2 * Generic ASN.1 parsing
\r
4 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
\r
5 * SPDX-License-Identifier: Apache-2.0
\r
7 * Licensed under the Apache License, Version 2.0 (the "License"); you may
\r
8 * not use this file except in compliance with the License.
\r
9 * You may obtain a copy of the License at
\r
11 * http://www.apache.org/licenses/LICENSE-2.0
\r
13 * Unless required by applicable law or agreed to in writing, software
\r
14 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
\r
15 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
\r
16 * See the License for the specific language governing permissions and
\r
17 * limitations under the License.
\r
19 * This file is part of mbed TLS (https://tls.mbed.org)
\r
22 #if !defined(MBEDTLS_CONFIG_FILE)
\r
23 #include "mbedtls/config.h"
\r
25 #include MBEDTLS_CONFIG_FILE
\r
28 #if defined(MBEDTLS_ASN1_PARSE_C)
\r
30 #include "mbedtls/asn1.h"
\r
31 #include "mbedtls/platform_util.h"
\r
35 #if defined(MBEDTLS_BIGNUM_C)
\r
36 #include "mbedtls/bignum.h"
\r
39 #if defined(MBEDTLS_PLATFORM_C)
\r
40 #include "mbedtls/platform.h"
\r
43 #define mbedtls_calloc calloc
\r
44 #define mbedtls_free free
\r
48 * ASN.1 DER decoding routines
\r
50 int mbedtls_asn1_get_len( unsigned char **p,
\r
51 const unsigned char *end,
\r
54 if( ( end - *p ) < 1 )
\r
55 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
57 if( ( **p & 0x80 ) == 0 )
\r
61 switch( **p & 0x7F )
\r
64 if( ( end - *p ) < 2 )
\r
65 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
72 if( ( end - *p ) < 3 )
\r
73 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
75 *len = ( (size_t)(*p)[1] << 8 ) | (*p)[2];
\r
80 if( ( end - *p ) < 4 )
\r
81 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
83 *len = ( (size_t)(*p)[1] << 16 ) |
\r
84 ( (size_t)(*p)[2] << 8 ) | (*p)[3];
\r
89 if( ( end - *p ) < 5 )
\r
90 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
92 *len = ( (size_t)(*p)[1] << 24 ) | ( (size_t)(*p)[2] << 16 ) |
\r
93 ( (size_t)(*p)[3] << 8 ) | (*p)[4];
\r
98 return( MBEDTLS_ERR_ASN1_INVALID_LENGTH );
\r
102 if( *len > (size_t) ( end - *p ) )
\r
103 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
108 int mbedtls_asn1_get_tag( unsigned char **p,
\r
109 const unsigned char *end,
\r
110 size_t *len, int tag )
\r
112 if( ( end - *p ) < 1 )
\r
113 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
116 return( MBEDTLS_ERR_ASN1_UNEXPECTED_TAG );
\r
120 return( mbedtls_asn1_get_len( p, end, len ) );
\r
123 int mbedtls_asn1_get_bool( unsigned char **p,
\r
124 const unsigned char *end,
\r
130 if( ( ret = mbedtls_asn1_get_tag( p, end, &len, MBEDTLS_ASN1_BOOLEAN ) ) != 0 )
\r
134 return( MBEDTLS_ERR_ASN1_INVALID_LENGTH );
\r
136 *val = ( **p != 0 ) ? 1 : 0;
\r
142 int mbedtls_asn1_get_int( unsigned char **p,
\r
143 const unsigned char *end,
\r
149 if( ( ret = mbedtls_asn1_get_tag( p, end, &len, MBEDTLS_ASN1_INTEGER ) ) != 0 )
\r
152 if( len == 0 || len > sizeof( int ) || ( **p & 0x80 ) != 0 )
\r
153 return( MBEDTLS_ERR_ASN1_INVALID_LENGTH );
\r
159 *val = ( *val << 8 ) | **p;
\r
166 #if defined(MBEDTLS_BIGNUM_C)
\r
167 int mbedtls_asn1_get_mpi( unsigned char **p,
\r
168 const unsigned char *end,
\r
174 if( ( ret = mbedtls_asn1_get_tag( p, end, &len, MBEDTLS_ASN1_INTEGER ) ) != 0 )
\r
177 ret = mbedtls_mpi_read_binary( X, *p, len );
\r
183 #endif /* MBEDTLS_BIGNUM_C */
\r
185 int mbedtls_asn1_get_bitstring( unsigned char **p, const unsigned char *end,
\r
186 mbedtls_asn1_bitstring *bs)
\r
190 /* Certificate type is a single byte bitstring */
\r
191 if( ( ret = mbedtls_asn1_get_tag( p, end, &bs->len, MBEDTLS_ASN1_BIT_STRING ) ) != 0 )
\r
194 /* Check length, subtract one for actual bit string length */
\r
196 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
199 /* Get number of unused bits, ensure unused bits <= 7 */
\r
200 bs->unused_bits = **p;
\r
201 if( bs->unused_bits > 7 )
\r
202 return( MBEDTLS_ERR_ASN1_INVALID_LENGTH );
\r
205 /* Get actual bitstring */
\r
210 return( MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
\r
216 * Get a bit string without unused bits
\r
218 int mbedtls_asn1_get_bitstring_null( unsigned char **p, const unsigned char *end,
\r
223 if( ( ret = mbedtls_asn1_get_tag( p, end, len, MBEDTLS_ASN1_BIT_STRING ) ) != 0 )
\r
226 if( (*len)-- < 2 || *(*p)++ != 0 )
\r
227 return( MBEDTLS_ERR_ASN1_INVALID_DATA );
\r
235 * Parses and splits an ASN.1 "SEQUENCE OF <tag>"
\r
237 int mbedtls_asn1_get_sequence_of( unsigned char **p,
\r
238 const unsigned char *end,
\r
239 mbedtls_asn1_sequence *cur,
\r
244 mbedtls_asn1_buf *buf;
\r
246 /* Get main sequence tag */
\r
247 if( ( ret = mbedtls_asn1_get_tag( p, end, &len,
\r
248 MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
\r
251 if( *p + len != end )
\r
252 return( MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
\r
259 if( ( ret = mbedtls_asn1_get_tag( p, end, &buf->len, tag ) ) != 0 )
\r
265 /* Allocate and assign next pointer */
\r
268 cur->next = (mbedtls_asn1_sequence*)mbedtls_calloc( 1,
\r
269 sizeof( mbedtls_asn1_sequence ) );
\r
271 if( cur->next == NULL )
\r
272 return( MBEDTLS_ERR_ASN1_ALLOC_FAILED );
\r
278 /* Set final sequence entry's next pointer to NULL */
\r
282 return( MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
\r
287 int mbedtls_asn1_get_alg( unsigned char **p,
\r
288 const unsigned char *end,
\r
289 mbedtls_asn1_buf *alg, mbedtls_asn1_buf *params )
\r
294 if( ( ret = mbedtls_asn1_get_tag( p, end, &len,
\r
295 MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
\r
298 if( ( end - *p ) < 1 )
\r
299 return( MBEDTLS_ERR_ASN1_OUT_OF_DATA );
\r
304 if( ( ret = mbedtls_asn1_get_tag( p, end, &alg->len, MBEDTLS_ASN1_OID ) ) != 0 )
\r
312 mbedtls_platform_zeroize( params, sizeof(mbedtls_asn1_buf) );
\r
319 if( ( ret = mbedtls_asn1_get_len( p, end, ¶ms->len ) ) != 0 )
\r
326 return( MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
\r
331 int mbedtls_asn1_get_alg_null( unsigned char **p,
\r
332 const unsigned char *end,
\r
333 mbedtls_asn1_buf *alg )
\r
336 mbedtls_asn1_buf params;
\r
338 memset( ¶ms, 0, sizeof(mbedtls_asn1_buf) );
\r
340 if( ( ret = mbedtls_asn1_get_alg( p, end, alg, ¶ms ) ) != 0 )
\r
343 if( ( params.tag != MBEDTLS_ASN1_NULL && params.tag != 0 ) || params.len != 0 )
\r
344 return( MBEDTLS_ERR_ASN1_INVALID_DATA );
\r
349 void mbedtls_asn1_free_named_data( mbedtls_asn1_named_data *cur )
\r
354 mbedtls_free( cur->oid.p );
\r
355 mbedtls_free( cur->val.p );
\r
357 mbedtls_platform_zeroize( cur, sizeof( mbedtls_asn1_named_data ) );
\r
360 void mbedtls_asn1_free_named_data_list( mbedtls_asn1_named_data **head )
\r
362 mbedtls_asn1_named_data *cur;
\r
364 while( ( cur = *head ) != NULL )
\r
367 mbedtls_asn1_free_named_data( cur );
\r
368 mbedtls_free( cur );
\r
372 mbedtls_asn1_named_data *mbedtls_asn1_find_named_data( mbedtls_asn1_named_data *list,
\r
373 const char *oid, size_t len )
\r
375 while( list != NULL )
\r
377 if( list->oid.len == len &&
\r
378 memcmp( list->oid.p, oid, len ) == 0 )
\r
389 #endif /* MBEDTLS_ASN1_PARSE_C */
\r