xref: /freebsd/crypto/heimdal/lib/hx509/ca.c (revision b0d29bc47dba79f6f38e67eabadfb4b32ffd9390)
1 /*
2  * Copyright (c) 2006 - 2010 Kungliga Tekniska Högskolan
3  * (Royal Institute of Technology, Stockholm, Sweden).
4  * All rights reserved.
5  *
6  * Redistribution and use in source and binary forms, with or without
7  * modification, are permitted provided that the following conditions
8  * are met:
9  *
10  * 1. Redistributions of source code must retain the above copyright
11  *    notice, this list of conditions and the following disclaimer.
12  *
13  * 2. Redistributions in binary form must reproduce the above copyright
14  *    notice, this list of conditions and the following disclaimer in the
15  *    documentation and/or other materials provided with the distribution.
16  *
17  * 3. Neither the name of the Institute nor the names of its contributors
18  *    may be used to endorse or promote products derived from this software
19  *    without specific prior written permission.
20  *
21  * THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
22  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24  * ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
25  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31  * SUCH DAMAGE.
32  */
33 
34 #include "hx_locl.h"
35 #include <pkinit_asn1.h>
36 
37 /**
38  * @page page_ca Hx509 CA functions
39  *
40  * See the library functions here: @ref hx509_ca
41  */
42 
43 struct hx509_ca_tbs {
44     hx509_name subject;
45     SubjectPublicKeyInfo spki;
46     ExtKeyUsage eku;
47     GeneralNames san;
48     unsigned key_usage;
49     heim_integer serial;
50     struct {
51 	unsigned int proxy:1;
52 	unsigned int ca:1;
53 	unsigned int key:1;
54 	unsigned int serial:1;
55 	unsigned int domaincontroller:1;
56 	unsigned int xUniqueID:1;
57     } flags;
58     time_t notBefore;
59     time_t notAfter;
60     int pathLenConstraint; /* both for CA and Proxy */
61     CRLDistributionPoints crldp;
62     heim_bit_string subjectUniqueID;
63     heim_bit_string issuerUniqueID;
64 
65 };
66 
67 /**
68  * Allocate an to-be-signed certificate object that will be converted
69  * into an certificate.
70  *
71  * @param context A hx509 context.
72  * @param tbs returned to-be-signed certicate object, free with
73  * hx509_ca_tbs_free().
74  *
75  * @return An hx509 error code, see hx509_get_error_string().
76  *
77  * @ingroup hx509_ca
78  */
79 
80 int
81 hx509_ca_tbs_init(hx509_context context, hx509_ca_tbs *tbs)
82 {
83     *tbs = calloc(1, sizeof(**tbs));
84     if (*tbs == NULL)
85 	return ENOMEM;
86 
87     return 0;
88 }
89 
90 /**
91  * Free an To Be Signed object.
92  *
93  * @param tbs object to free.
94  *
95  * @ingroup hx509_ca
96  */
97 
98 void
99 hx509_ca_tbs_free(hx509_ca_tbs *tbs)
100 {
101     if (tbs == NULL || *tbs == NULL)
102 	return;
103 
104     free_SubjectPublicKeyInfo(&(*tbs)->spki);
105     free_GeneralNames(&(*tbs)->san);
106     free_ExtKeyUsage(&(*tbs)->eku);
107     der_free_heim_integer(&(*tbs)->serial);
108     free_CRLDistributionPoints(&(*tbs)->crldp);
109     der_free_bit_string(&(*tbs)->subjectUniqueID);
110     der_free_bit_string(&(*tbs)->issuerUniqueID);
111     hx509_name_free(&(*tbs)->subject);
112 
113     memset(*tbs, 0, sizeof(**tbs));
114     free(*tbs);
115     *tbs = NULL;
116 }
117 
118 /**
119  * Set the absolute time when the certificate is valid from. If not
120  * set the current time will be used.
121  *
122  * @param context A hx509 context.
123  * @param tbs object to be signed.
124  * @param t time the certificated will start to be valid
125  *
126  * @return An hx509 error code, see hx509_get_error_string().
127  *
128  * @ingroup hx509_ca
129  */
130 
131 int
132 hx509_ca_tbs_set_notBefore(hx509_context context,
133 			   hx509_ca_tbs tbs,
134 			   time_t t)
135 {
136     tbs->notBefore = t;
137     return 0;
138 }
139 
140 /**
141  * Set the absolute time when the certificate is valid to.
142  *
143  * @param context A hx509 context.
144  * @param tbs object to be signed.
145  * @param t time when the certificate will expire
146  *
147  * @return An hx509 error code, see hx509_get_error_string().
148  *
149  * @ingroup hx509_ca
150  */
151 
152 int
153 hx509_ca_tbs_set_notAfter(hx509_context context,
154 			   hx509_ca_tbs tbs,
155 			   time_t t)
156 {
157     tbs->notAfter = t;
158     return 0;
159 }
160 
161 /**
162  * Set the relative time when the certificiate is going to expire.
163  *
164  * @param context A hx509 context.
165  * @param tbs object to be signed.
166  * @param delta seconds to the certificate is going to expire.
167  *
168  * @return An hx509 error code, see hx509_get_error_string().
169  *
170  * @ingroup hx509_ca
171  */
172 
173 int
174 hx509_ca_tbs_set_notAfter_lifetime(hx509_context context,
175 				   hx509_ca_tbs tbs,
176 				   time_t delta)
177 {
178     return hx509_ca_tbs_set_notAfter(context, tbs, time(NULL) + delta);
179 }
180 
181 static const struct units templatebits[] = {
182     { "ExtendedKeyUsage", HX509_CA_TEMPLATE_EKU },
183     { "KeyUsage", HX509_CA_TEMPLATE_KU },
184     { "SPKI", HX509_CA_TEMPLATE_SPKI },
185     { "notAfter", HX509_CA_TEMPLATE_NOTAFTER },
186     { "notBefore", HX509_CA_TEMPLATE_NOTBEFORE },
187     { "serial", HX509_CA_TEMPLATE_SERIAL },
188     { "subject", HX509_CA_TEMPLATE_SUBJECT },
189     { NULL, 0 }
190 };
191 
192 /**
193  * Make of template units, use to build flags argument to
194  * hx509_ca_tbs_set_template() with parse_units().
195  *
196  * @return an units structure.
197  *
198  * @ingroup hx509_ca
199  */
200 
201 const struct units *
202 hx509_ca_tbs_template_units(void)
203 {
204     return templatebits;
205 }
206 
207 /**
208  * Initialize the to-be-signed certificate object from a template certifiate.
209  *
210  * @param context A hx509 context.
211  * @param tbs object to be signed.
212  * @param flags bit field selecting what to copy from the template
213  * certifiate.
214  * @param cert template certificate.
215  *
216  * @return An hx509 error code, see hx509_get_error_string().
217  *
218  * @ingroup hx509_ca
219  */
220 
221 int
222 hx509_ca_tbs_set_template(hx509_context context,
223 			  hx509_ca_tbs tbs,
224 			  int flags,
225 			  hx509_cert cert)
226 {
227     int ret;
228 
229     if (flags & HX509_CA_TEMPLATE_SUBJECT) {
230 	if (tbs->subject)
231 	    hx509_name_free(&tbs->subject);
232 	ret = hx509_cert_get_subject(cert, &tbs->subject);
233 	if (ret) {
234 	    hx509_set_error_string(context, 0, ret,
235 				   "Failed to get subject from template");
236 	    return ret;
237 	}
238     }
239     if (flags & HX509_CA_TEMPLATE_SERIAL) {
240 	der_free_heim_integer(&tbs->serial);
241 	ret = hx509_cert_get_serialnumber(cert, &tbs->serial);
242 	tbs->flags.serial = !ret;
243 	if (ret) {
244 	    hx509_set_error_string(context, 0, ret,
245 				   "Failed to copy serial number");
246 	    return ret;
247 	}
248     }
249     if (flags & HX509_CA_TEMPLATE_NOTBEFORE)
250 	tbs->notBefore = hx509_cert_get_notBefore(cert);
251     if (flags & HX509_CA_TEMPLATE_NOTAFTER)
252 	tbs->notAfter = hx509_cert_get_notAfter(cert);
253     if (flags & HX509_CA_TEMPLATE_SPKI) {
254 	free_SubjectPublicKeyInfo(&tbs->spki);
255 	ret = hx509_cert_get_SPKI(context, cert, &tbs->spki);
256 	tbs->flags.key = !ret;
257 	if (ret)
258 	    return ret;
259     }
260     if (flags & HX509_CA_TEMPLATE_KU) {
261 	KeyUsage ku;
262 	ret = _hx509_cert_get_keyusage(context, cert, &ku);
263 	if (ret)
264 	    return ret;
265 	tbs->key_usage = KeyUsage2int(ku);
266     }
267     if (flags & HX509_CA_TEMPLATE_EKU) {
268 	ExtKeyUsage eku;
269 	size_t i;
270 	ret = _hx509_cert_get_eku(context, cert, &eku);
271 	if (ret)
272 	    return ret;
273 	for (i = 0; i < eku.len; i++) {
274 	    ret = hx509_ca_tbs_add_eku(context, tbs, &eku.val[i]);
275 	    if (ret) {
276 		free_ExtKeyUsage(&eku);
277 		return ret;
278 	    }
279 	}
280 	free_ExtKeyUsage(&eku);
281     }
282     return 0;
283 }
284 
285 /**
286  * Make the to-be-signed certificate object a CA certificate. If the
287  * pathLenConstraint is negative path length constraint is used.
288  *
289  * @param context A hx509 context.
290  * @param tbs object to be signed.
291  * @param pathLenConstraint path length constraint, negative, no
292  * constraint.
293  *
294  * @return An hx509 error code, see hx509_get_error_string().
295  *
296  * @ingroup hx509_ca
297  */
298 
299 int
300 hx509_ca_tbs_set_ca(hx509_context context,
301 		    hx509_ca_tbs tbs,
302 		    int pathLenConstraint)
303 {
304     tbs->flags.ca = 1;
305     tbs->pathLenConstraint = pathLenConstraint;
306     return 0;
307 }
308 
309 /**
310  * Make the to-be-signed certificate object a proxy certificate. If the
311  * pathLenConstraint is negative path length constraint is used.
312  *
313  * @param context A hx509 context.
314  * @param tbs object to be signed.
315  * @param pathLenConstraint path length constraint, negative, no
316  * constraint.
317  *
318  * @return An hx509 error code, see hx509_get_error_string().
319  *
320  * @ingroup hx509_ca
321  */
322 
323 int
324 hx509_ca_tbs_set_proxy(hx509_context context,
325 		       hx509_ca_tbs tbs,
326 		       int pathLenConstraint)
327 {
328     tbs->flags.proxy = 1;
329     tbs->pathLenConstraint = pathLenConstraint;
330     return 0;
331 }
332 
333 
334 /**
335  * Make the to-be-signed certificate object a windows domain controller certificate.
336  *
337  * @param context A hx509 context.
338  * @param tbs object to be signed.
339  *
340  * @return An hx509 error code, see hx509_get_error_string().
341  *
342  * @ingroup hx509_ca
343  */
344 
345 int
346 hx509_ca_tbs_set_domaincontroller(hx509_context context,
347 				  hx509_ca_tbs tbs)
348 {
349     tbs->flags.domaincontroller = 1;
350     return 0;
351 }
352 
353 /**
354  * Set the subject public key info (SPKI) in the to-be-signed certificate
355  * object. SPKI is the public key and key related parameters in the
356  * certificate.
357  *
358  * @param context A hx509 context.
359  * @param tbs object to be signed.
360  * @param spki subject public key info to use for the to-be-signed certificate object.
361  *
362  * @return An hx509 error code, see hx509_get_error_string().
363  *
364  * @ingroup hx509_ca
365  */
366 
367 int
368 hx509_ca_tbs_set_spki(hx509_context context,
369 		      hx509_ca_tbs tbs,
370 		      const SubjectPublicKeyInfo *spki)
371 {
372     int ret;
373     free_SubjectPublicKeyInfo(&tbs->spki);
374     ret = copy_SubjectPublicKeyInfo(spki, &tbs->spki);
375     tbs->flags.key = !ret;
376     return ret;
377 }
378 
379 /**
380  * Set the serial number to use for to-be-signed certificate object.
381  *
382  * @param context A hx509 context.
383  * @param tbs object to be signed.
384  * @param serialNumber serial number to use for the to-be-signed
385  * certificate object.
386  *
387  * @return An hx509 error code, see hx509_get_error_string().
388  *
389  * @ingroup hx509_ca
390  */
391 
392 int
393 hx509_ca_tbs_set_serialnumber(hx509_context context,
394 			      hx509_ca_tbs tbs,
395 			      const heim_integer *serialNumber)
396 {
397     int ret;
398     der_free_heim_integer(&tbs->serial);
399     ret = der_copy_heim_integer(serialNumber, &tbs->serial);
400     tbs->flags.serial = !ret;
401     return ret;
402 }
403 
404 /**
405  * An an extended key usage to the to-be-signed certificate object.
406  * Duplicates will detected and not added.
407  *
408  * @param context A hx509 context.
409  * @param tbs object to be signed.
410  * @param oid extended key usage to add.
411  *
412  * @return An hx509 error code, see hx509_get_error_string().
413  *
414  * @ingroup hx509_ca
415  */
416 
417 int
418 hx509_ca_tbs_add_eku(hx509_context context,
419 		     hx509_ca_tbs tbs,
420 		     const heim_oid *oid)
421 {
422     void *ptr;
423     int ret;
424     unsigned i;
425 
426     /* search for duplicates */
427     for (i = 0; i < tbs->eku.len; i++) {
428 	if (der_heim_oid_cmp(oid, &tbs->eku.val[i]) == 0)
429 	    return 0;
430     }
431 
432     ptr = realloc(tbs->eku.val, sizeof(tbs->eku.val[0]) * (tbs->eku.len + 1));
433     if (ptr == NULL) {
434 	hx509_set_error_string(context, 0, ENOMEM, "out of memory");
435 	return ENOMEM;
436     }
437     tbs->eku.val = ptr;
438     ret = der_copy_oid(oid, &tbs->eku.val[tbs->eku.len]);
439     if (ret) {
440 	hx509_set_error_string(context, 0, ret, "out of memory");
441 	return ret;
442     }
443     tbs->eku.len += 1;
444     return 0;
445 }
446 
447 /**
448  * Add CRL distribution point URI to the to-be-signed certificate
449  * object.
450  *
451  * @param context A hx509 context.
452  * @param tbs object to be signed.
453  * @param uri uri to the CRL.
454  * @param issuername name of the issuer.
455  *
456  * @return An hx509 error code, see hx509_get_error_string().
457  *
458  * @ingroup hx509_ca
459  */
460 
461 int
462 hx509_ca_tbs_add_crl_dp_uri(hx509_context context,
463 			    hx509_ca_tbs tbs,
464 			    const char *uri,
465 			    hx509_name issuername)
466 {
467     DistributionPoint dp;
468     int ret;
469 
470     memset(&dp, 0, sizeof(dp));
471 
472     dp.distributionPoint = ecalloc(1, sizeof(*dp.distributionPoint));
473 
474     {
475 	DistributionPointName name;
476 	GeneralName gn;
477 	size_t size;
478 
479 	name.element = choice_DistributionPointName_fullName;
480 	name.u.fullName.len = 1;
481 	name.u.fullName.val = &gn;
482 
483 	gn.element = choice_GeneralName_uniformResourceIdentifier;
484 	gn.u.uniformResourceIdentifier.data = rk_UNCONST(uri);
485 	gn.u.uniformResourceIdentifier.length = strlen(uri);
486 
487 	ASN1_MALLOC_ENCODE(DistributionPointName,
488 			   dp.distributionPoint->data,
489 			   dp.distributionPoint->length,
490 			   &name, &size, ret);
491 	if (ret) {
492 	    hx509_set_error_string(context, 0, ret,
493 				   "Failed to encoded DistributionPointName");
494 	    goto out;
495 	}
496 	if (dp.distributionPoint->length != size)
497 	    _hx509_abort("internal ASN.1 encoder error");
498     }
499 
500     if (issuername) {
501 #if 1
502 	/**
503 	 * issuername not supported
504 	 */
505 	hx509_set_error_string(context, 0, EINVAL,
506 			       "CRLDistributionPoints.name.issuername not yet supported");
507 	return EINVAL;
508 #else
509 	GeneralNames *crlissuer;
510 	GeneralName gn;
511 	Name n;
512 
513 	crlissuer = calloc(1, sizeof(*crlissuer));
514 	if (crlissuer == NULL) {
515 	    return ENOMEM;
516 	}
517 	memset(&gn, 0, sizeof(gn));
518 
519 	gn.element = choice_GeneralName_directoryName;
520 	ret = hx509_name_to_Name(issuername, &n);
521 	if (ret) {
522 	    hx509_set_error_string(context, 0, ret, "out of memory");
523 	    goto out;
524 	}
525 
526 	gn.u.directoryName.element = n.element;
527 	gn.u.directoryName.u.rdnSequence = n.u.rdnSequence;
528 
529 	ret = add_GeneralNames(&crlissuer, &gn);
530 	free_Name(&n);
531 	if (ret) {
532 	    hx509_set_error_string(context, 0, ret, "out of memory");
533 	    goto out;
534 	}
535 
536 	dp.cRLIssuer = &crlissuer;
537 #endif
538     }
539 
540     ret = add_CRLDistributionPoints(&tbs->crldp, &dp);
541     if (ret) {
542 	hx509_set_error_string(context, 0, ret, "out of memory");
543 	goto out;
544     }
545 
546 out:
547     free_DistributionPoint(&dp);
548 
549     return ret;
550 }
551 
552 /**
553  * Add Subject Alternative Name otherName to the to-be-signed
554  * certificate object.
555  *
556  * @param context A hx509 context.
557  * @param tbs object to be signed.
558  * @param oid the oid of the OtherName.
559  * @param os data in the other name.
560  *
561  * @return An hx509 error code, see hx509_get_error_string().
562  *
563  * @ingroup hx509_ca
564  */
565 
566 int
567 hx509_ca_tbs_add_san_otherName(hx509_context context,
568 			       hx509_ca_tbs tbs,
569 			       const heim_oid *oid,
570 			       const heim_octet_string *os)
571 {
572     GeneralName gn;
573 
574     memset(&gn, 0, sizeof(gn));
575     gn.element = choice_GeneralName_otherName;
576     gn.u.otherName.type_id = *oid;
577     gn.u.otherName.value = *os;
578 
579     return add_GeneralNames(&tbs->san, &gn);
580 }
581 
582 /**
583  * Add Kerberos Subject Alternative Name to the to-be-signed
584  * certificate object. The principal string is a UTF8 string.
585  *
586  * @param context A hx509 context.
587  * @param tbs object to be signed.
588  * @param principal Kerberos principal to add to the certificate.
589  *
590  * @return An hx509 error code, see hx509_get_error_string().
591  *
592  * @ingroup hx509_ca
593  */
594 
595 int
596 hx509_ca_tbs_add_san_pkinit(hx509_context context,
597 			    hx509_ca_tbs tbs,
598 			    const char *principal)
599 {
600     heim_octet_string os;
601     KRB5PrincipalName p;
602     size_t size;
603     int ret;
604     char *s = NULL;
605 
606     memset(&p, 0, sizeof(p));
607 
608     /* parse principal */
609     {
610 	const char *str;
611 	char *q;
612 	int n;
613 
614 	/* count number of component */
615 	n = 1;
616 	for(str = principal; *str != '\0' && *str != '@'; str++){
617 	    if(*str=='\\'){
618 		if(str[1] == '\0' || str[1] == '@') {
619 		    ret = HX509_PARSING_NAME_FAILED;
620 		    hx509_set_error_string(context, 0, ret,
621 					   "trailing \\ in principal name");
622 		    goto out;
623 		}
624 		str++;
625 	    } else if(*str == '/')
626 		n++;
627 	}
628 	p.principalName.name_string.val =
629 	    calloc(n, sizeof(*p.principalName.name_string.val));
630 	if (p.principalName.name_string.val == NULL) {
631 	    ret = ENOMEM;
632 	    hx509_set_error_string(context, 0, ret, "malloc: out of memory");
633 	    goto out;
634 	}
635 	p.principalName.name_string.len = n;
636 
637 	p.principalName.name_type = KRB5_NT_PRINCIPAL;
638 	q = s = strdup(principal);
639 	if (q == NULL) {
640 	    ret = ENOMEM;
641 	    hx509_set_error_string(context, 0, ret, "malloc: out of memory");
642 	    goto out;
643 	}
644 	p.realm = strrchr(q, '@');
645 	if (p.realm == NULL) {
646 	    ret = HX509_PARSING_NAME_FAILED;
647 	    hx509_set_error_string(context, 0, ret, "Missing @ in principal");
648 	    goto out;
649 	};
650 	*p.realm++ = '\0';
651 
652 	n = 0;
653 	while (q) {
654 	    p.principalName.name_string.val[n++] = q;
655 	    q = strchr(q, '/');
656 	    if (q)
657 		*q++ = '\0';
658 	}
659     }
660 
661     ASN1_MALLOC_ENCODE(KRB5PrincipalName, os.data, os.length, &p, &size, ret);
662     if (ret) {
663 	hx509_set_error_string(context, 0, ret, "Out of memory");
664 	goto out;
665     }
666     if (size != os.length)
667 	_hx509_abort("internal ASN.1 encoder error");
668 
669     ret = hx509_ca_tbs_add_san_otherName(context,
670 					 tbs,
671 					 &asn1_oid_id_pkinit_san,
672 					 &os);
673     free(os.data);
674 out:
675     if (p.principalName.name_string.val)
676 	free (p.principalName.name_string.val);
677     if (s)
678 	free(s);
679     return ret;
680 }
681 
682 /*
683  *
684  */
685 
686 static int
687 add_utf8_san(hx509_context context,
688 	     hx509_ca_tbs tbs,
689 	     const heim_oid *oid,
690 	     const char *string)
691 {
692     const PKIXXmppAddr ustring = (const PKIXXmppAddr)(intptr_t)string;
693     heim_octet_string os;
694     size_t size;
695     int ret;
696 
697     os.length = 0;
698     os.data = NULL;
699 
700     ASN1_MALLOC_ENCODE(PKIXXmppAddr, os.data, os.length, &ustring, &size, ret);
701     if (ret) {
702 	hx509_set_error_string(context, 0, ret, "Out of memory");
703 	goto out;
704     }
705     if (size != os.length)
706 	_hx509_abort("internal ASN.1 encoder error");
707 
708     ret = hx509_ca_tbs_add_san_otherName(context,
709 					 tbs,
710 					 oid,
711 					 &os);
712     free(os.data);
713 out:
714     return ret;
715 }
716 
717 /**
718  * Add Microsoft UPN Subject Alternative Name to the to-be-signed
719  * certificate object. The principal string is a UTF8 string.
720  *
721  * @param context A hx509 context.
722  * @param tbs object to be signed.
723  * @param principal Microsoft UPN string.
724  *
725  * @return An hx509 error code, see hx509_get_error_string().
726  *
727  * @ingroup hx509_ca
728  */
729 
730 int
731 hx509_ca_tbs_add_san_ms_upn(hx509_context context,
732 			    hx509_ca_tbs tbs,
733 			    const char *principal)
734 {
735     return add_utf8_san(context, tbs, &asn1_oid_id_pkinit_ms_san, principal);
736 }
737 
738 /**
739  * Add a Jabber/XMPP jid Subject Alternative Name to the to-be-signed
740  * certificate object. The jid is an UTF8 string.
741  *
742  * @param context A hx509 context.
743  * @param tbs object to be signed.
744  * @param jid string of an a jabber id in UTF8.
745  *
746  * @return An hx509 error code, see hx509_get_error_string().
747  *
748  * @ingroup hx509_ca
749  */
750 
751 int
752 hx509_ca_tbs_add_san_jid(hx509_context context,
753 			 hx509_ca_tbs tbs,
754 			 const char *jid)
755 {
756     return add_utf8_san(context, tbs, &asn1_oid_id_pkix_on_xmppAddr, jid);
757 }
758 
759 
760 /**
761  * Add a Subject Alternative Name hostname to to-be-signed certificate
762  * object. A domain match starts with ., an exact match does not.
763  *
764  * Example of a an domain match: .domain.se matches the hostname
765  * host.domain.se.
766  *
767  * @param context A hx509 context.
768  * @param tbs object to be signed.
769  * @param dnsname a hostame.
770  *
771  * @return An hx509 error code, see hx509_get_error_string().
772  *
773  * @ingroup hx509_ca
774  */
775 
776 int
777 hx509_ca_tbs_add_san_hostname(hx509_context context,
778 			      hx509_ca_tbs tbs,
779 			      const char *dnsname)
780 {
781     GeneralName gn;
782 
783     memset(&gn, 0, sizeof(gn));
784     gn.element = choice_GeneralName_dNSName;
785     gn.u.dNSName.data = rk_UNCONST(dnsname);
786     gn.u.dNSName.length = strlen(dnsname);
787 
788     return add_GeneralNames(&tbs->san, &gn);
789 }
790 
791 /**
792  * Add a Subject Alternative Name rfc822 (email address) to
793  * to-be-signed certificate object.
794  *
795  * @param context A hx509 context.
796  * @param tbs object to be signed.
797  * @param rfc822Name a string to a email address.
798  *
799  * @return An hx509 error code, see hx509_get_error_string().
800  *
801  * @ingroup hx509_ca
802  */
803 
804 int
805 hx509_ca_tbs_add_san_rfc822name(hx509_context context,
806 				hx509_ca_tbs tbs,
807 				const char *rfc822Name)
808 {
809     GeneralName gn;
810 
811     memset(&gn, 0, sizeof(gn));
812     gn.element = choice_GeneralName_rfc822Name;
813     gn.u.rfc822Name.data = rk_UNCONST(rfc822Name);
814     gn.u.rfc822Name.length = strlen(rfc822Name);
815 
816     return add_GeneralNames(&tbs->san, &gn);
817 }
818 
819 /**
820  * Set the subject name of a to-be-signed certificate object.
821  *
822  * @param context A hx509 context.
823  * @param tbs object to be signed.
824  * @param subject the name to set a subject.
825  *
826  * @return An hx509 error code, see hx509_get_error_string().
827  *
828  * @ingroup hx509_ca
829  */
830 
831 int
832 hx509_ca_tbs_set_subject(hx509_context context,
833 			 hx509_ca_tbs tbs,
834 			 hx509_name subject)
835 {
836     if (tbs->subject)
837 	hx509_name_free(&tbs->subject);
838     return hx509_name_copy(context, subject, &tbs->subject);
839 }
840 
841 /**
842  * Set the issuerUniqueID and subjectUniqueID
843  *
844  * These are only supposed to be used considered with version 2
845  * certificates, replaced by the two extensions SubjectKeyIdentifier
846  * and IssuerKeyIdentifier. This function is to allow application
847  * using legacy protocol to issue them.
848  *
849  * @param context A hx509 context.
850  * @param tbs object to be signed.
851  * @param issuerUniqueID to be set
852  * @param subjectUniqueID to be set
853  *
854  * @return An hx509 error code, see hx509_get_error_string().
855  *
856  * @ingroup hx509_ca
857  */
858 
859 int
860 hx509_ca_tbs_set_unique(hx509_context context,
861 			hx509_ca_tbs tbs,
862 			const heim_bit_string *subjectUniqueID,
863 			const heim_bit_string *issuerUniqueID)
864 {
865     int ret;
866 
867     der_free_bit_string(&tbs->subjectUniqueID);
868     der_free_bit_string(&tbs->issuerUniqueID);
869 
870     if (subjectUniqueID) {
871 	ret = der_copy_bit_string(subjectUniqueID, &tbs->subjectUniqueID);
872 	if (ret)
873 	    return ret;
874     }
875 
876     if (issuerUniqueID) {
877 	ret = der_copy_bit_string(issuerUniqueID, &tbs->issuerUniqueID);
878 	if (ret)
879 	    return ret;
880     }
881 
882     return 0;
883 }
884 
885 /**
886  * Expand the the subject name in the to-be-signed certificate object
887  * using hx509_name_expand().
888  *
889  * @param context A hx509 context.
890  * @param tbs object to be signed.
891  * @param env enviroment variable to expand variables in the subject
892  * name, see hx509_env_init().
893  *
894  * @return An hx509 error code, see hx509_get_error_string().
895  *
896  * @ingroup hx509_ca
897  */
898 
899 int
900 hx509_ca_tbs_subject_expand(hx509_context context,
901 			    hx509_ca_tbs tbs,
902 			    hx509_env env)
903 {
904     return hx509_name_expand(context, tbs->subject, env);
905 }
906 
907 /*
908  *
909  */
910 
911 static int
912 add_extension(hx509_context context,
913 	      TBSCertificate *tbsc,
914 	      int critical_flag,
915 	      const heim_oid *oid,
916 	      const heim_octet_string *data)
917 {
918     Extension ext;
919     int ret;
920 
921     memset(&ext, 0, sizeof(ext));
922 
923     if (critical_flag) {
924 	ext.critical = malloc(sizeof(*ext.critical));
925 	if (ext.critical == NULL) {
926 	    ret = ENOMEM;
927 	    hx509_set_error_string(context, 0, ret, "Out of memory");
928 	    goto out;
929 	}
930 	*ext.critical = TRUE;
931     }
932 
933     ret = der_copy_oid(oid, &ext.extnID);
934     if (ret) {
935 	hx509_set_error_string(context, 0, ret, "Out of memory");
936 	goto out;
937     }
938     ret = der_copy_octet_string(data, &ext.extnValue);
939     if (ret) {
940 	hx509_set_error_string(context, 0, ret, "Out of memory");
941 	goto out;
942     }
943     ret = add_Extensions(tbsc->extensions, &ext);
944     if (ret) {
945 	hx509_set_error_string(context, 0, ret, "Out of memory");
946 	goto out;
947     }
948 out:
949     free_Extension(&ext);
950     return ret;
951 }
952 
953 static int
954 build_proxy_prefix(hx509_context context, const Name *issuer, Name *subject)
955 {
956     char *tstr;
957     time_t t;
958     int ret;
959 
960     ret = copy_Name(issuer, subject);
961     if (ret) {
962 	hx509_set_error_string(context, 0, ret,
963 			       "Failed to copy subject name");
964 	return ret;
965     }
966 
967     t = time(NULL);
968     asprintf(&tstr, "ts-%lu", (unsigned long)t);
969     if (tstr == NULL) {
970 	hx509_set_error_string(context, 0, ENOMEM,
971 			       "Failed to copy subject name");
972 	return ENOMEM;
973     }
974     /* prefix with CN=<ts>,...*/
975     ret = _hx509_name_modify(context, subject, 1, &asn1_oid_id_at_commonName, tstr);
976     free(tstr);
977     if (ret)
978 	free_Name(subject);
979     return ret;
980 }
981 
982 static int
983 ca_sign(hx509_context context,
984 	hx509_ca_tbs tbs,
985 	hx509_private_key signer,
986 	const AuthorityKeyIdentifier *ai,
987 	const Name *issuername,
988 	hx509_cert *certificate)
989 {
990     heim_octet_string data;
991     Certificate c;
992     TBSCertificate *tbsc;
993     size_t size;
994     int ret;
995     const AlgorithmIdentifier *sigalg;
996     time_t notBefore;
997     time_t notAfter;
998     unsigned key_usage;
999 
1000     sigalg = _hx509_crypto_default_sig_alg;
1001 
1002     memset(&c, 0, sizeof(c));
1003 
1004     /*
1005      * Default values are: Valid since 24h ago, valid one year into
1006      * the future, KeyUsage digitalSignature and keyEncipherment set,
1007      * and keyCertSign for CA certificates.
1008      */
1009     notBefore = tbs->notBefore;
1010     if (notBefore == 0)
1011 	notBefore = time(NULL) - 3600 * 24;
1012     notAfter = tbs->notAfter;
1013     if (notAfter == 0)
1014 	notAfter = time(NULL) + 3600 * 24 * 365;
1015 
1016     key_usage = tbs->key_usage;
1017     if (key_usage == 0) {
1018 	KeyUsage ku;
1019 	memset(&ku, 0, sizeof(ku));
1020 	ku.digitalSignature = 1;
1021 	ku.keyEncipherment = 1;
1022 	key_usage = KeyUsage2int(ku);
1023     }
1024 
1025     if (tbs->flags.ca) {
1026 	KeyUsage ku;
1027 	memset(&ku, 0, sizeof(ku));
1028 	ku.keyCertSign = 1;
1029 	ku.cRLSign = 1;
1030 	key_usage |= KeyUsage2int(ku);
1031     }
1032 
1033     /*
1034      *
1035      */
1036 
1037     tbsc = &c.tbsCertificate;
1038 
1039     if (tbs->flags.key == 0) {
1040 	ret = EINVAL;
1041 	hx509_set_error_string(context, 0, ret, "No public key set");
1042 	return ret;
1043     }
1044     /*
1045      * Don't put restrictions on proxy certificate's subject name, it
1046      * will be generated below.
1047      */
1048     if (!tbs->flags.proxy) {
1049 	if (tbs->subject == NULL) {
1050 	    hx509_set_error_string(context, 0, EINVAL, "No subject name set");
1051 	    return EINVAL;
1052 	}
1053 	if (hx509_name_is_null_p(tbs->subject) && tbs->san.len == 0) {
1054 	    hx509_set_error_string(context, 0, EINVAL,
1055 				   "NULL subject and no SubjectAltNames");
1056 	    return EINVAL;
1057 	}
1058     }
1059     if (tbs->flags.ca && tbs->flags.proxy) {
1060 	hx509_set_error_string(context, 0, EINVAL, "Can't be proxy and CA "
1061 			       "at the same time");
1062 	return EINVAL;
1063     }
1064     if (tbs->flags.proxy) {
1065 	if (tbs->san.len > 0) {
1066 	    hx509_set_error_string(context, 0, EINVAL,
1067 				   "Proxy certificate is not allowed "
1068 				   "to have SubjectAltNames");
1069 	    return EINVAL;
1070 	}
1071     }
1072 
1073     /* version         [0]  Version OPTIONAL, -- EXPLICIT nnn DEFAULT 1, */
1074     tbsc->version = calloc(1, sizeof(*tbsc->version));
1075     if (tbsc->version == NULL) {
1076 	ret = ENOMEM;
1077 	hx509_set_error_string(context, 0, ret, "Out of memory");
1078 	goto out;
1079     }
1080     *tbsc->version = rfc3280_version_3;
1081     /* serialNumber         CertificateSerialNumber, */
1082     if (tbs->flags.serial) {
1083 	ret = der_copy_heim_integer(&tbs->serial, &tbsc->serialNumber);
1084 	if (ret) {
1085 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1086 	    goto out;
1087 	}
1088     } else {
1089 	tbsc->serialNumber.length = 20;
1090 	tbsc->serialNumber.data = malloc(tbsc->serialNumber.length);
1091 	if (tbsc->serialNumber.data == NULL){
1092 	    ret = ENOMEM;
1093 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1094 	    goto out;
1095 	}
1096 	/* XXX diffrent */
1097 	RAND_bytes(tbsc->serialNumber.data, tbsc->serialNumber.length);
1098 	((unsigned char *)tbsc->serialNumber.data)[0] &= 0x7f;
1099     }
1100     /* signature            AlgorithmIdentifier, */
1101     ret = copy_AlgorithmIdentifier(sigalg, &tbsc->signature);
1102     if (ret) {
1103 	hx509_set_error_string(context, 0, ret, "Failed to copy sigature alg");
1104 	goto out;
1105     }
1106     /* issuer               Name, */
1107     if (issuername)
1108 	ret = copy_Name(issuername, &tbsc->issuer);
1109     else
1110 	ret = hx509_name_to_Name(tbs->subject, &tbsc->issuer);
1111     if (ret) {
1112 	hx509_set_error_string(context, 0, ret, "Failed to copy issuer name");
1113 	goto out;
1114     }
1115     /* validity             Validity, */
1116     tbsc->validity.notBefore.element = choice_Time_generalTime;
1117     tbsc->validity.notBefore.u.generalTime = notBefore;
1118     tbsc->validity.notAfter.element = choice_Time_generalTime;
1119     tbsc->validity.notAfter.u.generalTime = notAfter;
1120     /* subject              Name, */
1121     if (tbs->flags.proxy) {
1122 	ret = build_proxy_prefix(context, &tbsc->issuer, &tbsc->subject);
1123 	if (ret)
1124 	    goto out;
1125     } else {
1126 	ret = hx509_name_to_Name(tbs->subject, &tbsc->subject);
1127 	if (ret) {
1128 	    hx509_set_error_string(context, 0, ret,
1129 				   "Failed to copy subject name");
1130 	    goto out;
1131 	}
1132     }
1133     /* subjectPublicKeyInfo SubjectPublicKeyInfo, */
1134     ret = copy_SubjectPublicKeyInfo(&tbs->spki, &tbsc->subjectPublicKeyInfo);
1135     if (ret) {
1136 	hx509_set_error_string(context, 0, ret, "Failed to copy spki");
1137 	goto out;
1138     }
1139     /* issuerUniqueID  [1]  IMPLICIT BIT STRING OPTIONAL */
1140     if (tbs->issuerUniqueID.length) {
1141 	tbsc->issuerUniqueID = calloc(1, sizeof(*tbsc->issuerUniqueID));
1142 	if (tbsc->issuerUniqueID == NULL) {
1143 	    ret = ENOMEM;
1144 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1145 	    goto out;
1146 	}
1147 	ret = der_copy_bit_string(&tbs->issuerUniqueID, tbsc->issuerUniqueID);
1148 	if (ret) {
1149 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1150 	    goto out;
1151 	}
1152     }
1153     /* subjectUniqueID [2]  IMPLICIT BIT STRING OPTIONAL */
1154     if (tbs->subjectUniqueID.length) {
1155 	tbsc->subjectUniqueID = calloc(1, sizeof(*tbsc->subjectUniqueID));
1156 	if (tbsc->subjectUniqueID == NULL) {
1157 	    ret = ENOMEM;
1158 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1159 	    goto out;
1160 	}
1161 
1162 	ret = der_copy_bit_string(&tbs->subjectUniqueID, tbsc->subjectUniqueID);
1163 	if (ret) {
1164 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1165 	    goto out;
1166 	}
1167     }
1168 
1169     /* extensions      [3]  EXPLICIT Extensions OPTIONAL */
1170     tbsc->extensions = calloc(1, sizeof(*tbsc->extensions));
1171     if (tbsc->extensions == NULL) {
1172 	ret = ENOMEM;
1173 	hx509_set_error_string(context, 0, ret, "Out of memory");
1174 	goto out;
1175     }
1176 
1177     /* Add the text BMP string Domaincontroller to the cert */
1178     if (tbs->flags.domaincontroller) {
1179 	data.data = rk_UNCONST("\x1e\x20\x00\x44\x00\x6f\x00\x6d"
1180 			       "\x00\x61\x00\x69\x00\x6e\x00\x43"
1181 			       "\x00\x6f\x00\x6e\x00\x74\x00\x72"
1182 			       "\x00\x6f\x00\x6c\x00\x6c\x00\x65"
1183 			       "\x00\x72");
1184 	data.length = 34;
1185 
1186 	ret = add_extension(context, tbsc, 0,
1187 			    &asn1_oid_id_ms_cert_enroll_domaincontroller,
1188 			    &data);
1189 	if (ret)
1190 	    goto out;
1191     }
1192 
1193     /* add KeyUsage */
1194     {
1195 	KeyUsage ku;
1196 
1197 	ku = int2KeyUsage(key_usage);
1198 	ASN1_MALLOC_ENCODE(KeyUsage, data.data, data.length, &ku, &size, ret);
1199 	if (ret) {
1200 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1201 	    goto out;
1202 	}
1203 	if (size != data.length)
1204 	    _hx509_abort("internal ASN.1 encoder error");
1205 	ret = add_extension(context, tbsc, 1,
1206 			    &asn1_oid_id_x509_ce_keyUsage, &data);
1207 	free(data.data);
1208 	if (ret)
1209 	    goto out;
1210     }
1211 
1212     /* add ExtendedKeyUsage */
1213     if (tbs->eku.len > 0) {
1214 	ASN1_MALLOC_ENCODE(ExtKeyUsage, data.data, data.length,
1215 			   &tbs->eku, &size, ret);
1216 	if (ret) {
1217 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1218 	    goto out;
1219 	}
1220 	if (size != data.length)
1221 	    _hx509_abort("internal ASN.1 encoder error");
1222 	ret = add_extension(context, tbsc, 0,
1223 			    &asn1_oid_id_x509_ce_extKeyUsage, &data);
1224 	free(data.data);
1225 	if (ret)
1226 	    goto out;
1227     }
1228 
1229     /* add Subject Alternative Name */
1230     if (tbs->san.len > 0) {
1231 	ASN1_MALLOC_ENCODE(GeneralNames, data.data, data.length,
1232 			   &tbs->san, &size, ret);
1233 	if (ret) {
1234 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1235 	    goto out;
1236 	}
1237 	if (size != data.length)
1238 	    _hx509_abort("internal ASN.1 encoder error");
1239 	ret = add_extension(context, tbsc, 0,
1240 			    &asn1_oid_id_x509_ce_subjectAltName,
1241 			    &data);
1242 	free(data.data);
1243 	if (ret)
1244 	    goto out;
1245     }
1246 
1247     /* Add Authority Key Identifier */
1248     if (ai) {
1249 	ASN1_MALLOC_ENCODE(AuthorityKeyIdentifier, data.data, data.length,
1250 			   ai, &size, ret);
1251 	if (ret) {
1252 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1253 	    goto out;
1254 	}
1255 	if (size != data.length)
1256 	    _hx509_abort("internal ASN.1 encoder error");
1257 	ret = add_extension(context, tbsc, 0,
1258 			    &asn1_oid_id_x509_ce_authorityKeyIdentifier,
1259 			    &data);
1260 	free(data.data);
1261 	if (ret)
1262 	    goto out;
1263     }
1264 
1265     /* Add Subject Key Identifier */
1266     {
1267 	SubjectKeyIdentifier si;
1268 	unsigned char hash[SHA_DIGEST_LENGTH];
1269 
1270 	{
1271 	    EVP_MD_CTX *ctx;
1272 
1273 	    ctx = EVP_MD_CTX_create();
1274 	    EVP_DigestInit_ex(ctx, EVP_sha1(), NULL);
1275 	    EVP_DigestUpdate(ctx, tbs->spki.subjectPublicKey.data,
1276 			     tbs->spki.subjectPublicKey.length / 8);
1277 	    EVP_DigestFinal_ex(ctx, hash, NULL);
1278 	    EVP_MD_CTX_destroy(ctx);
1279 	}
1280 
1281 	si.data = hash;
1282 	si.length = sizeof(hash);
1283 
1284 	ASN1_MALLOC_ENCODE(SubjectKeyIdentifier, data.data, data.length,
1285 			   &si, &size, ret);
1286 	if (ret) {
1287 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1288 	    goto out;
1289 	}
1290 	if (size != data.length)
1291 	    _hx509_abort("internal ASN.1 encoder error");
1292 	ret = add_extension(context, tbsc, 0,
1293 			    &asn1_oid_id_x509_ce_subjectKeyIdentifier,
1294 			    &data);
1295 	free(data.data);
1296 	if (ret)
1297 	    goto out;
1298     }
1299 
1300     /* Add BasicConstraints */
1301     {
1302 	BasicConstraints bc;
1303 	int aCA = 1;
1304 	unsigned int path;
1305 
1306 	memset(&bc, 0, sizeof(bc));
1307 
1308 	if (tbs->flags.ca) {
1309 	    bc.cA = &aCA;
1310 	    if (tbs->pathLenConstraint >= 0) {
1311 		path = tbs->pathLenConstraint;
1312 		bc.pathLenConstraint = &path;
1313 	    }
1314 	}
1315 
1316 	ASN1_MALLOC_ENCODE(BasicConstraints, data.data, data.length,
1317 			   &bc, &size, ret);
1318 	if (ret) {
1319 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1320 	    goto out;
1321 	}
1322 	if (size != data.length)
1323 	    _hx509_abort("internal ASN.1 encoder error");
1324 	/* Critical if this is a CA */
1325 	ret = add_extension(context, tbsc, tbs->flags.ca,
1326 			    &asn1_oid_id_x509_ce_basicConstraints,
1327 			    &data);
1328 	free(data.data);
1329 	if (ret)
1330 	    goto out;
1331     }
1332 
1333     /* add Proxy */
1334     if (tbs->flags.proxy) {
1335 	ProxyCertInfo info;
1336 
1337 	memset(&info, 0, sizeof(info));
1338 
1339 	if (tbs->pathLenConstraint >= 0) {
1340 	    info.pCPathLenConstraint =
1341 		malloc(sizeof(*info.pCPathLenConstraint));
1342 	    if (info.pCPathLenConstraint == NULL) {
1343 		ret = ENOMEM;
1344 		hx509_set_error_string(context, 0, ret, "Out of memory");
1345 		goto out;
1346 	    }
1347 	    *info.pCPathLenConstraint = tbs->pathLenConstraint;
1348 	}
1349 
1350 	ret = der_copy_oid(&asn1_oid_id_pkix_ppl_inheritAll,
1351 			   &info.proxyPolicy.policyLanguage);
1352 	if (ret) {
1353 	    free_ProxyCertInfo(&info);
1354 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1355 	    goto out;
1356 	}
1357 
1358 	ASN1_MALLOC_ENCODE(ProxyCertInfo, data.data, data.length,
1359 			   &info, &size, ret);
1360 	free_ProxyCertInfo(&info);
1361 	if (ret) {
1362 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1363 	    goto out;
1364 	}
1365 	if (size != data.length)
1366 	    _hx509_abort("internal ASN.1 encoder error");
1367 	ret = add_extension(context, tbsc, 0,
1368 			    &asn1_oid_id_pkix_pe_proxyCertInfo,
1369 			    &data);
1370 	free(data.data);
1371 	if (ret)
1372 	    goto out;
1373     }
1374 
1375     if (tbs->crldp.len) {
1376 
1377 	ASN1_MALLOC_ENCODE(CRLDistributionPoints, data.data, data.length,
1378 			   &tbs->crldp, &size, ret);
1379 	if (ret) {
1380 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1381 	    goto out;
1382 	}
1383 	if (size != data.length)
1384 	    _hx509_abort("internal ASN.1 encoder error");
1385 	ret = add_extension(context, tbsc, FALSE,
1386 			    &asn1_oid_id_x509_ce_cRLDistributionPoints,
1387 			    &data);
1388 	free(data.data);
1389 	if (ret)
1390 	    goto out;
1391     }
1392 
1393     ASN1_MALLOC_ENCODE(TBSCertificate, data.data, data.length,tbsc, &size, ret);
1394     if (ret) {
1395 	hx509_set_error_string(context, 0, ret, "malloc out of memory");
1396 	goto out;
1397     }
1398     if (data.length != size)
1399 	_hx509_abort("internal ASN.1 encoder error");
1400 
1401     ret = _hx509_create_signature_bitstring(context,
1402 					    signer,
1403 					    sigalg,
1404 					    &data,
1405 					    &c.signatureAlgorithm,
1406 					    &c.signatureValue);
1407     free(data.data);
1408     if (ret)
1409 	goto out;
1410 
1411     ret = hx509_cert_init(context, &c, certificate);
1412     if (ret)
1413 	goto out;
1414 
1415     free_Certificate(&c);
1416 
1417     return 0;
1418 
1419 out:
1420     free_Certificate(&c);
1421     return ret;
1422 }
1423 
1424 static int
1425 get_AuthorityKeyIdentifier(hx509_context context,
1426 			   const Certificate *certificate,
1427 			   AuthorityKeyIdentifier *ai)
1428 {
1429     SubjectKeyIdentifier si;
1430     int ret;
1431 
1432     ret = _hx509_find_extension_subject_key_id(certificate, &si);
1433     if (ret == 0) {
1434 	ai->keyIdentifier = calloc(1, sizeof(*ai->keyIdentifier));
1435 	if (ai->keyIdentifier == NULL) {
1436 	    free_SubjectKeyIdentifier(&si);
1437 	    ret = ENOMEM;
1438 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1439 	    goto out;
1440 	}
1441 	ret = der_copy_octet_string(&si, ai->keyIdentifier);
1442 	free_SubjectKeyIdentifier(&si);
1443 	if (ret) {
1444 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1445 	    goto out;
1446 	}
1447     } else {
1448 	GeneralNames gns;
1449 	GeneralName gn;
1450 	Name name;
1451 
1452 	memset(&gn, 0, sizeof(gn));
1453 	memset(&gns, 0, sizeof(gns));
1454 	memset(&name, 0, sizeof(name));
1455 
1456 	ai->authorityCertIssuer =
1457 	    calloc(1, sizeof(*ai->authorityCertIssuer));
1458 	if (ai->authorityCertIssuer == NULL) {
1459 	    ret = ENOMEM;
1460 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1461 	    goto out;
1462 	}
1463 	ai->authorityCertSerialNumber =
1464 	    calloc(1, sizeof(*ai->authorityCertSerialNumber));
1465 	if (ai->authorityCertSerialNumber == NULL) {
1466 	    ret = ENOMEM;
1467 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1468 	    goto out;
1469 	}
1470 
1471 	/*
1472 	 * XXX unbreak when asn1 compiler handle IMPLICIT
1473 	 *
1474 	 * This is so horrible.
1475 	 */
1476 
1477 	ret = copy_Name(&certificate->tbsCertificate.subject, &name);
1478 	if (ret) {
1479 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1480 	    goto out;
1481 	}
1482 
1483 	memset(&gn, 0, sizeof(gn));
1484 	gn.element = choice_GeneralName_directoryName;
1485 	gn.u.directoryName.element =
1486 	    choice_GeneralName_directoryName_rdnSequence;
1487 	gn.u.directoryName.u.rdnSequence = name.u.rdnSequence;
1488 
1489 	ret = add_GeneralNames(&gns, &gn);
1490 	if (ret) {
1491 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1492 	    goto out;
1493 	}
1494 
1495 	ai->authorityCertIssuer->val = gns.val;
1496 	ai->authorityCertIssuer->len = gns.len;
1497 
1498 	ret = der_copy_heim_integer(&certificate->tbsCertificate.serialNumber,
1499 				    ai->authorityCertSerialNumber);
1500 	if (ai->authorityCertSerialNumber == NULL) {
1501 	    ret = ENOMEM;
1502 	    hx509_set_error_string(context, 0, ret, "Out of memory");
1503 	    goto out;
1504 	}
1505     }
1506 out:
1507     if (ret)
1508 	free_AuthorityKeyIdentifier(ai);
1509     return ret;
1510 }
1511 
1512 
1513 /**
1514  * Sign a to-be-signed certificate object with a issuer certificate.
1515  *
1516  * The caller needs to at least have called the following functions on the
1517  * to-be-signed certificate object:
1518  * - hx509_ca_tbs_init()
1519  * - hx509_ca_tbs_set_subject()
1520  * - hx509_ca_tbs_set_spki()
1521  *
1522  * When done the to-be-signed certificate object should be freed with
1523  * hx509_ca_tbs_free().
1524  *
1525  * When creating self-signed certificate use hx509_ca_sign_self() instead.
1526  *
1527  * @param context A hx509 context.
1528  * @param tbs object to be signed.
1529  * @param signer the CA certificate object to sign with (need private key).
1530  * @param certificate return cerificate, free with hx509_cert_free().
1531  *
1532  * @return An hx509 error code, see hx509_get_error_string().
1533  *
1534  * @ingroup hx509_ca
1535  */
1536 
1537 int
1538 hx509_ca_sign(hx509_context context,
1539 	      hx509_ca_tbs tbs,
1540 	      hx509_cert signer,
1541 	      hx509_cert *certificate)
1542 {
1543     const Certificate *signer_cert;
1544     AuthorityKeyIdentifier ai;
1545     int ret;
1546 
1547     memset(&ai, 0, sizeof(ai));
1548 
1549     signer_cert = _hx509_get_cert(signer);
1550 
1551     ret = get_AuthorityKeyIdentifier(context, signer_cert, &ai);
1552     if (ret)
1553 	goto out;
1554 
1555     ret = ca_sign(context,
1556 		  tbs,
1557 		  _hx509_cert_private_key(signer),
1558 		  &ai,
1559 		  &signer_cert->tbsCertificate.subject,
1560 		  certificate);
1561 
1562 out:
1563     free_AuthorityKeyIdentifier(&ai);
1564 
1565     return ret;
1566 }
1567 
1568 /**
1569  * Work just like hx509_ca_sign() but signs it-self.
1570  *
1571  * @param context A hx509 context.
1572  * @param tbs object to be signed.
1573  * @param signer private key to sign with.
1574  * @param certificate return cerificate, free with hx509_cert_free().
1575  *
1576  * @return An hx509 error code, see hx509_get_error_string().
1577  *
1578  * @ingroup hx509_ca
1579  */
1580 
1581 int
1582 hx509_ca_sign_self(hx509_context context,
1583 		   hx509_ca_tbs tbs,
1584 		   hx509_private_key signer,
1585 		   hx509_cert *certificate)
1586 {
1587     return ca_sign(context,
1588 		   tbs,
1589 		   signer,
1590 		   NULL,
1591 		   NULL,
1592 		   certificate);
1593 }
1594