Startsida Utforska Hjälp
Logga in
rotek
/
bt-67xx_universal_hw
2
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: a9d189d5f9
Grenar Taggar
bt-67xx_univers...
/
thirdparty
/
PolarSSL
/
library
/
x509parse.c

x509parse.c 84 KB
Historik

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885188618871888188918901891189218931894189518961897189818991900190119021903190419051906190719081909191019111912191319141915191619171918191919201921192219231924192519261927192819291930193119321933193419351936193719381939194019411942194319441945194619471948194919501951195219531954195519561957195819591960196119621963196419651966196719681969197019711972197319741975197619771978197919801981198219831984198519861987198819891990199119921993199419951996199719981999200020012002200320042005200620072008200920102011201220132014201520162017201820192020202120222023202420252026202720282029203020312032203320342035203620372038203920402041204220432044204520462047204820492050205120522053205420552056205720582059206020612062206320642065206620672068206920702071207220732074207520762077207820792080208120822083208420852086208720882089209020912092209320942095209620972098209921002101210221032104210521062107210821092110211121122113211421152116211721182119212021212122212321242125212621272128212921302131213221332134213521362137213821392140214121422143214421452146214721482149215021512152215321542155215621572158215921602161216221632164216521662167216821692170217121722173217421752176217721782179218021812182218321842185218621872188218921902191219221932194219521962197219821992200220122022203220422052206220722082209221022112212221322142215221622172218221922202221222222232224222522262227222822292230223122322233223422352236223722382239224022412242224322442245224622472248224922502251225222532254225522562257225822592260226122622263226422652266226722682269227022712272227322742275227622772278227922802281228222832284228522862287228822892290229122922293229422952296229722982299230023012302230323042305230623072308230923102311231223132314231523162317231823192320232123222323232423252326232723282329233023312332233323342335233623372338233923402341234223432344234523462347234823492350235123522353235423552356235723582359236023612362236323642365236623672368236923702371237223732374237523762377237823792380238123822383238423852386238723882389239023912392239323942395239623972398239924002401240224032404240524062407240824092410241124122413241424152416241724182419242024212422242324242425242624272428242924302431243224332434243524362437243824392440244124422443244424452446244724482449245024512452245324542455245624572458245924602461246224632464246524662467246824692470247124722473247424752476247724782479248024812482248324842485248624872488248924902491249224932494249524962497249824992500250125022503250425052506250725082509251025112512251325142515251625172518251925202521252225232524252525262527252825292530253125322533253425352536253725382539254025412542254325442545254625472548254925502551255225532554255525562557255825592560256125622563256425652566256725682569257025712572257325742575257625772578257925802581258225832584258525862587258825892590259125922593259425952596259725982599260026012602260326042605260626072608260926102611261226132614261526162617261826192620262126222623262426252626262726282629263026312632263326342635263626372638263926402641264226432644264526462647264826492650265126522653265426552656265726582659266026612662266326642665266626672668266926702671267226732674267526762677267826792680268126822683268426852686268726882689269026912692269326942695269626972698269927002701270227032704270527062707270827092710271127122713271427152716271727182719272027212722272327242725272627272728272927302731273227332734273527362737273827392740274127422743274427452746274727482749275027512752275327542755275627572758275927602761276227632764276527662767276827692770277127722773277427752776277727782779278027812782278327842785278627872788278927902791279227932794279527962797279827992800280128022803280428052806280728082809281028112812281328142815281628172818281928202821282228232824282528262827282828292830283128322833283428352836283728382839284028412842284328442845284628472848284928502851285228532854285528562857285828592860286128622863286428652866286728682869287028712872287328742875287628772878287928802881288228832884288528862887288828892890289128922893289428952896289728982899290029012902290329042905290629072908290929102911291229132914291529162917291829192920292129222923292429252926292729282929293029312932293329342935293629372938293929402941294229432944294529462947294829492950295129522953295429552956295729582959296029612962296329642965296629672968296929702971297229732974297529762977297829792980298129822983298429852986298729882989299029912992299329942995299629972998299930003001300230033004300530063007300830093010301130123013301430153016301730183019302030213022302330243025302630273028302930303031303230333034303530363037303830393040304130423043304430453046304730483049305030513052305330543055305630573058305930603061306230633064306530663067306830693070307130723073307430753076307730783079308030813082308330843085308630873088308930903091309230933094309530963097309830993100310131023103310431053106310731083109311031113112311331143115311631173118311931203121312231233124312531263127312831293130313131323133313431353136313731383139314031413142314331443145314631473148314931503151315231533154315531563157315831593160316131623163316431653166316731683169317031713172317331743175317631773178317931803181318231833184318531863187318831893190319131923193319431953196319731983199320032013202320332043205320632073208320932103211321232133214321532163217321832193220322132223223322432253226322732283229323032313232323332343235323632373238323932403241324232433244324532463247324832493250325132523253325432553256325732583259326032613262326332643265326632673268326932703271327232733274 
  1. /*
    2. 

  2.  *  X.509 certificate and private key decoding
    3. 

  3.  *
    4. 

  4.  *  Copyright (C) 2006-2010, Brainspark B.V.
    5. 

  5.  *
    6. 

  6.  *  This file is part of PolarSSL (http://www.polarssl.org)
    7. 

  7.  *  Lead Maintainer: Paul Bakker <polarssl_maintainer at polarssl.org>
    8. 

  8.  *
    9. 

  9.  *  All rights reserved.
    10. 

  10.  *
    11. 

  11.  *  This program is free software; you can redistribute it and/or modify
    12. 

  12.  *  it under the terms of the GNU General Public License as published by
    13. 

  13.  *  the Free Software Foundation; either version 2 of the License, or
    14. 

  14.  *  (at your option) any later version.
    15. 

  15.  *
    16. 

  16.  *  This program is distributed in the hope that it will be useful,
    17. 

  17.  *  but WITHOUT ANY WARRANTY; without even the implied warranty of
    18. 

  18.  *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    19. 

  19.  *  GNU General Public License for more details.
    20. 

  20.  *
    21. 

  21.  *  You should have received a copy of the GNU General Public License along
    22. 

  22.  *  with this program; if not, write to the Free Software Foundation, Inc.,
    23. 

  23.  *  51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
    24. 

  24.  */
    25. 

  25. /*
    26. 

  26.  *  The ITU-T X.509 standard defines a certificat format for PKI.
    27. 

  27.  *
    28. 

  28.  *  http://www.ietf.org/rfc/rfc2459.txt
    29. 

  29.  *  http://www.ietf.org/rfc/rfc3279.txt
    30. 

  30.  *
    31. 

  31.  *  ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-1v2.asc
    32. 

  32.  *
    33. 

  33.  *  http://www.itu.int/ITU-T/studygroups/com17/languages/X.680-0207.pdf
    34. 

  34.  *  http://www.itu.int/ITU-T/studygroups/com17/languages/X.690-0207.pdf
    35. 

  35.  */
    36. 

  36. 

  37. #include "config.h"
    38. 

  38. 

  39. #if defined(POLARSSL_X509_PARSE_C)
    40. 

  40. 

  41. #include "polarssl/x509.h"
    42. 

  42. #include "polarssl/pem.h"
    43. 

  43. #include "polarssl/des.h"
    44. 

  44. #include "polarssl/md2.h"
    45. 

  45. #include "polarssl/md4.h"
    46. 

  46. #include "polarssl/md5.h"
    47. 

  47. #include "polarssl/sha1.h"
    48. 

  48. #include "polarssl/sha2.h"
    49. 

  49. #include "polarssl/sha4.h"
    50. 

  50. #include "polarssl/dhm.h"
    51. 

  51. 

  52. #include <string.h>
    53. 

  53. #include <stdlib.h>
    54. 

  54. #include <time.h>
    55. 

  55. 

  56. #if defined(POLARSSL_FS_IO)
    57. 

  57. #include <stdio.h>
    58. 

  58. #endif
    59. 

  59. 

  60. /*
    61. 

  61.  * ASN.1 DER decoding routines
    62. 

  62.  */
    63. 

  63. static int asn1_get_len( unsigned char **p,
    64. 

  64.                          const unsigned char *end,
    65. 

  65.                          size_t *len )
    66. 

  66. {
    67. 

  67.     if( ( end - *p ) < 1 )
    68. 

  68.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    69. 

  69. 

  70.     if( ( **p & 0x80 ) == 0 )
    71. 

  71.         *len = *(*p)++;
    72. 

  72.     else
    73. 

  73.     {
    74. 

  74.         switch( **p & 0x7F )
    75. 

  75.         {
    76. 

  76.         case 1:
    77. 

  77.             if( ( end - *p ) < 2 )
    78. 

  78.                 return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    79. 

  79. 

  80.             *len = (*p)[1];
    81. 

  81.             (*p) += 2;
    82. 

  82.             break;
    83. 

  83. 

  84.         case 2:
    85. 

  85.             if( ( end - *p ) < 3 )
    86. 

  86.                 return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    87. 

  87. 

  88.             *len = ( (*p)[1] << 8 ) | (*p)[2];
    89. 

  89.             (*p) += 3;
    90. 

  90.             break;
    91. 

  91. 

  92.         default:
    93. 

  93.             return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    94. 

  94.         }
    95. 

  95.     }
    96. 

  96. 

  97.     if( *len > (size_t) ( end - *p ) )
    98. 

  98.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    99. 

  99. 

  100.     return( 0 );
    101. 

  101. }
    102. 

  102. 

  103. static int asn1_get_tag( unsigned char **p,
    104. 

  104.                          const unsigned char *end,
    105. 

  105.                          size_t *len, int tag )
    106. 

  106. {
    107. 

  107.     if( ( end - *p ) < 1 )
    108. 

  108.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    109. 

  109. 

  110.     if( **p != tag )
    111. 

  111.         return( POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    112. 

  112. 

  113.     (*p)++;
    114. 

  114. 

  115.     return( asn1_get_len( p, end, len ) );
    116. 

  116. }
    117. 

  117. 

  118. static int asn1_get_bool( unsigned char **p,
    119. 

  119.                           const unsigned char *end,
    120. 

  120.                           int *val )
    121. 

  121. {
    122. 

  122.     int ret;
    123. 

  123.     size_t len;
    124. 

  124. 

  125.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_BOOLEAN ) ) != 0 )
    126. 

  126.         return( ret );
    127. 

  127. 

  128.     if( len != 1 )
    129. 

  129.         return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    130. 

  130. 

  131.     *val = ( **p != 0 ) ? 1 : 0;
    132. 

  132.     (*p)++;
    133. 

  133. 

  134.     return( 0 );
    135. 

  135. }
    136. 

  136. 

  137. static int asn1_get_int( unsigned char **p,
    138. 

  138.                          const unsigned char *end,
    139. 

  139.                          int *val )
    140. 

  140. {
    141. 

  141.     int ret;
    142. 

  142.     size_t len;
    143. 

  143. 

  144.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_INTEGER ) ) != 0 )
    145. 

  145.         return( ret );
    146. 

  146. 

  147.     if( len > sizeof( int ) || ( **p & 0x80 ) != 0 )
    148. 

  148.         return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    149. 

  149. 

  150.     *val = 0;
    151. 

  151. 

  152.     while( len-- > 0 )
    153. 

  153.     {
    154. 

  154.         *val = ( *val << 8 ) | **p;
    155. 

  155.         (*p)++;
    156. 

  156.     }
    157. 

  157. 

  158.     return( 0 );
    159. 

  159. }
    160. 

  160. 

  161. static int asn1_get_mpi( unsigned char **p,
    162. 

  162.                          const unsigned char *end,
    163. 

  163.                          mpi *X )
    164. 

  164. {
    165. 

  165.     int ret;
    166. 

  166.     size_t len;
    167. 

  167. 

  168.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_INTEGER ) ) != 0 )
    169. 

  169.         return( ret );
    170. 

  170. 

  171.     ret = mpi_read_binary( X, *p, len );
    172. 

  172. 

  173.     *p += len;
    174. 

  174. 

  175.     return( ret );
    176. 

  176. }
    177. 

  177. 

  178. static int asn1_get_bitstring( unsigned char **p, const unsigned char *end,
    179. 

  179.         x509_bitstring *bs)
    180. 

  180. {
    181. 

  181.     int ret;
    182. 

  182. 

  183.     /* Certificate type is a single byte bitstring */
    184. 

  184.     if( ( ret = asn1_get_tag( p, end, &bs->len, ASN1_BIT_STRING ) ) != 0 )
    185. 

  185.         return( ret );
    186. 

  186. 

  187.     /* Check length, subtract one for actual bit string length */
    188. 

  188.     if ( bs->len < 1 )
    189. 

  189.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    190. 

  190.     bs->len -= 1;
    191. 

  191. 

  192.     /* Get number of unused bits, ensure unused bits <= 7 */
    193. 

  193.     bs->unused_bits = **p;
    194. 

  194.     if( bs->unused_bits > 7 )
    195. 

  195.         return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    196. 

  196.     (*p)++;
    197. 

  197. 

  198.     /* Get actual bitstring */
    199. 

  199.     bs->p = *p;
    200. 

  200.     *p += bs->len;
    201. 

  201. 

  202.     if( *p != end )
    203. 

  203.         return( POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    204. 

  204. 

  205.     return 0;
    206. 

  206. }
    207. 

  207. 

  208. 

  209. /*
    210. 

  210.  *  Parses and splits an ASN.1 "SEQUENCE OF <tag>"
    211. 

  211.  */
    212. 

  212. static int asn1_get_sequence_of( unsigned char **p,
    213. 

  213.                           const unsigned char *end,
    214. 

  214.                           x509_sequence *cur,
    215. 

  215.                           int tag)
    216. 

  216. {
    217. 

  217.     int ret;
    218. 

  218.     size_t len;
    219. 

  219.     x509_buf *buf;
    220. 

  220. 

  221.     /* Get main sequence tag */
    222. 

  222.     if( ( ret = asn1_get_tag( p, end, &len,
    223. 

  223.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    224. 

  224.         return( ret );
    225. 

  225. 

  226.     if( *p + len != end )
    227. 

  227.         return( POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    228. 

  228. 

  229.     while( *p < end )
    230. 

  230.     {
    231. 

  231.         buf = &(cur->buf);
    232. 

  232.         buf->tag = **p;
    233. 

  233. 

  234.         if( ( ret = asn1_get_tag( p, end, &buf->len, tag ) ) != 0 )
    235. 

  235.             return( ret );
    236. 

  236. 

  237.         buf->p = *p;
    238. 

  238.         *p += buf->len;
    239. 

  239. 

  240.         /* Allocate and assign next pointer */
    241. 

  241.         if (*p < end)
    242. 

  242.         {
    243. 

  243.             cur->next = (x509_sequence *) malloc(
    244. 

  244.                  sizeof( x509_sequence ) );
    245. 

  245. 

  246.             if( cur->next == NULL )
    247. 

  247.                 return( 1 );
    248. 

  248. 

  249.             cur = cur->next;
    250. 

  250.         }
    251. 

  251.     }
    252. 

  252. 

  253.     /* Set final sequence entry's next pointer to NULL */
    254. 

  254.     cur->next = NULL;
    255. 

  255. 

  256.     if( *p != end )
    257. 

  257.         return( POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    258. 

  258. 

  259.     return( 0 );
    260. 

  260. }
    261. 

  261. 

  262. /*
    263. 

  263.  *  Version  ::=  INTEGER  {  v1(0), v2(1), v3(2)  }
    264. 

  264.  */
    265. 

  265. static int x509_get_version( unsigned char **p,
    266. 

  266.                              const unsigned char *end,
    267. 

  267.                              int *ver )
    268. 

  268. {
    269. 

  269.     int ret;
    270. 

  270.     size_t len;
    271. 

  271. 

  272.     if( ( ret = asn1_get_tag( p, end, &len,
    273. 

  273.             ASN1_CONTEXT_SPECIFIC | ASN1_CONSTRUCTED | 0 ) ) != 0 )
    274. 

  274.     {
    275. 

  275.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    276. 

  276.             return( *ver = 0 );
    277. 

  277. 

  278.         return( ret );
    279. 

  279.     }
    280. 

  280. 

  281.     end = *p + len;
    282. 

  282. 

  283.     if( ( ret = asn1_get_int( p, end, ver ) ) != 0 )
    284. 

  284.         return( POLARSSL_ERR_X509_CERT_INVALID_VERSION + ret );
    285. 

  285. 

  286.     if( *p != end )
    287. 

  287.         return( POLARSSL_ERR_X509_CERT_INVALID_VERSION +
    288. 

  288.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    289. 

  289. 

  290.     return( 0 );
    291. 

  291. }
    292. 

  292. 

  293. /*
    294. 

  294.  *  CertificateSerialNumber  ::=  INTEGER
    295. 

  295.  */
    296. 

  296. static int x509_get_serial( unsigned char **p,
    297. 

  297.                             const unsigned char *end,
    298. 

  298.                             x509_buf *serial )
    299. 

  299. {
    300. 

  300.     int ret;
    301. 

  301. 

  302.     if( ( end - *p ) < 1 )
    303. 

  303.         return( POLARSSL_ERR_X509_CERT_INVALID_SERIAL +
    304. 

  304.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    305. 

  305. 

  306.     if( **p != ( ASN1_CONTEXT_SPECIFIC | ASN1_PRIMITIVE | 2 ) &&
    307. 

  307.         **p !=   ASN1_INTEGER )
    308. 

  308.         return( POLARSSL_ERR_X509_CERT_INVALID_SERIAL +
    309. 

  309.                 POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    310. 

  310. 

  311.     serial->tag = *(*p)++;
    312. 

  312. 

  313.     if( ( ret = asn1_get_len( p, end, &serial->len ) ) != 0 )
    314. 

  314.         return( POLARSSL_ERR_X509_CERT_INVALID_SERIAL + ret );
    315. 

  315. 

  316.     serial->p = *p;
    317. 

  317.     *p += serial->len;
    318. 

  318. 

  319.     return( 0 );
    320. 

  320. }
    321. 

  321. 

  322. /*
    323. 

  323.  *  AlgorithmIdentifier  ::=  SEQUENCE  {
    324. 

  324.  *       algorithm               OBJECT IDENTIFIER,
    325. 

  325.  *       parameters              ANY DEFINED BY algorithm OPTIONAL  }
    326. 

  326.  */
    327. 

  327. static int x509_get_alg( unsigned char **p,
    328. 

  328.                          const unsigned char *end,
    329. 

  329.                          x509_buf *alg )
    330. 

  330. {
    331. 

  331.     int ret;
    332. 

  332.     size_t len;
    333. 

  333. 

  334.     if( ( ret = asn1_get_tag( p, end, &len,
    335. 

  335.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    336. 

  336.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG + ret );
    337. 

  337. 

  338.     end = *p + len;
    339. 

  339.     alg->tag = **p;
    340. 

  340. 

  341.     if( ( ret = asn1_get_tag( p, end, &alg->len, ASN1_OID ) ) != 0 )
    342. 

  342.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG + ret );
    343. 

  343. 

  344.     alg->p = *p;
    345. 

  345.     *p += alg->len;
    346. 

  346. 

  347.     if( *p == end )
    348. 

  348.         return( 0 );
    349. 

  349. 

  350.     /*
    351. 

  351.      * assume the algorithm parameters must be NULL
    352. 

  352.      */
    353. 

  353.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_NULL ) ) != 0 )
    354. 

  354.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG + ret );
    355. 

  355. 

  356.     if( *p != end )
    357. 

  357.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG +
    358. 

  358.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    359. 

  359. 

  360.     return( 0 );
    361. 

  361. }
    362. 

  362. 

  363. /*
    364. 

  364.  *  AttributeTypeAndValue ::= SEQUENCE {
    365. 

  365.  *    type     AttributeType,
    366. 

  366.  *    value    AttributeValue }
    367. 

  367.  *
    368. 

  368.  *  AttributeType ::= OBJECT IDENTIFIER
    369. 

  369.  *
    370. 

  370.  *  AttributeValue ::= ANY DEFINED BY AttributeType
    371. 

  371.  */
    372. 

  372. static int x509_get_attr_type_value( unsigned char **p,
    373. 

  373.                                      const unsigned char *end,
    374. 

  374.                                      x509_name *cur )
    375. 

  375. {
    376. 

  376.     int ret;
    377. 

  377.     size_t len;
    378. 

  378.     x509_buf *oid;
    379. 

  379.     x509_buf *val;
    380. 

  380. 

  381.     if( ( ret = asn1_get_tag( p, end, &len,
    382. 

  382.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    383. 

  383.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    384. 

  384. 

  385.     oid = &cur->oid;
    386. 

  386.     oid->tag = **p;
    387. 

  387. 

  388.     if( ( ret = asn1_get_tag( p, end, &oid->len, ASN1_OID ) ) != 0 )
    389. 

  389.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    390. 

  390. 

  391.     oid->p = *p;
    392. 

  392.     *p += oid->len;
    393. 

  393. 

  394.     if( ( end - *p ) < 1 )
    395. 

  395.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME +
    396. 

  396.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    397. 

  397. 

  398.     if( **p != ASN1_BMP_STRING && **p != ASN1_UTF8_STRING      &&
    399. 

  399.         **p != ASN1_T61_STRING && **p != ASN1_PRINTABLE_STRING &&
    400. 

  400.         **p != ASN1_IA5_STRING && **p != ASN1_UNIVERSAL_STRING )
    401. 

  401.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME +
    402. 

  402.                 POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    403. 

  403. 

  404.     val = &cur->val;
    405. 

  405.     val->tag = *(*p)++;
    406. 

  406. 

  407.     if( ( ret = asn1_get_len( p, end, &val->len ) ) != 0 )
    408. 

  408.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    409. 

  409. 

  410.     val->p = *p;
    411. 

  411.     *p += val->len;
    412. 

  412. 

  413.     cur->next = NULL;
    414. 

  414. 

  415.     return( 0 );
    416. 

  416. }
    417. 

  417. 

  418. /*
    419. 

  419.  *  RelativeDistinguishedName ::=
    420. 

  420.  *    SET OF AttributeTypeAndValue
    421. 

  421.  *
    422. 

  422.  *  AttributeTypeAndValue ::= SEQUENCE {
    423. 

  423.  *    type     AttributeType,
    424. 

  424.  *    value    AttributeValue }
    425. 

  425.  *
    426. 

  426.  *  AttributeType ::= OBJECT IDENTIFIER
    427. 

  427.  *
    428. 

  428.  *  AttributeValue ::= ANY DEFINED BY AttributeType
    429. 

  429.  */
    430. 

  430. static int x509_get_name( unsigned char **p,
    431. 

  431.                           const unsigned char *end,
    432. 

  432.                           x509_name *cur )
    433. 

  433. {
    434. 

  434.     int ret;
    435. 

  435.     size_t len;
    436. 

  436.     const unsigned char *end2;
    437. 

  437.     x509_name *use; 
    438. 

  438.     
    439. 

  439.     if( ( ret = asn1_get_tag( p, end, &len,
    440. 

  440.             ASN1_CONSTRUCTED | ASN1_SET ) ) != 0 )
    441. 

  441.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    442. 

  442. 

  443.     end2 = end;
    444. 

  444.     end  = *p + len;
    445. 

  445.     use = cur;
    446. 

  446. 

  447.     do
    448. 

  448.     {
    449. 

  449.         if( ( ret = x509_get_attr_type_value( p, end, use ) ) != 0 )
    450. 

  450.             return( ret );
    451. 

  451.         
    452. 

  452.         if( *p != end )
    453. 

  453.         {
    454. 

  454.             use->next = (x509_name *) malloc(
    455. 

  455.                     sizeof( x509_name ) );
    456. 

  456. 

  457.             if( use->next == NULL )
    458. 

  458.                 return( 1 );
    459. 

  459.             
    460. 

  460.             memset( use->next, 0, sizeof( x509_name ) );
    461. 

  461. 

  462.             use = use->next;
    463. 

  463.         }
    464. 

  464.     }
    465. 

  465.     while( *p != end );
    466. 

  466. 

  467.     /*
    468. 

  468.      * recurse until end of SEQUENCE is reached
    469. 

  469.      */
    470. 

  470.     if( *p == end2 )
    471. 

  471.         return( 0 );
    472. 

  472. 

  473.     cur->next = (x509_name *) malloc(
    474. 

  474.          sizeof( x509_name ) );
    475. 

  475. 

  476.     if( cur->next == NULL )
    477. 

  477.         return( 1 );
    478. 

  478. 

  479.     return( x509_get_name( p, end2, cur->next ) );
    480. 

  480. }
    481. 

  481. 

  482. /*
    483. 

  483.  *  Time ::= CHOICE {
    484. 

  484.  *       utcTime        UTCTime,
    485. 

  485.  *       generalTime    GeneralizedTime }
    486. 

  486.  */
    487. 

  487. static int x509_get_time( unsigned char **p,
    488. 

  488.                           const unsigned char *end,
    489. 

  489.                           x509_time *time )
    490. 

  490. {
    491. 

  491.     int ret;
    492. 

  492.     size_t len;
    493. 

  493.     char date[64];
    494. 

  494.     unsigned char tag;
    495. 

  495. 

  496.     if( ( end - *p ) < 1 )
    497. 

  497.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    498. 

  498.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    499. 

  499. 

  500.     tag = **p;
    501. 

  501. 

  502.     if ( tag == ASN1_UTC_TIME )
    503. 

  503.     {
    504. 

  504.         (*p)++;
    505. 

  505.         ret = asn1_get_len( p, end, &len );
    506. 

  506.         
    507. 

  507.         if( ret != 0 )
    508. 

  508.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE + ret );
    509. 

  509. 

  510.         memset( date,  0, sizeof( date ) );
    511. 

  511.         memcpy( date, *p, ( len < sizeof( date ) - 1 ) ?
    512. 

  512.                 len : sizeof( date ) - 1 );
    513. 

  513. 

  514.         if( sscanf( date, "%2d%2d%2d%2d%2d%2d",
    515. 

  515.                     &time->year, &time->mon, &time->day,
    516. 

  516.                     &time->hour, &time->min, &time->sec ) < 5 )
    517. 

  517.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE );
    518. 

  518. 

  519.         time->year +=  100 * ( time->year < 50 );
    520. 

  520.         time->year += 1900;
    521. 

  521. 

  522.         *p += len;
    523. 

  523. 

  524.         return( 0 );
    525. 

  525.     }
    526. 

  526.     else if ( tag == ASN1_GENERALIZED_TIME )
    527. 

  527.     {
    528. 

  528.         (*p)++;
    529. 

  529.         ret = asn1_get_len( p, end, &len );
    530. 

  530.         
    531. 

  531.         if( ret != 0 )
    532. 

  532.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE + ret );
    533. 

  533. 

  534.         memset( date,  0, sizeof( date ) );
    535. 

  535.         memcpy( date, *p, ( len < sizeof( date ) - 1 ) ?
    536. 

  536.                 len : sizeof( date ) - 1 );
    537. 

  537. 

  538.         if( sscanf( date, "%4d%2d%2d%2d%2d%2d",
    539. 

  539.                     &time->year, &time->mon, &time->day,
    540. 

  540.                     &time->hour, &time->min, &time->sec ) < 5 )
    541. 

  541.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE );
    542. 

  542. 

  543.         *p += len;
    544. 

  544. 

  545.         return( 0 );
    546. 

  546.     }
    547. 

  547.     else
    548. 

  548.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE + POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    549. 

  549. }
    550. 

  550. 

  551. 

  552. /*
    553. 

  553.  *  Validity ::= SEQUENCE {
    554. 

  554.  *       notBefore      Time,
    555. 

  555.  *       notAfter       Time }
    556. 

  556.  */
    557. 

  557. static int x509_get_dates( unsigned char **p,
    558. 

  558.                            const unsigned char *end,
    559. 

  559.                            x509_time *from,
    560. 

  560.                            x509_time *to )
    561. 

  561. {
    562. 

  562.     int ret;
    563. 

  563.     size_t len;
    564. 

  564. 

  565.     if( ( ret = asn1_get_tag( p, end, &len,
    566. 

  566.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    567. 

  567.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE + ret );
    568. 

  568. 

  569.     end = *p + len;
    570. 

  570. 

  571.     if( ( ret = x509_get_time( p, end, from ) ) != 0 )
    572. 

  572.         return( ret );
    573. 

  573. 

  574.     if( ( ret = x509_get_time( p, end, to ) ) != 0 )
    575. 

  575.         return( ret );
    576. 

  576. 

  577.     if( *p != end )
    578. 

  578.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    579. 

  579.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    580. 

  580. 

  581.     return( 0 );
    582. 

  582. }
    583. 

  583. 

  584. /*
    585. 

  585.  *  SubjectPublicKeyInfo  ::=  SEQUENCE  {
    586. 

  586.  *       algorithm            AlgorithmIdentifier,
    587. 

  587.  *       subjectPublicKey     BIT STRING }
    588. 

  588.  */
    589. 

  589. static int x509_get_pubkey( unsigned char **p,
    590. 

  590.                             const unsigned char *end,
    591. 

  591.                             x509_buf *pk_alg_oid,
    592. 

  592.                             mpi *N, mpi *E )
    593. 

  593. {
    594. 

  594.     int ret, can_handle;
    595. 

  595.     size_t len;
    596. 

  596.     unsigned char *end2;
    597. 

  597. 

  598.     if( ( ret = x509_get_alg( p, end, pk_alg_oid ) ) != 0 )
    599. 

  599.         return( ret );
    600. 

  600. 

  601.     /*
    602. 

  602.      * only RSA public keys handled at this time
    603. 

  603.      */
    604. 

  604.     can_handle = 0;
    605. 

  605. 

  606.     if( pk_alg_oid->len == 9 &&
    607. 

  607.         memcmp( pk_alg_oid->p, OID_PKCS1_RSA, 9 ) == 0 )
    608. 

  608.         can_handle = 1;
    609. 

  609. 

  610.     if( pk_alg_oid->len == 9 &&
    611. 

  611.         memcmp( pk_alg_oid->p, OID_PKCS1, 8 ) == 0 )
    612. 

  612.     {
    613. 

  613.         if( pk_alg_oid->p[8] >= 2 && pk_alg_oid->p[8] <= 5 )
    614. 

  614.             can_handle = 1;
    615. 

  615. 

  616.         if ( pk_alg_oid->p[8] >= 11 && pk_alg_oid->p[8] <= 14 )
    617. 

  617.             can_handle = 1;
    618. 

  618.     }
    619. 

  619. 

  620.     if( pk_alg_oid->len == 5 &&
    621. 

  621.         memcmp( pk_alg_oid->p, OID_RSA_SHA_OBS, 5 ) == 0 )
    622. 

  622.         can_handle = 1;
    623. 

  623. 

  624.     if( can_handle == 0 )
    625. 

  625.         return( POLARSSL_ERR_X509_UNKNOWN_PK_ALG );
    626. 

  626. 

  627.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_BIT_STRING ) ) != 0 )
    628. 

  628.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY + ret );
    629. 

  629. 

  630.     if( ( end - *p ) < 1 )
    631. 

  631.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY +
    632. 

  632.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    633. 

  633. 

  634.     end2 = *p + len;
    635. 

  635. 

  636.     if( *(*p)++ != 0 )
    637. 

  637.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY );
    638. 

  638. 

  639.     /*
    640. 

  640.      *  RSAPublicKey ::= SEQUENCE {
    641. 

  641.      *      modulus           INTEGER,  -- n
    642. 

  642.      *      publicExponent    INTEGER   -- e
    643. 

  643.      *  }
    644. 

  644.      */
    645. 

  645.     if( ( ret = asn1_get_tag( p, end2, &len,
    646. 

  646.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    647. 

  647.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY + ret );
    648. 

  648. 

  649.     if( *p + len != end2 )
    650. 

  650.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY +
    651. 

  651.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    652. 

  652. 

  653.     if( ( ret = asn1_get_mpi( p, end2, N ) ) != 0 ||
    654. 

  654.         ( ret = asn1_get_mpi( p, end2, E ) ) != 0 )
    655. 

  655.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY + ret );
    656. 

  656. 

  657.     if( *p != end )
    658. 

  658.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY +
    659. 

  659.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    660. 

  660. 

  661.     return( 0 );
    662. 

  662. }
    663. 

  663. 

  664. static int x509_get_sig( unsigned char **p,
    665. 

  665.                          const unsigned char *end,
    666. 

  666.                          x509_buf *sig )
    667. 

  667. {
    668. 

  668.     int ret;
    669. 

  669.     size_t len;
    670. 

  670. 

  671.     sig->tag = **p;
    672. 

  672. 

  673.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_BIT_STRING ) ) != 0 )
    674. 

  674.         return( POLARSSL_ERR_X509_CERT_INVALID_SIGNATURE + ret );
    675. 

  675. 

  676. 

  677.     if( --len < 1 || *(*p)++ != 0 )
    678. 

  678.         return( POLARSSL_ERR_X509_CERT_INVALID_SIGNATURE );
    679. 

  679. 

  680.     sig->len = len;
    681. 

  681.     sig->p = *p;
    682. 

  682. 

  683.     *p += len;
    684. 

  684. 

  685.     return( 0 );
    686. 

  686. }
    687. 

  687. 

  688. /*
    689. 

  689.  * X.509 v2/v3 unique identifier (not parsed)
    690. 

  690.  */
    691. 

  691. static int x509_get_uid( unsigned char **p,
    692. 

  692.                          const unsigned char *end,
    693. 

  693.                          x509_buf *uid, int n )
    694. 

  694. {
    695. 

  695.     int ret;
    696. 

  696. 

  697.     if( *p == end )
    698. 

  698.         return( 0 );
    699. 

  699. 

  700.     uid->tag = **p;
    701. 

  701. 

  702.     if( ( ret = asn1_get_tag( p, end, &uid->len,
    703. 

  703.             ASN1_CONTEXT_SPECIFIC | ASN1_CONSTRUCTED | n ) ) != 0 )
    704. 

  704.     {
    705. 

  705.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    706. 

  706.             return( 0 );
    707. 

  707. 

  708.         return( ret );
    709. 

  709.     }
    710. 

  710. 

  711.     uid->p = *p;
    712. 

  712.     *p += uid->len;
    713. 

  713. 

  714.     return( 0 );
    715. 

  715. }
    716. 

  716. 

  717. /*
    718. 

  718.  * X.509 Extensions (No parsing of extensions, pointer should
    719. 

  719.  * be either manually updated or extensions should be parsed!
    720. 

  720.  */
    721. 

  721. static int x509_get_ext( unsigned char **p,
    722. 

  722.                          const unsigned char *end,
    723. 

  723.                          x509_buf *ext )
    724. 

  724. {
    725. 

  725.     int ret;
    726. 

  726.     size_t len;
    727. 

  727. 

  728.     if( *p == end )
    729. 

  729.         return( 0 );
    730. 

  730. 

  731.     ext->tag = **p;
    732. 

  732. 

  733.     if( ( ret = asn1_get_tag( p, end, &ext->len,
    734. 

  734.             ASN1_CONTEXT_SPECIFIC | ASN1_CONSTRUCTED | 3 ) ) != 0 )
    735. 

  735.         return( ret );
    736. 

  736. 

  737.     ext->p = *p;
    738. 

  738.     end = *p + ext->len;
    739. 

  739. 

  740.     /*
    741. 

  741.      * Extensions  ::=  SEQUENCE SIZE (1..MAX) OF Extension
    742. 

  742.      *
    743. 

  743.      * Extension  ::=  SEQUENCE  {
    744. 

  744.      *      extnID      OBJECT IDENTIFIER,
    745. 

  745.      *      critical    BOOLEAN DEFAULT FALSE,
    746. 

  746.      *      extnValue   OCTET STRING  }
    747. 

  747.      */
    748. 

  748.     if( ( ret = asn1_get_tag( p, end, &len,
    749. 

  749.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    750. 

  750.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    751. 

  751. 

  752.     if( end != *p + len )
    753. 

  753.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    754. 

  754.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    755. 

  755. 

  756.     return( 0 );
    757. 

  757. }
    758. 

  758. 

  759. /*
    760. 

  760.  * X.509 CRL v2 extensions (no extensions parsed yet.)
    761. 

  761.  */
    762. 

  762. static int x509_get_crl_ext( unsigned char **p,
    763. 

  763.                              const unsigned char *end,
    764. 

  764.                              x509_buf *ext )
    765. 

  765. {
    766. 

  766.     int ret;
    767. 

  767.     size_t len;
    768. 

  768. 

  769.     if( ( ret = x509_get_ext( p, end, ext ) ) != 0 )
    770. 

  770.     {
    771. 

  771.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    772. 

  772.             return( 0 );
    773. 

  773. 

  774.         return( ret );
    775. 

  775.     }
    776. 

  776. 

  777.     while( *p < end )
    778. 

  778.     {
    779. 

  779.         if( ( ret = asn1_get_tag( p, end, &len,
    780. 

  780.                 ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    781. 

  781.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    782. 

  782. 

  783.         *p += len;
    784. 

  784.     }
    785. 

  785. 

  786.     if( *p != end )
    787. 

  787.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    788. 

  788.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    789. 

  789. 

  790.     return( 0 );
    791. 

  791. }
    792. 

  792. 

  793. static int x509_get_basic_constraints( unsigned char **p,
    794. 

  794.                                        const unsigned char *end,
    795. 

  795.                                        int *ca_istrue,
    796. 

  796.                                        int *max_pathlen )
    797. 

  797. {
    798. 

  798.     int ret;
    799. 

  799.     size_t len;
    800. 

  800. 

  801.     /*
    802. 

  802.      * BasicConstraints ::= SEQUENCE {
    803. 

  803.      *      cA                      BOOLEAN DEFAULT FALSE,
    804. 

  804.      *      pathLenConstraint       INTEGER (0..MAX) OPTIONAL }
    805. 

  805.      */
    806. 

  806.     *ca_istrue = 0; /* DEFAULT FALSE */
    807. 

  807.     *max_pathlen = 0; /* endless */
    808. 

  808. 

  809.     if( ( ret = asn1_get_tag( p, end, &len,
    810. 

  810.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    811. 

  811.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    812. 

  812. 

  813.     if( *p == end )
    814. 

  814.         return 0;
    815. 

  815. 

  816.     if( ( ret = asn1_get_bool( p, end, ca_istrue ) ) != 0 )
    817. 

  817.     {
    818. 

  818.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    819. 

  819.             ret = asn1_get_int( p, end, ca_istrue );
    820. 

  820. 

  821.         if( ret != 0 )
    822. 

  822.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    823. 

  823. 

  824.         if( *ca_istrue != 0 )
    825. 

  825.             *ca_istrue = 1;
    826. 

  826.     }
    827. 

  827. 

  828.     if( *p == end )
    829. 

  829.         return 0;
    830. 

  830. 

  831.     if( ( ret = asn1_get_int( p, end, max_pathlen ) ) != 0 )
    832. 

  832.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    833. 

  833. 

  834.     if( *p != end )
    835. 

  835.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    836. 

  836.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    837. 

  837. 

  838.     (*max_pathlen)++;
    839. 

  839. 

  840.     return 0;
    841. 

  841. }
    842. 

  842. 

  843. static int x509_get_ns_cert_type( unsigned char **p,
    844. 

  844.                                        const unsigned char *end,
    845. 

  845.                                        unsigned char *ns_cert_type)
    846. 

  846. {
    847. 

  847.     int ret;
    848. 

  848.     x509_bitstring bs = { 0, 0, NULL };
    849. 

  849. 

  850.     if( ( ret = asn1_get_bitstring( p, end, &bs ) ) != 0 )
    851. 

  851.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    852. 

  852. 

  853.     if( bs.len != 1 )
    854. 

  854.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    855. 

  855.                 POLARSSL_ERR_ASN1_INVALID_LENGTH );
    856. 

  856. 

  857.     /* Get actual bitstring */
    858. 

  858.     *ns_cert_type = *bs.p;
    859. 

  859.     return 0;
    860. 

  860. }
    861. 

  861. 

  862. static int x509_get_key_usage( unsigned char **p,
    863. 

  863.                                const unsigned char *end,
    864. 

  864.                                unsigned char *key_usage)
    865. 

  865. {
    866. 

  866.     int ret;
    867. 

  867.     x509_bitstring bs = { 0, 0, NULL };
    868. 

  868. 

  869.     if( ( ret = asn1_get_bitstring( p, end, &bs ) ) != 0 )
    870. 

  870.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    871. 

  871. 

  872.     if( bs.len != 1 )
    873. 

  873.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    874. 

  874.                 POLARSSL_ERR_ASN1_INVALID_LENGTH );
    875. 

  875. 

  876.     /* Get actual bitstring */
    877. 

  877.     *key_usage = *bs.p;
    878. 

  878.     return 0;
    879. 

  879. }
    880. 

  880. 

  881. /*
    882. 

  882.  * ExtKeyUsageSyntax ::= SEQUENCE SIZE (1..MAX) OF KeyPurposeId
    883. 

  883.  *
    884. 

  884.  * KeyPurposeId ::= OBJECT IDENTIFIER
    885. 

  885.  */
    886. 

  886. static int x509_get_ext_key_usage( unsigned char **p,
    887. 

  887.                                const unsigned char *end,
    888. 

  888.                                x509_sequence *ext_key_usage)
    889. 

  889. {
    890. 

  890.     int ret;
    891. 

  891. 

  892.     if( ( ret = asn1_get_sequence_of( p, end, ext_key_usage, ASN1_OID ) ) != 0 )
    893. 

  893.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    894. 

  894. 

  895.     /* Sequence length must be >= 1 */
    896. 

  896.     if( ext_key_usage->buf.p == NULL )
    897. 

  897.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    898. 

  898.                 POLARSSL_ERR_ASN1_INVALID_LENGTH );
    899. 

  899. 

  900.     return 0;
    901. 

  901. }
    902. 

  902. 

  903. /*
    904. 

  904.  * X.509 v3 extensions
    905. 

  905.  *
    906. 

  906.  * TODO: Perform all of the basic constraints tests required by the RFC
    907. 

  907.  * TODO: Set values for undetected extensions to a sane default?
    908. 

  908.  *
    909. 

  909.  */
    910. 

  910. static int x509_get_crt_ext( unsigned char **p,
    911. 

  911.                              const unsigned char *end,
    912. 

  912.                              x509_cert *crt )
    913. 

  913. {
    914. 

  914.     int ret;
    915. 

  915.     size_t len;
    916. 

  916.     unsigned char *end_ext_data, *end_ext_octet;
    917. 

  917. 

  918.     if( ( ret = x509_get_ext( p, end, &crt->v3_ext ) ) != 0 )
    919. 

  919.     {
    920. 

  920.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    921. 

  921.             return( 0 );
    922. 

  922. 

  923.         return( ret );
    924. 

  924.     }
    925. 

  925. 

  926.     while( *p < end )
    927. 

  927.     {
    928. 

  928.         /*
    929. 

  929.          * Extension  ::=  SEQUENCE  {
    930. 

  930.          *      extnID      OBJECT IDENTIFIER,
    931. 

  931.          *      critical    BOOLEAN DEFAULT FALSE,
    932. 

  932.          *      extnValue   OCTET STRING  }
    933. 

  933.          */
    934. 

  934.         x509_buf extn_oid = {0, 0, NULL};
    935. 

  935.         int is_critical = 0; /* DEFAULT FALSE */
    936. 

  936. 

  937.         if( ( ret = asn1_get_tag( p, end, &len,
    938. 

  938.                 ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    939. 

  939.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    940. 

  940. 

  941.         end_ext_data = *p + len;
    942. 

  942. 

  943.         /* Get extension ID */
    944. 

  944.         extn_oid.tag = **p;
    945. 

  945. 

  946.         if( ( ret = asn1_get_tag( p, end, &extn_oid.len, ASN1_OID ) ) != 0 )
    947. 

  947.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    948. 

  948. 

  949.         extn_oid.p = *p;
    950. 

  950.         *p += extn_oid.len;
    951. 

  951. 

  952.         if( ( end - *p ) < 1 )
    953. 

  953.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    954. 

  954.                     POLARSSL_ERR_ASN1_OUT_OF_DATA );
    955. 

  955. 

  956.         /* Get optional critical */
    957. 

  957.         if( ( ret = asn1_get_bool( p, end_ext_data, &is_critical ) ) != 0 &&
    958. 

  958.             ( ret != POLARSSL_ERR_ASN1_UNEXPECTED_TAG ) )
    959. 

  959.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    960. 

  960. 

  961.         /* Data should be octet string type */
    962. 

  962.         if( ( ret = asn1_get_tag( p, end_ext_data, &len,
    963. 

  963.                 ASN1_OCTET_STRING ) ) != 0 )
    964. 

  964.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    965. 

  965. 

  966.         end_ext_octet = *p + len;
    967. 

  967. 

  968.         if( end_ext_octet != end_ext_data )
    969. 

  969.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    970. 

  970.                     POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    971. 

  971. 

  972.         /*
    973. 

  973.          * Detect supported extensions
    974. 

  974.          */
    975. 

  975.         if( ( OID_SIZE( OID_BASIC_CONSTRAINTS ) == extn_oid.len ) &&
    976. 

  976.                 memcmp( extn_oid.p, OID_BASIC_CONSTRAINTS, extn_oid.len ) == 0 )
    977. 

  977.         {
    978. 

  978.             /* Parse basic constraints */
    979. 

  979.             if( ( ret = x509_get_basic_constraints( p, end_ext_octet,
    980. 

  980.                     &crt->ca_istrue, &crt->max_pathlen ) ) != 0 )
    981. 

  981.                 return ( ret );
    982. 

  982.             crt->ext_types |= EXT_BASIC_CONSTRAINTS;
    983. 

  983.         }
    984. 

  984.         else if( ( OID_SIZE( OID_NS_CERT_TYPE ) == extn_oid.len ) &&
    985. 

  985.                 memcmp( extn_oid.p, OID_NS_CERT_TYPE, extn_oid.len ) == 0 )
    986. 

  986.         {
    987. 

  987.             /* Parse netscape certificate type */
    988. 

  988.             if( ( ret = x509_get_ns_cert_type( p, end_ext_octet,
    989. 

  989.                     &crt->ns_cert_type ) ) != 0 )
    990. 

  990.                 return ( ret );
    991. 

  991.             crt->ext_types |= EXT_NS_CERT_TYPE;
    992. 

  992.         }
    993. 

  993.         else if( ( OID_SIZE( OID_KEY_USAGE ) == extn_oid.len ) &&
    994. 

  994.                 memcmp( extn_oid.p, OID_KEY_USAGE, extn_oid.len ) == 0 )
    995. 

  995.         {
    996. 

  996.             /* Parse key usage */
    997. 

  997.             if( ( ret = x509_get_key_usage( p, end_ext_octet,
    998. 

  998.                     &crt->key_usage ) ) != 0 )
    999. 

  999.                 return ( ret );
    1000. 

  1000.             crt->ext_types |= EXT_KEY_USAGE;
    1001. 

  1001.         }
    1002. 

  1002.         else if( ( OID_SIZE( OID_EXTENDED_KEY_USAGE ) == extn_oid.len ) &&
    1003. 

  1003.                 memcmp( extn_oid.p, OID_EXTENDED_KEY_USAGE, extn_oid.len ) == 0 )
    1004. 

  1004.         {
    1005. 

  1005.             /* Parse extended key usage */
    1006. 

  1006.             if( ( ret = x509_get_ext_key_usage( p, end_ext_octet,
    1007. 

  1007.                     &crt->ext_key_usage ) ) != 0 )
    1008. 

  1008.                 return ( ret );
    1009. 

  1009.             crt->ext_types |= EXT_EXTENDED_KEY_USAGE;
    1010. 

  1010.         }
    1011. 

  1011.         else
    1012. 

  1012.         {
    1013. 

  1013.             /* No parser found, skip extension */
    1014. 

  1014.             *p = end_ext_octet;
    1015. 

  1015. 

  1016. #if !defined(POLARSSL_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION)
    1017. 

  1017.             if( is_critical )
    1018. 

  1018.             {
    1019. 

  1019.                 /* Data is marked as critical: fail */
    1020. 

  1020.                 return ( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    1021. 

  1021.                         POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    1022. 

  1022.             }
    1023. 

  1023. #endif
    1024. 

  1024.         }
    1025. 

  1025.     }
    1026. 

  1026. 

  1027.     if( *p != end )
    1028. 

  1028.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    1029. 

  1029.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1030. 

  1030. 

  1031.     return( 0 );
    1032. 

  1032. }
    1033. 

  1033. 

  1034. /*
    1035. 

  1035.  * X.509 CRL Entries
    1036. 

  1036.  */
    1037. 

  1037. static int x509_get_entries( unsigned char **p,
    1038. 

  1038.                              const unsigned char *end,
    1039. 

  1039.                              x509_crl_entry *entry )
    1040. 

  1040. {
    1041. 

  1041.     int ret;
    1042. 

  1042.     size_t entry_len;
    1043. 

  1043.     x509_crl_entry *cur_entry = entry;
    1044. 

  1044. 

  1045.     if( *p == end )
    1046. 

  1046.         return( 0 );
    1047. 

  1047. 

  1048.     if( ( ret = asn1_get_tag( p, end, &entry_len,
    1049. 

  1049.             ASN1_SEQUENCE | ASN1_CONSTRUCTED ) ) != 0 )
    1050. 

  1050.     {
    1051. 

  1051.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    1052. 

  1052.             return( 0 );
    1053. 

  1053. 

  1054.         return( ret );
    1055. 

  1055.     }
    1056. 

  1056. 

  1057.     end = *p + entry_len;
    1058. 

  1058. 

  1059.     while( *p < end )
    1060. 

  1060.     {
    1061. 

  1061.         size_t len2;
    1062. 

  1062. 

  1063.         if( ( ret = asn1_get_tag( p, end, &len2,
    1064. 

  1064.                 ASN1_SEQUENCE | ASN1_CONSTRUCTED ) ) != 0 )
    1065. 

  1065.         {
    1066. 

  1066.             return( ret );
    1067. 

  1067.         }
    1068. 

  1068. 

  1069.         cur_entry->raw.tag = **p;
    1070. 

  1070.         cur_entry->raw.p = *p;
    1071. 

  1071.         cur_entry->raw.len = len2;
    1072. 

  1072. 

  1073.         if( ( ret = x509_get_serial( p, end, &cur_entry->serial ) ) != 0 )
    1074. 

  1074.             return( ret );
    1075. 

  1075. 

  1076.         if( ( ret = x509_get_time( p, end, &cur_entry->revocation_date ) ) != 0 )
    1077. 

  1077.             return( ret );
    1078. 

  1078. 

  1079.         if( ( ret = x509_get_crl_ext( p, end, &cur_entry->entry_ext ) ) != 0 )
    1080. 

  1080.             return( ret );
    1081. 

  1081. 

  1082.         if ( *p < end )
    1083. 

  1083.         {
    1084. 

  1084.             cur_entry->next = malloc( sizeof( x509_crl_entry ) );
    1085. 

  1085.             cur_entry = cur_entry->next;
    1086. 

  1086.             memset( cur_entry, 0, sizeof( x509_crl_entry ) );
    1087. 

  1087.         }
    1088. 

  1088.     }
    1089. 

  1089. 

  1090.     return( 0 );
    1091. 

  1091. }
    1092. 

  1092. 

  1093. static int x509_get_sig_alg( const x509_buf *sig_oid, int *sig_alg )
    1094. 

  1094. {
    1095. 

  1095.     if( sig_oid->len == 9 &&
    1096. 

  1096.         memcmp( sig_oid->p, OID_PKCS1, 8 ) == 0 )
    1097. 

  1097.     {
    1098. 

  1098.         if( sig_oid->p[8] >= 2 && sig_oid->p[8] <= 5 )
    1099. 

  1099.         {
    1100. 

  1100.             *sig_alg = sig_oid->p[8];
    1101. 

  1101.             return( 0 );
    1102. 

  1102.         }
    1103. 

  1103. 

  1104.         if ( sig_oid->p[8] >= 11 && sig_oid->p[8] <= 14 )
    1105. 

  1105.         {
    1106. 

  1106.             *sig_alg = sig_oid->p[8];
    1107. 

  1107.             return( 0 );
    1108. 

  1108.         }
    1109. 

  1109. 

  1110.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_SIG_ALG );
    1111. 

  1111.     }
    1112. 

  1112.     if( sig_oid->len == 5 &&
    1113. 

  1113.         memcmp( sig_oid->p, OID_RSA_SHA_OBS, 5 ) == 0 )
    1114. 

  1114.     {
    1115. 

  1115.         *sig_alg = SIG_RSA_SHA1;
    1116. 

  1116.         return( 0 );
    1117. 

  1117.     }
    1118. 

  1118. 

  1119.     return( POLARSSL_ERR_X509_CERT_UNKNOWN_SIG_ALG );
    1120. 

  1120. }
    1121. 

  1121. 

  1122. /*
    1123. 

  1123.  * Parse one or more certificates and add them to the chained list
    1124. 

  1124.  */
    1125. 

  1125. int x509parse_crt( x509_cert *chain, const unsigned char *buf, size_t buflen )
    1126. 

  1126. {
    1127. 

  1127.     int ret;
    1128. 

  1128.     size_t len;
    1129. 

  1129.     unsigned char *p, *end;
    1130. 

  1130.     x509_cert *crt;
    1131. 

  1131. #if defined(POLARSSL_PEM_C)
    1132. 

  1132.     pem_context pem;
    1133. 

  1133.     size_t use_len;
    1134. 

  1134. #endif
    1135. 

  1135. 

  1136.     crt = chain;
    1137. 

  1137. 

  1138.     /*
    1139. 

  1139.      * Check for valid input
    1140. 

  1140.      */
    1141. 

  1141.     if( crt == NULL || buf == NULL )
    1142. 

  1142.         return( 1 );
    1143. 

  1143. 

  1144.     while( crt->version != 0 && crt->next != NULL )
    1145. 

  1145.         crt = crt->next;
    1146. 

  1146. 

  1147.     /*
    1148. 

  1148.      * Add new certificate on the end of the chain if needed.
    1149. 

  1149.      */
    1150. 

  1150.     if ( crt->version != 0 && crt->next == NULL)
    1151. 

  1151.     {
    1152. 

  1152.         crt->next = (x509_cert *) malloc( sizeof( x509_cert ) );
    1153. 

  1153. 

  1154.         if( crt->next == NULL )
    1155. 

  1155.         {
    1156. 

  1156.             x509_free( crt );
    1157. 

  1157.             return( 1 );
    1158. 

  1158.         }
    1159. 

  1159. 

  1160.         crt = crt->next;
    1161. 

  1161.         memset( crt, 0, sizeof( x509_cert ) );
    1162. 

  1162.     }
    1163. 

  1163. 

  1164. #if defined(POLARSSL_PEM_C)
    1165. 

  1165.     pem_init( &pem );
    1166. 

  1166.     ret = pem_read_buffer( &pem,
    1167. 

  1167.                            "-----BEGIN CERTIFICATE-----",
    1168. 

  1168.                            "-----END CERTIFICATE-----",
    1169. 

  1169.                            buf, NULL, 0, &use_len );
    1170. 

  1170. 

  1171.     if( ret == 0 )
    1172. 

  1172.     {
    1173. 

  1173.         /*
    1174. 

  1174.          * Was PEM encoded
    1175. 

  1175.          */
    1176. 

  1176.         buflen -= use_len;
    1177. 

  1177.         buf += use_len;
    1178. 

  1178. 

  1179.         /*
    1180. 

  1180.          * Steal PEM buffer
    1181. 

  1181.          */
    1182. 

  1182.         p = pem.buf;
    1183. 

  1183.         pem.buf = NULL;
    1184. 

  1184.         len = pem.buflen;
    1185. 

  1185.         pem_free( &pem );
    1186. 

  1186.     }
    1187. 

  1187.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1188. 

  1188.     {
    1189. 

  1189.         pem_free( &pem );
    1190. 

  1190.         return( ret );
    1191. 

  1191.     }
    1192. 

  1192.     else
    1193. 

  1193.     {
    1194. 

  1194.         /*
    1195. 

  1195.          * nope, copy the raw DER data
    1196. 

  1196.          */
    1197. 

  1197.         p = (unsigned char *) malloc( len = buflen );
    1198. 

  1198. 

  1199.         if( p == NULL )
    1200. 

  1200.             return( 1 );
    1201. 

  1201. 

  1202.         memcpy( p, buf, buflen );
    1203. 

  1203. 

  1204.         buflen = 0;
    1205. 

  1205.     }
    1206. 

  1206. #else
    1207. 

  1207.     p = (unsigned char *) malloc( len = buflen );
    1208. 

  1208. 

  1209.     if( p == NULL )
    1210. 

  1210.         return( 1 );
    1211. 

  1211. 

  1212.     memcpy( p, buf, buflen );
    1213. 

  1213. 

  1214.     buflen = 0;
    1215. 

  1215. #endif
    1216. 

  1216. 

  1217.     crt->raw.p = p;
    1218. 

  1218.     crt->raw.len = len;
    1219. 

  1219.     end = p + len;
    1220. 

  1220. 

  1221.     /*
    1222. 

  1222.      * Certificate  ::=  SEQUENCE  {
    1223. 

  1223.      *      tbsCertificate       TBSCertificate,
    1224. 

  1224.      *      signatureAlgorithm   AlgorithmIdentifier,
    1225. 

  1225.      *      signatureValue       BIT STRING  }
    1226. 

  1226.      */
    1227. 

  1227.     if( ( ret = asn1_get_tag( &p, end, &len,
    1228. 

  1228.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1229. 

  1229.     {
    1230. 

  1230.         x509_free( crt );
    1231. 

  1231.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT );
    1232. 

  1232.     }
    1233. 

  1233. 

  1234.     if( len != (size_t) ( end - p ) )
    1235. 

  1235.     {
    1236. 

  1236.         x509_free( crt );
    1237. 

  1237.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1238. 

  1238.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1239. 

  1239.     }
    1240. 

  1240. 

  1241.     /*
    1242. 

  1242.      * TBSCertificate  ::=  SEQUENCE  {
    1243. 

  1243.      */
    1244. 

  1244.     crt->tbs.p = p;
    1245. 

  1245. 

  1246.     if( ( ret = asn1_get_tag( &p, end, &len,
    1247. 

  1247.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1248. 

  1248.     {
    1249. 

  1249.         x509_free( crt );
    1250. 

  1250.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1251. 

  1251.     }
    1252. 

  1252. 

  1253.     end = p + len;
    1254. 

  1254.     crt->tbs.len = end - crt->tbs.p;
    1255. 

  1255. 

  1256.     /*
    1257. 

  1257.      * Version  ::=  INTEGER  {  v1(0), v2(1), v3(2)  }
    1258. 

  1258.      *
    1259. 

  1259.      * CertificateSerialNumber  ::=  INTEGER
    1260. 

  1260.      *
    1261. 

  1261.      * signature            AlgorithmIdentifier
    1262. 

  1262.      */
    1263. 

  1263.     if( ( ret = x509_get_version( &p, end, &crt->version ) ) != 0 ||
    1264. 

  1264.         ( ret = x509_get_serial(  &p, end, &crt->serial  ) ) != 0 ||
    1265. 

  1265.         ( ret = x509_get_alg(  &p, end, &crt->sig_oid1   ) ) != 0 )
    1266. 

  1266.     {
    1267. 

  1267.         x509_free( crt );
    1268. 

  1268.         return( ret );
    1269. 

  1269.     }
    1270. 

  1270. 

  1271.     crt->version++;
    1272. 

  1272. 

  1273.     if( crt->version > 3 )
    1274. 

  1274.     {
    1275. 

  1275.         x509_free( crt );
    1276. 

  1276.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_VERSION );
    1277. 

  1277.     }
    1278. 

  1278. 

  1279.     if( ( ret = x509_get_sig_alg( &crt->sig_oid1, &crt->sig_alg ) ) != 0 )
    1280. 

  1280.     {
    1281. 

  1281.         x509_free( crt );
    1282. 

  1282.         return( ret );
    1283. 

  1283.     }
    1284. 

  1284. 

  1285.     /*
    1286. 

  1286.      * issuer               Name
    1287. 

  1287.      */
    1288. 

  1288.     crt->issuer_raw.p = p;
    1289. 

  1289. 

  1290.     if( ( ret = asn1_get_tag( &p, end, &len,
    1291. 

  1291.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1292. 

  1292.     {
    1293. 

  1293.         x509_free( crt );
    1294. 

  1294.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1295. 

  1295.     }
    1296. 

  1296. 

  1297.     if( ( ret = x509_get_name( &p, p + len, &crt->issuer ) ) != 0 )
    1298. 

  1298.     {
    1299. 

  1299.         x509_free( crt );
    1300. 

  1300.         return( ret );
    1301. 

  1301.     }
    1302. 

  1302. 

  1303.     crt->issuer_raw.len = p - crt->issuer_raw.p;
    1304. 

  1304. 

  1305.     /*
    1306. 

  1306.      * Validity ::= SEQUENCE {
    1307. 

  1307.      *      notBefore      Time,
    1308. 

  1308.      *      notAfter       Time }
    1309. 

  1309.      *
    1310. 

  1310.      */
    1311. 

  1311.     if( ( ret = x509_get_dates( &p, end, &crt->valid_from,
    1312. 

  1312.                                          &crt->valid_to ) ) != 0 )
    1313. 

  1313.     {
    1314. 

  1314.         x509_free( crt );
    1315. 

  1315.         return( ret );
    1316. 

  1316.     }
    1317. 

  1317. 

  1318.     /*
    1319. 

  1319.      * subject              Name
    1320. 

  1320.      */
    1321. 

  1321.     crt->subject_raw.p = p;
    1322. 

  1322. 

  1323.     if( ( ret = asn1_get_tag( &p, end, &len,
    1324. 

  1324.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1325. 

  1325.     {
    1326. 

  1326.         x509_free( crt );
    1327. 

  1327.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1328. 

  1328.     }
    1329. 

  1329. 

  1330.     if( ( ret = x509_get_name( &p, p + len, &crt->subject ) ) != 0 )
    1331. 

  1331.     {
    1332. 

  1332.         x509_free( crt );
    1333. 

  1333.         return( ret );
    1334. 

  1334.     }
    1335. 

  1335. 

  1336.     crt->subject_raw.len = p - crt->subject_raw.p;
    1337. 

  1337. 

  1338.     /*
    1339. 

  1339.      * SubjectPublicKeyInfo  ::=  SEQUENCE
    1340. 

  1340.      *      algorithm            AlgorithmIdentifier,
    1341. 

  1341.      *      subjectPublicKey     BIT STRING  }
    1342. 

  1342.      */
    1343. 

  1343.     if( ( ret = asn1_get_tag( &p, end, &len,
    1344. 

  1344.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1345. 

  1345.     {
    1346. 

  1346.         x509_free( crt );
    1347. 

  1347.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1348. 

  1348.     }
    1349. 

  1349. 

  1350.     if( ( ret = x509_get_pubkey( &p, p + len, &crt->pk_oid,
    1351. 

  1351.                                  &crt->rsa.N, &crt->rsa.E ) ) != 0 )
    1352. 

  1352.     {
    1353. 

  1353.         x509_free( crt );
    1354. 

  1354.         return( ret );
    1355. 

  1355.     }
    1356. 

  1356. 

  1357.     if( ( ret = rsa_check_pubkey( &crt->rsa ) ) != 0 )
    1358. 

  1358.     {
    1359. 

  1359.         x509_free( crt );
    1360. 

  1360.         return( ret );
    1361. 

  1361.     }
    1362. 

  1362. 

  1363.     crt->rsa.len = mpi_size( &crt->rsa.N );
    1364. 

  1364. 

  1365.     /*
    1366. 

  1366.      *  issuerUniqueID  [1]  IMPLICIT UniqueIdentifier OPTIONAL,
    1367. 

  1367.      *                       -- If present, version shall be v2 or v3
    1368. 

  1368.      *  subjectUniqueID [2]  IMPLICIT UniqueIdentifier OPTIONAL,
    1369. 

  1369.      *                       -- If present, version shall be v2 or v3
    1370. 

  1370.      *  extensions      [3]  EXPLICIT Extensions OPTIONAL
    1371. 

  1371.      *                       -- If present, version shall be v3
    1372. 

  1372.      */
    1373. 

  1373.     if( crt->version == 2 || crt->version == 3 )
    1374. 

  1374.     {
    1375. 

  1375.         ret = x509_get_uid( &p, end, &crt->issuer_id,  1 );
    1376. 

  1376.         if( ret != 0 )
    1377. 

  1377.         {
    1378. 

  1378.             x509_free( crt );
    1379. 

  1379.             return( ret );
    1380. 

  1380.         }
    1381. 

  1381.     }
    1382. 

  1382. 

  1383.     if( crt->version == 2 || crt->version == 3 )
    1384. 

  1384.     {
    1385. 

  1385.         ret = x509_get_uid( &p, end, &crt->subject_id,  2 );
    1386. 

  1386.         if( ret != 0 )
    1387. 

  1387.         {
    1388. 

  1388.             x509_free( crt );
    1389. 

  1389.             return( ret );
    1390. 

  1390.         }
    1391. 

  1391.     }
    1392. 

  1392. 

  1393.     if( crt->version == 3 )
    1394. 

  1394.     {
    1395. 

  1395.         ret = x509_get_crt_ext( &p, end, crt);
    1396. 

  1396.         if( ret != 0 )
    1397. 

  1397.         {
    1398. 

  1398.             x509_free( crt );
    1399. 

  1399.             return( ret );
    1400. 

  1400.         }
    1401. 

  1401.     }
    1402. 

  1402. 

  1403.     if( p != end )
    1404. 

  1404.     {
    1405. 

  1405.         x509_free( crt );
    1406. 

  1406.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1407. 

  1407.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1408. 

  1408.     }
    1409. 

  1409. 

  1410.     end = crt->raw.p + crt->raw.len;
    1411. 

  1411. 

  1412.     /*
    1413. 

  1413.      *  signatureAlgorithm   AlgorithmIdentifier,
    1414. 

  1414.      *  signatureValue       BIT STRING
    1415. 

  1415.      */
    1416. 

  1416.     if( ( ret = x509_get_alg( &p, end, &crt->sig_oid2 ) ) != 0 )
    1417. 

  1417.     {
    1418. 

  1418.         x509_free( crt );
    1419. 

  1419.         return( ret );
    1420. 

  1420.     }
    1421. 

  1421. 

  1422.     if( memcmp( crt->sig_oid1.p, crt->sig_oid2.p, crt->sig_oid1.len ) != 0 )
    1423. 

  1423.     {
    1424. 

  1424.         x509_free( crt );
    1425. 

  1425.         return( POLARSSL_ERR_X509_CERT_SIG_MISMATCH );
    1426. 

  1426.     }
    1427. 

  1427. 

  1428.     if( ( ret = x509_get_sig( &p, end, &crt->sig ) ) != 0 )
    1429. 

  1429.     {
    1430. 

  1430.         x509_free( crt );
    1431. 

  1431.         return( ret );
    1432. 

  1432.     }
    1433. 

  1433. 

  1434.     if( p != end )
    1435. 

  1435.     {
    1436. 

  1436.         x509_free( crt );
    1437. 

  1437.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1438. 

  1438.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1439. 

  1439.     }
    1440. 

  1440. 

  1441.     if( buflen > 0 )
    1442. 

  1442.     {
    1443. 

  1443.         crt->next = (x509_cert *) malloc( sizeof( x509_cert ) );
    1444. 

  1444. 

  1445.         if( crt->next == NULL )
    1446. 

  1446.         {
    1447. 

  1447.             x509_free( crt );
    1448. 

  1448.             return( 1 );
    1449. 

  1449.         }
    1450. 

  1450. 

  1451.         crt = crt->next;
    1452. 

  1452.         memset( crt, 0, sizeof( x509_cert ) );
    1453. 

  1453. 

  1454.         return( x509parse_crt( crt, buf, buflen ) );
    1455. 

  1455.     }
    1456. 

  1456. 

  1457.     return( 0 );
    1458. 

  1458. }
    1459. 

  1459. 

  1460. /*
    1461. 

  1461.  * Parse one or more CRLs and add them to the chained list
    1462. 

  1462.  */
    1463. 

  1463. int x509parse_crl( x509_crl *chain, const unsigned char *buf, size_t buflen )
    1464. 

  1464. {
    1465. 

  1465.     int ret;
    1466. 

  1466.     size_t len;
    1467. 

  1467.     unsigned char *p, *end;
    1468. 

  1468.     x509_crl *crl;
    1469. 

  1469. #if defined(POLARSSL_PEM_C)
    1470. 

  1470.     size_t use_len;
    1471. 

  1471.     pem_context pem;
    1472. 

  1472. #endif
    1473. 

  1473. 

  1474.     crl = chain;
    1475. 

  1475. 

  1476.     /*
    1477. 

  1477.      * Check for valid input
    1478. 

  1478.      */
    1479. 

  1479.     if( crl == NULL || buf == NULL )
    1480. 

  1480.         return( 1 );
    1481. 

  1481. 

  1482.     while( crl->version != 0 && crl->next != NULL )
    1483. 

  1483.         crl = crl->next;
    1484. 

  1484. 

  1485.     /*
    1486. 

  1486.      * Add new CRL on the end of the chain if needed.
    1487. 

  1487.      */
    1488. 

  1488.     if ( crl->version != 0 && crl->next == NULL)
    1489. 

  1489.     {
    1490. 

  1490.         crl->next = (x509_crl *) malloc( sizeof( x509_crl ) );
    1491. 

  1491. 

  1492.         if( crl->next == NULL )
    1493. 

  1493.         {
    1494. 

  1494.             x509_crl_free( crl );
    1495. 

  1495.             return( 1 );
    1496. 

  1496.         }
    1497. 

  1497. 

  1498.         crl = crl->next;
    1499. 

  1499.         memset( crl, 0, sizeof( x509_crl ) );
    1500. 

  1500.     }
    1501. 

  1501. 

  1502. #if defined(POLARSSL_PEM_C)
    1503. 

  1503.     pem_init( &pem );
    1504. 

  1504.     ret = pem_read_buffer( &pem,
    1505. 

  1505.                            "-----BEGIN X509 CRL-----",
    1506. 

  1506.                            "-----END X509 CRL-----",
    1507. 

  1507.                            buf, NULL, 0, &use_len );
    1508. 

  1508. 

  1509.     if( ret == 0 )
    1510. 

  1510.     {
    1511. 

  1511.         /*
    1512. 

  1512.          * Was PEM encoded
    1513. 

  1513.          */
    1514. 

  1514.         buflen -= use_len;
    1515. 

  1515.         buf += use_len;
    1516. 

  1516. 

  1517.         /*
    1518. 

  1518.          * Steal PEM buffer
    1519. 

  1519.          */
    1520. 

  1520.         p = pem.buf;
    1521. 

  1521.         pem.buf = NULL;
    1522. 

  1522.         len = pem.buflen;
    1523. 

  1523.         pem_free( &pem );
    1524. 

  1524.     }
    1525. 

  1525.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1526. 

  1526.     {
    1527. 

  1527.         pem_free( &pem );
    1528. 

  1528.         return( ret );
    1529. 

  1529.     }
    1530. 

  1530.     else
    1531. 

  1531.     {
    1532. 

  1532.         /*
    1533. 

  1533.          * nope, copy the raw DER data
    1534. 

  1534.          */
    1535. 

  1535.         p = (unsigned char *) malloc( len = buflen );
    1536. 

  1536. 

  1537.         if( p == NULL )
    1538. 

  1538.             return( 1 );
    1539. 

  1539. 

  1540.         memcpy( p, buf, buflen );
    1541. 

  1541. 

  1542.         buflen = 0;
    1543. 

  1543.     }
    1544. 

  1544. #else
    1545. 

  1545.     p = (unsigned char *) malloc( len = buflen );
    1546. 

  1546. 

  1547.     if( p == NULL )
    1548. 

  1548.         return( 1 );
    1549. 

  1549. 

  1550.     memcpy( p, buf, buflen );
    1551. 

  1551. 

  1552.     buflen = 0;
    1553. 

  1553. #endif
    1554. 

  1554. 

  1555.     crl->raw.p = p;
    1556. 

  1556.     crl->raw.len = len;
    1557. 

  1557.     end = p + len;
    1558. 

  1558. 

  1559.     /*
    1560. 

  1560.      * CertificateList  ::=  SEQUENCE  {
    1561. 

  1561.      *      tbsCertList          TBSCertList,
    1562. 

  1562.      *      signatureAlgorithm   AlgorithmIdentifier,
    1563. 

  1563.      *      signatureValue       BIT STRING  }
    1564. 

  1564.      */
    1565. 

  1565.     if( ( ret = asn1_get_tag( &p, end, &len,
    1566. 

  1566.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1567. 

  1567.     {
    1568. 

  1568.         x509_crl_free( crl );
    1569. 

  1569.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT );
    1570. 

  1570.     }
    1571. 

  1571. 

  1572.     if( len != (size_t) ( end - p ) )
    1573. 

  1573.     {
    1574. 

  1574.         x509_crl_free( crl );
    1575. 

  1575.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1576. 

  1576.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1577. 

  1577.     }
    1578. 

  1578. 

  1579.     /*
    1580. 

  1580.      * TBSCertList  ::=  SEQUENCE  {
    1581. 

  1581.      */
    1582. 

  1582.     crl->tbs.p = p;
    1583. 

  1583. 

  1584.     if( ( ret = asn1_get_tag( &p, end, &len,
    1585. 

  1585.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1586. 

  1586.     {
    1587. 

  1587.         x509_crl_free( crl );
    1588. 

  1588.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1589. 

  1589.     }
    1590. 

  1590. 

  1591.     end = p + len;
    1592. 

  1592.     crl->tbs.len = end - crl->tbs.p;
    1593. 

  1593. 

  1594.     /*
    1595. 

  1595.      * Version  ::=  INTEGER  OPTIONAL {  v1(0), v2(1)  }
    1596. 

  1596.      *               -- if present, MUST be v2
    1597. 

  1597.      *
    1598. 

  1598.      * signature            AlgorithmIdentifier
    1599. 

  1599.      */
    1600. 

  1600.     if( ( ret = x509_get_version( &p, end, &crl->version ) ) != 0 ||
    1601. 

  1601.         ( ret = x509_get_alg(  &p, end, &crl->sig_oid1   ) ) != 0 )
    1602. 

  1602.     {
    1603. 

  1603.         x509_crl_free( crl );
    1604. 

  1604.         return( ret );
    1605. 

  1605.     }
    1606. 

  1606. 

  1607.     crl->version++;
    1608. 

  1608. 

  1609.     if( crl->version > 2 )
    1610. 

  1610.     {
    1611. 

  1611.         x509_crl_free( crl );
    1612. 

  1612.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_VERSION );
    1613. 

  1613.     }
    1614. 

  1614. 

  1615.     if( ( ret = x509_get_sig_alg( &crl->sig_oid1, &crl->sig_alg ) ) != 0 )
    1616. 

  1616.     {
    1617. 

  1617.         x509_crl_free( crl );
    1618. 

  1618.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_SIG_ALG );
    1619. 

  1619.     }
    1620. 

  1620. 

  1621.     /*
    1622. 

  1622.      * issuer               Name
    1623. 

  1623.      */
    1624. 

  1624.     crl->issuer_raw.p = p;
    1625. 

  1625. 

  1626.     if( ( ret = asn1_get_tag( &p, end, &len,
    1627. 

  1627.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1628. 

  1628.     {
    1629. 

  1629.         x509_crl_free( crl );
    1630. 

  1630.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1631. 

  1631.     }
    1632. 

  1632. 

  1633.     if( ( ret = x509_get_name( &p, p + len, &crl->issuer ) ) != 0 )
    1634. 

  1634.     {
    1635. 

  1635.         x509_crl_free( crl );
    1636. 

  1636.         return( ret );
    1637. 

  1637.     }
    1638. 

  1638. 

  1639.     crl->issuer_raw.len = p - crl->issuer_raw.p;
    1640. 

  1640. 

  1641.     /*
    1642. 

  1642.      * thisUpdate          Time
    1643. 

  1643.      * nextUpdate          Time OPTIONAL
    1644. 

  1644.      */
    1645. 

  1645.     if( ( ret = x509_get_time( &p, end, &crl->this_update ) ) != 0 )
    1646. 

  1646.     {
    1647. 

  1647.         x509_crl_free( crl );
    1648. 

  1648.         return( ret );
    1649. 

  1649.     }
    1650. 

  1650. 

  1651.     if( ( ret = x509_get_time( &p, end, &crl->next_update ) ) != 0 )
    1652. 

  1652.     {
    1653. 

  1653.         if ( ret != ( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    1654. 

  1654.                         POLARSSL_ERR_ASN1_UNEXPECTED_TAG ) &&
    1655. 

  1655.              ret != ( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    1656. 

  1656.                         POLARSSL_ERR_ASN1_OUT_OF_DATA ) )
    1657. 

  1657.         {
    1658. 

  1658.             x509_crl_free( crl );
    1659. 

  1659.             return( ret );
    1660. 

  1660.         }
    1661. 

  1661.     }
    1662. 

  1662. 

  1663.     /*
    1664. 

  1664.      * revokedCertificates    SEQUENCE OF SEQUENCE   {
    1665. 

  1665.      *      userCertificate        CertificateSerialNumber,
    1666. 

  1666.      *      revocationDate         Time,
    1667. 

  1667.      *      crlEntryExtensions     Extensions OPTIONAL
    1668. 

  1668.      *                                   -- if present, MUST be v2
    1669. 

  1669.      *                        } OPTIONAL
    1670. 

  1670.      */
    1671. 

  1671.     if( ( ret = x509_get_entries( &p, end, &crl->entry ) ) != 0 )
    1672. 

  1672.     {
    1673. 

  1673.         x509_crl_free( crl );
    1674. 

  1674.         return( ret );
    1675. 

  1675.     }
    1676. 

  1676. 

  1677.     /*
    1678. 

  1678.      * crlExtensions          EXPLICIT Extensions OPTIONAL
    1679. 

  1679.      *                              -- if present, MUST be v2
    1680. 

  1680.      */
    1681. 

  1681.     if( crl->version == 2 )
    1682. 

  1682.     {
    1683. 

  1683.         ret = x509_get_crl_ext( &p, end, &crl->crl_ext );
    1684. 

  1684.                             
    1685. 

  1685.         if( ret != 0 )
    1686. 

  1686.         {
    1687. 

  1687.             x509_crl_free( crl );
    1688. 

  1688.             return( ret );
    1689. 

  1689.         }
    1690. 

  1690.     }
    1691. 

  1691. 

  1692.     if( p != end )
    1693. 

  1693.     {
    1694. 

  1694.         x509_crl_free( crl );
    1695. 

  1695.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1696. 

  1696.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1697. 

  1697.     }
    1698. 

  1698. 

  1699.     end = crl->raw.p + crl->raw.len;
    1700. 

  1700. 

  1701.     /*
    1702. 

  1702.      *  signatureAlgorithm   AlgorithmIdentifier,
    1703. 

  1703.      *  signatureValue       BIT STRING
    1704. 

  1704.      */
    1705. 

  1705.     if( ( ret = x509_get_alg( &p, end, &crl->sig_oid2 ) ) != 0 )
    1706. 

  1706.     {
    1707. 

  1707.         x509_crl_free( crl );
    1708. 

  1708.         return( ret );
    1709. 

  1709.     }
    1710. 

  1710. 

  1711.     if( memcmp( crl->sig_oid1.p, crl->sig_oid2.p, crl->sig_oid1.len ) != 0 )
    1712. 

  1712.     {
    1713. 

  1713.         x509_crl_free( crl );
    1714. 

  1714.         return( POLARSSL_ERR_X509_CERT_SIG_MISMATCH );
    1715. 

  1715.     }
    1716. 

  1716. 

  1717.     if( ( ret = x509_get_sig( &p, end, &crl->sig ) ) != 0 )
    1718. 

  1718.     {
    1719. 

  1719.         x509_crl_free( crl );
    1720. 

  1720.         return( ret );
    1721. 

  1721.     }
    1722. 

  1722. 

  1723.     if( p != end )
    1724. 

  1724.     {
    1725. 

  1725.         x509_crl_free( crl );
    1726. 

  1726.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1727. 

  1727.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1728. 

  1728.     }
    1729. 

  1729. 

  1730.     if( buflen > 0 )
    1731. 

  1731.     {
    1732. 

  1732.         crl->next = (x509_crl *) malloc( sizeof( x509_crl ) );
    1733. 

  1733. 

  1734.         if( crl->next == NULL )
    1735. 

  1735.         {
    1736. 

  1736.             x509_crl_free( crl );
    1737. 

  1737.             return( 1 );
    1738. 

  1738.         }
    1739. 

  1739. 

  1740.         crl = crl->next;
    1741. 

  1741.         memset( crl, 0, sizeof( x509_crl ) );
    1742. 

  1742. 

  1743.         return( x509parse_crl( crl, buf, buflen ) );
    1744. 

  1744.     }
    1745. 

  1745. 

  1746.     return( 0 );
    1747. 

  1747. }
    1748. 

  1748. 

  1749. #if defined(POLARSSL_FS_IO)
    1750. 

  1750. /*
    1751. 

  1751.  * Load all data from a file into a given buffer.
    1752. 

  1752.  */
    1753. 

  1753. int load_file( const char *path, unsigned char **buf, size_t *n )
    1754. 

  1754. {
    1755. 

  1755.     FILE *f;
    1756. 

  1756. 

  1757.     if( ( f = fopen( path, "rb" ) ) == NULL )
    1758. 

  1758.         return( 1 );
    1759. 

  1759. 

  1760.     fseek( f, 0, SEEK_END );
    1761. 

  1761.     *n = (size_t) ftell( f );
    1762. 

  1762.     fseek( f, 0, SEEK_SET );
    1763. 

  1763. 

  1764.     if( ( *buf = (unsigned char *) malloc( *n + 1 ) ) == NULL )
    1765. 

  1765.         return( 1 );
    1766. 

  1766. 

  1767.     if( fread( *buf, 1, *n, f ) != *n )
    1768. 

  1768.     {
    1769. 

  1769.         fclose( f );
    1770. 

  1770.         free( *buf );
    1771. 

  1771.         return( 1 );
    1772. 

  1772.     }
    1773. 

  1773. 

  1774.     fclose( f );
    1775. 

  1775. 

  1776.     (*buf)[*n] = '\0';
    1777. 

  1777. 

  1778.     return( 0 );
    1779. 

  1779. }
    1780. 

  1780. 

  1781. /*
    1782. 

  1782.  * Load one or more certificates and add them to the chained list
    1783. 

  1783.  */
    1784. 

  1784. int x509parse_crtfile( x509_cert *chain, const char *path )
    1785. 

  1785. {
    1786. 

  1786.     int ret;
    1787. 

  1787.     size_t n;
    1788. 

  1788.     unsigned char *buf;
    1789. 

  1789. 

  1790.     if ( load_file( path, &buf, &n ) )
    1791. 

  1791.         return( 1 );
    1792. 

  1792. 

  1793.     ret = x509parse_crt( chain, buf, n );
    1794. 

  1794. 

  1795.     memset( buf, 0, n + 1 );
    1796. 

  1796.     free( buf );
    1797. 

  1797. 

  1798.     return( ret );
    1799. 

  1799. }
    1800. 

  1800. 

  1801. /*
    1802. 

  1802.  * Load one or more CRLs and add them to the chained list
    1803. 

  1803.  */
    1804. 

  1804. int x509parse_crlfile( x509_crl *chain, const char *path )
    1805. 

  1805. {
    1806. 

  1806.     int ret;
    1807. 

  1807.     size_t n;
    1808. 

  1808.     unsigned char *buf;
    1809. 

  1809. 

  1810.     if ( load_file( path, &buf, &n ) )
    1811. 

  1811.         return( 1 );
    1812. 

  1812. 

  1813.     ret = x509parse_crl( chain, buf, n );
    1814. 

  1814. 

  1815.     memset( buf, 0, n + 1 );
    1816. 

  1816.     free( buf );
    1817. 

  1817. 

  1818.     return( ret );
    1819. 

  1819. }
    1820. 

  1820. 

  1821. /*
    1822. 

  1822.  * Load and parse a private RSA key
    1823. 

  1823.  */
    1824. 

  1824. int x509parse_keyfile( rsa_context *rsa, const char *path, const char *pwd )
    1825. 

  1825. {
    1826. 

  1826.     int ret;
    1827. 

  1827.     size_t n;
    1828. 

  1828.     unsigned char *buf;
    1829. 

  1829. 

  1830.     if ( load_file( path, &buf, &n ) )
    1831. 

  1831.         return( 1 );
    1832. 

  1832. 

  1833.     if( pwd == NULL )
    1834. 

  1834.         ret = x509parse_key( rsa, buf, n, NULL, 0 );
    1835. 

  1835.     else
    1836. 

  1836.         ret = x509parse_key( rsa, buf, n,
    1837. 

  1837.                 (unsigned char *) pwd, strlen( pwd ) );
    1838. 

  1838. 

  1839.     memset( buf, 0, n + 1 );
    1840. 

  1840.     free( buf );
    1841. 

  1841. 

  1842.     return( ret );
    1843. 

  1843. }
    1844. 

  1844. 

  1845. /*
    1846. 

  1846.  * Load and parse a public RSA key
    1847. 

  1847.  */
    1848. 

  1848. int x509parse_public_keyfile( rsa_context *rsa, const char *path )
    1849. 

  1849. {
    1850. 

  1850.     int ret;
    1851. 

  1851.     size_t n;
    1852. 

  1852.     unsigned char *buf;
    1853. 

  1853. 

  1854.     if ( load_file( path, &buf, &n ) )
    1855. 

  1855.         return( 1 );
    1856. 

  1856. 

  1857.     ret = x509parse_public_key( rsa, buf, n );
    1858. 

  1858. 

  1859.     memset( buf, 0, n + 1 );
    1860. 

  1860.     free( buf );
    1861. 

  1861. 

  1862.     return( ret );
    1863. 

  1863. }
    1864. 

  1864. #endif /* POLARSSL_FS_IO */
    1865. 

  1865. 

  1866. /*
    1867. 

  1867.  * Parse a private RSA key
    1868. 

  1868.  */
    1869. 

  1869. int x509parse_key( rsa_context *rsa, const unsigned char *key, size_t keylen,
    1870. 

  1870.                                      const unsigned char *pwd, size_t pwdlen )
    1871. 

  1871. {
    1872. 

  1872.     int ret;
    1873. 

  1873.     size_t len;
    1874. 

  1874.     unsigned char *p, *end;
    1875. 

  1875.     unsigned char *p_alt;
    1876. 

  1876.     x509_buf pk_alg_oid;
    1877. 

  1877. 

  1878. #if defined(POLARSSL_PEM_C)
    1879. 

  1879.     pem_context pem;
    1880. 

  1880. 

  1881.     pem_init( &pem );
    1882. 

  1882.     ret = pem_read_buffer( &pem,
    1883. 

  1883.                            "-----BEGIN RSA PRIVATE KEY-----",
    1884. 

  1884.                            "-----END RSA PRIVATE KEY-----",
    1885. 

  1885.                            key, pwd, pwdlen, &len );
    1886. 

  1886. 

  1887.     if( ret == POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1888. 

  1888.     {
    1889. 

  1889.         ret = pem_read_buffer( &pem,
    1890. 

  1890.                            "-----BEGIN PRIVATE KEY-----",
    1891. 

  1891.                            "-----END PRIVATE KEY-----",
    1892. 

  1892.                            key, pwd, pwdlen, &len );
    1893. 

  1893.     }
    1894. 

  1894. 

  1895.     if( ret == 0 )
    1896. 

  1896.     {
    1897. 

  1897.         /*
    1898. 

  1898.          * Was PEM encoded
    1899. 

  1899.          */
    1900. 

  1900.         keylen = pem.buflen;
    1901. 

  1901.     }
    1902. 

  1902.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1903. 

  1903.     {
    1904. 

  1904.         pem_free( &pem );
    1905. 

  1905.         return( ret );
    1906. 

  1906.     }
    1907. 

  1907. 

  1908.     p = ( ret == 0 ) ? pem.buf : (unsigned char *) key;
    1909. 

  1909. #else
    1910. 

  1910.     ((void) pwd);
    1911. 

  1911.     ((void) pwdlen);
    1912. 

  1912.     p = (unsigned char *) key;
    1913. 

  1913. #endif
    1914. 

  1914.     end = p + keylen;
    1915. 

  1915. 

  1916.     /*
    1917. 

  1917.      * Note: Depending on the type of private key file one can expect either a
    1918. 

  1918.      * PrivatKeyInfo object (PKCS#8) or a RSAPrivateKey (PKCS#1) directly.
    1919. 

  1919.      *
    1920. 

  1920.      *  PrivateKeyInfo ::= SEQUENCE {
    1921. 

  1921.      *    version           Version,
    1922. 

  1922.      *    algorithm       AlgorithmIdentifier,
    1923. 

  1923.      *    PrivateKey      BIT STRING
    1924. 

  1924.      *  }
    1925. 

  1925.      *
    1926. 

  1926.      *  AlgorithmIdentifier ::= SEQUENCE {
    1927. 

  1927.      *    algorithm       OBJECT IDENTIFIER,
    1928. 

  1928.      *    parameters      ANY DEFINED BY algorithm OPTIONAL
    1929. 

  1929.      *  }
    1930. 

  1930.      *
    1931. 

  1931.      *  RSAPrivateKey ::= SEQUENCE {
    1932. 

  1932.      *      version           Version,
    1933. 

  1933.      *      modulus           INTEGER,  -- n
    1934. 

  1934.      *      publicExponent    INTEGER,  -- e
    1935. 

  1935.      *      privateExponent   INTEGER,  -- d
    1936. 

  1936.      *      prime1            INTEGER,  -- p
    1937. 

  1937.      *      prime2            INTEGER,  -- q
    1938. 

  1938.      *      exponent1         INTEGER,  -- d mod (p-1)
    1939. 

  1939.      *      exponent2         INTEGER,  -- d mod (q-1)
    1940. 

  1940.      *      coefficient       INTEGER,  -- (inverse of q) mod p
    1941. 

  1941.      *      otherPrimeInfos   OtherPrimeInfos OPTIONAL
    1942. 

  1942.      *  }
    1943. 

  1943.      */
    1944. 

  1944.     if( ( ret = asn1_get_tag( &p, end, &len,
    1945. 

  1945.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1946. 

  1946.     {
    1947. 

  1947. #if defined(POLARSSL_PEM_C)
    1948. 

  1948.         pem_free( &pem );
    1949. 

  1949. #endif
    1950. 

  1950.         rsa_free( rsa );
    1951. 

  1951.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    1952. 

  1952.     }
    1953. 

  1953. 

  1954.     end = p + len;
    1955. 

  1955. 

  1956.     if( ( ret = asn1_get_int( &p, end, &rsa->ver ) ) != 0 )
    1957. 

  1957.     {
    1958. 

  1958. #if defined(POLARSSL_PEM_C)
    1959. 

  1959.         pem_free( &pem );
    1960. 

  1960. #endif
    1961. 

  1961.         rsa_free( rsa );
    1962. 

  1962.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    1963. 

  1963.     }
    1964. 

  1964. 

  1965.     if( rsa->ver != 0 )
    1966. 

  1966.     {
    1967. 

  1967. #if defined(POLARSSL_PEM_C)
    1968. 

  1968.         pem_free( &pem );
    1969. 

  1969. #endif
    1970. 

  1970.         rsa_free( rsa );
    1971. 

  1971.         return( POLARSSL_ERR_X509_KEY_INVALID_VERSION + ret );
    1972. 

  1972.     }
    1973. 

  1973. 

  1974.     p_alt = p;
    1975. 

  1975. 

  1976.     if( ( ret = x509_get_alg( &p_alt, end, &pk_alg_oid ) ) != 0 )
    1977. 

  1977.     {
    1978. 

  1978.         // Assume that we have the PKCS#1 format if wrong
    1979. 

  1979.         // tag was encountered
    1980. 

  1980.         //
    1981. 

  1981.         if( ret != POLARSSL_ERR_X509_CERT_INVALID_ALG +
    1982. 

  1982.                     POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    1983. 

  1983.         {
    1984. 

  1984. #if defined(POLARSSL_PEM_C)
    1985. 

  1985.             pem_free( &pem );
    1986. 

  1986. #endif
    1987. 

  1987.             rsa_free( rsa );
    1988. 

  1988.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT );
    1989. 

  1989.         } 
    1990. 

  1990.     }
    1991. 

  1991.     else
    1992. 

  1992.     {
    1993. 

  1993.         int can_handle;
    1994. 

  1994. 

  1995.         /*
    1996. 

  1996.          * only RSA keys handled at this time
    1997. 

  1997.          */
    1998. 

  1998.         can_handle = 0;
    1999. 

  1999. 

  2000.         if( pk_alg_oid.len == 9 &&
    2001. 

  2001.                 memcmp( pk_alg_oid.p, OID_PKCS1_RSA, 9 ) == 0 )
    2002. 

  2002.             can_handle = 1;
    2003. 

  2003. 

  2004.         if( pk_alg_oid.len == 9 &&
    2005. 

  2005.                 memcmp( pk_alg_oid.p, OID_PKCS1, 8 ) == 0 )
    2006. 

  2006.         {
    2007. 

  2007.             if( pk_alg_oid.p[8] >= 2 && pk_alg_oid.p[8] <= 5 )
    2008. 

  2008.                 can_handle = 1;
    2009. 

  2009. 

  2010.             if ( pk_alg_oid.p[8] >= 11 && pk_alg_oid.p[8] <= 14 )
    2011. 

  2011.                 can_handle = 1;
    2012. 

  2012.         }
    2013. 

  2013. 

  2014.         if( pk_alg_oid.len == 5 &&
    2015. 

  2015.                 memcmp( pk_alg_oid.p, OID_RSA_SHA_OBS, 5 ) == 0 )
    2016. 

  2016.             can_handle = 1;
    2017. 

  2017. 

  2018.         if( can_handle == 0 )
    2019. 

  2019.             return( POLARSSL_ERR_X509_UNKNOWN_PK_ALG );
    2020. 

  2020. 

  2021.         /*
    2022. 

  2022.          * Parse the PKCS#8 format
    2023. 

  2023.          */
    2024. 

  2024.         
    2025. 

  2025.         p = p_alt;
    2026. 

  2026.         if( ( ret = asn1_get_tag( &p, end, &len, ASN1_OCTET_STRING ) ) != 0 )
    2027. 

  2027.         {
    2028. 

  2028. #if defined(POLARSSL_PEM_C)
    2029. 

  2029.             pem_free( &pem );
    2030. 

  2030. #endif
    2031. 

  2031.             rsa_free( rsa );
    2032. 

  2032.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2033. 

  2033.         }
    2034. 

  2034. 

  2035.         if( ( end - p ) < 1 )
    2036. 

  2036.         {
    2037. 

  2037. #if defined(POLARSSL_PEM_C)
    2038. 

  2038.             pem_free( &pem );
    2039. 

  2039. #endif
    2040. 

  2040.             rsa_free( rsa );
    2041. 

  2041.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT +
    2042. 

  2042.                     POLARSSL_ERR_ASN1_OUT_OF_DATA );
    2043. 

  2043.         }
    2044. 

  2044. 

  2045.         end = p + len;
    2046. 

  2046. 

  2047.         if( ( ret = asn1_get_tag( &p, end, &len,
    2048. 

  2048.                         ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    2049. 

  2049.         {
    2050. 

  2050. #if defined(POLARSSL_PEM_C)
    2051. 

  2051.             pem_free( &pem );
    2052. 

  2052. #endif
    2053. 

  2053.             rsa_free( rsa );
    2054. 

  2054.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2055. 

  2055.         }
    2056. 

  2056. 

  2057.         end = p + len;
    2058. 

  2058. 

  2059.         if( ( ret = asn1_get_int( &p, end, &rsa->ver ) ) != 0 )
    2060. 

  2060.         {
    2061. 

  2061. #if defined(POLARSSL_PEM_C)
    2062. 

  2062.             pem_free( &pem );
    2063. 

  2063. #endif
    2064. 

  2064.             rsa_free( rsa );
    2065. 

  2065.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2066. 

  2066.         }
    2067. 

  2067. 

  2068.         if( rsa->ver != 0 )
    2069. 

  2069.         {
    2070. 

  2070. #if defined(POLARSSL_PEM_C)
    2071. 

  2071.             pem_free( &pem );
    2072. 

  2072. #endif
    2073. 

  2073.             rsa_free( rsa );
    2074. 

  2074.             return( POLARSSL_ERR_X509_KEY_INVALID_VERSION + ret );
    2075. 

  2075.         }
    2076. 

  2076.     }
    2077. 

  2077. 

  2078.     if( ( ret = asn1_get_mpi( &p, end, &rsa->N  ) ) != 0 ||
    2079. 

  2079.         ( ret = asn1_get_mpi( &p, end, &rsa->E  ) ) != 0 ||
    2080. 

  2080.         ( ret = asn1_get_mpi( &p, end, &rsa->D  ) ) != 0 ||
    2081. 

  2081.         ( ret = asn1_get_mpi( &p, end, &rsa->P  ) ) != 0 ||
    2082. 

  2082.         ( ret = asn1_get_mpi( &p, end, &rsa->Q  ) ) != 0 ||
    2083. 

  2083.         ( ret = asn1_get_mpi( &p, end, &rsa->DP ) ) != 0 ||
    2084. 

  2084.         ( ret = asn1_get_mpi( &p, end, &rsa->DQ ) ) != 0 ||
    2085. 

  2085.         ( ret = asn1_get_mpi( &p, end, &rsa->QP ) ) != 0 )
    2086. 

  2086.     {
    2087. 

  2087. #if defined(POLARSSL_PEM_C)
    2088. 

  2088.         pem_free( &pem );
    2089. 

  2089. #endif
    2090. 

  2090.         rsa_free( rsa );
    2091. 

  2091.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2092. 

  2092.     }
    2093. 

  2093. 

  2094.     rsa->len = mpi_size( &rsa->N );
    2095. 

  2095. 

  2096.     if( p != end )
    2097. 

  2097.     {
    2098. 

  2098. #if defined(POLARSSL_PEM_C)
    2099. 

  2099.         pem_free( &pem );
    2100. 

  2100. #endif
    2101. 

  2101.         rsa_free( rsa );
    2102. 

  2102.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT +
    2103. 

  2103.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    2104. 

  2104.     }
    2105. 

  2105. 

  2106.     if( ( ret = rsa_check_privkey( rsa ) ) != 0 )
    2107. 

  2107.     {
    2108. 

  2108. #if defined(POLARSSL_PEM_C)
    2109. 

  2109.         pem_free( &pem );
    2110. 

  2110. #endif
    2111. 

  2111.         rsa_free( rsa );
    2112. 

  2112.         return( ret );
    2113. 

  2113.     }
    2114. 

  2114. 

  2115. #if defined(POLARSSL_PEM_C)
    2116. 

  2116.     pem_free( &pem );
    2117. 

  2117. #endif
    2118. 

  2118. 

  2119.     return( 0 );
    2120. 

  2120. }
    2121. 

  2121. 

  2122. /*
    2123. 

  2123.  * Parse a public RSA key
    2124. 

  2124.  */
    2125. 

  2125. int x509parse_public_key( rsa_context *rsa, const unsigned char *key, size_t keylen )
    2126. 

  2126. {
    2127. 

  2127.     int ret;
    2128. 

  2128.     size_t len;
    2129. 

  2129.     unsigned char *p, *end;
    2130. 

  2130.     x509_buf alg_oid;
    2131. 

  2131. #if defined(POLARSSL_PEM_C)
    2132. 

  2132.     pem_context pem;
    2133. 

  2133. 

  2134.     pem_init( &pem );
    2135. 

  2135.     ret = pem_read_buffer( &pem,
    2136. 

  2136.             "-----BEGIN PUBLIC KEY-----",
    2137. 

  2137.             "-----END PUBLIC KEY-----",
    2138. 

  2138.             key, NULL, 0, &len );
    2139. 

  2139. 

  2140.     if( ret == 0 )
    2141. 

  2141.     {
    2142. 

  2142.         /*
    2143. 

  2143.          * Was PEM encoded
    2144. 

  2144.          */
    2145. 

  2145.         keylen = pem.buflen;
    2146. 

  2146.     }
    2147. 

  2147.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    2148. 

  2148.     {
    2149. 

  2149.         pem_free( &pem );
    2150. 

  2150.         return( ret );
    2151. 

  2151.     }
    2152. 

  2152. 

  2153.     p = ( ret == 0 ) ? pem.buf : (unsigned char *) key;
    2154. 

  2154. #else
    2155. 

  2155.     p = (unsigned char *) key;
    2156. 

  2156. #endif
    2157. 

  2157.     end = p + keylen;
    2158. 

  2158. 

  2159.     /*
    2160. 

  2160.      *  PublicKeyInfo ::= SEQUENCE {
    2161. 

  2161.      *    algorithm       AlgorithmIdentifier,
    2162. 

  2162.      *    PublicKey       BIT STRING
    2163. 

  2163.      *  }
    2164. 

  2164.      *
    2165. 

  2165.      *  AlgorithmIdentifier ::= SEQUENCE {
    2166. 

  2166.      *    algorithm       OBJECT IDENTIFIER,
    2167. 

  2167.      *    parameters      ANY DEFINED BY algorithm OPTIONAL
    2168. 

  2168.      *  }
    2169. 

  2169.      *
    2170. 

  2170.      *  RSAPublicKey ::= SEQUENCE {
    2171. 

  2171.      *      modulus           INTEGER,  -- n
    2172. 

  2172.      *      publicExponent    INTEGER   -- e
    2173. 

  2173.      *  }
    2174. 

  2174.      */
    2175. 

  2175. 

  2176.     if( ( ret = asn1_get_tag( &p, end, &len,
    2177. 

  2177.                     ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    2178. 

  2178.     {
    2179. 

  2179. #if defined(POLARSSL_PEM_C)
    2180. 

  2180.         pem_free( &pem );
    2181. 

  2181. #endif
    2182. 

  2182.         rsa_free( rsa );
    2183. 

  2183.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    2184. 

  2184.     }
    2185. 

  2185. 

  2186.     if( ( ret = x509_get_pubkey( &p, end, &alg_oid, &rsa->N, &rsa->E ) ) != 0 )
    2187. 

  2187.     {
    2188. 

  2188. #if defined(POLARSSL_PEM_C)
    2189. 

  2189.         pem_free( &pem );
    2190. 

  2190. #endif
    2191. 

  2191.         rsa_free( rsa );
    2192. 

  2192.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2193. 

  2193.     }
    2194. 

  2194. 

  2195.     if( ( ret = rsa_check_pubkey( rsa ) ) != 0 )
    2196. 

  2196.     {
    2197. 

  2197. #if defined(POLARSSL_PEM_C)
    2198. 

  2198.         pem_free( &pem );
    2199. 

  2199. #endif
    2200. 

  2200.         rsa_free( rsa );
    2201. 

  2201.         return( ret );
    2202. 

  2202.     }
    2203. 

  2203. 

  2204.     rsa->len = mpi_size( &rsa->N );
    2205. 

  2205. 

  2206. #if defined(POLARSSL_PEM_C)
    2207. 

  2207.     pem_free( &pem );
    2208. 

  2208. #endif
    2209. 

  2209. 

  2210.     return( 0 );
    2211. 

  2211. }
    2212. 

  2212. 

  2213. #if defined(POLARSSL_DHM_C)
    2214. 

  2214. /*
    2215. 

  2215.  * Parse DHM parameters
    2216. 

  2216.  */
    2217. 

  2217. int x509parse_dhm( dhm_context *dhm, const unsigned char *dhmin, size_t dhminlen )
    2218. 

  2218. {
    2219. 

  2219.     int ret;
    2220. 

  2220.     size_t len;
    2221. 

  2221.     unsigned char *p, *end;
    2222. 

  2222. #if defined(POLARSSL_PEM_C)
    2223. 

  2223.     pem_context pem;
    2224. 

  2224. 

  2225.     pem_init( &pem );
    2226. 

  2226. 

  2227.     ret = pem_read_buffer( &pem, 
    2228. 

  2228.                            "-----BEGIN DH PARAMETERS-----",
    2229. 

  2229.                            "-----END DH PARAMETERS-----",
    2230. 

  2230.                            dhmin, NULL, 0, &dhminlen );
    2231. 

  2231. 

  2232.     if( ret == 0 )
    2233. 

  2233.     {
    2234. 

  2234.         /*
    2235. 

  2235.          * Was PEM encoded
    2236. 

  2236.          */
    2237. 

  2237.         dhminlen = pem.buflen;
    2238. 

  2238.     }
    2239. 

  2239.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    2240. 

  2240.     {
    2241. 

  2241.         pem_free( &pem );
    2242. 

  2242.         return( ret );
    2243. 

  2243.     }
    2244. 

  2244. 

  2245.     p = ( ret == 0 ) ? pem.buf : (unsigned char *) dhmin;
    2246. 

  2246. #else
    2247. 

  2247.     p = (unsigned char *) dhmin;
    2248. 

  2248. #endif
    2249. 

  2249.     end = p + dhminlen;
    2250. 

  2250. 

  2251.     memset( dhm, 0, sizeof( dhm_context ) );
    2252. 

  2252. 

  2253.     /*
    2254. 

  2254.      *  DHParams ::= SEQUENCE {
    2255. 

  2255.      *      prime            INTEGER,  -- P
    2256. 

  2256.      *      generator        INTEGER,  -- g
    2257. 

  2257.      *  }
    2258. 

  2258.      */
    2259. 

  2259.     if( ( ret = asn1_get_tag( &p, end, &len,
    2260. 

  2260.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    2261. 

  2261.     {
    2262. 

  2262. #if defined(POLARSSL_PEM_C)
    2263. 

  2263.         pem_free( &pem );
    2264. 

  2264. #endif
    2265. 

  2265.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2266. 

  2266.     }
    2267. 

  2267. 

  2268.     end = p + len;
    2269. 

  2269. 

  2270.     if( ( ret = asn1_get_mpi( &p, end, &dhm->P  ) ) != 0 ||
    2271. 

  2271.         ( ret = asn1_get_mpi( &p, end, &dhm->G ) ) != 0 )
    2272. 

  2272.     {
    2273. 

  2273. #if defined(POLARSSL_PEM_C)
    2274. 

  2274.         pem_free( &pem );
    2275. 

  2275. #endif
    2276. 

  2276.         dhm_free( dhm );
    2277. 

  2277.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2278. 

  2278.     }
    2279. 

  2279. 

  2280.     if( p != end )
    2281. 

  2281.     {
    2282. 

  2282. #if defined(POLARSSL_PEM_C)
    2283. 

  2283.         pem_free( &pem );
    2284. 

  2284. #endif
    2285. 

  2285.         dhm_free( dhm );
    2286. 

  2286.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT +
    2287. 

  2287.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    2288. 

  2288.     }
    2289. 

  2289. 

  2290. #if defined(POLARSSL_PEM_C)
    2291. 

  2291.     pem_free( &pem );
    2292. 

  2292. #endif
    2293. 

  2293. 

  2294.     return( 0 );
    2295. 

  2295. }
    2296. 

  2296. 

  2297. #if defined(POLARSSL_FS_IO)
    2298. 

  2298. /*
    2299. 

  2299.  * Load and parse a private RSA key
    2300. 

  2300.  */
    2301. 

  2301. int x509parse_dhmfile( dhm_context *dhm, const char *path )
    2302. 

  2302. {
    2303. 

  2303.     int ret;
    2304. 

  2304.     size_t n;
    2305. 

  2305.     unsigned char *buf;
    2306. 

  2306. 

  2307.     if ( load_file( path, &buf, &n ) )
    2308. 

  2308.         return( 1 );
    2309. 

  2309. 

  2310.     ret = x509parse_dhm( dhm, buf, n );
    2311. 

  2311. 

  2312.     memset( buf, 0, n + 1 );
    2313. 

  2313.     free( buf );
    2314. 

  2314. 

  2315.     return( ret );
    2316. 

  2316. }
    2317. 

  2317. #endif /* POLARSSL_FS_IO */
    2318. 

  2318. #endif /* POLARSSL_DHM_C */
    2319. 

  2319. 

  2320. #if defined _MSC_VER && !defined snprintf
    2321. 

  2321. #include <stdarg.h>
    2322. 

  2322. 

  2323. #if !defined vsnprintf
    2324. 

  2324. #define vsnprintf _vsnprintf
    2325. 

  2325. #endif // vsnprintf
    2326. 

  2326. 

  2327. /*
    2328. 

  2328.  * Windows _snprintf and _vsnprintf are not compatible to linux versions.
    2329. 

  2329.  * Result value is not size of buffer needed, but -1 if no fit is possible.
    2330. 

  2330.  *
    2331. 

  2331.  * This fuction tries to 'fix' this by at least suggesting enlarging the
    2332. 

  2332.  * size by 20.
    2333. 

  2333.  */
    2334. 

  2334. int compat_snprintf(char *str, size_t size, const char *format, ...)
    2335. 

  2335. {
    2336. 

  2336.     va_list ap;
    2337. 

  2337.     int res = -1;
    2338. 

  2338. 

  2339.     va_start( ap, format );
    2340. 

  2340. 

  2341.     res = vsnprintf( str, size, format, ap );
    2342. 

  2342. 

  2343.     va_end( ap );
    2344. 

  2344. 

  2345.     // No quick fix possible
    2346. 

  2346.     if ( res < 0 )
    2347. 

  2347.         return( (int) size + 20 );
    2348. 

  2348.     
    2349. 

  2349.     return res;
    2350. 

  2350. }
    2351. 

  2351. 

  2352. #define snprintf compat_snprintf
    2353. 

  2353. #endif
    2354. 

  2354. 

  2355. #define POLARSSL_ERR_DEBUG_BUF_TOO_SMALL    -2
    2356. 

  2356. 

  2357. #define SAFE_SNPRINTF()                         \
    2358. 

  2358. {                                               \
    2359. 

  2359.     if( ret == -1 )                             \
    2360. 

  2360.         return( -1 );                           \
    2361. 

  2361.                                                 \
    2362. 

  2362.     if ( (unsigned int) ret > n ) {             \
    2363. 

  2363.         p[n - 1] = '\0';                        \
    2364. 

  2364.         return POLARSSL_ERR_DEBUG_BUF_TOO_SMALL;\
    2365. 

  2365.     }                                           \
    2366. 

  2366.                                                 \
    2367. 

  2367.     n -= (unsigned int) ret;                    \
    2368. 

  2368.     p += (unsigned int) ret;                    \
    2369. 

  2369. }
    2370. 

  2370. 

  2371. /*
    2372. 

  2372.  * Store the name in printable form into buf; no more
    2373. 

  2373.  * than size characters will be written
    2374. 

  2374.  */
    2375. 

  2375. int x509parse_dn_gets( char *buf, size_t size, const x509_name *dn )
    2376. 

  2376. {
    2377. 

  2377.     int ret;
    2378. 

  2378.     size_t i, n;
    2379. 

  2379.     unsigned char c;
    2380. 

  2380.     const x509_name *name;
    2381. 

  2381.     char s[128], *p;
    2382. 

  2382. 

  2383.     memset( s, 0, sizeof( s ) );
    2384. 

  2384. 

  2385.     name = dn;
    2386. 

  2386.     p = buf;
    2387. 

  2387.     n = size;
    2388. 

  2388. 

  2389.     while( name != NULL )
    2390. 

  2390.     {
    2391. 

  2391.         if( name != dn )
    2392. 

  2392.         {
    2393. 

  2393.             ret = snprintf( p, n, ", " );
    2394. 

  2394.             SAFE_SNPRINTF();
    2395. 

  2395.         }
    2396. 

  2396. 

  2397.         if( memcmp( name->oid.p, OID_X520, 2 ) == 0 )
    2398. 

  2398.         {
    2399. 

  2399.             switch( name->oid.p[2] )
    2400. 

  2400.             {
    2401. 

  2401.             case X520_COMMON_NAME:
    2402. 

  2402.                 ret = snprintf( p, n, "CN=" ); break;
    2403. 

  2403. 

  2404.             case X520_COUNTRY:
    2405. 

  2405.                 ret = snprintf( p, n, "C="  ); break;
    2406. 

  2406. 

  2407.             case X520_LOCALITY:
    2408. 

  2408.                 ret = snprintf( p, n, "L="  ); break;
    2409. 

  2409. 

  2410.             case X520_STATE:
    2411. 

  2411.                 ret = snprintf( p, n, "ST=" ); break;
    2412. 

  2412. 

  2413.             case X520_ORGANIZATION:
    2414. 

  2414.                 ret = snprintf( p, n, "O="  ); break;
    2415. 

  2415. 

  2416.             case X520_ORG_UNIT:
    2417. 

  2417.                 ret = snprintf( p, n, "OU=" ); break;
    2418. 

  2418. 

  2419.             default:
    2420. 

  2420.                 ret = snprintf( p, n, "0x%02X=",
    2421. 

  2421.                                name->oid.p[2] );
    2422. 

  2422.                 break;
    2423. 

  2423.             }
    2424. 

  2424.         SAFE_SNPRINTF();
    2425. 

  2425.         }
    2426. 

  2426.         else if( memcmp( name->oid.p, OID_PKCS9, 8 ) == 0 )
    2427. 

  2427.         {
    2428. 

  2428.             switch( name->oid.p[8] )
    2429. 

  2429.             {
    2430. 

  2430.             case PKCS9_EMAIL:
    2431. 

  2431.                 ret = snprintf( p, n, "emailAddress=" ); break;
    2432. 

  2432. 

  2433.             default:
    2434. 

  2434.                 ret = snprintf( p, n, "0x%02X=",
    2435. 

  2435.                                name->oid.p[8] );
    2436. 

  2436.                 break;
    2437. 

  2437.             }
    2438. 

  2438.         SAFE_SNPRINTF();
    2439. 

  2439.         }
    2440. 

  2440.         else
    2441. 

  2441.         {
    2442. 

  2442.             ret = snprintf( p, n, "\?\?=" );
    2443. 

  2443.             SAFE_SNPRINTF();
    2444. 

  2444.         }
    2445. 

  2445. 

  2446.         for( i = 0; i < name->val.len; i++ )
    2447. 

  2447.         {
    2448. 

  2448.             if( i >= sizeof( s ) - 1 )
    2449. 

  2449.                 break;
    2450. 

  2450. 

  2451.             c = name->val.p[i];
    2452. 

  2452.             if( c < 32 || c == 127 || ( c > 128 && c < 160 ) )
    2453. 

  2453.                  s[i] = '?';
    2454. 

  2454.             else s[i] = c;
    2455. 

  2455.         }
    2456. 

  2456.         s[i] = '\0';
    2457. 

  2457.         ret = snprintf( p, n, "%s", s );
    2458. 

  2458.     SAFE_SNPRINTF();
    2459. 

  2459.         name = name->next;
    2460. 

  2460.     }
    2461. 

  2461. 

  2462.     return( (int) ( size - n ) );
    2463. 

  2463. }
    2464. 

  2464. 

  2465. /*
    2466. 

  2466.  * Store the serial in printable form into buf; no more
    2467. 

  2467.  * than size characters will be written
    2468. 

  2468.  */
    2469. 

  2469. int x509parse_serial_gets( char *buf, size_t size, const x509_buf *serial )
    2470. 

  2470. {
    2471. 

  2471.     int ret;
    2472. 

  2472.     size_t i, n, nr;
    2473. 

  2473.     char *p;
    2474. 

  2474. 

  2475.     p = buf;
    2476. 

  2476.     n = size;
    2477. 

  2477. 

  2478.     nr = ( serial->len <= 32 )
    2479. 

  2479.         ? serial->len  : 32;
    2480. 

  2480. 

  2481.     for( i = 0; i < nr; i++ )
    2482. 

  2482.     {
    2483. 

  2483.         ret = snprintf( p, n, "%02X%s",
    2484. 

  2484.                 serial->p[i], ( i < nr - 1 ) ? ":" : "" );
    2485. 

  2485.         SAFE_SNPRINTF();
    2486. 

  2486.     }
    2487. 

  2487. 

  2488.     return( (int) ( size - n ) );
    2489. 

  2489. }
    2490. 

  2490. 

  2491. /*
    2492. 

  2492.  * Return an informational string about the certificate.
    2493. 

  2493.  */
    2494. 

  2494. int x509parse_cert_info( char *buf, size_t size, const char *prefix,
    2495. 

  2495.                          const x509_cert *crt )
    2496. 

  2496. {
    2497. 

  2497.     int ret;
    2498. 

  2498.     size_t n;
    2499. 

  2499.     char *p;
    2500. 

  2500. 

  2501.     p = buf;
    2502. 

  2502.     n = size;
    2503. 

  2503. 

  2504.     ret = snprintf( p, n, "%scert. version : %d\n",
    2505. 

  2505.                                prefix, crt->version );
    2506. 

  2506.     SAFE_SNPRINTF();
    2507. 

  2507.     ret = snprintf( p, n, "%sserial number : ",
    2508. 

  2508.                                prefix );
    2509. 

  2509.     SAFE_SNPRINTF();
    2510. 

  2510. 

  2511.     ret = x509parse_serial_gets( p, n, &crt->serial);
    2512. 

  2512.     SAFE_SNPRINTF();
    2513. 

  2513. 

  2514.     ret = snprintf( p, n, "\n%sissuer name   : ", prefix );
    2515. 

  2515.     SAFE_SNPRINTF();
    2516. 

  2516.     ret = x509parse_dn_gets( p, n, &crt->issuer  );
    2517. 

  2517.     SAFE_SNPRINTF();
    2518. 

  2518. 

  2519.     ret = snprintf( p, n, "\n%ssubject name  : ", prefix );
    2520. 

  2520.     SAFE_SNPRINTF();
    2521. 

  2521.     ret = x509parse_dn_gets( p, n, &crt->subject );
    2522. 

  2522.     SAFE_SNPRINTF();
    2523. 

  2523. 

  2524.     ret = snprintf( p, n, "\n%sissued  on    : " \
    2525. 

  2525.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2526. 

  2526.                    crt->valid_from.year, crt->valid_from.mon,
    2527. 

  2527.                    crt->valid_from.day,  crt->valid_from.hour,
    2528. 

  2528.                    crt->valid_from.min,  crt->valid_from.sec );
    2529. 

  2529.     SAFE_SNPRINTF();
    2530. 

  2530. 

  2531.     ret = snprintf( p, n, "\n%sexpires on    : " \
    2532. 

  2532.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2533. 

  2533.                    crt->valid_to.year, crt->valid_to.mon,
    2534. 

  2534.                    crt->valid_to.day,  crt->valid_to.hour,
    2535. 

  2535.                    crt->valid_to.min,  crt->valid_to.sec );
    2536. 

  2536.     SAFE_SNPRINTF();
    2537. 

  2537. 

  2538.     ret = snprintf( p, n, "\n%ssigned using  : RSA+", prefix );
    2539. 

  2539.     SAFE_SNPRINTF();
    2540. 

  2540. 

  2541.     switch( crt->sig_alg )
    2542. 

  2542.     {
    2543. 

  2543.         case SIG_RSA_MD2    : ret = snprintf( p, n, "MD2"    ); break;
    2544. 

  2544.         case SIG_RSA_MD4    : ret = snprintf( p, n, "MD4"    ); break;
    2545. 

  2545.         case SIG_RSA_MD5    : ret = snprintf( p, n, "MD5"    ); break;
    2546. 

  2546.         case SIG_RSA_SHA1   : ret = snprintf( p, n, "SHA1"   ); break;
    2547. 

  2547.         case SIG_RSA_SHA224 : ret = snprintf( p, n, "SHA224" ); break;
    2548. 

  2548.         case SIG_RSA_SHA256 : ret = snprintf( p, n, "SHA256" ); break;
    2549. 

  2549.         case SIG_RSA_SHA384 : ret = snprintf( p, n, "SHA384" ); break;
    2550. 

  2550.         case SIG_RSA_SHA512 : ret = snprintf( p, n, "SHA512" ); break;
    2551. 

  2551.         default: ret = snprintf( p, n, "???"  ); break;
    2552. 

  2552.     }
    2553. 

  2553.     SAFE_SNPRINTF();
    2554. 

  2554. 

  2555.     ret = snprintf( p, n, "\n%sRSA key size  : %d bits\n", prefix,
    2556. 

  2556.                    (int) crt->rsa.N.n * (int) sizeof( unsigned long ) * 8 );
    2557. 

  2557.     SAFE_SNPRINTF();
    2558. 

  2558. 

  2559.     return( (int) ( size - n ) );
    2560. 

  2560. }
    2561. 

  2561. 

  2562. /* Compare a given OID string with an OID x509_buf * */
    2563. 

  2563. #define OID_CMP(oid_str, oid_buf) \
    2564. 

  2564.         ( ( OID_SIZE(oid_str) == (oid_buf)->len ) && \
    2565. 

  2565.                 memcmp( (oid_str), (oid_buf)->p, (oid_buf)->len) == 0)
    2566. 

  2566. 

  2567. /*
    2568. 

  2568.  * Return an informational string describing the given OID
    2569. 

  2569.  */
    2570. 

  2570. const char *x509_oid_get_description( x509_buf *oid )
    2571. 

  2571. {
    2572. 

  2572.     if ( oid == NULL )
    2573. 

  2573.         return ( NULL );
    2574. 

  2574.     
    2575. 

  2575.     else if( OID_CMP( OID_SERVER_AUTH, oid ) )
    2576. 

  2576.         return( STRING_SERVER_AUTH );
    2577. 

  2577.     
    2578. 

  2578.     else if( OID_CMP( OID_CLIENT_AUTH, oid ) )
    2579. 

  2579.         return( STRING_CLIENT_AUTH );
    2580. 

  2580.     
    2581. 

  2581.     else if( OID_CMP( OID_CODE_SIGNING, oid ) )
    2582. 

  2582.         return( STRING_CODE_SIGNING );
    2583. 

  2583.     
    2584. 

  2584.     else if( OID_CMP( OID_EMAIL_PROTECTION, oid ) )
    2585. 

  2585.         return( STRING_EMAIL_PROTECTION );
    2586. 

  2586.     
    2587. 

  2587.     else if( OID_CMP( OID_TIME_STAMPING, oid ) )
    2588. 

  2588.         return( STRING_TIME_STAMPING );
    2589. 

  2589. 

  2590.     else if( OID_CMP( OID_OCSP_SIGNING, oid ) )
    2591. 

  2591.         return( STRING_OCSP_SIGNING );
    2592. 

  2592. 

  2593.     return( NULL );
    2594. 

  2594. }
    2595. 

  2595. 

  2596. /* Return the x.y.z.... style numeric string for the given OID */
    2597. 

  2597. int x509_oid_get_numeric_string( char *buf, size_t size, x509_buf *oid )
    2598. 

  2598. {
    2599. 

  2599.     int ret;
    2600. 

  2600.     size_t i, n;
    2601. 

  2601.     unsigned int value;
    2602. 

  2602.     char *p;
    2603. 

  2603. 

  2604.     p = buf;
    2605. 

  2605.     n = size;
    2606. 

  2606. 

  2607.     /* First byte contains first two dots */
    2608. 

  2608.     if( oid->len > 0 )
    2609. 

  2609.     {
    2610. 

  2610.         ret = snprintf( p, n, "%d.%d", oid->p[0]/40, oid->p[0]%40 );
    2611. 

  2611.         SAFE_SNPRINTF();
    2612. 

  2612.     }
    2613. 

  2613. 

  2614.     /* TODO: value can overflow in value. */
    2615. 

  2615.     value = 0;
    2616. 

  2616.     for( i = 1; i < oid->len; i++ )
    2617. 

  2617.     {
    2618. 

  2618.         value <<= 7;
    2619. 

  2619.         value += oid->p[i] & 0x7F;
    2620. 

  2620. 

  2621.         if( !( oid->p[i] & 0x80 ) )
    2622. 

  2622.         {
    2623. 

  2623.             /* Last byte */
    2624. 

  2624.             ret = snprintf( p, n, ".%d", value );
    2625. 

  2625.             SAFE_SNPRINTF();
    2626. 

  2626.             value = 0;
    2627. 

  2627.         }
    2628. 

  2628.     }
    2629. 

  2629. 

  2630.     return( (int) ( size - n ) );
    2631. 

  2631. }
    2632. 

  2632. 

  2633. /*
    2634. 

  2634.  * Return an informational string about the CRL.
    2635. 

  2635.  */
    2636. 

  2636. int x509parse_crl_info( char *buf, size_t size, const char *prefix,
    2637. 

  2637.                         const x509_crl *crl )
    2638. 

  2638. {
    2639. 

  2639.     int ret;
    2640. 

  2640.     size_t i, n, nr;
    2641. 

  2641.     char *p;
    2642. 

  2642.     const x509_crl_entry *entry;
    2643. 

  2643. 

  2644.     p = buf;
    2645. 

  2645.     n = size;
    2646. 

  2646. 

  2647.     ret = snprintf( p, n, "%sCRL version   : %d",
    2648. 

  2648.                                prefix, crl->version );
    2649. 

  2649.     SAFE_SNPRINTF();
    2650. 

  2650. 

  2651.     ret = snprintf( p, n, "\n%sissuer name   : ", prefix );
    2652. 

  2652.     SAFE_SNPRINTF();
    2653. 

  2653.     ret = x509parse_dn_gets( p, n, &crl->issuer );
    2654. 

  2654.     SAFE_SNPRINTF();
    2655. 

  2655. 

  2656.     ret = snprintf( p, n, "\n%sthis update   : " \
    2657. 

  2657.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2658. 

  2658.                    crl->this_update.year, crl->this_update.mon,
    2659. 

  2659.                    crl->this_update.day,  crl->this_update.hour,
    2660. 

  2660.                    crl->this_update.min,  crl->this_update.sec );
    2661. 

  2661.     SAFE_SNPRINTF();
    2662. 

  2662. 

  2663.     ret = snprintf( p, n, "\n%snext update   : " \
    2664. 

  2664.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2665. 

  2665.                    crl->next_update.year, crl->next_update.mon,
    2666. 

  2666.                    crl->next_update.day,  crl->next_update.hour,
    2667. 

  2667.                    crl->next_update.min,  crl->next_update.sec );
    2668. 

  2668.     SAFE_SNPRINTF();
    2669. 

  2669. 

  2670.     entry = &crl->entry;
    2671. 

  2671. 

  2672.     ret = snprintf( p, n, "\n%sRevoked certificates:",
    2673. 

  2673.                                prefix );
    2674. 

  2674.     SAFE_SNPRINTF();
    2675. 

  2675. 

  2676.     while( entry != NULL && entry->raw.len != 0 )
    2677. 

  2677.     {
    2678. 

  2678.         ret = snprintf( p, n, "\n%sserial number: ",
    2679. 

  2679.                                prefix );
    2680. 

  2680.         SAFE_SNPRINTF();
    2681. 

  2681. 

  2682.         nr = ( entry->serial.len <= 32 )
    2683. 

  2683.             ? entry->serial.len  : 32;
    2684. 

  2684. 

  2685.         for( i = 0; i < nr; i++ )
    2686. 

  2686.         {
    2687. 

  2687.             ret = snprintf( p, n, "%02X%s",
    2688. 

  2688.                     entry->serial.p[i], ( i < nr - 1 ) ? ":" : "" );
    2689. 

  2689.             SAFE_SNPRINTF();
    2690. 

  2690.         }
    2691. 

  2691.         
    2692. 

  2692.         ret = snprintf( p, n, " revocation date: " \
    2693. 

  2693.                    "%04d-%02d-%02d %02d:%02d:%02d",
    2694. 

  2694.                    entry->revocation_date.year, entry->revocation_date.mon,
    2695. 

  2695.                    entry->revocation_date.day,  entry->revocation_date.hour,
    2696. 

  2696.                    entry->revocation_date.min,  entry->revocation_date.sec );
    2697. 

  2697.     SAFE_SNPRINTF();
    2698. 

  2698. 

  2699.         entry = entry->next;
    2700. 

  2700.     }
    2701. 

  2701. 

  2702.     ret = snprintf( p, n, "\n%ssigned using  : RSA+", prefix );
    2703. 

  2703.     SAFE_SNPRINTF();
    2704. 

  2704. 

  2705.     switch( crl->sig_alg )
    2706. 

  2706.     {
    2707. 

  2707.         case SIG_RSA_MD2    : ret = snprintf( p, n, "MD2"    ); break;
    2708. 

  2708.         case SIG_RSA_MD4    : ret = snprintf( p, n, "MD4"    ); break;
    2709. 

  2709.         case SIG_RSA_MD5    : ret = snprintf( p, n, "MD5"    ); break;
    2710. 

  2710.         case SIG_RSA_SHA1   : ret = snprintf( p, n, "SHA1"   ); break;
    2711. 

  2711.         case SIG_RSA_SHA224 : ret = snprintf( p, n, "SHA224" ); break;
    2712. 

  2712.         case SIG_RSA_SHA256 : ret = snprintf( p, n, "SHA256" ); break;
    2713. 

  2713.         case SIG_RSA_SHA384 : ret = snprintf( p, n, "SHA384" ); break;
    2714. 

  2714.         case SIG_RSA_SHA512 : ret = snprintf( p, n, "SHA512" ); break;
    2715. 

  2715.         default: ret = snprintf( p, n, "???"  ); break;
    2716. 

  2716.     }
    2717. 

  2717.     SAFE_SNPRINTF();
    2718. 

  2718. 

  2719.     ret = snprintf( p, n, "\n" );
    2720. 

  2720.     SAFE_SNPRINTF();
    2721. 

  2721. 

  2722.     return( (int) ( size - n ) );
    2723. 

  2723. }
    2724. 

  2724. 

  2725. /*
    2726. 

  2726.  * Return 0 if the x509_time is still valid, or 1 otherwise.
    2727. 

  2727.  */
    2728. 

  2728. int x509parse_time_expired( const x509_time *to )
    2729. 

  2729. {
    2730. 

  2730.     struct tm *lt;
    2731. 

  2731.     time_t tt;
    2732. 

  2732. 

  2733.     tt = time( NULL );
    2734. 

  2734.     lt = localtime( &tt );
    2735. 

  2735. 

  2736.     if( lt->tm_year  > to->year - 1900 )
    2737. 

  2737.         return( 1 );
    2738. 

  2738. 

  2739.     if( lt->tm_year == to->year - 1900 &&
    2740. 

  2740.         lt->tm_mon   > to->mon  - 1 )
    2741. 

  2741.         return( 1 );
    2742. 

  2742. 

  2743.     if( lt->tm_year == to->year - 1900 &&
    2744. 

  2744.         lt->tm_mon  == to->mon  - 1    &&
    2745. 

  2745.         lt->tm_mday  > to->day )
    2746. 

  2746.         return( 1 );
    2747. 

  2747. 

  2748.     if( lt->tm_year == to->year - 1900 &&
    2749. 

  2749.         lt->tm_mon  == to->mon  - 1    &&
    2750. 

  2750.         lt->tm_mday == to->day         &&
    2751. 

  2751.         lt->tm_hour  > to->hour - 1)
    2752. 

  2752.         return( 1 );
    2753. 

  2753. 

  2754.     if( lt->tm_year == to->year - 1900 &&
    2755. 

  2755.         lt->tm_mon  == to->mon  - 1    &&
    2756. 

  2756.         lt->tm_mday == to->day         &&
    2757. 

  2757.         lt->tm_hour == to->hour - 1    &&
    2758. 

  2758.         lt->tm_min   > to->min  - 1 )
    2759. 

  2759.         return( 1 );
    2760. 

  2760. 

  2761.     if( lt->tm_year == to->year - 1900 &&
    2762. 

  2762.         lt->tm_mon  == to->mon  - 1    &&
    2763. 

  2763.         lt->tm_mday == to->day         &&
    2764. 

  2764.         lt->tm_hour == to->hour - 1    &&
    2765. 

  2765.         lt->tm_min  == to->min  - 1    &&
    2766. 

  2766.         lt->tm_sec   > to->sec  - 1 )
    2767. 

  2767.         return( 1 );
    2768. 

  2768. 

  2769.     return( 0 );
    2770. 

  2770. }
    2771. 

  2771. 

  2772. /*
    2773. 

  2773.  * Return 1 if the certificate is revoked, or 0 otherwise.
    2774. 

  2774.  */
    2775. 

  2775. int x509parse_revoked( const x509_cert *crt, const x509_crl *crl )
    2776. 

  2776. {
    2777. 

  2777.     const x509_crl_entry *cur = &crl->entry;
    2778. 

  2778. 

  2779.     while( cur != NULL && cur->serial.len != 0 )
    2780. 

  2780.     {
    2781. 

  2781.         if( crt->serial.len == cur->serial.len &&
    2782. 

  2782.             memcmp( crt->serial.p, cur->serial.p, crt->serial.len ) == 0 )
    2783. 

  2783.         {
    2784. 

  2784.             if( x509parse_time_expired( &cur->revocation_date ) )
    2785. 

  2785.                 return( 1 );
    2786. 

  2786.         }
    2787. 

  2787. 

  2788.         cur = cur->next;
    2789. 

  2789.     }
    2790. 

  2790. 

  2791.     return( 0 );
    2792. 

  2792. }
    2793. 

  2793. 

  2794. /*
    2795. 

  2795.  * Wrapper for x509 hashes.
    2796. 

  2796.  *
    2797. 

  2797.  * \param out   Buffer to receive the hash (Should be at least 64 bytes)
    2798. 

  2798.  */
    2799. 

  2799. static void x509_hash( const unsigned char *in, size_t len, int alg,
    2800. 

  2800.                        unsigned char *out )
    2801. 

  2801. {
    2802. 

  2802.     switch( alg )
    2803. 

  2803.     {
    2804. 

  2804. #if defined(POLARSSL_MD2_C)
    2805. 

  2805.         case SIG_RSA_MD2    :  md2( in, len, out ); break;
    2806. 

  2806. #endif
    2807. 

  2807. #if defined(POLARSSL_MD4_C)
    2808. 

  2808.         case SIG_RSA_MD4    :  md4( in, len, out ); break;
    2809. 

  2809. #endif
    2810. 

  2810. #if defined(POLARSSL_MD5_C)
    2811. 

  2811.         case SIG_RSA_MD5    :  md5( in, len, out ); break;
    2812. 

  2812. #endif
    2813. 

  2813. #if defined(POLARSSL_SHA1_C)
    2814. 

  2814.         case SIG_RSA_SHA1   : sha1( in, len, out ); break;
    2815. 

  2815. #endif
    2816. 

  2816. #if defined(POLARSSL_SHA2_C)
    2817. 

  2817.         case SIG_RSA_SHA224 : sha2( in, len, out, 1 ); break;
    2818. 

  2818.         case SIG_RSA_SHA256 : sha2( in, len, out, 0 ); break;
    2819. 

  2819. #endif
    2820. 

  2820. #if defined(POLARSSL_SHA4_C)
    2821. 

  2821.         case SIG_RSA_SHA384 : sha4( in, len, out, 1 ); break;
    2822. 

  2822.         case SIG_RSA_SHA512 : sha4( in, len, out, 0 ); break;
    2823. 

  2823. #endif
    2824. 

  2824.         default:
    2825. 

  2825.             memset( out, '\xFF', 64 );
    2826. 

  2826.             break;
    2827. 

  2827.     }
    2828. 

  2828. }
    2829. 

  2829. 

  2830. /*
    2831. 

  2831.  * Check that the given certificate is valid accoring to the CRL.
    2832. 

  2832.  */
    2833. 

  2833. static int x509parse_verifycrl(x509_cert *crt, x509_cert *ca,
    2834. 

  2834.         x509_crl *crl_list)
    2835. 

  2835. {
    2836. 

  2836.     int flags = 0;
    2837. 

  2837.     int hash_id;
    2838. 

  2838.     unsigned char hash[64];
    2839. 

  2839. 

  2840.     /*
    2841. 

  2841.      * TODO: What happens if no CRL is present?
    2842. 

  2842.      * Suggestion: Revocation state should be unknown if no CRL is present.
    2843. 

  2843.      * For backwards compatibility this is not yet implemented.
    2844. 

  2844.      */
    2845. 

  2845. 

  2846.     while( ca != NULL && crl_list != NULL && crl_list->version != 0 )
    2847. 

  2847.     {
    2848. 

  2848.         if( crl_list->issuer_raw.len != ca->subject_raw.len ||
    2849. 

  2849.             memcmp( crl_list->issuer_raw.p, ca->subject_raw.p,
    2850. 

  2850.                     crl_list->issuer_raw.len ) != 0 )
    2851. 

  2851.         {
    2852. 

  2852.             crl_list = crl_list->next;
    2853. 

  2853.             continue;
    2854. 

  2854.         }
    2855. 

  2855. 

  2856.         /*
    2857. 

  2857.          * Check if CRL is correctly signed by the trusted CA
    2858. 

  2858.          */
    2859. 

  2859.         hash_id = crl_list->sig_alg;
    2860. 

  2860. 

  2861.         x509_hash( crl_list->tbs.p, crl_list->tbs.len, hash_id, hash );
    2862. 

  2862. 

  2863.         if( !rsa_pkcs1_verify( &ca->rsa, RSA_PUBLIC, hash_id,
    2864. 

  2864.                               0, hash, crl_list->sig.p ) == 0 )
    2865. 

  2865.         {
    2866. 

  2866.             /*
    2867. 

  2867.              * CRL is not trusted
    2868. 

  2868.              */
    2869. 

  2869.             flags |= BADCRL_NOT_TRUSTED;
    2870. 

  2870.             break;
    2871. 

  2871.         }
    2872. 

  2872. 

  2873.         /*
    2874. 

  2874.          * Check for validity of CRL (Do not drop out)
    2875. 

  2875.          */
    2876. 

  2876.         if( x509parse_time_expired( &crl_list->next_update ) )
    2877. 

  2877.             flags |= BADCRL_EXPIRED;
    2878. 

  2878. 

  2879.         /*
    2880. 

  2880.          * Check if certificate is revoked
    2881. 

  2881.          */
    2882. 

  2882.         if( x509parse_revoked(crt, crl_list) )
    2883. 

  2883.         {
    2884. 

  2884.             flags |= BADCERT_REVOKED;
    2885. 

  2885.             break;
    2886. 

  2886.         }
    2887. 

  2887. 

  2888.         crl_list = crl_list->next;
    2889. 

  2889.     }
    2890. 

  2890.     return flags;
    2891. 

  2891. }
    2892. 

  2892. 

  2893. /*
    2894. 

  2894.  * Verify the certificate validity
    2895. 

  2895.  */
    2896. 

  2896. int x509parse_verify( x509_cert *crt,
    2897. 

  2897.                       x509_cert *trust_ca,
    2898. 

  2898.                       x509_crl *ca_crl,
    2899. 

  2899.                       const char *cn, int *flags,
    2900. 

  2900.                       int (*f_vrfy)(void *, x509_cert *, int, int),
    2901. 

  2901.                       void *p_vrfy )
    2902. 

  2902. {
    2903. 

  2903.     size_t cn_len;
    2904. 

  2904.     int hash_id;
    2905. 

  2905.     int pathlen;
    2906. 

  2906.     x509_cert *parent;
    2907. 

  2907.     x509_name *name;
    2908. 

  2908.     unsigned char hash[64];
    2909. 

  2909. 

  2910.     *flags = 0;
    2911. 

  2911. 

  2912.     if( x509parse_time_expired( &crt->valid_to ) )
    2913. 

  2913.         *flags = BADCERT_EXPIRED;
    2914. 

  2914. 

  2915.     if( cn != NULL )
    2916. 

  2916.     {
    2917. 

  2917.         name = &crt->subject;
    2918. 

  2918.         cn_len = strlen( cn );
    2919. 

  2919. 

  2920.         while( name != NULL )
    2921. 

  2921.         {
    2922. 

  2922.             if( memcmp( name->oid.p, OID_CN,  3 ) == 0 &&
    2923. 

  2923.                 memcmp( name->val.p, cn, cn_len ) == 0 &&
    2924. 

  2924.                 name->val.len == cn_len )
    2925. 

  2925.                 break;
    2926. 

  2926. 

  2927.             name = name->next;
    2928. 

  2928.         }
    2929. 

  2929. 

  2930.         if( name == NULL )
    2931. 

  2931.             *flags |= BADCERT_CN_MISMATCH;
    2932. 

  2932.     }
    2933. 

  2933. 

  2934.     /*
    2935. 

  2935.      * Iterate upwards in the given cert chain,
    2936. 

  2936.      * ignoring any upper cert with CA != TRUE.
    2937. 

  2937.      */
    2938. 

  2938.     parent = crt->next;
    2939. 

  2939. 

  2940.     pathlen = 1;
    2941. 

  2941. 

  2942.     while( parent != NULL && parent->version != 0 )
    2943. 

  2943.     {
    2944. 

  2944.         if( parent->ca_istrue == 0 ||
    2945. 

  2945.             crt->issuer_raw.len != parent->subject_raw.len ||
    2946. 

  2946.             memcmp( crt->issuer_raw.p, parent->subject_raw.p,
    2947. 

  2947.                     crt->issuer_raw.len ) != 0 )
    2948. 

  2948.         {
    2949. 

  2949.             parent = parent->next;
    2950. 

  2950.             continue;
    2951. 

  2951.         }
    2952. 

  2952. 

  2953.         hash_id = crt->sig_alg;
    2954. 

  2954. 

  2955.         x509_hash( crt->tbs.p, crt->tbs.len, hash_id, hash );
    2956. 

  2956. 

  2957.         if( rsa_pkcs1_verify( &parent->rsa, RSA_PUBLIC, hash_id, 0, hash,
    2958. 

  2958.                     crt->sig.p ) != 0 )
    2959. 

  2959.             *flags |= BADCERT_NOT_TRUSTED;
    2960. 

  2960.         
    2961. 

  2961.         /* Check trusted CA's CRL for the given crt */
    2962. 

  2962.         *flags |= x509parse_verifycrl(crt, parent, ca_crl);
    2963. 

  2963. 

  2964.         /* crt is verified to be a child of the parent cur, call verify callback */
    2965. 

  2965.         if( NULL != f_vrfy )
    2966. 

  2966.         {
    2967. 

  2967.             if( f_vrfy( p_vrfy, crt, pathlen - 1, ( *flags == 0 ) ) != 0 )
    2968. 

  2968.                 return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    2969. 

  2969.             else
    2970. 

  2970.                 *flags = 0;
    2971. 

  2971.         }
    2972. 

  2972.         else if( *flags != 0 )
    2973. 

  2973.             return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    2974. 

  2974. 

  2975.         pathlen++;
    2976. 

  2976. 

  2977.         crt = parent;
    2978. 

  2978.         parent = crt->next;
    2979. 

  2979.     }
    2980. 

  2980. 

  2981.     /*
    2982. 

  2982.      * Attempt to validate topmost cert with our CA chain.
    2983. 

  2983.      */
    2984. 

  2984.     *flags |= BADCERT_NOT_TRUSTED;
    2985. 

  2985. 

  2986.     while( trust_ca != NULL && trust_ca->version != 0 )
    2987. 

  2987.     {
    2988. 

  2988.         if( crt->issuer_raw.len != trust_ca->subject_raw.len ||
    2989. 

  2989.             memcmp( crt->issuer_raw.p, trust_ca->subject_raw.p,
    2990. 

  2990.                     crt->issuer_raw.len ) != 0 )
    2991. 

  2991.         {
    2992. 

  2992.             trust_ca = trust_ca->next;
    2993. 

  2993.             continue;
    2994. 

  2994.         }
    2995. 

  2995. 

  2996.         if( trust_ca->max_pathlen > 0 &&
    2997. 

  2997.             trust_ca->max_pathlen < pathlen )
    2998. 

  2998.             break;
    2999. 

  2999. 

  3000.         hash_id = crt->sig_alg;
    3001. 

  3001. 

  3002.         x509_hash( crt->tbs.p, crt->tbs.len, hash_id, hash );
    3003. 

  3003. 

  3004.         if( rsa_pkcs1_verify( &trust_ca->rsa, RSA_PUBLIC, hash_id,
    3005. 

  3005.                               0, hash, crt->sig.p ) == 0 )
    3006. 

  3006.         {
    3007. 

  3007.             /*
    3008. 

  3008.              * cert. is signed by a trusted CA
    3009. 

  3009.              */
    3010. 

  3010.             *flags &= ~BADCERT_NOT_TRUSTED;
    3011. 

  3011.             break;
    3012. 

  3012.         }
    3013. 

  3013. 

  3014.         trust_ca = trust_ca->next;
    3015. 

  3015.     }
    3016. 

  3016. 

  3017.     /* Check trusted CA's CRL for the given crt */
    3018. 

  3018.     *flags |= x509parse_verifycrl( crt, trust_ca, ca_crl );
    3019. 

  3019. 

  3020.     /* Verification succeeded, call callback on top cert */
    3021. 

  3021.     if( NULL != f_vrfy )
    3022. 

  3022.     {
    3023. 

  3023.         if( f_vrfy(p_vrfy, crt, pathlen-1, ( *flags == 0 ) ) != 0 ) 
    3024. 

  3024.             return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    3025. 

  3025.         else
    3026. 

  3026.             *flags = 0;
    3027. 

  3027.     }
    3028. 

  3028.     else if( *flags != 0 )
    3029. 

  3029.         return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    3030. 

  3030. 

  3031.     return( 0 );
    3032. 

  3032. }
    3033. 

  3033. 

  3034. /*
    3035. 

  3035.  * Unallocate all certificate data
    3036. 

  3036.  */
    3037. 

  3037. void x509_free( x509_cert *crt )
    3038. 

  3038. {
    3039. 

  3039.     x509_cert *cert_cur = crt;
    3040. 

  3040.     x509_cert *cert_prv;
    3041. 

  3041.     x509_name *name_cur;
    3042. 

  3042.     x509_name *name_prv;
    3043. 

  3043.     x509_sequence *seq_cur;
    3044. 

  3044.     x509_sequence *seq_prv;
    3045. 

  3045. 

  3046.     if( crt == NULL )
    3047. 

  3047.         return;
    3048. 

  3048. 

  3049.     do
    3050. 

  3050.     {
    3051. 

  3051.         rsa_free( &cert_cur->rsa );
    3052. 

  3052. 

  3053.         name_cur = cert_cur->issuer.next;
    3054. 

  3054.         while( name_cur != NULL )
    3055. 

  3055.         {
    3056. 

  3056.             name_prv = name_cur;
    3057. 

  3057.             name_cur = name_cur->next;
    3058. 

  3058.             memset( name_prv, 0, sizeof( x509_name ) );
    3059. 

  3059.             free( name_prv );
    3060. 

  3060.         }
    3061. 

  3061. 

  3062.         name_cur = cert_cur->subject.next;
    3063. 

  3063.         while( name_cur != NULL )
    3064. 

  3064.         {
    3065. 

  3065.             name_prv = name_cur;
    3066. 

  3066.             name_cur = name_cur->next;
    3067. 

  3067.             memset( name_prv, 0, sizeof( x509_name ) );
    3068. 

  3068.             free( name_prv );
    3069. 

  3069.         }
    3070. 

  3070. 

  3071.         seq_cur = cert_cur->ext_key_usage.next;
    3072. 

  3072.         while( seq_cur != NULL )
    3073. 

  3073.         {
    3074. 

  3074.             seq_prv = seq_cur;
    3075. 

  3075.             seq_cur = seq_cur->next;
    3076. 

  3076.             memset( seq_prv, 0, sizeof( x509_sequence ) );
    3077. 

  3077.             free( seq_prv );
    3078. 

  3078.         }
    3079. 

  3079. 

  3080.         if( cert_cur->raw.p != NULL )
    3081. 

  3081.         {
    3082. 

  3082.             memset( cert_cur->raw.p, 0, cert_cur->raw.len );
    3083. 

  3083.             free( cert_cur->raw.p );
    3084. 

  3084.         }
    3085. 

  3085. 

  3086.         cert_cur = cert_cur->next;
    3087. 

  3087.     }
    3088. 

  3088.     while( cert_cur != NULL );
    3089. 

  3089. 

  3090.     cert_cur = crt;
    3091. 

  3091.     do
    3092. 

  3092.     {
    3093. 

  3093.         cert_prv = cert_cur;
    3094. 

  3094.         cert_cur = cert_cur->next;
    3095. 

  3095. 

  3096.         memset( cert_prv, 0, sizeof( x509_cert ) );
    3097. 

  3097.         if( cert_prv != crt )
    3098. 

  3098.             free( cert_prv );
    3099. 

  3099.     }
    3100. 

  3100.     while( cert_cur != NULL );
    3101. 

  3101. }
    3102. 

  3102. 

  3103. /*
    3104. 

  3104.  * Unallocate all CRL data
    3105. 

  3105.  */
    3106. 

  3106. void x509_crl_free( x509_crl *crl )
    3107. 

  3107. {
    3108. 

  3108.     x509_crl *crl_cur = crl;
    3109. 

  3109.     x509_crl *crl_prv;
    3110. 

  3110.     x509_name *name_cur;
    3111. 

  3111.     x509_name *name_prv;
    3112. 

  3112.     x509_crl_entry *entry_cur;
    3113. 

  3113.     x509_crl_entry *entry_prv;
    3114. 

  3114. 

  3115.     if( crl == NULL )
    3116. 

  3116.         return;
    3117. 

  3117. 

  3118.     do
    3119. 

  3119.     {
    3120. 

  3120.         name_cur = crl_cur->issuer.next;
    3121. 

  3121.         while( name_cur != NULL )
    3122. 

  3122.         {
    3123. 

  3123.             name_prv = name_cur;
    3124. 

  3124.             name_cur = name_cur->next;
    3125. 

  3125.             memset( name_prv, 0, sizeof( x509_name ) );
    3126. 

  3126.             free( name_prv );
    3127. 

  3127.         }
    3128. 

  3128. 

  3129.         entry_cur = crl_cur->entry.next;
    3130. 

  3130.         while( entry_cur != NULL )
    3131. 

  3131.         {
    3132. 

  3132.             entry_prv = entry_cur;
    3133. 

  3133.             entry_cur = entry_cur->next;
    3134. 

  3134.             memset( entry_prv, 0, sizeof( x509_crl_entry ) );
    3135. 

  3135.             free( entry_prv );
    3136. 

  3136.         }
    3137. 

  3137. 

  3138.         if( crl_cur->raw.p != NULL )
    3139. 

  3139.         {
    3140. 

  3140.             memset( crl_cur->raw.p, 0, crl_cur->raw.len );
    3141. 

  3141.             free( crl_cur->raw.p );
    3142. 

  3142.         }
    3143. 

  3143. 

  3144.         crl_cur = crl_cur->next;
    3145. 

  3145.     }
    3146. 

  3146.     while( crl_cur != NULL );
    3147. 

  3147. 

  3148.     crl_cur = crl;
    3149. 

  3149.     do
    3150. 

  3150.     {
    3151. 

  3151.         crl_prv = crl_cur;
    3152. 

  3152.         crl_cur = crl_cur->next;
    3153. 

  3153. 

  3154.         memset( crl_prv, 0, sizeof( x509_crl ) );
    3155. 

  3155.         if( crl_prv != crl )
    3156. 

  3156.             free( crl_prv );
    3157. 

  3157.     }
    3158. 

  3158.     while( crl_cur != NULL );
    3159. 

  3159. }
    3160. 

  3160. 

  3161. #if defined(POLARSSL_SELF_TEST)
    3162. 

  3162. 

  3163. #include "polarssl/certs.h"
    3164. 

  3164. 

  3165. /*
    3166. 

  3166.  * Checkup routine
    3167. 

  3167.  */
    3168. 

  3168. int x509_self_test( int verbose )
    3169. 

  3169. {
    3170. 

  3170. #if defined(POLARSSL_CERTS_C) && defined(POLARSSL_MD5_C)
    3171. 

  3171.     int ret;
    3172. 

  3172.     int flags;
    3173. 

  3173.     size_t i, j;
    3174. 

  3174.     x509_cert cacert;
    3175. 

  3175.     x509_cert clicert;
    3176. 

  3176.     rsa_context rsa;
    3177. 

  3177. #if defined(POLARSSL_DHM_C)
    3178. 

  3178.     dhm_context dhm;
    3179. 

  3179. #endif
    3180. 

  3180. 

  3181.     if( verbose != 0 )
    3182. 

  3182.         printf( "  X.509 certificate load: " );
    3183. 

  3183. 

  3184.     memset( &clicert, 0, sizeof( x509_cert ) );
    3185. 

  3185. 

  3186.     ret = x509parse_crt( &clicert, (unsigned char *) test_cli_crt,
    3187. 

  3187.                          strlen( test_cli_crt ) );
    3188. 

  3188.     if( ret != 0 )
    3189. 

  3189.     {
    3190. 

  3190.         if( verbose != 0 )
    3191. 

  3191.             printf( "failed\n" );
    3192. 

  3192. 

  3193.         return( ret );
    3194. 

  3194.     }
    3195. 

  3195. 

  3196.     memset( &cacert, 0, sizeof( x509_cert ) );
    3197. 

  3197. 

  3198.     ret = x509parse_crt( &cacert, (unsigned char *) test_ca_crt,
    3199. 

  3199.                          strlen( test_ca_crt ) );
    3200. 

  3200.     if( ret != 0 )
    3201. 

  3201.     {
    3202. 

  3202.         if( verbose != 0 )
    3203. 

  3203.             printf( "failed\n" );
    3204. 

  3204. 

  3205.         return( ret );
    3206. 

  3206.     }
    3207. 

  3207. 

  3208.     if( verbose != 0 )
    3209. 

  3209.         printf( "passed\n  X.509 private key load: " );
    3210. 

  3210. 

  3211.     i = strlen( test_ca_key );
    3212. 

  3212.     j = strlen( test_ca_pwd );
    3213. 

  3213. 

  3214.     rsa_init( &rsa, RSA_PKCS_V15, 0 );
    3215. 

  3215. 

  3216.     if( ( ret = x509parse_key( &rsa,
    3217. 

  3217.                     (unsigned char *) test_ca_key, i,
    3218. 

  3218.                     (unsigned char *) test_ca_pwd, j ) ) != 0 )
    3219. 

  3219.     {
    3220. 

  3220.         if( verbose != 0 )
    3221. 

  3221.             printf( "failed\n" );
    3222. 

  3222. 

  3223.         return( ret );
    3224. 

  3224.     }
    3225. 

  3225. 

  3226.     if( verbose != 0 )
    3227. 

  3227.         printf( "passed\n  X.509 signature verify: ");
    3228. 

  3228. 

  3229.     ret = x509parse_verify( &clicert, &cacert, NULL, "PolarSSL Client 2", &flags, NULL, NULL );
    3230. 

  3230.     if( ret != 0 )
    3231. 

  3231.     {
    3232. 

  3232.         printf("%02x", flags);
    3233. 

  3233.         if( verbose != 0 )
    3234. 

  3234.             printf( "failed\n" );
    3235. 

  3235. 

  3236.         return( ret );
    3237. 

  3237.     }
    3238. 

  3238. 

  3239. #if defined(POLARSSL_DHM_C)
    3240. 

  3240.     if( verbose != 0 )
    3241. 

  3241.         printf( "passed\n  X.509 DHM parameter load: " );
    3242. 

  3242. 

  3243.     i = strlen( test_dhm_params );
    3244. 

  3244.     j = strlen( test_ca_pwd );
    3245. 

  3245. 

  3246.     if( ( ret = x509parse_dhm( &dhm, (unsigned char *) test_dhm_params, i ) ) != 0 )
    3247. 

  3247.     {
    3248. 

  3248.         if( verbose != 0 )
    3249. 

  3249.             printf( "failed\n" );
    3250. 

  3250. 

  3251.         return( ret );
    3252. 

  3252.     }
    3253. 

  3253. 

  3254.     if( verbose != 0 )
    3255. 

  3255.         printf( "passed\n\n" );
    3256. 

  3256. #endif
    3257. 

  3257. 

  3258.     x509_free( &cacert  );
    3259. 

  3259.     x509_free( &clicert );
    3260. 

  3260.     rsa_free( &rsa );
    3261. 

  3261. #if defined(POLARSSL_DHM_C)
    3262. 

  3262.     dhm_free( &dhm );
    3263. 

  3263. #endif
    3264. 

  3264. 

  3265.     return( 0 );
    3266. 

  3266. #else
    3267. 

  3267.     ((void) verbose);
    3268. 

  3268.     return( POLARSSL_ERR_X509_FEATURE_UNAVAILABLE );
    3269. 

  3269. #endif
    3270. 

  3270. }
    3271. 

  3271. 

  3272. #endif
    3273. 

  3273. 

  3274. #endif
    3275.