1/*
2 * Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved.
3 *
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
10#include <stdio.h>
11#include "internal/cryptlib.h"
12#include <openssl/buffer.h>
13#include <openssl/bn.h>
14#include <openssl/objects.h>
15#include <openssl/x509.h>
16#include <openssl/x509v3.h>
17#include <openssl/rsa.h>
18#include <openssl/dsa.h>
19
20#ifndef OPENSSL_NO_STDIO
21int X509_REQ_print_fp(FILE *fp, X509_REQ *x)
22{
23 BIO *b;
24 int ret;
25
26 if ((b = BIO_new(BIO_s_file())) == NULL) {
27 X509err(X509_F_X509_REQ_PRINT_FP, ERR_R_BUF_LIB);
28 return 0;
29 }
30 BIO_set_fp(b, fp, BIO_NOCLOSE);
31 ret = X509_REQ_print(b, x);
32 BIO_free(b);
33 return ret;
34}
35#endif
36
37int X509_REQ_print_ex(BIO *bp, X509_REQ *x, unsigned long nmflags,
38 unsigned long cflag)
39{
40 long l;
41 int i;
42 EVP_PKEY *pkey;
43 STACK_OF(X509_EXTENSION) *exts;
44 char mlch = ' ';
45 int nmindent = 0;
46
47 if ((nmflags & XN_FLAG_SEP_MASK) == XN_FLAG_SEP_MULTILINE) {
48 mlch = '\n';
49 nmindent = 12;
50 }
51
52 if (nmflags == X509_FLAG_COMPAT)
53 nmindent = 16;
54
55 if (!(cflag & X509_FLAG_NO_HEADER)) {
56 if (BIO_write(bp, "Certificate Request:\n", 21) <= 0)
57 goto err;
58 if (BIO_write(bp, " Data:\n", 10) <= 0)
59 goto err;
60 }
61 if (!(cflag & X509_FLAG_NO_VERSION)) {
62 l = X509_REQ_get_version(x);
63 if (l >= 0 && l <= 2) {
64 if (BIO_printf(bp, "%8sVersion: %ld (0x%lx)\n", "", l + 1, (unsigned long)l) <= 0)
65 goto err;
66 } else {
67 if (BIO_printf(bp, "%8sVersion: Unknown (%ld)\n", "", l) <= 0)
68 goto err;
69 }
70 }
71 if (!(cflag & X509_FLAG_NO_SUBJECT)) {
72 if (BIO_printf(bp, " Subject:%c", mlch) <= 0)
73 goto err;
74 if (X509_NAME_print_ex(bp, X509_REQ_get_subject_name(x),
75 nmindent, nmflags) < 0)
76 goto err;
77 if (BIO_write(bp, "\n", 1) <= 0)
78 goto err;
79 }
80 if (!(cflag & X509_FLAG_NO_PUBKEY)) {
81 X509_PUBKEY *xpkey;
82 ASN1_OBJECT *koid;
83 if (BIO_write(bp, " Subject Public Key Info:\n", 33) <= 0)
84 goto err;
85 if (BIO_printf(bp, "%12sPublic Key Algorithm: ", "") <= 0)
86 goto err;
87 xpkey = X509_REQ_get_X509_PUBKEY(x);
88 X509_PUBKEY_get0_param(&koid, NULL, NULL, NULL, xpkey);
89 if (i2a_ASN1_OBJECT(bp, koid) <= 0)
90 goto err;
91 if (BIO_puts(bp, "\n") <= 0)
92 goto err;
93
94 pkey = X509_REQ_get0_pubkey(x);
95 if (pkey == NULL) {
96 if (BIO_printf(bp, "%12sUnable to load Public Key\n", "") <= 0)
97 goto err;
98 ERR_print_errors(bp);
99 } else {
100 if (EVP_PKEY_print_public(bp, pkey, 16, NULL) <= 0)
101 goto err;
102 }
103 }
104
105 if (!(cflag & X509_FLAG_NO_ATTRIBUTES)) {
106 /* may not be */
107 if (BIO_printf(bp, "%8sAttributes:\n", "") <= 0)
108 goto err;
109
110 if (X509_REQ_get_attr_count(x) == 0) {
111 if (BIO_printf(bp, "%12sa0:00\n", "") <= 0)
112 goto err;
113 } else {
114 for (i = 0; i < X509_REQ_get_attr_count(x); i++) {
115 ASN1_TYPE *at;
116 X509_ATTRIBUTE *a;
117 ASN1_BIT_STRING *bs = NULL;
118 ASN1_OBJECT *aobj;
119 int j, type = 0, count = 1, ii = 0;
120
121 a = X509_REQ_get_attr(x, i);
122 aobj = X509_ATTRIBUTE_get0_object(a);
123 if (X509_REQ_extension_nid(OBJ_obj2nid(aobj)))
124 continue;
125 if (BIO_printf(bp, "%12s", "") <= 0)
126 goto err;
127 if ((j = i2a_ASN1_OBJECT(bp, aobj)) > 0) {
128 ii = 0;
129 count = X509_ATTRIBUTE_count(a);
130 if (count == 0) {
131 X509err(X509_F_X509_REQ_PRINT_EX, X509_R_INVALID_ATTRIBUTES);
132 return 0;
133 }
134 get_next:
135 at = X509_ATTRIBUTE_get0_type(a, ii);
136 type = at->type;
137 bs = at->value.asn1_string;
138 }
139 for (j = 25 - j; j > 0; j--)
140 if (BIO_write(bp, " ", 1) != 1)
141 goto err;
142 if (BIO_puts(bp, ":") <= 0)
143 goto err;
144 switch (type) {
145 case V_ASN1_PRINTABLESTRING:
146 case V_ASN1_T61STRING:
147 case V_ASN1_NUMERICSTRING:
148 case V_ASN1_UTF8STRING:
149 case V_ASN1_IA5STRING:
150 if (BIO_write(bp, (char *)bs->data, bs->length)
151 != bs->length)
152 goto err;
153 if (BIO_puts(bp, "\n") <= 0)
154 goto err;
155 break;
156 default:
157 if (BIO_puts(bp, "unable to print attribute\n") <= 0)
158 goto err;
159 break;
160 }
161 if (++ii < count)
162 goto get_next;
163 }
164 }
165 }
166 if (!(cflag & X509_FLAG_NO_EXTENSIONS)) {
167 exts = X509_REQ_get_extensions(x);
168 if (exts) {
169 if (BIO_printf(bp, "%8sRequested Extensions:\n", "") <= 0)
170 goto err;
171 for (i = 0; i < sk_X509_EXTENSION_num(exts); i++) {
172 ASN1_OBJECT *obj;
173 X509_EXTENSION *ex;
174 int critical;
175 ex = sk_X509_EXTENSION_value(exts, i);
176 if (BIO_printf(bp, "%12s", "") <= 0)
177 goto err;
178 obj = X509_EXTENSION_get_object(ex);
179 if (i2a_ASN1_OBJECT(bp, obj) <= 0)
180 goto err;
181 critical = X509_EXTENSION_get_critical(ex);
182 if (BIO_printf(bp, ": %s\n", critical ? "critical" : "") <= 0)
183 goto err;
184 if (!X509V3_EXT_print(bp, ex, cflag, 16)) {
185 if (BIO_printf(bp, "%16s", "") <= 0
186 || ASN1_STRING_print(bp,
187 X509_EXTENSION_get_data(ex)) <= 0)
188 goto err;
189 }
190 if (BIO_write(bp, "\n", 1) <= 0)
191 goto err;
192 }
193 sk_X509_EXTENSION_pop_free(exts, X509_EXTENSION_free);
194 }
195 }
196
197 if (!(cflag & X509_FLAG_NO_SIGDUMP)) {
198 const X509_ALGOR *sig_alg;
199 const ASN1_BIT_STRING *sig;
200 X509_REQ_get0_signature(x, &sig, &sig_alg);
201 if (!X509_signature_print(bp, sig_alg, sig))
202 goto err;
203 }
204
205 return 1;
206 err:
207 X509err(X509_F_X509_REQ_PRINT_EX, ERR_R_BUF_LIB);
208 return 0;
209}
210
211int X509_REQ_print(BIO *bp, X509_REQ *x)
212{
213 return X509_REQ_print_ex(bp, x, XN_FLAG_COMPAT, X509_FLAG_COMPAT);
214}
215