ホーム エクスプローラ ヘルプ
サインイン
OWEALs
/
openssl
同期ミラー git://git.openssl.org/openssl.git
2
0
フォーク 0
ファイル 課題 1 Wiki
ツリー: 6594baf645
ブランチ タグ
openssl
/
crypto
/
x509
/
pcy_data.c

pcy_data.c 2.2 KB
履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081 
  1. /*
    2. 

  2.  * Copyright 2004-2021 The OpenSSL Project Authors. All Rights Reserved.
    3. 

  3.  *
    4. 

  4.  * Licensed under the Apache License 2.0 (the "License").  You may not use
    5. 

  5.  * this file except in compliance with the License.  You can obtain a copy
    6. 

  6.  * in the file LICENSE in the source distribution or at
    7. 

  7.  * https://www.openssl.org/source/license.html
    8. 

  8.  */
    9. 

  9. 

  10. #include "internal/cryptlib.h"
    11. 

  11. #include <openssl/x509.h>
    12. 

  12. #include <openssl/x509v3.h>
    13. 

  13. 

  14. #include "pcy_local.h"
    15. 

  15. 

  16. /* Policy Node routines */
    17. 

  17. 

  18. void ossl_policy_data_free(X509_POLICY_DATA *data)
    19. 

  19. {
    20. 

  20.     if (data == NULL)
    21. 

  21.         return;
    22. 

  22.     ASN1_OBJECT_free(data->valid_policy);
    23. 

  23.     /* Don't free qualifiers if shared */
    24. 

  24.     if (!(data->flags & POLICY_DATA_FLAG_SHARED_QUALIFIERS))
    25. 

  25.         sk_POLICYQUALINFO_pop_free(data->qualifier_set, POLICYQUALINFO_free);
    26. 

  26.     sk_ASN1_OBJECT_pop_free(data->expected_policy_set, ASN1_OBJECT_free);
    27. 

  27.     OPENSSL_free(data);
    28. 

  28. }
    29. 

  29. 

  30. /*
    31. 

  31.  * Create a data based on an existing policy. If 'id' is NULL use the OID in
    32. 

  32.  * the policy, otherwise use 'id'. This behaviour covers the two types of
    33. 

  33.  * data in RFC3280: data with from a CertificatePolicies extension and
    34. 

  34.  * additional data with just the qualifiers of anyPolicy and ID from another
    35. 

  35.  * source.
    36. 

  36.  */
    37. 

  37. 

  38. X509_POLICY_DATA *ossl_policy_data_new(POLICYINFO *policy,
    39. 

  39.                                        const ASN1_OBJECT *cid, int crit)
    40. 

  40. {
    41. 

  41.     X509_POLICY_DATA *ret;
    42. 

  42.     ASN1_OBJECT *id;
    43. 

  43. 

  44.     if (policy == NULL && cid == NULL)
    45. 

  45.         return NULL;
    46. 

  46.     if (cid) {
    47. 

  47.         id = OBJ_dup(cid);
    48. 

  48.         if (id == NULL)
    49. 

  49.             return NULL;
    50. 

  50.     } else
    51. 

  51.         id = NULL;
    52. 

  52.     ret = OPENSSL_zalloc(sizeof(*ret));
    53. 

  53.     if (ret == NULL) {
    54. 

  54.         ASN1_OBJECT_free(id);
    55. 

  55.         return NULL;
    56. 

  56.     }
    57. 

  57.     ret->expected_policy_set = sk_ASN1_OBJECT_new_null();
    58. 

  58.     if (ret->expected_policy_set == NULL) {
    59. 

  59.         OPENSSL_free(ret);
    60. 

  60.         ASN1_OBJECT_free(id);
    61. 

  61.         ERR_raise(ERR_LIB_X509V3, ERR_R_CRYPTO_LIB);
    62. 

  62.         return NULL;
    63. 

  63.     }
    64. 

  64. 

  65.     if (crit)
    66. 

  66.         ret->flags = POLICY_DATA_FLAG_CRITICAL;
    67. 

  67. 

  68.     if (id)
    69. 

  69.         ret->valid_policy = id;
    70. 

  70.     else {
    71. 

  71.         ret->valid_policy = policy->policyid;
    72. 

  72.         policy->policyid = NULL;
    73. 

  73.     }
    74. 

  74. 

  75.     if (policy) {
    76. 

  76.         ret->qualifier_set = policy->qualifiers;
    77. 

  77.         policy->qualifiers = NULL;
    78. 

  78.     }
    79. 

  79. 

  80.     return ret;
    81. 

  81. }
    82.