| blob | 81a441ba99937b4ebc42eae3755a4c9a2e46513c |
1 /*
2 * Copyright (C) 2000,2001 Fabio Fiorina
3 *
4 * This file is part of GNUTLS.
5 *
6 * The GNUTLS library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2.1 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19 *
20 */
23 /*****************************************************/
24 /* File: x509_asn1.c */
25 /* Description: Functions to manage ASN.1 DEFINITIONS*/
26 /*****************************************************/
29 #include <gnutls_int.h>
30 #include <gnutls_errors.h>
33 #include <gnutls_str.h>
35 /* define used for visiting trees */
36 #define UP 1
37 #define RIGHT 2
38 #define DOWN 3
42 PARSE_MODE_CREATE = structure creation */
45 /******************************************************/
46 /* Function : _asn1_add_node */
47 /* Description: creates a new NODE_ASN element. */
48 /* Parameters: */
49 /* type: type of the new element (see TYPE_ */
50 /* and CONST_ constants). */
51 /* Return: pointer to the new element. */
52 /******************************************************/
53 node_asn *
55 {
71 }
73 /******************************************************************/
74 /* Function : _asn1_set_value */
75 /* Description: sets the field VALUE in a NODE_ASN element. The */
76 /* previus value (if exist) will be lost */
77 /* Parameters: */
78 /* node: element pointer. */
79 /* value: pointer to the value that you want to set. */
80 /* len: character number of value. */
81 /* Return: pointer to the NODE_ASN element. */
82 /******************************************************************/
83 node_asn *
85 {
92 }
99 }
101 /******************************************************************/
102 /* Function : _asn1_set_name */
103 /* Description: sets the field NAME in a NODE_ASN element. The */
104 /* previus value (if exist) will be lost */
105 /* Parameters: */
106 /* node: element pointer. */
107 /* name: a null terminated string with the name that you want */
108 /* to set. */
109 /* Return: pointer to the NODE_ASN element. */
110 /******************************************************************/
111 node_asn *
113 {
121 }
126 {
129 }
132 }
134 /******************************************************************/
135 /* Function : _asn1_set_right */
136 /* Description: sets the field RIGHT in a NODE_ASN element. */
137 /* Parameters: */
138 /* node: element pointer. */
139 /* right: pointer to a NODE_ASN element that you want be pointed*/
140 /* by NODE. */
141 /* Return: pointer to *NODE. */
142 /******************************************************************/
143 node_asn *
145 {
152 }
154 /******************************************************************/
155 /* Function : _asn1_get_right */
156 /* Description: returns the element pointed by the RIGHT field of */
157 /* a NODE_ASN element. */
158 /* Parameters: */
159 /* node: NODE_ASN element pointer. */
160 /* Return: field RIGHT of NODE. */
161 /******************************************************************/
162 node_asn *
164 {
169 }
171 /******************************************************************/
172 /* Function : _asn1_get_last_right */
173 /* Description: return the last element along the right chain. */
174 /* Parameters: */
175 /* node: starting element pointer. */
176 /* Return: pointer to the last element along the right chain. */
177 /******************************************************************/
178 node_asn *
180 {
188 }
190 /******************************************************************/
191 /* Function : _asn1_set_down */
192 /* Description: sets the field DOWN in a NODE_ASN element. */
193 /* Parameters: */
194 /* node: element pointer. */
195 /* down: pointer to a NODE_ASN element that you want be pointed */
196 /* by NODE. */
197 /* Return: pointer to *NODE. */
198 /******************************************************************/
199 node_asn *
201 {
208 }
210 /******************************************************************/
211 /* Function : _asn1_get_down */
212 /* Description: returns the element pointed by the DOWN field of */
213 /* a NODE_ASN element. */
214 /* Parameters: */
215 /* node: NODE_ASN element pointer. */
216 /* Return: field DOWN of NODE. */
217 /******************************************************************/
218 node_asn *
220 {
225 }
227 /******************************************************************/
228 /* Function : _asn1_get_name */
229 /* Description: returns the name of a NODE_ASN element. */
230 /* Parameters: */
231 /* node: NODE_ASN element pointer. */
232 /* Return: a null terminated string. */
233 /******************************************************************/
236 {
241 }
243 /******************************************************************/
244 /* Function : _asn1_mod_type */
245 /* Description: change the field TYPE of an NODE_ASN element. */
246 /* The new value is the old one | (bitwise or) the */
247 /* paramener VALUE. */
248 /* Parameters: */
249 /* node: NODE_ASN element pointer. */
250 /* value: the integer value that must be or-ed with the current */
251 /* value of field TYPE. */
252 /* Return: NODE pointer. */
253 /******************************************************************/
254 node_asn *
256 {
262 }
264 /******************************************************************/
265 /* Function : _asn1_remove_node */
266 /* Description: gets free the memory allocated for an NODE_ASN */
267 /* element (not the elements pointed by it). */
268 /* Parameters: */
269 /* node: NODE_ASN element pointer. */
270 /******************************************************************/
271 void
273 {
281 }
284 /******************************************************************/
285 /* Function : _asn1_find_mode */
286 /* Description: searches an element called NAME starting from */
287 /* POINTER. The name is composed by differents */
288 /* identifiers separated by dot.The first identifier */
289 /* must be the name of *POINTER. */
290 /* Parameters: */
291 /* pointer: NODE_ASN element pointer. */
292 /* name: null terminated string with the element's name to find.*/
293 /* Return: the searching result. NULL if not find. */
294 /******************************************************************/
295 node_asn *
297 {
309 n_start++;
310 }
314 }
330 n_start++;
331 }
335 }
341 /* The identifier "?LAST" indicates the last element
342 in the right chain. */
346 }
351 }
353 }
357 }
359 /******************************************************************/
360 /* Function : _asn1_find_left */
361 /* Description: returns the NODE_ASN element with RIGHT field that*/
362 /* points the element NODE. */
363 /* Parameters: */
364 /* node: NODE_ASN element pointer. */
365 /* Return: NULL if not found. */
366 /******************************************************************/
367 node_asn *
369 {
374 }
376 /******************************************************************/
377 /* Function : _asn1_find_up */
378 /* Description: return the father of the NODE_ASN element. */
379 /* Parameters: */
380 /* node: NODE_ASN element pointer. */
381 /* Return: Null if not found. */
382 /******************************************************************/
383 node_asn *
385 {
395 }
397 /******************************************************************/
398 /* Function : _asn1_convert_integer */
399 /* Description: converts an integer from a null terminated string */
400 /* to der decoding. The convertion from a null */
401 /* terminated string to an integer is made with */
402 /* the 'strtol' function. */
403 /* Parameters: */
404 /* value: null terminated string to convert. */
405 /* value_out: convertion result (memory must be already */
406 /* allocated). */
407 /* value_out_size: number of bytes of value_out. */
408 /* len: number of significant byte of value_out. */
409 /* Return: ASN_MEM_ERROR or ASN_OK */
410 /******************************************************************/
411 int
413 {
423 }
431 }
440 }
441 /* VALUE_OUT is too short to contain the value convertion */
443 }
447 }
449 /**
450 * asn1_create_tree - Creates the structures needed to manage the ASN1 definitions.
451 * @root: specify vector that contains ASN.1 declarations
452 * @pointer: return the pointer to the structure created by *ROOT ASN.1 declarations
453 * Description:
454 *
455 * Creates the structures needed to manage the ASN1 definitions. ROOT is a vector created by
456 * 'asn1_parser_asn1_file_c' function.
457 *
458 * Returns:
459 *
460 * ASN_OK\: structure created correctly.
461 *
462 * ASN_GENERIC_ERROR\: an error occured while structure creation
463 **/
464 int
466 {
501 }
503 }
504 k++;
510 }
514 }
517 int
519 {
528 char_p++;
530 }
537 char_p++;
538 }
550 }
577 }
580 }
587 }
591 }
592 }
593 }
594 }
601 }
604 /**
605 * asn1_visit_tree - Prints on the standard output the structure's tree
606 * @pointer: pointer to the structure that you want to delete.
607 * @name: an element of the structure
608 *
609 * Prints on the standard output the structure's tree starting from the NAME element inside
610 * the structure *POINTER.
611 **/
612 void
614 {
650 }
659 }
670 }
682 }
691 }
719 }
737 }
762 }
769 }
773 }
781 }
786 }
787 }
788 }
789 }
790 }
793 /**
794 * asn1_delete_structure - Deletes the structure *POINTER.
795 * @root: pointer to the structure that you want to delete.
796 * Description:
797 *
798 * Deletes the structure *POINTER.
799 *
800 * Returns:
801 *
802 * ASN_OK\: everything OK
803 *
804 * ASN_ELEMENT_NOT_FOUND\: pointer==NULL.
805 *
806 **/
807 int
809 {
818 }
826 }
834 }
835 }
839 }
840 }
841 }
843 }
846 node_asn *
848 {
874 }
875 }
877 }
886 }
888 }
898 }
900 }
904 }
908 }
911 node_asn *
913 {
920 }
923 /**
924 * asn1_create_structure - Creates a structure called DEST_NAME of type SOURCE_NAME.
925 * @root: pointer to the structure returned by "parser_asn1" function
926 * @source_name: the name of the type of the new structure (must be inside p_structure).
927 * @pointer: pointer to the structure created.
928 * @dest_name: the name of the new structure.
929 * Description:
930 *
931 * Creates a structure called DEST_NAME of type SOURCE_NAME.
932 *
933 * Returns:
934 *
935 * ASN_OK\: creation OK
936 *
937 * ASN_ELEMENT_NOT_FOUND\: SOURCE_NAME isn't known
938 *
939 * Example: using "pkix.asn"
940 * result=asn1_create_structure(cert_def,"PKIX1.Certificate",&cert,"certificate1");
941 **/
942 int
944 {
961 }
964 }
972 }
975 int
977 {
993 n++;
996 }
1000 }
1003 /**
1004 * asn1_write_value - Set the value of one element inside a structure.
1005 * @node_root: pointer to a structure
1006 * @name: the name of the element inside the structure that you want to set.
1007 * @value: vector used to specify the value to set. If len is >0,
1008 * VALUE must be a two's complement form integer.
1009 * if len=0 *VALUE must be a null terminated string with an integer value.
1010 * @len: number of bytes of *value to use to set the value: value[0]..value[len-1]
1011 * or 0 if value is a null terminated string
1012 * Description:
1013 *
1014 * Set the value of one element inside a structure.
1015 *
1016 * Returns:
1017 *
1018 * ASN_OK\: set value OK
1019 *
1020 * ASN_ELEMENT_NOT_FOUND\: NAME is not a valid element.
1021 *
1022 * ASN_VALUE_NOT_VALID\: VALUE has a wrong format.
1023 *
1024 * Examples:
1025 * description for each type
1026 * INTEGER: VALUE must contain a two's complement form integer.
1027 * value[0]=0xFF , len=1 -> integer=-1
1028 * value[0]=0xFF value[1]=0xFF , len=2 -> integer=-1
1029 * value[0]=0x01 , len=1 -> integer= 1
1030 * value[0]=0x00 value[1]=0x01 , len=2 -> integer= 1
1031 * value="123" , len=0 -> integer= 123
1032 * ENUMERATED: as INTEGER (but only with not negative numbers)
1033 * BOOLEAN: VALUE must be the null terminated string "TRUE" or "FALSE" and LEN != 0
1034 * value="TRUE" , len=1 -> boolean=TRUE
1035 * value="FALSE" , len=1 -> boolean=FALSE
1036 * OBJECT IDENTIFIER: VALUE must be a null terminated string with each number separated by
1037 * a blank (e.g. "1 2 3 543 1").
1038 * LEN != 0
1039 * value="1 2 840 10040 4 3" , len=1 -> OID=dsa-with-sha
1040 * UTCTime: VALUE must be a null terminated string in one of these formats:
1041 * "YYMMDDhhmmssZ" "YYMMDDhhmmssZ" "YYMMDDhhmmss+hh'mm'" "YYMMDDhhmmss-hh'mm'"
1042 * "YYMMDDhhmm+hh'mm'" "YYMMDDhhmm-hh'mm'".
1043 * LEN != 0
1044 * value="9801011200Z" , len=1 -> time=Jannuary 1st, 1998 at 12h 00m Greenwich Mean Time
1045 * GeneralizedTime: VALUE must be in one of this format:
1046 * "YYYYMMDDhhmmss.sZ" "YYYYMMDDhhmmss.sZ" "YYYYMMDDhhmmss.s+hh'mm'"
1047 * "YYYYMMDDhhmmss.s-hh'mm'" "YYYYMMDDhhmm+hh'mm'" "YYYYMMDDhhmm-hh'mm'"
1048 * where ss.s indicates the seconds with any precision like "10.1" or "01.02".
1049 * LEN != 0
1050 * value="2001010112001.12-0700" , len=1 -> time=Jannuary 1st, 2001 at 12h 00m 01.12s
1051 * Pacific Daylight Time
1052 * OCTET STRING: VALUE contains the octet string and LEN is the number of octet.
1053 * value="$\backslash$x01$\backslash$x02$\backslash$x03" , len=3 -> three bytes octet string
1054 * BIT STRING: VALUE contains the bit string organized by bytes and LEN is the number of bits.
1055 * value="$\backslash$xCF" , len=6 -> bit string="110011" (six bits)
1056 * CHOICE: if NAME indicates a choice type, VALUE must specify one of the alternatives with a
1057 * null terminated string. LEN != 0
1058 * Using "pkix.asn":
1059 * result=asn1_write_value(cert,"certificate1.tbsCertificate.subject","rdnSequence",1);
1060 * ANY: VALUE indicates the der encoding of a structure.
1061 * LEN != 0
1062 * SEQUENCE OF: VALUE must be the null terminated string "NEW" and LEN != 0. With this
1063 * instruction another element is appended in the sequence. The name of this
1064 * element will be "?1" if it's the first one, "?2" for the second and so on.
1065 * Using "pkix.asn":
1066 * result=asn1_write_value(cert,"certificate1.tbsCertificate.subject.rdnSequence","NEW",1);
1067 * SET OF: the same as SEQUENCE OF.
1068 * Using "pkix.asn":
1069 * result=asn1_write_value(cert,"certificate1.tbsCertificate.subject.rdnSequence.?LAST","NEW",1);
1070 *
1071 * If an element is OPTIONAL and you want to delete it, you must use the value=NULL and len=0.
1072 * Using "pkix.asn":
1073 * result=asn1_write_value(cert,"certificate1.tbsCertificate.issuerUniqueID",NULL,0);
1074 *
1075 **/
1076 int
1078 {
1089 }
1099 }
1101 }
1108 }
1110 }
1120 }
1132 }
1133 }
1135 }
1137 }
1138 }
1143 }
1176 }
1188 }
1189 }
1191 }
1193 }
1199 }
1201 }
1203 }
1239 }
1241 }
1244 }
1272 }
1274 }
1276 }
1295 }
1298 }
1300 #define PUT_VALUE( ptr, ptr_size, data, data_size) \
1301 *len = data_size; \
1302 if (ptr_size < data_size) { \
1303 gnutls_assert(); \
1304 return ASN_MEM_ERROR; \
1305 } else { \
1306 memcpy( ptr, data, data_size); \
1307 }
1309 #define PUT_STR_VALUE( ptr, ptr_size, data) \
1310 *len = strlen(data) + 1; \
1311 if (ptr_size < *len) { \
1312 gnutls_assert(); \
1313 return ASN_MEM_ERROR; \
1314 } else { \
1316 strcpy(ptr, data); \
1317 }
1319 #define ADD_STR_VALUE( ptr, ptr_size, data) \
1320 *len = strlen(data) + 1; \
1321 if (ptr_size < strlen(ptr)+(*len)) { \
1322 gnutls_assert(); \
1323 return ASN_MEM_ERROR; \
1324 } else { \
1326 strcat(ptr, data); \
1327 }
1329 /**
1330 * asn1_read_value - Returns the value of one element inside a structure
1331 * @root: pointer to a structure
1332 * @name: the name of the element inside a structure that you want to read.
1333 * @value: vector that will contain the element's content.
1334 * VALUE must be a pointer to memory cells already allocated.
1335 * @len: number of bytes of *value: value[0]..value[len-1]. Initialy holds the sizeof value.
1336 *
1337 * Description:
1338 *
1339 * Returns the value of one element inside a structure.
1340 *
1341 * Returns:
1342 *
1343 * ASN_OK\: set value OK
1344 *
1345 * ASN_ELEMENT_NOT_FOUND\: NAME is not a valid element.
1346 *
1347 * ASN_VALUE_NOT_FOUND\: there isn't any value for the element selected.
1348 *
1349 * Examples:
1350 * a description for each type
1351 * INTEGER: VALUE will contain a two's complement form integer.
1352 * integer=-1 -> value[0]=0xFF , len=1
1353 * integer=1 -> value[0]=0x01 , len=1
1354 * ENUMERATED: as INTEGER (but only with not negative numbers)
1355 * BOOLEAN: VALUE will be the null terminated string "TRUE" or "FALSE" and LEN=5 or LEN=6
1356 * OBJECT IDENTIFIER: VALUE will be a null terminated string with each number separated by
1357 * a blank (i.e. "1 2 3 543 1").
1358 * LEN = strlen(VALUE)+1
1359 * UTCTime: VALUE will be a null terminated string in one of these formats:
1360 * "YYMMDDhhmmss+hh'mm'" or "YYMMDDhhmmss-hh'mm'"
1361 * LEN=strlen(VALUE)+1
1362 * GeneralizedTime: VALUE will be a null terminated string in the same format used to set
1363 * the value
1364 * OCTET STRING: VALUE will contain the octet string and LEN will be the number of octet.
1365 * BIT STRING: VALUE will contain the bit string organized by bytes and LEN will be the
1366 * number of bits.
1367 * CHOICE: if NAME indicates a choice type, VALUE will specify the alternative selected
1368 * ANY: if NAME indicates an any type, VALUE will indicate the DER encoding of the structure
1369 * actually used.
1370 *
1371 * If an element is OPTIONAL and the function "read_value" returns ASN_ELEMENT_NOT_FOUND, it
1372 * means that this element wasn't present in the der encoding that created the structure.
1373 * The first element of a SEQUENCE_OF or SET_OF is named "?1". The second one "?2" and so on.
1374 *
1375 **/
1376 int
1378 {
1404 }
1405 }
1408 }
1411 }
1418 }
1421 if (_asn1_get_octet_der(node->value,&len2,value, value_size, len)!=ASN_OK) return ASN_MEM_ERROR;
1422 }
1433 }
1434 }
1436 }
1439 }
1446 if (_asn1_get_octet_der(node->value,&len2,value, value_size, len)!=ASN_OK) return ASN_MEM_ERROR;
1463 }
1465 }
1467 /**
1468 * asn1_number_of_elements - Counts the number of elements of a structure.
1469 * @root: pointer to the root of an ASN1 structure.
1470 * @name: the name of a sub-structure of ROOT.
1471 * @num: pointer to an integer where the result will be stored
1472 * Description:
1473 *
1474 * Counts the number of elements of a sub-structure called NAME with names equal to "?1","?2", ...
1475 *
1476 * Returns:
1477 *
1478 * ASN_OK: creation OK
1479 * ASN_ELEMENT_NOT_FOUND: NAME isn't known
1480 * ASN_GENERIC_ERROR: parameter num equal to NULL
1481 *
1482 **/
1483 int
1485 {
1500 }
1503 }
1506 int
1508 {
1521 }
1525 }
1533 }
1537 }
1538 }
1539 }
1540 }
1543 }
1546 int
1548 {
1562 }
1575 }
1576 }
1577 }
1581 }
1589 }
1593 }
1594 }
1595 }
1596 }
1599 }
1602 int
1604 {
1618 }
1619 }
1623 }
1633 }
1637 }
1638 }
1639 }
1640 }
1641 }
1644 }
1647 int
1649 {
1661 }
1664 }
1670 }
1680 }
1684 }
1685 }
1686 }
1687 }
1688 }
1690 }
1694 int
1696 {
1723 }
1732 }
1733 }
1747 }
1749 }
1755 }
1762 }
1764 }
1767 }
1771 int
1773 {
1797 }
1799 }
1800 }
1802 }
1809 }
1810 }
1812 }
1818 }
1825 }
1827 }
1830 }
1833 int
1835 {
1852 }
1853 }
1855 }
1861 }
1868 }
1870 }
1873 }
1876 int
1878 {
1914 }
1918 }
1920 }
1922 }
1925 }
1926 }
1927 }
1929 }
1935 }
1942 }
1944 }
1947 }