/*

 * Abstract Syntax Notation One, ASN.1

 * As defined in ISO/IS 8824 and ISO/IS 8825

 * This implements a subset of the above International Standards that

 * is sufficient to implement SNMP.

 *

 * Encodes abstract data types into a machine independent stream of bytes.

 *

 * Portions of this file are subject to the following copyright(s).  See

 * the Net-SNMP's COPYING file for more details and other copyrights

 * that may apply:

 *

 * Portions of this file are copyrighted by:

 * Copyright (c) 2016 VMware, Inc. All rights reserved.

 * Use is subject to license terms specified in the COPYING file

 * distributed with the Net-SNMP package.

 */

/**********************************************************************

  Copyright 1988, 1989, 1991, 1992 by Carnegie Mellon University

                      All Rights Reserved

Permission to use, copy, modify, and distribute this software and its 

documentation for any purpose and without fee is hereby granted, 

provided that the above copyright notice appear in all copies and that

both that copyright notice and this permission notice appear in 

supporting documentation, and that the name of CMU not be

used in advertising or publicity pertaining to distribution of the

software without specific, written prior permission.  

CMU DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING

ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS, IN NO EVENT SHALL

CMU BE LIABLE FOR ANY SPECIAL, INDIRECT OR CONSEQUENTIAL DAMAGES OR

ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS,

WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION,

ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS

SOFTWARE.

******************************************************************/

/**

 * @defgroup asn1_packet_parse asn1 parsing and datatype manipulation routines.

 * @ingroup library

 *

 * @{

 * 

 * Note on 

 * 

 * Re-allocating reverse ASN.1 encoder functions.  Synopsis:

 *

 * \code

 *

 * u_char *buf = (u_char*)malloc(100);

 * u_char type = (ASN_UNIVERSAL | ASN_PRIMITIVE | ASN_INTEGER);

 * size_t buf_len = 100, offset = 0;

 * long data = 12345;

 * int allow_realloc = 1;

 * 

 * if (asn_realloc_rbuild_int(&buf, &buf_len, &offset, allow_realloc,

 *                            type, &data, sizeof(long)) == 0) {

 *     error;

 * }

 * 

 * \endcode

 *

 * NOTE WELL: after calling one of these functions with allow_realloc

 * non-zero, buf might have moved, buf_len might have grown and

 * offset will have increased by the size of the encoded data.

 * You should **NEVER** do something like this:

 * 

 * \code

 *

 * u_char *buf = (u_char *)malloc(100), *ptr;

 * u_char type = (ASN_UNIVERSAL | ASN_PRIMITIVE | ASN_INTEGER);

 * size_t buf_len = 100, offset = 0;

 * long data1 = 1234, data2 = 5678;

 * int rc = 0, allow_realloc = 1;

 * 

 * rc  = asn_realloc_rbuild_int(&buf, &buf_len, &offset, allow_realloc,

 *                                type, &data1, sizeof(long));

 * ptr = buf[buf_len - offset];   / * points at encoding of data1 * /

 * if (rc == 0) {

 *      error;

 * }

 * rc  = asn_realloc_rbuild_int(&buf, &buf_len, &offset, allow_realloc,

 *                              type, &data2, sizeof(long));

 * make use of ptr here;

 * 

 * \endcode

 * 

 * ptr is **INVALID** at this point.  In general, you should store the

 * offset value and compute pointers when you need them:

 * 

 * 

 * \code

 *

 * u_char *buf = (u_char *)malloc(100), *ptr;

 * u_char type = (ASN_UNIVERSAL | ASN_PRIMITIVE | ASN_INTEGER);

 * size_t buf_len = 100, offset = 0, ptr_offset;

 * long data1 = 1234, data2 = 5678;

 * int rc = 0, allow_realloc = 1;

 * 

 * rc  = asn_realloc_rbuild_int(&buf, &buf_len, &offset, allow_realloc,

 *                              type, &data1, sizeof(long));

 * ptr_offset = offset;

 * if (rc == 0) {

 *      error;

 * }

 * rc  = asn_realloc_rbuild_int(&buf, &buf_len, &offset, allow_realloc,

 *                              type, &data2, sizeof(long));

 * ptr = buf + buf_len - ptr_offset

 * make use of ptr here;

 * 

 * \endcode

 * 

 * 

 * Here, you can see that ptr will be a valid pointer even if the block of

 * memory has been moved, as it may well have been.  Plenty of examples of

 * usage all over asn1.c, snmp_api.c, snmpusm.c.

 * 

 * The other thing you should **NEVER** do is to pass a pointer to a buffer

 * on the stack as the first argument when allow_realloc is non-zero, unless

 * you really know what you are doing and your machine/compiler allows you to

 * free non-heap memory.  There are rumours that such things exist, but many

 * consider them no more than the wild tales of a fool.

 * 

 * Of course, you can pass allow_realloc as zero, to indicate that you do not

 * wish the packet buffer to be reallocated for some reason; perhaps because

 * it is on the stack.  This may be useful to emulate the functionality of

 * the old API:

 *

 * \code 

 * 

 * u_char my_static_buffer[100], *cp = NULL;

 * size_t my_static_buffer_len = 100;

 * float my_pi = (float)22/(float)7;

 * 

 * cp = asn_rbuild_float(my_static_buffer, &my_static_buffer_len,

 *                       ASN_OPAQUE_FLOAT, &my_pi, sizeof(float));

 * if (cp == NULL) {

 * error;

 * }

 * 

 * \endcode

 * 

 * IS EQUIVALENT TO:

 * 

 * \code

 * 

 * u_char my_static_buffer[100];

 * size_t my_static_buffer_len = 100, my_offset = 0;

 * float my_pi = (float)22/(float)7;

 * int rc = 0;

 * 

 * rc = asn_realloc_rbuild_float(&my_static_buffer, &my_static_buffer_len,

 *                               &my_offset, 0,

 *                               ASN_OPAQUE_FLOAT, &my_pi, sizeof(float));

 * if (rc == 0) {

 *   error;

 * }

 * \endcode

 * 

 */

#include <net-snmp/net-snmp-config.h>

#ifdef KINETICS

#include "gw.h"

#endif

#ifdef HAVE_STRING_H

#include <string.h>

#else

#include <strings.h>

#endif

#include <sys/types.h>

#include <stdio.h>

#ifdef HAVE_STDINT_H

#include <stdint.h>

#endif

#ifdef HAVE_STDLIB_H

#include <stdlib.h>

#endif

#ifdef HAVE_NETINET_IN_H

#include <netinet/in.h>

#endif

#ifdef vms

#include <in.h>

#endif

#include <net-snmp/output_api.h>

#include <net-snmp/utilities.h>

#include <net-snmp/library/asn1.h>

#include <net-snmp/library/int64.h>

#include <net-snmp/library/mib.h>

#ifndef NULL

#define NULL  0

#endif

#include <net-snmp/library/snmp_api.h>

#ifndef INT32_MAX

#   define INT32_MAX 2147483647

#endif

#ifndef INT32_MIN

#   define INT32_MIN (0 - INT32_MAX - 1)

#endif

#define CHECK_OVERFLOW_S(x,y) do {                                      \

        if (x > INT32_MAX) {                                            \

            DEBUGMSG(("asn","truncating signed value %ld to 32 bits (%d)\n",(long)(x),y)); \

            x &= 0xffffffff;                                            \

        } else if (x < INT32_MIN) {                                     \

            DEBUGMSG(("asn","truncating signed value %ld to 32 bits (%d)\n",(long)(x),y)); \

            x = 0 - (x & 0xffffffff);                                   \

        }                                                               \

    } while(0)

#define CHECK_OVERFLOW_U(x,y) do {                                      \

        if (x > UINT32_MAX) {                                           \

            x &= 0xffffffff;                                            \

            DEBUGMSG(("asn","truncating unsigned value to 32 bits (%d)\n",y)); \

        }                                                               \

    } while(0)

/**

 * @internal

 * output an error for a wrong size

 * 

 * @param str        error string

 * @param wrongsize  wrong size

 * @param rightsize  expected size

 */

static

    void

_asn_size_err(const char *str, size_t wrongsize, size_t rightsize)

{

    char            ebuf[128];

    snprintf(ebuf, sizeof(ebuf),

            "%s size %lu: s/b %lu", str,

      (unsigned long)wrongsize, (unsigned long)rightsize);

    ebuf[ sizeof(ebuf)-1 ] = 0;

    ERROR_MSG(ebuf);

}

/**

 * @internal

 * output an error for a wrong type

 * 

 * @param str        error string

 * @param wrongtype  wrong type

 */

static

    void

_asn_type_err(const char *str, int wrongtype)

{

    char            ebuf[128];

    snprintf(ebuf, sizeof(ebuf), "%s type %d", str, wrongtype);

    ebuf[ sizeof(ebuf)-1 ] = 0;

    ERROR_MSG(ebuf);

}

/**

 * @internal 

 * output an error for a wrong length

 * 

 * @param str        error string

 * @param wrongsize  wrong  length

 * @param rightsize  expected length

 */

static

    void

_asn_length_err(const char *str, size_t wrongsize, size_t rightsize)

{

    char            ebuf[128];

    snprintf(ebuf, sizeof(ebuf),

            "%s length %lu too large: exceeds %lu", str,

      (unsigned long)wrongsize, (unsigned long)rightsize);

    ebuf[ sizeof(ebuf)-1 ] = 0;

    ERROR_MSG(ebuf);

}

/**

 * @internal

 * output an error for a wrong length

 *

 * @param str        error string

 * @param wrongsize  wrong  length

 * @param rightsize  expected length

 */

static void

_asn_short_err(const char *str, size_t wrongsize, size_t rightsize)

{

    char            ebuf[128];

    snprintf(ebuf, sizeof(ebuf), "%s length %lu too short: need %lu", str,

      (unsigned long)wrongsize, (unsigned long)rightsize);

    ERROR_MSG(ebuf);

}

/**

 * @internal

 * checks a buffer with a length + data to see if it is big enough for

 *    the length encoding and the data of the parsed length.

 *

 * @param IN  pkt      The buffer

 * @param IN  pkt_len  The length of the bugger

 * @param OUT data_len Pointer to size of data

 *

 * @return Pointer to start of data or NULL if pkt isn't long enough

 *

 * pkt = get_buf(..., &pkt_len);

 * data = asn_parse_nlength(pkt, pkt_len, &data_len);

 * if (NULL == data) { handle_error(); }

 *

 */

u_char *

asn_parse_nlength(u_char *pkt, size_t pkt_len, u_long *data_len)

{

    int len_len;

    if (pkt_len < 1)

        return NULL;               /* always too short */

    if (NULL == pkt || NULL == data_len)

        return NULL;

    *data_len = 0;

    if (*pkt & 0x80) {

        /*

         * long length; first byte is length of length (after masking high bit)

         */

        len_len = (int) ((*pkt & ~0x80) + 1);

        if (pkt_len < len_len)

            return NULL;           /* still too short for length and data */

        /* now we know we have enough data to parse length */

        if (NULL == asn_parse_length(pkt, data_len))

            return NULL;           /* propagate error from asn_parse_length */

    } else {

        /*

         * short length; first byte is the length

         */

        len_len = 1;

        *data_len = *pkt;

    }

    if ((*data_len + len_len) > pkt_len)

        return NULL;

    return (pkt + len_len);

}

#if 0

/**

 * @internal

 * call after asn_parse_length to verify result.

 * 

 * @param str  error string

 * @param bufp start of buffer

 * @param data start of data

 * @param plen  ? parsed length

 * @param dlen  ? data/buf length

 * 

 * @return 1 on error 0 on success

 */

static

    int

_asn_parse_length_check(const char *str,

                        const u_char * bufp, const u_char * data,

                        u_long plen, size_t dlen)

{

    char            ebuf[128];

    size_t          header_len;

    if (bufp == NULL) {

        /*

         * error message is set 

         */

        return 1;

    }

    header_len = bufp - data;

    if (plen > SNMP_MAX_PACKET_LEN || header_len > SNMP_MAX_PACKET_LEN ||

        ((size_t) plen + header_len) > dlen) {

        snprintf(ebuf, sizeof(ebuf),

                "%s: message overflow: %d len + %d delta > %d len",

                str, (int) plen, (int) header_len, (int) dlen);

        ebuf[ sizeof(ebuf)-1 ] = 0;

        ERROR_MSG(ebuf);

        return 1;

    }

    return 0;

}

#endif

/**

 * @internal 

 * call after asn_build_header to verify result.

 * 

 * @param str     error string to output

 * @param data    data pointer to verify (NULL => error )

 * @param datalen  data len to check

 * @param typedlen  type length

 * 

 * @return 0 on success, 1 on error

 */

static

    int

_asn_build_header_check(const char *str, const u_char * data,

                        size_t datalen, size_t typedlen)

{

    char            ebuf[128];

    if (data == NULL) {

        /*

         * error message is set 

         */

        return 1;

    }

    if (datalen < typedlen) {

        snprintf(ebuf, sizeof(ebuf),

                "%s: bad header, length too short: %lu < %lu", str,

                (unsigned long)datalen, (unsigned long)typedlen);

        ebuf[ sizeof(ebuf)-1 ] = 0;

        ERROR_MSG(ebuf);

        return 1;

    }

    return 0;

}

/**

 * @internal 

 * call after asn_build_header to verify result.

 * 

 * @param str       error string

 * @param pkt       packet to check

 * @param pkt_len  length of the packet

 * @param typedlen length of the type

 * 

 * @return 0 on success 1 on error 

 */

static

    int

_asn_realloc_build_header_check(const char *str,

                                u_char ** pkt,

                                const size_t * pkt_len, size_t typedlen)

{

    char            ebuf[128];

    if (pkt == NULL || *pkt == NULL) {

        /*

         * Error message is set.  

         */

        return 1;

    }

    if (*pkt_len < typedlen) {

        snprintf(ebuf, sizeof(ebuf),

                "%s: bad header, length too short: %lu < %lu", str,

                (unsigned long)*pkt_len, (unsigned long)typedlen);

        ebuf[ sizeof(ebuf)-1 ] = 0;

        ERROR_MSG(ebuf);

        return 1;

    }

    return 0;

}

/**

 * @internal 

 * checks the incoming packet for validity and returns its size or 0 

 * 

 * @param pkt The packet 

 * @param len The length to check 

 * 

 * @return The size of the packet if valid; 0 otherwise

 */

int

asn_check_packet(u_char * pkt, size_t len)

{

    u_long          asn_length;

    if (len < 2)

        return 0;               /* always too short */

    if (*pkt != (u_char) (ASN_SEQUENCE | ASN_CONSTRUCTOR))

        return -1;              /* wrong type */

    if (*(pkt + 1) & 0x80) {

        /*

         * long length 

         */

        if ((int) len < (int) (*(pkt + 1) & ~0x80) + 2)

            return 0;           /* still to short, incomplete length */

        if (NULL == asn_parse_length(pkt + 1, &asn_length))

            return 0;           /* propagate error from asn_parse_length() */

        return (asn_length + 2 + (*(pkt + 1) & ~0x80));

    } else {

        /*

         * short length 

         */

        return (*(pkt + 1) + 2);

    }

}

static

    int

_asn_bitstring_check(const char *str, size_t asn_length, u_char datum)

{

    char            ebuf[128];

    if (asn_length < 1) {

        snprintf(ebuf, sizeof(ebuf),

                "%s: length %d too small", str, (int) asn_length);

        ebuf[ sizeof(ebuf)-1 ] = 0;

        ERROR_MSG(ebuf);

        return 1;

    }

    /*

     * if (datum > 7){

     * sprintf(ebuf,"%s: datum %d >7: too large", str, (int)(datum));

     * ERROR_MSG(ebuf);

     * return 1;

     * }

     */

    return 0;

}

/**

 * @internal 

 * asn_parse_int - pulls a long out of an int type.

 *

 *  On entry, datalength is input as the number of valid bytes following

 *   "data".  On exit, it is returned as the number of valid bytes

 *   following the end of this object.

 *

 *  Returns a pointer to the first byte past the end

 *   of this object (i.e. the start of the next object).

 *  Returns NULL on any error.

 *  

 * @param data       IN - pointer to start of object

 * @param datalength IN/OUT - number of valid bytes left in buffer

 * @param type       OUT - asn type of object

 * @param intp       IN/OUT - pointer to start of output buffer

 * @param intsize    IN - size of output buffer

 * 

 * @return pointer to the first byte past the end

 *   of this object (i.e. the start of the next object) Returns NULL on any error

 */

u_char         *

asn_parse_int(u_char * data,

              size_t * datalength,

              u_char * type, long *intp, size_t intsize)

{

    /*

     * ASN.1 integer ::= 0x02 asnlength byte {byte}*

     */

    static const char *errpre = "parse int";

    register u_char *bufp = data;

    u_long          asn_length;

    int             i;

    union {

        long          l;

        unsigned char b[sizeof(long)];

    } value;

    if (NULL == data || NULL == datalength || NULL == type || NULL == intp) {

        ERROR_MSG("parse int: NULL pointer");

        return NULL;

    }

    if (intsize != sizeof(long)) {

        _asn_size_err(errpre, intsize, sizeof(long));

        return NULL;

    }

    /** need at least 2 bytes to work with: type, length (which might be 0)  */

    if (*datalength < 2) {

        _asn_short_err(errpre, *datalength, 2);

        return NULL;

    }

    *type = *bufp++;

    if (*type != ASN_INTEGER) {

        _asn_type_err(errpre, *type);

        return NULL;

    }

    bufp = asn_parse_nlength(bufp, *datalength - 1, &asn_length);

    if (NULL == bufp) {

        _asn_short_err(errpre, *datalength - 1, asn_length);

        return NULL;

    }

    if ((size_t) asn_length > intsize || (int) asn_length == 0) {

        _asn_length_err(errpre, (size_t) asn_length, intsize);

        return NULL;

    }

    *datalength -= (int) asn_length + (bufp - data);

    DEBUGDUMPSETUP("recv", data, bufp - data + asn_length);

    memset(&value.b, *bufp & 0x80 ? 0xff : 0, sizeof(value.b));

    if (NETSNMP_BIGENDIAN) {

        for (i = sizeof(long) - asn_length; asn_length--; i++)

            value.b[i] = *bufp++;

    } else {

        for (i = asn_length - 1; asn_length--; i--)

            value.b[i] = *bufp++;

    }

    CHECK_OVERFLOW_S(value.l, 1);

    DEBUGMSG(("dumpv_recv", "  Integer:\t%ld (0x%.2lX)\n", value.l, value.l));

    *intp = value.l;

    return bufp;

}

/**

 * @internal 

 * asn_parse_unsigned_int - pulls an unsigned long out of an ASN int type.

 *

 *  On entry, datalength is input as the number of valid bytes following

 *   "data".  On exit, it is returned as the number of valid bytes

 *   following the end of this object.

 *

 *  Returns a pointer to the first byte past the end

 *   of this object (i.e. the start of the next object).

 *  Returns NULL on any error.

 *  

 * @param data       IN - pointer to start of object

 * @param datalength IN/OUT - number of valid bytes left in buffer

 * @param type       OUT - asn type of object

 * @param intp       IN/OUT - pointer to start of output buffer

 * @param intsize    IN - size of output buffer

 * 

 * @return pointer to the first byte past the end

 *   of this object (i.e. the start of the next object) Returns NULL on any error

 */

u_char         *

asn_parse_unsigned_int(u_char * data,

                       size_t * datalength,

                       u_char * type, u_long * intp, size_t intsize)

{

    /*

     * ASN.1 integer ::= 0x02 asnlength byte {byte}*

     */

    static const char *errpre = "parse uint";

    register u_char *bufp = data;

    u_long          asn_length;

    register u_long value = 0;

    if (NULL == data || NULL == datalength || NULL == type || NULL == intp) {

        ERROR_MSG("parse uint: NULL pointer");

        return NULL;

    }

    if (intsize != sizeof(long)) {

        _asn_size_err(errpre, intsize, sizeof(long));

        return NULL;

    }

    /** need at least 2 bytes to work with: type, length (which might be 0)  */

    if (*datalength < 2) {

        _asn_short_err(errpre, *datalength, 2);

        return NULL;

    }

    *type = *bufp++;

    if (*type != ASN_COUNTER && *type != ASN_GAUGE && *type != ASN_TIMETICKS

            && *type != ASN_UINTEGER) {

        _asn_type_err(errpre, *type);

        return NULL;

    }

    bufp = asn_parse_nlength(bufp, *datalength - 1, &asn_length);

    if (NULL == bufp) {

        _asn_short_err(errpre, *datalength - 1, asn_length);

        return NULL;

    }

    if ((asn_length > (intsize + 1)) || ((int) asn_length == 0) ||

        ((asn_length == intsize + 1) && *bufp != 0x00)) {

        _asn_length_err(errpre, (size_t) asn_length, intsize);

        return NULL;

    }

    *datalength -= (int) asn_length + (bufp - data);

    DEBUGDUMPSETUP("recv", data, bufp - data + asn_length);

    while (asn_length--)

        value = (value << 8) | *bufp++;

    CHECK_OVERFLOW_U(value,2);

    DEBUGMSG(("dumpv_recv", "  UInteger:\t%ld (0x%.2lX)\n", value, value));

    *intp = value;

    return bufp;

}

/**

 * @internal 

 * asn_build_int - builds an ASN object containing an integer.

 *

 *  On entry, datalength is input as the number of valid bytes following

 *   "data".  On exit, it is returned as the number of valid bytes

 *   following the end of this object.

 *

 *  Returns a pointer to the first byte past the end

 *   of this object (i.e. the start of the next object).

 *  Returns NULL on any error.

 * 

 * 

 * @param data         IN - pointer to start of output buffer

 * @param datalength   IN/OUT - number of valid bytes left in buffer

 * @param type         IN  - asn type of objec

 * @param intp         IN - pointer to start of long integer

 * @param intsize      IN - size of input buffer

 * 

 * @return  Returns a pointer to the first byte past the end

 *          of this object (i.e. the start of the next object).

 *          Returns NULL on any error.

 */

u_char         *

asn_build_int(u_char * data,

           size_t * datalength, u_char type, const long *intp, size_t intsize)

{

    /*

     * ASN.1 integer ::= 0x02 asnlength byte {byte}*

     */

    static const char *errpre = "build int";

    register long   integer;

    register u_long mask;

    u_char         *initdatap = data;

    if (intsize != sizeof(long)) {

        _asn_size_err(errpre, intsize, sizeof(long));

        return NULL;

    }

    integer = *intp;

    CHECK_OVERFLOW_S(integer,3);

    /*

     * Truncate "unnecessary" bytes off of the most significant end of this

     * 2's complement integer.  There should be no sequence of 9

     * consecutive 1's or 0's at the most significant end of the

     * integer.

     */

    mask = ((u_long) 0x1FF) << ((8 * (sizeof(long) - 1)) - 1);

    /*

     * mask is 0xFF800000 on a big-endian machine 

     */

    while ((((integer & mask) == 0) || ((integer & mask) == mask))

           && intsize > 1) {

        intsize--;

        integer = (u_long)integer << 8;

    }

    data = asn_build_header(data, datalength, type, intsize);

    if (_asn_build_header_check(errpre, data, *datalength, intsize))

        return NULL;

    *datalength -= intsize;

    mask = ((u_long) 0xFF) << (8 * (sizeof(long) - 1));

    /*

     * mask is 0xFF000000 if sizeof(long) == 4.

     */

    while (intsize--) {

        *data++ = (u_char) ((integer & mask) >> (8 * (sizeof(long) - 1)));

        integer = (u_long)integer << 8;

    }

    DEBUGDUMPSETUP("send", initdatap, data - initdatap);

    DEBUGMSG(("dumpv_send", "  Integer:\t%ld (0x%.2lX)\n", *intp, *intp));

    return data;

}

/**

 * @internal 

 * asn_build_unsigned_int - builds an ASN object containing an integer.

 *

 *  On entry, datalength is input as the number of valid bytes following

 *   "data".  On exit, it is returned as the number of valid bytes

 *   following the end of this object.

 *

 *  Returns a pointer to the first byte past the end

 *   of this object (i.e. the start of the next object).

 *  Returns NULL on any error.

 * 

 * 

 * @param data         IN - pointer to start of output buffer

 * @param datalength   IN/OUT - number of valid bytes left in buffer

 * @param type         IN  - asn type of objec

 * @param intp         IN - pointer to start of long integer

 * @param intsize      IN - size of input buffer

 * 

 * @return  Returns a pointer to the first byte past the end

 *          of this object (i.e. the start of the next object).

 *          Returns NULL on any error.

 */

u_char         *

asn_build_unsigned_int(u_char * data,

                       size_t * datalength,

                       u_char type, const u_long * intp, size_t intsize)

{

    /*

     * ASN.1 integer ::= 0x02 asnlength byte {byte}*

     */

    static const char *errpre = "build uint";

    register u_long integer;

    register u_long mask;

    int             add_null_byte = 0;

    u_char         *initdatap = data;

    if (intsize != sizeof(long)) {

        _asn_size_err(errpre, intsize, sizeof(long));

        return NULL;

    }

    integer = *intp;

    CHECK_OVERFLOW_U(integer,4);

    mask = ((u_long) 0xFF) << (8 * (sizeof(long) - 1));

    /*

     * mask is 0xFF000000 on a big-endian machine 

     */

    if ((u_char) ((integer & mask) >> (8 * (sizeof(long) - 1))) & 0x80) {

        /*

         * if MSB is set 

         */

        add_null_byte = 1;

        intsize++;

    } else {

        /*

         * Truncate "unnecessary" bytes off of the most significant end of this 2's complement integer.

         * There should be no sequence of 9 consecutive 1's or 0's at the most significant end of the

         * integer.

         */

        mask = ((u_long) 0x1FF) << ((8 * (sizeof(long) - 1)) - 1);

        /*

         * mask is 0xFF800000 on a big-endian machine 

         */

        while ((((integer & mask) == 0) || ((integer & mask) == mask))

               && intsize > 1) {

            intsize--;

            integer <<= 8;

        }

    }

    data = asn_build_header(data, datalength, type, intsize);

    if (_asn_build_header_check(errpre, data, *datalength, intsize))

        return NULL;

    *datalength -= intsize;

    if (add_null_byte == 1) {

        *data++ = '\0';

        intsize--;

    }

    mask = ((u_long) 0xFF) << (8 * (sizeof(long) - 1));

    /*

     * mask is 0xFF000000 on a big-endian machine 

     */

    while (intsize--) {

        *data++ = (u_char) ((integer & mask) >> (8 * (sizeof(long) - 1)));

        integer <<= 8;

    }

    DEBUGDUMPSETUP("send", initdatap, data - initdatap);

    DEBUGMSG(("dumpv_send", "  UInteger:\t%ld (0x%.2lX)\n", *intp, *intp));

    return data;

}

/**

 * @internal 

 * asn_parse_string - pulls an octet string out of an ASN octet string type.

 *

 *  On entry, datalength is input as the number of valid bytes following

 *   "data".  On exit, it is returned as the number of valid bytes

 *   following the beginning of the next object.

 *

 *  "string" is filled with the octet string.

 * ASN.1 octet string   ::=      primstring | cmpdstring

 * primstring           ::= 0x04 asnlength byte {byte}*

 * cmpdstring           ::= 0x24 asnlength string {string}*

 *

 *  Returns a pointer to the first byte past the end

 *   of this object (i.e. the start of the next object).

 *  Returns NULL on any error.

 * 

 * @param data        IN - pointer to start of object

 * @param datalength  IN/OUT - number of valid bytes left in buffer

 * @param type        OUT - asn type of object 

 * @param string      IN/OUT - pointer to start of output buffer

 * @param strlength   IN/OUT - size of output buffer

 * 

 * @return  Returns a pointer to the first byte past the end

 *          of this object (i.e. the start of the next object).

 *          Returns NULL on any error.

 */

u_char         *

asn_parse_string(u_char * data,

                 size_t * datalength,

                 u_char * type, u_char * str, size_t * strlength)

{

    static const char *errpre = "parse string";

    u_char         *bufp = data;

    u_long          asn_length;

    if (NULL == data || NULL == datalength || NULL == type || NULL == str ||

        NULL == strlength) {

        ERROR_MSG("parse string: NULL pointer");

        return NULL;

    }

    /** need at least 2 bytes to work with: type, length (which might be 0)  */

    if (*datalength < 2) {

        _asn_short_err(errpre, *datalength, 2);

        return NULL;

    }

    *type = *bufp++;

    if (*type != ASN_OCTET_STR && *type != ASN_IPADDRESS && *type != ASN_OPAQUE

            && *type != ASN_NSAP) {

        _asn_type_err(errpre, *type);

        return NULL;

    }

    bufp = asn_parse_nlength(bufp, *datalength - 1, &asn_length);

    if (NULL == bufp) {

        _asn_short_err(errpre, *datalength - 1, asn_length);

        return NULL;

    }

    if (asn_length > *strlength) {

        _asn_length_err(errpre, (size_t) asn_length, *strlength);

        return NULL;

    }

    DEBUGDUMPSETUP("recv", data, bufp - data + asn_length);

    memmove(str, bufp, asn_length);

    if (*strlength > asn_length)

        str[asn_length] = 0;

    *strlength = asn_length;

    *datalength -= asn_length + (bufp - data);

    DEBUGIF("dumpv_recv") {

        u_char         *buf = (u_char *) malloc(1 + asn_length);

        size_t          l = (buf != NULL) ? (1 + asn_length) : 0, ol = 0;

        if (sprint_realloc_asciistring

            (&buf, &l, &ol, 1, str, asn_length)) {

            DEBUGMSG(("dumpv_recv", "  String:\t%s\n", buf));

        } else {

            if (buf == NULL) {

                DEBUGMSG(("dumpv_recv", "  String:\t[TRUNCATED]\n"));

            } else {

                DEBUGMSG(("dumpv_recv", "  String:\t%s [TRUNCATED]\n",

                          buf));

            }

        }

        if (buf != NULL) {

            free(buf);

        }

    }