crypto/crl: add getIssuerName, getIssuerUID

38aa86de · Adrien Béraud · fdf476a3 · 38aa86de · 38aa86de
Commit 38aa86de authored 8 years ago by Adrien Béraud
--- a/include/opendht/crypto.h
+++ b/include/opendht/crypto.h
@@ -213,6 +213,12 @@ public:
     */
    Blob getNumber() const;

+    /** Read CRL issuer Common Name (CN) */
+    std::string getIssuerName() const;
+
+    /** Read CRL issuer User ID (UID) */
+    std::string getIssuerUID() const;
+
    time_point getUpdateTime() const;
    time_point getNextUpdateTime() const;


--- a/src/crypto.cpp
+++ b/src/crypto.cpp
@@ -962,6 +962,32 @@ RevocationList::revoke(const Certificate& crt, std::chrono::system_clock::time_p
        throw CryptoException(std::string("Can't revoke certificate: ") + gnutls_strerror(err));
 }

+static std::string
+getCRLIssuerDN(gnutls_x509_crl_t cert, const char* oid)
+{
+    std::string dn;
+    dn.resize(512);
+    size_t dn_sz = dn.size();
+    int ret = gnutls_x509_crl_get_issuer_dn_by_oid(cert, oid, 0, 0, &(*dn.begin()), &dn_sz);
+    if (ret != GNUTLS_E_SUCCESS)
+        return {};  
+    dn.resize(dn_sz);
+    return dn;
+}
+
+std::string
+RevocationList::getIssuerName() const
+{
+    return getCRLIssuerDN(crl, GNUTLS_OID_X520_COMMON_NAME);
+}
+
+/** Read CRL issuer User ID (UID) */
+std::string
+RevocationList::getIssuerUID() const
+{
+    return getCRLIssuerDN(crl, GNUTLS_OID_LDAP_UID);
+}
+
 RevocationList::time_point
 RevocationList::getNextUpdateTime() const
 {