Index: /trunk/include/iprt/asn1.h =================================================================== --- /trunk/include/iprt/asn1.h (revision 74656) +++ /trunk/include/iprt/asn1.h (revision 74657) @@ -595,4 +595,6 @@ * frequently used values. */ #define RTASN1CORE_F_DECODED_CONTENT RT_BIT_32(6) +/** Indefinite length, still pending. */ +#define RTASN1CORE_F_INDEFINITE_LENGTH RT_BIT_32(7) /** @} */ @@ -1647,6 +1649,8 @@ /** The cursor depth. */ uint8_t cDepth; + /** Number of pending indefinite length records. */ + uint8_t cIndefinedRecs; /** Two bytes reserved for future tricks. */ - uint8_t abReserved[2]; + uint8_t abReserved[1]; /** Pointer to the primary cursor. */ struct RTASN1CURSORPRIMARY *pPrimary; @@ -1660,7 +1664,9 @@ * @{ */ /** Enforce DER rules. */ -#define RTASN1CURSOR_FLAGS_DER RT_BIT(1) +#define RTASN1CURSOR_FLAGS_DER RT_BIT(1) /** Enforce CER rules. */ -#define RTASN1CURSOR_FLAGS_CER RT_BIT(2) +#define RTASN1CURSOR_FLAGS_CER RT_BIT(2) +/** Pending indefinite length encoding. */ +#define RTASN1CURSOR_FLAGS_INDEFINITE_LENGTH RT_BIT(3) /** @} */ Index: /trunk/src/VBox/Runtime/common/asn1/asn1-cursor.cpp =================================================================== --- /trunk/src/VBox/Runtime/common/asn1/asn1-cursor.cpp (revision 74656) +++ /trunk/src/VBox/Runtime/common/asn1/asn1-cursor.cpp (revision 74657) @@ -32,4 +32,5 @@ #include +#include #include #include @@ -67,6 +68,6 @@ pPrimaryCursor->Cursor.fFlags = (uint8_t)fFlags; Assert(fFlags <= UINT8_MAX); pPrimaryCursor->Cursor.cDepth = 0; + pPrimaryCursor->Cursor.cIndefinedRecs = 0; pPrimaryCursor->Cursor.abReserved[0] = 0; - pPrimaryCursor->Cursor.abReserved[1] = 0; pPrimaryCursor->Cursor.pPrimary = pPrimaryCursor; pPrimaryCursor->Cursor.pUp = NULL; @@ -85,9 +86,9 @@ pChild->pbCur = pParent->pbCur; pChild->cbLeft = cb; - pChild->fFlags = pParent->fFlags; + pChild->fFlags = pParent->fFlags & ~RTASN1CURSOR_FLAGS_INDEFINITE_LENGTH; pChild->cDepth = pParent->cDepth + 1; AssertReturn(pChild->cDepth < RTASN1_MAX_NESTING, VERR_ASN1_TOO_DEEPLY_NESTED); + pChild->cIndefinedRecs = 0; pChild->abReserved[0] = 0; - pChild->abReserved[1] = 0; pChild->pPrimary = pParent->pPrimary; pChild->pUp = pParent; @@ -110,9 +111,9 @@ pChild->pbCur = pAsn1Core->uData.pu8; pChild->cbLeft = pAsn1Core->cb; - pChild->fFlags = pParent->fFlags; + pChild->fFlags = pParent->fFlags & ~RTASN1CURSOR_FLAGS_INDEFINITE_LENGTH; pChild->cDepth = pParent->cDepth + 1; AssertReturn(pChild->cDepth < RTASN1_MAX_NESTING, VERR_ASN1_TOO_DEEPLY_NESTED); + pChild->cIndefinedRecs = 0; pChild->abReserved[0] = 0; - pChild->abReserved[1] = 0; pChild->pPrimary = pParent->pPrimary; pChild->pUp = pParent; @@ -189,5 +190,12 @@ RTDECL(bool) RTAsn1CursorIsEnd(PRTASN1CURSOR pCursor) { - return pCursor->cbLeft == 0; + if (pCursor->cbLeft == 0) + return true; + if (!(pCursor->fFlags & RTASN1CURSOR_FLAGS_INDEFINITE_LENGTH)) + return false; + /* This isn't quite right. */ + if (pCursor->cbLeft > pCursor->cIndefinedRecs * (uint32_t)2) + return false; + return ASMMemIsZero(pCursor->pbCur, pCursor->cbLeft); } @@ -196,4 +204,8 @@ { if (pCursor->cbLeft == 0) + return VINF_SUCCESS; + if ( (pCursor->fFlags & RTASN1CURSOR_FLAGS_INDEFINITE_LENGTH) + && pCursor->cbLeft == pCursor->cIndefinedRecs * (uint32_t)2 + && ASMMemIsZero(pCursor->pbCur, pCursor->cbLeft)) return VINF_SUCCESS; return RTAsn1CursorSetInfo(pCursor, VERR_ASN1_CURSOR_NOT_AT_END, @@ -316,4 +328,16 @@ return RTAsn1CursorSetInfo(pCursor, VERR_ASN1_CURSOR_ILLEGAL_INDEFINITE_LENGTH, "%s: Indefinite length form not allowed in DER mode (uTag=%#x).", pszErrorTag, uTag); + else if (!(uTag & ASN1_TAGFLAG_CONSTRUCTED)) + return RTAsn1CursorSetInfo(pCursor, VERR_ASN1_CURSOR_BAD_INDEFINITE_LENGTH, + "%s: Indefinite BER/CER encoding is for non-constructed tag (uTag=%#x)", pszErrorTag, uTag); + else if ( uTag != (ASN1_TAG_SEQUENCE | ASN1_TAGFLAG_CONSTRUCTED) + && uTag != (ASN1_TAG_SET | ASN1_TAGFLAG_CONSTRUCTED) + && (uTag & (ASN1_TAGFLAG_CONSTRUCTED | ASN1_TAGCLASS_CONTEXT)) + != (ASN1_TAGFLAG_CONSTRUCTED | ASN1_TAGCLASS_CONTEXT) ) + return RTAsn1CursorSetInfo(pCursor, VERR_ASN1_CURSOR_BAD_INDEFINITE_LENGTH, + "%s: Indefinite BER/CER encoding not supported for this tag (uTag=%#x)", pszErrorTag, uTag); + else if (pCursor->cIndefinedRecs > 8) + return RTAsn1CursorSetInfo(pCursor, VERR_ASN1_CURSOR_BAD_INDEFINITE_LENGTH, + "%s: Too many indefinite BER/CER encodings. (uTag=%#x)", pszErrorTag, uTag); else if (pCursor->cbLeft < 2) return RTAsn1CursorSetInfo(pCursor, VERR_ASN1_CURSOR_BAD_INDEFINITE_LENGTH, @@ -321,19 +345,8 @@ else { - /* Search forward till we find the two terminating zero bytes. */ - cb = 0; - for (;;) - { - uint8_t const *pb = (uint8_t const *)memchr(&pCursor->pbCur[cb], 0x00, pCursor->cbLeft - cb - 1); - if (pb && pb[1] == 0x00) - { - cb = &pb[2] - pCursor->pbCur; - break; - } - if (!pb) - return RTAsn1CursorSetInfo(pCursor, VERR_ASN1_CURSOR_BAD_INDEFINITE_LENGTH, - "%s: Could not find end of indefinite BER/CER record (uTag=%#x)", pszErrorTag, uTag); - cb = &pb[1] - pCursor->pbCur; - } + pCursor->cIndefinedRecs++; + pCursor->fFlags |= RTASN1CURSOR_FLAGS_INDEFINITE_LENGTH; + pAsn1Core->fFlags |= RTASN1CORE_F_INDEFINITE_LENGTH; + cb = pCursor->cbLeft - pCursor->cIndefinedRecs * 2; /* tentatively */ } }