1 /* Copyright (C) 1995-1998 Eric Young (eay (at) cryptsoft.com) 2 * All rights reserved. 3 * 4 * This package is an SSL implementation written 5 * by Eric Young (eay (at) cryptsoft.com). 6 * The implementation was written so as to conform with Netscapes SSL. 7 * 8 * This library is free for commercial and non-commercial use as long as 9 * the following conditions are aheared to. The following conditions 10 * apply to all code found in this distribution, be it the RC4, RSA, 11 * lhash, DES, etc., code; not just the SSL code. The SSL documentation 12 * included with this distribution is covered by the same copyright terms 13 * except that the holder is Tim Hudson (tjh (at) cryptsoft.com). 14 * 15 * Copyright remains Eric Young's, and as such any Copyright notices in 16 * the code are not to be removed. 17 * If this package is used in a product, Eric Young should be given attribution 18 * as the author of the parts of the library used. 19 * This can be in the form of a textual message at program startup or 20 * in documentation (online or textual) provided with the package. 21 * 22 * Redistribution and use in source and binary forms, with or without 23 * modification, are permitted provided that the following conditions 24 * are met: 25 * 1. Redistributions of source code must retain the copyright 26 * notice, this list of conditions and the following disclaimer. 27 * 2. Redistributions in binary form must reproduce the above copyright 28 * notice, this list of conditions and the following disclaimer in the 29 * documentation and/or other materials provided with the distribution. 30 * 3. All advertising materials mentioning features or use of this software 31 * must display the following acknowledgement: 32 * "This product includes cryptographic software written by 33 * Eric Young (eay (at) cryptsoft.com)" 34 * The word 'cryptographic' can be left out if the rouines from the library 35 * being used are not cryptographic related :-). 36 * 4. If you include any Windows specific code (or a derivative thereof) from 37 * the apps directory (application code) you must include an acknowledgement: 38 * "This product includes software written by Tim Hudson (tjh (at) cryptsoft.com)" 39 * 40 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 41 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 42 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 43 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 44 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 45 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 46 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 48 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 49 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 50 * SUCH DAMAGE. 51 * 52 * The licence and distribution terms for any publically available version or 53 * derivative of this code cannot be changed. i.e. this code cannot simply be 54 * copied and put under another distribution licence 55 * [including the GNU Public Licence.] */ 56 57 #include <openssl/asn1.h> 58 59 #include <string.h> 60 61 #include <openssl/err.h> 62 #include <openssl/mem.h> 63 64 65 int ASN1_BIT_STRING_set(ASN1_BIT_STRING *x, unsigned char *d, int len) 66 { return M_ASN1_BIT_STRING_set(x, d, len); } 67 68 int i2c_ASN1_BIT_STRING(ASN1_BIT_STRING *a, unsigned char **pp) 69 { 70 int ret,j,bits,len; 71 unsigned char *p,*d; 72 73 if (a == NULL) return(0); 74 75 len=a->length; 76 77 if (len > 0) 78 { 79 if (a->flags & ASN1_STRING_FLAG_BITS_LEFT) 80 { 81 bits=(int)a->flags&0x07; 82 } 83 else 84 { 85 for ( ; len > 0; len--) 86 { 87 if (a->data[len-1]) break; 88 } 89 j=a->data[len-1]; 90 if (j & 0x01) bits=0; 91 else if (j & 0x02) bits=1; 92 else if (j & 0x04) bits=2; 93 else if (j & 0x08) bits=3; 94 else if (j & 0x10) bits=4; 95 else if (j & 0x20) bits=5; 96 else if (j & 0x40) bits=6; 97 else if (j & 0x80) bits=7; 98 else bits=0; /* should not happen */ 99 } 100 } 101 else 102 bits=0; 103 104 ret=1+len; 105 if (pp == NULL) return(ret); 106 107 p= *pp; 108 109 *(p++)=(unsigned char)bits; 110 d=a->data; 111 memcpy(p,d,len); 112 p+=len; 113 if (len > 0) p[-1]&=(0xff<<bits); 114 *pp=p; 115 return(ret); 116 } 117 118 ASN1_BIT_STRING *c2i_ASN1_BIT_STRING(ASN1_BIT_STRING **a, 119 const unsigned char **pp, long len) 120 { 121 ASN1_BIT_STRING *ret=NULL; 122 const unsigned char *p; 123 unsigned char *s; 124 int padding; 125 126 if (len < 1) 127 { 128 OPENSSL_PUT_ERROR(ASN1, ASN1_R_STRING_TOO_SHORT); 129 goto err; 130 } 131 132 if ((a == NULL) || ((*a) == NULL)) 133 { 134 if ((ret=M_ASN1_BIT_STRING_new()) == NULL) return(NULL); 135 } 136 else 137 ret=(*a); 138 139 p= *pp; 140 padding = *(p++); 141 if (padding > 7) 142 { 143 OPENSSL_PUT_ERROR(ASN1, ASN1_R_INVALID_BIT_STRING_BITS_LEFT); 144 goto err; 145 } 146 147 /* We do this to preserve the settings. If we modify 148 * the settings, via the _set_bit function, we will recalculate 149 * on output */ 150 ret->flags&= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); /* clear */ 151 ret->flags|=(ASN1_STRING_FLAG_BITS_LEFT|padding); /* set */ 152 153 if (len-- > 1) /* using one because of the bits left byte */ 154 { 155 s=(unsigned char *)OPENSSL_malloc((int)len); 156 if (s == NULL) 157 { 158 OPENSSL_PUT_ERROR(ASN1, ERR_R_MALLOC_FAILURE); 159 goto err; 160 } 161 memcpy(s,p,(int)len); 162 s[len-1]&=(0xff<<padding); 163 p+=len; 164 } 165 else 166 s=NULL; 167 168 ret->length=(int)len; 169 if (ret->data != NULL) OPENSSL_free(ret->data); 170 ret->data=s; 171 ret->type=V_ASN1_BIT_STRING; 172 if (a != NULL) (*a)=ret; 173 *pp=p; 174 return(ret); 175 err: 176 if ((ret != NULL) && ((a == NULL) || (*a != ret))) 177 M_ASN1_BIT_STRING_free(ret); 178 return(NULL); 179 } 180 181 /* These next 2 functions from Goetz Babin-Ebell <babinebell (at) trustcenter.de> 182 */ 183 int ASN1_BIT_STRING_set_bit(ASN1_BIT_STRING *a, int n, int value) 184 { 185 int w,v,iv; 186 unsigned char *c; 187 188 w=n/8; 189 v=1<<(7-(n&0x07)); 190 iv= ~v; 191 if (!value) v=0; 192 193 if (a == NULL) 194 return 0; 195 196 a->flags&= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); /* clear, set on write */ 197 198 if ((a->length < (w+1)) || (a->data == NULL)) 199 { 200 if (!value) return(1); /* Don't need to set */ 201 if (a->data == NULL) 202 c=(unsigned char *)OPENSSL_malloc(w+1); 203 else 204 c=(unsigned char *)OPENSSL_realloc_clean(a->data, 205 a->length, 206 w+1); 207 if (c == NULL) 208 { 209 OPENSSL_PUT_ERROR(ASN1, ERR_R_MALLOC_FAILURE); 210 return 0; 211 } 212 if (w+1-a->length > 0) memset(c+a->length, 0, w+1-a->length); 213 a->data=c; 214 a->length=w+1; 215 } 216 a->data[w]=((a->data[w])&iv)|v; 217 while ((a->length > 0) && (a->data[a->length-1] == 0)) 218 a->length--; 219 return(1); 220 } 221 222 int ASN1_BIT_STRING_get_bit(ASN1_BIT_STRING *a, int n) 223 { 224 int w,v; 225 226 w=n/8; 227 v=1<<(7-(n&0x07)); 228 if ((a == NULL) || (a->length < (w+1)) || (a->data == NULL)) 229 return(0); 230 return((a->data[w]&v) != 0); 231 } 232 233 /* 234 * Checks if the given bit string contains only bits specified by 235 * the flags vector. Returns 0 if there is at least one bit set in 'a' 236 * which is not specified in 'flags', 1 otherwise. 237 * 'len' is the length of 'flags'. 238 */ 239 int ASN1_BIT_STRING_check(ASN1_BIT_STRING *a, 240 unsigned char *flags, int flags_len) 241 { 242 int i, ok; 243 /* Check if there is one bit set at all. */ 244 if (!a || !a->data) return 1; 245 246 /* Check each byte of the internal representation of the bit string. */ 247 ok = 1; 248 for (i = 0; i < a->length && ok; ++i) 249 { 250 unsigned char mask = i < flags_len ? ~flags[i] : 0xff; 251 /* We are done if there is an unneeded bit set. */ 252 ok = (a->data[i] & mask) == 0; 253 } 254 return ok; 255 } 256