탐색 도움말
로그인
rotek
/
bt-67xx_universal_hw
2
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
브렌치: dev
브랜치 태그
bt-67xx_univers...
/
thirdparty
/
PolarSSL
/
library
/
x509parse.c

x509parse.c 84 KB
고유링크 히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451245224532454245524562457245824592460246124622463246424652466246724682469247024712472247324742475247624772478247924802481248224832484248524862487248824892490249124922493249424952496249724982499250025012502250325042505250625072508250925102511251225132514251525162517251825192520252125222523252425252526252725282529253025312532253325342535253625372538253925402541254225432544254525462547254825492550255125522553255425552556255725582559256025612562256325642565256625672568256925702571257225732574257525762577257825792580258125822583258425852586258725882589259025912592259325942595259625972598259926002601260226032604260526062607260826092610261126122613261426152616261726182619262026212622262326242625262626272628262926302631263226332634263526362637263826392640264126422643264426452646264726482649265026512652265326542655265626572658265926602661266226632664266526662667266826692670267126722673267426752676267726782679268026812682268326842685268626872688268926902691269226932694269526962697269826992700270127022703270427052706270727082709271027112712271327142715271627172718271927202721272227232724272527262727272827292730273127322733273427352736273727382739274027412742274327442745274627472748274927502751275227532754275527562757275827592760276127622763276427652766276727682769277027712772277327742775277627772778277927802781278227832784278527862787278827892790279127922793279427952796279727982799280028012802280328042805280628072808280928102811281228132814281528162817281828192820282128222823282428252826282728282829283028312832283328342835283628372838283928402841284228432844284528462847284828492850285128522853285428552856285728582859286028612862286328642865286628672868286928702871287228732874287528762877287828792880288128822883288428852886288728882889289028912892289328942895289628972898289929002901290229032904290529062907290829092910291129122913291429152916291729182919292029212922292329242925292629272928292929302931293229332934293529362937293829392940294129422943294429452946294729482949295029512952295329542955295629572958295929602961296229632964296529662967296829692970297129722973297429752976297729782979298029812982298329842985298629872988298929902991299229932994299529962997299829993000300130023003300430053006300730083009301030113012301330143015301630173018301930203021302230233024302530263027302830293030303130323033303430353036303730383039304030413042304330443045304630473048304930503051305230533054305530563057305830593060306130623063306430653066306730683069307030713072307330743075307630773078307930803081308230833084308530863087308830893090309130923093309430953096309730983099310031013102310331043105310631073108310931103111311231133114311531163117311831193120312131223123312431253126312731283129313031313132313331343135313631373138313931403141314231433144314531463147314831493150315131523153315431553156315731583159316031613162316331643165316631673168316931703171317231733174317531763177317831793180318131823183318431853186318731883189319031913192319331943195319631973198319932003201320232033204320532063207320832093210321132123213321432153216321732183219322032213222322332243225322632273228322932303231323232333234323532363237323832393240324132423243324432453246324732483249325032513252325332543255325632573258325932603261326232633264326532663267326832693270327132723273327432753276327732783279 
  1. /*
    2. 

  2.  *  X.509 certificate and private key decoding
    3. 

  3.  *
    4. 

  4.  *  Copyright (C) 2006-2010, Brainspark B.V.
    5. 

  5.  *
    6. 

  6.  *  This file is part of PolarSSL (http://www.polarssl.org)
    7. 

  7.  *  Lead Maintainer: Paul Bakker <polarssl_maintainer at polarssl.org>
    8. 

  8.  *
    9. 

  9.  *  All rights reserved.
    10. 

  10.  *
    11. 

  11.  *  This program is free software; you can redistribute it and/or modify
    12. 

  12.  *  it under the terms of the GNU General Public License as published by
    13. 

  13.  *  the Free Software Foundation; either version 2 of the License, or
    14. 

  14.  *  (at your option) any later version.
    15. 

  15.  *
    16. 

  16.  *  This program is distributed in the hope that it will be useful,
    17. 

  17.  *  but WITHOUT ANY WARRANTY; without even the implied warranty of
    18. 

  18.  *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    19. 

  19.  *  GNU General Public License for more details.
    20. 

  20.  *
    21. 

  21.  *  You should have received a copy of the GNU General Public License along
    22. 

  22.  *  with this program; if not, write to the Free Software Foundation, Inc.,
    23. 

  23.  *  51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
    24. 

  24.  */
    25. 

  25. /*
    26. 

  26.  *  The ITU-T X.509 standard defines a certificat format for PKI.
    27. 

  27.  *
    28. 

  28.  *  http://www.ietf.org/rfc/rfc2459.txt
    29. 

  29.  *  http://www.ietf.org/rfc/rfc3279.txt
    30. 

  30.  *
    31. 

  31.  *  ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-1v2.asc
    32. 

  32.  *
    33. 

  33.  *  http://www.itu.int/ITU-T/studygroups/com17/languages/X.680-0207.pdf
    34. 

  34.  *  http://www.itu.int/ITU-T/studygroups/com17/languages/X.690-0207.pdf
    35. 

  35.  */
    36. 

  36. 

  37. #include "config.h"
    38. 

  38. 

  39. #if defined(POLARSSL_X509_PARSE_C)
    40. 

  40. 

  41. #include "polarssl/x509.h"
    42. 

  42. #include "polarssl/pem.h"
    43. 

  43. #include "polarssl/des.h"
    44. 

  44. #include "polarssl/md2.h"
    45. 

  45. #include "polarssl/md4.h"
    46. 

  46. #include "polarssl/md5.h"
    47. 

  47. #include "polarssl/sha1.h"
    48. 

  48. #include "polarssl/sha2.h"
    49. 

  49. #include "polarssl/sha4.h"
    50. 

  50. #include "polarssl/dhm.h"
    51. 

  51. 

  52. #include <string.h>
    53. 

  53. #include <stdlib.h>
    54. 

  54. #include <time.h>
    55. 

  55. 

  56. #if defined(POLARSSL_FS_IO)
    57. 

  57. #ifdef PRINTF_STDLIB
    58. 

  58. #include <stdio.h>
    59. 

  59. #endif
    60. 

  60. #ifdef PRINTF_CUSTOM
    61. 

  61. #include "tinystdio.h"
    62. 

  62. #endif
    63. 

  63. #endif
    64. 

  64. 

  65. /*
    66. 

  66.  * ASN.1 DER decoding routines
    67. 

  67.  */
    68. 

  68. static int asn1_get_len( unsigned char **p,
    69. 

  69.                          const unsigned char *end,
    70. 

  70.                          size_t *len )
    71. 

  71. {
    72. 

  72.     if( ( end - *p ) < 1 )
    73. 

  73.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    74. 

  74. 

  75.     if( ( **p & 0x80 ) == 0 )
    76. 

  76.         *len = *(*p)++;
    77. 

  77.     else
    78. 

  78.     {
    79. 

  79.         switch( **p & 0x7F )
    80. 

  80.         {
    81. 

  81.         case 1:
    82. 

  82.             if( ( end - *p ) < 2 )
    83. 

  83.                 return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    84. 

  84. 

  85.             *len = (*p)[1];
    86. 

  86.             (*p) += 2;
    87. 

  87.             break;
    88. 

  88. 

  89.         case 2:
    90. 

  90.             if( ( end - *p ) < 3 )
    91. 

  91.                 return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    92. 

  92. 

  93.             *len = ( (*p)[1] << 8 ) | (*p)[2];
    94. 

  94.             (*p) += 3;
    95. 

  95.             break;
    96. 

  96. 

  97.         default:
    98. 

  98.             return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    99. 

  99.         }
    100. 

  100.     }
    101. 

  101. 

  102.     if( *len > (size_t) ( end - *p ) )
    103. 

  103.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    104. 

  104. 

  105.     return( 0 );
    106. 

  106. }
    107. 

  107. 

  108. static int asn1_get_tag( unsigned char **p,
    109. 

  109.                          const unsigned char *end,
    110. 

  110.                          size_t *len, int tag )
    111. 

  111. {
    112. 

  112.     if( ( end - *p ) < 1 )
    113. 

  113.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    114. 

  114. 

  115.     if( **p != tag )
    116. 

  116.         return( POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    117. 

  117. 

  118.     (*p)++;
    119. 

  119. 

  120.     return( asn1_get_len( p, end, len ) );
    121. 

  121. }
    122. 

  122. 

  123. static int asn1_get_bool( unsigned char **p,
    124. 

  124.                           const unsigned char *end,
    125. 

  125.                           int *val )
    126. 

  126. {
    127. 

  127.     int ret;
    128. 

  128.     size_t len;
    129. 

  129. 

  130.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_BOOLEAN ) ) != 0 )
    131. 

  131.         return( ret );
    132. 

  132. 

  133.     if( len != 1 )
    134. 

  134.         return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    135. 

  135. 

  136.     *val = ( **p != 0 ) ? 1 : 0;
    137. 

  137.     (*p)++;
    138. 

  138. 

  139.     return( 0 );
    140. 

  140. }
    141. 

  141. 

  142. static int asn1_get_int( unsigned char **p,
    143. 

  143.                          const unsigned char *end,
    144. 

  144.                          int *val )
    145. 

  145. {
    146. 

  146.     int ret;
    147. 

  147.     size_t len;
    148. 

  148. 

  149.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_INTEGER ) ) != 0 )
    150. 

  150.         return( ret );
    151. 

  151. 

  152.     if( len > sizeof( int ) || ( **p & 0x80 ) != 0 )
    153. 

  153.         return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    154. 

  154. 

  155.     *val = 0;
    156. 

  156. 

  157.     while( len-- > 0 )
    158. 

  158.     {
    159. 

  159.         *val = ( *val << 8 ) | **p;
    160. 

  160.         (*p)++;
    161. 

  161.     }
    162. 

  162. 

  163.     return( 0 );
    164. 

  164. }
    165. 

  165. 

  166. static int asn1_get_mpi( unsigned char **p,
    167. 

  167.                          const unsigned char *end,
    168. 

  168.                          mpi *X )
    169. 

  169. {
    170. 

  170.     int ret;
    171. 

  171.     size_t len;
    172. 

  172. 

  173.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_INTEGER ) ) != 0 )
    174. 

  174.         return( ret );
    175. 

  175. 

  176.     ret = mpi_read_binary( X, *p, len );
    177. 

  177. 

  178.     *p += len;
    179. 

  179. 

  180.     return( ret );
    181. 

  181. }
    182. 

  182. 

  183. static int asn1_get_bitstring( unsigned char **p, const unsigned char *end,
    184. 

  184.         x509_bitstring *bs)
    185. 

  185. {
    186. 

  186.     int ret;
    187. 

  187. 

  188.     /* Certificate type is a single byte bitstring */
    189. 

  189.     if( ( ret = asn1_get_tag( p, end, &bs->len, ASN1_BIT_STRING ) ) != 0 )
    190. 

  190.         return( ret );
    191. 

  191. 

  192.     /* Check length, subtract one for actual bit string length */
    193. 

  193.     if ( bs->len < 1 )
    194. 

  194.         return( POLARSSL_ERR_ASN1_OUT_OF_DATA );
    195. 

  195.     bs->len -= 1;
    196. 

  196. 

  197.     /* Get number of unused bits, ensure unused bits <= 7 */
    198. 

  198.     bs->unused_bits = **p;
    199. 

  199.     if( bs->unused_bits > 7 )
    200. 

  200.         return( POLARSSL_ERR_ASN1_INVALID_LENGTH );
    201. 

  201.     (*p)++;
    202. 

  202. 

  203.     /* Get actual bitstring */
    204. 

  204.     bs->p = *p;
    205. 

  205.     *p += bs->len;
    206. 

  206. 

  207.     if( *p != end )
    208. 

  208.         return( POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    209. 

  209. 

  210.     return 0;
    211. 

  211. }
    212. 

  212. 

  213. 

  214. /*
    215. 

  215.  *  Parses and splits an ASN.1 "SEQUENCE OF <tag>"
    216. 

  216.  */
    217. 

  217. static int asn1_get_sequence_of( unsigned char **p,
    218. 

  218.                           const unsigned char *end,
    219. 

  219.                           x509_sequence *cur,
    220. 

  220.                           int tag)
    221. 

  221. {
    222. 

  222.     int ret;
    223. 

  223.     size_t len;
    224. 

  224.     x509_buf *buf;
    225. 

  225. 

  226.     /* Get main sequence tag */
    227. 

  227.     if( ( ret = asn1_get_tag( p, end, &len,
    228. 

  228.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    229. 

  229.         return( ret );
    230. 

  230. 

  231.     if( *p + len != end )
    232. 

  232.         return( POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    233. 

  233. 

  234.     while( *p < end )
    235. 

  235.     {
    236. 

  236.         buf = &(cur->buf);
    237. 

  237.         buf->tag = **p;
    238. 

  238. 

  239.         if( ( ret = asn1_get_tag( p, end, &buf->len, tag ) ) != 0 )
    240. 

  240.             return( ret );
    241. 

  241. 

  242.         buf->p = *p;
    243. 

  243.         *p += buf->len;
    244. 

  244. 

  245.         /* Allocate and assign next pointer */
    246. 

  246.         if (*p < end)
    247. 

  247.         {
    248. 

  248.             cur->next = (x509_sequence *) malloc(
    249. 

  249.                  sizeof( x509_sequence ) );
    250. 

  250. 

  251.             if( cur->next == NULL )
    252. 

  252.                 return( 1 );
    253. 

  253. 

  254.             cur = cur->next;
    255. 

  255.         }
    256. 

  256.     }
    257. 

  257. 

  258.     /* Set final sequence entry's next pointer to NULL */
    259. 

  259.     cur->next = NULL;
    260. 

  260. 

  261.     if( *p != end )
    262. 

  262.         return( POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    263. 

  263. 

  264.     return( 0 );
    265. 

  265. }
    266. 

  266. 

  267. /*
    268. 

  268.  *  Version  ::=  INTEGER  {  v1(0), v2(1), v3(2)  }
    269. 

  269.  */
    270. 

  270. static int x509_get_version( unsigned char **p,
    271. 

  271.                              const unsigned char *end,
    272. 

  272.                              int *ver )
    273. 

  273. {
    274. 

  274.     int ret;
    275. 

  275.     size_t len;
    276. 

  276. 

  277.     if( ( ret = asn1_get_tag( p, end, &len,
    278. 

  278.             ASN1_CONTEXT_SPECIFIC | ASN1_CONSTRUCTED | 0 ) ) != 0 )
    279. 

  279.     {
    280. 

  280.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    281. 

  281.             return( *ver = 0 );
    282. 

  282. 

  283.         return( ret );
    284. 

  284.     }
    285. 

  285. 

  286.     end = *p + len;
    287. 

  287. 

  288.     if( ( ret = asn1_get_int( p, end, ver ) ) != 0 )
    289. 

  289.         return( POLARSSL_ERR_X509_CERT_INVALID_VERSION + ret );
    290. 

  290. 

  291.     if( *p != end )
    292. 

  292.         return( POLARSSL_ERR_X509_CERT_INVALID_VERSION +
    293. 

  293.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    294. 

  294. 

  295.     return( 0 );
    296. 

  296. }
    297. 

  297. 

  298. /*
    299. 

  299.  *  CertificateSerialNumber  ::=  INTEGER
    300. 

  300.  */
    301. 

  301. static int x509_get_serial( unsigned char **p,
    302. 

  302.                             const unsigned char *end,
    303. 

  303.                             x509_buf *serial )
    304. 

  304. {
    305. 

  305.     int ret;
    306. 

  306. 

  307.     if( ( end - *p ) < 1 )
    308. 

  308.         return( POLARSSL_ERR_X509_CERT_INVALID_SERIAL +
    309. 

  309.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    310. 

  310. 

  311.     if( **p != ( ASN1_CONTEXT_SPECIFIC | ASN1_PRIMITIVE | 2 ) &&
    312. 

  312.         **p !=   ASN1_INTEGER )
    313. 

  313.         return( POLARSSL_ERR_X509_CERT_INVALID_SERIAL +
    314. 

  314.                 POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    315. 

  315. 

  316.     serial->tag = *(*p)++;
    317. 

  317. 

  318.     if( ( ret = asn1_get_len( p, end, &serial->len ) ) != 0 )
    319. 

  319.         return( POLARSSL_ERR_X509_CERT_INVALID_SERIAL + ret );
    320. 

  320. 

  321.     serial->p = *p;
    322. 

  322.     *p += serial->len;
    323. 

  323. 

  324.     return( 0 );
    325. 

  325. }
    326. 

  326. 

  327. /*
    328. 

  328.  *  AlgorithmIdentifier  ::=  SEQUENCE  {
    329. 

  329.  *       algorithm               OBJECT IDENTIFIER,
    330. 

  330.  *       parameters              ANY DEFINED BY algorithm OPTIONAL  }
    331. 

  331.  */
    332. 

  332. static int x509_get_alg( unsigned char **p,
    333. 

  333.                          const unsigned char *end,
    334. 

  334.                          x509_buf *alg )
    335. 

  335. {
    336. 

  336.     int ret;
    337. 

  337.     size_t len;
    338. 

  338. 

  339.     if( ( ret = asn1_get_tag( p, end, &len,
    340. 

  340.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    341. 

  341.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG + ret );
    342. 

  342. 

  343.     end = *p + len;
    344. 

  344.     alg->tag = **p;
    345. 

  345. 

  346.     if( ( ret = asn1_get_tag( p, end, &alg->len, ASN1_OID ) ) != 0 )
    347. 

  347.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG + ret );
    348. 

  348. 

  349.     alg->p = *p;
    350. 

  350.     *p += alg->len;
    351. 

  351. 

  352.     if( *p == end )
    353. 

  353.         return( 0 );
    354. 

  354. 

  355.     /*
    356. 

  356.      * assume the algorithm parameters must be NULL
    357. 

  357.      */
    358. 

  358.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_NULL ) ) != 0 )
    359. 

  359.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG + ret );
    360. 

  360. 

  361.     if( *p != end )
    362. 

  362.         return( POLARSSL_ERR_X509_CERT_INVALID_ALG +
    363. 

  363.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    364. 

  364. 

  365.     return( 0 );
    366. 

  366. }
    367. 

  367. 

  368. /*
    369. 

  369.  *  AttributeTypeAndValue ::= SEQUENCE {
    370. 

  370.  *    type     AttributeType,
    371. 

  371.  *    value    AttributeValue }
    372. 

  372.  *
    373. 

  373.  *  AttributeType ::= OBJECT IDENTIFIER
    374. 

  374.  *
    375. 

  375.  *  AttributeValue ::= ANY DEFINED BY AttributeType
    376. 

  376.  */
    377. 

  377. static int x509_get_attr_type_value( unsigned char **p,
    378. 

  378.                                      const unsigned char *end,
    379. 

  379.                                      x509_name *cur )
    380. 

  380. {
    381. 

  381.     int ret;
    382. 

  382.     size_t len;
    383. 

  383.     x509_buf *oid;
    384. 

  384.     x509_buf *val;
    385. 

  385. 

  386.     if( ( ret = asn1_get_tag( p, end, &len,
    387. 

  387.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    388. 

  388.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    389. 

  389. 

  390.     oid = &cur->oid;
    391. 

  391.     oid->tag = **p;
    392. 

  392. 

  393.     if( ( ret = asn1_get_tag( p, end, &oid->len, ASN1_OID ) ) != 0 )
    394. 

  394.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    395. 

  395. 

  396.     oid->p = *p;
    397. 

  397.     *p += oid->len;
    398. 

  398. 

  399.     if( ( end - *p ) < 1 )
    400. 

  400.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME +
    401. 

  401.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    402. 

  402. 

  403.     if( **p != ASN1_BMP_STRING && **p != ASN1_UTF8_STRING      &&
    404. 

  404.         **p != ASN1_T61_STRING && **p != ASN1_PRINTABLE_STRING &&
    405. 

  405.         **p != ASN1_IA5_STRING && **p != ASN1_UNIVERSAL_STRING )
    406. 

  406.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME +
    407. 

  407.                 POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    408. 

  408. 

  409.     val = &cur->val;
    410. 

  410.     val->tag = *(*p)++;
    411. 

  411. 

  412.     if( ( ret = asn1_get_len( p, end, &val->len ) ) != 0 )
    413. 

  413.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    414. 

  414. 

  415.     val->p = *p;
    416. 

  416.     *p += val->len;
    417. 

  417. 

  418.     cur->next = NULL;
    419. 

  419. 

  420.     return( 0 );
    421. 

  421. }
    422. 

  422. 

  423. /*
    424. 

  424.  *  RelativeDistinguishedName ::=
    425. 

  425.  *    SET OF AttributeTypeAndValue
    426. 

  426.  *
    427. 

  427.  *  AttributeTypeAndValue ::= SEQUENCE {
    428. 

  428.  *    type     AttributeType,
    429. 

  429.  *    value    AttributeValue }
    430. 

  430.  *
    431. 

  431.  *  AttributeType ::= OBJECT IDENTIFIER
    432. 

  432.  *
    433. 

  433.  *  AttributeValue ::= ANY DEFINED BY AttributeType
    434. 

  434.  */
    435. 

  435. static int x509_get_name( unsigned char **p,
    436. 

  436.                           const unsigned char *end,
    437. 

  437.                           x509_name *cur )
    438. 

  438. {
    439. 

  439.     int ret;
    440. 

  440.     size_t len;
    441. 

  441.     const unsigned char *end2;
    442. 

  442.     x509_name *use; 
    443. 

  443.     
    444. 

  444.     if( ( ret = asn1_get_tag( p, end, &len,
    445. 

  445.             ASN1_CONSTRUCTED | ASN1_SET ) ) != 0 )
    446. 

  446.         return( POLARSSL_ERR_X509_CERT_INVALID_NAME + ret );
    447. 

  447. 

  448.     end2 = end;
    449. 

  449.     end  = *p + len;
    450. 

  450.     use = cur;
    451. 

  451. 

  452.     do
    453. 

  453.     {
    454. 

  454.         if( ( ret = x509_get_attr_type_value( p, end, use ) ) != 0 )
    455. 

  455.             return( ret );
    456. 

  456.         
    457. 

  457.         if( *p != end )
    458. 

  458.         {
    459. 

  459.             use->next = (x509_name *) malloc(
    460. 

  460.                     sizeof( x509_name ) );
    461. 

  461. 

  462.             if( use->next == NULL )
    463. 

  463.                 return( 1 );
    464. 

  464.             
    465. 

  465.             memset( use->next, 0, sizeof( x509_name ) );
    466. 

  466. 

  467.             use = use->next;
    468. 

  468.         }
    469. 

  469.     }
    470. 

  470.     while( *p != end );
    471. 

  471. 

  472.     /*
    473. 

  473.      * recurse until end of SEQUENCE is reached
    474. 

  474.      */
    475. 

  475.     if( *p == end2 )
    476. 

  476.         return( 0 );
    477. 

  477. 

  478.     cur->next = (x509_name *) malloc(
    479. 

  479.          sizeof( x509_name ) );
    480. 

  480. 

  481.     if( cur->next == NULL )
    482. 

  482.         return( 1 );
    483. 

  483. 

  484.     return( x509_get_name( p, end2, cur->next ) );
    485. 

  485. }
    486. 

  486. 

  487. /*
    488. 

  488.  *  Time ::= CHOICE {
    489. 

  489.  *       utcTime        UTCTime,
    490. 

  490.  *       generalTime    GeneralizedTime }
    491. 

  491.  */
    492. 

  492. static int x509_get_time( unsigned char **p,
    493. 

  493.                           const unsigned char *end,
    494. 

  494.                           x509_time *time )
    495. 

  495. {
    496. 

  496.     int ret;
    497. 

  497.     size_t len;
    498. 

  498.     char date[64];
    499. 

  499.     unsigned char tag;
    500. 

  500. 

  501.     if( ( end - *p ) < 1 )
    502. 

  502.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    503. 

  503.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    504. 

  504. 

  505.     tag = **p;
    506. 

  506. 

  507.     if ( tag == ASN1_UTC_TIME )
    508. 

  508.     {
    509. 

  509.         (*p)++;
    510. 

  510.         ret = asn1_get_len( p, end, &len );
    511. 

  511.         
    512. 

  512.         if( ret != 0 )
    513. 

  513.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE + ret );
    514. 

  514. 

  515.         memset( date,  0, sizeof( date ) );
    516. 

  516.         memcpy( date, *p, ( len < sizeof( date ) - 1 ) ?
    517. 

  517.                 len : sizeof( date ) - 1 );
    518. 

  518. 

  519.         if( sscanf( date, "%2d%2d%2d%2d%2d%2d",
    520. 

  520.                     &time->year, &time->mon, &time->day,
    521. 

  521.                     &time->hour, &time->min, &time->sec ) < 5 )
    522. 

  522.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE );
    523. 

  523. 

  524.         time->year +=  100 * ( time->year < 50 );
    525. 

  525.         time->year += 1900;
    526. 

  526. 

  527.         *p += len;
    528. 

  528. 

  529.         return( 0 );
    530. 

  530.     }
    531. 

  531.     else if ( tag == ASN1_GENERALIZED_TIME )
    532. 

  532.     {
    533. 

  533.         (*p)++;
    534. 

  534.         ret = asn1_get_len( p, end, &len );
    535. 

  535.         
    536. 

  536.         if( ret != 0 )
    537. 

  537.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE + ret );
    538. 

  538. 

  539.         memset( date,  0, sizeof( date ) );
    540. 

  540.         memcpy( date, *p, ( len < sizeof( date ) - 1 ) ?
    541. 

  541.                 len : sizeof( date ) - 1 );
    542. 

  542. 

  543.         if( sscanf( date, "%4d%2d%2d%2d%2d%2d",
    544. 

  544.                     &time->year, &time->mon, &time->day,
    545. 

  545.                     &time->hour, &time->min, &time->sec ) < 5 )
    546. 

  546.             return( POLARSSL_ERR_X509_CERT_INVALID_DATE );
    547. 

  547. 

  548.         *p += len;
    549. 

  549. 

  550.         return( 0 );
    551. 

  551.     }
    552. 

  552.     else
    553. 

  553.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE + POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    554. 

  554. }
    555. 

  555. 

  556. 

  557. /*
    558. 

  558.  *  Validity ::= SEQUENCE {
    559. 

  559.  *       notBefore      Time,
    560. 

  560.  *       notAfter       Time }
    561. 

  561.  */
    562. 

  562. static int x509_get_dates( unsigned char **p,
    563. 

  563.                            const unsigned char *end,
    564. 

  564.                            x509_time *from,
    565. 

  565.                            x509_time *to )
    566. 

  566. {
    567. 

  567.     int ret;
    568. 

  568.     size_t len;
    569. 

  569. 

  570.     if( ( ret = asn1_get_tag( p, end, &len,
    571. 

  571.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    572. 

  572.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE + ret );
    573. 

  573. 

  574.     end = *p + len;
    575. 

  575. 

  576.     if( ( ret = x509_get_time( p, end, from ) ) != 0 )
    577. 

  577.         return( ret );
    578. 

  578. 

  579.     if( ( ret = x509_get_time( p, end, to ) ) != 0 )
    580. 

  580.         return( ret );
    581. 

  581. 

  582.     if( *p != end )
    583. 

  583.         return( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    584. 

  584.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    585. 

  585. 

  586.     return( 0 );
    587. 

  587. }
    588. 

  588. 

  589. /*
    590. 

  590.  *  SubjectPublicKeyInfo  ::=  SEQUENCE  {
    591. 

  591.  *       algorithm            AlgorithmIdentifier,
    592. 

  592.  *       subjectPublicKey     BIT STRING }
    593. 

  593.  */
    594. 

  594. static int x509_get_pubkey( unsigned char **p,
    595. 

  595.                             const unsigned char *end,
    596. 

  596.                             x509_buf *pk_alg_oid,
    597. 

  597.                             mpi *N, mpi *E )
    598. 

  598. {
    599. 

  599.     int ret, can_handle;
    600. 

  600.     size_t len;
    601. 

  601.     unsigned char *end2;
    602. 

  602. 

  603.     if( ( ret = x509_get_alg( p, end, pk_alg_oid ) ) != 0 )
    604. 

  604.         return( ret );
    605. 

  605. 

  606.     /*
    607. 

  607.      * only RSA public keys handled at this time
    608. 

  608.      */
    609. 

  609.     can_handle = 0;
    610. 

  610. 

  611.     if( pk_alg_oid->len == 9 &&
    612. 

  612.         memcmp( pk_alg_oid->p, OID_PKCS1_RSA, 9 ) == 0 )
    613. 

  613.         can_handle = 1;
    614. 

  614. 

  615.     if( pk_alg_oid->len == 9 &&
    616. 

  616.         memcmp( pk_alg_oid->p, OID_PKCS1, 8 ) == 0 )
    617. 

  617.     {
    618. 

  618.         if( pk_alg_oid->p[8] >= 2 && pk_alg_oid->p[8] <= 5 )
    619. 

  619.             can_handle = 1;
    620. 

  620. 

  621.         if ( pk_alg_oid->p[8] >= 11 && pk_alg_oid->p[8] <= 14 )
    622. 

  622.             can_handle = 1;
    623. 

  623.     }
    624. 

  624. 

  625.     if( pk_alg_oid->len == 5 &&
    626. 

  626.         memcmp( pk_alg_oid->p, OID_RSA_SHA_OBS, 5 ) == 0 )
    627. 

  627.         can_handle = 1;
    628. 

  628. 

  629.     if( can_handle == 0 )
    630. 

  630.         return( POLARSSL_ERR_X509_UNKNOWN_PK_ALG );
    631. 

  631. 

  632.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_BIT_STRING ) ) != 0 )
    633. 

  633.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY + ret );
    634. 

  634. 

  635.     if( ( end - *p ) < 1 )
    636. 

  636.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY +
    637. 

  637.                 POLARSSL_ERR_ASN1_OUT_OF_DATA );
    638. 

  638. 

  639.     end2 = *p + len;
    640. 

  640. 

  641.     if( *(*p)++ != 0 )
    642. 

  642.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY );
    643. 

  643. 

  644.     /*
    645. 

  645.      *  RSAPublicKey ::= SEQUENCE {
    646. 

  646.      *      modulus           INTEGER,  -- n
    647. 

  647.      *      publicExponent    INTEGER   -- e
    648. 

  648.      *  }
    649. 

  649.      */
    650. 

  650.     if( ( ret = asn1_get_tag( p, end2, &len,
    651. 

  651.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    652. 

  652.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY + ret );
    653. 

  653. 

  654.     if( *p + len != end2 )
    655. 

  655.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY +
    656. 

  656.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    657. 

  657. 

  658.     if( ( ret = asn1_get_mpi( p, end2, N ) ) != 0 ||
    659. 

  659.         ( ret = asn1_get_mpi( p, end2, E ) ) != 0 )
    660. 

  660.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY + ret );
    661. 

  661. 

  662.     if( *p != end )
    663. 

  663.         return( POLARSSL_ERR_X509_CERT_INVALID_PUBKEY +
    664. 

  664.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    665. 

  665. 

  666.     return( 0 );
    667. 

  667. }
    668. 

  668. 

  669. static int x509_get_sig( unsigned char **p,
    670. 

  670.                          const unsigned char *end,
    671. 

  671.                          x509_buf *sig )
    672. 

  672. {
    673. 

  673.     int ret;
    674. 

  674.     size_t len;
    675. 

  675. 

  676.     sig->tag = **p;
    677. 

  677. 

  678.     if( ( ret = asn1_get_tag( p, end, &len, ASN1_BIT_STRING ) ) != 0 )
    679. 

  679.         return( POLARSSL_ERR_X509_CERT_INVALID_SIGNATURE + ret );
    680. 

  680. 

  681. 

  682.     if( --len < 1 || *(*p)++ != 0 )
    683. 

  683.         return( POLARSSL_ERR_X509_CERT_INVALID_SIGNATURE );
    684. 

  684. 

  685.     sig->len = len;
    686. 

  686.     sig->p = *p;
    687. 

  687. 

  688.     *p += len;
    689. 

  689. 

  690.     return( 0 );
    691. 

  691. }
    692. 

  692. 

  693. /*
    694. 

  694.  * X.509 v2/v3 unique identifier (not parsed)
    695. 

  695.  */
    696. 

  696. static int x509_get_uid( unsigned char **p,
    697. 

  697.                          const unsigned char *end,
    698. 

  698.                          x509_buf *uid, int n )
    699. 

  699. {
    700. 

  700.     int ret;
    701. 

  701. 

  702.     if( *p == end )
    703. 

  703.         return( 0 );
    704. 

  704. 

  705.     uid->tag = **p;
    706. 

  706. 

  707.     if( ( ret = asn1_get_tag( p, end, &uid->len,
    708. 

  708.             ASN1_CONTEXT_SPECIFIC | ASN1_CONSTRUCTED | n ) ) != 0 )
    709. 

  709.     {
    710. 

  710.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    711. 

  711.             return( 0 );
    712. 

  712. 

  713.         return( ret );
    714. 

  714.     }
    715. 

  715. 

  716.     uid->p = *p;
    717. 

  717.     *p += uid->len;
    718. 

  718. 

  719.     return( 0 );
    720. 

  720. }
    721. 

  721. 

  722. /*
    723. 

  723.  * X.509 Extensions (No parsing of extensions, pointer should
    724. 

  724.  * be either manually updated or extensions should be parsed!
    725. 

  725.  */
    726. 

  726. static int x509_get_ext( unsigned char **p,
    727. 

  727.                          const unsigned char *end,
    728. 

  728.                          x509_buf *ext )
    729. 

  729. {
    730. 

  730.     int ret;
    731. 

  731.     size_t len;
    732. 

  732. 

  733.     if( *p == end )
    734. 

  734.         return( 0 );
    735. 

  735. 

  736.     ext->tag = **p;
    737. 

  737. 

  738.     if( ( ret = asn1_get_tag( p, end, &ext->len,
    739. 

  739.             ASN1_CONTEXT_SPECIFIC | ASN1_CONSTRUCTED | 3 ) ) != 0 )
    740. 

  740.         return( ret );
    741. 

  741. 

  742.     ext->p = *p;
    743. 

  743.     end = *p + ext->len;
    744. 

  744. 

  745.     /*
    746. 

  746.      * Extensions  ::=  SEQUENCE SIZE (1..MAX) OF Extension
    747. 

  747.      *
    748. 

  748.      * Extension  ::=  SEQUENCE  {
    749. 

  749.      *      extnID      OBJECT IDENTIFIER,
    750. 

  750.      *      critical    BOOLEAN DEFAULT FALSE,
    751. 

  751.      *      extnValue   OCTET STRING  }
    752. 

  752.      */
    753. 

  753.     if( ( ret = asn1_get_tag( p, end, &len,
    754. 

  754.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    755. 

  755.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    756. 

  756. 

  757.     if( end != *p + len )
    758. 

  758.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    759. 

  759.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    760. 

  760. 

  761.     return( 0 );
    762. 

  762. }
    763. 

  763. 

  764. /*
    765. 

  765.  * X.509 CRL v2 extensions (no extensions parsed yet.)
    766. 

  766.  */
    767. 

  767. static int x509_get_crl_ext( unsigned char **p,
    768. 

  768.                              const unsigned char *end,
    769. 

  769.                              x509_buf *ext )
    770. 

  770. {
    771. 

  771.     int ret;
    772. 

  772.     size_t len;
    773. 

  773. 

  774.     if( ( ret = x509_get_ext( p, end, ext ) ) != 0 )
    775. 

  775.     {
    776. 

  776.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    777. 

  777.             return( 0 );
    778. 

  778. 

  779.         return( ret );
    780. 

  780.     }
    781. 

  781. 

  782.     while( *p < end )
    783. 

  783.     {
    784. 

  784.         if( ( ret = asn1_get_tag( p, end, &len,
    785. 

  785.                 ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    786. 

  786.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    787. 

  787. 

  788.         *p += len;
    789. 

  789.     }
    790. 

  790. 

  791.     if( *p != end )
    792. 

  792.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    793. 

  793.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    794. 

  794. 

  795.     return( 0 );
    796. 

  796. }
    797. 

  797. 

  798. static int x509_get_basic_constraints( unsigned char **p,
    799. 

  799.                                        const unsigned char *end,
    800. 

  800.                                        int *ca_istrue,
    801. 

  801.                                        int *max_pathlen )
    802. 

  802. {
    803. 

  803.     int ret;
    804. 

  804.     size_t len;
    805. 

  805. 

  806.     /*
    807. 

  807.      * BasicConstraints ::= SEQUENCE {
    808. 

  808.      *      cA                      BOOLEAN DEFAULT FALSE,
    809. 

  809.      *      pathLenConstraint       INTEGER (0..MAX) OPTIONAL }
    810. 

  810.      */
    811. 

  811.     *ca_istrue = 0; /* DEFAULT FALSE */
    812. 

  812.     *max_pathlen = 0; /* endless */
    813. 

  813. 

  814.     if( ( ret = asn1_get_tag( p, end, &len,
    815. 

  815.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    816. 

  816.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    817. 

  817. 

  818.     if( *p == end )
    819. 

  819.         return 0;
    820. 

  820. 

  821.     if( ( ret = asn1_get_bool( p, end, ca_istrue ) ) != 0 )
    822. 

  822.     {
    823. 

  823.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    824. 

  824.             ret = asn1_get_int( p, end, ca_istrue );
    825. 

  825. 

  826.         if( ret != 0 )
    827. 

  827.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    828. 

  828. 

  829.         if( *ca_istrue != 0 )
    830. 

  830.             *ca_istrue = 1;
    831. 

  831.     }
    832. 

  832. 

  833.     if( *p == end )
    834. 

  834.         return 0;
    835. 

  835. 

  836.     if( ( ret = asn1_get_int( p, end, max_pathlen ) ) != 0 )
    837. 

  837.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    838. 

  838. 

  839.     if( *p != end )
    840. 

  840.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    841. 

  841.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    842. 

  842. 

  843.     (*max_pathlen)++;
    844. 

  844. 

  845.     return 0;
    846. 

  846. }
    847. 

  847. 

  848. static int x509_get_ns_cert_type( unsigned char **p,
    849. 

  849.                                        const unsigned char *end,
    850. 

  850.                                        unsigned char *ns_cert_type)
    851. 

  851. {
    852. 

  852.     int ret;
    853. 

  853.     x509_bitstring bs = { 0, 0, NULL };
    854. 

  854. 

  855.     if( ( ret = asn1_get_bitstring( p, end, &bs ) ) != 0 )
    856. 

  856.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    857. 

  857. 

  858.     if( bs.len != 1 )
    859. 

  859.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    860. 

  860.                 POLARSSL_ERR_ASN1_INVALID_LENGTH );
    861. 

  861. 

  862.     /* Get actual bitstring */
    863. 

  863.     *ns_cert_type = *bs.p;
    864. 

  864.     return 0;
    865. 

  865. }
    866. 

  866. 

  867. static int x509_get_key_usage( unsigned char **p,
    868. 

  868.                                const unsigned char *end,
    869. 

  869.                                unsigned char *key_usage)
    870. 

  870. {
    871. 

  871.     int ret;
    872. 

  872.     x509_bitstring bs = { 0, 0, NULL };
    873. 

  873. 

  874.     if( ( ret = asn1_get_bitstring( p, end, &bs ) ) != 0 )
    875. 

  875.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    876. 

  876. 

  877.     if( bs.len != 1 )
    878. 

  878.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    879. 

  879.                 POLARSSL_ERR_ASN1_INVALID_LENGTH );
    880. 

  880. 

  881.     /* Get actual bitstring */
    882. 

  882.     *key_usage = *bs.p;
    883. 

  883.     return 0;
    884. 

  884. }
    885. 

  885. 

  886. /*
    887. 

  887.  * ExtKeyUsageSyntax ::= SEQUENCE SIZE (1..MAX) OF KeyPurposeId
    888. 

  888.  *
    889. 

  889.  * KeyPurposeId ::= OBJECT IDENTIFIER
    890. 

  890.  */
    891. 

  891. static int x509_get_ext_key_usage( unsigned char **p,
    892. 

  892.                                const unsigned char *end,
    893. 

  893.                                x509_sequence *ext_key_usage)
    894. 

  894. {
    895. 

  895.     int ret;
    896. 

  896. 

  897.     if( ( ret = asn1_get_sequence_of( p, end, ext_key_usage, ASN1_OID ) ) != 0 )
    898. 

  898.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    899. 

  899. 

  900.     /* Sequence length must be >= 1 */
    901. 

  901.     if( ext_key_usage->buf.p == NULL )
    902. 

  902.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    903. 

  903.                 POLARSSL_ERR_ASN1_INVALID_LENGTH );
    904. 

  904. 

  905.     return 0;
    906. 

  906. }
    907. 

  907. 

  908. /*
    909. 

  909.  * X.509 v3 extensions
    910. 

  910.  *
    911. 

  911.  * TODO: Perform all of the basic constraints tests required by the RFC
    912. 

  912.  * TODO: Set values for undetected extensions to a sane default?
    913. 

  913.  *
    914. 

  914.  */
    915. 

  915. static int x509_get_crt_ext( unsigned char **p,
    916. 

  916.                              const unsigned char *end,
    917. 

  917.                              x509_cert *crt )
    918. 

  918. {
    919. 

  919.     int ret;
    920. 

  920.     size_t len;
    921. 

  921.     unsigned char *end_ext_data, *end_ext_octet;
    922. 

  922. 

  923.     if( ( ret = x509_get_ext( p, end, &crt->v3_ext ) ) != 0 )
    924. 

  924.     {
    925. 

  925.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    926. 

  926.             return( 0 );
    927. 

  927. 

  928.         return( ret );
    929. 

  929.     }
    930. 

  930. 

  931.     while( *p < end )
    932. 

  932.     {
    933. 

  933.         /*
    934. 

  934.          * Extension  ::=  SEQUENCE  {
    935. 

  935.          *      extnID      OBJECT IDENTIFIER,
    936. 

  936.          *      critical    BOOLEAN DEFAULT FALSE,
    937. 

  937.          *      extnValue   OCTET STRING  }
    938. 

  938.          */
    939. 

  939.         x509_buf extn_oid = {0, 0, NULL};
    940. 

  940.         int is_critical = 0; /* DEFAULT FALSE */
    941. 

  941. 

  942.         if( ( ret = asn1_get_tag( p, end, &len,
    943. 

  943.                 ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    944. 

  944.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    945. 

  945. 

  946.         end_ext_data = *p + len;
    947. 

  947. 

  948.         /* Get extension ID */
    949. 

  949.         extn_oid.tag = **p;
    950. 

  950. 

  951.         if( ( ret = asn1_get_tag( p, end, &extn_oid.len, ASN1_OID ) ) != 0 )
    952. 

  952.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    953. 

  953. 

  954.         extn_oid.p = *p;
    955. 

  955.         *p += extn_oid.len;
    956. 

  956. 

  957.         if( ( end - *p ) < 1 )
    958. 

  958.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    959. 

  959.                     POLARSSL_ERR_ASN1_OUT_OF_DATA );
    960. 

  960. 

  961.         /* Get optional critical */
    962. 

  962.         if( ( ret = asn1_get_bool( p, end_ext_data, &is_critical ) ) != 0 &&
    963. 

  963.             ( ret != POLARSSL_ERR_ASN1_UNEXPECTED_TAG ) )
    964. 

  964.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    965. 

  965. 

  966.         /* Data should be octet string type */
    967. 

  967.         if( ( ret = asn1_get_tag( p, end_ext_data, &len,
    968. 

  968.                 ASN1_OCTET_STRING ) ) != 0 )
    969. 

  969.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
    970. 

  970. 

  971.         end_ext_octet = *p + len;
    972. 

  972. 

  973.         if( end_ext_octet != end_ext_data )
    974. 

  974.             return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    975. 

  975.                     POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    976. 

  976. 

  977.         /*
    978. 

  978.          * Detect supported extensions
    979. 

  979.          */
    980. 

  980.         if( ( OID_SIZE( OID_BASIC_CONSTRAINTS ) == extn_oid.len ) &&
    981. 

  981.                 memcmp( extn_oid.p, OID_BASIC_CONSTRAINTS, extn_oid.len ) == 0 )
    982. 

  982.         {
    983. 

  983.             /* Parse basic constraints */
    984. 

  984.             if( ( ret = x509_get_basic_constraints( p, end_ext_octet,
    985. 

  985.                     &crt->ca_istrue, &crt->max_pathlen ) ) != 0 )
    986. 

  986.                 return ( ret );
    987. 

  987.             crt->ext_types |= EXT_BASIC_CONSTRAINTS;
    988. 

  988.         }
    989. 

  989.         else if( ( OID_SIZE( OID_NS_CERT_TYPE ) == extn_oid.len ) &&
    990. 

  990.                 memcmp( extn_oid.p, OID_NS_CERT_TYPE, extn_oid.len ) == 0 )
    991. 

  991.         {
    992. 

  992.             /* Parse netscape certificate type */
    993. 

  993.             if( ( ret = x509_get_ns_cert_type( p, end_ext_octet,
    994. 

  994.                     &crt->ns_cert_type ) ) != 0 )
    995. 

  995.                 return ( ret );
    996. 

  996.             crt->ext_types |= EXT_NS_CERT_TYPE;
    997. 

  997.         }
    998. 

  998.         else if( ( OID_SIZE( OID_KEY_USAGE ) == extn_oid.len ) &&
    999. 

  999.                 memcmp( extn_oid.p, OID_KEY_USAGE, extn_oid.len ) == 0 )
    1000. 

  1000.         {
    1001. 

  1001.             /* Parse key usage */
    1002. 

  1002.             if( ( ret = x509_get_key_usage( p, end_ext_octet,
    1003. 

  1003.                     &crt->key_usage ) ) != 0 )
    1004. 

  1004.                 return ( ret );
    1005. 

  1005.             crt->ext_types |= EXT_KEY_USAGE;
    1006. 

  1006.         }
    1007. 

  1007.         else if( ( OID_SIZE( OID_EXTENDED_KEY_USAGE ) == extn_oid.len ) &&
    1008. 

  1008.                 memcmp( extn_oid.p, OID_EXTENDED_KEY_USAGE, extn_oid.len ) == 0 )
    1009. 

  1009.         {
    1010. 

  1010.             /* Parse extended key usage */
    1011. 

  1011.             if( ( ret = x509_get_ext_key_usage( p, end_ext_octet,
    1012. 

  1012.                     &crt->ext_key_usage ) ) != 0 )
    1013. 

  1013.                 return ( ret );
    1014. 

  1014.             crt->ext_types |= EXT_EXTENDED_KEY_USAGE;
    1015. 

  1015.         }
    1016. 

  1016.         else
    1017. 

  1017.         {
    1018. 

  1018.             /* No parser found, skip extension */
    1019. 

  1019.             *p = end_ext_octet;
    1020. 

  1020. 

  1021. #if !defined(POLARSSL_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION)
    1022. 

  1022.             if( is_critical )
    1023. 

  1023.             {
    1024. 

  1024.                 /* Data is marked as critical: fail */
    1025. 

  1025.                 return ( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    1026. 

  1026.                         POLARSSL_ERR_ASN1_UNEXPECTED_TAG );
    1027. 

  1027.             }
    1028. 

  1028. #endif
    1029. 

  1029.         }
    1030. 

  1030.     }
    1031. 

  1031. 

  1032.     if( *p != end )
    1033. 

  1033.         return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
    1034. 

  1034.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1035. 

  1035. 

  1036.     return( 0 );
    1037. 

  1037. }
    1038. 

  1038. 

  1039. /*
    1040. 

  1040.  * X.509 CRL Entries
    1041. 

  1041.  */
    1042. 

  1042. static int x509_get_entries( unsigned char **p,
    1043. 

  1043.                              const unsigned char *end,
    1044. 

  1044.                              x509_crl_entry *entry )
    1045. 

  1045. {
    1046. 

  1046.     int ret;
    1047. 

  1047.     size_t entry_len;
    1048. 

  1048.     x509_crl_entry *cur_entry = entry;
    1049. 

  1049. 

  1050.     if( *p == end )
    1051. 

  1051.         return( 0 );
    1052. 

  1052. 

  1053.     if( ( ret = asn1_get_tag( p, end, &entry_len,
    1054. 

  1054.             ASN1_SEQUENCE | ASN1_CONSTRUCTED ) ) != 0 )
    1055. 

  1055.     {
    1056. 

  1056.         if( ret == POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    1057. 

  1057.             return( 0 );
    1058. 

  1058. 

  1059.         return( ret );
    1060. 

  1060.     }
    1061. 

  1061. 

  1062.     end = *p + entry_len;
    1063. 

  1063. 

  1064.     while( *p < end )
    1065. 

  1065.     {
    1066. 

  1066.         size_t len2;
    1067. 

  1067. 

  1068.         if( ( ret = asn1_get_tag( p, end, &len2,
    1069. 

  1069.                 ASN1_SEQUENCE | ASN1_CONSTRUCTED ) ) != 0 )
    1070. 

  1070.         {
    1071. 

  1071.             return( ret );
    1072. 

  1072.         }
    1073. 

  1073. 

  1074.         cur_entry->raw.tag = **p;
    1075. 

  1075.         cur_entry->raw.p = *p;
    1076. 

  1076.         cur_entry->raw.len = len2;
    1077. 

  1077. 

  1078.         if( ( ret = x509_get_serial( p, end, &cur_entry->serial ) ) != 0 )
    1079. 

  1079.             return( ret );
    1080. 

  1080. 

  1081.         if( ( ret = x509_get_time( p, end, &cur_entry->revocation_date ) ) != 0 )
    1082. 

  1082.             return( ret );
    1083. 

  1083. 

  1084.         if( ( ret = x509_get_crl_ext( p, end, &cur_entry->entry_ext ) ) != 0 )
    1085. 

  1085.             return( ret );
    1086. 

  1086. 

  1087.         if ( *p < end )
    1088. 

  1088.         {
    1089. 

  1089.             cur_entry->next = malloc( sizeof( x509_crl_entry ) );
    1090. 

  1090.             cur_entry = cur_entry->next;
    1091. 

  1091.             memset( cur_entry, 0, sizeof( x509_crl_entry ) );
    1092. 

  1092.         }
    1093. 

  1093.     }
    1094. 

  1094. 

  1095.     return( 0 );
    1096. 

  1096. }
    1097. 

  1097. 

  1098. static int x509_get_sig_alg( const x509_buf *sig_oid, int *sig_alg )
    1099. 

  1099. {
    1100. 

  1100.     if( sig_oid->len == 9 &&
    1101. 

  1101.         memcmp( sig_oid->p, OID_PKCS1, 8 ) == 0 )
    1102. 

  1102.     {
    1103. 

  1103.         if( sig_oid->p[8] >= 2 && sig_oid->p[8] <= 5 )
    1104. 

  1104.         {
    1105. 

  1105.             *sig_alg = sig_oid->p[8];
    1106. 

  1106.             return( 0 );
    1107. 

  1107.         }
    1108. 

  1108. 

  1109.         if ( sig_oid->p[8] >= 11 && sig_oid->p[8] <= 14 )
    1110. 

  1110.         {
    1111. 

  1111.             *sig_alg = sig_oid->p[8];
    1112. 

  1112.             return( 0 );
    1113. 

  1113.         }
    1114. 

  1114. 

  1115.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_SIG_ALG );
    1116. 

  1116.     }
    1117. 

  1117.     if( sig_oid->len == 5 &&
    1118. 

  1118.         memcmp( sig_oid->p, OID_RSA_SHA_OBS, 5 ) == 0 )
    1119. 

  1119.     {
    1120. 

  1120.         *sig_alg = SIG_RSA_SHA1;
    1121. 

  1121.         return( 0 );
    1122. 

  1122.     }
    1123. 

  1123. 

  1124.     return( POLARSSL_ERR_X509_CERT_UNKNOWN_SIG_ALG );
    1125. 

  1125. }
    1126. 

  1126. 

  1127. /*
    1128. 

  1128.  * Parse one or more certificates and add them to the chained list
    1129. 

  1129.  */
    1130. 

  1130. int x509parse_crt( x509_cert *chain, const unsigned char *buf, size_t buflen )
    1131. 

  1131. {
    1132. 

  1132.     int ret;
    1133. 

  1133.     size_t len;
    1134. 

  1134.     unsigned char *p, *end;
    1135. 

  1135.     x509_cert *crt;
    1136. 

  1136. #if defined(POLARSSL_PEM_C)
    1137. 

  1137.     pem_context pem;
    1138. 

  1138.     size_t use_len;
    1139. 

  1139. #endif
    1140. 

  1140. 

  1141.     crt = chain;
    1142. 

  1142. 

  1143.     /*
    1144. 

  1144.      * Check for valid input
    1145. 

  1145.      */
    1146. 

  1146.     if( crt == NULL || buf == NULL )
    1147. 

  1147.         return( 1 );
    1148. 

  1148. 

  1149.     while( crt->version != 0 && crt->next != NULL )
    1150. 

  1150.         crt = crt->next;
    1151. 

  1151. 

  1152.     /*
    1153. 

  1153.      * Add new certificate on the end of the chain if needed.
    1154. 

  1154.      */
    1155. 

  1155.     if ( crt->version != 0 && crt->next == NULL)
    1156. 

  1156.     {
    1157. 

  1157.         crt->next = (x509_cert *) malloc( sizeof( x509_cert ) );
    1158. 

  1158. 

  1159.         if( crt->next == NULL )
    1160. 

  1160.         {
    1161. 

  1161.             x509_free( crt );
    1162. 

  1162.             return( 1 );
    1163. 

  1163.         }
    1164. 

  1164. 

  1165.         crt = crt->next;
    1166. 

  1166.         memset( crt, 0, sizeof( x509_cert ) );
    1167. 

  1167.     }
    1168. 

  1168. 

  1169. #if defined(POLARSSL_PEM_C)
    1170. 

  1170.     pem_init( &pem );
    1171. 

  1171.     ret = pem_read_buffer( &pem,
    1172. 

  1172.                            "-----BEGIN CERTIFICATE-----",
    1173. 

  1173.                            "-----END CERTIFICATE-----",
    1174. 

  1174.                            buf, NULL, 0, &use_len );
    1175. 

  1175. 

  1176.     if( ret == 0 )
    1177. 

  1177.     {
    1178. 

  1178.         /*
    1179. 

  1179.          * Was PEM encoded
    1180. 

  1180.          */
    1181. 

  1181.         buflen -= use_len;
    1182. 

  1182.         buf += use_len;
    1183. 

  1183. 

  1184.         /*
    1185. 

  1185.          * Steal PEM buffer
    1186. 

  1186.          */
    1187. 

  1187.         p = pem.buf;
    1188. 

  1188.         pem.buf = NULL;
    1189. 

  1189.         len = pem.buflen;
    1190. 

  1190.         pem_free( &pem );
    1191. 

  1191.     }
    1192. 

  1192.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1193. 

  1193.     {
    1194. 

  1194.         pem_free( &pem );
    1195. 

  1195.         return( ret );
    1196. 

  1196.     }
    1197. 

  1197.     else
    1198. 

  1198.     {
    1199. 

  1199.         /*
    1200. 

  1200.          * nope, copy the raw DER data
    1201. 

  1201.          */
    1202. 

  1202.         p = (unsigned char *) malloc( len = buflen );
    1203. 

  1203. 

  1204.         if( p == NULL )
    1205. 

  1205.             return( 1 );
    1206. 

  1206. 

  1207.         memcpy( p, buf, buflen );
    1208. 

  1208. 

  1209.         buflen = 0;
    1210. 

  1210.     }
    1211. 

  1211. #else
    1212. 

  1212.     p = (unsigned char *) malloc( len = buflen );
    1213. 

  1213. 

  1214.     if( p == NULL )
    1215. 

  1215.         return( 1 );
    1216. 

  1216. 

  1217.     memcpy( p, buf, buflen );
    1218. 

  1218. 

  1219.     buflen = 0;
    1220. 

  1220. #endif
    1221. 

  1221. 

  1222.     crt->raw.p = p;
    1223. 

  1223.     crt->raw.len = len;
    1224. 

  1224.     end = p + len;
    1225. 

  1225. 

  1226.     /*
    1227. 

  1227.      * Certificate  ::=  SEQUENCE  {
    1228. 

  1228.      *      tbsCertificate       TBSCertificate,
    1229. 

  1229.      *      signatureAlgorithm   AlgorithmIdentifier,
    1230. 

  1230.      *      signatureValue       BIT STRING  }
    1231. 

  1231.      */
    1232. 

  1232.     if( ( ret = asn1_get_tag( &p, end, &len,
    1233. 

  1233.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1234. 

  1234.     {
    1235. 

  1235.         x509_free( crt );
    1236. 

  1236.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT );
    1237. 

  1237.     }
    1238. 

  1238. 

  1239.     if( len != (size_t) ( end - p ) )
    1240. 

  1240.     {
    1241. 

  1241.         x509_free( crt );
    1242. 

  1242.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1243. 

  1243.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1244. 

  1244.     }
    1245. 

  1245. 

  1246.     /*
    1247. 

  1247.      * TBSCertificate  ::=  SEQUENCE  {
    1248. 

  1248.      */
    1249. 

  1249.     crt->tbs.p = p;
    1250. 

  1250. 

  1251.     if( ( ret = asn1_get_tag( &p, end, &len,
    1252. 

  1252.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1253. 

  1253.     {
    1254. 

  1254.         x509_free( crt );
    1255. 

  1255.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1256. 

  1256.     }
    1257. 

  1257. 

  1258.     end = p + len;
    1259. 

  1259.     crt->tbs.len = end - crt->tbs.p;
    1260. 

  1260. 

  1261.     /*
    1262. 

  1262.      * Version  ::=  INTEGER  {  v1(0), v2(1), v3(2)  }
    1263. 

  1263.      *
    1264. 

  1264.      * CertificateSerialNumber  ::=  INTEGER
    1265. 

  1265.      *
    1266. 

  1266.      * signature            AlgorithmIdentifier
    1267. 

  1267.      */
    1268. 

  1268.     if( ( ret = x509_get_version( &p, end, &crt->version ) ) != 0 ||
    1269. 

  1269.         ( ret = x509_get_serial(  &p, end, &crt->serial  ) ) != 0 ||
    1270. 

  1270.         ( ret = x509_get_alg(  &p, end, &crt->sig_oid1   ) ) != 0 )
    1271. 

  1271.     {
    1272. 

  1272.         x509_free( crt );
    1273. 

  1273.         return( ret );
    1274. 

  1274.     }
    1275. 

  1275. 

  1276.     crt->version++;
    1277. 

  1277. 

  1278.     if( crt->version > 3 )
    1279. 

  1279.     {
    1280. 

  1280.         x509_free( crt );
    1281. 

  1281.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_VERSION );
    1282. 

  1282.     }
    1283. 

  1283. 

  1284.     if( ( ret = x509_get_sig_alg( &crt->sig_oid1, &crt->sig_alg ) ) != 0 )
    1285. 

  1285.     {
    1286. 

  1286.         x509_free( crt );
    1287. 

  1287.         return( ret );
    1288. 

  1288.     }
    1289. 

  1289. 

  1290.     /*
    1291. 

  1291.      * issuer               Name
    1292. 

  1292.      */
    1293. 

  1293.     crt->issuer_raw.p = p;
    1294. 

  1294. 

  1295.     if( ( ret = asn1_get_tag( &p, end, &len,
    1296. 

  1296.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1297. 

  1297.     {
    1298. 

  1298.         x509_free( crt );
    1299. 

  1299.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1300. 

  1300.     }
    1301. 

  1301. 

  1302.     if( ( ret = x509_get_name( &p, p + len, &crt->issuer ) ) != 0 )
    1303. 

  1303.     {
    1304. 

  1304.         x509_free( crt );
    1305. 

  1305.         return( ret );
    1306. 

  1306.     }
    1307. 

  1307. 

  1308.     crt->issuer_raw.len = p - crt->issuer_raw.p;
    1309. 

  1309. 

  1310.     /*
    1311. 

  1311.      * Validity ::= SEQUENCE {
    1312. 

  1312.      *      notBefore      Time,
    1313. 

  1313.      *      notAfter       Time }
    1314. 

  1314.      *
    1315. 

  1315.      */
    1316. 

  1316.     if( ( ret = x509_get_dates( &p, end, &crt->valid_from,
    1317. 

  1317.                                          &crt->valid_to ) ) != 0 )
    1318. 

  1318.     {
    1319. 

  1319.         x509_free( crt );
    1320. 

  1320.         return( ret );
    1321. 

  1321.     }
    1322. 

  1322. 

  1323.     /*
    1324. 

  1324.      * subject              Name
    1325. 

  1325.      */
    1326. 

  1326.     crt->subject_raw.p = p;
    1327. 

  1327. 

  1328.     if( ( ret = asn1_get_tag( &p, end, &len,
    1329. 

  1329.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1330. 

  1330.     {
    1331. 

  1331.         x509_free( crt );
    1332. 

  1332.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1333. 

  1333.     }
    1334. 

  1334. 

  1335.     if( ( ret = x509_get_name( &p, p + len, &crt->subject ) ) != 0 )
    1336. 

  1336.     {
    1337. 

  1337.         x509_free( crt );
    1338. 

  1338.         return( ret );
    1339. 

  1339.     }
    1340. 

  1340. 

  1341.     crt->subject_raw.len = p - crt->subject_raw.p;
    1342. 

  1342. 

  1343.     /*
    1344. 

  1344.      * SubjectPublicKeyInfo  ::=  SEQUENCE
    1345. 

  1345.      *      algorithm            AlgorithmIdentifier,
    1346. 

  1346.      *      subjectPublicKey     BIT STRING  }
    1347. 

  1347.      */
    1348. 

  1348.     if( ( ret = asn1_get_tag( &p, end, &len,
    1349. 

  1349.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1350. 

  1350.     {
    1351. 

  1351.         x509_free( crt );
    1352. 

  1352.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1353. 

  1353.     }
    1354. 

  1354. 

  1355.     if( ( ret = x509_get_pubkey( &p, p + len, &crt->pk_oid,
    1356. 

  1356.                                  &crt->rsa.N, &crt->rsa.E ) ) != 0 )
    1357. 

  1357.     {
    1358. 

  1358.         x509_free( crt );
    1359. 

  1359.         return( ret );
    1360. 

  1360.     }
    1361. 

  1361. 

  1362.     if( ( ret = rsa_check_pubkey( &crt->rsa ) ) != 0 )
    1363. 

  1363.     {
    1364. 

  1364.         x509_free( crt );
    1365. 

  1365.         return( ret );
    1366. 

  1366.     }
    1367. 

  1367. 

  1368.     crt->rsa.len = mpi_size( &crt->rsa.N );
    1369. 

  1369. 

  1370.     /*
    1371. 

  1371.      *  issuerUniqueID  [1]  IMPLICIT UniqueIdentifier OPTIONAL,
    1372. 

  1372.      *                       -- If present, version shall be v2 or v3
    1373. 

  1373.      *  subjectUniqueID [2]  IMPLICIT UniqueIdentifier OPTIONAL,
    1374. 

  1374.      *                       -- If present, version shall be v2 or v3
    1375. 

  1375.      *  extensions      [3]  EXPLICIT Extensions OPTIONAL
    1376. 

  1376.      *                       -- If present, version shall be v3
    1377. 

  1377.      */
    1378. 

  1378.     if( crt->version == 2 || crt->version == 3 )
    1379. 

  1379.     {
    1380. 

  1380.         ret = x509_get_uid( &p, end, &crt->issuer_id,  1 );
    1381. 

  1381.         if( ret != 0 )
    1382. 

  1382.         {
    1383. 

  1383.             x509_free( crt );
    1384. 

  1384.             return( ret );
    1385. 

  1385.         }
    1386. 

  1386.     }
    1387. 

  1387. 

  1388.     if( crt->version == 2 || crt->version == 3 )
    1389. 

  1389.     {
    1390. 

  1390.         ret = x509_get_uid( &p, end, &crt->subject_id,  2 );
    1391. 

  1391.         if( ret != 0 )
    1392. 

  1392.         {
    1393. 

  1393.             x509_free( crt );
    1394. 

  1394.             return( ret );
    1395. 

  1395.         }
    1396. 

  1396.     }
    1397. 

  1397. 

  1398.     if( crt->version == 3 )
    1399. 

  1399.     {
    1400. 

  1400.         ret = x509_get_crt_ext( &p, end, crt);
    1401. 

  1401.         if( ret != 0 )
    1402. 

  1402.         {
    1403. 

  1403.             x509_free( crt );
    1404. 

  1404.             return( ret );
    1405. 

  1405.         }
    1406. 

  1406.     }
    1407. 

  1407. 

  1408.     if( p != end )
    1409. 

  1409.     {
    1410. 

  1410.         x509_free( crt );
    1411. 

  1411.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1412. 

  1412.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1413. 

  1413.     }
    1414. 

  1414. 

  1415.     end = crt->raw.p + crt->raw.len;
    1416. 

  1416. 

  1417.     /*
    1418. 

  1418.      *  signatureAlgorithm   AlgorithmIdentifier,
    1419. 

  1419.      *  signatureValue       BIT STRING
    1420. 

  1420.      */
    1421. 

  1421.     if( ( ret = x509_get_alg( &p, end, &crt->sig_oid2 ) ) != 0 )
    1422. 

  1422.     {
    1423. 

  1423.         x509_free( crt );
    1424. 

  1424.         return( ret );
    1425. 

  1425.     }
    1426. 

  1426. 

  1427.     if( memcmp( crt->sig_oid1.p, crt->sig_oid2.p, crt->sig_oid1.len ) != 0 )
    1428. 

  1428.     {
    1429. 

  1429.         x509_free( crt );
    1430. 

  1430.         return( POLARSSL_ERR_X509_CERT_SIG_MISMATCH );
    1431. 

  1431.     }
    1432. 

  1432. 

  1433.     if( ( ret = x509_get_sig( &p, end, &crt->sig ) ) != 0 )
    1434. 

  1434.     {
    1435. 

  1435.         x509_free( crt );
    1436. 

  1436.         return( ret );
    1437. 

  1437.     }
    1438. 

  1438. 

  1439.     if( p != end )
    1440. 

  1440.     {
    1441. 

  1441.         x509_free( crt );
    1442. 

  1442.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1443. 

  1443.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1444. 

  1444.     }
    1445. 

  1445. 

  1446.     if( buflen > 0 )
    1447. 

  1447.     {
    1448. 

  1448.         crt->next = (x509_cert *) malloc( sizeof( x509_cert ) );
    1449. 

  1449. 

  1450.         if( crt->next == NULL )
    1451. 

  1451.         {
    1452. 

  1452.             x509_free( crt );
    1453. 

  1453.             return( 1 );
    1454. 

  1454.         }
    1455. 

  1455. 

  1456.         crt = crt->next;
    1457. 

  1457.         memset( crt, 0, sizeof( x509_cert ) );
    1458. 

  1458. 

  1459.         return( x509parse_crt( crt, buf, buflen ) );
    1460. 

  1460.     }
    1461. 

  1461. 

  1462.     return( 0 );
    1463. 

  1463. }
    1464. 

  1464. 

  1465. /*
    1466. 

  1466.  * Parse one or more CRLs and add them to the chained list
    1467. 

  1467.  */
    1468. 

  1468. int x509parse_crl( x509_crl *chain, const unsigned char *buf, size_t buflen )
    1469. 

  1469. {
    1470. 

  1470.     int ret;
    1471. 

  1471.     size_t len;
    1472. 

  1472.     unsigned char *p, *end;
    1473. 

  1473.     x509_crl *crl;
    1474. 

  1474. #if defined(POLARSSL_PEM_C)
    1475. 

  1475.     size_t use_len;
    1476. 

  1476.     pem_context pem;
    1477. 

  1477. #endif
    1478. 

  1478. 

  1479.     crl = chain;
    1480. 

  1480. 

  1481.     /*
    1482. 

  1482.      * Check for valid input
    1483. 

  1483.      */
    1484. 

  1484.     if( crl == NULL || buf == NULL )
    1485. 

  1485.         return( 1 );
    1486. 

  1486. 

  1487.     while( crl->version != 0 && crl->next != NULL )
    1488. 

  1488.         crl = crl->next;
    1489. 

  1489. 

  1490.     /*
    1491. 

  1491.      * Add new CRL on the end of the chain if needed.
    1492. 

  1492.      */
    1493. 

  1493.     if ( crl->version != 0 && crl->next == NULL)
    1494. 

  1494.     {
    1495. 

  1495.         crl->next = (x509_crl *) malloc( sizeof( x509_crl ) );
    1496. 

  1496. 

  1497.         if( crl->next == NULL )
    1498. 

  1498.         {
    1499. 

  1499.             x509_crl_free( crl );
    1500. 

  1500.             return( 1 );
    1501. 

  1501.         }
    1502. 

  1502. 

  1503.         crl = crl->next;
    1504. 

  1504.         memset( crl, 0, sizeof( x509_crl ) );
    1505. 

  1505.     }
    1506. 

  1506. 

  1507. #if defined(POLARSSL_PEM_C)
    1508. 

  1508.     pem_init( &pem );
    1509. 

  1509.     ret = pem_read_buffer( &pem,
    1510. 

  1510.                            "-----BEGIN X509 CRL-----",
    1511. 

  1511.                            "-----END X509 CRL-----",
    1512. 

  1512.                            buf, NULL, 0, &use_len );
    1513. 

  1513. 

  1514.     if( ret == 0 )
    1515. 

  1515.     {
    1516. 

  1516.         /*
    1517. 

  1517.          * Was PEM encoded
    1518. 

  1518.          */
    1519. 

  1519.         buflen -= use_len;
    1520. 

  1520.         buf += use_len;
    1521. 

  1521. 

  1522.         /*
    1523. 

  1523.          * Steal PEM buffer
    1524. 

  1524.          */
    1525. 

  1525.         p = pem.buf;
    1526. 

  1526.         pem.buf = NULL;
    1527. 

  1527.         len = pem.buflen;
    1528. 

  1528.         pem_free( &pem );
    1529. 

  1529.     }
    1530. 

  1530.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1531. 

  1531.     {
    1532. 

  1532.         pem_free( &pem );
    1533. 

  1533.         return( ret );
    1534. 

  1534.     }
    1535. 

  1535.     else
    1536. 

  1536.     {
    1537. 

  1537.         /*
    1538. 

  1538.          * nope, copy the raw DER data
    1539. 

  1539.          */
    1540. 

  1540.         p = (unsigned char *) malloc( len = buflen );
    1541. 

  1541. 

  1542.         if( p == NULL )
    1543. 

  1543.             return( 1 );
    1544. 

  1544. 

  1545.         memcpy( p, buf, buflen );
    1546. 

  1546. 

  1547.         buflen = 0;
    1548. 

  1548.     }
    1549. 

  1549. #else
    1550. 

  1550.     p = (unsigned char *) malloc( len = buflen );
    1551. 

  1551. 

  1552.     if( p == NULL )
    1553. 

  1553.         return( 1 );
    1554. 

  1554. 

  1555.     memcpy( p, buf, buflen );
    1556. 

  1556. 

  1557.     buflen = 0;
    1558. 

  1558. #endif
    1559. 

  1559. 

  1560.     crl->raw.p = p;
    1561. 

  1561.     crl->raw.len = len;
    1562. 

  1562.     end = p + len;
    1563. 

  1563. 

  1564.     /*
    1565. 

  1565.      * CertificateList  ::=  SEQUENCE  {
    1566. 

  1566.      *      tbsCertList          TBSCertList,
    1567. 

  1567.      *      signatureAlgorithm   AlgorithmIdentifier,
    1568. 

  1568.      *      signatureValue       BIT STRING  }
    1569. 

  1569.      */
    1570. 

  1570.     if( ( ret = asn1_get_tag( &p, end, &len,
    1571. 

  1571.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1572. 

  1572.     {
    1573. 

  1573.         x509_crl_free( crl );
    1574. 

  1574.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT );
    1575. 

  1575.     }
    1576. 

  1576. 

  1577.     if( len != (size_t) ( end - p ) )
    1578. 

  1578.     {
    1579. 

  1579.         x509_crl_free( crl );
    1580. 

  1580.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1581. 

  1581.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1582. 

  1582.     }
    1583. 

  1583. 

  1584.     /*
    1585. 

  1585.      * TBSCertList  ::=  SEQUENCE  {
    1586. 

  1586.      */
    1587. 

  1587.     crl->tbs.p = p;
    1588. 

  1588. 

  1589.     if( ( ret = asn1_get_tag( &p, end, &len,
    1590. 

  1590.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1591. 

  1591.     {
    1592. 

  1592.         x509_crl_free( crl );
    1593. 

  1593.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1594. 

  1594.     }
    1595. 

  1595. 

  1596.     end = p + len;
    1597. 

  1597.     crl->tbs.len = end - crl->tbs.p;
    1598. 

  1598. 

  1599.     /*
    1600. 

  1600.      * Version  ::=  INTEGER  OPTIONAL {  v1(0), v2(1)  }
    1601. 

  1601.      *               -- if present, MUST be v2
    1602. 

  1602.      *
    1603. 

  1603.      * signature            AlgorithmIdentifier
    1604. 

  1604.      */
    1605. 

  1605.     if( ( ret = x509_get_version( &p, end, &crl->version ) ) != 0 ||
    1606. 

  1606.         ( ret = x509_get_alg(  &p, end, &crl->sig_oid1   ) ) != 0 )
    1607. 

  1607.     {
    1608. 

  1608.         x509_crl_free( crl );
    1609. 

  1609.         return( ret );
    1610. 

  1610.     }
    1611. 

  1611. 

  1612.     crl->version++;
    1613. 

  1613. 

  1614.     if( crl->version > 2 )
    1615. 

  1615.     {
    1616. 

  1616.         x509_crl_free( crl );
    1617. 

  1617.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_VERSION );
    1618. 

  1618.     }
    1619. 

  1619. 

  1620.     if( ( ret = x509_get_sig_alg( &crl->sig_oid1, &crl->sig_alg ) ) != 0 )
    1621. 

  1621.     {
    1622. 

  1622.         x509_crl_free( crl );
    1623. 

  1623.         return( POLARSSL_ERR_X509_CERT_UNKNOWN_SIG_ALG );
    1624. 

  1624.     }
    1625. 

  1625. 

  1626.     /*
    1627. 

  1627.      * issuer               Name
    1628. 

  1628.      */
    1629. 

  1629.     crl->issuer_raw.p = p;
    1630. 

  1630. 

  1631.     if( ( ret = asn1_get_tag( &p, end, &len,
    1632. 

  1632.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1633. 

  1633.     {
    1634. 

  1634.         x509_crl_free( crl );
    1635. 

  1635.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    1636. 

  1636.     }
    1637. 

  1637. 

  1638.     if( ( ret = x509_get_name( &p, p + len, &crl->issuer ) ) != 0 )
    1639. 

  1639.     {
    1640. 

  1640.         x509_crl_free( crl );
    1641. 

  1641.         return( ret );
    1642. 

  1642.     }
    1643. 

  1643. 

  1644.     crl->issuer_raw.len = p - crl->issuer_raw.p;
    1645. 

  1645. 

  1646.     /*
    1647. 

  1647.      * thisUpdate          Time
    1648. 

  1648.      * nextUpdate          Time OPTIONAL
    1649. 

  1649.      */
    1650. 

  1650.     if( ( ret = x509_get_time( &p, end, &crl->this_update ) ) != 0 )
    1651. 

  1651.     {
    1652. 

  1652.         x509_crl_free( crl );
    1653. 

  1653.         return( ret );
    1654. 

  1654.     }
    1655. 

  1655. 

  1656.     if( ( ret = x509_get_time( &p, end, &crl->next_update ) ) != 0 )
    1657. 

  1657.     {
    1658. 

  1658.         if ( ret != ( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    1659. 

  1659.                         POLARSSL_ERR_ASN1_UNEXPECTED_TAG ) &&
    1660. 

  1660.              ret != ( POLARSSL_ERR_X509_CERT_INVALID_DATE +
    1661. 

  1661.                         POLARSSL_ERR_ASN1_OUT_OF_DATA ) )
    1662. 

  1662.         {
    1663. 

  1663.             x509_crl_free( crl );
    1664. 

  1664.             return( ret );
    1665. 

  1665.         }
    1666. 

  1666.     }
    1667. 

  1667. 

  1668.     /*
    1669. 

  1669.      * revokedCertificates    SEQUENCE OF SEQUENCE   {
    1670. 

  1670.      *      userCertificate        CertificateSerialNumber,
    1671. 

  1671.      *      revocationDate         Time,
    1672. 

  1672.      *      crlEntryExtensions     Extensions OPTIONAL
    1673. 

  1673.      *                                   -- if present, MUST be v2
    1674. 

  1674.      *                        } OPTIONAL
    1675. 

  1675.      */
    1676. 

  1676.     if( ( ret = x509_get_entries( &p, end, &crl->entry ) ) != 0 )
    1677. 

  1677.     {
    1678. 

  1678.         x509_crl_free( crl );
    1679. 

  1679.         return( ret );
    1680. 

  1680.     }
    1681. 

  1681. 

  1682.     /*
    1683. 

  1683.      * crlExtensions          EXPLICIT Extensions OPTIONAL
    1684. 

  1684.      *                              -- if present, MUST be v2
    1685. 

  1685.      */
    1686. 

  1686.     if( crl->version == 2 )
    1687. 

  1687.     {
    1688. 

  1688.         ret = x509_get_crl_ext( &p, end, &crl->crl_ext );
    1689. 

  1689.                             
    1690. 

  1690.         if( ret != 0 )
    1691. 

  1691.         {
    1692. 

  1692.             x509_crl_free( crl );
    1693. 

  1693.             return( ret );
    1694. 

  1694.         }
    1695. 

  1695.     }
    1696. 

  1696. 

  1697.     if( p != end )
    1698. 

  1698.     {
    1699. 

  1699.         x509_crl_free( crl );
    1700. 

  1700.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1701. 

  1701.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1702. 

  1702.     }
    1703. 

  1703. 

  1704.     end = crl->raw.p + crl->raw.len;
    1705. 

  1705. 

  1706.     /*
    1707. 

  1707.      *  signatureAlgorithm   AlgorithmIdentifier,
    1708. 

  1708.      *  signatureValue       BIT STRING
    1709. 

  1709.      */
    1710. 

  1710.     if( ( ret = x509_get_alg( &p, end, &crl->sig_oid2 ) ) != 0 )
    1711. 

  1711.     {
    1712. 

  1712.         x509_crl_free( crl );
    1713. 

  1713.         return( ret );
    1714. 

  1714.     }
    1715. 

  1715. 

  1716.     if( memcmp( crl->sig_oid1.p, crl->sig_oid2.p, crl->sig_oid1.len ) != 0 )
    1717. 

  1717.     {
    1718. 

  1718.         x509_crl_free( crl );
    1719. 

  1719.         return( POLARSSL_ERR_X509_CERT_SIG_MISMATCH );
    1720. 

  1720.     }
    1721. 

  1721. 

  1722.     if( ( ret = x509_get_sig( &p, end, &crl->sig ) ) != 0 )
    1723. 

  1723.     {
    1724. 

  1724.         x509_crl_free( crl );
    1725. 

  1725.         return( ret );
    1726. 

  1726.     }
    1727. 

  1727. 

  1728.     if( p != end )
    1729. 

  1729.     {
    1730. 

  1730.         x509_crl_free( crl );
    1731. 

  1731.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
    1732. 

  1732.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    1733. 

  1733.     }
    1734. 

  1734. 

  1735.     if( buflen > 0 )
    1736. 

  1736.     {
    1737. 

  1737.         crl->next = (x509_crl *) malloc( sizeof( x509_crl ) );
    1738. 

  1738. 

  1739.         if( crl->next == NULL )
    1740. 

  1740.         {
    1741. 

  1741.             x509_crl_free( crl );
    1742. 

  1742.             return( 1 );
    1743. 

  1743.         }
    1744. 

  1744. 

  1745.         crl = crl->next;
    1746. 

  1746.         memset( crl, 0, sizeof( x509_crl ) );
    1747. 

  1747. 

  1748.         return( x509parse_crl( crl, buf, buflen ) );
    1749. 

  1749.     }
    1750. 

  1750. 

  1751.     return( 0 );
    1752. 

  1752. }
    1753. 

  1753. 

  1754. #if defined(POLARSSL_FS_IO)
    1755. 

  1755. /*
    1756. 

  1756.  * Load all data from a file into a given buffer.
    1757. 

  1757.  */
    1758. 

  1758. int load_file( const char *path, unsigned char **buf, size_t *n )
    1759. 

  1759. {
    1760. 

  1760.     FILE *f;
    1761. 

  1761. 

  1762.     if( ( f = fopen( path, "rb" ) ) == NULL )
    1763. 

  1763.         return( 1 );
    1764. 

  1764. 

  1765.     fseek( f, 0, SEEK_END );
    1766. 

  1766.     *n = (size_t) ftell( f );
    1767. 

  1767.     fseek( f, 0, SEEK_SET );
    1768. 

  1768. 

  1769.     if( ( *buf = (unsigned char *) malloc( *n + 1 ) ) == NULL )
    1770. 

  1770.         return( 1 );
    1771. 

  1771. 

  1772.     if( fread( *buf, 1, *n, f ) != *n )
    1773. 

  1773.     {
    1774. 

  1774.         fclose( f );
    1775. 

  1775.         free( *buf );
    1776. 

  1776.         return( 1 );
    1777. 

  1777.     }
    1778. 

  1778. 

  1779.     fclose( f );
    1780. 

  1780. 

  1781.     (*buf)[*n] = '\0';
    1782. 

  1782. 

  1783.     return( 0 );
    1784. 

  1784. }
    1785. 

  1785. 

  1786. /*
    1787. 

  1787.  * Load one or more certificates and add them to the chained list
    1788. 

  1788.  */
    1789. 

  1789. int x509parse_crtfile( x509_cert *chain, const char *path )
    1790. 

  1790. {
    1791. 

  1791.     int ret;
    1792. 

  1792.     size_t n;
    1793. 

  1793.     unsigned char *buf;
    1794. 

  1794. 

  1795.     if ( load_file( path, &buf, &n ) )
    1796. 

  1796.         return( 1 );
    1797. 

  1797. 

  1798.     ret = x509parse_crt( chain, buf, n );
    1799. 

  1799. 

  1800.     memset( buf, 0, n + 1 );
    1801. 

  1801.     free( buf );
    1802. 

  1802. 

  1803.     return( ret );
    1804. 

  1804. }
    1805. 

  1805. 

  1806. /*
    1807. 

  1807.  * Load one or more CRLs and add them to the chained list
    1808. 

  1808.  */
    1809. 

  1809. int x509parse_crlfile( x509_crl *chain, const char *path )
    1810. 

  1810. {
    1811. 

  1811.     int ret;
    1812. 

  1812.     size_t n;
    1813. 

  1813.     unsigned char *buf;
    1814. 

  1814. 

  1815.     if ( load_file( path, &buf, &n ) )
    1816. 

  1816.         return( 1 );
    1817. 

  1817. 

  1818.     ret = x509parse_crl( chain, buf, n );
    1819. 

  1819. 

  1820.     memset( buf, 0, n + 1 );
    1821. 

  1821.     free( buf );
    1822. 

  1822. 

  1823.     return( ret );
    1824. 

  1824. }
    1825. 

  1825. 

  1826. /*
    1827. 

  1827.  * Load and parse a private RSA key
    1828. 

  1828.  */
    1829. 

  1829. int x509parse_keyfile( rsa_context *rsa, const char *path, const char *pwd )
    1830. 

  1830. {
    1831. 

  1831.     int ret;
    1832. 

  1832.     size_t n;
    1833. 

  1833.     unsigned char *buf;
    1834. 

  1834. 

  1835.     if ( load_file( path, &buf, &n ) )
    1836. 

  1836.         return( 1 );
    1837. 

  1837. 

  1838.     if( pwd == NULL )
    1839. 

  1839.         ret = x509parse_key( rsa, buf, n, NULL, 0 );
    1840. 

  1840.     else
    1841. 

  1841.         ret = x509parse_key( rsa, buf, n,
    1842. 

  1842.                 (unsigned char *) pwd, strlen( pwd ) );
    1843. 

  1843. 

  1844.     memset( buf, 0, n + 1 );
    1845. 

  1845.     free( buf );
    1846. 

  1846. 

  1847.     return( ret );
    1848. 

  1848. }
    1849. 

  1849. 

  1850. /*
    1851. 

  1851.  * Load and parse a public RSA key
    1852. 

  1852.  */
    1853. 

  1853. int x509parse_public_keyfile( rsa_context *rsa, const char *path )
    1854. 

  1854. {
    1855. 

  1855.     int ret;
    1856. 

  1856.     size_t n;
    1857. 

  1857.     unsigned char *buf;
    1858. 

  1858. 

  1859.     if ( load_file( path, &buf, &n ) )
    1860. 

  1860.         return( 1 );
    1861. 

  1861. 

  1862.     ret = x509parse_public_key( rsa, buf, n );
    1863. 

  1863. 

  1864.     memset( buf, 0, n + 1 );
    1865. 

  1865.     free( buf );
    1866. 

  1866. 

  1867.     return( ret );
    1868. 

  1868. }
    1869. 

  1869. #endif /* POLARSSL_FS_IO */
    1870. 

  1870. 

  1871. /*
    1872. 

  1872.  * Parse a private RSA key
    1873. 

  1873.  */
    1874. 

  1874. int x509parse_key( rsa_context *rsa, const unsigned char *key, size_t keylen,
    1875. 

  1875.                                      const unsigned char *pwd, size_t pwdlen )
    1876. 

  1876. {
    1877. 

  1877.     int ret;
    1878. 

  1878.     size_t len;
    1879. 

  1879.     unsigned char *p, *end;
    1880. 

  1880.     unsigned char *p_alt;
    1881. 

  1881.     x509_buf pk_alg_oid;
    1882. 

  1882. 

  1883. #if defined(POLARSSL_PEM_C)
    1884. 

  1884.     pem_context pem;
    1885. 

  1885. 

  1886.     pem_init( &pem );
    1887. 

  1887.     ret = pem_read_buffer( &pem,
    1888. 

  1888.                            "-----BEGIN RSA PRIVATE KEY-----",
    1889. 

  1889.                            "-----END RSA PRIVATE KEY-----",
    1890. 

  1890.                            key, pwd, pwdlen, &len );
    1891. 

  1891. 

  1892.     if( ret == POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1893. 

  1893.     {
    1894. 

  1894.         ret = pem_read_buffer( &pem,
    1895. 

  1895.                            "-----BEGIN PRIVATE KEY-----",
    1896. 

  1896.                            "-----END PRIVATE KEY-----",
    1897. 

  1897.                            key, pwd, pwdlen, &len );
    1898. 

  1898.     }
    1899. 

  1899. 

  1900.     if( ret == 0 )
    1901. 

  1901.     {
    1902. 

  1902.         /*
    1903. 

  1903.          * Was PEM encoded
    1904. 

  1904.          */
    1905. 

  1905.         keylen = pem.buflen;
    1906. 

  1906.     }
    1907. 

  1907.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    1908. 

  1908.     {
    1909. 

  1909.         pem_free( &pem );
    1910. 

  1910.         return( ret );
    1911. 

  1911.     }
    1912. 

  1912. 

  1913.     p = ( ret == 0 ) ? pem.buf : (unsigned char *) key;
    1914. 

  1914. #else
    1915. 

  1915.     ((void) pwd);
    1916. 

  1916.     ((void) pwdlen);
    1917. 

  1917.     p = (unsigned char *) key;
    1918. 

  1918. #endif
    1919. 

  1919.     end = p + keylen;
    1920. 

  1920. 

  1921.     /*
    1922. 

  1922.      * Note: Depending on the type of private key file one can expect either a
    1923. 

  1923.      * PrivatKeyInfo object (PKCS#8) or a RSAPrivateKey (PKCS#1) directly.
    1924. 

  1924.      *
    1925. 

  1925.      *  PrivateKeyInfo ::= SEQUENCE {
    1926. 

  1926.      *    version           Version,
    1927. 

  1927.      *    algorithm       AlgorithmIdentifier,
    1928. 

  1928.      *    PrivateKey      BIT STRING
    1929. 

  1929.      *  }
    1930. 

  1930.      *
    1931. 

  1931.      *  AlgorithmIdentifier ::= SEQUENCE {
    1932. 

  1932.      *    algorithm       OBJECT IDENTIFIER,
    1933. 

  1933.      *    parameters      ANY DEFINED BY algorithm OPTIONAL
    1934. 

  1934.      *  }
    1935. 

  1935.      *
    1936. 

  1936.      *  RSAPrivateKey ::= SEQUENCE {
    1937. 

  1937.      *      version           Version,
    1938. 

  1938.      *      modulus           INTEGER,  -- n
    1939. 

  1939.      *      publicExponent    INTEGER,  -- e
    1940. 

  1940.      *      privateExponent   INTEGER,  -- d
    1941. 

  1941.      *      prime1            INTEGER,  -- p
    1942. 

  1942.      *      prime2            INTEGER,  -- q
    1943. 

  1943.      *      exponent1         INTEGER,  -- d mod (p-1)
    1944. 

  1944.      *      exponent2         INTEGER,  -- d mod (q-1)
    1945. 

  1945.      *      coefficient       INTEGER,  -- (inverse of q) mod p
    1946. 

  1946.      *      otherPrimeInfos   OtherPrimeInfos OPTIONAL
    1947. 

  1947.      *  }
    1948. 

  1948.      */
    1949. 

  1949.     if( ( ret = asn1_get_tag( &p, end, &len,
    1950. 

  1950.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    1951. 

  1951.     {
    1952. 

  1952. #if defined(POLARSSL_PEM_C)
    1953. 

  1953.         pem_free( &pem );
    1954. 

  1954. #endif
    1955. 

  1955.         rsa_free( rsa );
    1956. 

  1956.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    1957. 

  1957.     }
    1958. 

  1958. 

  1959.     end = p + len;
    1960. 

  1960. 

  1961.     if( ( ret = asn1_get_int( &p, end, &rsa->ver ) ) != 0 )
    1962. 

  1962.     {
    1963. 

  1963. #if defined(POLARSSL_PEM_C)
    1964. 

  1964.         pem_free( &pem );
    1965. 

  1965. #endif
    1966. 

  1966.         rsa_free( rsa );
    1967. 

  1967.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    1968. 

  1968.     }
    1969. 

  1969. 

  1970.     if( rsa->ver != 0 )
    1971. 

  1971.     {
    1972. 

  1972. #if defined(POLARSSL_PEM_C)
    1973. 

  1973.         pem_free( &pem );
    1974. 

  1974. #endif
    1975. 

  1975.         rsa_free( rsa );
    1976. 

  1976.         return( POLARSSL_ERR_X509_KEY_INVALID_VERSION + ret );
    1977. 

  1977.     }
    1978. 

  1978. 

  1979.     p_alt = p;
    1980. 

  1980. 

  1981.     if( ( ret = x509_get_alg( &p_alt, end, &pk_alg_oid ) ) != 0 )
    1982. 

  1982.     {
    1983. 

  1983.         // Assume that we have the PKCS#1 format if wrong
    1984. 

  1984.         // tag was encountered
    1985. 

  1985.         //
    1986. 

  1986.         if( ret != POLARSSL_ERR_X509_CERT_INVALID_ALG +
    1987. 

  1987.                     POLARSSL_ERR_ASN1_UNEXPECTED_TAG )
    1988. 

  1988.         {
    1989. 

  1989. #if defined(POLARSSL_PEM_C)
    1990. 

  1990.             pem_free( &pem );
    1991. 

  1991. #endif
    1992. 

  1992.             rsa_free( rsa );
    1993. 

  1993.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT );
    1994. 

  1994.         } 
    1995. 

  1995.     }
    1996. 

  1996.     else
    1997. 

  1997.     {
    1998. 

  1998.         int can_handle;
    1999. 

  1999. 

  2000.         /*
    2001. 

  2001.          * only RSA keys handled at this time
    2002. 

  2002.          */
    2003. 

  2003.         can_handle = 0;
    2004. 

  2004. 

  2005.         if( pk_alg_oid.len == 9 &&
    2006. 

  2006.                 memcmp( pk_alg_oid.p, OID_PKCS1_RSA, 9 ) == 0 )
    2007. 

  2007.             can_handle = 1;
    2008. 

  2008. 

  2009.         if( pk_alg_oid.len == 9 &&
    2010. 

  2010.                 memcmp( pk_alg_oid.p, OID_PKCS1, 8 ) == 0 )
    2011. 

  2011.         {
    2012. 

  2012.             if( pk_alg_oid.p[8] >= 2 && pk_alg_oid.p[8] <= 5 )
    2013. 

  2013.                 can_handle = 1;
    2014. 

  2014. 

  2015.             if ( pk_alg_oid.p[8] >= 11 && pk_alg_oid.p[8] <= 14 )
    2016. 

  2016.                 can_handle = 1;
    2017. 

  2017.         }
    2018. 

  2018. 

  2019.         if( pk_alg_oid.len == 5 &&
    2020. 

  2020.                 memcmp( pk_alg_oid.p, OID_RSA_SHA_OBS, 5 ) == 0 )
    2021. 

  2021.             can_handle = 1;
    2022. 

  2022. 

  2023.         if( can_handle == 0 )
    2024. 

  2024.             return( POLARSSL_ERR_X509_UNKNOWN_PK_ALG );
    2025. 

  2025. 

  2026.         /*
    2027. 

  2027.          * Parse the PKCS#8 format
    2028. 

  2028.          */
    2029. 

  2029.         
    2030. 

  2030.         p = p_alt;
    2031. 

  2031.         if( ( ret = asn1_get_tag( &p, end, &len, ASN1_OCTET_STRING ) ) != 0 )
    2032. 

  2032.         {
    2033. 

  2033. #if defined(POLARSSL_PEM_C)
    2034. 

  2034.             pem_free( &pem );
    2035. 

  2035. #endif
    2036. 

  2036.             rsa_free( rsa );
    2037. 

  2037.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2038. 

  2038.         }
    2039. 

  2039. 

  2040.         if( ( end - p ) < 1 )
    2041. 

  2041.         {
    2042. 

  2042. #if defined(POLARSSL_PEM_C)
    2043. 

  2043.             pem_free( &pem );
    2044. 

  2044. #endif
    2045. 

  2045.             rsa_free( rsa );
    2046. 

  2046.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT +
    2047. 

  2047.                     POLARSSL_ERR_ASN1_OUT_OF_DATA );
    2048. 

  2048.         }
    2049. 

  2049. 

  2050.         end = p + len;
    2051. 

  2051. 

  2052.         if( ( ret = asn1_get_tag( &p, end, &len,
    2053. 

  2053.                         ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    2054. 

  2054.         {
    2055. 

  2055. #if defined(POLARSSL_PEM_C)
    2056. 

  2056.             pem_free( &pem );
    2057. 

  2057. #endif
    2058. 

  2058.             rsa_free( rsa );
    2059. 

  2059.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2060. 

  2060.         }
    2061. 

  2061. 

  2062.         end = p + len;
    2063. 

  2063. 

  2064.         if( ( ret = asn1_get_int( &p, end, &rsa->ver ) ) != 0 )
    2065. 

  2065.         {
    2066. 

  2066. #if defined(POLARSSL_PEM_C)
    2067. 

  2067.             pem_free( &pem );
    2068. 

  2068. #endif
    2069. 

  2069.             rsa_free( rsa );
    2070. 

  2070.             return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2071. 

  2071.         }
    2072. 

  2072. 

  2073.         if( rsa->ver != 0 )
    2074. 

  2074.         {
    2075. 

  2075. #if defined(POLARSSL_PEM_C)
    2076. 

  2076.             pem_free( &pem );
    2077. 

  2077. #endif
    2078. 

  2078.             rsa_free( rsa );
    2079. 

  2079.             return( POLARSSL_ERR_X509_KEY_INVALID_VERSION + ret );
    2080. 

  2080.         }
    2081. 

  2081.     }
    2082. 

  2082. 

  2083.     if( ( ret = asn1_get_mpi( &p, end, &rsa->N  ) ) != 0 ||
    2084. 

  2084.         ( ret = asn1_get_mpi( &p, end, &rsa->E  ) ) != 0 ||
    2085. 

  2085.         ( ret = asn1_get_mpi( &p, end, &rsa->D  ) ) != 0 ||
    2086. 

  2086.         ( ret = asn1_get_mpi( &p, end, &rsa->P  ) ) != 0 ||
    2087. 

  2087.         ( ret = asn1_get_mpi( &p, end, &rsa->Q  ) ) != 0 ||
    2088. 

  2088.         ( ret = asn1_get_mpi( &p, end, &rsa->DP ) ) != 0 ||
    2089. 

  2089.         ( ret = asn1_get_mpi( &p, end, &rsa->DQ ) ) != 0 ||
    2090. 

  2090.         ( ret = asn1_get_mpi( &p, end, &rsa->QP ) ) != 0 )
    2091. 

  2091.     {
    2092. 

  2092. #if defined(POLARSSL_PEM_C)
    2093. 

  2093.         pem_free( &pem );
    2094. 

  2094. #endif
    2095. 

  2095.         rsa_free( rsa );
    2096. 

  2096.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2097. 

  2097.     }
    2098. 

  2098. 

  2099.     rsa->len = mpi_size( &rsa->N );
    2100. 

  2100. 

  2101.     if( p != end )
    2102. 

  2102.     {
    2103. 

  2103. #if defined(POLARSSL_PEM_C)
    2104. 

  2104.         pem_free( &pem );
    2105. 

  2105. #endif
    2106. 

  2106.         rsa_free( rsa );
    2107. 

  2107.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT +
    2108. 

  2108.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    2109. 

  2109.     }
    2110. 

  2110. 

  2111.     if( ( ret = rsa_check_privkey( rsa ) ) != 0 )
    2112. 

  2112.     {
    2113. 

  2113. #if defined(POLARSSL_PEM_C)
    2114. 

  2114.         pem_free( &pem );
    2115. 

  2115. #endif
    2116. 

  2116.         rsa_free( rsa );
    2117. 

  2117.         return( ret );
    2118. 

  2118.     }
    2119. 

  2119. 

  2120. #if defined(POLARSSL_PEM_C)
    2121. 

  2121.     pem_free( &pem );
    2122. 

  2122. #endif
    2123. 

  2123. 

  2124.     return( 0 );
    2125. 

  2125. }
    2126. 

  2126. 

  2127. /*
    2128. 

  2128.  * Parse a public RSA key
    2129. 

  2129.  */
    2130. 

  2130. int x509parse_public_key( rsa_context *rsa, const unsigned char *key, size_t keylen )
    2131. 

  2131. {
    2132. 

  2132.     int ret;
    2133. 

  2133.     size_t len;
    2134. 

  2134.     unsigned char *p, *end;
    2135. 

  2135.     x509_buf alg_oid;
    2136. 

  2136. #if defined(POLARSSL_PEM_C)
    2137. 

  2137.     pem_context pem;
    2138. 

  2138. 

  2139.     pem_init( &pem );
    2140. 

  2140.     ret = pem_read_buffer( &pem,
    2141. 

  2141.             "-----BEGIN PUBLIC KEY-----",
    2142. 

  2142.             "-----END PUBLIC KEY-----",
    2143. 

  2143.             key, NULL, 0, &len );
    2144. 

  2144. 

  2145.     if( ret == 0 )
    2146. 

  2146.     {
    2147. 

  2147.         /*
    2148. 

  2148.          * Was PEM encoded
    2149. 

  2149.          */
    2150. 

  2150.         keylen = pem.buflen;
    2151. 

  2151.     }
    2152. 

  2152.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    2153. 

  2153.     {
    2154. 

  2154.         pem_free( &pem );
    2155. 

  2155.         return( ret );
    2156. 

  2156.     }
    2157. 

  2157. 

  2158.     p = ( ret == 0 ) ? pem.buf : (unsigned char *) key;
    2159. 

  2159. #else
    2160. 

  2160.     p = (unsigned char *) key;
    2161. 

  2161. #endif
    2162. 

  2162.     end = p + keylen;
    2163. 

  2163. 

  2164.     /*
    2165. 

  2165.      *  PublicKeyInfo ::= SEQUENCE {
    2166. 

  2166.      *    algorithm       AlgorithmIdentifier,
    2167. 

  2167.      *    PublicKey       BIT STRING
    2168. 

  2168.      *  }
    2169. 

  2169.      *
    2170. 

  2170.      *  AlgorithmIdentifier ::= SEQUENCE {
    2171. 

  2171.      *    algorithm       OBJECT IDENTIFIER,
    2172. 

  2172.      *    parameters      ANY DEFINED BY algorithm OPTIONAL
    2173. 

  2173.      *  }
    2174. 

  2174.      *
    2175. 

  2175.      *  RSAPublicKey ::= SEQUENCE {
    2176. 

  2176.      *      modulus           INTEGER,  -- n
    2177. 

  2177.      *      publicExponent    INTEGER   -- e
    2178. 

  2178.      *  }
    2179. 

  2179.      */
    2180. 

  2180. 

  2181.     if( ( ret = asn1_get_tag( &p, end, &len,
    2182. 

  2182.                     ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    2183. 

  2183.     {
    2184. 

  2184. #if defined(POLARSSL_PEM_C)
    2185. 

  2185.         pem_free( &pem );
    2186. 

  2186. #endif
    2187. 

  2187.         rsa_free( rsa );
    2188. 

  2188.         return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT + ret );
    2189. 

  2189.     }
    2190. 

  2190. 

  2191.     if( ( ret = x509_get_pubkey( &p, end, &alg_oid, &rsa->N, &rsa->E ) ) != 0 )
    2192. 

  2192.     {
    2193. 

  2193. #if defined(POLARSSL_PEM_C)
    2194. 

  2194.         pem_free( &pem );
    2195. 

  2195. #endif
    2196. 

  2196.         rsa_free( rsa );
    2197. 

  2197.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2198. 

  2198.     }
    2199. 

  2199. 

  2200.     if( ( ret = rsa_check_pubkey( rsa ) ) != 0 )
    2201. 

  2201.     {
    2202. 

  2202. #if defined(POLARSSL_PEM_C)
    2203. 

  2203.         pem_free( &pem );
    2204. 

  2204. #endif
    2205. 

  2205.         rsa_free( rsa );
    2206. 

  2206.         return( ret );
    2207. 

  2207.     }
    2208. 

  2208. 

  2209.     rsa->len = mpi_size( &rsa->N );
    2210. 

  2210. 

  2211. #if defined(POLARSSL_PEM_C)
    2212. 

  2212.     pem_free( &pem );
    2213. 

  2213. #endif
    2214. 

  2214. 

  2215.     return( 0 );
    2216. 

  2216. }
    2217. 

  2217. 

  2218. #if defined(POLARSSL_DHM_C)
    2219. 

  2219. /*
    2220. 

  2220.  * Parse DHM parameters
    2221. 

  2221.  */
    2222. 

  2222. int x509parse_dhm( dhm_context *dhm, const unsigned char *dhmin, size_t dhminlen )
    2223. 

  2223. {
    2224. 

  2224.     int ret;
    2225. 

  2225.     size_t len;
    2226. 

  2226.     unsigned char *p, *end;
    2227. 

  2227. #if defined(POLARSSL_PEM_C)
    2228. 

  2228.     pem_context pem;
    2229. 

  2229. 

  2230.     pem_init( &pem );
    2231. 

  2231. 

  2232.     ret = pem_read_buffer( &pem, 
    2233. 

  2233.                            "-----BEGIN DH PARAMETERS-----",
    2234. 

  2234.                            "-----END DH PARAMETERS-----",
    2235. 

  2235.                            dhmin, NULL, 0, &dhminlen );
    2236. 

  2236. 

  2237.     if( ret == 0 )
    2238. 

  2238.     {
    2239. 

  2239.         /*
    2240. 

  2240.          * Was PEM encoded
    2241. 

  2241.          */
    2242. 

  2242.         dhminlen = pem.buflen;
    2243. 

  2243.     }
    2244. 

  2244.     else if( ret != POLARSSL_ERR_PEM_NO_HEADER_PRESENT )
    2245. 

  2245.     {
    2246. 

  2246.         pem_free( &pem );
    2247. 

  2247.         return( ret );
    2248. 

  2248.     }
    2249. 

  2249. 

  2250.     p = ( ret == 0 ) ? pem.buf : (unsigned char *) dhmin;
    2251. 

  2251. #else
    2252. 

  2252.     p = (unsigned char *) dhmin;
    2253. 

  2253. #endif
    2254. 

  2254.     end = p + dhminlen;
    2255. 

  2255. 

  2256.     memset( dhm, 0, sizeof( dhm_context ) );
    2257. 

  2257. 

  2258.     /*
    2259. 

  2259.      *  DHParams ::= SEQUENCE {
    2260. 

  2260.      *      prime            INTEGER,  -- P
    2261. 

  2261.      *      generator        INTEGER,  -- g
    2262. 

  2262.      *  }
    2263. 

  2263.      */
    2264. 

  2264.     if( ( ret = asn1_get_tag( &p, end, &len,
    2265. 

  2265.             ASN1_CONSTRUCTED | ASN1_SEQUENCE ) ) != 0 )
    2266. 

  2266.     {
    2267. 

  2267. #if defined(POLARSSL_PEM_C)
    2268. 

  2268.         pem_free( &pem );
    2269. 

  2269. #endif
    2270. 

  2270.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2271. 

  2271.     }
    2272. 

  2272. 

  2273.     end = p + len;
    2274. 

  2274. 

  2275.     if( ( ret = asn1_get_mpi( &p, end, &dhm->P  ) ) != 0 ||
    2276. 

  2276.         ( ret = asn1_get_mpi( &p, end, &dhm->G ) ) != 0 )
    2277. 

  2277.     {
    2278. 

  2278. #if defined(POLARSSL_PEM_C)
    2279. 

  2279.         pem_free( &pem );
    2280. 

  2280. #endif
    2281. 

  2281.         dhm_free( dhm );
    2282. 

  2282.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT + ret );
    2283. 

  2283.     }
    2284. 

  2284. 

  2285.     if( p != end )
    2286. 

  2286.     {
    2287. 

  2287. #if defined(POLARSSL_PEM_C)
    2288. 

  2288.         pem_free( &pem );
    2289. 

  2289. #endif
    2290. 

  2290.         dhm_free( dhm );
    2291. 

  2291.         return( POLARSSL_ERR_X509_KEY_INVALID_FORMAT +
    2292. 

  2292.                 POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
    2293. 

  2293.     }
    2294. 

  2294. 

  2295. #if defined(POLARSSL_PEM_C)
    2296. 

  2296.     pem_free( &pem );
    2297. 

  2297. #endif
    2298. 

  2298. 

  2299.     return( 0 );
    2300. 

  2300. }
    2301. 

  2301. 

  2302. #if defined(POLARSSL_FS_IO)
    2303. 

  2303. /*
    2304. 

  2304.  * Load and parse a private RSA key
    2305. 

  2305.  */
    2306. 

  2306. int x509parse_dhmfile( dhm_context *dhm, const char *path )
    2307. 

  2307. {
    2308. 

  2308.     int ret;
    2309. 

  2309.     size_t n;
    2310. 

  2310.     unsigned char *buf;
    2311. 

  2311. 

  2312.     if ( load_file( path, &buf, &n ) )
    2313. 

  2313.         return( 1 );
    2314. 

  2314. 

  2315.     ret = x509parse_dhm( dhm, buf, n );
    2316. 

  2316. 

  2317.     memset( buf, 0, n + 1 );
    2318. 

  2318.     free( buf );
    2319. 

  2319. 

  2320.     return( ret );
    2321. 

  2321. }
    2322. 

  2322. #endif /* POLARSSL_FS_IO */
    2323. 

  2323. #endif /* POLARSSL_DHM_C */
    2324. 

  2324. 

  2325. #if defined _MSC_VER && !defined snprintf
    2326. 

  2326. #include <stdarg.h>
    2327. 

  2327. 

  2328. #if !defined vsnprintf
    2329. 

  2329. #define vsnprintf _vsnprintf
    2330. 

  2330. #endif // vsnprintf
    2331. 

  2331. 

  2332. /*
    2333. 

  2333.  * Windows _snprintf and _vsnprintf are not compatible to linux versions.
    2334. 

  2334.  * Result value is not size of buffer needed, but -1 if no fit is possible.
    2335. 

  2335.  *
    2336. 

  2336.  * This fuction tries to 'fix' this by at least suggesting enlarging the
    2337. 

  2337.  * size by 20.
    2338. 

  2338.  */
    2339. 

  2339. int compat_snprintf(char *str, size_t size, const char *format, ...)
    2340. 

  2340. {
    2341. 

  2341.     va_list ap;
    2342. 

  2342.     int res = -1;
    2343. 

  2343. 

  2344.     va_start( ap, format );
    2345. 

  2345. 

  2346.     res = vsnprintf( str, size, format, ap );
    2347. 

  2347. 

  2348.     va_end( ap );
    2349. 

  2349. 

  2350.     // No quick fix possible
    2351. 

  2351.     if ( res < 0 )
    2352. 

  2352.         return( (int) size + 20 );
    2353. 

  2353.     
    2354. 

  2354.     return res;
    2355. 

  2355. }
    2356. 

  2356. 

  2357. #define snprintf compat_snprintf
    2358. 

  2358. #endif
    2359. 

  2359. 

  2360. #define POLARSSL_ERR_DEBUG_BUF_TOO_SMALL    -2
    2361. 

  2361. 

  2362. #define SAFE_SNPRINTF()                         \
    2363. 

  2363. {                                               \
    2364. 

  2364.     if( ret == -1 )                             \
    2365. 

  2365.         return( -1 );                           \
    2366. 

  2366.                                                 \
    2367. 

  2367.     if ( (unsigned int) ret > n ) {             \
    2368. 

  2368.         p[n - 1] = '\0';                        \
    2369. 

  2369.         return POLARSSL_ERR_DEBUG_BUF_TOO_SMALL;\
    2370. 

  2370.     }                                           \
    2371. 

  2371.                                                 \
    2372. 

  2372.     n -= (unsigned int) ret;                    \
    2373. 

  2373.     p += (unsigned int) ret;                    \
    2374. 

  2374. }
    2375. 

  2375. 

  2376. /*
    2377. 

  2377.  * Store the name in printable form into buf; no more
    2378. 

  2378.  * than size characters will be written
    2379. 

  2379.  */
    2380. 

  2380. int x509parse_dn_gets( char *buf, size_t size, const x509_name *dn )
    2381. 

  2381. {
    2382. 

  2382.     int ret;
    2383. 

  2383.     size_t i, n;
    2384. 

  2384.     unsigned char c;
    2385. 

  2385.     const x509_name *name;
    2386. 

  2386.     char s[128], *p;
    2387. 

  2387. 

  2388.     memset( s, 0, sizeof( s ) );
    2389. 

  2389. 

  2390.     name = dn;
    2391. 

  2391.     p = buf;
    2392. 

  2392.     n = size;
    2393. 

  2393. 

  2394.     while( name != NULL )
    2395. 

  2395.     {
    2396. 

  2396.         if( name != dn )
    2397. 

  2397.         {
    2398. 

  2398.             ret = snprintf( p, n, ", " );
    2399. 

  2399.             SAFE_SNPRINTF();
    2400. 

  2400.         }
    2401. 

  2401. 

  2402.         if( memcmp( name->oid.p, OID_X520, 2 ) == 0 )
    2403. 

  2403.         {
    2404. 

  2404.             switch( name->oid.p[2] )
    2405. 

  2405.             {
    2406. 

  2406.             case X520_COMMON_NAME:
    2407. 

  2407.                 ret = snprintf( p, n, "CN=" ); break;
    2408. 

  2408. 

  2409.             case X520_COUNTRY:
    2410. 

  2410.                 ret = snprintf( p, n, "C="  ); break;
    2411. 

  2411. 

  2412.             case X520_LOCALITY:
    2413. 

  2413.                 ret = snprintf( p, n, "L="  ); break;
    2414. 

  2414. 

  2415.             case X520_STATE:
    2416. 

  2416.                 ret = snprintf( p, n, "ST=" ); break;
    2417. 

  2417. 

  2418.             case X520_ORGANIZATION:
    2419. 

  2419.                 ret = snprintf( p, n, "O="  ); break;
    2420. 

  2420. 

  2421.             case X520_ORG_UNIT:
    2422. 

  2422.                 ret = snprintf( p, n, "OU=" ); break;
    2423. 

  2423. 

  2424.             default:
    2425. 

  2425.                 ret = snprintf( p, n, "0x%02X=",
    2426. 

  2426.                                name->oid.p[2] );
    2427. 

  2427.                 break;
    2428. 

  2428.             }
    2429. 

  2429.         SAFE_SNPRINTF();
    2430. 

  2430.         }
    2431. 

  2431.         else if( memcmp( name->oid.p, OID_PKCS9, 8 ) == 0 )
    2432. 

  2432.         {
    2433. 

  2433.             switch( name->oid.p[8] )
    2434. 

  2434.             {
    2435. 

  2435.             case PKCS9_EMAIL:
    2436. 

  2436.                 ret = snprintf( p, n, "emailAddress=" ); break;
    2437. 

  2437. 

  2438.             default:
    2439. 

  2439.                 ret = snprintf( p, n, "0x%02X=",
    2440. 

  2440.                                name->oid.p[8] );
    2441. 

  2441.                 break;
    2442. 

  2442.             }
    2443. 

  2443.         SAFE_SNPRINTF();
    2444. 

  2444.         }
    2445. 

  2445.         else
    2446. 

  2446.         {
    2447. 

  2447.             ret = snprintf( p, n, "\?\?=" );
    2448. 

  2448.             SAFE_SNPRINTF();
    2449. 

  2449.         }
    2450. 

  2450. 

  2451.         for( i = 0; i < name->val.len; i++ )
    2452. 

  2452.         {
    2453. 

  2453.             if( i >= sizeof( s ) - 1 )
    2454. 

  2454.                 break;
    2455. 

  2455. 

  2456.             c = name->val.p[i];
    2457. 

  2457.             if( c < 32 || c == 127 || ( c > 128 && c < 160 ) )
    2458. 

  2458.                  s[i] = '?';
    2459. 

  2459.             else s[i] = c;
    2460. 

  2460.         }
    2461. 

  2461.         s[i] = '\0';
    2462. 

  2462.         ret = snprintf( p, n, "%s", s );
    2463. 

  2463.     SAFE_SNPRINTF();
    2464. 

  2464.         name = name->next;
    2465. 

  2465.     }
    2466. 

  2466. 

  2467.     return( (int) ( size - n ) );
    2468. 

  2468. }
    2469. 

  2469. 

  2470. /*
    2471. 

  2471.  * Store the serial in printable form into buf; no more
    2472. 

  2472.  * than size characters will be written
    2473. 

  2473.  */
    2474. 

  2474. int x509parse_serial_gets( char *buf, size_t size, const x509_buf *serial )
    2475. 

  2475. {
    2476. 

  2476.     int ret;
    2477. 

  2477.     size_t i, n, nr;
    2478. 

  2478.     char *p;
    2479. 

  2479. 

  2480.     p = buf;
    2481. 

  2481.     n = size;
    2482. 

  2482. 

  2483.     nr = ( serial->len <= 32 )
    2484. 

  2484.         ? serial->len  : 32;
    2485. 

  2485. 

  2486.     for( i = 0; i < nr; i++ )
    2487. 

  2487.     {
    2488. 

  2488.         ret = snprintf( p, n, "%02X%s",
    2489. 

  2489.                 serial->p[i], ( i < nr - 1 ) ? ":" : "" );
    2490. 

  2490.         SAFE_SNPRINTF();
    2491. 

  2491.     }
    2492. 

  2492. 

  2493.     return( (int) ( size - n ) );
    2494. 

  2494. }
    2495. 

  2495. 

  2496. /*
    2497. 

  2497.  * Return an informational string about the certificate.
    2498. 

  2498.  */
    2499. 

  2499. int x509parse_cert_info( char *buf, size_t size, const char *prefix,
    2500. 

  2500.                          const x509_cert *crt )
    2501. 

  2501. {
    2502. 

  2502.     int ret;
    2503. 

  2503.     size_t n;
    2504. 

  2504.     char *p;
    2505. 

  2505. 

  2506.     p = buf;
    2507. 

  2507.     n = size;
    2508. 

  2508. 

  2509.     ret = snprintf( p, n, "%scert. version : %d\n",
    2510. 

  2510.                                prefix, crt->version );
    2511. 

  2511.     SAFE_SNPRINTF();
    2512. 

  2512.     ret = snprintf( p, n, "%sserial number : ",
    2513. 

  2513.                                prefix );
    2514. 

  2514.     SAFE_SNPRINTF();
    2515. 

  2515. 

  2516.     ret = x509parse_serial_gets( p, n, &crt->serial);
    2517. 

  2517.     SAFE_SNPRINTF();
    2518. 

  2518. 

  2519.     ret = snprintf( p, n, "\n%sissuer name   : ", prefix );
    2520. 

  2520.     SAFE_SNPRINTF();
    2521. 

  2521.     ret = x509parse_dn_gets( p, n, &crt->issuer  );
    2522. 

  2522.     SAFE_SNPRINTF();
    2523. 

  2523. 

  2524.     ret = snprintf( p, n, "\n%ssubject name  : ", prefix );
    2525. 

  2525.     SAFE_SNPRINTF();
    2526. 

  2526.     ret = x509parse_dn_gets( p, n, &crt->subject );
    2527. 

  2527.     SAFE_SNPRINTF();
    2528. 

  2528. 

  2529.     ret = snprintf( p, n, "\n%sissued  on    : " \
    2530. 

  2530.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2531. 

  2531.                    crt->valid_from.year, crt->valid_from.mon,
    2532. 

  2532.                    crt->valid_from.day,  crt->valid_from.hour,
    2533. 

  2533.                    crt->valid_from.min,  crt->valid_from.sec );
    2534. 

  2534.     SAFE_SNPRINTF();
    2535. 

  2535. 

  2536.     ret = snprintf( p, n, "\n%sexpires on    : " \
    2537. 

  2537.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2538. 

  2538.                    crt->valid_to.year, crt->valid_to.mon,
    2539. 

  2539.                    crt->valid_to.day,  crt->valid_to.hour,
    2540. 

  2540.                    crt->valid_to.min,  crt->valid_to.sec );
    2541. 

  2541.     SAFE_SNPRINTF();
    2542. 

  2542. 

  2543.     ret = snprintf( p, n, "\n%ssigned using  : RSA+", prefix );
    2544. 

  2544.     SAFE_SNPRINTF();
    2545. 

  2545. 

  2546.     switch( crt->sig_alg )
    2547. 

  2547.     {
    2548. 

  2548.         case SIG_RSA_MD2    : ret = snprintf( p, n, "MD2"    ); break;
    2549. 

  2549.         case SIG_RSA_MD4    : ret = snprintf( p, n, "MD4"    ); break;
    2550. 

  2550.         case SIG_RSA_MD5    : ret = snprintf( p, n, "MD5"    ); break;
    2551. 

  2551.         case SIG_RSA_SHA1   : ret = snprintf( p, n, "SHA1"   ); break;
    2552. 

  2552.         case SIG_RSA_SHA224 : ret = snprintf( p, n, "SHA224" ); break;
    2553. 

  2553.         case SIG_RSA_SHA256 : ret = snprintf( p, n, "SHA256" ); break;
    2554. 

  2554.         case SIG_RSA_SHA384 : ret = snprintf( p, n, "SHA384" ); break;
    2555. 

  2555.         case SIG_RSA_SHA512 : ret = snprintf( p, n, "SHA512" ); break;
    2556. 

  2556.         default: ret = snprintf( p, n, "???"  ); break;
    2557. 

  2557.     }
    2558. 

  2558.     SAFE_SNPRINTF();
    2559. 

  2559. 

  2560.     ret = snprintf( p, n, "\n%sRSA key size  : %d bits\n", prefix,
    2561. 

  2561.                    (int) crt->rsa.N.n * (int) sizeof( unsigned long ) * 8 );
    2562. 

  2562.     SAFE_SNPRINTF();
    2563. 

  2563. 

  2564.     return( (int) ( size - n ) );
    2565. 

  2565. }
    2566. 

  2566. 

  2567. /* Compare a given OID string with an OID x509_buf * */
    2568. 

  2568. #define OID_CMP(oid_str, oid_buf) \
    2569. 

  2569.         ( ( OID_SIZE(oid_str) == (oid_buf)->len ) && \
    2570. 

  2570.                 memcmp( (oid_str), (oid_buf)->p, (oid_buf)->len) == 0)
    2571. 

  2571. 

  2572. /*
    2573. 

  2573.  * Return an informational string describing the given OID
    2574. 

  2574.  */
    2575. 

  2575. const char *x509_oid_get_description( x509_buf *oid )
    2576. 

  2576. {
    2577. 

  2577.     if ( oid == NULL )
    2578. 

  2578.         return ( NULL );
    2579. 

  2579.     
    2580. 

  2580.     else if( OID_CMP( OID_SERVER_AUTH, oid ) )
    2581. 

  2581.         return( STRING_SERVER_AUTH );
    2582. 

  2582.     
    2583. 

  2583.     else if( OID_CMP( OID_CLIENT_AUTH, oid ) )
    2584. 

  2584.         return( STRING_CLIENT_AUTH );
    2585. 

  2585.     
    2586. 

  2586.     else if( OID_CMP( OID_CODE_SIGNING, oid ) )
    2587. 

  2587.         return( STRING_CODE_SIGNING );
    2588. 

  2588.     
    2589. 

  2589.     else if( OID_CMP( OID_EMAIL_PROTECTION, oid ) )
    2590. 

  2590.         return( STRING_EMAIL_PROTECTION );
    2591. 

  2591.     
    2592. 

  2592.     else if( OID_CMP( OID_TIME_STAMPING, oid ) )
    2593. 

  2593.         return( STRING_TIME_STAMPING );
    2594. 

  2594. 

  2595.     else if( OID_CMP( OID_OCSP_SIGNING, oid ) )
    2596. 

  2596.         return( STRING_OCSP_SIGNING );
    2597. 

  2597. 

  2598.     return( NULL );
    2599. 

  2599. }
    2600. 

  2600. 

  2601. /* Return the x.y.z.... style numeric string for the given OID */
    2602. 

  2602. int x509_oid_get_numeric_string( char *buf, size_t size, x509_buf *oid )
    2603. 

  2603. {
    2604. 

  2604.     int ret;
    2605. 

  2605.     size_t i, n;
    2606. 

  2606.     unsigned int value;
    2607. 

  2607.     char *p;
    2608. 

  2608. 

  2609.     p = buf;
    2610. 

  2610.     n = size;
    2611. 

  2611. 

  2612.     /* First byte contains first two dots */
    2613. 

  2613.     if( oid->len > 0 )
    2614. 

  2614.     {
    2615. 

  2615.         ret = snprintf( p, n, "%d.%d", oid->p[0]/40, oid->p[0]%40 );
    2616. 

  2616.         SAFE_SNPRINTF();
    2617. 

  2617.     }
    2618. 

  2618. 

  2619.     /* TODO: value can overflow in value. */
    2620. 

  2620.     value = 0;
    2621. 

  2621.     for( i = 1; i < oid->len; i++ )
    2622. 

  2622.     {
    2623. 

  2623.         value <<= 7;
    2624. 

  2624.         value += oid->p[i] & 0x7F;
    2625. 

  2625. 

  2626.         if( !( oid->p[i] & 0x80 ) )
    2627. 

  2627.         {
    2628. 

  2628.             /* Last byte */
    2629. 

  2629.             ret = snprintf( p, n, ".%d", value );
    2630. 

  2630.             SAFE_SNPRINTF();
    2631. 

  2631.             value = 0;
    2632. 

  2632.         }
    2633. 

  2633.     }
    2634. 

  2634. 

  2635.     return( (int) ( size - n ) );
    2636. 

  2636. }
    2637. 

  2637. 

  2638. /*
    2639. 

  2639.  * Return an informational string about the CRL.
    2640. 

  2640.  */
    2641. 

  2641. int x509parse_crl_info( char *buf, size_t size, const char *prefix,
    2642. 

  2642.                         const x509_crl *crl )
    2643. 

  2643. {
    2644. 

  2644.     int ret;
    2645. 

  2645.     size_t i, n, nr;
    2646. 

  2646.     char *p;
    2647. 

  2647.     const x509_crl_entry *entry;
    2648. 

  2648. 

  2649.     p = buf;
    2650. 

  2650.     n = size;
    2651. 

  2651. 

  2652.     ret = snprintf( p, n, "%sCRL version   : %d",
    2653. 

  2653.                                prefix, crl->version );
    2654. 

  2654.     SAFE_SNPRINTF();
    2655. 

  2655. 

  2656.     ret = snprintf( p, n, "\n%sissuer name   : ", prefix );
    2657. 

  2657.     SAFE_SNPRINTF();
    2658. 

  2658.     ret = x509parse_dn_gets( p, n, &crl->issuer );
    2659. 

  2659.     SAFE_SNPRINTF();
    2660. 

  2660. 

  2661.     ret = snprintf( p, n, "\n%sthis update   : " \
    2662. 

  2662.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2663. 

  2663.                    crl->this_update.year, crl->this_update.mon,
    2664. 

  2664.                    crl->this_update.day,  crl->this_update.hour,
    2665. 

  2665.                    crl->this_update.min,  crl->this_update.sec );
    2666. 

  2666.     SAFE_SNPRINTF();
    2667. 

  2667. 

  2668.     ret = snprintf( p, n, "\n%snext update   : " \
    2669. 

  2669.                    "%04d-%02d-%02d %02d:%02d:%02d", prefix,
    2670. 

  2670.                    crl->next_update.year, crl->next_update.mon,
    2671. 

  2671.                    crl->next_update.day,  crl->next_update.hour,
    2672. 

  2672.                    crl->next_update.min,  crl->next_update.sec );
    2673. 

  2673.     SAFE_SNPRINTF();
    2674. 

  2674. 

  2675.     entry = &crl->entry;
    2676. 

  2676. 

  2677.     ret = snprintf( p, n, "\n%sRevoked certificates:",
    2678. 

  2678.                                prefix );
    2679. 

  2679.     SAFE_SNPRINTF();
    2680. 

  2680. 

  2681.     while( entry != NULL && entry->raw.len != 0 )
    2682. 

  2682.     {
    2683. 

  2683.         ret = snprintf( p, n, "\n%sserial number: ",
    2684. 

  2684.                                prefix );
    2685. 

  2685.         SAFE_SNPRINTF();
    2686. 

  2686. 

  2687.         nr = ( entry->serial.len <= 32 )
    2688. 

  2688.             ? entry->serial.len  : 32;
    2689. 

  2689. 

  2690.         for( i = 0; i < nr; i++ )
    2691. 

  2691.         {
    2692. 

  2692.             ret = snprintf( p, n, "%02X%s",
    2693. 

  2693.                     entry->serial.p[i], ( i < nr - 1 ) ? ":" : "" );
    2694. 

  2694.             SAFE_SNPRINTF();
    2695. 

  2695.         }
    2696. 

  2696.         
    2697. 

  2697.         ret = snprintf( p, n, " revocation date: " \
    2698. 

  2698.                    "%04d-%02d-%02d %02d:%02d:%02d",
    2699. 

  2699.                    entry->revocation_date.year, entry->revocation_date.mon,
    2700. 

  2700.                    entry->revocation_date.day,  entry->revocation_date.hour,
    2701. 

  2701.                    entry->revocation_date.min,  entry->revocation_date.sec );
    2702. 

  2702.     SAFE_SNPRINTF();
    2703. 

  2703. 

  2704.         entry = entry->next;
    2705. 

  2705.     }
    2706. 

  2706. 

  2707.     ret = snprintf( p, n, "\n%ssigned using  : RSA+", prefix );
    2708. 

  2708.     SAFE_SNPRINTF();
    2709. 

  2709. 

  2710.     switch( crl->sig_alg )
    2711. 

  2711.     {
    2712. 

  2712.         case SIG_RSA_MD2    : ret = snprintf( p, n, "MD2"    ); break;
    2713. 

  2713.         case SIG_RSA_MD4    : ret = snprintf( p, n, "MD4"    ); break;
    2714. 

  2714.         case SIG_RSA_MD5    : ret = snprintf( p, n, "MD5"    ); break;
    2715. 

  2715.         case SIG_RSA_SHA1   : ret = snprintf( p, n, "SHA1"   ); break;
    2716. 

  2716.         case SIG_RSA_SHA224 : ret = snprintf( p, n, "SHA224" ); break;
    2717. 

  2717.         case SIG_RSA_SHA256 : ret = snprintf( p, n, "SHA256" ); break;
    2718. 

  2718.         case SIG_RSA_SHA384 : ret = snprintf( p, n, "SHA384" ); break;
    2719. 

  2719.         case SIG_RSA_SHA512 : ret = snprintf( p, n, "SHA512" ); break;
    2720. 

  2720.         default: ret = snprintf( p, n, "???"  ); break;
    2721. 

  2721.     }
    2722. 

  2722.     SAFE_SNPRINTF();
    2723. 

  2723. 

  2724.     ret = snprintf( p, n, "\n" );
    2725. 

  2725.     SAFE_SNPRINTF();
    2726. 

  2726. 

  2727.     return( (int) ( size - n ) );
    2728. 

  2728. }
    2729. 

  2729. 

  2730. /*
    2731. 

  2731.  * Return 0 if the x509_time is still valid, or 1 otherwise.
    2732. 

  2732.  */
    2733. 

  2733. int x509parse_time_expired( const x509_time *to )
    2734. 

  2734. {
    2735. 

  2735.     struct tm *lt;
    2736. 

  2736.     time_t tt;
    2737. 

  2737. 

  2738.     tt = time( NULL );
    2739. 

  2739.     lt = localtime( &tt );
    2740. 

  2740. 

  2741.     if( lt->tm_year  > to->year - 1900 )
    2742. 

  2742.         return( 1 );
    2743. 

  2743. 

  2744.     if( lt->tm_year == to->year - 1900 &&
    2745. 

  2745.         lt->tm_mon   > to->mon  - 1 )
    2746. 

  2746.         return( 1 );
    2747. 

  2747. 

  2748.     if( lt->tm_year == to->year - 1900 &&
    2749. 

  2749.         lt->tm_mon  == to->mon  - 1    &&
    2750. 

  2750.         lt->tm_mday  > to->day )
    2751. 

  2751.         return( 1 );
    2752. 

  2752. 

  2753.     if( lt->tm_year == to->year - 1900 &&
    2754. 

  2754.         lt->tm_mon  == to->mon  - 1    &&
    2755. 

  2755.         lt->tm_mday == to->day         &&
    2756. 

  2756.         lt->tm_hour  > to->hour - 1)
    2757. 

  2757.         return( 1 );
    2758. 

  2758. 

  2759.     if( lt->tm_year == to->year - 1900 &&
    2760. 

  2760.         lt->tm_mon  == to->mon  - 1    &&
    2761. 

  2761.         lt->tm_mday == to->day         &&
    2762. 

  2762.         lt->tm_hour == to->hour - 1    &&
    2763. 

  2763.         lt->tm_min   > to->min  - 1 )
    2764. 

  2764.         return( 1 );
    2765. 

  2765. 

  2766.     if( lt->tm_year == to->year - 1900 &&
    2767. 

  2767.         lt->tm_mon  == to->mon  - 1    &&
    2768. 

  2768.         lt->tm_mday == to->day         &&
    2769. 

  2769.         lt->tm_hour == to->hour - 1    &&
    2770. 

  2770.         lt->tm_min  == to->min  - 1    &&
    2771. 

  2771.         lt->tm_sec   > to->sec  - 1 )
    2772. 

  2772.         return( 1 );
    2773. 

  2773. 

  2774.     return( 0 );
    2775. 

  2775. }
    2776. 

  2776. 

  2777. /*
    2778. 

  2778.  * Return 1 if the certificate is revoked, or 0 otherwise.
    2779. 

  2779.  */
    2780. 

  2780. int x509parse_revoked( const x509_cert *crt, const x509_crl *crl )
    2781. 

  2781. {
    2782. 

  2782.     const x509_crl_entry *cur = &crl->entry;
    2783. 

  2783. 

  2784.     while( cur != NULL && cur->serial.len != 0 )
    2785. 

  2785.     {
    2786. 

  2786.         if( crt->serial.len == cur->serial.len &&
    2787. 

  2787.             memcmp( crt->serial.p, cur->serial.p, crt->serial.len ) == 0 )
    2788. 

  2788.         {
    2789. 

  2789.             if( x509parse_time_expired( &cur->revocation_date ) )
    2790. 

  2790.                 return( 1 );
    2791. 

  2791.         }
    2792. 

  2792. 

  2793.         cur = cur->next;
    2794. 

  2794.     }
    2795. 

  2795. 

  2796.     return( 0 );
    2797. 

  2797. }
    2798. 

  2798. 

  2799. /*
    2800. 

  2800.  * Wrapper for x509 hashes.
    2801. 

  2801.  *
    2802. 

  2802.  * \param out   Buffer to receive the hash (Should be at least 64 bytes)
    2803. 

  2803.  */
    2804. 

  2804. static void x509_hash( const unsigned char *in, size_t len, int alg,
    2805. 

  2805.                        unsigned char *out )
    2806. 

  2806. {
    2807. 

  2807.     switch( alg )
    2808. 

  2808.     {
    2809. 

  2809. #if defined(POLARSSL_MD2_C)
    2810. 

  2810.         case SIG_RSA_MD2    :  md2( in, len, out ); break;
    2811. 

  2811. #endif
    2812. 

  2812. #if defined(POLARSSL_MD4_C)
    2813. 

  2813.         case SIG_RSA_MD4    :  md4( in, len, out ); break;
    2814. 

  2814. #endif
    2815. 

  2815. #if defined(POLARSSL_MD5_C)
    2816. 

  2816.         case SIG_RSA_MD5    :  md5( in, len, out ); break;
    2817. 

  2817. #endif
    2818. 

  2818. #if defined(POLARSSL_SHA1_C)
    2819. 

  2819.         case SIG_RSA_SHA1   : sha1( in, len, out ); break;
    2820. 

  2820. #endif
    2821. 

  2821. #if defined(POLARSSL_SHA2_C)
    2822. 

  2822.         case SIG_RSA_SHA224 : sha2( in, len, out, 1 ); break;
    2823. 

  2823.         case SIG_RSA_SHA256 : sha2( in, len, out, 0 ); break;
    2824. 

  2824. #endif
    2825. 

  2825. #if defined(POLARSSL_SHA4_C)
    2826. 

  2826.         case SIG_RSA_SHA384 : sha4( in, len, out, 1 ); break;
    2827. 

  2827.         case SIG_RSA_SHA512 : sha4( in, len, out, 0 ); break;
    2828. 

  2828. #endif
    2829. 

  2829.         default:
    2830. 

  2830.             memset( out, '\xFF', 64 );
    2831. 

  2831.             break;
    2832. 

  2832.     }
    2833. 

  2833. }
    2834. 

  2834. 

  2835. /*
    2836. 

  2836.  * Check that the given certificate is valid accoring to the CRL.
    2837. 

  2837.  */
    2838. 

  2838. static int x509parse_verifycrl(x509_cert *crt, x509_cert *ca,
    2839. 

  2839.         x509_crl *crl_list)
    2840. 

  2840. {
    2841. 

  2841.     int flags = 0;
    2842. 

  2842.     int hash_id;
    2843. 

  2843.     unsigned char hash[64];
    2844. 

  2844. 

  2845.     /*
    2846. 

  2846.      * TODO: What happens if no CRL is present?
    2847. 

  2847.      * Suggestion: Revocation state should be unknown if no CRL is present.
    2848. 

  2848.      * For backwards compatibility this is not yet implemented.
    2849. 

  2849.      */
    2850. 

  2850. 

  2851.     while( ca != NULL && crl_list != NULL && crl_list->version != 0 )
    2852. 

  2852.     {
    2853. 

  2853.         if( crl_list->issuer_raw.len != ca->subject_raw.len ||
    2854. 

  2854.             memcmp( crl_list->issuer_raw.p, ca->subject_raw.p,
    2855. 

  2855.                     crl_list->issuer_raw.len ) != 0 )
    2856. 

  2856.         {
    2857. 

  2857.             crl_list = crl_list->next;
    2858. 

  2858.             continue;
    2859. 

  2859.         }
    2860. 

  2860. 

  2861.         /*
    2862. 

  2862.          * Check if CRL is correctly signed by the trusted CA
    2863. 

  2863.          */
    2864. 

  2864.         hash_id = crl_list->sig_alg;
    2865. 

  2865. 

  2866.         x509_hash( crl_list->tbs.p, crl_list->tbs.len, hash_id, hash );
    2867. 

  2867. 

  2868.         if( !rsa_pkcs1_verify( &ca->rsa, RSA_PUBLIC, hash_id,
    2869. 

  2869.                               0, hash, crl_list->sig.p ) == 0 )
    2870. 

  2870.         {
    2871. 

  2871.             /*
    2872. 

  2872.              * CRL is not trusted
    2873. 

  2873.              */
    2874. 

  2874.             flags |= BADCRL_NOT_TRUSTED;
    2875. 

  2875.             break;
    2876. 

  2876.         }
    2877. 

  2877. 

  2878.         /*
    2879. 

  2879.          * Check for validity of CRL (Do not drop out)
    2880. 

  2880.          */
    2881. 

  2881.         if( x509parse_time_expired( &crl_list->next_update ) )
    2882. 

  2882.             flags |= BADCRL_EXPIRED;
    2883. 

  2883. 

  2884.         /*
    2885. 

  2885.          * Check if certificate is revoked
    2886. 

  2886.          */
    2887. 

  2887.         if( x509parse_revoked(crt, crl_list) )
    2888. 

  2888.         {
    2889. 

  2889.             flags |= BADCERT_REVOKED;
    2890. 

  2890.             break;
    2891. 

  2891.         }
    2892. 

  2892. 

  2893.         crl_list = crl_list->next;
    2894. 

  2894.     }
    2895. 

  2895.     return flags;
    2896. 

  2896. }
    2897. 

  2897. 

  2898. /*
    2899. 

  2899.  * Verify the certificate validity
    2900. 

  2900.  */
    2901. 

  2901. int x509parse_verify( x509_cert *crt,
    2902. 

  2902.                       x509_cert *trust_ca,
    2903. 

  2903.                       x509_crl *ca_crl,
    2904. 

  2904.                       const char *cn, int *flags,
    2905. 

  2905.                       int (*f_vrfy)(void *, x509_cert *, int, int),
    2906. 

  2906.                       void *p_vrfy )
    2907. 

  2907. {
    2908. 

  2908.     size_t cn_len;
    2909. 

  2909.     int hash_id;
    2910. 

  2910.     int pathlen;
    2911. 

  2911.     x509_cert *parent;
    2912. 

  2912.     x509_name *name;
    2913. 

  2913.     unsigned char hash[64];
    2914. 

  2914. 

  2915.     *flags = 0;
    2916. 

  2916. 

  2917.     if( x509parse_time_expired( &crt->valid_to ) )
    2918. 

  2918.         *flags = BADCERT_EXPIRED;
    2919. 

  2919. 

  2920.     if( cn != NULL )
    2921. 

  2921.     {
    2922. 

  2922.         name = &crt->subject;
    2923. 

  2923.         cn_len = strlen( cn );
    2924. 

  2924. 

  2925.         while( name != NULL )
    2926. 

  2926.         {
    2927. 

  2927.             if( memcmp( name->oid.p, OID_CN,  3 ) == 0 &&
    2928. 

  2928.                 memcmp( name->val.p, cn, cn_len ) == 0 &&
    2929. 

  2929.                 name->val.len == cn_len )
    2930. 

  2930.                 break;
    2931. 

  2931. 

  2932.             name = name->next;
    2933. 

  2933.         }
    2934. 

  2934. 

  2935.         if( name == NULL )
    2936. 

  2936.             *flags |= BADCERT_CN_MISMATCH;
    2937. 

  2937.     }
    2938. 

  2938. 

  2939.     /*
    2940. 

  2940.      * Iterate upwards in the given cert chain,
    2941. 

  2941.      * ignoring any upper cert with CA != TRUE.
    2942. 

  2942.      */
    2943. 

  2943.     parent = crt->next;
    2944. 

  2944. 

  2945.     pathlen = 1;
    2946. 

  2946. 

  2947.     while( parent != NULL && parent->version != 0 )
    2948. 

  2948.     {
    2949. 

  2949.         if( parent->ca_istrue == 0 ||
    2950. 

  2950.             crt->issuer_raw.len != parent->subject_raw.len ||
    2951. 

  2951.             memcmp( crt->issuer_raw.p, parent->subject_raw.p,
    2952. 

  2952.                     crt->issuer_raw.len ) != 0 )
    2953. 

  2953.         {
    2954. 

  2954.             parent = parent->next;
    2955. 

  2955.             continue;
    2956. 

  2956.         }
    2957. 

  2957. 

  2958.         hash_id = crt->sig_alg;
    2959. 

  2959. 

  2960.         x509_hash( crt->tbs.p, crt->tbs.len, hash_id, hash );
    2961. 

  2961. 

  2962.         if( rsa_pkcs1_verify( &parent->rsa, RSA_PUBLIC, hash_id, 0, hash,
    2963. 

  2963.                     crt->sig.p ) != 0 )
    2964. 

  2964.             *flags |= BADCERT_NOT_TRUSTED;
    2965. 

  2965.         
    2966. 

  2966.         /* Check trusted CA's CRL for the given crt */
    2967. 

  2967.         *flags |= x509parse_verifycrl(crt, parent, ca_crl);
    2968. 

  2968. 

  2969.         /* crt is verified to be a child of the parent cur, call verify callback */
    2970. 

  2970.         if( NULL != f_vrfy )
    2971. 

  2971.         {
    2972. 

  2972.             if( f_vrfy( p_vrfy, crt, pathlen - 1, ( *flags == 0 ) ) != 0 )
    2973. 

  2973.                 return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    2974. 

  2974.             else
    2975. 

  2975.                 *flags = 0;
    2976. 

  2976.         }
    2977. 

  2977.         else if( *flags != 0 )
    2978. 

  2978.             return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    2979. 

  2979. 

  2980.         pathlen++;
    2981. 

  2981. 

  2982.         crt = parent;
    2983. 

  2983.         parent = crt->next;
    2984. 

  2984.     }
    2985. 

  2985. 

  2986.     /*
    2987. 

  2987.      * Attempt to validate topmost cert with our CA chain.
    2988. 

  2988.      */
    2989. 

  2989.     *flags |= BADCERT_NOT_TRUSTED;
    2990. 

  2990. 

  2991.     while( trust_ca != NULL && trust_ca->version != 0 )
    2992. 

  2992.     {
    2993. 

  2993.         if( crt->issuer_raw.len != trust_ca->subject_raw.len ||
    2994. 

  2994.             memcmp( crt->issuer_raw.p, trust_ca->subject_raw.p,
    2995. 

  2995.                     crt->issuer_raw.len ) != 0 )
    2996. 

  2996.         {
    2997. 

  2997.             trust_ca = trust_ca->next;
    2998. 

  2998.             continue;
    2999. 

  2999.         }
    3000. 

  3000. 

  3001.         if( trust_ca->max_pathlen > 0 &&
    3002. 

  3002.             trust_ca->max_pathlen < pathlen )
    3003. 

  3003.             break;
    3004. 

  3004. 

  3005.         hash_id = crt->sig_alg;
    3006. 

  3006. 

  3007.         x509_hash( crt->tbs.p, crt->tbs.len, hash_id, hash );
    3008. 

  3008. 

  3009.         if( rsa_pkcs1_verify( &trust_ca->rsa, RSA_PUBLIC, hash_id,
    3010. 

  3010.                               0, hash, crt->sig.p ) == 0 )
    3011. 

  3011.         {
    3012. 

  3012.             /*
    3013. 

  3013.              * cert. is signed by a trusted CA
    3014. 

  3014.              */
    3015. 

  3015.             *flags &= ~BADCERT_NOT_TRUSTED;
    3016. 

  3016.             break;
    3017. 

  3017.         }
    3018. 

  3018. 

  3019.         trust_ca = trust_ca->next;
    3020. 

  3020.     }
    3021. 

  3021. 

  3022.     /* Check trusted CA's CRL for the given crt */
    3023. 

  3023.     *flags |= x509parse_verifycrl( crt, trust_ca, ca_crl );
    3024. 

  3024. 

  3025.     /* Verification succeeded, call callback on top cert */
    3026. 

  3026.     if( NULL != f_vrfy )
    3027. 

  3027.     {
    3028. 

  3028.         if( f_vrfy(p_vrfy, crt, pathlen-1, ( *flags == 0 ) ) != 0 ) 
    3029. 

  3029.             return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    3030. 

  3030.         else
    3031. 

  3031.             *flags = 0;
    3032. 

  3032.     }
    3033. 

  3033.     else if( *flags != 0 )
    3034. 

  3034.         return( POLARSSL_ERR_X509_CERT_VERIFY_FAILED );
    3035. 

  3035. 

  3036.     return( 0 );
    3037. 

  3037. }
    3038. 

  3038. 

  3039. /*
    3040. 

  3040.  * Unallocate all certificate data
    3041. 

  3041.  */
    3042. 

  3042. void x509_free( x509_cert *crt )
    3043. 

  3043. {
    3044. 

  3044.     x509_cert *cert_cur = crt;
    3045. 

  3045.     x509_cert *cert_prv;
    3046. 

  3046.     x509_name *name_cur;
    3047. 

  3047.     x509_name *name_prv;
    3048. 

  3048.     x509_sequence *seq_cur;
    3049. 

  3049.     x509_sequence *seq_prv;
    3050. 

  3050. 

  3051.     if( crt == NULL )
    3052. 

  3052.         return;
    3053. 

  3053. 

  3054.     do
    3055. 

  3055.     {
    3056. 

  3056.         rsa_free( &cert_cur->rsa );
    3057. 

  3057. 

  3058.         name_cur = cert_cur->issuer.next;
    3059. 

  3059.         while( name_cur != NULL )
    3060. 

  3060.         {
    3061. 

  3061.             name_prv = name_cur;
    3062. 

  3062.             name_cur = name_cur->next;
    3063. 

  3063.             memset( name_prv, 0, sizeof( x509_name ) );
    3064. 

  3064.             free( name_prv );
    3065. 

  3065.         }
    3066. 

  3066. 

  3067.         name_cur = cert_cur->subject.next;
    3068. 

  3068.         while( name_cur != NULL )
    3069. 

  3069.         {
    3070. 

  3070.             name_prv = name_cur;
    3071. 

  3071.             name_cur = name_cur->next;
    3072. 

  3072.             memset( name_prv, 0, sizeof( x509_name ) );
    3073. 

  3073.             free( name_prv );
    3074. 

  3074.         }
    3075. 

  3075. 

  3076.         seq_cur = cert_cur->ext_key_usage.next;
    3077. 

  3077.         while( seq_cur != NULL )
    3078. 

  3078.         {
    3079. 

  3079.             seq_prv = seq_cur;
    3080. 

  3080.             seq_cur = seq_cur->next;
    3081. 

  3081.             memset( seq_prv, 0, sizeof( x509_sequence ) );
    3082. 

  3082.             free( seq_prv );
    3083. 

  3083.         }
    3084. 

  3084. 

  3085.         if( cert_cur->raw.p != NULL )
    3086. 

  3086.         {
    3087. 

  3087.             memset( cert_cur->raw.p, 0, cert_cur->raw.len );
    3088. 

  3088.             free( cert_cur->raw.p );
    3089. 

  3089.         }
    3090. 

  3090. 

  3091.         cert_cur = cert_cur->next;
    3092. 

  3092.     }
    3093. 

  3093.     while( cert_cur != NULL );
    3094. 

  3094. 

  3095.     cert_cur = crt;
    3096. 

  3096.     do
    3097. 

  3097.     {
    3098. 

  3098.         cert_prv = cert_cur;
    3099. 

  3099.         cert_cur = cert_cur->next;
    3100. 

  3100. 

  3101.         memset( cert_prv, 0, sizeof( x509_cert ) );
    3102. 

  3102.         if( cert_prv != crt )
    3103. 

  3103.             free( cert_prv );
    3104. 

  3104.     }
    3105. 

  3105.     while( cert_cur != NULL );
    3106. 

  3106. }
    3107. 

  3107. 

  3108. /*
    3109. 

  3109.  * Unallocate all CRL data
    3110. 

  3110.  */
    3111. 

  3111. void x509_crl_free( x509_crl *crl )
    3112. 

  3112. {
    3113. 

  3113.     x509_crl *crl_cur = crl;
    3114. 

  3114.     x509_crl *crl_prv;
    3115. 

  3115.     x509_name *name_cur;
    3116. 

  3116.     x509_name *name_prv;
    3117. 

  3117.     x509_crl_entry *entry_cur;
    3118. 

  3118.     x509_crl_entry *entry_prv;
    3119. 

  3119. 

  3120.     if( crl == NULL )
    3121. 

  3121.         return;
    3122. 

  3122. 

  3123.     do
    3124. 

  3124.     {
    3125. 

  3125.         name_cur = crl_cur->issuer.next;
    3126. 

  3126.         while( name_cur != NULL )
    3127. 

  3127.         {
    3128. 

  3128.             name_prv = name_cur;
    3129. 

  3129.             name_cur = name_cur->next;
    3130. 

  3130.             memset( name_prv, 0, sizeof( x509_name ) );
    3131. 

  3131.             free( name_prv );
    3132. 

  3132.         }
    3133. 

  3133. 

  3134.         entry_cur = crl_cur->entry.next;
    3135. 

  3135.         while( entry_cur != NULL )
    3136. 

  3136.         {
    3137. 

  3137.             entry_prv = entry_cur;
    3138. 

  3138.             entry_cur = entry_cur->next;
    3139. 

  3139.             memset( entry_prv, 0, sizeof( x509_crl_entry ) );
    3140. 

  3140.             free( entry_prv );
    3141. 

  3141.         }
    3142. 

  3142. 

  3143.         if( crl_cur->raw.p != NULL )
    3144. 

  3144.         {
    3145. 

  3145.             memset( crl_cur->raw.p, 0, crl_cur->raw.len );
    3146. 

  3146.             free( crl_cur->raw.p );
    3147. 

  3147.         }
    3148. 

  3148. 

  3149.         crl_cur = crl_cur->next;
    3150. 

  3150.     }
    3151. 

  3151.     while( crl_cur != NULL );
    3152. 

  3152. 

  3153.     crl_cur = crl;
    3154. 

  3154.     do
    3155. 

  3155.     {
    3156. 

  3156.         crl_prv = crl_cur;
    3157. 

  3157.         crl_cur = crl_cur->next;
    3158. 

  3158. 

  3159.         memset( crl_prv, 0, sizeof( x509_crl ) );
    3160. 

  3160.         if( crl_prv != crl )
    3161. 

  3161.             free( crl_prv );
    3162. 

  3162.     }
    3163. 

  3163.     while( crl_cur != NULL );
    3164. 

  3164. }
    3165. 

  3165. 

  3166. #if defined(POLARSSL_SELF_TEST)
    3167. 

  3167. 

  3168. #include "polarssl/certs.h"
    3169. 

  3169. 

  3170. /*
    3171. 

  3171.  * Checkup routine
    3172. 

  3172.  */
    3173. 

  3173. int x509_self_test( int verbose )
    3174. 

  3174. {
    3175. 

  3175. #if defined(POLARSSL_CERTS_C) && defined(POLARSSL_MD5_C)
    3176. 

  3176.     int ret;
    3177. 

  3177.     int flags;
    3178. 

  3178.     size_t i, j;
    3179. 

  3179.     x509_cert cacert;
    3180. 

  3180.     x509_cert clicert;
    3181. 

  3181.     rsa_context rsa;
    3182. 

  3182. #if defined(POLARSSL_DHM_C)
    3183. 

  3183.     dhm_context dhm;
    3184. 

  3184. #endif
    3185. 

  3185. 

  3186.     if( verbose != 0 )
    3187. 

  3187.         printf( "  X.509 certificate load: " );
    3188. 

  3188. 

  3189.     memset( &clicert, 0, sizeof( x509_cert ) );
    3190. 

  3190. 

  3191.     ret = x509parse_crt( &clicert, (unsigned char *) test_cli_crt,
    3192. 

  3192.                          strlen( test_cli_crt ) );
    3193. 

  3193.     if( ret != 0 )
    3194. 

  3194.     {
    3195. 

  3195.         if( verbose != 0 )
    3196. 

  3196.             printf( "failed\n" );
    3197. 

  3197. 

  3198.         return( ret );
    3199. 

  3199.     }
    3200. 

  3200. 

  3201.     memset( &cacert, 0, sizeof( x509_cert ) );
    3202. 

  3202. 

  3203.     ret = x509parse_crt( &cacert, (unsigned char *) test_ca_crt,
    3204. 

  3204.                          strlen( test_ca_crt ) );
    3205. 

  3205.     if( ret != 0 )
    3206. 

  3206.     {
    3207. 

  3207.         if( verbose != 0 )
    3208. 

  3208.             printf( "failed\n" );
    3209. 

  3209. 

  3210.         return( ret );
    3211. 

  3211.     }
    3212. 

  3212. 

  3213.     if( verbose != 0 )
    3214. 

  3214.         printf( "passed\n  X.509 private key load: " );
    3215. 

  3215. 

  3216.     i = strlen( test_ca_key );
    3217. 

  3217.     j = strlen( test_ca_pwd );
    3218. 

  3218. 

  3219.     rsa_init( &rsa, RSA_PKCS_V15, 0 );
    3220. 

  3220. 

  3221.     if( ( ret = x509parse_key( &rsa,
    3222. 

  3222.                     (unsigned char *) test_ca_key, i,
    3223. 

  3223.                     (unsigned char *) test_ca_pwd, j ) ) != 0 )
    3224. 

  3224.     {
    3225. 

  3225.         if( verbose != 0 )
    3226. 

  3226.             printf( "failed\n" );
    3227. 

  3227. 

  3228.         return( ret );
    3229. 

  3229.     }
    3230. 

  3230. 

  3231.     if( verbose != 0 )
    3232. 

  3232.         printf( "passed\n  X.509 signature verify: ");
    3233. 

  3233. 

  3234.     ret = x509parse_verify( &clicert, &cacert, NULL, "PolarSSL Client 2", &flags, NULL, NULL );
    3235. 

  3235.     if( ret != 0 )
    3236. 

  3236.     {
    3237. 

  3237.         printf("%02x", flags);
    3238. 

  3238.         if( verbose != 0 )
    3239. 

  3239.             printf( "failed\n" );
    3240. 

  3240. 

  3241.         return( ret );
    3242. 

  3242.     }
    3243. 

  3243. 

  3244. #if defined(POLARSSL_DHM_C)
    3245. 

  3245.     if( verbose != 0 )
    3246. 

  3246.         printf( "passed\n  X.509 DHM parameter load: " );
    3247. 

  3247. 

  3248.     i = strlen( test_dhm_params );
    3249. 

  3249.     j = strlen( test_ca_pwd );
    3250. 

  3250. 

  3251.     if( ( ret = x509parse_dhm( &dhm, (unsigned char *) test_dhm_params, i ) ) != 0 )
    3252. 

  3252.     {
    3253. 

  3253.         if( verbose != 0 )
    3254. 

  3254.             printf( "failed\n" );
    3255. 

  3255. 

  3256.         return( ret );
    3257. 

  3257.     }
    3258. 

  3258. 

  3259.     if( verbose != 0 )
    3260. 

  3260.         printf( "passed\n\n" );
    3261. 

  3261. #endif
    3262. 

  3262. 

  3263.     x509_free( &cacert  );
    3264. 

  3264.     x509_free( &clicert );
    3265. 

  3265.     rsa_free( &rsa );
    3266. 

  3266. #if defined(POLARSSL_DHM_C)
    3267. 

  3267.     dhm_free( &dhm );
    3268. 

  3268. #endif
    3269. 

  3269. 

  3270.     return( 0 );
    3271. 

  3271. #else
    3272. 

  3272.     ((void) verbose);
    3273. 

  3273.     return( POLARSSL_ERR_X509_FEATURE_UNAVAILABLE );
    3274. 

  3274. #endif
    3275. 

  3275. }
    3276. 

  3276. 

  3277. #endif
    3278. 

  3278. 

  3279. #endif
    3280.