1 /* encode.c - ber output encoding routines */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 1998-2009 The OpenLDAP Foundation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted only as authorized by the OpenLDAP
12 * A copy of this license is available in the file LICENSE in the
13 * top-level directory of the distribution or, alternatively, at
14 * <http://www.OpenLDAP.org/license.html>.
16 /* Portions Copyright (c) 1990 Regents of the University of Michigan.
17 * All rights reserved.
19 * Redistribution and use in source and binary forms are permitted
20 * provided that this notice is preserved and that due credit is given
21 * to the University of Michigan at Ann Arbor. The name of the University
22 * may not be used to endorse or promote products derived from this
23 * software without specific prior written permission. This software
24 * is provided ``as is'' without express or implied warranty.
27 * This work was originally developed by the University of Michigan
28 * (as part of U-MICH LDAP).
36 #include <ac/stdlib.h>
38 #include <ac/stdarg.h>
39 #include <ac/socket.h>
40 #include <ac/string.h>
44 static int ber_put_len LDAP_P((
49 static int ber_start_seqorset LDAP_P((
53 static int ber_put_seqorset LDAP_P(( BerElement *ber ));
55 static int ber_put_int_or_enum LDAP_P((
60 #define BER_TOP_BYTE(type) (sizeof(type)-1)
61 #define BER_TOP_MASK(type) ((type)0xffU << (BER_TOP_BYTE(type)*8))
64 ber_calc_taglen( ber_tag_t tag )
66 int i = BER_TOP_BYTE(ber_tag_t);
67 ber_tag_t mask = BER_TOP_MASK(ber_tag_t);
69 /* find the first non-all-zero byte in the tag */
70 for ( ; i > 0; i-- ) {
72 if ( tag & mask ) break;
88 unsigned char nettag[sizeof(ber_tag_t)];
90 assert( ber != NULL );
91 assert( LBER_VALID( ber ) );
93 taglen = ber_calc_taglen( tag );
95 for( i=taglen-1; i>=0; i-- ) {
96 nettag[i] = (unsigned char)(tag & 0xffU);
100 rc = ber_write( ber, (char *) nettag, taglen, nosos );
106 ber_calc_lenlen( ber_len_t len )
109 * short len if it's less than 128 - one byte giving the len,
113 if ( len <= (ber_len_t) 0x7FU ) return 1;
116 * long len otherwise - one byte with bit 8 set, giving the
117 * length of the length, followed by the length itself.
120 if ( len <= (ber_len_t) 0xffU ) return 2;
121 if ( len <= (ber_len_t) 0xffffU ) return 3;
122 if ( len <= (ber_len_t) 0xffffffU ) return 4;
128 ber_put_len( BerElement *ber, ber_len_t len, int nosos )
134 unsigned char netlen[sizeof(ber_len_t)];
136 assert( ber != NULL );
137 assert( LBER_VALID( ber ) );
140 * short len if it's less than 128 - one byte giving the len,
145 char length_byte = (char) len;
146 return ber_write( ber, &length_byte, 1, nosos );
150 * long len otherwise - one byte with bit 8 set, giving the
151 * length of the length, followed by the length itself.
154 /* find the first non-all-zero byte */
155 i = BER_TOP_BYTE(ber_len_t);
156 mask = BER_TOP_MASK(ber_len_t);
157 for ( ; i > 0; i-- ) {
159 if ( len & mask ) break;
162 lenlen = (unsigned char) ++i;
163 if ( lenlen > 4 ) return -1;
167 /* write the length of the length */
168 if ( ber_write( ber, &lenlen, 1, nosos ) != 1 ) return -1;
170 for( j=i-1; j>=0; j-- ) {
171 netlen[j] = (unsigned char)(len & 0xffU);
175 /* write the length itself */
176 rc = ber_write( ber, (char *) netlen, i, nosos );
178 return rc == i ? i+1 : -1;
181 /* out->bv_len should be the buffer size on input */
183 ber_encode_oid( BerValue *in, BerValue *out )
186 unsigned long val1, val;
188 char *ptr, *end, *inend;
190 assert( in != NULL );
191 assert( out != NULL );
193 if ( !out->bv_val || out->bv_len < in->bv_len/2 )
196 der = (unsigned char *) out->bv_val;
198 inend = ptr + in->bv_len;
200 /* OIDs start with <0-1>.<0-39> or 2.<any>, DER-encoded 40*val1+val2 */
201 if ( !isdigit( (unsigned char) *ptr )) return -1;
202 val1 = strtoul( ptr, &end, 10 );
203 if ( end == ptr || val1 > 2 ) return -1;
204 if ( *end++ != '.' || !isdigit( (unsigned char) *end )) return -1;
205 val = strtoul( end, &ptr, 10 );
206 if ( ptr == end ) return -1;
207 if ( val > (val1 < 2 ? 39 : LBER_OID_COMPONENT_MAX - 80) ) return -1;
211 if ( ptr > inend ) return -1;
215 der[len++] = (val & 0xff) | 0x80;
216 } while ( (val >>= 7) != 0 );
218 for ( i = 0, j = len; i < --j; i++ ) {
219 unsigned char tmp = der[i];
227 if ( *ptr++ != '.' ) return -1;
228 if ( !isdigit( (unsigned char) *ptr )) return -1;
229 val = strtoul( ptr, &end, 10 );
230 if ( end == ptr || val > LBER_OID_COMPONENT_MAX ) return -1;
234 out->bv_len = (char *)der - out->bv_val;
245 int i, j, sign, taglen, lenlen;
247 ber_uint_t unum, mask;
248 unsigned char netnum[sizeof(ber_uint_t)];
251 unum = num; /* Bit fiddling should be done with unsigned values */
254 * high bit is set - look for first non-all-one byte
255 * high bit is clear - look for first non-all-zero byte
257 i = BER_TOP_BYTE(ber_int_t);
258 mask = BER_TOP_MASK(ber_uint_t);
259 for ( ; i > 0; i-- ) {
262 if ( (unum & mask) != mask ) break;
265 if ( unum & mask ) break;
271 * we now have the "leading byte". if the high bit on this
272 * byte matches the sign bit, we need to "back up" a byte.
274 mask = (unum & ((ber_uint_t)0x80U << (i * 8)));
275 if ( (mask && !sign) || (sign && !mask) ) {
281 if ( (taglen = ber_put_tag( ber, tag, 0 )) == -1 ) {
285 if ( (lenlen = ber_put_len( ber, len, 0 )) == -1 ) {
290 for( j=i-1; j>=0; j-- ) {
291 netnum[j] = (unsigned char)(unum & 0xffU);
295 rc = ber_write( ber, (char *) netnum, i, 0 );
297 /* length of tag + length + contents */
298 return rc == i ? taglen + lenlen + i : -1;
307 if ( tag == LBER_DEFAULT ) {
308 tag = LBER_ENUMERATED;
311 return ber_put_int_or_enum( ber, num, tag );
320 if ( tag == LBER_DEFAULT ) {
324 return ber_put_int_or_enum( ber, num, tag );
330 LDAP_CONST char *str,
334 int taglen, lenlen, rc;
336 if ( tag == LBER_DEFAULT ) {
337 tag = LBER_OCTETSTRING;
340 if ( (taglen = ber_put_tag( ber, tag, 0 )) == -1 )
343 if ( (lenlen = ber_put_len( ber, len, 0 )) == -1 ||
344 (ber_len_t) ber_write( ber, str, len, 0 ) != len )
348 /* return length of tag + length + contents */
349 rc = taglen + lenlen + len;
361 if( bv == NULL || bv->bv_len == 0 ) {
362 return ber_put_ostring( ber, "", (ber_len_t) 0, tag );
365 return ber_put_ostring( ber, bv->bv_val, bv->bv_len, tag );
371 LDAP_CONST char *str,
374 assert( str != NULL );
376 return ber_put_ostring( ber, str, strlen( str ), tag );
382 LDAP_CONST char *str,
383 ber_len_t blen /* in bits */,
388 unsigned char unusedbits;
390 if ( tag == LBER_DEFAULT ) {
391 tag = LBER_BITSTRING;
394 if ( (taglen = ber_put_tag( ber, tag, 0 )) == -1 ) {
398 len = ( blen + 7 ) / 8;
399 unusedbits = (unsigned char) ((len * 8) - blen);
400 if ( (lenlen = ber_put_len( ber, len + 1, 0 )) == -1 ) {
404 if ( ber_write( ber, (char *)&unusedbits, 1, 0 ) != 1 ) {
408 if ( (ber_len_t) ber_write( ber, str, len, 0 ) != len ) {
412 /* return length of tag + length + unused bit count + contents */
413 return taglen + 1 + lenlen + len;
417 ber_put_null( BerElement *ber, ber_tag_t tag )
421 if ( tag == LBER_DEFAULT ) {
425 if ( (taglen = ber_put_tag( ber, tag, 0 )) == -1 ) {
429 if ( ber_put_len( ber, 0, 0 ) != 1 ) {
445 if ( tag == LBER_DEFAULT )
448 if ( (taglen = ber_put_tag( ber, tag, 0 )) == -1 ) {
452 if ( ber_put_len( ber, 1, 0 ) != 1 ) {
456 c = boolval ? (unsigned char) ~0U : (unsigned char) 0U;
458 if ( ber_write( ber, (char *) &c, 1, 0 ) != 1 ) {
465 #define FOUR_BYTE_LEN 5
474 assert( ber != NULL );
475 assert( LBER_VALID( ber ) );
477 new = (Seqorset *) ber_memcalloc_x( 1, sizeof(Seqorset), ber->ber_memctx );
484 if ( ber->ber_sos == NULL ) {
485 new->sos_first = ber->ber_ptr;
487 new->sos_first = ber->ber_sos->sos_ptr;
490 /* Set aside room for a 4 byte length field */
491 new->sos_ptr = new->sos_first + ber_calc_taglen( tag ) + FOUR_BYTE_LEN;
494 new->sos_next = ber->ber_sos;
501 ber_start_seq( BerElement *ber, ber_tag_t tag )
503 if ( tag == LBER_DEFAULT ) {
507 return ber_start_seqorset( ber, tag );
511 ber_start_set( BerElement *ber, ber_tag_t tag )
513 if ( tag == LBER_DEFAULT ) {
517 return ber_start_seqorset( ber, tag );
521 ber_put_seqorset( BerElement *ber )
525 unsigned char netlen[sizeof(ber_len_t)];
528 unsigned char ltag = 0x80U + FOUR_BYTE_LEN - 1;
530 Seqorset **sos = &ber->ber_sos;
532 assert( ber != NULL );
533 assert( LBER_VALID( ber ) );
535 if( *sos == NULL ) return -1;
538 * If this is the toplevel sequence or set, we need to actually
539 * write the stuff out. Otherwise, it's already been put in
540 * the appropriate buffer and will be written when the toplevel
541 * one is written. In this case all we need to do is update the
545 len = (*sos)->sos_clen;
547 if ( sizeof(ber_len_t) > 4 && len > 0xffffffffUL ) {
551 if ( ber->ber_options & LBER_USE_DER ) {
552 lenlen = ber_calc_lenlen( len );
555 lenlen = FOUR_BYTE_LEN;
561 for( i=lenlen-2; i >= 0; i-- ) {
562 netlen[i] = j & 0xffU;
566 netlen[0] = (unsigned char)(len & 0x7fU);
569 if ( (next = (*sos)->sos_next) == NULL ) {
571 if ( (taglen = ber_put_tag( ber, (*sos)->sos_tag, 1 )) == -1 ) {
575 if ( ber->ber_options & LBER_USE_DER ) {
576 /* Write the length in the minimum # of octets */
577 if ( ber_put_len( ber, len, 1 ) == -1 ) {
581 if (lenlen != FOUR_BYTE_LEN) {
583 * We set aside FOUR_BYTE_LEN bytes for
584 * the length field. Move the data if
585 * we don't actually need that much
587 AC_MEMCPY( (*sos)->sos_first + taglen +
588 lenlen, (*sos)->sos_first + taglen +
589 FOUR_BYTE_LEN, len );
592 /* Fill FOUR_BYTE_LEN bytes for length field */
593 /* one byte of length length */
594 if ( ber_write( ber, (char *)<ag, 1, 1 ) != 1 ) {
598 /* the length itself */
599 rc = ber_write( ber, (char *) netlen, FOUR_BYTE_LEN-1, 1 );
601 if( rc != FOUR_BYTE_LEN - 1 ) {
605 /* The ber_ptr is at the set/seq start - move it to the end */
606 (*sos)->sos_ber->ber_ptr += len;
610 unsigned char nettag[sizeof(ber_tag_t)];
611 ber_tag_t tmptag = (*sos)->sos_tag;
613 if( ber->ber_sos->sos_ptr > ber->ber_end ) {
614 /* The sos_ptr exceeds the end of the BerElement
615 * this can happen, for example, when the sos_ptr
616 * is near the end and no data was written for the
617 * 'V'. We must realloc the BerElement to ensure
618 * we don't overwrite the buffer when writing
619 * the tag and length fields.
621 ber_len_t ext = ber->ber_sos->sos_ptr - ber->ber_end;
623 if( ber_realloc( ber, ext ) != 0 ) {
629 taglen = ber_calc_taglen( tmptag );
631 for( i = taglen-1; i >= 0; i-- ) {
632 nettag[i] = (unsigned char)(tmptag & 0xffU);
636 AC_FMEMCPY( (*sos)->sos_first, nettag, taglen );
638 if ( ber->ber_options & LBER_USE_DER ) {
640 ? (unsigned char) len
641 : (unsigned char) (0x80U + (lenlen - 1));
644 /* one byte of length length */
645 (*sos)->sos_first[1] = ltag;
647 if ( ber->ber_options & LBER_USE_DER ) {
649 /* Write the length itself */
650 AC_FMEMCPY( (*sos)->sos_first + 2, netlen, lenlen - 1 );
652 if (lenlen != FOUR_BYTE_LEN) {
654 * We set aside FOUR_BYTE_LEN bytes for
655 * the length field. Move the data if
656 * we don't actually need that much
658 AC_FMEMCPY( (*sos)->sos_first + taglen +
659 lenlen, (*sos)->sos_first + taglen +
660 FOUR_BYTE_LEN, len );
663 /* the length itself */
664 AC_FMEMCPY( (*sos)->sos_first + taglen + 1,
665 netlen, FOUR_BYTE_LEN - 1 );
668 next->sos_clen += (taglen + lenlen + len);
669 next->sos_ptr += (taglen + lenlen + len);
672 /* we're done with this seqorset, so free it up */
673 ber_memfree_x( (char *) (*sos), ber->ber_memctx );
676 return taglen + lenlen + len;
680 ber_put_seq( BerElement *ber )
682 return ber_put_seqorset( ber );
686 ber_put_set( BerElement *ber )
688 return ber_put_seqorset( ber );
692 static ber_tag_t lber_int_null = 0;
696 ber_printf( BerElement *ber, LDAP_CONST char *fmt, ... )
700 struct berval *bv, **bvp;
705 assert( ber != NULL );
706 assert( fmt != NULL );
707 assert( LBER_VALID( ber ) );
711 for ( rc = 0; *fmt && rc != -1; fmt++ ) {
713 case '!': { /* hook */
714 BEREncodeCallback *f;
717 f = va_arg( ap, BEREncodeCallback * );
718 p = va_arg( ap, void * );
723 case 'b': /* boolean */
724 i = va_arg( ap, ber_int_t );
725 rc = ber_put_boolean( ber, i, ber->ber_tag );
729 i = va_arg( ap, ber_int_t );
730 rc = ber_put_int( ber, i, ber->ber_tag );
733 case 'e': /* enumeration */
734 i = va_arg( ap, ber_int_t );
735 rc = ber_put_enum( ber, i, ber->ber_tag );
739 rc = ber_put_null( ber, ber->ber_tag );
742 case 'N': /* Debug NULL */
743 if( lber_int_null != 0 ) {
744 /* Insert NULL to ensure peer ignores unknown tags */
745 rc = ber_put_null( ber, lber_int_null );
751 case 'o': /* octet string (non-null terminated) */
752 s = va_arg( ap, char * );
753 len = va_arg( ap, ber_len_t );
754 rc = ber_put_ostring( ber, s, len, ber->ber_tag );
757 case 'O': /* berval octet string */
758 bv = va_arg( ap, struct berval * );
759 if( bv == NULL ) break;
760 rc = ber_put_berval( ber, bv, ber->ber_tag );
763 case 's': /* string */
764 s = va_arg( ap, char * );
765 rc = ber_put_string( ber, s, ber->ber_tag );
768 case 'B': /* bit string */
769 case 'X': /* bit string (deprecated) */
770 s = va_arg( ap, char * );
771 len = va_arg( ap, int ); /* in bits */
772 rc = ber_put_bitstring( ber, s, len, ber->ber_tag );
775 case 't': /* tag for the next element */
776 ber->ber_tag = va_arg( ap, ber_tag_t );
777 ber->ber_usertag = 1;
780 case 'v': /* vector of strings */
781 if ( (ss = va_arg( ap, char ** )) == NULL )
783 for ( i = 0; ss[i] != NULL; i++ ) {
784 if ( (rc = ber_put_string( ber, ss[i],
785 ber->ber_tag )) == -1 )
790 case 'V': /* sequences of strings + lengths */
791 if ( (bvp = va_arg( ap, struct berval ** )) == NULL )
793 for ( i = 0; bvp[i] != NULL; i++ ) {
794 if ( (rc = ber_put_berval( ber, bvp[i],
795 ber->ber_tag )) == -1 )
800 case 'W': /* BerVarray */
801 if ( (bv = va_arg( ap, BerVarray )) == NULL )
803 for ( i = 0; bv[i].bv_val != NULL; i++ ) {
804 if ( (rc = ber_put_berval( ber, &bv[i],
805 ber->ber_tag )) == -1 )
810 case '{': /* begin sequence */
811 rc = ber_start_seq( ber, ber->ber_tag );
814 case '}': /* end sequence */
815 rc = ber_put_seqorset( ber );
818 case '[': /* begin set */
819 rc = ber_start_set( ber, ber->ber_tag );
822 case ']': /* end set */
823 rc = ber_put_seqorset( ber );
827 if( ber->ber_debug ) {
828 ber_log_printf( LDAP_DEBUG_ANY, ber->ber_debug,
829 "ber_printf: unknown fmt %c\n", *fmt );
835 if ( ber->ber_usertag == 0 ) {
836 ber->ber_tag = LBER_DEFAULT;
838 ber->ber_usertag = 0;