1*03f9172cSAndroid Build Coastguard Worker /*
2*03f9172cSAndroid Build Coastguard Worker * ASN.1 DER parsing
3*03f9172cSAndroid Build Coastguard Worker * Copyright (c) 2006, Jouni Malinen <[email protected]>
4*03f9172cSAndroid Build Coastguard Worker *
5*03f9172cSAndroid Build Coastguard Worker * This software may be distributed under the terms of the BSD license.
6*03f9172cSAndroid Build Coastguard Worker * See README for more details.
7*03f9172cSAndroid Build Coastguard Worker */
8*03f9172cSAndroid Build Coastguard Worker
9*03f9172cSAndroid Build Coastguard Worker #ifndef ASN1_H
10*03f9172cSAndroid Build Coastguard Worker #define ASN1_H
11*03f9172cSAndroid Build Coastguard Worker
12*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_EOC 0x00 /* not used with DER */
13*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_BOOLEAN 0x01
14*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_INTEGER 0x02
15*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_BITSTRING 0x03
16*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_OCTETSTRING 0x04
17*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_NULL 0x05
18*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_OID 0x06
19*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_OBJECT_DESCRIPTOR 0x07 /* not yet parsed */
20*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_EXTERNAL 0x08 /* not yet parsed */
21*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_REAL 0x09 /* not yet parsed */
22*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_ENUMERATED 0x0A /* not yet parsed */
23*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_EMBEDDED_PDV 0x0B /* not yet parsed */
24*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_UTF8STRING 0x0C /* not yet parsed */
25*03f9172cSAndroid Build Coastguard Worker #define ANS1_TAG_RELATIVE_OID 0x0D
26*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_TIME 0x0E
27*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_SEQUENCE 0x10 /* shall be constructed */
28*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_SET 0x11
29*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_NUMERICSTRING 0x12 /* not yet parsed */
30*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_PRINTABLESTRING 0x13
31*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_T61STRING 0x14 /* not yet parsed */
32*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_VIDEOTEXSTRING 0x15 /* not yet parsed */
33*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_IA5STRING 0x16
34*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_UTCTIME 0x17
35*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_GENERALIZEDTIME 0x18 /* not yet parsed */
36*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_GRAPHICSTRING 0x19 /* not yet parsed */
37*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_VISIBLESTRING 0x1A
38*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_GENERALSTRING 0x1B /* not yet parsed */
39*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_UNIVERSALSTRING 0x1C /* not yet parsed */
40*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_CHARACTERSTRING 0x1D /* not yet parsed */
41*03f9172cSAndroid Build Coastguard Worker #define ASN1_TAG_BMPSTRING 0x1E /* not yet parsed */
42*03f9172cSAndroid Build Coastguard Worker
43*03f9172cSAndroid Build Coastguard Worker #define ASN1_CLASS_UNIVERSAL 0
44*03f9172cSAndroid Build Coastguard Worker #define ASN1_CLASS_APPLICATION 1
45*03f9172cSAndroid Build Coastguard Worker #define ASN1_CLASS_CONTEXT_SPECIFIC 2
46*03f9172cSAndroid Build Coastguard Worker #define ASN1_CLASS_PRIVATE 3
47*03f9172cSAndroid Build Coastguard Worker
48*03f9172cSAndroid Build Coastguard Worker
49*03f9172cSAndroid Build Coastguard Worker struct asn1_hdr {
50*03f9172cSAndroid Build Coastguard Worker const u8 *payload;
51*03f9172cSAndroid Build Coastguard Worker u8 identifier, class, constructed;
52*03f9172cSAndroid Build Coastguard Worker unsigned int tag, length;
53*03f9172cSAndroid Build Coastguard Worker };
54*03f9172cSAndroid Build Coastguard Worker
55*03f9172cSAndroid Build Coastguard Worker #define ASN1_MAX_OID_LEN 20
56*03f9172cSAndroid Build Coastguard Worker struct asn1_oid {
57*03f9172cSAndroid Build Coastguard Worker unsigned long oid[ASN1_MAX_OID_LEN];
58*03f9172cSAndroid Build Coastguard Worker size_t len;
59*03f9172cSAndroid Build Coastguard Worker };
60*03f9172cSAndroid Build Coastguard Worker
61*03f9172cSAndroid Build Coastguard Worker
62*03f9172cSAndroid Build Coastguard Worker int asn1_get_next(const u8 *buf, size_t len, struct asn1_hdr *hdr);
63*03f9172cSAndroid Build Coastguard Worker void asn1_print_hdr(const struct asn1_hdr *hdr, const char *title);
64*03f9172cSAndroid Build Coastguard Worker void asn1_unexpected(const struct asn1_hdr *hdr, const char *title);
65*03f9172cSAndroid Build Coastguard Worker int asn1_parse_oid(const u8 *buf, size_t len, struct asn1_oid *oid);
66*03f9172cSAndroid Build Coastguard Worker int asn1_get_oid(const u8 *buf, size_t len, struct asn1_oid *oid,
67*03f9172cSAndroid Build Coastguard Worker const u8 **next);
68*03f9172cSAndroid Build Coastguard Worker void asn1_oid_to_str(const struct asn1_oid *oid, char *buf, size_t len);
69*03f9172cSAndroid Build Coastguard Worker unsigned long asn1_bit_string_to_long(const u8 *buf, size_t len);
70*03f9172cSAndroid Build Coastguard Worker int asn1_oid_equal(const struct asn1_oid *a, const struct asn1_oid *b);
71*03f9172cSAndroid Build Coastguard Worker int asn1_get_integer(const u8 *buf, size_t len, int *integer, const u8 **next);
72*03f9172cSAndroid Build Coastguard Worker int asn1_get_sequence(const u8 *buf, size_t len, struct asn1_hdr *hdr,
73*03f9172cSAndroid Build Coastguard Worker const u8 **next);
74*03f9172cSAndroid Build Coastguard Worker int asn1_get_alg_id(const u8 *buf, size_t len, struct asn1_oid *oid,
75*03f9172cSAndroid Build Coastguard Worker const u8 **params, size_t *params_len, const u8 **next);
76*03f9172cSAndroid Build Coastguard Worker void asn1_put_integer(struct wpabuf *buf, int val);
77*03f9172cSAndroid Build Coastguard Worker void asn1_put_octet_string(struct wpabuf *buf, const struct wpabuf *val);
78*03f9172cSAndroid Build Coastguard Worker void asn1_put_oid(struct wpabuf *buf, const struct asn1_oid *oid);
79*03f9172cSAndroid Build Coastguard Worker void asn1_put_hdr(struct wpabuf *buf, u8 class, int constructed, u8 tag,
80*03f9172cSAndroid Build Coastguard Worker size_t len);
81*03f9172cSAndroid Build Coastguard Worker void asn1_put_sequence(struct wpabuf *buf, const struct wpabuf *payload);
82*03f9172cSAndroid Build Coastguard Worker void asn1_put_set(struct wpabuf *buf, const struct wpabuf *payload);
83*03f9172cSAndroid Build Coastguard Worker void asn1_put_utf8string(struct wpabuf *buf, const char *val);
84*03f9172cSAndroid Build Coastguard Worker struct wpabuf * asn1_build_alg_id(const struct asn1_oid *oid,
85*03f9172cSAndroid Build Coastguard Worker const struct wpabuf *params);
86*03f9172cSAndroid Build Coastguard Worker struct wpabuf * asn1_encaps(struct wpabuf *buf, u8 class, u8 tag);
87*03f9172cSAndroid Build Coastguard Worker
asn1_is_oid(const struct asn1_hdr * hdr)88*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_oid(const struct asn1_hdr *hdr)
89*03f9172cSAndroid Build Coastguard Worker {
90*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
91*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_OID;
92*03f9172cSAndroid Build Coastguard Worker }
93*03f9172cSAndroid Build Coastguard Worker
asn1_is_boolean(const struct asn1_hdr * hdr)94*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_boolean(const struct asn1_hdr *hdr)
95*03f9172cSAndroid Build Coastguard Worker {
96*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
97*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_BOOLEAN;
98*03f9172cSAndroid Build Coastguard Worker }
99*03f9172cSAndroid Build Coastguard Worker
asn1_is_integer(const struct asn1_hdr * hdr)100*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_integer(const struct asn1_hdr *hdr)
101*03f9172cSAndroid Build Coastguard Worker {
102*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
103*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_INTEGER;
104*03f9172cSAndroid Build Coastguard Worker }
105*03f9172cSAndroid Build Coastguard Worker
asn1_is_enumerated(const struct asn1_hdr * hdr)106*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_enumerated(const struct asn1_hdr *hdr)
107*03f9172cSAndroid Build Coastguard Worker {
108*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
109*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_ENUMERATED;
110*03f9172cSAndroid Build Coastguard Worker }
111*03f9172cSAndroid Build Coastguard Worker
asn1_is_sequence(const struct asn1_hdr * hdr)112*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_sequence(const struct asn1_hdr *hdr)
113*03f9172cSAndroid Build Coastguard Worker {
114*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
115*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_SEQUENCE;
116*03f9172cSAndroid Build Coastguard Worker }
117*03f9172cSAndroid Build Coastguard Worker
asn1_is_set(const struct asn1_hdr * hdr)118*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_set(const struct asn1_hdr *hdr)
119*03f9172cSAndroid Build Coastguard Worker {
120*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
121*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_SET;
122*03f9172cSAndroid Build Coastguard Worker }
123*03f9172cSAndroid Build Coastguard Worker
asn1_is_octetstring(const struct asn1_hdr * hdr)124*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_octetstring(const struct asn1_hdr *hdr)
125*03f9172cSAndroid Build Coastguard Worker {
126*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
127*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_OCTETSTRING;
128*03f9172cSAndroid Build Coastguard Worker }
129*03f9172cSAndroid Build Coastguard Worker
asn1_is_bitstring(const struct asn1_hdr * hdr)130*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_bitstring(const struct asn1_hdr *hdr)
131*03f9172cSAndroid Build Coastguard Worker {
132*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
133*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_BITSTRING;
134*03f9172cSAndroid Build Coastguard Worker }
135*03f9172cSAndroid Build Coastguard Worker
asn1_is_utctime(const struct asn1_hdr * hdr)136*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_utctime(const struct asn1_hdr *hdr)
137*03f9172cSAndroid Build Coastguard Worker {
138*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
139*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_UTCTIME;
140*03f9172cSAndroid Build Coastguard Worker }
141*03f9172cSAndroid Build Coastguard Worker
asn1_is_generalizedtime(const struct asn1_hdr * hdr)142*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_generalizedtime(const struct asn1_hdr *hdr)
143*03f9172cSAndroid Build Coastguard Worker {
144*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
145*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_GENERALIZEDTIME;
146*03f9172cSAndroid Build Coastguard Worker }
147*03f9172cSAndroid Build Coastguard Worker
asn1_is_string_type(const struct asn1_hdr * hdr)148*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_string_type(const struct asn1_hdr *hdr)
149*03f9172cSAndroid Build Coastguard Worker {
150*03f9172cSAndroid Build Coastguard Worker if (hdr->class != ASN1_CLASS_UNIVERSAL || hdr->constructed)
151*03f9172cSAndroid Build Coastguard Worker return false;
152*03f9172cSAndroid Build Coastguard Worker return hdr->tag == ASN1_TAG_UTF8STRING ||
153*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_NUMERICSTRING ||
154*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_PRINTABLESTRING ||
155*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_T61STRING ||
156*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_VIDEOTEXSTRING ||
157*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_IA5STRING ||
158*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_GRAPHICSTRING ||
159*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_VISIBLESTRING ||
160*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_GENERALSTRING ||
161*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_UNIVERSALSTRING ||
162*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_CHARACTERSTRING ||
163*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_BMPSTRING;
164*03f9172cSAndroid Build Coastguard Worker }
165*03f9172cSAndroid Build Coastguard Worker
asn1_is_bmpstring(const struct asn1_hdr * hdr)166*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_bmpstring(const struct asn1_hdr *hdr)
167*03f9172cSAndroid Build Coastguard Worker {
168*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
169*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_BMPSTRING;
170*03f9172cSAndroid Build Coastguard Worker }
171*03f9172cSAndroid Build Coastguard Worker
asn1_is_utf8string(const struct asn1_hdr * hdr)172*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_utf8string(const struct asn1_hdr *hdr)
173*03f9172cSAndroid Build Coastguard Worker {
174*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
175*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_UTF8STRING;
176*03f9172cSAndroid Build Coastguard Worker }
177*03f9172cSAndroid Build Coastguard Worker
asn1_is_null(const struct asn1_hdr * hdr)178*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_null(const struct asn1_hdr *hdr)
179*03f9172cSAndroid Build Coastguard Worker {
180*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_UNIVERSAL &&
181*03f9172cSAndroid Build Coastguard Worker hdr->tag == ASN1_TAG_NULL;
182*03f9172cSAndroid Build Coastguard Worker }
183*03f9172cSAndroid Build Coastguard Worker
asn1_is_cs_tag(const struct asn1_hdr * hdr,unsigned int tag)184*03f9172cSAndroid Build Coastguard Worker static inline bool asn1_is_cs_tag(const struct asn1_hdr *hdr, unsigned int tag)
185*03f9172cSAndroid Build Coastguard Worker {
186*03f9172cSAndroid Build Coastguard Worker return hdr->class == ASN1_CLASS_CONTEXT_SPECIFIC &&
187*03f9172cSAndroid Build Coastguard Worker hdr->tag == tag;
188*03f9172cSAndroid Build Coastguard Worker }
189*03f9172cSAndroid Build Coastguard Worker
190*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_sha1_oid;
191*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_sha256_oid;
192*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_ec_public_key_oid;
193*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_prime256v1_oid;
194*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_secp384r1_oid;
195*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_secp521r1_oid;
196*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_brainpoolP256r1_oid;
197*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_brainpoolP384r1_oid;
198*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_brainpoolP512r1_oid;
199*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_aes_siv_cmac_aead_256_oid;
200*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_aes_siv_cmac_aead_384_oid;
201*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_aes_siv_cmac_aead_512_oid;
202*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_aes_siv_cmac_aead_256_oid;
203*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_aes_siv_cmac_aead_384_oid;
204*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_aes_siv_cmac_aead_512_oid;
205*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_pbkdf2_oid;
206*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_pbkdf2_hmac_sha256_oid;
207*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_pbkdf2_hmac_sha384_oid;
208*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_pbkdf2_hmac_sha512_oid;
209*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_dpp_config_params_oid;
210*03f9172cSAndroid Build Coastguard Worker extern const struct asn1_oid asn1_dpp_asymmetric_key_package_oid;
211*03f9172cSAndroid Build Coastguard Worker
212*03f9172cSAndroid Build Coastguard Worker #endif /* ASN1_H */
213