Symaptic: os/ossrv/ssl/libcrypto/src/crypto/asn1/tasn

sl@0	1	/* tasn_enc.c */
sl@0	2	/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
sl@0	3	* project 2000.
sl@0	4	*/
sl@0	5	/* ====================================================================
sl@0	6	* Copyright (c) 2000-2004 The OpenSSL Project. All rights reserved.
sl@0	7	*
sl@0	8	* Redistribution and use in source and binary forms, with or without
sl@0	9	* modification, are permitted provided that the following conditions
sl@0	10	* are met:
sl@0	11	*
sl@0	12	* 1. Redistributions of source code must retain the above copyright
sl@0	13	* notice, this list of conditions and the following disclaimer.
sl@0	14	*
sl@0	15	* 2. Redistributions in binary form must reproduce the above copyright
sl@0	16	* notice, this list of conditions and the following disclaimer in
sl@0	17	* the documentation and/or other materials provided with the
sl@0	18	* distribution.
sl@0	19	*
sl@0	20	* 3. All advertising materials mentioning features or use of this
sl@0	21	* software must display the following acknowledgment:
sl@0	22	* "This product includes software developed by the OpenSSL Project
sl@0	23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
sl@0	24	*
sl@0	25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
sl@0	26	* endorse or promote products derived from this software without
sl@0	27	* prior written permission. For written permission, please contact
sl@0	28	* licensing@OpenSSL.org.
sl@0	29	*
sl@0	30	* 5. Products derived from this software may not be called "OpenSSL"
sl@0	31	* nor may "OpenSSL" appear in their names without prior written
sl@0	32	* permission of the OpenSSL Project.
sl@0	33	*
sl@0	34	* 6. Redistributions of any form whatsoever must retain the following
sl@0	35	* acknowledgment:
sl@0	36	* "This product includes software developed by the OpenSSL Project
sl@0	37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
sl@0	38	*
sl@0	39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
sl@0	40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
sl@0	41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
sl@0	42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
sl@0	43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
sl@0	44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
sl@0	45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
sl@0	46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
sl@0	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
sl@0	48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
sl@0	49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
sl@0	50	* OF THE POSSIBILITY OF SUCH DAMAGE.
sl@0	51	* ====================================================================
sl@0	52	*
sl@0	53	* This product includes cryptographic software written by Eric Young
sl@0	54	* (eay@cryptsoft.com). This product includes software written by Tim
sl@0	55	* Hudson (tjh@cryptsoft.com).
sl@0	56	*
sl@0	57	*/
sl@0	58
sl@0	59
sl@0	60	#include <stddef.h>
sl@0	61	#include <string.h>
sl@0	62	#include "cryptlib.h"
sl@0	63	#include <openssl/asn1.h>
sl@0	64	#include <openssl/asn1t.h>
sl@0	65	#include <openssl/objects.h>
sl@0	66
sl@0	67	static int asn1_i2d_ex_primitive(ASN1_VALUE pval, unsigned char out,
sl@0	68	const ASN1_ITEM *it,
sl@0	69	int tag, int aclass);
sl@0	70	static int asn1_set_seq_out(STACK_OF(ASN1_VALUE) sk, unsigned char *out,
sl@0	71	int skcontlen, const ASN1_ITEM *item,
sl@0	72	int do_sort, int iclass);
sl@0	73	static int asn1_template_ex_i2d(ASN1_VALUE pval, unsigned char out,
sl@0	74	const ASN1_TEMPLATE *tt,
sl@0	75	int tag, int aclass);
sl@0	76	static int asn1_item_flags_i2d(ASN1_VALUE val, unsigned char *out,
sl@0	77	const ASN1_ITEM *it, int flags);
sl@0	78
sl@0	79	/* Top level i2d equivalents: the 'ndef' variant instructs the encoder
sl@0	80	* to use indefinite length constructed encoding, where appropriate
sl@0	81	*/
sl@0	82
sl@0	83	EXPORT_C int ASN1_item_ndef_i2d(ASN1_VALUE val, unsigned char *out,
sl@0	84	const ASN1_ITEM *it)
sl@0	85	{
sl@0	86	return asn1_item_flags_i2d(val, out, it, ASN1_TFLG_NDEF);
sl@0	87	}
sl@0	88
sl@0	89	EXPORT_C int ASN1_item_i2d(ASN1_VALUE val, unsigned char out, const ASN1_ITEM it)
sl@0	90	{
sl@0	91	return asn1_item_flags_i2d(val, out, it, 0);
sl@0	92	}
sl@0	93
sl@0	94	/* Encode an ASN1 item, this is use by the
sl@0	95	* standard 'i2d' function. 'out' points to
sl@0	96	* a buffer to output the data to.
sl@0	97	*
sl@0	98	* The new i2d has one additional feature. If the output
sl@0	99	* buffer is NULL (i.e. *out == NULL) then a buffer is
sl@0	100	* allocated and populated with the encoding.
sl@0	101	*/
sl@0	102
sl@0	103	static int asn1_item_flags_i2d(ASN1_VALUE val, unsigned char *out,
sl@0	104	const ASN1_ITEM *it, int flags)
sl@0	105	{
sl@0	106	if (out && !*out)
sl@0	107	{
sl@0	108	unsigned char p, buf;
sl@0	109	int len;
sl@0	110	len = ASN1_item_ex_i2d(&val, NULL, it, -1, flags);
sl@0	111	if (len <= 0)
sl@0	112	return len;
sl@0	113	buf = OPENSSL_malloc(len);
sl@0	114	if (!buf)
sl@0	115	return -1;
sl@0	116	p = buf;
sl@0	117	ASN1_item_ex_i2d(&val, &p, it, -1, flags);
sl@0	118	*out = buf;
sl@0	119	return len;
sl@0	120	}
sl@0	121
sl@0	122	return ASN1_item_ex_i2d(&val, out, it, -1, flags);
sl@0	123	}
sl@0	124
sl@0	125	/* Encode an item, taking care of IMPLICIT tagging (if any).
sl@0	126	* This function performs the normal item handling: it can be
sl@0	127	* used in external types.
sl@0	128	*/
sl@0	129
sl@0	130	EXPORT_C int ASN1_item_ex_i2d(ASN1_VALUE pval, unsigned char out,
sl@0	131	const ASN1_ITEM *it, int tag, int aclass)
sl@0	132	{
sl@0	133	const ASN1_TEMPLATE *tt = NULL;
sl@0	134	unsigned char *p = NULL;
sl@0	135	int i, seqcontlen, seqlen, ndef = 1;
sl@0	136	const ASN1_COMPAT_FUNCS *cf;
sl@0	137	const ASN1_EXTERN_FUNCS *ef;
sl@0	138	const ASN1_AUX *aux = it->funcs;
sl@0	139	ASN1_aux_cb *asn1_cb = 0;
sl@0	140
sl@0	141	if ((it->itype != ASN1_ITYPE_PRIMITIVE) && !*pval)
sl@0	142	return 0;
sl@0	143
sl@0	144	if (aux && aux->asn1_cb)
sl@0	145	asn1_cb = aux->asn1_cb;
sl@0	146
sl@0	147	switch(it->itype)
sl@0	148	{
sl@0	149
sl@0	150	case ASN1_ITYPE_PRIMITIVE:
sl@0	151	if (it->templates)
sl@0	152	return asn1_template_ex_i2d(pval, out, it->templates,
sl@0	153	tag, aclass);
sl@0	154	return asn1_i2d_ex_primitive(pval, out, it, tag, aclass);
sl@0	155	break;
sl@0	156
sl@0	157	case ASN1_ITYPE_MSTRING:
sl@0	158	return asn1_i2d_ex_primitive(pval, out, it, -1, aclass);
sl@0	159
sl@0	160	case ASN1_ITYPE_CHOICE:
sl@0	161	if (asn1_cb && !asn1_cb(ASN1_OP_I2D_PRE, pval, it))
sl@0	162	return 0;
sl@0	163	i = asn1_get_choice_selector(pval, it);
sl@0	164	if ((i >= 0) && (i < it->tcount))
sl@0	165	{
sl@0	166	ASN1_VALUE **pchval;
sl@0	167	const ASN1_TEMPLATE *chtt;
sl@0	168	chtt = it->templates + i;
sl@0	169	pchval = asn1_get_field_ptr(pval, chtt);
sl@0	170	return asn1_template_ex_i2d(pchval, out, chtt,
sl@0	171	-1, aclass);
sl@0	172	}
sl@0	173	/* Fixme: error condition if selector out of range */
sl@0	174	if (asn1_cb && !asn1_cb(ASN1_OP_I2D_POST, pval, it))
sl@0	175	return 0;
sl@0	176	break;
sl@0	177
sl@0	178	case ASN1_ITYPE_EXTERN:
sl@0	179	/* If new style i2d it does all the work */
sl@0	180	ef = it->funcs;
sl@0	181	return ef->asn1_ex_i2d(pval, out, it, tag, aclass);
sl@0	182
sl@0	183	case ASN1_ITYPE_COMPAT:
sl@0	184	/* old style hackery... */
sl@0	185	cf = it->funcs;
sl@0	186	if (out)
sl@0	187	p = *out;
sl@0	188	i = cf->asn1_i2d(*pval, out);
sl@0	189	/* Fixup for IMPLICIT tag: note this messes up for tags > 30,
sl@0	190	* but so did the old code. Tags > 30 are very rare anyway.
sl@0	191	*/
sl@0	192	if (out && (tag != -1))
sl@0	193	p = aclass \| tag \| (p & V_ASN1_CONSTRUCTED);
sl@0	194	return i;
sl@0	195
sl@0	196	case ASN1_ITYPE_NDEF_SEQUENCE:
sl@0	197	/* Use indefinite length constructed if requested */
sl@0	198	if (aclass & ASN1_TFLG_NDEF) ndef = 2;
sl@0	199	/* fall through */
sl@0	200
sl@0	201	case ASN1_ITYPE_SEQUENCE:
sl@0	202	i = asn1_enc_restore(&seqcontlen, out, pval, it);
sl@0	203	/* An error occurred */
sl@0	204	if (i < 0)
sl@0	205	return 0;
sl@0	206	/* We have a valid cached encoding... */
sl@0	207	if (i > 0)
sl@0	208	return seqcontlen;
sl@0	209	/* Otherwise carry on */
sl@0	210	seqcontlen = 0;
sl@0	211	/* If no IMPLICIT tagging set to SEQUENCE, UNIVERSAL */
sl@0	212	if (tag == -1)
sl@0	213	{
sl@0	214	tag = V_ASN1_SEQUENCE;
sl@0	215	/* Retain any other flags in aclass */
sl@0	216	aclass = (aclass & ~ASN1_TFLG_TAG_CLASS)
sl@0	217	\| V_ASN1_UNIVERSAL;
sl@0	218	}
sl@0	219	if (asn1_cb && !asn1_cb(ASN1_OP_I2D_PRE, pval, it))
sl@0	220	return 0;
sl@0	221	/* First work out sequence content length */
sl@0	222	for (i = 0, tt = it->templates; i < it->tcount; tt++, i++)
sl@0	223	{
sl@0	224	const ASN1_TEMPLATE *seqtt;
sl@0	225	ASN1_VALUE **pseqval;
sl@0	226	seqtt = asn1_do_adb(pval, tt, 1);
sl@0	227	if (!seqtt)
sl@0	228	return 0;
sl@0	229	pseqval = asn1_get_field_ptr(pval, seqtt);
sl@0	230	/* FIXME: check for errors in enhanced version */
sl@0	231	seqcontlen += asn1_template_ex_i2d(pseqval, NULL, seqtt,
sl@0	232	-1, aclass);
sl@0	233	}
sl@0	234
sl@0	235	seqlen = ASN1_object_size(ndef, seqcontlen, tag);
sl@0	236	if (!out)
sl@0	237	return seqlen;
sl@0	238	/* Output SEQUENCE header */
sl@0	239	ASN1_put_object(out, ndef, seqcontlen, tag, aclass);
sl@0	240	for (i = 0, tt = it->templates; i < it->tcount; tt++, i++)
sl@0	241	{
sl@0	242	const ASN1_TEMPLATE *seqtt;
sl@0	243	ASN1_VALUE **pseqval;
sl@0	244	seqtt = asn1_do_adb(pval, tt, 1);
sl@0	245	if (!seqtt)
sl@0	246	return 0;
sl@0	247	pseqval = asn1_get_field_ptr(pval, seqtt);
sl@0	248	/* FIXME: check for errors in enhanced version */
sl@0	249	asn1_template_ex_i2d(pseqval, out, seqtt, -1, aclass);
sl@0	250	}
sl@0	251	if (ndef == 2)
sl@0	252	ASN1_put_eoc(out);
sl@0	253	if (asn1_cb && !asn1_cb(ASN1_OP_I2D_POST, pval, it))
sl@0	254	return 0;
sl@0	255	return seqlen;
sl@0	256
sl@0	257	default:
sl@0	258	return 0;
sl@0	259
sl@0	260	}
sl@0	261	return 0;
sl@0	262	}
sl@0	263
sl@0	264	EXPORT_C int ASN1_template_i2d(ASN1_VALUE pval, unsigned char out,
sl@0	265	const ASN1_TEMPLATE *tt)
sl@0	266	{
sl@0	267	return asn1_template_ex_i2d(pval, out, tt, -1, 0);
sl@0	268	}
sl@0	269
sl@0	270	static int asn1_template_ex_i2d(ASN1_VALUE pval, unsigned char out,
sl@0	271	const ASN1_TEMPLATE *tt, int tag, int iclass)
sl@0	272	{
sl@0	273	int i, ret, flags, ttag, tclass, ndef;
sl@0	274	flags = tt->flags;
sl@0	275	/* Work out tag and class to use: tagging may come
sl@0	276	* either from the template or the arguments, not both
sl@0	277	* because this would create ambiguity. Additionally
sl@0	278	* the iclass argument may contain some additional flags
sl@0	279	* which should be noted and passed down to other levels.
sl@0	280	*/
sl@0	281	if (flags & ASN1_TFLG_TAG_MASK)
sl@0	282	{
sl@0	283	/* Error if argument and template tagging */
sl@0	284	if (tag != -1)
sl@0	285	/* FIXME: error code here */
sl@0	286	return -1;
sl@0	287	/* Get tagging from template */
sl@0	288	ttag = tt->tag;
sl@0	289	tclass = flags & ASN1_TFLG_TAG_CLASS;
sl@0	290	}
sl@0	291	else if (tag != -1)
sl@0	292	{
sl@0	293	/* No template tagging, get from arguments */
sl@0	294	ttag = tag;
sl@0	295	tclass = iclass & ASN1_TFLG_TAG_CLASS;
sl@0	296	}
sl@0	297	else
sl@0	298	{
sl@0	299	ttag = -1;
sl@0	300	tclass = 0;
sl@0	301	}
sl@0	302	/*
sl@0	303	* Remove any class mask from iflag.
sl@0	304	*/
sl@0	305	iclass &= ~ASN1_TFLG_TAG_CLASS;
sl@0	306
sl@0	307	/* At this point 'ttag' contains the outer tag to use,
sl@0	308	* 'tclass' is the class and iclass is any flags passed
sl@0	309	* to this function.
sl@0	310	*/
sl@0	311
sl@0	312	/* if template and arguments require ndef, use it */
sl@0	313	if ((flags & ASN1_TFLG_NDEF) && (iclass & ASN1_TFLG_NDEF))
sl@0	314	ndef = 2;
sl@0	315	else ndef = 1;
sl@0	316
sl@0	317	if (flags & ASN1_TFLG_SK_MASK)
sl@0	318	{
sl@0	319	/* SET OF, SEQUENCE OF */
sl@0	320	STACK_OF(ASN1_VALUE) sk = (STACK_OF(ASN1_VALUE) )*pval;
sl@0	321	int isset, sktag, skaclass;
sl@0	322	int skcontlen, sklen;
sl@0	323	ASN1_VALUE *skitem;
sl@0	324
sl@0	325	if (!*pval)
sl@0	326	return 0;
sl@0	327
sl@0	328	if (flags & ASN1_TFLG_SET_OF)
sl@0	329	{
sl@0	330	isset = 1;
sl@0	331	/* 2 means we reorder */
sl@0	332	if (flags & ASN1_TFLG_SEQUENCE_OF)
sl@0	333	isset = 2;
sl@0	334	}
sl@0	335	else isset = 0;
sl@0	336
sl@0	337	/* Work out inner tag value: if EXPLICIT
sl@0	338	* or no tagging use underlying type.
sl@0	339	*/
sl@0	340	if ((ttag != -1) && !(flags & ASN1_TFLG_EXPTAG))
sl@0	341	{
sl@0	342	sktag = ttag;
sl@0	343	skaclass = tclass;
sl@0	344	}
sl@0	345	else
sl@0	346	{
sl@0	347	skaclass = V_ASN1_UNIVERSAL;
sl@0	348	if (isset)
sl@0	349	sktag = V_ASN1_SET;
sl@0	350	else sktag = V_ASN1_SEQUENCE;
sl@0	351	}
sl@0	352
sl@0	353	/* Determine total length of items */
sl@0	354	skcontlen = 0;
sl@0	355	for (i = 0; i < sk_ASN1_VALUE_num(sk); i++)
sl@0	356	{
sl@0	357	skitem = sk_ASN1_VALUE_value(sk, i);
sl@0	358	skcontlen += ASN1_item_ex_i2d(&skitem, NULL,
sl@0	359	ASN1_ITEM_ptr(tt->item),
sl@0	360	-1, iclass);
sl@0	361	}
sl@0	362	sklen = ASN1_object_size(ndef, skcontlen, sktag);
sl@0	363	/* If EXPLICIT need length of surrounding tag */
sl@0	364	if (flags & ASN1_TFLG_EXPTAG)
sl@0	365	ret = ASN1_object_size(ndef, sklen, ttag);
sl@0	366	else ret = sklen;
sl@0	367
sl@0	368	if (!out)
sl@0	369	return ret;
sl@0	370
sl@0	371	/* Now encode this lot... */
sl@0	372	/* EXPLICIT tag */
sl@0	373	if (flags & ASN1_TFLG_EXPTAG)
sl@0	374	ASN1_put_object(out, ndef, sklen, ttag, tclass);
sl@0	375	/* SET or SEQUENCE and IMPLICIT tag */
sl@0	376	ASN1_put_object(out, ndef, skcontlen, sktag, skaclass);
sl@0	377	/* And the stuff itself */
sl@0	378	asn1_set_seq_out(sk, out, skcontlen, ASN1_ITEM_ptr(tt->item),
sl@0	379	isset, iclass);
sl@0	380	if (ndef == 2)
sl@0	381	{
sl@0	382	ASN1_put_eoc(out);
sl@0	383	if (flags & ASN1_TFLG_EXPTAG)
sl@0	384	ASN1_put_eoc(out);
sl@0	385	}
sl@0	386
sl@0	387	return ret;
sl@0	388	}
sl@0	389
sl@0	390	if (flags & ASN1_TFLG_EXPTAG)
sl@0	391	{
sl@0	392	/* EXPLICIT tagging */
sl@0	393	/* Find length of tagged item */
sl@0	394	i = ASN1_item_ex_i2d(pval, NULL, ASN1_ITEM_ptr(tt->item),
sl@0	395	-1, iclass);
sl@0	396	if (!i)
sl@0	397	return 0;
sl@0	398	/* Find length of EXPLICIT tag */
sl@0	399	ret = ASN1_object_size(ndef, i, ttag);
sl@0	400	if (out)
sl@0	401	{
sl@0	402	/* Output tag and item */
sl@0	403	ASN1_put_object(out, ndef, i, ttag, tclass);
sl@0	404	ASN1_item_ex_i2d(pval, out, ASN1_ITEM_ptr(tt->item),
sl@0	405	-1, iclass);
sl@0	406	if (ndef == 2)
sl@0	407	ASN1_put_eoc(out);
sl@0	408	}
sl@0	409	return ret;
sl@0	410	}
sl@0	411
sl@0	412	/* Either normal or IMPLICIT tagging: combine class and flags */
sl@0	413	return ASN1_item_ex_i2d(pval, out, ASN1_ITEM_ptr(tt->item),
sl@0	414	ttag, tclass \| iclass);
sl@0	415
sl@0	416	}
sl@0	417
sl@0	418	/* Temporary structure used to hold DER encoding of items for SET OF */
sl@0	419
sl@0	420	typedef struct {
sl@0	421	unsigned char *data;
sl@0	422	int length;
sl@0	423	ASN1_VALUE *field;
sl@0	424	} DER_ENC;
sl@0	425
sl@0	426	static int der_cmp(const void a, const void b)
sl@0	427	{
sl@0	428	const DER_ENC d1 = a, d2 = b;
sl@0	429	int cmplen, i;
sl@0	430	cmplen = (d1->length < d2->length) ? d1->length : d2->length;
sl@0	431	i = memcmp(d1->data, d2->data, cmplen);
sl@0	432	if (i)
sl@0	433	return i;
sl@0	434	return d1->length - d2->length;
sl@0	435	}
sl@0	436
sl@0	437	/* Output the content octets of SET OF or SEQUENCE OF */
sl@0	438
sl@0	439	static int asn1_set_seq_out(STACK_OF(ASN1_VALUE) sk, unsigned char *out,
sl@0	440	int skcontlen, const ASN1_ITEM *item,
sl@0	441	int do_sort, int iclass)
sl@0	442	{
sl@0	443	int i;
sl@0	444	ASN1_VALUE *skitem;
sl@0	445	unsigned char tmpdat = NULL, p = NULL;
sl@0	446	DER_ENC derlst = NULL, tder;
sl@0	447	if (do_sort)
sl@0	448	{
sl@0	449	/* Don't need to sort less than 2 items */
sl@0	450	if (sk_ASN1_VALUE_num(sk) < 2)
sl@0	451	do_sort = 0;
sl@0	452	else
sl@0	453	{
sl@0	454	derlst = OPENSSL_malloc(sk_ASN1_VALUE_num(sk)
sl@0	455	* sizeof(*derlst));
sl@0	456	tmpdat = OPENSSL_malloc(skcontlen);
sl@0	457	if (!derlst \|\| !tmpdat)
sl@0	458	return 0;
sl@0	459	}
sl@0	460	}
sl@0	461	/* If not sorting just output each item */
sl@0	462	if (!do_sort)
sl@0	463	{
sl@0	464	for (i = 0; i < sk_ASN1_VALUE_num(sk); i++)
sl@0	465	{
sl@0	466	skitem = sk_ASN1_VALUE_value(sk, i);
sl@0	467	ASN1_item_ex_i2d(&skitem, out, item, -1, iclass);
sl@0	468	}
sl@0	469	return 1;
sl@0	470	}
sl@0	471	p = tmpdat;
sl@0	472
sl@0	473	/* Doing sort: build up a list of each member's DER encoding */
sl@0	474	for (i = 0, tder = derlst; i < sk_ASN1_VALUE_num(sk); i++, tder++)
sl@0	475	{
sl@0	476	skitem = sk_ASN1_VALUE_value(sk, i);
sl@0	477	tder->data = p;
sl@0	478	tder->length = ASN1_item_ex_i2d(&skitem, &p, item, -1, iclass);
sl@0	479	tder->field = skitem;
sl@0	480	}
sl@0	481
sl@0	482	/* Now sort them */
sl@0	483	qsort(derlst, sk_ASN1_VALUE_num(sk), sizeof(*derlst), der_cmp);
sl@0	484	/* Output sorted DER encoding */
sl@0	485	p = *out;
sl@0	486	for (i = 0, tder = derlst; i < sk_ASN1_VALUE_num(sk); i++, tder++)
sl@0	487	{
sl@0	488	memcpy(p, tder->data, tder->length);
sl@0	489	p += tder->length;
sl@0	490	}
sl@0	491	*out = p;
sl@0	492	/* If do_sort is 2 then reorder the STACK */
sl@0	493	if (do_sort == 2)
sl@0	494	{
sl@0	495	for (i = 0, tder = derlst; i < sk_ASN1_VALUE_num(sk);
sl@0	496	i++, tder++)
sl@0	497	(void)sk_ASN1_VALUE_set(sk, i, tder->field);
sl@0	498	}
sl@0	499	OPENSSL_free(derlst);
sl@0	500	OPENSSL_free(tmpdat);
sl@0	501	return 1;
sl@0	502	}
sl@0	503
sl@0	504	static int asn1_i2d_ex_primitive(ASN1_VALUE pval, unsigned char out,
sl@0	505	const ASN1_ITEM *it, int tag, int aclass)
sl@0	506	{
sl@0	507	int len;
sl@0	508	int utype;
sl@0	509	int usetag;
sl@0	510	int ndef = 0;
sl@0	511
sl@0	512	utype = it->utype;
sl@0	513
sl@0	514	/* Get length of content octets and maybe find
sl@0	515	* out the underlying type.
sl@0	516	*/
sl@0	517
sl@0	518	len = asn1_ex_i2c(pval, NULL, &utype, it);
sl@0	519
sl@0	520	/* If SEQUENCE, SET or OTHER then header is
sl@0	521	* included in pseudo content octets so don't
sl@0	522	* include tag+length. We need to check here
sl@0	523	* because the call to asn1_ex_i2c() could change
sl@0	524	* utype.
sl@0	525	*/
sl@0	526	if ((utype == V_ASN1_SEQUENCE) \|\| (utype == V_ASN1_SET) \|\|
sl@0	527	(utype == V_ASN1_OTHER))
sl@0	528	usetag = 0;
sl@0	529	else usetag = 1;
sl@0	530
sl@0	531	/* -1 means omit type */
sl@0	532
sl@0	533	if (len == -1)
sl@0	534	return 0;
sl@0	535
sl@0	536	/* -2 return is special meaning use ndef */
sl@0	537	if (len == -2)
sl@0	538	{
sl@0	539	ndef = 2;
sl@0	540	len = 0;
sl@0	541	}
sl@0	542
sl@0	543	/* If not implicitly tagged get tag from underlying type */
sl@0	544	if (tag == -1) tag = utype;
sl@0	545
sl@0	546	/* Output tag+length followed by content octets */
sl@0	547	if (out)
sl@0	548	{
sl@0	549	if (usetag)
sl@0	550	ASN1_put_object(out, ndef, len, tag, aclass);
sl@0	551	asn1_ex_i2c(pval, *out, &utype, it);
sl@0	552	if (ndef)
sl@0	553	ASN1_put_eoc(out);
sl@0	554	else
sl@0	555	*out += len;
sl@0	556	}
sl@0	557
sl@0	558	if (usetag)
sl@0	559	return ASN1_object_size(ndef, len, tag);
sl@0	560	return len;
sl@0	561	}
sl@0	562
sl@0	563	/* Produce content octets from a structure */
sl@0	564
sl@0	565	EXPORT_C int asn1_ex_i2c(ASN1_VALUE *pval, unsigned char cout, int *putype,
sl@0	566	const ASN1_ITEM *it)
sl@0	567	{
sl@0	568	ASN1_BOOLEAN *tbool = NULL;
sl@0	569	ASN1_STRING *strtmp;
sl@0	570	ASN1_OBJECT *otmp;
sl@0	571	int utype;
sl@0	572	unsigned char *cont, c;
sl@0	573	int len;
sl@0	574	const ASN1_PRIMITIVE_FUNCS *pf;
sl@0	575	pf = it->funcs;
sl@0	576	if (pf && pf->prim_i2c)
sl@0	577	return pf->prim_i2c(pval, cout, putype, it);
sl@0	578
sl@0	579	/* Should type be omitted? */
sl@0	580	if ((it->itype != ASN1_ITYPE_PRIMITIVE)
sl@0	581	\|\| (it->utype != V_ASN1_BOOLEAN))
sl@0	582	{
sl@0	583	if (!*pval) return -1;
sl@0	584	}
sl@0	585
sl@0	586	if (it->itype == ASN1_ITYPE_MSTRING)
sl@0	587	{
sl@0	588	/* If MSTRING type set the underlying type */
sl@0	589	strtmp = (ASN1_STRING )pval;
sl@0	590	utype = strtmp->type;
sl@0	591	*putype = utype;
sl@0	592	}
sl@0	593	else if (it->utype == V_ASN1_ANY)
sl@0	594	{
sl@0	595	/* If ANY set type and pointer to value */
sl@0	596	ASN1_TYPE *typ;
sl@0	597	typ = (ASN1_TYPE )pval;
sl@0	598	utype = typ->type;
sl@0	599	*putype = utype;
sl@0	600	pval = (ASN1_VALUE **)&typ->value.ptr;
sl@0	601	}
sl@0	602	else utype = *putype;
sl@0	603
sl@0	604	switch(utype)
sl@0	605	{
sl@0	606	case V_ASN1_OBJECT:
sl@0	607	otmp = (ASN1_OBJECT )pval;
sl@0	608	cont = otmp->data;
sl@0	609	len = otmp->length;
sl@0	610	break;
sl@0	611
sl@0	612	case V_ASN1_NULL:
sl@0	613	cont = NULL;
sl@0	614	len = 0;
sl@0	615	break;
sl@0	616
sl@0	617	case V_ASN1_BOOLEAN:
sl@0	618	tbool = (ASN1_BOOLEAN *)pval;
sl@0	619	if (*tbool == -1)
sl@0	620	return -1;
sl@0	621	if (it->utype != V_ASN1_ANY)
sl@0	622	{
sl@0	623	/* Default handling if value == size field then omit */
sl@0	624	if (*tbool && (it->size > 0))
sl@0	625	return -1;
sl@0	626	if (!*tbool && !it->size)
sl@0	627	return -1;
sl@0	628	}
sl@0	629	c = (unsigned char)*tbool;
sl@0	630	cont = &c;
sl@0	631	len = 1;
sl@0	632	break;
sl@0	633
sl@0	634	case V_ASN1_BIT_STRING:
sl@0	635	return i2c_ASN1_BIT_STRING((ASN1_BIT_STRING )pval,
sl@0	636	cout ? &cout : NULL);
sl@0	637	break;
sl@0	638
sl@0	639	case V_ASN1_INTEGER:
sl@0	640	case V_ASN1_NEG_INTEGER:
sl@0	641	case V_ASN1_ENUMERATED:
sl@0	642	case V_ASN1_NEG_ENUMERATED:
sl@0	643	/* These are all have the same content format
sl@0	644	* as ASN1_INTEGER
sl@0	645	*/
sl@0	646	return i2c_ASN1_INTEGER((ASN1_INTEGER )pval,
sl@0	647	cout ? &cout : NULL);
sl@0	648	break;
sl@0	649
sl@0	650	case V_ASN1_OCTET_STRING:
sl@0	651	case V_ASN1_NUMERICSTRING:
sl@0	652	case V_ASN1_PRINTABLESTRING:
sl@0	653	case V_ASN1_T61STRING:
sl@0	654	case V_ASN1_VIDEOTEXSTRING:
sl@0	655	case V_ASN1_IA5STRING:
sl@0	656	case V_ASN1_UTCTIME:
sl@0	657	case V_ASN1_GENERALIZEDTIME:
sl@0	658	case V_ASN1_GRAPHICSTRING:
sl@0	659	case V_ASN1_VISIBLESTRING:
sl@0	660	case V_ASN1_GENERALSTRING:
sl@0	661	case V_ASN1_UNIVERSALSTRING:
sl@0	662	case V_ASN1_BMPSTRING:
sl@0	663	case V_ASN1_UTF8STRING:
sl@0	664	case V_ASN1_SEQUENCE:
sl@0	665	case V_ASN1_SET:
sl@0	666	default:
sl@0	667	/* All based on ASN1_STRING and handled the same */
sl@0	668	strtmp = (ASN1_STRING )pval;
sl@0	669	/* Special handling for NDEF */
sl@0	670	if ((it->size == ASN1_TFLG_NDEF)
sl@0	671	&& (strtmp->flags & ASN1_STRING_FLAG_NDEF))
sl@0	672	{
sl@0	673	if (cout)
sl@0	674	{
sl@0	675	strtmp->data = cout;
sl@0	676	strtmp->length = 0;
sl@0	677	}
sl@0	678	/* Special return code */
sl@0	679	return -2;
sl@0	680	}
sl@0	681	cont = strtmp->data;
sl@0	682	len = strtmp->length;
sl@0	683
sl@0	684	break;
sl@0	685
sl@0	686	}
sl@0	687	if (cout && len)
sl@0	688	memcpy(cout, cont, len);
sl@0	689	return len;
sl@0	690	}

author	sl
	Tue, 10 Jun 2014 14:32:02 +0200
changeset 1	260cb5ec6c19
permissions	-rw-r--r--