kris
/
boringssl
1
0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
5157 Revīzijas
12 Atzari
38 MiB
Koks: 6ae7ddb755
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no '6ae7ddb755'
${ noResults }
boringssl/crypto/asn1/tasn_utl.c

tasn_utl.c 8.6 KiB
Neapstrādāts Parastais skats Vēsture

Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Add d2i_X509_from_buffer. d2i_X509_from_buffer parses an |X509| from a |CRYPTO_BUFFER| but ensures that the |X509_CINF.enc| doesn't make a copy of the encoded TBSCertificate. Rather the |X509| holds a reference to the given |CRYPTO_BUFFER|. Change-Id: I38a4e3d0ca69fc0fd0ef3e15b53181844080fcad Reviewed-on: https://boringssl-review.googlesource.com/11920 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <alangley@gmail.com> Commit-Queue: Adam Langley <alangley@gmail.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Remove string.h from base.h. Including string.h in base.h causes any file that includes a BoringSSL header to include string.h. Generally this wouldn't be a problem, although string.h might slow down the compile if it wasn't otherwise needed. However, it also causes problems for ipsec-tools in Android because OpenSSL didn't have this behaviour. This change removes string.h from base.h and, instead, adds it to each .c file that requires it. Change-Id: I5968e50b0e230fd3adf9b72dd2836e6f52d6fb37 Reviewed-on: https://boringssl-review.googlesource.com/3200 Reviewed-by: David Benjamin <davidben@chromium.org> Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Eliminate unnecessary includes from low-level crypto modules. Beyond generally eliminating unnecessary includes, eliminate as many includes of headers that declare/define particularly error-prone functionality like strlen, malloc, and free. crypto/err/internal.h was added to remove the dependency on openssl/thread.h from the public openssl/err.h header. The include of <stdlib.h> in openssl/mem.h was retained since it defines OPENSSL_malloc and friends as macros around the stdlib.h functions. The public x509.h, x509v3.h, and ssl.h headers were not changed in order to minimize breakage of source compatibility with external code. Change-Id: I0d264b73ad0a720587774430b2ab8f8275960329 Reviewed-on: https://boringssl-review.googlesource.com/4220 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Convert reference counts in crypto/ This change converts the reference counts in crypto/ to use |CRYPTO_refcount_t|. The reference counts in |X509_PKEY| and |X509_INFO| were never actually used and so were dropped. Change-Id: I75d572cdac1f8c1083c482e29c9519282d7fd16c Reviewed-on: https://boringssl-review.googlesource.com/4772 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Fix up macros. Macros need a healthy dose of parentheses to avoid expression-level misparses. Most of this comes from the clang-tidy CL here: https://android-review.googlesource.com/c/235696/ Also switch most of the macros to use do { ... } while (0) to avoid all the excessive comma operators and statement-level misparses. Change-Id: I4c2ee51e347d2aa8c74a2d82de63838b03bbb0f9 Reviewed-on: https://boringssl-review.googlesource.com/11660 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>
pirms 8 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Convert reference counts in crypto/ This change converts the reference counts in crypto/ to use |CRYPTO_refcount_t|. The reference counts in |X509_PKEY| and |X509_INFO| were never actually used and so were dropped. Change-Id: I75d572cdac1f8c1083c482e29c9519282d7fd16c Reviewed-on: https://boringssl-review.googlesource.com/4772 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Convert reference counts in crypto/ This change converts the reference counts in crypto/ to use |CRYPTO_refcount_t|. The reference counts in |X509_PKEY| and |X509_INFO| were never actually used and so were dropped. Change-Id: I75d572cdac1f8c1083c482e29c9519282d7fd16c Reviewed-on: https://boringssl-review.googlesource.com/4772 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Convert reference counts in crypto/ This change converts the reference counts in crypto/ to use |CRYPTO_refcount_t|. The reference counts in |X509_PKEY| and |X509_INFO| were never actually used and so were dropped. Change-Id: I75d572cdac1f8c1083c482e29c9519282d7fd16c Reviewed-on: https://boringssl-review.googlesource.com/4772 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Convert reference counts in crypto/ This change converts the reference counts in crypto/ to use |CRYPTO_refcount_t|. The reference counts in |X509_PKEY| and |X509_INFO| were never actually used and so were dropped. Change-Id: I75d572cdac1f8c1083c482e29c9519282d7fd16c Reviewed-on: https://boringssl-review.googlesource.com/4772 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Convert reference counts in crypto/ This change converts the reference counts in crypto/ to use |CRYPTO_refcount_t|. The reference counts in |X509_PKEY| and |X509_INFO| were never actually used and so were dropped. Change-Id: I75d572cdac1f8c1083c482e29c9519282d7fd16c Reviewed-on: https://boringssl-review.googlesource.com/4772 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Convert reference counts in crypto/ This change converts the reference counts in crypto/ to use |CRYPTO_refcount_t|. The reference counts in |X509_PKEY| and |X509_INFO| were never actually used and so were dropped. Change-Id: I75d572cdac1f8c1083c482e29c9519282d7fd16c Reviewed-on: https://boringssl-review.googlesource.com/4772 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Add d2i_X509_from_buffer. d2i_X509_from_buffer parses an |X509| from a |CRYPTO_BUFFER| but ensures that the |X509_CINF.enc| doesn't make a copy of the encoded TBSCertificate. Rather the |X509| holds a reference to the given |CRYPTO_BUFFER|. Change-Id: I38a4e3d0ca69fc0fd0ef3e15b53181844080fcad Reviewed-on: https://boringssl-review.googlesource.com/11920 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <alangley@gmail.com> Commit-Queue: Adam Langley <alangley@gmail.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Add d2i_X509_from_buffer. d2i_X509_from_buffer parses an |X509| from a |CRYPTO_BUFFER| but ensures that the |X509_CINF.enc| doesn't make a copy of the encoded TBSCertificate. Rather the |X509| holds a reference to the given |CRYPTO_BUFFER|. Change-Id: I38a4e3d0ca69fc0fd0ef3e15b53181844080fcad Reviewed-on: https://boringssl-review.googlesource.com/11920 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <alangley@gmail.com> Commit-Queue: Adam Langley <alangley@gmail.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Add d2i_X509_from_buffer. d2i_X509_from_buffer parses an |X509| from a |CRYPTO_BUFFER| but ensures that the |X509_CINF.enc| doesn't make a copy of the encoded TBSCertificate. Rather the |X509| holds a reference to the given |CRYPTO_BUFFER|. Change-Id: I38a4e3d0ca69fc0fd0ef3e15b53181844080fcad Reviewed-on: https://boringssl-review.googlesource.com/11920 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <alangley@gmail.com> Commit-Queue: Adam Langley <alangley@gmail.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Add d2i_X509_from_buffer. d2i_X509_from_buffer parses an |X509| from a |CRYPTO_BUFFER| but ensures that the |X509_CINF.enc| doesn't make a copy of the encoded TBSCertificate. Rather the |X509| holds a reference to the given |CRYPTO_BUFFER|. Change-Id: I38a4e3d0ca69fc0fd0ef3e15b53181844080fcad Reviewed-on: https://boringssl-review.googlesource.com/11920 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <alangley@gmail.com> Commit-Queue: Adam Langley <alangley@gmail.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Add d2i_X509_from_buffer. d2i_X509_from_buffer parses an |X509| from a |CRYPTO_BUFFER| but ensures that the |X509_CINF.enc| doesn't make a copy of the encoded TBSCertificate. Rather the |X509| holds a reference to the given |CRYPTO_BUFFER|. Change-Id: I38a4e3d0ca69fc0fd0ef3e15b53181844080fcad Reviewed-on: https://boringssl-review.googlesource.com/11920 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <alangley@gmail.com> Commit-Queue: Adam Langley <alangley@gmail.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Work around language and compiler bug in memcpy, etc. Most C standard library functions are undefined if passed NULL, even when the corresponding length is zero. This gives them (and, in turn, all functions which call them) surprising behavior on empty arrays. Some compilers will miscompile code due to this rule. See also https://www.imperialviolet.org/2016/06/26/nonnull.html Add OPENSSL_memcpy, etc., wrappers which avoid this problem. BUG=23 Change-Id: I95f42b23e92945af0e681264fffaf578e7f8465e Reviewed-on: https://boringssl-review.googlesource.com/12928 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>
pirms 7 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Add d2i_X509_from_buffer. d2i_X509_from_buffer parses an |X509| from a |CRYPTO_BUFFER| but ensures that the |X509_CINF.enc| doesn't make a copy of the encoded TBSCertificate. Rather the |X509| holds a reference to the given |CRYPTO_BUFFER|. Change-Id: I38a4e3d0ca69fc0fd0ef3e15b53181844080fcad Reviewed-on: https://boringssl-review.googlesource.com/11920 Reviewed-by: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <alangley@gmail.com> Commit-Queue: Adam Langley <alangley@gmail.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Work around language and compiler bug in memcpy, etc. Most C standard library functions are undefined if passed NULL, even when the corresponding length is zero. This gives them (and, in turn, all functions which call them) surprising behavior on empty arrays. Some compilers will miscompile code due to this rule. See also https://www.imperialviolet.org/2016/06/26/nonnull.html Add OPENSSL_memcpy, etc., wrappers which avoid this problem. BUG=23 Change-Id: I95f42b23e92945af0e681264fffaf578e7f8465e Reviewed-on: https://boringssl-review.googlesource.com/12928 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>
pirms 7 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Fix omitted selector handling. The selector field could be omitted because it has a DEFAULT value. In this case *sfld == NULL (sfld can never be NULL). This was not noticed because this was never used in existing ASN.1 modules. (Imported from upstream's c4210673313482edacede58d92e92c213d7a181a.) svaldez and I stared at this for a while and we believe this change is correct. It's also irrelevant because our only remaining ADB (ANY DEFINED BY) table is POLICYQUALINFO which does not allow its selector to be omitted. Also, if it did, it would be a slight change in behavior. We'd switch from using POLICYQUALINFO's default_tt (filling in an ASN1_ANY) to its null_tt (which doesn't exist, so error). Change-Id: If6a929e3dafca18431775b01958d0dae1c09f3b4 Reviewed-on: https://boringssl-review.googlesource.com/8943 Reviewed-by: Adam Langley <agl@google.com> Commit-Queue: Adam Langley <agl@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
pirms 8 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
Remove the func parameter to OPENSSL_PUT_ERROR. Much of this was done automatically with find . -name '*.c' | xargs sed -E -i '' -e 's/(OPENSSL_PUT_ERROR\([a-zA-Z_0-9]+, )[a-zA-Z_0-9]+, ([a-zA-Z_0-9]+\);)/\1\2/' find . -name '*.c' | xargs sed -E -i '' -e 's/(OPENSSL_PUT_ERROR\([a-zA-Z_0-9]+, )[a-zA-Z_0-9]+, ([a-zA-Z_0-9]+\);)/\1\2/' BUG=468039 Change-Id: I4c75fd95dff85ab1d4a546b05e6aed1aeeb499d8 Reviewed-on: https://boringssl-review.googlesource.com/5276 Reviewed-by: Adam Langley <agl@google.com>
pirms 9 gadiem
Inital import. Initial fork from f2d678e6e89b6508147086610e985d4e8416e867 (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)
pirms 10 gadiem
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280 
  1. /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)

  2.  * All rights reserved.

  3.  *

  4.  * This package is an SSL implementation written

  5.  * by Eric Young (eay@cryptsoft.com).

  6.  * The implementation was written so as to conform with Netscapes SSL.

  7.  *

  8.  * This library is free for commercial and non-commercial use as long as

  9.  * the following conditions are aheared to.  The following conditions

  10.  * apply to all code found in this distribution, be it the RC4, RSA,

  11.  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation

  12.  * included with this distribution is covered by the same copyright terms

  13.  * except that the holder is Tim Hudson (tjh@cryptsoft.com).

  14.  *

  15.  * Copyright remains Eric Young's, and as such any Copyright notices in

  16.  * the code are not to be removed.

  17.  * If this package is used in a product, Eric Young should be given attribution

  18.  * as the author of the parts of the library used.

  19.  * This can be in the form of a textual message at program startup or

  20.  * in documentation (online or textual) provided with the package.

  21.  *

  22.  * Redistribution and use in source and binary forms, with or without

  23.  * modification, are permitted provided that the following conditions

  24.  * are met:

  25.  * 1. Redistributions of source code must retain the copyright

  26.  *    notice, this list of conditions and the following disclaimer.

  27.  * 2. Redistributions in binary form must reproduce the above copyright

  28.  *    notice, this list of conditions and the following disclaimer in the

  29.  *    documentation and/or other materials provided with the distribution.

  30.  * 3. All advertising materials mentioning features or use of this software

  31.  *    must display the following acknowledgement:

  32.  *    "This product includes cryptographic software written by

  33.  *     Eric Young (eay@cryptsoft.com)"

  34.  *    The word 'cryptographic' can be left out if the rouines from the library

  35.  *    being used are not cryptographic related :-).

  36.  * 4. If you include any Windows specific code (or a derivative thereof) from

  37.  *    the apps directory (application code) you must include an acknowledgement:

  38.  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"

  39.  *

  40.  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND

  41.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  42.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  43.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

  44.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

  45.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

  46.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  47.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

  48.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

  49.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  50.  * SUCH DAMAGE.

  51.  *

  52.  * The licence and distribution terms for any publically available version or

  53.  * derivative of this code cannot be changed.  i.e. this code cannot simply be

  54.  * copied and put under another distribution licence

  55.  * [including the GNU Public Licence.] */

  56. 

  57. #include <openssl/asn1.h>

  58. 

  59. #include <assert.h>

  60. #include <string.h>

  61. 

  62. #include <openssl/asn1t.h>

  63. #include <openssl/mem.h>

  64. #include <openssl/obj.h>

  65. #include <openssl/err.h>

  66. #include <openssl/thread.h>

  67. 

  68. #include "../internal.h"

  69. 

  70. 

  71. /* Utility functions for manipulating fields and offsets */

  72. 

  73. /* Add 'offset' to 'addr' */

  74. #define offset2ptr(addr, offset) (void *)(((char *)(addr)) + (offset))

  75. 

  76. /* Given an ASN1_ITEM CHOICE type return the selector value */

  77. int asn1_get_choice_selector(ASN1_VALUE **pval, const ASN1_ITEM *it) {

  78.   int *sel = offset2ptr(*pval, it->utype);

  79.   return *sel;

  80. }

  81. 

  82. /* Given an ASN1_ITEM CHOICE type set the selector value, return old value. */

  83. int asn1_set_choice_selector(ASN1_VALUE **pval, int value,

  84.                              const ASN1_ITEM *it) {

  85.   int *sel, ret;

  86.   sel = offset2ptr(*pval, it->utype);

  87.   ret = *sel;

  88.   *sel = value;

  89.   return ret;

  90. }

  91. 

  92. static CRYPTO_refcount_t *asn1_get_references(ASN1_VALUE **pval,

  93.                                               const ASN1_ITEM *it) {

  94.   if (it->itype != ASN1_ITYPE_SEQUENCE &&

  95.       it->itype != ASN1_ITYPE_NDEF_SEQUENCE) {

  96.     return NULL;

  97.   }

  98.   const ASN1_AUX *aux = it->funcs;

  99.   if (!aux || !(aux->flags & ASN1_AFLG_REFCOUNT)) {

  100.     return NULL;

  101.   }

  102.   return offset2ptr(*pval, aux->ref_offset);

  103. }

  104. 

  105. void asn1_refcount_set_one(ASN1_VALUE **pval, const ASN1_ITEM *it) {

  106.   CRYPTO_refcount_t *references = asn1_get_references(pval, it);

  107.   if (references != NULL) {

  108.     *references = 1;

  109.   }

  110. }

  111. 

  112. int asn1_refcount_dec_and_test_zero(ASN1_VALUE **pval, const ASN1_ITEM *it) {

  113.   CRYPTO_refcount_t *references = asn1_get_references(pval, it);

  114.   if (references != NULL) {

  115.     return CRYPTO_refcount_dec_and_test_zero(references);

  116.   }

  117.   return 1;

  118. }

  119. 

  120. static ASN1_ENCODING *asn1_get_enc_ptr(ASN1_VALUE **pval, const ASN1_ITEM *it) {

  121.   const ASN1_AUX *aux;

  122.   if (!pval || !*pval) {

  123.     return NULL;

  124.   }

  125.   aux = it->funcs;

  126.   if (!aux || !(aux->flags & ASN1_AFLG_ENCODING)) {

  127.     return NULL;

  128.   }

  129.   return offset2ptr(*pval, aux->enc_offset);

  130. }

  131. 

  132. void asn1_enc_init(ASN1_VALUE **pval, const ASN1_ITEM *it) {

  133.   ASN1_ENCODING *enc;

  134.   enc = asn1_get_enc_ptr(pval, it);

  135.   if (enc) {

  136.     enc->enc = NULL;

  137.     enc->len = 0;

  138.     enc->alias_only = 0;

  139.     enc->alias_only_on_next_parse = 0;

  140.     enc->modified = 1;

  141.   }

  142. }

  143. 

  144. void asn1_enc_free(ASN1_VALUE **pval, const ASN1_ITEM *it) {

  145.   ASN1_ENCODING *enc;

  146.   enc = asn1_get_enc_ptr(pval, it);

  147.   if (enc) {

  148.     if (enc->enc && !enc->alias_only) {

  149.       OPENSSL_free(enc->enc);

  150.     }

  151.     enc->enc = NULL;

  152.     enc->len = 0;

  153.     enc->alias_only = 0;

  154.     enc->alias_only_on_next_parse = 0;

  155.     enc->modified = 1;

  156.   }

  157. }

  158. 

  159. int asn1_enc_save(ASN1_VALUE **pval, const unsigned char *in, int inlen,

  160.                   const ASN1_ITEM *it) {

  161.   ASN1_ENCODING *enc;

  162.   enc = asn1_get_enc_ptr(pval, it);

  163.   if (!enc) {

  164.     return 1;

  165.   }

  166. 

  167.   if (!enc->alias_only) {

  168.     OPENSSL_free(enc->enc);

  169.   }

  170. 

  171.   enc->alias_only = enc->alias_only_on_next_parse;

  172.   enc->alias_only_on_next_parse = 0;

  173. 

  174.   if (enc->alias_only) {

  175.     enc->enc = (uint8_t *) in;

  176.   } else {

  177.     enc->enc = OPENSSL_malloc(inlen);

  178.     if (!enc->enc) {

  179.       return 0;

  180.     }

  181.     OPENSSL_memcpy(enc->enc, in, inlen);

  182.   }

  183. 

  184.   enc->len = inlen;

  185.   enc->modified = 0;

  186. 

  187.   return 1;

  188. }

  189. 

  190. int asn1_enc_restore(int *len, unsigned char **out, ASN1_VALUE **pval,

  191.                      const ASN1_ITEM *it) {

  192.   ASN1_ENCODING *enc;

  193.   enc = asn1_get_enc_ptr(pval, it);

  194.   if (!enc || enc->modified) {

  195.     return 0;

  196.   }

  197.   if (out) {

  198.     OPENSSL_memcpy(*out, enc->enc, enc->len);

  199.     *out += enc->len;

  200.   }

  201.   if (len) {

  202.     *len = enc->len;

  203.   }

  204.   return 1;

  205. }

  206. 

  207. /* Given an ASN1_TEMPLATE get a pointer to a field */

  208. ASN1_VALUE **asn1_get_field_ptr(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt) {

  209.   ASN1_VALUE **pvaltmp;

  210.   if (tt->flags & ASN1_TFLG_COMBINE) {

  211.     return pval;

  212.   }

  213.   pvaltmp = offset2ptr(*pval, tt->offset);

  214.   /* NOTE for BOOLEAN types the field is just a plain int so we can't return

  215.    * int **, so settle for (int *). */

  216.   return pvaltmp;

  217. }

  218. 

  219. /* Handle ANY DEFINED BY template, find the selector, look up the relevant

  220.  * ASN1_TEMPLATE in the table and return it. */

  221. const ASN1_TEMPLATE *asn1_do_adb(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt,

  222.                                  int nullerr) {

  223.   const ASN1_ADB *adb;

  224.   const ASN1_ADB_TABLE *atbl;

  225.   long selector;

  226.   ASN1_VALUE **sfld;

  227.   int i;

  228.   if (!(tt->flags & ASN1_TFLG_ADB_MASK)) {

  229.     return tt;

  230.   }

  231. 

  232.   /* Else ANY DEFINED BY ... get the table */

  233.   adb = ASN1_ADB_ptr(tt->item);

  234. 

  235.   /* Get the selector field */

  236.   sfld = offset2ptr(*pval, adb->offset);

  237. 

  238.   /* Check if NULL */

  239.   if (*sfld == NULL) {

  240.     if (!adb->null_tt) {

  241.       goto err;

  242.     }

  243.     return adb->null_tt;

  244.   }

  245. 

  246.   /* Convert type to a long:

  247.    * NB: don't check for NID_undef here because it

  248.    * might be a legitimate value in the table */

  249.   if (tt->flags & ASN1_TFLG_ADB_OID) {

  250.     selector = OBJ_obj2nid((ASN1_OBJECT *)*sfld);

  251.   } else {

  252.     selector = ASN1_INTEGER_get((ASN1_INTEGER *)*sfld);

  253.   }

  254. 

  255.   /* Try to find matching entry in table Maybe should check application types

  256.    * first to allow application override? Might also be useful to have a flag

  257.    * which indicates table is sorted and we can do a binary search. For now

  258.    * stick to a linear search. */

  259. 

  260.   for (atbl = adb->tbl, i = 0; i < adb->tblcount; i++, atbl++) {

  261.     if (atbl->value == selector) {

  262.       return &atbl->tt;

  263.     }

  264.   }

  265. 

  266.   /* FIXME: need to search application table too */

  267. 

  268.   /* No match, return default type */

  269.   if (!adb->default_tt) {

  270.     goto err;

  271.   }

  272.   return adb->default_tt;

  273. 

  274. err:

  275.   /* FIXME: should log the value or OID of unsupported type */

  276.   if (nullerr) {

  277.     OPENSSL_PUT_ERROR(ASN1, ASN1_R_UNSUPPORTED_ANY_DEFINED_BY_TYPE);

  278.   }

  279.   return NULL;

  280. }