[331] | 1 | /*
|
---|
| 2 | * Copyright 1999-2016 The OpenSSL Project Authors. All Rights Reserved.
|
---|
| 3 | *
|
---|
| 4 | * Licensed under the OpenSSL license (the "License"). You may not use
|
---|
| 5 | * this file except in compliance with the License. You can obtain a copy
|
---|
| 6 | * in the file LICENSE in the source distribution or at
|
---|
| 7 | * https://www.openssl.org/source/license.html
|
---|
| 8 | */
|
---|
| 9 |
|
---|
| 10 | #include <stdio.h>
|
---|
| 11 | #include "internal/cryptlib.h"
|
---|
| 12 | #include <openssl/buffer.h>
|
---|
| 13 | #include <openssl/bn.h>
|
---|
| 14 | #include <openssl/objects.h>
|
---|
| 15 | #include <openssl/x509.h>
|
---|
| 16 | #include <openssl/x509v3.h>
|
---|
| 17 |
|
---|
| 18 | #ifndef OPENSSL_NO_STDIO
|
---|
| 19 | int X509_CRL_print_fp(FILE *fp, X509_CRL *x)
|
---|
| 20 | {
|
---|
| 21 | BIO *b;
|
---|
| 22 | int ret;
|
---|
| 23 |
|
---|
| 24 | if ((b = BIO_new(BIO_s_file())) == NULL) {
|
---|
| 25 | X509err(X509_F_X509_CRL_PRINT_FP, ERR_R_BUF_LIB);
|
---|
| 26 | return (0);
|
---|
| 27 | }
|
---|
| 28 | BIO_set_fp(b, fp, BIO_NOCLOSE);
|
---|
| 29 | ret = X509_CRL_print(b, x);
|
---|
| 30 | BIO_free(b);
|
---|
| 31 | return (ret);
|
---|
| 32 | }
|
---|
| 33 | #endif
|
---|
| 34 |
|
---|
| 35 | int X509_CRL_print(BIO *out, X509_CRL *x)
|
---|
| 36 | {
|
---|
| 37 | STACK_OF(X509_REVOKED) *rev;
|
---|
| 38 | X509_REVOKED *r;
|
---|
| 39 | const X509_ALGOR *sig_alg;
|
---|
| 40 | const ASN1_BIT_STRING *sig;
|
---|
| 41 | long l;
|
---|
| 42 | int i;
|
---|
| 43 | char *p;
|
---|
| 44 |
|
---|
| 45 | BIO_printf(out, "Certificate Revocation List (CRL):\n");
|
---|
| 46 | l = X509_CRL_get_version(x);
|
---|
| 47 | if (l >= 0 && l <= 1)
|
---|
| 48 | BIO_printf(out, "%8sVersion %ld (0x%lx)\n", "", l + 1, (unsigned long)l);
|
---|
| 49 | else
|
---|
| 50 | BIO_printf(out, "%8sVersion unknown (%ld)\n", "", l);
|
---|
| 51 | X509_CRL_get0_signature(x, &sig, &sig_alg);
|
---|
| 52 | X509_signature_print(out, sig_alg, NULL);
|
---|
| 53 | p = X509_NAME_oneline(X509_CRL_get_issuer(x), NULL, 0);
|
---|
| 54 | BIO_printf(out, "%8sIssuer: %s\n", "", p);
|
---|
| 55 | OPENSSL_free(p);
|
---|
| 56 | BIO_printf(out, "%8sLast Update: ", "");
|
---|
| 57 | ASN1_TIME_print(out, X509_CRL_get0_lastUpdate(x));
|
---|
| 58 | BIO_printf(out, "\n%8sNext Update: ", "");
|
---|
| 59 | if (X509_CRL_get0_nextUpdate(x))
|
---|
| 60 | ASN1_TIME_print(out, X509_CRL_get0_nextUpdate(x));
|
---|
| 61 | else
|
---|
| 62 | BIO_printf(out, "NONE");
|
---|
| 63 | BIO_printf(out, "\n");
|
---|
| 64 |
|
---|
| 65 | X509V3_extensions_print(out, "CRL extensions",
|
---|
| 66 | X509_CRL_get0_extensions(x), 0, 8);
|
---|
| 67 |
|
---|
| 68 | rev = X509_CRL_get_REVOKED(x);
|
---|
| 69 |
|
---|
| 70 | if (sk_X509_REVOKED_num(rev) > 0)
|
---|
| 71 | BIO_printf(out, "Revoked Certificates:\n");
|
---|
| 72 | else
|
---|
| 73 | BIO_printf(out, "No Revoked Certificates.\n");
|
---|
| 74 |
|
---|
| 75 | for (i = 0; i < sk_X509_REVOKED_num(rev); i++) {
|
---|
| 76 | r = sk_X509_REVOKED_value(rev, i);
|
---|
| 77 | BIO_printf(out, " Serial Number: ");
|
---|
| 78 | i2a_ASN1_INTEGER(out, X509_REVOKED_get0_serialNumber(r));
|
---|
| 79 | BIO_printf(out, "\n Revocation Date: ");
|
---|
| 80 | ASN1_TIME_print(out, X509_REVOKED_get0_revocationDate(r));
|
---|
| 81 | BIO_printf(out, "\n");
|
---|
| 82 | X509V3_extensions_print(out, "CRL entry extensions",
|
---|
| 83 | X509_REVOKED_get0_extensions(r), 0, 8);
|
---|
| 84 | }
|
---|
| 85 | X509_signature_print(out, sig_alg, sig);
|
---|
| 86 |
|
---|
| 87 | return 1;
|
---|
| 88 |
|
---|
| 89 | }
|
---|