forked from wolfSSL/wolfssl
Merge pull request #4886 from dgarske/zd13745
Adds CSR userId support in subject name
This commit is contained in:
Sean Parkinson
GitHub
@ -33287,6 +33287,7 @@ const WOLFSSL_ObjectInfo wolfssl_object_info[] = {
|
|||||||
{ NID_surname, NID_surname, oidCertNameType, "SN", "surname"},
|
{ NID_surname, NID_surname, oidCertNameType, "SN", "surname"},
|
||||||
{ NID_serialNumber, NID_serialNumber, oidCertNameType, "serialNumber",
|
{ NID_serialNumber, NID_serialNumber, oidCertNameType, "serialNumber",
|
||||||
"serialNumber"},
|
"serialNumber"},
|
||||||
|
{ NID_userId, NID_userId, oidCertNameType, "UID", "userid"},
|
||||||
{ NID_countryName, NID_countryName, oidCertNameType, "C", "countryName"},
|
{ NID_countryName, NID_countryName, oidCertNameType, "C", "countryName"},
|
||||||
{ NID_localityName, NID_localityName, oidCertNameType, "L", "localityName"},
|
{ NID_localityName, NID_localityName, oidCertNameType, "L", "localityName"},
|
||||||
{ NID_stateOrProvinceName, NID_stateOrProvinceName, oidCertNameType, "ST",
|
{ NID_stateOrProvinceName, NID_stateOrProvinceName, oidCertNameType, "ST",
|
||||||
@ -44658,6 +44659,7 @@ static int ConvertNIDToWolfSSL(int nid)
|
|||||||
case NID_organizationalUnitName: return ASN_ORGUNIT_NAME;
|
case NID_organizationalUnitName: return ASN_ORGUNIT_NAME;
|
||||||
case NID_emailAddress: return ASN_EMAIL_NAME;
|
case NID_emailAddress: return ASN_EMAIL_NAME;
|
||||||
case NID_serialNumber: return ASN_SERIAL_NUMBER;
|
case NID_serialNumber: return ASN_SERIAL_NUMBER;
|
||||||
|
case NID_userId: return ASN_USER_ID;
|
||||||
case NID_businessCategory: return ASN_BUS_CAT;
|
case NID_businessCategory: return ASN_BUS_CAT;
|
||||||
case NID_domainComponent: return ASN_DOMAIN_COMPONENT;
|
case NID_domainComponent: return ASN_DOMAIN_COMPONENT;
|
||||||
case NID_postalCode: return ASN_POSTAL_CODE;
|
case NID_postalCode: return ASN_POSTAL_CODE;
|
||||||
@ -53470,6 +53472,8 @@ int oid2nid(word32 oid, int grp)
|
|||||||
return NID_pkcs9_challengePassword;
|
return NID_pkcs9_challengePassword;
|
||||||
case SERIAL_NUMBER_OID:
|
case SERIAL_NUMBER_OID:
|
||||||
return NID_serialNumber;
|
return NID_serialNumber;
|
||||||
|
case USER_ID_OID:
|
||||||
|
return NID_userId;
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
#endif
|
#endif
|
||||||
|
|||||||
12
tests/api.c
12
tests/api.c
@ -33957,7 +33957,7 @@ static void test_wolfSSL_Tls13_postauth(void)
|
|||||||
|
|
||||||
static void test_wolfSSL_X509_NID(void)
|
static void test_wolfSSL_X509_NID(void)
|
||||||
{
|
{
|
||||||
#if (defined(OPENSSL_EXTRA) || defined(OPENSSL_EXTRA_X509_SMALL)) && \
|
#if (defined(OPENSSL_EXTRA) || defined(OPENSSL_EXTRA_X509_SMALL)) && \
|
||||||
!defined(NO_RSA) && defined(USE_CERT_BUFFERS_2048) && !defined(NO_ASN)
|
!defined(NO_RSA) && defined(USE_CERT_BUFFERS_2048) && !defined(NO_ASN)
|
||||||
int sigType;
|
int sigType;
|
||||||
int nameSz;
|
int nameSz;
|
||||||
@ -34027,7 +34027,7 @@ static void test_wolfSSL_X509_NID(void)
|
|||||||
X509_free(cert);
|
X509_free(cert);
|
||||||
|
|
||||||
printf(resultFmt, passed);
|
printf(resultFmt, passed);
|
||||||
#endif
|
#endif
|
||||||
}
|
}
|
||||||
|
|
||||||
static void test_wolfSSL_CTX_set_srp_username(void)
|
static void test_wolfSSL_CTX_set_srp_username(void)
|
||||||
@ -41921,7 +41921,7 @@ static void test_wolfSSL_X509_check_ip_asc(void){
|
|||||||
#endif
|
#endif
|
||||||
}
|
}
|
||||||
|
|
||||||
static void test_wolfSSL_DC_cert(void)
|
static void test_wolfSSL_make_cert(void)
|
||||||
{
|
{
|
||||||
#if !defined(NO_RSA) && defined(WOLFSSL_CERT_GEN) && defined(WOLFSSL_CERT_EXT)
|
#if !defined(NO_RSA) && defined(WOLFSSL_CERT_GEN) && defined(WOLFSSL_CERT_EXT)
|
||||||
int ret;
|
int ret;
|
||||||
@ -41942,7 +41942,7 @@ static void test_wolfSSL_DC_cert(void)
|
|||||||
ASN1_STRING* entryValue;
|
ASN1_STRING* entryValue;
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
printf(testingFmt, "wolfSSL Certs with DC");
|
printf(testingFmt, "wolfSSL Make Certs");
|
||||||
|
|
||||||
XMEMSET(&name, 0, sizeof(CertName));
|
XMEMSET(&name, 0, sizeof(CertName));
|
||||||
|
|
||||||
@ -41963,6 +41963,8 @@ static void test_wolfSSL_DC_cert(void)
|
|||||||
name.commonNameEnc = CTC_UTF8;
|
name.commonNameEnc = CTC_UTF8;
|
||||||
XMEMCPY(name.serialDev, "wolfSSL12345", sizeof("wolfSSL12345"));
|
XMEMCPY(name.serialDev, "wolfSSL12345", sizeof("wolfSSL12345"));
|
||||||
name.serialDevEnc = CTC_PRINTABLE;
|
name.serialDevEnc = CTC_PRINTABLE;
|
||||||
|
XMEMCPY(name.userId, "TestUserID", sizeof("TestUserID"));
|
||||||
|
name.userIdEnc = CTC_PRINTABLE;
|
||||||
#ifdef WOLFSSL_MULTI_ATTRIB
|
#ifdef WOLFSSL_MULTI_ATTRIB
|
||||||
#if CTC_MAX_ATTRIB > 2
|
#if CTC_MAX_ATTRIB > 2
|
||||||
{
|
{
|
||||||
@ -52703,7 +52705,7 @@ void ApiTest(void)
|
|||||||
test_wolfSSL_i2c_ASN1_INTEGER();
|
test_wolfSSL_i2c_ASN1_INTEGER();
|
||||||
test_wolfSSL_X509_check_ca();
|
test_wolfSSL_X509_check_ca();
|
||||||
test_wolfSSL_X509_check_ip_asc();
|
test_wolfSSL_X509_check_ip_asc();
|
||||||
test_wolfSSL_DC_cert();
|
test_wolfSSL_make_cert();
|
||||||
test_wolfSSL_DES_ncbc();
|
test_wolfSSL_DES_ncbc();
|
||||||
test_wolfSSL_AES_cbc_encrypt();
|
test_wolfSSL_AES_cbc_encrypt();
|
||||||
test_wolfSSL_CRYPTO_cts128();
|
test_wolfSSL_CRYPTO_cts128();
|
||||||
|
|||||||
@ -4061,17 +4061,13 @@ static const byte dnsSRVOid[] = {43, 6, 1, 5, 5, 7, 8, 7};
|
|||||||
#endif
|
#endif
|
||||||
|
|
||||||
#if defined(WOLFSSL_CERT_REQ) || defined(WOLFSSL_CERT_GEN) || \
|
#if defined(WOLFSSL_CERT_REQ) || defined(WOLFSSL_CERT_GEN) || \
|
||||||
defined(WOLFSSL_ASN_TEMPLATE) || defined(OPENSSL_EXTRA) || \
|
defined(OPENSSL_EXTRA) || defined(OPENSSL_EXTRA_X509_SMALL) || \
|
||||||
defined(OPENSSL_EXTRA_X509_SMALL)
|
defined(WOLFSSL_ASN_TEMPLATE)
|
||||||
/* Pilot attribute types (0.9.2342.19200300.100.1.*) */
|
/* Pilot attribute types (0.9.2342.19200300.100.1.*) */
|
||||||
#ifdef WOLFSSL_ASN_TEMPLATE
|
|
||||||
static const byte uidOid[] = {9, 146, 38, 137, 147, 242, 44, 100, 1, 1}; /* user id */
|
static const byte uidOid[] = {9, 146, 38, 137, 147, 242, 44, 100, 1, 1}; /* user id */
|
||||||
#endif
|
|
||||||
#if !defined(WOLFSSL_CERT_REQ) || defined(WOLFSSL_CERT_GEN) || \
|
|
||||||
defined(OPENSSL_EXTRA) || defined(OPENSSL_EXTRA_X509_SMALL)
|
|
||||||
static const byte dcOid[] = {9, 146, 38, 137, 147, 242, 44, 100, 1, 25}; /* domain component */
|
static const byte dcOid[] = {9, 146, 38, 137, 147, 242, 44, 100, 1, 25}; /* domain component */
|
||||||
#endif
|
#endif
|
||||||
#endif
|
|
||||||
|
|
||||||
|
|
||||||
/* Looks up the ID/type of an OID.
|
/* Looks up the ID/type of an OID.
|
||||||
@ -4859,6 +4855,10 @@ const byte* OidFromId(word32 id, word32 type, word32* oidSz)
|
|||||||
oid = attrSerialNumberOid;
|
oid = attrSerialNumberOid;
|
||||||
*oidSz = sizeof(attrSerialNumberOid);
|
*oidSz = sizeof(attrSerialNumberOid);
|
||||||
break;
|
break;
|
||||||
|
case USER_ID_OID:
|
||||||
|
oid = uidOid;
|
||||||
|
*oidSz = sizeof(uidOid);
|
||||||
|
break;
|
||||||
case EXTENSION_REQUEST_OID:
|
case EXTENSION_REQUEST_OID:
|
||||||
oid = attrExtensionRequestOid;
|
oid = attrExtensionRequestOid;
|
||||||
*oidSz = sizeof(attrExtensionRequestOid);
|
*oidSz = sizeof(attrExtensionRequestOid);
|
||||||
@ -10529,8 +10529,6 @@ static int GetHashId(const byte* id, int length, byte* hash)
|
|||||||
#ifdef WOLFSSL_ASN_TEMPLATE
|
#ifdef WOLFSSL_ASN_TEMPLATE
|
||||||
/* Id for email address. */
|
/* Id for email address. */
|
||||||
#define ASN_EMAIL 0x100
|
#define ASN_EMAIL 0x100
|
||||||
/* Id for user id. */
|
|
||||||
#define ASN_UID 0x101
|
|
||||||
/* Id for domain component. */
|
/* Id for domain component. */
|
||||||
#define ASN_DC 0x102
|
#define ASN_DC 0x102
|
||||||
/* Id for jurisdiction country. */
|
/* Id for jurisdiction country. */
|
||||||
@ -10774,6 +10772,19 @@ static const CertNameData certNameSubject[] = {
|
|||||||
#endif
|
#endif
|
||||||
#ifdef WOLFSSL_X509_NAME_AVAILABLE
|
#ifdef WOLFSSL_X509_NAME_AVAILABLE
|
||||||
NID_postalCode
|
NID_postalCode
|
||||||
|
#endif
|
||||||
|
},
|
||||||
|
/* User Id */
|
||||||
|
{
|
||||||
|
"/userid=", 8,
|
||||||
|
#ifdef WOLFSSL_CERT_GEN
|
||||||
|
OFFSETOF(DecodedCert, subjectUID),
|
||||||
|
OFFSETOF(DecodedCert, subjectUIDLen),
|
||||||
|
OFFSETOF(DecodedCert, subjectUIDEnc),
|
||||||
|
#endif
|
||||||
|
#ifdef WOLFSSL_X509_NAME_AVAILABLE
|
||||||
|
NID_userId
|
||||||
|
|
||||||
#endif
|
#endif
|
||||||
},
|
},
|
||||||
};
|
};
|
||||||
@ -10970,7 +10981,7 @@ static int SetSubject(DecodedCert* cert, int id, byte* str, word32 strLen,
|
|||||||
cert->subjectCNEnc = tag;
|
cert->subjectCNEnc = tag;
|
||||||
}
|
}
|
||||||
#if defined(WOLFSSL_CERT_GEN) || defined(WOLFSSL_CERT_EXT)
|
#if defined(WOLFSSL_CERT_GEN) || defined(WOLFSSL_CERT_EXT)
|
||||||
else if (id > ASN_COMMON_NAME && id <= ASN_BUS_CAT) {
|
else if (id > ASN_COMMON_NAME && id <= ASN_USER_ID) {
|
||||||
/* Use table and offsets to put data into appropriate fields. */
|
/* Use table and offsets to put data into appropriate fields. */
|
||||||
SetCertNameSubject(cert, id, (char*)str);
|
SetCertNameSubject(cert, id, (char*)str);
|
||||||
SetCertNameSubjectLen(cert, id, strLen);
|
SetCertNameSubjectLen(cert, id, strLen);
|
||||||
@ -11053,7 +11064,7 @@ static int GetRDN(DecodedCert* cert, char* full, word32* idx, int* nid,
|
|||||||
}
|
}
|
||||||
else if (oidSz == sizeof(uidOid) && XMEMCMP(oid, uidOid, oidSz) == 0) {
|
else if (oidSz == sizeof(uidOid) && XMEMCMP(oid, uidOid, oidSz) == 0) {
|
||||||
/* Set the user id, type string, length and NID. */
|
/* Set the user id, type string, length and NID. */
|
||||||
id = ASN_UID;
|
id = ASN_USER_ID;
|
||||||
typeStr = WOLFSSL_USER_ID;
|
typeStr = WOLFSSL_USER_ID;
|
||||||
typeStrLen = sizeof(WOLFSSL_USER_ID) - 1;
|
typeStrLen = sizeof(WOLFSSL_USER_ID) - 1;
|
||||||
#ifdef WOLFSSL_X509_NAME_AVAILABLE
|
#ifdef WOLFSSL_X509_NAME_AVAILABLE
|
||||||
@ -11115,7 +11126,7 @@ static int GetRDN(DecodedCert* cert, char* full, word32* idx, int* nid,
|
|||||||
if (ret == 0) {
|
if (ret == 0) {
|
||||||
/* Check there is space for this in the full name string and
|
/* Check there is space for this in the full name string and
|
||||||
* terminating NUL character. */
|
* terminating NUL character. */
|
||||||
if ((typeStrLen + strLen) < (word32)(ASN_NAME_MAX - *idx))
|
if ((typeStrLen + strLen) < (word32)(WC_ASN_NAME_MAX - *idx))
|
||||||
{
|
{
|
||||||
/* Add RDN to full string. */
|
/* Add RDN to full string. */
|
||||||
XMEMCPY(&full[*idx], typeStr, typeStrLen);
|
XMEMCPY(&full[*idx], typeStr, typeStrLen);
|
||||||
@ -11391,6 +11402,22 @@ static int GetCertName(DecodedCert* cert, char* full, byte* hash, int nameType,
|
|||||||
nid = NID_serialNumber;
|
nid = NID_serialNumber;
|
||||||
#endif /* OPENSSL_EXTRA */
|
#endif /* OPENSSL_EXTRA */
|
||||||
}
|
}
|
||||||
|
else if (id == ASN_USER_ID) {
|
||||||
|
copy = WOLFSSL_USER_ID;
|
||||||
|
copyLen = sizeof(WOLFSSL_USER_ID) - 1;
|
||||||
|
#ifdef WOLFSSL_CERT_GEN
|
||||||
|
if (nameType == SUBJECT) {
|
||||||
|
cert->subjectUID = (char*)&input[srcIdx];
|
||||||
|
cert->subjectUIDLen = strLen;
|
||||||
|
cert->subjectUIDEnc = b;
|
||||||
|
}
|
||||||
|
#endif /* WOLFSSL_CERT_GEN */
|
||||||
|
#if (defined(OPENSSL_EXTRA) || \
|
||||||
|
defined(OPENSSL_EXTRA_X509_SMALL)) \
|
||||||
|
&& !defined(WOLFCRYPT_ONLY)
|
||||||
|
nid = NID_userId;
|
||||||
|
#endif /* OPENSSL_EXTRA */
|
||||||
|
}
|
||||||
#ifdef WOLFSSL_CERT_EXT
|
#ifdef WOLFSSL_CERT_EXT
|
||||||
else if (id == ASN_STREET_ADDR) {
|
else if (id == ASN_STREET_ADDR) {
|
||||||
copy = WOLFSSL_STREET_ADDR_NAME;
|
copy = WOLFSSL_STREET_ADDR_NAME;
|
||||||
@ -11497,7 +11524,7 @@ static int GetCertName(DecodedCert* cert, char* full, byte* hash, int nameType,
|
|||||||
#endif /* OPENSSL_EXTRA */
|
#endif /* OPENSSL_EXTRA */
|
||||||
}
|
}
|
||||||
|
|
||||||
if ((strLen + copyLen) > (int)(ASN_NAME_MAX - idx)) {
|
if ((strLen + copyLen) > (int)(WC_ASN_NAME_MAX - idx)) {
|
||||||
WOLFSSL_MSG("ASN Name too big, skipping");
|
WOLFSSL_MSG("ASN Name too big, skipping");
|
||||||
tooBig = TRUE;
|
tooBig = TRUE;
|
||||||
}
|
}
|
||||||
@ -11508,14 +11535,16 @@ static int GetCertName(DecodedCert* cert, char* full, byte* hash, int nameType,
|
|||||||
byte email = FALSE;
|
byte email = FALSE;
|
||||||
byte pilot = FALSE;
|
byte pilot = FALSE;
|
||||||
|
|
||||||
if (joint[0] == 0x2a && joint[1] == 0x86) { /* email id hdr */
|
if (joint[0] == 0x2a && joint[1] == 0x86) { /* email id hdr 42.134.* */
|
||||||
id = ASN_EMAIL_NAME;
|
id = ASN_EMAIL_NAME;
|
||||||
email = TRUE;
|
email = TRUE;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (joint[0] == 0x9 && joint[1] == 0x92) { /* uid id hdr */
|
if (joint[0] == 0x9 && joint[1] == 0x92) { /* uid id hdr 9.146.* */
|
||||||
/* last value of OID is the type of pilot attribute */
|
/* last value of OID is the type of pilot attribute */
|
||||||
id = input[srcIdx + oidSz - 1];
|
id = input[srcIdx + oidSz - 1];
|
||||||
|
if (id == 0x01)
|
||||||
|
id = ASN_USER_ID;
|
||||||
pilot = TRUE;
|
pilot = TRUE;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -11529,14 +11558,14 @@ static int GetCertName(DecodedCert* cert, char* full, byte* hash, int nameType,
|
|||||||
return ASN_PARSE_E;
|
return ASN_PARSE_E;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (strLen > (int)(ASN_NAME_MAX - idx)) {
|
if (strLen > (int)(WC_ASN_NAME_MAX - idx)) {
|
||||||
WOLFSSL_MSG("ASN name too big, skipping");
|
WOLFSSL_MSG("ASN name too big, skipping");
|
||||||
tooBig = TRUE;
|
tooBig = TRUE;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (email) {
|
if (email) {
|
||||||
copyLen = sizeof(WOLFSSL_EMAIL_ADDR) - 1;
|
copyLen = sizeof(WOLFSSL_EMAIL_ADDR) - 1;
|
||||||
if ((copyLen + strLen) > (int)(ASN_NAME_MAX - idx)) {
|
if ((copyLen + strLen) > (int)(WC_ASN_NAME_MAX - idx)) {
|
||||||
WOLFSSL_MSG("ASN name too big, skipping");
|
WOLFSSL_MSG("ASN name too big, skipping");
|
||||||
tooBig = TRUE;
|
tooBig = TRUE;
|
||||||
}
|
}
|
||||||
@ -11634,7 +11663,7 @@ static int GetCertName(DecodedCert* cert, char* full, byte* hash, int nameType,
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
if ((copyLen + strLen) > (int)(ASN_NAME_MAX - idx))
|
if ((copyLen + strLen) > (int)(WC_ASN_NAME_MAX - idx))
|
||||||
{
|
{
|
||||||
WOLFSSL_MSG("ASN Name too big, skipping");
|
WOLFSSL_MSG("ASN Name too big, skipping");
|
||||||
tooBig = TRUE;
|
tooBig = TRUE;
|
||||||
@ -11677,14 +11706,14 @@ static int GetCertName(DecodedCert* cert, char* full, byte* hash, int nameType,
|
|||||||
if (nameType == ISSUER) {
|
if (nameType == ISSUER) {
|
||||||
#if (defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX) || defined(HAVE_LIGHTY)) && \
|
#if (defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX) || defined(HAVE_LIGHTY)) && \
|
||||||
(defined(HAVE_PKCS7) || defined(WOLFSSL_CERT_EXT))
|
(defined(HAVE_PKCS7) || defined(WOLFSSL_CERT_EXT))
|
||||||
dName->rawLen = min(cert->issuerRawLen, ASN_NAME_MAX);
|
dName->rawLen = min(cert->issuerRawLen, WC_ASN_NAME_MAX);
|
||||||
XMEMCPY(dName->raw, cert->issuerRaw, dName->rawLen);
|
XMEMCPY(dName->raw, cert->issuerRaw, dName->rawLen);
|
||||||
#endif
|
#endif
|
||||||
cert->issuerName = dName;
|
cert->issuerName = dName;
|
||||||
}
|
}
|
||||||
else {
|
else {
|
||||||
#if defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX)
|
#if defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX)
|
||||||
dName->rawLen = min(cert->subjectRawLen, ASN_NAME_MAX);
|
dName->rawLen = min(cert->subjectRawLen, WC_ASN_NAME_MAX);
|
||||||
XMEMCPY(dName->raw, cert->subjectRaw, dName->rawLen);
|
XMEMCPY(dName->raw, cert->subjectRaw, dName->rawLen);
|
||||||
#endif
|
#endif
|
||||||
cert->subjectName = dName;
|
cert->subjectName = dName;
|
||||||
@ -11808,14 +11837,14 @@ static int GetCertName(DecodedCert* cert, char* full, byte* hash, int nameType,
|
|||||||
#if (defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX) || \
|
#if (defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX) || \
|
||||||
defined(HAVE_LIGHTY)) && \
|
defined(HAVE_LIGHTY)) && \
|
||||||
(defined(HAVE_PKCS7) || defined(WOLFSSL_CERT_EXT))
|
(defined(HAVE_PKCS7) || defined(WOLFSSL_CERT_EXT))
|
||||||
dName->rawLen = min(cert->issuerRawLen, ASN_NAME_MAX);
|
dName->rawLen = min(cert->issuerRawLen, WC_ASN_NAME_MAX);
|
||||||
XMEMCPY(dName->raw, cert->issuerRaw, dName->rawLen);
|
XMEMCPY(dName->raw, cert->issuerRaw, dName->rawLen);
|
||||||
#endif
|
#endif
|
||||||
cert->issuerName = dName;
|
cert->issuerName = dName;
|
||||||
}
|
}
|
||||||
else {
|
else {
|
||||||
#if defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX)
|
#if defined(OPENSSL_ALL) || defined(WOLFSSL_NGINX)
|
||||||
dName->rawLen = min(cert->subjectRawLen, ASN_NAME_MAX);
|
dName->rawLen = min(cert->subjectRawLen, WC_ASN_NAME_MAX);
|
||||||
XMEMCPY(dName->raw, cert->subjectRaw, dName->rawLen);
|
XMEMCPY(dName->raw, cert->subjectRaw, dName->rawLen);
|
||||||
#endif
|
#endif
|
||||||
cert->subjectName = dName;
|
cert->subjectName = dName;
|
||||||
@ -20850,8 +20879,8 @@ typedef struct DerCert {
|
|||||||
byte version[MAX_VERSION_SZ]; /* version encoded */
|
byte version[MAX_VERSION_SZ]; /* version encoded */
|
||||||
byte serial[(int)CTC_SERIAL_SIZE + (int)MAX_LENGTH_SZ]; /* serial number encoded */
|
byte serial[(int)CTC_SERIAL_SIZE + (int)MAX_LENGTH_SZ]; /* serial number encoded */
|
||||||
byte sigAlgo[MAX_ALGO_SZ]; /* signature algo encoded */
|
byte sigAlgo[MAX_ALGO_SZ]; /* signature algo encoded */
|
||||||
byte issuer[ASN_NAME_MAX]; /* issuer encoded */
|
byte issuer[WC_ASN_NAME_MAX]; /* issuer encoded */
|
||||||
byte subject[ASN_NAME_MAX]; /* subject encoded */
|
byte subject[WC_ASN_NAME_MAX]; /* subject encoded */
|
||||||
byte validity[MAX_DATE_SIZE*2 + MAX_SEQ_SZ*2]; /* before and after dates */
|
byte validity[MAX_DATE_SIZE*2 + MAX_SEQ_SZ*2]; /* before and after dates */
|
||||||
byte publicKey[MAX_PUBLIC_KEY_SZ]; /* rsa public key encoded */
|
byte publicKey[MAX_PUBLIC_KEY_SZ]; /* rsa public key encoded */
|
||||||
byte ca[MAX_CA_SZ]; /* basic constraint CA true size */
|
byte ca[MAX_CA_SZ]; /* basic constraint CA true size */
|
||||||
@ -21681,6 +21710,8 @@ const char* GetOneCertName(CertName* name, int idx)
|
|||||||
return name->commonName;
|
return name->commonName;
|
||||||
case ASN_SERIAL_NUMBER:
|
case ASN_SERIAL_NUMBER:
|
||||||
return name->serialDev;
|
return name->serialDev;
|
||||||
|
case ASN_USER_ID:
|
||||||
|
return name->userId;
|
||||||
case ASN_POSTAL_CODE:
|
case ASN_POSTAL_CODE:
|
||||||
return name->postalCode;
|
return name->postalCode;
|
||||||
case ASN_EMAIL_NAME:
|
case ASN_EMAIL_NAME:
|
||||||
@ -21722,6 +21753,8 @@ static char GetNameType(CertName* name, int idx)
|
|||||||
return name->commonNameEnc;
|
return name->commonNameEnc;
|
||||||
case ASN_SERIAL_NUMBER:
|
case ASN_SERIAL_NUMBER:
|
||||||
return name->serialDevEnc;
|
return name->serialDevEnc;
|
||||||
|
case ASN_USER_ID:
|
||||||
|
return name->userIdEnc;
|
||||||
case ASN_POSTAL_CODE:
|
case ASN_POSTAL_CODE:
|
||||||
return name->postalCodeEnc;
|
return name->postalCodeEnc;
|
||||||
case ASN_EMAIL_NAME:
|
case ASN_EMAIL_NAME:
|
||||||
@ -22097,7 +22130,7 @@ static int SetExtKeyUsage(Cert* cert, byte* output, word32 outSz, byte input)
|
|||||||
int cnt = 1 + EKU_OID_HI;
|
int cnt = 1 + EKU_OID_HI;
|
||||||
int i;
|
int i;
|
||||||
int ret = 0;
|
int ret = 0;
|
||||||
int sz = 0;
|
int sz;
|
||||||
|
|
||||||
#ifdef WOLFSSL_EKU_OID
|
#ifdef WOLFSSL_EKU_OID
|
||||||
cnt += CTC_MAX_EKU_NB;
|
cnt += CTC_MAX_EKU_NB;
|
||||||
@ -22152,7 +22185,7 @@ static int SetExtKeyUsage(Cert* cert, byte* output, word32 outSz, byte input)
|
|||||||
if (input & EXTKEYUSE_USER) {
|
if (input & EXTKEYUSE_USER) {
|
||||||
/* Iterate through OID values */
|
/* Iterate through OID values */
|
||||||
for (i = 0; i < CTC_MAX_EKU_NB; i++) {
|
for (i = 0; i < CTC_MAX_EKU_NB; i++) {
|
||||||
int sz = cert->extKeyUsageOIDSz[i];
|
sz = cert->extKeyUsageOIDSz[i];
|
||||||
if (sz > 0) {
|
if (sz > 0) {
|
||||||
/* Set template item. */
|
/* Set template item. */
|
||||||
XMEMCPY(&extKuASN[asnIdx], &ekuASN[EKUASN_IDX_OID],
|
XMEMCPY(&extKuASN[asnIdx], &ekuASN[EKUASN_IDX_OID],
|
||||||
@ -22169,6 +22202,7 @@ static int SetExtKeyUsage(Cert* cert, byte* output, word32 outSz, byte input)
|
|||||||
}
|
}
|
||||||
|
|
||||||
/* Calculate size of encoding. */
|
/* Calculate size of encoding. */
|
||||||
|
sz = 0;
|
||||||
ret = SizeASN_Items(extKuASN, dataASN, asnIdx, &sz);
|
ret = SizeASN_Items(extKuASN, dataASN, asnIdx, &sz);
|
||||||
}
|
}
|
||||||
/* When buffer to write to, ensure it's big enough. */
|
/* When buffer to write to, ensure it's big enough. */
|
||||||
@ -22558,6 +22592,10 @@ static int EncodeName(EncodedName* name, const char* nameStr,
|
|||||||
thisLen += (int)sizeof(dcOid);
|
thisLen += (int)sizeof(dcOid);
|
||||||
firstSz = (int)sizeof(dcOid);
|
firstSz = (int)sizeof(dcOid);
|
||||||
break;
|
break;
|
||||||
|
case ASN_USER_ID:
|
||||||
|
thisLen += (int)sizeof(uidOid);
|
||||||
|
firstSz = (int)sizeof(uidOid);
|
||||||
|
break;
|
||||||
#ifdef WOLFSSL_CUSTOM_OID
|
#ifdef WOLFSSL_CUSTOM_OID
|
||||||
case ASN_CUSTOM_NAME:
|
case ASN_CUSTOM_NAME:
|
||||||
thisLen += cname->custom.oidSz;
|
thisLen += cname->custom.oidSz;
|
||||||
@ -22607,6 +22645,12 @@ static int EncodeName(EncodedName* name, const char* nameStr,
|
|||||||
/* str type */
|
/* str type */
|
||||||
name->encoded[idx++] = nameTag;
|
name->encoded[idx++] = nameTag;
|
||||||
break;
|
break;
|
||||||
|
case ASN_USER_ID:
|
||||||
|
XMEMCPY(name->encoded + idx, uidOid, sizeof(uidOid));
|
||||||
|
idx += (int)sizeof(uidOid);
|
||||||
|
/* str type */
|
||||||
|
name->encoded[idx++] = nameTag;
|
||||||
|
break;
|
||||||
#ifdef WOLFSSL_CUSTOM_OID
|
#ifdef WOLFSSL_CUSTOM_OID
|
||||||
case ASN_CUSTOM_NAME:
|
case ASN_CUSTOM_NAME:
|
||||||
XMEMCPY(name->encoded + idx, cname->custom.oid,
|
XMEMCPY(name->encoded + idx, cname->custom.oid,
|
||||||
@ -22672,6 +22716,11 @@ static int EncodeName(EncodedName* name, const char* nameStr,
|
|||||||
oid = dcOid;
|
oid = dcOid;
|
||||||
oidSz = sizeof(dcOid);
|
oidSz = sizeof(dcOid);
|
||||||
break;
|
break;
|
||||||
|
case ASN_USER_ID:
|
||||||
|
/* Domain component OID different to standard types. */
|
||||||
|
oid = uidOid;
|
||||||
|
oidSz = sizeof(uidOid);
|
||||||
|
break;
|
||||||
#ifdef WOLFSSL_CUSTOM_OID
|
#ifdef WOLFSSL_CUSTOM_OID
|
||||||
case ASN_CUSTOM_NAME:
|
case ASN_CUSTOM_NAME:
|
||||||
nameSz = cname->custom.valSz;
|
nameSz = cname->custom.valSz;
|
||||||
@ -22850,6 +22899,12 @@ static int SetNameRdnItems(ASNSetData* dataASN, ASNItem* namesASN,
|
|||||||
sizeof(attrEmailOid), ASN_IA5_STRING,
|
sizeof(attrEmailOid), ASN_IA5_STRING,
|
||||||
(const byte*)GetOneCertName(name, i), nameLen[i]);
|
(const byte*)GetOneCertName(name, i), nameLen[i]);
|
||||||
}
|
}
|
||||||
|
else if (type == ASN_USER_ID) {
|
||||||
|
/* Copy userID data into dynamic vars. */
|
||||||
|
SetRdnItems(namesASN + idx, dataASN + idx, uidOid,
|
||||||
|
sizeof(uidOid), GetNameType(name, i),
|
||||||
|
(const byte*)GetOneCertName(name, i), nameLen[i]);
|
||||||
|
}
|
||||||
else if (type == ASN_CUSTOM_NAME) {
|
else if (type == ASN_CUSTOM_NAME) {
|
||||||
#ifdef WOLFSSL_CUSTOM_OID
|
#ifdef WOLFSSL_CUSTOM_OID
|
||||||
SetRdnItems(namesASN + idx, dataASN + idx, name->custom.oid,
|
SetRdnItems(namesASN + idx, dataASN + idx, name->custom.oid,
|
||||||
@ -22961,11 +23016,11 @@ int SetNameEx(byte* output, word32 outputSz, CertName* name, void* heap)
|
|||||||
/* header */
|
/* header */
|
||||||
idx = SetSequence(totalBytes, output);
|
idx = SetSequence(totalBytes, output);
|
||||||
totalBytes += idx;
|
totalBytes += idx;
|
||||||
if (totalBytes > ASN_NAME_MAX) {
|
if (totalBytes > WC_ASN_NAME_MAX) {
|
||||||
#ifdef WOLFSSL_SMALL_STACK
|
#ifdef WOLFSSL_SMALL_STACK
|
||||||
XFREE(names, NULL, DYNAMIC_TYPE_TMP_BUFFER);
|
XFREE(names, NULL, DYNAMIC_TYPE_TMP_BUFFER);
|
||||||
#endif
|
#endif
|
||||||
WOLFSSL_MSG("Total Bytes is greater than ASN_NAME_MAX");
|
WOLFSSL_MSG("Total Bytes is greater than WC_ASN_NAME_MAX");
|
||||||
return BUFFER_E;
|
return BUFFER_E;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -24493,7 +24548,7 @@ static int MakeAnyCert(Cert* cert, byte* derBuffer, word32 derSz,
|
|||||||
#endif
|
#endif
|
||||||
{
|
{
|
||||||
/* Calcuate issuer name encoding size. */
|
/* Calcuate issuer name encoding size. */
|
||||||
issuerSz = SetNameEx(NULL, ASN_NAME_MAX, &cert->issuer, cert->heap);
|
issuerSz = SetNameEx(NULL, WC_ASN_NAME_MAX, &cert->issuer, cert->heap);
|
||||||
ret = issuerSz;
|
ret = issuerSz;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -24509,7 +24564,7 @@ static int MakeAnyCert(Cert* cert, byte* derBuffer, word32 derSz,
|
|||||||
#endif
|
#endif
|
||||||
{
|
{
|
||||||
/* Calcuate subject name encoding size. */
|
/* Calcuate subject name encoding size. */
|
||||||
subjectSz = SetNameEx(NULL, ASN_NAME_MAX, &cert->subject, cert->heap);
|
subjectSz = SetNameEx(NULL, WC_ASN_NAME_MAX, &cert->subject, cert->heap);
|
||||||
ret = subjectSz;
|
ret = subjectSz;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -25329,7 +25384,7 @@ static int MakeCertReq(Cert* cert, byte* derBuffer, word32 derSz,
|
|||||||
else
|
else
|
||||||
#endif
|
#endif
|
||||||
{
|
{
|
||||||
subjectSz = SetNameEx(NULL, ASN_NAME_MAX, &cert->subject, cert->heap);
|
subjectSz = SetNameEx(NULL, WC_ASN_NAME_MAX, &cert->subject, cert->heap);
|
||||||
ret = subjectSz;
|
ret = subjectSz;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -26235,6 +26290,13 @@ static void SetNameFromDcert(CertName* cn, DecodedCert* decoded)
|
|||||||
cn->serialDev[sz] = '\0';
|
cn->serialDev[sz] = '\0';
|
||||||
cn->serialDevEnc = decoded->subjectSNDEnc;
|
cn->serialDevEnc = decoded->subjectSNDEnc;
|
||||||
}
|
}
|
||||||
|
if (decoded->subjectUID) {
|
||||||
|
sz = (decoded->subjectUIDLen < CTC_NAME_SIZE) ? decoded->subjectUIDLen
|
||||||
|
: CTC_NAME_SIZE - 1;
|
||||||
|
XSTRNCPY(cn->userId, decoded->subjectUID, sz);
|
||||||
|
cn->userId[sz] = '\0';
|
||||||
|
cn->userIdEnc = decoded->subjectUIDEnc;
|
||||||
|
}
|
||||||
#ifdef WOLFSSL_CERT_EXT
|
#ifdef WOLFSSL_CERT_EXT
|
||||||
if (decoded->subjectBC) {
|
if (decoded->subjectBC) {
|
||||||
sz = (decoded->subjectBCLen < CTC_NAME_SIZE) ? decoded->subjectBCLen
|
sz = (decoded->subjectBCLen < CTC_NAME_SIZE) ? decoded->subjectBCLen
|
||||||
|
|||||||
@ -11904,6 +11904,8 @@ static void initDefaultName(void)
|
|||||||
certDefaultName.joiCEnc = CTC_PRINTABLE;
|
certDefaultName.joiCEnc = CTC_PRINTABLE;
|
||||||
#endif
|
#endif
|
||||||
XMEMCPY(certDefaultName.email, "info@wolfssl.com", sizeof("info@wolfssl.com"));
|
XMEMCPY(certDefaultName.email, "info@wolfssl.com", sizeof("info@wolfssl.com"));
|
||||||
|
XMEMCPY(certDefaultName.userId, "TestUserID", sizeof("TestUserID"));
|
||||||
|
certDefaultName.userIdEnc = CTC_PRINTABLE;
|
||||||
|
|
||||||
#if defined(WOLFSSL_MULTI_ATTRIB) && defined(WOLFSSL_TEST_CERT)
|
#if defined(WOLFSSL_MULTI_ATTRIB) && defined(WOLFSSL_TEST_CERT)
|
||||||
/* test having additional OUs and setting DC */
|
/* test having additional OUs and setting DC */
|
||||||
|
|||||||
@ -3812,7 +3812,18 @@ typedef struct Arrays {
|
|||||||
} Arrays;
|
} Arrays;
|
||||||
|
|
||||||
#ifndef ASN_NAME_MAX
|
#ifndef ASN_NAME_MAX
|
||||||
#define ASN_NAME_MAX 256
|
#ifndef NO_ASN
|
||||||
|
/* use value from asn.h */
|
||||||
|
#define ASN_NAME_MAX WC_ASN_NAME_MAX
|
||||||
|
#else
|
||||||
|
/* calculate for WOLFSSL_X509 */
|
||||||
|
#if defined(OPENSSL_EXTRA) || defined(OPENSSL_EXTRA_X509_SMALL) || \
|
||||||
|
defined(WOLFSSL_CERT_EXT)
|
||||||
|
#define ASN_NAME_MAX 330
|
||||||
|
#else
|
||||||
|
#define ASN_NAME_MAX 256
|
||||||
|
#endif
|
||||||
|
#endif
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#ifndef MAX_DATE_SZ
|
#ifndef MAX_DATE_SZ
|
||||||
|
|||||||
@ -20,10 +20,7 @@
|
|||||||
#include <wolfssl/wolfcrypt/random.h>
|
#include <wolfssl/wolfcrypt/random.h>
|
||||||
#include <wolfssl/wolfcrypt/mem_track.h>
|
#include <wolfssl/wolfcrypt/mem_track.h>
|
||||||
#include <wolfssl/wolfio.h>
|
#include <wolfssl/wolfio.h>
|
||||||
#if defined(SHOW_CERTS) && \
|
#include <wolfssl/wolfcrypt/asn.h>
|
||||||
(defined(OPENSSL_EXTRA) || defined(OPENSSL_EXTRA_X509_SMALL))
|
|
||||||
#include <wolfssl/wolfcrypt/asn.h> /* for domain component NID value */
|
|
||||||
#endif
|
|
||||||
|
|
||||||
#ifdef ATOMIC_USER
|
#ifdef ATOMIC_USER
|
||||||
#include <wolfssl/wolfcrypt/aes.h>
|
#include <wolfssl/wolfcrypt/aes.h>
|
||||||
@ -31,7 +28,6 @@
|
|||||||
#include <wolfssl/wolfcrypt/hmac.h>
|
#include <wolfssl/wolfcrypt/hmac.h>
|
||||||
#endif
|
#endif
|
||||||
#ifdef HAVE_PK_CALLBACKS
|
#ifdef HAVE_PK_CALLBACKS
|
||||||
#include <wolfssl/wolfcrypt/asn.h>
|
|
||||||
#ifndef NO_RSA
|
#ifndef NO_RSA
|
||||||
#include <wolfssl/wolfcrypt/rsa.h>
|
#include <wolfssl/wolfcrypt/rsa.h>
|
||||||
#endif
|
#endif
|
||||||
@ -1053,7 +1049,7 @@ static WC_INLINE void ShowX509Ex(WOLFSSL_X509* x509, const char* hdr,
|
|||||||
#if defined(SHOW_CERTS) && defined(OPENSSL_EXTRA)
|
#if defined(SHOW_CERTS) && defined(OPENSSL_EXTRA)
|
||||||
{
|
{
|
||||||
WOLFSSL_BIO* bio;
|
WOLFSSL_BIO* bio;
|
||||||
char buf[256]; /* should be size of ASN_NAME_MAX */
|
char buf[WC_ASN_NAME_MAX];
|
||||||
int textSz;
|
int textSz;
|
||||||
|
|
||||||
/* print out domain component if certificate has it */
|
/* print out domain component if certificate has it */
|
||||||
|
|||||||
@ -668,12 +668,13 @@ enum DN_Tags {
|
|||||||
ASN_ORGUNIT_NAME = 0x0b, /* OU */
|
ASN_ORGUNIT_NAME = 0x0b, /* OU */
|
||||||
ASN_BUS_CAT = 0x0f, /* businessCategory */
|
ASN_BUS_CAT = 0x0f, /* businessCategory */
|
||||||
ASN_POSTAL_CODE = 0x11, /* postalCode */
|
ASN_POSTAL_CODE = 0x11, /* postalCode */
|
||||||
|
ASN_USER_ID = 0x12, /* UserID */
|
||||||
|
|
||||||
ASN_EMAIL_NAME = 0x98, /* not actual OID (see attrEmailOid) */
|
ASN_EMAIL_NAME = 0x98, /* not actual OID (see attrEmailOid) */
|
||||||
ASN_CUSTOM_NAME = 0x99, /* not actual OID (see CertOidField) */
|
ASN_CUSTOM_NAME = 0x99, /* not actual OID (see CertOidField) */
|
||||||
|
|
||||||
/* pilot attribute types
|
/* pilot attribute types
|
||||||
* OID values of 0.9.2342.19200300.100.1.* */
|
* OID values of 0.9.2342.19200300.100.1.* */
|
||||||
ASN_USER_ID = 0x01, /* UID */
|
|
||||||
ASN_FAVOURITE_DRINK = 0x05, /* favouriteDrink */
|
ASN_FAVOURITE_DRINK = 0x05, /* favouriteDrink */
|
||||||
ASN_DOMAIN_COMPONENT = 0x19 /* DC */
|
ASN_DOMAIN_COMPONENT = 0x19 /* DC */
|
||||||
};
|
};
|
||||||
@ -839,13 +840,13 @@ enum ECC_TYPES
|
|||||||
#define ASN_JOI_ST 0x2
|
#define ASN_JOI_ST 0x2
|
||||||
|
|
||||||
#ifndef WC_ASN_NAME_MAX
|
#ifndef WC_ASN_NAME_MAX
|
||||||
#ifdef OPENSSL_EXTRA
|
#if defined(OPENSSL_EXTRA) || defined(OPENSSL_EXTRA_X509_SMALL) || \
|
||||||
|
defined(WOLFSSL_CERT_EXT)
|
||||||
#define WC_ASN_NAME_MAX 330
|
#define WC_ASN_NAME_MAX 330
|
||||||
#else
|
#else
|
||||||
#define WC_ASN_NAME_MAX 256
|
#define WC_ASN_NAME_MAX 256
|
||||||
#endif
|
#endif
|
||||||
#endif
|
#endif
|
||||||
#define ASN_NAME_MAX WC_ASN_NAME_MAX
|
|
||||||
|
|
||||||
enum Misc_ASN {
|
enum Misc_ASN {
|
||||||
MAX_SALT_SIZE = 64, /* MAX PKCS Salt length */
|
MAX_SALT_SIZE = 64, /* MAX PKCS Salt length */
|
||||||
@ -973,9 +974,9 @@ enum Misc_ASN {
|
|||||||
#ifndef WC_MAX_NAME_ENTRIES
|
#ifndef WC_MAX_NAME_ENTRIES
|
||||||
/* entries added to x509 name struct */
|
/* entries added to x509 name struct */
|
||||||
#ifdef OPENSSL_EXTRA
|
#ifdef OPENSSL_EXTRA
|
||||||
#define WC_MAX_NAME_ENTRIES 15
|
#define WC_MAX_NAME_ENTRIES 16
|
||||||
#else
|
#else
|
||||||
#define WC_MAX_NAME_ENTRIES 13
|
#define WC_MAX_NAME_ENTRIES 14
|
||||||
#endif
|
#endif
|
||||||
#endif
|
#endif
|
||||||
#define MAX_NAME_ENTRIES WC_MAX_NAME_ENTRIES
|
#define MAX_NAME_ENTRIES WC_MAX_NAME_ENTRIES
|
||||||
@ -1188,6 +1189,7 @@ enum CsrAttrType {
|
|||||||
CHALLENGE_PASSWORD_OID = 659,
|
CHALLENGE_PASSWORD_OID = 659,
|
||||||
SERIAL_NUMBER_OID = 94,
|
SERIAL_NUMBER_OID = 94,
|
||||||
EXTENSION_REQUEST_OID = 666,
|
EXTENSION_REQUEST_OID = 666,
|
||||||
|
USER_ID_OID = 865,
|
||||||
};
|
};
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
@ -1485,8 +1487,8 @@ struct DecodedCert {
|
|||||||
char* subjectCN; /* CommonName */
|
char* subjectCN; /* CommonName */
|
||||||
int subjectCNLen; /* CommonName Length */
|
int subjectCNLen; /* CommonName Length */
|
||||||
char subjectCNEnc; /* CommonName Encoding */
|
char subjectCNEnc; /* CommonName Encoding */
|
||||||
char issuer[ASN_NAME_MAX]; /* full name including common name */
|
char issuer[WC_ASN_NAME_MAX]; /* full name including common name */
|
||||||
char subject[ASN_NAME_MAX]; /* full name including common name */
|
char subject[WC_ASN_NAME_MAX];/* full name including common name */
|
||||||
int verify; /* Default to yes, but could be off */
|
int verify; /* Default to yes, but could be off */
|
||||||
const byte* source; /* byte buffer holder cert, NOT owner */
|
const byte* source; /* byte buffer holder cert, NOT owner */
|
||||||
word32 srcIdx; /* current offset into buffer */
|
word32 srcIdx; /* current offset into buffer */
|
||||||
@ -1575,6 +1577,9 @@ struct DecodedCert {
|
|||||||
char* subjectSND;
|
char* subjectSND;
|
||||||
int subjectSNDLen;
|
int subjectSNDLen;
|
||||||
char subjectSNDEnc;
|
char subjectSNDEnc;
|
||||||
|
char* subjectUID;
|
||||||
|
int subjectUIDLen;
|
||||||
|
char subjectUIDEnc;
|
||||||
#if defined(WOLFSSL_CERT_GEN) || defined(WOLFSSL_CERT_EXT)
|
#if defined(WOLFSSL_CERT_GEN) || defined(WOLFSSL_CERT_EXT)
|
||||||
char* subjectStreet;
|
char* subjectStreet;
|
||||||
int subjectStreetLen;
|
int subjectStreetLen;
|
||||||
|
|||||||
@ -345,6 +345,8 @@ typedef struct CertName {
|
|||||||
char commonNameEnc;
|
char commonNameEnc;
|
||||||
char serialDev[CTC_NAME_SIZE];
|
char serialDev[CTC_NAME_SIZE];
|
||||||
char serialDevEnc;
|
char serialDevEnc;
|
||||||
|
char userId[CTC_NAME_SIZE];
|
||||||
|
char userIdEnc;
|
||||||
char postalCode[CTC_NAME_SIZE];
|
char postalCode[CTC_NAME_SIZE];
|
||||||
char postalCodeEnc;
|
char postalCodeEnc;
|
||||||
#ifdef WOLFSSL_CERT_EXT
|
#ifdef WOLFSSL_CERT_EXT
|
||||||
|
|||||||
@ -156,7 +156,7 @@ enum Pkcs7_Misc {
|
|||||||
MAX_CONTENT_BLOCK_LEN = DES_BLOCK_SIZE,
|
MAX_CONTENT_BLOCK_LEN = DES_BLOCK_SIZE,
|
||||||
#endif
|
#endif
|
||||||
MAX_RECIP_SZ = MAX_VERSION_SZ +
|
MAX_RECIP_SZ = MAX_VERSION_SZ +
|
||||||
MAX_SEQ_SZ + ASN_NAME_MAX + MAX_SN_SZ +
|
MAX_SEQ_SZ + WC_ASN_NAME_MAX + MAX_SN_SZ +
|
||||||
MAX_SEQ_SZ + MAX_ALGO_SZ + 1 + MAX_ENCRYPTED_KEY_SZ,
|
MAX_SEQ_SZ + MAX_ALGO_SZ + 1 + MAX_ENCRYPTED_KEY_SZ,
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user