| blob | ef7ebdd04297c9fa7e627a64263290fa07d10a5e |
1 /* ***** BEGIN LICENSE BLOCK *****
2 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
3 *
4 * The contents of this file are subject to the Mozilla Public License Version
5 * 1.1 (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
7 * http://www.mozilla.org/MPL/
8 *
9 * Software distributed under the License is distributed on an "AS IS" basis,
10 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
11 * for the specific language governing rights and limitations under the
12 * License.
13 *
14 * The Original Code is the Netscape security libraries.
15 *
16 * The Initial Developer of the Original Code is
17 * Netscape Communications Corporation.
18 * Portions created by the Initial Developer are Copyright (C) 1994-2000
19 * the Initial Developer. All Rights Reserved.
20 *
21 * Contributor(s):
22 *
23 * Alternatively, the contents of this file may be used under the terms of
24 * either the GNU General Public License Version 2 or later (the "GPL"), or
25 * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
26 * in which case the provisions of the GPL or the LGPL are applicable instead
27 * of those above. If you wish to allow use of your version of this file only
28 * under the terms of either the GPL or the LGPL, and not to allow others to
29 * use your version of this file under the terms of the MPL, indicate your
30 * decision by deleting the provisions above and replace them with the notice
31 * and other provisions required by the GPL or the LGPL. If you do not delete
32 * the provisions above, a recipient may use your version of this file under
33 * the terms of any one of the MPL, the GPL or the LGPL.
34 *
35 * ***** END LICENSE BLOCK ***** */
37 /*
38 * JARVER
39 *
40 * Jarnature Parsing & Verification
41 */
50 /*#include "cdbhdl.h" */
53 /* to use huge pointers in win16 */
55 #if !defined(XP_WIN16)
56 #define xp_HUGE_MEMCPY PORT_Memcpy
57 #define xp_HUGE_STRCPY PORT_Strcpy
58 #define xp_HUGE_STRLEN PORT_Strlen
59 #define xp_HUGE_STRNCASECMP PORT_Strncasecmp
60 #else
61 #define xp_HUGE_MEMCPY hmemcpy
65 #endif
67 /* from certdb.h */
68 #define CERTDB_USER (1<<6)
70 #define SZ 512
72 static int jar_validate_pkcs7
75 static void jar_catch_bytes
78 static int jar_gather_signers
89 static int jar_parse_digital_signature
92 static int jar_add_cert
104 static int jar_signal
107 #ifdef DEBUG
109 #endif
111 int jar_parse_mf
115 int jar_parse_sf
119 int jar_parse_sig
122 int jar_parse_any
126 static int jar_internal_digest
129 /*
130 * J A R _ p a r s e _ m a n i f e s t
131 *
132 * Pass manifest files to this function. They are
133 * decoded and placed into internal representations.
134 *
135 * Accepts both signature and manifest files. Use
136 * the same "jar" for both.
137 *
138 */
140 int JAR_parse_manifest
143 {
146 #if defined(XP_WIN16)
148 #endif
150 /* fill in the path, if supplied. This is a the location
151 of the jar file on disk, if known */
154 {
159 }
161 /* fill in the URL, if supplied. This is the place
162 from which the jar file was retrieved. */
165 {
168 {
170 {
172 }
174 }
175 }
177 /* Determine what kind of file this is from the META-INF
178 directory. It could be MF, SF, or a binary RSA/DSA file */
181 {
183 }
185 {
187 }
188 else
189 {
190 /* This is probably a binary signature */
192 }
193 }
195 /*
196 * j a r _ p a r s e _ s i g
197 *
198 * Pass some manner of RSA or DSA digital signature
199 * on, after checking to see if it comes at an appropriate state.
200 *
201 */
203 int jar_parse_sig
205 {
210 {
211 /* signature is way too small */
213 }
215 /* make sure that MF and SF have already been processed */
220 /* Determine whether or not this RSA file has
221 has an associated SF file */
224 {
234 }
235 else
242 /* Do not pass a huge pointer to this function,
243 since the underlying security code is unaware. We will
244 never pass >64k through here. */
247 {
248 /* this digital signature is way too big */
250 }
252 #ifdef XP_WIN16
253 /*
254 * For Win16, copy the portion of the raw_buffer containing the digital
255 * signature into another buffer... This insures that the data will
256 * NOT cross a segment boundary. Therefore,
257 * jar_parse_digital_signature(...) does NOT need to deal with HUGE
258 * pointers...
259 */
261 {
266 {
269 status = jar_parse_digital_signature
273 }
274 else
275 {
276 /* out of memory */
278 }
279 }
280 #else
281 /* don't expense unneeded calloc overhead on non-win16 */
282 status = jar_parse_digital_signature
284 #endif
287 }
289 /*
290 * j a r _ p a r s e _ m f
291 *
292 * Parse the META-INF/manifest.mf file, whose
293 * information applies to all signers.
294 *
295 */
297 int jar_parse_mf
300 {
302 {
303 /* refuse a second manifest file, if passed for some reason */
305 }
308 /* remember a digest for the global section */
316 return jar_parse_any
318 }
320 /*
321 * j a r _ p a r s e _ s f
322 *
323 * Parse META-INF/xxx.sf, a digitally signed file
324 * pointing to a subset of MF sections.
325 *
326 */
328 int jar_parse_sf
331 {
336 {
337 /* It is a requirement that the MF file be passed before the SF file */
339 }
347 {
351 }
354 /* check for priors. When someone doctors a jar file
355 to contain identical path entries, prevent the second
356 one from affecting JAR functions */
359 {
360 /* someone is trying to spoof us */
363 }
366 /* remember its digest */
373 /* Add this signer to the jar */
379 return jar_parse_any
382 loser:
388 }
390 /*
391 * j a r _ p a r s e _ a n y
392 *
393 * Parse a MF or SF manifest file.
394 *
395 */
397 int jar_parse_any
400 {
421 #ifdef DEBUG
424 #endif
427 /* null terminate the first line */
431 /* skip over the preliminary section */
432 /* This is one section at the top of the file with global metainfo */
435 {
445 /* Parse out the header & info */
448 {
449 /* almost certainly nonsense */
452 }
458 x_info++;
463 x_info++;
465 /* metainfo (name, value) pair is now (line, x_info) */
471 {
474 }
476 /* For SF files, this metadata may be the digests
477 of the MF file, still in the "met" structure. */
480 {
486 }
489 {
492 {
494 }
496 }
497 }
500 {
501 /* this is a SF file which may contain a digest of the manifest.mf's
502 global metainfo. */
508 {
519 }
522 {
533 }
536 {
537 /* global digest doesn't match, SF file therefore invalid */
540 }
541 }
543 /* done with top section of global data */
547 {
553 /* If this is a manifest file, attempt to get a digest of the following section,
554 without damaging it. This digest will be saved later. */
557 {
562 {
563 /* skip the blank line */
565 }
566 else
570 {
573 else
575 }
576 }
580 {
585 {
586 /* almost certainly nonsense */
588 }
591 /* Parse out the name/value pair */
597 x_info++;
602 x_info++;
613 {
615 }
617 /* Algorithm list is meta info we don't care about; keeping it out
618 of metadata saves significant space for large jar files */
622 {
624 }
626 /* Meta info is only collected for the manifest.mf file,
627 since the JAR_get_metainfo call does not support identity */
630 {
633 /* this is meta-data */
640 /* metainfo (name, value) pair is now (line, x_info) */
643 {
646 }
649 {
653 }
657 }
658 }
661 /* Whatever that was, it wasn't an entry, because we didn't get a name.
662 * We don't really have anything, so don't record this. */
664 }
671 {
679 {
682 }
686 }
689 {
697 {
700 }
704 }
710 {
712 }
714 {
716 }
717 else
718 {
721 }
723 /* we're placing these calculated digests of manifest.mf
724 sections in a list where they can subsequently be forgotten */
727 {
732 }
735 /* Retrieve our saved SHA1 digest from saved copy and check digests.
736 This is just comparing the digest of the MF section as indicated in
737 the SF file with the one we remembered from parsing the MF file */
740 {
743 }
744 }
747 }
749 static int jar_internal_digest
751 {
760 {
761 /* no .mf digest for this pathname */
765 else
767 }
769 /* check for md5 consistency */
771 {
773 /* md5 hash of .mf file is not what expected */
775 {
778 /* bad hash, man */
785 else
787 }
788 }
790 /* check for sha1 consistency */
792 {
794 /* sha1 hash of .mf file is not what expected */
796 {
799 /* bad hash, man */
806 else
808 }
809 }
811 }
813 #ifdef DEBUG
814 /*
815 * j a r _ i n s a n i t y _ c h e c k
816 *
817 * Check for illegal characters (or possibly so)
818 * in the manifest files, to detect potential memory
819 * corruption by our neighbors. Debug only, since
820 * not I18N safe.
821 *
822 */
825 {
830 {
837 }
840 }
841 #endif
843 /*
844 * j a r _ p a r s e _ d i g i t a l _ s i g n a t u r e
845 *
846 * Parse an RSA or DSA (or perhaps other) digital signature.
847 * Right now everything is PKCS7.
848 *
849 */
851 static int jar_parse_digital_signature
853 {
854 #if defined(XP_WIN16)
856 #endif
858 }
860 /*
861 * j a r _ a d d _ c e r t
862 *
863 * Add information for the given certificate
864 * (or whatever) to the JAR linked list. A pointer
865 * is passed for some relevant reference, say
866 * for example the original certificate.
867 *
868 */
870 static int jar_add_cert
872 {
886 /* get the certkey */
906 loser:
909 {
914 }
917 }
919 /*
920 * e a t _ l i n e
921 *
922 * Consume an ascii line from the top of a file kept
923 * in memory. This destroys the file in place. This function
924 * handles PC, Mac, and Unix style text files.
925 *
926 */
930 {
936 /* Eat the requisite number of lines, if any;
937 prior to terminating the current line with a 0. */
940 {
942 data++;
944 /* After the CR, ok to eat one LF */
947 data++;
949 /* If there are zeros, we put them there */
952 data++;
953 }
959 {
960 /* Terminate this line with a 0 */
963 data++;
965 /* In any case we are allowed to eat CR */
970 /* After the CR, ok to eat one LF */
974 }
977 }
979 /*
980 * j a r _ d i g e s t _ s e c t i o n
981 *
982 * Return the digests of the next section of the manifest file.
983 * Does not damage the manifest file, unlike parse_manifest.
984 *
985 */
989 {
997 {
1001 }
1004 }
1006 /*
1007 * J A R _ v e r i f y _ d i g e s t
1008 *
1009 * Verifies that a precalculated digest matches the
1010 * expected value in the manifest.
1011 *
1012 */
1014 int PR_CALLBACK JAR_verify_digest
1016 {
1031 {
1032 /* signature not valid */
1034 }
1037 {
1038 /* empty list */
1040 }
1045 {
1049 {
1053 {
1056 else
1058 }
1061 {
1064 else
1066 }
1069 }
1070 }
1073 }
1075 /*
1076 * J A R _ c e r t _ a t t r i b u t e
1077 *
1078 * Return the named certificate attribute from the
1079 * certificate specified by the given key.
1080 *
1081 */
1083 int PR_CALLBACK JAR_cert_attribute
1086 {
1095 SECItem hexme;
1103 {
1108 {
1112 {
1119 else
1120 {
1123 }
1124 }
1126 }
1129 }
1140 #define SEPLEN (PORT_Strlen(SEP))
1143 {
1148 /* This is pretty ugly looking but only used
1149 here for this one purpose. */
1152 {
1184 /* return here to avoid unsightly memory leak */
1190 }
1198 {
1204 /* This is pretty ugly looking but only used
1205 here for this one purpose. */
1233 /* return here to avoid unsightly memory leak */
1239 }
1260 dig = JAR_calculate_digest
1264 {
1268 }
1274 }
1280 }
1282 /*
1283 * j a r _ c e r t _ e l e m e n t
1284 *
1285 * Retrieve an element from an x400ish ascii
1286 * designator, in a hackish sort of way. The right
1287 * thing would probably be to sort AVATags.
1288 *
1289 */
1292 {
1294 {
1299 {
1301 {
1304 }
1305 else
1306 {
1310 }
1311 }
1315 /* must mangle only the copy */
1318 /* advance to next equal */
1322 /* back up to previous comma */
1325 /* zap the whitespace and return */
1327 }
1330 }
1332 /*
1333 * j a r _ c h o o s e _ n i c k n a m e
1334 *
1335 * Attempt to determine a suitable nickname for
1336 * a certificate with a computer-generated "tmpcertxxx"
1337 * nickname. It needs to be something a user can
1338 * understand, so try a few things.
1339 *
1340 */
1343 {
1350 /* is the existing name ok */
1355 /* we have an ugly name here people */
1357 /* Try the CN */
1361 {
1362 /* check for duplicate nickname */
1367 /* Try the CN plus O */
1377 {
1380 }
1382 }
1384 /* If all that failed, use the ugly nickname */
1386 }
1388 /*
1389 * J A R _ c e r t _ h t m l
1390 *
1391 * Return an HTML representation of the certificate
1392 * designated by the given fingerprint, in specified style.
1393 *
1394 * JAR is optional, but supply it if you can in order
1395 * to optimize.
1396 *
1397 */
1401 {
1417 }
1419 /*
1420 * J A R _ s t a s h _ c e r t
1421 *
1422 * Stash the certificate pointed to by this
1423 * fingerprint, in persistent storage somewhere.
1424 *
1425 */
1429 {
1433 CERTCertTrust trust;
1449 /* Attempt to give a name to the newish certificate */
1455 {
1456 /* already in permanant database */
1459 }
1463 /* FIX, since FindCert returns a bogus dbhandle
1464 set it ourselves */
1469 {
1473 {
1474 /* XXX might want to call PORT_GetError here */
1476 }
1477 }
1482 }
1484 /*
1485 * J A R _ f e t c h _ c e r t
1486 *
1487 * Given an opaque identifier of a certificate,
1488 * return the full certificate.
1489 *
1490 * The new function, which retrieves by key.
1491 *
1492 */
1495 {
1496 CERTIssuerAndSN issuerSN;
1504 {
1514 }
1517 }
1519 /*
1520 * j a r _ g e t _ m f _ d i g e s t
1521 *
1522 * Retrieve a corresponding saved digest over a section
1523 * of the main manifest file.
1524 *
1525 */
1528 {
1544 {
1548 {
1551 }
1552 }
1555 }
1557 /*
1558 * j a r _ b a s e n a m e
1559 *
1560 * Return the basename -- leading components of path stripped off,
1561 * extension ripped off -- of a path.
1562 *
1563 */
1566 {
1577 {
1582 else
1584 }
1589 /* We already have the space allocated */
1593 }
1595 /*
1596 * + + + + + + + + + + + + + + +
1597 *
1598 * CRYPTO ROUTINES FOR JAR
1599 *
1600 * The following functions are the cryptographic
1601 * interface to PKCS7 for Jarnatures.
1602 *
1603 * + + + + + + + + + + + + + + +
1604 *
1605 */
1607 /*
1608 * j a r _ c a t c h _ b y t e s
1609 *
1610 * In the event signatures contain enveloped data, it will show up here.
1611 * But note that the lib/pkcs7 routines aren't ready for it.
1612 *
1613 */
1615 static void jar_catch_bytes
1617 {
1618 /* Actually this should never be called, since there is
1619 presumably no data in the signature itself. */
1620 }
1622 /*
1623 * j a r _ v a l i d a t e _ p k c s 7
1624 *
1625 * Validate (and decode, if necessary) a binary pkcs7
1626 * signature in DER format.
1627 *
1628 */
1630 static int jar_validate_pkcs7
1632 {
1633 SECItem detdig;
1648 /* We need a context if we can get one */
1650 #ifdef MOZILLA_CLIENT_OLD
1653 }
1654 #endif
1657 dcx = SEC_PKCS7DecoderStart
1662 {
1663 /* strange pkcs7 failure */
1665 }
1671 {
1672 /* strange pkcs7 failure */
1674 }
1677 {
1678 /* content was encrypted, fail */
1680 }
1683 {
1684 /* content was not signed, fail */
1686 }
1690 /* use SHA1 only */
1697 PR_TRUE)
1698 {
1699 /* signature is valid */
1702 }
1703 else
1704 {
1714 /*XP_TRACE(("JAR signature invalid (reason %d = %s)", status, errstring));*/
1715 }
1723 }
1725 /*
1726 * j a r _ g a t h e r _ s i g n e r s
1727 *
1728 * Add the single signer of this signature to the
1729 * certificate linked list.
1730 *
1731 */
1733 static int jar_gather_signers
1735 {
1751 /* permit exactly one signer */
1772 }
1774 /*
1775 * j a r _ o p e n _ d a t a b a s e
1776 *
1777 * Open the certificate database,
1778 * for use by JAR functions.
1779 *
1780 */
1783 {
1789 }
1791 /*
1792 * j a r _ c l o s e _ d a t a b a s e
1793 *
1794 * Close the certificate database.
1795 * For use by JAR functions.
1796 *
1797 */
1800 {
1802 }
1804 /*
1805 * j a r _ g e t _ c e r t i f i c a t e
1806 *
1807 * Return the certificate referenced
1808 * by a given fingerprint, or NULL if not found.
1809 * Error code is returned in result.
1810 *
1811 */
1815 {
1824 {
1829 }
1834 {
1842 {
1845 }
1846 }
1851 {
1854 }
1859 }
1861 /*
1862 * j a r _ s i g n a l
1863 *
1864 * Nonfatal errors come here to callback Java.
1865 *
1866 */
1868 static int jar_signal
1870 {
1876 {
1879 }
1882 }
1884 /*
1885 * j a r _ a p p e n d
1886 *
1887 * Tack on an element to one of a JAR's linked
1888 * lists, with rudimentary error handling.
1889 *
1890 */
1894 {
1904 {
1908 }
1917 {
1920 }
1922 loser:
1925 {
1928 }
1931 }
1933 /*
1934 * W I N 1 6 s t u f f
1935 *
1936 * These functions possibly belong in xp_mem.c, they operate
1937 * on huge string pointers for win16.
1938 *
1939 */
1941 #if defined(XP_WIN16)
1943 {
1945 {
1956 }
1958 }
1961 {
1965 }
1968 {
1976 }
1977 #endif