certreq.c
来自「支持SSL v2/v3, TLS, PKCS #5, PKCS #7, PKCS」· C语言 代码 · 共 229 行
C
229 行
/* * The contents of this file are subject to the Mozilla Public * License Version 1.1 (the "License"); you may not use this file * except in compliance with the License. You may obtain a copy of * the License at http://www.mozilla.org/MPL/ * * Software distributed under the License is distributed on an "AS * IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or * implied. See the License for the specific language governing * rights and limitations under the License. * * The Original Code is the Netscape security libraries. * * The Initial Developer of the Original Code is Netscape * Communications Corporation. Portions created by Netscape are * Copyright (C) 1994-2000 Netscape Communications Corporation. All * Rights Reserved. * * Contributor(s): * * Alternatively, the contents of this file may be used under the * terms of the GNU General Public License Version 2 or later (the * "GPL"), in which case the provisions of the GPL are applicable * instead of those above. If you wish to allow use of your * version of this file only under the terms of the GPL and not to * allow others to use your version of this file under the MPL, * indicate your decision by deleting the provisions above and * replace them with the notice and other provisions required by * the GPL. If you do not delete the provisions above, a recipient * may use your version of this file under either the MPL or the * GPL. */#include "cert.h"#include "secder.h"#include "key.h"#include "secitem.h"#include "secasn1.h"const SEC_ASN1Template CERT_AttributeTemplate[] = { { SEC_ASN1_SEQUENCE, 0, NULL, sizeof(CERTAttribute) }, { SEC_ASN1_OBJECT_ID, offsetof(CERTAttribute, attrType) }, { SEC_ASN1_SET_OF, offsetof(CERTAttribute, attrValue), SEC_AnyTemplate }, { 0 }};const SEC_ASN1Template CERT_SetOfAttributeTemplate[] = { { SEC_ASN1_SET_OF, 0, CERT_AttributeTemplate },};const SEC_ASN1Template CERT_CertificateRequestTemplate[] = { { SEC_ASN1_SEQUENCE, 0, NULL, sizeof(CERTCertificateRequest) }, { SEC_ASN1_INTEGER, offsetof(CERTCertificateRequest,version) }, { SEC_ASN1_INLINE, offsetof(CERTCertificateRequest,subject), CERT_NameTemplate }, { SEC_ASN1_INLINE, offsetof(CERTCertificateRequest,subjectPublicKeyInfo), CERT_SubjectPublicKeyInfoTemplate }, { SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0, offsetof(CERTCertificateRequest,attributes), CERT_SetOfAttributeTemplate }, { 0 }};CERTCertificate *CERT_CreateCertificate(unsigned long serialNumber, CERTName *issuer, CERTValidity *validity, CERTCertificateRequest *req){ CERTCertificate *c; int rv; PRArenaPool *arena; arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE); if ( !arena ) { return(0); } c = (CERTCertificate *)PORT_ArenaZAlloc(arena, sizeof(CERTCertificate)); if (c) { c->referenceCount = 1; c->arena = arena; /* * Default is a plain version 1. * If extensions are added, it will get changed as appropriate. */ rv = DER_SetUInteger(arena, &c->version, SEC_CERTIFICATE_VERSION_1); if (rv) goto loser; rv = DER_SetUInteger(arena, &c->serialNumber, serialNumber); if (rv) goto loser; rv = CERT_CopyName(arena, &c->issuer, issuer); if (rv) goto loser; rv = CERT_CopyValidity(arena, &c->validity, validity); if (rv) goto loser; rv = CERT_CopyName(arena, &c->subject, &req->subject); if (rv) goto loser; rv = SECKEY_CopySubjectPublicKeyInfo(arena, &c->subjectPublicKeyInfo, &req->subjectPublicKeyInfo); if (rv) goto loser; } return c; loser: CERT_DestroyCertificate(c); return 0;}/************************************************************************/CERTCertificateRequest *CERT_CreateCertificateRequest(CERTName *subject, CERTSubjectPublicKeyInfo *spki, SECItem **attributes){ CERTCertificateRequest *certreq; PRArenaPool *arena; SECStatus rv; arena = PORT_NewArena(DER_DEFAULT_CHUNKSIZE); if ( arena == NULL ) { return NULL; } certreq = (CERTCertificateRequest *) PORT_ArenaZAlloc(arena, sizeof(CERTCertificateRequest)); if (certreq != NULL) { certreq->arena = arena; rv = DER_SetUInteger(arena, &certreq->version, SEC_CERTIFICATE_REQUEST_VERSION); if (rv != SECSuccess) goto loser; rv = CERT_CopyName(arena, &certreq->subject, subject); if (rv != SECSuccess) goto loser; rv = SECKEY_CopySubjectPublicKeyInfo(arena, &certreq->subjectPublicKeyInfo, spki); if (rv != SECSuccess) goto loser; /* Copy over attribute information */ if (attributes) { int i = 0; /* allocate space for attributes */ while(attributes[i] != NULL) i++; certreq->attributes = (SECItem**)PORT_ArenaZAlloc(arena, sizeof(SECItem *) * (i + 1)); if(!certreq->attributes) { goto loser; } /* copy attributes */ i = 0; while(attributes[i]) { /* ** Attributes are a SetOf Attribute which implies ** lexigraphical ordering. It is assumes that the ** attributes are passed in sorted. If we need to ** add functionality to sort them, there is an ** example in the PKCS 7 code. */ certreq->attributes[i] = (SECItem*)PORT_ArenaZAlloc(arena, sizeof(SECItem)); if(!certreq->attributes[i]) { goto loser; }; rv = SECITEM_CopyItem(arena, certreq->attributes[i], attributes[i]); if (rv != SECSuccess) { goto loser; } i++; } certreq->attributes[i] = NULL; } else { /* ** Invent empty attribute information. According to the ** pkcs#10 spec, attributes has this ASN.1 type: ** ** attributes [0] IMPLICIT Attributes ** ** Which means, we should create a NULL terminated list ** with the first entry being NULL; */ certreq->attributes = (SECItem**)PORT_ArenaZAlloc(arena, sizeof(SECItem *)); if(!certreq->attributes) { goto loser; } certreq->attributes[0] = NULL; } } else { PORT_FreeArena(arena, PR_FALSE); } return certreq;loser: CERT_DestroyCertificateRequest(certreq); return NULL;}voidCERT_DestroyCertificateRequest(CERTCertificateRequest *req){ if (req && req->arena) { PORT_FreeArena(req->arena, PR_FALSE); } return;}⌨️ 快捷键说明
复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?