| blob | c328904907896eb91eeebe607cc7c7babdc3734e |
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
7 #include <stdlib.h>
9 #include <algorithm>
10 #include <map>
11 #include <string>
12 #include <vector>
37 // Indicates the order to use when trying to decode binary data, which is
38 // based on (speculation) as to what will be most common -> least common
42 };
44 // The PEM block header used for DER certificates
46 // The PEM block header used for PKCS#7 data
49 #if !defined(USE_NSS_CERTS)
50 // A thread-safe cache for OS certificate handles.
51 //
52 // Within each of the supported underlying crypto libraries, a certificate
53 // handle is represented as a ref-counted object that contains the parsed
54 // data for the certificate. In addition, the underlying OS handle may also
55 // contain a copy of the original ASN.1 DER used to constructed the handle.
56 //
57 // In order to reduce the memory usage when multiple SSL connections exist,
58 // with each connection storing the server's identity certificate plus any
59 // intermediates supplied, the certificate handles are cached. Any two
60 // X509Certificates that were created from the same ASN.1 DER data,
61 // regardless of where that data came from, will share the same underlying
62 // OS certificate handle.
65 // Performs a compare-and-swap like operation. If an OS certificate handle
66 // for the same certificate data as |*cert_handle| already exists in the
67 // cache, the original |*cert_handle| will be freed and |cert_handle|
68 // will be updated to point to a duplicated reference to the existing cached
69 // certificate, with the caller taking ownership of this duplicated handle.
70 // If an equivalent OS certificate handle is not found, a duplicated
71 // reference to |*cert_handle| will be added to the cache. In either case,
72 // upon return, the caller fully owns |*cert_handle| and is responsible for
73 // calling FreeOSCertHandle(), after first calling Remove().
76 // Decrements the cache reference count for |cert_handle|, a handle that was
77 // previously obtained by calling InsertOrUpdate(). If this is the last
78 // cached reference held, this will remove the handle from the cache. The
79 // caller retains ownership of |cert_handle| and remains responsible for
80 // calling FreeOSCertHandle() to release the underlying OS certificate
84 // A single entry in the cache. Certificates will be keyed by their SHA1
85 // fingerprints, but will not be considered equivalent unless the entire
86 // certificate data matches.
92 // Increased by each call to InsertOrUpdate(), and balanced by each call
93 // to Remove(). When it equals 0, all references created by
94 // InsertOrUpdate() have been released, so the cache entry will be removed
95 // the cached OS certificate handle will be freed.
97 };
100 // Obtain an instance of X509CertificateCache via a LazyInstance.
105 // You must acquire this lock before using any private data of this object
106 // You must not block while holding this lock.
109 // The certificate cache. You must acquire |lock_| before using |cache_|.
110 CertMap cache_;
113 };
121 SHA1HashValue fingerprint =
125 {
129 // A cached entry was not found, so initialize a new entry. The entry
130 // assumes ownership of the current |*cert_handle|.
131 Entry cache_entry;
140 // Two certificates don't match, due to a SHA1 hash collision. Given
141 // the low probability, the simplest solution is to not cache the
142 // certificate, which should not affect performance too negatively.
144 }
145 // A cached entry was found and will be used instead of the caller's
146 // handle. Ensure the caller's original handle will be freed, since
147 // ownership is assumed.
149 }
150 // Whether an existing cached handle or a new handle, increment the
151 // cache's reference count and return a handle that the caller can own.
154 }
155 // If the caller's handle was replaced with a cached handle, free the
156 // original handle now. This is done outside of the lock because
157 // |old_handle| may be the only handle for this particular certificate, so
158 // freeing it may be complex or resource-intensive and does not need to
159 // be guarded by the lock.
162 #ifndef NDEBUG
164 #endif
165 }
166 }
169 SHA1HashValue fingerprint =
183 // The last reference to |cert_handle| has been removed, so release the
184 // Entry's OS handle and remove the Entry. The caller still holds a
185 // reference to |cert_handle| and is responsible for freeing it.
188 }
189 }
192 // See X509CertificateCache::InsertOrUpdate. NSS has a built-in cache, so there
193 // is no point in wrapping another cache around it.
195 #if !defined(USE_NSS_CERTS)
197 #endif
198 }
200 // See X509CertificateCache::Remove.
202 #if !defined(USE_NSS_CERTS)
204 #endif
205 }
207 // Utility to split |src| on the first occurrence of |c|, if any. |right| will
208 // either be empty if |c| was not found, or will contain the remainder of the
209 // string including the split character itself.
221 }
222 }
240 }
253 }
255 // static
257 OSCertHandle cert_handle,
261 }
263 // static
266 // TODO(cbentzel): Remove ScopedTracker below once crbug.com/424386 is fixed.
281 }
284 // Return NULL if we failed to parse any of the certs.
288 }
294 }
300 }
302 // static
312 }
314 // static
317 PickleType type) {
330 }
332 }
334 // Legacy / Migration code. This should eventually be removed once
335 // sufficient time has passed that all pickles serialized prior to
336 // PICKLETYPE_CERTIFICATE_CHAIN_V3 have been removed.
341 OSCertHandles intermediates;
347 }
349 #if defined(OS_POSIX) && !defined(OS_MACOSX) && defined(__x86_64__)
350 // On 64-bit Linux (and any other 64-bit platforms), the intermediate count
351 // might really be a 64-bit field since we used to use Pickle::WriteSize(),
352 // which writes either 32 or 64 bits depending on the architecture. Since
353 // x86-64 is little-endian, if that happens, the next 32 bits will be all
354 // zeroes (the high bits) and the 32 bits we already read above are the
355 // correct value (we assume there are never more than 2^32 - 1 intermediate
356 // certificates in a chain; in practice, more than a dozen or so is
357 // basically unheard of). Since it's invalid for a certificate to start with
358 // 32 bits of zeroes, we check for that here and skip it if we find it. We
359 // save a copy of the pickle iterator to restore in case we don't get 32
360 // bits of zeroes. Now we always write 32 bits, so after a while, these old
361 // cached pickles will all get replaced.
362 // TODO(mdm): remove this compatibility code in April 2013 or so.
366 // This may not be an error. If there are no intermediates, and we're
367 // reading an old 32-bit pickle, and there's nothing else after this in
368 // the pickle, we should report success. Note that it is technically
369 // possible for us to skip over zeroes that should have occurred after
370 // an empty certificate list; to avoid this going forward, only do this
371 // backward-compatibility stuff for PICKLETYPE_CERTIFICATE_CHAIN_V1
372 // which comes from the pickle version number in http_response_info.cc.
376 }
377 }
387 }
388 }
398 }
400 // static
403 OSCertHandles certificates;
405 // Check to see if it is in a PEM-encoded form. This check is performed
406 // first, as both OS X and NSS will both try to convert if they detect
407 // PEM encoding, except they don't do it consistently between the two.
411 // To maintain compatibility with NSS/Firefox, CERTIFICATE is a universally
412 // valid PEM block header for any format.
425 // Parsed a DER encoded certificate. All PEM blocks that follow must
426 // also be DER encoded certificates wrapped inside of PEM blocks.
430 }
432 // If the first block failed to parse as a DER certificate, and
433 // formats other than PEM are acceptable, check to see if the decoded
434 // data is one of the accepted formats.
441 }
442 }
443 }
445 // Stop parsing after the first block for any format but a sequence of
446 // PEM-encoded DER certificates. The case of FORMAT_PEM_CERT_SEQUENCE
447 // is handled above, and continues processing until a certificate fails
448 // to parse.
450 }
452 // Try each of the formats, in order of parse preference, to see if |data|
453 // contains the binary representation of a Format, if it failed to parse
454 // as a PEM certificate/chain.
460 }
462 CertificateList results;
463 // No certificates parsed.
472 }
475 }
479 // This would be an absolutely insane number of intermediates.
483 }
489 }
494 }
495 }
496 }
502 }
506 }
510 }
512 // static
520 // Perform name verification following http://tools.ietf.org/html/rfc6125.
521 // The terminology used in this method is as per that RFC:-
522 // Reference identifier == the host the local user/agent is intending to
523 // access, i.e. the thing displayed in the URL bar.
524 // Presented identifier(s) == name(s) the server knows itself as, in its cert.
526 // CanonicalizeHost requires surrounding brackets to parse an IPv6 address.
531 // CanonicalizeHost does not normalize absolute vs relative DNS names. If
532 // the input name was absolute (included trailing .), normalize it as if it
533 // was relative.
539 // Allow fallback to Common name matching?
544 // Fully handle all cases where |hostname| contains an IP address.
547 // Fallback to Common name matching. As this is deprecated and only
548 // supported for compatibility refuse it for IPv6 addresses.
550 }
556 }
558 // |reference_domain| is the remainder of |host| after the leading host
559 // component is stripped off, but includes the leading dot e.g.
560 // "www.f.com" -> ".f.com".
561 // If there is no meaningful domain part to |host| (e.g. it contains no dots)
562 // then |reference_domain| will be empty.
569 // Do not allow wildcards for public/ICANN registry controlled domains -
570 // that is, prevent *.com or *.co.uk as valid presented names, but do not
571 // prevent *.appspot.com (a private registry controlled domain).
572 // In addition, unknown top-level domains (such as 'intranet' domains or
573 // new TLDs/gTLDs not yet added to the registry controlled domain dataset)
574 // are also implicitly prevented.
575 // Because |reference_domain| must contain at least one name component that
576 // is not registry controlled, this ensures that all reference domains
577 // contain at least three domain components when using wildcards.
580 reference_name,
584 // Because |reference_name| was already canonicalized, the following
585 // should never happen.
588 // Account for the leading dot in |reference_domain|.
593 // Additionally, do not attempt wildcard matching for purely numeric
594 // hostnames.
595 allow_wildcards =
598 }
600 // Now step through the DNS names doing wild card comparison (if necessary)
601 // on each against the reference name. If subjectAltName is empty, then
602 // fallback to use the common name instead.
606 // Note: there's a small possibility cert_common_name is an international
607 // domain name in non-standard encoding (e.g. UTF8String or BMPString
608 // instead of A-label). As common name fallback is deprecated we're not
609 // doing anything specific to deal with this.
612 }
616 // Catch badly corrupt cert names up front.
620 }
623 // Remove trailing dot, if any.
627 // The hostname must be at least as long as the cert name it is matching,
628 // as we require the wildcard (if present) to match at least one character.
642 }
648 }
650 }
657 common_name_fallback_used);
658 }
660 // static
669 // Divide the Base-64 encoded data into 64-character chunks, as per
670 // 4.3.2.4 of RFC 1421.
677 }
680 }
682 // static
689 }
702 }
705 }
707 // static
710 SHA256HashValue sha256;
721 }
725 }
727 // static
729 OSCertHandle leaf,
731 OSCertHandles chain;
736 }
743 // Duplicate the incoming certificate, as the caller retains ownership
744 // of |intermediates|.
746 // Update the cache, which will assume ownership of the duplicated
747 // handle and return a suitable equivalent, potentially from the cache.
750 }
751 // Platform-specific initialization.
753 }
759 }
763 }
764 }