1 /*
2 * Copyright 1995-2024 The OpenSSL Project Authors. All Rights Reserved.
3 *
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
10 #include <stdio.h>
11 #include "internal/cryptlib.h"
12 #include <openssl/crypto.h>
13 #include <openssl/x509.h>
14
X509_STORE_set_default_paths_ex(X509_STORE * ctx,OSSL_LIB_CTX * libctx,const char * propq)15 int X509_STORE_set_default_paths_ex(X509_STORE *ctx, OSSL_LIB_CTX *libctx,
16 const char *propq)
17 {
18 X509_LOOKUP *lookup;
19
20 lookup = X509_STORE_add_lookup(ctx, X509_LOOKUP_file());
21 if (lookup == NULL)
22 return 0;
23 X509_LOOKUP_load_file_ex(lookup, NULL, X509_FILETYPE_DEFAULT, libctx, propq);
24
25 lookup = X509_STORE_add_lookup(ctx, X509_LOOKUP_hash_dir());
26 if (lookup == NULL)
27 return 0;
28 X509_LOOKUP_add_dir(lookup, NULL, X509_FILETYPE_DEFAULT);
29
30 lookup = X509_STORE_add_lookup(ctx, X509_LOOKUP_store());
31 if (lookup == NULL)
32 return 0;
33 /*
34 * The NULL URI argument will activate any default URIs (presently none),
35 * DO NOT pass the default CApath or CAfile, they're already handled above,
36 * likely much more efficiently.
37 */
38 X509_LOOKUP_add_store_ex(lookup, NULL, libctx, propq);
39
40 /* clear any errors */
41 ERR_clear_error();
42
43 return 1;
44 }
X509_STORE_set_default_paths(X509_STORE * ctx)45 int X509_STORE_set_default_paths(X509_STORE *ctx)
46 {
47 return X509_STORE_set_default_paths_ex(ctx, NULL, NULL);
48 }
49
X509_STORE_load_file_ex(X509_STORE * ctx,const char * file,OSSL_LIB_CTX * libctx,const char * propq)50 int X509_STORE_load_file_ex(X509_STORE *ctx, const char *file,
51 OSSL_LIB_CTX *libctx, const char *propq)
52 {
53 X509_LOOKUP *lookup;
54
55 if (file == NULL
56 || (lookup = X509_STORE_add_lookup(ctx, X509_LOOKUP_file())) == NULL
57 || X509_LOOKUP_load_file_ex(lookup, file, X509_FILETYPE_PEM, libctx,
58 propq) <= 0)
59 return 0;
60
61 return 1;
62 }
63
X509_STORE_load_file(X509_STORE * ctx,const char * file)64 int X509_STORE_load_file(X509_STORE *ctx, const char *file)
65 {
66 return X509_STORE_load_file_ex(ctx, file, NULL, NULL);
67 }
68
X509_STORE_load_path(X509_STORE * ctx,const char * path)69 int X509_STORE_load_path(X509_STORE *ctx, const char *path)
70 {
71 X509_LOOKUP *lookup;
72
73 if (path == NULL
74 || (lookup = X509_STORE_add_lookup(ctx, X509_LOOKUP_hash_dir())) == NULL
75 || X509_LOOKUP_add_dir(lookup, path, X509_FILETYPE_PEM) <= 0)
76 return 0;
77
78 return 1;
79 }
80
X509_STORE_load_store_ex(X509_STORE * ctx,const char * uri,OSSL_LIB_CTX * libctx,const char * propq)81 int X509_STORE_load_store_ex(X509_STORE *ctx, const char *uri,
82 OSSL_LIB_CTX *libctx, const char *propq)
83 {
84 X509_LOOKUP *lookup;
85
86 if (uri == NULL
87 || (lookup = X509_STORE_add_lookup(ctx, X509_LOOKUP_store())) == NULL
88 || X509_LOOKUP_add_store_ex(lookup, uri, libctx, propq) == 0)
89 return 0;
90
91 return 1;
92 }
93
X509_STORE_load_store(X509_STORE * ctx,const char * uri)94 int X509_STORE_load_store(X509_STORE *ctx, const char *uri)
95 {
96 return X509_STORE_load_store_ex(ctx, uri, NULL, NULL);
97 }
98
X509_STORE_load_locations_ex(X509_STORE * ctx,const char * file,const char * path,OSSL_LIB_CTX * libctx,const char * propq)99 int X509_STORE_load_locations_ex(X509_STORE *ctx, const char *file,
100 const char *path, OSSL_LIB_CTX *libctx,
101 const char *propq)
102 {
103 if (file == NULL && path == NULL)
104 return 0;
105 if (file != NULL && !X509_STORE_load_file_ex(ctx, file, libctx, propq))
106 return 0;
107 if (path != NULL && !X509_STORE_load_path(ctx, path))
108 return 0;
109 return 1;
110 }
111
X509_STORE_load_locations(X509_STORE * ctx,const char * file,const char * path)112 int X509_STORE_load_locations(X509_STORE *ctx, const char *file,
113 const char *path)
114 {
115 return X509_STORE_load_locations_ex(ctx, file, path, NULL, NULL);
116 }
117
