2 /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
5 /* ====================================================================
6 * Copyright (c) 1999 The OpenSSL Project. All rights reserved.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in
17 * the documentation and/or other materials provided with the
20 * 3. All advertising materials mentioning features or use of this
21 * software must display the following acknowledgment:
22 * "This product includes software developed by the OpenSSL Project
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 * endorse or promote products derived from this software without
27 * prior written permission. For written permission, please contact
28 * licensing@OpenSSL.org.
30 * 5. Products derived from this software may not be called "OpenSSL"
31 * nor may "OpenSSL" appear in their names without prior written
32 * permission of the OpenSSL Project.
34 * 6. Redistributions of any form whatsoever must retain the following
36 * "This product includes software developed by the OpenSSL Project
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 * OF THE POSSIBILITY OF SUCH DAMAGE.
51 * ====================================================================
53 * This product includes cryptographic software written by Eric Young
54 * (eay@cryptsoft.com). This product includes software written by Tim
55 * Hudson (tjh@cryptsoft.com).
62 #include <openssl/asn1.h>
64 static int traverse_string(const unsigned char *p, int len, int inform,
65 int (*rfunc)(unsigned long value, void *in), void *arg);
66 static int in_utf8(unsigned long value, void *arg);
67 static int out_utf8(unsigned long value, void *arg);
68 static int type_str(unsigned long value, void *arg);
69 static int cpy_asc(unsigned long value, void *arg);
70 static int cpy_bmp(unsigned long value, void *arg);
71 static int cpy_univ(unsigned long value, void *arg);
72 static int cpy_utf8(unsigned long value, void *arg);
73 static int is_printable(unsigned long value);
75 /* This is the default mask for the mbstring functions: it is designed
76 * to be a "safe" DirectoryString. Netscape messenger crashes when it
77 * receives a certificate containing a BMPString so by default we don't
78 * use them unless we have to.
81 static long dirstring_mask = B_ASN1_PRINTABLESTRING
82 | B_ASN1_T61STRING | B_ASN1_BMPSTRING;
84 void ASN1_STRING_set_default_mask(unsigned long mask)
86 dirstring_mask = mask;
89 unsigned long ASN1_STRING_get_default_mask(void)
91 return dirstring_mask;
94 /* These functions take a string in UTF8, ASCII or multibyte form and
95 * a mask of permissible ASN1 string types. It then works out the minimal
96 * type (using the order Printable < IA5 < T61 < BMP < Universal < UTF8)
97 * and creates a string of the correct type with the supplied data.
98 * Yes this is horrible: it has to be :-(
99 * The 'ncopy' form checks minimum and maximum size limits too.
102 int ASN1_mbstring_copy(ASN1_STRING **out, const unsigned char *in, int len,
103 int inform, unsigned long mask)
105 return ASN1_mbstring_ncopy(out, in, len, inform, mask, 0, 0);
108 int ASN1_mbstring_ncopy(ASN1_STRING **out, const unsigned char *in, int len,
109 int inform, unsigned long mask,
110 long minsize, long maxsize)
118 unsigned char strbuf[32];
119 int (*cpyfunc)(unsigned long,void *) = NULL;
120 if(len == -1) len = strlen((const char *)in);
121 if(!mask) mask = dirstring_mask;
123 /* First do a string check and work out the number of characters */
128 ASN1err(ASN1_F_ASN1_MBSTRING_COPY,
129 ASN1_R_INVALID_BMPSTRING_LENGTH);
137 ASN1err(ASN1_F_ASN1_MBSTRING_COPY,
138 ASN1_R_INVALID_UNIVERSALSTRING_LENGTH);
146 /* This counts the characters and does utf8 syntax checking */
147 ret = traverse_string(in, len, MBSTRING_UTF8, in_utf8, &nchar);
149 ASN1err(ASN1_F_ASN1_MBSTRING_COPY,
150 ASN1_R_INVALID_UTF8STRING);
160 ASN1err(ASN1_F_ASN1_MBSTRING_COPY, ASN1_R_UNKNOWN_FORMAT);
164 if(minsize && (nchar < minsize)) {
165 ASN1err(ASN1_F_ASN1_MBSTRING_COPY, ASN1_R_STRING_TOO_SHORT);
166 sprintf(strbuf, "%ld", minsize);
167 ERR_add_error_data(2, "minsize=", strbuf);
171 if(maxsize && (nchar > maxsize)) {
172 ASN1err(ASN1_F_ASN1_MBSTRING_COPY, ASN1_R_STRING_TOO_LONG);
173 sprintf(strbuf, "%ld", maxsize);
174 ERR_add_error_data(2, "maxsize=", strbuf);
178 /* Now work out minimal type (if any) */
179 if(traverse_string(in, len, inform, type_str, &mask) < 0) {
180 ASN1err(ASN1_F_ASN1_MBSTRING_COPY, ASN1_R_ILLEGAL_CHARACTERS);
185 /* Now work out output format and string type */
186 outform = MBSTRING_ASC;
187 if(mask & B_ASN1_PRINTABLESTRING) str_type = V_ASN1_PRINTABLESTRING;
188 else if(mask & B_ASN1_IA5STRING) str_type = V_ASN1_IA5STRING;
189 else if(mask & B_ASN1_T61STRING) str_type = V_ASN1_T61STRING;
190 else if(mask & B_ASN1_BMPSTRING) {
191 str_type = V_ASN1_BMPSTRING;
192 outform = MBSTRING_BMP;
193 } else if(mask & B_ASN1_UNIVERSALSTRING) {
194 str_type = V_ASN1_UNIVERSALSTRING;
195 outform = MBSTRING_UNIV;
197 str_type = V_ASN1_UTF8STRING;
198 outform = MBSTRING_UTF8;
200 if(!out) return str_type;
208 dest->type = str_type;
210 dest = ASN1_STRING_type_new(str_type);
212 ASN1err(ASN1_F_ASN1_MBSTRING_COPY,
213 ERR_R_MALLOC_FAILURE);
218 /* If both the same type just copy across */
219 if(inform == outform) {
220 if(!ASN1_STRING_set(dest, in, len)) {
221 ASN1err(ASN1_F_ASN1_MBSTRING_COPY,ERR_R_MALLOC_FAILURE);
227 /* Work out how much space the destination will need */
246 traverse_string(in, len, inform, out_utf8, &outlen);
250 if(!(p = Malloc(outlen + 1))) {
251 ASN1_STRING_free(dest);
252 ASN1err(ASN1_F_ASN1_MBSTRING_COPY,ERR_R_MALLOC_FAILURE);
255 dest->length = outlen;
258 traverse_string(in, len, inform, cpyfunc, &p);
262 /* This function traverses a string and passes the value of each character
263 * to an optional function along with a void * argument.
266 static int traverse_string(const unsigned char *p, int len, int inform,
267 int (*rfunc)(unsigned long value, void *in), void *arg)
272 if(inform == MBSTRING_ASC) {
275 } else if(inform == MBSTRING_BMP) {
279 } else if(inform == MBSTRING_UNIV) {
286 ret = UTF8_getc(p, len, &value);
287 if(ret < 0) return -1;
292 ret = rfunc(value, arg);
293 if(ret <= 0) return ret;
299 /* Various utility functions for traverse_string */
301 /* Just count number of characters */
303 static int in_utf8(unsigned long value, void *arg)
311 /* Determine size of output as a UTF8 String */
313 static int out_utf8(unsigned long value, void *arg)
317 *outlen += UTF8_putc(NULL, -1, value);
321 /* Determine the "type" of a string: check each character against a
325 static int type_str(unsigned long value, void *arg)
328 types = *((unsigned long *)arg);
329 if((types & B_ASN1_PRINTABLESTRING) && !is_printable(value))
330 types &= ~B_ASN1_PRINTABLESTRING;
331 if((types & B_ASN1_IA5STRING) && (value > 127))
332 types &= ~B_ASN1_IA5STRING;
333 if((types & B_ASN1_T61STRING) && (value > 0xff))
334 types &= ~B_ASN1_T61STRING;
335 if((types & B_ASN1_BMPSTRING) && (value > 0xffff))
336 types &= ~B_ASN1_BMPSTRING;
337 if(!types) return -1;
338 *((unsigned long *)arg) = types;
342 /* Copy one byte per character ASCII like strings */
344 static int cpy_asc(unsigned long value, void *arg)
346 unsigned char **p, *q;
349 *q = (unsigned char) value;
354 /* Copy two byte per character BMPStrings */
356 static int cpy_bmp(unsigned long value, void *arg)
358 unsigned char **p, *q;
361 *q++ = (unsigned char) ((value >> 8) & 0xff);
362 *q = (unsigned char) (value & 0xff);
367 /* Copy four byte per character UniversalStrings */
369 static int cpy_univ(unsigned long value, void *arg)
371 unsigned char **p, *q;
374 *q++ = (unsigned char) ((value >> 24) & 0xff);
375 *q++ = (unsigned char) ((value >> 16) & 0xff);
376 *q++ = (unsigned char) ((value >> 8) & 0xff);
377 *q = (unsigned char) (value & 0xff);
382 /* Copy to a UTF8String */
384 static int cpy_utf8(unsigned long value, void *arg)
389 /* We already know there is enough room so pass 0xff as the length */
390 ret = UTF8_putc(*p, 0xff, value);
395 /* Return 1 if the character is permitted in a PrintableString */
396 static int is_printable(unsigned long value)
399 if(value > 0x7f) return 0;
401 /* Note: we can't use 'isalnum' because certain accented
402 * characters may count as alphanumeric in some environments.
404 if((ch >= 'a') && (ch <= 'z')) return 1;
405 if((ch >= 'A') && (ch <= 'Z')) return 1;
406 if((ch >= '0') && (ch <= '9')) return 1;
407 if ((ch == ' ') || strchr("'()+,-./:=?", ch)) return 1;