1 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
2 * All rights reserved.
3 *
4 * This package is an SSL implementation written
5 * by Eric Young (eay@cryptsoft.com).
6 * The implementation was written so as to conform with Netscapes SSL.
7 *
8 * This library is free for commercial and non-commercial use as long as
9 * the following conditions are aheared to. The following conditions
10 * apply to all code found in this distribution, be it the RC4, RSA,
11 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
12 * included with this distribution is covered by the same copyright terms
13 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
14 *
15 * Copyright remains Eric Young's, and as such any Copyright notices in
16 * the code are not to be removed.
17 * If this package is used in a product, Eric Young should be given attribution
18 * as the author of the parts of the library used.
19 * This can be in the form of a textual message at program startup or
20 * in documentation (online or textual) provided with the package.
21 *
22 * Redistribution and use in source and binary forms, with or without
23 * modification, are permitted provided that the following conditions
24 * are met:
25 * 1. Redistributions of source code must retain the copyright
26 * notice, this list of conditions and the following disclaimer.
27 * 2. Redistributions in binary form must reproduce the above copyright
28 * notice, this list of conditions and the following disclaimer in the
29 * documentation and/or other materials provided with the distribution.
30 * 3. All advertising materials mentioning features or use of this software
31 * must display the following acknowledgement:
32 * "This product includes cryptographic software written by
33 * Eric Young (eay@cryptsoft.com)"
34 * The word 'cryptographic' can be left out if the rouines from the library
35 * being used are not cryptographic related :-).
36 * 4. If you include any Windows specific code (or a derivative thereof) from
37 * the apps directory (application code) you must include an acknowledgement:
38 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
39 *
40 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
41 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
43 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
44 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
45 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
46 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
48 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
49 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50 * SUCH DAMAGE.
51 *
52 * The licence and distribution terms for any publically available version or
53 * derivative of this code cannot be changed. i.e. this code cannot simply be
54 * copied and put under another distribution licence
55 * [including the GNU Public Licence.] */
56
57 #include <openssl/asn1.h>
58
59 #include <string.h>
60
61 #include <openssl/err.h>
62 #include <openssl/mem.h>
63
64
ASN1_BIT_STRING_set(ASN1_BIT_STRING * x,unsigned char * d,int len)65 int ASN1_BIT_STRING_set(ASN1_BIT_STRING *x, unsigned char *d, int len)
66 { return M_ASN1_BIT_STRING_set(x, d, len); }
67
i2c_ASN1_BIT_STRING(ASN1_BIT_STRING * a,unsigned char ** pp)68 int i2c_ASN1_BIT_STRING(ASN1_BIT_STRING *a, unsigned char **pp)
69 {
70 int ret,j,bits,len;
71 unsigned char *p,*d;
72
73 if (a == NULL) return(0);
74
75 len=a->length;
76
77 if (len > 0)
78 {
79 if (a->flags & ASN1_STRING_FLAG_BITS_LEFT)
80 {
81 bits=(int)a->flags&0x07;
82 }
83 else
84 {
85 for ( ; len > 0; len--)
86 {
87 if (a->data[len-1]) break;
88 }
89 j=a->data[len-1];
90 if (j & 0x01) bits=0;
91 else if (j & 0x02) bits=1;
92 else if (j & 0x04) bits=2;
93 else if (j & 0x08) bits=3;
94 else if (j & 0x10) bits=4;
95 else if (j & 0x20) bits=5;
96 else if (j & 0x40) bits=6;
97 else if (j & 0x80) bits=7;
98 else bits=0; /* should not happen */
99 }
100 }
101 else
102 bits=0;
103
104 ret=1+len;
105 if (pp == NULL) return(ret);
106
107 p= *pp;
108
109 *(p++)=(unsigned char)bits;
110 d=a->data;
111 memcpy(p,d,len);
112 p+=len;
113 if (len > 0) p[-1]&=(0xff<<bits);
114 *pp=p;
115 return(ret);
116 }
117
c2i_ASN1_BIT_STRING(ASN1_BIT_STRING ** a,const unsigned char ** pp,long len)118 ASN1_BIT_STRING *c2i_ASN1_BIT_STRING(ASN1_BIT_STRING **a,
119 const unsigned char **pp, long len)
120 {
121 ASN1_BIT_STRING *ret=NULL;
122 const unsigned char *p;
123 unsigned char *s;
124 int padding;
125
126 if (len < 1)
127 {
128 OPENSSL_PUT_ERROR(ASN1, ASN1_R_STRING_TOO_SHORT);
129 goto err;
130 }
131
132 if ((a == NULL) || ((*a) == NULL))
133 {
134 if ((ret=M_ASN1_BIT_STRING_new()) == NULL) return(NULL);
135 }
136 else
137 ret=(*a);
138
139 p= *pp;
140 padding = *(p++);
141 if (padding > 7)
142 {
143 OPENSSL_PUT_ERROR(ASN1, ASN1_R_INVALID_BIT_STRING_BITS_LEFT);
144 goto err;
145 }
146
147 /* We do this to preserve the settings. If we modify
148 * the settings, via the _set_bit function, we will recalculate
149 * on output */
150 ret->flags&= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); /* clear */
151 ret->flags|=(ASN1_STRING_FLAG_BITS_LEFT|padding); /* set */
152
153 if (len-- > 1) /* using one because of the bits left byte */
154 {
155 s=(unsigned char *)OPENSSL_malloc((int)len);
156 if (s == NULL)
157 {
158 OPENSSL_PUT_ERROR(ASN1, ERR_R_MALLOC_FAILURE);
159 goto err;
160 }
161 memcpy(s,p,(int)len);
162 s[len-1]&=(0xff<<padding);
163 p+=len;
164 }
165 else
166 s=NULL;
167
168 ret->length=(int)len;
169 if (ret->data != NULL) OPENSSL_free(ret->data);
170 ret->data=s;
171 ret->type=V_ASN1_BIT_STRING;
172 if (a != NULL) (*a)=ret;
173 *pp=p;
174 return(ret);
175 err:
176 if ((ret != NULL) && ((a == NULL) || (*a != ret)))
177 M_ASN1_BIT_STRING_free(ret);
178 return(NULL);
179 }
180
181 /* These next 2 functions from Goetz Babin-Ebell <babinebell@trustcenter.de>
182 */
ASN1_BIT_STRING_set_bit(ASN1_BIT_STRING * a,int n,int value)183 int ASN1_BIT_STRING_set_bit(ASN1_BIT_STRING *a, int n, int value)
184 {
185 int w,v,iv;
186 unsigned char *c;
187
188 w=n/8;
189 v=1<<(7-(n&0x07));
190 iv= ~v;
191 if (!value) v=0;
192
193 if (a == NULL)
194 return 0;
195
196 a->flags&= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); /* clear, set on write */
197
198 if ((a->length < (w+1)) || (a->data == NULL))
199 {
200 if (!value) return(1); /* Don't need to set */
201 if (a->data == NULL)
202 c=(unsigned char *)OPENSSL_malloc(w+1);
203 else
204 c=(unsigned char *)OPENSSL_realloc_clean(a->data,
205 a->length,
206 w+1);
207 if (c == NULL)
208 {
209 OPENSSL_PUT_ERROR(ASN1, ERR_R_MALLOC_FAILURE);
210 return 0;
211 }
212 if (w+1-a->length > 0) memset(c+a->length, 0, w+1-a->length);
213 a->data=c;
214 a->length=w+1;
215 }
216 a->data[w]=((a->data[w])&iv)|v;
217 while ((a->length > 0) && (a->data[a->length-1] == 0))
218 a->length--;
219 return(1);
220 }
221
ASN1_BIT_STRING_get_bit(ASN1_BIT_STRING * a,int n)222 int ASN1_BIT_STRING_get_bit(ASN1_BIT_STRING *a, int n)
223 {
224 int w,v;
225
226 w=n/8;
227 v=1<<(7-(n&0x07));
228 if ((a == NULL) || (a->length < (w+1)) || (a->data == NULL))
229 return(0);
230 return((a->data[w]&v) != 0);
231 }
232
233 /*
234 * Checks if the given bit string contains only bits specified by
235 * the flags vector. Returns 0 if there is at least one bit set in 'a'
236 * which is not specified in 'flags', 1 otherwise.
237 * 'len' is the length of 'flags'.
238 */
ASN1_BIT_STRING_check(ASN1_BIT_STRING * a,unsigned char * flags,int flags_len)239 int ASN1_BIT_STRING_check(ASN1_BIT_STRING *a,
240 unsigned char *flags, int flags_len)
241 {
242 int i, ok;
243 /* Check if there is one bit set at all. */
244 if (!a || !a->data) return 1;
245
246 /* Check each byte of the internal representation of the bit string. */
247 ok = 1;
248 for (i = 0; i < a->length && ok; ++i)
249 {
250 unsigned char mask = i < flags_len ? ~flags[i] : 0xff;
251 /* We are done if there is an unneeded bit set. */
252 ok = (a->data[i] & mask) == 0;
253 }
254 return ok;
255 }
256