Implement parse_attribute_value_ber_encoded

Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>
2025-08-05 19:35:48 +03:00 · 2023-07-26 11:55:31 +01:00
parent e119f3c0ea
commit b73778d8f9
1 changed files with 38 additions and 16 deletions
--- a/library/x509_create.c
+++ b/library/x509_create.c
@@ -126,7 +126,8 @@ static const x509_attr_descriptor_t *x509_attr_descr_from_name(const char *name,
    return cur;
 }

-static const x509_attr_descriptor_t *x509_attr_descr_from_numericoid(const char *numericoid, size_t numericoid_len)
+static const x509_attr_descriptor_t *x509_attr_descr_from_numericoid(const char *numericoid,
+                                                                     size_t numericoid_len)
 {
    const x509_attr_descriptor_t *cur;
    mbedtls_asn1_buf *oid = mbedtls_calloc(1, sizeof(mbedtls_asn1_buf));
@@ -138,7 +139,7 @@ static const x509_attr_descriptor_t *x509_attr_descr_from_numericoid(const char
    }

    for (cur = x509_attrs; cur->oid != NULL; cur++) {
-        if (sizeof(cur->oid) == oid->len &&
+        if (strlen(cur->oid) == oid->len &&
            strncmp(cur->oid, (const char *) oid->p, oid->len) == 0) {
            break;
        }
@@ -170,7 +171,8 @@ static int hexpair_to_int(char c1, char c2)
    }
 }

-static int parse_attribute_value_string(const char *s, int len, char *data, int *data_len) {
+static int parse_attribute_value_string(const char *s, int len, char *data, int *data_len)
+{
    const char *c = s;
    const char *end = c + len;
    int hexpair = 0;
@@ -203,7 +205,26 @@ static int parse_attribute_value_string(const char *s, int len, char *data, int
    return 0;
 }

-static int parse_attribute_value_ber_encoded(const char *s, int len, char *data, int *data_len) {
+static int parse_attribute_value_ber_encoded(const char *s, int len, char *data, int *data_len)
+{
+    const char *c = s;
+    const char *end = c + len;
+    char *d = data;
+    int tag, n;
+    if ((len < 5) || (*c != '#') ||
+        ((tag =
+             hexpair_to_int(*(c+1), *(c+2))) == -1) || ((*data_len = hexpair_to_int(*(c+3), *(c+4))) == -1)) {
+        return MBEDTLS_ERR_X509_INVALID_NAME;
+    }
+    c += 5;
+
+    while (c < end) {
+        if ((c + 1 >= end) || (n = hexpair_to_int(*c, *(c+1))) == -1) {
+            return MBEDTLS_ERR_X509_INVALID_NAME;
+        }
+        *(d++) = n;
+        c += 2;
+    }
    return 0;
 }

@@ -247,7 +268,8 @@ int mbedtls_x509_string_to_names(mbedtls_asn1_named_data **head, const char *nam
                }
            }
            if (numericoid) {
-                if((parse_ret = parse_attribute_value_ber_encoded(s, c - s, data, &data_len)) != 0) {
+                if ((parse_ret =
+                         parse_attribute_value_ber_encoded(s, c - s, data, &data_len)) != 0) {
                    return MBEDTLS_ERR_X509_INVALID_NAME;
                }
            }