/src/openssl32/crypto/ct/ct_oct.c

Source (jump to first uncovered line)
/*
 * Copyright 2016-2020 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#ifdef OPENSSL_NO_CT
# error "CT is disabled"
#endif

#include <limits.h>
#include <string.h>

#include <openssl/asn1.h>
#include <openssl/buffer.h>
#include <openssl/ct.h>
#include <openssl/err.h>

#include "ct_local.h"

int o2i_SCT_signature(SCT *sct, const unsigned char **in, size_t len)
{
    size_t siglen;
    size_t len_remaining = len;
    const unsigned char *p;

    if (sct->version != SCT_VERSION_V1) {
        ERR_raise(ERR_LIB_CT, CT_R_UNSUPPORTED_VERSION);
        return -1;
    }
    /*
     * digitally-signed struct header: (1 byte) Hash algorithm (1 byte)
     * Signature algorithm (2 bytes + ?) Signature
     *
     * This explicitly rejects empty signatures: they're invalid for
     * all supported algorithms.
     */
    if (len <= 4) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
        return -1;
    }

    p = *in;
    /* Get hash and signature algorithm */
    sct->hash_alg = *p++;
    sct->sig_alg = *p++;
    if (SCT_get_signature_nid(sct) == NID_undef) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
        return -1;
    }
    /* Retrieve signature and check it is consistent with the buffer length */
    n2s(p, siglen);
    len_remaining -= (p - *in);
    if (siglen > len_remaining) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
        return -1;
    }

    if (SCT_set1_signature(sct, p, siglen) != 1)
        return -1;
    len_remaining -= siglen;
    *in = p + siglen;

    return len - len_remaining;
}

SCT *o2i_SCT(SCT **psct, const unsigned char **in, size_t len)
{
    SCT *sct = NULL;
    const unsigned char *p;

    if (len == 0 || len > MAX_SCT_SIZE) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
        goto err;
    }

    if ((sct = SCT_new()) == NULL)
        goto err;

    p = *in;

    sct->version = *p;
    if (sct->version == SCT_VERSION_V1) {
        int sig_len;
        size_t len2;
        /*-
         * Fixed-length header:
         *   struct {
         *     Version sct_version;     (1 byte)
         *     log_id id;               (32 bytes)
         *     uint64 timestamp;        (8 bytes)
         *     CtExtensions extensions; (2 bytes + ?)
         *   }
         */
        if (len < 43) {
            ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
            goto err;
        }
        len -= 43;
        p++;
        sct->log_id = OPENSSL_memdup(p, CT_V1_HASHLEN);
        if (sct->log_id == NULL)
            goto err;
        sct->log_id_len = CT_V1_HASHLEN;
        p += CT_V1_HASHLEN;

        n2l8(p, sct->timestamp);

        n2s(p, len2);
        if (len < len2) {
            ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
            goto err;
        }
        if (len2 > 0) {
            sct->ext = OPENSSL_memdup(p, len2);
            if (sct->ext == NULL)
                goto err;
        }
        sct->ext_len = len2;
        p += len2;
        len -= len2;

        sig_len = o2i_SCT_signature(sct, &p, len);
        if (sig_len <= 0) {
            ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
            goto err;
        }
        len -= sig_len;
        *in = p + len;
    } else {
        /* If not V1 just cache encoding */
        sct->sct = OPENSSL_memdup(p, len);
        if (sct->sct == NULL)
            goto err;
        sct->sct_len = len;
        *in = p + len;
    }

    if (psct != NULL) {
        SCT_free(*psct);
        *psct = sct;
    }

    return sct;
err:
    SCT_free(sct);
    return NULL;
}

int i2o_SCT_signature(const SCT *sct, unsigned char **out)
{
    size_t len;
    unsigned char *p = NULL, *pstart = NULL;

    if (!SCT_signature_is_complete(sct)) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
        goto err;
    }

    if (sct->version != SCT_VERSION_V1) {
        ERR_raise(ERR_LIB_CT, CT_R_UNSUPPORTED_VERSION);
        goto err;
    }

    /*
    * (1 byte) Hash algorithm
    * (1 byte) Signature algorithm
    * (2 bytes + ?) Signature
    */
    len = 4 + sct->sig_len;

    if (out != NULL) {
        if (*out != NULL) {
            p = *out;
            *out += len;
        } else {
            pstart = p = OPENSSL_malloc(len);
            if (p == NULL)
                goto err;
            *out = p;
        }

        *p++ = sct->hash_alg;
        *p++ = sct->sig_alg;
        s2n(sct->sig_len, p);
        memcpy(p, sct->sig, sct->sig_len);
    }

    return len;
err:
    OPENSSL_free(pstart);
    return -1;
}

int i2o_SCT(const SCT *sct, unsigned char **out)
{
    size_t len;
    unsigned char *p = NULL, *pstart = NULL;

    if (!SCT_is_complete(sct)) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_NOT_SET);
        goto err;
    }
    /*
     * Fixed-length header: struct { (1 byte) Version sct_version; (32 bytes)
     * log_id id; (8 bytes) uint64 timestamp; (2 bytes + ?) CtExtensions
     * extensions; (1 byte) Hash algorithm (1 byte) Signature algorithm (2
     * bytes + ?) Signature
     */
    if (sct->version == SCT_VERSION_V1)
        len = 43 + sct->ext_len + 4 + sct->sig_len;
    else
        len = sct->sct_len;

    if (out == NULL)
        return len;

    if (*out != NULL) {
        p = *out;
        *out += len;
    } else {
        pstart = p = OPENSSL_malloc(len);
        if (p == NULL)
            goto err;
        *out = p;
    }

    if (sct->version == SCT_VERSION_V1) {
        *p++ = sct->version;
        memcpy(p, sct->log_id, CT_V1_HASHLEN);
        p += CT_V1_HASHLEN;
        l2n8(sct->timestamp, p);
        s2n(sct->ext_len, p);
        if (sct->ext_len > 0) {
            memcpy(p, sct->ext, sct->ext_len);
            p += sct->ext_len;
        }
        if (i2o_SCT_signature(sct, &p) <= 0)
            goto err;
    } else {
        memcpy(p, sct->sct, len);
    }

    return len;
err:
    OPENSSL_free(pstart);
    return -1;
}

STACK_OF(SCT) *o2i_SCT_LIST(STACK_OF(SCT) **a, const unsigned char **pp,
                            size_t len)
{
    STACK_OF(SCT) *sk = NULL;
    size_t list_len, sct_len;

    if (len < 2 || len > MAX_SCT_LIST_SIZE) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
        return NULL;
    }

    n2s(*pp, list_len);
    if (list_len != len - 2) {
        ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
        return NULL;
    }

    if (a == NULL || *a == NULL) {
        sk = sk_SCT_new_null();
        if (sk == NULL)
            return NULL;
    } else {
        SCT *sct;

        /* Use the given stack, but empty it first. */
        sk = *a;
        while ((sct = sk_SCT_pop(sk)) != NULL)
            SCT_free(sct);
    }

    while (list_len > 0) {
        SCT *sct;

        if (list_len < 2) {
            ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
            goto err;
        }
        n2s(*pp, sct_len);
        list_len -= 2;

        if (sct_len == 0 || sct_len > list_len) {
            ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
            goto err;
        }
        list_len -= sct_len;

        if ((sct = o2i_SCT(NULL, pp, sct_len)) == NULL)
            goto err;
        if (!sk_SCT_push(sk, sct)) {
            SCT_free(sct);
            goto err;
        }
    }

    if (a != NULL && *a == NULL)
        *a = sk;
    return sk;

 err:
    if (a == NULL || *a == NULL)
        SCT_LIST_free(sk);
    return NULL;
}

int i2o_SCT_LIST(const STACK_OF(SCT) *a, unsigned char **pp)
{
    int len, sct_len, i, is_pp_new = 0;
    size_t len2;
    unsigned char *p = NULL, *p2;

    if (pp != NULL) {
        if (*pp == NULL) {
            if ((len = i2o_SCT_LIST(a, NULL)) == -1) {
                ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
                return -1;
            }
            if ((*pp = OPENSSL_malloc(len)) == NULL)
                return -1;
            is_pp_new = 1;
        }
        p = *pp + 2;
    }

    len2 = 2;
    for (i = 0; i < sk_SCT_num(a); i++) {
        if (pp != NULL) {
            p2 = p;
            p += 2;
            if ((sct_len = i2o_SCT(sk_SCT_value(a, i), &p)) == -1)
                goto err;
            s2n(sct_len, p2);
        } else {
          if ((sct_len = i2o_SCT(sk_SCT_value(a, i), NULL)) == -1)
              goto err;
        }
        len2 += 2 + sct_len;
    }

    if (len2 > MAX_SCT_LIST_SIZE)
        goto err;

    if (pp != NULL) {
        p = *pp;
        s2n(len2 - 2, p);
        if (!is_pp_new)
            *pp += len2;
    }
    return len2;

 err:
    if (is_pp_new) {
        OPENSSL_free(*pp);
        *pp = NULL;
    }
    return -1;
}

STACK_OF(SCT) *d2i_SCT_LIST(STACK_OF(SCT) **a, const unsigned char **pp,
                            long len)
{
    ASN1_OCTET_STRING *oct = NULL;
    STACK_OF(SCT) *sk = NULL;
    const unsigned char *p;

    p = *pp;
    if (d2i_ASN1_OCTET_STRING(&oct, &p, len) == NULL)
        return NULL;

    p = oct->data;
    if ((sk = o2i_SCT_LIST(a, &p, oct->length)) != NULL)
        *pp += len;

    ASN1_OCTET_STRING_free(oct);
    return sk;
}

int i2d_SCT_LIST(const STACK_OF(SCT) *a, unsigned char **out)
{
    ASN1_OCTET_STRING oct;
    int len;

    oct.data = NULL;
    if ((oct.length = i2o_SCT_LIST(a, &oct.data)) == -1)
        return -1;

    len = i2d_ASN1_OCTET_STRING(&oct, out);
    OPENSSL_free(oct.data);
    return len;
}

Coverage Report

Created: 2024-07-27 06:39

Line	Count	Source (jump to first uncovered line)
1		/*
2		* Copyright 2016-2020 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the Apache License 2.0 (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		#ifdef OPENSSL_NO_CT
11		# error "CT is disabled"
12		#endif
13
14		#include <limits.h>
15		#include <string.h>
16
17		#include <openssl/asn1.h>
18		#include <openssl/buffer.h>
19		#include <openssl/ct.h>
20		#include <openssl/err.h>
21
22		#include "ct_local.h"
23
24		int o2i_SCT_signature(SCT sct, const unsigned char *in, size_t len)
25	74.3k	{
26	74.3k	size_t siglen;
27	74.3k	size_t len_remaining = len;
28	74.3k	const unsigned char *p;
29
30	74.3k	if (sct->version != SCT_VERSION_V1) {
31	0	ERR_raise(ERR_LIB_CT, CT_R_UNSUPPORTED_VERSION);
32	0	return -1;
33	0	}
34		/*
35		* digitally-signed struct header: (1 byte) Hash algorithm (1 byte)
36		* Signature algorithm (2 bytes + ?) Signature
37		*
38		* This explicitly rejects empty signatures: they're invalid for
39		* all supported algorithms.
40		*/
41	74.3k	if (len <= 4) {
42	3.96k	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
43	3.96k	return -1;
44	3.96k	}
45
46	70.3k	p = *in;
47		/* Get hash and signature algorithm */
48	70.3k	sct->hash_alg = *p++;
49	70.3k	sct->sig_alg = *p++;
50	70.3k	if (SCT_get_signature_nid(sct) == NID_undef) {
51	4.26k	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
52	4.26k	return -1;
53	4.26k	}
54		/* Retrieve signature and check it is consistent with the buffer length */
55	66.0k	n2s(p, siglen);
56	66.0k	len_remaining -= (p - *in);
57	66.0k	if (siglen > len_remaining) {
58	3.46k	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
59	3.46k	return -1;
60	3.46k	}
61
62	62.6k	if (SCT_set1_signature(sct, p, siglen) != 1)
63	0	return -1;
64	62.6k	len_remaining -= siglen;
65	62.6k	*in = p + siglen;
66
67	62.6k	return len - len_remaining;
68	62.6k	}
69
70		SCT o2i_SCT(SCT psct, const unsigned char *in, size_t len)
71	765k	{
72	765k	SCT *sct = NULL;
73	765k	const unsigned char *p;
74
75	765k	if (len == 0 \|\| len > MAX_SCT_SIZE) {
76	0	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
77	0	goto err;
78	0	}
79
80	765k	if ((sct = SCT_new()) == NULL)
81	0	goto err;
82
83	765k	p = *in;
84
85	765k	sct->version = *p;
86	765k	if (sct->version == SCT_VERSION_V1) {
87	78.6k	int sig_len;
88	78.6k	size_t len2;
89		/*-
90		* Fixed-length header:
91		* struct {
92		* Version sct_version; (1 byte)
93		* log_id id; (32 bytes)
94		* uint64 timestamp; (8 bytes)
95		* CtExtensions extensions; (2 bytes + ?)
96		* }
97		*/
98	78.6k	if (len < 43) {
99	1.64k	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
100	1.64k	goto err;
101	1.64k	}
102	77.0k	len -= 43;
103	77.0k	p++;
104	77.0k	sct->log_id = OPENSSL_memdup(p, CT_V1_HASHLEN);
105	77.0k	if (sct->log_id == NULL)
106	0	goto err;
107	77.0k	sct->log_id_len = CT_V1_HASHLEN;
108	77.0k	p += CT_V1_HASHLEN;
109
110	77.0k	n2l8(p, sct->timestamp);
111
112	77.0k	n2s(p, len2);
113	77.0k	if (len < len2) {
114	2.71k	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
115	2.71k	goto err;
116	2.71k	}
117	74.3k	if (len2 > 0) {
118	21.7k	sct->ext = OPENSSL_memdup(p, len2);
119	21.7k	if (sct->ext == NULL)
120	0	goto err;
121	21.7k	}
122	74.3k	sct->ext_len = len2;
123	74.3k	p += len2;
124	74.3k	len -= len2;
125
126	74.3k	sig_len = o2i_SCT_signature(sct, &p, len);
127	74.3k	if (sig_len <= 0) {
128	11.7k	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID);
129	11.7k	goto err;
130	11.7k	}
131	62.6k	len -= sig_len;
132	62.6k	*in = p + len;
133	686k	} else {
134		/* If not V1 just cache encoding */
135	686k	sct->sct = OPENSSL_memdup(p, len);
136	686k	if (sct->sct == NULL)
137	0	goto err;
138	686k	sct->sct_len = len;
139	686k	*in = p + len;
140	686k	}
141
142	749k	if (psct != NULL) {
143	0	SCT_free(*psct);
144	0	*psct = sct;
145	0	}
146
147	749k	return sct;
148	16.0k	err:
149	16.0k	SCT_free(sct);
150	16.0k	return NULL;
151	765k	}
152
153		int i2o_SCT_signature(const SCT sct, unsigned char *out)
154	6.36k	{
155	6.36k	size_t len;
156	6.36k	unsigned char p = NULL, pstart = NULL;
157
158	6.36k	if (!SCT_signature_is_complete(sct)) {
159	0	ERR_raise(ERR_LIB_CT, CT_R_SCT_INVALID_SIGNATURE);
160	0	goto err;
161	0	}
162
163	6.36k	if (sct->version != SCT_VERSION_V1) {
164	0	ERR_raise(ERR_LIB_CT, CT_R_UNSUPPORTED_VERSION);
165	0	goto err;
166	0	}
167
168		/*
169		* (1 byte) Hash algorithm
170		* (1 byte) Signature algorithm
171		* (2 bytes + ?) Signature
172		*/
173	6.36k	len = 4 + sct->sig_len;
174
175	6.36k	if (out != NULL) {
176	6.36k	if (*out != NULL) {
177	6.36k	p = *out;
178	6.36k	*out += len;
179	6.36k	} else {
180	0	pstart = p = OPENSSL_malloc(len);
181	0	if (p == NULL)
182	0	goto err;
183	0	*out = p;
184	0	}
185
186	6.36k	*p++ = sct->hash_alg;
187	6.36k	*p++ = sct->sig_alg;
188	6.36k	s2n(sct->sig_len, p);
189	6.36k	memcpy(p, sct->sig, sct->sig_len);
190	6.36k	}
191
192	6.36k	return len;
193	0	err:
194	0	OPENSSL_free(pstart);
195	0	return -1;
196	6.36k	}
197
198		int i2o_SCT(const SCT sct, unsigned char *out)
199	815k	{
200	815k	size_t len;
201	815k	unsigned char p = NULL, pstart = NULL;
202
203	815k	if (!SCT_is_complete(sct)) {
204	1.00k	ERR_raise(ERR_LIB_CT, CT_R_SCT_NOT_SET);
205	1.00k	goto err;
206	1.00k	}
207		/*
208		* Fixed-length header: struct { (1 byte) Version sct_version; (32 bytes)
209		* log_id id; (8 bytes) uint64 timestamp; (2 bytes + ?) CtExtensions
210		* extensions; (1 byte) Hash algorithm (1 byte) Signature algorithm (2
211		* bytes + ?) Signature
212		*/
213	814k	if (sct->version == SCT_VERSION_V1)
214	13.6k	len = 43 + sct->ext_len + 4 + sct->sig_len;
215	801k	else
216	801k	len = sct->sct_len;
217
218	814k	if (out == NULL)
219	412k	return len;
220
221	402k	if (*out != NULL) {
222	402k	p = *out;
223	402k	*out += len;
224	402k	} else {
225	0	pstart = p = OPENSSL_malloc(len);
226	0	if (p == NULL)
227	0	goto err;
228	0	*out = p;
229	0	}
230
231	402k	if (sct->version == SCT_VERSION_V1) {
232	6.36k	*p++ = sct->version;
233	6.36k	memcpy(p, sct->log_id, CT_V1_HASHLEN);
234	6.36k	p += CT_V1_HASHLEN;
235	6.36k	l2n8(sct->timestamp, p);
236	6.36k	s2n(sct->ext_len, p);
237	6.36k	if (sct->ext_len > 0) {
238	3.00k	memcpy(p, sct->ext, sct->ext_len);
239	3.00k	p += sct->ext_len;
240	3.00k	}
241	6.36k	if (i2o_SCT_signature(sct, &p) <= 0)
242	0	goto err;
243	396k	} else {
244	396k	memcpy(p, sct->sct, len);
245	396k	}
246
247	402k	return len;
248	1.00k	err:
249	1.00k	OPENSSL_free(pstart);
250	1.00k	return -1;
251	402k	}
252
253		STACK_OF(SCT) o2i_SCT_LIST(STACK_OF(SCT) a, const unsigned char *pp,
254		size_t len)
255	74.3k	{
256	74.3k	STACK_OF(SCT) *sk = NULL;
257	74.3k	size_t list_len, sct_len;
258
259	74.3k	if (len < 2 \|\| len > MAX_SCT_LIST_SIZE) {
260	2.34k	ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
261	2.34k	return NULL;
262	2.34k	}
263
264	72.0k	n2s(*pp, list_len);
265	72.0k	if (list_len != len - 2) {
266	4.45k	ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
267	4.45k	return NULL;
268	4.45k	}
269
270	67.5k	if (a == NULL \|\| *a == NULL) {
271	67.5k	sk = sk_SCT_new_null();
272	67.5k	if (sk == NULL)
273	0	return NULL;
274	67.5k	} else {
275	0	SCT *sct;
276
277		/* Use the given stack, but empty it first. */
278	0	sk = *a;
279	0	while ((sct = sk_SCT_pop(sk)) != NULL)
280	0	SCT_free(sct);
281	0	}
282
283	816k	while (list_len > 0) {
284	774k	SCT *sct;
285
286	774k	if (list_len < 2) {
287	2.53k	ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
288	2.53k	goto err;
289	2.53k	}
290	772k	n2s(*pp, sct_len);
291	772k	list_len -= 2;
292
293	772k	if (sct_len == 0 \|\| sct_len > list_len) {
294	7.03k	ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
295	7.03k	goto err;
296	7.03k	}
297	765k	list_len -= sct_len;
298
299	765k	if ((sct = o2i_SCT(NULL, pp, sct_len)) == NULL)
300	16.0k	goto err;
301	749k	if (!sk_SCT_push(sk, sct)) {
302	0	SCT_free(sct);
303	0	goto err;
304	0	}
305	749k	}
306
307	41.9k	if (a != NULL && *a == NULL)
308	0	*a = sk;
309	41.9k	return sk;
310
311	25.6k	err:
312	25.6k	if (a == NULL \|\| *a == NULL)
313	25.6k	SCT_LIST_free(sk);
314	25.6k	return NULL;
315	67.5k	}
316
317		int i2o_SCT_LIST(const STACK_OF(SCT) a, unsigned char *pp)
318	4.58k	{
319	4.58k	int len, sct_len, i, is_pp_new = 0;
320	4.58k	size_t len2;
321	4.58k	unsigned char p = NULL, p2;
322
323	4.58k	if (pp != NULL) {
324	2.29k	if (*pp == NULL) {
325	2.29k	if ((len = i2o_SCT_LIST(a, NULL)) == -1) {
326	1.00k	ERR_raise(ERR_LIB_CT, CT_R_SCT_LIST_INVALID);
327	1.00k	return -1;
328	1.00k	}
329	1.29k	if ((*pp = OPENSSL_malloc(len)) == NULL)
330	0	return -1;
331	1.29k	is_pp_new = 1;
332	1.29k	}
333	1.29k	p = *pp + 2;
334	1.29k	}
335
336	3.58k	len2 = 2;
337	818k	for (i = 0; i < sk_SCT_num(a); i++) {
338	815k	if (pp != NULL) {
339	402k	p2 = p;
340	402k	p += 2;
341	402k	if ((sct_len = i2o_SCT(sk_SCT_value(a, i), &p)) == -1)
342	0	goto err;
343	402k	s2n(sct_len, p2);
344	413k	} else {
345	413k	if ((sct_len = i2o_SCT(sk_SCT_value(a, i), NULL)) == -1)
346	1.00k	goto err;
347	413k	}
348	814k	len2 += 2 + sct_len;
349	814k	}
350
351	2.58k	if (len2 > MAX_SCT_LIST_SIZE)
352	0	goto err;
353
354	2.58k	if (pp != NULL) {
355	1.29k	p = *pp;
356	1.29k	s2n(len2 - 2, p);
357	1.29k	if (!is_pp_new)
358	0	*pp += len2;
359	1.29k	}
360	2.58k	return len2;
361
362	1.00k	err:
363	1.00k	if (is_pp_new) {
364	0	OPENSSL_free(*pp);
365	0	*pp = NULL;
366	0	}
367	1.00k	return -1;
368	2.58k	}
369
370		STACK_OF(SCT) d2i_SCT_LIST(STACK_OF(SCT) a, const unsigned char *pp,
371		long len)
372	83.8k	{
373	83.8k	ASN1_OCTET_STRING *oct = NULL;
374	83.8k	STACK_OF(SCT) *sk = NULL;
375	83.8k	const unsigned char *p;
376
377	83.8k	p = *pp;
378	83.8k	if (d2i_ASN1_OCTET_STRING(&oct, &p, len) == NULL)
379	9.52k	return NULL;
380
381	74.3k	p = oct->data;
382	74.3k	if ((sk = o2i_SCT_LIST(a, &p, oct->length)) != NULL)
383	41.9k	*pp += len;
384
385	74.3k	ASN1_OCTET_STRING_free(oct);
386	74.3k	return sk;
387	83.8k	}
388
389		int i2d_SCT_LIST(const STACK_OF(SCT) a, unsigned char *out)
390	2.29k	{
391	2.29k	ASN1_OCTET_STRING oct;
392	2.29k	int len;
393
394	2.29k	oct.data = NULL;
395	2.29k	if ((oct.length = i2o_SCT_LIST(a, &oct.data)) == -1)
396	1.00k	return -1;
397
398	1.29k	len = i2d_ASN1_OCTET_STRING(&oct, out);
399	1.29k	OPENSSL_free(oct.data);
400	1.29k	return len;
401	2.29k	}