From: Howard Chu <hyc@openldap.org>
Date: Tue, 30 Apr 2002 13:57:01 +0000 (+0000)
Subject: Added ldap_ucs_to_utf8s to convert ASN.1 T61STRING, BMPSTRING, and
X-Git-Tag: OPENLDAP_REL_ENG_2_MP~137
X-Git-Url: https://git.sur5r.net/?a=commitdiff_plain;h=b0055400949fac2206c70104659639022e876ee1;p=openldap

Added ldap_ucs_to_utf8s to convert ASN.1 T61STRING, BMPSTRING, and
UNIVERSALSTRING to UTF-8 format.

Rewrote ldap_X509dn2bv to check ASN.1 types and use above function.
---

diff --git a/libraries/libldap/getdn.c b/libraries/libldap/getdn.c
index df8ecf7cad..3b188eb203 100644
--- a/libraries/libldap/getdn.c
+++ b/libraries/libldap/getdn.c
@@ -3315,66 +3315,147 @@ int
 ldap_X509dn2bv( void *x509_name, struct berval *bv, LDAPDN_rewrite_func *func,
 	unsigned flags )
 {
-	LDAPDN	*newDN = NULL;
-	LDAPRDN	*newRDN = NULL;
+	LDAPDN	*newDN;
+	LDAPRDN	*newRDN;
+	LDAPAVA *newAVA, *baseAVA;
 	X509_NAME_ENTRY *ne;
 	ASN1_OBJECT *obj;
 	ASN1_STRING *str;
-	char oidbuf[2048];
-	int i, j, nrdns, rc = LDAP_NO_MEMORY;
+	char oids[8192], *oidptr = oids, *oidbuf;
+	void *ptrs[2048];
+	int i, j, k, navas, nrdns, rc = LDAP_SUCCESS;
+	int set = 0;
+	size_t dnsize, oidrem = sizeof(oids), oidsize = 0;
+	int csize;
 
-	struct berval	Type;
 	struct berval	Val;
 
 	assert( bv );
 	bv->bv_len = 0;
 	bv->bv_val = NULL;
 
-	nrdns = X509_NAME_entry_count( x509_name );
-	newDN = (LDAPDN *)LDAP_MALLOC( sizeof(LDAPDN) + sizeof(LDAPRDN *)
-					* (nrdns+1) );
-	if ( newDN == NULL )
-		return LDAP_NO_MEMORY;
+	/* Get the number of AVAs. This is not necessarily the same as
+	 * the number of RDNs.
+	 */
+	navas = X509_NAME_entry_count( x509_name );
+
+	/* Get the last element, to see how many RDNs there are */
+	ne = X509_NAME_get_entry( x509_name, navas - 1 );
+	nrdns = ne->set + 1;
+
+	/* Allocate the DN/RDN/AVA stuff as a single block */    
+	dnsize = sizeof(LDAPDN) + sizeof(LDAPRDN *) * (nrdns+1);
+	dnsize += sizeof(LDAPRDN) * nrdns + sizeof(LDAPAVA *) * (navas+nrdns);
+	dnsize += sizeof(LDAPAVA) * navas;
+	if (dnsize > sizeof(ptrs)) {
+		newDN = (LDAPDN *)LDAP_MALLOC( dnsize );
+		if ( newDN == NULL )
+			return LDAP_NO_MEMORY;
+	} else {
+		newDN = (LDAPDN *)ptrs;
+	}
 	
 	newDN[0] = (LDAPRDN**)(newDN+1);
+	newDN[0][nrdns] = NULL;
+	newRDN = (LDAPRDN*)(newDN[0] + nrdns+1);
+	newAVA = (LDAPAVA*)(newRDN + navas + nrdns*2);
+	baseAVA = newAVA;
 
-	/* Retrieve RDNs in reverse order; LDAP is backwards from X.500.
-	 * The OpenSSL library appears to allow only 1 AVA per RDN.
-	 */
-	for ( i = nrdns - 1, j = 0; i >= 0; i--, j++ ) {
-		newDN[0][j] = NULL;
+	/* Retrieve RDNs in reverse order; LDAP is backwards from X.500. */
+	for ( i = nrdns - 1, j = 0; i >= 0; i-- ) {
 		ne = X509_NAME_get_entry( x509_name, i );
 		obj = X509_NAME_ENTRY_get_object( ne );
 		str = X509_NAME_ENTRY_get_data( ne );
 
+		/* If set changed, move to next RDN */
+		if ( set != ne->set ) {
+			/* If this is not the first time, end the
+			 * previous RDN and advance.
+			 */
+			if ( j > 0 ) {
+				newRDN[0][k] = NULL;
+				newRDN = (LDAPRDN*)(newRDN[0]+k+1);
+			}
+			newDN[0][j++] = newRDN;
+
+			newRDN[0] = (LDAPAVA**)(newRDN+1);
+			k = 0;
+			set = ne->set;
+		}
+
 		if ( !func ) {
 			int n = OBJ_obj2nid( obj );
 
 			if (n == NID_undef)
 				goto get_oid;
-			Type.bv_val = (char *)OBJ_nid2sn( n );
-			Type.bv_len = strlen( Type.bv_val );
+			newAVA->la_attr.bv_val = (char *)OBJ_nid2sn( n );
+			newAVA->la_attr.bv_len = strlen( newAVA->la_attr.bv_val );
 		} else {
-get_oid:		Type.bv_val = oidbuf;
-			Type.bv_len = OBJ_obj2txt( oidbuf, sizeof( oidbuf ), obj, 1 );
+get_oid:		newAVA->la_attr.bv_val = oidptr;
+			newAVA->la_attr.bv_len = OBJ_obj2txt( oidptr, oidrem, obj, 1 );
+			oidptr += newAVA->la_attr.bv_len + 1;
+			oidrem -= newAVA->la_attr.bv_len + 1;
+
+			/* Running out of OID buffer space? */
+			if (oidrem < 128) {
+				if ( oidsize == 0 ) {
+					oidsize = sizeof(oids) * 2;
+					oidrem = oidsize;
+					oidbuf = LDAP_MALLOC( oidsize );
+					if ( oidbuf == NULL ) goto nomem;
+					oidptr = oidbuf;
+				} else {
+					char *old = oidbuf;
+					oidbuf = LDAP_REALLOC( oidbuf, oidsize*2 );
+					if ( oidbuf == NULL ) goto nomem;
+					/* Buffer moved! Fix AVA pointers */
+					if ( old != oidbuf ) {
+						LDAPAVA *a;
+						long dif = oidbuf - old;
+
+						for (a=baseAVA; a<=newAVA; a++){
+							if (a->la_attr.bv_val >= old &&
+								a->la_attr.bv_val <= (old + oidsize))
+								a->la_attr.bv_val += dif;
+						}
+					}
+					oidptr = oidbuf + oidsize - oidrem;
+					oidrem += oidsize;
+					oidsize *= 2;
+				}
+			}
 		}
-		Val.bv_len = str->length;
 		Val.bv_val = str->data;
-
-		newRDN = (LDAPRDN *)LDAP_MALLOC( sizeof(LDAPRDN) + sizeof(LDAPAVA *) * 2);
-		if ( newRDN == NULL )
-			goto nomem;
-
-		newRDN[0] = (LDAPAVA**)(newRDN+1);
-		newRDN[0][0] = ldapava_new( &Type, &Val, LDAP_AVA_STRING );
-		if ( newRDN[0][0] == NULL )
-			goto nomem;
-
-		newRDN[0][1] = NULL;
-		newDN[0][j] = newRDN;
-		newRDN = NULL;
+		Val.bv_len = str->length;
+		switch( str->type ) {
+		case V_ASN1_UNIVERSALSTRING:
+			/* This uses 32-bit ISO 10646-1 */
+			csize = 4; goto to_utf8;
+		case V_ASN1_BMPSTRING:
+			/* This uses 16-bit ISO 10646-1 */
+			csize = 2; goto to_utf8;
+		case V_ASN1_T61STRING:
+			/* This uses 8-bit, assume ISO 8859-1 */
+			csize = 1;
+to_utf8:		rc = ldap_ucs_to_utf8s( &Val, csize, &newAVA->la_value );
+			if (rc != LDAP_SUCCESS) goto nomem;
+			newAVA->la_flags = LDAP_AVA_NONPRINTABLE;
+			break;
+		case V_ASN1_UTF8STRING:
+			newAVA->la_flags = LDAP_AVA_NONPRINTABLE;
+			/* This is already in UTF-8 encoding */
+		case V_ASN1_IA5STRING:
+		case V_ASN1_PRINTABLESTRING:
+			/* These are always 7-bit strings */
+			ber_dupbv( &newAVA->la_value, &Val );
+		default:
+			;
+		}
+		newRDN[0][k] = newAVA;
+		newAVA++;
+		k++;
 	}
-	newDN[0][j] = NULL;
+	newRDN[0][k] = NULL;
 
 	if ( func ) {
 		rc = func( newDN, flags );
@@ -3383,15 +3464,16 @@ get_oid:		Type.bv_val = oidbuf;
 	}
 
 	rc = ldap_dn2bv( newDN, bv, LDAP_DN_FORMAT_LDAPV3 );
-	ldap_dnfree( newDN );
-
-	return rc;
 
 nomem:
-	if ( newRDN )
-		LDAP_FREE( newRDN );
-	if ( newDN )
-		ldap_dnfree( newDN );
+	for (;baseAVA < newAVA; baseAVA++) {
+		LDAP_FREE( baseAVA->la_value.bv_val );
+	}
+
+	if ( oidsize != 0 )
+		LDAP_FREE( oidbuf );
+	if ( newDN != (LDAPDN*) ptrs )
+		LDAP_FREE( newDN );
 	return rc;
 }
 #endif /* HAVE_TLS */
diff --git a/libraries/libldap/utf-8.c b/libraries/libldap/utf-8.c
index a241a6313c..ab42cfbf5e 100644
--- a/libraries/libldap/utf-8.c
+++ b/libraries/libldap/utf-8.c
@@ -164,12 +164,21 @@ int ldap_x_ucs4_to_utf8( ldap_ucs4_t c, char *buf )
 {
 	int len=0;
 	unsigned char* p = buf;
-	if(buf == NULL) return 0;
 
-	if ( c < 0 ) {
-		/* not a valid Unicode character */
+	/* not a valid Unicode character */
+	if ( c < 0 ) return 0;
+
+	/* Just return length, don't convert */
+	if(buf == NULL) {
+		if( c < 0x80 ) return 1;
+		else if( c < 0x800 ) return 2;
+		else if( c < 0x10000 ) return 3;
+		else if( c < 0x200000 ) return 4;
+		else if( c < 0x4000000 ) return 5;
+		else return 6;
+	}
 
-	} else if( c < 0x80 ) {
+	if( c < 0x80 ) {
 		p[len++] = c;
 
 	} else if( c < 0x800 ) {
@@ -203,10 +212,80 @@ int ldap_x_ucs4_to_utf8( ldap_ucs4_t c, char *buf )
 		p[len++] = 0x80 | ( c & 0x3f );
 	}
 
-	buf[len] = '\0';
 	return len;
 }
 
+#define LDAP_UCS_UTF8LEN(c)	\
+	c < 0 ? 0 : (c < 0x80 ? 1 : (c < 0x800 ? 2 : (c < 0x10000 ? 3 : \
+	(c < 0x200000 ? 4 : (c < 0x4000000 ? 5 : 6)))))
+
+/* Convert a string to UTF-8 format. The input string is expected to
+ * have characters of 1, 2, or 4 octets (in network byte order)
+ * corresponding to the ASN.1 T61STRING, BMPSTRING, and UNIVERSALSTRING
+ * types respectively. (Here T61STRING just means that there is one
+ * octet per character and characters may use the high bit of the octet.
+ * The characters are assumed to use ISO mappings, no provision is made
+ * for converting from T.61 coding rules to Unicode.)
+ */
+
+int
+ldap_ucs_to_utf8s( struct berval *ucs, int csize, struct berval *utf8s )
+{
+	unsigned char *in, *end;
+	char *ptr;
+	ldap_ucs4_t u;
+	int i, l = 0;
+
+	utf8s->bv_val = NULL;
+	utf8s->bv_len = 0;
+
+	in = (unsigned char *)ucs->bv_val;
+
+	/* Make sure we stop at an even multiple of csize */
+	end = in + ( ucs->bv_len & ~(csize-1) );
+	
+	for (; in < end; ) {
+		u = *in++;
+		if (csize > 1) {
+			u <<= 8;
+			u |= *in++;
+		}
+		if (csize > 2) {
+			u <<= 8;
+			u |= *in++;
+			u <<= 8;
+			u |= *in++;
+		}
+		i = LDAP_UCS_UTF8LEN(u);
+		if (i == 0)
+			return LDAP_INVALID_SYNTAX;
+		l += i;
+	}
+
+	utf8s->bv_val = LDAP_MALLOC( l+1 );
+	if (utf8s->bv_val == NULL)
+		return LDAP_NO_MEMORY;
+	utf8s->bv_len = l;
+
+	ptr = utf8s->bv_val;
+	for (in = (unsigned char *)ucs->bv_val; in < end; ) {
+		u = *in++;
+		if (csize > 1) {
+			u <<= 8;
+			u |= *in++;
+		}
+		if (csize > 2) {
+			u <<= 8;
+			u |= *in++;
+			u <<= 8;
+			u |= *in++;
+		}
+		ptr += ldap_x_ucs4_to_utf8(u, ptr);
+	}
+	*ptr = '\0';
+	return LDAP_SUCCESS;
+}
+
 /*
  * Advance to the next UTF-8 character
  *