| blob | 739254cd94b8080626224305b3896f461e2777c6 |
1 /* alg1485.c - implementation of RFCs 1485, 1779 and 2253.
2 *
3 * ***** BEGIN LICENSE BLOCK *****
4 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
5 *
6 * The contents of this file are subject to the Mozilla Public License Version
7 * 1.1 (the "License"); you may not use this file except in compliance with
8 * the License. You may obtain a copy of the License at
9 * http://www.mozilla.org/MPL/
10 *
11 * Software distributed under the License is distributed on an "AS IS" basis,
12 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
13 * for the specific language governing rights and limitations under the
14 * License.
15 *
16 * The Original Code is the Netscape security libraries.
17 *
18 * The Initial Developer of the Original Code is
19 * Netscape Communications Corporation.
20 * Portions created by the Initial Developer are Copyright (C) 1994-2000
21 * the Initial Developer. All Rights Reserved.
22 *
23 * Contributor(s):
24 *
25 * Alternatively, the contents of this file may be used under the terms of
26 * either the GNU General Public License Version 2 or later (the "GPL"), or
27 * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
28 * in which case the provisions of the GPL or the LGPL are applicable instead
29 * of those above. If you wish to allow use of your version of this file only
30 * under the terms of either the GPL or the LGPL, and not to allow others to
31 * use your version of this file under the terms of the MPL, indicate your
32 * decision by deleting the provisions above and replace them with the notice
33 * and other provisions required by the GPL or the LGPL. If you do not delete
34 * the provisions above, a recipient may use your version of this file under
35 * the terms of any one of the MPL, the GPL or the LGPL.
36 *
37 * ***** END LICENSE BLOCK ***** */
50 SECOidTag kind;
54 /* local type for directory string--could be printable_string or utf8 */
55 #define SEC_ASN1_DS SEC_ASN1_HIGH_TAG_NUMBER
57 /* Add new entries to this table, and maybe to function CERT_ParseRFC1485AVA */
59 /* IANA registered type names
60 * (See: http://www.iana.org/assignments/ldap-parameters)
61 */
62 /* RFC 3280, 4630 MUST SUPPORT */
65 SEC_ASN1_DS},
67 SEC_ASN1_DS},
69 SEC_ASN1_DS},
74 /* RFC 3280, 4630 SHOULD SUPPORT */
82 SEC_ASN1_DS},
83 /* RFC 3280, 4630 MAY SUPPORT */
88 /* ------------------ "strict" boundary ---------------------------------
89 * In strict mode, cert_NameToAscii does not encode any of the attributes
90 * below this line. The first SECOidTag below this line must be used to
91 * conditionally define the "endKind" in function AppendAVA() below.
92 * Most new attribute names should be added below this line.
93 * Maybe this line should be up higher? Say, after the 3280 MUSTs and
94 * before the 3280 SHOULDs?
95 */
97 /* values from draft-ietf-ldapbis-user-schema-05 (not in RFC 3280) */
102 /* end of IANA registered type names */
104 /* legacy keywords */
109 #endif
112 };
120 #define OPTIONAL_SPACE(c) \
123 #define SPECIAL_CHAR(c) \
130 #define IS_PRINTABLE(c) \
143 int
145 {
150 }
152 }
154 static PRBool
156 {
164 }
165 }
167 }
169 static void
171 {
174 bp++;
175 }
177 }
179 static SECStatus
181 {
187 /* skip optional leading space */
190 /* nothing left */
192 }
194 /* fill tagBuf */
202 }
204 }
205 /* null-terminate tagBuf -- guaranteed at least one space left */
209 /* skip trailing spaces till we hit something - should be an equal sign */
212 /* nothing left */
214 }
216 /* should be an equal sign */
218 }
219 /* skip over the equal sign */
223 }
225 static SECStatus
227 {
230 PRBool isQuoted;
234 /* skip optional leading space */
237 /* nothing left */
239 }
243 /* quoted? */
246 /* skip over it */
247 bp++;
250 }
257 /* escape character */
258 bp++;
260 /* escape charater must appear with paired char */
263 }
265 /* ignore leading #, quotation not required for it. */
267 /* unescaped special and not within quoted value */
270 /* reached unescaped double quote */
272 }
273 /* append character */
274 vallen++;
278 }
280 }
282 /* stip trailing spaces from unquoted values */
285 valBufp--;
287 valBufp--;
288 }
289 valBufp++;
290 }
291 }
294 /* insist that we stopped on a double quote */
298 }
299 /* skip over the quote and skip optional space */
300 bp++;
302 }
307 /* empty value -- not allowed */
309 }
311 /* null-terminate valBuf -- guaranteed at least one space left */
315 }
318 {
335 };
337 /* Caller must set error code upon failure */
338 static SECStatus
340 {
346 }
356 }
358 loser:
362 }
365 CERTAVA *
367 PRBool singleAVA)
368 {
385 }
387 /* insist that if we haven't finished we've stopped on a separator */
393 }
394 /* ok, skip over separator */
395 bp++;
396 }
399 /* is this a dotted decimal OID attribute type ? */
413 }
414 }
415 }
419 /* Is this a hex encoding of a DER attribute value ? */
421 /* convert attribute value from hex to binary */
438 /* RFC 4630: choose PrintableString or UTF8String */
441 else
443 }
446 }
449 loser:
450 /* matched no kind -- invalid tag */
453 }
457 {
458 SECStatus rv;
467 }
479 }
482 /* empty name -- illegal */
484 }
486 /* Reverse order of RDNS to comply with RFC */
487 {
492 /* get first one */
495 /* find last one */
498 lastRdn--;
500 /* reverse list */
505 }
506 }
508 /* return result */
511 loser:
514 }
516 CERTName *
518 {
522 }
524 /************************************************************************/
532 #define DEFAULT_BUFFER_SIZE 200
534 static SECStatus
536 {
541 /* Figure out how much to grow buf by (add in the '\0') */
547 bufSize++;
555 }
559 }
563 /* Concatenate str onto buf */
568 }
570 static int
572 {
577 /* need to make an initial pass to determine if quoting is needed */
580 reqLen++;
583 /* entirety will need quoting */
585 }
587 /* this char will need escaping */
588 reqLen++;
589 }
591 }
592 /* if it begins or ends in optional space it needs quoting */
596 }
604 }
606 SECStatus
608 {
613 /* space for terminal null */
618 }
625 /* escape it */
627 }
629 }
633 }
635 /* convert an OID to dotted-decimal representation */
636 /* Returns a string that must be freed with PR_smprintf_free(), */
639 {
651 }
653 /* d will point to the next sequence of bytes to decode */
655 /* end points to one past the legitimate data */
658 /*
659 * Check for our pseudo-encoded single-digit OIDs
660 */
662 /* Funky encoding. The second byte is the number */
667 }
669 }
676 }
677 }
680 /* More than a 32-bit number */
695 }
698 /* This is the first number.. decompose it */
706 }
713 }
717 }
718 }
719 }
722 }
724 /* convert DER-encoded hex to a string */
727 {
732 /* '#' + 2 chars per octet + terminator */
736 }
743 }
746 }
748 /* For compliance with RFC 2253, RFC 3280 and RFC 4630, we choose to
749 * use the NAME=STRING form, rather than the OID.N.N=#hexXXXX form,
750 * when both of these conditions are met:
751 * 1) The attribute name OID (kind) has a known name string that is
752 * defined in one of those RFCs, or in RFCs that they cite, AND
753 * 2) The attribute's value encoding is RFC compliant for the kind
754 * (e.g., the value's encoding tag is correct for the kind, and
755 * the value's length is in the range allowed for the kind, and
756 * the value's contents are appropriate for the encoding tag).
757 * Otherwise, we use the OID.N.N=#hexXXXX form.
758 *
759 * If the caller prefers maximum human readability to RFC compliance,
760 * then
761 * - We print the kind in NAME= string form if we know the name
762 * string for the attribute type OID, regardless of whether the
763 * value is correctly encoded or not. else we use the OID.N.N= form.
764 * - We use the non-hex STRING form for the attribute value if the
765 * value can be represented in such a form. Otherwise, we use
766 * the hex string form.
767 * This implies that, for maximum human readability, in addition to
768 * the two forms allowed by the RFC, we allow two other forms of output:
769 * - the OID.N.N=STRING form, and
770 * - the NAME=#hexXXXX form
771 * When the caller prefers maximum human readability, we do not allow
772 * the value of any attribute to exceed the length allowed by the RFC.
773 * If the attribute value exceeds the allowed length, we truncate it to
774 * the allowed length and append "...".
775 * Also in this case, we arbitrarily impose a limit on the length of the
776 * entire AVA encoding, regardless of the form, of 384 bytes per AVA.
777 * This limit includes the trailing NULL character. If the encoded
778 * AVA length exceeds that limit, this function reports failure to encode
779 * the AVA.
780 *
781 * An ASCII representation of an AVA is said to be "invertible" if
782 * conversion back to DER reproduces the original DER encoding exactly.
783 * The RFC 2253 rules do not ensure that all ASCII AVAs derived according
784 * to its rules are invertible. That is because the RFCs allow some
785 * attribute values to be encoded in any of a number of encodings,
786 * and the encoding type information is lost in the non-hex STRING form.
787 * This is particularly true of attributes of type DirectoryString.
788 * The encoding type information is always preserved in the hex string
789 * form, because the hex includes the entire DER encoding of the value.
790 *
791 * So, when the caller perfers maximum invertibility, we apply the
792 * RFC compliance rules stated above, and add a third required
793 * condition on the use of the NAME=STRING form.
794 * 3) The attribute's kind is not is allowed to be encoded in any of
795 * several different encodings, such as DirectoryStrings.
796 *
797 * The chief difference between CERT_N2A_STRICT and CERT_N2A_INVERTIBLE
798 * is that the latter forces DirectoryStrings to be hex encoded.
799 *
800 * As a simplification, we assume the value is correctly encoded for
801 * its encoding type. That is, we do not test that all the characters
802 * in a string encoded type are allowed by that type. We assume it.
803 */
804 static SECStatus
806 {
812 SECOidTag endKind;
813 SECStatus rv;
820 #define maxBytes n2k.maxLen
821 #define tag n2k.kind
822 #define vt n2k.valueType
824 /* READABLE mode recognizes more names from the name2kinds table
825 * than do STRICT or INVERTIBLE modes. This assignment chooses the
826 * point in the table where the attribute type name scanning stops.
827 */
833 }
839 }
840 /* For invertable form, force Directory Strings to use hex form. */
844 }
851 }
852 }
853 }
855 /* handle unknown attribute types per RFC 2253 */
861 }
862 }
869 }
870 }
875 /* Check value length. Must be room for "..." */
877 /* avaValue is a UTF8 string, freshly allocated and returned to us
878 ** by CERT_DecodeAVAValue or get_hex_string just above, so we can
879 ** modify it here. See if we're in the middle of a multi-byte
880 ** UTF8 character.
881 */
884 len--;
885 }
886 /* add elipsis to signify truncation. */
892 }
893 }
906 }
912 }
918 /* escape and quote as necessary - don't quote hex strings */
932 }
934 #undef tagName
935 #undef maxBytes
936 #undef tag
937 #undef vt
941 {
951 }
953 /* find last RDN */
956 lastRdn--;
958 /*
959 * Loop over name contents in _reverse_ RDN order appending to string
960 */
966 /*
967 * XXX Do we need to traverse the AVAs in reverse order, too?
968 */
970 SECStatus rv;
971 /* Put in comma or plus separator */
973 /* Use of spaces is deprecated in RFC 2253. */
978 }
980 /* Add in tag type plus value into buf */
984 }
985 }
987 loser:
990 }
992 }
996 {
998 }
1000 /*
1001 * Return the string representation of a DER encoded distinguished name
1002 * "dername" - The DER encoded name to convert
1003 */
1006 {
1009 CERTName name;
1016 }
1022 }
1026 loser:
1029 }
1032 }
1034 /* RDNs are sorted from most general to most specific.
1035 * This code returns the FIRST one found, the most general one found.
1036 */
1039 {
1054 }
1059 }
1063 }
1066 }
1067 }
1068 }
1070 done:
1072 }
1074 /* RDNs are sorted from most general to most specific.
1075 * This code returns the LAST one found, the most specific one found.
1076 * This is particularly appropriate for Common Name. See RFC 2818.
1077 */
1080 {
1094 }
1095 }
1096 }
1102 }
1107 }
1111 }
1113 }
1115 }
1119 {
1121 SECItem subAltName;
1122 SECStatus rv;
1131 SEC_OID_PKCS9_EMAIL_ADDRESS);
1134 SEC_OID_RFC1274_MAIL);
1135 }
1142 }
1146 }
1150 }
1156 SEC_OID_PKCS9_EMAIL_ADDRESS);
1160 }
1166 }
1170 }
1173 }
1176 }
1177 }
1181 }
1182 }
1184 finish:
1186 /* Don't free nameList, it's part of the arena. */
1190 }
1194 }
1197 }
1201 {
1202 PRUint32 len;
1204 PRUint32 i;
1210 }
1212 }
1216 {
1220 PRUint32 i;
1226 }
1228 }
1230 /* Returns a pointer to an environment-like string, a series of
1231 ** null-terminated strings, terminated by a zero-length string.
1232 ** This function is intended to be internal to NSS.
1233 */
1236 {
1243 SECStatus rv;
1244 SECItem subAltName;
1260 SEC_OID_PKCS9_EMAIL_ADDRESS);
1264 SEC_OID_RFC1274_MAIL);
1278 SEC_OID_PKCS9_EMAIL_ADDRESS);
1283 SEC_OID_RFC1274_MAIL);
1287 }
1290 }
1292 /* Don't free nameList, it's part of the tmpArena. */
1293 }
1294 /* now copy superstring to cert's arena */
1301 }
1302 }
1303 loser:
1308 }
1310 /* returns pointer to storage in cert's arena. Storage remains valid
1311 ** as long as cert's reference count doesn't go to zero.
1312 ** Caller should strdup or otherwise copy.
1313 */
1316 {
1320 }
1322 /* returns pointer to storage in cert's arena. Storage remains valid
1323 ** as long as cert's reference count doesn't go to zero.
1324 ** Caller should strdup or otherwise copy.
1325 */
1328 {
1334 }
1336 }
1338 /* This is seriously bogus, now that certs store their email addresses in
1339 ** subject Alternative Name extensions.
1340 ** Returns a string allocated by PORT_StrDup, which the caller must free.
1341 */
1344 {
1352 }
1356 }
1358 }
1360 /* The return value must be freed with PORT_Free. */
1363 {
1365 }
1369 {
1371 }
1375 {
1377 }
1381 {
1383 }
1387 {
1389 }
1393 {
1395 }
1399 {
1401 }
1405 {
1407 }
1411 {
1413 }