|
|
|
|
/*
|
|
|
|
|
* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
|
|
|
|
|
* 2006.
|
|
|
|
|
*/
|
|
|
|
|
/* ====================================================================
|
|
|
|
|
* Copyright (c) 2006 The OpenSSL Project. All rights reserved.
|
|
|
|
|
*
|
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
|
* modification, are permitted provided that the following conditions
|
|
|
|
|
* are met:
|
|
|
|
|
*
|
|
|
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
|
*
|
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer in
|
|
|
|
|
* the documentation and/or other materials provided with the
|
|
|
|
|
* distribution.
|
|
|
|
|
*
|
|
|
|
|
* 3. All advertising materials mentioning features or use of this
|
|
|
|
|
* software must display the following acknowledgment:
|
|
|
|
|
* "This product includes software developed by the OpenSSL Project
|
|
|
|
|
* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
|
|
|
|
|
*
|
|
|
|
|
* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
|
|
|
|
|
* endorse or promote products derived from this software without
|
|
|
|
|
* prior written permission. For written permission, please contact
|
|
|
|
|
* licensing@OpenSSL.org.
|
|
|
|
|
*
|
|
|
|
|
* 5. Products derived from this software may not be called "OpenSSL"
|
|
|
|
|
* nor may "OpenSSL" appear in their names without prior written
|
|
|
|
|
* permission of the OpenSSL Project.
|
|
|
|
|
*
|
|
|
|
|
* 6. Redistributions of any form whatsoever must retain the following
|
|
|
|
|
* acknowledgment:
|
|
|
|
|
* "This product includes software developed by the OpenSSL Project
|
|
|
|
|
* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
|
|
|
|
|
*
|
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
|
|
|
|
|
* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
|
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
|
|
|
|
|
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
|
|
|
|
|
* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
|
|
|
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
|
|
|
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
|
|
|
|
|
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
|
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
|
|
|
|
|
* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
|
|
|
|
|
* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
|
|
|
|
|
* OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
|
* ====================================================================
|
|
|
|
|
*
|
|
|
|
|
* This product includes cryptographic software written by Eric Young
|
|
|
|
|
* (eay@cryptsoft.com). This product includes software written by Tim
|
|
|
|
|
* Hudson (tjh@cryptsoft.com).
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#ifndef OPENSSL_HEADER_ASN1_ASN1_LOCL_H
|
|
|
|
|
#define OPENSSL_HEADER_ASN1_ASN1_LOCL_H
|
|
|
|
|
|
|
|
|
|
#include <time.h>
|
|
|
|
|
|
|
|
|
|
#include <openssl/asn1.h>
|
|
|
|
|
#include <openssl/asn1t.h>
|
|
|
|
|
|
|
|
|
|
#if defined(__cplusplus)
|
|
|
|
|
extern "C" {
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/* Wrapper functions for time functions. */
|
|
|
|
|
|
|
|
|
|
/* OPENSSL_gmtime wraps |gmtime_r|. See the manual page for that function. */
|
|
|
|
|
struct tm *OPENSSL_gmtime(const time_t *time, struct tm *result);
|
|
|
|
|
|
|
|
|
|
/* OPENSSL_gmtime_adj updates |tm| by adding |offset_day| days and |offset_sec|
|
|
|
|
|
* seconds. */
|
|
|
|
|
int OPENSSL_gmtime_adj(struct tm *tm, int offset_day, long offset_sec);
|
|
|
|
|
|
|
|
|
|
/* OPENSSL_gmtime_diff calculates the difference between |from| and |to| and
|
|
|
|
|
* outputs the difference as a number of days and seconds in |*out_days| and
|
|
|
|
|
* |*out_secs|. */
|
|
|
|
|
int OPENSSL_gmtime_diff(int *out_days, int *out_secs, const struct tm *from,
|
|
|
|
|
const struct tm *to);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/* Internal ASN1 structures and functions: not for application use */
|
|
|
|
|
|
|
|
|
|
/* These are used internally in the ASN1_OBJECT to keep track of
|
|
|
|
|
* whether the names and data need to be free()ed */
|
|
|
|
|
#define ASN1_OBJECT_FLAG_DYNAMIC 0x01 /* internal use */
|
|
|
|
|
#define ASN1_OBJECT_FLAG_DYNAMIC_STRINGS 0x04 /* internal use */
|
|
|
|
|
#define ASN1_OBJECT_FLAG_DYNAMIC_DATA 0x08 /* internal use */
|
|
|
|
|
|
|
|
|
|
/* An asn1_object_st (aka |ASN1_OBJECT|) represents an ASN.1 OBJECT IDENTIFIER.
|
|
|
|
|
* Note: Mutating an |ASN1_OBJECT| is only permitted when initializing it. The
|
|
|
|
|
* library maintains a table of static |ASN1_OBJECT|s, which may be referenced
|
|
|
|
|
* by non-const |ASN1_OBJECT| pointers. Code which receives an |ASN1_OBJECT|
|
|
|
|
|
* pointer externally must assume it is immutable, even if the pointer is not
|
|
|
|
|
* const. */
|
|
|
|
|
struct asn1_object_st {
|
|
|
|
|
const char *sn, *ln;
|
|
|
|
|
int nid;
|
|
|
|
|
int length;
|
|
|
|
|
const unsigned char *data; /* data remains const after init */
|
|
|
|
|
int flags; /* Should we free this one */
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
ASN1_OBJECT *ASN1_OBJECT_new(void);
|
|
|
|
|
|
|
|
|
|
// ASN1_ENCODING structure: this is used to save the received
|
|
|
|
|
// encoding of an ASN1 type. This is useful to get round
|
|
|
|
|
// problems with invalid encodings which can break signatures.
|
|
|
|
|
typedef struct ASN1_ENCODING_st {
|
|
|
|
|
unsigned char *enc; // DER encoding
|
|
|
|
|
long len; // Length of encoding
|
|
|
|
|
int modified; // set to 1 if 'enc' is invalid
|
|
|
|
|
// alias_only is zero if |enc| owns the buffer that it points to
|
|
|
|
|
// (although |enc| may still be NULL). If one, |enc| points into a
|
|
|
|
|
// buffer that is owned elsewhere.
|
|
|
|
|
unsigned alias_only : 1;
|
|
|
|
|
// alias_only_on_next_parse is one iff the next parsing operation
|
|
|
|
|
// should avoid taking a copy of the input and rather set
|
|
|
|
|
// |alias_only|.
|
|
|
|
|
unsigned alias_only_on_next_parse : 1;
|
|
|
|
|
} ASN1_ENCODING;
|
|
|
|
|
|
|
|
|
|
int asn1_utctime_to_tm(struct tm *tm, const ASN1_UTCTIME *d);
|
|
|
|
|
int asn1_generalizedtime_to_tm(struct tm *tm, const ASN1_GENERALIZEDTIME *d);
|
|
|
|
|
|
|
|
|
|
void asn1_item_combine_free(ASN1_VALUE **pval, const ASN1_ITEM *it,
|
|
|
|
|
int combine);
|
|
|
|
|
|
|
|
|
|
int UTF8_getc(const unsigned char *str, int len, uint32_t *val);
|
|
|
|
|
int UTF8_putc(unsigned char *str, int len, uint32_t value);
|
|
|
|
|
|
|
|
|
|
int ASN1_item_ex_new(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
void ASN1_item_ex_free(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
void ASN1_template_free(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt);
|
|
|
|
|
int ASN1_item_ex_d2i(ASN1_VALUE **pval, const unsigned char **in, long len,
|
|
|
|
|
const ASN1_ITEM *it, int tag, int aclass, char opt,
|
|
|
|
|
ASN1_TLC *ctx);
|
|
|
|
|
|
|
|
|
|
/* ASN1_item_ex_i2d encodes |*pval| as a value of type |it| to |out| under the
|
Reject missing required fields in i2d functions.
See also 006906cddda37e24a66443199444ef4476697477 from OpenSSL, though
this CL uses a different strategy from upstream. Upstream makes
ASN1_item_ex_i2d continue to allow optionals and checks afterwards at
every non-optional call site. This CL pushes down an optional parameter
and says functions cannot omit items unless explicitly allowed.
I think this is a better default, though it is a larger change. Fields
are only optional when they come from an ASN1_TEMPLATE with the OPTIONAL
flag. Upstream's strategy misses top-level calls.
This CL additionally adds checks for optional ASN1_TEMPLATEs in contexts
where it doesn't make sense. Only fields of SEQUENCEs and SETs may be
OPTIONAL, but the ASN1_ITEM/ASN1_TEMPLATE split doesn't quite match
ASN.1 itself. ASN1_TEMPLATE is additionally responsible for
explicit/implicit tagging, and SEQUENCE/SET OF. That means CHOICE arms
and the occasional top-level type (ASN1_ITEM_TEMPLATE) use ASN1_TEMPLATE
but will get confused if marked optional.
As part of this, i2d_FOO(NULL) now returns -1 rather than "successfully"
writing 0 bytes. If we want to allow NULL at the top-level, that's not
too hard to arrange, but our CBB-based i2d functions do not.
Update-Note: Structures with missing mandatory fields can no longer be
encoded. Note that, apart from the cases already handled by preceding
CLs, tasn_new.c will fill in non-NULL empty objects everywhere. The main
downstream impact I've seen of this particular change is in combination
with other bugs. Consider a caller that does:
GENERAL_NAME *name = GENERAL_NAME_new();
name->type = GEN_DNS;
name->d.dNSName = DoSomethingComplicated(...);
Suppose DoSomethingComplicated() was actually fallible and returned
NULL, but the caller forgot to check. They'd now construct a
GENERAL_NAME with a missing field. Previously, this would silently
serialize some garbage (omitted field) or empty string. Now we fail to
encode, but the true error was the uncaught DoSomethingComplicated()
failure. (Which likely was itself a bug.)
Bug: 429
Change-Id: I37fe618761be64a619be9fdc8d416f24ecbb8c46
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/49350
Commit-Queue: David Benjamin <davidben@google.com>
Reviewed-by: Adam Langley <agl@google.com>
4 years ago
|
|
|
* i2d output convention. It returns a non-zero length on success and -1 on
|
|
|
|
|
* error. If |tag| is -1. the tag and class come from |it|. Otherwise, the tag
|
Unwind remnants of ASN1_TFLG_NDEF.
The i2d functions internally take a tag/class pair of parameters. If tag
is not -1, we override the tag with (tag, class). Otherwise, class is
ignored. (class is inconsistently called aclass or iclass.)
Historically, the remaning bits of class were repurposed to pass extra
flags down the structure. These had to be preserved in all recursive
calls, so the functions take apart and reassemble the two halves of
aclass/iclass. The only such flag was ASN1_TFLG_NDEF, which on certain
types, caused OpenSSL to encode indefinite-length encoding. We removed
this in https://boringssl-review.googlesource.com/c/boringssl/+/43889.
Due to these flags, if tag == -1, class should default to zero. However,
X509_NAME's callbacks pass -1, -1, instead of -1, 0, effectively setting
all flags. This wasn't noticed because none of the types below X509_NAME
pay attention to ASN1_TFLG_NDEF.
This CL does two things: First, it unwinds the remainder of the flags
machinery. If we ever need flags, we should pass it as a distinct
argument. Second, it fixes the X509_NAME calls and asserts that -1 is
always paired with 0.
Change-Id: I285a73a06ad16980617fe23d5ea7f260fc5dbf16
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/49385
Commit-Queue: David Benjamin <davidben@google.com>
Reviewed-by: Adam Langley <agl@google.com>
4 years ago
|
|
|
* number is |tag| and the class is |aclass|. This is used for implicit tagging.
|
|
|
|
|
* This function treats a missing value as an error, not an optional field. */
|
|
|
|
|
int ASN1_item_ex_i2d(ASN1_VALUE **pval, unsigned char **out,
|
|
|
|
|
const ASN1_ITEM *it, int tag, int aclass);
|
|
|
|
|
|
|
|
|
|
void ASN1_primitive_free(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
/* asn1_get_choice_selector returns the CHOICE selector value for |*pval|, which
|
|
|
|
|
* must of type |it|. */
|
|
|
|
|
int asn1_get_choice_selector(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
int asn1_set_choice_selector(ASN1_VALUE **pval, int value, const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
/* asn1_get_field_ptr returns a pointer to the field in |*pval| corresponding to
|
|
|
|
|
* |tt|. */
|
|
|
|
|
ASN1_VALUE **asn1_get_field_ptr(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt);
|
|
|
|
|
|
|
|
|
|
/* asn1_do_adb returns the |ASN1_TEMPLATE| for the ANY DEFINED BY field |tt|,
|
|
|
|
|
* based on the selector INTEGER or OID in |*pval|. If |tt| is not an ADB field,
|
|
|
|
|
* it returns |tt|. If the selector does not match any value, it returns NULL.
|
|
|
|
|
* If |nullerr| is non-zero, it will additionally push an error to the error
|
|
|
|
|
* queue when there is no match. */
|
|
|
|
|
const ASN1_TEMPLATE *asn1_do_adb(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt,
|
|
|
|
|
int nullerr);
|
|
|
|
|
|
|
|
|
|
void asn1_refcount_set_one(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
int asn1_refcount_dec_and_test_zero(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
void asn1_enc_init(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
void asn1_enc_free(ASN1_VALUE **pval, const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
/* asn1_enc_restore, if |*pval| has a saved encoding, writes it to |out| under
|
|
|
|
|
* the i2d output convention, sets |*len| to the length, and returns one. If it
|
|
|
|
|
* has no saved encoding, it returns zero. */
|
|
|
|
|
int asn1_enc_restore(int *len, unsigned char **out, ASN1_VALUE **pval,
|
|
|
|
|
const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
int asn1_enc_save(ASN1_VALUE **pval, const unsigned char *in, int inlen,
|
|
|
|
|
const ASN1_ITEM *it);
|
|
|
|
|
|
|
|
|
|
/* asn1_type_value_as_pointer returns |a|'s value in pointer form. This is
|
|
|
|
|
* usually the value object but, for BOOLEAN values, is 0 or 0xff cast to
|
|
|
|
|
* a pointer. */
|
|
|
|
|
const void *asn1_type_value_as_pointer(const ASN1_TYPE *a);
|
|
|
|
|
|
|
|
|
|
/* asn1_is_printable returns one if |value| is a valid Unicode codepoint for an
|
|
|
|
|
* ASN.1 PrintableString, and zero otherwise. */
|
|
|
|
|
int asn1_is_printable(uint32_t value);
|
|
|
|
|
|
|
|
|
|
/* asn1_bit_string_length returns the number of bytes in |str| and sets
|
|
|
|
|
* |*out_padding_bits| to the number of padding bits.
|
|
|
|
|
*
|
|
|
|
|
* This function should be used instead of |ASN1_STRING_length| to correctly
|
|
|
|
|
* handle the non-|ASN1_STRING_FLAG_BITS_LEFT| case. */
|
|
|
|
|
int asn1_bit_string_length(const ASN1_BIT_STRING *str,
|
|
|
|
|
uint8_t *out_padding_bits);
|
|
|
|
|
|
|
|
|
|
typedef struct {
|
|
|
|
|
int nid;
|
|
|
|
|
long minsize;
|
|
|
|
|
long maxsize;
|
|
|
|
|
unsigned long mask;
|
|
|
|
|
unsigned long flags;
|
|
|
|
|
} ASN1_STRING_TABLE;
|
|
|
|
|
|
|
|
|
|
/* asn1_get_string_table_for_testing sets |*out_ptr| and |*out_len| to the table
|
|
|
|
|
* of built-in |ASN1_STRING_TABLE| values. It is exported for testing. */
|
|
|
|
|
OPENSSL_EXPORT void asn1_get_string_table_for_testing(
|
|
|
|
|
const ASN1_STRING_TABLE **out_ptr, size_t *out_len);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
#if defined(__cplusplus)
|
|
|
|
|
} /* extern C */
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#endif /* OPENSSL_HEADER_ASN1_ASN1_LOCL_H */
|
