Fork of CyaSSL for my specific settings

Dependents:   CyaSSL_Example

Fork of CyaSSL by wolf SSL

Committer:
wolfSSL
Date:
Sat Jul 12 07:18:23 2014 +0000
Revision:
0:1239e9b70ca2
CyaSSL 3.0.0;

Who changed what in which revision?

UserRevisionLine numberNew contents of line
wolfSSL 0:1239e9b70ca2 1 /* asn.c
wolfSSL 0:1239e9b70ca2 2 *
wolfSSL 0:1239e9b70ca2 3 * Copyright (C) 2006-2014 wolfSSL Inc.
wolfSSL 0:1239e9b70ca2 4 *
wolfSSL 0:1239e9b70ca2 5 * This file is part of CyaSSL.
wolfSSL 0:1239e9b70ca2 6 *
wolfSSL 0:1239e9b70ca2 7 * CyaSSL is free software; you can redistribute it and/or modify
wolfSSL 0:1239e9b70ca2 8 * it under the terms of the GNU General Public License as published by
wolfSSL 0:1239e9b70ca2 9 * the Free Software Foundation; either version 2 of the License, or
wolfSSL 0:1239e9b70ca2 10 * (at your option) any later version.
wolfSSL 0:1239e9b70ca2 11 *
wolfSSL 0:1239e9b70ca2 12 * CyaSSL is distributed in the hope that it will be useful,
wolfSSL 0:1239e9b70ca2 13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
wolfSSL 0:1239e9b70ca2 14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
wolfSSL 0:1239e9b70ca2 15 * GNU General Public License for more details.
wolfSSL 0:1239e9b70ca2 16 *
wolfSSL 0:1239e9b70ca2 17 * You should have received a copy of the GNU General Public License
wolfSSL 0:1239e9b70ca2 18 * along with this program; if not, write to the Free Software
wolfSSL 0:1239e9b70ca2 19 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
wolfSSL 0:1239e9b70ca2 20 */
wolfSSL 0:1239e9b70ca2 21
wolfSSL 0:1239e9b70ca2 22 #ifdef HAVE_CONFIG_H
wolfSSL 0:1239e9b70ca2 23 #include <config.h>
wolfSSL 0:1239e9b70ca2 24 #endif
wolfSSL 0:1239e9b70ca2 25
wolfSSL 0:1239e9b70ca2 26 #include <cyassl/ctaocrypt/settings.h>
wolfSSL 0:1239e9b70ca2 27
wolfSSL 0:1239e9b70ca2 28 #ifndef NO_ASN
wolfSSL 0:1239e9b70ca2 29
wolfSSL 0:1239e9b70ca2 30 #ifdef HAVE_RTP_SYS
wolfSSL 0:1239e9b70ca2 31 #include "os.h" /* dc_rtc_api needs */
wolfSSL 0:1239e9b70ca2 32 #include "dc_rtc_api.h" /* to get current time */
wolfSSL 0:1239e9b70ca2 33 #endif
wolfSSL 0:1239e9b70ca2 34
wolfSSL 0:1239e9b70ca2 35 #include <cyassl/ctaocrypt/integer.h>
wolfSSL 0:1239e9b70ca2 36 #include <cyassl/ctaocrypt/asn.h>
wolfSSL 0:1239e9b70ca2 37 #include <cyassl/ctaocrypt/coding.h>
wolfSSL 0:1239e9b70ca2 38 #include <cyassl/ctaocrypt/sha.h>
wolfSSL 0:1239e9b70ca2 39 #include <cyassl/ctaocrypt/md5.h>
wolfSSL 0:1239e9b70ca2 40 #include <cyassl/ctaocrypt/md2.h>
wolfSSL 0:1239e9b70ca2 41 #include <cyassl/ctaocrypt/error-crypt.h>
wolfSSL 0:1239e9b70ca2 42 #include <cyassl/ctaocrypt/pwdbased.h>
wolfSSL 0:1239e9b70ca2 43 #include <cyassl/ctaocrypt/des3.h>
wolfSSL 0:1239e9b70ca2 44 #include <cyassl/ctaocrypt/sha256.h>
wolfSSL 0:1239e9b70ca2 45 #include <cyassl/ctaocrypt/sha512.h>
wolfSSL 0:1239e9b70ca2 46 #include <cyassl/ctaocrypt/logging.h>
wolfSSL 0:1239e9b70ca2 47
wolfSSL 0:1239e9b70ca2 48 #include <cyassl/ctaocrypt/random.h>
wolfSSL 0:1239e9b70ca2 49
wolfSSL 0:1239e9b70ca2 50
wolfSSL 0:1239e9b70ca2 51 #ifndef NO_RC4
wolfSSL 0:1239e9b70ca2 52 #include <cyassl/ctaocrypt/arc4.h>
wolfSSL 0:1239e9b70ca2 53 #endif
wolfSSL 0:1239e9b70ca2 54
wolfSSL 0:1239e9b70ca2 55 #ifdef HAVE_NTRU
wolfSSL 0:1239e9b70ca2 56 #include "crypto_ntru.h"
wolfSSL 0:1239e9b70ca2 57 #endif
wolfSSL 0:1239e9b70ca2 58
wolfSSL 0:1239e9b70ca2 59 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 60 #include <cyassl/ctaocrypt/ecc.h>
wolfSSL 0:1239e9b70ca2 61 #endif
wolfSSL 0:1239e9b70ca2 62
wolfSSL 0:1239e9b70ca2 63 #ifdef CYASSL_DEBUG_ENCODING
wolfSSL 0:1239e9b70ca2 64 #ifdef FREESCALE_MQX
wolfSSL 0:1239e9b70ca2 65 #include <fio.h>
wolfSSL 0:1239e9b70ca2 66 #else
wolfSSL 0:1239e9b70ca2 67 #include <stdio.h>
wolfSSL 0:1239e9b70ca2 68 #endif
wolfSSL 0:1239e9b70ca2 69 #endif
wolfSSL 0:1239e9b70ca2 70
wolfSSL 0:1239e9b70ca2 71 #ifdef _MSC_VER
wolfSSL 0:1239e9b70ca2 72 /* 4996 warning to use MS extensions e.g., strcpy_s instead of XSTRNCPY */
wolfSSL 0:1239e9b70ca2 73 #pragma warning(disable: 4996)
wolfSSL 0:1239e9b70ca2 74 #endif
wolfSSL 0:1239e9b70ca2 75
wolfSSL 0:1239e9b70ca2 76
wolfSSL 0:1239e9b70ca2 77 #ifndef TRUE
wolfSSL 0:1239e9b70ca2 78 #define TRUE 1
wolfSSL 0:1239e9b70ca2 79 #endif
wolfSSL 0:1239e9b70ca2 80 #ifndef FALSE
wolfSSL 0:1239e9b70ca2 81 #define FALSE 0
wolfSSL 0:1239e9b70ca2 82 #endif
wolfSSL 0:1239e9b70ca2 83
wolfSSL 0:1239e9b70ca2 84
wolfSSL 0:1239e9b70ca2 85 #ifdef HAVE_RTP_SYS
wolfSSL 0:1239e9b70ca2 86 /* uses parital <time.h> structures */
wolfSSL 0:1239e9b70ca2 87 #define XTIME(tl) (0)
wolfSSL 0:1239e9b70ca2 88 #define XGMTIME(c) my_gmtime((c))
wolfSSL 0:1239e9b70ca2 89 #define XVALIDATE_DATE(d, f, t) ValidateDate((d), (f), (t))
wolfSSL 0:1239e9b70ca2 90 #elif defined(MICRIUM)
wolfSSL 0:1239e9b70ca2 91 #if (NET_SECURE_MGR_CFG_EN == DEF_ENABLED)
wolfSSL 0:1239e9b70ca2 92 #define XVALIDATE_DATE(d,f,t) NetSecure_ValidateDateHandler((d),(f),(t))
wolfSSL 0:1239e9b70ca2 93 #else
wolfSSL 0:1239e9b70ca2 94 #define XVALIDATE_DATE(d, f, t) (0)
wolfSSL 0:1239e9b70ca2 95 #endif
wolfSSL 0:1239e9b70ca2 96 #define NO_TIME_H
wolfSSL 0:1239e9b70ca2 97 /* since Micrium not defining XTIME or XGMTIME, CERT_GEN not available */
wolfSSL 0:1239e9b70ca2 98 #elif defined(MICROCHIP_TCPIP_V5) || defined(MICROCHIP_TCPIP)
wolfSSL 0:1239e9b70ca2 99 #include <time.h>
wolfSSL 0:1239e9b70ca2 100 #define XTIME(t1) pic32_time((t1))
wolfSSL 0:1239e9b70ca2 101 #define XGMTIME(c) gmtime((c))
wolfSSL 0:1239e9b70ca2 102 #define XVALIDATE_DATE(d, f, t) ValidateDate((d), (f), (t))
wolfSSL 0:1239e9b70ca2 103 #elif defined(FREESCALE_MQX)
wolfSSL 0:1239e9b70ca2 104 #include <time.h>
wolfSSL 0:1239e9b70ca2 105 #define XTIME(t1) mqx_time((t1))
wolfSSL 0:1239e9b70ca2 106 #define XGMTIME(c) gmtime((c))
wolfSSL 0:1239e9b70ca2 107 #define XVALIDATE_DATE(d, f, t) ValidateDate((d), (f), (t))
wolfSSL 0:1239e9b70ca2 108 #elif defined(CYASSL_MDK_ARM)
wolfSSL 0:1239e9b70ca2 109 #if defined(CYASSL_MDK5)
wolfSSL 0:1239e9b70ca2 110 #include "cmsis_os.h"
wolfSSL 0:1239e9b70ca2 111 #else
wolfSSL 0:1239e9b70ca2 112 #include <rtl.h>
wolfSSL 0:1239e9b70ca2 113 #endif
wolfSSL 0:1239e9b70ca2 114 #undef RNG
wolfSSL 0:1239e9b70ca2 115 #include "cyassl_MDK_ARM.h"
wolfSSL 0:1239e9b70ca2 116 #undef RNG
wolfSSL 0:1239e9b70ca2 117 #define RNG CyaSSL_RNG /*for avoiding name conflict in "stm32f2xx.h" */
wolfSSL 0:1239e9b70ca2 118 #define XTIME(tl) (0)
wolfSSL 0:1239e9b70ca2 119 #define XGMTIME(c) Cyassl_MDK_gmtime((c))
wolfSSL 0:1239e9b70ca2 120 #define XVALIDATE_DATE(d, f, t) ValidateDate((d), (f), (t))
wolfSSL 0:1239e9b70ca2 121 #elif defined(USER_TIME)
wolfSSL 0:1239e9b70ca2 122 /* user time, and gmtime compatible functions, there is a gmtime
wolfSSL 0:1239e9b70ca2 123 implementation here that WINCE uses, so really just need some ticks
wolfSSL 0:1239e9b70ca2 124 since the EPOCH
wolfSSL 0:1239e9b70ca2 125 */
wolfSSL 0:1239e9b70ca2 126
wolfSSL 0:1239e9b70ca2 127 struct tm {
wolfSSL 0:1239e9b70ca2 128 int tm_sec; /* seconds after the minute [0-60] */
wolfSSL 0:1239e9b70ca2 129 int tm_min; /* minutes after the hour [0-59] */
wolfSSL 0:1239e9b70ca2 130 int tm_hour; /* hours since midnight [0-23] */
wolfSSL 0:1239e9b70ca2 131 int tm_mday; /* day of the month [1-31] */
wolfSSL 0:1239e9b70ca2 132 int tm_mon; /* months since January [0-11] */
wolfSSL 0:1239e9b70ca2 133 int tm_year; /* years since 1900 */
wolfSSL 0:1239e9b70ca2 134 int tm_wday; /* days since Sunday [0-6] */
wolfSSL 0:1239e9b70ca2 135 int tm_yday; /* days since January 1 [0-365] */
wolfSSL 0:1239e9b70ca2 136 int tm_isdst; /* Daylight Savings Time flag */
wolfSSL 0:1239e9b70ca2 137 long tm_gmtoff; /* offset from CUT in seconds */
wolfSSL 0:1239e9b70ca2 138 char *tm_zone; /* timezone abbreviation */
wolfSSL 0:1239e9b70ca2 139 };
wolfSSL 0:1239e9b70ca2 140 typedef long time_t;
wolfSSL 0:1239e9b70ca2 141
wolfSSL 0:1239e9b70ca2 142 /* forward declaration */
wolfSSL 0:1239e9b70ca2 143 struct tm* gmtime(const time_t* timer);
wolfSSL 0:1239e9b70ca2 144 extern time_t XTIME(time_t * timer);
wolfSSL 0:1239e9b70ca2 145
wolfSSL 0:1239e9b70ca2 146 #define XGMTIME(c) gmtime((c))
wolfSSL 0:1239e9b70ca2 147 #define XVALIDATE_DATE(d, f, t) ValidateDate((d), (f), (t))
wolfSSL 0:1239e9b70ca2 148
wolfSSL 0:1239e9b70ca2 149 #ifdef STACK_TRAP
wolfSSL 0:1239e9b70ca2 150 /* for stack trap tracking, don't call os gmtime on OS X/linux,
wolfSSL 0:1239e9b70ca2 151 uses a lot of stack spce */
wolfSSL 0:1239e9b70ca2 152 extern time_t time(time_t * timer);
wolfSSL 0:1239e9b70ca2 153 #define XTIME(tl) time((tl))
wolfSSL 0:1239e9b70ca2 154 #endif /* STACK_TRAP */
wolfSSL 0:1239e9b70ca2 155
wolfSSL 0:1239e9b70ca2 156 #else
wolfSSL 0:1239e9b70ca2 157 /* default */
wolfSSL 0:1239e9b70ca2 158 /* uses complete <time.h> facility */
wolfSSL 0:1239e9b70ca2 159 #include <time.h>
wolfSSL 0:1239e9b70ca2 160 #define XTIME(tl) time((tl))
wolfSSL 0:1239e9b70ca2 161 #define XGMTIME(c) gmtime((c))
wolfSSL 0:1239e9b70ca2 162 #define XVALIDATE_DATE(d, f, t) ValidateDate((d), (f), (t))
wolfSSL 0:1239e9b70ca2 163 #endif
wolfSSL 0:1239e9b70ca2 164
wolfSSL 0:1239e9b70ca2 165
wolfSSL 0:1239e9b70ca2 166 #ifdef _WIN32_WCE
wolfSSL 0:1239e9b70ca2 167 /* no time() or gmtime() even though in time.h header?? */
wolfSSL 0:1239e9b70ca2 168
wolfSSL 0:1239e9b70ca2 169 #include <windows.h>
wolfSSL 0:1239e9b70ca2 170
wolfSSL 0:1239e9b70ca2 171
wolfSSL 0:1239e9b70ca2 172 time_t time(time_t* timer)
wolfSSL 0:1239e9b70ca2 173 {
wolfSSL 0:1239e9b70ca2 174 SYSTEMTIME sysTime;
wolfSSL 0:1239e9b70ca2 175 FILETIME fTime;
wolfSSL 0:1239e9b70ca2 176 ULARGE_INTEGER intTime;
wolfSSL 0:1239e9b70ca2 177 time_t localTime;
wolfSSL 0:1239e9b70ca2 178
wolfSSL 0:1239e9b70ca2 179 if (timer == NULL)
wolfSSL 0:1239e9b70ca2 180 timer = &localTime;
wolfSSL 0:1239e9b70ca2 181
wolfSSL 0:1239e9b70ca2 182 GetSystemTime(&sysTime);
wolfSSL 0:1239e9b70ca2 183 SystemTimeToFileTime(&sysTime, &fTime);
wolfSSL 0:1239e9b70ca2 184
wolfSSL 0:1239e9b70ca2 185 XMEMCPY(&intTime, &fTime, sizeof(FILETIME));
wolfSSL 0:1239e9b70ca2 186 /* subtract EPOCH */
wolfSSL 0:1239e9b70ca2 187 intTime.QuadPart -= 0x19db1ded53e8000;
wolfSSL 0:1239e9b70ca2 188 /* to secs */
wolfSSL 0:1239e9b70ca2 189 intTime.QuadPart /= 10000000;
wolfSSL 0:1239e9b70ca2 190 *timer = (time_t)intTime.QuadPart;
wolfSSL 0:1239e9b70ca2 191
wolfSSL 0:1239e9b70ca2 192 return *timer;
wolfSSL 0:1239e9b70ca2 193 }
wolfSSL 0:1239e9b70ca2 194
wolfSSL 0:1239e9b70ca2 195 #endif /* _WIN32_WCE */
wolfSSL 0:1239e9b70ca2 196 #if defined( _WIN32_WCE ) || defined( USER_TIME )
wolfSSL 0:1239e9b70ca2 197
wolfSSL 0:1239e9b70ca2 198 struct tm* gmtime(const time_t* timer)
wolfSSL 0:1239e9b70ca2 199 {
wolfSSL 0:1239e9b70ca2 200 #define YEAR0 1900
wolfSSL 0:1239e9b70ca2 201 #define EPOCH_YEAR 1970
wolfSSL 0:1239e9b70ca2 202 #define SECS_DAY (24L * 60L * 60L)
wolfSSL 0:1239e9b70ca2 203 #define LEAPYEAR(year) (!((year) % 4) && (((year) % 100) || !((year) %400)))
wolfSSL 0:1239e9b70ca2 204 #define YEARSIZE(year) (LEAPYEAR(year) ? 366 : 365)
wolfSSL 0:1239e9b70ca2 205
wolfSSL 0:1239e9b70ca2 206 static const int _ytab[2][12] =
wolfSSL 0:1239e9b70ca2 207 {
wolfSSL 0:1239e9b70ca2 208 {31, 28, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31},
wolfSSL 0:1239e9b70ca2 209 {31, 29, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31}
wolfSSL 0:1239e9b70ca2 210 };
wolfSSL 0:1239e9b70ca2 211
wolfSSL 0:1239e9b70ca2 212 static struct tm st_time;
wolfSSL 0:1239e9b70ca2 213 struct tm* ret = &st_time;
wolfSSL 0:1239e9b70ca2 214 time_t secs = *timer;
wolfSSL 0:1239e9b70ca2 215 unsigned long dayclock, dayno;
wolfSSL 0:1239e9b70ca2 216 int year = EPOCH_YEAR;
wolfSSL 0:1239e9b70ca2 217
wolfSSL 0:1239e9b70ca2 218 dayclock = (unsigned long)secs % SECS_DAY;
wolfSSL 0:1239e9b70ca2 219 dayno = (unsigned long)secs / SECS_DAY;
wolfSSL 0:1239e9b70ca2 220
wolfSSL 0:1239e9b70ca2 221 ret->tm_sec = (int) dayclock % 60;
wolfSSL 0:1239e9b70ca2 222 ret->tm_min = (int)(dayclock % 3600) / 60;
wolfSSL 0:1239e9b70ca2 223 ret->tm_hour = (int) dayclock / 3600;
wolfSSL 0:1239e9b70ca2 224 ret->tm_wday = (int) (dayno + 4) % 7; /* day 0 a Thursday */
wolfSSL 0:1239e9b70ca2 225
wolfSSL 0:1239e9b70ca2 226 while(dayno >= (unsigned long)YEARSIZE(year)) {
wolfSSL 0:1239e9b70ca2 227 dayno -= YEARSIZE(year);
wolfSSL 0:1239e9b70ca2 228 year++;
wolfSSL 0:1239e9b70ca2 229 }
wolfSSL 0:1239e9b70ca2 230
wolfSSL 0:1239e9b70ca2 231 ret->tm_year = year - YEAR0;
wolfSSL 0:1239e9b70ca2 232 ret->tm_yday = (int)dayno;
wolfSSL 0:1239e9b70ca2 233 ret->tm_mon = 0;
wolfSSL 0:1239e9b70ca2 234
wolfSSL 0:1239e9b70ca2 235 while(dayno >= (unsigned long)_ytab[LEAPYEAR(year)][ret->tm_mon]) {
wolfSSL 0:1239e9b70ca2 236 dayno -= _ytab[LEAPYEAR(year)][ret->tm_mon];
wolfSSL 0:1239e9b70ca2 237 ret->tm_mon++;
wolfSSL 0:1239e9b70ca2 238 }
wolfSSL 0:1239e9b70ca2 239
wolfSSL 0:1239e9b70ca2 240 ret->tm_mday = (int)++dayno;
wolfSSL 0:1239e9b70ca2 241 ret->tm_isdst = 0;
wolfSSL 0:1239e9b70ca2 242
wolfSSL 0:1239e9b70ca2 243 return ret;
wolfSSL 0:1239e9b70ca2 244 }
wolfSSL 0:1239e9b70ca2 245
wolfSSL 0:1239e9b70ca2 246 #endif /* _WIN32_WCE || USER_TIME */
wolfSSL 0:1239e9b70ca2 247
wolfSSL 0:1239e9b70ca2 248
wolfSSL 0:1239e9b70ca2 249 #ifdef HAVE_RTP_SYS
wolfSSL 0:1239e9b70ca2 250
wolfSSL 0:1239e9b70ca2 251 #define YEAR0 1900
wolfSSL 0:1239e9b70ca2 252
wolfSSL 0:1239e9b70ca2 253 struct tm* my_gmtime(const time_t* timer) /* has a gmtime() but hangs */
wolfSSL 0:1239e9b70ca2 254 {
wolfSSL 0:1239e9b70ca2 255 static struct tm st_time;
wolfSSL 0:1239e9b70ca2 256 struct tm* ret = &st_time;
wolfSSL 0:1239e9b70ca2 257
wolfSSL 0:1239e9b70ca2 258 DC_RTC_CALENDAR cal;
wolfSSL 0:1239e9b70ca2 259 dc_rtc_time_get(&cal, TRUE);
wolfSSL 0:1239e9b70ca2 260
wolfSSL 0:1239e9b70ca2 261 ret->tm_year = cal.year - YEAR0; /* gm starts at 1900 */
wolfSSL 0:1239e9b70ca2 262 ret->tm_mon = cal.month - 1; /* gm starts at 0 */
wolfSSL 0:1239e9b70ca2 263 ret->tm_mday = cal.day;
wolfSSL 0:1239e9b70ca2 264 ret->tm_hour = cal.hour;
wolfSSL 0:1239e9b70ca2 265 ret->tm_min = cal.minute;
wolfSSL 0:1239e9b70ca2 266 ret->tm_sec = cal.second;
wolfSSL 0:1239e9b70ca2 267
wolfSSL 0:1239e9b70ca2 268 return ret;
wolfSSL 0:1239e9b70ca2 269 }
wolfSSL 0:1239e9b70ca2 270
wolfSSL 0:1239e9b70ca2 271 #endif /* HAVE_RTP_SYS */
wolfSSL 0:1239e9b70ca2 272
wolfSSL 0:1239e9b70ca2 273
wolfSSL 0:1239e9b70ca2 274 #if defined(MICROCHIP_TCPIP_V5) || defined(MICROCHIP_TCPIP)
wolfSSL 0:1239e9b70ca2 275
wolfSSL 0:1239e9b70ca2 276 /*
wolfSSL 0:1239e9b70ca2 277 * time() is just a stub in Microchip libraries. We need our own
wolfSSL 0:1239e9b70ca2 278 * implementation. Use SNTP client to get seconds since epoch.
wolfSSL 0:1239e9b70ca2 279 */
wolfSSL 0:1239e9b70ca2 280 time_t pic32_time(time_t* timer)
wolfSSL 0:1239e9b70ca2 281 {
wolfSSL 0:1239e9b70ca2 282 #ifdef MICROCHIP_TCPIP_V5
wolfSSL 0:1239e9b70ca2 283 DWORD sec = 0;
wolfSSL 0:1239e9b70ca2 284 #else
wolfSSL 0:1239e9b70ca2 285 uint32_t sec = 0;
wolfSSL 0:1239e9b70ca2 286 #endif
wolfSSL 0:1239e9b70ca2 287 time_t localTime;
wolfSSL 0:1239e9b70ca2 288
wolfSSL 0:1239e9b70ca2 289 if (timer == NULL)
wolfSSL 0:1239e9b70ca2 290 timer = &localTime;
wolfSSL 0:1239e9b70ca2 291
wolfSSL 0:1239e9b70ca2 292 #ifdef MICROCHIP_MPLAB_HARMONY
wolfSSL 0:1239e9b70ca2 293 sec = TCPIP_SNTP_UTCSecondsGet();
wolfSSL 0:1239e9b70ca2 294 #else
wolfSSL 0:1239e9b70ca2 295 sec = SNTPGetUTCSeconds();
wolfSSL 0:1239e9b70ca2 296 #endif
wolfSSL 0:1239e9b70ca2 297 *timer = (time_t) sec;
wolfSSL 0:1239e9b70ca2 298
wolfSSL 0:1239e9b70ca2 299 return *timer;
wolfSSL 0:1239e9b70ca2 300 }
wolfSSL 0:1239e9b70ca2 301
wolfSSL 0:1239e9b70ca2 302 #endif /* MICROCHIP_TCPIP */
wolfSSL 0:1239e9b70ca2 303
wolfSSL 0:1239e9b70ca2 304
wolfSSL 0:1239e9b70ca2 305 #ifdef FREESCALE_MQX
wolfSSL 0:1239e9b70ca2 306
wolfSSL 0:1239e9b70ca2 307 time_t mqx_time(time_t* timer)
wolfSSL 0:1239e9b70ca2 308 {
wolfSSL 0:1239e9b70ca2 309 time_t localTime;
wolfSSL 0:1239e9b70ca2 310 TIME_STRUCT time_s;
wolfSSL 0:1239e9b70ca2 311
wolfSSL 0:1239e9b70ca2 312 if (timer == NULL)
wolfSSL 0:1239e9b70ca2 313 timer = &localTime;
wolfSSL 0:1239e9b70ca2 314
wolfSSL 0:1239e9b70ca2 315 _time_get(&time_s);
wolfSSL 0:1239e9b70ca2 316 *timer = (time_t) time_s.SECONDS;
wolfSSL 0:1239e9b70ca2 317
wolfSSL 0:1239e9b70ca2 318 return *timer;
wolfSSL 0:1239e9b70ca2 319 }
wolfSSL 0:1239e9b70ca2 320
wolfSSL 0:1239e9b70ca2 321 #endif /* FREESCALE_MQX */
wolfSSL 0:1239e9b70ca2 322
wolfSSL 0:1239e9b70ca2 323
wolfSSL 0:1239e9b70ca2 324 static INLINE word32 btoi(byte b)
wolfSSL 0:1239e9b70ca2 325 {
wolfSSL 0:1239e9b70ca2 326 return b - 0x30;
wolfSSL 0:1239e9b70ca2 327 }
wolfSSL 0:1239e9b70ca2 328
wolfSSL 0:1239e9b70ca2 329
wolfSSL 0:1239e9b70ca2 330 /* two byte date/time, add to value */
wolfSSL 0:1239e9b70ca2 331 static INLINE void GetTime(int* value, const byte* date, int* idx)
wolfSSL 0:1239e9b70ca2 332 {
wolfSSL 0:1239e9b70ca2 333 int i = *idx;
wolfSSL 0:1239e9b70ca2 334
wolfSSL 0:1239e9b70ca2 335 *value += btoi(date[i++]) * 10;
wolfSSL 0:1239e9b70ca2 336 *value += btoi(date[i++]);
wolfSSL 0:1239e9b70ca2 337
wolfSSL 0:1239e9b70ca2 338 *idx = i;
wolfSSL 0:1239e9b70ca2 339 }
wolfSSL 0:1239e9b70ca2 340
wolfSSL 0:1239e9b70ca2 341
wolfSSL 0:1239e9b70ca2 342 #if defined(MICRIUM)
wolfSSL 0:1239e9b70ca2 343
wolfSSL 0:1239e9b70ca2 344 CPU_INT32S NetSecure_ValidateDateHandler(CPU_INT08U *date, CPU_INT08U format,
wolfSSL 0:1239e9b70ca2 345 CPU_INT08U dateType)
wolfSSL 0:1239e9b70ca2 346 {
wolfSSL 0:1239e9b70ca2 347 CPU_BOOLEAN rtn_code;
wolfSSL 0:1239e9b70ca2 348 CPU_INT32S i;
wolfSSL 0:1239e9b70ca2 349 CPU_INT32S val;
wolfSSL 0:1239e9b70ca2 350 CPU_INT16U year;
wolfSSL 0:1239e9b70ca2 351 CPU_INT08U month;
wolfSSL 0:1239e9b70ca2 352 CPU_INT16U day;
wolfSSL 0:1239e9b70ca2 353 CPU_INT08U hour;
wolfSSL 0:1239e9b70ca2 354 CPU_INT08U min;
wolfSSL 0:1239e9b70ca2 355 CPU_INT08U sec;
wolfSSL 0:1239e9b70ca2 356
wolfSSL 0:1239e9b70ca2 357 i = 0;
wolfSSL 0:1239e9b70ca2 358 year = 0u;
wolfSSL 0:1239e9b70ca2 359
wolfSSL 0:1239e9b70ca2 360 if (format == ASN_UTC_TIME) {
wolfSSL 0:1239e9b70ca2 361 if (btoi(date[0]) >= 5)
wolfSSL 0:1239e9b70ca2 362 year = 1900;
wolfSSL 0:1239e9b70ca2 363 else
wolfSSL 0:1239e9b70ca2 364 year = 2000;
wolfSSL 0:1239e9b70ca2 365 }
wolfSSL 0:1239e9b70ca2 366 else { /* format == GENERALIZED_TIME */
wolfSSL 0:1239e9b70ca2 367 year += btoi(date[i++]) * 1000;
wolfSSL 0:1239e9b70ca2 368 year += btoi(date[i++]) * 100;
wolfSSL 0:1239e9b70ca2 369 }
wolfSSL 0:1239e9b70ca2 370
wolfSSL 0:1239e9b70ca2 371 val = year;
wolfSSL 0:1239e9b70ca2 372 GetTime(&val, date, &i);
wolfSSL 0:1239e9b70ca2 373 year = (CPU_INT16U)val;
wolfSSL 0:1239e9b70ca2 374
wolfSSL 0:1239e9b70ca2 375 val = 0;
wolfSSL 0:1239e9b70ca2 376 GetTime(&val, date, &i);
wolfSSL 0:1239e9b70ca2 377 month = (CPU_INT08U)val;
wolfSSL 0:1239e9b70ca2 378
wolfSSL 0:1239e9b70ca2 379 val = 0;
wolfSSL 0:1239e9b70ca2 380 GetTime(&val, date, &i);
wolfSSL 0:1239e9b70ca2 381 day = (CPU_INT16U)val;
wolfSSL 0:1239e9b70ca2 382
wolfSSL 0:1239e9b70ca2 383 val = 0;
wolfSSL 0:1239e9b70ca2 384 GetTime(&val, date, &i);
wolfSSL 0:1239e9b70ca2 385 hour = (CPU_INT08U)val;
wolfSSL 0:1239e9b70ca2 386
wolfSSL 0:1239e9b70ca2 387 val = 0;
wolfSSL 0:1239e9b70ca2 388 GetTime(&val, date, &i);
wolfSSL 0:1239e9b70ca2 389 min = (CPU_INT08U)val;
wolfSSL 0:1239e9b70ca2 390
wolfSSL 0:1239e9b70ca2 391 val = 0;
wolfSSL 0:1239e9b70ca2 392 GetTime(&val, date, &i);
wolfSSL 0:1239e9b70ca2 393 sec = (CPU_INT08U)val;
wolfSSL 0:1239e9b70ca2 394
wolfSSL 0:1239e9b70ca2 395 return NetSecure_ValidateDate(year, month, day, hour, min, sec, dateType);
wolfSSL 0:1239e9b70ca2 396 }
wolfSSL 0:1239e9b70ca2 397
wolfSSL 0:1239e9b70ca2 398 #endif /* MICRIUM */
wolfSSL 0:1239e9b70ca2 399
wolfSSL 0:1239e9b70ca2 400
wolfSSL 0:1239e9b70ca2 401 CYASSL_LOCAL int GetLength(const byte* input, word32* inOutIdx, int* len,
wolfSSL 0:1239e9b70ca2 402 word32 maxIdx)
wolfSSL 0:1239e9b70ca2 403 {
wolfSSL 0:1239e9b70ca2 404 int length = 0;
wolfSSL 0:1239e9b70ca2 405 word32 i = *inOutIdx;
wolfSSL 0:1239e9b70ca2 406 byte b;
wolfSSL 0:1239e9b70ca2 407
wolfSSL 0:1239e9b70ca2 408 if ( (i+1) > maxIdx) { /* for first read */
wolfSSL 0:1239e9b70ca2 409 CYASSL_MSG("GetLength bad index on input");
wolfSSL 0:1239e9b70ca2 410 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 411 }
wolfSSL 0:1239e9b70ca2 412
wolfSSL 0:1239e9b70ca2 413 b = input[i++];
wolfSSL 0:1239e9b70ca2 414 if (b >= ASN_LONG_LENGTH) {
wolfSSL 0:1239e9b70ca2 415 word32 bytes = b & 0x7F;
wolfSSL 0:1239e9b70ca2 416
wolfSSL 0:1239e9b70ca2 417 if ( (i+bytes) > maxIdx) { /* for reading bytes */
wolfSSL 0:1239e9b70ca2 418 CYASSL_MSG("GetLength bad long length");
wolfSSL 0:1239e9b70ca2 419 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 420 }
wolfSSL 0:1239e9b70ca2 421
wolfSSL 0:1239e9b70ca2 422 while (bytes--) {
wolfSSL 0:1239e9b70ca2 423 b = input[i++];
wolfSSL 0:1239e9b70ca2 424 length = (length << 8) | b;
wolfSSL 0:1239e9b70ca2 425 }
wolfSSL 0:1239e9b70ca2 426 }
wolfSSL 0:1239e9b70ca2 427 else
wolfSSL 0:1239e9b70ca2 428 length = b;
wolfSSL 0:1239e9b70ca2 429
wolfSSL 0:1239e9b70ca2 430 if ( (i+length) > maxIdx) { /* for user of length */
wolfSSL 0:1239e9b70ca2 431 CYASSL_MSG("GetLength value exceeds buffer length");
wolfSSL 0:1239e9b70ca2 432 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 433 }
wolfSSL 0:1239e9b70ca2 434
wolfSSL 0:1239e9b70ca2 435 *inOutIdx = i;
wolfSSL 0:1239e9b70ca2 436 *len = length;
wolfSSL 0:1239e9b70ca2 437
wolfSSL 0:1239e9b70ca2 438 return length;
wolfSSL 0:1239e9b70ca2 439 }
wolfSSL 0:1239e9b70ca2 440
wolfSSL 0:1239e9b70ca2 441
wolfSSL 0:1239e9b70ca2 442 CYASSL_LOCAL int GetSequence(const byte* input, word32* inOutIdx, int* len,
wolfSSL 0:1239e9b70ca2 443 word32 maxIdx)
wolfSSL 0:1239e9b70ca2 444 {
wolfSSL 0:1239e9b70ca2 445 int length = -1;
wolfSSL 0:1239e9b70ca2 446 word32 idx = *inOutIdx;
wolfSSL 0:1239e9b70ca2 447
wolfSSL 0:1239e9b70ca2 448 if (input[idx++] != (ASN_SEQUENCE | ASN_CONSTRUCTED) ||
wolfSSL 0:1239e9b70ca2 449 GetLength(input, &idx, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 450 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 451
wolfSSL 0:1239e9b70ca2 452 *len = length;
wolfSSL 0:1239e9b70ca2 453 *inOutIdx = idx;
wolfSSL 0:1239e9b70ca2 454
wolfSSL 0:1239e9b70ca2 455 return length;
wolfSSL 0:1239e9b70ca2 456 }
wolfSSL 0:1239e9b70ca2 457
wolfSSL 0:1239e9b70ca2 458
wolfSSL 0:1239e9b70ca2 459 CYASSL_LOCAL int GetSet(const byte* input, word32* inOutIdx, int* len,
wolfSSL 0:1239e9b70ca2 460 word32 maxIdx)
wolfSSL 0:1239e9b70ca2 461 {
wolfSSL 0:1239e9b70ca2 462 int length = -1;
wolfSSL 0:1239e9b70ca2 463 word32 idx = *inOutIdx;
wolfSSL 0:1239e9b70ca2 464
wolfSSL 0:1239e9b70ca2 465 if (input[idx++] != (ASN_SET | ASN_CONSTRUCTED) ||
wolfSSL 0:1239e9b70ca2 466 GetLength(input, &idx, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 467 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 468
wolfSSL 0:1239e9b70ca2 469 *len = length;
wolfSSL 0:1239e9b70ca2 470 *inOutIdx = idx;
wolfSSL 0:1239e9b70ca2 471
wolfSSL 0:1239e9b70ca2 472 return length;
wolfSSL 0:1239e9b70ca2 473 }
wolfSSL 0:1239e9b70ca2 474
wolfSSL 0:1239e9b70ca2 475
wolfSSL 0:1239e9b70ca2 476 /* winodws header clash for WinCE using GetVersion */
wolfSSL 0:1239e9b70ca2 477 CYASSL_LOCAL int GetMyVersion(const byte* input, word32* inOutIdx, int* version)
wolfSSL 0:1239e9b70ca2 478 {
wolfSSL 0:1239e9b70ca2 479 word32 idx = *inOutIdx;
wolfSSL 0:1239e9b70ca2 480
wolfSSL 0:1239e9b70ca2 481 CYASSL_ENTER("GetMyVersion");
wolfSSL 0:1239e9b70ca2 482
wolfSSL 0:1239e9b70ca2 483 if (input[idx++] != ASN_INTEGER)
wolfSSL 0:1239e9b70ca2 484 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 485
wolfSSL 0:1239e9b70ca2 486 if (input[idx++] != 0x01)
wolfSSL 0:1239e9b70ca2 487 return ASN_VERSION_E;
wolfSSL 0:1239e9b70ca2 488
wolfSSL 0:1239e9b70ca2 489 *version = input[idx++];
wolfSSL 0:1239e9b70ca2 490 *inOutIdx = idx;
wolfSSL 0:1239e9b70ca2 491
wolfSSL 0:1239e9b70ca2 492 return *version;
wolfSSL 0:1239e9b70ca2 493 }
wolfSSL 0:1239e9b70ca2 494
wolfSSL 0:1239e9b70ca2 495
wolfSSL 0:1239e9b70ca2 496 #ifndef NO_PWDBASED
wolfSSL 0:1239e9b70ca2 497 /* Get small count integer, 32 bits or less */
wolfSSL 0:1239e9b70ca2 498 static int GetShortInt(const byte* input, word32* inOutIdx, int* number)
wolfSSL 0:1239e9b70ca2 499 {
wolfSSL 0:1239e9b70ca2 500 word32 idx = *inOutIdx;
wolfSSL 0:1239e9b70ca2 501 word32 len;
wolfSSL 0:1239e9b70ca2 502
wolfSSL 0:1239e9b70ca2 503 *number = 0;
wolfSSL 0:1239e9b70ca2 504
wolfSSL 0:1239e9b70ca2 505 if (input[idx++] != ASN_INTEGER)
wolfSSL 0:1239e9b70ca2 506 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 507
wolfSSL 0:1239e9b70ca2 508 len = input[idx++];
wolfSSL 0:1239e9b70ca2 509 if (len > 4)
wolfSSL 0:1239e9b70ca2 510 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 511
wolfSSL 0:1239e9b70ca2 512 while (len--) {
wolfSSL 0:1239e9b70ca2 513 *number = *number << 8 | input[idx++];
wolfSSL 0:1239e9b70ca2 514 }
wolfSSL 0:1239e9b70ca2 515
wolfSSL 0:1239e9b70ca2 516 *inOutIdx = idx;
wolfSSL 0:1239e9b70ca2 517
wolfSSL 0:1239e9b70ca2 518 return *number;
wolfSSL 0:1239e9b70ca2 519 }
wolfSSL 0:1239e9b70ca2 520 #endif /* !NO_PWDBASED */
wolfSSL 0:1239e9b70ca2 521
wolfSSL 0:1239e9b70ca2 522
wolfSSL 0:1239e9b70ca2 523 /* May not have one, not an error */
wolfSSL 0:1239e9b70ca2 524 static int GetExplicitVersion(const byte* input, word32* inOutIdx, int* version)
wolfSSL 0:1239e9b70ca2 525 {
wolfSSL 0:1239e9b70ca2 526 word32 idx = *inOutIdx;
wolfSSL 0:1239e9b70ca2 527
wolfSSL 0:1239e9b70ca2 528 CYASSL_ENTER("GetExplicitVersion");
wolfSSL 0:1239e9b70ca2 529 if (input[idx++] == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED)) {
wolfSSL 0:1239e9b70ca2 530 *inOutIdx = ++idx; /* eat header */
wolfSSL 0:1239e9b70ca2 531 return GetMyVersion(input, inOutIdx, version);
wolfSSL 0:1239e9b70ca2 532 }
wolfSSL 0:1239e9b70ca2 533
wolfSSL 0:1239e9b70ca2 534 /* go back as is */
wolfSSL 0:1239e9b70ca2 535 *version = 0;
wolfSSL 0:1239e9b70ca2 536
wolfSSL 0:1239e9b70ca2 537 return 0;
wolfSSL 0:1239e9b70ca2 538 }
wolfSSL 0:1239e9b70ca2 539
wolfSSL 0:1239e9b70ca2 540
wolfSSL 0:1239e9b70ca2 541 CYASSL_LOCAL int GetInt(mp_int* mpi, const byte* input, word32* inOutIdx,
wolfSSL 0:1239e9b70ca2 542 word32 maxIdx)
wolfSSL 0:1239e9b70ca2 543 {
wolfSSL 0:1239e9b70ca2 544 word32 i = *inOutIdx;
wolfSSL 0:1239e9b70ca2 545 byte b = input[i++];
wolfSSL 0:1239e9b70ca2 546 int length;
wolfSSL 0:1239e9b70ca2 547
wolfSSL 0:1239e9b70ca2 548 if (b != ASN_INTEGER)
wolfSSL 0:1239e9b70ca2 549 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 550
wolfSSL 0:1239e9b70ca2 551 if (GetLength(input, &i, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 552 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 553
wolfSSL 0:1239e9b70ca2 554 if ( (b = input[i++]) == 0x00)
wolfSSL 0:1239e9b70ca2 555 length--;
wolfSSL 0:1239e9b70ca2 556 else
wolfSSL 0:1239e9b70ca2 557 i--;
wolfSSL 0:1239e9b70ca2 558
wolfSSL 0:1239e9b70ca2 559 if (mp_init(mpi) != MP_OKAY)
wolfSSL 0:1239e9b70ca2 560 return MP_INIT_E;
wolfSSL 0:1239e9b70ca2 561
wolfSSL 0:1239e9b70ca2 562 if (mp_read_unsigned_bin(mpi, (byte*)input + i, length) != 0) {
wolfSSL 0:1239e9b70ca2 563 mp_clear(mpi);
wolfSSL 0:1239e9b70ca2 564 return ASN_GETINT_E;
wolfSSL 0:1239e9b70ca2 565 }
wolfSSL 0:1239e9b70ca2 566
wolfSSL 0:1239e9b70ca2 567 *inOutIdx = i + length;
wolfSSL 0:1239e9b70ca2 568 return 0;
wolfSSL 0:1239e9b70ca2 569 }
wolfSSL 0:1239e9b70ca2 570
wolfSSL 0:1239e9b70ca2 571
wolfSSL 0:1239e9b70ca2 572 static int GetObjectId(const byte* input, word32* inOutIdx, word32* oid,
wolfSSL 0:1239e9b70ca2 573 word32 maxIdx)
wolfSSL 0:1239e9b70ca2 574 {
wolfSSL 0:1239e9b70ca2 575 int length;
wolfSSL 0:1239e9b70ca2 576 word32 i = *inOutIdx;
wolfSSL 0:1239e9b70ca2 577 byte b;
wolfSSL 0:1239e9b70ca2 578 *oid = 0;
wolfSSL 0:1239e9b70ca2 579
wolfSSL 0:1239e9b70ca2 580 b = input[i++];
wolfSSL 0:1239e9b70ca2 581 if (b != ASN_OBJECT_ID)
wolfSSL 0:1239e9b70ca2 582 return ASN_OBJECT_ID_E;
wolfSSL 0:1239e9b70ca2 583
wolfSSL 0:1239e9b70ca2 584 if (GetLength(input, &i, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 585 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 586
wolfSSL 0:1239e9b70ca2 587 while(length--)
wolfSSL 0:1239e9b70ca2 588 *oid += input[i++];
wolfSSL 0:1239e9b70ca2 589 /* just sum it up for now */
wolfSSL 0:1239e9b70ca2 590
wolfSSL 0:1239e9b70ca2 591 *inOutIdx = i;
wolfSSL 0:1239e9b70ca2 592
wolfSSL 0:1239e9b70ca2 593 return 0;
wolfSSL 0:1239e9b70ca2 594 }
wolfSSL 0:1239e9b70ca2 595
wolfSSL 0:1239e9b70ca2 596
wolfSSL 0:1239e9b70ca2 597 CYASSL_LOCAL int GetAlgoId(const byte* input, word32* inOutIdx, word32* oid,
wolfSSL 0:1239e9b70ca2 598 word32 maxIdx)
wolfSSL 0:1239e9b70ca2 599 {
wolfSSL 0:1239e9b70ca2 600 int length;
wolfSSL 0:1239e9b70ca2 601 word32 i = *inOutIdx;
wolfSSL 0:1239e9b70ca2 602 byte b;
wolfSSL 0:1239e9b70ca2 603 *oid = 0;
wolfSSL 0:1239e9b70ca2 604
wolfSSL 0:1239e9b70ca2 605 CYASSL_ENTER("GetAlgoId");
wolfSSL 0:1239e9b70ca2 606
wolfSSL 0:1239e9b70ca2 607 if (GetSequence(input, &i, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 608 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 609
wolfSSL 0:1239e9b70ca2 610 b = input[i++];
wolfSSL 0:1239e9b70ca2 611 if (b != ASN_OBJECT_ID)
wolfSSL 0:1239e9b70ca2 612 return ASN_OBJECT_ID_E;
wolfSSL 0:1239e9b70ca2 613
wolfSSL 0:1239e9b70ca2 614 if (GetLength(input, &i, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 615 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 616
wolfSSL 0:1239e9b70ca2 617 while(length--) {
wolfSSL 0:1239e9b70ca2 618 /* odd HC08 compiler behavior here when input[i++] */
wolfSSL 0:1239e9b70ca2 619 *oid += input[i];
wolfSSL 0:1239e9b70ca2 620 i++;
wolfSSL 0:1239e9b70ca2 621 }
wolfSSL 0:1239e9b70ca2 622 /* just sum it up for now */
wolfSSL 0:1239e9b70ca2 623
wolfSSL 0:1239e9b70ca2 624 /* could have NULL tag and 0 terminator, but may not */
wolfSSL 0:1239e9b70ca2 625 b = input[i++];
wolfSSL 0:1239e9b70ca2 626
wolfSSL 0:1239e9b70ca2 627 if (b == ASN_TAG_NULL) {
wolfSSL 0:1239e9b70ca2 628 b = input[i++];
wolfSSL 0:1239e9b70ca2 629 if (b != 0)
wolfSSL 0:1239e9b70ca2 630 return ASN_EXPECT_0_E;
wolfSSL 0:1239e9b70ca2 631 }
wolfSSL 0:1239e9b70ca2 632 else
wolfSSL 0:1239e9b70ca2 633 /* go back, didn't have it */
wolfSSL 0:1239e9b70ca2 634 i--;
wolfSSL 0:1239e9b70ca2 635
wolfSSL 0:1239e9b70ca2 636 *inOutIdx = i;
wolfSSL 0:1239e9b70ca2 637
wolfSSL 0:1239e9b70ca2 638 return 0;
wolfSSL 0:1239e9b70ca2 639 }
wolfSSL 0:1239e9b70ca2 640
wolfSSL 0:1239e9b70ca2 641 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 642
wolfSSL 0:1239e9b70ca2 643
wolfSSL 0:1239e9b70ca2 644 #ifdef HAVE_CAVIUM
wolfSSL 0:1239e9b70ca2 645
wolfSSL 0:1239e9b70ca2 646 static int GetCaviumInt(byte** buff, word16* buffSz, const byte* input,
wolfSSL 0:1239e9b70ca2 647 word32* inOutIdx, word32 maxIdx, void* heap)
wolfSSL 0:1239e9b70ca2 648 {
wolfSSL 0:1239e9b70ca2 649 word32 i = *inOutIdx;
wolfSSL 0:1239e9b70ca2 650 byte b = input[i++];
wolfSSL 0:1239e9b70ca2 651 int length;
wolfSSL 0:1239e9b70ca2 652
wolfSSL 0:1239e9b70ca2 653 if (b != ASN_INTEGER)
wolfSSL 0:1239e9b70ca2 654 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 655
wolfSSL 0:1239e9b70ca2 656 if (GetLength(input, &i, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 657 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 658
wolfSSL 0:1239e9b70ca2 659 if ( (b = input[i++]) == 0x00)
wolfSSL 0:1239e9b70ca2 660 length--;
wolfSSL 0:1239e9b70ca2 661 else
wolfSSL 0:1239e9b70ca2 662 i--;
wolfSSL 0:1239e9b70ca2 663
wolfSSL 0:1239e9b70ca2 664 *buffSz = (word16)length;
wolfSSL 0:1239e9b70ca2 665 *buff = XMALLOC(*buffSz, heap, DYNAMIC_TYPE_CAVIUM_RSA);
wolfSSL 0:1239e9b70ca2 666 if (*buff == NULL)
wolfSSL 0:1239e9b70ca2 667 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 668
wolfSSL 0:1239e9b70ca2 669 XMEMCPY(*buff, input + i, *buffSz);
wolfSSL 0:1239e9b70ca2 670
wolfSSL 0:1239e9b70ca2 671 *inOutIdx = i + length;
wolfSSL 0:1239e9b70ca2 672 return 0;
wolfSSL 0:1239e9b70ca2 673 }
wolfSSL 0:1239e9b70ca2 674
wolfSSL 0:1239e9b70ca2 675 static int CaviumRsaPrivateKeyDecode(const byte* input, word32* inOutIdx,
wolfSSL 0:1239e9b70ca2 676 RsaKey* key, word32 inSz)
wolfSSL 0:1239e9b70ca2 677 {
wolfSSL 0:1239e9b70ca2 678 int version, length;
wolfSSL 0:1239e9b70ca2 679 void* h = key->heap;
wolfSSL 0:1239e9b70ca2 680
wolfSSL 0:1239e9b70ca2 681 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 682 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 683
wolfSSL 0:1239e9b70ca2 684 if (GetMyVersion(input, inOutIdx, &version) < 0)
wolfSSL 0:1239e9b70ca2 685 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 686
wolfSSL 0:1239e9b70ca2 687 key->type = RSA_PRIVATE;
wolfSSL 0:1239e9b70ca2 688
wolfSSL 0:1239e9b70ca2 689 if (GetCaviumInt(&key->c_n, &key->c_nSz, input, inOutIdx, inSz, h) < 0 ||
wolfSSL 0:1239e9b70ca2 690 GetCaviumInt(&key->c_e, &key->c_eSz, input, inOutIdx, inSz, h) < 0 ||
wolfSSL 0:1239e9b70ca2 691 GetCaviumInt(&key->c_d, &key->c_dSz, input, inOutIdx, inSz, h) < 0 ||
wolfSSL 0:1239e9b70ca2 692 GetCaviumInt(&key->c_p, &key->c_pSz, input, inOutIdx, inSz, h) < 0 ||
wolfSSL 0:1239e9b70ca2 693 GetCaviumInt(&key->c_q, &key->c_qSz, input, inOutIdx, inSz, h) < 0 ||
wolfSSL 0:1239e9b70ca2 694 GetCaviumInt(&key->c_dP, &key->c_dP_Sz, input, inOutIdx, inSz, h) < 0 ||
wolfSSL 0:1239e9b70ca2 695 GetCaviumInt(&key->c_dQ, &key->c_dQ_Sz, input, inOutIdx, inSz, h) < 0 ||
wolfSSL 0:1239e9b70ca2 696 GetCaviumInt(&key->c_u, &key->c_uSz, input, inOutIdx, inSz, h) < 0 )
wolfSSL 0:1239e9b70ca2 697 return ASN_RSA_KEY_E;
wolfSSL 0:1239e9b70ca2 698
wolfSSL 0:1239e9b70ca2 699 return 0;
wolfSSL 0:1239e9b70ca2 700 }
wolfSSL 0:1239e9b70ca2 701
wolfSSL 0:1239e9b70ca2 702
wolfSSL 0:1239e9b70ca2 703 #endif /* HAVE_CAVIUM */
wolfSSL 0:1239e9b70ca2 704
wolfSSL 0:1239e9b70ca2 705 int RsaPrivateKeyDecode(const byte* input, word32* inOutIdx, RsaKey* key,
wolfSSL 0:1239e9b70ca2 706 word32 inSz)
wolfSSL 0:1239e9b70ca2 707 {
wolfSSL 0:1239e9b70ca2 708 int version, length;
wolfSSL 0:1239e9b70ca2 709
wolfSSL 0:1239e9b70ca2 710 #ifdef HAVE_CAVIUM
wolfSSL 0:1239e9b70ca2 711 if (key->magic == CYASSL_RSA_CAVIUM_MAGIC)
wolfSSL 0:1239e9b70ca2 712 return CaviumRsaPrivateKeyDecode(input, inOutIdx, key, inSz);
wolfSSL 0:1239e9b70ca2 713 #endif
wolfSSL 0:1239e9b70ca2 714
wolfSSL 0:1239e9b70ca2 715 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 716 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 717
wolfSSL 0:1239e9b70ca2 718 if (GetMyVersion(input, inOutIdx, &version) < 0)
wolfSSL 0:1239e9b70ca2 719 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 720
wolfSSL 0:1239e9b70ca2 721 key->type = RSA_PRIVATE;
wolfSSL 0:1239e9b70ca2 722
wolfSSL 0:1239e9b70ca2 723 if (GetInt(&key->n, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 724 GetInt(&key->e, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 725 GetInt(&key->d, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 726 GetInt(&key->p, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 727 GetInt(&key->q, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 728 GetInt(&key->dP, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 729 GetInt(&key->dQ, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 730 GetInt(&key->u, input, inOutIdx, inSz) < 0 ) return ASN_RSA_KEY_E;
wolfSSL 0:1239e9b70ca2 731
wolfSSL 0:1239e9b70ca2 732 return 0;
wolfSSL 0:1239e9b70ca2 733 }
wolfSSL 0:1239e9b70ca2 734
wolfSSL 0:1239e9b70ca2 735 #endif /* NO_RSA */
wolfSSL 0:1239e9b70ca2 736
wolfSSL 0:1239e9b70ca2 737 /* Remove PKCS8 header, move beginning of traditional to beginning of input */
wolfSSL 0:1239e9b70ca2 738 int ToTraditional(byte* input, word32 sz)
wolfSSL 0:1239e9b70ca2 739 {
wolfSSL 0:1239e9b70ca2 740 word32 inOutIdx = 0, oid;
wolfSSL 0:1239e9b70ca2 741 int version, length;
wolfSSL 0:1239e9b70ca2 742
wolfSSL 0:1239e9b70ca2 743 if (GetSequence(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 744 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 745
wolfSSL 0:1239e9b70ca2 746 if (GetMyVersion(input, &inOutIdx, &version) < 0)
wolfSSL 0:1239e9b70ca2 747 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 748
wolfSSL 0:1239e9b70ca2 749 if (GetAlgoId(input, &inOutIdx, &oid, sz) < 0)
wolfSSL 0:1239e9b70ca2 750 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 751
wolfSSL 0:1239e9b70ca2 752 if (input[inOutIdx] == ASN_OBJECT_ID) {
wolfSSL 0:1239e9b70ca2 753 /* pkcs8 ecc uses slightly different format */
wolfSSL 0:1239e9b70ca2 754 inOutIdx++; /* past id */
wolfSSL 0:1239e9b70ca2 755 if (GetLength(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 756 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 757 inOutIdx += length; /* over sub id, key input will verify */
wolfSSL 0:1239e9b70ca2 758 }
wolfSSL 0:1239e9b70ca2 759
wolfSSL 0:1239e9b70ca2 760 if (input[inOutIdx++] != ASN_OCTET_STRING)
wolfSSL 0:1239e9b70ca2 761 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 762
wolfSSL 0:1239e9b70ca2 763 if (GetLength(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 764 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 765
wolfSSL 0:1239e9b70ca2 766 XMEMMOVE(input, input + inOutIdx, length);
wolfSSL 0:1239e9b70ca2 767
wolfSSL 0:1239e9b70ca2 768 return length;
wolfSSL 0:1239e9b70ca2 769 }
wolfSSL 0:1239e9b70ca2 770
wolfSSL 0:1239e9b70ca2 771
wolfSSL 0:1239e9b70ca2 772 #ifndef NO_PWDBASED
wolfSSL 0:1239e9b70ca2 773
wolfSSL 0:1239e9b70ca2 774 /* Check To see if PKCS version algo is supported, set id if it is return 0
wolfSSL 0:1239e9b70ca2 775 < 0 on error */
wolfSSL 0:1239e9b70ca2 776 static int CheckAlgo(int first, int second, int* id, int* version)
wolfSSL 0:1239e9b70ca2 777 {
wolfSSL 0:1239e9b70ca2 778 *id = ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 779 *version = PKCS5; /* default */
wolfSSL 0:1239e9b70ca2 780
wolfSSL 0:1239e9b70ca2 781 if (first == 1) {
wolfSSL 0:1239e9b70ca2 782 switch (second) {
wolfSSL 0:1239e9b70ca2 783 case 1:
wolfSSL 0:1239e9b70ca2 784 *id = PBE_SHA1_RC4_128;
wolfSSL 0:1239e9b70ca2 785 *version = PKCS12;
wolfSSL 0:1239e9b70ca2 786 return 0;
wolfSSL 0:1239e9b70ca2 787 case 3:
wolfSSL 0:1239e9b70ca2 788 *id = PBE_SHA1_DES3;
wolfSSL 0:1239e9b70ca2 789 *version = PKCS12;
wolfSSL 0:1239e9b70ca2 790 return 0;
wolfSSL 0:1239e9b70ca2 791 default:
wolfSSL 0:1239e9b70ca2 792 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 793 }
wolfSSL 0:1239e9b70ca2 794 }
wolfSSL 0:1239e9b70ca2 795
wolfSSL 0:1239e9b70ca2 796 if (first != PKCS5)
wolfSSL 0:1239e9b70ca2 797 return ASN_INPUT_E; /* VERSION ERROR */
wolfSSL 0:1239e9b70ca2 798
wolfSSL 0:1239e9b70ca2 799 if (second == PBES2) {
wolfSSL 0:1239e9b70ca2 800 *version = PKCS5v2;
wolfSSL 0:1239e9b70ca2 801 return 0;
wolfSSL 0:1239e9b70ca2 802 }
wolfSSL 0:1239e9b70ca2 803
wolfSSL 0:1239e9b70ca2 804 switch (second) {
wolfSSL 0:1239e9b70ca2 805 case 3: /* see RFC 2898 for ids */
wolfSSL 0:1239e9b70ca2 806 *id = PBE_MD5_DES;
wolfSSL 0:1239e9b70ca2 807 return 0;
wolfSSL 0:1239e9b70ca2 808 case 10:
wolfSSL 0:1239e9b70ca2 809 *id = PBE_SHA1_DES;
wolfSSL 0:1239e9b70ca2 810 return 0;
wolfSSL 0:1239e9b70ca2 811 default:
wolfSSL 0:1239e9b70ca2 812 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 813
wolfSSL 0:1239e9b70ca2 814 }
wolfSSL 0:1239e9b70ca2 815 }
wolfSSL 0:1239e9b70ca2 816
wolfSSL 0:1239e9b70ca2 817
wolfSSL 0:1239e9b70ca2 818 /* Check To see if PKCS v2 algo is supported, set id if it is return 0
wolfSSL 0:1239e9b70ca2 819 < 0 on error */
wolfSSL 0:1239e9b70ca2 820 static int CheckAlgoV2(int oid, int* id)
wolfSSL 0:1239e9b70ca2 821 {
wolfSSL 0:1239e9b70ca2 822 switch (oid) {
wolfSSL 0:1239e9b70ca2 823 case 69:
wolfSSL 0:1239e9b70ca2 824 *id = PBE_SHA1_DES;
wolfSSL 0:1239e9b70ca2 825 return 0;
wolfSSL 0:1239e9b70ca2 826 case 652:
wolfSSL 0:1239e9b70ca2 827 *id = PBE_SHA1_DES3;
wolfSSL 0:1239e9b70ca2 828 return 0;
wolfSSL 0:1239e9b70ca2 829 default:
wolfSSL 0:1239e9b70ca2 830 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 831
wolfSSL 0:1239e9b70ca2 832 }
wolfSSL 0:1239e9b70ca2 833 }
wolfSSL 0:1239e9b70ca2 834
wolfSSL 0:1239e9b70ca2 835
wolfSSL 0:1239e9b70ca2 836 /* Decrypt intput in place from parameters based on id */
wolfSSL 0:1239e9b70ca2 837 static int DecryptKey(const char* password, int passwordSz, byte* salt,
wolfSSL 0:1239e9b70ca2 838 int saltSz, int iterations, int id, byte* input,
wolfSSL 0:1239e9b70ca2 839 int length, int version, byte* cbcIv)
wolfSSL 0:1239e9b70ca2 840 {
wolfSSL 0:1239e9b70ca2 841 byte key[MAX_KEY_SIZE];
wolfSSL 0:1239e9b70ca2 842 int typeH;
wolfSSL 0:1239e9b70ca2 843 int derivedLen;
wolfSSL 0:1239e9b70ca2 844 int decryptionType;
wolfSSL 0:1239e9b70ca2 845 int ret = 0;
wolfSSL 0:1239e9b70ca2 846
wolfSSL 0:1239e9b70ca2 847 switch (id) {
wolfSSL 0:1239e9b70ca2 848 case PBE_MD5_DES:
wolfSSL 0:1239e9b70ca2 849 typeH = MD5;
wolfSSL 0:1239e9b70ca2 850 derivedLen = 16; /* may need iv for v1.5 */
wolfSSL 0:1239e9b70ca2 851 decryptionType = DES_TYPE;
wolfSSL 0:1239e9b70ca2 852 break;
wolfSSL 0:1239e9b70ca2 853
wolfSSL 0:1239e9b70ca2 854 case PBE_SHA1_DES:
wolfSSL 0:1239e9b70ca2 855 typeH = SHA;
wolfSSL 0:1239e9b70ca2 856 derivedLen = 16; /* may need iv for v1.5 */
wolfSSL 0:1239e9b70ca2 857 decryptionType = DES_TYPE;
wolfSSL 0:1239e9b70ca2 858 break;
wolfSSL 0:1239e9b70ca2 859
wolfSSL 0:1239e9b70ca2 860 case PBE_SHA1_DES3:
wolfSSL 0:1239e9b70ca2 861 typeH = SHA;
wolfSSL 0:1239e9b70ca2 862 derivedLen = 32; /* may need iv for v1.5 */
wolfSSL 0:1239e9b70ca2 863 decryptionType = DES3_TYPE;
wolfSSL 0:1239e9b70ca2 864 break;
wolfSSL 0:1239e9b70ca2 865
wolfSSL 0:1239e9b70ca2 866 case PBE_SHA1_RC4_128:
wolfSSL 0:1239e9b70ca2 867 typeH = SHA;
wolfSSL 0:1239e9b70ca2 868 derivedLen = 16;
wolfSSL 0:1239e9b70ca2 869 decryptionType = RC4_TYPE;
wolfSSL 0:1239e9b70ca2 870 break;
wolfSSL 0:1239e9b70ca2 871
wolfSSL 0:1239e9b70ca2 872 default:
wolfSSL 0:1239e9b70ca2 873 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 874 }
wolfSSL 0:1239e9b70ca2 875
wolfSSL 0:1239e9b70ca2 876 if (version == PKCS5v2)
wolfSSL 0:1239e9b70ca2 877 ret = PBKDF2(key, (byte*)password, passwordSz, salt, saltSz, iterations,
wolfSSL 0:1239e9b70ca2 878 derivedLen, typeH);
wolfSSL 0:1239e9b70ca2 879 else if (version == PKCS5)
wolfSSL 0:1239e9b70ca2 880 ret = PBKDF1(key, (byte*)password, passwordSz, salt, saltSz, iterations,
wolfSSL 0:1239e9b70ca2 881 derivedLen, typeH);
wolfSSL 0:1239e9b70ca2 882 else if (version == PKCS12) {
wolfSSL 0:1239e9b70ca2 883 int i, idx = 0;
wolfSSL 0:1239e9b70ca2 884 byte unicodePasswd[MAX_UNICODE_SZ];
wolfSSL 0:1239e9b70ca2 885
wolfSSL 0:1239e9b70ca2 886 if ( (passwordSz * 2 + 2) > (int)sizeof(unicodePasswd))
wolfSSL 0:1239e9b70ca2 887 return UNICODE_SIZE_E;
wolfSSL 0:1239e9b70ca2 888
wolfSSL 0:1239e9b70ca2 889 for (i = 0; i < passwordSz; i++) {
wolfSSL 0:1239e9b70ca2 890 unicodePasswd[idx++] = 0x00;
wolfSSL 0:1239e9b70ca2 891 unicodePasswd[idx++] = (byte)password[i];
wolfSSL 0:1239e9b70ca2 892 }
wolfSSL 0:1239e9b70ca2 893 /* add trailing NULL */
wolfSSL 0:1239e9b70ca2 894 unicodePasswd[idx++] = 0x00;
wolfSSL 0:1239e9b70ca2 895 unicodePasswd[idx++] = 0x00;
wolfSSL 0:1239e9b70ca2 896
wolfSSL 0:1239e9b70ca2 897 ret = PKCS12_PBKDF(key, unicodePasswd, idx, salt, saltSz,
wolfSSL 0:1239e9b70ca2 898 iterations, derivedLen, typeH, 1);
wolfSSL 0:1239e9b70ca2 899 if (decryptionType != RC4_TYPE)
wolfSSL 0:1239e9b70ca2 900 ret += PKCS12_PBKDF(cbcIv, unicodePasswd, idx, salt, saltSz,
wolfSSL 0:1239e9b70ca2 901 iterations, 8, typeH, 2);
wolfSSL 0:1239e9b70ca2 902 }
wolfSSL 0:1239e9b70ca2 903 else
wolfSSL 0:1239e9b70ca2 904 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 905
wolfSSL 0:1239e9b70ca2 906 if (ret != 0)
wolfSSL 0:1239e9b70ca2 907 return ret;
wolfSSL 0:1239e9b70ca2 908
wolfSSL 0:1239e9b70ca2 909 switch (decryptionType) {
wolfSSL 0:1239e9b70ca2 910 #ifndef NO_DES3
wolfSSL 0:1239e9b70ca2 911 case DES_TYPE:
wolfSSL 0:1239e9b70ca2 912 {
wolfSSL 0:1239e9b70ca2 913 Des dec;
wolfSSL 0:1239e9b70ca2 914 byte* desIv = key + 8;
wolfSSL 0:1239e9b70ca2 915
wolfSSL 0:1239e9b70ca2 916 if (version == PKCS5v2 || version == PKCS12)
wolfSSL 0:1239e9b70ca2 917 desIv = cbcIv;
wolfSSL 0:1239e9b70ca2 918
wolfSSL 0:1239e9b70ca2 919 ret = Des_SetKey(&dec, key, desIv, DES_DECRYPTION);
wolfSSL 0:1239e9b70ca2 920 if (ret != 0)
wolfSSL 0:1239e9b70ca2 921 return ret;
wolfSSL 0:1239e9b70ca2 922
wolfSSL 0:1239e9b70ca2 923 Des_CbcDecrypt(&dec, input, input, length);
wolfSSL 0:1239e9b70ca2 924 break;
wolfSSL 0:1239e9b70ca2 925 }
wolfSSL 0:1239e9b70ca2 926
wolfSSL 0:1239e9b70ca2 927 case DES3_TYPE:
wolfSSL 0:1239e9b70ca2 928 {
wolfSSL 0:1239e9b70ca2 929 Des3 dec;
wolfSSL 0:1239e9b70ca2 930 byte* desIv = key + 24;
wolfSSL 0:1239e9b70ca2 931
wolfSSL 0:1239e9b70ca2 932 if (version == PKCS5v2 || version == PKCS12)
wolfSSL 0:1239e9b70ca2 933 desIv = cbcIv;
wolfSSL 0:1239e9b70ca2 934 ret = Des3_SetKey(&dec, key, desIv, DES_DECRYPTION);
wolfSSL 0:1239e9b70ca2 935 if (ret != 0)
wolfSSL 0:1239e9b70ca2 936 return ret;
wolfSSL 0:1239e9b70ca2 937 ret = Des3_CbcDecrypt(&dec, input, input, length);
wolfSSL 0:1239e9b70ca2 938 if (ret != 0)
wolfSSL 0:1239e9b70ca2 939 return ret;
wolfSSL 0:1239e9b70ca2 940 break;
wolfSSL 0:1239e9b70ca2 941 }
wolfSSL 0:1239e9b70ca2 942 #endif
wolfSSL 0:1239e9b70ca2 943 #ifndef NO_RC4
wolfSSL 0:1239e9b70ca2 944 case RC4_TYPE:
wolfSSL 0:1239e9b70ca2 945 {
wolfSSL 0:1239e9b70ca2 946 Arc4 dec;
wolfSSL 0:1239e9b70ca2 947
wolfSSL 0:1239e9b70ca2 948 Arc4SetKey(&dec, key, derivedLen);
wolfSSL 0:1239e9b70ca2 949 Arc4Process(&dec, input, input, length);
wolfSSL 0:1239e9b70ca2 950 break;
wolfSSL 0:1239e9b70ca2 951 }
wolfSSL 0:1239e9b70ca2 952 #endif
wolfSSL 0:1239e9b70ca2 953
wolfSSL 0:1239e9b70ca2 954 default:
wolfSSL 0:1239e9b70ca2 955 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 956 }
wolfSSL 0:1239e9b70ca2 957
wolfSSL 0:1239e9b70ca2 958 return 0;
wolfSSL 0:1239e9b70ca2 959 }
wolfSSL 0:1239e9b70ca2 960
wolfSSL 0:1239e9b70ca2 961
wolfSSL 0:1239e9b70ca2 962 /* Remove Encrypted PKCS8 header, move beginning of traditional to beginning
wolfSSL 0:1239e9b70ca2 963 of input */
wolfSSL 0:1239e9b70ca2 964 int ToTraditionalEnc(byte* input, word32 sz,const char* password,int passwordSz)
wolfSSL 0:1239e9b70ca2 965 {
wolfSSL 0:1239e9b70ca2 966 word32 inOutIdx = 0, oid;
wolfSSL 0:1239e9b70ca2 967 int first, second, length, version, saltSz, id;
wolfSSL 0:1239e9b70ca2 968 int iterations = 0;
wolfSSL 0:1239e9b70ca2 969 byte salt[MAX_SALT_SIZE];
wolfSSL 0:1239e9b70ca2 970 byte cbcIv[MAX_IV_SIZE];
wolfSSL 0:1239e9b70ca2 971
wolfSSL 0:1239e9b70ca2 972 if (GetSequence(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 973 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 974
wolfSSL 0:1239e9b70ca2 975 if (GetAlgoId(input, &inOutIdx, &oid, sz) < 0)
wolfSSL 0:1239e9b70ca2 976 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 977
wolfSSL 0:1239e9b70ca2 978 first = input[inOutIdx - 2]; /* PKCS version alwyas 2nd to last byte */
wolfSSL 0:1239e9b70ca2 979 second = input[inOutIdx - 1]; /* version.algo, algo id last byte */
wolfSSL 0:1239e9b70ca2 980
wolfSSL 0:1239e9b70ca2 981 if (CheckAlgo(first, second, &id, &version) < 0)
wolfSSL 0:1239e9b70ca2 982 return ASN_INPUT_E; /* Algo ID error */
wolfSSL 0:1239e9b70ca2 983
wolfSSL 0:1239e9b70ca2 984 if (version == PKCS5v2) {
wolfSSL 0:1239e9b70ca2 985
wolfSSL 0:1239e9b70ca2 986 if (GetSequence(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 987 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 988
wolfSSL 0:1239e9b70ca2 989 if (GetAlgoId(input, &inOutIdx, &oid, sz) < 0)
wolfSSL 0:1239e9b70ca2 990 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 991
wolfSSL 0:1239e9b70ca2 992 if (oid != PBKDF2_OID)
wolfSSL 0:1239e9b70ca2 993 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 994 }
wolfSSL 0:1239e9b70ca2 995
wolfSSL 0:1239e9b70ca2 996 if (GetSequence(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 997 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 998
wolfSSL 0:1239e9b70ca2 999 if (input[inOutIdx++] != ASN_OCTET_STRING)
wolfSSL 0:1239e9b70ca2 1000 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1001
wolfSSL 0:1239e9b70ca2 1002 if (GetLength(input, &inOutIdx, &saltSz, sz) < 0)
wolfSSL 0:1239e9b70ca2 1003 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1004
wolfSSL 0:1239e9b70ca2 1005 if (saltSz > MAX_SALT_SIZE)
wolfSSL 0:1239e9b70ca2 1006 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1007
wolfSSL 0:1239e9b70ca2 1008 XMEMCPY(salt, &input[inOutIdx], saltSz);
wolfSSL 0:1239e9b70ca2 1009 inOutIdx += saltSz;
wolfSSL 0:1239e9b70ca2 1010
wolfSSL 0:1239e9b70ca2 1011 if (GetShortInt(input, &inOutIdx, &iterations) < 0)
wolfSSL 0:1239e9b70ca2 1012 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1013
wolfSSL 0:1239e9b70ca2 1014 if (version == PKCS5v2) {
wolfSSL 0:1239e9b70ca2 1015 /* get encryption algo */
wolfSSL 0:1239e9b70ca2 1016 if (GetAlgoId(input, &inOutIdx, &oid, sz) < 0)
wolfSSL 0:1239e9b70ca2 1017 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1018
wolfSSL 0:1239e9b70ca2 1019 if (CheckAlgoV2(oid, &id) < 0)
wolfSSL 0:1239e9b70ca2 1020 return ASN_PARSE_E; /* PKCS v2 algo id error */
wolfSSL 0:1239e9b70ca2 1021
wolfSSL 0:1239e9b70ca2 1022 if (input[inOutIdx++] != ASN_OCTET_STRING)
wolfSSL 0:1239e9b70ca2 1023 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1024
wolfSSL 0:1239e9b70ca2 1025 if (GetLength(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 1026 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1027
wolfSSL 0:1239e9b70ca2 1028 XMEMCPY(cbcIv, &input[inOutIdx], length);
wolfSSL 0:1239e9b70ca2 1029 inOutIdx += length;
wolfSSL 0:1239e9b70ca2 1030 }
wolfSSL 0:1239e9b70ca2 1031
wolfSSL 0:1239e9b70ca2 1032 if (input[inOutIdx++] != ASN_OCTET_STRING)
wolfSSL 0:1239e9b70ca2 1033 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1034
wolfSSL 0:1239e9b70ca2 1035 if (GetLength(input, &inOutIdx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 1036 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1037
wolfSSL 0:1239e9b70ca2 1038 if (DecryptKey(password, passwordSz, salt, saltSz, iterations, id,
wolfSSL 0:1239e9b70ca2 1039 input + inOutIdx, length, version, cbcIv) < 0)
wolfSSL 0:1239e9b70ca2 1040 return ASN_INPUT_E; /* decrypt failure */
wolfSSL 0:1239e9b70ca2 1041
wolfSSL 0:1239e9b70ca2 1042 XMEMMOVE(input, input + inOutIdx, length);
wolfSSL 0:1239e9b70ca2 1043 return ToTraditional(input, length);
wolfSSL 0:1239e9b70ca2 1044 }
wolfSSL 0:1239e9b70ca2 1045
wolfSSL 0:1239e9b70ca2 1046 #endif /* NO_PWDBASED */
wolfSSL 0:1239e9b70ca2 1047
wolfSSL 0:1239e9b70ca2 1048 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 1049
wolfSSL 0:1239e9b70ca2 1050 int RsaPublicKeyDecode(const byte* input, word32* inOutIdx, RsaKey* key,
wolfSSL 0:1239e9b70ca2 1051 word32 inSz)
wolfSSL 0:1239e9b70ca2 1052 {
wolfSSL 0:1239e9b70ca2 1053 int length;
wolfSSL 0:1239e9b70ca2 1054
wolfSSL 0:1239e9b70ca2 1055 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1056 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1057
wolfSSL 0:1239e9b70ca2 1058 key->type = RSA_PUBLIC;
wolfSSL 0:1239e9b70ca2 1059
wolfSSL 0:1239e9b70ca2 1060 #if defined(OPENSSL_EXTRA) || defined(RSA_DECODE_EXTRA)
wolfSSL 0:1239e9b70ca2 1061 {
wolfSSL 0:1239e9b70ca2 1062 byte b = input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 1063 if (b != ASN_INTEGER) {
wolfSSL 0:1239e9b70ca2 1064 /* not from decoded cert, will have algo id, skip past */
wolfSSL 0:1239e9b70ca2 1065 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1066 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1067
wolfSSL 0:1239e9b70ca2 1068 b = input[(*inOutIdx)++];
wolfSSL 0:1239e9b70ca2 1069 if (b != ASN_OBJECT_ID)
wolfSSL 0:1239e9b70ca2 1070 return ASN_OBJECT_ID_E;
wolfSSL 0:1239e9b70ca2 1071
wolfSSL 0:1239e9b70ca2 1072 if (GetLength(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1073 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1074
wolfSSL 0:1239e9b70ca2 1075 *inOutIdx += length; /* skip past */
wolfSSL 0:1239e9b70ca2 1076
wolfSSL 0:1239e9b70ca2 1077 /* could have NULL tag and 0 terminator, but may not */
wolfSSL 0:1239e9b70ca2 1078 b = input[(*inOutIdx)++];
wolfSSL 0:1239e9b70ca2 1079
wolfSSL 0:1239e9b70ca2 1080 if (b == ASN_TAG_NULL) {
wolfSSL 0:1239e9b70ca2 1081 b = input[(*inOutIdx)++];
wolfSSL 0:1239e9b70ca2 1082 if (b != 0)
wolfSSL 0:1239e9b70ca2 1083 return ASN_EXPECT_0_E;
wolfSSL 0:1239e9b70ca2 1084 }
wolfSSL 0:1239e9b70ca2 1085 else
wolfSSL 0:1239e9b70ca2 1086 /* go back, didn't have it */
wolfSSL 0:1239e9b70ca2 1087 (*inOutIdx)--;
wolfSSL 0:1239e9b70ca2 1088
wolfSSL 0:1239e9b70ca2 1089 /* should have bit tag length and seq next */
wolfSSL 0:1239e9b70ca2 1090 b = input[(*inOutIdx)++];
wolfSSL 0:1239e9b70ca2 1091 if (b != ASN_BIT_STRING)
wolfSSL 0:1239e9b70ca2 1092 return ASN_BITSTR_E;
wolfSSL 0:1239e9b70ca2 1093
wolfSSL 0:1239e9b70ca2 1094 if (GetLength(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1095 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1096
wolfSSL 0:1239e9b70ca2 1097 /* could have 0 */
wolfSSL 0:1239e9b70ca2 1098 b = input[(*inOutIdx)++];
wolfSSL 0:1239e9b70ca2 1099 if (b != 0)
wolfSSL 0:1239e9b70ca2 1100 (*inOutIdx)--;
wolfSSL 0:1239e9b70ca2 1101
wolfSSL 0:1239e9b70ca2 1102 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1103 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1104 } /* end if */
wolfSSL 0:1239e9b70ca2 1105 } /* openssl var block */
wolfSSL 0:1239e9b70ca2 1106 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1107
wolfSSL 0:1239e9b70ca2 1108 if (GetInt(&key->n, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1109 GetInt(&key->e, input, inOutIdx, inSz) < 0 ) return ASN_RSA_KEY_E;
wolfSSL 0:1239e9b70ca2 1110
wolfSSL 0:1239e9b70ca2 1111 return 0;
wolfSSL 0:1239e9b70ca2 1112 }
wolfSSL 0:1239e9b70ca2 1113
wolfSSL 0:1239e9b70ca2 1114 #endif
wolfSSL 0:1239e9b70ca2 1115
wolfSSL 0:1239e9b70ca2 1116 #ifndef NO_DH
wolfSSL 0:1239e9b70ca2 1117
wolfSSL 0:1239e9b70ca2 1118 int DhKeyDecode(const byte* input, word32* inOutIdx, DhKey* key, word32 inSz)
wolfSSL 0:1239e9b70ca2 1119 {
wolfSSL 0:1239e9b70ca2 1120 int length;
wolfSSL 0:1239e9b70ca2 1121
wolfSSL 0:1239e9b70ca2 1122 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1123 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1124
wolfSSL 0:1239e9b70ca2 1125 if (GetInt(&key->p, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1126 GetInt(&key->g, input, inOutIdx, inSz) < 0 ) return ASN_DH_KEY_E;
wolfSSL 0:1239e9b70ca2 1127
wolfSSL 0:1239e9b70ca2 1128 return 0;
wolfSSL 0:1239e9b70ca2 1129 }
wolfSSL 0:1239e9b70ca2 1130
wolfSSL 0:1239e9b70ca2 1131 int DhSetKey(DhKey* key, const byte* p, word32 pSz, const byte* g, word32 gSz)
wolfSSL 0:1239e9b70ca2 1132 {
wolfSSL 0:1239e9b70ca2 1133 if (key == NULL || p == NULL || g == NULL || pSz == 0 || gSz == 0)
wolfSSL 0:1239e9b70ca2 1134 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 1135
wolfSSL 0:1239e9b70ca2 1136 /* may have leading 0 */
wolfSSL 0:1239e9b70ca2 1137 if (p[0] == 0) {
wolfSSL 0:1239e9b70ca2 1138 pSz--; p++;
wolfSSL 0:1239e9b70ca2 1139 }
wolfSSL 0:1239e9b70ca2 1140
wolfSSL 0:1239e9b70ca2 1141 if (g[0] == 0) {
wolfSSL 0:1239e9b70ca2 1142 gSz--; g++;
wolfSSL 0:1239e9b70ca2 1143 }
wolfSSL 0:1239e9b70ca2 1144
wolfSSL 0:1239e9b70ca2 1145 if (mp_init(&key->p) != MP_OKAY)
wolfSSL 0:1239e9b70ca2 1146 return MP_INIT_E;
wolfSSL 0:1239e9b70ca2 1147 if (mp_read_unsigned_bin(&key->p, p, pSz) != 0) {
wolfSSL 0:1239e9b70ca2 1148 mp_clear(&key->p);
wolfSSL 0:1239e9b70ca2 1149 return ASN_DH_KEY_E;
wolfSSL 0:1239e9b70ca2 1150 }
wolfSSL 0:1239e9b70ca2 1151
wolfSSL 0:1239e9b70ca2 1152 if (mp_init(&key->g) != MP_OKAY) {
wolfSSL 0:1239e9b70ca2 1153 mp_clear(&key->p);
wolfSSL 0:1239e9b70ca2 1154 return MP_INIT_E;
wolfSSL 0:1239e9b70ca2 1155 }
wolfSSL 0:1239e9b70ca2 1156 if (mp_read_unsigned_bin(&key->g, g, gSz) != 0) {
wolfSSL 0:1239e9b70ca2 1157 mp_clear(&key->g);
wolfSSL 0:1239e9b70ca2 1158 mp_clear(&key->p);
wolfSSL 0:1239e9b70ca2 1159 return ASN_DH_KEY_E;
wolfSSL 0:1239e9b70ca2 1160 }
wolfSSL 0:1239e9b70ca2 1161
wolfSSL 0:1239e9b70ca2 1162 return 0;
wolfSSL 0:1239e9b70ca2 1163 }
wolfSSL 0:1239e9b70ca2 1164
wolfSSL 0:1239e9b70ca2 1165
wolfSSL 0:1239e9b70ca2 1166 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1167
wolfSSL 0:1239e9b70ca2 1168 int DhParamsLoad(const byte* input, word32 inSz, byte* p, word32* pInOutSz,
wolfSSL 0:1239e9b70ca2 1169 byte* g, word32* gInOutSz)
wolfSSL 0:1239e9b70ca2 1170 {
wolfSSL 0:1239e9b70ca2 1171 word32 i = 0;
wolfSSL 0:1239e9b70ca2 1172 byte b;
wolfSSL 0:1239e9b70ca2 1173 int length;
wolfSSL 0:1239e9b70ca2 1174
wolfSSL 0:1239e9b70ca2 1175 if (GetSequence(input, &i, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1176 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1177
wolfSSL 0:1239e9b70ca2 1178 b = input[i++];
wolfSSL 0:1239e9b70ca2 1179 if (b != ASN_INTEGER)
wolfSSL 0:1239e9b70ca2 1180 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1181
wolfSSL 0:1239e9b70ca2 1182 if (GetLength(input, &i, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1183 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1184
wolfSSL 0:1239e9b70ca2 1185 if ( (b = input[i++]) == 0x00)
wolfSSL 0:1239e9b70ca2 1186 length--;
wolfSSL 0:1239e9b70ca2 1187 else
wolfSSL 0:1239e9b70ca2 1188 i--;
wolfSSL 0:1239e9b70ca2 1189
wolfSSL 0:1239e9b70ca2 1190 if (length <= (int)*pInOutSz) {
wolfSSL 0:1239e9b70ca2 1191 XMEMCPY(p, &input[i], length);
wolfSSL 0:1239e9b70ca2 1192 *pInOutSz = length;
wolfSSL 0:1239e9b70ca2 1193 }
wolfSSL 0:1239e9b70ca2 1194 else
wolfSSL 0:1239e9b70ca2 1195 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 1196
wolfSSL 0:1239e9b70ca2 1197 i += length;
wolfSSL 0:1239e9b70ca2 1198
wolfSSL 0:1239e9b70ca2 1199 b = input[i++];
wolfSSL 0:1239e9b70ca2 1200 if (b != ASN_INTEGER)
wolfSSL 0:1239e9b70ca2 1201 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1202
wolfSSL 0:1239e9b70ca2 1203 if (GetLength(input, &i, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1204 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1205
wolfSSL 0:1239e9b70ca2 1206 if (length <= (int)*gInOutSz) {
wolfSSL 0:1239e9b70ca2 1207 XMEMCPY(g, &input[i], length);
wolfSSL 0:1239e9b70ca2 1208 *gInOutSz = length;
wolfSSL 0:1239e9b70ca2 1209 }
wolfSSL 0:1239e9b70ca2 1210 else
wolfSSL 0:1239e9b70ca2 1211 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 1212
wolfSSL 0:1239e9b70ca2 1213 return 0;
wolfSSL 0:1239e9b70ca2 1214 }
wolfSSL 0:1239e9b70ca2 1215
wolfSSL 0:1239e9b70ca2 1216 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1217 #endif /* NO_DH */
wolfSSL 0:1239e9b70ca2 1218
wolfSSL 0:1239e9b70ca2 1219
wolfSSL 0:1239e9b70ca2 1220 #ifndef NO_DSA
wolfSSL 0:1239e9b70ca2 1221
wolfSSL 0:1239e9b70ca2 1222 int DsaPublicKeyDecode(const byte* input, word32* inOutIdx, DsaKey* key,
wolfSSL 0:1239e9b70ca2 1223 word32 inSz)
wolfSSL 0:1239e9b70ca2 1224 {
wolfSSL 0:1239e9b70ca2 1225 int length;
wolfSSL 0:1239e9b70ca2 1226
wolfSSL 0:1239e9b70ca2 1227 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1228 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1229
wolfSSL 0:1239e9b70ca2 1230 if (GetInt(&key->p, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1231 GetInt(&key->q, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1232 GetInt(&key->g, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1233 GetInt(&key->y, input, inOutIdx, inSz) < 0 ) return ASN_DH_KEY_E;
wolfSSL 0:1239e9b70ca2 1234
wolfSSL 0:1239e9b70ca2 1235 key->type = DSA_PUBLIC;
wolfSSL 0:1239e9b70ca2 1236 return 0;
wolfSSL 0:1239e9b70ca2 1237 }
wolfSSL 0:1239e9b70ca2 1238
wolfSSL 0:1239e9b70ca2 1239
wolfSSL 0:1239e9b70ca2 1240 int DsaPrivateKeyDecode(const byte* input, word32* inOutIdx, DsaKey* key,
wolfSSL 0:1239e9b70ca2 1241 word32 inSz)
wolfSSL 0:1239e9b70ca2 1242 {
wolfSSL 0:1239e9b70ca2 1243 int length, version;
wolfSSL 0:1239e9b70ca2 1244
wolfSSL 0:1239e9b70ca2 1245 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 1246 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1247
wolfSSL 0:1239e9b70ca2 1248 if (GetMyVersion(input, inOutIdx, &version) < 0)
wolfSSL 0:1239e9b70ca2 1249 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1250
wolfSSL 0:1239e9b70ca2 1251 if (GetInt(&key->p, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1252 GetInt(&key->q, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1253 GetInt(&key->g, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1254 GetInt(&key->y, input, inOutIdx, inSz) < 0 ||
wolfSSL 0:1239e9b70ca2 1255 GetInt(&key->x, input, inOutIdx, inSz) < 0 ) return ASN_DH_KEY_E;
wolfSSL 0:1239e9b70ca2 1256
wolfSSL 0:1239e9b70ca2 1257 key->type = DSA_PRIVATE;
wolfSSL 0:1239e9b70ca2 1258 return 0;
wolfSSL 0:1239e9b70ca2 1259 }
wolfSSL 0:1239e9b70ca2 1260
wolfSSL 0:1239e9b70ca2 1261 #endif /* NO_DSA */
wolfSSL 0:1239e9b70ca2 1262
wolfSSL 0:1239e9b70ca2 1263
wolfSSL 0:1239e9b70ca2 1264 void InitDecodedCert(DecodedCert* cert, byte* source, word32 inSz, void* heap)
wolfSSL 0:1239e9b70ca2 1265 {
wolfSSL 0:1239e9b70ca2 1266 cert->publicKey = 0;
wolfSSL 0:1239e9b70ca2 1267 cert->pubKeySize = 0;
wolfSSL 0:1239e9b70ca2 1268 cert->pubKeyStored = 0;
wolfSSL 0:1239e9b70ca2 1269 cert->version = 0;
wolfSSL 0:1239e9b70ca2 1270 cert->signature = 0;
wolfSSL 0:1239e9b70ca2 1271 cert->subjectCN = 0;
wolfSSL 0:1239e9b70ca2 1272 cert->subjectCNLen = 0;
wolfSSL 0:1239e9b70ca2 1273 cert->subjectCNStored = 0;
wolfSSL 0:1239e9b70ca2 1274 cert->altNames = NULL;
wolfSSL 0:1239e9b70ca2 1275 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 1276 cert->altEmailNames = NULL;
wolfSSL 0:1239e9b70ca2 1277 cert->permittedNames = NULL;
wolfSSL 0:1239e9b70ca2 1278 cert->excludedNames = NULL;
wolfSSL 0:1239e9b70ca2 1279 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 1280 cert->issuer[0] = '\0';
wolfSSL 0:1239e9b70ca2 1281 cert->subject[0] = '\0';
wolfSSL 0:1239e9b70ca2 1282 cert->source = source; /* don't own */
wolfSSL 0:1239e9b70ca2 1283 cert->srcIdx = 0;
wolfSSL 0:1239e9b70ca2 1284 cert->maxIdx = inSz; /* can't go over this index */
wolfSSL 0:1239e9b70ca2 1285 cert->heap = heap;
wolfSSL 0:1239e9b70ca2 1286 XMEMSET(cert->serial, 0, EXTERNAL_SERIAL_SIZE);
wolfSSL 0:1239e9b70ca2 1287 cert->serialSz = 0;
wolfSSL 0:1239e9b70ca2 1288 cert->extensions = 0;
wolfSSL 0:1239e9b70ca2 1289 cert->extensionsSz = 0;
wolfSSL 0:1239e9b70ca2 1290 cert->extensionsIdx = 0;
wolfSSL 0:1239e9b70ca2 1291 cert->extAuthInfo = NULL;
wolfSSL 0:1239e9b70ca2 1292 cert->extAuthInfoSz = 0;
wolfSSL 0:1239e9b70ca2 1293 cert->extCrlInfo = NULL;
wolfSSL 0:1239e9b70ca2 1294 cert->extCrlInfoSz = 0;
wolfSSL 0:1239e9b70ca2 1295 XMEMSET(cert->extSubjKeyId, 0, SHA_SIZE);
wolfSSL 0:1239e9b70ca2 1296 cert->extSubjKeyIdSet = 0;
wolfSSL 0:1239e9b70ca2 1297 XMEMSET(cert->extAuthKeyId, 0, SHA_SIZE);
wolfSSL 0:1239e9b70ca2 1298 cert->extAuthKeyIdSet = 0;
wolfSSL 0:1239e9b70ca2 1299 cert->extKeyUsageSet = 0;
wolfSSL 0:1239e9b70ca2 1300 cert->extKeyUsage = 0;
wolfSSL 0:1239e9b70ca2 1301 cert->extExtKeyUsageSet = 0;
wolfSSL 0:1239e9b70ca2 1302 cert->extExtKeyUsage = 0;
wolfSSL 0:1239e9b70ca2 1303 cert->isCA = 0;
wolfSSL 0:1239e9b70ca2 1304 #ifdef HAVE_PKCS7
wolfSSL 0:1239e9b70ca2 1305 cert->issuerRaw = NULL;
wolfSSL 0:1239e9b70ca2 1306 cert->issuerRawLen = 0;
wolfSSL 0:1239e9b70ca2 1307 #endif
wolfSSL 0:1239e9b70ca2 1308 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1309 cert->subjectSN = 0;
wolfSSL 0:1239e9b70ca2 1310 cert->subjectSNLen = 0;
wolfSSL 0:1239e9b70ca2 1311 cert->subjectC = 0;
wolfSSL 0:1239e9b70ca2 1312 cert->subjectCLen = 0;
wolfSSL 0:1239e9b70ca2 1313 cert->subjectL = 0;
wolfSSL 0:1239e9b70ca2 1314 cert->subjectLLen = 0;
wolfSSL 0:1239e9b70ca2 1315 cert->subjectST = 0;
wolfSSL 0:1239e9b70ca2 1316 cert->subjectSTLen = 0;
wolfSSL 0:1239e9b70ca2 1317 cert->subjectO = 0;
wolfSSL 0:1239e9b70ca2 1318 cert->subjectOLen = 0;
wolfSSL 0:1239e9b70ca2 1319 cert->subjectOU = 0;
wolfSSL 0:1239e9b70ca2 1320 cert->subjectOULen = 0;
wolfSSL 0:1239e9b70ca2 1321 cert->subjectEmail = 0;
wolfSSL 0:1239e9b70ca2 1322 cert->subjectEmailLen = 0;
wolfSSL 0:1239e9b70ca2 1323 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1324 cert->beforeDate = NULL;
wolfSSL 0:1239e9b70ca2 1325 cert->beforeDateLen = 0;
wolfSSL 0:1239e9b70ca2 1326 cert->afterDate = NULL;
wolfSSL 0:1239e9b70ca2 1327 cert->afterDateLen = 0;
wolfSSL 0:1239e9b70ca2 1328 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1329 XMEMSET(&cert->issuerName, 0, sizeof(DecodedName));
wolfSSL 0:1239e9b70ca2 1330 XMEMSET(&cert->subjectName, 0, sizeof(DecodedName));
wolfSSL 0:1239e9b70ca2 1331 cert->extBasicConstSet = 0;
wolfSSL 0:1239e9b70ca2 1332 cert->extBasicConstCrit = 0;
wolfSSL 0:1239e9b70ca2 1333 cert->extBasicConstPlSet = 0;
wolfSSL 0:1239e9b70ca2 1334 cert->pathLength = 0;
wolfSSL 0:1239e9b70ca2 1335 cert->extSubjAltNameSet = 0;
wolfSSL 0:1239e9b70ca2 1336 cert->extSubjAltNameCrit = 0;
wolfSSL 0:1239e9b70ca2 1337 cert->extAuthKeyIdCrit = 0;
wolfSSL 0:1239e9b70ca2 1338 cert->extSubjKeyIdCrit = 0;
wolfSSL 0:1239e9b70ca2 1339 cert->extKeyUsageCrit = 0;
wolfSSL 0:1239e9b70ca2 1340 cert->extExtKeyUsageCrit = 0;
wolfSSL 0:1239e9b70ca2 1341 cert->extExtKeyUsageSrc = NULL;
wolfSSL 0:1239e9b70ca2 1342 cert->extExtKeyUsageSz = 0;
wolfSSL 0:1239e9b70ca2 1343 cert->extExtKeyUsageCount = 0;
wolfSSL 0:1239e9b70ca2 1344 cert->extAuthKeyIdSrc = NULL;
wolfSSL 0:1239e9b70ca2 1345 cert->extAuthKeyIdSz = 0;
wolfSSL 0:1239e9b70ca2 1346 cert->extSubjKeyIdSrc = NULL;
wolfSSL 0:1239e9b70ca2 1347 cert->extSubjKeyIdSz = 0;
wolfSSL 0:1239e9b70ca2 1348 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1349 #if defined(OPENSSL_EXTRA) || !defined(IGNORE_NAME_CONSTRAINTS)
wolfSSL 0:1239e9b70ca2 1350 cert->extNameConstraintSet = 0;
wolfSSL 0:1239e9b70ca2 1351 #endif /* OPENSSL_EXTRA || !IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 1352 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 1353 cert->pkCurveOID = 0;
wolfSSL 0:1239e9b70ca2 1354 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 1355 #ifdef CYASSL_SEP
wolfSSL 0:1239e9b70ca2 1356 cert->deviceTypeSz = 0;
wolfSSL 0:1239e9b70ca2 1357 cert->deviceType = NULL;
wolfSSL 0:1239e9b70ca2 1358 cert->hwTypeSz = 0;
wolfSSL 0:1239e9b70ca2 1359 cert->hwType = NULL;
wolfSSL 0:1239e9b70ca2 1360 cert->hwSerialNumSz = 0;
wolfSSL 0:1239e9b70ca2 1361 cert->hwSerialNum = NULL;
wolfSSL 0:1239e9b70ca2 1362 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1363 cert->extCertPolicySet = 0;
wolfSSL 0:1239e9b70ca2 1364 cert->extCertPolicyCrit = 0;
wolfSSL 0:1239e9b70ca2 1365 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1366 #endif /* CYASSL_SEP */
wolfSSL 0:1239e9b70ca2 1367 }
wolfSSL 0:1239e9b70ca2 1368
wolfSSL 0:1239e9b70ca2 1369
wolfSSL 0:1239e9b70ca2 1370 void FreeAltNames(DNS_entry* altNames, void* heap)
wolfSSL 0:1239e9b70ca2 1371 {
wolfSSL 0:1239e9b70ca2 1372 (void)heap;
wolfSSL 0:1239e9b70ca2 1373
wolfSSL 0:1239e9b70ca2 1374 while (altNames) {
wolfSSL 0:1239e9b70ca2 1375 DNS_entry* tmp = altNames->next;
wolfSSL 0:1239e9b70ca2 1376
wolfSSL 0:1239e9b70ca2 1377 XFREE(altNames->name, heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 1378 XFREE(altNames, heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 1379 altNames = tmp;
wolfSSL 0:1239e9b70ca2 1380 }
wolfSSL 0:1239e9b70ca2 1381 }
wolfSSL 0:1239e9b70ca2 1382
wolfSSL 0:1239e9b70ca2 1383 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 1384
wolfSSL 0:1239e9b70ca2 1385 void FreeNameSubtrees(Base_entry* names, void* heap)
wolfSSL 0:1239e9b70ca2 1386 {
wolfSSL 0:1239e9b70ca2 1387 (void)heap;
wolfSSL 0:1239e9b70ca2 1388
wolfSSL 0:1239e9b70ca2 1389 while (names) {
wolfSSL 0:1239e9b70ca2 1390 Base_entry* tmp = names->next;
wolfSSL 0:1239e9b70ca2 1391
wolfSSL 0:1239e9b70ca2 1392 XFREE(names->name, heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 1393 XFREE(names, heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 1394 names = tmp;
wolfSSL 0:1239e9b70ca2 1395 }
wolfSSL 0:1239e9b70ca2 1396 }
wolfSSL 0:1239e9b70ca2 1397
wolfSSL 0:1239e9b70ca2 1398 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 1399
wolfSSL 0:1239e9b70ca2 1400 void FreeDecodedCert(DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 1401 {
wolfSSL 0:1239e9b70ca2 1402 if (cert->subjectCNStored == 1)
wolfSSL 0:1239e9b70ca2 1403 XFREE(cert->subjectCN, cert->heap, DYNAMIC_TYPE_SUBJECT_CN);
wolfSSL 0:1239e9b70ca2 1404 if (cert->pubKeyStored == 1)
wolfSSL 0:1239e9b70ca2 1405 XFREE(cert->publicKey, cert->heap, DYNAMIC_TYPE_PUBLIC_KEY);
wolfSSL 0:1239e9b70ca2 1406 if (cert->altNames)
wolfSSL 0:1239e9b70ca2 1407 FreeAltNames(cert->altNames, cert->heap);
wolfSSL 0:1239e9b70ca2 1408 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 1409 if (cert->altEmailNames)
wolfSSL 0:1239e9b70ca2 1410 FreeAltNames(cert->altEmailNames, cert->heap);
wolfSSL 0:1239e9b70ca2 1411 if (cert->permittedNames)
wolfSSL 0:1239e9b70ca2 1412 FreeNameSubtrees(cert->permittedNames, cert->heap);
wolfSSL 0:1239e9b70ca2 1413 if (cert->excludedNames)
wolfSSL 0:1239e9b70ca2 1414 FreeNameSubtrees(cert->excludedNames, cert->heap);
wolfSSL 0:1239e9b70ca2 1415 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 1416 #ifdef CYASSL_SEP
wolfSSL 0:1239e9b70ca2 1417 XFREE(cert->deviceType, cert->heap, 0);
wolfSSL 0:1239e9b70ca2 1418 XFREE(cert->hwType, cert->heap, 0);
wolfSSL 0:1239e9b70ca2 1419 XFREE(cert->hwSerialNum, cert->heap, 0);
wolfSSL 0:1239e9b70ca2 1420 #endif /* CYASSL_SEP */
wolfSSL 0:1239e9b70ca2 1421 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1422 if (cert->issuerName.fullName != NULL)
wolfSSL 0:1239e9b70ca2 1423 XFREE(cert->issuerName.fullName, NULL, DYNAMIC_TYPE_X509);
wolfSSL 0:1239e9b70ca2 1424 if (cert->subjectName.fullName != NULL)
wolfSSL 0:1239e9b70ca2 1425 XFREE(cert->subjectName.fullName, NULL, DYNAMIC_TYPE_X509);
wolfSSL 0:1239e9b70ca2 1426 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1427 }
wolfSSL 0:1239e9b70ca2 1428
wolfSSL 0:1239e9b70ca2 1429
wolfSSL 0:1239e9b70ca2 1430 static int GetCertHeader(DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 1431 {
wolfSSL 0:1239e9b70ca2 1432 int ret = 0, len;
wolfSSL 0:1239e9b70ca2 1433 byte serialTmp[EXTERNAL_SERIAL_SIZE];
wolfSSL 0:1239e9b70ca2 1434 mp_int mpi;
wolfSSL 0:1239e9b70ca2 1435
wolfSSL 0:1239e9b70ca2 1436 if (GetSequence(cert->source, &cert->srcIdx, &len, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1437 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1438
wolfSSL 0:1239e9b70ca2 1439 cert->certBegin = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1440
wolfSSL 0:1239e9b70ca2 1441 if (GetSequence(cert->source, &cert->srcIdx, &len, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1442 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1443 cert->sigIndex = len + cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1444
wolfSSL 0:1239e9b70ca2 1445 if (GetExplicitVersion(cert->source, &cert->srcIdx, &cert->version) < 0)
wolfSSL 0:1239e9b70ca2 1446 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1447
wolfSSL 0:1239e9b70ca2 1448 if (GetInt(&mpi, cert->source, &cert->srcIdx, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1449 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1450
wolfSSL 0:1239e9b70ca2 1451 len = mp_unsigned_bin_size(&mpi);
wolfSSL 0:1239e9b70ca2 1452 if (len < (int)sizeof(serialTmp)) {
wolfSSL 0:1239e9b70ca2 1453 if ( (ret = mp_to_unsigned_bin(&mpi, serialTmp)) == MP_OKAY) {
wolfSSL 0:1239e9b70ca2 1454 if (len > EXTERNAL_SERIAL_SIZE)
wolfSSL 0:1239e9b70ca2 1455 len = EXTERNAL_SERIAL_SIZE;
wolfSSL 0:1239e9b70ca2 1456 XMEMCPY(cert->serial, serialTmp, len);
wolfSSL 0:1239e9b70ca2 1457 cert->serialSz = len;
wolfSSL 0:1239e9b70ca2 1458 }
wolfSSL 0:1239e9b70ca2 1459 }
wolfSSL 0:1239e9b70ca2 1460 mp_clear(&mpi);
wolfSSL 0:1239e9b70ca2 1461 return ret;
wolfSSL 0:1239e9b70ca2 1462 }
wolfSSL 0:1239e9b70ca2 1463
wolfSSL 0:1239e9b70ca2 1464 #if !defined(NO_RSA)
wolfSSL 0:1239e9b70ca2 1465 /* Store Rsa Key, may save later, Dsa could use in future */
wolfSSL 0:1239e9b70ca2 1466 static int StoreRsaKey(DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 1467 {
wolfSSL 0:1239e9b70ca2 1468 int length;
wolfSSL 0:1239e9b70ca2 1469 word32 recvd = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1470
wolfSSL 0:1239e9b70ca2 1471 if (GetSequence(cert->source, &cert->srcIdx, &length, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1472 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1473
wolfSSL 0:1239e9b70ca2 1474 recvd = cert->srcIdx - recvd;
wolfSSL 0:1239e9b70ca2 1475 length += recvd;
wolfSSL 0:1239e9b70ca2 1476
wolfSSL 0:1239e9b70ca2 1477 while (recvd--)
wolfSSL 0:1239e9b70ca2 1478 cert->srcIdx--;
wolfSSL 0:1239e9b70ca2 1479
wolfSSL 0:1239e9b70ca2 1480 cert->pubKeySize = length;
wolfSSL 0:1239e9b70ca2 1481 cert->publicKey = cert->source + cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1482 cert->srcIdx += length;
wolfSSL 0:1239e9b70ca2 1483
wolfSSL 0:1239e9b70ca2 1484 return 0;
wolfSSL 0:1239e9b70ca2 1485 }
wolfSSL 0:1239e9b70ca2 1486 #endif
wolfSSL 0:1239e9b70ca2 1487
wolfSSL 0:1239e9b70ca2 1488
wolfSSL 0:1239e9b70ca2 1489 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 1490
wolfSSL 0:1239e9b70ca2 1491 /* return 0 on sucess if the ECC curve oid sum is supported */
wolfSSL 0:1239e9b70ca2 1492 static int CheckCurve(word32 oid)
wolfSSL 0:1239e9b70ca2 1493 {
wolfSSL 0:1239e9b70ca2 1494 if (oid != ECC_256R1 && oid != ECC_384R1 && oid != ECC_521R1 && oid !=
wolfSSL 0:1239e9b70ca2 1495 ECC_160R1 && oid != ECC_192R1 && oid != ECC_224R1)
wolfSSL 0:1239e9b70ca2 1496 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 1497
wolfSSL 0:1239e9b70ca2 1498 return 0;
wolfSSL 0:1239e9b70ca2 1499 }
wolfSSL 0:1239e9b70ca2 1500
wolfSSL 0:1239e9b70ca2 1501 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 1502
wolfSSL 0:1239e9b70ca2 1503
wolfSSL 0:1239e9b70ca2 1504 static int GetKey(DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 1505 {
wolfSSL 0:1239e9b70ca2 1506 int length;
wolfSSL 0:1239e9b70ca2 1507 #ifdef HAVE_NTRU
wolfSSL 0:1239e9b70ca2 1508 int tmpIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1509 #endif
wolfSSL 0:1239e9b70ca2 1510
wolfSSL 0:1239e9b70ca2 1511 if (GetSequence(cert->source, &cert->srcIdx, &length, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1512 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1513
wolfSSL 0:1239e9b70ca2 1514 if (GetAlgoId(cert->source, &cert->srcIdx, &cert->keyOID, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1515 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1516
wolfSSL 0:1239e9b70ca2 1517 switch (cert->keyOID) {
wolfSSL 0:1239e9b70ca2 1518 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 1519 case RSAk:
wolfSSL 0:1239e9b70ca2 1520 {
wolfSSL 0:1239e9b70ca2 1521 byte b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1522 if (b != ASN_BIT_STRING)
wolfSSL 0:1239e9b70ca2 1523 return ASN_BITSTR_E;
wolfSSL 0:1239e9b70ca2 1524
wolfSSL 0:1239e9b70ca2 1525 if (GetLength(cert->source,&cert->srcIdx,&length,cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1526 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1527 b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1528 if (b != 0x00)
wolfSSL 0:1239e9b70ca2 1529 return ASN_EXPECT_0_E;
wolfSSL 0:1239e9b70ca2 1530
wolfSSL 0:1239e9b70ca2 1531 return StoreRsaKey(cert);
wolfSSL 0:1239e9b70ca2 1532 }
wolfSSL 0:1239e9b70ca2 1533
wolfSSL 0:1239e9b70ca2 1534 #endif /* NO_RSA */
wolfSSL 0:1239e9b70ca2 1535 #ifdef HAVE_NTRU
wolfSSL 0:1239e9b70ca2 1536 case NTRUk:
wolfSSL 0:1239e9b70ca2 1537 {
wolfSSL 0:1239e9b70ca2 1538 const byte* key = &cert->source[tmpIdx];
wolfSSL 0:1239e9b70ca2 1539 byte* next = (byte*)key;
wolfSSL 0:1239e9b70ca2 1540 word16 keyLen;
wolfSSL 0:1239e9b70ca2 1541 byte keyBlob[MAX_NTRU_KEY_SZ];
wolfSSL 0:1239e9b70ca2 1542
wolfSSL 0:1239e9b70ca2 1543 word32 rc = crypto_ntru_encrypt_subjectPublicKeyInfo2PublicKey(key,
wolfSSL 0:1239e9b70ca2 1544 &keyLen, NULL, &next);
wolfSSL 0:1239e9b70ca2 1545
wolfSSL 0:1239e9b70ca2 1546 if (rc != NTRU_OK)
wolfSSL 0:1239e9b70ca2 1547 return ASN_NTRU_KEY_E;
wolfSSL 0:1239e9b70ca2 1548 if (keyLen > sizeof(keyBlob))
wolfSSL 0:1239e9b70ca2 1549 return ASN_NTRU_KEY_E;
wolfSSL 0:1239e9b70ca2 1550
wolfSSL 0:1239e9b70ca2 1551 rc = crypto_ntru_encrypt_subjectPublicKeyInfo2PublicKey(key,&keyLen,
wolfSSL 0:1239e9b70ca2 1552 keyBlob, &next);
wolfSSL 0:1239e9b70ca2 1553 if (rc != NTRU_OK)
wolfSSL 0:1239e9b70ca2 1554 return ASN_NTRU_KEY_E;
wolfSSL 0:1239e9b70ca2 1555
wolfSSL 0:1239e9b70ca2 1556 if ( (next - key) < 0)
wolfSSL 0:1239e9b70ca2 1557 return ASN_NTRU_KEY_E;
wolfSSL 0:1239e9b70ca2 1558
wolfSSL 0:1239e9b70ca2 1559 cert->srcIdx = tmpIdx + (int)(next - key);
wolfSSL 0:1239e9b70ca2 1560
wolfSSL 0:1239e9b70ca2 1561 cert->publicKey = (byte*) XMALLOC(keyLen, cert->heap,
wolfSSL 0:1239e9b70ca2 1562 DYNAMIC_TYPE_PUBLIC_KEY);
wolfSSL 0:1239e9b70ca2 1563 if (cert->publicKey == NULL)
wolfSSL 0:1239e9b70ca2 1564 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 1565 XMEMCPY(cert->publicKey, keyBlob, keyLen);
wolfSSL 0:1239e9b70ca2 1566 cert->pubKeyStored = 1;
wolfSSL 0:1239e9b70ca2 1567 cert->pubKeySize = keyLen;
wolfSSL 0:1239e9b70ca2 1568
wolfSSL 0:1239e9b70ca2 1569 return 0;
wolfSSL 0:1239e9b70ca2 1570 }
wolfSSL 0:1239e9b70ca2 1571 #endif /* HAVE_NTRU */
wolfSSL 0:1239e9b70ca2 1572 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 1573 case ECDSAk:
wolfSSL 0:1239e9b70ca2 1574 {
wolfSSL 0:1239e9b70ca2 1575 int oidSz = 0;
wolfSSL 0:1239e9b70ca2 1576 byte b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1577
wolfSSL 0:1239e9b70ca2 1578 if (b != ASN_OBJECT_ID)
wolfSSL 0:1239e9b70ca2 1579 return ASN_OBJECT_ID_E;
wolfSSL 0:1239e9b70ca2 1580
wolfSSL 0:1239e9b70ca2 1581 if (GetLength(cert->source,&cert->srcIdx,&oidSz,cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1582 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1583
wolfSSL 0:1239e9b70ca2 1584 while(oidSz--)
wolfSSL 0:1239e9b70ca2 1585 cert->pkCurveOID += cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1586
wolfSSL 0:1239e9b70ca2 1587 if (CheckCurve(cert->pkCurveOID) < 0)
wolfSSL 0:1239e9b70ca2 1588 return ECC_CURVE_OID_E;
wolfSSL 0:1239e9b70ca2 1589
wolfSSL 0:1239e9b70ca2 1590 /* key header */
wolfSSL 0:1239e9b70ca2 1591 b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1592 if (b != ASN_BIT_STRING)
wolfSSL 0:1239e9b70ca2 1593 return ASN_BITSTR_E;
wolfSSL 0:1239e9b70ca2 1594
wolfSSL 0:1239e9b70ca2 1595 if (GetLength(cert->source,&cert->srcIdx,&length,cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1596 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1597 b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1598 if (b != 0x00)
wolfSSL 0:1239e9b70ca2 1599 return ASN_EXPECT_0_E;
wolfSSL 0:1239e9b70ca2 1600
wolfSSL 0:1239e9b70ca2 1601 /* actual key, use length - 1 since ate preceding 0 */
wolfSSL 0:1239e9b70ca2 1602 length -= 1;
wolfSSL 0:1239e9b70ca2 1603
wolfSSL 0:1239e9b70ca2 1604 cert->publicKey = (byte*) XMALLOC(length, cert->heap,
wolfSSL 0:1239e9b70ca2 1605 DYNAMIC_TYPE_PUBLIC_KEY);
wolfSSL 0:1239e9b70ca2 1606 if (cert->publicKey == NULL)
wolfSSL 0:1239e9b70ca2 1607 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 1608 XMEMCPY(cert->publicKey, &cert->source[cert->srcIdx], length);
wolfSSL 0:1239e9b70ca2 1609 cert->pubKeyStored = 1;
wolfSSL 0:1239e9b70ca2 1610 cert->pubKeySize = length;
wolfSSL 0:1239e9b70ca2 1611
wolfSSL 0:1239e9b70ca2 1612 cert->srcIdx += length;
wolfSSL 0:1239e9b70ca2 1613
wolfSSL 0:1239e9b70ca2 1614 return 0;
wolfSSL 0:1239e9b70ca2 1615 }
wolfSSL 0:1239e9b70ca2 1616 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 1617 default:
wolfSSL 0:1239e9b70ca2 1618 return ASN_UNKNOWN_OID_E;
wolfSSL 0:1239e9b70ca2 1619 }
wolfSSL 0:1239e9b70ca2 1620 }
wolfSSL 0:1239e9b70ca2 1621
wolfSSL 0:1239e9b70ca2 1622
wolfSSL 0:1239e9b70ca2 1623 /* process NAME, either issuer or subject */
wolfSSL 0:1239e9b70ca2 1624 static int GetName(DecodedCert* cert, int nameType)
wolfSSL 0:1239e9b70ca2 1625 {
wolfSSL 0:1239e9b70ca2 1626 Sha sha; /* MUST have SHA-1 hash for cert names */
wolfSSL 0:1239e9b70ca2 1627 int length; /* length of all distinguished names */
wolfSSL 0:1239e9b70ca2 1628 int dummy;
wolfSSL 0:1239e9b70ca2 1629 int ret;
wolfSSL 0:1239e9b70ca2 1630 char* full = (nameType == ISSUER) ? cert->issuer : cert->subject;
wolfSSL 0:1239e9b70ca2 1631 word32 idx;
wolfSSL 0:1239e9b70ca2 1632 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1633 DecodedName* dName =
wolfSSL 0:1239e9b70ca2 1634 (nameType == ISSUER) ? &cert->issuerName : &cert->subjectName;
wolfSSL 0:1239e9b70ca2 1635 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1636
wolfSSL 0:1239e9b70ca2 1637 CYASSL_MSG("Getting Cert Name");
wolfSSL 0:1239e9b70ca2 1638
wolfSSL 0:1239e9b70ca2 1639 if (cert->source[cert->srcIdx] == ASN_OBJECT_ID) {
wolfSSL 0:1239e9b70ca2 1640 CYASSL_MSG("Trying optional prefix...");
wolfSSL 0:1239e9b70ca2 1641
wolfSSL 0:1239e9b70ca2 1642 if (GetLength(cert->source, &cert->srcIdx, &length, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1643 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1644
wolfSSL 0:1239e9b70ca2 1645 cert->srcIdx += length;
wolfSSL 0:1239e9b70ca2 1646 CYASSL_MSG("Got optional prefix");
wolfSSL 0:1239e9b70ca2 1647 }
wolfSSL 0:1239e9b70ca2 1648
wolfSSL 0:1239e9b70ca2 1649 /* For OCSP, RFC2560 section 4.1.1 states the issuer hash should be
wolfSSL 0:1239e9b70ca2 1650 * calculated over the entire DER encoding of the Name field, including
wolfSSL 0:1239e9b70ca2 1651 * the tag and length. */
wolfSSL 0:1239e9b70ca2 1652 idx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1653 if (GetSequence(cert->source, &cert->srcIdx, &length, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1654 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1655
wolfSSL 0:1239e9b70ca2 1656 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 1657 if (ret != 0)
wolfSSL 0:1239e9b70ca2 1658 return ret;
wolfSSL 0:1239e9b70ca2 1659 ShaUpdate(&sha, &cert->source[idx], length + cert->srcIdx - idx);
wolfSSL 0:1239e9b70ca2 1660 if (nameType == ISSUER)
wolfSSL 0:1239e9b70ca2 1661 ShaFinal(&sha, cert->issuerHash);
wolfSSL 0:1239e9b70ca2 1662 else
wolfSSL 0:1239e9b70ca2 1663 ShaFinal(&sha, cert->subjectHash);
wolfSSL 0:1239e9b70ca2 1664
wolfSSL 0:1239e9b70ca2 1665 length += cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1666 idx = 0;
wolfSSL 0:1239e9b70ca2 1667
wolfSSL 0:1239e9b70ca2 1668 #ifdef HAVE_PKCS7
wolfSSL 0:1239e9b70ca2 1669 /* store pointer to raw issuer */
wolfSSL 0:1239e9b70ca2 1670 if (nameType == ISSUER) {
wolfSSL 0:1239e9b70ca2 1671 cert->issuerRaw = &cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1672 cert->issuerRawLen = length - cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1673 }
wolfSSL 0:1239e9b70ca2 1674 #endif
wolfSSL 0:1239e9b70ca2 1675 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 1676 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1677 cert->subjectRaw = &cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1678 cert->subjectRawLen = length - cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1679 }
wolfSSL 0:1239e9b70ca2 1680 #endif
wolfSSL 0:1239e9b70ca2 1681
wolfSSL 0:1239e9b70ca2 1682 while (cert->srcIdx < (word32)length) {
wolfSSL 0:1239e9b70ca2 1683 byte b;
wolfSSL 0:1239e9b70ca2 1684 byte joint[2];
wolfSSL 0:1239e9b70ca2 1685 byte tooBig = FALSE;
wolfSSL 0:1239e9b70ca2 1686 int oidSz;
wolfSSL 0:1239e9b70ca2 1687
wolfSSL 0:1239e9b70ca2 1688 if (GetSet(cert->source, &cert->srcIdx, &dummy, cert->maxIdx) < 0) {
wolfSSL 0:1239e9b70ca2 1689 CYASSL_MSG("Cert name lacks set header, trying sequence");
wolfSSL 0:1239e9b70ca2 1690 }
wolfSSL 0:1239e9b70ca2 1691
wolfSSL 0:1239e9b70ca2 1692 if (GetSequence(cert->source, &cert->srcIdx, &dummy, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1693 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1694
wolfSSL 0:1239e9b70ca2 1695 b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1696 if (b != ASN_OBJECT_ID)
wolfSSL 0:1239e9b70ca2 1697 return ASN_OBJECT_ID_E;
wolfSSL 0:1239e9b70ca2 1698
wolfSSL 0:1239e9b70ca2 1699 if (GetLength(cert->source, &cert->srcIdx, &oidSz, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1700 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1701
wolfSSL 0:1239e9b70ca2 1702 XMEMCPY(joint, &cert->source[cert->srcIdx], sizeof(joint));
wolfSSL 0:1239e9b70ca2 1703
wolfSSL 0:1239e9b70ca2 1704 /* v1 name types */
wolfSSL 0:1239e9b70ca2 1705 if (joint[0] == 0x55 && joint[1] == 0x04) {
wolfSSL 0:1239e9b70ca2 1706 byte id;
wolfSSL 0:1239e9b70ca2 1707 byte copy = FALSE;
wolfSSL 0:1239e9b70ca2 1708 int strLen;
wolfSSL 0:1239e9b70ca2 1709
wolfSSL 0:1239e9b70ca2 1710 cert->srcIdx += 2;
wolfSSL 0:1239e9b70ca2 1711 id = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 1712 b = cert->source[cert->srcIdx++]; /* strType */
wolfSSL 0:1239e9b70ca2 1713 (void)b; /* may want to validate? */
wolfSSL 0:1239e9b70ca2 1714
wolfSSL 0:1239e9b70ca2 1715 if (GetLength(cert->source, &cert->srcIdx, &strLen,
wolfSSL 0:1239e9b70ca2 1716 cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1717 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1718
wolfSSL 0:1239e9b70ca2 1719 if ( (strLen + 14) > (int)(ASN_NAME_MAX - idx)) {
wolfSSL 0:1239e9b70ca2 1720 /* include biggest pre fix header too 4 = "/serialNumber=" */
wolfSSL 0:1239e9b70ca2 1721 CYASSL_MSG("ASN Name too big, skipping");
wolfSSL 0:1239e9b70ca2 1722 tooBig = TRUE;
wolfSSL 0:1239e9b70ca2 1723 }
wolfSSL 0:1239e9b70ca2 1724
wolfSSL 0:1239e9b70ca2 1725 if (id == ASN_COMMON_NAME) {
wolfSSL 0:1239e9b70ca2 1726 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1727 cert->subjectCN = (char *)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1728 cert->subjectCNLen = strLen;
wolfSSL 0:1239e9b70ca2 1729 }
wolfSSL 0:1239e9b70ca2 1730
wolfSSL 0:1239e9b70ca2 1731 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1732 XMEMCPY(&full[idx], "/CN=", 4);
wolfSSL 0:1239e9b70ca2 1733 idx += 4;
wolfSSL 0:1239e9b70ca2 1734 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1735 }
wolfSSL 0:1239e9b70ca2 1736 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1737 dName->cnIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1738 dName->cnLen = strLen;
wolfSSL 0:1239e9b70ca2 1739 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1740 }
wolfSSL 0:1239e9b70ca2 1741 else if (id == ASN_SUR_NAME) {
wolfSSL 0:1239e9b70ca2 1742 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1743 XMEMCPY(&full[idx], "/SN=", 4);
wolfSSL 0:1239e9b70ca2 1744 idx += 4;
wolfSSL 0:1239e9b70ca2 1745 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1746 }
wolfSSL 0:1239e9b70ca2 1747 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1748 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1749 cert->subjectSN = (char*)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1750 cert->subjectSNLen = strLen;
wolfSSL 0:1239e9b70ca2 1751 }
wolfSSL 0:1239e9b70ca2 1752 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1753 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1754 dName->snIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1755 dName->snLen = strLen;
wolfSSL 0:1239e9b70ca2 1756 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1757 }
wolfSSL 0:1239e9b70ca2 1758 else if (id == ASN_COUNTRY_NAME) {
wolfSSL 0:1239e9b70ca2 1759 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1760 XMEMCPY(&full[idx], "/C=", 3);
wolfSSL 0:1239e9b70ca2 1761 idx += 3;
wolfSSL 0:1239e9b70ca2 1762 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1763 }
wolfSSL 0:1239e9b70ca2 1764 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1765 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1766 cert->subjectC = (char*)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1767 cert->subjectCLen = strLen;
wolfSSL 0:1239e9b70ca2 1768 }
wolfSSL 0:1239e9b70ca2 1769 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1770 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1771 dName->cIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1772 dName->cLen = strLen;
wolfSSL 0:1239e9b70ca2 1773 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1774 }
wolfSSL 0:1239e9b70ca2 1775 else if (id == ASN_LOCALITY_NAME) {
wolfSSL 0:1239e9b70ca2 1776 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1777 XMEMCPY(&full[idx], "/L=", 3);
wolfSSL 0:1239e9b70ca2 1778 idx += 3;
wolfSSL 0:1239e9b70ca2 1779 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1780 }
wolfSSL 0:1239e9b70ca2 1781 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1782 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1783 cert->subjectL = (char*)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1784 cert->subjectLLen = strLen;
wolfSSL 0:1239e9b70ca2 1785 }
wolfSSL 0:1239e9b70ca2 1786 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1787 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1788 dName->lIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1789 dName->lLen = strLen;
wolfSSL 0:1239e9b70ca2 1790 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1791 }
wolfSSL 0:1239e9b70ca2 1792 else if (id == ASN_STATE_NAME) {
wolfSSL 0:1239e9b70ca2 1793 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1794 XMEMCPY(&full[idx], "/ST=", 4);
wolfSSL 0:1239e9b70ca2 1795 idx += 4;
wolfSSL 0:1239e9b70ca2 1796 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1797 }
wolfSSL 0:1239e9b70ca2 1798 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1799 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1800 cert->subjectST = (char*)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1801 cert->subjectSTLen = strLen;
wolfSSL 0:1239e9b70ca2 1802 }
wolfSSL 0:1239e9b70ca2 1803 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1804 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1805 dName->stIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1806 dName->stLen = strLen;
wolfSSL 0:1239e9b70ca2 1807 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1808 }
wolfSSL 0:1239e9b70ca2 1809 else if (id == ASN_ORG_NAME) {
wolfSSL 0:1239e9b70ca2 1810 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1811 XMEMCPY(&full[idx], "/O=", 3);
wolfSSL 0:1239e9b70ca2 1812 idx += 3;
wolfSSL 0:1239e9b70ca2 1813 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1814 }
wolfSSL 0:1239e9b70ca2 1815 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1816 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1817 cert->subjectO = (char*)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1818 cert->subjectOLen = strLen;
wolfSSL 0:1239e9b70ca2 1819 }
wolfSSL 0:1239e9b70ca2 1820 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1821 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1822 dName->oIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1823 dName->oLen = strLen;
wolfSSL 0:1239e9b70ca2 1824 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1825 }
wolfSSL 0:1239e9b70ca2 1826 else if (id == ASN_ORGUNIT_NAME) {
wolfSSL 0:1239e9b70ca2 1827 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1828 XMEMCPY(&full[idx], "/OU=", 4);
wolfSSL 0:1239e9b70ca2 1829 idx += 4;
wolfSSL 0:1239e9b70ca2 1830 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1831 }
wolfSSL 0:1239e9b70ca2 1832 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1833 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1834 cert->subjectOU = (char*)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1835 cert->subjectOULen = strLen;
wolfSSL 0:1239e9b70ca2 1836 }
wolfSSL 0:1239e9b70ca2 1837 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1838 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1839 dName->ouIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1840 dName->ouLen = strLen;
wolfSSL 0:1239e9b70ca2 1841 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1842 }
wolfSSL 0:1239e9b70ca2 1843 else if (id == ASN_SERIAL_NUMBER) {
wolfSSL 0:1239e9b70ca2 1844 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1845 XMEMCPY(&full[idx], "/serialNumber=", 14);
wolfSSL 0:1239e9b70ca2 1846 idx += 14;
wolfSSL 0:1239e9b70ca2 1847 copy = TRUE;
wolfSSL 0:1239e9b70ca2 1848 }
wolfSSL 0:1239e9b70ca2 1849 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1850 dName->snIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1851 dName->snLen = strLen;
wolfSSL 0:1239e9b70ca2 1852 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1853 }
wolfSSL 0:1239e9b70ca2 1854
wolfSSL 0:1239e9b70ca2 1855 if (copy && !tooBig) {
wolfSSL 0:1239e9b70ca2 1856 XMEMCPY(&full[idx], &cert->source[cert->srcIdx], strLen);
wolfSSL 0:1239e9b70ca2 1857 idx += strLen;
wolfSSL 0:1239e9b70ca2 1858 }
wolfSSL 0:1239e9b70ca2 1859
wolfSSL 0:1239e9b70ca2 1860 cert->srcIdx += strLen;
wolfSSL 0:1239e9b70ca2 1861 }
wolfSSL 0:1239e9b70ca2 1862 else {
wolfSSL 0:1239e9b70ca2 1863 /* skip */
wolfSSL 0:1239e9b70ca2 1864 byte email = FALSE;
wolfSSL 0:1239e9b70ca2 1865 byte uid = FALSE;
wolfSSL 0:1239e9b70ca2 1866 int adv;
wolfSSL 0:1239e9b70ca2 1867
wolfSSL 0:1239e9b70ca2 1868 if (joint[0] == 0x2a && joint[1] == 0x86) /* email id hdr */
wolfSSL 0:1239e9b70ca2 1869 email = TRUE;
wolfSSL 0:1239e9b70ca2 1870
wolfSSL 0:1239e9b70ca2 1871 if (joint[0] == 0x9 && joint[1] == 0x92) /* uid id hdr */
wolfSSL 0:1239e9b70ca2 1872 uid = TRUE;
wolfSSL 0:1239e9b70ca2 1873
wolfSSL 0:1239e9b70ca2 1874 cert->srcIdx += oidSz + 1;
wolfSSL 0:1239e9b70ca2 1875
wolfSSL 0:1239e9b70ca2 1876 if (GetLength(cert->source, &cert->srcIdx, &adv, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 1877 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 1878
wolfSSL 0:1239e9b70ca2 1879 if (adv > (int)(ASN_NAME_MAX - idx)) {
wolfSSL 0:1239e9b70ca2 1880 CYASSL_MSG("ASN name too big, skipping");
wolfSSL 0:1239e9b70ca2 1881 tooBig = TRUE;
wolfSSL 0:1239e9b70ca2 1882 }
wolfSSL 0:1239e9b70ca2 1883
wolfSSL 0:1239e9b70ca2 1884 if (email) {
wolfSSL 0:1239e9b70ca2 1885 if ( (14 + adv) > (int)(ASN_NAME_MAX - idx)) {
wolfSSL 0:1239e9b70ca2 1886 CYASSL_MSG("ASN name too big, skipping");
wolfSSL 0:1239e9b70ca2 1887 tooBig = TRUE;
wolfSSL 0:1239e9b70ca2 1888 }
wolfSSL 0:1239e9b70ca2 1889 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1890 XMEMCPY(&full[idx], "/emailAddress=", 14);
wolfSSL 0:1239e9b70ca2 1891 idx += 14;
wolfSSL 0:1239e9b70ca2 1892 }
wolfSSL 0:1239e9b70ca2 1893
wolfSSL 0:1239e9b70ca2 1894 #ifdef CYASSL_CERT_GEN
wolfSSL 0:1239e9b70ca2 1895 if (nameType == SUBJECT) {
wolfSSL 0:1239e9b70ca2 1896 cert->subjectEmail = (char*)&cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 1897 cert->subjectEmailLen = adv;
wolfSSL 0:1239e9b70ca2 1898 }
wolfSSL 0:1239e9b70ca2 1899 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 1900 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1901 dName->emailIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1902 dName->emailLen = adv;
wolfSSL 0:1239e9b70ca2 1903 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1904 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 1905 {
wolfSSL 0:1239e9b70ca2 1906 DNS_entry* emailName = NULL;
wolfSSL 0:1239e9b70ca2 1907
wolfSSL 0:1239e9b70ca2 1908 emailName = (DNS_entry*)XMALLOC(sizeof(DNS_entry),
wolfSSL 0:1239e9b70ca2 1909 cert->heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 1910 if (emailName == NULL) {
wolfSSL 0:1239e9b70ca2 1911 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 1912 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 1913 }
wolfSSL 0:1239e9b70ca2 1914 emailName->name = (char*)XMALLOC(adv + 1,
wolfSSL 0:1239e9b70ca2 1915 cert->heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 1916 if (emailName->name == NULL) {
wolfSSL 0:1239e9b70ca2 1917 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 1918 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 1919 }
wolfSSL 0:1239e9b70ca2 1920 XMEMCPY(emailName->name,
wolfSSL 0:1239e9b70ca2 1921 &cert->source[cert->srcIdx], adv);
wolfSSL 0:1239e9b70ca2 1922 emailName->name[adv] = 0;
wolfSSL 0:1239e9b70ca2 1923
wolfSSL 0:1239e9b70ca2 1924 emailName->next = cert->altEmailNames;
wolfSSL 0:1239e9b70ca2 1925 cert->altEmailNames = emailName;
wolfSSL 0:1239e9b70ca2 1926 }
wolfSSL 0:1239e9b70ca2 1927 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 1928 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1929 XMEMCPY(&full[idx], &cert->source[cert->srcIdx], adv);
wolfSSL 0:1239e9b70ca2 1930 idx += adv;
wolfSSL 0:1239e9b70ca2 1931 }
wolfSSL 0:1239e9b70ca2 1932 }
wolfSSL 0:1239e9b70ca2 1933
wolfSSL 0:1239e9b70ca2 1934 if (uid) {
wolfSSL 0:1239e9b70ca2 1935 if ( (5 + adv) > (int)(ASN_NAME_MAX - idx)) {
wolfSSL 0:1239e9b70ca2 1936 CYASSL_MSG("ASN name too big, skipping");
wolfSSL 0:1239e9b70ca2 1937 tooBig = TRUE;
wolfSSL 0:1239e9b70ca2 1938 }
wolfSSL 0:1239e9b70ca2 1939 if (!tooBig) {
wolfSSL 0:1239e9b70ca2 1940 XMEMCPY(&full[idx], "/UID=", 5);
wolfSSL 0:1239e9b70ca2 1941 idx += 5;
wolfSSL 0:1239e9b70ca2 1942
wolfSSL 0:1239e9b70ca2 1943 XMEMCPY(&full[idx], &cert->source[cert->srcIdx], adv);
wolfSSL 0:1239e9b70ca2 1944 idx += adv;
wolfSSL 0:1239e9b70ca2 1945 }
wolfSSL 0:1239e9b70ca2 1946 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1947 dName->uidIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 1948 dName->uidLen = adv;
wolfSSL 0:1239e9b70ca2 1949 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 1950 }
wolfSSL 0:1239e9b70ca2 1951
wolfSSL 0:1239e9b70ca2 1952 cert->srcIdx += adv;
wolfSSL 0:1239e9b70ca2 1953 }
wolfSSL 0:1239e9b70ca2 1954 }
wolfSSL 0:1239e9b70ca2 1955 full[idx++] = 0;
wolfSSL 0:1239e9b70ca2 1956
wolfSSL 0:1239e9b70ca2 1957 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 1958 {
wolfSSL 0:1239e9b70ca2 1959 int totalLen = 0;
wolfSSL 0:1239e9b70ca2 1960
wolfSSL 0:1239e9b70ca2 1961 if (dName->cnLen != 0)
wolfSSL 0:1239e9b70ca2 1962 totalLen += dName->cnLen + 4;
wolfSSL 0:1239e9b70ca2 1963 if (dName->snLen != 0)
wolfSSL 0:1239e9b70ca2 1964 totalLen += dName->snLen + 4;
wolfSSL 0:1239e9b70ca2 1965 if (dName->cLen != 0)
wolfSSL 0:1239e9b70ca2 1966 totalLen += dName->cLen + 3;
wolfSSL 0:1239e9b70ca2 1967 if (dName->lLen != 0)
wolfSSL 0:1239e9b70ca2 1968 totalLen += dName->lLen + 3;
wolfSSL 0:1239e9b70ca2 1969 if (dName->stLen != 0)
wolfSSL 0:1239e9b70ca2 1970 totalLen += dName->stLen + 4;
wolfSSL 0:1239e9b70ca2 1971 if (dName->oLen != 0)
wolfSSL 0:1239e9b70ca2 1972 totalLen += dName->oLen + 3;
wolfSSL 0:1239e9b70ca2 1973 if (dName->ouLen != 0)
wolfSSL 0:1239e9b70ca2 1974 totalLen += dName->ouLen + 4;
wolfSSL 0:1239e9b70ca2 1975 if (dName->emailLen != 0)
wolfSSL 0:1239e9b70ca2 1976 totalLen += dName->emailLen + 14;
wolfSSL 0:1239e9b70ca2 1977 if (dName->uidLen != 0)
wolfSSL 0:1239e9b70ca2 1978 totalLen += dName->uidLen + 5;
wolfSSL 0:1239e9b70ca2 1979 if (dName->serialLen != 0)
wolfSSL 0:1239e9b70ca2 1980 totalLen += dName->serialLen + 14;
wolfSSL 0:1239e9b70ca2 1981
wolfSSL 0:1239e9b70ca2 1982 dName->fullName = (char*)XMALLOC(totalLen + 1, NULL, DYNAMIC_TYPE_X509);
wolfSSL 0:1239e9b70ca2 1983 if (dName->fullName != NULL) {
wolfSSL 0:1239e9b70ca2 1984 idx = 0;
wolfSSL 0:1239e9b70ca2 1985
wolfSSL 0:1239e9b70ca2 1986 if (dName->cnLen != 0) {
wolfSSL 0:1239e9b70ca2 1987 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 1988 XMEMCPY(&dName->fullName[idx], "/CN=", 4);
wolfSSL 0:1239e9b70ca2 1989 idx += 4;
wolfSSL 0:1239e9b70ca2 1990 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 1991 &cert->source[dName->cnIdx], dName->cnLen);
wolfSSL 0:1239e9b70ca2 1992 dName->cnIdx = idx;
wolfSSL 0:1239e9b70ca2 1993 idx += dName->cnLen;
wolfSSL 0:1239e9b70ca2 1994 }
wolfSSL 0:1239e9b70ca2 1995 if (dName->snLen != 0) {
wolfSSL 0:1239e9b70ca2 1996 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 1997 XMEMCPY(&dName->fullName[idx], "/SN=", 4);
wolfSSL 0:1239e9b70ca2 1998 idx += 4;
wolfSSL 0:1239e9b70ca2 1999 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2000 &cert->source[dName->snIdx], dName->snLen);
wolfSSL 0:1239e9b70ca2 2001 dName->snIdx = idx;
wolfSSL 0:1239e9b70ca2 2002 idx += dName->snLen;
wolfSSL 0:1239e9b70ca2 2003 }
wolfSSL 0:1239e9b70ca2 2004 if (dName->cLen != 0) {
wolfSSL 0:1239e9b70ca2 2005 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2006 XMEMCPY(&dName->fullName[idx], "/C=", 3);
wolfSSL 0:1239e9b70ca2 2007 idx += 3;
wolfSSL 0:1239e9b70ca2 2008 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2009 &cert->source[dName->cIdx], dName->cLen);
wolfSSL 0:1239e9b70ca2 2010 dName->cIdx = idx;
wolfSSL 0:1239e9b70ca2 2011 idx += dName->cLen;
wolfSSL 0:1239e9b70ca2 2012 }
wolfSSL 0:1239e9b70ca2 2013 if (dName->lLen != 0) {
wolfSSL 0:1239e9b70ca2 2014 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2015 XMEMCPY(&dName->fullName[idx], "/L=", 3);
wolfSSL 0:1239e9b70ca2 2016 idx += 3;
wolfSSL 0:1239e9b70ca2 2017 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2018 &cert->source[dName->lIdx], dName->lLen);
wolfSSL 0:1239e9b70ca2 2019 dName->lIdx = idx;
wolfSSL 0:1239e9b70ca2 2020 idx += dName->lLen;
wolfSSL 0:1239e9b70ca2 2021 }
wolfSSL 0:1239e9b70ca2 2022 if (dName->stLen != 0) {
wolfSSL 0:1239e9b70ca2 2023 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2024 XMEMCPY(&dName->fullName[idx], "/ST=", 4);
wolfSSL 0:1239e9b70ca2 2025 idx += 4;
wolfSSL 0:1239e9b70ca2 2026 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2027 &cert->source[dName->stIdx], dName->stLen);
wolfSSL 0:1239e9b70ca2 2028 dName->stIdx = idx;
wolfSSL 0:1239e9b70ca2 2029 idx += dName->stLen;
wolfSSL 0:1239e9b70ca2 2030 }
wolfSSL 0:1239e9b70ca2 2031 if (dName->oLen != 0) {
wolfSSL 0:1239e9b70ca2 2032 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2033 XMEMCPY(&dName->fullName[idx], "/O=", 3);
wolfSSL 0:1239e9b70ca2 2034 idx += 3;
wolfSSL 0:1239e9b70ca2 2035 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2036 &cert->source[dName->oIdx], dName->oLen);
wolfSSL 0:1239e9b70ca2 2037 dName->oIdx = idx;
wolfSSL 0:1239e9b70ca2 2038 idx += dName->oLen;
wolfSSL 0:1239e9b70ca2 2039 }
wolfSSL 0:1239e9b70ca2 2040 if (dName->ouLen != 0) {
wolfSSL 0:1239e9b70ca2 2041 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2042 XMEMCPY(&dName->fullName[idx], "/OU=", 4);
wolfSSL 0:1239e9b70ca2 2043 idx += 4;
wolfSSL 0:1239e9b70ca2 2044 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2045 &cert->source[dName->ouIdx], dName->ouLen);
wolfSSL 0:1239e9b70ca2 2046 dName->ouIdx = idx;
wolfSSL 0:1239e9b70ca2 2047 idx += dName->ouLen;
wolfSSL 0:1239e9b70ca2 2048 }
wolfSSL 0:1239e9b70ca2 2049 if (dName->emailLen != 0) {
wolfSSL 0:1239e9b70ca2 2050 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2051 XMEMCPY(&dName->fullName[idx], "/emailAddress=", 14);
wolfSSL 0:1239e9b70ca2 2052 idx += 14;
wolfSSL 0:1239e9b70ca2 2053 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2054 &cert->source[dName->emailIdx], dName->emailLen);
wolfSSL 0:1239e9b70ca2 2055 dName->emailIdx = idx;
wolfSSL 0:1239e9b70ca2 2056 idx += dName->emailLen;
wolfSSL 0:1239e9b70ca2 2057 }
wolfSSL 0:1239e9b70ca2 2058 if (dName->uidLen != 0) {
wolfSSL 0:1239e9b70ca2 2059 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2060 XMEMCPY(&dName->fullName[idx], "/UID=", 5);
wolfSSL 0:1239e9b70ca2 2061 idx += 5;
wolfSSL 0:1239e9b70ca2 2062 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2063 &cert->source[dName->uidIdx], dName->uidLen);
wolfSSL 0:1239e9b70ca2 2064 dName->uidIdx = idx;
wolfSSL 0:1239e9b70ca2 2065 idx += dName->uidLen;
wolfSSL 0:1239e9b70ca2 2066 }
wolfSSL 0:1239e9b70ca2 2067 if (dName->serialLen != 0) {
wolfSSL 0:1239e9b70ca2 2068 dName->entryCount++;
wolfSSL 0:1239e9b70ca2 2069 XMEMCPY(&dName->fullName[idx], "/serialNumber=", 14);
wolfSSL 0:1239e9b70ca2 2070 idx += 14;
wolfSSL 0:1239e9b70ca2 2071 XMEMCPY(&dName->fullName[idx],
wolfSSL 0:1239e9b70ca2 2072 &cert->source[dName->serialIdx], dName->serialLen);
wolfSSL 0:1239e9b70ca2 2073 dName->serialIdx = idx;
wolfSSL 0:1239e9b70ca2 2074 idx += dName->serialLen;
wolfSSL 0:1239e9b70ca2 2075 }
wolfSSL 0:1239e9b70ca2 2076 dName->fullName[idx] = '\0';
wolfSSL 0:1239e9b70ca2 2077 dName->fullNameLen = totalLen;
wolfSSL 0:1239e9b70ca2 2078 }
wolfSSL 0:1239e9b70ca2 2079 }
wolfSSL 0:1239e9b70ca2 2080 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 2081
wolfSSL 0:1239e9b70ca2 2082 return 0;
wolfSSL 0:1239e9b70ca2 2083 }
wolfSSL 0:1239e9b70ca2 2084
wolfSSL 0:1239e9b70ca2 2085
wolfSSL 0:1239e9b70ca2 2086 #ifndef NO_TIME_H
wolfSSL 0:1239e9b70ca2 2087
wolfSSL 0:1239e9b70ca2 2088 /* to the second */
wolfSSL 0:1239e9b70ca2 2089 static int DateGreaterThan(const struct tm* a, const struct tm* b)
wolfSSL 0:1239e9b70ca2 2090 {
wolfSSL 0:1239e9b70ca2 2091 if (a->tm_year > b->tm_year)
wolfSSL 0:1239e9b70ca2 2092 return 1;
wolfSSL 0:1239e9b70ca2 2093
wolfSSL 0:1239e9b70ca2 2094 if (a->tm_year == b->tm_year && a->tm_mon > b->tm_mon)
wolfSSL 0:1239e9b70ca2 2095 return 1;
wolfSSL 0:1239e9b70ca2 2096
wolfSSL 0:1239e9b70ca2 2097 if (a->tm_year == b->tm_year && a->tm_mon == b->tm_mon &&
wolfSSL 0:1239e9b70ca2 2098 a->tm_mday > b->tm_mday)
wolfSSL 0:1239e9b70ca2 2099 return 1;
wolfSSL 0:1239e9b70ca2 2100
wolfSSL 0:1239e9b70ca2 2101 if (a->tm_year == b->tm_year && a->tm_mon == b->tm_mon &&
wolfSSL 0:1239e9b70ca2 2102 a->tm_mday == b->tm_mday && a->tm_hour > b->tm_hour)
wolfSSL 0:1239e9b70ca2 2103 return 1;
wolfSSL 0:1239e9b70ca2 2104
wolfSSL 0:1239e9b70ca2 2105 if (a->tm_year == b->tm_year && a->tm_mon == b->tm_mon &&
wolfSSL 0:1239e9b70ca2 2106 a->tm_mday == b->tm_mday && a->tm_hour == b->tm_hour &&
wolfSSL 0:1239e9b70ca2 2107 a->tm_min > b->tm_min)
wolfSSL 0:1239e9b70ca2 2108 return 1;
wolfSSL 0:1239e9b70ca2 2109
wolfSSL 0:1239e9b70ca2 2110 if (a->tm_year == b->tm_year && a->tm_mon == b->tm_mon &&
wolfSSL 0:1239e9b70ca2 2111 a->tm_mday == b->tm_mday && a->tm_hour == b->tm_hour &&
wolfSSL 0:1239e9b70ca2 2112 a->tm_min == b->tm_min && a->tm_sec > b->tm_sec)
wolfSSL 0:1239e9b70ca2 2113 return 1;
wolfSSL 0:1239e9b70ca2 2114
wolfSSL 0:1239e9b70ca2 2115 return 0; /* false */
wolfSSL 0:1239e9b70ca2 2116 }
wolfSSL 0:1239e9b70ca2 2117
wolfSSL 0:1239e9b70ca2 2118
wolfSSL 0:1239e9b70ca2 2119 static INLINE int DateLessThan(const struct tm* a, const struct tm* b)
wolfSSL 0:1239e9b70ca2 2120 {
wolfSSL 0:1239e9b70ca2 2121 return !DateGreaterThan(a,b);
wolfSSL 0:1239e9b70ca2 2122 }
wolfSSL 0:1239e9b70ca2 2123
wolfSSL 0:1239e9b70ca2 2124
wolfSSL 0:1239e9b70ca2 2125 /* like atoi but only use first byte */
wolfSSL 0:1239e9b70ca2 2126 /* Make sure before and after dates are valid */
wolfSSL 0:1239e9b70ca2 2127 int ValidateDate(const byte* date, byte format, int dateType)
wolfSSL 0:1239e9b70ca2 2128 {
wolfSSL 0:1239e9b70ca2 2129 time_t ltime;
wolfSSL 0:1239e9b70ca2 2130 struct tm certTime;
wolfSSL 0:1239e9b70ca2 2131 struct tm* localTime;
wolfSSL 0:1239e9b70ca2 2132 int i = 0;
wolfSSL 0:1239e9b70ca2 2133
wolfSSL 0:1239e9b70ca2 2134 ltime = XTIME(0);
wolfSSL 0:1239e9b70ca2 2135 XMEMSET(&certTime, 0, sizeof(certTime));
wolfSSL 0:1239e9b70ca2 2136
wolfSSL 0:1239e9b70ca2 2137 if (format == ASN_UTC_TIME) {
wolfSSL 0:1239e9b70ca2 2138 if (btoi(date[0]) >= 5)
wolfSSL 0:1239e9b70ca2 2139 certTime.tm_year = 1900;
wolfSSL 0:1239e9b70ca2 2140 else
wolfSSL 0:1239e9b70ca2 2141 certTime.tm_year = 2000;
wolfSSL 0:1239e9b70ca2 2142 }
wolfSSL 0:1239e9b70ca2 2143 else { /* format == GENERALIZED_TIME */
wolfSSL 0:1239e9b70ca2 2144 certTime.tm_year += btoi(date[i++]) * 1000;
wolfSSL 0:1239e9b70ca2 2145 certTime.tm_year += btoi(date[i++]) * 100;
wolfSSL 0:1239e9b70ca2 2146 }
wolfSSL 0:1239e9b70ca2 2147
wolfSSL 0:1239e9b70ca2 2148 GetTime(&certTime.tm_year, date, &i); certTime.tm_year -= 1900; /* adjust */
wolfSSL 0:1239e9b70ca2 2149 GetTime(&certTime.tm_mon, date, &i); certTime.tm_mon -= 1; /* adjust */
wolfSSL 0:1239e9b70ca2 2150 GetTime(&certTime.tm_mday, date, &i);
wolfSSL 0:1239e9b70ca2 2151 GetTime(&certTime.tm_hour, date, &i);
wolfSSL 0:1239e9b70ca2 2152 GetTime(&certTime.tm_min, date, &i);
wolfSSL 0:1239e9b70ca2 2153 GetTime(&certTime.tm_sec, date, &i);
wolfSSL 0:1239e9b70ca2 2154
wolfSSL 0:1239e9b70ca2 2155 if (date[i] != 'Z') { /* only Zulu supported for this profile */
wolfSSL 0:1239e9b70ca2 2156 CYASSL_MSG("Only Zulu time supported for this profile");
wolfSSL 0:1239e9b70ca2 2157 return 0;
wolfSSL 0:1239e9b70ca2 2158 }
wolfSSL 0:1239e9b70ca2 2159
wolfSSL 0:1239e9b70ca2 2160 localTime = XGMTIME(&ltime);
wolfSSL 0:1239e9b70ca2 2161
wolfSSL 0:1239e9b70ca2 2162 if (dateType == BEFORE) {
wolfSSL 0:1239e9b70ca2 2163 if (DateLessThan(localTime, &certTime))
wolfSSL 0:1239e9b70ca2 2164 return 0;
wolfSSL 0:1239e9b70ca2 2165 }
wolfSSL 0:1239e9b70ca2 2166 else
wolfSSL 0:1239e9b70ca2 2167 if (DateGreaterThan(localTime, &certTime))
wolfSSL 0:1239e9b70ca2 2168 return 0;
wolfSSL 0:1239e9b70ca2 2169
wolfSSL 0:1239e9b70ca2 2170 return 1;
wolfSSL 0:1239e9b70ca2 2171 }
wolfSSL 0:1239e9b70ca2 2172
wolfSSL 0:1239e9b70ca2 2173 #endif /* NO_TIME_H */
wolfSSL 0:1239e9b70ca2 2174
wolfSSL 0:1239e9b70ca2 2175
wolfSSL 0:1239e9b70ca2 2176 static int GetDate(DecodedCert* cert, int dateType)
wolfSSL 0:1239e9b70ca2 2177 {
wolfSSL 0:1239e9b70ca2 2178 int length;
wolfSSL 0:1239e9b70ca2 2179 byte date[MAX_DATE_SIZE];
wolfSSL 0:1239e9b70ca2 2180 byte b;
wolfSSL 0:1239e9b70ca2 2181 word32 startIdx = 0;
wolfSSL 0:1239e9b70ca2 2182
wolfSSL 0:1239e9b70ca2 2183 if (dateType == BEFORE)
wolfSSL 0:1239e9b70ca2 2184 cert->beforeDate = &cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 2185 else
wolfSSL 0:1239e9b70ca2 2186 cert->afterDate = &cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 2187 startIdx = cert->srcIdx;
wolfSSL 0:1239e9b70ca2 2188
wolfSSL 0:1239e9b70ca2 2189 b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 2190 if (b != ASN_UTC_TIME && b != ASN_GENERALIZED_TIME)
wolfSSL 0:1239e9b70ca2 2191 return ASN_TIME_E;
wolfSSL 0:1239e9b70ca2 2192
wolfSSL 0:1239e9b70ca2 2193 if (GetLength(cert->source, &cert->srcIdx, &length, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 2194 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 2195
wolfSSL 0:1239e9b70ca2 2196 if (length > MAX_DATE_SIZE || length < MIN_DATE_SIZE)
wolfSSL 0:1239e9b70ca2 2197 return ASN_DATE_SZ_E;
wolfSSL 0:1239e9b70ca2 2198
wolfSSL 0:1239e9b70ca2 2199 XMEMCPY(date, &cert->source[cert->srcIdx], length);
wolfSSL 0:1239e9b70ca2 2200 cert->srcIdx += length;
wolfSSL 0:1239e9b70ca2 2201
wolfSSL 0:1239e9b70ca2 2202 if (dateType == BEFORE)
wolfSSL 0:1239e9b70ca2 2203 cert->beforeDateLen = cert->srcIdx - startIdx;
wolfSSL 0:1239e9b70ca2 2204 else
wolfSSL 0:1239e9b70ca2 2205 cert->afterDateLen = cert->srcIdx - startIdx;
wolfSSL 0:1239e9b70ca2 2206
wolfSSL 0:1239e9b70ca2 2207 if (!XVALIDATE_DATE(date, b, dateType)) {
wolfSSL 0:1239e9b70ca2 2208 if (dateType == BEFORE)
wolfSSL 0:1239e9b70ca2 2209 return ASN_BEFORE_DATE_E;
wolfSSL 0:1239e9b70ca2 2210 else
wolfSSL 0:1239e9b70ca2 2211 return ASN_AFTER_DATE_E;
wolfSSL 0:1239e9b70ca2 2212 }
wolfSSL 0:1239e9b70ca2 2213
wolfSSL 0:1239e9b70ca2 2214 return 0;
wolfSSL 0:1239e9b70ca2 2215 }
wolfSSL 0:1239e9b70ca2 2216
wolfSSL 0:1239e9b70ca2 2217
wolfSSL 0:1239e9b70ca2 2218 static int GetValidity(DecodedCert* cert, int verify)
wolfSSL 0:1239e9b70ca2 2219 {
wolfSSL 0:1239e9b70ca2 2220 int length;
wolfSSL 0:1239e9b70ca2 2221 int badDate = 0;
wolfSSL 0:1239e9b70ca2 2222
wolfSSL 0:1239e9b70ca2 2223 if (GetSequence(cert->source, &cert->srcIdx, &length, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 2224 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 2225
wolfSSL 0:1239e9b70ca2 2226 if (GetDate(cert, BEFORE) < 0 && verify)
wolfSSL 0:1239e9b70ca2 2227 badDate = ASN_BEFORE_DATE_E; /* continue parsing */
wolfSSL 0:1239e9b70ca2 2228
wolfSSL 0:1239e9b70ca2 2229 if (GetDate(cert, AFTER) < 0 && verify)
wolfSSL 0:1239e9b70ca2 2230 return ASN_AFTER_DATE_E;
wolfSSL 0:1239e9b70ca2 2231
wolfSSL 0:1239e9b70ca2 2232 if (badDate != 0)
wolfSSL 0:1239e9b70ca2 2233 return badDate;
wolfSSL 0:1239e9b70ca2 2234
wolfSSL 0:1239e9b70ca2 2235 return 0;
wolfSSL 0:1239e9b70ca2 2236 }
wolfSSL 0:1239e9b70ca2 2237
wolfSSL 0:1239e9b70ca2 2238
wolfSSL 0:1239e9b70ca2 2239 int DecodeToKey(DecodedCert* cert, int verify)
wolfSSL 0:1239e9b70ca2 2240 {
wolfSSL 0:1239e9b70ca2 2241 int badDate = 0;
wolfSSL 0:1239e9b70ca2 2242 int ret;
wolfSSL 0:1239e9b70ca2 2243
wolfSSL 0:1239e9b70ca2 2244 if ( (ret = GetCertHeader(cert)) < 0)
wolfSSL 0:1239e9b70ca2 2245 return ret;
wolfSSL 0:1239e9b70ca2 2246
wolfSSL 0:1239e9b70ca2 2247 CYASSL_MSG("Got Cert Header");
wolfSSL 0:1239e9b70ca2 2248
wolfSSL 0:1239e9b70ca2 2249 if ( (ret = GetAlgoId(cert->source, &cert->srcIdx, &cert->signatureOID,
wolfSSL 0:1239e9b70ca2 2250 cert->maxIdx)) < 0)
wolfSSL 0:1239e9b70ca2 2251 return ret;
wolfSSL 0:1239e9b70ca2 2252
wolfSSL 0:1239e9b70ca2 2253 CYASSL_MSG("Got Algo ID");
wolfSSL 0:1239e9b70ca2 2254
wolfSSL 0:1239e9b70ca2 2255 if ( (ret = GetName(cert, ISSUER)) < 0)
wolfSSL 0:1239e9b70ca2 2256 return ret;
wolfSSL 0:1239e9b70ca2 2257
wolfSSL 0:1239e9b70ca2 2258 if ( (ret = GetValidity(cert, verify)) < 0)
wolfSSL 0:1239e9b70ca2 2259 badDate = ret;
wolfSSL 0:1239e9b70ca2 2260
wolfSSL 0:1239e9b70ca2 2261 if ( (ret = GetName(cert, SUBJECT)) < 0)
wolfSSL 0:1239e9b70ca2 2262 return ret;
wolfSSL 0:1239e9b70ca2 2263
wolfSSL 0:1239e9b70ca2 2264 CYASSL_MSG("Got Subject Name");
wolfSSL 0:1239e9b70ca2 2265
wolfSSL 0:1239e9b70ca2 2266 if ( (ret = GetKey(cert)) < 0)
wolfSSL 0:1239e9b70ca2 2267 return ret;
wolfSSL 0:1239e9b70ca2 2268
wolfSSL 0:1239e9b70ca2 2269 CYASSL_MSG("Got Key");
wolfSSL 0:1239e9b70ca2 2270
wolfSSL 0:1239e9b70ca2 2271 if (badDate != 0)
wolfSSL 0:1239e9b70ca2 2272 return badDate;
wolfSSL 0:1239e9b70ca2 2273
wolfSSL 0:1239e9b70ca2 2274 return ret;
wolfSSL 0:1239e9b70ca2 2275 }
wolfSSL 0:1239e9b70ca2 2276
wolfSSL 0:1239e9b70ca2 2277
wolfSSL 0:1239e9b70ca2 2278 static int GetSignature(DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 2279 {
wolfSSL 0:1239e9b70ca2 2280 int length;
wolfSSL 0:1239e9b70ca2 2281 byte b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 2282
wolfSSL 0:1239e9b70ca2 2283 if (b != ASN_BIT_STRING)
wolfSSL 0:1239e9b70ca2 2284 return ASN_BITSTR_E;
wolfSSL 0:1239e9b70ca2 2285
wolfSSL 0:1239e9b70ca2 2286 if (GetLength(cert->source, &cert->srcIdx, &length, cert->maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 2287 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 2288
wolfSSL 0:1239e9b70ca2 2289 cert->sigLength = length;
wolfSSL 0:1239e9b70ca2 2290
wolfSSL 0:1239e9b70ca2 2291 b = cert->source[cert->srcIdx++];
wolfSSL 0:1239e9b70ca2 2292 if (b != 0x00)
wolfSSL 0:1239e9b70ca2 2293 return ASN_EXPECT_0_E;
wolfSSL 0:1239e9b70ca2 2294
wolfSSL 0:1239e9b70ca2 2295 cert->sigLength--;
wolfSSL 0:1239e9b70ca2 2296 cert->signature = &cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 2297 cert->srcIdx += cert->sigLength;
wolfSSL 0:1239e9b70ca2 2298
wolfSSL 0:1239e9b70ca2 2299 return 0;
wolfSSL 0:1239e9b70ca2 2300 }
wolfSSL 0:1239e9b70ca2 2301
wolfSSL 0:1239e9b70ca2 2302
wolfSSL 0:1239e9b70ca2 2303 static word32 SetDigest(const byte* digest, word32 digSz, byte* output)
wolfSSL 0:1239e9b70ca2 2304 {
wolfSSL 0:1239e9b70ca2 2305 output[0] = ASN_OCTET_STRING;
wolfSSL 0:1239e9b70ca2 2306 output[1] = (byte)digSz;
wolfSSL 0:1239e9b70ca2 2307 XMEMCPY(&output[2], digest, digSz);
wolfSSL 0:1239e9b70ca2 2308
wolfSSL 0:1239e9b70ca2 2309 return digSz + 2;
wolfSSL 0:1239e9b70ca2 2310 }
wolfSSL 0:1239e9b70ca2 2311
wolfSSL 0:1239e9b70ca2 2312
wolfSSL 0:1239e9b70ca2 2313 static word32 BytePrecision(word32 value)
wolfSSL 0:1239e9b70ca2 2314 {
wolfSSL 0:1239e9b70ca2 2315 word32 i;
wolfSSL 0:1239e9b70ca2 2316 for (i = sizeof(value); i; --i)
wolfSSL 0:1239e9b70ca2 2317 if (value >> ((i - 1) * CYASSL_BIT_SIZE))
wolfSSL 0:1239e9b70ca2 2318 break;
wolfSSL 0:1239e9b70ca2 2319
wolfSSL 0:1239e9b70ca2 2320 return i;
wolfSSL 0:1239e9b70ca2 2321 }
wolfSSL 0:1239e9b70ca2 2322
wolfSSL 0:1239e9b70ca2 2323
wolfSSL 0:1239e9b70ca2 2324 CYASSL_LOCAL word32 SetLength(word32 length, byte* output)
wolfSSL 0:1239e9b70ca2 2325 {
wolfSSL 0:1239e9b70ca2 2326 word32 i = 0, j;
wolfSSL 0:1239e9b70ca2 2327
wolfSSL 0:1239e9b70ca2 2328 if (length < ASN_LONG_LENGTH)
wolfSSL 0:1239e9b70ca2 2329 output[i++] = (byte)length;
wolfSSL 0:1239e9b70ca2 2330 else {
wolfSSL 0:1239e9b70ca2 2331 output[i++] = (byte)(BytePrecision(length) | ASN_LONG_LENGTH);
wolfSSL 0:1239e9b70ca2 2332
wolfSSL 0:1239e9b70ca2 2333 for (j = BytePrecision(length); j; --j) {
wolfSSL 0:1239e9b70ca2 2334 output[i] = (byte)(length >> ((j - 1) * CYASSL_BIT_SIZE));
wolfSSL 0:1239e9b70ca2 2335 i++;
wolfSSL 0:1239e9b70ca2 2336 }
wolfSSL 0:1239e9b70ca2 2337 }
wolfSSL 0:1239e9b70ca2 2338
wolfSSL 0:1239e9b70ca2 2339 return i;
wolfSSL 0:1239e9b70ca2 2340 }
wolfSSL 0:1239e9b70ca2 2341
wolfSSL 0:1239e9b70ca2 2342
wolfSSL 0:1239e9b70ca2 2343 CYASSL_LOCAL word32 SetSequence(word32 len, byte* output)
wolfSSL 0:1239e9b70ca2 2344 {
wolfSSL 0:1239e9b70ca2 2345 output[0] = ASN_SEQUENCE | ASN_CONSTRUCTED;
wolfSSL 0:1239e9b70ca2 2346 return SetLength(len, output + 1) + 1;
wolfSSL 0:1239e9b70ca2 2347 }
wolfSSL 0:1239e9b70ca2 2348
wolfSSL 0:1239e9b70ca2 2349 CYASSL_LOCAL word32 SetOctetString(word32 len, byte* output)
wolfSSL 0:1239e9b70ca2 2350 {
wolfSSL 0:1239e9b70ca2 2351 output[0] = ASN_OCTET_STRING;
wolfSSL 0:1239e9b70ca2 2352 return SetLength(len, output + 1) + 1;
wolfSSL 0:1239e9b70ca2 2353 }
wolfSSL 0:1239e9b70ca2 2354
wolfSSL 0:1239e9b70ca2 2355 /* Write a set header to output */
wolfSSL 0:1239e9b70ca2 2356 CYASSL_LOCAL word32 SetSet(word32 len, byte* output)
wolfSSL 0:1239e9b70ca2 2357 {
wolfSSL 0:1239e9b70ca2 2358 output[0] = ASN_SET | ASN_CONSTRUCTED;
wolfSSL 0:1239e9b70ca2 2359 return SetLength(len, output + 1) + 1;
wolfSSL 0:1239e9b70ca2 2360 }
wolfSSL 0:1239e9b70ca2 2361
wolfSSL 0:1239e9b70ca2 2362 CYASSL_LOCAL word32 SetImplicit(byte tag, byte number, word32 len, byte* output)
wolfSSL 0:1239e9b70ca2 2363 {
wolfSSL 0:1239e9b70ca2 2364
wolfSSL 0:1239e9b70ca2 2365 output[0] = ((tag == ASN_SEQUENCE || tag == ASN_SET) ? ASN_CONSTRUCTED : 0)
wolfSSL 0:1239e9b70ca2 2366 | ASN_CONTEXT_SPECIFIC | number;
wolfSSL 0:1239e9b70ca2 2367 return SetLength(len, output + 1) + 1;
wolfSSL 0:1239e9b70ca2 2368 }
wolfSSL 0:1239e9b70ca2 2369
wolfSSL 0:1239e9b70ca2 2370 CYASSL_LOCAL word32 SetExplicit(byte number, word32 len, byte* output)
wolfSSL 0:1239e9b70ca2 2371 {
wolfSSL 0:1239e9b70ca2 2372 output[0] = ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | number;
wolfSSL 0:1239e9b70ca2 2373 return SetLength(len, output + 1) + 1;
wolfSSL 0:1239e9b70ca2 2374 }
wolfSSL 0:1239e9b70ca2 2375
wolfSSL 0:1239e9b70ca2 2376
wolfSSL 0:1239e9b70ca2 2377 #if defined(HAVE_ECC) && defined(CYASSL_CERT_GEN)
wolfSSL 0:1239e9b70ca2 2378
wolfSSL 0:1239e9b70ca2 2379 static word32 SetCurve(ecc_key* key, byte* output)
wolfSSL 0:1239e9b70ca2 2380 {
wolfSSL 0:1239e9b70ca2 2381
wolfSSL 0:1239e9b70ca2 2382 /* curve types */
wolfSSL 0:1239e9b70ca2 2383 static const byte ECC_192v1_AlgoID[] = { 0x2a, 0x86, 0x48, 0xCE, 0x3d,
wolfSSL 0:1239e9b70ca2 2384 0x03, 0x01, 0x01};
wolfSSL 0:1239e9b70ca2 2385 static const byte ECC_256v1_AlgoID[] = { 0x2a, 0x86, 0x48, 0xCE, 0x3d,
wolfSSL 0:1239e9b70ca2 2386 0x03, 0x01, 0x07};
wolfSSL 0:1239e9b70ca2 2387 static const byte ECC_160r1_AlgoID[] = { 0x2b, 0x81, 0x04, 0x00,
wolfSSL 0:1239e9b70ca2 2388 0x02};
wolfSSL 0:1239e9b70ca2 2389 static const byte ECC_224r1_AlgoID[] = { 0x2b, 0x81, 0x04, 0x00,
wolfSSL 0:1239e9b70ca2 2390 0x21};
wolfSSL 0:1239e9b70ca2 2391 static const byte ECC_384r1_AlgoID[] = { 0x2b, 0x81, 0x04, 0x00,
wolfSSL 0:1239e9b70ca2 2392 0x22};
wolfSSL 0:1239e9b70ca2 2393 static const byte ECC_521r1_AlgoID[] = { 0x2b, 0x81, 0x04, 0x00,
wolfSSL 0:1239e9b70ca2 2394 0x23};
wolfSSL 0:1239e9b70ca2 2395
wolfSSL 0:1239e9b70ca2 2396 int oidSz = 0;
wolfSSL 0:1239e9b70ca2 2397 int idx = 0;
wolfSSL 0:1239e9b70ca2 2398 int lenSz = 0;
wolfSSL 0:1239e9b70ca2 2399 const byte* oid = 0;
wolfSSL 0:1239e9b70ca2 2400
wolfSSL 0:1239e9b70ca2 2401 output[0] = ASN_OBJECT_ID;
wolfSSL 0:1239e9b70ca2 2402 idx++;
wolfSSL 0:1239e9b70ca2 2403
wolfSSL 0:1239e9b70ca2 2404 switch (key->dp->size) {
wolfSSL 0:1239e9b70ca2 2405 case 20:
wolfSSL 0:1239e9b70ca2 2406 oidSz = sizeof(ECC_160r1_AlgoID);
wolfSSL 0:1239e9b70ca2 2407 oid = ECC_160r1_AlgoID;
wolfSSL 0:1239e9b70ca2 2408 break;
wolfSSL 0:1239e9b70ca2 2409
wolfSSL 0:1239e9b70ca2 2410 case 24:
wolfSSL 0:1239e9b70ca2 2411 oidSz = sizeof(ECC_192v1_AlgoID);
wolfSSL 0:1239e9b70ca2 2412 oid = ECC_192v1_AlgoID;
wolfSSL 0:1239e9b70ca2 2413 break;
wolfSSL 0:1239e9b70ca2 2414
wolfSSL 0:1239e9b70ca2 2415 case 28:
wolfSSL 0:1239e9b70ca2 2416 oidSz = sizeof(ECC_224r1_AlgoID);
wolfSSL 0:1239e9b70ca2 2417 oid = ECC_224r1_AlgoID;
wolfSSL 0:1239e9b70ca2 2418 break;
wolfSSL 0:1239e9b70ca2 2419
wolfSSL 0:1239e9b70ca2 2420 case 32:
wolfSSL 0:1239e9b70ca2 2421 oidSz = sizeof(ECC_256v1_AlgoID);
wolfSSL 0:1239e9b70ca2 2422 oid = ECC_256v1_AlgoID;
wolfSSL 0:1239e9b70ca2 2423 break;
wolfSSL 0:1239e9b70ca2 2424
wolfSSL 0:1239e9b70ca2 2425 case 48:
wolfSSL 0:1239e9b70ca2 2426 oidSz = sizeof(ECC_384r1_AlgoID);
wolfSSL 0:1239e9b70ca2 2427 oid = ECC_384r1_AlgoID;
wolfSSL 0:1239e9b70ca2 2428 break;
wolfSSL 0:1239e9b70ca2 2429
wolfSSL 0:1239e9b70ca2 2430 case 66:
wolfSSL 0:1239e9b70ca2 2431 oidSz = sizeof(ECC_521r1_AlgoID);
wolfSSL 0:1239e9b70ca2 2432 oid = ECC_521r1_AlgoID;
wolfSSL 0:1239e9b70ca2 2433 break;
wolfSSL 0:1239e9b70ca2 2434
wolfSSL 0:1239e9b70ca2 2435 default:
wolfSSL 0:1239e9b70ca2 2436 return ASN_UNKNOWN_OID_E;
wolfSSL 0:1239e9b70ca2 2437 }
wolfSSL 0:1239e9b70ca2 2438 lenSz = SetLength(oidSz, output+idx);
wolfSSL 0:1239e9b70ca2 2439 idx += lenSz;
wolfSSL 0:1239e9b70ca2 2440
wolfSSL 0:1239e9b70ca2 2441 XMEMCPY(output+idx, oid, oidSz);
wolfSSL 0:1239e9b70ca2 2442 idx += oidSz;
wolfSSL 0:1239e9b70ca2 2443
wolfSSL 0:1239e9b70ca2 2444 return idx;
wolfSSL 0:1239e9b70ca2 2445 }
wolfSSL 0:1239e9b70ca2 2446
wolfSSL 0:1239e9b70ca2 2447 #endif /* HAVE_ECC && CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 2448
wolfSSL 0:1239e9b70ca2 2449
wolfSSL 0:1239e9b70ca2 2450 CYASSL_LOCAL word32 SetAlgoID(int algoOID, byte* output, int type, int curveSz)
wolfSSL 0:1239e9b70ca2 2451 {
wolfSSL 0:1239e9b70ca2 2452 /* adding TAG_NULL and 0 to end */
wolfSSL 0:1239e9b70ca2 2453
wolfSSL 0:1239e9b70ca2 2454 /* hashTypes */
wolfSSL 0:1239e9b70ca2 2455 static const byte shaAlgoID[] = { 0x2b, 0x0e, 0x03, 0x02, 0x1a,
wolfSSL 0:1239e9b70ca2 2456 0x05, 0x00 };
wolfSSL 0:1239e9b70ca2 2457 static const byte sha256AlgoID[] = { 0x60, 0x86, 0x48, 0x01, 0x65, 0x03,
wolfSSL 0:1239e9b70ca2 2458 0x04, 0x02, 0x01, 0x05, 0x00 };
wolfSSL 0:1239e9b70ca2 2459 static const byte sha384AlgoID[] = { 0x60, 0x86, 0x48, 0x01, 0x65, 0x03,
wolfSSL 0:1239e9b70ca2 2460 0x04, 0x02, 0x02, 0x05, 0x00 };
wolfSSL 0:1239e9b70ca2 2461 static const byte sha512AlgoID[] = { 0x60, 0x86, 0x48, 0x01, 0x65, 0x03,
wolfSSL 0:1239e9b70ca2 2462 0x04, 0x02, 0x03, 0x05, 0x00 };
wolfSSL 0:1239e9b70ca2 2463 static const byte md5AlgoID[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d,
wolfSSL 0:1239e9b70ca2 2464 0x02, 0x05, 0x05, 0x00 };
wolfSSL 0:1239e9b70ca2 2465 static const byte md2AlgoID[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d,
wolfSSL 0:1239e9b70ca2 2466 0x02, 0x02, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2467
wolfSSL 0:1239e9b70ca2 2468 /* blkTypes, no NULL tags because IV is there instead */
wolfSSL 0:1239e9b70ca2 2469 static const byte desCbcAlgoID[] = { 0x2B, 0x0E, 0x03, 0x02, 0x07 };
wolfSSL 0:1239e9b70ca2 2470 static const byte des3CbcAlgoID[] = { 0x2A, 0x86, 0x48, 0x86, 0xF7,
wolfSSL 0:1239e9b70ca2 2471 0x0D, 0x03, 0x07 };
wolfSSL 0:1239e9b70ca2 2472
wolfSSL 0:1239e9b70ca2 2473 /* RSA sigTypes */
wolfSSL 0:1239e9b70ca2 2474 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 2475 static const byte md5wRSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7,
wolfSSL 0:1239e9b70ca2 2476 0x0d, 0x01, 0x01, 0x04, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2477 static const byte shawRSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7,
wolfSSL 0:1239e9b70ca2 2478 0x0d, 0x01, 0x01, 0x05, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2479 static const byte sha256wRSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7,
wolfSSL 0:1239e9b70ca2 2480 0x0d, 0x01, 0x01, 0x0b, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2481 static const byte sha384wRSA_AlgoID[] = {0x2a, 0x86, 0x48, 0x86, 0xf7,
wolfSSL 0:1239e9b70ca2 2482 0x0d, 0x01, 0x01, 0x0c, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2483 static const byte sha512wRSA_AlgoID[] = {0x2a, 0x86, 0x48, 0x86, 0xf7,
wolfSSL 0:1239e9b70ca2 2484 0x0d, 0x01, 0x01, 0x0d, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2485 #endif /* NO_RSA */
wolfSSL 0:1239e9b70ca2 2486
wolfSSL 0:1239e9b70ca2 2487 /* ECDSA sigTypes */
wolfSSL 0:1239e9b70ca2 2488 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 2489 static const byte shawECDSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0xCE, 0x3d,
wolfSSL 0:1239e9b70ca2 2490 0x04, 0x01, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2491 static const byte sha256wECDSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0xCE,0x3d,
wolfSSL 0:1239e9b70ca2 2492 0x04, 0x03, 0x02, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2493 static const byte sha384wECDSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0xCE,0x3d,
wolfSSL 0:1239e9b70ca2 2494 0x04, 0x03, 0x03, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2495 static const byte sha512wECDSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0xCE,0x3d,
wolfSSL 0:1239e9b70ca2 2496 0x04, 0x03, 0x04, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2497 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 2498
wolfSSL 0:1239e9b70ca2 2499 /* RSA keyType */
wolfSSL 0:1239e9b70ca2 2500 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 2501 static const byte RSA_AlgoID[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d,
wolfSSL 0:1239e9b70ca2 2502 0x01, 0x01, 0x01, 0x05, 0x00};
wolfSSL 0:1239e9b70ca2 2503 #endif /* NO_RSA */
wolfSSL 0:1239e9b70ca2 2504
wolfSSL 0:1239e9b70ca2 2505 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 2506 /* ECC keyType */
wolfSSL 0:1239e9b70ca2 2507 /* no tags, so set tagSz smaller later */
wolfSSL 0:1239e9b70ca2 2508 static const byte ECC_AlgoID[] = { 0x2a, 0x86, 0x48, 0xCE, 0x3d,
wolfSSL 0:1239e9b70ca2 2509 0x02, 0x01};
wolfSSL 0:1239e9b70ca2 2510 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 2511
wolfSSL 0:1239e9b70ca2 2512 int algoSz = 0;
wolfSSL 0:1239e9b70ca2 2513 int tagSz = 2; /* tag null and terminator */
wolfSSL 0:1239e9b70ca2 2514 word32 idSz, seqSz;
wolfSSL 0:1239e9b70ca2 2515 const byte* algoName = 0;
wolfSSL 0:1239e9b70ca2 2516 byte ID_Length[MAX_LENGTH_SZ];
wolfSSL 0:1239e9b70ca2 2517 byte seqArray[MAX_SEQ_SZ + 1]; /* add object_id to end */
wolfSSL 0:1239e9b70ca2 2518
wolfSSL 0:1239e9b70ca2 2519 if (type == hashType) {
wolfSSL 0:1239e9b70ca2 2520 switch (algoOID) {
wolfSSL 0:1239e9b70ca2 2521 case SHAh:
wolfSSL 0:1239e9b70ca2 2522 algoSz = sizeof(shaAlgoID);
wolfSSL 0:1239e9b70ca2 2523 algoName = shaAlgoID;
wolfSSL 0:1239e9b70ca2 2524 break;
wolfSSL 0:1239e9b70ca2 2525
wolfSSL 0:1239e9b70ca2 2526 case SHA256h:
wolfSSL 0:1239e9b70ca2 2527 algoSz = sizeof(sha256AlgoID);
wolfSSL 0:1239e9b70ca2 2528 algoName = sha256AlgoID;
wolfSSL 0:1239e9b70ca2 2529 break;
wolfSSL 0:1239e9b70ca2 2530
wolfSSL 0:1239e9b70ca2 2531 case SHA384h:
wolfSSL 0:1239e9b70ca2 2532 algoSz = sizeof(sha384AlgoID);
wolfSSL 0:1239e9b70ca2 2533 algoName = sha384AlgoID;
wolfSSL 0:1239e9b70ca2 2534 break;
wolfSSL 0:1239e9b70ca2 2535
wolfSSL 0:1239e9b70ca2 2536 case SHA512h:
wolfSSL 0:1239e9b70ca2 2537 algoSz = sizeof(sha512AlgoID);
wolfSSL 0:1239e9b70ca2 2538 algoName = sha512AlgoID;
wolfSSL 0:1239e9b70ca2 2539 break;
wolfSSL 0:1239e9b70ca2 2540
wolfSSL 0:1239e9b70ca2 2541 case MD2h:
wolfSSL 0:1239e9b70ca2 2542 algoSz = sizeof(md2AlgoID);
wolfSSL 0:1239e9b70ca2 2543 algoName = md2AlgoID;
wolfSSL 0:1239e9b70ca2 2544 break;
wolfSSL 0:1239e9b70ca2 2545
wolfSSL 0:1239e9b70ca2 2546 case MD5h:
wolfSSL 0:1239e9b70ca2 2547 algoSz = sizeof(md5AlgoID);
wolfSSL 0:1239e9b70ca2 2548 algoName = md5AlgoID;
wolfSSL 0:1239e9b70ca2 2549 break;
wolfSSL 0:1239e9b70ca2 2550
wolfSSL 0:1239e9b70ca2 2551 default:
wolfSSL 0:1239e9b70ca2 2552 CYASSL_MSG("Unknown Hash Algo");
wolfSSL 0:1239e9b70ca2 2553 return 0; /* UNKOWN_HASH_E; */
wolfSSL 0:1239e9b70ca2 2554 }
wolfSSL 0:1239e9b70ca2 2555 }
wolfSSL 0:1239e9b70ca2 2556 else if (type == blkType) {
wolfSSL 0:1239e9b70ca2 2557 switch (algoOID) {
wolfSSL 0:1239e9b70ca2 2558 case DESb:
wolfSSL 0:1239e9b70ca2 2559 algoSz = sizeof(desCbcAlgoID);
wolfSSL 0:1239e9b70ca2 2560 algoName = desCbcAlgoID;
wolfSSL 0:1239e9b70ca2 2561 tagSz = 0;
wolfSSL 0:1239e9b70ca2 2562 break;
wolfSSL 0:1239e9b70ca2 2563 case DES3b:
wolfSSL 0:1239e9b70ca2 2564 algoSz = sizeof(des3CbcAlgoID);
wolfSSL 0:1239e9b70ca2 2565 algoName = des3CbcAlgoID;
wolfSSL 0:1239e9b70ca2 2566 tagSz = 0;
wolfSSL 0:1239e9b70ca2 2567 break;
wolfSSL 0:1239e9b70ca2 2568 default:
wolfSSL 0:1239e9b70ca2 2569 CYASSL_MSG("Unknown Block Algo");
wolfSSL 0:1239e9b70ca2 2570 return 0;
wolfSSL 0:1239e9b70ca2 2571 }
wolfSSL 0:1239e9b70ca2 2572 }
wolfSSL 0:1239e9b70ca2 2573 else if (type == sigType) { /* sigType */
wolfSSL 0:1239e9b70ca2 2574 switch (algoOID) {
wolfSSL 0:1239e9b70ca2 2575 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 2576 case CTC_MD5wRSA:
wolfSSL 0:1239e9b70ca2 2577 algoSz = sizeof(md5wRSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2578 algoName = md5wRSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2579 break;
wolfSSL 0:1239e9b70ca2 2580
wolfSSL 0:1239e9b70ca2 2581 case CTC_SHAwRSA:
wolfSSL 0:1239e9b70ca2 2582 algoSz = sizeof(shawRSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2583 algoName = shawRSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2584 break;
wolfSSL 0:1239e9b70ca2 2585
wolfSSL 0:1239e9b70ca2 2586 case CTC_SHA256wRSA:
wolfSSL 0:1239e9b70ca2 2587 algoSz = sizeof(sha256wRSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2588 algoName = sha256wRSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2589 break;
wolfSSL 0:1239e9b70ca2 2590
wolfSSL 0:1239e9b70ca2 2591 case CTC_SHA384wRSA:
wolfSSL 0:1239e9b70ca2 2592 algoSz = sizeof(sha384wRSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2593 algoName = sha384wRSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2594 break;
wolfSSL 0:1239e9b70ca2 2595
wolfSSL 0:1239e9b70ca2 2596 case CTC_SHA512wRSA:
wolfSSL 0:1239e9b70ca2 2597 algoSz = sizeof(sha512wRSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2598 algoName = sha512wRSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2599 break;
wolfSSL 0:1239e9b70ca2 2600 #endif /* NO_RSA */
wolfSSL 0:1239e9b70ca2 2601 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 2602 case CTC_SHAwECDSA:
wolfSSL 0:1239e9b70ca2 2603 algoSz = sizeof(shawECDSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2604 algoName = shawECDSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2605 break;
wolfSSL 0:1239e9b70ca2 2606
wolfSSL 0:1239e9b70ca2 2607 case CTC_SHA256wECDSA:
wolfSSL 0:1239e9b70ca2 2608 algoSz = sizeof(sha256wECDSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2609 algoName = sha256wECDSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2610 break;
wolfSSL 0:1239e9b70ca2 2611
wolfSSL 0:1239e9b70ca2 2612 case CTC_SHA384wECDSA:
wolfSSL 0:1239e9b70ca2 2613 algoSz = sizeof(sha384wECDSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2614 algoName = sha384wECDSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2615 break;
wolfSSL 0:1239e9b70ca2 2616
wolfSSL 0:1239e9b70ca2 2617 case CTC_SHA512wECDSA:
wolfSSL 0:1239e9b70ca2 2618 algoSz = sizeof(sha512wECDSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2619 algoName = sha512wECDSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2620 break;
wolfSSL 0:1239e9b70ca2 2621 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 2622 default:
wolfSSL 0:1239e9b70ca2 2623 CYASSL_MSG("Unknown Signature Algo");
wolfSSL 0:1239e9b70ca2 2624 return 0;
wolfSSL 0:1239e9b70ca2 2625 }
wolfSSL 0:1239e9b70ca2 2626 }
wolfSSL 0:1239e9b70ca2 2627 else if (type == keyType) { /* keyType */
wolfSSL 0:1239e9b70ca2 2628 switch (algoOID) {
wolfSSL 0:1239e9b70ca2 2629 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 2630 case RSAk:
wolfSSL 0:1239e9b70ca2 2631 algoSz = sizeof(RSA_AlgoID);
wolfSSL 0:1239e9b70ca2 2632 algoName = RSA_AlgoID;
wolfSSL 0:1239e9b70ca2 2633 break;
wolfSSL 0:1239e9b70ca2 2634 #endif /* NO_RSA */
wolfSSL 0:1239e9b70ca2 2635 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 2636 case ECDSAk:
wolfSSL 0:1239e9b70ca2 2637 algoSz = sizeof(ECC_AlgoID);
wolfSSL 0:1239e9b70ca2 2638 algoName = ECC_AlgoID;
wolfSSL 0:1239e9b70ca2 2639 tagSz = 0;
wolfSSL 0:1239e9b70ca2 2640 break;
wolfSSL 0:1239e9b70ca2 2641 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 2642 default:
wolfSSL 0:1239e9b70ca2 2643 CYASSL_MSG("Unknown Key Algo");
wolfSSL 0:1239e9b70ca2 2644 return 0;
wolfSSL 0:1239e9b70ca2 2645 }
wolfSSL 0:1239e9b70ca2 2646 }
wolfSSL 0:1239e9b70ca2 2647 else {
wolfSSL 0:1239e9b70ca2 2648 CYASSL_MSG("Unknown Algo type");
wolfSSL 0:1239e9b70ca2 2649 return 0;
wolfSSL 0:1239e9b70ca2 2650 }
wolfSSL 0:1239e9b70ca2 2651
wolfSSL 0:1239e9b70ca2 2652 idSz = SetLength(algoSz - tagSz, ID_Length); /* don't include tags */
wolfSSL 0:1239e9b70ca2 2653 seqSz = SetSequence(idSz + algoSz + 1 + curveSz, seqArray);
wolfSSL 0:1239e9b70ca2 2654 /* +1 for object id, curveID of curveSz follows for ecc */
wolfSSL 0:1239e9b70ca2 2655 seqArray[seqSz++] = ASN_OBJECT_ID;
wolfSSL 0:1239e9b70ca2 2656
wolfSSL 0:1239e9b70ca2 2657 XMEMCPY(output, seqArray, seqSz);
wolfSSL 0:1239e9b70ca2 2658 XMEMCPY(output + seqSz, ID_Length, idSz);
wolfSSL 0:1239e9b70ca2 2659 XMEMCPY(output + seqSz + idSz, algoName, algoSz);
wolfSSL 0:1239e9b70ca2 2660
wolfSSL 0:1239e9b70ca2 2661 return seqSz + idSz + algoSz;
wolfSSL 0:1239e9b70ca2 2662
wolfSSL 0:1239e9b70ca2 2663 }
wolfSSL 0:1239e9b70ca2 2664
wolfSSL 0:1239e9b70ca2 2665
wolfSSL 0:1239e9b70ca2 2666 word32 EncodeSignature(byte* out, const byte* digest, word32 digSz, int hashOID)
wolfSSL 0:1239e9b70ca2 2667 {
wolfSSL 0:1239e9b70ca2 2668 byte digArray[MAX_ENCODED_DIG_SZ];
wolfSSL 0:1239e9b70ca2 2669 byte algoArray[MAX_ALGO_SZ];
wolfSSL 0:1239e9b70ca2 2670 byte seqArray[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 2671 word32 encDigSz, algoSz, seqSz;
wolfSSL 0:1239e9b70ca2 2672
wolfSSL 0:1239e9b70ca2 2673 encDigSz = SetDigest(digest, digSz, digArray);
wolfSSL 0:1239e9b70ca2 2674 algoSz = SetAlgoID(hashOID, algoArray, hashType, 0);
wolfSSL 0:1239e9b70ca2 2675 seqSz = SetSequence(encDigSz + algoSz, seqArray);
wolfSSL 0:1239e9b70ca2 2676
wolfSSL 0:1239e9b70ca2 2677 XMEMCPY(out, seqArray, seqSz);
wolfSSL 0:1239e9b70ca2 2678 XMEMCPY(out + seqSz, algoArray, algoSz);
wolfSSL 0:1239e9b70ca2 2679 XMEMCPY(out + seqSz + algoSz, digArray, encDigSz);
wolfSSL 0:1239e9b70ca2 2680
wolfSSL 0:1239e9b70ca2 2681 return encDigSz + algoSz + seqSz;
wolfSSL 0:1239e9b70ca2 2682 }
wolfSSL 0:1239e9b70ca2 2683
wolfSSL 0:1239e9b70ca2 2684
wolfSSL 0:1239e9b70ca2 2685 /* return true (1) for Confirmation */
wolfSSL 0:1239e9b70ca2 2686 static int ConfirmSignature(const byte* buf, word32 bufSz,
wolfSSL 0:1239e9b70ca2 2687 const byte* key, word32 keySz, word32 keyOID,
wolfSSL 0:1239e9b70ca2 2688 const byte* sig, word32 sigSz, word32 sigOID,
wolfSSL 0:1239e9b70ca2 2689 void* heap)
wolfSSL 0:1239e9b70ca2 2690 {
wolfSSL 0:1239e9b70ca2 2691 #ifdef CYASSL_SHA512
wolfSSL 0:1239e9b70ca2 2692 byte digest[SHA512_DIGEST_SIZE]; /* max size */
wolfSSL 0:1239e9b70ca2 2693 #elif !defined(NO_SHA256)
wolfSSL 0:1239e9b70ca2 2694 byte digest[SHA256_DIGEST_SIZE]; /* max size */
wolfSSL 0:1239e9b70ca2 2695 #else
wolfSSL 0:1239e9b70ca2 2696 byte digest[SHA_DIGEST_SIZE]; /* max size */
wolfSSL 0:1239e9b70ca2 2697 #endif
wolfSSL 0:1239e9b70ca2 2698 int typeH, digestSz, ret = 0;
wolfSSL 0:1239e9b70ca2 2699
wolfSSL 0:1239e9b70ca2 2700 (void)key;
wolfSSL 0:1239e9b70ca2 2701 (void)keySz;
wolfSSL 0:1239e9b70ca2 2702 (void)sig;
wolfSSL 0:1239e9b70ca2 2703 (void)sigSz;
wolfSSL 0:1239e9b70ca2 2704 (void)heap;
wolfSSL 0:1239e9b70ca2 2705 (void)ret;
wolfSSL 0:1239e9b70ca2 2706
wolfSSL 0:1239e9b70ca2 2707 switch (sigOID) {
wolfSSL 0:1239e9b70ca2 2708 #ifndef NO_MD5
wolfSSL 0:1239e9b70ca2 2709 case CTC_MD5wRSA:
wolfSSL 0:1239e9b70ca2 2710 {
wolfSSL 0:1239e9b70ca2 2711 Md5 md5;
wolfSSL 0:1239e9b70ca2 2712 InitMd5(&md5);
wolfSSL 0:1239e9b70ca2 2713 Md5Update(&md5, buf, bufSz);
wolfSSL 0:1239e9b70ca2 2714 Md5Final(&md5, digest);
wolfSSL 0:1239e9b70ca2 2715 typeH = MD5h;
wolfSSL 0:1239e9b70ca2 2716 digestSz = MD5_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 2717 }
wolfSSL 0:1239e9b70ca2 2718 break;
wolfSSL 0:1239e9b70ca2 2719 #endif
wolfSSL 0:1239e9b70ca2 2720 #if defined(CYASSL_MD2)
wolfSSL 0:1239e9b70ca2 2721 case CTC_MD2wRSA:
wolfSSL 0:1239e9b70ca2 2722 {
wolfSSL 0:1239e9b70ca2 2723 Md2 md2;
wolfSSL 0:1239e9b70ca2 2724 InitMd2(&md2);
wolfSSL 0:1239e9b70ca2 2725 Md2Update(&md2, buf, bufSz);
wolfSSL 0:1239e9b70ca2 2726 Md2Final(&md2, digest);
wolfSSL 0:1239e9b70ca2 2727 typeH = MD2h;
wolfSSL 0:1239e9b70ca2 2728 digestSz = MD2_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 2729 }
wolfSSL 0:1239e9b70ca2 2730 break;
wolfSSL 0:1239e9b70ca2 2731 #endif
wolfSSL 0:1239e9b70ca2 2732 #ifndef NO_SHA
wolfSSL 0:1239e9b70ca2 2733 case CTC_SHAwRSA:
wolfSSL 0:1239e9b70ca2 2734 case CTC_SHAwDSA:
wolfSSL 0:1239e9b70ca2 2735 case CTC_SHAwECDSA:
wolfSSL 0:1239e9b70ca2 2736 {
wolfSSL 0:1239e9b70ca2 2737 Sha sha;
wolfSSL 0:1239e9b70ca2 2738 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 2739 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2740 CYASSL_MSG("InitSha failed");
wolfSSL 0:1239e9b70ca2 2741 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2742 }
wolfSSL 0:1239e9b70ca2 2743 ShaUpdate(&sha, buf, bufSz);
wolfSSL 0:1239e9b70ca2 2744 ShaFinal(&sha, digest);
wolfSSL 0:1239e9b70ca2 2745 typeH = SHAh;
wolfSSL 0:1239e9b70ca2 2746 digestSz = SHA_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 2747 }
wolfSSL 0:1239e9b70ca2 2748 break;
wolfSSL 0:1239e9b70ca2 2749 #endif
wolfSSL 0:1239e9b70ca2 2750 #ifndef NO_SHA256
wolfSSL 0:1239e9b70ca2 2751 case CTC_SHA256wRSA:
wolfSSL 0:1239e9b70ca2 2752 case CTC_SHA256wECDSA:
wolfSSL 0:1239e9b70ca2 2753 {
wolfSSL 0:1239e9b70ca2 2754 Sha256 sha256;
wolfSSL 0:1239e9b70ca2 2755 ret = InitSha256(&sha256);
wolfSSL 0:1239e9b70ca2 2756 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2757 CYASSL_MSG("InitSha256 failed");
wolfSSL 0:1239e9b70ca2 2758 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2759 }
wolfSSL 0:1239e9b70ca2 2760
wolfSSL 0:1239e9b70ca2 2761 ret = Sha256Update(&sha256, buf, bufSz);
wolfSSL 0:1239e9b70ca2 2762 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2763 CYASSL_MSG("Sha256Update failed");
wolfSSL 0:1239e9b70ca2 2764 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2765 }
wolfSSL 0:1239e9b70ca2 2766
wolfSSL 0:1239e9b70ca2 2767 ret = Sha256Final(&sha256, digest);
wolfSSL 0:1239e9b70ca2 2768 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2769 CYASSL_MSG("Sha256Final failed");
wolfSSL 0:1239e9b70ca2 2770 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2771 }
wolfSSL 0:1239e9b70ca2 2772
wolfSSL 0:1239e9b70ca2 2773 typeH = SHA256h;
wolfSSL 0:1239e9b70ca2 2774 digestSz = SHA256_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 2775 }
wolfSSL 0:1239e9b70ca2 2776 break;
wolfSSL 0:1239e9b70ca2 2777 #endif
wolfSSL 0:1239e9b70ca2 2778 #ifdef CYASSL_SHA512
wolfSSL 0:1239e9b70ca2 2779 case CTC_SHA512wRSA:
wolfSSL 0:1239e9b70ca2 2780 case CTC_SHA512wECDSA:
wolfSSL 0:1239e9b70ca2 2781 {
wolfSSL 0:1239e9b70ca2 2782 Sha512 sha512;
wolfSSL 0:1239e9b70ca2 2783 ret = InitSha512(&sha512);
wolfSSL 0:1239e9b70ca2 2784 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2785 CYASSL_MSG("InitSha512 failed");
wolfSSL 0:1239e9b70ca2 2786 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2787 }
wolfSSL 0:1239e9b70ca2 2788
wolfSSL 0:1239e9b70ca2 2789 ret = Sha512Update(&sha512, buf, bufSz);
wolfSSL 0:1239e9b70ca2 2790 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2791 CYASSL_MSG("Sha512Update failed");
wolfSSL 0:1239e9b70ca2 2792 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2793 }
wolfSSL 0:1239e9b70ca2 2794
wolfSSL 0:1239e9b70ca2 2795 ret = Sha512Final(&sha512, digest);
wolfSSL 0:1239e9b70ca2 2796 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2797 CYASSL_MSG("Sha512Final failed");
wolfSSL 0:1239e9b70ca2 2798 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2799 }
wolfSSL 0:1239e9b70ca2 2800
wolfSSL 0:1239e9b70ca2 2801 typeH = SHA512h;
wolfSSL 0:1239e9b70ca2 2802 digestSz = SHA512_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 2803 }
wolfSSL 0:1239e9b70ca2 2804 break;
wolfSSL 0:1239e9b70ca2 2805 #endif
wolfSSL 0:1239e9b70ca2 2806 #ifdef CYASSL_SHA384
wolfSSL 0:1239e9b70ca2 2807 case CTC_SHA384wRSA:
wolfSSL 0:1239e9b70ca2 2808 case CTC_SHA384wECDSA:
wolfSSL 0:1239e9b70ca2 2809 {
wolfSSL 0:1239e9b70ca2 2810 Sha384 sha384;
wolfSSL 0:1239e9b70ca2 2811 ret = InitSha384(&sha384);
wolfSSL 0:1239e9b70ca2 2812 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2813 CYASSL_MSG("InitSha384 failed");
wolfSSL 0:1239e9b70ca2 2814 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2815 }
wolfSSL 0:1239e9b70ca2 2816
wolfSSL 0:1239e9b70ca2 2817 ret = Sha384Update(&sha384, buf, bufSz);
wolfSSL 0:1239e9b70ca2 2818 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2819 CYASSL_MSG("Sha384Update failed");
wolfSSL 0:1239e9b70ca2 2820 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2821 }
wolfSSL 0:1239e9b70ca2 2822
wolfSSL 0:1239e9b70ca2 2823 ret = Sha384Final(&sha384, digest);
wolfSSL 0:1239e9b70ca2 2824 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 2825 CYASSL_MSG("Sha384Final failed");
wolfSSL 0:1239e9b70ca2 2826 return 0; /* not confirmed */
wolfSSL 0:1239e9b70ca2 2827 }
wolfSSL 0:1239e9b70ca2 2828
wolfSSL 0:1239e9b70ca2 2829 typeH = SHA384h;
wolfSSL 0:1239e9b70ca2 2830 digestSz = SHA384_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 2831 }
wolfSSL 0:1239e9b70ca2 2832 break;
wolfSSL 0:1239e9b70ca2 2833 #endif
wolfSSL 0:1239e9b70ca2 2834 default:
wolfSSL 0:1239e9b70ca2 2835 CYASSL_MSG("Verify Signautre has unsupported type");
wolfSSL 0:1239e9b70ca2 2836 return 0;
wolfSSL 0:1239e9b70ca2 2837 }
wolfSSL 0:1239e9b70ca2 2838 (void)typeH; /* some builds won't read */
wolfSSL 0:1239e9b70ca2 2839
wolfSSL 0:1239e9b70ca2 2840 switch (keyOID) {
wolfSSL 0:1239e9b70ca2 2841 #ifndef NO_RSA
wolfSSL 0:1239e9b70ca2 2842 case RSAk:
wolfSSL 0:1239e9b70ca2 2843 {
wolfSSL 0:1239e9b70ca2 2844 RsaKey pubKey;
wolfSSL 0:1239e9b70ca2 2845 byte encodedSig[MAX_ENCODED_SIG_SZ];
wolfSSL 0:1239e9b70ca2 2846 byte plain[MAX_ENCODED_SIG_SZ];
wolfSSL 0:1239e9b70ca2 2847 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 2848 int encodedSigSz, verifySz;
wolfSSL 0:1239e9b70ca2 2849 byte* out;
wolfSSL 0:1239e9b70ca2 2850
wolfSSL 0:1239e9b70ca2 2851 if (sigSz > MAX_ENCODED_SIG_SZ) {
wolfSSL 0:1239e9b70ca2 2852 CYASSL_MSG("Verify Signautre is too big");
wolfSSL 0:1239e9b70ca2 2853 return 0;
wolfSSL 0:1239e9b70ca2 2854 }
wolfSSL 0:1239e9b70ca2 2855
wolfSSL 0:1239e9b70ca2 2856 ret = InitRsaKey(&pubKey, heap);
wolfSSL 0:1239e9b70ca2 2857 if (ret != 0) return ret;
wolfSSL 0:1239e9b70ca2 2858 if (RsaPublicKeyDecode(key, &idx, &pubKey, keySz) < 0) {
wolfSSL 0:1239e9b70ca2 2859 CYASSL_MSG("ASN Key decode error RSA");
wolfSSL 0:1239e9b70ca2 2860 ret = 0;
wolfSSL 0:1239e9b70ca2 2861 }
wolfSSL 0:1239e9b70ca2 2862 else {
wolfSSL 0:1239e9b70ca2 2863 XMEMCPY(plain, sig, sigSz);
wolfSSL 0:1239e9b70ca2 2864 if ( (verifySz = RsaSSL_VerifyInline(plain, sigSz, &out,
wolfSSL 0:1239e9b70ca2 2865 &pubKey)) < 0) {
wolfSSL 0:1239e9b70ca2 2866 CYASSL_MSG("Rsa SSL verify error");
wolfSSL 0:1239e9b70ca2 2867 ret = 0;
wolfSSL 0:1239e9b70ca2 2868 }
wolfSSL 0:1239e9b70ca2 2869 else {
wolfSSL 0:1239e9b70ca2 2870 /* make sure we're right justified */
wolfSSL 0:1239e9b70ca2 2871 encodedSigSz =
wolfSSL 0:1239e9b70ca2 2872 EncodeSignature(encodedSig, digest, digestSz, typeH);
wolfSSL 0:1239e9b70ca2 2873 if (encodedSigSz != verifySz ||
wolfSSL 0:1239e9b70ca2 2874 XMEMCMP(out, encodedSig, encodedSigSz) != 0) {
wolfSSL 0:1239e9b70ca2 2875 CYASSL_MSG("Rsa SSL verify match encode error");
wolfSSL 0:1239e9b70ca2 2876 ret = 0;
wolfSSL 0:1239e9b70ca2 2877 }
wolfSSL 0:1239e9b70ca2 2878 else
wolfSSL 0:1239e9b70ca2 2879 ret = 1; /* match */
wolfSSL 0:1239e9b70ca2 2880
wolfSSL 0:1239e9b70ca2 2881 #ifdef CYASSL_DEBUG_ENCODING
wolfSSL 0:1239e9b70ca2 2882 {
wolfSSL 0:1239e9b70ca2 2883 int x;
wolfSSL 0:1239e9b70ca2 2884 printf("cyassl encodedSig:\n");
wolfSSL 0:1239e9b70ca2 2885 for (x = 0; x < encodedSigSz; x++) {
wolfSSL 0:1239e9b70ca2 2886 printf("%02x ", encodedSig[x]);
wolfSSL 0:1239e9b70ca2 2887 if ( (x % 16) == 15)
wolfSSL 0:1239e9b70ca2 2888 printf("\n");
wolfSSL 0:1239e9b70ca2 2889 }
wolfSSL 0:1239e9b70ca2 2890 printf("\n");
wolfSSL 0:1239e9b70ca2 2891 printf("actual digest:\n");
wolfSSL 0:1239e9b70ca2 2892 for (x = 0; x < verifySz; x++) {
wolfSSL 0:1239e9b70ca2 2893 printf("%02x ", out[x]);
wolfSSL 0:1239e9b70ca2 2894 if ( (x % 16) == 15)
wolfSSL 0:1239e9b70ca2 2895 printf("\n");
wolfSSL 0:1239e9b70ca2 2896 }
wolfSSL 0:1239e9b70ca2 2897 printf("\n");
wolfSSL 0:1239e9b70ca2 2898 }
wolfSSL 0:1239e9b70ca2 2899 #endif /* CYASSL_DEBUG_ENCODING */
wolfSSL 0:1239e9b70ca2 2900 }
wolfSSL 0:1239e9b70ca2 2901 }
wolfSSL 0:1239e9b70ca2 2902 FreeRsaKey(&pubKey);
wolfSSL 0:1239e9b70ca2 2903 return ret;
wolfSSL 0:1239e9b70ca2 2904 }
wolfSSL 0:1239e9b70ca2 2905
wolfSSL 0:1239e9b70ca2 2906 #endif /* NO_RSA */
wolfSSL 0:1239e9b70ca2 2907 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 2908 case ECDSAk:
wolfSSL 0:1239e9b70ca2 2909 {
wolfSSL 0:1239e9b70ca2 2910 ecc_key pubKey;
wolfSSL 0:1239e9b70ca2 2911 int verify = 0;
wolfSSL 0:1239e9b70ca2 2912
wolfSSL 0:1239e9b70ca2 2913 if (ecc_import_x963(key, keySz, &pubKey) < 0) {
wolfSSL 0:1239e9b70ca2 2914 CYASSL_MSG("ASN Key import error ECC");
wolfSSL 0:1239e9b70ca2 2915 return 0;
wolfSSL 0:1239e9b70ca2 2916 }
wolfSSL 0:1239e9b70ca2 2917
wolfSSL 0:1239e9b70ca2 2918 ret = ecc_verify_hash(sig,sigSz,digest,digestSz,&verify,&pubKey);
wolfSSL 0:1239e9b70ca2 2919 ecc_free(&pubKey);
wolfSSL 0:1239e9b70ca2 2920 if (ret == 0 && verify == 1)
wolfSSL 0:1239e9b70ca2 2921 return 1; /* match */
wolfSSL 0:1239e9b70ca2 2922
wolfSSL 0:1239e9b70ca2 2923 CYASSL_MSG("ECC Verify didn't match");
wolfSSL 0:1239e9b70ca2 2924 return 0;
wolfSSL 0:1239e9b70ca2 2925 }
wolfSSL 0:1239e9b70ca2 2926 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 2927 default:
wolfSSL 0:1239e9b70ca2 2928 CYASSL_MSG("Verify Key type unknown");
wolfSSL 0:1239e9b70ca2 2929 return 0;
wolfSSL 0:1239e9b70ca2 2930 }
wolfSSL 0:1239e9b70ca2 2931 }
wolfSSL 0:1239e9b70ca2 2932
wolfSSL 0:1239e9b70ca2 2933
wolfSSL 0:1239e9b70ca2 2934 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 2935
wolfSSL 0:1239e9b70ca2 2936 static int MatchBaseName(int type, const char* name, int nameSz,
wolfSSL 0:1239e9b70ca2 2937 const char* base, int baseSz)
wolfSSL 0:1239e9b70ca2 2938 {
wolfSSL 0:1239e9b70ca2 2939 if (base == NULL || baseSz <= 0 || name == NULL || nameSz <= 0 ||
wolfSSL 0:1239e9b70ca2 2940 name[0] == '.' || nameSz < baseSz ||
wolfSSL 0:1239e9b70ca2 2941 (type != ASN_RFC822_TYPE && type != ASN_DNS_TYPE))
wolfSSL 0:1239e9b70ca2 2942 return 0;
wolfSSL 0:1239e9b70ca2 2943
wolfSSL 0:1239e9b70ca2 2944 /* If an email type, handle special cases where the base is only
wolfSSL 0:1239e9b70ca2 2945 * a domain, or is an email address itself. */
wolfSSL 0:1239e9b70ca2 2946 if (type == ASN_RFC822_TYPE) {
wolfSSL 0:1239e9b70ca2 2947 const char* p = NULL;
wolfSSL 0:1239e9b70ca2 2948 int count = 0;
wolfSSL 0:1239e9b70ca2 2949
wolfSSL 0:1239e9b70ca2 2950 if (base[0] != '.') {
wolfSSL 0:1239e9b70ca2 2951 p = base;
wolfSSL 0:1239e9b70ca2 2952 count = 0;
wolfSSL 0:1239e9b70ca2 2953
wolfSSL 0:1239e9b70ca2 2954 /* find the '@' in the base */
wolfSSL 0:1239e9b70ca2 2955 while (*p != '@' && count < baseSz) {
wolfSSL 0:1239e9b70ca2 2956 count++;
wolfSSL 0:1239e9b70ca2 2957 p++;
wolfSSL 0:1239e9b70ca2 2958 }
wolfSSL 0:1239e9b70ca2 2959
wolfSSL 0:1239e9b70ca2 2960 /* No '@' in base, reset p to NULL */
wolfSSL 0:1239e9b70ca2 2961 if (count >= baseSz)
wolfSSL 0:1239e9b70ca2 2962 p = NULL;
wolfSSL 0:1239e9b70ca2 2963 }
wolfSSL 0:1239e9b70ca2 2964
wolfSSL 0:1239e9b70ca2 2965 if (p == NULL) {
wolfSSL 0:1239e9b70ca2 2966 /* Base isn't an email address, it is a domain name,
wolfSSL 0:1239e9b70ca2 2967 * wind the name forward one character past its '@'. */
wolfSSL 0:1239e9b70ca2 2968 p = name;
wolfSSL 0:1239e9b70ca2 2969 count = 0;
wolfSSL 0:1239e9b70ca2 2970 while (*p != '@' && count < baseSz) {
wolfSSL 0:1239e9b70ca2 2971 count++;
wolfSSL 0:1239e9b70ca2 2972 p++;
wolfSSL 0:1239e9b70ca2 2973 }
wolfSSL 0:1239e9b70ca2 2974
wolfSSL 0:1239e9b70ca2 2975 if (count < baseSz && *p == '@') {
wolfSSL 0:1239e9b70ca2 2976 name = p + 1;
wolfSSL 0:1239e9b70ca2 2977 nameSz -= count + 1;
wolfSSL 0:1239e9b70ca2 2978 }
wolfSSL 0:1239e9b70ca2 2979 }
wolfSSL 0:1239e9b70ca2 2980 }
wolfSSL 0:1239e9b70ca2 2981
wolfSSL 0:1239e9b70ca2 2982 if ((type == ASN_DNS_TYPE || type == ASN_RFC822_TYPE) && base[0] == '.') {
wolfSSL 0:1239e9b70ca2 2983 int szAdjust = nameSz - baseSz;
wolfSSL 0:1239e9b70ca2 2984 name += szAdjust;
wolfSSL 0:1239e9b70ca2 2985 nameSz -= szAdjust;
wolfSSL 0:1239e9b70ca2 2986 }
wolfSSL 0:1239e9b70ca2 2987
wolfSSL 0:1239e9b70ca2 2988 while (nameSz > 0) {
wolfSSL 0:1239e9b70ca2 2989 if (XTOLOWER(*name++) != XTOLOWER(*base++))
wolfSSL 0:1239e9b70ca2 2990 return 0;
wolfSSL 0:1239e9b70ca2 2991 nameSz--;
wolfSSL 0:1239e9b70ca2 2992 }
wolfSSL 0:1239e9b70ca2 2993
wolfSSL 0:1239e9b70ca2 2994 return 1;
wolfSSL 0:1239e9b70ca2 2995 }
wolfSSL 0:1239e9b70ca2 2996
wolfSSL 0:1239e9b70ca2 2997
wolfSSL 0:1239e9b70ca2 2998 static int ConfirmNameConstraints(Signer* signer, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 2999 {
wolfSSL 0:1239e9b70ca2 3000 if (signer == NULL || cert == NULL)
wolfSSL 0:1239e9b70ca2 3001 return 0;
wolfSSL 0:1239e9b70ca2 3002
wolfSSL 0:1239e9b70ca2 3003 /* Check against the excluded list */
wolfSSL 0:1239e9b70ca2 3004 if (signer->excludedNames) {
wolfSSL 0:1239e9b70ca2 3005 Base_entry* base = signer->excludedNames;
wolfSSL 0:1239e9b70ca2 3006
wolfSSL 0:1239e9b70ca2 3007 while (base != NULL) {
wolfSSL 0:1239e9b70ca2 3008 if (base->type == ASN_DNS_TYPE) {
wolfSSL 0:1239e9b70ca2 3009 DNS_entry* name = cert->altNames;
wolfSSL 0:1239e9b70ca2 3010 while (name != NULL) {
wolfSSL 0:1239e9b70ca2 3011 if (MatchBaseName(ASN_DNS_TYPE,
wolfSSL 0:1239e9b70ca2 3012 name->name, (int)XSTRLEN(name->name),
wolfSSL 0:1239e9b70ca2 3013 base->name, base->nameSz))
wolfSSL 0:1239e9b70ca2 3014 return 0;
wolfSSL 0:1239e9b70ca2 3015 name = name->next;
wolfSSL 0:1239e9b70ca2 3016 }
wolfSSL 0:1239e9b70ca2 3017 }
wolfSSL 0:1239e9b70ca2 3018 else if (base->type == ASN_RFC822_TYPE) {
wolfSSL 0:1239e9b70ca2 3019 DNS_entry* name = cert->altEmailNames;
wolfSSL 0:1239e9b70ca2 3020 while (name != NULL) {
wolfSSL 0:1239e9b70ca2 3021 if (MatchBaseName(ASN_RFC822_TYPE,
wolfSSL 0:1239e9b70ca2 3022 name->name, (int)XSTRLEN(name->name),
wolfSSL 0:1239e9b70ca2 3023 base->name, base->nameSz))
wolfSSL 0:1239e9b70ca2 3024 return 0;
wolfSSL 0:1239e9b70ca2 3025
wolfSSL 0:1239e9b70ca2 3026 name = name->next;
wolfSSL 0:1239e9b70ca2 3027 }
wolfSSL 0:1239e9b70ca2 3028 }
wolfSSL 0:1239e9b70ca2 3029 else if (base->type == ASN_DIR_TYPE) {
wolfSSL 0:1239e9b70ca2 3030 if (cert->subjectRawLen == base->nameSz &&
wolfSSL 0:1239e9b70ca2 3031 XMEMCMP(cert->subjectRaw, base->name, base->nameSz) == 0) {
wolfSSL 0:1239e9b70ca2 3032
wolfSSL 0:1239e9b70ca2 3033 return 0;
wolfSSL 0:1239e9b70ca2 3034 }
wolfSSL 0:1239e9b70ca2 3035 }
wolfSSL 0:1239e9b70ca2 3036 base = base->next;
wolfSSL 0:1239e9b70ca2 3037 }
wolfSSL 0:1239e9b70ca2 3038 }
wolfSSL 0:1239e9b70ca2 3039
wolfSSL 0:1239e9b70ca2 3040 /* Check against the permitted list */
wolfSSL 0:1239e9b70ca2 3041 if (signer->permittedNames != NULL) {
wolfSSL 0:1239e9b70ca2 3042 int needDns = 0;
wolfSSL 0:1239e9b70ca2 3043 int matchDns = 0;
wolfSSL 0:1239e9b70ca2 3044 int needEmail = 0;
wolfSSL 0:1239e9b70ca2 3045 int matchEmail = 0;
wolfSSL 0:1239e9b70ca2 3046 int needDir = 0;
wolfSSL 0:1239e9b70ca2 3047 int matchDir = 0;
wolfSSL 0:1239e9b70ca2 3048 Base_entry* base = signer->permittedNames;
wolfSSL 0:1239e9b70ca2 3049
wolfSSL 0:1239e9b70ca2 3050 while (base != NULL) {
wolfSSL 0:1239e9b70ca2 3051 if (base->type == ASN_DNS_TYPE) {
wolfSSL 0:1239e9b70ca2 3052 DNS_entry* name = cert->altNames;
wolfSSL 0:1239e9b70ca2 3053
wolfSSL 0:1239e9b70ca2 3054 if (name != NULL)
wolfSSL 0:1239e9b70ca2 3055 needDns = 1;
wolfSSL 0:1239e9b70ca2 3056
wolfSSL 0:1239e9b70ca2 3057 while (name != NULL) {
wolfSSL 0:1239e9b70ca2 3058 matchDns = MatchBaseName(ASN_DNS_TYPE,
wolfSSL 0:1239e9b70ca2 3059 name->name, (int)XSTRLEN(name->name),
wolfSSL 0:1239e9b70ca2 3060 base->name, base->nameSz);
wolfSSL 0:1239e9b70ca2 3061 name = name->next;
wolfSSL 0:1239e9b70ca2 3062 }
wolfSSL 0:1239e9b70ca2 3063 }
wolfSSL 0:1239e9b70ca2 3064 else if (base->type == ASN_RFC822_TYPE) {
wolfSSL 0:1239e9b70ca2 3065 DNS_entry* name = cert->altEmailNames;
wolfSSL 0:1239e9b70ca2 3066
wolfSSL 0:1239e9b70ca2 3067 if (name != NULL)
wolfSSL 0:1239e9b70ca2 3068 needEmail = 1;
wolfSSL 0:1239e9b70ca2 3069
wolfSSL 0:1239e9b70ca2 3070 while (name != NULL) {
wolfSSL 0:1239e9b70ca2 3071 matchEmail = MatchBaseName(ASN_DNS_TYPE,
wolfSSL 0:1239e9b70ca2 3072 name->name, (int)XSTRLEN(name->name),
wolfSSL 0:1239e9b70ca2 3073 base->name, base->nameSz);
wolfSSL 0:1239e9b70ca2 3074 name = name->next;
wolfSSL 0:1239e9b70ca2 3075 }
wolfSSL 0:1239e9b70ca2 3076 }
wolfSSL 0:1239e9b70ca2 3077 else if (base->type == ASN_DIR_TYPE) {
wolfSSL 0:1239e9b70ca2 3078 needDir = 1;
wolfSSL 0:1239e9b70ca2 3079 if (cert->subjectRaw != NULL &&
wolfSSL 0:1239e9b70ca2 3080 cert->subjectRawLen == base->nameSz &&
wolfSSL 0:1239e9b70ca2 3081 XMEMCMP(cert->subjectRaw, base->name, base->nameSz) == 0) {
wolfSSL 0:1239e9b70ca2 3082
wolfSSL 0:1239e9b70ca2 3083 matchDir = 1;
wolfSSL 0:1239e9b70ca2 3084 }
wolfSSL 0:1239e9b70ca2 3085 }
wolfSSL 0:1239e9b70ca2 3086 base = base->next;
wolfSSL 0:1239e9b70ca2 3087 }
wolfSSL 0:1239e9b70ca2 3088
wolfSSL 0:1239e9b70ca2 3089 if ((needDns && !matchDns) || (needEmail && !matchEmail) ||
wolfSSL 0:1239e9b70ca2 3090 (needDir && !matchDir)) {
wolfSSL 0:1239e9b70ca2 3091
wolfSSL 0:1239e9b70ca2 3092 return 0;
wolfSSL 0:1239e9b70ca2 3093 }
wolfSSL 0:1239e9b70ca2 3094 }
wolfSSL 0:1239e9b70ca2 3095
wolfSSL 0:1239e9b70ca2 3096 return 1;
wolfSSL 0:1239e9b70ca2 3097 }
wolfSSL 0:1239e9b70ca2 3098
wolfSSL 0:1239e9b70ca2 3099 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 3100
wolfSSL 0:1239e9b70ca2 3101
wolfSSL 0:1239e9b70ca2 3102 static int DecodeAltNames(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3103 {
wolfSSL 0:1239e9b70ca2 3104 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3105 int length = 0;
wolfSSL 0:1239e9b70ca2 3106
wolfSSL 0:1239e9b70ca2 3107 CYASSL_ENTER("DecodeAltNames");
wolfSSL 0:1239e9b70ca2 3108
wolfSSL 0:1239e9b70ca2 3109 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3110 CYASSL_MSG("\tBad Sequence");
wolfSSL 0:1239e9b70ca2 3111 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3112 }
wolfSSL 0:1239e9b70ca2 3113
wolfSSL 0:1239e9b70ca2 3114 while (length > 0) {
wolfSSL 0:1239e9b70ca2 3115 byte b = input[idx++];
wolfSSL 0:1239e9b70ca2 3116
wolfSSL 0:1239e9b70ca2 3117 length--;
wolfSSL 0:1239e9b70ca2 3118
wolfSSL 0:1239e9b70ca2 3119 /* Save DNS Type names in the altNames list. */
wolfSSL 0:1239e9b70ca2 3120 /* Save Other Type names in the cert's OidMap */
wolfSSL 0:1239e9b70ca2 3121 if (b == (ASN_CONTEXT_SPECIFIC | ASN_DNS_TYPE)) {
wolfSSL 0:1239e9b70ca2 3122 DNS_entry* dnsEntry;
wolfSSL 0:1239e9b70ca2 3123 int strLen;
wolfSSL 0:1239e9b70ca2 3124 word32 lenStartIdx = idx;
wolfSSL 0:1239e9b70ca2 3125
wolfSSL 0:1239e9b70ca2 3126 if (GetLength(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3127 CYASSL_MSG("\tfail: str length");
wolfSSL 0:1239e9b70ca2 3128 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3129 }
wolfSSL 0:1239e9b70ca2 3130 length -= (idx - lenStartIdx);
wolfSSL 0:1239e9b70ca2 3131
wolfSSL 0:1239e9b70ca2 3132 dnsEntry = (DNS_entry*)XMALLOC(sizeof(DNS_entry), cert->heap,
wolfSSL 0:1239e9b70ca2 3133 DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3134 if (dnsEntry == NULL) {
wolfSSL 0:1239e9b70ca2 3135 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 3136 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3137 }
wolfSSL 0:1239e9b70ca2 3138
wolfSSL 0:1239e9b70ca2 3139 dnsEntry->name = (char*)XMALLOC(strLen + 1, cert->heap,
wolfSSL 0:1239e9b70ca2 3140 DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3141 if (dnsEntry->name == NULL) {
wolfSSL 0:1239e9b70ca2 3142 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 3143 XFREE(dnsEntry, cert->heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3144 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3145 }
wolfSSL 0:1239e9b70ca2 3146
wolfSSL 0:1239e9b70ca2 3147 XMEMCPY(dnsEntry->name, &input[idx], strLen);
wolfSSL 0:1239e9b70ca2 3148 dnsEntry->name[strLen] = '\0';
wolfSSL 0:1239e9b70ca2 3149
wolfSSL 0:1239e9b70ca2 3150 dnsEntry->next = cert->altNames;
wolfSSL 0:1239e9b70ca2 3151 cert->altNames = dnsEntry;
wolfSSL 0:1239e9b70ca2 3152
wolfSSL 0:1239e9b70ca2 3153 length -= strLen;
wolfSSL 0:1239e9b70ca2 3154 idx += strLen;
wolfSSL 0:1239e9b70ca2 3155 }
wolfSSL 0:1239e9b70ca2 3156 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 3157 else if (b == (ASN_CONTEXT_SPECIFIC | ASN_RFC822_TYPE)) {
wolfSSL 0:1239e9b70ca2 3158 DNS_entry* emailEntry;
wolfSSL 0:1239e9b70ca2 3159 int strLen;
wolfSSL 0:1239e9b70ca2 3160 word32 lenStartIdx = idx;
wolfSSL 0:1239e9b70ca2 3161
wolfSSL 0:1239e9b70ca2 3162 if (GetLength(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3163 CYASSL_MSG("\tfail: str length");
wolfSSL 0:1239e9b70ca2 3164 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3165 }
wolfSSL 0:1239e9b70ca2 3166 length -= (idx - lenStartIdx);
wolfSSL 0:1239e9b70ca2 3167
wolfSSL 0:1239e9b70ca2 3168 emailEntry = (DNS_entry*)XMALLOC(sizeof(DNS_entry), cert->heap,
wolfSSL 0:1239e9b70ca2 3169 DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3170 if (emailEntry == NULL) {
wolfSSL 0:1239e9b70ca2 3171 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 3172 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3173 }
wolfSSL 0:1239e9b70ca2 3174
wolfSSL 0:1239e9b70ca2 3175 emailEntry->name = (char*)XMALLOC(strLen + 1, cert->heap,
wolfSSL 0:1239e9b70ca2 3176 DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3177 if (emailEntry->name == NULL) {
wolfSSL 0:1239e9b70ca2 3178 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 3179 XFREE(emailEntry, cert->heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3180 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3181 }
wolfSSL 0:1239e9b70ca2 3182
wolfSSL 0:1239e9b70ca2 3183 XMEMCPY(emailEntry->name, &input[idx], strLen);
wolfSSL 0:1239e9b70ca2 3184 emailEntry->name[strLen] = '\0';
wolfSSL 0:1239e9b70ca2 3185
wolfSSL 0:1239e9b70ca2 3186 emailEntry->next = cert->altEmailNames;
wolfSSL 0:1239e9b70ca2 3187 cert->altEmailNames = emailEntry;
wolfSSL 0:1239e9b70ca2 3188
wolfSSL 0:1239e9b70ca2 3189 length -= strLen;
wolfSSL 0:1239e9b70ca2 3190 idx += strLen;
wolfSSL 0:1239e9b70ca2 3191 }
wolfSSL 0:1239e9b70ca2 3192 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 3193 #ifdef CYASSL_SEP
wolfSSL 0:1239e9b70ca2 3194 else if (b == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | ASN_OTHER_TYPE))
wolfSSL 0:1239e9b70ca2 3195 {
wolfSSL 0:1239e9b70ca2 3196 int strLen;
wolfSSL 0:1239e9b70ca2 3197 word32 lenStartIdx = idx;
wolfSSL 0:1239e9b70ca2 3198 word32 oid = 0;
wolfSSL 0:1239e9b70ca2 3199
wolfSSL 0:1239e9b70ca2 3200 if (GetLength(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3201 CYASSL_MSG("\tfail: other name length");
wolfSSL 0:1239e9b70ca2 3202 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3203 }
wolfSSL 0:1239e9b70ca2 3204 /* Consume the rest of this sequence. */
wolfSSL 0:1239e9b70ca2 3205 length -= (strLen + idx - lenStartIdx);
wolfSSL 0:1239e9b70ca2 3206
wolfSSL 0:1239e9b70ca2 3207 if (GetObjectId(input, &idx, &oid, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3208 CYASSL_MSG("\tbad OID");
wolfSSL 0:1239e9b70ca2 3209 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3210 }
wolfSSL 0:1239e9b70ca2 3211
wolfSSL 0:1239e9b70ca2 3212 if (oid != HW_NAME_OID) {
wolfSSL 0:1239e9b70ca2 3213 CYASSL_MSG("\tincorrect OID");
wolfSSL 0:1239e9b70ca2 3214 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3215 }
wolfSSL 0:1239e9b70ca2 3216
wolfSSL 0:1239e9b70ca2 3217 if (input[idx++] != (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED)) {
wolfSSL 0:1239e9b70ca2 3218 CYASSL_MSG("\twrong type");
wolfSSL 0:1239e9b70ca2 3219 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3220 }
wolfSSL 0:1239e9b70ca2 3221
wolfSSL 0:1239e9b70ca2 3222 if (GetLength(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3223 CYASSL_MSG("\tfail: str len");
wolfSSL 0:1239e9b70ca2 3224 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3225 }
wolfSSL 0:1239e9b70ca2 3226
wolfSSL 0:1239e9b70ca2 3227 if (GetSequence(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3228 CYASSL_MSG("\tBad Sequence");
wolfSSL 0:1239e9b70ca2 3229 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3230 }
wolfSSL 0:1239e9b70ca2 3231
wolfSSL 0:1239e9b70ca2 3232 if (input[idx++] != ASN_OBJECT_ID) {
wolfSSL 0:1239e9b70ca2 3233 CYASSL_MSG("\texpected OID");
wolfSSL 0:1239e9b70ca2 3234 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3235 }
wolfSSL 0:1239e9b70ca2 3236
wolfSSL 0:1239e9b70ca2 3237 if (GetLength(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3238 CYASSL_MSG("\tfailed: str len");
wolfSSL 0:1239e9b70ca2 3239 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3240 }
wolfSSL 0:1239e9b70ca2 3241
wolfSSL 0:1239e9b70ca2 3242 cert->hwType = (byte*)XMALLOC(strLen, cert->heap, 0);
wolfSSL 0:1239e9b70ca2 3243 if (cert->hwType == NULL) {
wolfSSL 0:1239e9b70ca2 3244 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 3245 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 3246 }
wolfSSL 0:1239e9b70ca2 3247
wolfSSL 0:1239e9b70ca2 3248 XMEMCPY(cert->hwType, &input[idx], strLen);
wolfSSL 0:1239e9b70ca2 3249 cert->hwTypeSz = strLen;
wolfSSL 0:1239e9b70ca2 3250 idx += strLen;
wolfSSL 0:1239e9b70ca2 3251
wolfSSL 0:1239e9b70ca2 3252 if (input[idx++] != ASN_OCTET_STRING) {
wolfSSL 0:1239e9b70ca2 3253 CYASSL_MSG("\texpected Octet String");
wolfSSL 0:1239e9b70ca2 3254 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3255 }
wolfSSL 0:1239e9b70ca2 3256
wolfSSL 0:1239e9b70ca2 3257 if (GetLength(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3258 CYASSL_MSG("\tfailed: str len");
wolfSSL 0:1239e9b70ca2 3259 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3260 }
wolfSSL 0:1239e9b70ca2 3261
wolfSSL 0:1239e9b70ca2 3262 cert->hwSerialNum = (byte*)XMALLOC(strLen + 1, cert->heap, 0);
wolfSSL 0:1239e9b70ca2 3263 if (cert->hwSerialNum == NULL) {
wolfSSL 0:1239e9b70ca2 3264 CYASSL_MSG("\tOut of Memory");
wolfSSL 0:1239e9b70ca2 3265 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 3266 }
wolfSSL 0:1239e9b70ca2 3267
wolfSSL 0:1239e9b70ca2 3268 XMEMCPY(cert->hwSerialNum, &input[idx], strLen);
wolfSSL 0:1239e9b70ca2 3269 cert->hwSerialNum[strLen] = '\0';
wolfSSL 0:1239e9b70ca2 3270 cert->hwSerialNumSz = strLen;
wolfSSL 0:1239e9b70ca2 3271 idx += strLen;
wolfSSL 0:1239e9b70ca2 3272 }
wolfSSL 0:1239e9b70ca2 3273 #endif /* CYASSL_SEP */
wolfSSL 0:1239e9b70ca2 3274 else {
wolfSSL 0:1239e9b70ca2 3275 int strLen;
wolfSSL 0:1239e9b70ca2 3276 word32 lenStartIdx = idx;
wolfSSL 0:1239e9b70ca2 3277
wolfSSL 0:1239e9b70ca2 3278 CYASSL_MSG("\tUnsupported name type, skipping");
wolfSSL 0:1239e9b70ca2 3279
wolfSSL 0:1239e9b70ca2 3280 if (GetLength(input, &idx, &strLen, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3281 CYASSL_MSG("\tfail: unsupported name length");
wolfSSL 0:1239e9b70ca2 3282 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3283 }
wolfSSL 0:1239e9b70ca2 3284 length -= (strLen + idx - lenStartIdx);
wolfSSL 0:1239e9b70ca2 3285 idx += strLen;
wolfSSL 0:1239e9b70ca2 3286 }
wolfSSL 0:1239e9b70ca2 3287 }
wolfSSL 0:1239e9b70ca2 3288 return 0;
wolfSSL 0:1239e9b70ca2 3289 }
wolfSSL 0:1239e9b70ca2 3290
wolfSSL 0:1239e9b70ca2 3291
wolfSSL 0:1239e9b70ca2 3292 static int DecodeBasicCaConstraint(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3293 {
wolfSSL 0:1239e9b70ca2 3294 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3295 int length = 0;
wolfSSL 0:1239e9b70ca2 3296
wolfSSL 0:1239e9b70ca2 3297 CYASSL_ENTER("DecodeBasicCaConstraint");
wolfSSL 0:1239e9b70ca2 3298 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3299 CYASSL_MSG("\tfail: bad SEQUENCE");
wolfSSL 0:1239e9b70ca2 3300 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3301 }
wolfSSL 0:1239e9b70ca2 3302
wolfSSL 0:1239e9b70ca2 3303 if (length == 0)
wolfSSL 0:1239e9b70ca2 3304 return 0;
wolfSSL 0:1239e9b70ca2 3305
wolfSSL 0:1239e9b70ca2 3306 /* If the basic ca constraint is false, this extension may be named, but
wolfSSL 0:1239e9b70ca2 3307 * left empty. So, if the length is 0, just return. */
wolfSSL 0:1239e9b70ca2 3308
wolfSSL 0:1239e9b70ca2 3309 if (input[idx++] != ASN_BOOLEAN)
wolfSSL 0:1239e9b70ca2 3310 {
wolfSSL 0:1239e9b70ca2 3311 CYASSL_MSG("\tfail: constraint not BOOLEAN");
wolfSSL 0:1239e9b70ca2 3312 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3313 }
wolfSSL 0:1239e9b70ca2 3314
wolfSSL 0:1239e9b70ca2 3315 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3316 {
wolfSSL 0:1239e9b70ca2 3317 CYASSL_MSG("\tfail: length");
wolfSSL 0:1239e9b70ca2 3318 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3319 }
wolfSSL 0:1239e9b70ca2 3320
wolfSSL 0:1239e9b70ca2 3321 if (input[idx++])
wolfSSL 0:1239e9b70ca2 3322 cert->isCA = 1;
wolfSSL 0:1239e9b70ca2 3323
wolfSSL 0:1239e9b70ca2 3324 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3325 /* If there isn't any more data, return. */
wolfSSL 0:1239e9b70ca2 3326 if (idx >= (word32)sz)
wolfSSL 0:1239e9b70ca2 3327 return 0;
wolfSSL 0:1239e9b70ca2 3328
wolfSSL 0:1239e9b70ca2 3329 /* Anything left should be the optional pathlength */
wolfSSL 0:1239e9b70ca2 3330 if (input[idx++] != ASN_INTEGER) {
wolfSSL 0:1239e9b70ca2 3331 CYASSL_MSG("\tfail: pathlen not INTEGER");
wolfSSL 0:1239e9b70ca2 3332 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3333 }
wolfSSL 0:1239e9b70ca2 3334
wolfSSL 0:1239e9b70ca2 3335 if (input[idx++] != 1) {
wolfSSL 0:1239e9b70ca2 3336 CYASSL_MSG("\tfail: pathlen too long");
wolfSSL 0:1239e9b70ca2 3337 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3338 }
wolfSSL 0:1239e9b70ca2 3339
wolfSSL 0:1239e9b70ca2 3340 cert->pathLength = input[idx];
wolfSSL 0:1239e9b70ca2 3341 cert->extBasicConstPlSet = 1;
wolfSSL 0:1239e9b70ca2 3342 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 3343
wolfSSL 0:1239e9b70ca2 3344 return 0;
wolfSSL 0:1239e9b70ca2 3345 }
wolfSSL 0:1239e9b70ca2 3346
wolfSSL 0:1239e9b70ca2 3347
wolfSSL 0:1239e9b70ca2 3348 #define CRLDP_FULL_NAME 0
wolfSSL 0:1239e9b70ca2 3349 /* From RFC3280 SS4.2.1.14, Distribution Point Name*/
wolfSSL 0:1239e9b70ca2 3350 #define GENERALNAME_URI 6
wolfSSL 0:1239e9b70ca2 3351 /* From RFC3280 SS4.2.1.7, GeneralName */
wolfSSL 0:1239e9b70ca2 3352
wolfSSL 0:1239e9b70ca2 3353 static int DecodeCrlDist(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3354 {
wolfSSL 0:1239e9b70ca2 3355 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3356 int length = 0;
wolfSSL 0:1239e9b70ca2 3357
wolfSSL 0:1239e9b70ca2 3358 CYASSL_ENTER("DecodeCrlDist");
wolfSSL 0:1239e9b70ca2 3359
wolfSSL 0:1239e9b70ca2 3360 /* Unwrap the list of Distribution Points*/
wolfSSL 0:1239e9b70ca2 3361 if (GetSequence(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3362 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3363
wolfSSL 0:1239e9b70ca2 3364 /* Unwrap a single Distribution Point */
wolfSSL 0:1239e9b70ca2 3365 if (GetSequence(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3366 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3367
wolfSSL 0:1239e9b70ca2 3368 /* The Distribution Point has three explicit optional members
wolfSSL 0:1239e9b70ca2 3369 * First check for a DistributionPointName
wolfSSL 0:1239e9b70ca2 3370 */
wolfSSL 0:1239e9b70ca2 3371 if (input[idx] == (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | 0))
wolfSSL 0:1239e9b70ca2 3372 {
wolfSSL 0:1239e9b70ca2 3373 idx++;
wolfSSL 0:1239e9b70ca2 3374 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3375 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3376
wolfSSL 0:1239e9b70ca2 3377 if (input[idx] ==
wolfSSL 0:1239e9b70ca2 3378 (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | CRLDP_FULL_NAME))
wolfSSL 0:1239e9b70ca2 3379 {
wolfSSL 0:1239e9b70ca2 3380 idx++;
wolfSSL 0:1239e9b70ca2 3381 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3382 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3383
wolfSSL 0:1239e9b70ca2 3384 if (input[idx] == (ASN_CONTEXT_SPECIFIC | GENERALNAME_URI))
wolfSSL 0:1239e9b70ca2 3385 {
wolfSSL 0:1239e9b70ca2 3386 idx++;
wolfSSL 0:1239e9b70ca2 3387 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3388 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3389
wolfSSL 0:1239e9b70ca2 3390 cert->extCrlInfoSz = length;
wolfSSL 0:1239e9b70ca2 3391 cert->extCrlInfo = input + idx;
wolfSSL 0:1239e9b70ca2 3392 idx += length;
wolfSSL 0:1239e9b70ca2 3393 }
wolfSSL 0:1239e9b70ca2 3394 else
wolfSSL 0:1239e9b70ca2 3395 /* This isn't a URI, skip it. */
wolfSSL 0:1239e9b70ca2 3396 idx += length;
wolfSSL 0:1239e9b70ca2 3397 }
wolfSSL 0:1239e9b70ca2 3398 else
wolfSSL 0:1239e9b70ca2 3399 /* This isn't a FULLNAME, skip it. */
wolfSSL 0:1239e9b70ca2 3400 idx += length;
wolfSSL 0:1239e9b70ca2 3401 }
wolfSSL 0:1239e9b70ca2 3402
wolfSSL 0:1239e9b70ca2 3403 /* Check for reasonFlags */
wolfSSL 0:1239e9b70ca2 3404 if (idx < (word32)sz &&
wolfSSL 0:1239e9b70ca2 3405 input[idx] == (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | 1))
wolfSSL 0:1239e9b70ca2 3406 {
wolfSSL 0:1239e9b70ca2 3407 idx++;
wolfSSL 0:1239e9b70ca2 3408 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3409 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3410 idx += length;
wolfSSL 0:1239e9b70ca2 3411 }
wolfSSL 0:1239e9b70ca2 3412
wolfSSL 0:1239e9b70ca2 3413 /* Check for cRLIssuer */
wolfSSL 0:1239e9b70ca2 3414 if (idx < (word32)sz &&
wolfSSL 0:1239e9b70ca2 3415 input[idx] == (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | 2))
wolfSSL 0:1239e9b70ca2 3416 {
wolfSSL 0:1239e9b70ca2 3417 idx++;
wolfSSL 0:1239e9b70ca2 3418 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3419 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3420 idx += length;
wolfSSL 0:1239e9b70ca2 3421 }
wolfSSL 0:1239e9b70ca2 3422
wolfSSL 0:1239e9b70ca2 3423 if (idx < (word32)sz)
wolfSSL 0:1239e9b70ca2 3424 {
wolfSSL 0:1239e9b70ca2 3425 CYASSL_MSG("\tThere are more CRL Distribution Point records, "
wolfSSL 0:1239e9b70ca2 3426 "but we only use the first one.");
wolfSSL 0:1239e9b70ca2 3427 }
wolfSSL 0:1239e9b70ca2 3428
wolfSSL 0:1239e9b70ca2 3429 return 0;
wolfSSL 0:1239e9b70ca2 3430 }
wolfSSL 0:1239e9b70ca2 3431
wolfSSL 0:1239e9b70ca2 3432
wolfSSL 0:1239e9b70ca2 3433 static int DecodeAuthInfo(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3434 /*
wolfSSL 0:1239e9b70ca2 3435 * Read the first of the Authority Information Access records. If there are
wolfSSL 0:1239e9b70ca2 3436 * any issues, return without saving the record.
wolfSSL 0:1239e9b70ca2 3437 */
wolfSSL 0:1239e9b70ca2 3438 {
wolfSSL 0:1239e9b70ca2 3439 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3440 int length = 0;
wolfSSL 0:1239e9b70ca2 3441 byte b;
wolfSSL 0:1239e9b70ca2 3442 word32 oid;
wolfSSL 0:1239e9b70ca2 3443
wolfSSL 0:1239e9b70ca2 3444 CYASSL_ENTER("DecodeAuthInfo");
wolfSSL 0:1239e9b70ca2 3445
wolfSSL 0:1239e9b70ca2 3446 /* Unwrap the list of AIAs */
wolfSSL 0:1239e9b70ca2 3447 if (GetSequence(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3448 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3449
wolfSSL 0:1239e9b70ca2 3450 while (idx < (word32)sz) {
wolfSSL 0:1239e9b70ca2 3451 /* Unwrap a single AIA */
wolfSSL 0:1239e9b70ca2 3452 if (GetSequence(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3453 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3454
wolfSSL 0:1239e9b70ca2 3455 oid = 0;
wolfSSL 0:1239e9b70ca2 3456 if (GetObjectId(input, &idx, &oid, sz) < 0)
wolfSSL 0:1239e9b70ca2 3457 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3458
wolfSSL 0:1239e9b70ca2 3459 /* Only supporting URIs right now. */
wolfSSL 0:1239e9b70ca2 3460 b = input[idx++];
wolfSSL 0:1239e9b70ca2 3461 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3462 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3463
wolfSSL 0:1239e9b70ca2 3464 if (b == (ASN_CONTEXT_SPECIFIC | GENERALNAME_URI) &&
wolfSSL 0:1239e9b70ca2 3465 oid == AIA_OCSP_OID)
wolfSSL 0:1239e9b70ca2 3466 {
wolfSSL 0:1239e9b70ca2 3467 cert->extAuthInfoSz = length;
wolfSSL 0:1239e9b70ca2 3468 cert->extAuthInfo = input + idx;
wolfSSL 0:1239e9b70ca2 3469 break;
wolfSSL 0:1239e9b70ca2 3470 }
wolfSSL 0:1239e9b70ca2 3471 idx += length;
wolfSSL 0:1239e9b70ca2 3472 }
wolfSSL 0:1239e9b70ca2 3473
wolfSSL 0:1239e9b70ca2 3474 return 0;
wolfSSL 0:1239e9b70ca2 3475 }
wolfSSL 0:1239e9b70ca2 3476
wolfSSL 0:1239e9b70ca2 3477
wolfSSL 0:1239e9b70ca2 3478 static int DecodeAuthKeyId(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3479 {
wolfSSL 0:1239e9b70ca2 3480 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3481 int length = 0, ret = 0;
wolfSSL 0:1239e9b70ca2 3482
wolfSSL 0:1239e9b70ca2 3483 CYASSL_ENTER("DecodeAuthKeyId");
wolfSSL 0:1239e9b70ca2 3484
wolfSSL 0:1239e9b70ca2 3485 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3486 CYASSL_MSG("\tfail: should be a SEQUENCE\n");
wolfSSL 0:1239e9b70ca2 3487 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3488 }
wolfSSL 0:1239e9b70ca2 3489
wolfSSL 0:1239e9b70ca2 3490 if (input[idx++] != (ASN_CONTEXT_SPECIFIC | 0)) {
wolfSSL 0:1239e9b70ca2 3491 CYASSL_MSG("\tfail: wanted OPTIONAL item 0, not available\n");
wolfSSL 0:1239e9b70ca2 3492 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3493 }
wolfSSL 0:1239e9b70ca2 3494
wolfSSL 0:1239e9b70ca2 3495 if (GetLength(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3496 CYASSL_MSG("\tfail: extension data length");
wolfSSL 0:1239e9b70ca2 3497 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3498 }
wolfSSL 0:1239e9b70ca2 3499
wolfSSL 0:1239e9b70ca2 3500 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3501 cert->extAuthKeyIdSrc = &input[idx];
wolfSSL 0:1239e9b70ca2 3502 cert->extAuthKeyIdSz = length;
wolfSSL 0:1239e9b70ca2 3503 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 3504
wolfSSL 0:1239e9b70ca2 3505 if (length == SHA_SIZE) {
wolfSSL 0:1239e9b70ca2 3506 XMEMCPY(cert->extAuthKeyId, input + idx, length);
wolfSSL 0:1239e9b70ca2 3507 }
wolfSSL 0:1239e9b70ca2 3508 else {
wolfSSL 0:1239e9b70ca2 3509 Sha sha;
wolfSSL 0:1239e9b70ca2 3510 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 3511 if (ret != 0)
wolfSSL 0:1239e9b70ca2 3512 return ret;
wolfSSL 0:1239e9b70ca2 3513 ShaUpdate(&sha, input + idx, length);
wolfSSL 0:1239e9b70ca2 3514 ShaFinal(&sha, cert->extAuthKeyId);
wolfSSL 0:1239e9b70ca2 3515 }
wolfSSL 0:1239e9b70ca2 3516
wolfSSL 0:1239e9b70ca2 3517 return 0;
wolfSSL 0:1239e9b70ca2 3518 }
wolfSSL 0:1239e9b70ca2 3519
wolfSSL 0:1239e9b70ca2 3520
wolfSSL 0:1239e9b70ca2 3521 static int DecodeSubjKeyId(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3522 {
wolfSSL 0:1239e9b70ca2 3523 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3524 int length = 0, ret = 0;
wolfSSL 0:1239e9b70ca2 3525
wolfSSL 0:1239e9b70ca2 3526 CYASSL_ENTER("DecodeSubjKeyId");
wolfSSL 0:1239e9b70ca2 3527
wolfSSL 0:1239e9b70ca2 3528 if (input[idx++] != ASN_OCTET_STRING) {
wolfSSL 0:1239e9b70ca2 3529 CYASSL_MSG("\tfail: should be an OCTET STRING");
wolfSSL 0:1239e9b70ca2 3530 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3531 }
wolfSSL 0:1239e9b70ca2 3532
wolfSSL 0:1239e9b70ca2 3533 if (GetLength(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3534 CYASSL_MSG("\tfail: extension data length");
wolfSSL 0:1239e9b70ca2 3535 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3536 }
wolfSSL 0:1239e9b70ca2 3537
wolfSSL 0:1239e9b70ca2 3538 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3539 cert->extSubjKeyIdSrc = &input[idx];
wolfSSL 0:1239e9b70ca2 3540 cert->extSubjKeyIdSz = length;
wolfSSL 0:1239e9b70ca2 3541 #endif /* OPENSSL_EXTRA */
wolfSSL 0:1239e9b70ca2 3542
wolfSSL 0:1239e9b70ca2 3543 if (length == SIGNER_DIGEST_SIZE) {
wolfSSL 0:1239e9b70ca2 3544 XMEMCPY(cert->extSubjKeyId, input + idx, length);
wolfSSL 0:1239e9b70ca2 3545 }
wolfSSL 0:1239e9b70ca2 3546 else {
wolfSSL 0:1239e9b70ca2 3547 Sha sha;
wolfSSL 0:1239e9b70ca2 3548 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 3549 if (ret != 0)
wolfSSL 0:1239e9b70ca2 3550 return ret;
wolfSSL 0:1239e9b70ca2 3551 ShaUpdate(&sha, input + idx, length);
wolfSSL 0:1239e9b70ca2 3552 ShaFinal(&sha, cert->extSubjKeyId);
wolfSSL 0:1239e9b70ca2 3553 }
wolfSSL 0:1239e9b70ca2 3554
wolfSSL 0:1239e9b70ca2 3555 return ret;
wolfSSL 0:1239e9b70ca2 3556 }
wolfSSL 0:1239e9b70ca2 3557
wolfSSL 0:1239e9b70ca2 3558
wolfSSL 0:1239e9b70ca2 3559 static int DecodeKeyUsage(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3560 {
wolfSSL 0:1239e9b70ca2 3561 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3562 int length;
wolfSSL 0:1239e9b70ca2 3563 byte unusedBits;
wolfSSL 0:1239e9b70ca2 3564 CYASSL_ENTER("DecodeKeyUsage");
wolfSSL 0:1239e9b70ca2 3565
wolfSSL 0:1239e9b70ca2 3566 if (input[idx++] != ASN_BIT_STRING) {
wolfSSL 0:1239e9b70ca2 3567 CYASSL_MSG("\tfail: key usage expected bit string");
wolfSSL 0:1239e9b70ca2 3568 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3569 }
wolfSSL 0:1239e9b70ca2 3570
wolfSSL 0:1239e9b70ca2 3571 if (GetLength(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3572 CYASSL_MSG("\tfail: key usage bad length");
wolfSSL 0:1239e9b70ca2 3573 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3574 }
wolfSSL 0:1239e9b70ca2 3575
wolfSSL 0:1239e9b70ca2 3576 unusedBits = input[idx++];
wolfSSL 0:1239e9b70ca2 3577 length--;
wolfSSL 0:1239e9b70ca2 3578
wolfSSL 0:1239e9b70ca2 3579 if (length == 2) {
wolfSSL 0:1239e9b70ca2 3580 cert->extKeyUsage = (word16)((input[idx] << 8) | input[idx+1]);
wolfSSL 0:1239e9b70ca2 3581 cert->extKeyUsage >>= unusedBits;
wolfSSL 0:1239e9b70ca2 3582 }
wolfSSL 0:1239e9b70ca2 3583 else if (length == 1)
wolfSSL 0:1239e9b70ca2 3584 cert->extKeyUsage = (word16)(input[idx] << 1);
wolfSSL 0:1239e9b70ca2 3585
wolfSSL 0:1239e9b70ca2 3586 return 0;
wolfSSL 0:1239e9b70ca2 3587 }
wolfSSL 0:1239e9b70ca2 3588
wolfSSL 0:1239e9b70ca2 3589
wolfSSL 0:1239e9b70ca2 3590 static int DecodeExtKeyUsage(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3591 {
wolfSSL 0:1239e9b70ca2 3592 word32 idx = 0, oid;
wolfSSL 0:1239e9b70ca2 3593 int length;
wolfSSL 0:1239e9b70ca2 3594
wolfSSL 0:1239e9b70ca2 3595 CYASSL_ENTER("DecodeExtKeyUsage");
wolfSSL 0:1239e9b70ca2 3596
wolfSSL 0:1239e9b70ca2 3597 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3598 CYASSL_MSG("\tfail: should be a SEQUENCE");
wolfSSL 0:1239e9b70ca2 3599 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3600 }
wolfSSL 0:1239e9b70ca2 3601
wolfSSL 0:1239e9b70ca2 3602 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3603 cert->extExtKeyUsageSrc = input + idx;
wolfSSL 0:1239e9b70ca2 3604 cert->extExtKeyUsageSz = length;
wolfSSL 0:1239e9b70ca2 3605 #endif
wolfSSL 0:1239e9b70ca2 3606
wolfSSL 0:1239e9b70ca2 3607 while (idx < (word32)sz) {
wolfSSL 0:1239e9b70ca2 3608 if (GetObjectId(input, &idx, &oid, sz) < 0)
wolfSSL 0:1239e9b70ca2 3609 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3610
wolfSSL 0:1239e9b70ca2 3611 switch (oid) {
wolfSSL 0:1239e9b70ca2 3612 case EKU_ANY_OID:
wolfSSL 0:1239e9b70ca2 3613 cert->extExtKeyUsage |= EXTKEYUSE_ANY;
wolfSSL 0:1239e9b70ca2 3614 break;
wolfSSL 0:1239e9b70ca2 3615 case EKU_SERVER_AUTH_OID:
wolfSSL 0:1239e9b70ca2 3616 cert->extExtKeyUsage |= EXTKEYUSE_SERVER_AUTH;
wolfSSL 0:1239e9b70ca2 3617 break;
wolfSSL 0:1239e9b70ca2 3618 case EKU_CLIENT_AUTH_OID:
wolfSSL 0:1239e9b70ca2 3619 cert->extExtKeyUsage |= EXTKEYUSE_CLIENT_AUTH;
wolfSSL 0:1239e9b70ca2 3620 break;
wolfSSL 0:1239e9b70ca2 3621 case EKU_OCSP_SIGN_OID:
wolfSSL 0:1239e9b70ca2 3622 cert->extExtKeyUsage |= EXTKEYUSE_OCSP_SIGN;
wolfSSL 0:1239e9b70ca2 3623 break;
wolfSSL 0:1239e9b70ca2 3624 }
wolfSSL 0:1239e9b70ca2 3625
wolfSSL 0:1239e9b70ca2 3626 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3627 cert->extExtKeyUsageCount++;
wolfSSL 0:1239e9b70ca2 3628 #endif
wolfSSL 0:1239e9b70ca2 3629 }
wolfSSL 0:1239e9b70ca2 3630
wolfSSL 0:1239e9b70ca2 3631 return 0;
wolfSSL 0:1239e9b70ca2 3632 }
wolfSSL 0:1239e9b70ca2 3633
wolfSSL 0:1239e9b70ca2 3634
wolfSSL 0:1239e9b70ca2 3635 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 3636 static int DecodeSubtree(byte* input, int sz, Base_entry** head, void* heap)
wolfSSL 0:1239e9b70ca2 3637 {
wolfSSL 0:1239e9b70ca2 3638 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3639
wolfSSL 0:1239e9b70ca2 3640 (void)heap;
wolfSSL 0:1239e9b70ca2 3641
wolfSSL 0:1239e9b70ca2 3642 while (idx < (word32)sz) {
wolfSSL 0:1239e9b70ca2 3643 int seqLength, strLength;
wolfSSL 0:1239e9b70ca2 3644 word32 nameIdx;
wolfSSL 0:1239e9b70ca2 3645 byte b;
wolfSSL 0:1239e9b70ca2 3646
wolfSSL 0:1239e9b70ca2 3647 if (GetSequence(input, &idx, &seqLength, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3648 CYASSL_MSG("\tfail: should be a SEQUENCE");
wolfSSL 0:1239e9b70ca2 3649 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3650 }
wolfSSL 0:1239e9b70ca2 3651
wolfSSL 0:1239e9b70ca2 3652 nameIdx = idx;
wolfSSL 0:1239e9b70ca2 3653 b = input[nameIdx++];
wolfSSL 0:1239e9b70ca2 3654 if (GetLength(input, &nameIdx, &strLength, sz) <= 0) {
wolfSSL 0:1239e9b70ca2 3655 CYASSL_MSG("\tinvalid length");
wolfSSL 0:1239e9b70ca2 3656 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3657 }
wolfSSL 0:1239e9b70ca2 3658
wolfSSL 0:1239e9b70ca2 3659 if (b == (ASN_CONTEXT_SPECIFIC | ASN_DNS_TYPE) ||
wolfSSL 0:1239e9b70ca2 3660 b == (ASN_CONTEXT_SPECIFIC | ASN_RFC822_TYPE) ||
wolfSSL 0:1239e9b70ca2 3661 b == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | ASN_DIR_TYPE)) {
wolfSSL 0:1239e9b70ca2 3662
wolfSSL 0:1239e9b70ca2 3663 Base_entry* entry = (Base_entry*)XMALLOC(sizeof(Base_entry),
wolfSSL 0:1239e9b70ca2 3664 heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3665
wolfSSL 0:1239e9b70ca2 3666 if (entry == NULL) {
wolfSSL 0:1239e9b70ca2 3667 CYASSL_MSG("allocate error");
wolfSSL 0:1239e9b70ca2 3668 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 3669 }
wolfSSL 0:1239e9b70ca2 3670
wolfSSL 0:1239e9b70ca2 3671 entry->name = (char*)XMALLOC(strLength, heap, DYNAMIC_TYPE_ALTNAME);
wolfSSL 0:1239e9b70ca2 3672 if (entry->name == NULL) {
wolfSSL 0:1239e9b70ca2 3673 CYASSL_MSG("allocate error");
wolfSSL 0:1239e9b70ca2 3674 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 3675 }
wolfSSL 0:1239e9b70ca2 3676
wolfSSL 0:1239e9b70ca2 3677 XMEMCPY(entry->name, &input[nameIdx], strLength);
wolfSSL 0:1239e9b70ca2 3678 entry->nameSz = strLength;
wolfSSL 0:1239e9b70ca2 3679 entry->type = b & 0x0F;
wolfSSL 0:1239e9b70ca2 3680
wolfSSL 0:1239e9b70ca2 3681 entry->next = *head;
wolfSSL 0:1239e9b70ca2 3682 *head = entry;
wolfSSL 0:1239e9b70ca2 3683 }
wolfSSL 0:1239e9b70ca2 3684
wolfSSL 0:1239e9b70ca2 3685 idx += seqLength;
wolfSSL 0:1239e9b70ca2 3686 }
wolfSSL 0:1239e9b70ca2 3687
wolfSSL 0:1239e9b70ca2 3688 return 0;
wolfSSL 0:1239e9b70ca2 3689 }
wolfSSL 0:1239e9b70ca2 3690
wolfSSL 0:1239e9b70ca2 3691
wolfSSL 0:1239e9b70ca2 3692 static int DecodeNameConstraints(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3693 {
wolfSSL 0:1239e9b70ca2 3694 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3695 int length = 0;
wolfSSL 0:1239e9b70ca2 3696
wolfSSL 0:1239e9b70ca2 3697 CYASSL_ENTER("DecodeNameConstraints");
wolfSSL 0:1239e9b70ca2 3698
wolfSSL 0:1239e9b70ca2 3699 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3700 CYASSL_MSG("\tfail: should be a SEQUENCE");
wolfSSL 0:1239e9b70ca2 3701 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3702 }
wolfSSL 0:1239e9b70ca2 3703
wolfSSL 0:1239e9b70ca2 3704 while (idx < (word32)sz) {
wolfSSL 0:1239e9b70ca2 3705 byte b = input[idx++];
wolfSSL 0:1239e9b70ca2 3706 Base_entry** subtree = NULL;
wolfSSL 0:1239e9b70ca2 3707
wolfSSL 0:1239e9b70ca2 3708 if (GetLength(input, &idx, &length, sz) <= 0) {
wolfSSL 0:1239e9b70ca2 3709 CYASSL_MSG("\tinvalid length");
wolfSSL 0:1239e9b70ca2 3710 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3711 }
wolfSSL 0:1239e9b70ca2 3712
wolfSSL 0:1239e9b70ca2 3713 if (b == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | 0))
wolfSSL 0:1239e9b70ca2 3714 subtree = &cert->permittedNames;
wolfSSL 0:1239e9b70ca2 3715 else if (b == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | 1))
wolfSSL 0:1239e9b70ca2 3716 subtree = &cert->excludedNames;
wolfSSL 0:1239e9b70ca2 3717 else {
wolfSSL 0:1239e9b70ca2 3718 CYASSL_MSG("\tinvalid subtree");
wolfSSL 0:1239e9b70ca2 3719 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3720 }
wolfSSL 0:1239e9b70ca2 3721
wolfSSL 0:1239e9b70ca2 3722 DecodeSubtree(input + idx, length, subtree, cert->heap);
wolfSSL 0:1239e9b70ca2 3723
wolfSSL 0:1239e9b70ca2 3724 idx += length;
wolfSSL 0:1239e9b70ca2 3725 }
wolfSSL 0:1239e9b70ca2 3726
wolfSSL 0:1239e9b70ca2 3727 return 0;
wolfSSL 0:1239e9b70ca2 3728 }
wolfSSL 0:1239e9b70ca2 3729 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 3730
wolfSSL 0:1239e9b70ca2 3731
wolfSSL 0:1239e9b70ca2 3732 #ifdef CYASSL_SEP
wolfSSL 0:1239e9b70ca2 3733 static int DecodeCertPolicy(byte* input, int sz, DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3734 {
wolfSSL 0:1239e9b70ca2 3735 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3736 int length = 0;
wolfSSL 0:1239e9b70ca2 3737
wolfSSL 0:1239e9b70ca2 3738 CYASSL_ENTER("DecodeCertPolicy");
wolfSSL 0:1239e9b70ca2 3739
wolfSSL 0:1239e9b70ca2 3740 /* Unwrap certificatePolicies */
wolfSSL 0:1239e9b70ca2 3741 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3742 CYASSL_MSG("\tdeviceType isn't OID");
wolfSSL 0:1239e9b70ca2 3743 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3744 }
wolfSSL 0:1239e9b70ca2 3745
wolfSSL 0:1239e9b70ca2 3746 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3747 CYASSL_MSG("\tdeviceType isn't OID");
wolfSSL 0:1239e9b70ca2 3748 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3749 }
wolfSSL 0:1239e9b70ca2 3750
wolfSSL 0:1239e9b70ca2 3751 if (input[idx++] != ASN_OBJECT_ID) {
wolfSSL 0:1239e9b70ca2 3752 CYASSL_MSG("\tdeviceType isn't OID");
wolfSSL 0:1239e9b70ca2 3753 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3754 }
wolfSSL 0:1239e9b70ca2 3755
wolfSSL 0:1239e9b70ca2 3756 if (GetLength(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3757 CYASSL_MSG("\tCouldn't read length of deviceType");
wolfSSL 0:1239e9b70ca2 3758 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3759 }
wolfSSL 0:1239e9b70ca2 3760
wolfSSL 0:1239e9b70ca2 3761 if (length > 0) {
wolfSSL 0:1239e9b70ca2 3762 cert->deviceType = (byte*)XMALLOC(length, cert->heap, 0);
wolfSSL 0:1239e9b70ca2 3763 if (cert->deviceType == NULL) {
wolfSSL 0:1239e9b70ca2 3764 CYASSL_MSG("\tCouldn't alloc memory for deviceType");
wolfSSL 0:1239e9b70ca2 3765 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 3766 }
wolfSSL 0:1239e9b70ca2 3767 cert->deviceTypeSz = length;
wolfSSL 0:1239e9b70ca2 3768 XMEMCPY(cert->deviceType, input + idx, length);
wolfSSL 0:1239e9b70ca2 3769 }
wolfSSL 0:1239e9b70ca2 3770
wolfSSL 0:1239e9b70ca2 3771 CYASSL_LEAVE("DecodeCertPolicy", 0);
wolfSSL 0:1239e9b70ca2 3772 return 0;
wolfSSL 0:1239e9b70ca2 3773 }
wolfSSL 0:1239e9b70ca2 3774 #endif /* CYASSL_SEP */
wolfSSL 0:1239e9b70ca2 3775
wolfSSL 0:1239e9b70ca2 3776
wolfSSL 0:1239e9b70ca2 3777 static int DecodeCertExtensions(DecodedCert* cert)
wolfSSL 0:1239e9b70ca2 3778 /*
wolfSSL 0:1239e9b70ca2 3779 * Processing the Certificate Extensions. This does not modify the current
wolfSSL 0:1239e9b70ca2 3780 * index. It is works starting with the recorded extensions pointer.
wolfSSL 0:1239e9b70ca2 3781 */
wolfSSL 0:1239e9b70ca2 3782 {
wolfSSL 0:1239e9b70ca2 3783 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 3784 int sz = cert->extensionsSz;
wolfSSL 0:1239e9b70ca2 3785 byte* input = cert->extensions;
wolfSSL 0:1239e9b70ca2 3786 int length;
wolfSSL 0:1239e9b70ca2 3787 word32 oid;
wolfSSL 0:1239e9b70ca2 3788 byte critical = 0;
wolfSSL 0:1239e9b70ca2 3789 byte criticalFail = 0;
wolfSSL 0:1239e9b70ca2 3790
wolfSSL 0:1239e9b70ca2 3791 CYASSL_ENTER("DecodeCertExtensions");
wolfSSL 0:1239e9b70ca2 3792
wolfSSL 0:1239e9b70ca2 3793 if (input == NULL || sz == 0)
wolfSSL 0:1239e9b70ca2 3794 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 3795
wolfSSL 0:1239e9b70ca2 3796 if (input[idx++] != ASN_EXTENSIONS)
wolfSSL 0:1239e9b70ca2 3797 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3798
wolfSSL 0:1239e9b70ca2 3799 if (GetLength(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3800 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3801
wolfSSL 0:1239e9b70ca2 3802 if (GetSequence(input, &idx, &length, sz) < 0)
wolfSSL 0:1239e9b70ca2 3803 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3804
wolfSSL 0:1239e9b70ca2 3805 while (idx < (word32)sz) {
wolfSSL 0:1239e9b70ca2 3806 if (GetSequence(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3807 CYASSL_MSG("\tfail: should be a SEQUENCE");
wolfSSL 0:1239e9b70ca2 3808 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3809 }
wolfSSL 0:1239e9b70ca2 3810
wolfSSL 0:1239e9b70ca2 3811 oid = 0;
wolfSSL 0:1239e9b70ca2 3812 if (GetObjectId(input, &idx, &oid, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3813 CYASSL_MSG("\tfail: OBJECT ID");
wolfSSL 0:1239e9b70ca2 3814 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3815 }
wolfSSL 0:1239e9b70ca2 3816
wolfSSL 0:1239e9b70ca2 3817 /* check for critical flag */
wolfSSL 0:1239e9b70ca2 3818 critical = 0;
wolfSSL 0:1239e9b70ca2 3819 if (input[idx] == ASN_BOOLEAN) {
wolfSSL 0:1239e9b70ca2 3820 int boolLength = 0;
wolfSSL 0:1239e9b70ca2 3821 idx++;
wolfSSL 0:1239e9b70ca2 3822 if (GetLength(input, &idx, &boolLength, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3823 CYASSL_MSG("\tfail: critical boolean length");
wolfSSL 0:1239e9b70ca2 3824 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3825 }
wolfSSL 0:1239e9b70ca2 3826 if (input[idx++])
wolfSSL 0:1239e9b70ca2 3827 critical = 1;
wolfSSL 0:1239e9b70ca2 3828 }
wolfSSL 0:1239e9b70ca2 3829
wolfSSL 0:1239e9b70ca2 3830 /* process the extension based on the OID */
wolfSSL 0:1239e9b70ca2 3831 if (input[idx++] != ASN_OCTET_STRING) {
wolfSSL 0:1239e9b70ca2 3832 CYASSL_MSG("\tfail: should be an OCTET STRING");
wolfSSL 0:1239e9b70ca2 3833 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3834 }
wolfSSL 0:1239e9b70ca2 3835
wolfSSL 0:1239e9b70ca2 3836 if (GetLength(input, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 3837 CYASSL_MSG("\tfail: extension data length");
wolfSSL 0:1239e9b70ca2 3838 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3839 }
wolfSSL 0:1239e9b70ca2 3840
wolfSSL 0:1239e9b70ca2 3841 switch (oid) {
wolfSSL 0:1239e9b70ca2 3842 case BASIC_CA_OID:
wolfSSL 0:1239e9b70ca2 3843 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3844 cert->extBasicConstSet = 1;
wolfSSL 0:1239e9b70ca2 3845 cert->extBasicConstCrit = critical;
wolfSSL 0:1239e9b70ca2 3846 #endif
wolfSSL 0:1239e9b70ca2 3847 if (DecodeBasicCaConstraint(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3848 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3849 break;
wolfSSL 0:1239e9b70ca2 3850
wolfSSL 0:1239e9b70ca2 3851 case CRL_DIST_OID:
wolfSSL 0:1239e9b70ca2 3852 if (DecodeCrlDist(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3853 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3854 break;
wolfSSL 0:1239e9b70ca2 3855
wolfSSL 0:1239e9b70ca2 3856 case AUTH_INFO_OID:
wolfSSL 0:1239e9b70ca2 3857 if (DecodeAuthInfo(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3858 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3859 break;
wolfSSL 0:1239e9b70ca2 3860
wolfSSL 0:1239e9b70ca2 3861 case ALT_NAMES_OID:
wolfSSL 0:1239e9b70ca2 3862 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3863 cert->extSubjAltNameSet = 1;
wolfSSL 0:1239e9b70ca2 3864 cert->extSubjAltNameCrit = critical;
wolfSSL 0:1239e9b70ca2 3865 #endif
wolfSSL 0:1239e9b70ca2 3866 if (DecodeAltNames(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3867 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3868 break;
wolfSSL 0:1239e9b70ca2 3869
wolfSSL 0:1239e9b70ca2 3870 case AUTH_KEY_OID:
wolfSSL 0:1239e9b70ca2 3871 cert->extAuthKeyIdSet = 1;
wolfSSL 0:1239e9b70ca2 3872 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3873 cert->extAuthKeyIdCrit = critical;
wolfSSL 0:1239e9b70ca2 3874 #endif
wolfSSL 0:1239e9b70ca2 3875 if (DecodeAuthKeyId(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3876 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3877 break;
wolfSSL 0:1239e9b70ca2 3878
wolfSSL 0:1239e9b70ca2 3879 case SUBJ_KEY_OID:
wolfSSL 0:1239e9b70ca2 3880 cert->extSubjKeyIdSet = 1;
wolfSSL 0:1239e9b70ca2 3881 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3882 cert->extSubjKeyIdCrit = critical;
wolfSSL 0:1239e9b70ca2 3883 #endif
wolfSSL 0:1239e9b70ca2 3884 if (DecodeSubjKeyId(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3885 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3886 break;
wolfSSL 0:1239e9b70ca2 3887
wolfSSL 0:1239e9b70ca2 3888 case CERT_POLICY_OID:
wolfSSL 0:1239e9b70ca2 3889 CYASSL_MSG("Certificate Policy extension not supported yet.");
wolfSSL 0:1239e9b70ca2 3890 #ifdef CYASSL_SEP
wolfSSL 0:1239e9b70ca2 3891 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3892 cert->extCertPolicySet = 1;
wolfSSL 0:1239e9b70ca2 3893 cert->extCertPolicyCrit = critical;
wolfSSL 0:1239e9b70ca2 3894 #endif
wolfSSL 0:1239e9b70ca2 3895 if (DecodeCertPolicy(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3896 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3897 #endif
wolfSSL 0:1239e9b70ca2 3898 break;
wolfSSL 0:1239e9b70ca2 3899
wolfSSL 0:1239e9b70ca2 3900 case KEY_USAGE_OID:
wolfSSL 0:1239e9b70ca2 3901 cert->extKeyUsageSet = 1;
wolfSSL 0:1239e9b70ca2 3902 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3903 cert->extKeyUsageCrit = critical;
wolfSSL 0:1239e9b70ca2 3904 #endif
wolfSSL 0:1239e9b70ca2 3905 if (DecodeKeyUsage(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3906 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3907 break;
wolfSSL 0:1239e9b70ca2 3908
wolfSSL 0:1239e9b70ca2 3909 case EXT_KEY_USAGE_OID:
wolfSSL 0:1239e9b70ca2 3910 cert->extExtKeyUsageSet = 1;
wolfSSL 0:1239e9b70ca2 3911 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3912 cert->extExtKeyUsageCrit = critical;
wolfSSL 0:1239e9b70ca2 3913 #endif
wolfSSL 0:1239e9b70ca2 3914 if (DecodeExtKeyUsage(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3915 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3916 break;
wolfSSL 0:1239e9b70ca2 3917
wolfSSL 0:1239e9b70ca2 3918 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 3919 case NAME_CONS_OID:
wolfSSL 0:1239e9b70ca2 3920 cert->extNameConstraintSet = 1;
wolfSSL 0:1239e9b70ca2 3921 #ifdef OPENSSL_EXTRA
wolfSSL 0:1239e9b70ca2 3922 cert->extNameConstraintCrit = critical;
wolfSSL 0:1239e9b70ca2 3923 #endif
wolfSSL 0:1239e9b70ca2 3924 if (DecodeNameConstraints(&input[idx], length, cert) < 0)
wolfSSL 0:1239e9b70ca2 3925 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 3926 break;
wolfSSL 0:1239e9b70ca2 3927 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 3928
wolfSSL 0:1239e9b70ca2 3929 case INHIBIT_ANY_OID:
wolfSSL 0:1239e9b70ca2 3930 CYASSL_MSG("Inhibit anyPolicy extension not supported yet.");
wolfSSL 0:1239e9b70ca2 3931 break;
wolfSSL 0:1239e9b70ca2 3932
wolfSSL 0:1239e9b70ca2 3933 default:
wolfSSL 0:1239e9b70ca2 3934 /* While it is a failure to not support critical extensions,
wolfSSL 0:1239e9b70ca2 3935 * still parse the certificate ignoring the unsupported
wolfSSL 0:1239e9b70ca2 3936 * extention to allow caller to accept it with the verify
wolfSSL 0:1239e9b70ca2 3937 * callback. */
wolfSSL 0:1239e9b70ca2 3938 if (critical)
wolfSSL 0:1239e9b70ca2 3939 criticalFail = 1;
wolfSSL 0:1239e9b70ca2 3940 break;
wolfSSL 0:1239e9b70ca2 3941 }
wolfSSL 0:1239e9b70ca2 3942 idx += length;
wolfSSL 0:1239e9b70ca2 3943 }
wolfSSL 0:1239e9b70ca2 3944
wolfSSL 0:1239e9b70ca2 3945 return criticalFail ? ASN_CRIT_EXT_E : 0;
wolfSSL 0:1239e9b70ca2 3946 }
wolfSSL 0:1239e9b70ca2 3947
wolfSSL 0:1239e9b70ca2 3948
wolfSSL 0:1239e9b70ca2 3949 int ParseCert(DecodedCert* cert, int type, int verify, void* cm)
wolfSSL 0:1239e9b70ca2 3950 {
wolfSSL 0:1239e9b70ca2 3951 int ret;
wolfSSL 0:1239e9b70ca2 3952 char* ptr;
wolfSSL 0:1239e9b70ca2 3953
wolfSSL 0:1239e9b70ca2 3954 ret = ParseCertRelative(cert, type, verify, cm);
wolfSSL 0:1239e9b70ca2 3955 if (ret < 0)
wolfSSL 0:1239e9b70ca2 3956 return ret;
wolfSSL 0:1239e9b70ca2 3957
wolfSSL 0:1239e9b70ca2 3958 if (cert->subjectCNLen > 0) {
wolfSSL 0:1239e9b70ca2 3959 ptr = (char*) XMALLOC(cert->subjectCNLen + 1, cert->heap,
wolfSSL 0:1239e9b70ca2 3960 DYNAMIC_TYPE_SUBJECT_CN);
wolfSSL 0:1239e9b70ca2 3961 if (ptr == NULL)
wolfSSL 0:1239e9b70ca2 3962 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 3963 XMEMCPY(ptr, cert->subjectCN, cert->subjectCNLen);
wolfSSL 0:1239e9b70ca2 3964 ptr[cert->subjectCNLen] = '\0';
wolfSSL 0:1239e9b70ca2 3965 cert->subjectCN = ptr;
wolfSSL 0:1239e9b70ca2 3966 cert->subjectCNStored = 1;
wolfSSL 0:1239e9b70ca2 3967 }
wolfSSL 0:1239e9b70ca2 3968
wolfSSL 0:1239e9b70ca2 3969 if (cert->keyOID == RSAk &&
wolfSSL 0:1239e9b70ca2 3970 cert->publicKey != NULL && cert->pubKeySize > 0) {
wolfSSL 0:1239e9b70ca2 3971 ptr = (char*) XMALLOC(cert->pubKeySize, cert->heap,
wolfSSL 0:1239e9b70ca2 3972 DYNAMIC_TYPE_PUBLIC_KEY);
wolfSSL 0:1239e9b70ca2 3973 if (ptr == NULL)
wolfSSL 0:1239e9b70ca2 3974 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 3975 XMEMCPY(ptr, cert->publicKey, cert->pubKeySize);
wolfSSL 0:1239e9b70ca2 3976 cert->publicKey = (byte *)ptr;
wolfSSL 0:1239e9b70ca2 3977 cert->pubKeyStored = 1;
wolfSSL 0:1239e9b70ca2 3978 }
wolfSSL 0:1239e9b70ca2 3979
wolfSSL 0:1239e9b70ca2 3980 return ret;
wolfSSL 0:1239e9b70ca2 3981 }
wolfSSL 0:1239e9b70ca2 3982
wolfSSL 0:1239e9b70ca2 3983
wolfSSL 0:1239e9b70ca2 3984 /* from SSL proper, for locking can't do find here anymore */
wolfSSL 0:1239e9b70ca2 3985 #ifdef __cplusplus
wolfSSL 0:1239e9b70ca2 3986 extern "C" {
wolfSSL 0:1239e9b70ca2 3987 #endif
wolfSSL 0:1239e9b70ca2 3988 CYASSL_LOCAL Signer* GetCA(void* signers, byte* hash);
wolfSSL 0:1239e9b70ca2 3989 #ifndef NO_SKID
wolfSSL 0:1239e9b70ca2 3990 CYASSL_LOCAL Signer* GetCAByName(void* signers, byte* hash);
wolfSSL 0:1239e9b70ca2 3991 #endif
wolfSSL 0:1239e9b70ca2 3992 #ifdef __cplusplus
wolfSSL 0:1239e9b70ca2 3993 }
wolfSSL 0:1239e9b70ca2 3994 #endif
wolfSSL 0:1239e9b70ca2 3995
wolfSSL 0:1239e9b70ca2 3996
wolfSSL 0:1239e9b70ca2 3997 int ParseCertRelative(DecodedCert* cert, int type, int verify, void* cm)
wolfSSL 0:1239e9b70ca2 3998 {
wolfSSL 0:1239e9b70ca2 3999 word32 confirmOID;
wolfSSL 0:1239e9b70ca2 4000 int ret;
wolfSSL 0:1239e9b70ca2 4001 int badDate = 0;
wolfSSL 0:1239e9b70ca2 4002 int criticalExt = 0;
wolfSSL 0:1239e9b70ca2 4003
wolfSSL 0:1239e9b70ca2 4004 if ((ret = DecodeToKey(cert, verify)) < 0) {
wolfSSL 0:1239e9b70ca2 4005 if (ret == ASN_BEFORE_DATE_E || ret == ASN_AFTER_DATE_E)
wolfSSL 0:1239e9b70ca2 4006 badDate = ret;
wolfSSL 0:1239e9b70ca2 4007 else
wolfSSL 0:1239e9b70ca2 4008 return ret;
wolfSSL 0:1239e9b70ca2 4009 }
wolfSSL 0:1239e9b70ca2 4010
wolfSSL 0:1239e9b70ca2 4011 CYASSL_MSG("Parsed Past Key");
wolfSSL 0:1239e9b70ca2 4012
wolfSSL 0:1239e9b70ca2 4013 if (cert->srcIdx < cert->sigIndex) {
wolfSSL 0:1239e9b70ca2 4014 #ifndef ALLOW_V1_EXTENSIONS
wolfSSL 0:1239e9b70ca2 4015 if (cert->version < 2) {
wolfSSL 0:1239e9b70ca2 4016 CYASSL_MSG(" v1 and v2 certs not allowed extensions");
wolfSSL 0:1239e9b70ca2 4017 return ASN_VERSION_E;
wolfSSL 0:1239e9b70ca2 4018 }
wolfSSL 0:1239e9b70ca2 4019 #endif
wolfSSL 0:1239e9b70ca2 4020 /* save extensions */
wolfSSL 0:1239e9b70ca2 4021 cert->extensions = &cert->source[cert->srcIdx];
wolfSSL 0:1239e9b70ca2 4022 cert->extensionsSz = cert->sigIndex - cert->srcIdx;
wolfSSL 0:1239e9b70ca2 4023 cert->extensionsIdx = cert->srcIdx; /* for potential later use */
wolfSSL 0:1239e9b70ca2 4024
wolfSSL 0:1239e9b70ca2 4025 if ((ret = DecodeCertExtensions(cert)) < 0) {
wolfSSL 0:1239e9b70ca2 4026 if (ret == ASN_CRIT_EXT_E)
wolfSSL 0:1239e9b70ca2 4027 criticalExt = ret;
wolfSSL 0:1239e9b70ca2 4028 else
wolfSSL 0:1239e9b70ca2 4029 return ret;
wolfSSL 0:1239e9b70ca2 4030 }
wolfSSL 0:1239e9b70ca2 4031
wolfSSL 0:1239e9b70ca2 4032 /* advance past extensions */
wolfSSL 0:1239e9b70ca2 4033 cert->srcIdx = cert->sigIndex;
wolfSSL 0:1239e9b70ca2 4034 }
wolfSSL 0:1239e9b70ca2 4035
wolfSSL 0:1239e9b70ca2 4036 if ((ret = GetAlgoId(cert->source, &cert->srcIdx, &confirmOID,
wolfSSL 0:1239e9b70ca2 4037 cert->maxIdx)) < 0)
wolfSSL 0:1239e9b70ca2 4038 return ret;
wolfSSL 0:1239e9b70ca2 4039
wolfSSL 0:1239e9b70ca2 4040 if ((ret = GetSignature(cert)) < 0)
wolfSSL 0:1239e9b70ca2 4041 return ret;
wolfSSL 0:1239e9b70ca2 4042
wolfSSL 0:1239e9b70ca2 4043 if (confirmOID != cert->signatureOID)
wolfSSL 0:1239e9b70ca2 4044 return ASN_SIG_OID_E;
wolfSSL 0:1239e9b70ca2 4045
wolfSSL 0:1239e9b70ca2 4046 #ifndef NO_SKID
wolfSSL 0:1239e9b70ca2 4047 if (cert->extSubjKeyIdSet == 0
wolfSSL 0:1239e9b70ca2 4048 && cert->publicKey != NULL && cert->pubKeySize > 0) {
wolfSSL 0:1239e9b70ca2 4049 Sha sha;
wolfSSL 0:1239e9b70ca2 4050 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 4051 if (ret != 0)
wolfSSL 0:1239e9b70ca2 4052 return ret;
wolfSSL 0:1239e9b70ca2 4053 ShaUpdate(&sha, cert->publicKey, cert->pubKeySize);
wolfSSL 0:1239e9b70ca2 4054 ShaFinal(&sha, cert->extSubjKeyId);
wolfSSL 0:1239e9b70ca2 4055 }
wolfSSL 0:1239e9b70ca2 4056 #endif
wolfSSL 0:1239e9b70ca2 4057
wolfSSL 0:1239e9b70ca2 4058 if (verify && type != CA_TYPE) {
wolfSSL 0:1239e9b70ca2 4059 Signer* ca = NULL;
wolfSSL 0:1239e9b70ca2 4060 #ifndef NO_SKID
wolfSSL 0:1239e9b70ca2 4061 if (cert->extAuthKeyIdSet)
wolfSSL 0:1239e9b70ca2 4062 ca = GetCA(cm, cert->extAuthKeyId);
wolfSSL 0:1239e9b70ca2 4063 if (ca == NULL)
wolfSSL 0:1239e9b70ca2 4064 ca = GetCAByName(cm, cert->issuerHash);
wolfSSL 0:1239e9b70ca2 4065 #else /* NO_SKID */
wolfSSL 0:1239e9b70ca2 4066 ca = GetCA(cm, cert->issuerHash);
wolfSSL 0:1239e9b70ca2 4067 #endif /* NO SKID */
wolfSSL 0:1239e9b70ca2 4068 CYASSL_MSG("About to verify certificate signature");
wolfSSL 0:1239e9b70ca2 4069
wolfSSL 0:1239e9b70ca2 4070 if (ca) {
wolfSSL 0:1239e9b70ca2 4071 #ifdef HAVE_OCSP
wolfSSL 0:1239e9b70ca2 4072 /* Need the ca's public key hash for OCSP */
wolfSSL 0:1239e9b70ca2 4073 {
wolfSSL 0:1239e9b70ca2 4074 Sha sha;
wolfSSL 0:1239e9b70ca2 4075 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 4076 if (ret != 0)
wolfSSL 0:1239e9b70ca2 4077 return ret;
wolfSSL 0:1239e9b70ca2 4078 ShaUpdate(&sha, ca->publicKey, ca->pubKeySize);
wolfSSL 0:1239e9b70ca2 4079 ShaFinal(&sha, cert->issuerKeyHash);
wolfSSL 0:1239e9b70ca2 4080 }
wolfSSL 0:1239e9b70ca2 4081 #endif /* HAVE_OCSP */
wolfSSL 0:1239e9b70ca2 4082 /* try to confirm/verify signature */
wolfSSL 0:1239e9b70ca2 4083 if (!ConfirmSignature(cert->source + cert->certBegin,
wolfSSL 0:1239e9b70ca2 4084 cert->sigIndex - cert->certBegin,
wolfSSL 0:1239e9b70ca2 4085 ca->publicKey, ca->pubKeySize, ca->keyOID,
wolfSSL 0:1239e9b70ca2 4086 cert->signature, cert->sigLength, cert->signatureOID,
wolfSSL 0:1239e9b70ca2 4087 cert->heap)) {
wolfSSL 0:1239e9b70ca2 4088 CYASSL_MSG("Confirm signature failed");
wolfSSL 0:1239e9b70ca2 4089 return ASN_SIG_CONFIRM_E;
wolfSSL 0:1239e9b70ca2 4090 }
wolfSSL 0:1239e9b70ca2 4091 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 4092 /* check that this cert's name is permitted by the signer's
wolfSSL 0:1239e9b70ca2 4093 * name constraints */
wolfSSL 0:1239e9b70ca2 4094 if (!ConfirmNameConstraints(ca, cert)) {
wolfSSL 0:1239e9b70ca2 4095 CYASSL_MSG("Confirm name constraint failed");
wolfSSL 0:1239e9b70ca2 4096 return ASN_NAME_INVALID_E;
wolfSSL 0:1239e9b70ca2 4097 }
wolfSSL 0:1239e9b70ca2 4098 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 4099 }
wolfSSL 0:1239e9b70ca2 4100 else {
wolfSSL 0:1239e9b70ca2 4101 /* no signer */
wolfSSL 0:1239e9b70ca2 4102 CYASSL_MSG("No CA signer to verify with");
wolfSSL 0:1239e9b70ca2 4103 return ASN_NO_SIGNER_E;
wolfSSL 0:1239e9b70ca2 4104 }
wolfSSL 0:1239e9b70ca2 4105 }
wolfSSL 0:1239e9b70ca2 4106
wolfSSL 0:1239e9b70ca2 4107 if (badDate != 0)
wolfSSL 0:1239e9b70ca2 4108 return badDate;
wolfSSL 0:1239e9b70ca2 4109
wolfSSL 0:1239e9b70ca2 4110 if (criticalExt != 0)
wolfSSL 0:1239e9b70ca2 4111 return criticalExt;
wolfSSL 0:1239e9b70ca2 4112
wolfSSL 0:1239e9b70ca2 4113 return 0;
wolfSSL 0:1239e9b70ca2 4114 }
wolfSSL 0:1239e9b70ca2 4115
wolfSSL 0:1239e9b70ca2 4116
wolfSSL 0:1239e9b70ca2 4117 /* Create and init an new signer */
wolfSSL 0:1239e9b70ca2 4118 Signer* MakeSigner(void* heap)
wolfSSL 0:1239e9b70ca2 4119 {
wolfSSL 0:1239e9b70ca2 4120 Signer* signer = (Signer*) XMALLOC(sizeof(Signer), heap,
wolfSSL 0:1239e9b70ca2 4121 DYNAMIC_TYPE_SIGNER);
wolfSSL 0:1239e9b70ca2 4122 if (signer) {
wolfSSL 0:1239e9b70ca2 4123 signer->pubKeySize = 0;
wolfSSL 0:1239e9b70ca2 4124 signer->keyOID = 0;
wolfSSL 0:1239e9b70ca2 4125 signer->publicKey = NULL;
wolfSSL 0:1239e9b70ca2 4126 signer->nameLen = 0;
wolfSSL 0:1239e9b70ca2 4127 signer->name = NULL;
wolfSSL 0:1239e9b70ca2 4128 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 4129 signer->permittedNames = NULL;
wolfSSL 0:1239e9b70ca2 4130 signer->excludedNames = NULL;
wolfSSL 0:1239e9b70ca2 4131 #endif /* IGNORE_NAME_CONSTRAINTS */
wolfSSL 0:1239e9b70ca2 4132 signer->next = NULL;
wolfSSL 0:1239e9b70ca2 4133 }
wolfSSL 0:1239e9b70ca2 4134 (void)heap;
wolfSSL 0:1239e9b70ca2 4135
wolfSSL 0:1239e9b70ca2 4136 return signer;
wolfSSL 0:1239e9b70ca2 4137 }
wolfSSL 0:1239e9b70ca2 4138
wolfSSL 0:1239e9b70ca2 4139
wolfSSL 0:1239e9b70ca2 4140 /* Free an individual signer */
wolfSSL 0:1239e9b70ca2 4141 void FreeSigner(Signer* signer, void* heap)
wolfSSL 0:1239e9b70ca2 4142 {
wolfSSL 0:1239e9b70ca2 4143 XFREE(signer->name, heap, DYNAMIC_TYPE_SUBJECT_CN);
wolfSSL 0:1239e9b70ca2 4144 XFREE(signer->publicKey, heap, DYNAMIC_TYPE_PUBLIC_KEY);
wolfSSL 0:1239e9b70ca2 4145 #ifndef IGNORE_NAME_CONSTRAINTS
wolfSSL 0:1239e9b70ca2 4146 if (signer->permittedNames)
wolfSSL 0:1239e9b70ca2 4147 FreeNameSubtrees(signer->permittedNames, heap);
wolfSSL 0:1239e9b70ca2 4148 if (signer->excludedNames)
wolfSSL 0:1239e9b70ca2 4149 FreeNameSubtrees(signer->excludedNames, heap);
wolfSSL 0:1239e9b70ca2 4150 #endif
wolfSSL 0:1239e9b70ca2 4151 XFREE(signer, heap, DYNAMIC_TYPE_SIGNER);
wolfSSL 0:1239e9b70ca2 4152
wolfSSL 0:1239e9b70ca2 4153 (void)heap;
wolfSSL 0:1239e9b70ca2 4154 }
wolfSSL 0:1239e9b70ca2 4155
wolfSSL 0:1239e9b70ca2 4156
wolfSSL 0:1239e9b70ca2 4157 /* Free the whole singer table with number of rows */
wolfSSL 0:1239e9b70ca2 4158 void FreeSignerTable(Signer** table, int rows, void* heap)
wolfSSL 0:1239e9b70ca2 4159 {
wolfSSL 0:1239e9b70ca2 4160 int i;
wolfSSL 0:1239e9b70ca2 4161
wolfSSL 0:1239e9b70ca2 4162 for (i = 0; i < rows; i++) {
wolfSSL 0:1239e9b70ca2 4163 Signer* signer = table[i];
wolfSSL 0:1239e9b70ca2 4164 while (signer) {
wolfSSL 0:1239e9b70ca2 4165 Signer* next = signer->next;
wolfSSL 0:1239e9b70ca2 4166 FreeSigner(signer, heap);
wolfSSL 0:1239e9b70ca2 4167 signer = next;
wolfSSL 0:1239e9b70ca2 4168 }
wolfSSL 0:1239e9b70ca2 4169 table[i] = NULL;
wolfSSL 0:1239e9b70ca2 4170 }
wolfSSL 0:1239e9b70ca2 4171 }
wolfSSL 0:1239e9b70ca2 4172
wolfSSL 0:1239e9b70ca2 4173
wolfSSL 0:1239e9b70ca2 4174 CYASSL_LOCAL int SetMyVersion(word32 version, byte* output, int header)
wolfSSL 0:1239e9b70ca2 4175 {
wolfSSL 0:1239e9b70ca2 4176 int i = 0;
wolfSSL 0:1239e9b70ca2 4177
wolfSSL 0:1239e9b70ca2 4178 if (header) {
wolfSSL 0:1239e9b70ca2 4179 output[i++] = ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED;
wolfSSL 0:1239e9b70ca2 4180 output[i++] = ASN_BIT_STRING;
wolfSSL 0:1239e9b70ca2 4181 }
wolfSSL 0:1239e9b70ca2 4182 output[i++] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 4183 output[i++] = 0x01;
wolfSSL 0:1239e9b70ca2 4184 output[i++] = (byte)version;
wolfSSL 0:1239e9b70ca2 4185
wolfSSL 0:1239e9b70ca2 4186 return i;
wolfSSL 0:1239e9b70ca2 4187 }
wolfSSL 0:1239e9b70ca2 4188
wolfSSL 0:1239e9b70ca2 4189
wolfSSL 0:1239e9b70ca2 4190 CYASSL_LOCAL int SetSerialNumber(const byte* sn, word32 snSz, byte* output)
wolfSSL 0:1239e9b70ca2 4191 {
wolfSSL 0:1239e9b70ca2 4192 int result = 0;
wolfSSL 0:1239e9b70ca2 4193
wolfSSL 0:1239e9b70ca2 4194 CYASSL_ENTER("SetSerialNumber");
wolfSSL 0:1239e9b70ca2 4195
wolfSSL 0:1239e9b70ca2 4196 if (snSz <= EXTERNAL_SERIAL_SIZE) {
wolfSSL 0:1239e9b70ca2 4197 output[0] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 4198 /* The serial number is always positive. When encoding the
wolfSSL 0:1239e9b70ca2 4199 * INTEGER, if the MSB is 1, add a padding zero to keep the
wolfSSL 0:1239e9b70ca2 4200 * number positive. */
wolfSSL 0:1239e9b70ca2 4201 if (sn[0] & 0x80) {
wolfSSL 0:1239e9b70ca2 4202 output[1] = (byte)snSz + 1;
wolfSSL 0:1239e9b70ca2 4203 output[2] = 0;
wolfSSL 0:1239e9b70ca2 4204 XMEMCPY(&output[3], sn, snSz);
wolfSSL 0:1239e9b70ca2 4205 result = snSz + 3;
wolfSSL 0:1239e9b70ca2 4206 }
wolfSSL 0:1239e9b70ca2 4207 else {
wolfSSL 0:1239e9b70ca2 4208 output[1] = (byte)snSz;
wolfSSL 0:1239e9b70ca2 4209 XMEMCPY(&output[2], sn, snSz);
wolfSSL 0:1239e9b70ca2 4210 result = snSz + 2;
wolfSSL 0:1239e9b70ca2 4211 }
wolfSSL 0:1239e9b70ca2 4212 }
wolfSSL 0:1239e9b70ca2 4213 return result;
wolfSSL 0:1239e9b70ca2 4214 }
wolfSSL 0:1239e9b70ca2 4215
wolfSSL 0:1239e9b70ca2 4216
wolfSSL 0:1239e9b70ca2 4217
wolfSSL 0:1239e9b70ca2 4218
wolfSSL 0:1239e9b70ca2 4219 #if defined(CYASSL_KEY_GEN) || defined(CYASSL_CERT_GEN)
wolfSSL 0:1239e9b70ca2 4220
wolfSSL 0:1239e9b70ca2 4221 /* convert der buffer to pem into output, can't do inplace, der and output
wolfSSL 0:1239e9b70ca2 4222 need to be different */
wolfSSL 0:1239e9b70ca2 4223 int DerToPem(const byte* der, word32 derSz, byte* output, word32 outSz,
wolfSSL 0:1239e9b70ca2 4224 int type)
wolfSSL 0:1239e9b70ca2 4225 {
wolfSSL 0:1239e9b70ca2 4226 char header[80];
wolfSSL 0:1239e9b70ca2 4227 char footer[80];
wolfSSL 0:1239e9b70ca2 4228
wolfSSL 0:1239e9b70ca2 4229 int headerLen;
wolfSSL 0:1239e9b70ca2 4230 int footerLen;
wolfSSL 0:1239e9b70ca2 4231 int i;
wolfSSL 0:1239e9b70ca2 4232 int err;
wolfSSL 0:1239e9b70ca2 4233 int outLen; /* return length or error */
wolfSSL 0:1239e9b70ca2 4234
wolfSSL 0:1239e9b70ca2 4235 if (der == output) /* no in place conversion */
wolfSSL 0:1239e9b70ca2 4236 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4237
wolfSSL 0:1239e9b70ca2 4238 if (type == CERT_TYPE) {
wolfSSL 0:1239e9b70ca2 4239 XSTRNCPY(header, "-----BEGIN CERTIFICATE-----\n", sizeof(header));
wolfSSL 0:1239e9b70ca2 4240 XSTRNCPY(footer, "-----END CERTIFICATE-----\n", sizeof(footer));
wolfSSL 0:1239e9b70ca2 4241 }
wolfSSL 0:1239e9b70ca2 4242 else if (type == PRIVATEKEY_TYPE) {
wolfSSL 0:1239e9b70ca2 4243 XSTRNCPY(header, "-----BEGIN RSA PRIVATE KEY-----\n", sizeof(header));
wolfSSL 0:1239e9b70ca2 4244 XSTRNCPY(footer, "-----END RSA PRIVATE KEY-----\n", sizeof(footer));
wolfSSL 0:1239e9b70ca2 4245 }
wolfSSL 0:1239e9b70ca2 4246 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 4247 else if (type == ECC_PRIVATEKEY_TYPE) {
wolfSSL 0:1239e9b70ca2 4248 XSTRNCPY(header, "-----BEGIN EC PRIVATE KEY-----\n", sizeof(header));
wolfSSL 0:1239e9b70ca2 4249 XSTRNCPY(footer, "-----END EC PRIVATE KEY-----\n", sizeof(footer));
wolfSSL 0:1239e9b70ca2 4250 }
wolfSSL 0:1239e9b70ca2 4251 #endif
wolfSSL 0:1239e9b70ca2 4252 #ifdef CYASSL_CERT_REQ
wolfSSL 0:1239e9b70ca2 4253 else if (type == CERTREQ_TYPE)
wolfSSL 0:1239e9b70ca2 4254 {
wolfSSL 0:1239e9b70ca2 4255 XSTRNCPY(header,
wolfSSL 0:1239e9b70ca2 4256 "-----BEGIN CERTIFICATE REQUEST-----\n", sizeof(header));
wolfSSL 0:1239e9b70ca2 4257 XSTRNCPY(footer, "-----END CERTIFICATE REQUEST-----\n", sizeof(footer));
wolfSSL 0:1239e9b70ca2 4258 }
wolfSSL 0:1239e9b70ca2 4259 #endif
wolfSSL 0:1239e9b70ca2 4260 else
wolfSSL 0:1239e9b70ca2 4261 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4262
wolfSSL 0:1239e9b70ca2 4263 headerLen = (int)XSTRLEN(header);
wolfSSL 0:1239e9b70ca2 4264 footerLen = (int)XSTRLEN(footer);
wolfSSL 0:1239e9b70ca2 4265
wolfSSL 0:1239e9b70ca2 4266 if (!der || !output)
wolfSSL 0:1239e9b70ca2 4267 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4268
wolfSSL 0:1239e9b70ca2 4269 /* don't even try if outSz too short */
wolfSSL 0:1239e9b70ca2 4270 if (outSz < headerLen + footerLen + derSz)
wolfSSL 0:1239e9b70ca2 4271 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4272
wolfSSL 0:1239e9b70ca2 4273 /* header */
wolfSSL 0:1239e9b70ca2 4274 XMEMCPY(output, header, headerLen);
wolfSSL 0:1239e9b70ca2 4275 i = headerLen;
wolfSSL 0:1239e9b70ca2 4276
wolfSSL 0:1239e9b70ca2 4277 /* body */
wolfSSL 0:1239e9b70ca2 4278 outLen = outSz - (headerLen + footerLen); /* input to Base64_Encode */
wolfSSL 0:1239e9b70ca2 4279 if ( (err = Base64_Encode(der, derSz, output + i, (word32*)&outLen)) < 0)
wolfSSL 0:1239e9b70ca2 4280 return err;
wolfSSL 0:1239e9b70ca2 4281 i += outLen;
wolfSSL 0:1239e9b70ca2 4282
wolfSSL 0:1239e9b70ca2 4283 /* footer */
wolfSSL 0:1239e9b70ca2 4284 if ( (i + footerLen) > (int)outSz)
wolfSSL 0:1239e9b70ca2 4285 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4286 XMEMCPY(output + i, footer, footerLen);
wolfSSL 0:1239e9b70ca2 4287
wolfSSL 0:1239e9b70ca2 4288 return outLen + headerLen + footerLen;
wolfSSL 0:1239e9b70ca2 4289 }
wolfSSL 0:1239e9b70ca2 4290
wolfSSL 0:1239e9b70ca2 4291
wolfSSL 0:1239e9b70ca2 4292 #endif /* CYASSL_KEY_GEN || CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 4293
wolfSSL 0:1239e9b70ca2 4294
wolfSSL 0:1239e9b70ca2 4295 #if defined(CYASSL_KEY_GEN) && !defined(NO_RSA)
wolfSSL 0:1239e9b70ca2 4296
wolfSSL 0:1239e9b70ca2 4297
wolfSSL 0:1239e9b70ca2 4298 static mp_int* GetRsaInt(RsaKey* key, int idx)
wolfSSL 0:1239e9b70ca2 4299 {
wolfSSL 0:1239e9b70ca2 4300 if (idx == 0)
wolfSSL 0:1239e9b70ca2 4301 return &key->n;
wolfSSL 0:1239e9b70ca2 4302 if (idx == 1)
wolfSSL 0:1239e9b70ca2 4303 return &key->e;
wolfSSL 0:1239e9b70ca2 4304 if (idx == 2)
wolfSSL 0:1239e9b70ca2 4305 return &key->d;
wolfSSL 0:1239e9b70ca2 4306 if (idx == 3)
wolfSSL 0:1239e9b70ca2 4307 return &key->p;
wolfSSL 0:1239e9b70ca2 4308 if (idx == 4)
wolfSSL 0:1239e9b70ca2 4309 return &key->q;
wolfSSL 0:1239e9b70ca2 4310 if (idx == 5)
wolfSSL 0:1239e9b70ca2 4311 return &key->dP;
wolfSSL 0:1239e9b70ca2 4312 if (idx == 6)
wolfSSL 0:1239e9b70ca2 4313 return &key->dQ;
wolfSSL 0:1239e9b70ca2 4314 if (idx == 7)
wolfSSL 0:1239e9b70ca2 4315 return &key->u;
wolfSSL 0:1239e9b70ca2 4316
wolfSSL 0:1239e9b70ca2 4317 return NULL;
wolfSSL 0:1239e9b70ca2 4318 }
wolfSSL 0:1239e9b70ca2 4319
wolfSSL 0:1239e9b70ca2 4320
wolfSSL 0:1239e9b70ca2 4321 /* Release Tmp RSA resources */
wolfSSL 0:1239e9b70ca2 4322 static INLINE void FreeTmpRsas(byte** tmps, void* heap)
wolfSSL 0:1239e9b70ca2 4323 {
wolfSSL 0:1239e9b70ca2 4324 int i;
wolfSSL 0:1239e9b70ca2 4325
wolfSSL 0:1239e9b70ca2 4326 (void)heap;
wolfSSL 0:1239e9b70ca2 4327
wolfSSL 0:1239e9b70ca2 4328 for (i = 0; i < RSA_INTS; i++)
wolfSSL 0:1239e9b70ca2 4329 XFREE(tmps[i], heap, DYNAMIC_TYPE_RSA);
wolfSSL 0:1239e9b70ca2 4330 }
wolfSSL 0:1239e9b70ca2 4331
wolfSSL 0:1239e9b70ca2 4332
wolfSSL 0:1239e9b70ca2 4333 /* Convert RsaKey key to DER format, write to output (inLen), return bytes
wolfSSL 0:1239e9b70ca2 4334 written */
wolfSSL 0:1239e9b70ca2 4335 int RsaKeyToDer(RsaKey* key, byte* output, word32 inLen)
wolfSSL 0:1239e9b70ca2 4336 {
wolfSSL 0:1239e9b70ca2 4337 word32 seqSz, verSz, rawLen, intTotalLen = 0;
wolfSSL 0:1239e9b70ca2 4338 word32 sizes[RSA_INTS];
wolfSSL 0:1239e9b70ca2 4339 int i, j, outLen, ret = 0;
wolfSSL 0:1239e9b70ca2 4340
wolfSSL 0:1239e9b70ca2 4341 byte seq[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 4342 byte ver[MAX_VERSION_SZ];
wolfSSL 0:1239e9b70ca2 4343 byte* tmps[RSA_INTS];
wolfSSL 0:1239e9b70ca2 4344
wolfSSL 0:1239e9b70ca2 4345 if (!key || !output)
wolfSSL 0:1239e9b70ca2 4346 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4347
wolfSSL 0:1239e9b70ca2 4348 if (key->type != RSA_PRIVATE)
wolfSSL 0:1239e9b70ca2 4349 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4350
wolfSSL 0:1239e9b70ca2 4351 for (i = 0; i < RSA_INTS; i++)
wolfSSL 0:1239e9b70ca2 4352 tmps[i] = NULL;
wolfSSL 0:1239e9b70ca2 4353
wolfSSL 0:1239e9b70ca2 4354 /* write all big ints from key to DER tmps */
wolfSSL 0:1239e9b70ca2 4355 for (i = 0; i < RSA_INTS; i++) {
wolfSSL 0:1239e9b70ca2 4356 mp_int* keyInt = GetRsaInt(key, i);
wolfSSL 0:1239e9b70ca2 4357 rawLen = mp_unsigned_bin_size(keyInt);
wolfSSL 0:1239e9b70ca2 4358 tmps[i] = (byte*)XMALLOC(rawLen + MAX_SEQ_SZ, key->heap,
wolfSSL 0:1239e9b70ca2 4359 DYNAMIC_TYPE_RSA);
wolfSSL 0:1239e9b70ca2 4360 if (tmps[i] == NULL) {
wolfSSL 0:1239e9b70ca2 4361 ret = MEMORY_E;
wolfSSL 0:1239e9b70ca2 4362 break;
wolfSSL 0:1239e9b70ca2 4363 }
wolfSSL 0:1239e9b70ca2 4364
wolfSSL 0:1239e9b70ca2 4365 tmps[i][0] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 4366 sizes[i] = SetLength(rawLen, tmps[i] + 1) + 1; /* int tag */
wolfSSL 0:1239e9b70ca2 4367
wolfSSL 0:1239e9b70ca2 4368 if (sizes[i] <= MAX_SEQ_SZ) {
wolfSSL 0:1239e9b70ca2 4369 int err = mp_to_unsigned_bin(keyInt, tmps[i] + sizes[i]);
wolfSSL 0:1239e9b70ca2 4370 if (err == MP_OKAY) {
wolfSSL 0:1239e9b70ca2 4371 sizes[i] += rawLen;
wolfSSL 0:1239e9b70ca2 4372 intTotalLen += sizes[i];
wolfSSL 0:1239e9b70ca2 4373 }
wolfSSL 0:1239e9b70ca2 4374 else {
wolfSSL 0:1239e9b70ca2 4375 ret = err;
wolfSSL 0:1239e9b70ca2 4376 break;
wolfSSL 0:1239e9b70ca2 4377 }
wolfSSL 0:1239e9b70ca2 4378 }
wolfSSL 0:1239e9b70ca2 4379 else {
wolfSSL 0:1239e9b70ca2 4380 ret = ASN_INPUT_E;
wolfSSL 0:1239e9b70ca2 4381 break;
wolfSSL 0:1239e9b70ca2 4382 }
wolfSSL 0:1239e9b70ca2 4383 }
wolfSSL 0:1239e9b70ca2 4384
wolfSSL 0:1239e9b70ca2 4385 if (ret != 0) {
wolfSSL 0:1239e9b70ca2 4386 FreeTmpRsas(tmps, key->heap);
wolfSSL 0:1239e9b70ca2 4387 return ret;
wolfSSL 0:1239e9b70ca2 4388 }
wolfSSL 0:1239e9b70ca2 4389
wolfSSL 0:1239e9b70ca2 4390 /* make headers */
wolfSSL 0:1239e9b70ca2 4391 verSz = SetMyVersion(0, ver, FALSE);
wolfSSL 0:1239e9b70ca2 4392 seqSz = SetSequence(verSz + intTotalLen, seq);
wolfSSL 0:1239e9b70ca2 4393
wolfSSL 0:1239e9b70ca2 4394 outLen = seqSz + verSz + intTotalLen;
wolfSSL 0:1239e9b70ca2 4395 if (outLen > (int)inLen)
wolfSSL 0:1239e9b70ca2 4396 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 4397
wolfSSL 0:1239e9b70ca2 4398 /* write to output */
wolfSSL 0:1239e9b70ca2 4399 XMEMCPY(output, seq, seqSz);
wolfSSL 0:1239e9b70ca2 4400 j = seqSz;
wolfSSL 0:1239e9b70ca2 4401 XMEMCPY(output + j, ver, verSz);
wolfSSL 0:1239e9b70ca2 4402 j += verSz;
wolfSSL 0:1239e9b70ca2 4403
wolfSSL 0:1239e9b70ca2 4404 for (i = 0; i < RSA_INTS; i++) {
wolfSSL 0:1239e9b70ca2 4405 XMEMCPY(output + j, tmps[i], sizes[i]);
wolfSSL 0:1239e9b70ca2 4406 j += sizes[i];
wolfSSL 0:1239e9b70ca2 4407 }
wolfSSL 0:1239e9b70ca2 4408 FreeTmpRsas(tmps, key->heap);
wolfSSL 0:1239e9b70ca2 4409
wolfSSL 0:1239e9b70ca2 4410 return outLen;
wolfSSL 0:1239e9b70ca2 4411 }
wolfSSL 0:1239e9b70ca2 4412
wolfSSL 0:1239e9b70ca2 4413 #endif /* CYASSL_KEY_GEN && !NO_RSA */
wolfSSL 0:1239e9b70ca2 4414
wolfSSL 0:1239e9b70ca2 4415
wolfSSL 0:1239e9b70ca2 4416 #if defined(CYASSL_CERT_GEN) && !defined(NO_RSA)
wolfSSL 0:1239e9b70ca2 4417
wolfSSL 0:1239e9b70ca2 4418
wolfSSL 0:1239e9b70ca2 4419 #ifndef min
wolfSSL 0:1239e9b70ca2 4420
wolfSSL 0:1239e9b70ca2 4421 static INLINE word32 min(word32 a, word32 b)
wolfSSL 0:1239e9b70ca2 4422 {
wolfSSL 0:1239e9b70ca2 4423 return a > b ? b : a;
wolfSSL 0:1239e9b70ca2 4424 }
wolfSSL 0:1239e9b70ca2 4425
wolfSSL 0:1239e9b70ca2 4426 #endif /* min */
wolfSSL 0:1239e9b70ca2 4427
wolfSSL 0:1239e9b70ca2 4428
wolfSSL 0:1239e9b70ca2 4429 /* Initialize and Set Certficate defaults:
wolfSSL 0:1239e9b70ca2 4430 version = 3 (0x2)
wolfSSL 0:1239e9b70ca2 4431 serial = 0
wolfSSL 0:1239e9b70ca2 4432 sigType = SHA_WITH_RSA
wolfSSL 0:1239e9b70ca2 4433 issuer = blank
wolfSSL 0:1239e9b70ca2 4434 daysValid = 500
wolfSSL 0:1239e9b70ca2 4435 selfSigned = 1 (true) use subject as issuer
wolfSSL 0:1239e9b70ca2 4436 subject = blank
wolfSSL 0:1239e9b70ca2 4437 */
wolfSSL 0:1239e9b70ca2 4438 void InitCert(Cert* cert)
wolfSSL 0:1239e9b70ca2 4439 {
wolfSSL 0:1239e9b70ca2 4440 cert->version = 2; /* version 3 is hex 2 */
wolfSSL 0:1239e9b70ca2 4441 cert->sigType = CTC_SHAwRSA;
wolfSSL 0:1239e9b70ca2 4442 cert->daysValid = 500;
wolfSSL 0:1239e9b70ca2 4443 cert->selfSigned = 1;
wolfSSL 0:1239e9b70ca2 4444 cert->isCA = 0;
wolfSSL 0:1239e9b70ca2 4445 cert->bodySz = 0;
wolfSSL 0:1239e9b70ca2 4446 #ifdef CYASSL_ALT_NAMES
wolfSSL 0:1239e9b70ca2 4447 cert->altNamesSz = 0;
wolfSSL 0:1239e9b70ca2 4448 cert->beforeDateSz = 0;
wolfSSL 0:1239e9b70ca2 4449 cert->afterDateSz = 0;
wolfSSL 0:1239e9b70ca2 4450 #endif
wolfSSL 0:1239e9b70ca2 4451 cert->keyType = RSA_KEY;
wolfSSL 0:1239e9b70ca2 4452 XMEMSET(cert->serial, 0, CTC_SERIAL_SIZE);
wolfSSL 0:1239e9b70ca2 4453
wolfSSL 0:1239e9b70ca2 4454 cert->issuer.country[0] = '\0';
wolfSSL 0:1239e9b70ca2 4455 cert->issuer.state[0] = '\0';
wolfSSL 0:1239e9b70ca2 4456 cert->issuer.locality[0] = '\0';
wolfSSL 0:1239e9b70ca2 4457 cert->issuer.sur[0] = '\0';
wolfSSL 0:1239e9b70ca2 4458 cert->issuer.org[0] = '\0';
wolfSSL 0:1239e9b70ca2 4459 cert->issuer.unit[0] = '\0';
wolfSSL 0:1239e9b70ca2 4460 cert->issuer.commonName[0] = '\0';
wolfSSL 0:1239e9b70ca2 4461 cert->issuer.email[0] = '\0';
wolfSSL 0:1239e9b70ca2 4462
wolfSSL 0:1239e9b70ca2 4463 cert->subject.country[0] = '\0';
wolfSSL 0:1239e9b70ca2 4464 cert->subject.state[0] = '\0';
wolfSSL 0:1239e9b70ca2 4465 cert->subject.locality[0] = '\0';
wolfSSL 0:1239e9b70ca2 4466 cert->subject.sur[0] = '\0';
wolfSSL 0:1239e9b70ca2 4467 cert->subject.org[0] = '\0';
wolfSSL 0:1239e9b70ca2 4468 cert->subject.unit[0] = '\0';
wolfSSL 0:1239e9b70ca2 4469 cert->subject.commonName[0] = '\0';
wolfSSL 0:1239e9b70ca2 4470 cert->subject.email[0] = '\0';
wolfSSL 0:1239e9b70ca2 4471
wolfSSL 0:1239e9b70ca2 4472 #ifdef CYASSL_CERT_REQ
wolfSSL 0:1239e9b70ca2 4473 cert->challengePw[0] ='\0';
wolfSSL 0:1239e9b70ca2 4474 #endif
wolfSSL 0:1239e9b70ca2 4475 }
wolfSSL 0:1239e9b70ca2 4476
wolfSSL 0:1239e9b70ca2 4477
wolfSSL 0:1239e9b70ca2 4478 /* DER encoded x509 Certificate */
wolfSSL 0:1239e9b70ca2 4479 typedef struct DerCert {
wolfSSL 0:1239e9b70ca2 4480 byte size[MAX_LENGTH_SZ]; /* length encoded */
wolfSSL 0:1239e9b70ca2 4481 byte version[MAX_VERSION_SZ]; /* version encoded */
wolfSSL 0:1239e9b70ca2 4482 byte serial[CTC_SERIAL_SIZE + MAX_LENGTH_SZ]; /* serial number encoded */
wolfSSL 0:1239e9b70ca2 4483 byte sigAlgo[MAX_ALGO_SZ]; /* signature algo encoded */
wolfSSL 0:1239e9b70ca2 4484 byte issuer[ASN_NAME_MAX]; /* issuer encoded */
wolfSSL 0:1239e9b70ca2 4485 byte subject[ASN_NAME_MAX]; /* subject encoded */
wolfSSL 0:1239e9b70ca2 4486 byte validity[MAX_DATE_SIZE*2 + MAX_SEQ_SZ*2]; /* before and after dates */
wolfSSL 0:1239e9b70ca2 4487 byte publicKey[MAX_PUBLIC_KEY_SZ]; /* rsa / ntru public key encoded */
wolfSSL 0:1239e9b70ca2 4488 byte ca[MAX_CA_SZ]; /* basic constraint CA true size */
wolfSSL 0:1239e9b70ca2 4489 byte extensions[MAX_EXTENSIONS_SZ]; /* all extensions */
wolfSSL 0:1239e9b70ca2 4490 #ifdef CYASSL_CERT_REQ
wolfSSL 0:1239e9b70ca2 4491 byte attrib[MAX_ATTRIB_SZ]; /* Cert req attributes encoded */
wolfSSL 0:1239e9b70ca2 4492 #endif
wolfSSL 0:1239e9b70ca2 4493 int sizeSz; /* encoded size length */
wolfSSL 0:1239e9b70ca2 4494 int versionSz; /* encoded version length */
wolfSSL 0:1239e9b70ca2 4495 int serialSz; /* encoded serial length */
wolfSSL 0:1239e9b70ca2 4496 int sigAlgoSz; /* enocded sig alog length */
wolfSSL 0:1239e9b70ca2 4497 int issuerSz; /* encoded issuer length */
wolfSSL 0:1239e9b70ca2 4498 int subjectSz; /* encoded subject length */
wolfSSL 0:1239e9b70ca2 4499 int validitySz; /* encoded validity length */
wolfSSL 0:1239e9b70ca2 4500 int publicKeySz; /* encoded public key length */
wolfSSL 0:1239e9b70ca2 4501 int caSz; /* encoded CA extension length */
wolfSSL 0:1239e9b70ca2 4502 int extensionsSz; /* encoded extensions total length */
wolfSSL 0:1239e9b70ca2 4503 int total; /* total encoded lengths */
wolfSSL 0:1239e9b70ca2 4504 #ifdef CYASSL_CERT_REQ
wolfSSL 0:1239e9b70ca2 4505 int attribSz;
wolfSSL 0:1239e9b70ca2 4506 #endif
wolfSSL 0:1239e9b70ca2 4507 } DerCert;
wolfSSL 0:1239e9b70ca2 4508
wolfSSL 0:1239e9b70ca2 4509
wolfSSL 0:1239e9b70ca2 4510 #ifdef CYASSL_CERT_REQ
wolfSSL 0:1239e9b70ca2 4511
wolfSSL 0:1239e9b70ca2 4512 /* Write a set header to output */
wolfSSL 0:1239e9b70ca2 4513 static word32 SetUTF8String(word32 len, byte* output)
wolfSSL 0:1239e9b70ca2 4514 {
wolfSSL 0:1239e9b70ca2 4515 output[0] = ASN_UTF8STRING;
wolfSSL 0:1239e9b70ca2 4516 return SetLength(len, output + 1) + 1;
wolfSSL 0:1239e9b70ca2 4517 }
wolfSSL 0:1239e9b70ca2 4518
wolfSSL 0:1239e9b70ca2 4519 #endif /* CYASSL_CERT_REQ */
wolfSSL 0:1239e9b70ca2 4520
wolfSSL 0:1239e9b70ca2 4521
wolfSSL 0:1239e9b70ca2 4522 /* Write a serial number to output */
wolfSSL 0:1239e9b70ca2 4523 static int SetSerial(const byte* serial, byte* output)
wolfSSL 0:1239e9b70ca2 4524 {
wolfSSL 0:1239e9b70ca2 4525 int length = 0;
wolfSSL 0:1239e9b70ca2 4526
wolfSSL 0:1239e9b70ca2 4527 output[length++] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 4528 length += SetLength(CTC_SERIAL_SIZE, &output[length]);
wolfSSL 0:1239e9b70ca2 4529 XMEMCPY(&output[length], serial, CTC_SERIAL_SIZE);
wolfSSL 0:1239e9b70ca2 4530
wolfSSL 0:1239e9b70ca2 4531 return length + CTC_SERIAL_SIZE;
wolfSSL 0:1239e9b70ca2 4532 }
wolfSSL 0:1239e9b70ca2 4533
wolfSSL 0:1239e9b70ca2 4534
wolfSSL 0:1239e9b70ca2 4535 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 4536
wolfSSL 0:1239e9b70ca2 4537 /* Write a public ECC key to output */
wolfSSL 0:1239e9b70ca2 4538 static int SetEccPublicKey(byte* output, ecc_key* key)
wolfSSL 0:1239e9b70ca2 4539 {
wolfSSL 0:1239e9b70ca2 4540 byte algo[MAX_ALGO_SZ];
wolfSSL 0:1239e9b70ca2 4541 byte curve[MAX_ALGO_SZ];
wolfSSL 0:1239e9b70ca2 4542 byte len[MAX_LENGTH_SZ + 1]; /* trailing 0 */
wolfSSL 0:1239e9b70ca2 4543 byte pub[ECC_BUFSIZE];
wolfSSL 0:1239e9b70ca2 4544 int algoSz;
wolfSSL 0:1239e9b70ca2 4545 int curveSz;
wolfSSL 0:1239e9b70ca2 4546 int lenSz;
wolfSSL 0:1239e9b70ca2 4547 int idx;
wolfSSL 0:1239e9b70ca2 4548 word32 pubSz = sizeof(pub);
wolfSSL 0:1239e9b70ca2 4549
wolfSSL 0:1239e9b70ca2 4550 int ret = ecc_export_x963(key, pub, &pubSz);
wolfSSL 0:1239e9b70ca2 4551 if (ret != 0) return ret;
wolfSSL 0:1239e9b70ca2 4552
wolfSSL 0:1239e9b70ca2 4553 /* headers */
wolfSSL 0:1239e9b70ca2 4554 curveSz = SetCurve(key, curve);
wolfSSL 0:1239e9b70ca2 4555 if (curveSz <= 0) return curveSz;
wolfSSL 0:1239e9b70ca2 4556
wolfSSL 0:1239e9b70ca2 4557 algoSz = SetAlgoID(ECDSAk, algo, keyType, curveSz);
wolfSSL 0:1239e9b70ca2 4558 lenSz = SetLength(pubSz + 1, len);
wolfSSL 0:1239e9b70ca2 4559 len[lenSz++] = 0; /* trailing 0 */
wolfSSL 0:1239e9b70ca2 4560
wolfSSL 0:1239e9b70ca2 4561 /* write */
wolfSSL 0:1239e9b70ca2 4562 idx = SetSequence(pubSz + curveSz + lenSz + 1 + algoSz, output);
wolfSSL 0:1239e9b70ca2 4563 /* 1 is for ASN_BIT_STRING */
wolfSSL 0:1239e9b70ca2 4564 /* algo */
wolfSSL 0:1239e9b70ca2 4565 XMEMCPY(output + idx, algo, algoSz);
wolfSSL 0:1239e9b70ca2 4566 idx += algoSz;
wolfSSL 0:1239e9b70ca2 4567 /* curve */
wolfSSL 0:1239e9b70ca2 4568 XMEMCPY(output + idx, curve, curveSz);
wolfSSL 0:1239e9b70ca2 4569 idx += curveSz;
wolfSSL 0:1239e9b70ca2 4570 /* bit string */
wolfSSL 0:1239e9b70ca2 4571 output[idx++] = ASN_BIT_STRING;
wolfSSL 0:1239e9b70ca2 4572 /* length */
wolfSSL 0:1239e9b70ca2 4573 XMEMCPY(output + idx, len, lenSz);
wolfSSL 0:1239e9b70ca2 4574 idx += lenSz;
wolfSSL 0:1239e9b70ca2 4575 /* pub */
wolfSSL 0:1239e9b70ca2 4576 XMEMCPY(output + idx, pub, pubSz);
wolfSSL 0:1239e9b70ca2 4577 idx += pubSz;
wolfSSL 0:1239e9b70ca2 4578
wolfSSL 0:1239e9b70ca2 4579 return idx;
wolfSSL 0:1239e9b70ca2 4580 }
wolfSSL 0:1239e9b70ca2 4581
wolfSSL 0:1239e9b70ca2 4582
wolfSSL 0:1239e9b70ca2 4583 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 4584
wolfSSL 0:1239e9b70ca2 4585
wolfSSL 0:1239e9b70ca2 4586 /* Write a public RSA key to output */
wolfSSL 0:1239e9b70ca2 4587 static int SetRsaPublicKey(byte* output, RsaKey* key)
wolfSSL 0:1239e9b70ca2 4588 {
wolfSSL 0:1239e9b70ca2 4589 byte n[MAX_RSA_INT_SZ];
wolfSSL 0:1239e9b70ca2 4590 byte e[MAX_RSA_E_SZ];
wolfSSL 0:1239e9b70ca2 4591 byte algo[MAX_ALGO_SZ];
wolfSSL 0:1239e9b70ca2 4592 byte seq[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 4593 byte len[MAX_LENGTH_SZ + 1]; /* trailing 0 */
wolfSSL 0:1239e9b70ca2 4594 int nSz;
wolfSSL 0:1239e9b70ca2 4595 int eSz;
wolfSSL 0:1239e9b70ca2 4596 int algoSz;
wolfSSL 0:1239e9b70ca2 4597 int seqSz;
wolfSSL 0:1239e9b70ca2 4598 int lenSz;
wolfSSL 0:1239e9b70ca2 4599 int idx;
wolfSSL 0:1239e9b70ca2 4600 int rawLen;
wolfSSL 0:1239e9b70ca2 4601 int leadingBit;
wolfSSL 0:1239e9b70ca2 4602 int err;
wolfSSL 0:1239e9b70ca2 4603
wolfSSL 0:1239e9b70ca2 4604 /* n */
wolfSSL 0:1239e9b70ca2 4605 leadingBit = mp_leading_bit(&key->n);
wolfSSL 0:1239e9b70ca2 4606 rawLen = mp_unsigned_bin_size(&key->n) + leadingBit;
wolfSSL 0:1239e9b70ca2 4607 n[0] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 4608 nSz = SetLength(rawLen, n + 1) + 1; /* int tag */
wolfSSL 0:1239e9b70ca2 4609
wolfSSL 0:1239e9b70ca2 4610 if ( (nSz + rawLen) < (int)sizeof(n)) {
wolfSSL 0:1239e9b70ca2 4611 if (leadingBit)
wolfSSL 0:1239e9b70ca2 4612 n[nSz] = 0;
wolfSSL 0:1239e9b70ca2 4613 err = mp_to_unsigned_bin(&key->n, n + nSz + leadingBit);
wolfSSL 0:1239e9b70ca2 4614 if (err == MP_OKAY)
wolfSSL 0:1239e9b70ca2 4615 nSz += rawLen;
wolfSSL 0:1239e9b70ca2 4616 else
wolfSSL 0:1239e9b70ca2 4617 return MP_TO_E;
wolfSSL 0:1239e9b70ca2 4618 }
wolfSSL 0:1239e9b70ca2 4619 else
wolfSSL 0:1239e9b70ca2 4620 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 4621
wolfSSL 0:1239e9b70ca2 4622 /* e */
wolfSSL 0:1239e9b70ca2 4623 leadingBit = mp_leading_bit(&key->e);
wolfSSL 0:1239e9b70ca2 4624 rawLen = mp_unsigned_bin_size(&key->e) + leadingBit;
wolfSSL 0:1239e9b70ca2 4625 e[0] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 4626 eSz = SetLength(rawLen, e + 1) + 1; /* int tag */
wolfSSL 0:1239e9b70ca2 4627
wolfSSL 0:1239e9b70ca2 4628 if ( (eSz + rawLen) < (int)sizeof(e)) {
wolfSSL 0:1239e9b70ca2 4629 if (leadingBit)
wolfSSL 0:1239e9b70ca2 4630 e[eSz] = 0;
wolfSSL 0:1239e9b70ca2 4631 err = mp_to_unsigned_bin(&key->e, e + eSz + leadingBit);
wolfSSL 0:1239e9b70ca2 4632 if (err == MP_OKAY)
wolfSSL 0:1239e9b70ca2 4633 eSz += rawLen;
wolfSSL 0:1239e9b70ca2 4634 else
wolfSSL 0:1239e9b70ca2 4635 return MP_TO_E;
wolfSSL 0:1239e9b70ca2 4636 }
wolfSSL 0:1239e9b70ca2 4637 else
wolfSSL 0:1239e9b70ca2 4638 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 4639
wolfSSL 0:1239e9b70ca2 4640 /* headers */
wolfSSL 0:1239e9b70ca2 4641 algoSz = SetAlgoID(RSAk, algo, keyType, 0);
wolfSSL 0:1239e9b70ca2 4642 seqSz = SetSequence(nSz + eSz, seq);
wolfSSL 0:1239e9b70ca2 4643 lenSz = SetLength(seqSz + nSz + eSz + 1, len);
wolfSSL 0:1239e9b70ca2 4644 len[lenSz++] = 0; /* trailing 0 */
wolfSSL 0:1239e9b70ca2 4645
wolfSSL 0:1239e9b70ca2 4646 /* write */
wolfSSL 0:1239e9b70ca2 4647 idx = SetSequence(nSz + eSz + seqSz + lenSz + 1 + algoSz, output);
wolfSSL 0:1239e9b70ca2 4648 /* 1 is for ASN_BIT_STRING */
wolfSSL 0:1239e9b70ca2 4649 /* algo */
wolfSSL 0:1239e9b70ca2 4650 XMEMCPY(output + idx, algo, algoSz);
wolfSSL 0:1239e9b70ca2 4651 idx += algoSz;
wolfSSL 0:1239e9b70ca2 4652 /* bit string */
wolfSSL 0:1239e9b70ca2 4653 output[idx++] = ASN_BIT_STRING;
wolfSSL 0:1239e9b70ca2 4654 /* length */
wolfSSL 0:1239e9b70ca2 4655 XMEMCPY(output + idx, len, lenSz);
wolfSSL 0:1239e9b70ca2 4656 idx += lenSz;
wolfSSL 0:1239e9b70ca2 4657 /* seq */
wolfSSL 0:1239e9b70ca2 4658 XMEMCPY(output + idx, seq, seqSz);
wolfSSL 0:1239e9b70ca2 4659 idx += seqSz;
wolfSSL 0:1239e9b70ca2 4660 /* n */
wolfSSL 0:1239e9b70ca2 4661 XMEMCPY(output + idx, n, nSz);
wolfSSL 0:1239e9b70ca2 4662 idx += nSz;
wolfSSL 0:1239e9b70ca2 4663 /* e */
wolfSSL 0:1239e9b70ca2 4664 XMEMCPY(output + idx, e, eSz);
wolfSSL 0:1239e9b70ca2 4665 idx += eSz;
wolfSSL 0:1239e9b70ca2 4666
wolfSSL 0:1239e9b70ca2 4667 return idx;
wolfSSL 0:1239e9b70ca2 4668 }
wolfSSL 0:1239e9b70ca2 4669
wolfSSL 0:1239e9b70ca2 4670
wolfSSL 0:1239e9b70ca2 4671 static INLINE byte itob(int number)
wolfSSL 0:1239e9b70ca2 4672 {
wolfSSL 0:1239e9b70ca2 4673 return (byte)number + 0x30;
wolfSSL 0:1239e9b70ca2 4674 }
wolfSSL 0:1239e9b70ca2 4675
wolfSSL 0:1239e9b70ca2 4676
wolfSSL 0:1239e9b70ca2 4677 /* write time to output, format */
wolfSSL 0:1239e9b70ca2 4678 static void SetTime(struct tm* date, byte* output)
wolfSSL 0:1239e9b70ca2 4679 {
wolfSSL 0:1239e9b70ca2 4680 int i = 0;
wolfSSL 0:1239e9b70ca2 4681
wolfSSL 0:1239e9b70ca2 4682 output[i++] = itob((date->tm_year % 10000) / 1000);
wolfSSL 0:1239e9b70ca2 4683 output[i++] = itob((date->tm_year % 1000) / 100);
wolfSSL 0:1239e9b70ca2 4684 output[i++] = itob((date->tm_year % 100) / 10);
wolfSSL 0:1239e9b70ca2 4685 output[i++] = itob( date->tm_year % 10);
wolfSSL 0:1239e9b70ca2 4686
wolfSSL 0:1239e9b70ca2 4687 output[i++] = itob(date->tm_mon / 10);
wolfSSL 0:1239e9b70ca2 4688 output[i++] = itob(date->tm_mon % 10);
wolfSSL 0:1239e9b70ca2 4689
wolfSSL 0:1239e9b70ca2 4690 output[i++] = itob(date->tm_mday / 10);
wolfSSL 0:1239e9b70ca2 4691 output[i++] = itob(date->tm_mday % 10);
wolfSSL 0:1239e9b70ca2 4692
wolfSSL 0:1239e9b70ca2 4693 output[i++] = itob(date->tm_hour / 10);
wolfSSL 0:1239e9b70ca2 4694 output[i++] = itob(date->tm_hour % 10);
wolfSSL 0:1239e9b70ca2 4695
wolfSSL 0:1239e9b70ca2 4696 output[i++] = itob(date->tm_min / 10);
wolfSSL 0:1239e9b70ca2 4697 output[i++] = itob(date->tm_min % 10);
wolfSSL 0:1239e9b70ca2 4698
wolfSSL 0:1239e9b70ca2 4699 output[i++] = itob(date->tm_sec / 10);
wolfSSL 0:1239e9b70ca2 4700 output[i++] = itob(date->tm_sec % 10);
wolfSSL 0:1239e9b70ca2 4701
wolfSSL 0:1239e9b70ca2 4702 output[i] = 'Z'; /* Zulu profile */
wolfSSL 0:1239e9b70ca2 4703 }
wolfSSL 0:1239e9b70ca2 4704
wolfSSL 0:1239e9b70ca2 4705
wolfSSL 0:1239e9b70ca2 4706 #ifdef CYASSL_ALT_NAMES
wolfSSL 0:1239e9b70ca2 4707
wolfSSL 0:1239e9b70ca2 4708 /* Copy Dates from cert, return bytes written */
wolfSSL 0:1239e9b70ca2 4709 static int CopyValidity(byte* output, Cert* cert)
wolfSSL 0:1239e9b70ca2 4710 {
wolfSSL 0:1239e9b70ca2 4711 int seqSz;
wolfSSL 0:1239e9b70ca2 4712
wolfSSL 0:1239e9b70ca2 4713 CYASSL_ENTER("CopyValidity");
wolfSSL 0:1239e9b70ca2 4714
wolfSSL 0:1239e9b70ca2 4715 /* headers and output */
wolfSSL 0:1239e9b70ca2 4716 seqSz = SetSequence(cert->beforeDateSz + cert->afterDateSz, output);
wolfSSL 0:1239e9b70ca2 4717 XMEMCPY(output + seqSz, cert->beforeDate, cert->beforeDateSz);
wolfSSL 0:1239e9b70ca2 4718 XMEMCPY(output + seqSz + cert->beforeDateSz, cert->afterDate,
wolfSSL 0:1239e9b70ca2 4719 cert->afterDateSz);
wolfSSL 0:1239e9b70ca2 4720 return seqSz + cert->beforeDateSz + cert->afterDateSz;
wolfSSL 0:1239e9b70ca2 4721 }
wolfSSL 0:1239e9b70ca2 4722
wolfSSL 0:1239e9b70ca2 4723 #endif
wolfSSL 0:1239e9b70ca2 4724
wolfSSL 0:1239e9b70ca2 4725
wolfSSL 0:1239e9b70ca2 4726 /* Set Date validity from now until now + daysValid */
wolfSSL 0:1239e9b70ca2 4727 static int SetValidity(byte* output, int daysValid)
wolfSSL 0:1239e9b70ca2 4728 {
wolfSSL 0:1239e9b70ca2 4729 byte before[MAX_DATE_SIZE];
wolfSSL 0:1239e9b70ca2 4730 byte after[MAX_DATE_SIZE];
wolfSSL 0:1239e9b70ca2 4731
wolfSSL 0:1239e9b70ca2 4732 int beforeSz;
wolfSSL 0:1239e9b70ca2 4733 int afterSz;
wolfSSL 0:1239e9b70ca2 4734 int seqSz;
wolfSSL 0:1239e9b70ca2 4735
wolfSSL 0:1239e9b70ca2 4736 time_t ticks;
wolfSSL 0:1239e9b70ca2 4737 struct tm* now;
wolfSSL 0:1239e9b70ca2 4738 struct tm local;
wolfSSL 0:1239e9b70ca2 4739
wolfSSL 0:1239e9b70ca2 4740 ticks = XTIME(0);
wolfSSL 0:1239e9b70ca2 4741 now = XGMTIME(&ticks);
wolfSSL 0:1239e9b70ca2 4742
wolfSSL 0:1239e9b70ca2 4743 /* before now */
wolfSSL 0:1239e9b70ca2 4744 local = *now;
wolfSSL 0:1239e9b70ca2 4745 before[0] = ASN_GENERALIZED_TIME;
wolfSSL 0:1239e9b70ca2 4746 beforeSz = SetLength(ASN_GEN_TIME_SZ, before + 1) + 1; /* gen tag */
wolfSSL 0:1239e9b70ca2 4747
wolfSSL 0:1239e9b70ca2 4748 /* subtract 1 day for more compliance */
wolfSSL 0:1239e9b70ca2 4749 local.tm_mday -= 1;
wolfSSL 0:1239e9b70ca2 4750 mktime(&local);
wolfSSL 0:1239e9b70ca2 4751
wolfSSL 0:1239e9b70ca2 4752 /* adjust */
wolfSSL 0:1239e9b70ca2 4753 local.tm_year += 1900;
wolfSSL 0:1239e9b70ca2 4754 local.tm_mon += 1;
wolfSSL 0:1239e9b70ca2 4755
wolfSSL 0:1239e9b70ca2 4756 SetTime(&local, before + beforeSz);
wolfSSL 0:1239e9b70ca2 4757 beforeSz += ASN_GEN_TIME_SZ;
wolfSSL 0:1239e9b70ca2 4758
wolfSSL 0:1239e9b70ca2 4759 /* after now + daysValid */
wolfSSL 0:1239e9b70ca2 4760 local = *now;
wolfSSL 0:1239e9b70ca2 4761 after[0] = ASN_GENERALIZED_TIME;
wolfSSL 0:1239e9b70ca2 4762 afterSz = SetLength(ASN_GEN_TIME_SZ, after + 1) + 1; /* gen tag */
wolfSSL 0:1239e9b70ca2 4763
wolfSSL 0:1239e9b70ca2 4764 /* add daysValid */
wolfSSL 0:1239e9b70ca2 4765 local.tm_mday += daysValid;
wolfSSL 0:1239e9b70ca2 4766 mktime(&local);
wolfSSL 0:1239e9b70ca2 4767
wolfSSL 0:1239e9b70ca2 4768 /* adjust */
wolfSSL 0:1239e9b70ca2 4769 local.tm_year += 1900;
wolfSSL 0:1239e9b70ca2 4770 local.tm_mon += 1;
wolfSSL 0:1239e9b70ca2 4771
wolfSSL 0:1239e9b70ca2 4772 SetTime(&local, after + afterSz);
wolfSSL 0:1239e9b70ca2 4773 afterSz += ASN_GEN_TIME_SZ;
wolfSSL 0:1239e9b70ca2 4774
wolfSSL 0:1239e9b70ca2 4775 /* headers and output */
wolfSSL 0:1239e9b70ca2 4776 seqSz = SetSequence(beforeSz + afterSz, output);
wolfSSL 0:1239e9b70ca2 4777 XMEMCPY(output + seqSz, before, beforeSz);
wolfSSL 0:1239e9b70ca2 4778 XMEMCPY(output + seqSz + beforeSz, after, afterSz);
wolfSSL 0:1239e9b70ca2 4779
wolfSSL 0:1239e9b70ca2 4780 return seqSz + beforeSz + afterSz;
wolfSSL 0:1239e9b70ca2 4781 }
wolfSSL 0:1239e9b70ca2 4782
wolfSSL 0:1239e9b70ca2 4783
wolfSSL 0:1239e9b70ca2 4784 /* ASN Encoded Name field */
wolfSSL 0:1239e9b70ca2 4785 typedef struct EncodedName {
wolfSSL 0:1239e9b70ca2 4786 int nameLen; /* actual string value length */
wolfSSL 0:1239e9b70ca2 4787 int totalLen; /* total encoded length */
wolfSSL 0:1239e9b70ca2 4788 int type; /* type of name */
wolfSSL 0:1239e9b70ca2 4789 int used; /* are we actually using this one */
wolfSSL 0:1239e9b70ca2 4790 byte encoded[CTC_NAME_SIZE * 2]; /* encoding */
wolfSSL 0:1239e9b70ca2 4791 } EncodedName;
wolfSSL 0:1239e9b70ca2 4792
wolfSSL 0:1239e9b70ca2 4793
wolfSSL 0:1239e9b70ca2 4794 /* Get Which Name from index */
wolfSSL 0:1239e9b70ca2 4795 static const char* GetOneName(CertName* name, int idx)
wolfSSL 0:1239e9b70ca2 4796 {
wolfSSL 0:1239e9b70ca2 4797 switch (idx) {
wolfSSL 0:1239e9b70ca2 4798 case 0:
wolfSSL 0:1239e9b70ca2 4799 return name->country;
wolfSSL 0:1239e9b70ca2 4800
wolfSSL 0:1239e9b70ca2 4801 case 1:
wolfSSL 0:1239e9b70ca2 4802 return name->state;
wolfSSL 0:1239e9b70ca2 4803
wolfSSL 0:1239e9b70ca2 4804 case 2:
wolfSSL 0:1239e9b70ca2 4805 return name->locality;
wolfSSL 0:1239e9b70ca2 4806
wolfSSL 0:1239e9b70ca2 4807 case 3:
wolfSSL 0:1239e9b70ca2 4808 return name->sur;
wolfSSL 0:1239e9b70ca2 4809
wolfSSL 0:1239e9b70ca2 4810 case 4:
wolfSSL 0:1239e9b70ca2 4811 return name->org;
wolfSSL 0:1239e9b70ca2 4812
wolfSSL 0:1239e9b70ca2 4813 case 5:
wolfSSL 0:1239e9b70ca2 4814 return name->unit;
wolfSSL 0:1239e9b70ca2 4815
wolfSSL 0:1239e9b70ca2 4816 case 6:
wolfSSL 0:1239e9b70ca2 4817 return name->commonName;
wolfSSL 0:1239e9b70ca2 4818
wolfSSL 0:1239e9b70ca2 4819 case 7:
wolfSSL 0:1239e9b70ca2 4820 return name->email;
wolfSSL 0:1239e9b70ca2 4821
wolfSSL 0:1239e9b70ca2 4822 default:
wolfSSL 0:1239e9b70ca2 4823 return 0;
wolfSSL 0:1239e9b70ca2 4824 }
wolfSSL 0:1239e9b70ca2 4825 }
wolfSSL 0:1239e9b70ca2 4826
wolfSSL 0:1239e9b70ca2 4827
wolfSSL 0:1239e9b70ca2 4828 /* Get ASN Name from index */
wolfSSL 0:1239e9b70ca2 4829 static byte GetNameId(int idx)
wolfSSL 0:1239e9b70ca2 4830 {
wolfSSL 0:1239e9b70ca2 4831 switch (idx) {
wolfSSL 0:1239e9b70ca2 4832 case 0:
wolfSSL 0:1239e9b70ca2 4833 return ASN_COUNTRY_NAME;
wolfSSL 0:1239e9b70ca2 4834
wolfSSL 0:1239e9b70ca2 4835 case 1:
wolfSSL 0:1239e9b70ca2 4836 return ASN_STATE_NAME;
wolfSSL 0:1239e9b70ca2 4837
wolfSSL 0:1239e9b70ca2 4838 case 2:
wolfSSL 0:1239e9b70ca2 4839 return ASN_LOCALITY_NAME;
wolfSSL 0:1239e9b70ca2 4840
wolfSSL 0:1239e9b70ca2 4841 case 3:
wolfSSL 0:1239e9b70ca2 4842 return ASN_SUR_NAME;
wolfSSL 0:1239e9b70ca2 4843
wolfSSL 0:1239e9b70ca2 4844 case 4:
wolfSSL 0:1239e9b70ca2 4845 return ASN_ORG_NAME;
wolfSSL 0:1239e9b70ca2 4846
wolfSSL 0:1239e9b70ca2 4847 case 5:
wolfSSL 0:1239e9b70ca2 4848 return ASN_ORGUNIT_NAME;
wolfSSL 0:1239e9b70ca2 4849
wolfSSL 0:1239e9b70ca2 4850 case 6:
wolfSSL 0:1239e9b70ca2 4851 return ASN_COMMON_NAME;
wolfSSL 0:1239e9b70ca2 4852
wolfSSL 0:1239e9b70ca2 4853 case 7:
wolfSSL 0:1239e9b70ca2 4854 /* email uses different id type */
wolfSSL 0:1239e9b70ca2 4855 return 0;
wolfSSL 0:1239e9b70ca2 4856
wolfSSL 0:1239e9b70ca2 4857 default:
wolfSSL 0:1239e9b70ca2 4858 return 0;
wolfSSL 0:1239e9b70ca2 4859 }
wolfSSL 0:1239e9b70ca2 4860 }
wolfSSL 0:1239e9b70ca2 4861
wolfSSL 0:1239e9b70ca2 4862
wolfSSL 0:1239e9b70ca2 4863 /* encode all extensions, return total bytes written */
wolfSSL 0:1239e9b70ca2 4864 static int SetExtensions(byte* output, const byte* ext, int extSz, int header)
wolfSSL 0:1239e9b70ca2 4865 {
wolfSSL 0:1239e9b70ca2 4866 byte sequence[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 4867 byte len[MAX_LENGTH_SZ];
wolfSSL 0:1239e9b70ca2 4868
wolfSSL 0:1239e9b70ca2 4869 int sz = 0;
wolfSSL 0:1239e9b70ca2 4870 int seqSz = SetSequence(extSz, sequence);
wolfSSL 0:1239e9b70ca2 4871
wolfSSL 0:1239e9b70ca2 4872 if (header) {
wolfSSL 0:1239e9b70ca2 4873 int lenSz = SetLength(seqSz + extSz, len);
wolfSSL 0:1239e9b70ca2 4874 output[0] = ASN_EXTENSIONS; /* extensions id */
wolfSSL 0:1239e9b70ca2 4875 sz++;
wolfSSL 0:1239e9b70ca2 4876 XMEMCPY(&output[sz], len, lenSz); /* length */
wolfSSL 0:1239e9b70ca2 4877 sz += lenSz;
wolfSSL 0:1239e9b70ca2 4878 }
wolfSSL 0:1239e9b70ca2 4879 XMEMCPY(&output[sz], sequence, seqSz); /* sequence */
wolfSSL 0:1239e9b70ca2 4880 sz += seqSz;
wolfSSL 0:1239e9b70ca2 4881 XMEMCPY(&output[sz], ext, extSz); /* extensions */
wolfSSL 0:1239e9b70ca2 4882 sz += extSz;
wolfSSL 0:1239e9b70ca2 4883
wolfSSL 0:1239e9b70ca2 4884 return sz;
wolfSSL 0:1239e9b70ca2 4885 }
wolfSSL 0:1239e9b70ca2 4886
wolfSSL 0:1239e9b70ca2 4887
wolfSSL 0:1239e9b70ca2 4888 /* encode CA basic constraint true, return total bytes written */
wolfSSL 0:1239e9b70ca2 4889 static int SetCa(byte* output)
wolfSSL 0:1239e9b70ca2 4890 {
wolfSSL 0:1239e9b70ca2 4891 static const byte ca[] = { 0x30, 0x0c, 0x06, 0x03, 0x55, 0x1d, 0x13, 0x04,
wolfSSL 0:1239e9b70ca2 4892 0x05, 0x30, 0x03, 0x01, 0x01, 0xff };
wolfSSL 0:1239e9b70ca2 4893
wolfSSL 0:1239e9b70ca2 4894 XMEMCPY(output, ca, sizeof(ca));
wolfSSL 0:1239e9b70ca2 4895
wolfSSL 0:1239e9b70ca2 4896 return (int)sizeof(ca);
wolfSSL 0:1239e9b70ca2 4897 }
wolfSSL 0:1239e9b70ca2 4898
wolfSSL 0:1239e9b70ca2 4899
wolfSSL 0:1239e9b70ca2 4900 /* encode CertName into output, return total bytes written */
wolfSSL 0:1239e9b70ca2 4901 static int SetName(byte* output, CertName* name)
wolfSSL 0:1239e9b70ca2 4902 {
wolfSSL 0:1239e9b70ca2 4903 int totalBytes = 0, i, idx;
wolfSSL 0:1239e9b70ca2 4904 EncodedName names[NAME_ENTRIES];
wolfSSL 0:1239e9b70ca2 4905
wolfSSL 0:1239e9b70ca2 4906 for (i = 0; i < NAME_ENTRIES; i++) {
wolfSSL 0:1239e9b70ca2 4907 const char* nameStr = GetOneName(name, i);
wolfSSL 0:1239e9b70ca2 4908 if (nameStr) {
wolfSSL 0:1239e9b70ca2 4909 /* bottom up */
wolfSSL 0:1239e9b70ca2 4910 byte firstLen[MAX_LENGTH_SZ];
wolfSSL 0:1239e9b70ca2 4911 byte secondLen[MAX_LENGTH_SZ];
wolfSSL 0:1239e9b70ca2 4912 byte sequence[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 4913 byte set[MAX_SET_SZ];
wolfSSL 0:1239e9b70ca2 4914
wolfSSL 0:1239e9b70ca2 4915 int email = i == (NAME_ENTRIES - 1) ? 1 : 0;
wolfSSL 0:1239e9b70ca2 4916 int strLen = (int)XSTRLEN(nameStr);
wolfSSL 0:1239e9b70ca2 4917 int thisLen = strLen;
wolfSSL 0:1239e9b70ca2 4918 int firstSz, secondSz, seqSz, setSz;
wolfSSL 0:1239e9b70ca2 4919
wolfSSL 0:1239e9b70ca2 4920 if (strLen == 0) { /* no user data for this item */
wolfSSL 0:1239e9b70ca2 4921 names[i].used = 0;
wolfSSL 0:1239e9b70ca2 4922 continue;
wolfSSL 0:1239e9b70ca2 4923 }
wolfSSL 0:1239e9b70ca2 4924
wolfSSL 0:1239e9b70ca2 4925 secondSz = SetLength(strLen, secondLen);
wolfSSL 0:1239e9b70ca2 4926 thisLen += secondSz;
wolfSSL 0:1239e9b70ca2 4927 if (email) {
wolfSSL 0:1239e9b70ca2 4928 thisLen += EMAIL_JOINT_LEN;
wolfSSL 0:1239e9b70ca2 4929 thisLen ++; /* id type */
wolfSSL 0:1239e9b70ca2 4930 firstSz = SetLength(EMAIL_JOINT_LEN, firstLen);
wolfSSL 0:1239e9b70ca2 4931 }
wolfSSL 0:1239e9b70ca2 4932 else {
wolfSSL 0:1239e9b70ca2 4933 thisLen++; /* str type */
wolfSSL 0:1239e9b70ca2 4934 thisLen++; /* id type */
wolfSSL 0:1239e9b70ca2 4935 thisLen += JOINT_LEN;
wolfSSL 0:1239e9b70ca2 4936 firstSz = SetLength(JOINT_LEN + 1, firstLen);
wolfSSL 0:1239e9b70ca2 4937 }
wolfSSL 0:1239e9b70ca2 4938 thisLen += firstSz;
wolfSSL 0:1239e9b70ca2 4939 thisLen++; /* object id */
wolfSSL 0:1239e9b70ca2 4940
wolfSSL 0:1239e9b70ca2 4941 seqSz = SetSequence(thisLen, sequence);
wolfSSL 0:1239e9b70ca2 4942 thisLen += seqSz;
wolfSSL 0:1239e9b70ca2 4943 setSz = SetSet(thisLen, set);
wolfSSL 0:1239e9b70ca2 4944 thisLen += setSz;
wolfSSL 0:1239e9b70ca2 4945
wolfSSL 0:1239e9b70ca2 4946 if (thisLen > (int)sizeof(names[i].encoded))
wolfSSL 0:1239e9b70ca2 4947 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 4948
wolfSSL 0:1239e9b70ca2 4949 /* store it */
wolfSSL 0:1239e9b70ca2 4950 idx = 0;
wolfSSL 0:1239e9b70ca2 4951 /* set */
wolfSSL 0:1239e9b70ca2 4952 XMEMCPY(names[i].encoded, set, setSz);
wolfSSL 0:1239e9b70ca2 4953 idx += setSz;
wolfSSL 0:1239e9b70ca2 4954 /* seq */
wolfSSL 0:1239e9b70ca2 4955 XMEMCPY(names[i].encoded + idx, sequence, seqSz);
wolfSSL 0:1239e9b70ca2 4956 idx += seqSz;
wolfSSL 0:1239e9b70ca2 4957 /* asn object id */
wolfSSL 0:1239e9b70ca2 4958 names[i].encoded[idx++] = ASN_OBJECT_ID;
wolfSSL 0:1239e9b70ca2 4959 /* first length */
wolfSSL 0:1239e9b70ca2 4960 XMEMCPY(names[i].encoded + idx, firstLen, firstSz);
wolfSSL 0:1239e9b70ca2 4961 idx += firstSz;
wolfSSL 0:1239e9b70ca2 4962 if (email) {
wolfSSL 0:1239e9b70ca2 4963 const byte EMAIL_OID[] = { 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d,
wolfSSL 0:1239e9b70ca2 4964 0x01, 0x09, 0x01, 0x16 };
wolfSSL 0:1239e9b70ca2 4965 /* email joint id */
wolfSSL 0:1239e9b70ca2 4966 XMEMCPY(names[i].encoded + idx, EMAIL_OID, sizeof(EMAIL_OID));
wolfSSL 0:1239e9b70ca2 4967 idx += (int)sizeof(EMAIL_OID);
wolfSSL 0:1239e9b70ca2 4968 }
wolfSSL 0:1239e9b70ca2 4969 else {
wolfSSL 0:1239e9b70ca2 4970 /* joint id */
wolfSSL 0:1239e9b70ca2 4971 byte bType = GetNameId(i);
wolfSSL 0:1239e9b70ca2 4972 names[i].encoded[idx++] = 0x55;
wolfSSL 0:1239e9b70ca2 4973 names[i].encoded[idx++] = 0x04;
wolfSSL 0:1239e9b70ca2 4974 /* id type */
wolfSSL 0:1239e9b70ca2 4975 names[i].encoded[idx++] = bType;
wolfSSL 0:1239e9b70ca2 4976 /* str type */
wolfSSL 0:1239e9b70ca2 4977 if (bType == ASN_COUNTRY_NAME)
wolfSSL 0:1239e9b70ca2 4978 names[i].encoded[idx++] = 0x13; /* printable */
wolfSSL 0:1239e9b70ca2 4979 else
wolfSSL 0:1239e9b70ca2 4980 names[i].encoded[idx++] = 0x0c; /* utf8 */
wolfSSL 0:1239e9b70ca2 4981 }
wolfSSL 0:1239e9b70ca2 4982 /* second length */
wolfSSL 0:1239e9b70ca2 4983 XMEMCPY(names[i].encoded + idx, secondLen, secondSz);
wolfSSL 0:1239e9b70ca2 4984 idx += secondSz;
wolfSSL 0:1239e9b70ca2 4985 /* str value */
wolfSSL 0:1239e9b70ca2 4986 XMEMCPY(names[i].encoded + idx, nameStr, strLen);
wolfSSL 0:1239e9b70ca2 4987 idx += strLen;
wolfSSL 0:1239e9b70ca2 4988
wolfSSL 0:1239e9b70ca2 4989 totalBytes += idx;
wolfSSL 0:1239e9b70ca2 4990 names[i].totalLen = idx;
wolfSSL 0:1239e9b70ca2 4991 names[i].used = 1;
wolfSSL 0:1239e9b70ca2 4992 }
wolfSSL 0:1239e9b70ca2 4993 else
wolfSSL 0:1239e9b70ca2 4994 names[i].used = 0;
wolfSSL 0:1239e9b70ca2 4995 }
wolfSSL 0:1239e9b70ca2 4996
wolfSSL 0:1239e9b70ca2 4997 /* header */
wolfSSL 0:1239e9b70ca2 4998 idx = SetSequence(totalBytes, output);
wolfSSL 0:1239e9b70ca2 4999 totalBytes += idx;
wolfSSL 0:1239e9b70ca2 5000 if (totalBytes > ASN_NAME_MAX)
wolfSSL 0:1239e9b70ca2 5001 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 5002
wolfSSL 0:1239e9b70ca2 5003 for (i = 0; i < NAME_ENTRIES; i++) {
wolfSSL 0:1239e9b70ca2 5004 if (names[i].used) {
wolfSSL 0:1239e9b70ca2 5005 XMEMCPY(output + idx, names[i].encoded, names[i].totalLen);
wolfSSL 0:1239e9b70ca2 5006 idx += names[i].totalLen;
wolfSSL 0:1239e9b70ca2 5007 }
wolfSSL 0:1239e9b70ca2 5008 }
wolfSSL 0:1239e9b70ca2 5009 return totalBytes;
wolfSSL 0:1239e9b70ca2 5010 }
wolfSSL 0:1239e9b70ca2 5011
wolfSSL 0:1239e9b70ca2 5012 /* encode info from cert into DER encoded format */
wolfSSL 0:1239e9b70ca2 5013 static int EncodeCert(Cert* cert, DerCert* der, RsaKey* rsaKey, ecc_key* eccKey,
wolfSSL 0:1239e9b70ca2 5014 RNG* rng, const byte* ntruKey, word16 ntruSz)
wolfSSL 0:1239e9b70ca2 5015 {
wolfSSL 0:1239e9b70ca2 5016 int ret;
wolfSSL 0:1239e9b70ca2 5017
wolfSSL 0:1239e9b70ca2 5018 (void)eccKey;
wolfSSL 0:1239e9b70ca2 5019 (void)ntruKey;
wolfSSL 0:1239e9b70ca2 5020 (void)ntruSz;
wolfSSL 0:1239e9b70ca2 5021
wolfSSL 0:1239e9b70ca2 5022 /* init */
wolfSSL 0:1239e9b70ca2 5023 XMEMSET(der, 0, sizeof(DerCert));
wolfSSL 0:1239e9b70ca2 5024
wolfSSL 0:1239e9b70ca2 5025 /* version */
wolfSSL 0:1239e9b70ca2 5026 der->versionSz = SetMyVersion(cert->version, der->version, TRUE);
wolfSSL 0:1239e9b70ca2 5027
wolfSSL 0:1239e9b70ca2 5028 /* serial number */
wolfSSL 0:1239e9b70ca2 5029 ret = RNG_GenerateBlock(rng, cert->serial, CTC_SERIAL_SIZE);
wolfSSL 0:1239e9b70ca2 5030 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5031 return ret;
wolfSSL 0:1239e9b70ca2 5032
wolfSSL 0:1239e9b70ca2 5033 cert->serial[0] = 0x01; /* ensure positive */
wolfSSL 0:1239e9b70ca2 5034 der->serialSz = SetSerial(cert->serial, der->serial);
wolfSSL 0:1239e9b70ca2 5035
wolfSSL 0:1239e9b70ca2 5036 /* signature algo */
wolfSSL 0:1239e9b70ca2 5037 der->sigAlgoSz = SetAlgoID(cert->sigType, der->sigAlgo, sigType, 0);
wolfSSL 0:1239e9b70ca2 5038 if (der->sigAlgoSz == 0)
wolfSSL 0:1239e9b70ca2 5039 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 5040
wolfSSL 0:1239e9b70ca2 5041 /* public key */
wolfSSL 0:1239e9b70ca2 5042 if (cert->keyType == RSA_KEY) {
wolfSSL 0:1239e9b70ca2 5043 if (rsaKey == NULL)
wolfSSL 0:1239e9b70ca2 5044 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5045 der->publicKeySz = SetRsaPublicKey(der->publicKey, rsaKey);
wolfSSL 0:1239e9b70ca2 5046 if (der->publicKeySz <= 0)
wolfSSL 0:1239e9b70ca2 5047 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5048 }
wolfSSL 0:1239e9b70ca2 5049
wolfSSL 0:1239e9b70ca2 5050 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 5051 if (cert->keyType == ECC_KEY) {
wolfSSL 0:1239e9b70ca2 5052 if (eccKey == NULL)
wolfSSL 0:1239e9b70ca2 5053 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5054 der->publicKeySz = SetEccPublicKey(der->publicKey, eccKey);
wolfSSL 0:1239e9b70ca2 5055 if (der->publicKeySz <= 0)
wolfSSL 0:1239e9b70ca2 5056 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5057 }
wolfSSL 0:1239e9b70ca2 5058 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 5059
wolfSSL 0:1239e9b70ca2 5060 #ifdef HAVE_NTRU
wolfSSL 0:1239e9b70ca2 5061 if (cert->keyType == NTRU_KEY) {
wolfSSL 0:1239e9b70ca2 5062 word32 rc;
wolfSSL 0:1239e9b70ca2 5063 word16 encodedSz;
wolfSSL 0:1239e9b70ca2 5064
wolfSSL 0:1239e9b70ca2 5065 rc = crypto_ntru_encrypt_publicKey2SubjectPublicKeyInfo( ntruSz,
wolfSSL 0:1239e9b70ca2 5066 ntruKey, &encodedSz, NULL);
wolfSSL 0:1239e9b70ca2 5067 if (rc != NTRU_OK)
wolfSSL 0:1239e9b70ca2 5068 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5069 if (encodedSz > MAX_PUBLIC_KEY_SZ)
wolfSSL 0:1239e9b70ca2 5070 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5071
wolfSSL 0:1239e9b70ca2 5072 rc = crypto_ntru_encrypt_publicKey2SubjectPublicKeyInfo( ntruSz,
wolfSSL 0:1239e9b70ca2 5073 ntruKey, &encodedSz, der->publicKey);
wolfSSL 0:1239e9b70ca2 5074 if (rc != NTRU_OK)
wolfSSL 0:1239e9b70ca2 5075 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5076
wolfSSL 0:1239e9b70ca2 5077 der->publicKeySz = encodedSz;
wolfSSL 0:1239e9b70ca2 5078 }
wolfSSL 0:1239e9b70ca2 5079 #endif /* HAVE_NTRU */
wolfSSL 0:1239e9b70ca2 5080
wolfSSL 0:1239e9b70ca2 5081 der->validitySz = 0;
wolfSSL 0:1239e9b70ca2 5082 #ifdef CYASSL_ALT_NAMES
wolfSSL 0:1239e9b70ca2 5083 /* date validity copy ? */
wolfSSL 0:1239e9b70ca2 5084 if (cert->beforeDateSz && cert->afterDateSz) {
wolfSSL 0:1239e9b70ca2 5085 der->validitySz = CopyValidity(der->validity, cert);
wolfSSL 0:1239e9b70ca2 5086 if (der->validitySz == 0)
wolfSSL 0:1239e9b70ca2 5087 return DATE_E;
wolfSSL 0:1239e9b70ca2 5088 }
wolfSSL 0:1239e9b70ca2 5089 #endif
wolfSSL 0:1239e9b70ca2 5090
wolfSSL 0:1239e9b70ca2 5091 /* date validity */
wolfSSL 0:1239e9b70ca2 5092 if (der->validitySz == 0) {
wolfSSL 0:1239e9b70ca2 5093 der->validitySz = SetValidity(der->validity, cert->daysValid);
wolfSSL 0:1239e9b70ca2 5094 if (der->validitySz == 0)
wolfSSL 0:1239e9b70ca2 5095 return DATE_E;
wolfSSL 0:1239e9b70ca2 5096 }
wolfSSL 0:1239e9b70ca2 5097
wolfSSL 0:1239e9b70ca2 5098 /* subject name */
wolfSSL 0:1239e9b70ca2 5099 der->subjectSz = SetName(der->subject, &cert->subject);
wolfSSL 0:1239e9b70ca2 5100 if (der->subjectSz == 0)
wolfSSL 0:1239e9b70ca2 5101 return SUBJECT_E;
wolfSSL 0:1239e9b70ca2 5102
wolfSSL 0:1239e9b70ca2 5103 /* issuer name */
wolfSSL 0:1239e9b70ca2 5104 der->issuerSz = SetName(der->issuer, cert->selfSigned ?
wolfSSL 0:1239e9b70ca2 5105 &cert->subject : &cert->issuer);
wolfSSL 0:1239e9b70ca2 5106 if (der->issuerSz == 0)
wolfSSL 0:1239e9b70ca2 5107 return ISSUER_E;
wolfSSL 0:1239e9b70ca2 5108
wolfSSL 0:1239e9b70ca2 5109 /* CA */
wolfSSL 0:1239e9b70ca2 5110 if (cert->isCA) {
wolfSSL 0:1239e9b70ca2 5111 der->caSz = SetCa(der->ca);
wolfSSL 0:1239e9b70ca2 5112 if (der->caSz == 0)
wolfSSL 0:1239e9b70ca2 5113 return CA_TRUE_E;
wolfSSL 0:1239e9b70ca2 5114 }
wolfSSL 0:1239e9b70ca2 5115 else
wolfSSL 0:1239e9b70ca2 5116 der->caSz = 0;
wolfSSL 0:1239e9b70ca2 5117
wolfSSL 0:1239e9b70ca2 5118 /* extensions, just CA now */
wolfSSL 0:1239e9b70ca2 5119 if (cert->isCA) {
wolfSSL 0:1239e9b70ca2 5120 der->extensionsSz = SetExtensions(der->extensions,
wolfSSL 0:1239e9b70ca2 5121 der->ca, der->caSz, TRUE);
wolfSSL 0:1239e9b70ca2 5122 if (der->extensionsSz == 0)
wolfSSL 0:1239e9b70ca2 5123 return EXTENSIONS_E;
wolfSSL 0:1239e9b70ca2 5124 }
wolfSSL 0:1239e9b70ca2 5125 else
wolfSSL 0:1239e9b70ca2 5126 der->extensionsSz = 0;
wolfSSL 0:1239e9b70ca2 5127
wolfSSL 0:1239e9b70ca2 5128 #ifdef CYASSL_ALT_NAMES
wolfSSL 0:1239e9b70ca2 5129 if (der->extensionsSz == 0 && cert->altNamesSz) {
wolfSSL 0:1239e9b70ca2 5130 der->extensionsSz = SetExtensions(der->extensions, cert->altNames,
wolfSSL 0:1239e9b70ca2 5131 cert->altNamesSz, TRUE);
wolfSSL 0:1239e9b70ca2 5132 if (der->extensionsSz == 0)
wolfSSL 0:1239e9b70ca2 5133 return EXTENSIONS_E;
wolfSSL 0:1239e9b70ca2 5134 }
wolfSSL 0:1239e9b70ca2 5135 #endif
wolfSSL 0:1239e9b70ca2 5136
wolfSSL 0:1239e9b70ca2 5137 der->total = der->versionSz + der->serialSz + der->sigAlgoSz +
wolfSSL 0:1239e9b70ca2 5138 der->publicKeySz + der->validitySz + der->subjectSz + der->issuerSz +
wolfSSL 0:1239e9b70ca2 5139 der->extensionsSz;
wolfSSL 0:1239e9b70ca2 5140
wolfSSL 0:1239e9b70ca2 5141 return 0;
wolfSSL 0:1239e9b70ca2 5142 }
wolfSSL 0:1239e9b70ca2 5143
wolfSSL 0:1239e9b70ca2 5144
wolfSSL 0:1239e9b70ca2 5145 /* write DER encoded cert to buffer, size already checked */
wolfSSL 0:1239e9b70ca2 5146 static int WriteCertBody(DerCert* der, byte* buffer)
wolfSSL 0:1239e9b70ca2 5147 {
wolfSSL 0:1239e9b70ca2 5148 int idx;
wolfSSL 0:1239e9b70ca2 5149
wolfSSL 0:1239e9b70ca2 5150 /* signed part header */
wolfSSL 0:1239e9b70ca2 5151 idx = SetSequence(der->total, buffer);
wolfSSL 0:1239e9b70ca2 5152 /* version */
wolfSSL 0:1239e9b70ca2 5153 XMEMCPY(buffer + idx, der->version, der->versionSz);
wolfSSL 0:1239e9b70ca2 5154 idx += der->versionSz;
wolfSSL 0:1239e9b70ca2 5155 /* serial */
wolfSSL 0:1239e9b70ca2 5156 XMEMCPY(buffer + idx, der->serial, der->serialSz);
wolfSSL 0:1239e9b70ca2 5157 idx += der->serialSz;
wolfSSL 0:1239e9b70ca2 5158 /* sig algo */
wolfSSL 0:1239e9b70ca2 5159 XMEMCPY(buffer + idx, der->sigAlgo, der->sigAlgoSz);
wolfSSL 0:1239e9b70ca2 5160 idx += der->sigAlgoSz;
wolfSSL 0:1239e9b70ca2 5161 /* issuer */
wolfSSL 0:1239e9b70ca2 5162 XMEMCPY(buffer + idx, der->issuer, der->issuerSz);
wolfSSL 0:1239e9b70ca2 5163 idx += der->issuerSz;
wolfSSL 0:1239e9b70ca2 5164 /* validity */
wolfSSL 0:1239e9b70ca2 5165 XMEMCPY(buffer + idx, der->validity, der->validitySz);
wolfSSL 0:1239e9b70ca2 5166 idx += der->validitySz;
wolfSSL 0:1239e9b70ca2 5167 /* subject */
wolfSSL 0:1239e9b70ca2 5168 XMEMCPY(buffer + idx, der->subject, der->subjectSz);
wolfSSL 0:1239e9b70ca2 5169 idx += der->subjectSz;
wolfSSL 0:1239e9b70ca2 5170 /* public key */
wolfSSL 0:1239e9b70ca2 5171 XMEMCPY(buffer + idx, der->publicKey, der->publicKeySz);
wolfSSL 0:1239e9b70ca2 5172 idx += der->publicKeySz;
wolfSSL 0:1239e9b70ca2 5173 if (der->extensionsSz) {
wolfSSL 0:1239e9b70ca2 5174 /* extensions */
wolfSSL 0:1239e9b70ca2 5175 XMEMCPY(buffer + idx, der->extensions, min(der->extensionsSz,
wolfSSL 0:1239e9b70ca2 5176 sizeof(der->extensions)));
wolfSSL 0:1239e9b70ca2 5177 idx += der->extensionsSz;
wolfSSL 0:1239e9b70ca2 5178 }
wolfSSL 0:1239e9b70ca2 5179
wolfSSL 0:1239e9b70ca2 5180 return idx;
wolfSSL 0:1239e9b70ca2 5181 }
wolfSSL 0:1239e9b70ca2 5182
wolfSSL 0:1239e9b70ca2 5183
wolfSSL 0:1239e9b70ca2 5184 /* Make RSA signature from buffer (sz), write to sig (sigSz) */
wolfSSL 0:1239e9b70ca2 5185 static int MakeSignature(const byte* buffer, int sz, byte* sig, int sigSz,
wolfSSL 0:1239e9b70ca2 5186 RsaKey* rsaKey, ecc_key* eccKey, RNG* rng,
wolfSSL 0:1239e9b70ca2 5187 int sigAlgoType)
wolfSSL 0:1239e9b70ca2 5188 {
wolfSSL 0:1239e9b70ca2 5189 byte digest[SHA256_DIGEST_SIZE]; /* max size */
wolfSSL 0:1239e9b70ca2 5190 byte encSig[MAX_ENCODED_DIG_SZ + MAX_ALGO_SZ + MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 5191 int encSigSz, digestSz, typeH, ret = 0;
wolfSSL 0:1239e9b70ca2 5192
wolfSSL 0:1239e9b70ca2 5193 (void)eccKey;
wolfSSL 0:1239e9b70ca2 5194
wolfSSL 0:1239e9b70ca2 5195 if (sigAlgoType == CTC_MD5wRSA) {
wolfSSL 0:1239e9b70ca2 5196 Md5 md5;
wolfSSL 0:1239e9b70ca2 5197
wolfSSL 0:1239e9b70ca2 5198 InitMd5(&md5);
wolfSSL 0:1239e9b70ca2 5199 Md5Update(&md5, buffer, sz);
wolfSSL 0:1239e9b70ca2 5200 Md5Final(&md5, digest);
wolfSSL 0:1239e9b70ca2 5201
wolfSSL 0:1239e9b70ca2 5202 digestSz = MD5_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 5203 typeH = MD5h;
wolfSSL 0:1239e9b70ca2 5204 }
wolfSSL 0:1239e9b70ca2 5205 else if (sigAlgoType == CTC_SHAwRSA || sigAlgoType == CTC_SHAwECDSA) {
wolfSSL 0:1239e9b70ca2 5206 Sha sha;
wolfSSL 0:1239e9b70ca2 5207
wolfSSL 0:1239e9b70ca2 5208 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 5209 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5210 return ret;
wolfSSL 0:1239e9b70ca2 5211
wolfSSL 0:1239e9b70ca2 5212 ShaUpdate(&sha, buffer, sz);
wolfSSL 0:1239e9b70ca2 5213 ShaFinal(&sha, digest);
wolfSSL 0:1239e9b70ca2 5214
wolfSSL 0:1239e9b70ca2 5215 digestSz = SHA_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 5216 typeH = SHAh;
wolfSSL 0:1239e9b70ca2 5217 }
wolfSSL 0:1239e9b70ca2 5218 else if (sigAlgoType == CTC_SHA256wRSA || sigAlgoType == CTC_SHA256wECDSA) {
wolfSSL 0:1239e9b70ca2 5219 Sha256 sha256;
wolfSSL 0:1239e9b70ca2 5220
wolfSSL 0:1239e9b70ca2 5221 ret = InitSha256(&sha256);
wolfSSL 0:1239e9b70ca2 5222 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5223 return ret;
wolfSSL 0:1239e9b70ca2 5224
wolfSSL 0:1239e9b70ca2 5225 ret = Sha256Update(&sha256, buffer, sz);
wolfSSL 0:1239e9b70ca2 5226 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5227 return ret;
wolfSSL 0:1239e9b70ca2 5228
wolfSSL 0:1239e9b70ca2 5229 ret = Sha256Final(&sha256, digest);
wolfSSL 0:1239e9b70ca2 5230 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5231 return ret;
wolfSSL 0:1239e9b70ca2 5232
wolfSSL 0:1239e9b70ca2 5233 digestSz = SHA256_DIGEST_SIZE;
wolfSSL 0:1239e9b70ca2 5234 typeH = SHA256h;
wolfSSL 0:1239e9b70ca2 5235 }
wolfSSL 0:1239e9b70ca2 5236 else
wolfSSL 0:1239e9b70ca2 5237 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 5238
wolfSSL 0:1239e9b70ca2 5239 if (rsaKey) {
wolfSSL 0:1239e9b70ca2 5240 /* signature */
wolfSSL 0:1239e9b70ca2 5241 encSigSz = EncodeSignature(encSig, digest, digestSz, typeH);
wolfSSL 0:1239e9b70ca2 5242 return RsaSSL_Sign(encSig, encSigSz, sig, sigSz, rsaKey, rng);
wolfSSL 0:1239e9b70ca2 5243 }
wolfSSL 0:1239e9b70ca2 5244 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 5245 else if (eccKey) {
wolfSSL 0:1239e9b70ca2 5246 word32 outSz = sigSz;
wolfSSL 0:1239e9b70ca2 5247 ret = ecc_sign_hash(digest, digestSz, sig, &outSz, rng, eccKey);
wolfSSL 0:1239e9b70ca2 5248
wolfSSL 0:1239e9b70ca2 5249 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5250 return ret;
wolfSSL 0:1239e9b70ca2 5251 return outSz;
wolfSSL 0:1239e9b70ca2 5252 }
wolfSSL 0:1239e9b70ca2 5253 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 5254
wolfSSL 0:1239e9b70ca2 5255 return ALGO_ID_E;
wolfSSL 0:1239e9b70ca2 5256 }
wolfSSL 0:1239e9b70ca2 5257
wolfSSL 0:1239e9b70ca2 5258
wolfSSL 0:1239e9b70ca2 5259 /* add signature to end of buffer, size of buffer assumed checked, return
wolfSSL 0:1239e9b70ca2 5260 new length */
wolfSSL 0:1239e9b70ca2 5261 static int AddSignature(byte* buffer, int bodySz, const byte* sig, int sigSz,
wolfSSL 0:1239e9b70ca2 5262 int sigAlgoType)
wolfSSL 0:1239e9b70ca2 5263 {
wolfSSL 0:1239e9b70ca2 5264 byte seq[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 5265 int idx = bodySz, seqSz;
wolfSSL 0:1239e9b70ca2 5266
wolfSSL 0:1239e9b70ca2 5267 /* algo */
wolfSSL 0:1239e9b70ca2 5268 idx += SetAlgoID(sigAlgoType, buffer + idx, sigType, 0);
wolfSSL 0:1239e9b70ca2 5269 /* bit string */
wolfSSL 0:1239e9b70ca2 5270 buffer[idx++] = ASN_BIT_STRING;
wolfSSL 0:1239e9b70ca2 5271 /* length */
wolfSSL 0:1239e9b70ca2 5272 idx += SetLength(sigSz + 1, buffer + idx);
wolfSSL 0:1239e9b70ca2 5273 buffer[idx++] = 0; /* trailing 0 */
wolfSSL 0:1239e9b70ca2 5274 /* signature */
wolfSSL 0:1239e9b70ca2 5275 XMEMCPY(buffer + idx, sig, sigSz);
wolfSSL 0:1239e9b70ca2 5276 idx += sigSz;
wolfSSL 0:1239e9b70ca2 5277
wolfSSL 0:1239e9b70ca2 5278 /* make room for overall header */
wolfSSL 0:1239e9b70ca2 5279 seqSz = SetSequence(idx, seq);
wolfSSL 0:1239e9b70ca2 5280 XMEMMOVE(buffer + seqSz, buffer, idx);
wolfSSL 0:1239e9b70ca2 5281 XMEMCPY(buffer, seq, seqSz);
wolfSSL 0:1239e9b70ca2 5282
wolfSSL 0:1239e9b70ca2 5283 return idx + seqSz;
wolfSSL 0:1239e9b70ca2 5284 }
wolfSSL 0:1239e9b70ca2 5285
wolfSSL 0:1239e9b70ca2 5286
wolfSSL 0:1239e9b70ca2 5287 /* Make an x509 Certificate v3 any key type from cert input, write to buffer */
wolfSSL 0:1239e9b70ca2 5288 static int MakeAnyCert(Cert* cert, byte* derBuffer, word32 derSz,
wolfSSL 0:1239e9b70ca2 5289 RsaKey* rsaKey, ecc_key* eccKey, RNG* rng,
wolfSSL 0:1239e9b70ca2 5290 const byte* ntruKey, word16 ntruSz)
wolfSSL 0:1239e9b70ca2 5291 {
wolfSSL 0:1239e9b70ca2 5292 DerCert der;
wolfSSL 0:1239e9b70ca2 5293 int ret;
wolfSSL 0:1239e9b70ca2 5294
wolfSSL 0:1239e9b70ca2 5295 if (eccKey)
wolfSSL 0:1239e9b70ca2 5296 cert->keyType = ECC_KEY;
wolfSSL 0:1239e9b70ca2 5297 else
wolfSSL 0:1239e9b70ca2 5298 cert->keyType = rsaKey ? RSA_KEY : NTRU_KEY;
wolfSSL 0:1239e9b70ca2 5299 ret = EncodeCert(cert, &der, rsaKey, eccKey, rng, ntruKey, ntruSz);
wolfSSL 0:1239e9b70ca2 5300 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5301 return ret;
wolfSSL 0:1239e9b70ca2 5302
wolfSSL 0:1239e9b70ca2 5303 if (der.total + MAX_SEQ_SZ * 2 > (int)derSz)
wolfSSL 0:1239e9b70ca2 5304 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 5305
wolfSSL 0:1239e9b70ca2 5306 return cert->bodySz = WriteCertBody(&der, derBuffer);
wolfSSL 0:1239e9b70ca2 5307 }
wolfSSL 0:1239e9b70ca2 5308
wolfSSL 0:1239e9b70ca2 5309
wolfSSL 0:1239e9b70ca2 5310 /* Make an x509 Certificate v3 RSA or ECC from cert input, write to buffer */
wolfSSL 0:1239e9b70ca2 5311 int MakeCert(Cert* cert, byte* derBuffer, word32 derSz, RsaKey* rsaKey,
wolfSSL 0:1239e9b70ca2 5312 ecc_key* eccKey, RNG* rng)
wolfSSL 0:1239e9b70ca2 5313 {
wolfSSL 0:1239e9b70ca2 5314 return MakeAnyCert(cert, derBuffer, derSz, rsaKey, eccKey, rng, NULL, 0);
wolfSSL 0:1239e9b70ca2 5315 }
wolfSSL 0:1239e9b70ca2 5316
wolfSSL 0:1239e9b70ca2 5317
wolfSSL 0:1239e9b70ca2 5318 #ifdef HAVE_NTRU
wolfSSL 0:1239e9b70ca2 5319
wolfSSL 0:1239e9b70ca2 5320 int MakeNtruCert(Cert* cert, byte* derBuffer, word32 derSz,
wolfSSL 0:1239e9b70ca2 5321 const byte* ntruKey, word16 keySz, RNG* rng)
wolfSSL 0:1239e9b70ca2 5322 {
wolfSSL 0:1239e9b70ca2 5323 return MakeAnyCert(cert, derBuffer, derSz, NULL, NULL, rng, ntruKey, keySz);
wolfSSL 0:1239e9b70ca2 5324 }
wolfSSL 0:1239e9b70ca2 5325
wolfSSL 0:1239e9b70ca2 5326 #endif /* HAVE_NTRU */
wolfSSL 0:1239e9b70ca2 5327
wolfSSL 0:1239e9b70ca2 5328
wolfSSL 0:1239e9b70ca2 5329 #ifdef CYASSL_CERT_REQ
wolfSSL 0:1239e9b70ca2 5330
wolfSSL 0:1239e9b70ca2 5331 static int SetReqAttrib(byte* output, char* pw, int extSz)
wolfSSL 0:1239e9b70ca2 5332 {
wolfSSL 0:1239e9b70ca2 5333 static const byte cpOid[] =
wolfSSL 0:1239e9b70ca2 5334 { ASN_OBJECT_ID, 0x09, 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d, 0x01,
wolfSSL 0:1239e9b70ca2 5335 0x09, 0x07 };
wolfSSL 0:1239e9b70ca2 5336 static const byte erOid[] =
wolfSSL 0:1239e9b70ca2 5337 { ASN_OBJECT_ID, 0x09, 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d, 0x01,
wolfSSL 0:1239e9b70ca2 5338 0x09, 0x0e };
wolfSSL 0:1239e9b70ca2 5339
wolfSSL 0:1239e9b70ca2 5340 int sz = 0; /* overall size */
wolfSSL 0:1239e9b70ca2 5341 int cpSz = 0; /* Challenge Password section size */
wolfSSL 0:1239e9b70ca2 5342 int cpSeqSz = 0;
wolfSSL 0:1239e9b70ca2 5343 int cpSetSz = 0;
wolfSSL 0:1239e9b70ca2 5344 int cpStrSz = 0;
wolfSSL 0:1239e9b70ca2 5345 int pwSz = 0;
wolfSSL 0:1239e9b70ca2 5346 int erSz = 0; /* Extension Request section size */
wolfSSL 0:1239e9b70ca2 5347 int erSeqSz = 0;
wolfSSL 0:1239e9b70ca2 5348 int erSetSz = 0;
wolfSSL 0:1239e9b70ca2 5349 byte cpSeq[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 5350 byte cpSet[MAX_SET_SZ];
wolfSSL 0:1239e9b70ca2 5351 byte cpStr[MAX_PRSTR_SZ];
wolfSSL 0:1239e9b70ca2 5352 byte erSeq[MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 5353 byte erSet[MAX_SET_SZ];
wolfSSL 0:1239e9b70ca2 5354
wolfSSL 0:1239e9b70ca2 5355 output[0] = 0xa0;
wolfSSL 0:1239e9b70ca2 5356 sz++;
wolfSSL 0:1239e9b70ca2 5357
wolfSSL 0:1239e9b70ca2 5358 if (pw && pw[0]) {
wolfSSL 0:1239e9b70ca2 5359 pwSz = (int)XSTRLEN(pw);
wolfSSL 0:1239e9b70ca2 5360 cpStrSz = SetUTF8String(pwSz, cpStr);
wolfSSL 0:1239e9b70ca2 5361 cpSetSz = SetSet(cpStrSz + pwSz, cpSet);
wolfSSL 0:1239e9b70ca2 5362 cpSeqSz = SetSequence(sizeof(cpOid) + cpSetSz + cpStrSz + pwSz, cpSeq);
wolfSSL 0:1239e9b70ca2 5363 cpSz = cpSeqSz + sizeof(cpOid) + cpSetSz + cpStrSz + pwSz;
wolfSSL 0:1239e9b70ca2 5364 }
wolfSSL 0:1239e9b70ca2 5365
wolfSSL 0:1239e9b70ca2 5366 if (extSz) {
wolfSSL 0:1239e9b70ca2 5367 erSetSz = SetSet(extSz, erSet);
wolfSSL 0:1239e9b70ca2 5368 erSeqSz = SetSequence(erSetSz + sizeof(erOid) + extSz, erSeq);
wolfSSL 0:1239e9b70ca2 5369 erSz = extSz + erSetSz + erSeqSz + sizeof(erOid);
wolfSSL 0:1239e9b70ca2 5370 }
wolfSSL 0:1239e9b70ca2 5371
wolfSSL 0:1239e9b70ca2 5372 /* Put the pieces together. */
wolfSSL 0:1239e9b70ca2 5373 sz += SetLength(cpSz + erSz, &output[sz]);
wolfSSL 0:1239e9b70ca2 5374
wolfSSL 0:1239e9b70ca2 5375 if (cpSz) {
wolfSSL 0:1239e9b70ca2 5376 XMEMCPY(&output[sz], cpSeq, cpSeqSz);
wolfSSL 0:1239e9b70ca2 5377 sz += cpSeqSz;
wolfSSL 0:1239e9b70ca2 5378 XMEMCPY(&output[sz], cpOid, sizeof(cpOid));
wolfSSL 0:1239e9b70ca2 5379 sz += sizeof(cpOid);
wolfSSL 0:1239e9b70ca2 5380 XMEMCPY(&output[sz], cpSet, cpSetSz);
wolfSSL 0:1239e9b70ca2 5381 sz += cpSetSz;
wolfSSL 0:1239e9b70ca2 5382 XMEMCPY(&output[sz], cpStr, cpStrSz);
wolfSSL 0:1239e9b70ca2 5383 sz += cpStrSz;
wolfSSL 0:1239e9b70ca2 5384 XMEMCPY(&output[sz], pw, pwSz);
wolfSSL 0:1239e9b70ca2 5385 sz += pwSz;
wolfSSL 0:1239e9b70ca2 5386 }
wolfSSL 0:1239e9b70ca2 5387
wolfSSL 0:1239e9b70ca2 5388 if (erSz) {
wolfSSL 0:1239e9b70ca2 5389 XMEMCPY(&output[sz], erSeq, erSeqSz);
wolfSSL 0:1239e9b70ca2 5390 sz += erSeqSz;
wolfSSL 0:1239e9b70ca2 5391 XMEMCPY(&output[sz], erOid, sizeof(erOid));
wolfSSL 0:1239e9b70ca2 5392 sz += sizeof(erOid);
wolfSSL 0:1239e9b70ca2 5393 XMEMCPY(&output[sz], erSet, erSetSz);
wolfSSL 0:1239e9b70ca2 5394 sz += erSetSz;
wolfSSL 0:1239e9b70ca2 5395 /* The actual extension data will be tacked onto the output later. */
wolfSSL 0:1239e9b70ca2 5396 }
wolfSSL 0:1239e9b70ca2 5397
wolfSSL 0:1239e9b70ca2 5398 return sz;
wolfSSL 0:1239e9b70ca2 5399 }
wolfSSL 0:1239e9b70ca2 5400
wolfSSL 0:1239e9b70ca2 5401
wolfSSL 0:1239e9b70ca2 5402 /* encode info from cert into DER encoded format */
wolfSSL 0:1239e9b70ca2 5403 static int EncodeCertReq(Cert* cert, DerCert* der,
wolfSSL 0:1239e9b70ca2 5404 RsaKey* rsaKey, ecc_key* eccKey)
wolfSSL 0:1239e9b70ca2 5405 {
wolfSSL 0:1239e9b70ca2 5406 (void)eccKey;
wolfSSL 0:1239e9b70ca2 5407
wolfSSL 0:1239e9b70ca2 5408 /* init */
wolfSSL 0:1239e9b70ca2 5409 XMEMSET(der, 0, sizeof(DerCert));
wolfSSL 0:1239e9b70ca2 5410
wolfSSL 0:1239e9b70ca2 5411 /* version */
wolfSSL 0:1239e9b70ca2 5412 der->versionSz = SetMyVersion(cert->version, der->version, FALSE);
wolfSSL 0:1239e9b70ca2 5413
wolfSSL 0:1239e9b70ca2 5414 /* subject name */
wolfSSL 0:1239e9b70ca2 5415 der->subjectSz = SetName(der->subject, &cert->subject);
wolfSSL 0:1239e9b70ca2 5416 if (der->subjectSz == 0)
wolfSSL 0:1239e9b70ca2 5417 return SUBJECT_E;
wolfSSL 0:1239e9b70ca2 5418
wolfSSL 0:1239e9b70ca2 5419 /* public key */
wolfSSL 0:1239e9b70ca2 5420 if (cert->keyType == RSA_KEY) {
wolfSSL 0:1239e9b70ca2 5421 if (rsaKey == NULL)
wolfSSL 0:1239e9b70ca2 5422 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5423 der->publicKeySz = SetRsaPublicKey(der->publicKey, rsaKey);
wolfSSL 0:1239e9b70ca2 5424 if (der->publicKeySz <= 0)
wolfSSL 0:1239e9b70ca2 5425 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5426 }
wolfSSL 0:1239e9b70ca2 5427
wolfSSL 0:1239e9b70ca2 5428 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 5429 if (cert->keyType == ECC_KEY) {
wolfSSL 0:1239e9b70ca2 5430 if (eccKey == NULL)
wolfSSL 0:1239e9b70ca2 5431 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5432 der->publicKeySz = SetEccPublicKey(der->publicKey, eccKey);
wolfSSL 0:1239e9b70ca2 5433 if (der->publicKeySz <= 0)
wolfSSL 0:1239e9b70ca2 5434 return PUBLIC_KEY_E;
wolfSSL 0:1239e9b70ca2 5435 }
wolfSSL 0:1239e9b70ca2 5436 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 5437
wolfSSL 0:1239e9b70ca2 5438 /* CA */
wolfSSL 0:1239e9b70ca2 5439 if (cert->isCA) {
wolfSSL 0:1239e9b70ca2 5440 der->caSz = SetCa(der->ca);
wolfSSL 0:1239e9b70ca2 5441 if (der->caSz == 0)
wolfSSL 0:1239e9b70ca2 5442 return CA_TRUE_E;
wolfSSL 0:1239e9b70ca2 5443 }
wolfSSL 0:1239e9b70ca2 5444 else
wolfSSL 0:1239e9b70ca2 5445 der->caSz = 0;
wolfSSL 0:1239e9b70ca2 5446
wolfSSL 0:1239e9b70ca2 5447 /* extensions, just CA now */
wolfSSL 0:1239e9b70ca2 5448 if (cert->isCA) {
wolfSSL 0:1239e9b70ca2 5449 der->extensionsSz = SetExtensions(der->extensions,
wolfSSL 0:1239e9b70ca2 5450 der->ca, der->caSz, FALSE);
wolfSSL 0:1239e9b70ca2 5451 if (der->extensionsSz == 0)
wolfSSL 0:1239e9b70ca2 5452 return EXTENSIONS_E;
wolfSSL 0:1239e9b70ca2 5453 }
wolfSSL 0:1239e9b70ca2 5454 else
wolfSSL 0:1239e9b70ca2 5455 der->extensionsSz = 0;
wolfSSL 0:1239e9b70ca2 5456
wolfSSL 0:1239e9b70ca2 5457 der->attribSz = SetReqAttrib(der->attrib,
wolfSSL 0:1239e9b70ca2 5458 cert->challengePw, der->extensionsSz);
wolfSSL 0:1239e9b70ca2 5459 if (der->attribSz == 0)
wolfSSL 0:1239e9b70ca2 5460 return REQ_ATTRIBUTE_E;
wolfSSL 0:1239e9b70ca2 5461
wolfSSL 0:1239e9b70ca2 5462 der->total = der->versionSz + der->subjectSz + der->publicKeySz +
wolfSSL 0:1239e9b70ca2 5463 der->extensionsSz + der->attribSz;
wolfSSL 0:1239e9b70ca2 5464
wolfSSL 0:1239e9b70ca2 5465 return 0;
wolfSSL 0:1239e9b70ca2 5466 }
wolfSSL 0:1239e9b70ca2 5467
wolfSSL 0:1239e9b70ca2 5468
wolfSSL 0:1239e9b70ca2 5469 /* write DER encoded cert req to buffer, size already checked */
wolfSSL 0:1239e9b70ca2 5470 static int WriteCertReqBody(DerCert* der, byte* buffer)
wolfSSL 0:1239e9b70ca2 5471 {
wolfSSL 0:1239e9b70ca2 5472 int idx;
wolfSSL 0:1239e9b70ca2 5473
wolfSSL 0:1239e9b70ca2 5474 /* signed part header */
wolfSSL 0:1239e9b70ca2 5475 idx = SetSequence(der->total, buffer);
wolfSSL 0:1239e9b70ca2 5476 /* version */
wolfSSL 0:1239e9b70ca2 5477 XMEMCPY(buffer + idx, der->version, der->versionSz);
wolfSSL 0:1239e9b70ca2 5478 idx += der->versionSz;
wolfSSL 0:1239e9b70ca2 5479 /* subject */
wolfSSL 0:1239e9b70ca2 5480 XMEMCPY(buffer + idx, der->subject, der->subjectSz);
wolfSSL 0:1239e9b70ca2 5481 idx += der->subjectSz;
wolfSSL 0:1239e9b70ca2 5482 /* public key */
wolfSSL 0:1239e9b70ca2 5483 XMEMCPY(buffer + idx, der->publicKey, der->publicKeySz);
wolfSSL 0:1239e9b70ca2 5484 idx += der->publicKeySz;
wolfSSL 0:1239e9b70ca2 5485 /* attributes */
wolfSSL 0:1239e9b70ca2 5486 XMEMCPY(buffer + idx, der->attrib, der->attribSz);
wolfSSL 0:1239e9b70ca2 5487 idx += der->attribSz;
wolfSSL 0:1239e9b70ca2 5488 /* extensions */
wolfSSL 0:1239e9b70ca2 5489 if (der->extensionsSz) {
wolfSSL 0:1239e9b70ca2 5490 XMEMCPY(buffer + idx, der->extensions, min(der->extensionsSz,
wolfSSL 0:1239e9b70ca2 5491 sizeof(der->extensions)));
wolfSSL 0:1239e9b70ca2 5492 idx += der->extensionsSz;
wolfSSL 0:1239e9b70ca2 5493 }
wolfSSL 0:1239e9b70ca2 5494
wolfSSL 0:1239e9b70ca2 5495 return idx;
wolfSSL 0:1239e9b70ca2 5496 }
wolfSSL 0:1239e9b70ca2 5497
wolfSSL 0:1239e9b70ca2 5498
wolfSSL 0:1239e9b70ca2 5499 int MakeCertReq(Cert* cert, byte* derBuffer, word32 derSz,
wolfSSL 0:1239e9b70ca2 5500 RsaKey* rsaKey, ecc_key* eccKey)
wolfSSL 0:1239e9b70ca2 5501 {
wolfSSL 0:1239e9b70ca2 5502 DerCert der;
wolfSSL 0:1239e9b70ca2 5503 int ret;
wolfSSL 0:1239e9b70ca2 5504
wolfSSL 0:1239e9b70ca2 5505 cert->keyType = (eccKey != NULL) ? ECC_KEY : RSA_KEY;
wolfSSL 0:1239e9b70ca2 5506 ret = EncodeCertReq(cert, &der, rsaKey, eccKey);
wolfSSL 0:1239e9b70ca2 5507 if (ret != 0)
wolfSSL 0:1239e9b70ca2 5508 return ret;
wolfSSL 0:1239e9b70ca2 5509
wolfSSL 0:1239e9b70ca2 5510 if (der.total + MAX_SEQ_SZ * 2 > (int)derSz)
wolfSSL 0:1239e9b70ca2 5511 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 5512
wolfSSL 0:1239e9b70ca2 5513 return cert->bodySz = WriteCertReqBody(&der, derBuffer);
wolfSSL 0:1239e9b70ca2 5514 }
wolfSSL 0:1239e9b70ca2 5515
wolfSSL 0:1239e9b70ca2 5516 #endif /* CYASSL_CERT_REQ */
wolfSSL 0:1239e9b70ca2 5517
wolfSSL 0:1239e9b70ca2 5518
wolfSSL 0:1239e9b70ca2 5519 int SignCert(int requestSz, int sType, byte* buffer, word32 buffSz,
wolfSSL 0:1239e9b70ca2 5520 RsaKey* rsaKey, ecc_key* eccKey, RNG* rng)
wolfSSL 0:1239e9b70ca2 5521 {
wolfSSL 0:1239e9b70ca2 5522 byte sig[MAX_ENCODED_SIG_SZ];
wolfSSL 0:1239e9b70ca2 5523 int sigSz;
wolfSSL 0:1239e9b70ca2 5524
wolfSSL 0:1239e9b70ca2 5525 if (requestSz < 0)
wolfSSL 0:1239e9b70ca2 5526 return requestSz;
wolfSSL 0:1239e9b70ca2 5527
wolfSSL 0:1239e9b70ca2 5528 sigSz = MakeSignature(buffer, requestSz, sig, sizeof(sig), rsaKey, eccKey,
wolfSSL 0:1239e9b70ca2 5529 rng, sType);
wolfSSL 0:1239e9b70ca2 5530 if (sigSz < 0)
wolfSSL 0:1239e9b70ca2 5531 return sigSz;
wolfSSL 0:1239e9b70ca2 5532
wolfSSL 0:1239e9b70ca2 5533 if (requestSz + MAX_SEQ_SZ * 2 + sigSz > (int)buffSz)
wolfSSL 0:1239e9b70ca2 5534 return BUFFER_E;
wolfSSL 0:1239e9b70ca2 5535
wolfSSL 0:1239e9b70ca2 5536 return AddSignature(buffer, requestSz, sig, sigSz, sType);
wolfSSL 0:1239e9b70ca2 5537 }
wolfSSL 0:1239e9b70ca2 5538
wolfSSL 0:1239e9b70ca2 5539
wolfSSL 0:1239e9b70ca2 5540 int MakeSelfCert(Cert* cert, byte* buffer, word32 buffSz, RsaKey* key, RNG* rng)
wolfSSL 0:1239e9b70ca2 5541 {
wolfSSL 0:1239e9b70ca2 5542 int ret = MakeCert(cert, buffer, buffSz, key, NULL, rng);
wolfSSL 0:1239e9b70ca2 5543
wolfSSL 0:1239e9b70ca2 5544 if (ret < 0)
wolfSSL 0:1239e9b70ca2 5545 return ret;
wolfSSL 0:1239e9b70ca2 5546
wolfSSL 0:1239e9b70ca2 5547 return SignCert(cert->bodySz, cert->sigType, buffer, buffSz, key, NULL,rng);
wolfSSL 0:1239e9b70ca2 5548 }
wolfSSL 0:1239e9b70ca2 5549
wolfSSL 0:1239e9b70ca2 5550
wolfSSL 0:1239e9b70ca2 5551 #ifdef CYASSL_ALT_NAMES
wolfSSL 0:1239e9b70ca2 5552
wolfSSL 0:1239e9b70ca2 5553 /* Set Alt Names from der cert, return 0 on success */
wolfSSL 0:1239e9b70ca2 5554 static int SetAltNamesFromCert(Cert* cert, const byte* der, int derSz)
wolfSSL 0:1239e9b70ca2 5555 {
wolfSSL 0:1239e9b70ca2 5556 DecodedCert decoded;
wolfSSL 0:1239e9b70ca2 5557 int ret;
wolfSSL 0:1239e9b70ca2 5558
wolfSSL 0:1239e9b70ca2 5559 if (derSz < 0)
wolfSSL 0:1239e9b70ca2 5560 return derSz;
wolfSSL 0:1239e9b70ca2 5561
wolfSSL 0:1239e9b70ca2 5562 InitDecodedCert(&decoded, (byte*)der, derSz, 0);
wolfSSL 0:1239e9b70ca2 5563 ret = ParseCertRelative(&decoded, CA_TYPE, NO_VERIFY, 0);
wolfSSL 0:1239e9b70ca2 5564
wolfSSL 0:1239e9b70ca2 5565 if (ret < 0) {
wolfSSL 0:1239e9b70ca2 5566 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5567 return ret;
wolfSSL 0:1239e9b70ca2 5568 }
wolfSSL 0:1239e9b70ca2 5569
wolfSSL 0:1239e9b70ca2 5570 if (decoded.extensions) {
wolfSSL 0:1239e9b70ca2 5571 byte b;
wolfSSL 0:1239e9b70ca2 5572 int length;
wolfSSL 0:1239e9b70ca2 5573 word32 maxExtensionsIdx;
wolfSSL 0:1239e9b70ca2 5574
wolfSSL 0:1239e9b70ca2 5575 decoded.srcIdx = decoded.extensionsIdx;
wolfSSL 0:1239e9b70ca2 5576 b = decoded.source[decoded.srcIdx++];
wolfSSL 0:1239e9b70ca2 5577 if (b != ASN_EXTENSIONS) {
wolfSSL 0:1239e9b70ca2 5578 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5579 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5580 }
wolfSSL 0:1239e9b70ca2 5581
wolfSSL 0:1239e9b70ca2 5582 if (GetLength(decoded.source, &decoded.srcIdx, &length,
wolfSSL 0:1239e9b70ca2 5583 decoded.maxIdx) < 0) {
wolfSSL 0:1239e9b70ca2 5584 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5585 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5586 }
wolfSSL 0:1239e9b70ca2 5587
wolfSSL 0:1239e9b70ca2 5588 if (GetSequence(decoded.source, &decoded.srcIdx, &length,
wolfSSL 0:1239e9b70ca2 5589 decoded.maxIdx) < 0) {
wolfSSL 0:1239e9b70ca2 5590 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5591 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5592 }
wolfSSL 0:1239e9b70ca2 5593
wolfSSL 0:1239e9b70ca2 5594 maxExtensionsIdx = decoded.srcIdx + length;
wolfSSL 0:1239e9b70ca2 5595
wolfSSL 0:1239e9b70ca2 5596 while (decoded.srcIdx < maxExtensionsIdx) {
wolfSSL 0:1239e9b70ca2 5597 word32 oid;
wolfSSL 0:1239e9b70ca2 5598 word32 startIdx = decoded.srcIdx;
wolfSSL 0:1239e9b70ca2 5599 word32 tmpIdx;
wolfSSL 0:1239e9b70ca2 5600
wolfSSL 0:1239e9b70ca2 5601 if (GetSequence(decoded.source, &decoded.srcIdx, &length,
wolfSSL 0:1239e9b70ca2 5602 decoded.maxIdx) < 0) {
wolfSSL 0:1239e9b70ca2 5603 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5604 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5605 }
wolfSSL 0:1239e9b70ca2 5606
wolfSSL 0:1239e9b70ca2 5607 tmpIdx = decoded.srcIdx;
wolfSSL 0:1239e9b70ca2 5608 decoded.srcIdx = startIdx;
wolfSSL 0:1239e9b70ca2 5609
wolfSSL 0:1239e9b70ca2 5610 if (GetAlgoId(decoded.source, &decoded.srcIdx, &oid,
wolfSSL 0:1239e9b70ca2 5611 decoded.maxIdx) < 0) {
wolfSSL 0:1239e9b70ca2 5612 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5613 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5614 }
wolfSSL 0:1239e9b70ca2 5615
wolfSSL 0:1239e9b70ca2 5616 if (oid == ALT_NAMES_OID) {
wolfSSL 0:1239e9b70ca2 5617 cert->altNamesSz = length + (tmpIdx - startIdx);
wolfSSL 0:1239e9b70ca2 5618
wolfSSL 0:1239e9b70ca2 5619 if (cert->altNamesSz < (int)sizeof(cert->altNames))
wolfSSL 0:1239e9b70ca2 5620 XMEMCPY(cert->altNames, &decoded.source[startIdx],
wolfSSL 0:1239e9b70ca2 5621 cert->altNamesSz);
wolfSSL 0:1239e9b70ca2 5622 else {
wolfSSL 0:1239e9b70ca2 5623 cert->altNamesSz = 0;
wolfSSL 0:1239e9b70ca2 5624 CYASSL_MSG("AltNames extensions too big");
wolfSSL 0:1239e9b70ca2 5625 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5626 return ALT_NAME_E;
wolfSSL 0:1239e9b70ca2 5627 }
wolfSSL 0:1239e9b70ca2 5628 }
wolfSSL 0:1239e9b70ca2 5629 decoded.srcIdx = tmpIdx + length;
wolfSSL 0:1239e9b70ca2 5630 }
wolfSSL 0:1239e9b70ca2 5631 }
wolfSSL 0:1239e9b70ca2 5632 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5633
wolfSSL 0:1239e9b70ca2 5634 return 0;
wolfSSL 0:1239e9b70ca2 5635 }
wolfSSL 0:1239e9b70ca2 5636
wolfSSL 0:1239e9b70ca2 5637
wolfSSL 0:1239e9b70ca2 5638 /* Set Dates from der cert, return 0 on success */
wolfSSL 0:1239e9b70ca2 5639 static int SetDatesFromCert(Cert* cert, const byte* der, int derSz)
wolfSSL 0:1239e9b70ca2 5640 {
wolfSSL 0:1239e9b70ca2 5641 DecodedCert decoded;
wolfSSL 0:1239e9b70ca2 5642 int ret;
wolfSSL 0:1239e9b70ca2 5643
wolfSSL 0:1239e9b70ca2 5644 CYASSL_ENTER("SetDatesFromCert");
wolfSSL 0:1239e9b70ca2 5645 if (derSz < 0)
wolfSSL 0:1239e9b70ca2 5646 return derSz;
wolfSSL 0:1239e9b70ca2 5647
wolfSSL 0:1239e9b70ca2 5648 InitDecodedCert(&decoded, (byte*)der, derSz, 0);
wolfSSL 0:1239e9b70ca2 5649 ret = ParseCertRelative(&decoded, CA_TYPE, NO_VERIFY, 0);
wolfSSL 0:1239e9b70ca2 5650
wolfSSL 0:1239e9b70ca2 5651 if (ret < 0) {
wolfSSL 0:1239e9b70ca2 5652 CYASSL_MSG("ParseCertRelative error");
wolfSSL 0:1239e9b70ca2 5653 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5654 return ret;
wolfSSL 0:1239e9b70ca2 5655 }
wolfSSL 0:1239e9b70ca2 5656
wolfSSL 0:1239e9b70ca2 5657 if (decoded.beforeDate == NULL || decoded.afterDate == NULL) {
wolfSSL 0:1239e9b70ca2 5658 CYASSL_MSG("Couldn't extract dates");
wolfSSL 0:1239e9b70ca2 5659 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5660 return -1;
wolfSSL 0:1239e9b70ca2 5661 }
wolfSSL 0:1239e9b70ca2 5662
wolfSSL 0:1239e9b70ca2 5663 if (decoded.beforeDateLen > MAX_DATE_SIZE || decoded.afterDateLen >
wolfSSL 0:1239e9b70ca2 5664 MAX_DATE_SIZE) {
wolfSSL 0:1239e9b70ca2 5665 CYASSL_MSG("Bad date size");
wolfSSL 0:1239e9b70ca2 5666 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5667 return -1;
wolfSSL 0:1239e9b70ca2 5668 }
wolfSSL 0:1239e9b70ca2 5669
wolfSSL 0:1239e9b70ca2 5670 XMEMCPY(cert->beforeDate, decoded.beforeDate, decoded.beforeDateLen);
wolfSSL 0:1239e9b70ca2 5671 XMEMCPY(cert->afterDate, decoded.afterDate, decoded.afterDateLen);
wolfSSL 0:1239e9b70ca2 5672
wolfSSL 0:1239e9b70ca2 5673 cert->beforeDateSz = decoded.beforeDateLen;
wolfSSL 0:1239e9b70ca2 5674 cert->afterDateSz = decoded.afterDateLen;
wolfSSL 0:1239e9b70ca2 5675
wolfSSL 0:1239e9b70ca2 5676 return 0;
wolfSSL 0:1239e9b70ca2 5677 }
wolfSSL 0:1239e9b70ca2 5678
wolfSSL 0:1239e9b70ca2 5679
wolfSSL 0:1239e9b70ca2 5680 #endif /* CYASSL_ALT_NAMES && !NO_RSA */
wolfSSL 0:1239e9b70ca2 5681
wolfSSL 0:1239e9b70ca2 5682
wolfSSL 0:1239e9b70ca2 5683 /* Set cn name from der buffer, return 0 on success */
wolfSSL 0:1239e9b70ca2 5684 static int SetNameFromCert(CertName* cn, const byte* der, int derSz)
wolfSSL 0:1239e9b70ca2 5685 {
wolfSSL 0:1239e9b70ca2 5686 DecodedCert decoded;
wolfSSL 0:1239e9b70ca2 5687 int ret;
wolfSSL 0:1239e9b70ca2 5688 int sz;
wolfSSL 0:1239e9b70ca2 5689
wolfSSL 0:1239e9b70ca2 5690 if (derSz < 0)
wolfSSL 0:1239e9b70ca2 5691 return derSz;
wolfSSL 0:1239e9b70ca2 5692
wolfSSL 0:1239e9b70ca2 5693 InitDecodedCert(&decoded, (byte*)der, derSz, 0);
wolfSSL 0:1239e9b70ca2 5694 ret = ParseCertRelative(&decoded, CA_TYPE, NO_VERIFY, 0);
wolfSSL 0:1239e9b70ca2 5695
wolfSSL 0:1239e9b70ca2 5696 if (ret < 0)
wolfSSL 0:1239e9b70ca2 5697 return ret;
wolfSSL 0:1239e9b70ca2 5698
wolfSSL 0:1239e9b70ca2 5699 if (decoded.subjectCN) {
wolfSSL 0:1239e9b70ca2 5700 sz = (decoded.subjectCNLen < CTC_NAME_SIZE) ? decoded.subjectCNLen :
wolfSSL 0:1239e9b70ca2 5701 CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5702 strncpy(cn->commonName, decoded.subjectCN, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5703 cn->commonName[sz] = 0;
wolfSSL 0:1239e9b70ca2 5704 }
wolfSSL 0:1239e9b70ca2 5705 if (decoded.subjectC) {
wolfSSL 0:1239e9b70ca2 5706 sz = (decoded.subjectCLen < CTC_NAME_SIZE) ? decoded.subjectCLen :
wolfSSL 0:1239e9b70ca2 5707 CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5708 strncpy(cn->country, decoded.subjectC, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5709 cn->country[sz] = 0;
wolfSSL 0:1239e9b70ca2 5710 }
wolfSSL 0:1239e9b70ca2 5711 if (decoded.subjectST) {
wolfSSL 0:1239e9b70ca2 5712 sz = (decoded.subjectSTLen < CTC_NAME_SIZE) ? decoded.subjectSTLen :
wolfSSL 0:1239e9b70ca2 5713 CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5714 strncpy(cn->state, decoded.subjectST, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5715 cn->state[sz] = 0;
wolfSSL 0:1239e9b70ca2 5716 }
wolfSSL 0:1239e9b70ca2 5717 if (decoded.subjectL) {
wolfSSL 0:1239e9b70ca2 5718 sz = (decoded.subjectLLen < CTC_NAME_SIZE) ? decoded.subjectLLen :
wolfSSL 0:1239e9b70ca2 5719 CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5720 strncpy(cn->locality, decoded.subjectL, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5721 cn->locality[sz] = 0;
wolfSSL 0:1239e9b70ca2 5722 }
wolfSSL 0:1239e9b70ca2 5723 if (decoded.subjectO) {
wolfSSL 0:1239e9b70ca2 5724 sz = (decoded.subjectOLen < CTC_NAME_SIZE) ? decoded.subjectOLen :
wolfSSL 0:1239e9b70ca2 5725 CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5726 strncpy(cn->org, decoded.subjectO, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5727 cn->org[sz] = 0;
wolfSSL 0:1239e9b70ca2 5728 }
wolfSSL 0:1239e9b70ca2 5729 if (decoded.subjectOU) {
wolfSSL 0:1239e9b70ca2 5730 sz = (decoded.subjectOULen < CTC_NAME_SIZE) ? decoded.subjectOULen :
wolfSSL 0:1239e9b70ca2 5731 CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5732 strncpy(cn->unit, decoded.subjectOU, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5733 cn->unit[sz] = 0;
wolfSSL 0:1239e9b70ca2 5734 }
wolfSSL 0:1239e9b70ca2 5735 if (decoded.subjectSN) {
wolfSSL 0:1239e9b70ca2 5736 sz = (decoded.subjectSNLen < CTC_NAME_SIZE) ? decoded.subjectSNLen :
wolfSSL 0:1239e9b70ca2 5737 CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5738 strncpy(cn->sur, decoded.subjectSN, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5739 cn->sur[sz] = 0;
wolfSSL 0:1239e9b70ca2 5740 }
wolfSSL 0:1239e9b70ca2 5741 if (decoded.subjectEmail) {
wolfSSL 0:1239e9b70ca2 5742 sz = (decoded.subjectEmailLen < CTC_NAME_SIZE) ?
wolfSSL 0:1239e9b70ca2 5743 decoded.subjectEmailLen : CTC_NAME_SIZE - 1;
wolfSSL 0:1239e9b70ca2 5744 strncpy(cn->email, decoded.subjectEmail, CTC_NAME_SIZE);
wolfSSL 0:1239e9b70ca2 5745 cn->email[sz] = 0;
wolfSSL 0:1239e9b70ca2 5746 }
wolfSSL 0:1239e9b70ca2 5747
wolfSSL 0:1239e9b70ca2 5748 FreeDecodedCert(&decoded);
wolfSSL 0:1239e9b70ca2 5749
wolfSSL 0:1239e9b70ca2 5750 return 0;
wolfSSL 0:1239e9b70ca2 5751 }
wolfSSL 0:1239e9b70ca2 5752
wolfSSL 0:1239e9b70ca2 5753
wolfSSL 0:1239e9b70ca2 5754 #ifndef NO_FILESYSTEM
wolfSSL 0:1239e9b70ca2 5755
wolfSSL 0:1239e9b70ca2 5756 /* forward from CyaSSL */
wolfSSL 0:1239e9b70ca2 5757 int CyaSSL_PemCertToDer(const char* fileName, unsigned char* derBuf, int derSz);
wolfSSL 0:1239e9b70ca2 5758
wolfSSL 0:1239e9b70ca2 5759 /* Set cert issuer from issuerFile in PEM */
wolfSSL 0:1239e9b70ca2 5760 int SetIssuer(Cert* cert, const char* issuerFile)
wolfSSL 0:1239e9b70ca2 5761 {
wolfSSL 0:1239e9b70ca2 5762 int ret;
wolfSSL 0:1239e9b70ca2 5763 int derSz;
wolfSSL 0:1239e9b70ca2 5764 byte* der = (byte*)XMALLOC(EIGHTK_BUF, NULL, DYNAMIC_TYPE_CERT);
wolfSSL 0:1239e9b70ca2 5765
wolfSSL 0:1239e9b70ca2 5766 if (der == NULL) {
wolfSSL 0:1239e9b70ca2 5767 CYASSL_MSG("SetIssuer OOF Problem");
wolfSSL 0:1239e9b70ca2 5768 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 5769 }
wolfSSL 0:1239e9b70ca2 5770 derSz = CyaSSL_PemCertToDer(issuerFile, der, EIGHTK_BUF);
wolfSSL 0:1239e9b70ca2 5771 cert->selfSigned = 0;
wolfSSL 0:1239e9b70ca2 5772 ret = SetNameFromCert(&cert->issuer, der, derSz);
wolfSSL 0:1239e9b70ca2 5773 XFREE(der, NULL, DYNAMIC_TYPE_CERT);
wolfSSL 0:1239e9b70ca2 5774
wolfSSL 0:1239e9b70ca2 5775 return ret;
wolfSSL 0:1239e9b70ca2 5776 }
wolfSSL 0:1239e9b70ca2 5777
wolfSSL 0:1239e9b70ca2 5778
wolfSSL 0:1239e9b70ca2 5779 /* Set cert subject from subjectFile in PEM */
wolfSSL 0:1239e9b70ca2 5780 int SetSubject(Cert* cert, const char* subjectFile)
wolfSSL 0:1239e9b70ca2 5781 {
wolfSSL 0:1239e9b70ca2 5782 int ret;
wolfSSL 0:1239e9b70ca2 5783 int derSz;
wolfSSL 0:1239e9b70ca2 5784 byte* der = (byte*)XMALLOC(EIGHTK_BUF, NULL, DYNAMIC_TYPE_CERT);
wolfSSL 0:1239e9b70ca2 5785
wolfSSL 0:1239e9b70ca2 5786 if (der == NULL) {
wolfSSL 0:1239e9b70ca2 5787 CYASSL_MSG("SetSubject OOF Problem");
wolfSSL 0:1239e9b70ca2 5788 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 5789 }
wolfSSL 0:1239e9b70ca2 5790 derSz = CyaSSL_PemCertToDer(subjectFile, der, EIGHTK_BUF);
wolfSSL 0:1239e9b70ca2 5791 ret = SetNameFromCert(&cert->subject, der, derSz);
wolfSSL 0:1239e9b70ca2 5792 XFREE(der, NULL, DYNAMIC_TYPE_CERT);
wolfSSL 0:1239e9b70ca2 5793
wolfSSL 0:1239e9b70ca2 5794 return ret;
wolfSSL 0:1239e9b70ca2 5795 }
wolfSSL 0:1239e9b70ca2 5796
wolfSSL 0:1239e9b70ca2 5797
wolfSSL 0:1239e9b70ca2 5798 #ifdef CYASSL_ALT_NAMES
wolfSSL 0:1239e9b70ca2 5799
wolfSSL 0:1239e9b70ca2 5800 /* Set atl names from file in PEM */
wolfSSL 0:1239e9b70ca2 5801 int SetAltNames(Cert* cert, const char* file)
wolfSSL 0:1239e9b70ca2 5802 {
wolfSSL 0:1239e9b70ca2 5803 int ret;
wolfSSL 0:1239e9b70ca2 5804 int derSz;
wolfSSL 0:1239e9b70ca2 5805 byte* der = (byte*)XMALLOC(EIGHTK_BUF, NULL, DYNAMIC_TYPE_CERT);
wolfSSL 0:1239e9b70ca2 5806
wolfSSL 0:1239e9b70ca2 5807 if (der == NULL) {
wolfSSL 0:1239e9b70ca2 5808 CYASSL_MSG("SetAltNames OOF Problem");
wolfSSL 0:1239e9b70ca2 5809 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 5810 }
wolfSSL 0:1239e9b70ca2 5811 derSz = CyaSSL_PemCertToDer(file, der, EIGHTK_BUF);
wolfSSL 0:1239e9b70ca2 5812 ret = SetAltNamesFromCert(cert, der, derSz);
wolfSSL 0:1239e9b70ca2 5813 XFREE(der, NULL, DYNAMIC_TYPE_CERT);
wolfSSL 0:1239e9b70ca2 5814
wolfSSL 0:1239e9b70ca2 5815 return ret;
wolfSSL 0:1239e9b70ca2 5816 }
wolfSSL 0:1239e9b70ca2 5817
wolfSSL 0:1239e9b70ca2 5818 #endif /* CYASSL_ALT_NAMES */
wolfSSL 0:1239e9b70ca2 5819
wolfSSL 0:1239e9b70ca2 5820 #endif /* NO_FILESYSTEM */
wolfSSL 0:1239e9b70ca2 5821
wolfSSL 0:1239e9b70ca2 5822 /* Set cert issuer from DER buffer */
wolfSSL 0:1239e9b70ca2 5823 int SetIssuerBuffer(Cert* cert, const byte* der, int derSz)
wolfSSL 0:1239e9b70ca2 5824 {
wolfSSL 0:1239e9b70ca2 5825 cert->selfSigned = 0;
wolfSSL 0:1239e9b70ca2 5826 return SetNameFromCert(&cert->issuer, der, derSz);
wolfSSL 0:1239e9b70ca2 5827 }
wolfSSL 0:1239e9b70ca2 5828
wolfSSL 0:1239e9b70ca2 5829
wolfSSL 0:1239e9b70ca2 5830 /* Set cert subject from DER buffer */
wolfSSL 0:1239e9b70ca2 5831 int SetSubjectBuffer(Cert* cert, const byte* der, int derSz)
wolfSSL 0:1239e9b70ca2 5832 {
wolfSSL 0:1239e9b70ca2 5833 return SetNameFromCert(&cert->subject, der, derSz);
wolfSSL 0:1239e9b70ca2 5834 }
wolfSSL 0:1239e9b70ca2 5835
wolfSSL 0:1239e9b70ca2 5836
wolfSSL 0:1239e9b70ca2 5837 #ifdef CYASSL_ALT_NAMES
wolfSSL 0:1239e9b70ca2 5838
wolfSSL 0:1239e9b70ca2 5839 /* Set cert alt names from DER buffer */
wolfSSL 0:1239e9b70ca2 5840 int SetAltNamesBuffer(Cert* cert, const byte* der, int derSz)
wolfSSL 0:1239e9b70ca2 5841 {
wolfSSL 0:1239e9b70ca2 5842 return SetAltNamesFromCert(cert, der, derSz);
wolfSSL 0:1239e9b70ca2 5843 }
wolfSSL 0:1239e9b70ca2 5844
wolfSSL 0:1239e9b70ca2 5845 /* Set cert dates from DER buffer */
wolfSSL 0:1239e9b70ca2 5846 int SetDatesBuffer(Cert* cert, const byte* der, int derSz)
wolfSSL 0:1239e9b70ca2 5847 {
wolfSSL 0:1239e9b70ca2 5848 return SetDatesFromCert(cert, der, derSz);
wolfSSL 0:1239e9b70ca2 5849 }
wolfSSL 0:1239e9b70ca2 5850
wolfSSL 0:1239e9b70ca2 5851 #endif /* CYASSL_ALT_NAMES */
wolfSSL 0:1239e9b70ca2 5852
wolfSSL 0:1239e9b70ca2 5853 #endif /* CYASSL_CERT_GEN */
wolfSSL 0:1239e9b70ca2 5854
wolfSSL 0:1239e9b70ca2 5855
wolfSSL 0:1239e9b70ca2 5856 #ifdef HAVE_ECC
wolfSSL 0:1239e9b70ca2 5857
wolfSSL 0:1239e9b70ca2 5858 /* Der Encode r & s ints into out, outLen is (in/out) size */
wolfSSL 0:1239e9b70ca2 5859 int StoreECC_DSA_Sig(byte* out, word32* outLen, mp_int* r, mp_int* s)
wolfSSL 0:1239e9b70ca2 5860 {
wolfSSL 0:1239e9b70ca2 5861 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 5862 word32 rSz; /* encoding size */
wolfSSL 0:1239e9b70ca2 5863 word32 sSz;
wolfSSL 0:1239e9b70ca2 5864 word32 headerSz = 4; /* 2*ASN_TAG + 2*LEN(ENUM) */
wolfSSL 0:1239e9b70ca2 5865
wolfSSL 0:1239e9b70ca2 5866 /* If the leading bit on the INTEGER is a 1, add a leading zero */
wolfSSL 0:1239e9b70ca2 5867 int rLeadingZero = mp_leading_bit(r);
wolfSSL 0:1239e9b70ca2 5868 int sLeadingZero = mp_leading_bit(s);
wolfSSL 0:1239e9b70ca2 5869 int rLen = mp_unsigned_bin_size(r); /* big int size */
wolfSSL 0:1239e9b70ca2 5870 int sLen = mp_unsigned_bin_size(s);
wolfSSL 0:1239e9b70ca2 5871 int err;
wolfSSL 0:1239e9b70ca2 5872
wolfSSL 0:1239e9b70ca2 5873 if (*outLen < (rLen + rLeadingZero + sLen + sLeadingZero +
wolfSSL 0:1239e9b70ca2 5874 headerSz + 2)) /* SEQ_TAG + LEN(ENUM) */
wolfSSL 0:1239e9b70ca2 5875 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 5876
wolfSSL 0:1239e9b70ca2 5877 idx = SetSequence(rLen+rLeadingZero+sLen+sLeadingZero+headerSz, out);
wolfSSL 0:1239e9b70ca2 5878
wolfSSL 0:1239e9b70ca2 5879 /* store r */
wolfSSL 0:1239e9b70ca2 5880 out[idx++] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 5881 rSz = SetLength(rLen + rLeadingZero, &out[idx]);
wolfSSL 0:1239e9b70ca2 5882 idx += rSz;
wolfSSL 0:1239e9b70ca2 5883 if (rLeadingZero)
wolfSSL 0:1239e9b70ca2 5884 out[idx++] = 0;
wolfSSL 0:1239e9b70ca2 5885 err = mp_to_unsigned_bin(r, &out[idx]);
wolfSSL 0:1239e9b70ca2 5886 if (err != MP_OKAY) return err;
wolfSSL 0:1239e9b70ca2 5887 idx += rLen;
wolfSSL 0:1239e9b70ca2 5888
wolfSSL 0:1239e9b70ca2 5889 /* store s */
wolfSSL 0:1239e9b70ca2 5890 out[idx++] = ASN_INTEGER;
wolfSSL 0:1239e9b70ca2 5891 sSz = SetLength(sLen + sLeadingZero, &out[idx]);
wolfSSL 0:1239e9b70ca2 5892 idx += sSz;
wolfSSL 0:1239e9b70ca2 5893 if (sLeadingZero)
wolfSSL 0:1239e9b70ca2 5894 out[idx++] = 0;
wolfSSL 0:1239e9b70ca2 5895 err = mp_to_unsigned_bin(s, &out[idx]);
wolfSSL 0:1239e9b70ca2 5896 if (err != MP_OKAY) return err;
wolfSSL 0:1239e9b70ca2 5897 idx += sLen;
wolfSSL 0:1239e9b70ca2 5898
wolfSSL 0:1239e9b70ca2 5899 *outLen = idx;
wolfSSL 0:1239e9b70ca2 5900
wolfSSL 0:1239e9b70ca2 5901 return 0;
wolfSSL 0:1239e9b70ca2 5902 }
wolfSSL 0:1239e9b70ca2 5903
wolfSSL 0:1239e9b70ca2 5904
wolfSSL 0:1239e9b70ca2 5905 /* Der Decode ECC-DSA Signautre, r & s stored as big ints */
wolfSSL 0:1239e9b70ca2 5906 int DecodeECC_DSA_Sig(const byte* sig, word32 sigLen, mp_int* r, mp_int* s)
wolfSSL 0:1239e9b70ca2 5907 {
wolfSSL 0:1239e9b70ca2 5908 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 5909 int len = 0;
wolfSSL 0:1239e9b70ca2 5910
wolfSSL 0:1239e9b70ca2 5911 if (GetSequence(sig, &idx, &len, sigLen) < 0)
wolfSSL 0:1239e9b70ca2 5912 return ASN_ECC_KEY_E;
wolfSSL 0:1239e9b70ca2 5913
wolfSSL 0:1239e9b70ca2 5914 if ((word32)len > (sigLen - idx))
wolfSSL 0:1239e9b70ca2 5915 return ASN_ECC_KEY_E;
wolfSSL 0:1239e9b70ca2 5916
wolfSSL 0:1239e9b70ca2 5917 if (GetInt(r, sig, &idx, sigLen) < 0)
wolfSSL 0:1239e9b70ca2 5918 return ASN_ECC_KEY_E;
wolfSSL 0:1239e9b70ca2 5919
wolfSSL 0:1239e9b70ca2 5920 if (GetInt(s, sig, &idx, sigLen) < 0)
wolfSSL 0:1239e9b70ca2 5921 return ASN_ECC_KEY_E;
wolfSSL 0:1239e9b70ca2 5922
wolfSSL 0:1239e9b70ca2 5923 return 0;
wolfSSL 0:1239e9b70ca2 5924 }
wolfSSL 0:1239e9b70ca2 5925
wolfSSL 0:1239e9b70ca2 5926
wolfSSL 0:1239e9b70ca2 5927 int EccPrivateKeyDecode(const byte* input, word32* inOutIdx, ecc_key* key,
wolfSSL 0:1239e9b70ca2 5928 word32 inSz)
wolfSSL 0:1239e9b70ca2 5929 {
wolfSSL 0:1239e9b70ca2 5930 word32 oid = 0;
wolfSSL 0:1239e9b70ca2 5931 int version, length;
wolfSSL 0:1239e9b70ca2 5932 int privSz, pubSz;
wolfSSL 0:1239e9b70ca2 5933 byte b;
wolfSSL 0:1239e9b70ca2 5934 byte priv[ECC_MAXSIZE];
wolfSSL 0:1239e9b70ca2 5935 byte pub[ECC_MAXSIZE * 2 + 1]; /* public key has two parts plus header */
wolfSSL 0:1239e9b70ca2 5936
wolfSSL 0:1239e9b70ca2 5937 if (input == NULL || inOutIdx == NULL || key == NULL || inSz == 0)
wolfSSL 0:1239e9b70ca2 5938 return BAD_FUNC_ARG;
wolfSSL 0:1239e9b70ca2 5939
wolfSSL 0:1239e9b70ca2 5940 if (GetSequence(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 5941 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5942
wolfSSL 0:1239e9b70ca2 5943 if (GetMyVersion(input, inOutIdx, &version) < 0)
wolfSSL 0:1239e9b70ca2 5944 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5945
wolfSSL 0:1239e9b70ca2 5946 b = input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 5947 *inOutIdx += 1;
wolfSSL 0:1239e9b70ca2 5948
wolfSSL 0:1239e9b70ca2 5949 /* priv type */
wolfSSL 0:1239e9b70ca2 5950 if (b != 4 && b != 6 && b != 7)
wolfSSL 0:1239e9b70ca2 5951 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5952
wolfSSL 0:1239e9b70ca2 5953 if (GetLength(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 5954 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5955
wolfSSL 0:1239e9b70ca2 5956 /* priv key */
wolfSSL 0:1239e9b70ca2 5957 privSz = length;
wolfSSL 0:1239e9b70ca2 5958 XMEMCPY(priv, &input[*inOutIdx], privSz);
wolfSSL 0:1239e9b70ca2 5959 *inOutIdx += length;
wolfSSL 0:1239e9b70ca2 5960
wolfSSL 0:1239e9b70ca2 5961 /* prefix 0, may have */
wolfSSL 0:1239e9b70ca2 5962 b = input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 5963 if (b == ECC_PREFIX_0) {
wolfSSL 0:1239e9b70ca2 5964 *inOutIdx += 1;
wolfSSL 0:1239e9b70ca2 5965
wolfSSL 0:1239e9b70ca2 5966 if (GetLength(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 5967 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5968
wolfSSL 0:1239e9b70ca2 5969 /* object id */
wolfSSL 0:1239e9b70ca2 5970 b = input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 5971 *inOutIdx += 1;
wolfSSL 0:1239e9b70ca2 5972
wolfSSL 0:1239e9b70ca2 5973 if (b != ASN_OBJECT_ID)
wolfSSL 0:1239e9b70ca2 5974 return ASN_OBJECT_ID_E;
wolfSSL 0:1239e9b70ca2 5975
wolfSSL 0:1239e9b70ca2 5976 if (GetLength(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 5977 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5978
wolfSSL 0:1239e9b70ca2 5979 while(length--) {
wolfSSL 0:1239e9b70ca2 5980 oid += input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 5981 *inOutIdx += 1;
wolfSSL 0:1239e9b70ca2 5982 }
wolfSSL 0:1239e9b70ca2 5983 if (CheckCurve(oid) < 0)
wolfSSL 0:1239e9b70ca2 5984 return ECC_CURVE_OID_E;
wolfSSL 0:1239e9b70ca2 5985 }
wolfSSL 0:1239e9b70ca2 5986
wolfSSL 0:1239e9b70ca2 5987 /* prefix 1 */
wolfSSL 0:1239e9b70ca2 5988 b = input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 5989 *inOutIdx += 1;
wolfSSL 0:1239e9b70ca2 5990 if (b != ECC_PREFIX_1)
wolfSSL 0:1239e9b70ca2 5991 return ASN_ECC_KEY_E;
wolfSSL 0:1239e9b70ca2 5992
wolfSSL 0:1239e9b70ca2 5993 if (GetLength(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 5994 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 5995
wolfSSL 0:1239e9b70ca2 5996 /* key header */
wolfSSL 0:1239e9b70ca2 5997 b = input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 5998 *inOutIdx += 1;
wolfSSL 0:1239e9b70ca2 5999 if (b != ASN_BIT_STRING)
wolfSSL 0:1239e9b70ca2 6000 return ASN_BITSTR_E;
wolfSSL 0:1239e9b70ca2 6001
wolfSSL 0:1239e9b70ca2 6002 if (GetLength(input, inOutIdx, &length, inSz) < 0)
wolfSSL 0:1239e9b70ca2 6003 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6004 b = input[*inOutIdx];
wolfSSL 0:1239e9b70ca2 6005 *inOutIdx += 1;
wolfSSL 0:1239e9b70ca2 6006 if (b != 0x00)
wolfSSL 0:1239e9b70ca2 6007 return ASN_EXPECT_0_E;
wolfSSL 0:1239e9b70ca2 6008
wolfSSL 0:1239e9b70ca2 6009 pubSz = length - 1; /* null prefix */
wolfSSL 0:1239e9b70ca2 6010 XMEMCPY(pub, &input[*inOutIdx], pubSz);
wolfSSL 0:1239e9b70ca2 6011
wolfSSL 0:1239e9b70ca2 6012 *inOutIdx += length;
wolfSSL 0:1239e9b70ca2 6013
wolfSSL 0:1239e9b70ca2 6014 return ecc_import_private_key(priv, privSz, pub, pubSz, key);
wolfSSL 0:1239e9b70ca2 6015 }
wolfSSL 0:1239e9b70ca2 6016
wolfSSL 0:1239e9b70ca2 6017 #endif /* HAVE_ECC */
wolfSSL 0:1239e9b70ca2 6018
wolfSSL 0:1239e9b70ca2 6019
wolfSSL 0:1239e9b70ca2 6020 #if defined(HAVE_OCSP) || defined(HAVE_CRL)
wolfSSL 0:1239e9b70ca2 6021
wolfSSL 0:1239e9b70ca2 6022 /* Get raw Date only, no processing, 0 on success */
wolfSSL 0:1239e9b70ca2 6023 static int GetBasicDate(const byte* source, word32* idx, byte* date,
wolfSSL 0:1239e9b70ca2 6024 byte* format, int maxIdx)
wolfSSL 0:1239e9b70ca2 6025 {
wolfSSL 0:1239e9b70ca2 6026 int length;
wolfSSL 0:1239e9b70ca2 6027
wolfSSL 0:1239e9b70ca2 6028 CYASSL_ENTER("GetBasicDate");
wolfSSL 0:1239e9b70ca2 6029
wolfSSL 0:1239e9b70ca2 6030 *format = source[*idx];
wolfSSL 0:1239e9b70ca2 6031 *idx += 1;
wolfSSL 0:1239e9b70ca2 6032 if (*format != ASN_UTC_TIME && *format != ASN_GENERALIZED_TIME)
wolfSSL 0:1239e9b70ca2 6033 return ASN_TIME_E;
wolfSSL 0:1239e9b70ca2 6034
wolfSSL 0:1239e9b70ca2 6035 if (GetLength(source, idx, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 6036 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6037
wolfSSL 0:1239e9b70ca2 6038 if (length > MAX_DATE_SIZE || length < MIN_DATE_SIZE)
wolfSSL 0:1239e9b70ca2 6039 return ASN_DATE_SZ_E;
wolfSSL 0:1239e9b70ca2 6040
wolfSSL 0:1239e9b70ca2 6041 XMEMCPY(date, &source[*idx], length);
wolfSSL 0:1239e9b70ca2 6042 *idx += length;
wolfSSL 0:1239e9b70ca2 6043
wolfSSL 0:1239e9b70ca2 6044 return 0;
wolfSSL 0:1239e9b70ca2 6045 }
wolfSSL 0:1239e9b70ca2 6046
wolfSSL 0:1239e9b70ca2 6047 #endif
wolfSSL 0:1239e9b70ca2 6048
wolfSSL 0:1239e9b70ca2 6049
wolfSSL 0:1239e9b70ca2 6050 #ifdef HAVE_OCSP
wolfSSL 0:1239e9b70ca2 6051
wolfSSL 0:1239e9b70ca2 6052 static int GetEnumerated(const byte* input, word32* inOutIdx, int *value)
wolfSSL 0:1239e9b70ca2 6053 {
wolfSSL 0:1239e9b70ca2 6054 word32 idx = *inOutIdx;
wolfSSL 0:1239e9b70ca2 6055 word32 len;
wolfSSL 0:1239e9b70ca2 6056
wolfSSL 0:1239e9b70ca2 6057 CYASSL_ENTER("GetEnumerated");
wolfSSL 0:1239e9b70ca2 6058
wolfSSL 0:1239e9b70ca2 6059 *value = 0;
wolfSSL 0:1239e9b70ca2 6060
wolfSSL 0:1239e9b70ca2 6061 if (input[idx++] != ASN_ENUMERATED)
wolfSSL 0:1239e9b70ca2 6062 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6063
wolfSSL 0:1239e9b70ca2 6064 len = input[idx++];
wolfSSL 0:1239e9b70ca2 6065 if (len > 4)
wolfSSL 0:1239e9b70ca2 6066 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6067
wolfSSL 0:1239e9b70ca2 6068 while (len--) {
wolfSSL 0:1239e9b70ca2 6069 *value = *value << 8 | input[idx++];
wolfSSL 0:1239e9b70ca2 6070 }
wolfSSL 0:1239e9b70ca2 6071
wolfSSL 0:1239e9b70ca2 6072 *inOutIdx = idx;
wolfSSL 0:1239e9b70ca2 6073
wolfSSL 0:1239e9b70ca2 6074 return *value;
wolfSSL 0:1239e9b70ca2 6075 }
wolfSSL 0:1239e9b70ca2 6076
wolfSSL 0:1239e9b70ca2 6077
wolfSSL 0:1239e9b70ca2 6078 static int DecodeSingleResponse(byte* source,
wolfSSL 0:1239e9b70ca2 6079 word32* ioIndex, OcspResponse* resp, word32 size)
wolfSSL 0:1239e9b70ca2 6080 {
wolfSSL 0:1239e9b70ca2 6081 word32 idx = *ioIndex, prevIndex, oid;
wolfSSL 0:1239e9b70ca2 6082 int length, wrapperSz;
wolfSSL 0:1239e9b70ca2 6083 CertStatus* cs = resp->status;
wolfSSL 0:1239e9b70ca2 6084
wolfSSL 0:1239e9b70ca2 6085 CYASSL_ENTER("DecodeSingleResponse");
wolfSSL 0:1239e9b70ca2 6086
wolfSSL 0:1239e9b70ca2 6087 /* Outer wrapper of the SEQUENCE OF Single Responses. */
wolfSSL 0:1239e9b70ca2 6088 if (GetSequence(source, &idx, &wrapperSz, size) < 0)
wolfSSL 0:1239e9b70ca2 6089 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6090
wolfSSL 0:1239e9b70ca2 6091 prevIndex = idx;
wolfSSL 0:1239e9b70ca2 6092
wolfSSL 0:1239e9b70ca2 6093 /* When making a request, we only request one status on one certificate
wolfSSL 0:1239e9b70ca2 6094 * at a time. There should only be one SingleResponse */
wolfSSL 0:1239e9b70ca2 6095
wolfSSL 0:1239e9b70ca2 6096 /* Wrapper around the Single Response */
wolfSSL 0:1239e9b70ca2 6097 if (GetSequence(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6098 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6099
wolfSSL 0:1239e9b70ca2 6100 /* Wrapper around the CertID */
wolfSSL 0:1239e9b70ca2 6101 if (GetSequence(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6102 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6103 /* Skip the hash algorithm */
wolfSSL 0:1239e9b70ca2 6104 if (GetAlgoId(source, &idx, &oid, size) < 0)
wolfSSL 0:1239e9b70ca2 6105 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6106 /* Save reference to the hash of CN */
wolfSSL 0:1239e9b70ca2 6107 if (source[idx++] != ASN_OCTET_STRING)
wolfSSL 0:1239e9b70ca2 6108 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6109 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6110 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6111 resp->issuerHash = source + idx;
wolfSSL 0:1239e9b70ca2 6112 idx += length;
wolfSSL 0:1239e9b70ca2 6113 /* Save reference to the hash of the issuer public key */
wolfSSL 0:1239e9b70ca2 6114 if (source[idx++] != ASN_OCTET_STRING)
wolfSSL 0:1239e9b70ca2 6115 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6116 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6117 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6118 resp->issuerKeyHash = source + idx;
wolfSSL 0:1239e9b70ca2 6119 idx += length;
wolfSSL 0:1239e9b70ca2 6120
wolfSSL 0:1239e9b70ca2 6121 /* Read the serial number, it is handled as a string, not as a
wolfSSL 0:1239e9b70ca2 6122 * proper number. Just XMEMCPY the data over, rather than load it
wolfSSL 0:1239e9b70ca2 6123 * as an mp_int. */
wolfSSL 0:1239e9b70ca2 6124 if (source[idx++] != ASN_INTEGER)
wolfSSL 0:1239e9b70ca2 6125 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6126 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6127 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6128 if (length <= EXTERNAL_SERIAL_SIZE)
wolfSSL 0:1239e9b70ca2 6129 {
wolfSSL 0:1239e9b70ca2 6130 if (source[idx] == 0)
wolfSSL 0:1239e9b70ca2 6131 {
wolfSSL 0:1239e9b70ca2 6132 idx++;
wolfSSL 0:1239e9b70ca2 6133 length--;
wolfSSL 0:1239e9b70ca2 6134 }
wolfSSL 0:1239e9b70ca2 6135 XMEMCPY(cs->serial, source + idx, length);
wolfSSL 0:1239e9b70ca2 6136 cs->serialSz = length;
wolfSSL 0:1239e9b70ca2 6137 }
wolfSSL 0:1239e9b70ca2 6138 else
wolfSSL 0:1239e9b70ca2 6139 {
wolfSSL 0:1239e9b70ca2 6140 return ASN_GETINT_E;
wolfSSL 0:1239e9b70ca2 6141 }
wolfSSL 0:1239e9b70ca2 6142 idx += length;
wolfSSL 0:1239e9b70ca2 6143
wolfSSL 0:1239e9b70ca2 6144 /* CertStatus */
wolfSSL 0:1239e9b70ca2 6145 switch (source[idx++])
wolfSSL 0:1239e9b70ca2 6146 {
wolfSSL 0:1239e9b70ca2 6147 case (ASN_CONTEXT_SPECIFIC | CERT_GOOD):
wolfSSL 0:1239e9b70ca2 6148 cs->status = CERT_GOOD;
wolfSSL 0:1239e9b70ca2 6149 idx++;
wolfSSL 0:1239e9b70ca2 6150 break;
wolfSSL 0:1239e9b70ca2 6151 case (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | CERT_REVOKED):
wolfSSL 0:1239e9b70ca2 6152 cs->status = CERT_REVOKED;
wolfSSL 0:1239e9b70ca2 6153 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6154 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6155 idx += length;
wolfSSL 0:1239e9b70ca2 6156 break;
wolfSSL 0:1239e9b70ca2 6157 case (ASN_CONTEXT_SPECIFIC | CERT_UNKNOWN):
wolfSSL 0:1239e9b70ca2 6158 cs->status = CERT_UNKNOWN;
wolfSSL 0:1239e9b70ca2 6159 idx++;
wolfSSL 0:1239e9b70ca2 6160 break;
wolfSSL 0:1239e9b70ca2 6161 default:
wolfSSL 0:1239e9b70ca2 6162 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6163 }
wolfSSL 0:1239e9b70ca2 6164
wolfSSL 0:1239e9b70ca2 6165 if (GetBasicDate(source, &idx, cs->thisDate,
wolfSSL 0:1239e9b70ca2 6166 &cs->thisDateFormat, size) < 0)
wolfSSL 0:1239e9b70ca2 6167 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6168 if (!XVALIDATE_DATE(cs->thisDate, cs->thisDateFormat, BEFORE))
wolfSSL 0:1239e9b70ca2 6169 return ASN_BEFORE_DATE_E;
wolfSSL 0:1239e9b70ca2 6170
wolfSSL 0:1239e9b70ca2 6171 /* The following items are optional. Only check for them if there is more
wolfSSL 0:1239e9b70ca2 6172 * unprocessed data in the singleResponse wrapper. */
wolfSSL 0:1239e9b70ca2 6173
wolfSSL 0:1239e9b70ca2 6174 if (((int)(idx - prevIndex) < wrapperSz) &&
wolfSSL 0:1239e9b70ca2 6175 (source[idx] == (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | 0)))
wolfSSL 0:1239e9b70ca2 6176 {
wolfSSL 0:1239e9b70ca2 6177 idx++;
wolfSSL 0:1239e9b70ca2 6178 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6179 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6180 if (GetBasicDate(source, &idx, cs->nextDate,
wolfSSL 0:1239e9b70ca2 6181 &cs->nextDateFormat, size) < 0)
wolfSSL 0:1239e9b70ca2 6182 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6183 }
wolfSSL 0:1239e9b70ca2 6184 if (((int)(idx - prevIndex) < wrapperSz) &&
wolfSSL 0:1239e9b70ca2 6185 (source[idx] == (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | 1)))
wolfSSL 0:1239e9b70ca2 6186 {
wolfSSL 0:1239e9b70ca2 6187 idx++;
wolfSSL 0:1239e9b70ca2 6188 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6189 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6190 idx += length;
wolfSSL 0:1239e9b70ca2 6191 }
wolfSSL 0:1239e9b70ca2 6192
wolfSSL 0:1239e9b70ca2 6193 *ioIndex = idx;
wolfSSL 0:1239e9b70ca2 6194
wolfSSL 0:1239e9b70ca2 6195 return 0;
wolfSSL 0:1239e9b70ca2 6196 }
wolfSSL 0:1239e9b70ca2 6197
wolfSSL 0:1239e9b70ca2 6198 static int DecodeOcspRespExtensions(byte* source,
wolfSSL 0:1239e9b70ca2 6199 word32* ioIndex, OcspResponse* resp, word32 sz)
wolfSSL 0:1239e9b70ca2 6200 {
wolfSSL 0:1239e9b70ca2 6201 word32 idx = *ioIndex;
wolfSSL 0:1239e9b70ca2 6202 int length;
wolfSSL 0:1239e9b70ca2 6203 int ext_bound; /* boundary index for the sequence of extensions */
wolfSSL 0:1239e9b70ca2 6204 word32 oid;
wolfSSL 0:1239e9b70ca2 6205
wolfSSL 0:1239e9b70ca2 6206 CYASSL_ENTER("DecodeOcspRespExtensions");
wolfSSL 0:1239e9b70ca2 6207
wolfSSL 0:1239e9b70ca2 6208 if (source[idx++] != (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | 1))
wolfSSL 0:1239e9b70ca2 6209 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6210
wolfSSL 0:1239e9b70ca2 6211 if (GetLength(source, &idx, &length, sz) < 0) return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6212
wolfSSL 0:1239e9b70ca2 6213 if (GetSequence(source, &idx, &length, sz) < 0) return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6214
wolfSSL 0:1239e9b70ca2 6215 ext_bound = idx + length;
wolfSSL 0:1239e9b70ca2 6216
wolfSSL 0:1239e9b70ca2 6217 while (idx < (word32)ext_bound) {
wolfSSL 0:1239e9b70ca2 6218 if (GetSequence(source, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 6219 CYASSL_MSG("\tfail: should be a SEQUENCE");
wolfSSL 0:1239e9b70ca2 6220 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6221 }
wolfSSL 0:1239e9b70ca2 6222
wolfSSL 0:1239e9b70ca2 6223 oid = 0;
wolfSSL 0:1239e9b70ca2 6224 if (GetObjectId(source, &idx, &oid, sz) < 0) {
wolfSSL 0:1239e9b70ca2 6225 CYASSL_MSG("\tfail: OBJECT ID");
wolfSSL 0:1239e9b70ca2 6226 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6227 }
wolfSSL 0:1239e9b70ca2 6228
wolfSSL 0:1239e9b70ca2 6229 /* check for critical flag */
wolfSSL 0:1239e9b70ca2 6230 if (source[idx] == ASN_BOOLEAN) {
wolfSSL 0:1239e9b70ca2 6231 CYASSL_MSG("\tfound optional critical flag, moving past");
wolfSSL 0:1239e9b70ca2 6232 idx += (ASN_BOOL_SIZE + 1);
wolfSSL 0:1239e9b70ca2 6233 }
wolfSSL 0:1239e9b70ca2 6234
wolfSSL 0:1239e9b70ca2 6235 /* process the extension based on the OID */
wolfSSL 0:1239e9b70ca2 6236 if (source[idx++] != ASN_OCTET_STRING) {
wolfSSL 0:1239e9b70ca2 6237 CYASSL_MSG("\tfail: should be an OCTET STRING");
wolfSSL 0:1239e9b70ca2 6238 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6239 }
wolfSSL 0:1239e9b70ca2 6240
wolfSSL 0:1239e9b70ca2 6241 if (GetLength(source, &idx, &length, sz) < 0) {
wolfSSL 0:1239e9b70ca2 6242 CYASSL_MSG("\tfail: extension data length");
wolfSSL 0:1239e9b70ca2 6243 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6244 }
wolfSSL 0:1239e9b70ca2 6245
wolfSSL 0:1239e9b70ca2 6246 if (oid == OCSP_NONCE_OID) {
wolfSSL 0:1239e9b70ca2 6247 resp->nonce = source + idx;
wolfSSL 0:1239e9b70ca2 6248 resp->nonceSz = length;
wolfSSL 0:1239e9b70ca2 6249 }
wolfSSL 0:1239e9b70ca2 6250
wolfSSL 0:1239e9b70ca2 6251 idx += length;
wolfSSL 0:1239e9b70ca2 6252 }
wolfSSL 0:1239e9b70ca2 6253
wolfSSL 0:1239e9b70ca2 6254 *ioIndex = idx;
wolfSSL 0:1239e9b70ca2 6255 return 0;
wolfSSL 0:1239e9b70ca2 6256 }
wolfSSL 0:1239e9b70ca2 6257
wolfSSL 0:1239e9b70ca2 6258
wolfSSL 0:1239e9b70ca2 6259 static int DecodeResponseData(byte* source,
wolfSSL 0:1239e9b70ca2 6260 word32* ioIndex, OcspResponse* resp, word32 size)
wolfSSL 0:1239e9b70ca2 6261 {
wolfSSL 0:1239e9b70ca2 6262 word32 idx = *ioIndex, prev_idx;
wolfSSL 0:1239e9b70ca2 6263 int length;
wolfSSL 0:1239e9b70ca2 6264 int version;
wolfSSL 0:1239e9b70ca2 6265 word32 responderId = 0;
wolfSSL 0:1239e9b70ca2 6266
wolfSSL 0:1239e9b70ca2 6267 CYASSL_ENTER("DecodeResponseData");
wolfSSL 0:1239e9b70ca2 6268
wolfSSL 0:1239e9b70ca2 6269 resp->response = source + idx;
wolfSSL 0:1239e9b70ca2 6270 prev_idx = idx;
wolfSSL 0:1239e9b70ca2 6271 if (GetSequence(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6272 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6273 resp->responseSz = length + idx - prev_idx;
wolfSSL 0:1239e9b70ca2 6274
wolfSSL 0:1239e9b70ca2 6275 /* Get version. It is an EXPLICIT[0] DEFAULT(0) value. If this
wolfSSL 0:1239e9b70ca2 6276 * item isn't an EXPLICIT[0], then set version to zero and move
wolfSSL 0:1239e9b70ca2 6277 * onto the next item.
wolfSSL 0:1239e9b70ca2 6278 */
wolfSSL 0:1239e9b70ca2 6279 if (source[idx] == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED))
wolfSSL 0:1239e9b70ca2 6280 {
wolfSSL 0:1239e9b70ca2 6281 idx += 2; /* Eat the value and length */
wolfSSL 0:1239e9b70ca2 6282 if (GetMyVersion(source, &idx, &version) < 0)
wolfSSL 0:1239e9b70ca2 6283 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6284 } else
wolfSSL 0:1239e9b70ca2 6285 version = 0;
wolfSSL 0:1239e9b70ca2 6286
wolfSSL 0:1239e9b70ca2 6287 responderId = source[idx++];
wolfSSL 0:1239e9b70ca2 6288 if ((responderId == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | 1)) ||
wolfSSL 0:1239e9b70ca2 6289 (responderId == (ASN_CONTEXT_SPECIFIC | ASN_CONSTRUCTED | 2)))
wolfSSL 0:1239e9b70ca2 6290 {
wolfSSL 0:1239e9b70ca2 6291 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6292 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6293 idx += length;
wolfSSL 0:1239e9b70ca2 6294 }
wolfSSL 0:1239e9b70ca2 6295 else
wolfSSL 0:1239e9b70ca2 6296 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6297
wolfSSL 0:1239e9b70ca2 6298 /* save pointer to the producedAt time */
wolfSSL 0:1239e9b70ca2 6299 if (GetBasicDate(source, &idx, resp->producedDate,
wolfSSL 0:1239e9b70ca2 6300 &resp->producedDateFormat, size) < 0)
wolfSSL 0:1239e9b70ca2 6301 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6302
wolfSSL 0:1239e9b70ca2 6303 if (DecodeSingleResponse(source, &idx, resp, size) < 0)
wolfSSL 0:1239e9b70ca2 6304 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6305
wolfSSL 0:1239e9b70ca2 6306 if (DecodeOcspRespExtensions(source, &idx, resp, size) < 0)
wolfSSL 0:1239e9b70ca2 6307 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6308
wolfSSL 0:1239e9b70ca2 6309 *ioIndex = idx;
wolfSSL 0:1239e9b70ca2 6310 return 0;
wolfSSL 0:1239e9b70ca2 6311 }
wolfSSL 0:1239e9b70ca2 6312
wolfSSL 0:1239e9b70ca2 6313
wolfSSL 0:1239e9b70ca2 6314 static int DecodeCerts(byte* source,
wolfSSL 0:1239e9b70ca2 6315 word32* ioIndex, OcspResponse* resp, word32 size)
wolfSSL 0:1239e9b70ca2 6316 {
wolfSSL 0:1239e9b70ca2 6317 word32 idx = *ioIndex;
wolfSSL 0:1239e9b70ca2 6318
wolfSSL 0:1239e9b70ca2 6319 CYASSL_ENTER("DecodeCerts");
wolfSSL 0:1239e9b70ca2 6320
wolfSSL 0:1239e9b70ca2 6321 if (source[idx++] == (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC))
wolfSSL 0:1239e9b70ca2 6322 {
wolfSSL 0:1239e9b70ca2 6323 int length;
wolfSSL 0:1239e9b70ca2 6324
wolfSSL 0:1239e9b70ca2 6325 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6326 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6327
wolfSSL 0:1239e9b70ca2 6328 if (GetSequence(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6329 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6330
wolfSSL 0:1239e9b70ca2 6331 resp->cert = source + idx;
wolfSSL 0:1239e9b70ca2 6332 resp->certSz = length;
wolfSSL 0:1239e9b70ca2 6333
wolfSSL 0:1239e9b70ca2 6334 idx += length;
wolfSSL 0:1239e9b70ca2 6335 }
wolfSSL 0:1239e9b70ca2 6336 *ioIndex = idx;
wolfSSL 0:1239e9b70ca2 6337 return 0;
wolfSSL 0:1239e9b70ca2 6338 }
wolfSSL 0:1239e9b70ca2 6339
wolfSSL 0:1239e9b70ca2 6340 static int DecodeBasicOcspResponse(byte* source,
wolfSSL 0:1239e9b70ca2 6341 word32* ioIndex, OcspResponse* resp, word32 size)
wolfSSL 0:1239e9b70ca2 6342 {
wolfSSL 0:1239e9b70ca2 6343 int length;
wolfSSL 0:1239e9b70ca2 6344 word32 idx = *ioIndex;
wolfSSL 0:1239e9b70ca2 6345 word32 end_index;
wolfSSL 0:1239e9b70ca2 6346
wolfSSL 0:1239e9b70ca2 6347 CYASSL_ENTER("DecodeBasicOcspResponse");
wolfSSL 0:1239e9b70ca2 6348
wolfSSL 0:1239e9b70ca2 6349 if (GetSequence(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6350 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6351
wolfSSL 0:1239e9b70ca2 6352 if (idx + length > size)
wolfSSL 0:1239e9b70ca2 6353 return ASN_INPUT_E;
wolfSSL 0:1239e9b70ca2 6354 end_index = idx + length;
wolfSSL 0:1239e9b70ca2 6355
wolfSSL 0:1239e9b70ca2 6356 if (DecodeResponseData(source, &idx, resp, size) < 0)
wolfSSL 0:1239e9b70ca2 6357 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6358
wolfSSL 0:1239e9b70ca2 6359 /* Get the signature algorithm */
wolfSSL 0:1239e9b70ca2 6360 if (GetAlgoId(source, &idx, &resp->sigOID, size) < 0)
wolfSSL 0:1239e9b70ca2 6361 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6362
wolfSSL 0:1239e9b70ca2 6363 /* Obtain pointer to the start of the signature, and save the size */
wolfSSL 0:1239e9b70ca2 6364 if (source[idx++] == ASN_BIT_STRING)
wolfSSL 0:1239e9b70ca2 6365 {
wolfSSL 0:1239e9b70ca2 6366 int sigLength = 0;
wolfSSL 0:1239e9b70ca2 6367 if (GetLength(source, &idx, &sigLength, size) < 0)
wolfSSL 0:1239e9b70ca2 6368 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6369 resp->sigSz = sigLength;
wolfSSL 0:1239e9b70ca2 6370 resp->sig = source + idx;
wolfSSL 0:1239e9b70ca2 6371 idx += sigLength;
wolfSSL 0:1239e9b70ca2 6372 }
wolfSSL 0:1239e9b70ca2 6373
wolfSSL 0:1239e9b70ca2 6374 /*
wolfSSL 0:1239e9b70ca2 6375 * Check the length of the BasicOcspResponse against the current index to
wolfSSL 0:1239e9b70ca2 6376 * see if there are certificates, they are optional.
wolfSSL 0:1239e9b70ca2 6377 */
wolfSSL 0:1239e9b70ca2 6378 if (idx < end_index)
wolfSSL 0:1239e9b70ca2 6379 {
wolfSSL 0:1239e9b70ca2 6380 DecodedCert cert;
wolfSSL 0:1239e9b70ca2 6381 int ret;
wolfSSL 0:1239e9b70ca2 6382
wolfSSL 0:1239e9b70ca2 6383 if (DecodeCerts(source, &idx, resp, size) < 0)
wolfSSL 0:1239e9b70ca2 6384 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6385
wolfSSL 0:1239e9b70ca2 6386 InitDecodedCert(&cert, resp->cert, resp->certSz, 0);
wolfSSL 0:1239e9b70ca2 6387 ret = ParseCertRelative(&cert, CA_TYPE, NO_VERIFY, 0);
wolfSSL 0:1239e9b70ca2 6388 if (ret < 0)
wolfSSL 0:1239e9b70ca2 6389 return ret;
wolfSSL 0:1239e9b70ca2 6390
wolfSSL 0:1239e9b70ca2 6391 ret = ConfirmSignature(resp->response, resp->responseSz,
wolfSSL 0:1239e9b70ca2 6392 cert.publicKey, cert.pubKeySize, cert.keyOID,
wolfSSL 0:1239e9b70ca2 6393 resp->sig, resp->sigSz, resp->sigOID, NULL);
wolfSSL 0:1239e9b70ca2 6394 FreeDecodedCert(&cert);
wolfSSL 0:1239e9b70ca2 6395
wolfSSL 0:1239e9b70ca2 6396 if (ret == 0)
wolfSSL 0:1239e9b70ca2 6397 {
wolfSSL 0:1239e9b70ca2 6398 CYASSL_MSG("\tOCSP Confirm signature failed");
wolfSSL 0:1239e9b70ca2 6399 return ASN_OCSP_CONFIRM_E;
wolfSSL 0:1239e9b70ca2 6400 }
wolfSSL 0:1239e9b70ca2 6401 }
wolfSSL 0:1239e9b70ca2 6402
wolfSSL 0:1239e9b70ca2 6403 *ioIndex = idx;
wolfSSL 0:1239e9b70ca2 6404 return 0;
wolfSSL 0:1239e9b70ca2 6405 }
wolfSSL 0:1239e9b70ca2 6406
wolfSSL 0:1239e9b70ca2 6407
wolfSSL 0:1239e9b70ca2 6408 void InitOcspResponse(OcspResponse* resp, CertStatus* status,
wolfSSL 0:1239e9b70ca2 6409 byte* source, word32 inSz)
wolfSSL 0:1239e9b70ca2 6410 {
wolfSSL 0:1239e9b70ca2 6411 CYASSL_ENTER("InitOcspResponse");
wolfSSL 0:1239e9b70ca2 6412
wolfSSL 0:1239e9b70ca2 6413 resp->responseStatus = -1;
wolfSSL 0:1239e9b70ca2 6414 resp->response = NULL;
wolfSSL 0:1239e9b70ca2 6415 resp->responseSz = 0;
wolfSSL 0:1239e9b70ca2 6416 resp->producedDateFormat = 0;
wolfSSL 0:1239e9b70ca2 6417 resp->issuerHash = NULL;
wolfSSL 0:1239e9b70ca2 6418 resp->issuerKeyHash = NULL;
wolfSSL 0:1239e9b70ca2 6419 resp->sig = NULL;
wolfSSL 0:1239e9b70ca2 6420 resp->sigSz = 0;
wolfSSL 0:1239e9b70ca2 6421 resp->sigOID = 0;
wolfSSL 0:1239e9b70ca2 6422 resp->status = status;
wolfSSL 0:1239e9b70ca2 6423 resp->nonce = NULL;
wolfSSL 0:1239e9b70ca2 6424 resp->nonceSz = 0;
wolfSSL 0:1239e9b70ca2 6425 resp->source = source;
wolfSSL 0:1239e9b70ca2 6426 resp->maxIdx = inSz;
wolfSSL 0:1239e9b70ca2 6427 }
wolfSSL 0:1239e9b70ca2 6428
wolfSSL 0:1239e9b70ca2 6429
wolfSSL 0:1239e9b70ca2 6430 int OcspResponseDecode(OcspResponse* resp)
wolfSSL 0:1239e9b70ca2 6431 {
wolfSSL 0:1239e9b70ca2 6432 int length = 0;
wolfSSL 0:1239e9b70ca2 6433 word32 idx = 0;
wolfSSL 0:1239e9b70ca2 6434 byte* source = resp->source;
wolfSSL 0:1239e9b70ca2 6435 word32 size = resp->maxIdx;
wolfSSL 0:1239e9b70ca2 6436 word32 oid;
wolfSSL 0:1239e9b70ca2 6437
wolfSSL 0:1239e9b70ca2 6438 CYASSL_ENTER("OcspResponseDecode");
wolfSSL 0:1239e9b70ca2 6439
wolfSSL 0:1239e9b70ca2 6440 /* peel the outer SEQUENCE wrapper */
wolfSSL 0:1239e9b70ca2 6441 if (GetSequence(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6442 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6443
wolfSSL 0:1239e9b70ca2 6444 /* First get the responseStatus, an ENUMERATED */
wolfSSL 0:1239e9b70ca2 6445 if (GetEnumerated(source, &idx, &resp->responseStatus) < 0)
wolfSSL 0:1239e9b70ca2 6446 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6447
wolfSSL 0:1239e9b70ca2 6448 if (resp->responseStatus != OCSP_SUCCESSFUL)
wolfSSL 0:1239e9b70ca2 6449 return 0;
wolfSSL 0:1239e9b70ca2 6450
wolfSSL 0:1239e9b70ca2 6451 /* Next is an EXPLICIT record called ResponseBytes, OPTIONAL */
wolfSSL 0:1239e9b70ca2 6452 if (idx >= size)
wolfSSL 0:1239e9b70ca2 6453 return ASN_INPUT_E;
wolfSSL 0:1239e9b70ca2 6454 if (source[idx++] != (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC))
wolfSSL 0:1239e9b70ca2 6455 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6456 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6457 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6458
wolfSSL 0:1239e9b70ca2 6459 /* Get the responseBytes SEQUENCE */
wolfSSL 0:1239e9b70ca2 6460 if (GetSequence(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6461 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6462
wolfSSL 0:1239e9b70ca2 6463 /* Check ObjectID for the resposeBytes */
wolfSSL 0:1239e9b70ca2 6464 if (GetObjectId(source, &idx, &oid, size) < 0)
wolfSSL 0:1239e9b70ca2 6465 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6466 if (oid != OCSP_BASIC_OID)
wolfSSL 0:1239e9b70ca2 6467 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6468 if (source[idx++] != ASN_OCTET_STRING)
wolfSSL 0:1239e9b70ca2 6469 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6470
wolfSSL 0:1239e9b70ca2 6471 if (GetLength(source, &idx, &length, size) < 0)
wolfSSL 0:1239e9b70ca2 6472 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6473
wolfSSL 0:1239e9b70ca2 6474 if (DecodeBasicOcspResponse(source, &idx, resp, size) < 0)
wolfSSL 0:1239e9b70ca2 6475 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6476
wolfSSL 0:1239e9b70ca2 6477 return 0;
wolfSSL 0:1239e9b70ca2 6478 }
wolfSSL 0:1239e9b70ca2 6479
wolfSSL 0:1239e9b70ca2 6480
wolfSSL 0:1239e9b70ca2 6481 static word32 SetOcspReqExtensions(word32 extSz, byte* output,
wolfSSL 0:1239e9b70ca2 6482 const byte* nonce, word32 nonceSz)
wolfSSL 0:1239e9b70ca2 6483 {
wolfSSL 0:1239e9b70ca2 6484 static const byte NonceObjId[] = { 0x2b, 0x06, 0x01, 0x05, 0x05, 0x07,
wolfSSL 0:1239e9b70ca2 6485 0x30, 0x01, 0x02 };
wolfSSL 0:1239e9b70ca2 6486 byte seqArray[5][MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 6487 word32 seqSz[5], totalSz;
wolfSSL 0:1239e9b70ca2 6488
wolfSSL 0:1239e9b70ca2 6489 CYASSL_ENTER("SetOcspReqExtensions");
wolfSSL 0:1239e9b70ca2 6490
wolfSSL 0:1239e9b70ca2 6491 if (nonce == NULL || nonceSz == 0) return 0;
wolfSSL 0:1239e9b70ca2 6492
wolfSSL 0:1239e9b70ca2 6493 seqArray[0][0] = ASN_OCTET_STRING;
wolfSSL 0:1239e9b70ca2 6494 seqSz[0] = 1 + SetLength(nonceSz, &seqArray[0][1]);
wolfSSL 0:1239e9b70ca2 6495
wolfSSL 0:1239e9b70ca2 6496 seqArray[1][0] = ASN_OBJECT_ID;
wolfSSL 0:1239e9b70ca2 6497 seqSz[1] = 1 + SetLength(sizeof(NonceObjId), &seqArray[1][1]);
wolfSSL 0:1239e9b70ca2 6498
wolfSSL 0:1239e9b70ca2 6499 totalSz = seqSz[0] + seqSz[1] + nonceSz + (word32)sizeof(NonceObjId);
wolfSSL 0:1239e9b70ca2 6500
wolfSSL 0:1239e9b70ca2 6501 seqSz[2] = SetSequence(totalSz, seqArray[2]);
wolfSSL 0:1239e9b70ca2 6502 totalSz += seqSz[2];
wolfSSL 0:1239e9b70ca2 6503
wolfSSL 0:1239e9b70ca2 6504 seqSz[3] = SetSequence(totalSz, seqArray[3]);
wolfSSL 0:1239e9b70ca2 6505 totalSz += seqSz[3];
wolfSSL 0:1239e9b70ca2 6506
wolfSSL 0:1239e9b70ca2 6507 seqArray[4][0] = (ASN_CONSTRUCTED | ASN_CONTEXT_SPECIFIC | 2);
wolfSSL 0:1239e9b70ca2 6508 seqSz[4] = 1 + SetLength(totalSz, &seqArray[4][1]);
wolfSSL 0:1239e9b70ca2 6509 totalSz += seqSz[4];
wolfSSL 0:1239e9b70ca2 6510
wolfSSL 0:1239e9b70ca2 6511 if (totalSz < extSz)
wolfSSL 0:1239e9b70ca2 6512 {
wolfSSL 0:1239e9b70ca2 6513 totalSz = 0;
wolfSSL 0:1239e9b70ca2 6514 XMEMCPY(output + totalSz, seqArray[4], seqSz[4]);
wolfSSL 0:1239e9b70ca2 6515 totalSz += seqSz[4];
wolfSSL 0:1239e9b70ca2 6516 XMEMCPY(output + totalSz, seqArray[3], seqSz[3]);
wolfSSL 0:1239e9b70ca2 6517 totalSz += seqSz[3];
wolfSSL 0:1239e9b70ca2 6518 XMEMCPY(output + totalSz, seqArray[2], seqSz[2]);
wolfSSL 0:1239e9b70ca2 6519 totalSz += seqSz[2];
wolfSSL 0:1239e9b70ca2 6520 XMEMCPY(output + totalSz, seqArray[1], seqSz[1]);
wolfSSL 0:1239e9b70ca2 6521 totalSz += seqSz[1];
wolfSSL 0:1239e9b70ca2 6522 XMEMCPY(output + totalSz, NonceObjId, sizeof(NonceObjId));
wolfSSL 0:1239e9b70ca2 6523 totalSz += (word32)sizeof(NonceObjId);
wolfSSL 0:1239e9b70ca2 6524 XMEMCPY(output + totalSz, seqArray[0], seqSz[0]);
wolfSSL 0:1239e9b70ca2 6525 totalSz += seqSz[0];
wolfSSL 0:1239e9b70ca2 6526 XMEMCPY(output + totalSz, nonce, nonceSz);
wolfSSL 0:1239e9b70ca2 6527 totalSz += nonceSz;
wolfSSL 0:1239e9b70ca2 6528 }
wolfSSL 0:1239e9b70ca2 6529
wolfSSL 0:1239e9b70ca2 6530 return totalSz;
wolfSSL 0:1239e9b70ca2 6531 }
wolfSSL 0:1239e9b70ca2 6532
wolfSSL 0:1239e9b70ca2 6533
wolfSSL 0:1239e9b70ca2 6534 int EncodeOcspRequest(OcspRequest* req)
wolfSSL 0:1239e9b70ca2 6535 {
wolfSSL 0:1239e9b70ca2 6536 byte seqArray[5][MAX_SEQ_SZ];
wolfSSL 0:1239e9b70ca2 6537 /* The ASN.1 of the OCSP Request is an onion of sequences */
wolfSSL 0:1239e9b70ca2 6538 byte algoArray[MAX_ALGO_SZ];
wolfSSL 0:1239e9b70ca2 6539 byte issuerArray[MAX_ENCODED_DIG_SZ];
wolfSSL 0:1239e9b70ca2 6540 byte issuerKeyArray[MAX_ENCODED_DIG_SZ];
wolfSSL 0:1239e9b70ca2 6541 byte snArray[MAX_SN_SZ];
wolfSSL 0:1239e9b70ca2 6542 byte extArray[MAX_OCSP_EXT_SZ];
wolfSSL 0:1239e9b70ca2 6543 byte* output = req->dest;
wolfSSL 0:1239e9b70ca2 6544 word32 seqSz[5], algoSz, issuerSz, issuerKeySz, snSz, extSz, totalSz;
wolfSSL 0:1239e9b70ca2 6545 int i;
wolfSSL 0:1239e9b70ca2 6546
wolfSSL 0:1239e9b70ca2 6547 CYASSL_ENTER("EncodeOcspRequest");
wolfSSL 0:1239e9b70ca2 6548
wolfSSL 0:1239e9b70ca2 6549 algoSz = SetAlgoID(SHAh, algoArray, hashType, 0);
wolfSSL 0:1239e9b70ca2 6550
wolfSSL 0:1239e9b70ca2 6551 req->issuerHash = req->cert->issuerHash;
wolfSSL 0:1239e9b70ca2 6552 issuerSz = SetDigest(req->cert->issuerHash, SHA_SIZE, issuerArray);
wolfSSL 0:1239e9b70ca2 6553
wolfSSL 0:1239e9b70ca2 6554 req->issuerKeyHash = req->cert->issuerKeyHash;
wolfSSL 0:1239e9b70ca2 6555 issuerKeySz = SetDigest(req->cert->issuerKeyHash, SHA_SIZE, issuerKeyArray);
wolfSSL 0:1239e9b70ca2 6556
wolfSSL 0:1239e9b70ca2 6557 req->serial = req->cert->serial;
wolfSSL 0:1239e9b70ca2 6558 req->serialSz = req->cert->serialSz;
wolfSSL 0:1239e9b70ca2 6559 snSz = SetSerialNumber(req->cert->serial, req->cert->serialSz, snArray);
wolfSSL 0:1239e9b70ca2 6560
wolfSSL 0:1239e9b70ca2 6561 extSz = 0;
wolfSSL 0:1239e9b70ca2 6562 if (req->useNonce) {
wolfSSL 0:1239e9b70ca2 6563 RNG rng;
wolfSSL 0:1239e9b70ca2 6564 if (InitRng(&rng) != 0) {
wolfSSL 0:1239e9b70ca2 6565 CYASSL_MSG("\tCannot initialize RNG. Skipping the OSCP Nonce.");
wolfSSL 0:1239e9b70ca2 6566 } else {
wolfSSL 0:1239e9b70ca2 6567 if (RNG_GenerateBlock(&rng, req->nonce, MAX_OCSP_NONCE_SZ) != 0)
wolfSSL 0:1239e9b70ca2 6568 CYASSL_MSG("\tCannot run RNG. Skipping the OSCP Nonce.");
wolfSSL 0:1239e9b70ca2 6569 else {
wolfSSL 0:1239e9b70ca2 6570 req->nonceSz = MAX_OCSP_NONCE_SZ;
wolfSSL 0:1239e9b70ca2 6571 extSz = SetOcspReqExtensions(MAX_OCSP_EXT_SZ, extArray,
wolfSSL 0:1239e9b70ca2 6572 req->nonce, req->nonceSz);
wolfSSL 0:1239e9b70ca2 6573 }
wolfSSL 0:1239e9b70ca2 6574 }
wolfSSL 0:1239e9b70ca2 6575 }
wolfSSL 0:1239e9b70ca2 6576
wolfSSL 0:1239e9b70ca2 6577 totalSz = algoSz + issuerSz + issuerKeySz + snSz;
wolfSSL 0:1239e9b70ca2 6578
wolfSSL 0:1239e9b70ca2 6579 for (i = 4; i >= 0; i--) {
wolfSSL 0:1239e9b70ca2 6580 seqSz[i] = SetSequence(totalSz, seqArray[i]);
wolfSSL 0:1239e9b70ca2 6581 totalSz += seqSz[i];
wolfSSL 0:1239e9b70ca2 6582 if (i == 2) totalSz += extSz;
wolfSSL 0:1239e9b70ca2 6583 }
wolfSSL 0:1239e9b70ca2 6584 totalSz = 0;
wolfSSL 0:1239e9b70ca2 6585 for (i = 0; i < 5; i++) {
wolfSSL 0:1239e9b70ca2 6586 XMEMCPY(output + totalSz, seqArray[i], seqSz[i]);
wolfSSL 0:1239e9b70ca2 6587 totalSz += seqSz[i];
wolfSSL 0:1239e9b70ca2 6588 }
wolfSSL 0:1239e9b70ca2 6589 XMEMCPY(output + totalSz, algoArray, algoSz);
wolfSSL 0:1239e9b70ca2 6590 totalSz += algoSz;
wolfSSL 0:1239e9b70ca2 6591 XMEMCPY(output + totalSz, issuerArray, issuerSz);
wolfSSL 0:1239e9b70ca2 6592 totalSz += issuerSz;
wolfSSL 0:1239e9b70ca2 6593 XMEMCPY(output + totalSz, issuerKeyArray, issuerKeySz);
wolfSSL 0:1239e9b70ca2 6594 totalSz += issuerKeySz;
wolfSSL 0:1239e9b70ca2 6595 XMEMCPY(output + totalSz, snArray, snSz);
wolfSSL 0:1239e9b70ca2 6596 totalSz += snSz;
wolfSSL 0:1239e9b70ca2 6597 if (extSz != 0) {
wolfSSL 0:1239e9b70ca2 6598 XMEMCPY(output + totalSz, extArray, extSz);
wolfSSL 0:1239e9b70ca2 6599 totalSz += extSz;
wolfSSL 0:1239e9b70ca2 6600 }
wolfSSL 0:1239e9b70ca2 6601
wolfSSL 0:1239e9b70ca2 6602 return totalSz;
wolfSSL 0:1239e9b70ca2 6603 }
wolfSSL 0:1239e9b70ca2 6604
wolfSSL 0:1239e9b70ca2 6605
wolfSSL 0:1239e9b70ca2 6606 void InitOcspRequest(OcspRequest* req, DecodedCert* cert, byte useNonce,
wolfSSL 0:1239e9b70ca2 6607 byte* dest, word32 destSz)
wolfSSL 0:1239e9b70ca2 6608 {
wolfSSL 0:1239e9b70ca2 6609 CYASSL_ENTER("InitOcspRequest");
wolfSSL 0:1239e9b70ca2 6610
wolfSSL 0:1239e9b70ca2 6611 req->cert = cert;
wolfSSL 0:1239e9b70ca2 6612 req->useNonce = useNonce;
wolfSSL 0:1239e9b70ca2 6613 req->nonceSz = 0;
wolfSSL 0:1239e9b70ca2 6614 req->issuerHash = NULL;
wolfSSL 0:1239e9b70ca2 6615 req->issuerKeyHash = NULL;
wolfSSL 0:1239e9b70ca2 6616 req->serial = NULL;
wolfSSL 0:1239e9b70ca2 6617 req->dest = dest;
wolfSSL 0:1239e9b70ca2 6618 req->destSz = destSz;
wolfSSL 0:1239e9b70ca2 6619 }
wolfSSL 0:1239e9b70ca2 6620
wolfSSL 0:1239e9b70ca2 6621
wolfSSL 0:1239e9b70ca2 6622 int CompareOcspReqResp(OcspRequest* req, OcspResponse* resp)
wolfSSL 0:1239e9b70ca2 6623 {
wolfSSL 0:1239e9b70ca2 6624 int cmp;
wolfSSL 0:1239e9b70ca2 6625
wolfSSL 0:1239e9b70ca2 6626 CYASSL_ENTER("CompareOcspReqResp");
wolfSSL 0:1239e9b70ca2 6627
wolfSSL 0:1239e9b70ca2 6628 if (req == NULL)
wolfSSL 0:1239e9b70ca2 6629 {
wolfSSL 0:1239e9b70ca2 6630 CYASSL_MSG("\tReq missing");
wolfSSL 0:1239e9b70ca2 6631 return -1;
wolfSSL 0:1239e9b70ca2 6632 }
wolfSSL 0:1239e9b70ca2 6633
wolfSSL 0:1239e9b70ca2 6634 if (resp == NULL)
wolfSSL 0:1239e9b70ca2 6635 {
wolfSSL 0:1239e9b70ca2 6636 CYASSL_MSG("\tResp missing");
wolfSSL 0:1239e9b70ca2 6637 return 1;
wolfSSL 0:1239e9b70ca2 6638 }
wolfSSL 0:1239e9b70ca2 6639
wolfSSL 0:1239e9b70ca2 6640 /* Nonces are not critical. The responder may not necessarily add
wolfSSL 0:1239e9b70ca2 6641 * the nonce to the response. */
wolfSSL 0:1239e9b70ca2 6642 if (req->useNonce && resp->nonceSz != 0) {
wolfSSL 0:1239e9b70ca2 6643 cmp = req->nonceSz - resp->nonceSz;
wolfSSL 0:1239e9b70ca2 6644 if (cmp != 0)
wolfSSL 0:1239e9b70ca2 6645 {
wolfSSL 0:1239e9b70ca2 6646 CYASSL_MSG("\tnonceSz mismatch");
wolfSSL 0:1239e9b70ca2 6647 return cmp;
wolfSSL 0:1239e9b70ca2 6648 }
wolfSSL 0:1239e9b70ca2 6649
wolfSSL 0:1239e9b70ca2 6650 cmp = XMEMCMP(req->nonce, resp->nonce, req->nonceSz);
wolfSSL 0:1239e9b70ca2 6651 if (cmp != 0)
wolfSSL 0:1239e9b70ca2 6652 {
wolfSSL 0:1239e9b70ca2 6653 CYASSL_MSG("\tnonce mismatch");
wolfSSL 0:1239e9b70ca2 6654 return cmp;
wolfSSL 0:1239e9b70ca2 6655 }
wolfSSL 0:1239e9b70ca2 6656 }
wolfSSL 0:1239e9b70ca2 6657
wolfSSL 0:1239e9b70ca2 6658 cmp = XMEMCMP(req->issuerHash, resp->issuerHash, SHA_DIGEST_SIZE);
wolfSSL 0:1239e9b70ca2 6659 if (cmp != 0)
wolfSSL 0:1239e9b70ca2 6660 {
wolfSSL 0:1239e9b70ca2 6661 CYASSL_MSG("\tissuerHash mismatch");
wolfSSL 0:1239e9b70ca2 6662 return cmp;
wolfSSL 0:1239e9b70ca2 6663 }
wolfSSL 0:1239e9b70ca2 6664
wolfSSL 0:1239e9b70ca2 6665 cmp = XMEMCMP(req->issuerKeyHash, resp->issuerKeyHash, SHA_DIGEST_SIZE);
wolfSSL 0:1239e9b70ca2 6666 if (cmp != 0)
wolfSSL 0:1239e9b70ca2 6667 {
wolfSSL 0:1239e9b70ca2 6668 CYASSL_MSG("\tissuerKeyHash mismatch");
wolfSSL 0:1239e9b70ca2 6669 return cmp;
wolfSSL 0:1239e9b70ca2 6670 }
wolfSSL 0:1239e9b70ca2 6671
wolfSSL 0:1239e9b70ca2 6672 cmp = req->serialSz - resp->status->serialSz;
wolfSSL 0:1239e9b70ca2 6673 if (cmp != 0)
wolfSSL 0:1239e9b70ca2 6674 {
wolfSSL 0:1239e9b70ca2 6675 CYASSL_MSG("\tserialSz mismatch");
wolfSSL 0:1239e9b70ca2 6676 return cmp;
wolfSSL 0:1239e9b70ca2 6677 }
wolfSSL 0:1239e9b70ca2 6678
wolfSSL 0:1239e9b70ca2 6679 cmp = XMEMCMP(req->serial, resp->status->serial, req->serialSz);
wolfSSL 0:1239e9b70ca2 6680 if (cmp != 0)
wolfSSL 0:1239e9b70ca2 6681 {
wolfSSL 0:1239e9b70ca2 6682 CYASSL_MSG("\tserial mismatch");
wolfSSL 0:1239e9b70ca2 6683 return cmp;
wolfSSL 0:1239e9b70ca2 6684 }
wolfSSL 0:1239e9b70ca2 6685
wolfSSL 0:1239e9b70ca2 6686 return 0;
wolfSSL 0:1239e9b70ca2 6687 }
wolfSSL 0:1239e9b70ca2 6688
wolfSSL 0:1239e9b70ca2 6689 #endif
wolfSSL 0:1239e9b70ca2 6690
wolfSSL 0:1239e9b70ca2 6691
wolfSSL 0:1239e9b70ca2 6692 /* store SHA1 hash of NAME */
wolfSSL 0:1239e9b70ca2 6693 CYASSL_LOCAL int GetNameHash(const byte* source, word32* idx, byte* hash,
wolfSSL 0:1239e9b70ca2 6694 int maxIdx)
wolfSSL 0:1239e9b70ca2 6695 {
wolfSSL 0:1239e9b70ca2 6696 Sha sha;
wolfSSL 0:1239e9b70ca2 6697 int length; /* length of all distinguished names */
wolfSSL 0:1239e9b70ca2 6698 int ret = 0;
wolfSSL 0:1239e9b70ca2 6699 word32 dummy;
wolfSSL 0:1239e9b70ca2 6700
wolfSSL 0:1239e9b70ca2 6701 CYASSL_ENTER("GetNameHash");
wolfSSL 0:1239e9b70ca2 6702
wolfSSL 0:1239e9b70ca2 6703 if (source[*idx] == ASN_OBJECT_ID) {
wolfSSL 0:1239e9b70ca2 6704 CYASSL_MSG("Trying optional prefix...");
wolfSSL 0:1239e9b70ca2 6705
wolfSSL 0:1239e9b70ca2 6706 if (GetLength(source, idx, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 6707 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6708
wolfSSL 0:1239e9b70ca2 6709 *idx += length;
wolfSSL 0:1239e9b70ca2 6710 CYASSL_MSG("Got optional prefix");
wolfSSL 0:1239e9b70ca2 6711 }
wolfSSL 0:1239e9b70ca2 6712
wolfSSL 0:1239e9b70ca2 6713 /* For OCSP, RFC2560 section 4.1.1 states the issuer hash should be
wolfSSL 0:1239e9b70ca2 6714 * calculated over the entire DER encoding of the Name field, including
wolfSSL 0:1239e9b70ca2 6715 * the tag and length. */
wolfSSL 0:1239e9b70ca2 6716 dummy = *idx;
wolfSSL 0:1239e9b70ca2 6717 if (GetSequence(source, idx, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 6718 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6719
wolfSSL 0:1239e9b70ca2 6720 ret = InitSha(&sha);
wolfSSL 0:1239e9b70ca2 6721 if (ret != 0)
wolfSSL 0:1239e9b70ca2 6722 return ret;
wolfSSL 0:1239e9b70ca2 6723 ShaUpdate(&sha, source + dummy, length + *idx - dummy);
wolfSSL 0:1239e9b70ca2 6724 ShaFinal(&sha, hash);
wolfSSL 0:1239e9b70ca2 6725
wolfSSL 0:1239e9b70ca2 6726 *idx += length;
wolfSSL 0:1239e9b70ca2 6727
wolfSSL 0:1239e9b70ca2 6728 return 0;
wolfSSL 0:1239e9b70ca2 6729 }
wolfSSL 0:1239e9b70ca2 6730
wolfSSL 0:1239e9b70ca2 6731
wolfSSL 0:1239e9b70ca2 6732 #ifdef HAVE_CRL
wolfSSL 0:1239e9b70ca2 6733
wolfSSL 0:1239e9b70ca2 6734 /* initialize decoded CRL */
wolfSSL 0:1239e9b70ca2 6735 void InitDecodedCRL(DecodedCRL* dcrl)
wolfSSL 0:1239e9b70ca2 6736 {
wolfSSL 0:1239e9b70ca2 6737 CYASSL_MSG("InitDecodedCRL");
wolfSSL 0:1239e9b70ca2 6738
wolfSSL 0:1239e9b70ca2 6739 dcrl->certBegin = 0;
wolfSSL 0:1239e9b70ca2 6740 dcrl->sigIndex = 0;
wolfSSL 0:1239e9b70ca2 6741 dcrl->sigLength = 0;
wolfSSL 0:1239e9b70ca2 6742 dcrl->signatureOID = 0;
wolfSSL 0:1239e9b70ca2 6743 dcrl->certs = NULL;
wolfSSL 0:1239e9b70ca2 6744 dcrl->totalCerts = 0;
wolfSSL 0:1239e9b70ca2 6745 }
wolfSSL 0:1239e9b70ca2 6746
wolfSSL 0:1239e9b70ca2 6747
wolfSSL 0:1239e9b70ca2 6748 /* free decoded CRL resources */
wolfSSL 0:1239e9b70ca2 6749 void FreeDecodedCRL(DecodedCRL* dcrl)
wolfSSL 0:1239e9b70ca2 6750 {
wolfSSL 0:1239e9b70ca2 6751 RevokedCert* tmp = dcrl->certs;
wolfSSL 0:1239e9b70ca2 6752
wolfSSL 0:1239e9b70ca2 6753 CYASSL_MSG("FreeDecodedCRL");
wolfSSL 0:1239e9b70ca2 6754
wolfSSL 0:1239e9b70ca2 6755 while(tmp) {
wolfSSL 0:1239e9b70ca2 6756 RevokedCert* next = tmp->next;
wolfSSL 0:1239e9b70ca2 6757 XFREE(tmp, NULL, DYNAMIC_TYPE_REVOKED);
wolfSSL 0:1239e9b70ca2 6758 tmp = next;
wolfSSL 0:1239e9b70ca2 6759 }
wolfSSL 0:1239e9b70ca2 6760 }
wolfSSL 0:1239e9b70ca2 6761
wolfSSL 0:1239e9b70ca2 6762
wolfSSL 0:1239e9b70ca2 6763 /* Get Revoked Cert list, 0 on success */
wolfSSL 0:1239e9b70ca2 6764 static int GetRevoked(const byte* buff, word32* idx, DecodedCRL* dcrl,
wolfSSL 0:1239e9b70ca2 6765 int maxIdx)
wolfSSL 0:1239e9b70ca2 6766 {
wolfSSL 0:1239e9b70ca2 6767 int len;
wolfSSL 0:1239e9b70ca2 6768 word32 end;
wolfSSL 0:1239e9b70ca2 6769 byte b;
wolfSSL 0:1239e9b70ca2 6770 RevokedCert* rc;
wolfSSL 0:1239e9b70ca2 6771
wolfSSL 0:1239e9b70ca2 6772 CYASSL_ENTER("GetRevoked");
wolfSSL 0:1239e9b70ca2 6773
wolfSSL 0:1239e9b70ca2 6774 if (GetSequence(buff, idx, &len, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 6775 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6776
wolfSSL 0:1239e9b70ca2 6777 end = *idx + len;
wolfSSL 0:1239e9b70ca2 6778
wolfSSL 0:1239e9b70ca2 6779 /* get serial number */
wolfSSL 0:1239e9b70ca2 6780 b = buff[*idx];
wolfSSL 0:1239e9b70ca2 6781 *idx += 1;
wolfSSL 0:1239e9b70ca2 6782
wolfSSL 0:1239e9b70ca2 6783 if (b != ASN_INTEGER) {
wolfSSL 0:1239e9b70ca2 6784 CYASSL_MSG("Expecting Integer");
wolfSSL 0:1239e9b70ca2 6785 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6786 }
wolfSSL 0:1239e9b70ca2 6787
wolfSSL 0:1239e9b70ca2 6788 if (GetLength(buff, idx, &len, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 6789 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6790
wolfSSL 0:1239e9b70ca2 6791 if (len > EXTERNAL_SERIAL_SIZE) {
wolfSSL 0:1239e9b70ca2 6792 CYASSL_MSG("Serial Size too big");
wolfSSL 0:1239e9b70ca2 6793 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6794 }
wolfSSL 0:1239e9b70ca2 6795
wolfSSL 0:1239e9b70ca2 6796 rc = (RevokedCert*)XMALLOC(sizeof(RevokedCert), NULL, DYNAMIC_TYPE_CRL);
wolfSSL 0:1239e9b70ca2 6797 if (rc == NULL) {
wolfSSL 0:1239e9b70ca2 6798 CYASSL_MSG("Alloc Revoked Cert failed");
wolfSSL 0:1239e9b70ca2 6799 return MEMORY_E;
wolfSSL 0:1239e9b70ca2 6800 }
wolfSSL 0:1239e9b70ca2 6801
wolfSSL 0:1239e9b70ca2 6802 XMEMCPY(rc->serialNumber, &buff[*idx], len);
wolfSSL 0:1239e9b70ca2 6803 rc->serialSz = len;
wolfSSL 0:1239e9b70ca2 6804
wolfSSL 0:1239e9b70ca2 6805 /* add to list */
wolfSSL 0:1239e9b70ca2 6806 rc->next = dcrl->certs;
wolfSSL 0:1239e9b70ca2 6807 dcrl->certs = rc;
wolfSSL 0:1239e9b70ca2 6808 dcrl->totalCerts++;
wolfSSL 0:1239e9b70ca2 6809
wolfSSL 0:1239e9b70ca2 6810 *idx += len;
wolfSSL 0:1239e9b70ca2 6811
wolfSSL 0:1239e9b70ca2 6812 /* get date */
wolfSSL 0:1239e9b70ca2 6813 b = buff[*idx];
wolfSSL 0:1239e9b70ca2 6814 *idx += 1;
wolfSSL 0:1239e9b70ca2 6815
wolfSSL 0:1239e9b70ca2 6816 if (b != ASN_UTC_TIME && b != ASN_GENERALIZED_TIME) {
wolfSSL 0:1239e9b70ca2 6817 CYASSL_MSG("Expecting Date");
wolfSSL 0:1239e9b70ca2 6818 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6819 }
wolfSSL 0:1239e9b70ca2 6820
wolfSSL 0:1239e9b70ca2 6821 if (GetLength(buff, idx, &len, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 6822 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6823
wolfSSL 0:1239e9b70ca2 6824 /* skip for now */
wolfSSL 0:1239e9b70ca2 6825 *idx += len;
wolfSSL 0:1239e9b70ca2 6826
wolfSSL 0:1239e9b70ca2 6827 if (*idx != end) /* skip extensions */
wolfSSL 0:1239e9b70ca2 6828 *idx = end;
wolfSSL 0:1239e9b70ca2 6829
wolfSSL 0:1239e9b70ca2 6830 return 0;
wolfSSL 0:1239e9b70ca2 6831 }
wolfSSL 0:1239e9b70ca2 6832
wolfSSL 0:1239e9b70ca2 6833
wolfSSL 0:1239e9b70ca2 6834 /* Get CRL Signature, 0 on success */
wolfSSL 0:1239e9b70ca2 6835 static int GetCRL_Signature(const byte* source, word32* idx, DecodedCRL* dcrl,
wolfSSL 0:1239e9b70ca2 6836 int maxIdx)
wolfSSL 0:1239e9b70ca2 6837 {
wolfSSL 0:1239e9b70ca2 6838 int length;
wolfSSL 0:1239e9b70ca2 6839 byte b;
wolfSSL 0:1239e9b70ca2 6840
wolfSSL 0:1239e9b70ca2 6841 CYASSL_ENTER("GetCRL_Signature");
wolfSSL 0:1239e9b70ca2 6842
wolfSSL 0:1239e9b70ca2 6843 b = source[*idx];
wolfSSL 0:1239e9b70ca2 6844 *idx += 1;
wolfSSL 0:1239e9b70ca2 6845 if (b != ASN_BIT_STRING)
wolfSSL 0:1239e9b70ca2 6846 return ASN_BITSTR_E;
wolfSSL 0:1239e9b70ca2 6847
wolfSSL 0:1239e9b70ca2 6848 if (GetLength(source, idx, &length, maxIdx) < 0)
wolfSSL 0:1239e9b70ca2 6849 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6850
wolfSSL 0:1239e9b70ca2 6851 dcrl->sigLength = length;
wolfSSL 0:1239e9b70ca2 6852
wolfSSL 0:1239e9b70ca2 6853 b = source[*idx];
wolfSSL 0:1239e9b70ca2 6854 *idx += 1;
wolfSSL 0:1239e9b70ca2 6855 if (b != 0x00)
wolfSSL 0:1239e9b70ca2 6856 return ASN_EXPECT_0_E;
wolfSSL 0:1239e9b70ca2 6857
wolfSSL 0:1239e9b70ca2 6858 dcrl->sigLength--;
wolfSSL 0:1239e9b70ca2 6859 dcrl->signature = (byte*)&source[*idx];
wolfSSL 0:1239e9b70ca2 6860
wolfSSL 0:1239e9b70ca2 6861 *idx += dcrl->sigLength;
wolfSSL 0:1239e9b70ca2 6862
wolfSSL 0:1239e9b70ca2 6863 return 0;
wolfSSL 0:1239e9b70ca2 6864 }
wolfSSL 0:1239e9b70ca2 6865
wolfSSL 0:1239e9b70ca2 6866
wolfSSL 0:1239e9b70ca2 6867 /* prase crl buffer into decoded state, 0 on success */
wolfSSL 0:1239e9b70ca2 6868 int ParseCRL(DecodedCRL* dcrl, const byte* buff, word32 sz, void* cm)
wolfSSL 0:1239e9b70ca2 6869 {
wolfSSL 0:1239e9b70ca2 6870 int version, len;
wolfSSL 0:1239e9b70ca2 6871 word32 oid, idx = 0;
wolfSSL 0:1239e9b70ca2 6872 Signer* ca = NULL;
wolfSSL 0:1239e9b70ca2 6873
wolfSSL 0:1239e9b70ca2 6874 CYASSL_MSG("ParseCRL");
wolfSSL 0:1239e9b70ca2 6875
wolfSSL 0:1239e9b70ca2 6876 /* raw crl hash */
wolfSSL 0:1239e9b70ca2 6877 /* hash here if needed for optimized comparisons
wolfSSL 0:1239e9b70ca2 6878 * Sha sha;
wolfSSL 0:1239e9b70ca2 6879 * InitSha(&sha);
wolfSSL 0:1239e9b70ca2 6880 * ShaUpdate(&sha, buff, sz);
wolfSSL 0:1239e9b70ca2 6881 * ShaFinal(&sha, dcrl->crlHash); */
wolfSSL 0:1239e9b70ca2 6882
wolfSSL 0:1239e9b70ca2 6883 if (GetSequence(buff, &idx, &len, sz) < 0)
wolfSSL 0:1239e9b70ca2 6884 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6885
wolfSSL 0:1239e9b70ca2 6886 dcrl->certBegin = idx;
wolfSSL 0:1239e9b70ca2 6887
wolfSSL 0:1239e9b70ca2 6888 if (GetSequence(buff, &idx, &len, sz) < 0)
wolfSSL 0:1239e9b70ca2 6889 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6890 dcrl->sigIndex = len + idx;
wolfSSL 0:1239e9b70ca2 6891
wolfSSL 0:1239e9b70ca2 6892 /* may have version */
wolfSSL 0:1239e9b70ca2 6893 if (buff[idx] == ASN_INTEGER) {
wolfSSL 0:1239e9b70ca2 6894 if (GetMyVersion(buff, &idx, &version) < 0)
wolfSSL 0:1239e9b70ca2 6895 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6896 }
wolfSSL 0:1239e9b70ca2 6897
wolfSSL 0:1239e9b70ca2 6898 if (GetAlgoId(buff, &idx, &oid, sz) < 0)
wolfSSL 0:1239e9b70ca2 6899 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6900
wolfSSL 0:1239e9b70ca2 6901 if (GetNameHash(buff, &idx, dcrl->issuerHash, sz) < 0)
wolfSSL 0:1239e9b70ca2 6902 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6903
wolfSSL 0:1239e9b70ca2 6904 if (GetBasicDate(buff, &idx, dcrl->lastDate, &dcrl->lastDateFormat, sz) < 0)
wolfSSL 0:1239e9b70ca2 6905 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6906
wolfSSL 0:1239e9b70ca2 6907 if (GetBasicDate(buff, &idx, dcrl->nextDate, &dcrl->nextDateFormat, sz) < 0)
wolfSSL 0:1239e9b70ca2 6908 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6909
wolfSSL 0:1239e9b70ca2 6910 if (!XVALIDATE_DATE(dcrl->nextDate, dcrl->nextDateFormat, AFTER)) {
wolfSSL 0:1239e9b70ca2 6911 CYASSL_MSG("CRL after date is no longer valid");
wolfSSL 0:1239e9b70ca2 6912 return ASN_AFTER_DATE_E;
wolfSSL 0:1239e9b70ca2 6913 }
wolfSSL 0:1239e9b70ca2 6914
wolfSSL 0:1239e9b70ca2 6915 if (idx != dcrl->sigIndex && buff[idx] != CRL_EXTENSIONS) {
wolfSSL 0:1239e9b70ca2 6916 if (GetSequence(buff, &idx, &len, sz) < 0)
wolfSSL 0:1239e9b70ca2 6917 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6918
wolfSSL 0:1239e9b70ca2 6919 len += idx;
wolfSSL 0:1239e9b70ca2 6920
wolfSSL 0:1239e9b70ca2 6921 while (idx < (word32)len) {
wolfSSL 0:1239e9b70ca2 6922 if (GetRevoked(buff, &idx, dcrl, sz) < 0)
wolfSSL 0:1239e9b70ca2 6923 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6924 }
wolfSSL 0:1239e9b70ca2 6925 }
wolfSSL 0:1239e9b70ca2 6926
wolfSSL 0:1239e9b70ca2 6927 if (idx != dcrl->sigIndex)
wolfSSL 0:1239e9b70ca2 6928 idx = dcrl->sigIndex; /* skip extensions */
wolfSSL 0:1239e9b70ca2 6929
wolfSSL 0:1239e9b70ca2 6930 if (GetAlgoId(buff, &idx, &dcrl->signatureOID, sz) < 0)
wolfSSL 0:1239e9b70ca2 6931 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6932
wolfSSL 0:1239e9b70ca2 6933 if (GetCRL_Signature(buff, &idx, dcrl, sz) < 0)
wolfSSL 0:1239e9b70ca2 6934 return ASN_PARSE_E;
wolfSSL 0:1239e9b70ca2 6935
wolfSSL 0:1239e9b70ca2 6936 /* openssl doesn't add skid by default for CRLs cause firefox chokes
wolfSSL 0:1239e9b70ca2 6937 we're not assuming it's available yet */
wolfSSL 0:1239e9b70ca2 6938 #if !defined(NO_SKID) && defined(CRL_SKID_READY)
wolfSSL 0:1239e9b70ca2 6939 if (dcrl->extAuthKeyIdSet)
wolfSSL 0:1239e9b70ca2 6940 ca = GetCA(cm, dcrl->extAuthKeyId);
wolfSSL 0:1239e9b70ca2 6941 if (ca == NULL)
wolfSSL 0:1239e9b70ca2 6942 ca = GetCAByName(cm, dcrl->issuerHash);
wolfSSL 0:1239e9b70ca2 6943 #else /* NO_SKID */
wolfSSL 0:1239e9b70ca2 6944 ca = GetCA(cm, dcrl->issuerHash);
wolfSSL 0:1239e9b70ca2 6945 #endif /* NO_SKID */
wolfSSL 0:1239e9b70ca2 6946 CYASSL_MSG("About to verify CRL signature");
wolfSSL 0:1239e9b70ca2 6947
wolfSSL 0:1239e9b70ca2 6948 if (ca) {
wolfSSL 0:1239e9b70ca2 6949 CYASSL_MSG("Found CRL issuer CA");
wolfSSL 0:1239e9b70ca2 6950 /* try to confirm/verify signature */
wolfSSL 0:1239e9b70ca2 6951 #ifndef IGNORE_KEY_EXTENSIONS
wolfSSL 0:1239e9b70ca2 6952 if ((ca->keyUsage & KEYUSE_CRL_SIGN) == 0) {
wolfSSL 0:1239e9b70ca2 6953 CYASSL_MSG("CA cannot sign CRLs");
wolfSSL 0:1239e9b70ca2 6954 return ASN_CRL_NO_SIGNER_E;
wolfSSL 0:1239e9b70ca2 6955 }
wolfSSL 0:1239e9b70ca2 6956 #endif /* IGNORE_KEY_EXTENSIONS */
wolfSSL 0:1239e9b70ca2 6957 if (!ConfirmSignature(buff + dcrl->certBegin,
wolfSSL 0:1239e9b70ca2 6958 dcrl->sigIndex - dcrl->certBegin,
wolfSSL 0:1239e9b70ca2 6959 ca->publicKey, ca->pubKeySize, ca->keyOID,
wolfSSL 0:1239e9b70ca2 6960 dcrl->signature, dcrl->sigLength, dcrl->signatureOID, NULL)) {
wolfSSL 0:1239e9b70ca2 6961 CYASSL_MSG("CRL Confirm signature failed");
wolfSSL 0:1239e9b70ca2 6962 return ASN_CRL_CONFIRM_E;
wolfSSL 0:1239e9b70ca2 6963 }
wolfSSL 0:1239e9b70ca2 6964 }
wolfSSL 0:1239e9b70ca2 6965 else {
wolfSSL 0:1239e9b70ca2 6966 CYASSL_MSG("Did NOT find CRL issuer CA");
wolfSSL 0:1239e9b70ca2 6967 return ASN_CRL_NO_SIGNER_E;
wolfSSL 0:1239e9b70ca2 6968 }
wolfSSL 0:1239e9b70ca2 6969
wolfSSL 0:1239e9b70ca2 6970 return 0;
wolfSSL 0:1239e9b70ca2 6971 }
wolfSSL 0:1239e9b70ca2 6972
wolfSSL 0:1239e9b70ca2 6973 #endif /* HAVE_CRL */
wolfSSL 0:1239e9b70ca2 6974 #endif
wolfSSL 0:1239e9b70ca2 6975
wolfSSL 0:1239e9b70ca2 6976 #ifdef CYASSL_SEP
wolfSSL 0:1239e9b70ca2 6977
wolfSSL 0:1239e9b70ca2 6978
wolfSSL 0:1239e9b70ca2 6979
wolfSSL 0:1239e9b70ca2 6980 #endif /* CYASSL_SEP */
wolfSSL 0:1239e9b70ca2 6981
wolfSSL 0:1239e9b70ca2 6982