160662d10Schristos /*
2*1dcdf01fSchristos * Copyright 2000-2018 The OpenSSL Project Authors. All Rights Reserved.
360662d10Schristos *
4*1dcdf01fSchristos * Licensed under the OpenSSL license (the "License"). You may not use
5*1dcdf01fSchristos * this file except in compliance with the License. You can obtain a copy
6*1dcdf01fSchristos * in the file LICENSE in the source distribution or at
7*1dcdf01fSchristos * https://www.openssl.org/source/license.html
860662d10Schristos */
960662d10Schristos
1060662d10Schristos #include <stddef.h>
1160662d10Schristos #include <openssl/asn1.h>
1260662d10Schristos #include <openssl/objects.h>
1360662d10Schristos #include <openssl/err.h>
1460662d10Schristos #include <openssl/asn1t.h>
1560662d10Schristos #include <string.h>
16*1dcdf01fSchristos #include "asn1_local.h"
1760662d10Schristos
18*1dcdf01fSchristos static int asn1_item_embed_new(ASN1_VALUE **pval, const ASN1_ITEM *it,
19*1dcdf01fSchristos int embed);
20*1dcdf01fSchristos static int asn1_primitive_new(ASN1_VALUE **pval, const ASN1_ITEM *it,
21*1dcdf01fSchristos int embed);
2260662d10Schristos static void asn1_item_clear(ASN1_VALUE **pval, const ASN1_ITEM *it);
23*1dcdf01fSchristos static int asn1_template_new(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt);
2460662d10Schristos static void asn1_template_clear(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt);
2560662d10Schristos static void asn1_primitive_clear(ASN1_VALUE **pval, const ASN1_ITEM *it);
2660662d10Schristos
ASN1_item_new(const ASN1_ITEM * it)2760662d10Schristos ASN1_VALUE *ASN1_item_new(const ASN1_ITEM *it)
2860662d10Schristos {
2960662d10Schristos ASN1_VALUE *ret = NULL;
3060662d10Schristos if (ASN1_item_ex_new(&ret, it) > 0)
3160662d10Schristos return ret;
3260662d10Schristos return NULL;
3360662d10Schristos }
3460662d10Schristos
3560662d10Schristos /* Allocate an ASN1 structure */
3660662d10Schristos
ASN1_item_ex_new(ASN1_VALUE ** pval,const ASN1_ITEM * it)3760662d10Schristos int ASN1_item_ex_new(ASN1_VALUE **pval, const ASN1_ITEM *it)
3860662d10Schristos {
39*1dcdf01fSchristos return asn1_item_embed_new(pval, it, 0);
4060662d10Schristos }
4160662d10Schristos
asn1_item_embed_new(ASN1_VALUE ** pval,const ASN1_ITEM * it,int embed)42*1dcdf01fSchristos int asn1_item_embed_new(ASN1_VALUE **pval, const ASN1_ITEM *it, int embed)
4360662d10Schristos {
4460662d10Schristos const ASN1_TEMPLATE *tt = NULL;
4560662d10Schristos const ASN1_EXTERN_FUNCS *ef;
4660662d10Schristos const ASN1_AUX *aux = it->funcs;
4760662d10Schristos ASN1_aux_cb *asn1_cb;
4860662d10Schristos ASN1_VALUE **pseqval;
4960662d10Schristos int i;
5060662d10Schristos if (aux && aux->asn1_cb)
5160662d10Schristos asn1_cb = aux->asn1_cb;
5260662d10Schristos else
5360662d10Schristos asn1_cb = 0;
5460662d10Schristos
55*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
56*1dcdf01fSchristos OPENSSL_mem_debug_push(it->sname ? it->sname : "asn1_item_embed_new");
5760662d10Schristos #endif
5860662d10Schristos
5960662d10Schristos switch (it->itype) {
6060662d10Schristos
6160662d10Schristos case ASN1_ITYPE_EXTERN:
6260662d10Schristos ef = it->funcs;
6360662d10Schristos if (ef && ef->asn1_ex_new) {
6460662d10Schristos if (!ef->asn1_ex_new(pval, it))
6560662d10Schristos goto memerr;
6660662d10Schristos }
6760662d10Schristos break;
6860662d10Schristos
6960662d10Schristos case ASN1_ITYPE_PRIMITIVE:
7060662d10Schristos if (it->templates) {
71*1dcdf01fSchristos if (!asn1_template_new(pval, it->templates))
7260662d10Schristos goto memerr;
73*1dcdf01fSchristos } else if (!asn1_primitive_new(pval, it, embed))
7460662d10Schristos goto memerr;
7560662d10Schristos break;
7660662d10Schristos
7760662d10Schristos case ASN1_ITYPE_MSTRING:
78*1dcdf01fSchristos if (!asn1_primitive_new(pval, it, embed))
7960662d10Schristos goto memerr;
8060662d10Schristos break;
8160662d10Schristos
8260662d10Schristos case ASN1_ITYPE_CHOICE:
8360662d10Schristos if (asn1_cb) {
8460662d10Schristos i = asn1_cb(ASN1_OP_NEW_PRE, pval, it, NULL);
8560662d10Schristos if (!i)
8660662d10Schristos goto auxerr;
8760662d10Schristos if (i == 2) {
88*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
89*1dcdf01fSchristos OPENSSL_mem_debug_pop();
9060662d10Schristos #endif
9160662d10Schristos return 1;
9260662d10Schristos }
9360662d10Schristos }
94*1dcdf01fSchristos if (embed) {
9560662d10Schristos memset(*pval, 0, it->size);
96*1dcdf01fSchristos } else {
97*1dcdf01fSchristos *pval = OPENSSL_zalloc(it->size);
98*1dcdf01fSchristos if (*pval == NULL)
99*1dcdf01fSchristos goto memerr;
10060662d10Schristos }
10160662d10Schristos asn1_set_choice_selector(pval, -1, it);
10260662d10Schristos if (asn1_cb && !asn1_cb(ASN1_OP_NEW_POST, pval, it, NULL))
103*1dcdf01fSchristos goto auxerr2;
10460662d10Schristos break;
10560662d10Schristos
10660662d10Schristos case ASN1_ITYPE_NDEF_SEQUENCE:
10760662d10Schristos case ASN1_ITYPE_SEQUENCE:
10860662d10Schristos if (asn1_cb) {
10960662d10Schristos i = asn1_cb(ASN1_OP_NEW_PRE, pval, it, NULL);
11060662d10Schristos if (!i)
11160662d10Schristos goto auxerr;
11260662d10Schristos if (i == 2) {
113*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
114*1dcdf01fSchristos OPENSSL_mem_debug_pop();
11560662d10Schristos #endif
11660662d10Schristos return 1;
11760662d10Schristos }
11860662d10Schristos }
119*1dcdf01fSchristos if (embed) {
12060662d10Schristos memset(*pval, 0, it->size);
121*1dcdf01fSchristos } else {
122*1dcdf01fSchristos *pval = OPENSSL_zalloc(it->size);
123*1dcdf01fSchristos if (*pval == NULL)
124*1dcdf01fSchristos goto memerr;
12560662d10Schristos }
126*1dcdf01fSchristos /* 0 : init. lock */
127*1dcdf01fSchristos if (asn1_do_lock(pval, 0, it) < 0) {
128*1dcdf01fSchristos if (!embed) {
129*1dcdf01fSchristos OPENSSL_free(*pval);
130*1dcdf01fSchristos *pval = NULL;
131*1dcdf01fSchristos }
132*1dcdf01fSchristos goto memerr;
133*1dcdf01fSchristos }
134*1dcdf01fSchristos asn1_enc_init(pval, it);
13560662d10Schristos for (i = 0, tt = it->templates; i < it->tcount; tt++, i++) {
13660662d10Schristos pseqval = asn1_get_field_ptr(pval, tt);
137*1dcdf01fSchristos if (!asn1_template_new(pseqval, tt))
138*1dcdf01fSchristos goto memerr2;
13960662d10Schristos }
14060662d10Schristos if (asn1_cb && !asn1_cb(ASN1_OP_NEW_POST, pval, it, NULL))
141*1dcdf01fSchristos goto auxerr2;
14260662d10Schristos break;
14360662d10Schristos }
144*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
145*1dcdf01fSchristos OPENSSL_mem_debug_pop();
14660662d10Schristos #endif
14760662d10Schristos return 1;
14860662d10Schristos
149*1dcdf01fSchristos memerr2:
150*1dcdf01fSchristos asn1_item_embed_free(pval, it, embed);
15160662d10Schristos memerr:
152*1dcdf01fSchristos ASN1err(ASN1_F_ASN1_ITEM_EMBED_NEW, ERR_R_MALLOC_FAILURE);
153*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
154*1dcdf01fSchristos OPENSSL_mem_debug_pop();
15560662d10Schristos #endif
15660662d10Schristos return 0;
15760662d10Schristos
158*1dcdf01fSchristos auxerr2:
159*1dcdf01fSchristos asn1_item_embed_free(pval, it, embed);
16060662d10Schristos auxerr:
161*1dcdf01fSchristos ASN1err(ASN1_F_ASN1_ITEM_EMBED_NEW, ASN1_R_AUX_ERROR);
162*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
163*1dcdf01fSchristos OPENSSL_mem_debug_pop();
16460662d10Schristos #endif
16560662d10Schristos return 0;
16660662d10Schristos
16760662d10Schristos }
16860662d10Schristos
asn1_item_clear(ASN1_VALUE ** pval,const ASN1_ITEM * it)16960662d10Schristos static void asn1_item_clear(ASN1_VALUE **pval, const ASN1_ITEM *it)
17060662d10Schristos {
17160662d10Schristos const ASN1_EXTERN_FUNCS *ef;
17260662d10Schristos
17360662d10Schristos switch (it->itype) {
17460662d10Schristos
17560662d10Schristos case ASN1_ITYPE_EXTERN:
17660662d10Schristos ef = it->funcs;
17760662d10Schristos if (ef && ef->asn1_ex_clear)
17860662d10Schristos ef->asn1_ex_clear(pval, it);
17960662d10Schristos else
18060662d10Schristos *pval = NULL;
18160662d10Schristos break;
18260662d10Schristos
18360662d10Schristos case ASN1_ITYPE_PRIMITIVE:
18460662d10Schristos if (it->templates)
18560662d10Schristos asn1_template_clear(pval, it->templates);
18660662d10Schristos else
18760662d10Schristos asn1_primitive_clear(pval, it);
18860662d10Schristos break;
18960662d10Schristos
19060662d10Schristos case ASN1_ITYPE_MSTRING:
19160662d10Schristos asn1_primitive_clear(pval, it);
19260662d10Schristos break;
19360662d10Schristos
19460662d10Schristos case ASN1_ITYPE_CHOICE:
19560662d10Schristos case ASN1_ITYPE_SEQUENCE:
19660662d10Schristos case ASN1_ITYPE_NDEF_SEQUENCE:
19760662d10Schristos *pval = NULL;
19860662d10Schristos break;
19960662d10Schristos }
20060662d10Schristos }
20160662d10Schristos
asn1_template_new(ASN1_VALUE ** pval,const ASN1_TEMPLATE * tt)202*1dcdf01fSchristos static int asn1_template_new(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt)
20360662d10Schristos {
20460662d10Schristos const ASN1_ITEM *it = ASN1_ITEM_ptr(tt->item);
205*1dcdf01fSchristos int embed = tt->flags & ASN1_TFLG_EMBED;
206*1dcdf01fSchristos ASN1_VALUE *tval;
20760662d10Schristos int ret;
208*1dcdf01fSchristos if (embed) {
209*1dcdf01fSchristos tval = (ASN1_VALUE *)pval;
210*1dcdf01fSchristos pval = &tval;
211*1dcdf01fSchristos }
21260662d10Schristos if (tt->flags & ASN1_TFLG_OPTIONAL) {
21360662d10Schristos asn1_template_clear(pval, tt);
21460662d10Schristos return 1;
21560662d10Schristos }
21660662d10Schristos /* If ANY DEFINED BY nothing to do */
21760662d10Schristos
21860662d10Schristos if (tt->flags & ASN1_TFLG_ADB_MASK) {
21960662d10Schristos *pval = NULL;
22060662d10Schristos return 1;
22160662d10Schristos }
222*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
223*1dcdf01fSchristos OPENSSL_mem_debug_push(tt->field_name
224*1dcdf01fSchristos ? tt->field_name : "asn1_template_new");
22560662d10Schristos #endif
22660662d10Schristos /* If SET OF or SEQUENCE OF, its a STACK */
22760662d10Schristos if (tt->flags & ASN1_TFLG_SK_MASK) {
22860662d10Schristos STACK_OF(ASN1_VALUE) *skval;
22960662d10Schristos skval = sk_ASN1_VALUE_new_null();
23060662d10Schristos if (!skval) {
23160662d10Schristos ASN1err(ASN1_F_ASN1_TEMPLATE_NEW, ERR_R_MALLOC_FAILURE);
23260662d10Schristos ret = 0;
23360662d10Schristos goto done;
23460662d10Schristos }
23560662d10Schristos *pval = (ASN1_VALUE *)skval;
23660662d10Schristos ret = 1;
23760662d10Schristos goto done;
23860662d10Schristos }
23960662d10Schristos /* Otherwise pass it back to the item routine */
240*1dcdf01fSchristos ret = asn1_item_embed_new(pval, it, embed);
24160662d10Schristos done:
242*1dcdf01fSchristos #ifndef OPENSSL_NO_CRYPTO_MDEBUG
243*1dcdf01fSchristos OPENSSL_mem_debug_pop();
24460662d10Schristos #endif
24560662d10Schristos return ret;
24660662d10Schristos }
24760662d10Schristos
asn1_template_clear(ASN1_VALUE ** pval,const ASN1_TEMPLATE * tt)24860662d10Schristos static void asn1_template_clear(ASN1_VALUE **pval, const ASN1_TEMPLATE *tt)
24960662d10Schristos {
25060662d10Schristos /* If ADB or STACK just NULL the field */
25160662d10Schristos if (tt->flags & (ASN1_TFLG_ADB_MASK | ASN1_TFLG_SK_MASK))
25260662d10Schristos *pval = NULL;
25360662d10Schristos else
25460662d10Schristos asn1_item_clear(pval, ASN1_ITEM_ptr(tt->item));
25560662d10Schristos }
25660662d10Schristos
25760662d10Schristos /*
25860662d10Schristos * NB: could probably combine most of the real XXX_new() behaviour and junk
25960662d10Schristos * all the old functions.
26060662d10Schristos */
26160662d10Schristos
asn1_primitive_new(ASN1_VALUE ** pval,const ASN1_ITEM * it,int embed)262*1dcdf01fSchristos static int asn1_primitive_new(ASN1_VALUE **pval, const ASN1_ITEM *it,
263*1dcdf01fSchristos int embed)
26460662d10Schristos {
26560662d10Schristos ASN1_TYPE *typ;
26660662d10Schristos ASN1_STRING *str;
26760662d10Schristos int utype;
26860662d10Schristos
26960662d10Schristos if (!it)
27060662d10Schristos return 0;
27160662d10Schristos
27260662d10Schristos if (it->funcs) {
27360662d10Schristos const ASN1_PRIMITIVE_FUNCS *pf = it->funcs;
274*1dcdf01fSchristos if (embed) {
275*1dcdf01fSchristos if (pf->prim_clear) {
276*1dcdf01fSchristos pf->prim_clear(pval, it);
277*1dcdf01fSchristos return 1;
278*1dcdf01fSchristos }
279*1dcdf01fSchristos } else if (pf->prim_new) {
28060662d10Schristos return pf->prim_new(pval, it);
28160662d10Schristos }
282*1dcdf01fSchristos }
28360662d10Schristos
28460662d10Schristos if (it->itype == ASN1_ITYPE_MSTRING)
28560662d10Schristos utype = -1;
28660662d10Schristos else
28760662d10Schristos utype = it->utype;
28860662d10Schristos switch (utype) {
28960662d10Schristos case V_ASN1_OBJECT:
29060662d10Schristos *pval = (ASN1_VALUE *)OBJ_nid2obj(NID_undef);
29160662d10Schristos return 1;
29260662d10Schristos
29360662d10Schristos case V_ASN1_BOOLEAN:
29460662d10Schristos *(ASN1_BOOLEAN *)pval = it->size;
29560662d10Schristos return 1;
29660662d10Schristos
29760662d10Schristos case V_ASN1_NULL:
29860662d10Schristos *pval = (ASN1_VALUE *)1;
29960662d10Schristos return 1;
30060662d10Schristos
30160662d10Schristos case V_ASN1_ANY:
302*1dcdf01fSchristos if ((typ = OPENSSL_malloc(sizeof(*typ))) == NULL) {
303*1dcdf01fSchristos ASN1err(ASN1_F_ASN1_PRIMITIVE_NEW, ERR_R_MALLOC_FAILURE);
30460662d10Schristos return 0;
305*1dcdf01fSchristos }
30660662d10Schristos typ->value.ptr = NULL;
30760662d10Schristos typ->type = -1;
30860662d10Schristos *pval = (ASN1_VALUE *)typ;
30960662d10Schristos break;
31060662d10Schristos
31160662d10Schristos default:
312*1dcdf01fSchristos if (embed) {
313*1dcdf01fSchristos str = *(ASN1_STRING **)pval;
314*1dcdf01fSchristos memset(str, 0, sizeof(*str));
315*1dcdf01fSchristos str->type = utype;
316*1dcdf01fSchristos str->flags = ASN1_STRING_FLAG_EMBED;
317*1dcdf01fSchristos } else {
31860662d10Schristos str = ASN1_STRING_type_new(utype);
319*1dcdf01fSchristos *pval = (ASN1_VALUE *)str;
320*1dcdf01fSchristos }
32160662d10Schristos if (it->itype == ASN1_ITYPE_MSTRING && str)
32260662d10Schristos str->flags |= ASN1_STRING_FLAG_MSTRING;
32360662d10Schristos break;
32460662d10Schristos }
32560662d10Schristos if (*pval)
32660662d10Schristos return 1;
32760662d10Schristos return 0;
32860662d10Schristos }
32960662d10Schristos
asn1_primitive_clear(ASN1_VALUE ** pval,const ASN1_ITEM * it)33060662d10Schristos static void asn1_primitive_clear(ASN1_VALUE **pval, const ASN1_ITEM *it)
33160662d10Schristos {
33260662d10Schristos int utype;
33360662d10Schristos if (it && it->funcs) {
33460662d10Schristos const ASN1_PRIMITIVE_FUNCS *pf = it->funcs;
33560662d10Schristos if (pf->prim_clear)
33660662d10Schristos pf->prim_clear(pval, it);
33760662d10Schristos else
33860662d10Schristos *pval = NULL;
33960662d10Schristos return;
34060662d10Schristos }
34160662d10Schristos if (!it || (it->itype == ASN1_ITYPE_MSTRING))
34260662d10Schristos utype = -1;
34360662d10Schristos else
34460662d10Schristos utype = it->utype;
34560662d10Schristos if (utype == V_ASN1_BOOLEAN)
34660662d10Schristos *(ASN1_BOOLEAN *)pval = it->size;
34760662d10Schristos else
34860662d10Schristos *pval = NULL;
34960662d10Schristos }
350