[apple/security.git] / AppleX509CL / CertBuilder.cpp

/*
 * Copyright (c) 2000-2001 Apple Computer, Inc. All Rights Reserved.
 * 
 * The contents of this file constitute Original Code as defined in and are
 * subject to the Apple Public Source License Version 1.2 (the 'License').
 * You may not use this file except in compliance with the License. Please obtain
 * a copy of the License at http://www.apple.com/publicsource and read it before
 * using this file.
 * 
 * This Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS
 * OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, INCLUDING WITHOUT
 * LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
 * PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. Please see the License for the
 * specific language governing rights and limitations under the License.
 */


/*
 * CertBuilder.cpp - sublasses of various snacc-generated cert-related
 * classes. 
 *
 * Created 9/1/2000 by Doug Mitchell. 
 * Copyright (c) 2000 by Apple Computer. 
 */

#include "CertBuilder.h"
#include <Security/cssmerr.h>
#include <Security/utilities.h>
#include "cldebugging.h"

#define BUF_ENC_EXTRA   64

/*
 * Name is a complex structure which boils down to an arbitrarily
 * large array of (usually) printable names. We facilitate the
 * construction of the array, one AttributeTypeAndDistinguishedValue
 * per RelativeDistinguishedName. This is the format commonly used
 * in the real world, though it's legal to have multiple ATDVs
 * per RDN - we just don't do it here. 
 *
 * Typically the object manipulated here is inserted into a 
 * CertificateToSign object, as issuer or subject. 
 */
void NameBuilder::addATDV(  
                const AsnOid &type,             // id_at_commonName, etc. from sm_x501if
                const char *value,              // the bytes
                size_t valueLen,
                DirectoryString::ChoiceIdEnum stringType,       
                                                                // printableStringCid, etc.
                                                                //   from sm_x520sa
                bool primaryDistinguished)
{
        /* cook up the RDN sequence first time thru */
        if(rDNSequence == NULL) {
                rDNSequence = new RDNSequence;
                choiceId = rDNSequenceCid;              // no others available
        }
        
        /* one RelativeDistinguishedName and one ATDV */
        RelativeDistinguishedName *rdn = rDNSequence->Append();
        AttributeTypeAndDistinguishedValue *atdv = rdn->Append();
        
        /* 
         * fill in the ATDV
         * FIXME - AttributeTypeAndDistinguishedValueSetOf??? What's that?
         */
        atdv->type = type;
        if(!primaryDistinguished) {
                /* default is true, only encode if not default */
                atdv->primaryDistinguished = new AsnBool(primaryDistinguished);
        }
        
        /* DirectoryString from sm_x520sa */
        DirectoryString dirStr;
        dirStr.choiceId = stringType;
        switch(stringType) {
                case DirectoryString::teletexStringCid:
                        dirStr.teletexString = new TeletexString(value, valueLen);
                        break;
                case DirectoryString::printableStringCid:
                        dirStr.printableString = new PrintableString(value, valueLen);
                        break;
                case DirectoryString::universalStringCid:
                        dirStr.universalString = new UniversalString(value, valueLen);
                        break;
                case DirectoryString::bmpStringCid:
                        dirStr.bmpString = new BMPString(value, valueLen);
                        break;
                case DirectoryString::utf8StringCid:
                        dirStr.utf8String = new UTF8String(value, valueLen);
                        break;
        }

        /* 
         * As far as I can tell, atdv->value.value is a CSM_Buffer containing 
         * the encoded dirStr. First malloc a dest buffer...
         */
        size_t bufLen = valueLen + BUF_ENC_EXTRA;
        char *buf = (char *)calloc(1, bufLen);
        if(buf == NULL) {
                CssmError::throwMe(CSSMERR_CL_MEMORY_ERROR);
        }
        
        /* encode dirStr --> abuf */
        AsnBuf abuf;
        abuf.Init(buf, bufLen);
        abuf.ResetInWriteRvsMode();
        AsnLen bytesEnc;
        #if     SNACC_ENABLE_PDU
        dirStr.BEncPdu(abuf, bytesEnc);
        if(bytesEnc > bufLen) 
        #else
        bytesEnc = dirStr.BEnc(abuf);
        if(abuf.WriteError() || (bytesEnc > bufLen)) 
        #endif  /* SNACC_ENABLE_PDU */
        {
                #ifndef NDEBUG
                printf("Whoops! Buffer overflow\n");
                #endif
                /* throw */
        }
        
        /* install the result into CSM_Buffer, which mallocs & copies */
        atdv->value.value = new CSM_Buffer(abuf.DataPtr(), abuf.DataLen());
        free(buf);
}

void NameBuilder::addX509Name  (
        const CSSM_X509_NAME *x509Name)
{
        /*
         * The main job here is extracting attr/value pairs in CSSM format 
         * from x509Name, and converting them into arguments for addATDV.
         * Note that we're taking the default for primaryDistinguished,
         * because the CDSA CSSM_X509_TYPE_VALUE_PAIR struct doesn't allow for
         * it. 
         */
        for(unsigned rdnDex=0; rdnDex<x509Name->numberOfRDNs; rdnDex++) {
                CSSM_X509_RDN_PTR rdn = &x509Name->RelativeDistinguishedName[rdnDex];
                if(rdn->numberOfPairs != 1) {
                        errorLog0("setField_RDN: only one a/v pair per RDN supported\n");
                        CssmError::throwMe(CSSMERR_CL_INVALID_FIELD_POINTER);
                }

                CSSM_X509_TYPE_VALUE_PAIR_PTR atv = rdn->AttributeTypeAndValue;
                AsnOid oid;
                oid.Set(reinterpret_cast<char *>(atv->type.Data), atv->type.Length);
                
                DirectoryString::ChoiceIdEnum stringType;
                switch(atv->valueType) {
                        case BER_TAG_T61_STRING:
                                stringType = DirectoryString::teletexStringCid;
                                break;
                        case BER_TAG_PRINTABLE_STRING:
                                stringType = DirectoryString::printableStringCid;
                                break;
                        case BER_TAG_PKIX_UNIVERSAL_STRING:
                                stringType = DirectoryString::universalStringCid;
                                break;
                        case BER_TAG_PKIX_BMP_STRING:
                                stringType = DirectoryString::bmpStringCid;
                                break;
                        case BER_TAG_PKIX_UTF8_STRING:
                                stringType = DirectoryString::utf8StringCid;
                                break;
                        default:
                                errorLog1("setField_RDN: illegal tag(%d)\n", atv->valueType);
                                CssmError::throwMe(CSSMERR_CL_INVALID_FIELD_POINTER);
                }
                addATDV(oid,
                        reinterpret_cast<char *>(atv->value.Data),
                        atv->value.Length,
                        stringType);
        }
}


/*
 * Custom AsnOid, used for converting CssmOid to AsnOid. The Snacc class
 * declaration doesn't provide a means to construct from, or set by,
 * pre-encoded OID bytes (which are available in a CssmOid).
 */
OidBuilder::OidBuilder(const CSSM_OID &coid)
{
    oid =  Asn1Alloc (coid.Length);
        memcpy(oid, coid.Data, coid.Length);
        octetLen = coid.Length;
}