mbed-os - mbed os with nrf51 internal bandgap enabled to re…

Users » elessair » Code » mbed-os

mbed os with nrf51 internal bandgap enabled to read battery level

Dependents: BLE_file_test BLE_Blink ExternalEncoder

features/mbedtls/src/x509_crt.c@0:f269e3021894, 2016-10-23 (annotated)

Committer:: elessair
Date:: Sun Oct 23 15:10:02 2016 +0000
Revision:: 0:f269e3021894

Initial commit

Who changed what in which revision?

User	Revision	Line number	New contents of line
elessair	0:f269e3021894	1	/*
elessair	0:f269e3021894	2	* X.509 certificate parsing and verification
elessair	0:f269e3021894	3	*
elessair	0:f269e3021894	4	* Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
elessair	0:f269e3021894	5	* SPDX-License-Identifier: Apache-2.0
elessair	0:f269e3021894	6	*
elessair	0:f269e3021894	7	* Licensed under the Apache License, Version 2.0 (the "License"); you may
elessair	0:f269e3021894	8	* not use this file except in compliance with the License.
elessair	0:f269e3021894	9	* You may obtain a copy of the License at
elessair	0:f269e3021894	10	*
elessair	0:f269e3021894	11	* http://www.apache.org/licenses/LICENSE-2.0
elessair	0:f269e3021894	12	*
elessair	0:f269e3021894	13	* Unless required by applicable law or agreed to in writing, software
elessair	0:f269e3021894	14	* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
elessair	0:f269e3021894	15	* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
elessair	0:f269e3021894	16	* See the License for the specific language governing permissions and
elessair	0:f269e3021894	17	* limitations under the License.
elessair	0:f269e3021894	18	*
elessair	0:f269e3021894	19	* This file is part of mbed TLS (https://tls.mbed.org)
elessair	0:f269e3021894	20	*/
elessair	0:f269e3021894	21	/*
elessair	0:f269e3021894	22	* The ITU-T X.509 standard defines a certificate format for PKI.
elessair	0:f269e3021894	23	*
elessair	0:f269e3021894	24	* http://www.ietf.org/rfc/rfc5280.txt (Certificates and CRLs)
elessair	0:f269e3021894	25	* http://www.ietf.org/rfc/rfc3279.txt (Alg IDs for CRLs)
elessair	0:f269e3021894	26	* http://www.ietf.org/rfc/rfc2986.txt (CSRs, aka PKCS#10)
elessair	0:f269e3021894	27	*
elessair	0:f269e3021894	28	* http://www.itu.int/ITU-T/studygroups/com17/languages/X.680-0207.pdf
elessair	0:f269e3021894	29	* http://www.itu.int/ITU-T/studygroups/com17/languages/X.690-0207.pdf
elessair	0:f269e3021894	30	*/
elessair	0:f269e3021894	31
elessair	0:f269e3021894	32	#if !defined(MBEDTLS_CONFIG_FILE)
elessair	0:f269e3021894	33	#include "mbedtls/config.h"
elessair	0:f269e3021894	34	#else
elessair	0:f269e3021894	35	#include MBEDTLS_CONFIG_FILE
elessair	0:f269e3021894	36	#endif
elessair	0:f269e3021894	37
elessair	0:f269e3021894	38	#if defined(MBEDTLS_X509_CRT_PARSE_C)
elessair	0:f269e3021894	39
elessair	0:f269e3021894	40	#include "mbedtls/x509_crt.h"
elessair	0:f269e3021894	41	#include "mbedtls/oid.h"
elessair	0:f269e3021894	42
elessair	0:f269e3021894	43	#include <stdio.h>
elessair	0:f269e3021894	44	#include <string.h>
elessair	0:f269e3021894	45
elessair	0:f269e3021894	46	#if defined(MBEDTLS_PEM_PARSE_C)
elessair	0:f269e3021894	47	#include "mbedtls/pem.h"
elessair	0:f269e3021894	48	#endif
elessair	0:f269e3021894	49
elessair	0:f269e3021894	50	#if defined(MBEDTLS_PLATFORM_C)
elessair	0:f269e3021894	51	#include "mbedtls/platform.h"
elessair	0:f269e3021894	52	#else
elessair	0:f269e3021894	53	#include <stdlib.h>
elessair	0:f269e3021894	54	#define mbedtls_free free
elessair	0:f269e3021894	55	#define mbedtls_calloc calloc
elessair	0:f269e3021894	56	#define mbedtls_snprintf snprintf
elessair	0:f269e3021894	57	#endif
elessair	0:f269e3021894	58
elessair	0:f269e3021894	59	#if defined(MBEDTLS_THREADING_C)
elessair	0:f269e3021894	60	#include "mbedtls/threading.h"
elessair	0:f269e3021894	61	#endif
elessair	0:f269e3021894	62
elessair	0:f269e3021894	63	#if defined(_WIN32) && !defined(EFIX64) && !defined(EFI32)
elessair	0:f269e3021894	64	#include <windows.h>
elessair	0:f269e3021894	65	#else
elessair	0:f269e3021894	66	#include <time.h>
elessair	0:f269e3021894	67	#endif
elessair	0:f269e3021894	68
elessair	0:f269e3021894	69	#if defined(MBEDTLS_FS_IO)
elessair	0:f269e3021894	70	#include <stdio.h>
elessair	0:f269e3021894	71	#if !defined(_WIN32) \|\| defined(EFIX64) \|\| defined(EFI32)
elessair	0:f269e3021894	72	#include <sys/types.h>
elessair	0:f269e3021894	73	#include <sys/stat.h>
elessair	0:f269e3021894	74	#include <dirent.h>
elessair	0:f269e3021894	75	#endif /* !_WIN32 \|\| EFIX64 \|\| EFI32 */
elessair	0:f269e3021894	76	#endif
elessair	0:f269e3021894	77
elessair	0:f269e3021894	78	/* Implementation that should never be optimized out by the compiler */
elessair	0:f269e3021894	79	static void mbedtls_zeroize( void *v, size_t n ) {
elessair	0:f269e3021894	80	volatile unsigned char p = v; while( n-- ) p++ = 0;
elessair	0:f269e3021894	81	}
elessair	0:f269e3021894	82
elessair	0:f269e3021894	83	/*
elessair	0:f269e3021894	84	* Default profile
elessair	0:f269e3021894	85	*/
elessair	0:f269e3021894	86	const mbedtls_x509_crt_profile mbedtls_x509_crt_profile_default =
elessair	0:f269e3021894	87	{
elessair	0:f269e3021894	88	/* Hashes from SHA-1 and above */
elessair	0:f269e3021894	89	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA1 ) \|
elessair	0:f269e3021894	90	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_RIPEMD160 ) \|
elessair	0:f269e3021894	91	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA224 ) \|
elessair	0:f269e3021894	92	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA256 ) \|
elessair	0:f269e3021894	93	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA384 ) \|
elessair	0:f269e3021894	94	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA512 ),
elessair	0:f269e3021894	95	0xFFFFFFF, /* Any PK alg */
elessair	0:f269e3021894	96	0xFFFFFFF, /* Any curve */
elessair	0:f269e3021894	97	2048,
elessair	0:f269e3021894	98	};
elessair	0:f269e3021894	99
elessair	0:f269e3021894	100	/*
elessair	0:f269e3021894	101	* Next-default profile
elessair	0:f269e3021894	102	*/
elessair	0:f269e3021894	103	const mbedtls_x509_crt_profile mbedtls_x509_crt_profile_next =
elessair	0:f269e3021894	104	{
elessair	0:f269e3021894	105	/* Hashes from SHA-256 and above */
elessair	0:f269e3021894	106	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA256 ) \|
elessair	0:f269e3021894	107	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA384 ) \|
elessair	0:f269e3021894	108	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA512 ),
elessair	0:f269e3021894	109	0xFFFFFFF, /* Any PK alg */
elessair	0:f269e3021894	110	#if defined(MBEDTLS_ECP_C)
elessair	0:f269e3021894	111	/* Curves at or above 128-bit security level */
elessair	0:f269e3021894	112	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_SECP256R1 ) \|
elessair	0:f269e3021894	113	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_SECP384R1 ) \|
elessair	0:f269e3021894	114	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_SECP521R1 ) \|
elessair	0:f269e3021894	115	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_BP256R1 ) \|
elessair	0:f269e3021894	116	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_BP384R1 ) \|
elessair	0:f269e3021894	117	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_BP512R1 ) \|
elessair	0:f269e3021894	118	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_SECP256K1 ),
elessair	0:f269e3021894	119	#else
elessair	0:f269e3021894	120	0,
elessair	0:f269e3021894	121	#endif
elessair	0:f269e3021894	122	2048,
elessair	0:f269e3021894	123	};
elessair	0:f269e3021894	124
elessair	0:f269e3021894	125	/*
elessair	0:f269e3021894	126	* NSA Suite B Profile
elessair	0:f269e3021894	127	*/
elessair	0:f269e3021894	128	const mbedtls_x509_crt_profile mbedtls_x509_crt_profile_suiteb =
elessair	0:f269e3021894	129	{
elessair	0:f269e3021894	130	/* Only SHA-256 and 384 */
elessair	0:f269e3021894	131	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA256 ) \|
elessair	0:f269e3021894	132	MBEDTLS_X509_ID_FLAG( MBEDTLS_MD_SHA384 ),
elessair	0:f269e3021894	133	/* Only ECDSA */
elessair	0:f269e3021894	134	MBEDTLS_X509_ID_FLAG( MBEDTLS_PK_ECDSA ),
elessair	0:f269e3021894	135	#if defined(MBEDTLS_ECP_C)
elessair	0:f269e3021894	136	/* Only NIST P-256 and P-384 */
elessair	0:f269e3021894	137	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_SECP256R1 ) \|
elessair	0:f269e3021894	138	MBEDTLS_X509_ID_FLAG( MBEDTLS_ECP_DP_SECP384R1 ),
elessair	0:f269e3021894	139	#else
elessair	0:f269e3021894	140	0,
elessair	0:f269e3021894	141	#endif
elessair	0:f269e3021894	142	0,
elessair	0:f269e3021894	143	};
elessair	0:f269e3021894	144
elessair	0:f269e3021894	145	/*
elessair	0:f269e3021894	146	* Check md_alg against profile
elessair	0:f269e3021894	147	* Return 0 if md_alg acceptable for this profile, -1 otherwise
elessair	0:f269e3021894	148	*/
elessair	0:f269e3021894	149	static int x509_profile_check_md_alg( const mbedtls_x509_crt_profile *profile,
elessair	0:f269e3021894	150	mbedtls_md_type_t md_alg )
elessair	0:f269e3021894	151	{
elessair	0:f269e3021894	152	if( ( profile->allowed_mds & MBEDTLS_X509_ID_FLAG( md_alg ) ) != 0 )
elessair	0:f269e3021894	153	return( 0 );
elessair	0:f269e3021894	154
elessair	0:f269e3021894	155	return( -1 );
elessair	0:f269e3021894	156	}
elessair	0:f269e3021894	157
elessair	0:f269e3021894	158	/*
elessair	0:f269e3021894	159	* Check pk_alg against profile
elessair	0:f269e3021894	160	* Return 0 if pk_alg acceptable for this profile, -1 otherwise
elessair	0:f269e3021894	161	*/
elessair	0:f269e3021894	162	static int x509_profile_check_pk_alg( const mbedtls_x509_crt_profile *profile,
elessair	0:f269e3021894	163	mbedtls_pk_type_t pk_alg )
elessair	0:f269e3021894	164	{
elessair	0:f269e3021894	165	if( ( profile->allowed_pks & MBEDTLS_X509_ID_FLAG( pk_alg ) ) != 0 )
elessair	0:f269e3021894	166	return( 0 );
elessair	0:f269e3021894	167
elessair	0:f269e3021894	168	return( -1 );
elessair	0:f269e3021894	169	}
elessair	0:f269e3021894	170
elessair	0:f269e3021894	171	/*
elessair	0:f269e3021894	172	* Check key against profile
elessair	0:f269e3021894	173	* Return 0 if pk_alg acceptable for this profile, -1 otherwise
elessair	0:f269e3021894	174	*/
elessair	0:f269e3021894	175	static int x509_profile_check_key( const mbedtls_x509_crt_profile *profile,
elessair	0:f269e3021894	176	mbedtls_pk_type_t pk_alg,
elessair	0:f269e3021894	177	const mbedtls_pk_context *pk )
elessair	0:f269e3021894	178	{
elessair	0:f269e3021894	179	#if defined(MBEDTLS_RSA_C)
elessair	0:f269e3021894	180	if( pk_alg == MBEDTLS_PK_RSA \|\| pk_alg == MBEDTLS_PK_RSASSA_PSS )
elessair	0:f269e3021894	181	{
elessair	0:f269e3021894	182	if( mbedtls_pk_get_bitlen( pk ) >= profile->rsa_min_bitlen )
elessair	0:f269e3021894	183	return( 0 );
elessair	0:f269e3021894	184
elessair	0:f269e3021894	185	return( -1 );
elessair	0:f269e3021894	186	}
elessair	0:f269e3021894	187	#endif
elessair	0:f269e3021894	188
elessair	0:f269e3021894	189	#if defined(MBEDTLS_ECP_C)
elessair	0:f269e3021894	190	if( pk_alg == MBEDTLS_PK_ECDSA \|\|
elessair	0:f269e3021894	191	pk_alg == MBEDTLS_PK_ECKEY \|\|
elessair	0:f269e3021894	192	pk_alg == MBEDTLS_PK_ECKEY_DH )
elessair	0:f269e3021894	193	{
elessair	0:f269e3021894	194	mbedtls_ecp_group_id gid = mbedtls_pk_ec( *pk )->grp.id;
elessair	0:f269e3021894	195
elessair	0:f269e3021894	196	if( ( profile->allowed_curves & MBEDTLS_X509_ID_FLAG( gid ) ) != 0 )
elessair	0:f269e3021894	197	return( 0 );
elessair	0:f269e3021894	198
elessair	0:f269e3021894	199	return( -1 );
elessair	0:f269e3021894	200	}
elessair	0:f269e3021894	201	#endif
elessair	0:f269e3021894	202
elessair	0:f269e3021894	203	return( -1 );
elessair	0:f269e3021894	204	}
elessair	0:f269e3021894	205
elessair	0:f269e3021894	206	/*
elessair	0:f269e3021894	207	* Version ::= INTEGER { v1(0), v2(1), v3(2) }
elessair	0:f269e3021894	208	*/
elessair	0:f269e3021894	209	static int x509_get_version( unsigned char **p,
elessair	0:f269e3021894	210	const unsigned char *end,
elessair	0:f269e3021894	211	int *ver )
elessair	0:f269e3021894	212	{
elessair	0:f269e3021894	213	int ret;
elessair	0:f269e3021894	214	size_t len;
elessair	0:f269e3021894	215
elessair	0:f269e3021894	216	if( ( ret = mbedtls_asn1_get_tag( p, end, &len,
elessair	0:f269e3021894	217	MBEDTLS_ASN1_CONTEXT_SPECIFIC \| MBEDTLS_ASN1_CONSTRUCTED \| 0 ) ) != 0 )
elessair	0:f269e3021894	218	{
elessair	0:f269e3021894	219	if( ret == MBEDTLS_ERR_ASN1_UNEXPECTED_TAG )
elessair	0:f269e3021894	220	{
elessair	0:f269e3021894	221	*ver = 0;
elessair	0:f269e3021894	222	return( 0 );
elessair	0:f269e3021894	223	}
elessair	0:f269e3021894	224
elessair	0:f269e3021894	225	return( ret );
elessair	0:f269e3021894	226	}
elessair	0:f269e3021894	227
elessair	0:f269e3021894	228	end = *p + len;
elessair	0:f269e3021894	229
elessair	0:f269e3021894	230	if( ( ret = mbedtls_asn1_get_int( p, end, ver ) ) != 0 )
elessair	0:f269e3021894	231	return( MBEDTLS_ERR_X509_INVALID_VERSION + ret );
elessair	0:f269e3021894	232
elessair	0:f269e3021894	233	if( *p != end )
elessair	0:f269e3021894	234	return( MBEDTLS_ERR_X509_INVALID_VERSION +
elessair	0:f269e3021894	235	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	236
elessair	0:f269e3021894	237	return( 0 );
elessair	0:f269e3021894	238	}
elessair	0:f269e3021894	239
elessair	0:f269e3021894	240	/*
elessair	0:f269e3021894	241	* Validity ::= SEQUENCE {
elessair	0:f269e3021894	242	* notBefore Time,
elessair	0:f269e3021894	243	* notAfter Time }
elessair	0:f269e3021894	244	*/
elessair	0:f269e3021894	245	static int x509_get_dates( unsigned char **p,
elessair	0:f269e3021894	246	const unsigned char *end,
elessair	0:f269e3021894	247	mbedtls_x509_time *from,
elessair	0:f269e3021894	248	mbedtls_x509_time *to )
elessair	0:f269e3021894	249	{
elessair	0:f269e3021894	250	int ret;
elessair	0:f269e3021894	251	size_t len;
elessair	0:f269e3021894	252
elessair	0:f269e3021894	253	if( ( ret = mbedtls_asn1_get_tag( p, end, &len,
elessair	0:f269e3021894	254	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	255	return( MBEDTLS_ERR_X509_INVALID_DATE + ret );
elessair	0:f269e3021894	256
elessair	0:f269e3021894	257	end = *p + len;
elessair	0:f269e3021894	258
elessair	0:f269e3021894	259	if( ( ret = mbedtls_x509_get_time( p, end, from ) ) != 0 )
elessair	0:f269e3021894	260	return( ret );
elessair	0:f269e3021894	261
elessair	0:f269e3021894	262	if( ( ret = mbedtls_x509_get_time( p, end, to ) ) != 0 )
elessair	0:f269e3021894	263	return( ret );
elessair	0:f269e3021894	264
elessair	0:f269e3021894	265	if( *p != end )
elessair	0:f269e3021894	266	return( MBEDTLS_ERR_X509_INVALID_DATE +
elessair	0:f269e3021894	267	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	268
elessair	0:f269e3021894	269	return( 0 );
elessair	0:f269e3021894	270	}
elessair	0:f269e3021894	271
elessair	0:f269e3021894	272	/*
elessair	0:f269e3021894	273	* X.509 v2/v3 unique identifier (not parsed)
elessair	0:f269e3021894	274	*/
elessair	0:f269e3021894	275	static int x509_get_uid( unsigned char **p,
elessair	0:f269e3021894	276	const unsigned char *end,
elessair	0:f269e3021894	277	mbedtls_x509_buf *uid, int n )
elessair	0:f269e3021894	278	{
elessair	0:f269e3021894	279	int ret;
elessair	0:f269e3021894	280
elessair	0:f269e3021894	281	if( *p == end )
elessair	0:f269e3021894	282	return( 0 );
elessair	0:f269e3021894	283
elessair	0:f269e3021894	284	uid->tag = **p;
elessair	0:f269e3021894	285
elessair	0:f269e3021894	286	if( ( ret = mbedtls_asn1_get_tag( p, end, &uid->len,
elessair	0:f269e3021894	287	MBEDTLS_ASN1_CONTEXT_SPECIFIC \| MBEDTLS_ASN1_CONSTRUCTED \| n ) ) != 0 )
elessair	0:f269e3021894	288	{
elessair	0:f269e3021894	289	if( ret == MBEDTLS_ERR_ASN1_UNEXPECTED_TAG )
elessair	0:f269e3021894	290	return( 0 );
elessair	0:f269e3021894	291
elessair	0:f269e3021894	292	return( ret );
elessair	0:f269e3021894	293	}
elessair	0:f269e3021894	294
elessair	0:f269e3021894	295	uid->p = *p;
elessair	0:f269e3021894	296	*p += uid->len;
elessair	0:f269e3021894	297
elessair	0:f269e3021894	298	return( 0 );
elessair	0:f269e3021894	299	}
elessair	0:f269e3021894	300
elessair	0:f269e3021894	301	static int x509_get_basic_constraints( unsigned char **p,
elessair	0:f269e3021894	302	const unsigned char *end,
elessair	0:f269e3021894	303	int *ca_istrue,
elessair	0:f269e3021894	304	int *max_pathlen )
elessair	0:f269e3021894	305	{
elessair	0:f269e3021894	306	int ret;
elessair	0:f269e3021894	307	size_t len;
elessair	0:f269e3021894	308
elessair	0:f269e3021894	309	/*
elessair	0:f269e3021894	310	* BasicConstraints ::= SEQUENCE {
elessair	0:f269e3021894	311	* cA BOOLEAN DEFAULT FALSE,
elessair	0:f269e3021894	312	* pathLenConstraint INTEGER (0..MAX) OPTIONAL }
elessair	0:f269e3021894	313	*/
elessair	0:f269e3021894	314	ca_istrue = 0; / DEFAULT FALSE */
elessair	0:f269e3021894	315	max_pathlen = 0; / endless */
elessair	0:f269e3021894	316
elessair	0:f269e3021894	317	if( ( ret = mbedtls_asn1_get_tag( p, end, &len,
elessair	0:f269e3021894	318	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	319	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	320
elessair	0:f269e3021894	321	if( *p == end )
elessair	0:f269e3021894	322	return( 0 );
elessair	0:f269e3021894	323
elessair	0:f269e3021894	324	if( ( ret = mbedtls_asn1_get_bool( p, end, ca_istrue ) ) != 0 )
elessair	0:f269e3021894	325	{
elessair	0:f269e3021894	326	if( ret == MBEDTLS_ERR_ASN1_UNEXPECTED_TAG )
elessair	0:f269e3021894	327	ret = mbedtls_asn1_get_int( p, end, ca_istrue );
elessair	0:f269e3021894	328
elessair	0:f269e3021894	329	if( ret != 0 )
elessair	0:f269e3021894	330	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	331
elessair	0:f269e3021894	332	if( *ca_istrue != 0 )
elessair	0:f269e3021894	333	*ca_istrue = 1;
elessair	0:f269e3021894	334	}
elessair	0:f269e3021894	335
elessair	0:f269e3021894	336	if( *p == end )
elessair	0:f269e3021894	337	return( 0 );
elessair	0:f269e3021894	338
elessair	0:f269e3021894	339	if( ( ret = mbedtls_asn1_get_int( p, end, max_pathlen ) ) != 0 )
elessair	0:f269e3021894	340	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	341
elessair	0:f269e3021894	342	if( *p != end )
elessair	0:f269e3021894	343	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	344	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	345
elessair	0:f269e3021894	346	(*max_pathlen)++;
elessair	0:f269e3021894	347
elessair	0:f269e3021894	348	return( 0 );
elessair	0:f269e3021894	349	}
elessair	0:f269e3021894	350
elessair	0:f269e3021894	351	static int x509_get_ns_cert_type( unsigned char **p,
elessair	0:f269e3021894	352	const unsigned char *end,
elessair	0:f269e3021894	353	unsigned char *ns_cert_type)
elessair	0:f269e3021894	354	{
elessair	0:f269e3021894	355	int ret;
elessair	0:f269e3021894	356	mbedtls_x509_bitstring bs = { 0, 0, NULL };
elessair	0:f269e3021894	357
elessair	0:f269e3021894	358	if( ( ret = mbedtls_asn1_get_bitstring( p, end, &bs ) ) != 0 )
elessair	0:f269e3021894	359	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	360
elessair	0:f269e3021894	361	if( bs.len != 1 )
elessair	0:f269e3021894	362	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	363	MBEDTLS_ERR_ASN1_INVALID_LENGTH );
elessair	0:f269e3021894	364
elessair	0:f269e3021894	365	/* Get actual bitstring */
elessair	0:f269e3021894	366	ns_cert_type = bs.p;
elessair	0:f269e3021894	367	return( 0 );
elessair	0:f269e3021894	368	}
elessair	0:f269e3021894	369
elessair	0:f269e3021894	370	static int x509_get_key_usage( unsigned char **p,
elessair	0:f269e3021894	371	const unsigned char *end,
elessair	0:f269e3021894	372	unsigned int *key_usage)
elessair	0:f269e3021894	373	{
elessair	0:f269e3021894	374	int ret;
elessair	0:f269e3021894	375	size_t i;
elessair	0:f269e3021894	376	mbedtls_x509_bitstring bs = { 0, 0, NULL };
elessair	0:f269e3021894	377
elessair	0:f269e3021894	378	if( ( ret = mbedtls_asn1_get_bitstring( p, end, &bs ) ) != 0 )
elessair	0:f269e3021894	379	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	380
elessair	0:f269e3021894	381	if( bs.len < 1 )
elessair	0:f269e3021894	382	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	383	MBEDTLS_ERR_ASN1_INVALID_LENGTH );
elessair	0:f269e3021894	384
elessair	0:f269e3021894	385	/* Get actual bitstring */
elessair	0:f269e3021894	386	*key_usage = 0;
elessair	0:f269e3021894	387	for( i = 0; i < bs.len && i < sizeof( unsigned int ); i++ )
elessair	0:f269e3021894	388	{
elessair	0:f269e3021894	389	key_usage \|= (unsigned int) bs.p[i] << (8i);
elessair	0:f269e3021894	390	}
elessair	0:f269e3021894	391
elessair	0:f269e3021894	392	return( 0 );
elessair	0:f269e3021894	393	}
elessair	0:f269e3021894	394
elessair	0:f269e3021894	395	/*
elessair	0:f269e3021894	396	* ExtKeyUsageSyntax ::= SEQUENCE SIZE (1..MAX) OF KeyPurposeId
elessair	0:f269e3021894	397	*
elessair	0:f269e3021894	398	* KeyPurposeId ::= OBJECT IDENTIFIER
elessair	0:f269e3021894	399	*/
elessair	0:f269e3021894	400	static int x509_get_ext_key_usage( unsigned char **p,
elessair	0:f269e3021894	401	const unsigned char *end,
elessair	0:f269e3021894	402	mbedtls_x509_sequence *ext_key_usage)
elessair	0:f269e3021894	403	{
elessair	0:f269e3021894	404	int ret;
elessair	0:f269e3021894	405
elessair	0:f269e3021894	406	if( ( ret = mbedtls_asn1_get_sequence_of( p, end, ext_key_usage, MBEDTLS_ASN1_OID ) ) != 0 )
elessair	0:f269e3021894	407	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	408
elessair	0:f269e3021894	409	/* Sequence length must be >= 1 */
elessair	0:f269e3021894	410	if( ext_key_usage->buf.p == NULL )
elessair	0:f269e3021894	411	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	412	MBEDTLS_ERR_ASN1_INVALID_LENGTH );
elessair	0:f269e3021894	413
elessair	0:f269e3021894	414	return( 0 );
elessair	0:f269e3021894	415	}
elessair	0:f269e3021894	416
elessair	0:f269e3021894	417	/*
elessair	0:f269e3021894	418	* SubjectAltName ::= GeneralNames
elessair	0:f269e3021894	419	*
elessair	0:f269e3021894	420	* GeneralNames ::= SEQUENCE SIZE (1..MAX) OF GeneralName
elessair	0:f269e3021894	421	*
elessair	0:f269e3021894	422	* GeneralName ::= CHOICE {
elessair	0:f269e3021894	423	* otherName [0] OtherName,
elessair	0:f269e3021894	424	* rfc822Name [1] IA5String,
elessair	0:f269e3021894	425	* dNSName [2] IA5String,
elessair	0:f269e3021894	426	* x400Address [3] ORAddress,
elessair	0:f269e3021894	427	* directoryName [4] Name,
elessair	0:f269e3021894	428	* ediPartyName [5] EDIPartyName,
elessair	0:f269e3021894	429	* uniformResourceIdentifier [6] IA5String,
elessair	0:f269e3021894	430	* iPAddress [7] OCTET STRING,
elessair	0:f269e3021894	431	* registeredID [8] OBJECT IDENTIFIER }
elessair	0:f269e3021894	432	*
elessair	0:f269e3021894	433	* OtherName ::= SEQUENCE {
elessair	0:f269e3021894	434	* type-id OBJECT IDENTIFIER,
elessair	0:f269e3021894	435	* value [0] EXPLICIT ANY DEFINED BY type-id }
elessair	0:f269e3021894	436	*
elessair	0:f269e3021894	437	* EDIPartyName ::= SEQUENCE {
elessair	0:f269e3021894	438	* nameAssigner [0] DirectoryString OPTIONAL,
elessair	0:f269e3021894	439	* partyName [1] DirectoryString }
elessair	0:f269e3021894	440	*
elessair	0:f269e3021894	441	* NOTE: we only parse and use dNSName at this point.
elessair	0:f269e3021894	442	*/
elessair	0:f269e3021894	443	static int x509_get_subject_alt_name( unsigned char **p,
elessair	0:f269e3021894	444	const unsigned char *end,
elessair	0:f269e3021894	445	mbedtls_x509_sequence *subject_alt_name )
elessair	0:f269e3021894	446	{
elessair	0:f269e3021894	447	int ret;
elessair	0:f269e3021894	448	size_t len, tag_len;
elessair	0:f269e3021894	449	mbedtls_asn1_buf *buf;
elessair	0:f269e3021894	450	unsigned char tag;
elessair	0:f269e3021894	451	mbedtls_asn1_sequence *cur = subject_alt_name;
elessair	0:f269e3021894	452
elessair	0:f269e3021894	453	/* Get main sequence tag */
elessair	0:f269e3021894	454	if( ( ret = mbedtls_asn1_get_tag( p, end, &len,
elessair	0:f269e3021894	455	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	456	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	457
elessair	0:f269e3021894	458	if( *p + len != end )
elessair	0:f269e3021894	459	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	460	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	461
elessair	0:f269e3021894	462	while( *p < end )
elessair	0:f269e3021894	463	{
elessair	0:f269e3021894	464	if( ( end - *p ) < 1 )
elessair	0:f269e3021894	465	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	466	MBEDTLS_ERR_ASN1_OUT_OF_DATA );
elessair	0:f269e3021894	467
elessair	0:f269e3021894	468	tag = **p;
elessair	0:f269e3021894	469	(*p)++;
elessair	0:f269e3021894	470	if( ( ret = mbedtls_asn1_get_len( p, end, &tag_len ) ) != 0 )
elessair	0:f269e3021894	471	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	472
elessair	0:f269e3021894	473	if( ( tag & MBEDTLS_ASN1_CONTEXT_SPECIFIC ) != MBEDTLS_ASN1_CONTEXT_SPECIFIC )
elessair	0:f269e3021894	474	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	475	MBEDTLS_ERR_ASN1_UNEXPECTED_TAG );
elessair	0:f269e3021894	476
elessair	0:f269e3021894	477	/* Skip everything but DNS name */
elessair	0:f269e3021894	478	if( tag != ( MBEDTLS_ASN1_CONTEXT_SPECIFIC \| 2 ) )
elessair	0:f269e3021894	479	{
elessair	0:f269e3021894	480	*p += tag_len;
elessair	0:f269e3021894	481	continue;
elessair	0:f269e3021894	482	}
elessair	0:f269e3021894	483
elessair	0:f269e3021894	484	/* Allocate and assign next pointer */
elessair	0:f269e3021894	485	if( cur->buf.p != NULL )
elessair	0:f269e3021894	486	{
elessair	0:f269e3021894	487	if( cur->next != NULL )
elessair	0:f269e3021894	488	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS );
elessair	0:f269e3021894	489
elessair	0:f269e3021894	490	cur->next = mbedtls_calloc( 1, sizeof( mbedtls_asn1_sequence ) );
elessair	0:f269e3021894	491
elessair	0:f269e3021894	492	if( cur->next == NULL )
elessair	0:f269e3021894	493	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	494	MBEDTLS_ERR_ASN1_ALLOC_FAILED );
elessair	0:f269e3021894	495
elessair	0:f269e3021894	496	cur = cur->next;
elessair	0:f269e3021894	497	}
elessair	0:f269e3021894	498
elessair	0:f269e3021894	499	buf = &(cur->buf);
elessair	0:f269e3021894	500	buf->tag = tag;
elessair	0:f269e3021894	501	buf->p = *p;
elessair	0:f269e3021894	502	buf->len = tag_len;
elessair	0:f269e3021894	503	*p += buf->len;
elessair	0:f269e3021894	504	}
elessair	0:f269e3021894	505
elessair	0:f269e3021894	506	/* Set final sequence entry's next pointer to NULL */
elessair	0:f269e3021894	507	cur->next = NULL;
elessair	0:f269e3021894	508
elessair	0:f269e3021894	509	if( *p != end )
elessair	0:f269e3021894	510	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	511	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	512
elessair	0:f269e3021894	513	return( 0 );
elessair	0:f269e3021894	514	}
elessair	0:f269e3021894	515
elessair	0:f269e3021894	516	/*
elessair	0:f269e3021894	517	* X.509 v3 extensions
elessair	0:f269e3021894	518	*
elessair	0:f269e3021894	519	*/
elessair	0:f269e3021894	520	static int x509_get_crt_ext( unsigned char **p,
elessair	0:f269e3021894	521	const unsigned char *end,
elessair	0:f269e3021894	522	mbedtls_x509_crt *crt )
elessair	0:f269e3021894	523	{
elessair	0:f269e3021894	524	int ret;
elessair	0:f269e3021894	525	size_t len;
elessair	0:f269e3021894	526	unsigned char end_ext_data, end_ext_octet;
elessair	0:f269e3021894	527
elessair	0:f269e3021894	528	if( ( ret = mbedtls_x509_get_ext( p, end, &crt->v3_ext, 3 ) ) != 0 )
elessair	0:f269e3021894	529	{
elessair	0:f269e3021894	530	if( ret == MBEDTLS_ERR_ASN1_UNEXPECTED_TAG )
elessair	0:f269e3021894	531	return( 0 );
elessair	0:f269e3021894	532
elessair	0:f269e3021894	533	return( ret );
elessair	0:f269e3021894	534	}
elessair	0:f269e3021894	535
elessair	0:f269e3021894	536	while( *p < end )
elessair	0:f269e3021894	537	{
elessair	0:f269e3021894	538	/*
elessair	0:f269e3021894	539	* Extension ::= SEQUENCE {
elessair	0:f269e3021894	540	* extnID OBJECT IDENTIFIER,
elessair	0:f269e3021894	541	* critical BOOLEAN DEFAULT FALSE,
elessair	0:f269e3021894	542	* extnValue OCTET STRING }
elessair	0:f269e3021894	543	*/
elessair	0:f269e3021894	544	mbedtls_x509_buf extn_oid = {0, 0, NULL};
elessair	0:f269e3021894	545	int is_critical = 0; /* DEFAULT FALSE */
elessair	0:f269e3021894	546	int ext_type = 0;
elessair	0:f269e3021894	547
elessair	0:f269e3021894	548	if( ( ret = mbedtls_asn1_get_tag( p, end, &len,
elessair	0:f269e3021894	549	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	550	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	551
elessair	0:f269e3021894	552	end_ext_data = *p + len;
elessair	0:f269e3021894	553
elessair	0:f269e3021894	554	/* Get extension ID */
elessair	0:f269e3021894	555	extn_oid.tag = **p;
elessair	0:f269e3021894	556
elessair	0:f269e3021894	557	if( ( ret = mbedtls_asn1_get_tag( p, end, &extn_oid.len, MBEDTLS_ASN1_OID ) ) != 0 )
elessair	0:f269e3021894	558	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	559
elessair	0:f269e3021894	560	extn_oid.p = *p;
elessair	0:f269e3021894	561	*p += extn_oid.len;
elessair	0:f269e3021894	562
elessair	0:f269e3021894	563	if( ( end - *p ) < 1 )
elessair	0:f269e3021894	564	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	565	MBEDTLS_ERR_ASN1_OUT_OF_DATA );
elessair	0:f269e3021894	566
elessair	0:f269e3021894	567	/* Get optional critical */
elessair	0:f269e3021894	568	if( ( ret = mbedtls_asn1_get_bool( p, end_ext_data, &is_critical ) ) != 0 &&
elessair	0:f269e3021894	569	( ret != MBEDTLS_ERR_ASN1_UNEXPECTED_TAG ) )
elessair	0:f269e3021894	570	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	571
elessair	0:f269e3021894	572	/* Data should be octet string type */
elessair	0:f269e3021894	573	if( ( ret = mbedtls_asn1_get_tag( p, end_ext_data, &len,
elessair	0:f269e3021894	574	MBEDTLS_ASN1_OCTET_STRING ) ) != 0 )
elessair	0:f269e3021894	575	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS + ret );
elessair	0:f269e3021894	576
elessair	0:f269e3021894	577	end_ext_octet = *p + len;
elessair	0:f269e3021894	578
elessair	0:f269e3021894	579	if( end_ext_octet != end_ext_data )
elessair	0:f269e3021894	580	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	581	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	582
elessair	0:f269e3021894	583	/*
elessair	0:f269e3021894	584	* Detect supported extensions
elessair	0:f269e3021894	585	*/
elessair	0:f269e3021894	586	ret = mbedtls_oid_get_x509_ext_type( &extn_oid, &ext_type );
elessair	0:f269e3021894	587
elessair	0:f269e3021894	588	if( ret != 0 )
elessair	0:f269e3021894	589	{
elessair	0:f269e3021894	590	/* No parser found, skip extension */
elessair	0:f269e3021894	591	*p = end_ext_octet;
elessair	0:f269e3021894	592
elessair	0:f269e3021894	593	#if !defined(MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION)
elessair	0:f269e3021894	594	if( is_critical )
elessair	0:f269e3021894	595	{
elessair	0:f269e3021894	596	/* Data is marked as critical: fail */
elessair	0:f269e3021894	597	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	598	MBEDTLS_ERR_ASN1_UNEXPECTED_TAG );
elessair	0:f269e3021894	599	}
elessair	0:f269e3021894	600	#endif
elessair	0:f269e3021894	601	continue;
elessair	0:f269e3021894	602	}
elessair	0:f269e3021894	603
elessair	0:f269e3021894	604	/* Forbid repeated extensions */
elessair	0:f269e3021894	605	if( ( crt->ext_types & ext_type ) != 0 )
elessair	0:f269e3021894	606	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS );
elessair	0:f269e3021894	607
elessair	0:f269e3021894	608	crt->ext_types \|= ext_type;
elessair	0:f269e3021894	609
elessair	0:f269e3021894	610	switch( ext_type )
elessair	0:f269e3021894	611	{
elessair	0:f269e3021894	612	case MBEDTLS_X509_EXT_BASIC_CONSTRAINTS:
elessair	0:f269e3021894	613	/* Parse basic constraints */
elessair	0:f269e3021894	614	if( ( ret = x509_get_basic_constraints( p, end_ext_octet,
elessair	0:f269e3021894	615	&crt->ca_istrue, &crt->max_pathlen ) ) != 0 )
elessair	0:f269e3021894	616	return( ret );
elessair	0:f269e3021894	617	break;
elessair	0:f269e3021894	618
elessair	0:f269e3021894	619	case MBEDTLS_X509_EXT_KEY_USAGE:
elessair	0:f269e3021894	620	/* Parse key usage */
elessair	0:f269e3021894	621	if( ( ret = x509_get_key_usage( p, end_ext_octet,
elessair	0:f269e3021894	622	&crt->key_usage ) ) != 0 )
elessair	0:f269e3021894	623	return( ret );
elessair	0:f269e3021894	624	break;
elessair	0:f269e3021894	625
elessair	0:f269e3021894	626	case MBEDTLS_X509_EXT_EXTENDED_KEY_USAGE:
elessair	0:f269e3021894	627	/* Parse extended key usage */
elessair	0:f269e3021894	628	if( ( ret = x509_get_ext_key_usage( p, end_ext_octet,
elessair	0:f269e3021894	629	&crt->ext_key_usage ) ) != 0 )
elessair	0:f269e3021894	630	return( ret );
elessair	0:f269e3021894	631	break;
elessair	0:f269e3021894	632
elessair	0:f269e3021894	633	case MBEDTLS_X509_EXT_SUBJECT_ALT_NAME:
elessair	0:f269e3021894	634	/* Parse subject alt name */
elessair	0:f269e3021894	635	if( ( ret = x509_get_subject_alt_name( p, end_ext_octet,
elessair	0:f269e3021894	636	&crt->subject_alt_names ) ) != 0 )
elessair	0:f269e3021894	637	return( ret );
elessair	0:f269e3021894	638	break;
elessair	0:f269e3021894	639
elessair	0:f269e3021894	640	case MBEDTLS_X509_EXT_NS_CERT_TYPE:
elessair	0:f269e3021894	641	/* Parse netscape certificate type */
elessair	0:f269e3021894	642	if( ( ret = x509_get_ns_cert_type( p, end_ext_octet,
elessair	0:f269e3021894	643	&crt->ns_cert_type ) ) != 0 )
elessair	0:f269e3021894	644	return( ret );
elessair	0:f269e3021894	645	break;
elessair	0:f269e3021894	646
elessair	0:f269e3021894	647	default:
elessair	0:f269e3021894	648	return( MBEDTLS_ERR_X509_FEATURE_UNAVAILABLE );
elessair	0:f269e3021894	649	}
elessair	0:f269e3021894	650	}
elessair	0:f269e3021894	651
elessair	0:f269e3021894	652	if( *p != end )
elessair	0:f269e3021894	653	return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
elessair	0:f269e3021894	654	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	655
elessair	0:f269e3021894	656	return( 0 );
elessair	0:f269e3021894	657	}
elessair	0:f269e3021894	658
elessair	0:f269e3021894	659	/*
elessair	0:f269e3021894	660	* Parse and fill a single X.509 certificate in DER format
elessair	0:f269e3021894	661	*/
elessair	0:f269e3021894	662	static int x509_crt_parse_der_core( mbedtls_x509_crt crt, const unsigned char buf,
elessair	0:f269e3021894	663	size_t buflen )
elessair	0:f269e3021894	664	{
elessair	0:f269e3021894	665	int ret;
elessair	0:f269e3021894	666	size_t len;
elessair	0:f269e3021894	667	unsigned char p, end, *crt_end;
elessair	0:f269e3021894	668	mbedtls_x509_buf sig_params1, sig_params2, sig_oid2;
elessair	0:f269e3021894	669
elessair	0:f269e3021894	670	memset( &sig_params1, 0, sizeof( mbedtls_x509_buf ) );
elessair	0:f269e3021894	671	memset( &sig_params2, 0, sizeof( mbedtls_x509_buf ) );
elessair	0:f269e3021894	672	memset( &sig_oid2, 0, sizeof( mbedtls_x509_buf ) );
elessair	0:f269e3021894	673
elessair	0:f269e3021894	674	/*
elessair	0:f269e3021894	675	* Check for valid input
elessair	0:f269e3021894	676	*/
elessair	0:f269e3021894	677	if( crt == NULL \|\| buf == NULL )
elessair	0:f269e3021894	678	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	679
elessair	0:f269e3021894	680	// Use the original buffer until we figure out actual length
elessair	0:f269e3021894	681	p = (unsigned char*) buf;
elessair	0:f269e3021894	682	len = buflen;
elessair	0:f269e3021894	683	end = p + len;
elessair	0:f269e3021894	684
elessair	0:f269e3021894	685	/*
elessair	0:f269e3021894	686	* Certificate ::= SEQUENCE {
elessair	0:f269e3021894	687	* tbsCertificate TBSCertificate,
elessair	0:f269e3021894	688	* signatureAlgorithm AlgorithmIdentifier,
elessair	0:f269e3021894	689	* signatureValue BIT STRING }
elessair	0:f269e3021894	690	*/
elessair	0:f269e3021894	691	if( ( ret = mbedtls_asn1_get_tag( &p, end, &len,
elessair	0:f269e3021894	692	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	693	{
elessair	0:f269e3021894	694	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	695	return( MBEDTLS_ERR_X509_INVALID_FORMAT );
elessair	0:f269e3021894	696	}
elessair	0:f269e3021894	697
elessair	0:f269e3021894	698	if( len > (size_t) ( end - p ) )
elessair	0:f269e3021894	699	{
elessair	0:f269e3021894	700	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	701	return( MBEDTLS_ERR_X509_INVALID_FORMAT +
elessair	0:f269e3021894	702	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	703	}
elessair	0:f269e3021894	704	crt_end = p + len;
elessair	0:f269e3021894	705
elessair	0:f269e3021894	706	// Create and populate a new buffer for the raw field
elessair	0:f269e3021894	707	crt->raw.len = crt_end - buf;
elessair	0:f269e3021894	708	crt->raw.p = p = mbedtls_calloc( 1, crt->raw.len );
elessair	0:f269e3021894	709	if( p == NULL )
elessair	0:f269e3021894	710	return( MBEDTLS_ERR_X509_ALLOC_FAILED );
elessair	0:f269e3021894	711
elessair	0:f269e3021894	712	memcpy( p, buf, crt->raw.len );
elessair	0:f269e3021894	713
elessair	0:f269e3021894	714	// Direct pointers to the new buffer
elessair	0:f269e3021894	715	p += crt->raw.len - len;
elessair	0:f269e3021894	716	end = crt_end = p + len;
elessair	0:f269e3021894	717
elessair	0:f269e3021894	718	/*
elessair	0:f269e3021894	719	* TBSCertificate ::= SEQUENCE {
elessair	0:f269e3021894	720	*/
elessair	0:f269e3021894	721	crt->tbs.p = p;
elessair	0:f269e3021894	722
elessair	0:f269e3021894	723	if( ( ret = mbedtls_asn1_get_tag( &p, end, &len,
elessair	0:f269e3021894	724	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	725	{
elessair	0:f269e3021894	726	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	727	return( MBEDTLS_ERR_X509_INVALID_FORMAT + ret );
elessair	0:f269e3021894	728	}
elessair	0:f269e3021894	729
elessair	0:f269e3021894	730	end = p + len;
elessair	0:f269e3021894	731	crt->tbs.len = end - crt->tbs.p;
elessair	0:f269e3021894	732
elessair	0:f269e3021894	733	/*
elessair	0:f269e3021894	734	* Version ::= INTEGER { v1(0), v2(1), v3(2) }
elessair	0:f269e3021894	735	*
elessair	0:f269e3021894	736	* CertificateSerialNumber ::= INTEGER
elessair	0:f269e3021894	737	*
elessair	0:f269e3021894	738	* signature AlgorithmIdentifier
elessair	0:f269e3021894	739	*/
elessair	0:f269e3021894	740	if( ( ret = x509_get_version( &p, end, &crt->version ) ) != 0 \|\|
elessair	0:f269e3021894	741	( ret = mbedtls_x509_get_serial( &p, end, &crt->serial ) ) != 0 \|\|
elessair	0:f269e3021894	742	( ret = mbedtls_x509_get_alg( &p, end, &crt->sig_oid,
elessair	0:f269e3021894	743	&sig_params1 ) ) != 0 )
elessair	0:f269e3021894	744	{
elessair	0:f269e3021894	745	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	746	return( ret );
elessair	0:f269e3021894	747	}
elessair	0:f269e3021894	748
elessair	0:f269e3021894	749	crt->version++;
elessair	0:f269e3021894	750
elessair	0:f269e3021894	751	if( crt->version > 3 )
elessair	0:f269e3021894	752	{
elessair	0:f269e3021894	753	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	754	return( MBEDTLS_ERR_X509_UNKNOWN_VERSION );
elessair	0:f269e3021894	755	}
elessair	0:f269e3021894	756
elessair	0:f269e3021894	757	if( ( ret = mbedtls_x509_get_sig_alg( &crt->sig_oid, &sig_params1,
elessair	0:f269e3021894	758	&crt->sig_md, &crt->sig_pk,
elessair	0:f269e3021894	759	&crt->sig_opts ) ) != 0 )
elessair	0:f269e3021894	760	{
elessair	0:f269e3021894	761	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	762	return( ret );
elessair	0:f269e3021894	763	}
elessair	0:f269e3021894	764
elessair	0:f269e3021894	765	/*
elessair	0:f269e3021894	766	* issuer Name
elessair	0:f269e3021894	767	*/
elessair	0:f269e3021894	768	crt->issuer_raw.p = p;
elessair	0:f269e3021894	769
elessair	0:f269e3021894	770	if( ( ret = mbedtls_asn1_get_tag( &p, end, &len,
elessair	0:f269e3021894	771	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	772	{
elessair	0:f269e3021894	773	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	774	return( MBEDTLS_ERR_X509_INVALID_FORMAT + ret );
elessair	0:f269e3021894	775	}
elessair	0:f269e3021894	776
elessair	0:f269e3021894	777	if( ( ret = mbedtls_x509_get_name( &p, p + len, &crt->issuer ) ) != 0 )
elessair	0:f269e3021894	778	{
elessair	0:f269e3021894	779	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	780	return( ret );
elessair	0:f269e3021894	781	}
elessair	0:f269e3021894	782
elessair	0:f269e3021894	783	crt->issuer_raw.len = p - crt->issuer_raw.p;
elessair	0:f269e3021894	784
elessair	0:f269e3021894	785	/*
elessair	0:f269e3021894	786	* Validity ::= SEQUENCE {
elessair	0:f269e3021894	787	* notBefore Time,
elessair	0:f269e3021894	788	* notAfter Time }
elessair	0:f269e3021894	789	*
elessair	0:f269e3021894	790	*/
elessair	0:f269e3021894	791	if( ( ret = x509_get_dates( &p, end, &crt->valid_from,
elessair	0:f269e3021894	792	&crt->valid_to ) ) != 0 )
elessair	0:f269e3021894	793	{
elessair	0:f269e3021894	794	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	795	return( ret );
elessair	0:f269e3021894	796	}
elessair	0:f269e3021894	797
elessair	0:f269e3021894	798	/*
elessair	0:f269e3021894	799	* subject Name
elessair	0:f269e3021894	800	*/
elessair	0:f269e3021894	801	crt->subject_raw.p = p;
elessair	0:f269e3021894	802
elessair	0:f269e3021894	803	if( ( ret = mbedtls_asn1_get_tag( &p, end, &len,
elessair	0:f269e3021894	804	MBEDTLS_ASN1_CONSTRUCTED \| MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
elessair	0:f269e3021894	805	{
elessair	0:f269e3021894	806	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	807	return( MBEDTLS_ERR_X509_INVALID_FORMAT + ret );
elessair	0:f269e3021894	808	}
elessair	0:f269e3021894	809
elessair	0:f269e3021894	810	if( len && ( ret = mbedtls_x509_get_name( &p, p + len, &crt->subject ) ) != 0 )
elessair	0:f269e3021894	811	{
elessair	0:f269e3021894	812	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	813	return( ret );
elessair	0:f269e3021894	814	}
elessair	0:f269e3021894	815
elessair	0:f269e3021894	816	crt->subject_raw.len = p - crt->subject_raw.p;
elessair	0:f269e3021894	817
elessair	0:f269e3021894	818	/*
elessair	0:f269e3021894	819	* SubjectPublicKeyInfo
elessair	0:f269e3021894	820	*/
elessair	0:f269e3021894	821	if( ( ret = mbedtls_pk_parse_subpubkey( &p, end, &crt->pk ) ) != 0 )
elessair	0:f269e3021894	822	{
elessair	0:f269e3021894	823	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	824	return( ret );
elessair	0:f269e3021894	825	}
elessair	0:f269e3021894	826
elessair	0:f269e3021894	827	/*
elessair	0:f269e3021894	828	* issuerUniqueID [1] IMPLICIT UniqueIdentifier OPTIONAL,
elessair	0:f269e3021894	829	* -- If present, version shall be v2 or v3
elessair	0:f269e3021894	830	* subjectUniqueID [2] IMPLICIT UniqueIdentifier OPTIONAL,
elessair	0:f269e3021894	831	* -- If present, version shall be v2 or v3
elessair	0:f269e3021894	832	* extensions [3] EXPLICIT Extensions OPTIONAL
elessair	0:f269e3021894	833	* -- If present, version shall be v3
elessair	0:f269e3021894	834	*/
elessair	0:f269e3021894	835	if( crt->version == 2 \|\| crt->version == 3 )
elessair	0:f269e3021894	836	{
elessair	0:f269e3021894	837	ret = x509_get_uid( &p, end, &crt->issuer_id, 1 );
elessair	0:f269e3021894	838	if( ret != 0 )
elessair	0:f269e3021894	839	{
elessair	0:f269e3021894	840	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	841	return( ret );
elessair	0:f269e3021894	842	}
elessair	0:f269e3021894	843	}
elessair	0:f269e3021894	844
elessair	0:f269e3021894	845	if( crt->version == 2 \|\| crt->version == 3 )
elessair	0:f269e3021894	846	{
elessair	0:f269e3021894	847	ret = x509_get_uid( &p, end, &crt->subject_id, 2 );
elessair	0:f269e3021894	848	if( ret != 0 )
elessair	0:f269e3021894	849	{
elessair	0:f269e3021894	850	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	851	return( ret );
elessair	0:f269e3021894	852	}
elessair	0:f269e3021894	853	}
elessair	0:f269e3021894	854
elessair	0:f269e3021894	855	#if !defined(MBEDTLS_X509_ALLOW_EXTENSIONS_NON_V3)
elessair	0:f269e3021894	856	if( crt->version == 3 )
elessair	0:f269e3021894	857	#endif
elessair	0:f269e3021894	858	{
elessair	0:f269e3021894	859	ret = x509_get_crt_ext( &p, end, crt );
elessair	0:f269e3021894	860	if( ret != 0 )
elessair	0:f269e3021894	861	{
elessair	0:f269e3021894	862	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	863	return( ret );
elessair	0:f269e3021894	864	}
elessair	0:f269e3021894	865	}
elessair	0:f269e3021894	866
elessair	0:f269e3021894	867	if( p != end )
elessair	0:f269e3021894	868	{
elessair	0:f269e3021894	869	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	870	return( MBEDTLS_ERR_X509_INVALID_FORMAT +
elessair	0:f269e3021894	871	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	872	}
elessair	0:f269e3021894	873
elessair	0:f269e3021894	874	end = crt_end;
elessair	0:f269e3021894	875
elessair	0:f269e3021894	876	/*
elessair	0:f269e3021894	877	* }
elessair	0:f269e3021894	878	* -- end of TBSCertificate
elessair	0:f269e3021894	879	*
elessair	0:f269e3021894	880	* signatureAlgorithm AlgorithmIdentifier,
elessair	0:f269e3021894	881	* signatureValue BIT STRING
elessair	0:f269e3021894	882	*/
elessair	0:f269e3021894	883	if( ( ret = mbedtls_x509_get_alg( &p, end, &sig_oid2, &sig_params2 ) ) != 0 )
elessair	0:f269e3021894	884	{
elessair	0:f269e3021894	885	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	886	return( ret );
elessair	0:f269e3021894	887	}
elessair	0:f269e3021894	888
elessair	0:f269e3021894	889	if( crt->sig_oid.len != sig_oid2.len \|\|
elessair	0:f269e3021894	890	memcmp( crt->sig_oid.p, sig_oid2.p, crt->sig_oid.len ) != 0 \|\|
elessair	0:f269e3021894	891	sig_params1.len != sig_params2.len \|\|
elessair	0:f269e3021894	892	( sig_params1.len != 0 &&
elessair	0:f269e3021894	893	memcmp( sig_params1.p, sig_params2.p, sig_params1.len ) != 0 ) )
elessair	0:f269e3021894	894	{
elessair	0:f269e3021894	895	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	896	return( MBEDTLS_ERR_X509_SIG_MISMATCH );
elessair	0:f269e3021894	897	}
elessair	0:f269e3021894	898
elessair	0:f269e3021894	899	if( ( ret = mbedtls_x509_get_sig( &p, end, &crt->sig ) ) != 0 )
elessair	0:f269e3021894	900	{
elessair	0:f269e3021894	901	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	902	return( ret );
elessair	0:f269e3021894	903	}
elessair	0:f269e3021894	904
elessair	0:f269e3021894	905	if( p != end )
elessair	0:f269e3021894	906	{
elessair	0:f269e3021894	907	mbedtls_x509_crt_free( crt );
elessair	0:f269e3021894	908	return( MBEDTLS_ERR_X509_INVALID_FORMAT +
elessair	0:f269e3021894	909	MBEDTLS_ERR_ASN1_LENGTH_MISMATCH );
elessair	0:f269e3021894	910	}
elessair	0:f269e3021894	911
elessair	0:f269e3021894	912	return( 0 );
elessair	0:f269e3021894	913	}
elessair	0:f269e3021894	914
elessair	0:f269e3021894	915	/*
elessair	0:f269e3021894	916	* Parse one X.509 certificate in DER format from a buffer and add them to a
elessair	0:f269e3021894	917	* chained list
elessair	0:f269e3021894	918	*/
elessair	0:f269e3021894	919	int mbedtls_x509_crt_parse_der( mbedtls_x509_crt chain, const unsigned char buf,
elessair	0:f269e3021894	920	size_t buflen )
elessair	0:f269e3021894	921	{
elessair	0:f269e3021894	922	int ret;
elessair	0:f269e3021894	923	mbedtls_x509_crt crt = chain, prev = NULL;
elessair	0:f269e3021894	924
elessair	0:f269e3021894	925	/*
elessair	0:f269e3021894	926	* Check for valid input
elessair	0:f269e3021894	927	*/
elessair	0:f269e3021894	928	if( crt == NULL \|\| buf == NULL )
elessair	0:f269e3021894	929	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	930
elessair	0:f269e3021894	931	while( crt->version != 0 && crt->next != NULL )
elessair	0:f269e3021894	932	{
elessair	0:f269e3021894	933	prev = crt;
elessair	0:f269e3021894	934	crt = crt->next;
elessair	0:f269e3021894	935	}
elessair	0:f269e3021894	936
elessair	0:f269e3021894	937	/*
elessair	0:f269e3021894	938	* Add new certificate on the end of the chain if needed.
elessair	0:f269e3021894	939	*/
elessair	0:f269e3021894	940	if( crt->version != 0 && crt->next == NULL )
elessair	0:f269e3021894	941	{
elessair	0:f269e3021894	942	crt->next = mbedtls_calloc( 1, sizeof( mbedtls_x509_crt ) );
elessair	0:f269e3021894	943
elessair	0:f269e3021894	944	if( crt->next == NULL )
elessair	0:f269e3021894	945	return( MBEDTLS_ERR_X509_ALLOC_FAILED );
elessair	0:f269e3021894	946
elessair	0:f269e3021894	947	prev = crt;
elessair	0:f269e3021894	948	mbedtls_x509_crt_init( crt->next );
elessair	0:f269e3021894	949	crt = crt->next;
elessair	0:f269e3021894	950	}
elessair	0:f269e3021894	951
elessair	0:f269e3021894	952	if( ( ret = x509_crt_parse_der_core( crt, buf, buflen ) ) != 0 )
elessair	0:f269e3021894	953	{
elessair	0:f269e3021894	954	if( prev )
elessair	0:f269e3021894	955	prev->next = NULL;
elessair	0:f269e3021894	956
elessair	0:f269e3021894	957	if( crt != chain )
elessair	0:f269e3021894	958	mbedtls_free( crt );
elessair	0:f269e3021894	959
elessair	0:f269e3021894	960	return( ret );
elessair	0:f269e3021894	961	}
elessair	0:f269e3021894	962
elessair	0:f269e3021894	963	return( 0 );
elessair	0:f269e3021894	964	}
elessair	0:f269e3021894	965
elessair	0:f269e3021894	966	/*
elessair	0:f269e3021894	967	* Parse one or more PEM certificates from a buffer and add them to the chained
elessair	0:f269e3021894	968	* list
elessair	0:f269e3021894	969	*/
elessair	0:f269e3021894	970	int mbedtls_x509_crt_parse( mbedtls_x509_crt chain, const unsigned char buf, size_t buflen )
elessair	0:f269e3021894	971	{
elessair	0:f269e3021894	972	int success = 0, first_error = 0, total_failed = 0;
elessair	0:f269e3021894	973	#if defined(MBEDTLS_PEM_PARSE_C)
elessair	0:f269e3021894	974	int buf_format = MBEDTLS_X509_FORMAT_DER;
elessair	0:f269e3021894	975	#endif
elessair	0:f269e3021894	976
elessair	0:f269e3021894	977	/*
elessair	0:f269e3021894	978	* Check for valid input
elessair	0:f269e3021894	979	*/
elessair	0:f269e3021894	980	if( chain == NULL \|\| buf == NULL )
elessair	0:f269e3021894	981	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	982
elessair	0:f269e3021894	983	/*
elessair	0:f269e3021894	984	* Determine buffer content. Buffer contains either one DER certificate or
elessair	0:f269e3021894	985	* one or more PEM certificates.
elessair	0:f269e3021894	986	*/
elessair	0:f269e3021894	987	#if defined(MBEDTLS_PEM_PARSE_C)
elessair	0:f269e3021894	988	if( buflen != 0 && buf[buflen - 1] == '\0' &&
elessair	0:f269e3021894	989	strstr( (const char *) buf, "-----BEGIN CERTIFICATE-----" ) != NULL )
elessair	0:f269e3021894	990	{
elessair	0:f269e3021894	991	buf_format = MBEDTLS_X509_FORMAT_PEM;
elessair	0:f269e3021894	992	}
elessair	0:f269e3021894	993
elessair	0:f269e3021894	994	if( buf_format == MBEDTLS_X509_FORMAT_DER )
elessair	0:f269e3021894	995	return mbedtls_x509_crt_parse_der( chain, buf, buflen );
elessair	0:f269e3021894	996	#else
elessair	0:f269e3021894	997	return mbedtls_x509_crt_parse_der( chain, buf, buflen );
elessair	0:f269e3021894	998	#endif
elessair	0:f269e3021894	999
elessair	0:f269e3021894	1000	#if defined(MBEDTLS_PEM_PARSE_C)
elessair	0:f269e3021894	1001	if( buf_format == MBEDTLS_X509_FORMAT_PEM )
elessair	0:f269e3021894	1002	{
elessair	0:f269e3021894	1003	int ret;
elessair	0:f269e3021894	1004	mbedtls_pem_context pem;
elessair	0:f269e3021894	1005
elessair	0:f269e3021894	1006	/* 1 rather than 0 since the terminating NULL byte is counted in */
elessair	0:f269e3021894	1007	while( buflen > 1 )
elessair	0:f269e3021894	1008	{
elessair	0:f269e3021894	1009	size_t use_len;
elessair	0:f269e3021894	1010	mbedtls_pem_init( &pem );
elessair	0:f269e3021894	1011
elessair	0:f269e3021894	1012	/* If we get there, we know the string is null-terminated */
elessair	0:f269e3021894	1013	ret = mbedtls_pem_read_buffer( &pem,
elessair	0:f269e3021894	1014	"-----BEGIN CERTIFICATE-----",
elessair	0:f269e3021894	1015	"-----END CERTIFICATE-----",
elessair	0:f269e3021894	1016	buf, NULL, 0, &use_len );
elessair	0:f269e3021894	1017
elessair	0:f269e3021894	1018	if( ret == 0 )
elessair	0:f269e3021894	1019	{
elessair	0:f269e3021894	1020	/*
elessair	0:f269e3021894	1021	* Was PEM encoded
elessair	0:f269e3021894	1022	*/
elessair	0:f269e3021894	1023	buflen -= use_len;
elessair	0:f269e3021894	1024	buf += use_len;
elessair	0:f269e3021894	1025	}
elessair	0:f269e3021894	1026	else if( ret == MBEDTLS_ERR_PEM_BAD_INPUT_DATA )
elessair	0:f269e3021894	1027	{
elessair	0:f269e3021894	1028	return( ret );
elessair	0:f269e3021894	1029	}
elessair	0:f269e3021894	1030	else if( ret != MBEDTLS_ERR_PEM_NO_HEADER_FOOTER_PRESENT )
elessair	0:f269e3021894	1031	{
elessair	0:f269e3021894	1032	mbedtls_pem_free( &pem );
elessair	0:f269e3021894	1033
elessair	0:f269e3021894	1034	/*
elessair	0:f269e3021894	1035	* PEM header and footer were found
elessair	0:f269e3021894	1036	*/
elessair	0:f269e3021894	1037	buflen -= use_len;
elessair	0:f269e3021894	1038	buf += use_len;
elessair	0:f269e3021894	1039
elessair	0:f269e3021894	1040	if( first_error == 0 )
elessair	0:f269e3021894	1041	first_error = ret;
elessair	0:f269e3021894	1042
elessair	0:f269e3021894	1043	total_failed++;
elessair	0:f269e3021894	1044	continue;
elessair	0:f269e3021894	1045	}
elessair	0:f269e3021894	1046	else
elessair	0:f269e3021894	1047	break;
elessair	0:f269e3021894	1048
elessair	0:f269e3021894	1049	ret = mbedtls_x509_crt_parse_der( chain, pem.buf, pem.buflen );
elessair	0:f269e3021894	1050
elessair	0:f269e3021894	1051	mbedtls_pem_free( &pem );
elessair	0:f269e3021894	1052
elessair	0:f269e3021894	1053	if( ret != 0 )
elessair	0:f269e3021894	1054	{
elessair	0:f269e3021894	1055	/*
elessair	0:f269e3021894	1056	* Quit parsing on a memory error
elessair	0:f269e3021894	1057	*/
elessair	0:f269e3021894	1058	if( ret == MBEDTLS_ERR_X509_ALLOC_FAILED )
elessair	0:f269e3021894	1059	return( ret );
elessair	0:f269e3021894	1060
elessair	0:f269e3021894	1061	if( first_error == 0 )
elessair	0:f269e3021894	1062	first_error = ret;
elessair	0:f269e3021894	1063
elessair	0:f269e3021894	1064	total_failed++;
elessair	0:f269e3021894	1065	continue;
elessair	0:f269e3021894	1066	}
elessair	0:f269e3021894	1067
elessair	0:f269e3021894	1068	success = 1;
elessair	0:f269e3021894	1069	}
elessair	0:f269e3021894	1070	}
elessair	0:f269e3021894	1071
elessair	0:f269e3021894	1072	if( success )
elessair	0:f269e3021894	1073	return( total_failed );
elessair	0:f269e3021894	1074	else if( first_error )
elessair	0:f269e3021894	1075	return( first_error );
elessair	0:f269e3021894	1076	else
elessair	0:f269e3021894	1077	return( MBEDTLS_ERR_X509_CERT_UNKNOWN_FORMAT );
elessair	0:f269e3021894	1078	#endif /* MBEDTLS_PEM_PARSE_C */
elessair	0:f269e3021894	1079	}
elessair	0:f269e3021894	1080
elessair	0:f269e3021894	1081	#if defined(MBEDTLS_FS_IO)
elessair	0:f269e3021894	1082	/*
elessair	0:f269e3021894	1083	* Load one or more certificates and add them to the chained list
elessair	0:f269e3021894	1084	*/
elessair	0:f269e3021894	1085	int mbedtls_x509_crt_parse_file( mbedtls_x509_crt chain, const char path )
elessair	0:f269e3021894	1086	{
elessair	0:f269e3021894	1087	int ret;
elessair	0:f269e3021894	1088	size_t n;
elessair	0:f269e3021894	1089	unsigned char *buf;
elessair	0:f269e3021894	1090
elessair	0:f269e3021894	1091	if( ( ret = mbedtls_pk_load_file( path, &buf, &n ) ) != 0 )
elessair	0:f269e3021894	1092	return( ret );
elessair	0:f269e3021894	1093
elessair	0:f269e3021894	1094	ret = mbedtls_x509_crt_parse( chain, buf, n );
elessair	0:f269e3021894	1095
elessair	0:f269e3021894	1096	mbedtls_zeroize( buf, n );
elessair	0:f269e3021894	1097	mbedtls_free( buf );
elessair	0:f269e3021894	1098
elessair	0:f269e3021894	1099	return( ret );
elessair	0:f269e3021894	1100	}
elessair	0:f269e3021894	1101
elessair	0:f269e3021894	1102	int mbedtls_x509_crt_parse_path( mbedtls_x509_crt chain, const char path )
elessair	0:f269e3021894	1103	{
elessair	0:f269e3021894	1104	int ret = 0;
elessair	0:f269e3021894	1105	#if defined(_WIN32) && !defined(EFIX64) && !defined(EFI32)
elessair	0:f269e3021894	1106	int w_ret;
elessair	0:f269e3021894	1107	WCHAR szDir[MAX_PATH];
elessair	0:f269e3021894	1108	char filename[MAX_PATH];
elessair	0:f269e3021894	1109	char *p;
elessair	0:f269e3021894	1110	size_t len = strlen( path );
elessair	0:f269e3021894	1111
elessair	0:f269e3021894	1112	WIN32_FIND_DATAW file_data;
elessair	0:f269e3021894	1113	HANDLE hFind;
elessair	0:f269e3021894	1114
elessair	0:f269e3021894	1115	if( len > MAX_PATH - 3 )
elessair	0:f269e3021894	1116	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	1117
elessair	0:f269e3021894	1118	memset( szDir, 0, sizeof(szDir) );
elessair	0:f269e3021894	1119	memset( filename, 0, MAX_PATH );
elessair	0:f269e3021894	1120	memcpy( filename, path, len );
elessair	0:f269e3021894	1121	filename[len++] = '\\';
elessair	0:f269e3021894	1122	p = filename + len;
elessair	0:f269e3021894	1123	filename[len++] = '*';
elessair	0:f269e3021894	1124
elessair	0:f269e3021894	1125	w_ret = MultiByteToWideChar( CP_ACP, 0, filename, len, szDir,
elessair	0:f269e3021894	1126	MAX_PATH - 3 );
elessair	0:f269e3021894	1127	if( w_ret == 0 )
elessair	0:f269e3021894	1128	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	1129
elessair	0:f269e3021894	1130	hFind = FindFirstFileW( szDir, &file_data );
elessair	0:f269e3021894	1131	if( hFind == INVALID_HANDLE_VALUE )
elessair	0:f269e3021894	1132	return( MBEDTLS_ERR_X509_FILE_IO_ERROR );
elessair	0:f269e3021894	1133
elessair	0:f269e3021894	1134	len = MAX_PATH - len;
elessair	0:f269e3021894	1135	do
elessair	0:f269e3021894	1136	{
elessair	0:f269e3021894	1137	memset( p, 0, len );
elessair	0:f269e3021894	1138
elessair	0:f269e3021894	1139	if( file_data.dwFileAttributes & FILE_ATTRIBUTE_DIRECTORY )
elessair	0:f269e3021894	1140	continue;
elessair	0:f269e3021894	1141
elessair	0:f269e3021894	1142	w_ret = WideCharToMultiByte( CP_ACP, 0, file_data.cFileName,
elessair	0:f269e3021894	1143	lstrlenW( file_data.cFileName ),
elessair	0:f269e3021894	1144	p, (int) len - 1,
elessair	0:f269e3021894	1145	NULL, NULL );
elessair	0:f269e3021894	1146	if( w_ret == 0 )
elessair	0:f269e3021894	1147	return( MBEDTLS_ERR_X509_FILE_IO_ERROR );
elessair	0:f269e3021894	1148
elessair	0:f269e3021894	1149	w_ret = mbedtls_x509_crt_parse_file( chain, filename );
elessair	0:f269e3021894	1150	if( w_ret < 0 )
elessair	0:f269e3021894	1151	ret++;
elessair	0:f269e3021894	1152	else
elessair	0:f269e3021894	1153	ret += w_ret;
elessair	0:f269e3021894	1154	}
elessair	0:f269e3021894	1155	while( FindNextFileW( hFind, &file_data ) != 0 );
elessair	0:f269e3021894	1156
elessair	0:f269e3021894	1157	if( GetLastError() != ERROR_NO_MORE_FILES )
elessair	0:f269e3021894	1158	ret = MBEDTLS_ERR_X509_FILE_IO_ERROR;
elessair	0:f269e3021894	1159
elessair	0:f269e3021894	1160	FindClose( hFind );
elessair	0:f269e3021894	1161	#else /* _WIN32 */
elessair	0:f269e3021894	1162	int t_ret;
elessair	0:f269e3021894	1163	int snp_ret;
elessair	0:f269e3021894	1164	struct stat sb;
elessair	0:f269e3021894	1165	struct dirent *entry;
elessair	0:f269e3021894	1166	char entry_name[MBEDTLS_X509_MAX_FILE_PATH_LEN];
elessair	0:f269e3021894	1167	DIR *dir = opendir( path );
elessair	0:f269e3021894	1168
elessair	0:f269e3021894	1169	if( dir == NULL )
elessair	0:f269e3021894	1170	return( MBEDTLS_ERR_X509_FILE_IO_ERROR );
elessair	0:f269e3021894	1171
elessair	0:f269e3021894	1172	#if defined(MBEDTLS_THREADING_PTHREAD)
elessair	0:f269e3021894	1173	if( ( ret = mbedtls_mutex_lock( &mbedtls_threading_readdir_mutex ) ) != 0 )
elessair	0:f269e3021894	1174	{
elessair	0:f269e3021894	1175	closedir( dir );
elessair	0:f269e3021894	1176	return( ret );
elessair	0:f269e3021894	1177	}
elessair	0:f269e3021894	1178	#endif
elessair	0:f269e3021894	1179
elessair	0:f269e3021894	1180	while( ( entry = readdir( dir ) ) != NULL )
elessair	0:f269e3021894	1181	{
elessair	0:f269e3021894	1182	snp_ret = mbedtls_snprintf( entry_name, sizeof entry_name,
elessair	0:f269e3021894	1183	"%s/%s", path, entry->d_name );
elessair	0:f269e3021894	1184
elessair	0:f269e3021894	1185	if( snp_ret < 0 \|\| (size_t)snp_ret >= sizeof entry_name )
elessair	0:f269e3021894	1186	{
elessair	0:f269e3021894	1187	ret = MBEDTLS_ERR_X509_BUFFER_TOO_SMALL;
elessair	0:f269e3021894	1188	goto cleanup;
elessair	0:f269e3021894	1189	}
elessair	0:f269e3021894	1190	else if( stat( entry_name, &sb ) == -1 )
elessair	0:f269e3021894	1191	{
elessair	0:f269e3021894	1192	ret = MBEDTLS_ERR_X509_FILE_IO_ERROR;
elessair	0:f269e3021894	1193	goto cleanup;
elessair	0:f269e3021894	1194	}
elessair	0:f269e3021894	1195
elessair	0:f269e3021894	1196	if( !S_ISREG( sb.st_mode ) )
elessair	0:f269e3021894	1197	continue;
elessair	0:f269e3021894	1198
elessair	0:f269e3021894	1199	// Ignore parse errors
elessair	0:f269e3021894	1200	//
elessair	0:f269e3021894	1201	t_ret = mbedtls_x509_crt_parse_file( chain, entry_name );
elessair	0:f269e3021894	1202	if( t_ret < 0 )
elessair	0:f269e3021894	1203	ret++;
elessair	0:f269e3021894	1204	else
elessair	0:f269e3021894	1205	ret += t_ret;
elessair	0:f269e3021894	1206	}
elessair	0:f269e3021894	1207
elessair	0:f269e3021894	1208	cleanup:
elessair	0:f269e3021894	1209	closedir( dir );
elessair	0:f269e3021894	1210
elessair	0:f269e3021894	1211	#if defined(MBEDTLS_THREADING_PTHREAD)
elessair	0:f269e3021894	1212	if( mbedtls_mutex_unlock( &mbedtls_threading_readdir_mutex ) != 0 )
elessair	0:f269e3021894	1213	ret = MBEDTLS_ERR_THREADING_MUTEX_ERROR;
elessair	0:f269e3021894	1214	#endif
elessair	0:f269e3021894	1215
elessair	0:f269e3021894	1216	#endif /* _WIN32 */
elessair	0:f269e3021894	1217
elessair	0:f269e3021894	1218	return( ret );
elessair	0:f269e3021894	1219	}
elessair	0:f269e3021894	1220	#endif /* MBEDTLS_FS_IO */
elessair	0:f269e3021894	1221
elessair	0:f269e3021894	1222	static int x509_info_subject_alt_name( char *buf, size_t size,
elessair	0:f269e3021894	1223	const mbedtls_x509_sequence *subject_alt_name )
elessair	0:f269e3021894	1224	{
elessair	0:f269e3021894	1225	size_t i;
elessair	0:f269e3021894	1226	size_t n = *size;
elessair	0:f269e3021894	1227	char p = buf;
elessair	0:f269e3021894	1228	const mbedtls_x509_sequence *cur = subject_alt_name;
elessair	0:f269e3021894	1229	const char *sep = "";
elessair	0:f269e3021894	1230	size_t sep_len = 0;
elessair	0:f269e3021894	1231
elessair	0:f269e3021894	1232	while( cur != NULL )
elessair	0:f269e3021894	1233	{
elessair	0:f269e3021894	1234	if( cur->buf.len + sep_len >= n )
elessair	0:f269e3021894	1235	{
elessair	0:f269e3021894	1236	*p = '\0';
elessair	0:f269e3021894	1237	return( MBEDTLS_ERR_X509_BUFFER_TOO_SMALL );
elessair	0:f269e3021894	1238	}
elessair	0:f269e3021894	1239
elessair	0:f269e3021894	1240	n -= cur->buf.len + sep_len;
elessair	0:f269e3021894	1241	for( i = 0; i < sep_len; i++ )
elessair	0:f269e3021894	1242	*p++ = sep[i];
elessair	0:f269e3021894	1243	for( i = 0; i < cur->buf.len; i++ )
elessair	0:f269e3021894	1244	*p++ = cur->buf.p[i];
elessair	0:f269e3021894	1245
elessair	0:f269e3021894	1246	sep = ", ";
elessair	0:f269e3021894	1247	sep_len = 2;
elessair	0:f269e3021894	1248
elessair	0:f269e3021894	1249	cur = cur->next;
elessair	0:f269e3021894	1250	}
elessair	0:f269e3021894	1251
elessair	0:f269e3021894	1252	*p = '\0';
elessair	0:f269e3021894	1253
elessair	0:f269e3021894	1254	*size = n;
elessair	0:f269e3021894	1255	*buf = p;
elessair	0:f269e3021894	1256
elessair	0:f269e3021894	1257	return( 0 );
elessair	0:f269e3021894	1258	}
elessair	0:f269e3021894	1259
elessair	0:f269e3021894	1260	#define PRINT_ITEM(i) \
elessair	0:f269e3021894	1261	{ \
elessair	0:f269e3021894	1262	ret = mbedtls_snprintf( p, n, "%s" i, sep ); \
elessair	0:f269e3021894	1263	MBEDTLS_X509_SAFE_SNPRINTF; \
elessair	0:f269e3021894	1264	sep = ", "; \
elessair	0:f269e3021894	1265	}
elessair	0:f269e3021894	1266
elessair	0:f269e3021894	1267	#define CERT_TYPE(type,name) \
elessair	0:f269e3021894	1268	if( ns_cert_type & type ) \
elessair	0:f269e3021894	1269	PRINT_ITEM( name );
elessair	0:f269e3021894	1270
elessair	0:f269e3021894	1271	static int x509_info_cert_type( char *buf, size_t size,
elessair	0:f269e3021894	1272	unsigned char ns_cert_type )
elessair	0:f269e3021894	1273	{
elessair	0:f269e3021894	1274	int ret;
elessair	0:f269e3021894	1275	size_t n = *size;
elessair	0:f269e3021894	1276	char p = buf;
elessair	0:f269e3021894	1277	const char *sep = "";
elessair	0:f269e3021894	1278
elessair	0:f269e3021894	1279	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_SSL_CLIENT, "SSL Client" );
elessair	0:f269e3021894	1280	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_SSL_SERVER, "SSL Server" );
elessair	0:f269e3021894	1281	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_EMAIL, "Email" );
elessair	0:f269e3021894	1282	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_OBJECT_SIGNING, "Object Signing" );
elessair	0:f269e3021894	1283	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_RESERVED, "Reserved" );
elessair	0:f269e3021894	1284	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_SSL_CA, "SSL CA" );
elessair	0:f269e3021894	1285	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_EMAIL_CA, "Email CA" );
elessair	0:f269e3021894	1286	CERT_TYPE( MBEDTLS_X509_NS_CERT_TYPE_OBJECT_SIGNING_CA, "Object Signing CA" );
elessair	0:f269e3021894	1287
elessair	0:f269e3021894	1288	*size = n;
elessair	0:f269e3021894	1289	*buf = p;
elessair	0:f269e3021894	1290
elessair	0:f269e3021894	1291	return( 0 );
elessair	0:f269e3021894	1292	}
elessair	0:f269e3021894	1293
elessair	0:f269e3021894	1294	#define KEY_USAGE(code,name) \
elessair	0:f269e3021894	1295	if( key_usage & code ) \
elessair	0:f269e3021894	1296	PRINT_ITEM( name );
elessair	0:f269e3021894	1297
elessair	0:f269e3021894	1298	static int x509_info_key_usage( char *buf, size_t size,
elessair	0:f269e3021894	1299	unsigned int key_usage )
elessair	0:f269e3021894	1300	{
elessair	0:f269e3021894	1301	int ret;
elessair	0:f269e3021894	1302	size_t n = *size;
elessair	0:f269e3021894	1303	char p = buf;
elessair	0:f269e3021894	1304	const char *sep = "";
elessair	0:f269e3021894	1305
elessair	0:f269e3021894	1306	KEY_USAGE( MBEDTLS_X509_KU_DIGITAL_SIGNATURE, "Digital Signature" );
elessair	0:f269e3021894	1307	KEY_USAGE( MBEDTLS_X509_KU_NON_REPUDIATION, "Non Repudiation" );
elessair	0:f269e3021894	1308	KEY_USAGE( MBEDTLS_X509_KU_KEY_ENCIPHERMENT, "Key Encipherment" );
elessair	0:f269e3021894	1309	KEY_USAGE( MBEDTLS_X509_KU_DATA_ENCIPHERMENT, "Data Encipherment" );
elessair	0:f269e3021894	1310	KEY_USAGE( MBEDTLS_X509_KU_KEY_AGREEMENT, "Key Agreement" );
elessair	0:f269e3021894	1311	KEY_USAGE( MBEDTLS_X509_KU_KEY_CERT_SIGN, "Key Cert Sign" );
elessair	0:f269e3021894	1312	KEY_USAGE( MBEDTLS_X509_KU_CRL_SIGN, "CRL Sign" );
elessair	0:f269e3021894	1313	KEY_USAGE( MBEDTLS_X509_KU_ENCIPHER_ONLY, "Encipher Only" );
elessair	0:f269e3021894	1314	KEY_USAGE( MBEDTLS_X509_KU_DECIPHER_ONLY, "Decipher Only" );
elessair	0:f269e3021894	1315
elessair	0:f269e3021894	1316	*size = n;
elessair	0:f269e3021894	1317	*buf = p;
elessair	0:f269e3021894	1318
elessair	0:f269e3021894	1319	return( 0 );
elessair	0:f269e3021894	1320	}
elessair	0:f269e3021894	1321
elessair	0:f269e3021894	1322	static int x509_info_ext_key_usage( char *buf, size_t size,
elessair	0:f269e3021894	1323	const mbedtls_x509_sequence *extended_key_usage )
elessair	0:f269e3021894	1324	{
elessair	0:f269e3021894	1325	int ret;
elessair	0:f269e3021894	1326	const char *desc;
elessair	0:f269e3021894	1327	size_t n = *size;
elessair	0:f269e3021894	1328	char p = buf;
elessair	0:f269e3021894	1329	const mbedtls_x509_sequence *cur = extended_key_usage;
elessair	0:f269e3021894	1330	const char *sep = "";
elessair	0:f269e3021894	1331
elessair	0:f269e3021894	1332	while( cur != NULL )
elessair	0:f269e3021894	1333	{
elessair	0:f269e3021894	1334	if( mbedtls_oid_get_extended_key_usage( &cur->buf, &desc ) != 0 )
elessair	0:f269e3021894	1335	desc = "???";
elessair	0:f269e3021894	1336
elessair	0:f269e3021894	1337	ret = mbedtls_snprintf( p, n, "%s%s", sep, desc );
elessair	0:f269e3021894	1338	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1339
elessair	0:f269e3021894	1340	sep = ", ";
elessair	0:f269e3021894	1341
elessair	0:f269e3021894	1342	cur = cur->next;
elessair	0:f269e3021894	1343	}
elessair	0:f269e3021894	1344
elessair	0:f269e3021894	1345	*size = n;
elessair	0:f269e3021894	1346	*buf = p;
elessair	0:f269e3021894	1347
elessair	0:f269e3021894	1348	return( 0 );
elessair	0:f269e3021894	1349	}
elessair	0:f269e3021894	1350
elessair	0:f269e3021894	1351	/*
elessair	0:f269e3021894	1352	* Return an informational string about the certificate.
elessair	0:f269e3021894	1353	*/
elessair	0:f269e3021894	1354	#define BEFORE_COLON 18
elessair	0:f269e3021894	1355	#define BC "18"
elessair	0:f269e3021894	1356	int mbedtls_x509_crt_info( char buf, size_t size, const char prefix,
elessair	0:f269e3021894	1357	const mbedtls_x509_crt *crt )
elessair	0:f269e3021894	1358	{
elessair	0:f269e3021894	1359	int ret;
elessair	0:f269e3021894	1360	size_t n;
elessair	0:f269e3021894	1361	char *p;
elessair	0:f269e3021894	1362	char key_size_str[BEFORE_COLON];
elessair	0:f269e3021894	1363
elessair	0:f269e3021894	1364	p = buf;
elessair	0:f269e3021894	1365	n = size;
elessair	0:f269e3021894	1366
elessair	0:f269e3021894	1367	if( NULL == crt )
elessair	0:f269e3021894	1368	{
elessair	0:f269e3021894	1369	ret = mbedtls_snprintf( p, n, "\nCertificate is uninitialised!\n" );
elessair	0:f269e3021894	1370	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1371
elessair	0:f269e3021894	1372	return( (int) ( size - n ) );
elessair	0:f269e3021894	1373	}
elessair	0:f269e3021894	1374
elessair	0:f269e3021894	1375	ret = mbedtls_snprintf( p, n, "%scert. version : %d\n",
elessair	0:f269e3021894	1376	prefix, crt->version );
elessair	0:f269e3021894	1377	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1378	ret = mbedtls_snprintf( p, n, "%sserial number : ",
elessair	0:f269e3021894	1379	prefix );
elessair	0:f269e3021894	1380	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1381
elessair	0:f269e3021894	1382	ret = mbedtls_x509_serial_gets( p, n, &crt->serial );
elessair	0:f269e3021894	1383	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1384
elessair	0:f269e3021894	1385	ret = mbedtls_snprintf( p, n, "\n%sissuer name : ", prefix );
elessair	0:f269e3021894	1386	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1387	ret = mbedtls_x509_dn_gets( p, n, &crt->issuer );
elessair	0:f269e3021894	1388	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1389
elessair	0:f269e3021894	1390	ret = mbedtls_snprintf( p, n, "\n%ssubject name : ", prefix );
elessair	0:f269e3021894	1391	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1392	ret = mbedtls_x509_dn_gets( p, n, &crt->subject );
elessair	0:f269e3021894	1393	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1394
elessair	0:f269e3021894	1395	ret = mbedtls_snprintf( p, n, "\n%sissued on : " \
elessair	0:f269e3021894	1396	"%04d-%02d-%02d %02d:%02d:%02d", prefix,
elessair	0:f269e3021894	1397	crt->valid_from.year, crt->valid_from.mon,
elessair	0:f269e3021894	1398	crt->valid_from.day, crt->valid_from.hour,
elessair	0:f269e3021894	1399	crt->valid_from.min, crt->valid_from.sec );
elessair	0:f269e3021894	1400	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1401
elessair	0:f269e3021894	1402	ret = mbedtls_snprintf( p, n, "\n%sexpires on : " \
elessair	0:f269e3021894	1403	"%04d-%02d-%02d %02d:%02d:%02d", prefix,
elessair	0:f269e3021894	1404	crt->valid_to.year, crt->valid_to.mon,
elessair	0:f269e3021894	1405	crt->valid_to.day, crt->valid_to.hour,
elessair	0:f269e3021894	1406	crt->valid_to.min, crt->valid_to.sec );
elessair	0:f269e3021894	1407	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1408
elessair	0:f269e3021894	1409	ret = mbedtls_snprintf( p, n, "\n%ssigned using : ", prefix );
elessair	0:f269e3021894	1410	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1411
elessair	0:f269e3021894	1412	ret = mbedtls_x509_sig_alg_gets( p, n, &crt->sig_oid, crt->sig_pk,
elessair	0:f269e3021894	1413	crt->sig_md, crt->sig_opts );
elessair	0:f269e3021894	1414	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1415
elessair	0:f269e3021894	1416	/* Key size */
elessair	0:f269e3021894	1417	if( ( ret = mbedtls_x509_key_size_helper( key_size_str, BEFORE_COLON,
elessair	0:f269e3021894	1418	mbedtls_pk_get_name( &crt->pk ) ) ) != 0 )
elessair	0:f269e3021894	1419	{
elessair	0:f269e3021894	1420	return( ret );
elessair	0:f269e3021894	1421	}
elessair	0:f269e3021894	1422
elessair	0:f269e3021894	1423	ret = mbedtls_snprintf( p, n, "\n%s%-" BC "s: %d bits", prefix, key_size_str,
elessair	0:f269e3021894	1424	(int) mbedtls_pk_get_bitlen( &crt->pk ) );
elessair	0:f269e3021894	1425	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1426
elessair	0:f269e3021894	1427	/*
elessair	0:f269e3021894	1428	* Optional extensions
elessair	0:f269e3021894	1429	*/
elessair	0:f269e3021894	1430
elessair	0:f269e3021894	1431	if( crt->ext_types & MBEDTLS_X509_EXT_BASIC_CONSTRAINTS )
elessair	0:f269e3021894	1432	{
elessair	0:f269e3021894	1433	ret = mbedtls_snprintf( p, n, "\n%sbasic constraints : CA=%s", prefix,
elessair	0:f269e3021894	1434	crt->ca_istrue ? "true" : "false" );
elessair	0:f269e3021894	1435	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1436
elessair	0:f269e3021894	1437	if( crt->max_pathlen > 0 )
elessair	0:f269e3021894	1438	{
elessair	0:f269e3021894	1439	ret = mbedtls_snprintf( p, n, ", max_pathlen=%d", crt->max_pathlen - 1 );
elessair	0:f269e3021894	1440	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1441	}
elessair	0:f269e3021894	1442	}
elessair	0:f269e3021894	1443
elessair	0:f269e3021894	1444	if( crt->ext_types & MBEDTLS_X509_EXT_SUBJECT_ALT_NAME )
elessair	0:f269e3021894	1445	{
elessair	0:f269e3021894	1446	ret = mbedtls_snprintf( p, n, "\n%ssubject alt name : ", prefix );
elessair	0:f269e3021894	1447	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1448
elessair	0:f269e3021894	1449	if( ( ret = x509_info_subject_alt_name( &p, &n,
elessair	0:f269e3021894	1450	&crt->subject_alt_names ) ) != 0 )
elessair	0:f269e3021894	1451	return( ret );
elessair	0:f269e3021894	1452	}
elessair	0:f269e3021894	1453
elessair	0:f269e3021894	1454	if( crt->ext_types & MBEDTLS_X509_EXT_NS_CERT_TYPE )
elessair	0:f269e3021894	1455	{
elessair	0:f269e3021894	1456	ret = mbedtls_snprintf( p, n, "\n%scert. type : ", prefix );
elessair	0:f269e3021894	1457	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1458
elessair	0:f269e3021894	1459	if( ( ret = x509_info_cert_type( &p, &n, crt->ns_cert_type ) ) != 0 )
elessair	0:f269e3021894	1460	return( ret );
elessair	0:f269e3021894	1461	}
elessair	0:f269e3021894	1462
elessair	0:f269e3021894	1463	if( crt->ext_types & MBEDTLS_X509_EXT_KEY_USAGE )
elessair	0:f269e3021894	1464	{
elessair	0:f269e3021894	1465	ret = mbedtls_snprintf( p, n, "\n%skey usage : ", prefix );
elessair	0:f269e3021894	1466	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1467
elessair	0:f269e3021894	1468	if( ( ret = x509_info_key_usage( &p, &n, crt->key_usage ) ) != 0 )
elessair	0:f269e3021894	1469	return( ret );
elessair	0:f269e3021894	1470	}
elessair	0:f269e3021894	1471
elessair	0:f269e3021894	1472	if( crt->ext_types & MBEDTLS_X509_EXT_EXTENDED_KEY_USAGE )
elessair	0:f269e3021894	1473	{
elessair	0:f269e3021894	1474	ret = mbedtls_snprintf( p, n, "\n%sext key usage : ", prefix );
elessair	0:f269e3021894	1475	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1476
elessair	0:f269e3021894	1477	if( ( ret = x509_info_ext_key_usage( &p, &n,
elessair	0:f269e3021894	1478	&crt->ext_key_usage ) ) != 0 )
elessair	0:f269e3021894	1479	return( ret );
elessair	0:f269e3021894	1480	}
elessair	0:f269e3021894	1481
elessair	0:f269e3021894	1482	ret = mbedtls_snprintf( p, n, "\n" );
elessair	0:f269e3021894	1483	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1484
elessair	0:f269e3021894	1485	return( (int) ( size - n ) );
elessair	0:f269e3021894	1486	}
elessair	0:f269e3021894	1487
elessair	0:f269e3021894	1488	struct x509_crt_verify_string {
elessair	0:f269e3021894	1489	int code;
elessair	0:f269e3021894	1490	const char *string;
elessair	0:f269e3021894	1491	};
elessair	0:f269e3021894	1492
elessair	0:f269e3021894	1493	static const struct x509_crt_verify_string x509_crt_verify_strings[] = {
elessair	0:f269e3021894	1494	{ MBEDTLS_X509_BADCERT_EXPIRED, "The certificate validity has expired" },
elessair	0:f269e3021894	1495	{ MBEDTLS_X509_BADCERT_REVOKED, "The certificate has been revoked (is on a CRL)" },
elessair	0:f269e3021894	1496	{ MBEDTLS_X509_BADCERT_CN_MISMATCH, "The certificate Common Name (CN) does not match with the expected CN" },
elessair	0:f269e3021894	1497	{ MBEDTLS_X509_BADCERT_NOT_TRUSTED, "The certificate is not correctly signed by the trusted CA" },
elessair	0:f269e3021894	1498	{ MBEDTLS_X509_BADCRL_NOT_TRUSTED, "The CRL is not correctly signed by the trusted CA" },
elessair	0:f269e3021894	1499	{ MBEDTLS_X509_BADCRL_EXPIRED, "The CRL is expired" },
elessair	0:f269e3021894	1500	{ MBEDTLS_X509_BADCERT_MISSING, "Certificate was missing" },
elessair	0:f269e3021894	1501	{ MBEDTLS_X509_BADCERT_SKIP_VERIFY, "Certificate verification was skipped" },
elessair	0:f269e3021894	1502	{ MBEDTLS_X509_BADCERT_OTHER, "Other reason (can be used by verify callback)" },
elessair	0:f269e3021894	1503	{ MBEDTLS_X509_BADCERT_FUTURE, "The certificate validity starts in the future" },
elessair	0:f269e3021894	1504	{ MBEDTLS_X509_BADCRL_FUTURE, "The CRL is from the future" },
elessair	0:f269e3021894	1505	{ MBEDTLS_X509_BADCERT_KEY_USAGE, "Usage does not match the keyUsage extension" },
elessair	0:f269e3021894	1506	{ MBEDTLS_X509_BADCERT_EXT_KEY_USAGE, "Usage does not match the extendedKeyUsage extension" },
elessair	0:f269e3021894	1507	{ MBEDTLS_X509_BADCERT_NS_CERT_TYPE, "Usage does not match the nsCertType extension" },
elessair	0:f269e3021894	1508	{ MBEDTLS_X509_BADCERT_BAD_MD, "The certificate is signed with an unacceptable hash." },
elessair	0:f269e3021894	1509	{ MBEDTLS_X509_BADCERT_BAD_PK, "The certificate is signed with an unacceptable PK alg (eg RSA vs ECDSA)." },
elessair	0:f269e3021894	1510	{ MBEDTLS_X509_BADCERT_BAD_KEY, "The certificate is signed with an unacceptable key (eg bad curve, RSA too short)." },
elessair	0:f269e3021894	1511	{ MBEDTLS_X509_BADCRL_BAD_MD, "The CRL is signed with an unacceptable hash." },
elessair	0:f269e3021894	1512	{ MBEDTLS_X509_BADCRL_BAD_PK, "The CRL is signed with an unacceptable PK alg (eg RSA vs ECDSA)." },
elessair	0:f269e3021894	1513	{ MBEDTLS_X509_BADCRL_BAD_KEY, "The CRL is signed with an unacceptable key (eg bad curve, RSA too short)." },
elessair	0:f269e3021894	1514	{ 0, NULL }
elessair	0:f269e3021894	1515	};
elessair	0:f269e3021894	1516
elessair	0:f269e3021894	1517	int mbedtls_x509_crt_verify_info( char buf, size_t size, const char prefix,
elessair	0:f269e3021894	1518	uint32_t flags )
elessair	0:f269e3021894	1519	{
elessair	0:f269e3021894	1520	int ret;
elessair	0:f269e3021894	1521	const struct x509_crt_verify_string *cur;
elessair	0:f269e3021894	1522	char *p = buf;
elessair	0:f269e3021894	1523	size_t n = size;
elessair	0:f269e3021894	1524
elessair	0:f269e3021894	1525	for( cur = x509_crt_verify_strings; cur->string != NULL ; cur++ )
elessair	0:f269e3021894	1526	{
elessair	0:f269e3021894	1527	if( ( flags & cur->code ) == 0 )
elessair	0:f269e3021894	1528	continue;
elessair	0:f269e3021894	1529
elessair	0:f269e3021894	1530	ret = mbedtls_snprintf( p, n, "%s%s\n", prefix, cur->string );
elessair	0:f269e3021894	1531	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1532	flags ^= cur->code;
elessair	0:f269e3021894	1533	}
elessair	0:f269e3021894	1534
elessair	0:f269e3021894	1535	if( flags != 0 )
elessair	0:f269e3021894	1536	{
elessair	0:f269e3021894	1537	ret = mbedtls_snprintf( p, n, "%sUnknown reason "
elessair	0:f269e3021894	1538	"(this should not happen)\n", prefix );
elessair	0:f269e3021894	1539	MBEDTLS_X509_SAFE_SNPRINTF;
elessair	0:f269e3021894	1540	}
elessair	0:f269e3021894	1541
elessair	0:f269e3021894	1542	return( (int) ( size - n ) );
elessair	0:f269e3021894	1543	}
elessair	0:f269e3021894	1544
elessair	0:f269e3021894	1545	#if defined(MBEDTLS_X509_CHECK_KEY_USAGE)
elessair	0:f269e3021894	1546	int mbedtls_x509_crt_check_key_usage( const mbedtls_x509_crt *crt,
elessair	0:f269e3021894	1547	unsigned int usage )
elessair	0:f269e3021894	1548	{
elessair	0:f269e3021894	1549	unsigned int usage_must, usage_may;
elessair	0:f269e3021894	1550	unsigned int may_mask = MBEDTLS_X509_KU_ENCIPHER_ONLY
elessair	0:f269e3021894	1551	\| MBEDTLS_X509_KU_DECIPHER_ONLY;
elessair	0:f269e3021894	1552
elessair	0:f269e3021894	1553	if( ( crt->ext_types & MBEDTLS_X509_EXT_KEY_USAGE ) == 0 )
elessair	0:f269e3021894	1554	return( 0 );
elessair	0:f269e3021894	1555
elessair	0:f269e3021894	1556	usage_must = usage & ~may_mask;
elessair	0:f269e3021894	1557
elessair	0:f269e3021894	1558	if( ( ( crt->key_usage & ~may_mask ) & usage_must ) != usage_must )
elessair	0:f269e3021894	1559	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	1560
elessair	0:f269e3021894	1561	usage_may = usage & may_mask;
elessair	0:f269e3021894	1562
elessair	0:f269e3021894	1563	if( ( ( crt->key_usage & may_mask ) \| usage_may ) != usage_may )
elessair	0:f269e3021894	1564	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	1565
elessair	0:f269e3021894	1566	return( 0 );
elessair	0:f269e3021894	1567	}
elessair	0:f269e3021894	1568	#endif
elessair	0:f269e3021894	1569
elessair	0:f269e3021894	1570	#if defined(MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE)
elessair	0:f269e3021894	1571	int mbedtls_x509_crt_check_extended_key_usage( const mbedtls_x509_crt *crt,
elessair	0:f269e3021894	1572	const char *usage_oid,
elessair	0:f269e3021894	1573	size_t usage_len )
elessair	0:f269e3021894	1574	{
elessair	0:f269e3021894	1575	const mbedtls_x509_sequence *cur;
elessair	0:f269e3021894	1576
elessair	0:f269e3021894	1577	/* Extension is not mandatory, absent means no restriction */
elessair	0:f269e3021894	1578	if( ( crt->ext_types & MBEDTLS_X509_EXT_EXTENDED_KEY_USAGE ) == 0 )
elessair	0:f269e3021894	1579	return( 0 );
elessair	0:f269e3021894	1580
elessair	0:f269e3021894	1581	/*
elessair	0:f269e3021894	1582	* Look for the requested usage (or wildcard ANY) in our list
elessair	0:f269e3021894	1583	*/
elessair	0:f269e3021894	1584	for( cur = &crt->ext_key_usage; cur != NULL; cur = cur->next )
elessair	0:f269e3021894	1585	{
elessair	0:f269e3021894	1586	const mbedtls_x509_buf *cur_oid = &cur->buf;
elessair	0:f269e3021894	1587
elessair	0:f269e3021894	1588	if( cur_oid->len == usage_len &&
elessair	0:f269e3021894	1589	memcmp( cur_oid->p, usage_oid, usage_len ) == 0 )
elessair	0:f269e3021894	1590	{
elessair	0:f269e3021894	1591	return( 0 );
elessair	0:f269e3021894	1592	}
elessair	0:f269e3021894	1593
elessair	0:f269e3021894	1594	if( MBEDTLS_OID_CMP( MBEDTLS_OID_ANY_EXTENDED_KEY_USAGE, cur_oid ) == 0 )
elessair	0:f269e3021894	1595	return( 0 );
elessair	0:f269e3021894	1596	}
elessair	0:f269e3021894	1597
elessair	0:f269e3021894	1598	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	1599	}
elessair	0:f269e3021894	1600	#endif /* MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE */
elessair	0:f269e3021894	1601
elessair	0:f269e3021894	1602	#if defined(MBEDTLS_X509_CRL_PARSE_C)
elessair	0:f269e3021894	1603	/*
elessair	0:f269e3021894	1604	* Return 1 if the certificate is revoked, or 0 otherwise.
elessair	0:f269e3021894	1605	*/
elessair	0:f269e3021894	1606	int mbedtls_x509_crt_is_revoked( const mbedtls_x509_crt crt, const mbedtls_x509_crl crl )
elessair	0:f269e3021894	1607	{
elessair	0:f269e3021894	1608	const mbedtls_x509_crl_entry *cur = &crl->entry;
elessair	0:f269e3021894	1609
elessair	0:f269e3021894	1610	while( cur != NULL && cur->serial.len != 0 )
elessair	0:f269e3021894	1611	{
elessair	0:f269e3021894	1612	if( crt->serial.len == cur->serial.len &&
elessair	0:f269e3021894	1613	memcmp( crt->serial.p, cur->serial.p, crt->serial.len ) == 0 )
elessair	0:f269e3021894	1614	{
elessair	0:f269e3021894	1615	if( mbedtls_x509_time_is_past( &cur->revocation_date ) )
elessair	0:f269e3021894	1616	return( 1 );
elessair	0:f269e3021894	1617	}
elessair	0:f269e3021894	1618
elessair	0:f269e3021894	1619	cur = cur->next;
elessair	0:f269e3021894	1620	}
elessair	0:f269e3021894	1621
elessair	0:f269e3021894	1622	return( 0 );
elessair	0:f269e3021894	1623	}
elessair	0:f269e3021894	1624
elessair	0:f269e3021894	1625	/*
elessair	0:f269e3021894	1626	* Check that the given certificate is not revoked according to the CRL.
elessair	0:f269e3021894	1627	* Skip validation is no CRL for the given CA is present.
elessair	0:f269e3021894	1628	*/
elessair	0:f269e3021894	1629	static int x509_crt_verifycrl( mbedtls_x509_crt crt, mbedtls_x509_crt ca,
elessair	0:f269e3021894	1630	mbedtls_x509_crl *crl_list,
elessair	0:f269e3021894	1631	const mbedtls_x509_crt_profile *profile )
elessair	0:f269e3021894	1632	{
elessair	0:f269e3021894	1633	int flags = 0;
elessair	0:f269e3021894	1634	unsigned char hash[MBEDTLS_MD_MAX_SIZE];
elessair	0:f269e3021894	1635	const mbedtls_md_info_t *md_info;
elessair	0:f269e3021894	1636
elessair	0:f269e3021894	1637	if( ca == NULL )
elessair	0:f269e3021894	1638	return( flags );
elessair	0:f269e3021894	1639
elessair	0:f269e3021894	1640	while( crl_list != NULL )
elessair	0:f269e3021894	1641	{
elessair	0:f269e3021894	1642	if( crl_list->version == 0 \|\|
elessair	0:f269e3021894	1643	crl_list->issuer_raw.len != ca->subject_raw.len \|\|
elessair	0:f269e3021894	1644	memcmp( crl_list->issuer_raw.p, ca->subject_raw.p,
elessair	0:f269e3021894	1645	crl_list->issuer_raw.len ) != 0 )
elessair	0:f269e3021894	1646	{
elessair	0:f269e3021894	1647	crl_list = crl_list->next;
elessair	0:f269e3021894	1648	continue;
elessair	0:f269e3021894	1649	}
elessair	0:f269e3021894	1650
elessair	0:f269e3021894	1651	/*
elessair	0:f269e3021894	1652	* Check if the CA is configured to sign CRLs
elessair	0:f269e3021894	1653	*/
elessair	0:f269e3021894	1654	#if defined(MBEDTLS_X509_CHECK_KEY_USAGE)
elessair	0:f269e3021894	1655	if( mbedtls_x509_crt_check_key_usage( ca, MBEDTLS_X509_KU_CRL_SIGN ) != 0 )
elessair	0:f269e3021894	1656	{
elessair	0:f269e3021894	1657	flags \|= MBEDTLS_X509_BADCRL_NOT_TRUSTED;
elessair	0:f269e3021894	1658	break;
elessair	0:f269e3021894	1659	}
elessair	0:f269e3021894	1660	#endif
elessair	0:f269e3021894	1661
elessair	0:f269e3021894	1662	/*
elessair	0:f269e3021894	1663	* Check if CRL is correctly signed by the trusted CA
elessair	0:f269e3021894	1664	*/
elessair	0:f269e3021894	1665	if( x509_profile_check_md_alg( profile, crl_list->sig_md ) != 0 )
elessair	0:f269e3021894	1666	flags \|= MBEDTLS_X509_BADCRL_BAD_MD;
elessair	0:f269e3021894	1667
elessair	0:f269e3021894	1668	if( x509_profile_check_pk_alg( profile, crl_list->sig_pk ) != 0 )
elessair	0:f269e3021894	1669	flags \|= MBEDTLS_X509_BADCRL_BAD_PK;
elessair	0:f269e3021894	1670
elessair	0:f269e3021894	1671	md_info = mbedtls_md_info_from_type( crl_list->sig_md );
elessair	0:f269e3021894	1672	if( md_info == NULL )
elessair	0:f269e3021894	1673	{
elessair	0:f269e3021894	1674	/*
elessair	0:f269e3021894	1675	* Cannot check 'unknown' hash
elessair	0:f269e3021894	1676	*/
elessair	0:f269e3021894	1677	flags \|= MBEDTLS_X509_BADCRL_NOT_TRUSTED;
elessair	0:f269e3021894	1678	break;
elessair	0:f269e3021894	1679	}
elessair	0:f269e3021894	1680
elessair	0:f269e3021894	1681	mbedtls_md( md_info, crl_list->tbs.p, crl_list->tbs.len, hash );
elessair	0:f269e3021894	1682
elessair	0:f269e3021894	1683	if( x509_profile_check_key( profile, crl_list->sig_pk, &ca->pk ) != 0 )
elessair	0:f269e3021894	1684	flags \|= MBEDTLS_X509_BADCERT_BAD_KEY;
elessair	0:f269e3021894	1685
elessair	0:f269e3021894	1686	if( mbedtls_pk_verify_ext( crl_list->sig_pk, crl_list->sig_opts, &ca->pk,
elessair	0:f269e3021894	1687	crl_list->sig_md, hash, mbedtls_md_get_size( md_info ),
elessair	0:f269e3021894	1688	crl_list->sig.p, crl_list->sig.len ) != 0 )
elessair	0:f269e3021894	1689	{
elessair	0:f269e3021894	1690	flags \|= MBEDTLS_X509_BADCRL_NOT_TRUSTED;
elessair	0:f269e3021894	1691	break;
elessair	0:f269e3021894	1692	}
elessair	0:f269e3021894	1693
elessair	0:f269e3021894	1694	/*
elessair	0:f269e3021894	1695	* Check for validity of CRL (Do not drop out)
elessair	0:f269e3021894	1696	*/
elessair	0:f269e3021894	1697	if( mbedtls_x509_time_is_past( &crl_list->next_update ) )
elessair	0:f269e3021894	1698	flags \|= MBEDTLS_X509_BADCRL_EXPIRED;
elessair	0:f269e3021894	1699
elessair	0:f269e3021894	1700	if( mbedtls_x509_time_is_future( &crl_list->this_update ) )
elessair	0:f269e3021894	1701	flags \|= MBEDTLS_X509_BADCRL_FUTURE;
elessair	0:f269e3021894	1702
elessair	0:f269e3021894	1703	/*
elessair	0:f269e3021894	1704	* Check if certificate is revoked
elessair	0:f269e3021894	1705	*/
elessair	0:f269e3021894	1706	if( mbedtls_x509_crt_is_revoked( crt, crl_list ) )
elessair	0:f269e3021894	1707	{
elessair	0:f269e3021894	1708	flags \|= MBEDTLS_X509_BADCERT_REVOKED;
elessair	0:f269e3021894	1709	break;
elessair	0:f269e3021894	1710	}
elessair	0:f269e3021894	1711
elessair	0:f269e3021894	1712	crl_list = crl_list->next;
elessair	0:f269e3021894	1713	}
elessair	0:f269e3021894	1714
elessair	0:f269e3021894	1715	return( flags );
elessair	0:f269e3021894	1716	}
elessair	0:f269e3021894	1717	#endif /* MBEDTLS_X509_CRL_PARSE_C */
elessair	0:f269e3021894	1718
elessair	0:f269e3021894	1719	/*
elessair	0:f269e3021894	1720	* Like memcmp, but case-insensitive and always returns -1 if different
elessair	0:f269e3021894	1721	*/
elessair	0:f269e3021894	1722	static int x509_memcasecmp( const void s1, const void s2, size_t len )
elessair	0:f269e3021894	1723	{
elessair	0:f269e3021894	1724	size_t i;
elessair	0:f269e3021894	1725	unsigned char diff;
elessair	0:f269e3021894	1726	const unsigned char n1 = s1, n2 = s2;
elessair	0:f269e3021894	1727
elessair	0:f269e3021894	1728	for( i = 0; i < len; i++ )
elessair	0:f269e3021894	1729	{
elessair	0:f269e3021894	1730	diff = n1[i] ^ n2[i];
elessair	0:f269e3021894	1731
elessair	0:f269e3021894	1732	if( diff == 0 )
elessair	0:f269e3021894	1733	continue;
elessair	0:f269e3021894	1734
elessair	0:f269e3021894	1735	if( diff == 32 &&
elessair	0:f269e3021894	1736	( ( n1[i] >= 'a' && n1[i] <= 'z' ) \|\|
elessair	0:f269e3021894	1737	( n1[i] >= 'A' && n1[i] <= 'Z' ) ) )
elessair	0:f269e3021894	1738	{
elessair	0:f269e3021894	1739	continue;
elessair	0:f269e3021894	1740	}
elessair	0:f269e3021894	1741
elessair	0:f269e3021894	1742	return( -1 );
elessair	0:f269e3021894	1743	}
elessair	0:f269e3021894	1744
elessair	0:f269e3021894	1745	return( 0 );
elessair	0:f269e3021894	1746	}
elessair	0:f269e3021894	1747
elessair	0:f269e3021894	1748	/*
elessair	0:f269e3021894	1749	* Return 0 if name matches wildcard, -1 otherwise
elessair	0:f269e3021894	1750	*/
elessair	0:f269e3021894	1751	static int x509_check_wildcard( const char cn, mbedtls_x509_buf name )
elessair	0:f269e3021894	1752	{
elessair	0:f269e3021894	1753	size_t i;
elessair	0:f269e3021894	1754	size_t cn_idx = 0, cn_len = strlen( cn );
elessair	0:f269e3021894	1755
elessair	0:f269e3021894	1756	if( name->len < 3 \|\| name->p[0] != '*' \|\| name->p[1] != '.' )
elessair	0:f269e3021894	1757	return( 0 );
elessair	0:f269e3021894	1758
elessair	0:f269e3021894	1759	for( i = 0; i < cn_len; ++i )
elessair	0:f269e3021894	1760	{
elessair	0:f269e3021894	1761	if( cn[i] == '.' )
elessair	0:f269e3021894	1762	{
elessair	0:f269e3021894	1763	cn_idx = i;
elessair	0:f269e3021894	1764	break;
elessair	0:f269e3021894	1765	}
elessair	0:f269e3021894	1766	}
elessair	0:f269e3021894	1767
elessair	0:f269e3021894	1768	if( cn_idx == 0 )
elessair	0:f269e3021894	1769	return( -1 );
elessair	0:f269e3021894	1770
elessair	0:f269e3021894	1771	if( cn_len - cn_idx == name->len - 1 &&
elessair	0:f269e3021894	1772	x509_memcasecmp( name->p + 1, cn + cn_idx, name->len - 1 ) == 0 )
elessair	0:f269e3021894	1773	{
elessair	0:f269e3021894	1774	return( 0 );
elessair	0:f269e3021894	1775	}
elessair	0:f269e3021894	1776
elessair	0:f269e3021894	1777	return( -1 );
elessair	0:f269e3021894	1778	}
elessair	0:f269e3021894	1779
elessair	0:f269e3021894	1780	/*
elessair	0:f269e3021894	1781	* Compare two X.509 strings, case-insensitive, and allowing for some encoding
elessair	0:f269e3021894	1782	* variations (but not all).
elessair	0:f269e3021894	1783	*
elessair	0:f269e3021894	1784	* Return 0 if equal, -1 otherwise.
elessair	0:f269e3021894	1785	*/
elessair	0:f269e3021894	1786	static int x509_string_cmp( const mbedtls_x509_buf a, const mbedtls_x509_buf b )
elessair	0:f269e3021894	1787	{
elessair	0:f269e3021894	1788	if( a->tag == b->tag &&
elessair	0:f269e3021894	1789	a->len == b->len &&
elessair	0:f269e3021894	1790	memcmp( a->p, b->p, b->len ) == 0 )
elessair	0:f269e3021894	1791	{
elessair	0:f269e3021894	1792	return( 0 );
elessair	0:f269e3021894	1793	}
elessair	0:f269e3021894	1794
elessair	0:f269e3021894	1795	if( ( a->tag == MBEDTLS_ASN1_UTF8_STRING \|\| a->tag == MBEDTLS_ASN1_PRINTABLE_STRING ) &&
elessair	0:f269e3021894	1796	( b->tag == MBEDTLS_ASN1_UTF8_STRING \|\| b->tag == MBEDTLS_ASN1_PRINTABLE_STRING ) &&
elessair	0:f269e3021894	1797	a->len == b->len &&
elessair	0:f269e3021894	1798	x509_memcasecmp( a->p, b->p, b->len ) == 0 )
elessair	0:f269e3021894	1799	{
elessair	0:f269e3021894	1800	return( 0 );
elessair	0:f269e3021894	1801	}
elessair	0:f269e3021894	1802
elessair	0:f269e3021894	1803	return( -1 );
elessair	0:f269e3021894	1804	}
elessair	0:f269e3021894	1805
elessair	0:f269e3021894	1806	/*
elessair	0:f269e3021894	1807	* Compare two X.509 Names (aka rdnSequence).
elessair	0:f269e3021894	1808	*
elessair	0:f269e3021894	1809	* See RFC 5280 section 7.1, though we don't implement the whole algorithm:
elessair	0:f269e3021894	1810	* we sometimes return unequal when the full algorithm would return equal,
elessair	0:f269e3021894	1811	* but never the other way. (In particular, we don't do Unicode normalisation
elessair	0:f269e3021894	1812	* or space folding.)
elessair	0:f269e3021894	1813	*
elessair	0:f269e3021894	1814	* Return 0 if equal, -1 otherwise.
elessair	0:f269e3021894	1815	*/
elessair	0:f269e3021894	1816	static int x509_name_cmp( const mbedtls_x509_name a, const mbedtls_x509_name b )
elessair	0:f269e3021894	1817	{
elessair	0:f269e3021894	1818	/* Avoid recursion, it might not be optimised by the compiler */
elessair	0:f269e3021894	1819	while( a != NULL \|\| b != NULL )
elessair	0:f269e3021894	1820	{
elessair	0:f269e3021894	1821	if( a == NULL \|\| b == NULL )
elessair	0:f269e3021894	1822	return( -1 );
elessair	0:f269e3021894	1823
elessair	0:f269e3021894	1824	/* type */
elessair	0:f269e3021894	1825	if( a->oid.tag != b->oid.tag \|\|
elessair	0:f269e3021894	1826	a->oid.len != b->oid.len \|\|
elessair	0:f269e3021894	1827	memcmp( a->oid.p, b->oid.p, b->oid.len ) != 0 )
elessair	0:f269e3021894	1828	{
elessair	0:f269e3021894	1829	return( -1 );
elessair	0:f269e3021894	1830	}
elessair	0:f269e3021894	1831
elessair	0:f269e3021894	1832	/* value */
elessair	0:f269e3021894	1833	if( x509_string_cmp( &a->val, &b->val ) != 0 )
elessair	0:f269e3021894	1834	return( -1 );
elessair	0:f269e3021894	1835
elessair	0:f269e3021894	1836	/* structure of the list of sets */
elessair	0:f269e3021894	1837	if( a->next_merged != b->next_merged )
elessair	0:f269e3021894	1838	return( -1 );
elessair	0:f269e3021894	1839
elessair	0:f269e3021894	1840	a = a->next;
elessair	0:f269e3021894	1841	b = b->next;
elessair	0:f269e3021894	1842	}
elessair	0:f269e3021894	1843
elessair	0:f269e3021894	1844	/* a == NULL == b */
elessair	0:f269e3021894	1845	return( 0 );
elessair	0:f269e3021894	1846	}
elessair	0:f269e3021894	1847
elessair	0:f269e3021894	1848	/*
elessair	0:f269e3021894	1849	* Check if 'parent' is a suitable parent (signing CA) for 'child'.
elessair	0:f269e3021894	1850	* Return 0 if yes, -1 if not.
elessair	0:f269e3021894	1851	*
elessair	0:f269e3021894	1852	* top means parent is a locally-trusted certificate
elessair	0:f269e3021894	1853	* bottom means child is the end entity cert
elessair	0:f269e3021894	1854	*/
elessair	0:f269e3021894	1855	static int x509_crt_check_parent( const mbedtls_x509_crt *child,
elessair	0:f269e3021894	1856	const mbedtls_x509_crt *parent,
elessair	0:f269e3021894	1857	int top, int bottom )
elessair	0:f269e3021894	1858	{
elessair	0:f269e3021894	1859	int need_ca_bit;
elessair	0:f269e3021894	1860
elessair	0:f269e3021894	1861	/* Parent must be the issuer */
elessair	0:f269e3021894	1862	if( x509_name_cmp( &child->issuer, &parent->subject ) != 0 )
elessair	0:f269e3021894	1863	return( -1 );
elessair	0:f269e3021894	1864
elessair	0:f269e3021894	1865	/* Parent must have the basicConstraints CA bit set as a general rule */
elessair	0:f269e3021894	1866	need_ca_bit = 1;
elessair	0:f269e3021894	1867
elessair	0:f269e3021894	1868	/* Exception: v1/v2 certificates that are locally trusted. */
elessair	0:f269e3021894	1869	if( top && parent->version < 3 )
elessair	0:f269e3021894	1870	need_ca_bit = 0;
elessair	0:f269e3021894	1871
elessair	0:f269e3021894	1872	/* Exception: self-signed end-entity certs that are locally trusted. */
elessair	0:f269e3021894	1873	if( top && bottom &&
elessair	0:f269e3021894	1874	child->raw.len == parent->raw.len &&
elessair	0:f269e3021894	1875	memcmp( child->raw.p, parent->raw.p, child->raw.len ) == 0 )
elessair	0:f269e3021894	1876	{
elessair	0:f269e3021894	1877	need_ca_bit = 0;
elessair	0:f269e3021894	1878	}
elessair	0:f269e3021894	1879
elessair	0:f269e3021894	1880	if( need_ca_bit && ! parent->ca_istrue )
elessair	0:f269e3021894	1881	return( -1 );
elessair	0:f269e3021894	1882
elessair	0:f269e3021894	1883	#if defined(MBEDTLS_X509_CHECK_KEY_USAGE)
elessair	0:f269e3021894	1884	if( need_ca_bit &&
elessair	0:f269e3021894	1885	mbedtls_x509_crt_check_key_usage( parent, MBEDTLS_X509_KU_KEY_CERT_SIGN ) != 0 )
elessair	0:f269e3021894	1886	{
elessair	0:f269e3021894	1887	return( -1 );
elessair	0:f269e3021894	1888	}
elessair	0:f269e3021894	1889	#endif
elessair	0:f269e3021894	1890
elessair	0:f269e3021894	1891	return( 0 );
elessair	0:f269e3021894	1892	}
elessair	0:f269e3021894	1893
elessair	0:f269e3021894	1894	static int x509_crt_verify_top(
elessair	0:f269e3021894	1895	mbedtls_x509_crt child, mbedtls_x509_crt trust_ca,
elessair	0:f269e3021894	1896	mbedtls_x509_crl *ca_crl,
elessair	0:f269e3021894	1897	const mbedtls_x509_crt_profile *profile,
elessair	0:f269e3021894	1898	int path_cnt, int self_cnt, uint32_t *flags,
elessair	0:f269e3021894	1899	int (f_vrfy)(void , mbedtls_x509_crt , int, uint32_t ),
elessair	0:f269e3021894	1900	void *p_vrfy )
elessair	0:f269e3021894	1901	{
elessair	0:f269e3021894	1902	int ret;
elessair	0:f269e3021894	1903	uint32_t ca_flags = 0;
elessair	0:f269e3021894	1904	int check_path_cnt;
elessair	0:f269e3021894	1905	unsigned char hash[MBEDTLS_MD_MAX_SIZE];
elessair	0:f269e3021894	1906	const mbedtls_md_info_t *md_info;
elessair	0:f269e3021894	1907
elessair	0:f269e3021894	1908	if( mbedtls_x509_time_is_past( &child->valid_to ) )
elessair	0:f269e3021894	1909	*flags \|= MBEDTLS_X509_BADCERT_EXPIRED;
elessair	0:f269e3021894	1910
elessair	0:f269e3021894	1911	if( mbedtls_x509_time_is_future( &child->valid_from ) )
elessair	0:f269e3021894	1912	*flags \|= MBEDTLS_X509_BADCERT_FUTURE;
elessair	0:f269e3021894	1913
elessair	0:f269e3021894	1914	if( x509_profile_check_md_alg( profile, child->sig_md ) != 0 )
elessair	0:f269e3021894	1915	*flags \|= MBEDTLS_X509_BADCERT_BAD_MD;
elessair	0:f269e3021894	1916
elessair	0:f269e3021894	1917	if( x509_profile_check_pk_alg( profile, child->sig_pk ) != 0 )
elessair	0:f269e3021894	1918	*flags \|= MBEDTLS_X509_BADCERT_BAD_PK;
elessair	0:f269e3021894	1919
elessair	0:f269e3021894	1920	/*
elessair	0:f269e3021894	1921	* Child is the top of the chain. Check against the trust_ca list.
elessair	0:f269e3021894	1922	*/
elessair	0:f269e3021894	1923	*flags \|= MBEDTLS_X509_BADCERT_NOT_TRUSTED;
elessair	0:f269e3021894	1924
elessair	0:f269e3021894	1925	md_info = mbedtls_md_info_from_type( child->sig_md );
elessair	0:f269e3021894	1926	if( md_info == NULL )
elessair	0:f269e3021894	1927	{
elessair	0:f269e3021894	1928	/*
elessair	0:f269e3021894	1929	* Cannot check 'unknown', no need to try any CA
elessair	0:f269e3021894	1930	*/
elessair	0:f269e3021894	1931	trust_ca = NULL;
elessair	0:f269e3021894	1932	}
elessair	0:f269e3021894	1933	else
elessair	0:f269e3021894	1934	mbedtls_md( md_info, child->tbs.p, child->tbs.len, hash );
elessair	0:f269e3021894	1935
elessair	0:f269e3021894	1936	for( /* trust_ca */ ; trust_ca != NULL; trust_ca = trust_ca->next )
elessair	0:f269e3021894	1937	{
elessair	0:f269e3021894	1938	if( x509_crt_check_parent( child, trust_ca, 1, path_cnt == 0 ) != 0 )
elessair	0:f269e3021894	1939	continue;
elessair	0:f269e3021894	1940
elessair	0:f269e3021894	1941	check_path_cnt = path_cnt + 1;
elessair	0:f269e3021894	1942
elessair	0:f269e3021894	1943	/*
elessair	0:f269e3021894	1944	* Reduce check_path_cnt to check against if top of the chain is
elessair	0:f269e3021894	1945	* the same as the trusted CA
elessair	0:f269e3021894	1946	*/
elessair	0:f269e3021894	1947	if( child->subject_raw.len == trust_ca->subject_raw.len &&
elessair	0:f269e3021894	1948	memcmp( child->subject_raw.p, trust_ca->subject_raw.p,
elessair	0:f269e3021894	1949	child->issuer_raw.len ) == 0 )
elessair	0:f269e3021894	1950	{
elessair	0:f269e3021894	1951	check_path_cnt--;
elessair	0:f269e3021894	1952	}
elessair	0:f269e3021894	1953
elessair	0:f269e3021894	1954	/* Self signed certificates do not count towards the limit */
elessair	0:f269e3021894	1955	if( trust_ca->max_pathlen > 0 &&
elessair	0:f269e3021894	1956	trust_ca->max_pathlen < check_path_cnt - self_cnt )
elessair	0:f269e3021894	1957	{
elessair	0:f269e3021894	1958	continue;
elessair	0:f269e3021894	1959	}
elessair	0:f269e3021894	1960
elessair	0:f269e3021894	1961	if( mbedtls_x509_time_is_past( &trust_ca->valid_to ) )
elessair	0:f269e3021894	1962	{
elessair	0:f269e3021894	1963	continue;
elessair	0:f269e3021894	1964	}
elessair	0:f269e3021894	1965
elessair	0:f269e3021894	1966	if( mbedtls_x509_time_is_future( &trust_ca->valid_from ) )
elessair	0:f269e3021894	1967	{
elessair	0:f269e3021894	1968	continue;
elessair	0:f269e3021894	1969	}
elessair	0:f269e3021894	1970
elessair	0:f269e3021894	1971	if( mbedtls_pk_verify_ext( child->sig_pk, child->sig_opts, &trust_ca->pk,
elessair	0:f269e3021894	1972	child->sig_md, hash, mbedtls_md_get_size( md_info ),
elessair	0:f269e3021894	1973	child->sig.p, child->sig.len ) != 0 )
elessair	0:f269e3021894	1974	{
elessair	0:f269e3021894	1975	continue;
elessair	0:f269e3021894	1976	}
elessair	0:f269e3021894	1977
elessair	0:f269e3021894	1978	/*
elessair	0:f269e3021894	1979	* Top of chain is signed by a trusted CA
elessair	0:f269e3021894	1980	*/
elessair	0:f269e3021894	1981	*flags &= ~MBEDTLS_X509_BADCERT_NOT_TRUSTED;
elessair	0:f269e3021894	1982
elessair	0:f269e3021894	1983	if( x509_profile_check_key( profile, child->sig_pk, &trust_ca->pk ) != 0 )
elessair	0:f269e3021894	1984	*flags \|= MBEDTLS_X509_BADCERT_BAD_KEY;
elessair	0:f269e3021894	1985
elessair	0:f269e3021894	1986	break;
elessair	0:f269e3021894	1987	}
elessair	0:f269e3021894	1988
elessair	0:f269e3021894	1989	/*
elessair	0:f269e3021894	1990	* If top of chain is not the same as the trusted CA send a verify request
elessair	0:f269e3021894	1991	* to the callback for any issues with validity and CRL presence for the
elessair	0:f269e3021894	1992	* trusted CA certificate.
elessair	0:f269e3021894	1993	*/
elessair	0:f269e3021894	1994	if( trust_ca != NULL &&
elessair	0:f269e3021894	1995	( child->subject_raw.len != trust_ca->subject_raw.len \|\|
elessair	0:f269e3021894	1996	memcmp( child->subject_raw.p, trust_ca->subject_raw.p,
elessair	0:f269e3021894	1997	child->issuer_raw.len ) != 0 ) )
elessair	0:f269e3021894	1998	{
elessair	0:f269e3021894	1999	#if defined(MBEDTLS_X509_CRL_PARSE_C)
elessair	0:f269e3021894	2000	/* Check trusted CA's CRL for the chain's top crt */
elessair	0:f269e3021894	2001	*flags \|= x509_crt_verifycrl( child, trust_ca, ca_crl, profile );
elessair	0:f269e3021894	2002	#else
elessair	0:f269e3021894	2003	((void) ca_crl);
elessair	0:f269e3021894	2004	#endif
elessair	0:f269e3021894	2005
elessair	0:f269e3021894	2006	if( NULL != f_vrfy )
elessair	0:f269e3021894	2007	{
elessair	0:f269e3021894	2008	if( ( ret = f_vrfy( p_vrfy, trust_ca, path_cnt + 1,
elessair	0:f269e3021894	2009	&ca_flags ) ) != 0 )
elessair	0:f269e3021894	2010	{
elessair	0:f269e3021894	2011	return( ret );
elessair	0:f269e3021894	2012	}
elessair	0:f269e3021894	2013	}
elessair	0:f269e3021894	2014	}
elessair	0:f269e3021894	2015
elessair	0:f269e3021894	2016	/* Call callback on top cert */
elessair	0:f269e3021894	2017	if( NULL != f_vrfy )
elessair	0:f269e3021894	2018	{
elessair	0:f269e3021894	2019	if( ( ret = f_vrfy( p_vrfy, child, path_cnt, flags ) ) != 0 )
elessair	0:f269e3021894	2020	return( ret );
elessair	0:f269e3021894	2021	}
elessair	0:f269e3021894	2022
elessair	0:f269e3021894	2023	*flags \|= ca_flags;
elessair	0:f269e3021894	2024
elessair	0:f269e3021894	2025	return( 0 );
elessair	0:f269e3021894	2026	}
elessair	0:f269e3021894	2027
elessair	0:f269e3021894	2028	static int x509_crt_verify_child(
elessair	0:f269e3021894	2029	mbedtls_x509_crt child, mbedtls_x509_crt parent,
elessair	0:f269e3021894	2030	mbedtls_x509_crt trust_ca, mbedtls_x509_crl ca_crl,
elessair	0:f269e3021894	2031	const mbedtls_x509_crt_profile *profile,
elessair	0:f269e3021894	2032	int path_cnt, int self_cnt, uint32_t *flags,
elessair	0:f269e3021894	2033	int (f_vrfy)(void , mbedtls_x509_crt , int, uint32_t ),
elessair	0:f269e3021894	2034	void *p_vrfy )
elessair	0:f269e3021894	2035	{
elessair	0:f269e3021894	2036	int ret;
elessair	0:f269e3021894	2037	uint32_t parent_flags = 0;
elessair	0:f269e3021894	2038	unsigned char hash[MBEDTLS_MD_MAX_SIZE];
elessair	0:f269e3021894	2039	mbedtls_x509_crt *grandparent;
elessair	0:f269e3021894	2040	const mbedtls_md_info_t *md_info;
elessair	0:f269e3021894	2041
elessair	0:f269e3021894	2042	/* Counting intermediate self signed certificates */
elessair	0:f269e3021894	2043	if( ( path_cnt != 0 ) && x509_name_cmp( &child->issuer, &child->subject ) == 0 )
elessair	0:f269e3021894	2044	self_cnt++;
elessair	0:f269e3021894	2045
elessair	0:f269e3021894	2046	/* path_cnt is 0 for the first intermediate CA */
elessair	0:f269e3021894	2047	if( 1 + path_cnt > MBEDTLS_X509_MAX_INTERMEDIATE_CA )
elessair	0:f269e3021894	2048	{
elessair	0:f269e3021894	2049	*flags \|= MBEDTLS_X509_BADCERT_NOT_TRUSTED;
elessair	0:f269e3021894	2050	return( MBEDTLS_ERR_X509_CERT_VERIFY_FAILED );
elessair	0:f269e3021894	2051	}
elessair	0:f269e3021894	2052
elessair	0:f269e3021894	2053	if( mbedtls_x509_time_is_past( &child->valid_to ) )
elessair	0:f269e3021894	2054	*flags \|= MBEDTLS_X509_BADCERT_EXPIRED;
elessair	0:f269e3021894	2055
elessair	0:f269e3021894	2056	if( mbedtls_x509_time_is_future( &child->valid_from ) )
elessair	0:f269e3021894	2057	*flags \|= MBEDTLS_X509_BADCERT_FUTURE;
elessair	0:f269e3021894	2058
elessair	0:f269e3021894	2059	if( x509_profile_check_md_alg( profile, child->sig_md ) != 0 )
elessair	0:f269e3021894	2060	*flags \|= MBEDTLS_X509_BADCERT_BAD_MD;
elessair	0:f269e3021894	2061
elessair	0:f269e3021894	2062	if( x509_profile_check_pk_alg( profile, child->sig_pk ) != 0 )
elessair	0:f269e3021894	2063	*flags \|= MBEDTLS_X509_BADCERT_BAD_PK;
elessair	0:f269e3021894	2064
elessair	0:f269e3021894	2065	md_info = mbedtls_md_info_from_type( child->sig_md );
elessair	0:f269e3021894	2066	if( md_info == NULL )
elessair	0:f269e3021894	2067	{
elessair	0:f269e3021894	2068	/*
elessair	0:f269e3021894	2069	* Cannot check 'unknown' hash
elessair	0:f269e3021894	2070	*/
elessair	0:f269e3021894	2071	*flags \|= MBEDTLS_X509_BADCERT_NOT_TRUSTED;
elessair	0:f269e3021894	2072	}
elessair	0:f269e3021894	2073	else
elessair	0:f269e3021894	2074	{
elessair	0:f269e3021894	2075	mbedtls_md( md_info, child->tbs.p, child->tbs.len, hash );
elessair	0:f269e3021894	2076
elessair	0:f269e3021894	2077	if( x509_profile_check_key( profile, child->sig_pk, &parent->pk ) != 0 )
elessair	0:f269e3021894	2078	*flags \|= MBEDTLS_X509_BADCERT_BAD_KEY;
elessair	0:f269e3021894	2079
elessair	0:f269e3021894	2080	if( mbedtls_pk_verify_ext( child->sig_pk, child->sig_opts, &parent->pk,
elessair	0:f269e3021894	2081	child->sig_md, hash, mbedtls_md_get_size( md_info ),
elessair	0:f269e3021894	2082	child->sig.p, child->sig.len ) != 0 )
elessair	0:f269e3021894	2083	{
elessair	0:f269e3021894	2084	*flags \|= MBEDTLS_X509_BADCERT_NOT_TRUSTED;
elessair	0:f269e3021894	2085	}
elessair	0:f269e3021894	2086	}
elessair	0:f269e3021894	2087
elessair	0:f269e3021894	2088	#if defined(MBEDTLS_X509_CRL_PARSE_C)
elessair	0:f269e3021894	2089	/* Check trusted CA's CRL for the given crt */
elessair	0:f269e3021894	2090	*flags \|= x509_crt_verifycrl(child, parent, ca_crl, profile );
elessair	0:f269e3021894	2091	#endif
elessair	0:f269e3021894	2092
elessair	0:f269e3021894	2093	/* Look for a grandparent in trusted CAs */
elessair	0:f269e3021894	2094	for( grandparent = trust_ca;
elessair	0:f269e3021894	2095	grandparent != NULL;
elessair	0:f269e3021894	2096	grandparent = grandparent->next )
elessair	0:f269e3021894	2097	{
elessair	0:f269e3021894	2098	if( x509_crt_check_parent( parent, grandparent,
elessair	0:f269e3021894	2099	0, path_cnt == 0 ) == 0 )
elessair	0:f269e3021894	2100	break;
elessair	0:f269e3021894	2101	}
elessair	0:f269e3021894	2102
elessair	0:f269e3021894	2103	if( grandparent != NULL )
elessair	0:f269e3021894	2104	{
elessair	0:f269e3021894	2105	ret = x509_crt_verify_top( parent, grandparent, ca_crl, profile,
elessair	0:f269e3021894	2106	path_cnt + 1, self_cnt, &parent_flags, f_vrfy, p_vrfy );
elessair	0:f269e3021894	2107	if( ret != 0 )
elessair	0:f269e3021894	2108	return( ret );
elessair	0:f269e3021894	2109	}
elessair	0:f269e3021894	2110	else
elessair	0:f269e3021894	2111	{
elessair	0:f269e3021894	2112	/* Look for a grandparent upwards the chain */
elessair	0:f269e3021894	2113	for( grandparent = parent->next;
elessair	0:f269e3021894	2114	grandparent != NULL;
elessair	0:f269e3021894	2115	grandparent = grandparent->next )
elessair	0:f269e3021894	2116	{
elessair	0:f269e3021894	2117	/* +2 because the current step is not yet accounted for
elessair	0:f269e3021894	2118	* and because max_pathlen is one higher than it should be.
elessair	0:f269e3021894	2119	* Also self signed certificates do not count to the limit. */
elessair	0:f269e3021894	2120	if( grandparent->max_pathlen > 0 &&
elessair	0:f269e3021894	2121	grandparent->max_pathlen < 2 + path_cnt - self_cnt )
elessair	0:f269e3021894	2122	{
elessair	0:f269e3021894	2123	continue;
elessair	0:f269e3021894	2124	}
elessair	0:f269e3021894	2125
elessair	0:f269e3021894	2126	if( x509_crt_check_parent( parent, grandparent,
elessair	0:f269e3021894	2127	0, path_cnt == 0 ) == 0 )
elessair	0:f269e3021894	2128	break;
elessair	0:f269e3021894	2129	}
elessair	0:f269e3021894	2130
elessair	0:f269e3021894	2131	/* Is our parent part of the chain or at the top? */
elessair	0:f269e3021894	2132	if( grandparent != NULL )
elessair	0:f269e3021894	2133	{
elessair	0:f269e3021894	2134	ret = x509_crt_verify_child( parent, grandparent, trust_ca, ca_crl,
elessair	0:f269e3021894	2135	profile, path_cnt + 1, self_cnt, &parent_flags,
elessair	0:f269e3021894	2136	f_vrfy, p_vrfy );
elessair	0:f269e3021894	2137	if( ret != 0 )
elessair	0:f269e3021894	2138	return( ret );
elessair	0:f269e3021894	2139	}
elessair	0:f269e3021894	2140	else
elessair	0:f269e3021894	2141	{
elessair	0:f269e3021894	2142	ret = x509_crt_verify_top( parent, trust_ca, ca_crl, profile,
elessair	0:f269e3021894	2143	path_cnt + 1, self_cnt, &parent_flags,
elessair	0:f269e3021894	2144	f_vrfy, p_vrfy );
elessair	0:f269e3021894	2145	if( ret != 0 )
elessair	0:f269e3021894	2146	return( ret );
elessair	0:f269e3021894	2147	}
elessair	0:f269e3021894	2148	}
elessair	0:f269e3021894	2149
elessair	0:f269e3021894	2150	/* child is verified to be a child of the parent, call verify callback */
elessair	0:f269e3021894	2151	if( NULL != f_vrfy )
elessair	0:f269e3021894	2152	if( ( ret = f_vrfy( p_vrfy, child, path_cnt, flags ) ) != 0 )
elessair	0:f269e3021894	2153	return( ret );
elessair	0:f269e3021894	2154
elessair	0:f269e3021894	2155	*flags \|= parent_flags;
elessair	0:f269e3021894	2156
elessair	0:f269e3021894	2157	return( 0 );
elessair	0:f269e3021894	2158	}
elessair	0:f269e3021894	2159
elessair	0:f269e3021894	2160	/*
elessair	0:f269e3021894	2161	* Verify the certificate validity
elessair	0:f269e3021894	2162	*/
elessair	0:f269e3021894	2163	int mbedtls_x509_crt_verify( mbedtls_x509_crt *crt,
elessair	0:f269e3021894	2164	mbedtls_x509_crt *trust_ca,
elessair	0:f269e3021894	2165	mbedtls_x509_crl *ca_crl,
elessair	0:f269e3021894	2166	const char cn, uint32_t flags,
elessair	0:f269e3021894	2167	int (f_vrfy)(void , mbedtls_x509_crt , int, uint32_t ),
elessair	0:f269e3021894	2168	void *p_vrfy )
elessair	0:f269e3021894	2169	{
elessair	0:f269e3021894	2170	return( mbedtls_x509_crt_verify_with_profile( crt, trust_ca, ca_crl,
elessair	0:f269e3021894	2171	&mbedtls_x509_crt_profile_default, cn, flags, f_vrfy, p_vrfy ) );
elessair	0:f269e3021894	2172	}
elessair	0:f269e3021894	2173
elessair	0:f269e3021894	2174
elessair	0:f269e3021894	2175	/*
elessair	0:f269e3021894	2176	* Verify the certificate validity, with profile
elessair	0:f269e3021894	2177	*/
elessair	0:f269e3021894	2178	int mbedtls_x509_crt_verify_with_profile( mbedtls_x509_crt *crt,
elessair	0:f269e3021894	2179	mbedtls_x509_crt *trust_ca,
elessair	0:f269e3021894	2180	mbedtls_x509_crl *ca_crl,
elessair	0:f269e3021894	2181	const mbedtls_x509_crt_profile *profile,
elessair	0:f269e3021894	2182	const char cn, uint32_t flags,
elessair	0:f269e3021894	2183	int (f_vrfy)(void , mbedtls_x509_crt , int, uint32_t ),
elessair	0:f269e3021894	2184	void *p_vrfy )
elessair	0:f269e3021894	2185	{
elessair	0:f269e3021894	2186	size_t cn_len;
elessair	0:f269e3021894	2187	int ret;
elessair	0:f269e3021894	2188	int pathlen = 0, selfsigned = 0;
elessair	0:f269e3021894	2189	mbedtls_x509_crt *parent;
elessair	0:f269e3021894	2190	mbedtls_x509_name *name;
elessair	0:f269e3021894	2191	mbedtls_x509_sequence *cur = NULL;
elessair	0:f269e3021894	2192	mbedtls_pk_type_t pk_type;
elessair	0:f269e3021894	2193
elessair	0:f269e3021894	2194	if( profile == NULL )
elessair	0:f269e3021894	2195	return( MBEDTLS_ERR_X509_BAD_INPUT_DATA );
elessair	0:f269e3021894	2196
elessair	0:f269e3021894	2197	*flags = 0;
elessair	0:f269e3021894	2198
elessair	0:f269e3021894	2199	if( cn != NULL )
elessair	0:f269e3021894	2200	{
elessair	0:f269e3021894	2201	name = &crt->subject;
elessair	0:f269e3021894	2202	cn_len = strlen( cn );
elessair	0:f269e3021894	2203
elessair	0:f269e3021894	2204	if( crt->ext_types & MBEDTLS_X509_EXT_SUBJECT_ALT_NAME )
elessair	0:f269e3021894	2205	{
elessair	0:f269e3021894	2206	cur = &crt->subject_alt_names;
elessair	0:f269e3021894	2207
elessair	0:f269e3021894	2208	while( cur != NULL )
elessair	0:f269e3021894	2209	{
elessair	0:f269e3021894	2210	if( cur->buf.len == cn_len &&
elessair	0:f269e3021894	2211	x509_memcasecmp( cn, cur->buf.p, cn_len ) == 0 )
elessair	0:f269e3021894	2212	break;
elessair	0:f269e3021894	2213
elessair	0:f269e3021894	2214	if( cur->buf.len > 2 &&
elessair	0:f269e3021894	2215	memcmp( cur->buf.p, "*.", 2 ) == 0 &&
elessair	0:f269e3021894	2216	x509_check_wildcard( cn, &cur->buf ) == 0 )
elessair	0:f269e3021894	2217	{
elessair	0:f269e3021894	2218	break;
elessair	0:f269e3021894	2219	}
elessair	0:f269e3021894	2220
elessair	0:f269e3021894	2221	cur = cur->next;
elessair	0:f269e3021894	2222	}
elessair	0:f269e3021894	2223
elessair	0:f269e3021894	2224	if( cur == NULL )
elessair	0:f269e3021894	2225	*flags \|= MBEDTLS_X509_BADCERT_CN_MISMATCH;
elessair	0:f269e3021894	2226	}
elessair	0:f269e3021894	2227	else
elessair	0:f269e3021894	2228	{
elessair	0:f269e3021894	2229	while( name != NULL )
elessair	0:f269e3021894	2230	{
elessair	0:f269e3021894	2231	if( MBEDTLS_OID_CMP( MBEDTLS_OID_AT_CN, &name->oid ) == 0 )
elessair	0:f269e3021894	2232	{
elessair	0:f269e3021894	2233	if( name->val.len == cn_len &&
elessair	0:f269e3021894	2234	x509_memcasecmp( name->val.p, cn, cn_len ) == 0 )
elessair	0:f269e3021894	2235	break;
elessair	0:f269e3021894	2236
elessair	0:f269e3021894	2237	if( name->val.len > 2 &&
elessair	0:f269e3021894	2238	memcmp( name->val.p, "*.", 2 ) == 0 &&
elessair	0:f269e3021894	2239	x509_check_wildcard( cn, &name->val ) == 0 )
elessair	0:f269e3021894	2240	break;
elessair	0:f269e3021894	2241	}
elessair	0:f269e3021894	2242
elessair	0:f269e3021894	2243	name = name->next;
elessair	0:f269e3021894	2244	}
elessair	0:f269e3021894	2245
elessair	0:f269e3021894	2246	if( name == NULL )
elessair	0:f269e3021894	2247	*flags \|= MBEDTLS_X509_BADCERT_CN_MISMATCH;
elessair	0:f269e3021894	2248	}
elessair	0:f269e3021894	2249	}
elessair	0:f269e3021894	2250
elessair	0:f269e3021894	2251	/* Check the type and size of the key */
elessair	0:f269e3021894	2252	pk_type = mbedtls_pk_get_type( &crt->pk );
elessair	0:f269e3021894	2253
elessair	0:f269e3021894	2254	if( x509_profile_check_pk_alg( profile, pk_type ) != 0 )
elessair	0:f269e3021894	2255	*flags \|= MBEDTLS_X509_BADCERT_BAD_PK;
elessair	0:f269e3021894	2256
elessair	0:f269e3021894	2257	if( x509_profile_check_key( profile, pk_type, &crt->pk ) != 0 )
elessair	0:f269e3021894	2258	*flags \|= MBEDTLS_X509_BADCERT_BAD_KEY;
elessair	0:f269e3021894	2259
elessair	0:f269e3021894	2260	/* Look for a parent in trusted CAs */
elessair	0:f269e3021894	2261	for( parent = trust_ca; parent != NULL; parent = parent->next )
elessair	0:f269e3021894	2262	{
elessair	0:f269e3021894	2263	if( x509_crt_check_parent( crt, parent, 0, pathlen == 0 ) == 0 )
elessair	0:f269e3021894	2264	break;
elessair	0:f269e3021894	2265	}
elessair	0:f269e3021894	2266
elessair	0:f269e3021894	2267	if( parent != NULL )
elessair	0:f269e3021894	2268	{
elessair	0:f269e3021894	2269	ret = x509_crt_verify_top( crt, parent, ca_crl, profile,
elessair	0:f269e3021894	2270	pathlen, selfsigned, flags, f_vrfy, p_vrfy );
elessair	0:f269e3021894	2271	if( ret != 0 )
elessair	0:f269e3021894	2272	return( ret );
elessair	0:f269e3021894	2273	}
elessair	0:f269e3021894	2274	else
elessair	0:f269e3021894	2275	{
elessair	0:f269e3021894	2276	/* Look for a parent upwards the chain */
elessair	0:f269e3021894	2277	for( parent = crt->next; parent != NULL; parent = parent->next )
elessair	0:f269e3021894	2278	if( x509_crt_check_parent( crt, parent, 0, pathlen == 0 ) == 0 )
elessair	0:f269e3021894	2279	break;
elessair	0:f269e3021894	2280
elessair	0:f269e3021894	2281	/* Are we part of the chain or at the top? */
elessair	0:f269e3021894	2282	if( parent != NULL )
elessair	0:f269e3021894	2283	{
elessair	0:f269e3021894	2284	ret = x509_crt_verify_child( crt, parent, trust_ca, ca_crl, profile,
elessair	0:f269e3021894	2285	pathlen, selfsigned, flags, f_vrfy, p_vrfy );
elessair	0:f269e3021894	2286	if( ret != 0 )
elessair	0:f269e3021894	2287	return( ret );
elessair	0:f269e3021894	2288	}
elessair	0:f269e3021894	2289	else
elessair	0:f269e3021894	2290	{
elessair	0:f269e3021894	2291	ret = x509_crt_verify_top( crt, trust_ca, ca_crl, profile,
elessair	0:f269e3021894	2292	pathlen, selfsigned, flags, f_vrfy, p_vrfy );
elessair	0:f269e3021894	2293	if( ret != 0 )
elessair	0:f269e3021894	2294	return( ret );
elessair	0:f269e3021894	2295	}
elessair	0:f269e3021894	2296	}
elessair	0:f269e3021894	2297
elessair	0:f269e3021894	2298	if( *flags != 0 )
elessair	0:f269e3021894	2299	return( MBEDTLS_ERR_X509_CERT_VERIFY_FAILED );
elessair	0:f269e3021894	2300
elessair	0:f269e3021894	2301	return( 0 );
elessair	0:f269e3021894	2302	}
elessair	0:f269e3021894	2303
elessair	0:f269e3021894	2304	/*
elessair	0:f269e3021894	2305	* Initialize a certificate chain
elessair	0:f269e3021894	2306	*/
elessair	0:f269e3021894	2307	void mbedtls_x509_crt_init( mbedtls_x509_crt *crt )
elessair	0:f269e3021894	2308	{
elessair	0:f269e3021894	2309	memset( crt, 0, sizeof(mbedtls_x509_crt) );
elessair	0:f269e3021894	2310	}
elessair	0:f269e3021894	2311
elessair	0:f269e3021894	2312	/*
elessair	0:f269e3021894	2313	* Unallocate all certificate data
elessair	0:f269e3021894	2314	*/
elessair	0:f269e3021894	2315	void mbedtls_x509_crt_free( mbedtls_x509_crt *crt )
elessair	0:f269e3021894	2316	{
elessair	0:f269e3021894	2317	mbedtls_x509_crt *cert_cur = crt;
elessair	0:f269e3021894	2318	mbedtls_x509_crt *cert_prv;
elessair	0:f269e3021894	2319	mbedtls_x509_name *name_cur;
elessair	0:f269e3021894	2320	mbedtls_x509_name *name_prv;
elessair	0:f269e3021894	2321	mbedtls_x509_sequence *seq_cur;
elessair	0:f269e3021894	2322	mbedtls_x509_sequence *seq_prv;
elessair	0:f269e3021894	2323
elessair	0:f269e3021894	2324	if( crt == NULL )
elessair	0:f269e3021894	2325	return;
elessair	0:f269e3021894	2326
elessair	0:f269e3021894	2327	do
elessair	0:f269e3021894	2328	{
elessair	0:f269e3021894	2329	mbedtls_pk_free( &cert_cur->pk );
elessair	0:f269e3021894	2330
elessair	0:f269e3021894	2331	#if defined(MBEDTLS_X509_RSASSA_PSS_SUPPORT)
elessair	0:f269e3021894	2332	mbedtls_free( cert_cur->sig_opts );
elessair	0:f269e3021894	2333	#endif
elessair	0:f269e3021894	2334
elessair	0:f269e3021894	2335	name_cur = cert_cur->issuer.next;
elessair	0:f269e3021894	2336	while( name_cur != NULL )
elessair	0:f269e3021894	2337	{
elessair	0:f269e3021894	2338	name_prv = name_cur;
elessair	0:f269e3021894	2339	name_cur = name_cur->next;
elessair	0:f269e3021894	2340	mbedtls_zeroize( name_prv, sizeof( mbedtls_x509_name ) );
elessair	0:f269e3021894	2341	mbedtls_free( name_prv );
elessair	0:f269e3021894	2342	}
elessair	0:f269e3021894	2343
elessair	0:f269e3021894	2344	name_cur = cert_cur->subject.next;
elessair	0:f269e3021894	2345	while( name_cur != NULL )
elessair	0:f269e3021894	2346	{
elessair	0:f269e3021894	2347	name_prv = name_cur;
elessair	0:f269e3021894	2348	name_cur = name_cur->next;
elessair	0:f269e3021894	2349	mbedtls_zeroize( name_prv, sizeof( mbedtls_x509_name ) );
elessair	0:f269e3021894	2350	mbedtls_free( name_prv );
elessair	0:f269e3021894	2351	}
elessair	0:f269e3021894	2352
elessair	0:f269e3021894	2353	seq_cur = cert_cur->ext_key_usage.next;
elessair	0:f269e3021894	2354	while( seq_cur != NULL )
elessair	0:f269e3021894	2355	{
elessair	0:f269e3021894	2356	seq_prv = seq_cur;
elessair	0:f269e3021894	2357	seq_cur = seq_cur->next;
elessair	0:f269e3021894	2358	mbedtls_zeroize( seq_prv, sizeof( mbedtls_x509_sequence ) );
elessair	0:f269e3021894	2359	mbedtls_free( seq_prv );
elessair	0:f269e3021894	2360	}
elessair	0:f269e3021894	2361
elessair	0:f269e3021894	2362	seq_cur = cert_cur->subject_alt_names.next;
elessair	0:f269e3021894	2363	while( seq_cur != NULL )
elessair	0:f269e3021894	2364	{
elessair	0:f269e3021894	2365	seq_prv = seq_cur;
elessair	0:f269e3021894	2366	seq_cur = seq_cur->next;
elessair	0:f269e3021894	2367	mbedtls_zeroize( seq_prv, sizeof( mbedtls_x509_sequence ) );
elessair	0:f269e3021894	2368	mbedtls_free( seq_prv );
elessair	0:f269e3021894	2369	}
elessair	0:f269e3021894	2370
elessair	0:f269e3021894	2371	if( cert_cur->raw.p != NULL )
elessair	0:f269e3021894	2372	{
elessair	0:f269e3021894	2373	mbedtls_zeroize( cert_cur->raw.p, cert_cur->raw.len );
elessair	0:f269e3021894	2374	mbedtls_free( cert_cur->raw.p );
elessair	0:f269e3021894	2375	}
elessair	0:f269e3021894	2376
elessair	0:f269e3021894	2377	cert_cur = cert_cur->next;
elessair	0:f269e3021894	2378	}
elessair	0:f269e3021894	2379	while( cert_cur != NULL );
elessair	0:f269e3021894	2380
elessair	0:f269e3021894	2381	cert_cur = crt;
elessair	0:f269e3021894	2382	do
elessair	0:f269e3021894	2383	{
elessair	0:f269e3021894	2384	cert_prv = cert_cur;
elessair	0:f269e3021894	2385	cert_cur = cert_cur->next;
elessair	0:f269e3021894	2386
elessair	0:f269e3021894	2387	mbedtls_zeroize( cert_prv, sizeof( mbedtls_x509_crt ) );
elessair	0:f269e3021894	2388	if( cert_prv != crt )
elessair	0:f269e3021894	2389	mbedtls_free( cert_prv );
elessair	0:f269e3021894	2390	}
elessair	0:f269e3021894	2391	while( cert_cur != NULL );
elessair	0:f269e3021894	2392	}
elessair	0:f269e3021894	2393
elessair	0:f269e3021894	2394	#endif /* MBEDTLS_X509_CRT_PARSE_C */

Repository toolbox

Export to desktop IDE

Repository details

Type:	Library
Created:	23 Oct 2016
Imports:	1689
Forks:	1
Commits:	1
Dependents:	3
Dependencies:	0
Followers:	20

features/mbedtls/src/x509_crt.c@0:f269e3021894, 2016-10-23 (annotated)

Who changed what in which revision?

Repository toolbox

Repository details

Important Information for this Arm website

Access Warning