/src/openssl30/crypto/x509/x509_obj.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* |
2 | | * Copyright 1995-2020 The OpenSSL Project Authors. All Rights Reserved. |
3 | | * |
4 | | * Licensed under the Apache License 2.0 (the "License"). You may not use |
5 | | * this file except in compliance with the License. You can obtain a copy |
6 | | * in the file LICENSE in the source distribution or at |
7 | | * https://www.openssl.org/source/license.html |
8 | | */ |
9 | | |
10 | | #include <stdio.h> |
11 | | #include "internal/cryptlib.h" |
12 | | #include <openssl/objects.h> |
13 | | #include <openssl/x509.h> |
14 | | #include <openssl/buffer.h> |
15 | | #include "crypto/x509.h" |
16 | | #include "crypto/ctype.h" |
17 | | |
18 | | /* |
19 | | * Limit to ensure we don't overflow: much greater than |
20 | | * anything encountered in practice. |
21 | | */ |
22 | | |
23 | 0 | #define NAME_ONELINE_MAX (1024 * 1024) |
24 | | |
25 | | char *X509_NAME_oneline(const X509_NAME *a, char *buf, int len) |
26 | 0 | { |
27 | 0 | const X509_NAME_ENTRY *ne; |
28 | 0 | int i; |
29 | 0 | int n, lold, l, l1, l2, num, j, type; |
30 | 0 | int prev_set = -1; |
31 | 0 | const char *s; |
32 | 0 | char *p; |
33 | 0 | unsigned char *q; |
34 | 0 | BUF_MEM *b = NULL; |
35 | 0 | static const char hex[17] = "0123456789ABCDEF"; |
36 | 0 | int gs_doit[4]; |
37 | 0 | char tmp_buf[80]; |
38 | | #ifdef CHARSET_EBCDIC |
39 | | unsigned char ebcdic_buf[1024]; |
40 | | #endif |
41 | |
|
42 | 0 | if (buf == NULL) { |
43 | 0 | if ((b = BUF_MEM_new()) == NULL) |
44 | 0 | goto err; |
45 | 0 | if (!BUF_MEM_grow(b, 200)) |
46 | 0 | goto err; |
47 | 0 | b->data[0] = '\0'; |
48 | 0 | len = 200; |
49 | 0 | } else if (len == 0) { |
50 | 0 | return NULL; |
51 | 0 | } |
52 | 0 | if (a == NULL) { |
53 | 0 | if (b) { |
54 | 0 | buf = b->data; |
55 | 0 | OPENSSL_free(b); |
56 | 0 | } |
57 | 0 | strncpy(buf, "NO X509_NAME", len); |
58 | 0 | buf[len - 1] = '\0'; |
59 | 0 | return buf; |
60 | 0 | } |
61 | | |
62 | 0 | len--; /* space for '\0' */ |
63 | 0 | l = 0; |
64 | 0 | for (i = 0; i < sk_X509_NAME_ENTRY_num(a->entries); i++) { |
65 | 0 | ne = sk_X509_NAME_ENTRY_value(a->entries, i); |
66 | 0 | n = OBJ_obj2nid(ne->object); |
67 | 0 | if ((n == NID_undef) || ((s = OBJ_nid2sn(n)) == NULL)) { |
68 | 0 | i2t_ASN1_OBJECT(tmp_buf, sizeof(tmp_buf), ne->object); |
69 | 0 | s = tmp_buf; |
70 | 0 | } |
71 | 0 | l1 = strlen(s); |
72 | |
|
73 | 0 | type = ne->value->type; |
74 | 0 | num = ne->value->length; |
75 | 0 | if (num > NAME_ONELINE_MAX) { |
76 | 0 | ERR_raise(ERR_LIB_X509, X509_R_NAME_TOO_LONG); |
77 | 0 | goto end; |
78 | 0 | } |
79 | 0 | q = ne->value->data; |
80 | | #ifdef CHARSET_EBCDIC |
81 | | if (type == V_ASN1_GENERALSTRING || |
82 | | type == V_ASN1_VISIBLESTRING || |
83 | | type == V_ASN1_PRINTABLESTRING || |
84 | | type == V_ASN1_TELETEXSTRING || |
85 | | type == V_ASN1_IA5STRING) { |
86 | | if (num > (int)sizeof(ebcdic_buf)) |
87 | | num = sizeof(ebcdic_buf); |
88 | | ascii2ebcdic(ebcdic_buf, q, num); |
89 | | q = ebcdic_buf; |
90 | | } |
91 | | #endif |
92 | |
|
93 | 0 | if ((type == V_ASN1_GENERALSTRING) && ((num % 4) == 0)) { |
94 | 0 | gs_doit[0] = gs_doit[1] = gs_doit[2] = gs_doit[3] = 0; |
95 | 0 | for (j = 0; j < num; j++) |
96 | 0 | if (q[j] != 0) |
97 | 0 | gs_doit[j & 3] = 1; |
98 | |
|
99 | 0 | if (gs_doit[0] | gs_doit[1] | gs_doit[2]) |
100 | 0 | gs_doit[0] = gs_doit[1] = gs_doit[2] = gs_doit[3] = 1; |
101 | 0 | else { |
102 | 0 | gs_doit[0] = gs_doit[1] = gs_doit[2] = 0; |
103 | 0 | gs_doit[3] = 1; |
104 | 0 | } |
105 | 0 | } else |
106 | 0 | gs_doit[0] = gs_doit[1] = gs_doit[2] = gs_doit[3] = 1; |
107 | |
|
108 | 0 | for (l2 = j = 0; j < num; j++) { |
109 | 0 | if (!gs_doit[j & 3]) |
110 | 0 | continue; |
111 | 0 | l2++; |
112 | 0 | if (q[j] == '/' || q[j] == '+') |
113 | 0 | l2++; /* char needs to be escaped */ |
114 | 0 | else if ((ossl_toascii(q[j]) < ossl_toascii(' ')) || |
115 | 0 | (ossl_toascii(q[j]) > ossl_toascii('~'))) |
116 | 0 | l2 += 3; |
117 | 0 | } |
118 | |
|
119 | 0 | lold = l; |
120 | 0 | l += 1 + l1 + 1 + l2; |
121 | 0 | if (l > NAME_ONELINE_MAX) { |
122 | 0 | ERR_raise(ERR_LIB_X509, X509_R_NAME_TOO_LONG); |
123 | 0 | goto end; |
124 | 0 | } |
125 | 0 | if (b != NULL) { |
126 | 0 | if (!BUF_MEM_grow(b, l + 1)) |
127 | 0 | goto err; |
128 | 0 | p = &(b->data[lold]); |
129 | 0 | } else if (l > len) { |
130 | 0 | break; |
131 | 0 | } else |
132 | 0 | p = &(buf[lold]); |
133 | 0 | *(p++) = prev_set == ne->set ? '+' : '/'; |
134 | 0 | memcpy(p, s, (unsigned int)l1); |
135 | 0 | p += l1; |
136 | 0 | *(p++) = '='; |
137 | |
|
138 | 0 | #ifndef CHARSET_EBCDIC /* q was assigned above already. */ |
139 | 0 | q = ne->value->data; |
140 | 0 | #endif |
141 | |
|
142 | 0 | for (j = 0; j < num; j++) { |
143 | 0 | if (!gs_doit[j & 3]) |
144 | 0 | continue; |
145 | 0 | #ifndef CHARSET_EBCDIC |
146 | 0 | n = q[j]; |
147 | 0 | if ((n < ' ') || (n > '~')) { |
148 | 0 | *(p++) = '\\'; |
149 | 0 | *(p++) = 'x'; |
150 | 0 | *(p++) = hex[(n >> 4) & 0x0f]; |
151 | 0 | *(p++) = hex[n & 0x0f]; |
152 | 0 | } else { |
153 | 0 | if (n == '/' || n == '+') |
154 | 0 | *(p++) = '\\'; |
155 | 0 | *(p++) = n; |
156 | 0 | } |
157 | | #else |
158 | | n = os_toascii[q[j]]; |
159 | | if ((n < os_toascii[' ']) || (n > os_toascii['~'])) { |
160 | | *(p++) = '\\'; |
161 | | *(p++) = 'x'; |
162 | | *(p++) = hex[(n >> 4) & 0x0f]; |
163 | | *(p++) = hex[n & 0x0f]; |
164 | | } else { |
165 | | if (n == os_toascii['/'] || n == os_toascii['+']) |
166 | | *(p++) = '\\'; |
167 | | *(p++) = q[j]; |
168 | | } |
169 | | #endif |
170 | 0 | } |
171 | 0 | *p = '\0'; |
172 | 0 | prev_set = ne->set; |
173 | 0 | } |
174 | 0 | if (b != NULL) { |
175 | 0 | p = b->data; |
176 | 0 | OPENSSL_free(b); |
177 | 0 | } else |
178 | 0 | p = buf; |
179 | 0 | if (i == 0) |
180 | 0 | *p = '\0'; |
181 | 0 | return p; |
182 | 0 | err: |
183 | 0 | ERR_raise(ERR_LIB_X509, ERR_R_MALLOC_FAILURE); |
184 | 0 | end: |
185 | 0 | BUF_MEM_free(b); |
186 | 0 | return NULL; |
187 | 0 | } |