TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / OP-TEE / optee_os / 0fc9291f405157f935e0001622f91b759ce44be6 / . / lib / libmbedtls / mbedtls / library / asn1parse.c
blob: e33fdf71da65e2733fd9c7e3ed2607e2bf91f2dc [file] [log] [blame]
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]1/*
2 * Generic ASN.1 parsing
3 *
Jerome Forissier79013242021-07-28 10:24:04 +0200[diff] [blame]4 * Copyright The Mbed TLS Contributors
Tom Van Eyckc1633172024-04-09 18:44:13 +0200[diff] [blame]5 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]6 */
7
Jerome Forissier79013242021-07-28 10:24:04 +0200[diff] [blame]8#include "common.h"
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]9
Tom Van Eyckc1633172024-04-09 18:44:13 +0200[diff] [blame]10#if defined(MBEDTLS_ASN1_PARSE_C) || defined(MBEDTLS_X509_CREATE_C) || \
11 defined(MBEDTLS_PSA_UTIL_HAVE_ECDSA)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]12
13#include "mbedtls/asn1.h"
Jens Wiklander3d3b0592019-03-20 15:30:29 +0100[diff] [blame]14#include "mbedtls/platform_util.h"
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]15#include "mbedtls/error.h"
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]16
17#include <string.h>
18
19#if defined(MBEDTLS_BIGNUM_C)
20#include "mbedtls/bignum.h"
21#endif
22
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]23#include "mbedtls/platform.h"
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]24
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]25/*
26 * ASN.1 DER decoding routines
27 */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]28int mbedtls_asn1_get_len(unsigned char **p,
29 const unsigned char *end,
30 size_t *len)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]31{
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]32 if ((end - *p) < 1) {
33 return MBEDTLS_ERR_ASN1_OUT_OF_DATA;
34 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]35
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]36 if ((**p & 0x80) == 0) {
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]37 *len = *(*p)++;
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]38 } else {
Tom Van Eyckc1633172024-04-09 18:44:13 +0200[diff] [blame]39 int n = (**p) & 0x7F;
40 if (n == 0 || n > 4) {
41 return MBEDTLS_ERR_ASN1_INVALID_LENGTH;
42 }
43 if ((end - *p) <= n) {
44 return MBEDTLS_ERR_ASN1_OUT_OF_DATA;
45 }
46 *len = 0;
47 (*p)++;
48 while (n--) {
49 *len = (*len << 8) | **p;
50 (*p)++;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]51 }
52 }
53
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]54 if (*len > (size_t) (end - *p)) {
55 return MBEDTLS_ERR_ASN1_OUT_OF_DATA;
56 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]57
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]58 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]59}
60
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]61int mbedtls_asn1_get_tag(unsigned char **p,
62 const unsigned char *end,
63 size_t *len, int tag)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]64{
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]65 if ((end - *p) < 1) {
66 return MBEDTLS_ERR_ASN1_OUT_OF_DATA;
67 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]68
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]69 if (**p != tag) {
70 return MBEDTLS_ERR_ASN1_UNEXPECTED_TAG;
71 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]72
73 (*p)++;
74
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]75 return mbedtls_asn1_get_len(p, end, len);
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]76}
Tom Van Eyckc1633172024-04-09 18:44:13 +0200[diff] [blame]77#endif /* MBEDTLS_ASN1_PARSE_C || MBEDTLS_X509_CREATE_C || MBEDTLS_PSA_UTIL_HAVE_ECDSA */
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]78
Tom Van Eyckc1633172024-04-09 18:44:13 +0200[diff] [blame]79#if defined(MBEDTLS_ASN1_PARSE_C)
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]80int mbedtls_asn1_get_bool(unsigned char **p,
81 const unsigned char *end,
82 int *val)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]83{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]84 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]85 size_t len;
86
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]87 if ((ret = mbedtls_asn1_get_tag(p, end, &len, MBEDTLS_ASN1_BOOLEAN)) != 0) {
88 return ret;
89 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]90
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]91 if (len != 1) {
92 return MBEDTLS_ERR_ASN1_INVALID_LENGTH;
93 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]94
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]95 *val = (**p != 0) ? 1 : 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]96 (*p)++;
97
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]98 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]99}
100
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]101static int asn1_get_tagged_int(unsigned char **p,
102 const unsigned char *end,
103 int tag, int *val)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]104{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]105 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]106 size_t len;
107
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]108 if ((ret = mbedtls_asn1_get_tag(p, end, &len, tag)) != 0) {
109 return ret;
110 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]111
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]112 /*
113 * len==0 is malformed (0 must be represented as 020100 for INTEGER,
114 * or 0A0100 for ENUMERATED tags
115 */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]116 if (len == 0) {
117 return MBEDTLS_ERR_ASN1_INVALID_LENGTH;
118 }
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]119 /* This is a cryptography library. Reject negative integers. */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]120 if ((**p & 0x80) != 0) {
121 return MBEDTLS_ERR_ASN1_INVALID_LENGTH;
122 }
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]123
124 /* Skip leading zeros. */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]125 while (len > 0 && **p == 0) {
126 ++(*p);
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]127 --len;
128 }
129
130 /* Reject integers that don't fit in an int. This code assumes that
131 * the int type has no padding bit. */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]132 if (len > sizeof(int)) {
133 return MBEDTLS_ERR_ASN1_INVALID_LENGTH;
134 }
135 if (len == sizeof(int) && (**p & 0x80) != 0) {
136 return MBEDTLS_ERR_ASN1_INVALID_LENGTH;
137 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]138
139 *val = 0;
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]140 while (len-- > 0) {
141 *val = (*val << 8) | **p;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]142 (*p)++;
143 }
144
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]145 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]146}
147
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]148int mbedtls_asn1_get_int(unsigned char **p,
149 const unsigned char *end,
150 int *val)
151{
152 return asn1_get_tagged_int(p, end, MBEDTLS_ASN1_INTEGER, val);
153}
154
155int mbedtls_asn1_get_enum(unsigned char **p,
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]156 const unsigned char *end,
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]157 int *val)
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]158{
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]159 return asn1_get_tagged_int(p, end, MBEDTLS_ASN1_ENUMERATED, val);
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]160}
161
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]162#if defined(MBEDTLS_BIGNUM_C)
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]163int mbedtls_asn1_get_mpi(unsigned char **p,
164 const unsigned char *end,
165 mbedtls_mpi *X)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]166{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]167 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]168 size_t len;
169
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]170 if ((ret = mbedtls_asn1_get_tag(p, end, &len, MBEDTLS_ASN1_INTEGER)) != 0) {
171 return ret;
172 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]173
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]174 ret = mbedtls_mpi_read_binary(X, *p, len);
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]175
176 *p += len;
177
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]178 return ret;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]179}
180#endif /* MBEDTLS_BIGNUM_C */
181
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]182int mbedtls_asn1_get_bitstring(unsigned char **p, const unsigned char *end,
183 mbedtls_asn1_bitstring *bs)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]184{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]185 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]186
187 /* Certificate type is a single byte bitstring */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]188 if ((ret = mbedtls_asn1_get_tag(p, end, &bs->len, MBEDTLS_ASN1_BIT_STRING)) != 0) {
189 return ret;
190 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]191
192 /* Check length, subtract one for actual bit string length */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]193 if (bs->len < 1) {
194 return MBEDTLS_ERR_ASN1_OUT_OF_DATA;
195 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]196 bs->len -= 1;
197
198 /* Get number of unused bits, ensure unused bits <= 7 */
199 bs->unused_bits = **p;
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]200 if (bs->unused_bits > 7) {
201 return MBEDTLS_ERR_ASN1_INVALID_LENGTH;
202 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]203 (*p)++;
204
205 /* Get actual bitstring */
206 bs->p = *p;
207 *p += bs->len;
208
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]209 if (*p != end) {
210 return MBEDTLS_ERR_ASN1_LENGTH_MISMATCH;
211 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]212
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]213 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]214}
215
216/*
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]217 * Traverse an ASN.1 "SEQUENCE OF <tag>"
218 * and call a callback for each entry found.
219 */
220int mbedtls_asn1_traverse_sequence_of(
221 unsigned char **p,
222 const unsigned char *end,
223 unsigned char tag_must_mask, unsigned char tag_must_val,
224 unsigned char tag_may_mask, unsigned char tag_may_val,
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]225 int (*cb)(void *ctx, int tag,
226 unsigned char *start, size_t len),
227 void *ctx)
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]228{
229 int ret;
230 size_t len;
231
232 /* Get main sequence tag */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]233 if ((ret = mbedtls_asn1_get_tag(p, end, &len,
234 MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE)) != 0) {
235 return ret;
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]236 }
237
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]238 if (*p + len != end) {
239 return MBEDTLS_ERR_ASN1_LENGTH_MISMATCH;
240 }
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]241
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]242 while (*p < end) {
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]243 unsigned char const tag = *(*p)++;
244
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]245 if ((tag & tag_must_mask) != tag_must_val) {
246 return MBEDTLS_ERR_ASN1_UNEXPECTED_TAG;
247 }
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]248
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]249 if ((ret = mbedtls_asn1_get_len(p, end, &len)) != 0) {
250 return ret;
251 }
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]252
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]253 if ((tag & tag_may_mask) == tag_may_val) {
254 if (cb != NULL) {
255 ret = cb(ctx, tag, *p, len);
256 if (ret != 0) {
257 return ret;
258 }
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]259 }
260 }
261
262 *p += len;
263 }
264
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]265 return 0;
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]266}
267
268/*
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]269 * Get a bit string without unused bits
270 */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]271int mbedtls_asn1_get_bitstring_null(unsigned char **p, const unsigned char *end,
272 size_t *len)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]273{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]274 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]275
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]276 if ((ret = mbedtls_asn1_get_tag(p, end, len, MBEDTLS_ASN1_BIT_STRING)) != 0) {
277 return ret;
278 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]279
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]280 if (*len == 0) {
281 return MBEDTLS_ERR_ASN1_INVALID_DATA;
282 }
283 --(*len);
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]284
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]285 if (**p != 0) {
286 return MBEDTLS_ERR_ASN1_INVALID_DATA;
287 }
288 ++(*p);
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]289
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]290 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]291}
292
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]293void mbedtls_asn1_sequence_free(mbedtls_asn1_sequence *seq)
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]294{
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]295 while (seq != NULL) {
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]296 mbedtls_asn1_sequence *next = seq->next;
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]297 mbedtls_free(seq);
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]298 seq = next;
299 }
300}
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]301
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]302typedef struct {
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]303 int tag;
304 mbedtls_asn1_sequence *cur;
305} asn1_get_sequence_of_cb_ctx_t;
306
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]307static int asn1_get_sequence_of_cb(void *ctx,
308 int tag,
309 unsigned char *start,
310 size_t len)
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]311{
312 asn1_get_sequence_of_cb_ctx_t *cb_ctx =
313 (asn1_get_sequence_of_cb_ctx_t *) ctx;
314 mbedtls_asn1_sequence *cur =
315 cb_ctx->cur;
316
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]317 if (cur->buf.p != NULL) {
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]318 cur->next =
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]319 mbedtls_calloc(1, sizeof(mbedtls_asn1_sequence));
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]320
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]321 if (cur->next == NULL) {
322 return MBEDTLS_ERR_ASN1_ALLOC_FAILED;
323 }
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]324
325 cur = cur->next;
326 }
327
328 cur->buf.p = start;
329 cur->buf.len = len;
330 cur->buf.tag = tag;
331
332 cb_ctx->cur = cur;
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]333 return 0;
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]334}
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]335
336/*
337 * Parses and splits an ASN.1 "SEQUENCE OF <tag>"
338 */
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]339int mbedtls_asn1_get_sequence_of(unsigned char **p,
340 const unsigned char *end,
341 mbedtls_asn1_sequence *cur,
342 int tag)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]343{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]344 asn1_get_sequence_of_cb_ctx_t cb_ctx = { tag, cur };
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]345 memset(cur, 0, sizeof(mbedtls_asn1_sequence));
346 return mbedtls_asn1_traverse_sequence_of(
347 p, end, 0xFF, tag, 0, 0,
348 asn1_get_sequence_of_cb, &cb_ctx);
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]349}
350
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]351int mbedtls_asn1_get_alg(unsigned char **p,
352 const unsigned char *end,
353 mbedtls_asn1_buf *alg, mbedtls_asn1_buf *params)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]354{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]355 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]356 size_t len;
357
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]358 if ((ret = mbedtls_asn1_get_tag(p, end, &len,
359 MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE)) != 0) {
360 return ret;
361 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]362
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]363 if ((end - *p) < 1) {
364 return MBEDTLS_ERR_ASN1_OUT_OF_DATA;
365 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]366
367 alg->tag = **p;
368 end = *p + len;
369
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]370 if ((ret = mbedtls_asn1_get_tag(p, end, &alg->len, MBEDTLS_ASN1_OID)) != 0) {
371 return ret;
372 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]373
374 alg->p = *p;
375 *p += alg->len;
376
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]377 if (*p == end) {
378 mbedtls_platform_zeroize(params, sizeof(mbedtls_asn1_buf));
379 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]380 }
381
382 params->tag = **p;
383 (*p)++;
384
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]385 if ((ret = mbedtls_asn1_get_len(p, end, &params->len)) != 0) {
386 return ret;
387 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]388
389 params->p = *p;
390 *p += params->len;
391
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]392 if (*p != end) {
393 return MBEDTLS_ERR_ASN1_LENGTH_MISMATCH;
394 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]395
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]396 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]397}
398
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]399int mbedtls_asn1_get_alg_null(unsigned char **p,
400 const unsigned char *end,
401 mbedtls_asn1_buf *alg)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]402{
Jerome Forissier11fa71b2020-04-20 17:17:56 +0200[diff] [blame]403 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]404 mbedtls_asn1_buf params;
405
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]406 memset(&params, 0, sizeof(mbedtls_asn1_buf));
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]407
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]408 if ((ret = mbedtls_asn1_get_alg(p, end, alg, &params)) != 0) {
409 return ret;
410 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]411
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]412 if ((params.tag != MBEDTLS_ASN1_NULL && params.tag != 0) || params.len != 0) {
413 return MBEDTLS_ERR_ASN1_INVALID_DATA;
414 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]415
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]416 return 0;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]417}
418
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]419#if !defined(MBEDTLS_DEPRECATED_REMOVED)
420void mbedtls_asn1_free_named_data(mbedtls_asn1_named_data *cur)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]421{
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]422 if (cur == NULL) {
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]423 return;
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]424 }
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]425
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]426 mbedtls_free(cur->oid.p);
427 mbedtls_free(cur->val.p);
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]428
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]429 mbedtls_platform_zeroize(cur, sizeof(mbedtls_asn1_named_data));
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]430}
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]431#endif /* MBEDTLS_DEPRECATED_REMOVED */
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]432
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]433void mbedtls_asn1_free_named_data_list(mbedtls_asn1_named_data **head)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]434{
435 mbedtls_asn1_named_data *cur;
436
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]437 while ((cur = *head) != NULL) {
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]438 *head = cur->next;
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]439 mbedtls_free(cur->oid.p);
440 mbedtls_free(cur->val.p);
441 mbedtls_free(cur);
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]442 }
443}
444
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]445void mbedtls_asn1_free_named_data_list_shallow(mbedtls_asn1_named_data *name)
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]446{
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]447 for (mbedtls_asn1_named_data *next; name != NULL; name = next) {
448 next = name->next;
449 mbedtls_free(name);
450 }
451}
452
453const mbedtls_asn1_named_data *mbedtls_asn1_find_named_data(const mbedtls_asn1_named_data *list,
454 const char *oid, size_t len)
455{
456 while (list != NULL) {
457 if (list->oid.len == len &&
458 memcmp(list->oid.p, oid, len) == 0) {
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]459 break;
460 }
461
462 list = list->next;
463 }
464
Jens Wiklander32b31802023-10-06 16:59:46 +0200[diff] [blame]465 return list;
Jens Wiklander817466c2018-05-22 13:49:31 +0200[diff] [blame]466}
467
468#endif /* MBEDTLS_ASN1_PARSE_C */