Home Explore Help
Sign In
SMusatov
/
ydb
mirror of https://github.com/ydb-platform/ydb.git
1
0
Fork 0
Files
Tree: 0d2f9d1286
Branches Tags
ydb
/
contrib
/
python
/
cryptography
/
py3
/
_cffi_src
/
openssl
/
x509v3.py

x509v3.py 10 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314 
  1. # This file is dual licensed under the terms of the Apache License, Version
    2. 

  2. # 2.0, and the BSD License. See the LICENSE file in the root of this repository
    3. 

  3. # for complete details.
    4. 

  4. 

  5. from __future__ import absolute_import, division, print_function
    6. 

  6. 

  7. INCLUDES = """
    8. 

  8. #include <openssl/x509v3.h>
    9. 

  9. 

  10. /*
    11. 

  11.  * This is part of a work-around for the difficulty cffi has in dealing with
    12. 

  12.  * `LHASH_OF(foo)` as the name of a type.  We invent a new, simpler name that
    13. 

  13.  * will be an alias for this type and use the alias throughout.  This works
    14. 

  14.  * together with another opaque typedef for the same name in the TYPES section.
    15. 

  15.  * Note that the result is an opaque type.
    16. 

  16.  */
    17. 

  17. typedef LHASH_OF(CONF_VALUE) Cryptography_LHASH_OF_CONF_VALUE;
    18. 

  18. 

  19. typedef STACK_OF(ACCESS_DESCRIPTION) Cryptography_STACK_OF_ACCESS_DESCRIPTION;
    20. 

  20. typedef STACK_OF(DIST_POINT) Cryptography_STACK_OF_DIST_POINT;
    21. 

  21. typedef STACK_OF(POLICYQUALINFO) Cryptography_STACK_OF_POLICYQUALINFO;
    22. 

  22. typedef STACK_OF(POLICYINFO) Cryptography_STACK_OF_POLICYINFO;
    23. 

  23. typedef STACK_OF(ASN1_INTEGER) Cryptography_STACK_OF_ASN1_INTEGER;
    24. 

  24. typedef STACK_OF(GENERAL_SUBTREE) Cryptography_STACK_OF_GENERAL_SUBTREE;
    25. 

  25. """
    26. 

  26. 

  27. TYPES = """
    28. 

  28. typedef ... Cryptography_STACK_OF_ACCESS_DESCRIPTION;
    29. 

  29. typedef ... Cryptography_STACK_OF_POLICYQUALINFO;
    30. 

  30. typedef ... Cryptography_STACK_OF_POLICYINFO;
    31. 

  31. typedef ... Cryptography_STACK_OF_ASN1_INTEGER;
    32. 

  32. typedef ... Cryptography_STACK_OF_GENERAL_SUBTREE;
    33. 

  33. typedef ... EXTENDED_KEY_USAGE;
    34. 

  34. typedef ... CONF;
    35. 

  35. 

  36. typedef struct {
    37. 

  37.     X509 *issuer_cert;
    38. 

  38.     X509 *subject_cert;
    39. 

  39.     ...;
    40. 

  40. } X509V3_CTX;
    41. 

  41. 

  42. typedef void * (*X509V3_EXT_D2I)(void *, const unsigned char **, long);
    43. 

  43. 

  44. static const int GEN_OTHERNAME;
    45. 

  45. static const int GEN_EMAIL;
    46. 

  46. static const int GEN_X400;
    47. 

  47. static const int GEN_DNS;
    48. 

  48. static const int GEN_URI;
    49. 

  49. static const int GEN_DIRNAME;
    50. 

  50. static const int GEN_EDIPARTY;
    51. 

  51. static const int GEN_IPADD;
    52. 

  52. static const int GEN_RID;
    53. 

  53. 

  54. typedef struct {
    55. 

  55.     ASN1_OBJECT *type_id;
    56. 

  56.     ASN1_TYPE *value;
    57. 

  57. } OTHERNAME;
    58. 

  58. 

  59. typedef struct {
    60. 

  60.     ...;
    61. 

  61. } EDIPARTYNAME;
    62. 

  62. 

  63. typedef struct {
    64. 

  64.     int ca;
    65. 

  65.     ASN1_INTEGER *pathlen;
    66. 

  66. } BASIC_CONSTRAINTS;
    67. 

  67. 

  68. typedef struct {
    69. 

  69.     Cryptography_STACK_OF_GENERAL_SUBTREE *permittedSubtrees;
    70. 

  70.     Cryptography_STACK_OF_GENERAL_SUBTREE *excludedSubtrees;
    71. 

  71. } NAME_CONSTRAINTS;
    72. 

  72. 

  73. typedef struct {
    74. 

  74.     ASN1_INTEGER *requireExplicitPolicy;
    75. 

  75.     ASN1_INTEGER *inhibitPolicyMapping;
    76. 

  76. } POLICY_CONSTRAINTS;
    77. 

  77. 

  78. 

  79. typedef struct {
    80. 

  80.     int type;
    81. 

  81.     union {
    82. 

  82.         char *ptr;
    83. 

  83.         OTHERNAME *otherName;  /* otherName */
    84. 

  84.         ASN1_IA5STRING *rfc822Name;
    85. 

  85.         ASN1_IA5STRING *dNSName;
    86. 

  86.         ASN1_TYPE *x400Address;
    87. 

  87.         X509_NAME *directoryName;
    88. 

  88.         EDIPARTYNAME *ediPartyName;
    89. 

  89.         ASN1_IA5STRING *uniformResourceIdentifier;
    90. 

  90.         ASN1_OCTET_STRING *iPAddress;
    91. 

  91.         ASN1_OBJECT *registeredID;
    92. 

  92. 

  93.         /* Old names */
    94. 

  94.         ASN1_OCTET_STRING *ip; /* iPAddress */
    95. 

  95.         X509_NAME *dirn;       /* dirn */
    96. 

  96.         ASN1_IA5STRING *ia5;   /* rfc822Name, dNSName, */
    97. 

  97.                                /*   uniformResourceIdentifier */
    98. 

  98.         ASN1_OBJECT *rid;      /* registeredID */
    99. 

  99.         ASN1_TYPE *other;      /* x400Address */
    100. 

  100.     } d;
    101. 

  101.     ...;
    102. 

  102. } GENERAL_NAME;
    103. 

  103. 

  104. typedef struct {
    105. 

  105.     GENERAL_NAME *base;
    106. 

  106.     ASN1_INTEGER *minimum;
    107. 

  107.     ASN1_INTEGER *maximum;
    108. 

  108. } GENERAL_SUBTREE;
    109. 

  109. 

  110. typedef struct stack_st_GENERAL_NAME GENERAL_NAMES;
    111. 

  111. 

  112. typedef struct {
    113. 

  113.     ASN1_OCTET_STRING *keyid;
    114. 

  114.     GENERAL_NAMES *issuer;
    115. 

  115.     ASN1_INTEGER *serial;
    116. 

  116. } AUTHORITY_KEYID;
    117. 

  117. 

  118. typedef struct {
    119. 

  119.     ASN1_OBJECT *method;
    120. 

  120.     GENERAL_NAME *location;
    121. 

  121. } ACCESS_DESCRIPTION;
    122. 

  122. 

  123. typedef ... Cryptography_LHASH_OF_CONF_VALUE;
    124. 

  124. 

  125. 

  126. typedef ... Cryptography_STACK_OF_DIST_POINT;
    127. 

  127. 

  128. typedef struct {
    129. 

  129.     int type;
    130. 

  130.     union {
    131. 

  131.         GENERAL_NAMES *fullname;
    132. 

  132.         Cryptography_STACK_OF_X509_NAME_ENTRY *relativename;
    133. 

  133.     } name;
    134. 

  134.     ...;
    135. 

  135. } DIST_POINT_NAME;
    136. 

  136. 

  137. typedef struct {
    138. 

  138.     DIST_POINT_NAME *distpoint;
    139. 

  139.     ASN1_BIT_STRING *reasons;
    140. 

  140.     GENERAL_NAMES *CRLissuer;
    141. 

  141.     ...;
    142. 

  142. } DIST_POINT;
    143. 

  143. 

  144. typedef struct {
    145. 

  145.     DIST_POINT_NAME *distpoint;
    146. 

  146.     int onlyuser;
    147. 

  147.     int onlyCA;
    148. 

  148.     ASN1_BIT_STRING *onlysomereasons;
    149. 

  149.     int indirectCRL;
    150. 

  150.     int onlyattr;
    151. 

  151. } ISSUING_DIST_POINT;
    152. 

  152. 

  153. typedef struct {
    154. 

  154.     ASN1_STRING *organization;
    155. 

  155.     Cryptography_STACK_OF_ASN1_INTEGER *noticenos;
    156. 

  156. } NOTICEREF;
    157. 

  157. 

  158. typedef struct {
    159. 

  159.     NOTICEREF *noticeref;
    160. 

  160.     ASN1_STRING *exptext;
    161. 

  161. } USERNOTICE;
    162. 

  162. 

  163. typedef struct {
    164. 

  164.     ASN1_OBJECT *pqualid;
    165. 

  165.     union {
    166. 

  166.         ASN1_IA5STRING *cpsuri;
    167. 

  167.         USERNOTICE *usernotice;
    168. 

  168.         ASN1_TYPE *other;
    169. 

  169.     } d;
    170. 

  170. } POLICYQUALINFO;
    171. 

  171. 

  172. typedef struct {
    173. 

  173.     ASN1_OBJECT *policyid;
    174. 

  174.     Cryptography_STACK_OF_POLICYQUALINFO *qualifiers;
    175. 

  175. } POLICYINFO;
    176. 

  176. 

  177. typedef void (*sk_GENERAL_NAME_freefunc)(GENERAL_NAME *);
    178. 

  178. typedef void (*sk_DIST_POINT_freefunc)(DIST_POINT *);
    179. 

  179. typedef void (*sk_POLICYINFO_freefunc)(POLICYINFO *);
    180. 

  180. typedef void (*sk_ACCESS_DESCRIPTION_freefunc)(ACCESS_DESCRIPTION *);
    181. 

  181. """
    182. 

  182. 

  183. 

  184. FUNCTIONS = """
    185. 

  185. int X509V3_EXT_add_alias(int, int);
    186. 

  186. void X509V3_set_ctx(X509V3_CTX *, X509 *, X509 *, X509_REQ *, X509_CRL *, int);
    187. 

  187. int GENERAL_NAME_print(BIO *, GENERAL_NAME *);
    188. 

  188. GENERAL_NAMES *GENERAL_NAMES_new(void);
    189. 

  189. void GENERAL_NAMES_free(GENERAL_NAMES *);
    190. 

  190. void *X509V3_EXT_d2i(X509_EXTENSION *);
    191. 

  191. int X509_check_ca(X509 *);
    192. 

  192. /* X509 became a const arg in 1.1.0 */
    193. 

  193. void *X509_get_ext_d2i(X509 *, int, int *, int *);
    194. 

  194. /* The last two char * args became const char * in 1.1.0 */
    195. 

  195. X509_EXTENSION *X509V3_EXT_nconf(CONF *, X509V3_CTX *, char *, char *);
    196. 

  196. /* This is a macro defined by a call to DECLARE_ASN1_FUNCTIONS in the
    197. 

  197.    x509v3.h header. */
    198. 

  198. BASIC_CONSTRAINTS *BASIC_CONSTRAINTS_new(void);
    199. 

  199. void BASIC_CONSTRAINTS_free(BASIC_CONSTRAINTS *);
    200. 

  200. /* This is a macro defined by a call to DECLARE_ASN1_FUNCTIONS in the
    201. 

  201.    x509v3.h header. */
    202. 

  202. AUTHORITY_KEYID *AUTHORITY_KEYID_new(void);
    203. 

  203. void AUTHORITY_KEYID_free(AUTHORITY_KEYID *);
    204. 

  204. 

  205. NAME_CONSTRAINTS *NAME_CONSTRAINTS_new(void);
    206. 

  206. void NAME_CONSTRAINTS_free(NAME_CONSTRAINTS *);
    207. 

  207. 

  208. OTHERNAME *OTHERNAME_new(void);
    209. 

  209. void OTHERNAME_free(OTHERNAME *);
    210. 

  210. 

  211. POLICY_CONSTRAINTS *POLICY_CONSTRAINTS_new(void);
    212. 

  212. void POLICY_CONSTRAINTS_free(POLICY_CONSTRAINTS *);
    213. 

  213. 

  214. void *X509V3_set_ctx_nodb(X509V3_CTX *);
    215. 

  215. 

  216. int i2d_GENERAL_NAMES(GENERAL_NAMES *, unsigned char **);
    217. 

  217. GENERAL_NAMES *d2i_GENERAL_NAMES(GENERAL_NAMES **, const unsigned char **,
    218. 

  218.                                  long);
    219. 

  219. 

  220. int sk_GENERAL_NAME_num(struct stack_st_GENERAL_NAME *);
    221. 

  221. int sk_GENERAL_NAME_push(struct stack_st_GENERAL_NAME *, GENERAL_NAME *);
    222. 

  222. GENERAL_NAME *sk_GENERAL_NAME_value(struct stack_st_GENERAL_NAME *, int);
    223. 

  223. void sk_GENERAL_NAME_pop_free(struct stack_st_GENERAL_NAME *,
    224. 

  224.                               sk_GENERAL_NAME_freefunc);
    225. 

  225. 

  226. Cryptography_STACK_OF_ACCESS_DESCRIPTION *sk_ACCESS_DESCRIPTION_new_null(void);
    227. 

  227. int sk_ACCESS_DESCRIPTION_num(Cryptography_STACK_OF_ACCESS_DESCRIPTION *);
    228. 

  228. ACCESS_DESCRIPTION *sk_ACCESS_DESCRIPTION_value(
    229. 

  229.     Cryptography_STACK_OF_ACCESS_DESCRIPTION *, int
    230. 

  230. );
    231. 

  231. void sk_ACCESS_DESCRIPTION_free(Cryptography_STACK_OF_ACCESS_DESCRIPTION *);
    232. 

  232. void sk_ACCESS_DESCRIPTION_pop_free(Cryptography_STACK_OF_ACCESS_DESCRIPTION *,
    233. 

  233.                               sk_ACCESS_DESCRIPTION_freefunc);
    234. 

  234. int sk_ACCESS_DESCRIPTION_push(Cryptography_STACK_OF_ACCESS_DESCRIPTION *,
    235. 

  235.                                ACCESS_DESCRIPTION *);
    236. 

  236. 

  237. ACCESS_DESCRIPTION *ACCESS_DESCRIPTION_new(void);
    238. 

  238. void ACCESS_DESCRIPTION_free(ACCESS_DESCRIPTION *);
    239. 

  239. 

  240. X509_EXTENSION *X509V3_EXT_conf_nid(Cryptography_LHASH_OF_CONF_VALUE *,
    241. 

  241.                                     X509V3_CTX *, int, char *);
    242. 

  242. 

  243. Cryptography_STACK_OF_DIST_POINT *sk_DIST_POINT_new_null(void);
    244. 

  244. void sk_DIST_POINT_free(Cryptography_STACK_OF_DIST_POINT *);
    245. 

  245. int sk_DIST_POINT_num(Cryptography_STACK_OF_DIST_POINT *);
    246. 

  246. DIST_POINT *sk_DIST_POINT_value(Cryptography_STACK_OF_DIST_POINT *, int);
    247. 

  247. int sk_DIST_POINT_push(Cryptography_STACK_OF_DIST_POINT *, DIST_POINT *);
    248. 

  248. void sk_DIST_POINT_pop_free(Cryptography_STACK_OF_DIST_POINT *,
    249. 

  249.                             sk_DIST_POINT_freefunc);
    250. 

  250. void CRL_DIST_POINTS_free(Cryptography_STACK_OF_DIST_POINT *);
    251. 

  251. 

  252. void sk_POLICYINFO_free(Cryptography_STACK_OF_POLICYINFO *);
    253. 

  253. int sk_POLICYINFO_num(Cryptography_STACK_OF_POLICYINFO *);
    254. 

  254. POLICYINFO *sk_POLICYINFO_value(Cryptography_STACK_OF_POLICYINFO *, int);
    255. 

  255. int sk_POLICYINFO_push(Cryptography_STACK_OF_POLICYINFO *, POLICYINFO *);
    256. 

  256. Cryptography_STACK_OF_POLICYINFO *sk_POLICYINFO_new_null(void);
    257. 

  257. void sk_POLICYINFO_pop_free(Cryptography_STACK_OF_POLICYINFO *,
    258. 

  258.                             sk_POLICYINFO_freefunc);
    259. 

  259. void CERTIFICATEPOLICIES_free(Cryptography_STACK_OF_POLICYINFO *);
    260. 

  260. 

  261. POLICYINFO *POLICYINFO_new(void);
    262. 

  262. void POLICYINFO_free(POLICYINFO *);
    263. 

  263. 

  264. POLICYQUALINFO *POLICYQUALINFO_new(void);
    265. 

  265. void POLICYQUALINFO_free(POLICYQUALINFO *);
    266. 

  266. 

  267. NOTICEREF *NOTICEREF_new(void);
    268. 

  268. void NOTICEREF_free(NOTICEREF *);
    269. 

  269. 

  270. USERNOTICE *USERNOTICE_new(void);
    271. 

  271. void USERNOTICE_free(USERNOTICE *);
    272. 

  272. 

  273. void sk_POLICYQUALINFO_free(Cryptography_STACK_OF_POLICYQUALINFO *);
    274. 

  274. int sk_POLICYQUALINFO_num(Cryptography_STACK_OF_POLICYQUALINFO *);
    275. 

  275. POLICYQUALINFO *sk_POLICYQUALINFO_value(Cryptography_STACK_OF_POLICYQUALINFO *,
    276. 

  276.                                         int);
    277. 

  277. int sk_POLICYQUALINFO_push(Cryptography_STACK_OF_POLICYQUALINFO *,
    278. 

  278.                            POLICYQUALINFO *);
    279. 

  279. Cryptography_STACK_OF_POLICYQUALINFO *sk_POLICYQUALINFO_new_null(void);
    280. 

  280. 

  281. Cryptography_STACK_OF_GENERAL_SUBTREE *sk_GENERAL_SUBTREE_new_null(void);
    282. 

  282. void sk_GENERAL_SUBTREE_free(Cryptography_STACK_OF_GENERAL_SUBTREE *);
    283. 

  283. int sk_GENERAL_SUBTREE_num(Cryptography_STACK_OF_GENERAL_SUBTREE *);
    284. 

  284. GENERAL_SUBTREE *sk_GENERAL_SUBTREE_value(
    285. 

  285.     Cryptography_STACK_OF_GENERAL_SUBTREE *, int
    286. 

  286. );
    287. 

  287. int sk_GENERAL_SUBTREE_push(Cryptography_STACK_OF_GENERAL_SUBTREE *,
    288. 

  288.                             GENERAL_SUBTREE *);
    289. 

  289. 

  290. GENERAL_SUBTREE *GENERAL_SUBTREE_new(void);
    291. 

  291. 

  292. void sk_ASN1_INTEGER_free(Cryptography_STACK_OF_ASN1_INTEGER *);
    293. 

  293. int sk_ASN1_INTEGER_num(Cryptography_STACK_OF_ASN1_INTEGER *);
    294. 

  294. ASN1_INTEGER *sk_ASN1_INTEGER_value(Cryptography_STACK_OF_ASN1_INTEGER *, int);
    295. 

  295. int sk_ASN1_INTEGER_push(Cryptography_STACK_OF_ASN1_INTEGER *, ASN1_INTEGER *);
    296. 

  296. Cryptography_STACK_OF_ASN1_INTEGER *sk_ASN1_INTEGER_new_null(void);
    297. 

  297. 

  298. X509_EXTENSION *X509V3_EXT_i2d(int, int, void *);
    299. 

  299. 

  300. DIST_POINT *DIST_POINT_new(void);
    301. 

  301. void DIST_POINT_free(DIST_POINT *);
    302. 

  302. 

  303. DIST_POINT_NAME *DIST_POINT_NAME_new(void);
    304. 

  304. void DIST_POINT_NAME_free(DIST_POINT_NAME *);
    305. 

  305. 

  306. GENERAL_NAME *GENERAL_NAME_new(void);
    307. 

  307. void GENERAL_NAME_free(GENERAL_NAME *);
    308. 

  308. 

  309. ISSUING_DIST_POINT *ISSUING_DIST_POINT_new(void);
    310. 

  310. void ISSUING_DIST_POINT_free(ISSUING_DIST_POINT *);
    311. 

  311. """
    312. 

  312. 

  313. CUSTOMIZATIONS = """
    314. 

  314. """
    315.