aboutsummaryrefslogtreecommitdiffstats
path: root/server/resty/openssl/x509/extensions.lua
blob: 3b64b8a1946478e12a0d3cdf5e3bfc416ce06d97 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

local ffi = require "ffi"
local C = ffi.C
local ffi_gc = ffi.gc

local stack_lib = require "resty.openssl.stack"
local extension_lib = require "resty.openssl.x509.extension"
local format_error = require("resty.openssl.err").format_error

local _M = {}

local stack_ptr_ct = ffi.typeof("OPENSSL_STACK*")

local STACK = "X509_EXTENSION"
local new = stack_lib.new_of(STACK)
local add = stack_lib.add_of(STACK)
local dup = stack_lib.dup_of(STACK)
local mt = stack_lib.mt_of(STACK, extension_lib.dup, _M)

function _M.new()
  local raw = new()

  local self = setmetatable({
    stack_of = STACK,
    ctx = raw,
  }, mt)

  return self, nil
end

function _M.istype(l)
  return l and l.ctx and ffi.istype(stack_ptr_ct, l.ctx)
            and l.stack_of and l.stack_of == STACK
end

function _M.dup(ctx)
  if ctx == nil or not ffi.istype(stack_ptr_ct, ctx) then
    return nil, "x509.extensions.dup: expect a stack ctx at #1, got " .. type(ctx)
  end

  local dup_ctx = dup(ctx)

  return setmetatable({
    ctx = dup_ctx,
    -- don't let lua gc the original stack to keep its elements
    _dupped_from = ctx,
    _is_shallow_copy = true,
    _elem_refs = {},
    _elem_refs_idx = 1,
  }, mt), nil
end

function _M:add(extension)
  if not extension_lib.istype(extension) then
    return nil, "expect a x509.extension instance at #1"
  end

  local dup = C.X509_EXTENSION_dup(extension.ctx)
  if dup == nil then
    return nil, format_error("extensions:add: X509_EXTENSION_dup")
  end

  local _, err = add(self.ctx, dup)
  if err then
    C.X509_EXTENSION_free(dup)
    return nil, err
  end

  -- if the stack is duplicated, the gc handler is not pop_free
  -- handle the gc by ourselves
  if self._is_shallow_copy then
    ffi_gc(dup, C.X509_EXTENSION_free)
    self._elem_refs[self._elem_refs_idx] = dup
    self._elem_refs_idx = self._elem_refs_idx + 1
  end

  return true
end

_M.all = stack_lib.all_func(mt)
_M.each = mt.__ipairs
_M.index = mt.__index
_M.count = mt.__len

return _M