common/crypto/iprt-openssl.cpp

	iprt-openssl.cpp revision 13493ab7596e827b8d0caab2c89e635dd65f78f9
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync/* $Id$ */
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync/** @file
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * IPRT - Crypto - OpenSSL Helpers.
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync */
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync/*
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * Copyright (C) 2006-2014 Oracle Corporation
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync *
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * This file is part of VirtualBox Open Source Edition (OSE), as
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * available from http://www.virtualbox.org. This file is free software;
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * you can redistribute it and/or modify it under the terms of the GNU
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * General Public License (GPL) as published by the Free Software
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * Foundation, in version 2 as it comes in the "COPYING" file of the
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * VirtualBox OSE distribution. VirtualBox OSE is distributed in the
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * hope that it will be useful, but WITHOUT ANY WARRANTY of any kind.
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync *
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * The contents of this file may alternatively be used under the terms
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * of the Common Development and Distribution License Version 1.0
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * (CDDL) only, as it comes in the "COPYING.CDDL" file of the
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * VirtualBox OSE distribution, in which case the provisions of the
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * CDDL are applicable instead of those of the GPL.
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync *
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * You may elect to license modified versions of this file under the
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync * terms and conditions of either the GPL or the CDDL or both.
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync */
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync/*******************************************************************************
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync*   Header Files                                                               *
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync*******************************************************************************/
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync#include "internal/iprt.h"
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync#ifdef IPRT_WITH_OPENSSL    /* Whole file. */
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync# include <iprt/err.h>
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync# include <iprt/string.h>
a2b66e2b8b92cf2d0706078798036035cb9fa94dvboxsync
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync# include "internal/iprt-openssl.h"
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync# include <openssl/x509.h>
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync# include <openssl/err.h>
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsyncDECLHIDDEN(void) rtCrOpenSslInit(void)
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync{
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync    static bool s_fOssInitalized;
5d1fc7f6c660e826d7f81c580fbf4278dd44c6bdvboxsync    if (!s_fOssInitalized)
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    {
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        OpenSSL_add_all_algorithms();
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        ERR_load_ERR_strings();
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        ERR_load_crypto_strings();
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        s_fOssInitalized = true;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    }
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync}
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsyncDECLHIDDEN(int) rtCrOpenSslErrInfoCallback(const char *pach, size_t cch, void *pvUser)
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync{
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    PRTERRINFO pErrInfo = (PRTERRINFO)pvUser;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    size_t cchAlready = pErrInfo->fFlags & RTERRINFO_FLAGS_SET ? strlen(pErrInfo->pszMsg) : 0;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    if (cchAlready + 1 < pErrInfo->cbMsg)
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        RTStrCopyEx(pErrInfo->pszMsg + cchAlready, pErrInfo->cbMsg - cchAlready, pach, cch);
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    return -1;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync}
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsyncDECLHIDDEN(int) rtCrOpenSslAddX509CertToStack(void *pvOsslStack, PCRTCRX509CERTIFICATE pCert)
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync{
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    int                  rc;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    const unsigned char *pabEncoded = (const unsigned char *)RTASN1CORE_GET_RAW_ASN1_PTR(&pCert->SeqCore.Asn1Core);
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    uint32_t             cbEncoded  = RTASN1CORE_GET_RAW_ASN1_SIZE(&pCert->SeqCore.Asn1Core);
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    X509                *pOsslCert  = NULL;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    if (d2i_X509(&pOsslCert, &pabEncoded, cbEncoded) == pOsslCert)
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    {
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        if (sk_X509_push((STACK_OF(X509) *)pvOsslStack, pOsslCert))
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync            rc = VINF_SUCCESS;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        else
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        {
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync            rc = VERR_NO_MEMORY;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync            X509_free(pOsslCert);
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        }
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    }
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    else
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync        rc = VERR_CR_X509_OSSL_D2I_FAILED;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync    return rc;
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync}
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync#endif /* IPRT_WITH_OPENSSL */
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync
4b0369e0c9bcae37f2801e0f7b92509bbbaf4becvboxsync