xref: /openbsd-src/lib/libcrypto/ocsp/ocsp_srv.c (revision a1e92f6bcf28d1c6ba77a70b0e65c8987b640fd8) 
1*a1e92f6bSbeck /* $OpenBSD: ocsp_srv.c,v 1.13 2023/07/08 10:44:00 beck Exp $ */
282a8dcafSdjm /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3da347917Sbeck  * project 2001.
4da347917Sbeck  */
5da347917Sbeck /* ====================================================================
6da347917Sbeck  * Copyright (c) 1998-2001 The OpenSSL Project.  All rights reserved.
7da347917Sbeck  *
8da347917Sbeck  * Redistribution and use in source and binary forms, with or without
9da347917Sbeck  * modification, are permitted provided that the following conditions
10da347917Sbeck  * are met:
11da347917Sbeck  *
12da347917Sbeck  * 1. Redistributions of source code must retain the above copyright
13da347917Sbeck  *    notice, this list of conditions and the following disclaimer.
14da347917Sbeck  *
15da347917Sbeck  * 2. Redistributions in binary form must reproduce the above copyright
16da347917Sbeck  *    notice, this list of conditions and the following disclaimer in
17da347917Sbeck  *    the documentation and/or other materials provided with the
18da347917Sbeck  *    distribution.
19da347917Sbeck  *
20da347917Sbeck  * 3. All advertising materials mentioning features or use of this
21da347917Sbeck  *    software must display the following acknowledgment:
22da347917Sbeck  *    "This product includes software developed by the OpenSSL Project
23da347917Sbeck  *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
24da347917Sbeck  *
25da347917Sbeck  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26da347917Sbeck  *    endorse or promote products derived from this software without
27da347917Sbeck  *    prior written permission. For written permission, please contact
28da347917Sbeck  *    openssl-core@openssl.org.
29da347917Sbeck  *
30da347917Sbeck  * 5. Products derived from this software may not be called "OpenSSL"
31da347917Sbeck  *    nor may "OpenSSL" appear in their names without prior written
32da347917Sbeck  *    permission of the OpenSSL Project.
33da347917Sbeck  *
34da347917Sbeck  * 6. Redistributions of any form whatsoever must retain the following
35da347917Sbeck  *    acknowledgment:
36da347917Sbeck  *    "This product includes software developed by the OpenSSL Project
37da347917Sbeck  *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
38da347917Sbeck  *
39da347917Sbeck  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40da347917Sbeck  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41da347917Sbeck  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42da347917Sbeck  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
43da347917Sbeck  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44da347917Sbeck  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45da347917Sbeck  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46da347917Sbeck  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47da347917Sbeck  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48da347917Sbeck  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49da347917Sbeck  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50da347917Sbeck  * OF THE POSSIBILITY OF SUCH DAMAGE.
51da347917Sbeck  * ====================================================================
52da347917Sbeck  *
53da347917Sbeck  * This product includes cryptographic software written by Eric Young
54da347917Sbeck  * (eay@cryptsoft.com).  This product includes software written by Tim
55da347917Sbeck  * Hudson (tjh@cryptsoft.com).
56da347917Sbeck  *
57da347917Sbeck  */
58da347917Sbeck 
59da347917Sbeck #include <stdio.h>
60b6ab114eSjsing 
61b6ab114eSjsing #include <openssl/err.h>
62da347917Sbeck #include <openssl/objects.h>
63b6ab114eSjsing #include <openssl/ocsp.h>
64b6ab114eSjsing #include <openssl/pem.h>
65da347917Sbeck #include <openssl/x509.h>
66da347917Sbeck #include <openssl/x509v3.h>
67da347917Sbeck 
689f44a700Stb #include "ocsp_local.h"
699f44a700Stb 
70da347917Sbeck /* Utility functions related to sending OCSP responses and extracting
71da347917Sbeck  * relevant information from the request.
72da347917Sbeck  */
73da347917Sbeck 
742d2941d0Smiod int
OCSP_request_onereq_count(OCSP_REQUEST * req)752d2941d0Smiod OCSP_request_onereq_count(OCSP_REQUEST *req)
76da347917Sbeck {
77da347917Sbeck 	return sk_OCSP_ONEREQ_num(req->tbsRequest->requestList);
78da347917Sbeck }
79*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_request_onereq_count);
80da347917Sbeck 
812d2941d0Smiod OCSP_ONEREQ *
OCSP_request_onereq_get0(OCSP_REQUEST * req,int i)822d2941d0Smiod OCSP_request_onereq_get0(OCSP_REQUEST *req, int i)
83da347917Sbeck {
84da347917Sbeck 	return sk_OCSP_ONEREQ_value(req->tbsRequest->requestList, i);
85da347917Sbeck }
86*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_request_onereq_get0);
87da347917Sbeck 
882d2941d0Smiod OCSP_CERTID *
OCSP_onereq_get0_id(OCSP_ONEREQ * one)892d2941d0Smiod OCSP_onereq_get0_id(OCSP_ONEREQ *one)
90da347917Sbeck {
91da347917Sbeck 	return one->reqCert;
92da347917Sbeck }
93*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_onereq_get0_id);
94da347917Sbeck 
952d2941d0Smiod int
OCSP_id_get0_info(ASN1_OCTET_STRING ** piNameHash,ASN1_OBJECT ** pmd,ASN1_OCTET_STRING ** pikeyHash,ASN1_INTEGER ** pserial,OCSP_CERTID * cid)962d2941d0Smiod OCSP_id_get0_info(ASN1_OCTET_STRING **piNameHash, ASN1_OBJECT **pmd,
972d2941d0Smiod     ASN1_OCTET_STRING **pikeyHash, ASN1_INTEGER **pserial, OCSP_CERTID *cid)
98da347917Sbeck {
992d2941d0Smiod 	if (!cid)
1002d2941d0Smiod 		return 0;
1012d2941d0Smiod 	if (pmd)
1022d2941d0Smiod 		*pmd = cid->hashAlgorithm->algorithm;
1032d2941d0Smiod 	if (piNameHash)
1042d2941d0Smiod 		*piNameHash = cid->issuerNameHash;
1052d2941d0Smiod 	if (pikeyHash)
1062d2941d0Smiod 		*pikeyHash = cid->issuerKeyHash;
1072d2941d0Smiod 	if (pserial)
1082d2941d0Smiod 		*pserial = cid->serialNumber;
109da347917Sbeck 	return 1;
110da347917Sbeck }
111*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_id_get0_info);
112da347917Sbeck 
1132d2941d0Smiod int
OCSP_request_is_signed(OCSP_REQUEST * req)1142d2941d0Smiod OCSP_request_is_signed(OCSP_REQUEST *req)
115da347917Sbeck {
1162d2941d0Smiod 	if (req->optionalSignature)
1172d2941d0Smiod 		return 1;
118da347917Sbeck 	return 0;
119da347917Sbeck }
120*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_request_is_signed);
121da347917Sbeck 
122da347917Sbeck /* Create an OCSP response and encode an optional basic response */
1232d2941d0Smiod OCSP_RESPONSE *
OCSP_response_create(int status,OCSP_BASICRESP * bs)1242d2941d0Smiod OCSP_response_create(int status, OCSP_BASICRESP *bs)
125da347917Sbeck {
126da347917Sbeck 	OCSP_RESPONSE *rsp = NULL;
127da347917Sbeck 
1282d2941d0Smiod 	if (!(rsp = OCSP_RESPONSE_new()))
1292d2941d0Smiod 		goto err;
1302d2941d0Smiod 	if (!(ASN1_ENUMERATED_set(rsp->responseStatus, status)))
1312d2941d0Smiod 		goto err;
1322d2941d0Smiod 	if (!bs)
1332d2941d0Smiod 		return rsp;
1342d2941d0Smiod 	if (!(rsp->responseBytes = OCSP_RESPBYTES_new()))
1352d2941d0Smiod 		goto err;
136da347917Sbeck 	rsp->responseBytes->responseType = OBJ_nid2obj(NID_id_pkix_OCSP_basic);
13791f66739Sjsing 	if (!ASN1_item_pack(bs, &OCSP_BASICRESP_it,
1382d2941d0Smiod 	    &rsp->responseBytes->response))
139da347917Sbeck 		goto err;
140da347917Sbeck 	return rsp;
141bc775f6cSjsing 
142da347917Sbeck err:
1432d2941d0Smiod 	if (rsp)
1442d2941d0Smiod 		OCSP_RESPONSE_free(rsp);
145da347917Sbeck 	return NULL;
146da347917Sbeck }
147*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_response_create);
148da347917Sbeck 
1492d2941d0Smiod OCSP_SINGLERESP *
OCSP_basic_add1_status(OCSP_BASICRESP * rsp,OCSP_CERTID * cid,int status,int reason,ASN1_TIME * revtime,ASN1_TIME * thisupd,ASN1_TIME * nextupd)1502d2941d0Smiod OCSP_basic_add1_status(OCSP_BASICRESP *rsp, OCSP_CERTID *cid, int status,
1512d2941d0Smiod     int reason, ASN1_TIME *revtime, ASN1_TIME *thisupd, ASN1_TIME *nextupd)
152da347917Sbeck {
153da347917Sbeck 	OCSP_SINGLERESP *single = NULL;
154da347917Sbeck 	OCSP_CERTSTATUS *cs;
155da347917Sbeck 	OCSP_REVOKEDINFO *ri;
156da347917Sbeck 
157da347917Sbeck 	if (!rsp->tbsResponseData->responses &&
158da347917Sbeck 	    !(rsp->tbsResponseData->responses = sk_OCSP_SINGLERESP_new_null()))
159da347917Sbeck 		goto err;
160da347917Sbeck 
161da347917Sbeck 	if (!(single = OCSP_SINGLERESP_new()))
162da347917Sbeck 		goto err;
163da347917Sbeck 
164da347917Sbeck 	if (!ASN1_TIME_to_generalizedtime(thisupd, &single->thisUpdate))
165da347917Sbeck 		goto err;
166da347917Sbeck 	if (nextupd &&
167da347917Sbeck 	    !ASN1_TIME_to_generalizedtime(nextupd, &single->nextUpdate))
168da347917Sbeck 		goto err;
169da347917Sbeck 
170da347917Sbeck 	OCSP_CERTID_free(single->certId);
171da347917Sbeck 
172da347917Sbeck 	if (!(single->certId = OCSP_CERTID_dup(cid)))
173da347917Sbeck 		goto err;
174da347917Sbeck 
175da347917Sbeck 	cs = single->certStatus;
1762d2941d0Smiod 	switch (cs->type = status) {
177da347917Sbeck 	case V_OCSP_CERTSTATUS_REVOKED:
1782d2941d0Smiod 		if (!revtime) {
1795067ae9fSbeck 			OCSPerror(OCSP_R_NO_REVOKED_TIME);
180da347917Sbeck 			goto err;
181da347917Sbeck 		}
1822d2941d0Smiod 		if (!(cs->value.revoked = ri = OCSP_REVOKEDINFO_new()))
1832d2941d0Smiod 			goto err;
184da347917Sbeck 		if (!ASN1_TIME_to_generalizedtime(revtime, &ri->revocationTime))
185da347917Sbeck 			goto err;
1862d2941d0Smiod 		if (reason != OCSP_REVOKED_STATUS_NOSTATUS) {
187da347917Sbeck 			if (!(ri->revocationReason = ASN1_ENUMERATED_new()))
188da347917Sbeck 				goto err;
189da347917Sbeck 			if (!(ASN1_ENUMERATED_set(ri->revocationReason,
190da347917Sbeck 			    reason)))
191da347917Sbeck 				goto err;
192da347917Sbeck 		}
193da347917Sbeck 		break;
194da347917Sbeck 
195da347917Sbeck 	case V_OCSP_CERTSTATUS_GOOD:
196da347917Sbeck 		cs->value.good = ASN1_NULL_new();
197da347917Sbeck 		break;
198da347917Sbeck 
199da347917Sbeck 	case V_OCSP_CERTSTATUS_UNKNOWN:
200da347917Sbeck 		cs->value.unknown = ASN1_NULL_new();
201da347917Sbeck 		break;
202da347917Sbeck 
203da347917Sbeck 	default:
204da347917Sbeck 		goto err;
205da347917Sbeck 	}
206da347917Sbeck 	if (!(sk_OCSP_SINGLERESP_push(rsp->tbsResponseData->responses, single)))
207da347917Sbeck 		goto err;
208da347917Sbeck 	return single;
209bc775f6cSjsing 
210da347917Sbeck err:
211da347917Sbeck 	OCSP_SINGLERESP_free(single);
212da347917Sbeck 	return NULL;
213da347917Sbeck }
214*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_basic_add1_status);
215da347917Sbeck 
216da347917Sbeck /* Add a certificate to an OCSP request */
2172d2941d0Smiod int
OCSP_basic_add1_cert(OCSP_BASICRESP * resp,X509 * cert)2182d2941d0Smiod OCSP_basic_add1_cert(OCSP_BASICRESP *resp, X509 *cert)
219da347917Sbeck {
220da347917Sbeck 	if (!resp->certs && !(resp->certs = sk_X509_new_null()))
221da347917Sbeck 		return 0;
222da347917Sbeck 
2232d2941d0Smiod 	if (!sk_X509_push(resp->certs, cert))
2242d2941d0Smiod 		return 0;
225838f0b6dStb 	X509_up_ref(cert);
226da347917Sbeck 	return 1;
227da347917Sbeck }
228*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_basic_add1_cert);
229da347917Sbeck 
2302d2941d0Smiod int
OCSP_basic_sign(OCSP_BASICRESP * brsp,X509 * signer,EVP_PKEY * key,const EVP_MD * dgst,STACK_OF (X509)* certs,unsigned long flags)2312d2941d0Smiod OCSP_basic_sign(OCSP_BASICRESP *brsp, X509 *signer, EVP_PKEY *key,
2322d2941d0Smiod     const EVP_MD *dgst, STACK_OF(X509) *certs, unsigned long flags)
233da347917Sbeck {
234da347917Sbeck 	int i;
235da347917Sbeck 	OCSP_RESPID *rid;
236da347917Sbeck 
2372d2941d0Smiod 	if (!X509_check_private_key(signer, key)) {
2385067ae9fSbeck 		OCSPerror(OCSP_R_PRIVATE_KEY_DOES_NOT_MATCH_CERTIFICATE);
239da347917Sbeck 		goto err;
240da347917Sbeck 	}
241da347917Sbeck 
2422d2941d0Smiod 	if (!(flags & OCSP_NOCERTS)) {
243da347917Sbeck 		if (!OCSP_basic_add1_cert(brsp, signer))
244da347917Sbeck 			goto err;
2452d2941d0Smiod 		for (i = 0; i < sk_X509_num(certs); i++) {
246da347917Sbeck 			X509 *tmpcert = sk_X509_value(certs, i);
247da347917Sbeck 			if (!OCSP_basic_add1_cert(brsp, tmpcert))
248da347917Sbeck 				goto err;
249da347917Sbeck 		}
250da347917Sbeck 	}
251da347917Sbeck 
252da347917Sbeck 	rid = brsp->tbsResponseData->responderId;
2532d2941d0Smiod 	if (flags & OCSP_RESPID_KEY) {
254da347917Sbeck 		unsigned char md[SHA_DIGEST_LENGTH];
2552d2941d0Smiod 
256da347917Sbeck 		X509_pubkey_digest(signer, EVP_sha1(), md, NULL);
257da347917Sbeck 		if (!(rid->value.byKey = ASN1_OCTET_STRING_new()))
258da347917Sbeck 			goto err;
2592d2941d0Smiod 		if (!(ASN1_OCTET_STRING_set(rid->value.byKey, md,
2602d2941d0Smiod 		    SHA_DIGEST_LENGTH)))
261da347917Sbeck 			goto err;
262da347917Sbeck 		rid->type = V_OCSP_RESPID_KEY;
2632d2941d0Smiod 	} else {
264da347917Sbeck 		if (!X509_NAME_set(&rid->value.byName,
265da347917Sbeck 		    X509_get_subject_name(signer)))
266da347917Sbeck 			goto err;
267da347917Sbeck 		rid->type = V_OCSP_RESPID_NAME;
268da347917Sbeck 	}
269da347917Sbeck 
270da347917Sbeck 	if (!(flags & OCSP_NOTIME) &&
27129d580d5Sbeck 	    !ASN1_GENERALIZEDTIME_set(brsp->tbsResponseData->producedAt, time(NULL)))
272da347917Sbeck 		goto err;
273da347917Sbeck 
274da347917Sbeck 	/* Right now, I think that not doing double hashing is the right
275da347917Sbeck 	   thing.	-- Richard Levitte */
276da347917Sbeck 
2772d2941d0Smiod 	if (!OCSP_BASICRESP_sign(brsp, key, dgst, 0))
2782d2941d0Smiod 		goto err;
279da347917Sbeck 
280da347917Sbeck 	return 1;
281bc775f6cSjsing 
282da347917Sbeck err:
283da347917Sbeck 	return 0;
284da347917Sbeck }
285*a1e92f6bSbeck LCRYPTO_ALIAS(OCSP_basic_sign);
286