl;
68 
69  SafeGetX509CRL(obj, crl);
70  X509_CRL_up_ref(crl);
71 
72  return crl;
73 }
74 
75 VALUE
76 ossl_x509crl_new(X509_CRL *crl)
77 {
78  X509_CRL *tmp;
79  VALUE obj;
80 
81  obj = NewX509CRL(cX509CRL);
82  tmp = crl ? X509_CRL_dup(crl) : X509_CRL_new();
83  if(!tmp) ossl_raise(eX509CRLError, NULL);
84  SetX509CRL(obj, tmp);
85 
86  return obj;
87 }
88 
89 /*
90  * PRIVATE
91  */
92 static VALUE
94 {
95  X509_CRL *crl;
96  VALUE obj;
97 
98  obj = NewX509CRL(klass);
99  if (!(crl = X509_CRL_new())) {
101  }
102  SetX509CRL(obj, crl);
103 
104  return obj;
105 }
106 
107 static VALUE
109 {
110  BIO *in;
111  X509_CRL *crl, *x = DATA_PTR(self);
112  VALUE arg;
113 
114  if (rb_scan_args(argc, argv, "01", &arg) == 0) {
115  return self;
116  }
117  arg = ossl_to_der_if_possible(arg);
118  in = ossl_obj2bio(&arg);
119  crl = PEM_read_bio_X509_CRL(in, &x, NULL, NULL);
120  DATA_PTR(self) = x;
121  if (!crl) {
122  OSSL_BIO_reset(in);
123  crl = d2i_X509_CRL_bio(in, &x);
124  DATA_PTR(self) = x;
125  }
126  BIO_free(in);
127  if (!crl) ossl_raise(eX509CRLError, NULL);
128 
129  return self;
130 }
131 
132 static VALUE
134 {
135  X509_CRL *a, *b, *crl;
136 
137  rb_check_frozen(self);
138  if (self == other) return self;
139  GetX509CRL(self, a);
140  SafeGetX509CRL(other, b);
141  if (!(crl = X509_CRL_dup(b))) {
143  }
144  X509_CRL_free(a);
145  DATA_PTR(self) = crl;
146 
147  return self;
148 }
149 
150 static VALUE
152 {
153  X509_CRL *crl;
154  long ver;
155 
156  GetX509CRL(self, crl);
157  ver = X509_CRL_get_version(crl);
158 
159  return LONG2NUM(ver);
160 }
161 
162 static VALUE
164 {
165  X509_CRL *crl;
166  long ver;
167 
168  if ((ver = NUM2LONG(version)) < 0) {
169  ossl_raise(eX509CRLError, "version must be >= 0!");
170  }
171  GetX509CRL(self, crl);
172  if (!X509_CRL_set_version(crl, ver)) {
174  }
175 
176  return version;
177 }
178 
179 static VALUE
181 {
182  X509_CRL *crl;
183  const X509_ALGOR *alg;
184  BIO *out;
185 
186  GetX509CRL(self, crl);
187  if (!(out = BIO_new(BIO_s_mem()))) {
189  }
190  X509_CRL_get0_signature(crl, NULL, &alg);
191  if (!i2a_ASN1_OBJECT(out, alg->algorithm)) {
192  BIO_free(out);
194  }
195 
196  return ossl_membio2str(out);
197 }
198 
199 static VALUE
201 {
202  X509_CRL *crl;
203 
204  GetX509CRL(self, crl);
205 
206  return ossl_x509name_new(X509_CRL_get_issuer(crl)); /* NO DUP - don't free */
207 }
208 
209 static VALUE
211 {
212  X509_CRL *crl;
213 
214  GetX509CRL(self, crl);
215 
216  if (!X509_CRL_set_issuer_name(crl, GetX509NamePtr(issuer))) { /* DUPs name */
218  }
219  return issuer;
220 }
221 
222 static VALUE
224 {
225  X509_CRL *crl;
226 
227  GetX509CRL(self, crl);
228 
230 }
231 
232 static VALUE
234 {
235  X509_CRL *crl;
236  ASN1_TIME *asn1time;
237 
238  GetX509CRL(self, crl);
239  asn1time = ossl_x509_time_adjust(NULL, time);
240  if (!X509_CRL_set_lastUpdate(crl, asn1time)) {
241  ASN1_TIME_free(asn1time);
242  ossl_raise(eX509CRLError, "X509_CRL_set_lastUpdate");
243  }
244  ASN1_TIME_free(asn1time);
245 
246  return time;
247 }
248 
249 static VALUE
251 {
252  X509_CRL *crl;
253 
254  GetX509CRL(self, crl);
255 
257 }
258 
259 static VALUE
261 {
262  X509_CRL *crl;
263  ASN1_TIME *asn1time;
264 
265  GetX509CRL(self, crl);
266  asn1time = ossl_x509_time_adjust(NULL, time);
267  if (!X509_CRL_set_nextUpdate(crl, asn1time)) {
268  ASN1_TIME_free(asn1time);
269  ossl_raise(eX509CRLError, "X509_CRL_set_nextUpdate");
270  }
271  ASN1_TIME_free(asn1time);
272 
273  return time;
274 }
275 
276 static VALUE
278 {
279  X509_CRL *crl;
280  int i, num;
281  X509_REVOKED *rev;
282  VALUE ary, revoked;
283 
284  GetX509CRL(self, crl);
285  num = sk_X509_REVOKED_num(X509_CRL_get_REVOKED(crl));
286  if (num < 0) {
287  OSSL_Debug("num < 0???");
288  return rb_ary_new();
289  }
290  ary = rb_ary_new2(num);
291  for(i=0; i<num; i++) {
292  /* NO DUP - don't free! */
293  rev = sk_X509_REVOKED_value(X509_CRL_get_REVOKED(crl), i);
294  revoked = ossl_x509revoked_new(rev);
295  rb_ary_push(ary, revoked);
296  }
297 
298  return ary;
299 }
300 
301 static VALUE
303 {
304  X509_CRL *crl;
305  X509_REVOKED *rev;
306  STACK_OF(X509_REVOKED) *sk;
307  long i;
308 
309  Check_Type(ary, T_ARRAY);
310  /* All ary members should be X509 Revoked */
311  for (i=0; i<RARRAY_LEN(ary); i++) {
313  }
314  GetX509CRL(self, crl);
315  if ((sk = X509_CRL_get_REVOKED(crl))) {
316  while ((rev = sk_X509_REVOKED_pop(sk)))
317  X509_REVOKED_free(rev);
318  }
319  for (i=0; i<RARRAY_LEN(ary); i++) {
320  rev = DupX509RevokedPtr(RARRAY_AREF(ary, i));
321  if (!X509_CRL_add0_revoked(crl, rev)) { /* NO DUP - don't free! */
322  X509_REVOKED_free(rev);
323  ossl_raise(eX509CRLError, "X509_CRL_add0_revoked");
324  }
325  }
326  X509_CRL_sort(crl);
327 
328  return ary;
329 }
330 
331 static VALUE
333 {
334  X509_CRL *crl;
335  X509_REVOKED *rev;
336 
337  GetX509CRL(self, crl);
338  rev = DupX509RevokedPtr(revoked);
339  if (!X509_CRL_add0_revoked(crl, rev)) { /* NO DUP - don't free! */
340  X509_REVOKED_free(rev);
341  ossl_raise(eX509CRLError, "X509_CRL_add0_revoked");
342  }
343  X509_CRL_sort(crl);
344 
345  return revoked;
346 }
347 
348 static VALUE
350 {
351  X509_CRL *crl;
352  EVP_PKEY *pkey;
353  const EVP_MD *md;
354 
355  GetX509CRL(self, crl);
356  pkey = GetPrivPKeyPtr(key); /* NO NEED TO DUP */
357  md = GetDigestPtr(digest);
358  if (!X509_CRL_sign(crl, pkey, md)) {
360  }
361 
362  return self;
363 }
364 
365 static VALUE
367 {
368  X509_CRL *crl;
369 
370  GetX509CRL(self, crl);
371  switch (X509_CRL_verify(crl, GetPKeyPtr(key))) {
372  case 1:
373  return Qtrue;
374  case 0:
376  return Qfalse;
377  default:
379  }
380 }
381 
382 static VALUE
384 {
385  X509_CRL *crl;
386  BIO *out;
387 
388  GetX509CRL(self, crl);
389  if (!(out = BIO_new(BIO_s_mem()))) {
391  }
392  if (!i2d_X509_CRL_bio(out, crl)) {
393  BIO_free(out);
395  }
396 
397  return ossl_membio2str(out);
398 }
399 
400 static VALUE
402 {
403  X509_CRL *crl;
404  BIO *out;
405 
406  GetX509CRL(self, crl);
407  if (!(out = BIO_new(BIO_s_mem()))) {
409  }
410  if (!PEM_write_bio_X509_CRL(out, crl)) {
411  BIO_free(out);
413  }
414 
415  return ossl_membio2str(out);
416 }
417 
418 static VALUE
420 {
421  X509_CRL *crl;
422  BIO *out;
423 
424  GetX509CRL(self, crl);
425  if (!(out = BIO_new(BIO_s_mem()))) {
427  }
428  if (!X509_CRL_print(out, crl)) {
429  BIO_free(out);
431  }
432 
433  return ossl_membio2str(out);
434 }
435 
436 /*
437  * Gets X509v3 extensions as array of X509Ext objects
438  */
439 static VALUE
441 {
442  X509_CRL *crl;
443  int count, i;
444  X509_EXTENSION *ext;
445  VALUE ary;
446 
447  GetX509CRL(self, crl);
448  count = X509_CRL_get_ext_count(crl);
449  if (count < 0) {
450  OSSL_Debug("count < 0???");
451  return rb_ary_new();
452  }
453  ary = rb_ary_new2(count);
454  for (i=0; i<count; i++) {
455  ext = X509_CRL_get_ext(crl, i); /* NO DUP - don't free! */
456  rb_ary_push(ary, ossl_x509ext_new(ext));
457  }
458 
459  return ary;
460 }
461 
462 /*
463  * Sets X509_EXTENSIONs
464  */
465 static VALUE
467 {
468  X509_CRL *crl;
469  X509_EXTENSION *ext;
470  long i;
471 
472  Check_Type(ary, T_ARRAY);
473  /* All ary members should be X509 Extensions */
474  for (i=0; i<RARRAY_LEN(ary); i++) {
476  }
477  GetX509CRL(self, crl);
478  while ((ext = X509_CRL_delete_ext(crl, 0)))
479  X509_EXTENSION_free(ext);
480  for (i=0; i<RARRAY_LEN(ary); i++) {
481  ext = GetX509ExtPtr(RARRAY_AREF(ary, i)); /* NO NEED TO DUP */
482  if (!X509_CRL_add_ext(crl, ext, -1)) {
484  }
485  }
486 
487  return ary;
488 }
489 
490 static VALUE
492 {
493  X509_CRL *crl;
494  X509_EXTENSION *ext;
495 
496  GetX509CRL(self, crl);
497  ext = GetX509ExtPtr(extension);
498  if (!X509_CRL_add_ext(crl, ext, -1)) {
500  }
501 
502  return extension;
503 }
504 
505 /*
506  * INIT
507  */
508 void
510 {
511 #if 0
512  mOSSL = rb_define_module("OpenSSL");
515 #endif
516 
518 
520 
524 
541  rb_define_alias(cX509CRL, "to_s", "to_pem");
546 }
static const rb_data_type_t ossl_x509crl_type
Definition: ossl_x509crl.c:43
VALUE rb_eStandardError
Definition: error.c:760
VALUE mOSSL
Definition: ossl.c:213
#define RARRAY_LEN(a)
Definition: ruby.h:1026
#define RUBY_TYPED_FREE_IMMEDIATELY
Definition: ruby.h:1145
VALUE eX509CRLError
Definition: ossl_x509crl.c:35
#define X509_CRL_get0_lastUpdate(x)
static VALUE ossl_x509crl_add_revoked(VALUE self, VALUE revoked)
Definition: ossl_x509crl.c:332
int count
Definition: encoding.c:56
static VALUE ossl_x509crl_set_revoked(VALUE self, VALUE ary)
Definition: ossl_x509crl.c:302
#define Qtrue
Definition: ruby.h:437
EVP_PKEY * GetPrivPKeyPtr(VALUE obj)
Definition: ossl_pkey.c:216
X509_CRL * DupX509CRLPtr(VALUE obj)
Definition: ossl_x509crl.c:65
#define X509_CRL_get0_nextUpdate(x)
VALUE rb_ary_push(VALUE ary, VALUE item)
Definition: array.c:905
ASN1_TIME * ossl_x509_time_adjust(ASN1_TIME *s, VALUE time)
Definition: ossl_x509.c:19
BIO * ossl_obj2bio(volatile VALUE *pobj)
Definition: ossl_bio.c:13
#define X509_CRL_get0_signature
static VALUE ossl_x509crl_copy(VALUE self, VALUE other)
Definition: ossl_x509crl.c:133
static VALUE ossl_x509crl_alloc(VALUE klass)
Definition: ossl_x509crl.c:93
VALUE rb_define_class_under(VALUE outer, const char *name, VALUE super)
Defines a class under the namespace of outer.
Definition: class.c:693
#define Check_Type(v, t)
Definition: ruby.h:562
static VALUE ossl_x509crl_sign(VALUE self, VALUE key, VALUE digest)
Definition: ossl_x509crl.c:349
static VALUE ossl_x509crl_get_signature_algorithm(VALUE self)
Definition: ossl_x509crl.c:180
void rb_define_alloc_func(VALUE, rb_alloc_func_t)
#define SafeGetX509CRL(obj, crl)
Definition: ossl_x509crl.c:26
STACK_OF(X509) *ossl_x509_ary2sk0(VALUE)
VALUE cX509Ext
Definition: ossl_x509ext.c:47
#define DATA_PTR(dta)
Definition: ruby.h:1113
#define T_ARRAY
Definition: ruby.h:498
#define X509_CRL_up_ref(x)
VALUE ossl_membio2str(BIO *bio)
Definition: ossl_bio.c:47
X509_NAME * GetX509NamePtr(VALUE)
Definition: ossl_x509name.c:80
static VALUE ossl_x509crl_set_extensions(VALUE self, VALUE ary)
Definition: ossl_x509crl.c:466
static VALUE ossl_x509crl_to_pem(VALUE self)
Definition: ossl_x509crl.c:401
static VALUE ossl_x509crl_get_issuer(VALUE self)
Definition: ossl_x509crl.c:200
#define rb_ary_new2
Definition: intern.h:90
static VALUE ossl_x509crl_set_issuer(VALUE self, VALUE issuer)
Definition: ossl_x509crl.c:210
X509_REVOKED * DupX509RevokedPtr(VALUE)
static VALUE ossl_x509crl_get_extensions(VALUE self)
Definition: ossl_x509crl.c:440
VALUE cX509Rev
#define rb_define_copy_func(klass, func)
Definition: ruby_missing.h:13
#define GetX509CRL(obj, crl)
Definition: ossl_x509crl.c:20
static VALUE ossl_x509crl_verify(VALUE self, VALUE key)
Definition: ossl_x509crl.c:366
VALUE ossl_to_der_if_possible(VALUE obj)
Definition: ossl.c:237
static VALUE ossl_x509crl_get_next_update(VALUE self)
Definition: ossl_x509crl.c:250
void ossl_clear_error(void)
Definition: ossl.c:289
RUBY_EXTERN VALUE rb_cObject
Definition: ruby.h:1872
static void ossl_x509crl_free(void *ptr)
Definition: ossl_x509crl.c:38
VALUE rb_ary_new(void)
Definition: array.c:493
#define OSSL_BIO_reset(bio)
Definition: ossl.h:110
static VALUE ossl_x509crl_initialize(int argc, VALUE *argv, VALUE self)
Definition: ossl_x509crl.c:108
static VALUE ossl_x509crl_get_last_update(VALUE self)
Definition: ossl_x509crl.c:223
const EVP_MD * GetDigestPtr(VALUE obj)
Definition: ossl_digest.c:49
VALUE eOSSLError
Definition: ossl.c:218
#define NewX509CRL(klass)
Definition: ossl_x509crl.c:12
int argc
Definition: ruby.c:183
#define Qfalse
Definition: ruby.h:436
#define SetX509CRL(obj, crl)
Definition: ossl_x509crl.c:14
VALUE ossl_x509ext_new(X509_EXTENSION *)
Definition: ossl_x509ext.c:69
static VALUE ossl_x509crl_to_text(VALUE self)
Definition: ossl_x509crl.c:419
void rb_define_alias(VALUE klass, const char *name1, const char *name2)
Defines an alias of a method.
Definition: class.c:1758
static VALUE ossl_x509crl_set_next_update(VALUE self, VALUE time)
Definition: ossl_x509crl.c:260
static VALUE ossl_x509crl_get_version(VALUE self)
Definition: ossl_x509crl.c:151
int rb_scan_args(int argc, const VALUE *argv, const char *fmt,...)
Definition: class.c:1919
VALUE cX509CRL
Definition: ossl_x509crl.c:34
unsigned long VALUE
Definition: ruby.h:85
VALUE ossl_x509crl_new(X509_CRL *crl)
Definition: ossl_x509crl.c:76
static VALUE ossl_x509crl_get_revoked(VALUE self)
Definition: ossl_x509crl.c:277
VALUE mX509
Definition: ossl_x509.c:12
VALUE ossl_x509revoked_new(X509_REVOKED *)
#define OSSL_Debug
Definition: ossl.h:155
#define LONG2NUM(x)
Definition: ruby.h:1573
VALUE rb_define_module_under(VALUE outer, const char *name)
Definition: class.c:790
X509_EXTENSION * GetX509ExtPtr(VALUE)
Definition: ossl_x509ext.c:89
static VALUE ossl_x509crl_set_version(VALUE self, VALUE version)
Definition: ossl_x509crl.c:163
#define RARRAY_AREF(a, i)
Definition: ruby.h:1040
void Init_ossl_x509crl(void)
Definition: ossl_x509crl.c:509
VALUE asn1time_to_time(const ASN1_TIME *time)
Definition: ossl_asn1.c:22
#define OSSL_Check_Kind(obj, klass)
Definition: ossl.h:52
void ossl_raise(VALUE exc, const char *fmt,...)
Definition: ossl.c:278
EVP_PKEY * GetPKeyPtr(VALUE obj)
Definition: ossl_pkey.c:206
static VALUE ossl_x509crl_to_der(VALUE self)
Definition: ossl_x509crl.c:383
VALUE ossl_x509name_new(X509_NAME *)
Definition: ossl_x509name.c:60
#define rb_check_frozen(obj)
Definition: intern.h:276
static VALUE ossl_x509crl_add_extension(VALUE self, VALUE extension)
Definition: ossl_x509crl.c:491
VALUE rb_define_module(const char *name)
Definition: class.c:768
X509_CRL * GetX509CRLPtr(VALUE obj)
Definition: ossl_x509crl.c:55
#define NULL
Definition: _sdbm.c:102
void rb_define_method(VALUE klass, const char *name, VALUE(*func)(ANYARGS), int argc)
Definition: class.c:1515
int version
Definition: ossl_ssl.c:55
#define NUM2LONG(x)
Definition: ruby.h:648
char ** argv
Definition: ruby.c:184
static VALUE ossl_x509crl_set_last_update(VALUE self, VALUE time)
Definition: ossl_x509crl.c:233