| blob | d8753dc1dd8015182cbc42baf8290ec871dc38e2 |
1 /* ***** BEGIN LICENSE BLOCK *****
2 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
3 *
4 * The contents of this file are subject to the Mozilla Public License Version
5 * 1.1 (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
7 * http://www.mozilla.org/MPL/
8 *
9 * Software distributed under the License is distributed on an "AS IS" basis,
10 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
11 * for the specific language governing rights and limitations under the
12 * License.
13 *
14 * The Original Code is the Netscape security libraries.
15 *
16 * The Initial Developer of the Original Code is
17 * Netscape Communications Corporation.
18 * Portions created by the Initial Developer are Copyright (C) 1994-2000
19 * the Initial Developer. All Rights Reserved.
20 *
21 * Contributor(s):
22 *
23 * Alternatively, the contents of this file may be used under the terms of
24 * either the GNU General Public License Version 2 or later (the "GPL"), or
25 * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
26 * in which case the provisions of the GPL or the LGPL are applicable instead
27 * of those above. If you wish to allow use of your version of this file only
28 * under the terms of either the GPL or the LGPL, and not to allow others to
29 * use your version of this file under the terms of the MPL, indicate your
30 * decision by deleting the provisions above and replace them with the notice
31 * and other provisions required by the GPL or the LGPL. If you do not delete
32 * the provisions above, a recipient may use your version of this file under
33 * the terms of any one of the MPL, the GPL or the LGPL.
34 *
35 * ***** END LICENSE BLOCK ***** */
37 /*
38 * JARVER
39 *
40 * Jarnature Parsing & Verification
41 */
50 /*#include "cdbhdl.h" */
53 /* to use huge pointers in win16 */
55 #define xp_HUGE_MEMCPY PORT_Memcpy
56 #define xp_HUGE_STRCPY PORT_Strcpy
57 #define xp_HUGE_STRLEN PORT_Strlen
58 #define xp_HUGE_STRNCASECMP PORT_Strncasecmp
60 /* from certdb.h */
61 #define CERTDB_USER (1<<6)
63 #define SZ 512
65 static int jar_validate_pkcs7
68 static void jar_catch_bytes
71 static int jar_gather_signers
82 static int jar_parse_digital_signature
85 static int jar_add_cert
97 static int jar_signal
100 #ifdef DEBUG
102 #endif
104 int jar_parse_mf
108 int jar_parse_sf
112 int jar_parse_sig
115 int jar_parse_any
119 static int jar_internal_digest
122 /*
123 * J A R _ p a r s e _ m a n i f e s t
124 *
125 * Pass manifest files to this function. They are
126 * decoded and placed into internal representations.
127 *
128 * Accepts both signature and manifest files. Use
129 * the same "jar" for both.
130 *
131 */
133 int JAR_parse_manifest
136 {
139 /* fill in the path, if supplied. This is a the location
140 of the jar file on disk, if known */
143 {
148 }
150 /* fill in the URL, if supplied. This is the place
151 from which the jar file was retrieved. */
154 {
157 {
159 {
161 }
163 }
164 }
166 /* Determine what kind of file this is from the META-INF
167 directory. It could be MF, SF, or a binary RSA/DSA file */
170 {
172 }
174 {
176 }
177 else
178 {
179 /* This is probably a binary signature */
181 }
182 }
184 /*
185 * j a r _ p a r s e _ s i g
186 *
187 * Pass some manner of RSA or DSA digital signature
188 * on, after checking to see if it comes at an appropriate state.
189 *
190 */
192 int jar_parse_sig
194 {
199 {
200 /* signature is way too small */
202 }
204 /* make sure that MF and SF have already been processed */
209 /* Determine whether or not this RSA file has
210 has an associated SF file */
213 {
223 }
224 else
231 /* Do not pass a huge pointer to this function,
232 since the underlying security code is unaware. We will
233 never pass >64k through here. */
236 {
237 /* this digital signature is way too big */
239 }
241 /* don't expense unneeded calloc overhead on non-win16 */
242 status = jar_parse_digital_signature
246 }
248 /*
249 * j a r _ p a r s e _ m f
250 *
251 * Parse the META-INF/manifest.mf file, whose
252 * information applies to all signers.
253 *
254 */
256 int jar_parse_mf
259 {
261 {
262 /* refuse a second manifest file, if passed for some reason */
264 }
267 /* remember a digest for the global section */
275 return jar_parse_any
277 }
279 /*
280 * j a r _ p a r s e _ s f
281 *
282 * Parse META-INF/xxx.sf, a digitally signed file
283 * pointing to a subset of MF sections.
284 *
285 */
287 int jar_parse_sf
290 {
295 {
296 /* It is a requirement that the MF file be passed before the SF file */
298 }
306 {
310 }
313 /* check for priors. When someone doctors a jar file
314 to contain identical path entries, prevent the second
315 one from affecting JAR functions */
318 {
319 /* someone is trying to spoof us */
322 }
325 /* remember its digest */
332 /* Add this signer to the jar */
338 return jar_parse_any
341 loser:
347 }
349 /*
350 * j a r _ p a r s e _ a n y
351 *
352 * Parse a MF or SF manifest file.
353 *
354 */
356 int jar_parse_any
359 {
380 #ifdef DEBUG
383 #endif
386 /* null terminate the first line */
390 /* skip over the preliminary section */
391 /* This is one section at the top of the file with global metainfo */
394 {
404 /* Parse out the header & info */
407 {
408 /* almost certainly nonsense */
411 }
417 x_info++;
422 x_info++;
424 /* metainfo (name, value) pair is now (line, x_info) */
430 {
433 }
435 /* For SF files, this metadata may be the digests
436 of the MF file, still in the "met" structure. */
439 {
445 }
448 {
451 {
453 }
455 }
456 }
459 {
460 /* this is a SF file which may contain a digest of the manifest.mf's
461 global metainfo. */
467 {
478 }
481 {
492 }
495 {
496 /* global digest doesn't match, SF file therefore invalid */
499 }
500 }
502 /* done with top section of global data */
506 {
512 /* If this is a manifest file, attempt to get a digest of the following section,
513 without damaging it. This digest will be saved later. */
516 {
521 {
522 /* skip the blank line */
524 }
525 else
529 {
532 else
534 }
535 }
539 {
544 {
545 /* almost certainly nonsense */
547 }
550 /* Parse out the name/value pair */
556 x_info++;
561 x_info++;
572 {
574 }
576 /* Algorithm list is meta info we don't care about; keeping it out
577 of metadata saves significant space for large jar files */
581 {
583 }
585 /* Meta info is only collected for the manifest.mf file,
586 since the JAR_get_metainfo call does not support identity */
589 {
592 /* this is meta-data */
599 /* metainfo (name, value) pair is now (line, x_info) */
602 {
605 }
608 {
612 }
616 }
617 }
620 /* Whatever that was, it wasn't an entry, because we didn't get a name.
621 * We don't really have anything, so don't record this. */
623 }
630 {
638 {
641 }
645 }
648 {
656 {
659 }
663 }
669 {
671 }
673 {
675 }
676 else
677 {
680 }
682 /* we're placing these calculated digests of manifest.mf
683 sections in a list where they can subsequently be forgotten */
686 {
691 }
694 /* Retrieve our saved SHA1 digest from saved copy and check digests.
695 This is just comparing the digest of the MF section as indicated in
696 the SF file with the one we remembered from parsing the MF file */
699 {
702 }
703 }
706 }
708 static int jar_internal_digest
710 {
719 {
720 /* no .mf digest for this pathname */
724 else
726 }
728 /* check for md5 consistency */
730 {
732 /* md5 hash of .mf file is not what expected */
734 {
737 /* bad hash, man */
744 else
746 }
747 }
749 /* check for sha1 consistency */
751 {
753 /* sha1 hash of .mf file is not what expected */
755 {
758 /* bad hash, man */
765 else
767 }
768 }
770 }
772 #ifdef DEBUG
773 /*
774 * j a r _ i n s a n i t y _ c h e c k
775 *
776 * Check for illegal characters (or possibly so)
777 * in the manifest files, to detect potential memory
778 * corruption by our neighbors. Debug only, since
779 * not I18N safe.
780 *
781 */
784 {
789 {
796 }
799 }
800 #endif
802 /*
803 * j a r _ p a r s e _ d i g i t a l _ s i g n a t u r e
804 *
805 * Parse an RSA or DSA (or perhaps other) digital signature.
806 * Right now everything is PKCS7.
807 *
808 */
810 static int jar_parse_digital_signature
812 {
814 }
816 /*
817 * j a r _ a d d _ c e r t
818 *
819 * Add information for the given certificate
820 * (or whatever) to the JAR linked list. A pointer
821 * is passed for some relevant reference, say
822 * for example the original certificate.
823 *
824 */
826 static int jar_add_cert
828 {
842 /* get the certkey */
862 loser:
865 {
870 }
873 }
875 /*
876 * e a t _ l i n e
877 *
878 * Consume an ascii line from the top of a file kept
879 * in memory. This destroys the file in place. This function
880 * handles PC, Mac, and Unix style text files.
881 *
882 */
886 {
892 /* Eat the requisite number of lines, if any;
893 prior to terminating the current line with a 0. */
896 {
898 data++;
900 /* After the CR, ok to eat one LF */
903 data++;
905 /* If there are zeros, we put them there */
908 data++;
909 }
915 {
916 /* Terminate this line with a 0 */
919 data++;
921 /* In any case we are allowed to eat CR */
926 /* After the CR, ok to eat one LF */
930 }
933 }
935 /*
936 * j a r _ d i g e s t _ s e c t i o n
937 *
938 * Return the digests of the next section of the manifest file.
939 * Does not damage the manifest file, unlike parse_manifest.
940 *
941 */
945 {
953 {
957 }
960 }
962 /*
963 * J A R _ v e r i f y _ d i g e s t
964 *
965 * Verifies that a precalculated digest matches the
966 * expected value in the manifest.
967 *
968 */
970 int PR_CALLBACK JAR_verify_digest
972 {
987 {
988 /* signature not valid */
990 }
993 {
994 /* empty list */
996 }
1001 {
1005 {
1009 {
1012 else
1014 }
1017 {
1020 else
1022 }
1025 }
1026 }
1029 }
1031 /*
1032 * J A R _ c e r t _ a t t r i b u t e
1033 *
1034 * Return the named certificate attribute from the
1035 * certificate specified by the given key.
1036 *
1037 */
1039 int PR_CALLBACK JAR_cert_attribute
1042 {
1051 SECItem hexme;
1059 {
1064 {
1068 {
1075 else
1076 {
1079 }
1080 }
1082 }
1085 }
1096 #define SEPLEN (PORT_Strlen(SEP))
1099 {
1104 /* This is pretty ugly looking but only used
1105 here for this one purpose. */
1108 {
1140 /* return here to avoid unsightly memory leak */
1146 }
1154 {
1160 /* This is pretty ugly looking but only used
1161 here for this one purpose. */
1189 /* return here to avoid unsightly memory leak */
1195 }
1216 dig = JAR_calculate_digest
1220 {
1224 }
1230 }
1236 }
1238 /*
1239 * j a r _ c e r t _ e l e m e n t
1240 *
1241 * Retrieve an element from an x400ish ascii
1242 * designator, in a hackish sort of way. The right
1243 * thing would probably be to sort AVATags.
1244 *
1245 */
1248 {
1250 {
1255 {
1257 {
1260 }
1261 else
1262 {
1266 }
1267 }
1271 /* must mangle only the copy */
1274 /* advance to next equal */
1278 /* back up to previous comma */
1281 /* zap the whitespace and return */
1283 }
1286 }
1288 /*
1289 * j a r _ c h o o s e _ n i c k n a m e
1290 *
1291 * Attempt to determine a suitable nickname for
1292 * a certificate with a computer-generated "tmpcertxxx"
1293 * nickname. It needs to be something a user can
1294 * understand, so try a few things.
1295 *
1296 */
1299 {
1306 /* is the existing name ok */
1311 /* we have an ugly name here people */
1313 /* Try the CN */
1317 {
1318 /* check for duplicate nickname */
1323 /* Try the CN plus O */
1333 {
1336 }
1338 }
1340 /* If all that failed, use the ugly nickname */
1342 }
1344 /*
1345 * J A R _ c e r t _ h t m l
1346 *
1347 * Return an HTML representation of the certificate
1348 * designated by the given fingerprint, in specified style.
1349 *
1350 * JAR is optional, but supply it if you can in order
1351 * to optimize.
1352 *
1353 */
1357 {
1373 }
1375 /*
1376 * J A R _ s t a s h _ c e r t
1377 *
1378 * Stash the certificate pointed to by this
1379 * fingerprint, in persistent storage somewhere.
1380 *
1381 */
1385 {
1389 CERTCertTrust trust;
1405 /* Attempt to give a name to the newish certificate */
1411 {
1412 /* already in permanant database */
1415 }
1419 /* FIX, since FindCert returns a bogus dbhandle
1420 set it ourselves */
1425 {
1429 {
1430 /* XXX might want to call PORT_GetError here */
1432 }
1433 }
1438 }
1440 /*
1441 * J A R _ f e t c h _ c e r t
1442 *
1443 * Given an opaque identifier of a certificate,
1444 * return the full certificate.
1445 *
1446 * The new function, which retrieves by key.
1447 *
1448 */
1451 {
1452 CERTIssuerAndSN issuerSN;
1460 {
1470 }
1473 }
1475 /*
1476 * j a r _ g e t _ m f _ d i g e s t
1477 *
1478 * Retrieve a corresponding saved digest over a section
1479 * of the main manifest file.
1480 *
1481 */
1484 {
1500 {
1504 {
1507 }
1508 }
1511 }
1513 /*
1514 * j a r _ b a s e n a m e
1515 *
1516 * Return the basename -- leading components of path stripped off,
1517 * extension ripped off -- of a path.
1518 *
1519 */
1522 {
1533 {
1538 else
1540 }
1545 /* We already have the space allocated */
1549 }
1551 /*
1552 * + + + + + + + + + + + + + + +
1553 *
1554 * CRYPTO ROUTINES FOR JAR
1555 *
1556 * The following functions are the cryptographic
1557 * interface to PKCS7 for Jarnatures.
1558 *
1559 * + + + + + + + + + + + + + + +
1560 *
1561 */
1563 /*
1564 * j a r _ c a t c h _ b y t e s
1565 *
1566 * In the event signatures contain enveloped data, it will show up here.
1567 * But note that the lib/pkcs7 routines aren't ready for it.
1568 *
1569 */
1571 static void jar_catch_bytes
1573 {
1574 /* Actually this should never be called, since there is
1575 presumably no data in the signature itself. */
1576 }
1578 /*
1579 * j a r _ v a l i d a t e _ p k c s 7
1580 *
1581 * Validate (and decode, if necessary) a binary pkcs7
1582 * signature in DER format.
1583 *
1584 */
1586 static int jar_validate_pkcs7
1588 {
1592 PRBool goodSig;
1594 SECItem detdig;
1603 /* We need a context if we can get one */
1605 #ifdef MOZILLA_CLIENT_OLD
1608 }
1609 #endif
1612 dcx = SEC_PKCS7DecoderStart
1617 {
1618 /* strange pkcs7 failure */
1620 }
1626 {
1627 /* strange pkcs7 failure */
1629 }
1632 {
1633 /* content was encrypted, fail */
1635 }
1638 {
1639 /* content was not signed, fail */
1641 }
1645 /* use SHA1 only */
1654 {
1655 /* signature is valid */
1657 }
1658 else
1659 {
1667 }
1675 }
1677 /*
1678 * j a r _ g a t h e r _ s i g n e r s
1679 *
1680 * Add the single signer of this signature to the
1681 * certificate linked list.
1682 *
1683 */
1685 static int jar_gather_signers
1687 {
1703 /* permit exactly one signer */
1724 }
1726 /*
1727 * j a r _ o p e n _ d a t a b a s e
1728 *
1729 * Open the certificate database,
1730 * for use by JAR functions.
1731 *
1732 */
1735 {
1741 }
1743 /*
1744 * j a r _ c l o s e _ d a t a b a s e
1745 *
1746 * Close the certificate database.
1747 * For use by JAR functions.
1748 *
1749 */
1752 {
1754 }
1756 /*
1757 * j a r _ g e t _ c e r t i f i c a t e
1758 *
1759 * Return the certificate referenced
1760 * by a given fingerprint, or NULL if not found.
1761 * Error code is returned in result.
1762 *
1763 */
1767 {
1776 {
1781 }
1786 {
1794 {
1797 }
1798 }
1803 {
1806 }
1811 }
1813 /*
1814 * j a r _ s i g n a l
1815 *
1816 * Nonfatal errors come here to callback Java.
1817 *
1818 */
1820 static int jar_signal
1822 {
1828 {
1831 }
1834 }
1836 /*
1837 * j a r _ a p p e n d
1838 *
1839 * Tack on an element to one of a JAR's linked
1840 * lists, with rudimentary error handling.
1841 *
1842 */
1846 {
1856 {
1860 }
1869 {
1872 }
1874 loser:
1877 {
1880 }
1883 }