sec/port/x509-ape.c

46d884bbSDavid du Colombier#include <u.h>
46d884bbSDavid du Colombier#include <libc.h>
46d884bbSDavid du Colombier#include <mp.h>
46d884bbSDavid du Colombier#include <libsec.h>
46d884bbSDavid du Colombier
46d884bbSDavid du Colombiertypedef DigestState*(*DigestFun)(uchar*,ulong,uchar*,DigestState*);
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* ANSI offsetof, backwards. */
46d884bbSDavid du Colombier#define	OFFSETOF(a, b)	offsetof(b, a)
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*=============================================================*/
46d884bbSDavid du Colombier/*  general ASN1 declarations and parsing
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *  For now, this is used only for extracting the key from an
46d884bbSDavid du Colombier *  X509 certificate, so the entire collection is hidden.  But
46d884bbSDavid du Colombier *  someday we should probably make the functions visible and
46d884bbSDavid du Colombier *  give them their own man page.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombiertypedef struct Elem Elem;
46d884bbSDavid du Colombiertypedef struct Tag Tag;
46d884bbSDavid du Colombiertypedef struct Value Value;
46d884bbSDavid du Colombiertypedef struct Bytes Bytes;
46d884bbSDavid du Colombiertypedef struct Ints Ints;
46d884bbSDavid du Colombiertypedef struct Bits Bits;
46d884bbSDavid du Colombiertypedef struct Elist Elist;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* tag classes */
46d884bbSDavid du Colombier#define Universal 0
46d884bbSDavid du Colombier#define Context 0x80
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* universal tags */
46d884bbSDavid du Colombier#define BOOLEAN 1
46d884bbSDavid du Colombier#define INTEGER 2
46d884bbSDavid du Colombier#define BIT_STRING 3
46d884bbSDavid du Colombier#define OCTET_STRING 4
46d884bbSDavid du Colombier#define NULLTAG 5
46d884bbSDavid du Colombier#define OBJECT_ID 6
46d884bbSDavid du Colombier#define ObjectDescriptor 7
46d884bbSDavid du Colombier#define EXTERNAL 8
46d884bbSDavid du Colombier#define REAL 9
46d884bbSDavid du Colombier#define ENUMERATED 10
46d884bbSDavid du Colombier#define EMBEDDED_PDV 11
46d884bbSDavid du Colombier#define UTF8String 12
46d884bbSDavid du Colombier#define SEQUENCE 16		/* also SEQUENCE OF */
46d884bbSDavid du Colombier#define SETOF 17				/* also SETOF OF */
46d884bbSDavid du Colombier#define NumericString 18
46d884bbSDavid du Colombier#define PrintableString 19
46d884bbSDavid du Colombier#define TeletexString 20
46d884bbSDavid du Colombier#define VideotexString 21
46d884bbSDavid du Colombier#define IA5String 22
46d884bbSDavid du Colombier#define UTCTime 23
46d884bbSDavid du Colombier#define GeneralizedTime 24
46d884bbSDavid du Colombier#define GraphicString 25
46d884bbSDavid du Colombier#define VisibleString 26
46d884bbSDavid du Colombier#define GeneralString 27
46d884bbSDavid du Colombier#define UniversalString 28
46d884bbSDavid du Colombier#define BMPString 30
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstruct Bytes {
46d884bbSDavid du Colombier	int	len;
46d884bbSDavid du Colombier	uchar	data[1];
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstruct Ints {
46d884bbSDavid du Colombier	int	len;
46d884bbSDavid du Colombier	int	data[1];
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstruct Bits {
46d884bbSDavid du Colombier	int	len;		/* number of bytes */
46d884bbSDavid du Colombier	int	unusedbits;	/* unused bits in last byte */
46d884bbSDavid du Colombier	uchar	data[1];	/* most-significant bit first */
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstruct Tag {
46d884bbSDavid du Colombier	int	class;
46d884bbSDavid du Colombier	int	num;
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierenum { VBool, VInt, VOctets, VBigInt, VReal, VOther,
46d884bbSDavid du Colombier	VBitString, VNull, VEOC, VObjId, VString, VSeq, VSet };
46d884bbSDavid du Colombierstruct Value {
46d884bbSDavid du Colombier	int	tag;		/* VBool, etc. */
46d884bbSDavid du Colombier	union {
46d884bbSDavid du Colombier		int	boolval;
46d884bbSDavid du Colombier		int	intval;
46d884bbSDavid du Colombier		Bytes*	octetsval;
46d884bbSDavid du Colombier		Bytes*	bigintval;
46d884bbSDavid du Colombier		Bytes*	realval;	/* undecoded; hardly ever used */
46d884bbSDavid du Colombier		Bytes*	otherval;
46d884bbSDavid du Colombier		Bits*	bitstringval;
46d884bbSDavid du Colombier		Ints*	objidval;
46d884bbSDavid du Colombier		char*	stringval;
46d884bbSDavid du Colombier		Elist*	seqval;
46d884bbSDavid du Colombier		Elist*	setval;
46d884bbSDavid du Colombier	} u;  /* (Don't use anonymous unions, for ease of porting) */
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstruct Elem {
46d884bbSDavid du Colombier	Tag	tag;
46d884bbSDavid du Colombier	Value	val;
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstruct Elist {
46d884bbSDavid du Colombier	Elist*	tl;
46d884bbSDavid du Colombier	Elem	hd;
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* decoding errors */
46d884bbSDavid du Colombierenum { ASN_OK, ASN_ESHORT, ASN_ETOOBIG, ASN_EVALLEN,
46d884bbSDavid du Colombier		ASN_ECONSTR, ASN_EPRIM, ASN_EINVAL, ASN_EUNIMPL };
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* here are the functions to consider making extern someday */
46d884bbSDavid du Colombierstatic Bytes*	newbytes(int len);
46d884bbSDavid du Colombierstatic Bytes*	makebytes(uchar* buf, int len);
46d884bbSDavid du Colombierstatic void	freebytes(Bytes* b);
46d884bbSDavid du Colombierstatic Bytes*	catbytes(Bytes* b1, Bytes* b2);
46d884bbSDavid du Colombierstatic Ints*	newints(int len);
46d884bbSDavid du Colombierstatic Ints*	makeints(int* buf, int len);
46d884bbSDavid du Colombierstatic void	freeints(Ints* b);
46d884bbSDavid du Colombierstatic Bits*	newbits(int len);
46d884bbSDavid du Colombierstatic Bits*	makebits(uchar* buf, int len, int unusedbits);
46d884bbSDavid du Colombierstatic void	freebits(Bits* b);
46d884bbSDavid du Colombierstatic Elist*	mkel(Elem e, Elist* tail);
46d884bbSDavid du Colombierstatic void	freeelist(Elist* el);
46d884bbSDavid du Colombierstatic int	elistlen(Elist* el);
46d884bbSDavid du Colombierstatic int	is_seq(Elem* pe, Elist** pseq);
46d884bbSDavid du Colombierstatic int	is_set(Elem* pe, Elist** pset);
46d884bbSDavid du Colombierstatic int	is_int(Elem* pe, int* pint);
46d884bbSDavid du Colombierstatic int	is_bigint(Elem* pe, Bytes** pbigint);
46d884bbSDavid du Colombierstatic int	is_bitstring(Elem* pe, Bits** pbits);
46d884bbSDavid du Colombierstatic int	is_octetstring(Elem* pe, Bytes** poctets);
46d884bbSDavid du Colombierstatic int	is_oid(Elem* pe, Ints** poid);
46d884bbSDavid du Colombierstatic int	is_string(Elem* pe, char** pstring);
46d884bbSDavid du Colombierstatic int	is_time(Elem* pe, char** ptime);
46d884bbSDavid du Colombierstatic int	decode(uchar* a, int alen, Elem* pelem);
46d884bbSDavid du Colombierstatic int	decode_seq(uchar* a, int alen, Elist** pelist);
46d884bbSDavid du Colombierstatic int	decode_value(uchar* a, int alen, int kind, int isconstr, Value* pval);
46d884bbSDavid du Colombierstatic int	encode(Elem e, Bytes** pbytes);
46d884bbSDavid du Colombierstatic int	oid_lookup(Ints* o, Ints** tab);
46d884bbSDavid du Colombierstatic void	freevalfields(Value* v);
46d884bbSDavid du Colombierstatic mpint	*asn1mpint(Elem *e);
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier#define TAG_MASK 0x1F
46d884bbSDavid du Colombier#define CONSTR_MASK 0x20
46d884bbSDavid du Colombier#define CLASS_MASK 0xC0
46d884bbSDavid du Colombier#define MAXOBJIDLEN 20
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int ber_decode(uchar** pp, uchar* pend, Elem* pelem);
46d884bbSDavid du Colombierstatic int tag_decode(uchar** pp, uchar* pend, Tag* ptag, int* pisconstr);
46d884bbSDavid du Colombierstatic int length_decode(uchar** pp, uchar* pend, int* plength);
46d884bbSDavid du Colombierstatic int value_decode(uchar** pp, uchar* pend, int length, int kind, int isconstr, Value* pval);
46d884bbSDavid du Colombierstatic int int_decode(uchar** pp, uchar* pend, int count, int unsgned, int* pint);
46d884bbSDavid du Colombierstatic int uint7_decode(uchar** pp, uchar* pend, int* pint);
46d884bbSDavid du Colombierstatic int octet_decode(uchar** pp, uchar* pend, int length, int isconstr, Bytes** pbytes);
46d884bbSDavid du Colombierstatic int seq_decode(uchar** pp, uchar* pend, int length, int isconstr, Elist** pelist);
46d884bbSDavid du Colombierstatic int enc(uchar** pp, Elem e, int lenonly);
46d884bbSDavid du Colombierstatic int val_enc(uchar** pp, Elem e, int *pconstr, int lenonly);
46d884bbSDavid du Colombierstatic void uint7_enc(uchar** pp, int num, int lenonly);
46d884bbSDavid du Colombierstatic void int_enc(uchar** pp, int num, int unsgned, int lenonly);
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic void *
46d884bbSDavid du Colombieremalloc(int n)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	void *p;
46d884bbSDavid du Colombier	if(n==0)
46d884bbSDavid du Colombier		n=1;
46d884bbSDavid du Colombier	p = malloc(n);
46d884bbSDavid du Colombier	if(p == nil){
46d884bbSDavid du Colombier		exits("out of memory");
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	memset(p, 0, n);
46d884bbSDavid du Colombier	setmalloctag(p, getcallerpc(&n));
46d884bbSDavid du Colombier	return p;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic char*
46d884bbSDavid du Colombierestrdup(char *s)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	char *d, *d0;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(!s)
46d884bbSDavid du Colombier		return 0;
46d884bbSDavid du Colombier	d = d0 = emalloc(strlen(s)+1);
46d884bbSDavid du Colombier	while(*d++ = *s++)
46d884bbSDavid du Colombier		;
46d884bbSDavid du Colombier	return d0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Decode a[0..len] as a BER encoding of an ASN1 type.
46d884bbSDavid du Colombier * The return value is one of ASN_OK, etc.
46d884bbSDavid du Colombier * Depending on the error, the returned elem may or may not
46d884bbSDavid du Colombier * be nil.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierdecode(uchar* a, int alen, Elem* pelem)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	uchar* p = a;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	return  ber_decode(&p, &a[alen], pelem);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Like decode, but continue decoding after first element
46d884bbSDavid du Colombier * of array ends.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierdecode_seq(uchar* a, int alen, Elist** pelist)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	uchar* p = a;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	return seq_decode(&p, &a[alen], -1, 1, pelist);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Decode the whole array as a BER encoding of an ASN1 value,
46d884bbSDavid du Colombier * (i.e., the part after the tag and length).
46d884bbSDavid du Colombier * Assume the value is encoded as universal tag "kind".
46d884bbSDavid du Colombier * The constr arg is 1 if the value is constructed, 0 if primitive.
46d884bbSDavid du Colombier * If there's an error, the return string will contain the error.
46d884bbSDavid du Colombier * Depending on the error, the returned value may or may not
46d884bbSDavid du Colombier * be nil.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierdecode_value(uchar* a, int alen, int kind, int isconstr, Value* pval)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	uchar* p = a;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	return value_decode(&p, &a[alen], alen, kind, isconstr, pval);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * All of the following decoding routines take arguments:
46d884bbSDavid du Colombier *	uchar **pp;
46d884bbSDavid du Colombier *	uchar *pend;
46d884bbSDavid du Colombier * Where parsing is supposed to start at **pp, and when parsing
46d884bbSDavid du Colombier * is done, *pp is updated to point at next char to be parsed.
46d884bbSDavid du Colombier * The pend pointer is just past end of string; an error should
46d884bbSDavid du Colombier * be returned parsing hasn't finished by then.
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier * The returned int is ASN_OK if all went fine, else ASN_ESHORT, etc.
46d884bbSDavid du Colombier * The remaining argument(s) are pointers to where parsed entity goes.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* Decode an ASN1 'Elem' (tag, length, value) */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierber_decode(uchar** pp, uchar* pend, Elem* pelem)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	int isconstr;
46d884bbSDavid du Colombier	int length;
46d884bbSDavid du Colombier	Tag tag;
46d884bbSDavid du Colombier	Value val;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	err = tag_decode(pp, pend, &tag, &isconstr);
46d884bbSDavid du Colombier	if(err == ASN_OK) {
46d884bbSDavid du Colombier		err = length_decode(pp, pend, &length);
46d884bbSDavid du Colombier		if(err == ASN_OK) {
46d884bbSDavid du Colombier			if(tag.class == Universal) {
46d884bbSDavid du Colombier				err = value_decode(pp, pend, length, tag.num, isconstr, &val);
46d884bbSDavid du Colombier				if(val.tag == VSeq || val.tag == VSet)
46d884bbSDavid du Colombier					setmalloctag(val.u.seqval, getcallerpc(&pp));
46d884bbSDavid du Colombier			}else
46d884bbSDavid du Colombier				err = value_decode(pp, pend, length, OCTET_STRING, 0, &val);
46d884bbSDavid du Colombier			if(err == ASN_OK) {
46d884bbSDavid du Colombier				pelem->tag = tag;
46d884bbSDavid du Colombier				pelem->val = val;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* Decode a tag field */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombiertag_decode(uchar** pp, uchar* pend, Tag* ptag, int* pisconstr)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	if(pend-p >= 2) {
46d884bbSDavid du Colombier		v = *p++;
46d884bbSDavid du Colombier		ptag->class = v&CLASS_MASK;
46d884bbSDavid du Colombier		if(v&CONSTR_MASK)
46d884bbSDavid du Colombier			*pisconstr = 1;
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			*pisconstr = 0;
46d884bbSDavid du Colombier		v &= TAG_MASK;
46d884bbSDavid du Colombier		if(v == TAG_MASK)
46d884bbSDavid du Colombier			err = uint7_decode(&p, pend, &v);
46d884bbSDavid du Colombier		ptag->num = v;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else
46d884bbSDavid du Colombier		err = ASN_ESHORT;
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* Decode a length field */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierlength_decode(uchar** pp, uchar* pend, int* plength)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	int num;
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	num = 0;
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	if(p < pend) {
46d884bbSDavid du Colombier		v = *p++;
46d884bbSDavid du Colombier		if(v&0x80)
46d884bbSDavid du Colombier			err = int_decode(&p, pend, v&0x7F, 1, &num);
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			num = v;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else
46d884bbSDavid du Colombier		err = ASN_ESHORT;
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	*plength = num;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* Decode a value field  */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombiervalue_decode(uchar** pp, uchar* pend, int length, int kind, int isconstr, Value* pval)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	Bytes* va;
46d884bbSDavid du Colombier	int num;
46d884bbSDavid du Colombier	int bitsunused;
46d884bbSDavid du Colombier	int subids[MAXOBJIDLEN];
46d884bbSDavid du Colombier	int isubid;
46d884bbSDavid du Colombier	Elist*	vl;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier	uchar* pe;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	if(length == -1) {	/* "indefinite" length spec */
46d884bbSDavid du Colombier		if(!isconstr)
46d884bbSDavid du Colombier			err = ASN_EINVAL;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else if(p + length > pend)
46d884bbSDavid du Colombier		err = ASN_EVALLEN;
46d884bbSDavid du Colombier	if(err != ASN_OK)
46d884bbSDavid du Colombier		return err;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	switch(kind) {
46d884bbSDavid du Colombier	case 0:
46d884bbSDavid du Colombier		/* marker for end of indefinite constructions */
46d884bbSDavid du Colombier		if(length == 0)
46d884bbSDavid du Colombier			pval->tag = VNull;
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			err = ASN_EINVAL;
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case BOOLEAN:
46d884bbSDavid du Colombier		if(isconstr)
46d884bbSDavid du Colombier			err = ASN_ECONSTR;
46d884bbSDavid du Colombier		else if(length != 1)
46d884bbSDavid du Colombier			err = ASN_EVALLEN;
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			pval->tag = VBool;
46d884bbSDavid du Colombier			pval->u.boolval = (*p++ != 0);
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case INTEGER:
46d884bbSDavid du Colombier	case ENUMERATED:
46d884bbSDavid du Colombier		if(isconstr)
46d884bbSDavid du Colombier			err = ASN_ECONSTR;
46d884bbSDavid du Colombier		else if(length <= 4) {
46d884bbSDavid du Colombier			err = int_decode(&p, pend, length, 0, &num);
46d884bbSDavid du Colombier			if(err == ASN_OK) {
46d884bbSDavid du Colombier				pval->tag = VInt;
46d884bbSDavid du Colombier				pval->u.intval = num;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			pval->tag = VBigInt;
46d884bbSDavid du Colombier			pval->u.bigintval = makebytes(p, length);
46d884bbSDavid du Colombier			p += length;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case BIT_STRING:
46d884bbSDavid du Colombier		pval->tag = VBitString;
46d884bbSDavid du Colombier		if(isconstr) {
46d884bbSDavid du Colombier			if(length == -1 && p + 2 <= pend && *p == 0 && *(p+1) ==0) {
46d884bbSDavid du Colombier				pval->u.bitstringval = makebits(0, 0, 0);
46d884bbSDavid du Colombier				p += 2;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			else
46d884bbSDavid du Colombier				/* TODO: recurse and concat results */
46d884bbSDavid du Colombier				err = ASN_EUNIMPL;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			if(length < 2) {
46d884bbSDavid du Colombier				if(length == 1 && *p == 0) {
46d884bbSDavid du Colombier					pval->u.bitstringval = makebits(0, 0, 0);
46d884bbSDavid du Colombier					p++;
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier				else
46d884bbSDavid du Colombier					err = ASN_EINVAL;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			else {
46d884bbSDavid du Colombier				bitsunused = *p;
46d884bbSDavid du Colombier				if(bitsunused > 7)
46d884bbSDavid du Colombier					err = ASN_EINVAL;
46d884bbSDavid du Colombier				else if(length > 0x0FFFFFFF)
46d884bbSDavid du Colombier					err = ASN_ETOOBIG;
46d884bbSDavid du Colombier				else {
46d884bbSDavid du Colombier					pval->u.bitstringval = makebits(p+1, length-1, bitsunused);
46d884bbSDavid du Colombier					p += length;
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case OCTET_STRING:
46d884bbSDavid du Colombier	case ObjectDescriptor:
46d884bbSDavid du Colombier		err = octet_decode(&p, pend, length, isconstr, &va);
46d884bbSDavid du Colombier		if(err == ASN_OK) {
46d884bbSDavid du Colombier			pval->tag = VOctets;
46d884bbSDavid du Colombier			pval->u.octetsval = va;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case NULLTAG:
46d884bbSDavid du Colombier		if(isconstr)
46d884bbSDavid du Colombier			err = ASN_ECONSTR;
46d884bbSDavid du Colombier		else if(length != 0)
46d884bbSDavid du Colombier			err = ASN_EVALLEN;
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			pval->tag = VNull;
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case OBJECT_ID:
46d884bbSDavid du Colombier		if(isconstr)
46d884bbSDavid du Colombier			err = ASN_ECONSTR;
46d884bbSDavid du Colombier		else if(length == 0)
46d884bbSDavid du Colombier			err = ASN_EVALLEN;
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			isubid = 0;
46d884bbSDavid du Colombier			pe = p+length;
46d884bbSDavid du Colombier			while(p < pe && isubid < MAXOBJIDLEN) {
46d884bbSDavid du Colombier				err = uint7_decode(&p, pend, &num);
46d884bbSDavid du Colombier				if(err != ASN_OK)
46d884bbSDavid du Colombier					break;
46d884bbSDavid du Colombier				if(isubid == 0) {
46d884bbSDavid du Colombier					subids[isubid++] = num / 40;
46d884bbSDavid du Colombier					subids[isubid++] = num % 40;
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier				else
46d884bbSDavid du Colombier					subids[isubid++] = num;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			if(err == ASN_OK) {
46d884bbSDavid du Colombier				if(p != pe)
46d884bbSDavid du Colombier					err = ASN_EVALLEN;
46d884bbSDavid du Colombier				else {
46d884bbSDavid du Colombier					pval->tag = VObjId;
46d884bbSDavid du Colombier					pval->u.objidval = makeints(subids, isubid);
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case EXTERNAL:
46d884bbSDavid du Colombier	case EMBEDDED_PDV:
46d884bbSDavid du Colombier		/* TODO: parse this internally */
46d884bbSDavid du Colombier		if(p+length > pend)
46d884bbSDavid du Colombier			err = ASN_EVALLEN;
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			pval->tag = VOther;
46d884bbSDavid du Colombier			pval->u.otherval = makebytes(p, length);
46d884bbSDavid du Colombier			p += length;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case REAL:
46d884bbSDavid du Colombier		/* Let the application decode */
46d884bbSDavid du Colombier		if(isconstr)
46d884bbSDavid du Colombier			err = ASN_ECONSTR;
46d884bbSDavid du Colombier		else if(p+length > pend)
46d884bbSDavid du Colombier			err = ASN_EVALLEN;
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			pval->tag = VReal;
46d884bbSDavid du Colombier			pval->u.realval = makebytes(p, length);
46d884bbSDavid du Colombier			p += length;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case SEQUENCE:
46d884bbSDavid du Colombier		err = seq_decode(&p, pend, length, isconstr, &vl);
46d884bbSDavid du Colombier		setmalloctag(vl, getcallerpc(&pp));
46d884bbSDavid du Colombier		if(err == ASN_OK) {
46d884bbSDavid du Colombier			pval->tag = VSeq ;
46d884bbSDavid du Colombier			pval->u.seqval = vl;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case SETOF:
46d884bbSDavid du Colombier		err = seq_decode(&p, pend, length, isconstr, &vl);
46d884bbSDavid du Colombier		setmalloctag(vl, getcallerpc(&pp));
46d884bbSDavid du Colombier		if(err == ASN_OK) {
46d884bbSDavid du Colombier			pval->tag = VSet;
46d884bbSDavid du Colombier			pval->u.setval = vl;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case UTF8String:
46d884bbSDavid du Colombier	case NumericString:
46d884bbSDavid du Colombier	case PrintableString:
46d884bbSDavid du Colombier	case TeletexString:
46d884bbSDavid du Colombier	case VideotexString:
46d884bbSDavid du Colombier	case IA5String:
46d884bbSDavid du Colombier	case UTCTime:
46d884bbSDavid du Colombier	case GeneralizedTime:
46d884bbSDavid du Colombier	case GraphicString:
46d884bbSDavid du Colombier	case VisibleString:
46d884bbSDavid du Colombier	case GeneralString:
46d884bbSDavid du Colombier	case UniversalString:
46d884bbSDavid du Colombier	case BMPString:
46d884bbSDavid du Colombier		/* TODO: figure out when character set conversion is necessary */
46d884bbSDavid du Colombier		err = octet_decode(&p, pend, length, isconstr, &va);
46d884bbSDavid du Colombier		if(err == ASN_OK) {
46d884bbSDavid du Colombier			pval->tag = VString;
46d884bbSDavid du Colombier			pval->u.stringval = (char*)emalloc(va->len+1);
46d884bbSDavid du Colombier			memmove(pval->u.stringval, va->data, va->len);
46d884bbSDavid du Colombier			pval->u.stringval[va->len] = 0;
46d884bbSDavid du Colombier			free(va);
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	default:
46d884bbSDavid du Colombier		if(p+length > pend)
46d884bbSDavid du Colombier			err = ASN_EVALLEN;
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			pval->tag = VOther;
46d884bbSDavid du Colombier			pval->u.otherval = makebytes(p, length);
46d884bbSDavid du Colombier			p += length;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Decode an int in format where count bytes are
46d884bbSDavid du Colombier * concatenated to form value.
46d884bbSDavid du Colombier * Although ASN1 allows any size integer, we return
46d884bbSDavid du Colombier * an error if the result doesn't fit in a 32-bit int.
46d884bbSDavid du Colombier * If unsgned is not set, make sure to propagate sign bit.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierint_decode(uchar** pp, uchar* pend, int count, int unsgned, int* pint)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	int num;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	num = 0;
46d884bbSDavid du Colombier	if(p+count <= pend) {
46d884bbSDavid du Colombier		if((count > 4) || (unsgned && count == 4 && (*p&0x80)))
46d884bbSDavid du Colombier			err = ASN_ETOOBIG;
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			if(!unsgned && count > 0 && count < 4 && (*p&0x80))
46d884bbSDavid du Colombier				num = -1;	/* set all bits, initially */
46d884bbSDavid du Colombier			while(count--)
46d884bbSDavid du Colombier				num = (num << 8)|(*p++);
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else
46d884bbSDavid du Colombier		err = ASN_ESHORT;
46d884bbSDavid du Colombier	*pint = num;
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Decode an unsigned int in format where each
46d884bbSDavid du Colombier * byte except last has high bit set, and remaining
46d884bbSDavid du Colombier * seven bits of each byte are concatenated to form value.
46d884bbSDavid du Colombier * Although ASN1 allows any size integer, we return
46d884bbSDavid du Colombier * an error if the result doesn't fit in a 32 bit int.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieruint7_decode(uchar** pp, uchar* pend, int* pint)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	int num;
46d884bbSDavid du Colombier	int more;
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	num = 0;
46d884bbSDavid du Colombier	more = 1;
46d884bbSDavid du Colombier	while(more && p < pend) {
46d884bbSDavid du Colombier		v = *p++;
46d884bbSDavid du Colombier		if(num&0x7F000000) {
46d884bbSDavid du Colombier			err = ASN_ETOOBIG;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		num <<= 7;
46d884bbSDavid du Colombier		more = v&0x80;
46d884bbSDavid du Colombier		num |= (v&0x7F);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	if(p == pend)
46d884bbSDavid du Colombier		err = ASN_ESHORT;
46d884bbSDavid du Colombier	*pint = num;
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Decode an octet string, recursively if isconstr.
46d884bbSDavid du Colombier * We've already checked that length==-1 implies isconstr==1,
46d884bbSDavid du Colombier * and otherwise that specified length fits within (*pp..pend)
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieroctet_decode(uchar** pp, uchar* pend, int length, int isconstr, Bytes** pbytes)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier	Bytes* ans;
46d884bbSDavid du Colombier	Bytes* newans;
46d884bbSDavid du Colombier	uchar* pstart;
46d884bbSDavid du Colombier	uchar* pold;
46d884bbSDavid du Colombier	Elem	elem;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	ans = nil;
46d884bbSDavid du Colombier	if(length >= 0 && !isconstr) {
46d884bbSDavid du Colombier		ans = makebytes(p, length);
46d884bbSDavid du Colombier		p += length;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else {
46d884bbSDavid du Colombier		/* constructed, either definite or indefinite length */
46d884bbSDavid du Colombier		pstart = p;
46d884bbSDavid du Colombier		for(;;) {
46d884bbSDavid du Colombier			if(length >= 0 && p >= pstart + length) {
46d884bbSDavid du Colombier				if(p != pstart + length)
46d884bbSDavid du Colombier					err = ASN_EVALLEN;
46d884bbSDavid du Colombier				break;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			pold = p;
46d884bbSDavid du Colombier			err = ber_decode(&p, pend, &elem);
46d884bbSDavid du Colombier			if(err != ASN_OK)
46d884bbSDavid du Colombier				break;
46d884bbSDavid du Colombier			switch(elem.val.tag) {
46d884bbSDavid du Colombier			case VOctets:
46d884bbSDavid du Colombier				newans = catbytes(ans, elem.val.u.octetsval);
46d884bbSDavid du Colombier				freebytes(ans);
46d884bbSDavid du Colombier				ans = newans;
46d884bbSDavid du Colombier				break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier			case VEOC:
46d884bbSDavid du Colombier				if(length != -1) {
46d884bbSDavid du Colombier					p = pold;
46d884bbSDavid du Colombier					err = ASN_EINVAL;
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier				goto cloop_done;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier			default:
46d884bbSDavid du Colombier				p = pold;
46d884bbSDavid du Colombier				err = ASN_EINVAL;
46d884bbSDavid du Colombier				goto cloop_done;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombiercloop_done:
46d884bbSDavid du Colombier		;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	*pbytes = ans;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Decode a sequence or set.
46d884bbSDavid du Colombier * We've already checked that length==-1 implies isconstr==1,
46d884bbSDavid du Colombier * and otherwise that specified length fits within (*p..pend)
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierseq_decode(uchar** pp, uchar* pend, int length, int isconstr, Elist** pelist)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier	uchar* pstart;
46d884bbSDavid du Colombier	uchar* pold;
46d884bbSDavid du Colombier	Elist* ans;
46d884bbSDavid du Colombier	Elem elem;
46d884bbSDavid du Colombier	Elist* lve;
46d884bbSDavid du Colombier	Elist* lveold;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	ans = nil;
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	if(!isconstr)
46d884bbSDavid du Colombier		err = ASN_EPRIM;
46d884bbSDavid du Colombier	else {
46d884bbSDavid du Colombier		/* constructed, either definite or indefinite length */
46d884bbSDavid du Colombier		lve = nil;
46d884bbSDavid du Colombier		pstart = p;
46d884bbSDavid du Colombier		for(;;) {
46d884bbSDavid du Colombier			if(length >= 0 && p >= pstart + length) {
46d884bbSDavid du Colombier				if(p != pstart + length)
46d884bbSDavid du Colombier					err = ASN_EVALLEN;
46d884bbSDavid du Colombier				break;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			pold = p;
46d884bbSDavid du Colombier			err = ber_decode(&p, pend, &elem);
46d884bbSDavid du Colombier			if(err != ASN_OK)
46d884bbSDavid du Colombier				break;
46d884bbSDavid du Colombier			if(elem.val.tag == VEOC) {
46d884bbSDavid du Colombier				if(length != -1) {
46d884bbSDavid du Colombier					p = pold;
46d884bbSDavid du Colombier					err = ASN_EINVAL;
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier				break;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			else
46d884bbSDavid du Colombier				lve = mkel(elem, lve);
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		if(err == ASN_OK) {
46d884bbSDavid du Colombier			/* reverse back to original order */
46d884bbSDavid du Colombier			while(lve != nil) {
46d884bbSDavid du Colombier				lveold = lve;
46d884bbSDavid du Colombier				lve = lve->tl;
46d884bbSDavid du Colombier				lveold->tl = ans;
46d884bbSDavid du Colombier				ans = lveold;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	*pelist = ans;
46d884bbSDavid du Colombier	setmalloctag(ans, getcallerpc(&pp));
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Encode e by BER rules, putting answer in *pbytes.
46d884bbSDavid du Colombier * This is done by first calling enc with lenonly==1
46d884bbSDavid du Colombier * to get the length of the needed buffer,
46d884bbSDavid du Colombier * then allocating the buffer and using enc again to fill it up.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierencode(Elem e, Bytes** pbytes)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier	Bytes* ans;
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	uchar uc;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = &uc;
46d884bbSDavid du Colombier	err = enc(&p, e, 1);
46d884bbSDavid du Colombier	if(err == ASN_OK) {
46d884bbSDavid du Colombier		ans = newbytes(p-&uc);
46d884bbSDavid du Colombier		p = ans->data;
46d884bbSDavid du Colombier		err = enc(&p, e, 0);
46d884bbSDavid du Colombier		*pbytes = ans;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * The various enc functions take a pointer to a pointer
46d884bbSDavid du Colombier * into a buffer, and encode their entity starting there,
46d884bbSDavid du Colombier * updating the pointer afterwards.
46d884bbSDavid du Colombier * If lenonly is 1, only the pointer update is done,
46d884bbSDavid du Colombier * allowing enc to be called first to calculate the needed
46d884bbSDavid du Colombier * buffer length.
46d884bbSDavid du Colombier * If lenonly is 0, it is assumed that the answer will fit.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierenc(uchar** pp, Elem e, int lenonly)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	int vlen;
46d884bbSDavid du Colombier	int constr;
46d884bbSDavid du Colombier	Tag tag;
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier	int ilen;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier	uchar* psave;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	err = val_enc(&p, e, &constr, 1);
46d884bbSDavid du Colombier	if(err != ASN_OK)
46d884bbSDavid du Colombier		return err;
46d884bbSDavid du Colombier	vlen = p - *pp;
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	tag = e.tag;
46d884bbSDavid du Colombier	v = tag.class|constr;
46d884bbSDavid du Colombier	if(tag.num < 31) {
46d884bbSDavid du Colombier		if(!lenonly)
46d884bbSDavid du Colombier			*p = (v|tag.num);
46d884bbSDavid du Colombier		p++;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else {
46d884bbSDavid du Colombier		if(!lenonly)
46d884bbSDavid du Colombier			*p = (v|31);
46d884bbSDavid du Colombier		p++;
46d884bbSDavid du Colombier		if(tag.num < 0)
46d884bbSDavid du Colombier			return ASN_EINVAL;
46d884bbSDavid du Colombier		uint7_enc(&p, tag.num, lenonly);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	if(vlen < 0x80) {
46d884bbSDavid du Colombier		if(!lenonly)
46d884bbSDavid du Colombier			*p = vlen;
46d884bbSDavid du Colombier		p++;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else {
46d884bbSDavid du Colombier		psave = p;
46d884bbSDavid du Colombier		int_enc(&p, vlen, 1, 1);
46d884bbSDavid du Colombier		ilen = p-psave;
46d884bbSDavid du Colombier		p = psave;
46d884bbSDavid du Colombier		if(!lenonly) {
46d884bbSDavid du Colombier			*p++ = (0x80 | ilen);
46d884bbSDavid du Colombier			int_enc(&p, vlen, 1, 0);
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			p += 1 + ilen;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	if(!lenonly)
46d884bbSDavid du Colombier		val_enc(&p, e, &constr, 0);
46d884bbSDavid du Colombier	else
46d884bbSDavid du Colombier		p += vlen;
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierval_enc(uchar** pp, Elem e, int *pconstr, int lenonly)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int err;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier	int kind;
46d884bbSDavid du Colombier	int cl;
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier	Bytes* bb = nil;
46d884bbSDavid du Colombier	Bits* bits;
46d884bbSDavid du Colombier	Ints* oid;
46d884bbSDavid du Colombier	int k;
46d884bbSDavid du Colombier	Elist* el;
46d884bbSDavid du Colombier	char* s;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	err = ASN_OK;
46d884bbSDavid du Colombier	kind = e.tag.num;
46d884bbSDavid du Colombier	cl = e.tag.class;
46d884bbSDavid du Colombier	*pconstr = 0;
46d884bbSDavid du Colombier	if(cl != Universal) {
46d884bbSDavid du Colombier		switch(e.val.tag) {
46d884bbSDavid du Colombier		case VBool:
46d884bbSDavid du Colombier			kind = BOOLEAN;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VInt:
46d884bbSDavid du Colombier			kind = INTEGER;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VBigInt:
46d884bbSDavid du Colombier			kind = INTEGER;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VOctets:
46d884bbSDavid du Colombier			kind = OCTET_STRING;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VReal:
46d884bbSDavid du Colombier			kind = REAL;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VOther:
46d884bbSDavid du Colombier			kind = OCTET_STRING;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VBitString:
46d884bbSDavid du Colombier			kind = BIT_STRING;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VNull:
46d884bbSDavid du Colombier			kind = NULLTAG;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VObjId:
46d884bbSDavid du Colombier			kind = OBJECT_ID;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VString:
46d884bbSDavid du Colombier			kind = UniversalString;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VSeq:
46d884bbSDavid du Colombier			kind = SEQUENCE;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VSet:
46d884bbSDavid du Colombier			kind = SETOF;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	switch(kind) {
46d884bbSDavid du Colombier	case BOOLEAN:
46d884bbSDavid du Colombier		if(is_int(&e, &v)) {
46d884bbSDavid du Colombier			if(v != 0)
46d884bbSDavid du Colombier				v = 255;
46d884bbSDavid du Colombier			 int_enc(&p, v, 1, lenonly);
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			err = ASN_EINVAL;
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case INTEGER:
46d884bbSDavid du Colombier	case ENUMERATED:
46d884bbSDavid du Colombier		if(is_int(&e, &v))
46d884bbSDavid du Colombier			int_enc(&p, v, 0, lenonly);
46d884bbSDavid du Colombier		else {
46d884bbSDavid du Colombier			if(is_bigint(&e, &bb)) {
46d884bbSDavid du Colombier				if(!lenonly)
46d884bbSDavid du Colombier					memmove(p, bb->data, bb->len);
46d884bbSDavid du Colombier				p += bb->len;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			else
46d884bbSDavid du Colombier				err = ASN_EINVAL;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case BIT_STRING:
46d884bbSDavid du Colombier		if(is_bitstring(&e, &bits)) {
46d884bbSDavid du Colombier			if(bits->len == 0) {
46d884bbSDavid du Colombier				if(!lenonly)
46d884bbSDavid du Colombier					*p = 0;
46d884bbSDavid du Colombier				p++;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier			else {
46d884bbSDavid du Colombier				v = bits->unusedbits;
46d884bbSDavid du Colombier				if(v < 0 || v > 7)
46d884bbSDavid du Colombier					err = ASN_EINVAL;
46d884bbSDavid du Colombier				else {
46d884bbSDavid du Colombier					if(!lenonly) {
46d884bbSDavid du Colombier						*p = v;
46d884bbSDavid du Colombier						memmove(p+1, bits->data, bits->len);
46d884bbSDavid du Colombier					}
46d884bbSDavid du Colombier					p += 1 + bits->len;
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			err = ASN_EINVAL;
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case OCTET_STRING:
46d884bbSDavid du Colombier	case ObjectDescriptor:
46d884bbSDavid du Colombier	case EXTERNAL:
46d884bbSDavid du Colombier	case REAL:
46d884bbSDavid du Colombier	case EMBEDDED_PDV:
46d884bbSDavid du Colombier		bb = nil;
46d884bbSDavid du Colombier		switch(e.val.tag) {
46d884bbSDavid du Colombier		case VOctets:
46d884bbSDavid du Colombier			bb = e.val.u.octetsval;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VReal:
46d884bbSDavid du Colombier			bb = e.val.u.realval;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		case VOther:
46d884bbSDavid du Colombier			bb = e.val.u.otherval;
46d884bbSDavid du Colombier			break;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		if(bb != nil) {
46d884bbSDavid du Colombier			if(!lenonly)
46d884bbSDavid du Colombier				memmove(p, bb->data, bb->len);
46d884bbSDavid du Colombier			p += bb->len;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier			else
46d884bbSDavid du Colombier				err = ASN_EINVAL;
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case NULLTAG:
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case OBJECT_ID:
46d884bbSDavid du Colombier		if(is_oid(&e, &oid)) {
46d884bbSDavid du Colombier			for(k = 0; k < oid->len; k++) {
46d884bbSDavid du Colombier				v = oid->data[k];
46d884bbSDavid du Colombier				if(k == 0) {
46d884bbSDavid du Colombier					v *= 40;
46d884bbSDavid du Colombier					if(oid->len > 1)
46d884bbSDavid du Colombier						v += oid->data[++k];
46d884bbSDavid du Colombier				}
46d884bbSDavid du Colombier				uint7_enc(&p, v, lenonly);
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			err = ASN_EINVAL;
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case SEQUENCE:
46d884bbSDavid du Colombier	case SETOF:
46d884bbSDavid du Colombier		el = nil;
46d884bbSDavid du Colombier		if(e.val.tag == VSeq)
46d884bbSDavid du Colombier			el = e.val.u.seqval;
46d884bbSDavid du Colombier		else if(e.val.tag == VSet)
46d884bbSDavid du Colombier			el = e.val.u.setval;
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			err = ASN_EINVAL;
46d884bbSDavid du Colombier		if(el != nil) {
46d884bbSDavid du Colombier			*pconstr = CONSTR_MASK;
46d884bbSDavid du Colombier			for(; el != nil; el = el->tl) {
46d884bbSDavid du Colombier				err = enc(&p, el->hd, lenonly);
46d884bbSDavid du Colombier				if(err != ASN_OK)
46d884bbSDavid du Colombier					break;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	case UTF8String:
46d884bbSDavid du Colombier	case NumericString:
46d884bbSDavid du Colombier	case PrintableString:
46d884bbSDavid du Colombier	case TeletexString:
46d884bbSDavid du Colombier	case VideotexString:
46d884bbSDavid du Colombier	case IA5String:
46d884bbSDavid du Colombier	case UTCTime:
46d884bbSDavid du Colombier	case GeneralizedTime:
46d884bbSDavid du Colombier	case GraphicString:
46d884bbSDavid du Colombier	case VisibleString:
46d884bbSDavid du Colombier	case GeneralString:
46d884bbSDavid du Colombier	case UniversalString:
46d884bbSDavid du Colombier	case BMPString:
46d884bbSDavid du Colombier		if(e.val.tag == VString) {
46d884bbSDavid du Colombier			s = e.val.u.stringval;
46d884bbSDavid du Colombier			if(s != nil) {
46d884bbSDavid du Colombier				v = strlen(s);
46d884bbSDavid du Colombier				if(!lenonly)
46d884bbSDavid du Colombier					memmove(p, s, v);
46d884bbSDavid du Colombier				p += v;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			err = ASN_EINVAL;
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	default:
46d884bbSDavid du Colombier		err = ASN_EINVAL;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Encode num as unsigned 7 bit values with top bit 1 on all bytes
46d884bbSDavid du Colombier * except last, only putting in bytes if !lenonly.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombieruint7_enc(uchar** pp, int num, int lenonly)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int n;
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier	int k;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	n = 1;
46d884bbSDavid du Colombier	v = num >> 7;
46d884bbSDavid du Colombier	while(v > 0) {
46d884bbSDavid du Colombier		v >>= 7;
46d884bbSDavid du Colombier		n++;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	if(lenonly)
46d884bbSDavid du Colombier		p += n;
46d884bbSDavid du Colombier	else {
46d884bbSDavid du Colombier		for(k = (n - 1)*7; k > 0; k -= 7)
46d884bbSDavid du Colombier			*p++= ((num >> k)|0x80);
46d884bbSDavid du Colombier		*p++ = (num&0x7F);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Encode num as unsigned or signed integer,
46d884bbSDavid du Colombier * only putting in bytes if !lenonly.
46d884bbSDavid du Colombier * Encoding is length followed by bytes to concatenate.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierint_enc(uchar** pp, int num, int unsgned, int lenonly)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier	int n;
46d884bbSDavid du Colombier	int prevv;
46d884bbSDavid du Colombier	int k;
46d884bbSDavid du Colombier	uchar* p;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = *pp;
46d884bbSDavid du Colombier	v = num;
46d884bbSDavid du Colombier	if(v < 0)
46d884bbSDavid du Colombier		v = -(v + 1);
46d884bbSDavid du Colombier	n = 1;
46d884bbSDavid du Colombier	prevv = v;
46d884bbSDavid du Colombier	v >>= 8;
46d884bbSDavid du Colombier	while(v > 0) {
46d884bbSDavid du Colombier		prevv = v;
46d884bbSDavid du Colombier		v >>= 8;
46d884bbSDavid du Colombier		n++;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	if(!unsgned && (prevv&0x80))
46d884bbSDavid du Colombier		n++;
46d884bbSDavid du Colombier	if(lenonly)
46d884bbSDavid du Colombier		p += n;
46d884bbSDavid du Colombier	else {
46d884bbSDavid du Colombier		for(k = (n - 1)*8; k >= 0; k -= 8)
46d884bbSDavid du Colombier			*p++ = (num >> k);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	*pp = p;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierints_eq(Ints* a, Ints* b)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int	alen;
46d884bbSDavid du Colombier	int	i;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	alen = a->len;
46d884bbSDavid du Colombier	if(alen != b->len)
46d884bbSDavid du Colombier		return 0;
46d884bbSDavid du Colombier	for(i = 0; i < alen; i++)
46d884bbSDavid du Colombier		if(a->data[i] != b->data[i])
46d884bbSDavid du Colombier			return 0;
46d884bbSDavid du Colombier	return 1;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Look up o in tab (which must have nil entry to terminate).
46d884bbSDavid du Colombier * Return index of matching entry, or -1 if none.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieroid_lookup(Ints* o, Ints** tab)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int i;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	for(i = 0; tab[i] != nil; i++)
46d884bbSDavid du Colombier		if(ints_eq(o, tab[i]))
46d884bbSDavid du Colombier			return  i;
46d884bbSDavid du Colombier	return -1;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Return true if *pe is a SEQUENCE, and set *pseq to
46d884bbSDavid du Colombier * the value of the sequence if so.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_seq(Elem* pe, Elist** pseq)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal && pe->tag.num == SEQUENCE && pe->val.tag == VSeq) {
46d884bbSDavid du Colombier		*pseq = pe->val.u.seqval;
46d884bbSDavid du Colombier		return 1;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_set(Elem* pe, Elist** pset)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal && pe->tag.num == SETOF && pe->val.tag == VSet) {
46d884bbSDavid du Colombier		*pset = pe->val.u.setval;
46d884bbSDavid du Colombier		return 1;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_int(Elem* pe, int* pint)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal) {
46d884bbSDavid du Colombier		if(pe->tag.num == INTEGER && pe->val.tag == VInt) {
46d884bbSDavid du Colombier			*pint = pe->val.u.intval;
46d884bbSDavid du Colombier			return 1;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		else if(pe->tag.num == BOOLEAN && pe->val.tag == VBool) {
46d884bbSDavid du Colombier			*pint = pe->val.u.boolval;
46d884bbSDavid du Colombier			return 1;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * for convience, all VInt's are readable via this routine,
46d884bbSDavid du Colombier * as well as all VBigInt's
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_bigint(Elem* pe, Bytes** pbigint)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int v, n, i;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(pe->tag.class == Universal && pe->tag.num == INTEGER) {
46d884bbSDavid du Colombier		if(pe->val.tag == VBigInt)
46d884bbSDavid du Colombier			*pbigint = pe->val.u.bigintval;
46d884bbSDavid du Colombier		else if(pe->val.tag == VInt){
46d884bbSDavid du Colombier			v = pe->val.u.intval;
46d884bbSDavid du Colombier			for(n = 1; n < 4; n++)
46d884bbSDavid du Colombier				if((1 << (8 * n)) > v)
46d884bbSDavid du Colombier					break;
46d884bbSDavid du Colombier			*pbigint = newbytes(n);
46d884bbSDavid du Colombier			for(i = 0; i < n; i++)
46d884bbSDavid du Colombier				(*pbigint)->data[i] = (v >> ((n - 1 - i) * 8));
46d884bbSDavid du Colombier		}else
46d884bbSDavid du Colombier			return 0;
46d884bbSDavid du Colombier		return 1;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_bitstring(Elem* pe, Bits** pbits)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal && pe->tag.num == BIT_STRING && pe->val.tag == VBitString) {
46d884bbSDavid du Colombier		*pbits = pe->val.u.bitstringval;
46d884bbSDavid du Colombier		return 1;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_octetstring(Elem* pe, Bytes** poctets)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal && pe->tag.num == OCTET_STRING && pe->val.tag == VOctets) {
46d884bbSDavid du Colombier		*poctets = pe->val.u.octetsval;
46d884bbSDavid du Colombier		return 1;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_oid(Elem* pe, Ints** poid)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal && pe->tag.num == OBJECT_ID && pe->val.tag == VObjId) {
46d884bbSDavid du Colombier		*poid = pe->val.u.objidval;
46d884bbSDavid du Colombier		return 1;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_string(Elem* pe, char** pstring)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal) {
46d884bbSDavid du Colombier		switch(pe->tag.num) {
46d884bbSDavid du Colombier		case UTF8String:
46d884bbSDavid du Colombier		case NumericString:
46d884bbSDavid du Colombier		case PrintableString:
46d884bbSDavid du Colombier		case TeletexString:
46d884bbSDavid du Colombier		case VideotexString:
46d884bbSDavid du Colombier		case IA5String:
46d884bbSDavid du Colombier		case GraphicString:
46d884bbSDavid du Colombier		case VisibleString:
46d884bbSDavid du Colombier		case GeneralString:
46d884bbSDavid du Colombier		case UniversalString:
46d884bbSDavid du Colombier		case BMPString:
46d884bbSDavid du Colombier			if(pe->val.tag == VString) {
46d884bbSDavid du Colombier				*pstring = pe->val.u.stringval;
46d884bbSDavid du Colombier				return 1;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombieris_time(Elem* pe, char** ptime)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(pe->tag.class == Universal
46d884bbSDavid du Colombier	   && (pe->tag.num == UTCTime || pe->tag.num == GeneralizedTime)
46d884bbSDavid du Colombier	   && pe->val.tag == VString) {
46d884bbSDavid du Colombier		*ptime = pe->val.u.stringval;
46d884bbSDavid du Colombier		return 1;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return 0;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * malloc and return a new Bytes structure capable of
46d884bbSDavid du Colombier * holding len bytes. (len >= 0)
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic Bytes*
46d884bbSDavid du Colombiernewbytes(int len)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bytes* ans;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	ans = (Bytes*)emalloc(OFFSETOF(data[0], Bytes) + len);
46d884bbSDavid du Colombier	ans->len = len;
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * newbytes(len), with data initialized from buf
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic Bytes*
46d884bbSDavid du Colombiermakebytes(uchar* buf, int len)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bytes* ans;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	ans = newbytes(len);
46d884bbSDavid du Colombier	memmove(ans->data, buf, len);
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierfreebytes(Bytes* b)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(b != nil)
46d884bbSDavid du Colombier		free(b);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Make a new Bytes, containing bytes of b1 followed by those of b2.
46d884bbSDavid du Colombier * Either b1 or b2 or both can be nil.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic Bytes*
46d884bbSDavid du Colombiercatbytes(Bytes* b1, Bytes* b2)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bytes* ans;
46d884bbSDavid du Colombier	int n;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(b1 == nil) {
46d884bbSDavid du Colombier		if(b2 == nil)
46d884bbSDavid du Colombier			ans = newbytes(0);
46d884bbSDavid du Colombier		else
46d884bbSDavid du Colombier			ans = makebytes(b2->data, b2->len);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else if(b2 == nil) {
46d884bbSDavid du Colombier		ans = makebytes(b1->data, b1->len);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	else {
46d884bbSDavid du Colombier		n = b1->len + b2->len;
46d884bbSDavid du Colombier		ans = newbytes(n);
46d884bbSDavid du Colombier		ans->len = n;
46d884bbSDavid du Colombier		memmove(ans->data, b1->data, b1->len);
46d884bbSDavid du Colombier		memmove(ans->data+b1->len, b2->data, b2->len);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* len is number of ints */
46d884bbSDavid du Colombierstatic Ints*
46d884bbSDavid du Colombiernewints(int len)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Ints* ans;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	ans = (Ints*)emalloc(OFFSETOF(data[0], Ints) + len*sizeof(int));
46d884bbSDavid du Colombier	ans->len = len;
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Ints*
46d884bbSDavid du Colombiermakeints(int* buf, int len)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Ints* ans;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	ans = newints(len);
46d884bbSDavid du Colombier	if(len > 0)
46d884bbSDavid du Colombier		memmove(ans->data, buf, len*sizeof(int));
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierfreeints(Ints* b)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(b != nil)
46d884bbSDavid du Colombier		free(b);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* len is number of bytes */
46d884bbSDavid du Colombierstatic Bits*
46d884bbSDavid du Colombiernewbits(int len)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bits* ans;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	ans = (Bits*)emalloc(OFFSETOF(data[0], Bits) + len);
46d884bbSDavid du Colombier	ans->len = len;
46d884bbSDavid du Colombier	ans->unusedbits = 0;
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Bits*
46d884bbSDavid du Colombiermakebits(uchar* buf, int len, int unusedbits)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bits* ans;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	ans = newbits(len);
46d884bbSDavid du Colombier	memmove(ans->data, buf, len);
46d884bbSDavid du Colombier	ans->unusedbits = unusedbits;
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierfreebits(Bits* b)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(b != nil)
46d884bbSDavid du Colombier		free(b);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elist*
46d884bbSDavid du Colombiermkel(Elem e, Elist* tail)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elist* el;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = (Elist*)emalloc(sizeof(Elist));
46d884bbSDavid du Colombier	setmalloctag(el, getcallerpc(&e));
46d884bbSDavid du Colombier	el->hd = e;
46d884bbSDavid du Colombier	el->tl = tail;
46d884bbSDavid du Colombier	return el;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierelistlen(Elist* el)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int ans = 0;
46d884bbSDavid du Colombier	while(el != nil) {
46d884bbSDavid du Colombier		ans++;
46d884bbSDavid du Colombier		el = el->tl;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* Frees elist, but not fields inside values of constituent elems */
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierfreeelist(Elist* el)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elist* next;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	while(el != nil) {
46d884bbSDavid du Colombier		next = el->tl;
46d884bbSDavid du Colombier		free(el);
46d884bbSDavid du Colombier		el = next;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* free any allocated structures inside v (recursively freeing Elists) */
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierfreevalfields(Value* v)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elist* el;
46d884bbSDavid du Colombier	Elist* l;
46d884bbSDavid du Colombier	if(v == nil)
46d884bbSDavid du Colombier		return;
46d884bbSDavid du Colombier	switch(v->tag) {
46d884bbSDavid du Colombier 	case VOctets:
46d884bbSDavid du Colombier		freebytes(v->u.octetsval);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VBigInt:
46d884bbSDavid du Colombier		freebytes(v->u.bigintval);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VReal:
46d884bbSDavid du Colombier		freebytes(v->u.realval);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VOther:
46d884bbSDavid du Colombier		freebytes(v->u.otherval);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VBitString:
46d884bbSDavid du Colombier		freebits(v->u.bitstringval);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VObjId:
46d884bbSDavid du Colombier		freeints(v->u.objidval);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VString:
46d884bbSDavid du Colombier		if(v->u.stringval)
46d884bbSDavid du Colombier			free(v->u.stringval);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VSeq:
46d884bbSDavid du Colombier		el = v->u.seqval;
46d884bbSDavid du Colombier		for(l = el; l != nil; l = l->tl)
46d884bbSDavid du Colombier			freevalfields(&l->hd.val);
46d884bbSDavid du Colombier		if(el)
46d884bbSDavid du Colombier			freeelist(el);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VSet:
46d884bbSDavid du Colombier		el = v->u.setval;
46d884bbSDavid du Colombier		for(l = el; l != nil; l = l->tl)
46d884bbSDavid du Colombier			freevalfields(&l->hd.val);
46d884bbSDavid du Colombier		if(el)
46d884bbSDavid du Colombier			freeelist(el);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* end of general ASN1 functions */
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*=============================================================*/
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Decode and parse an X.509 Certificate, defined by this ASN1:
46d884bbSDavid du Colombier *	Certificate ::= SEQUENCE {
46d884bbSDavid du Colombier *		certificateInfo CertificateInfo,
46d884bbSDavid du Colombier *		signatureAlgorithm AlgorithmIdentifier,
46d884bbSDavid du Colombier *		signature BIT STRING }
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	CertificateInfo ::= SEQUENCE {
46d884bbSDavid du Colombier *		version [0] INTEGER DEFAULT v1 (0),
46d884bbSDavid du Colombier *		serialNumber INTEGER,
46d884bbSDavid du Colombier *		signature AlgorithmIdentifier,
46d884bbSDavid du Colombier *		issuer Name,
46d884bbSDavid du Colombier *		validity Validity,
46d884bbSDavid du Colombier *		subject Name,
46d884bbSDavid du Colombier *		subjectPublicKeyInfo SubjectPublicKeyInfo }
46d884bbSDavid du Colombier *	(version v2 has two more fields, optional unique identifiers for
46d884bbSDavid du Colombier *  issuer and subject; since we ignore these anyway, we won't parse them)
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	Validity ::= SEQUENCE {
46d884bbSDavid du Colombier *		notBefore UTCTime,
46d884bbSDavid du Colombier *		notAfter UTCTime }
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	SubjectPublicKeyInfo ::= SEQUENCE {
46d884bbSDavid du Colombier *		algorithm AlgorithmIdentifier,
46d884bbSDavid du Colombier *		subjectPublicKey BIT STRING }
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	AlgorithmIdentifier ::= SEQUENCE {
46d884bbSDavid du Colombier *		algorithm OBJECT IDENTIFER,
46d884bbSDavid du Colombier *		parameters ANY DEFINED BY ALGORITHM OPTIONAL }
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	Name ::= SEQUENCE OF RelativeDistinguishedName
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	RelativeDistinguishedName ::= SETOF SIZE(1..MAX) OF AttributeTypeAndValue
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	AttributeTypeAndValue ::= SEQUENCE {
46d884bbSDavid du Colombier *		type OBJECT IDENTIFER,
46d884bbSDavid du Colombier *		value DirectoryString }
46d884bbSDavid du Colombier *	(selected attributes have these Object Ids:
46d884bbSDavid du Colombier *		commonName {2 5 4 3}
46d884bbSDavid du Colombier *		countryName {2 5 4 6}
46d884bbSDavid du Colombier *		localityName {2 5 4 7}
46d884bbSDavid du Colombier *		stateOrProvinceName {2 5 4 8}
46d884bbSDavid du Colombier *		organizationName {2 5 4 10}
46d884bbSDavid du Colombier *		organizationalUnitName {2 5 4 11}
46d884bbSDavid du Colombier *	)
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *	DirectoryString ::= CHOICE {
46d884bbSDavid du Colombier *		teletexString TeletexString,
46d884bbSDavid du Colombier *		printableString PrintableString,
46d884bbSDavid du Colombier *		universalString UniversalString }
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *  See rfc1423, rfc2437 for AlgorithmIdentifier, subjectPublicKeyInfo, signature.
46d884bbSDavid du Colombier *
46d884bbSDavid du Colombier *  Not yet implemented:
46d884bbSDavid du Colombier *   CertificateRevocationList ::= SIGNED SEQUENCE{
46d884bbSDavid du Colombier *           signature       AlgorithmIdentifier,
46d884bbSDavid du Colombier *           issuer          Name,
46d884bbSDavid du Colombier *           lastUpdate      UTCTime,
46d884bbSDavid du Colombier *           nextUpdate      UTCTime,
46d884bbSDavid du Colombier *           revokedCertificates
46d884bbSDavid du Colombier *                           SEQUENCE OF CRLEntry OPTIONAL}
46d884bbSDavid du Colombier *   CRLEntry ::= SEQUENCE{
46d884bbSDavid du Colombier *           userCertificate SerialNumber,
46d884bbSDavid du Colombier *           revocationDate UTCTime}
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombier
46d884bbSDavid du Colombiertypedef struct CertX509 {
46d884bbSDavid du Colombier	int	serial;
46d884bbSDavid du Colombier	char*	issuer;
46d884bbSDavid du Colombier	char*	validity_start;
46d884bbSDavid du Colombier	char*	validity_end;
46d884bbSDavid du Colombier	char*	subject;
46d884bbSDavid du Colombier	int	publickey_alg;
46d884bbSDavid du Colombier	Bytes*	publickey;
46d884bbSDavid du Colombier	int	signature_alg;
46d884bbSDavid du Colombier	Bytes*	signature;
46d884bbSDavid du Colombier} CertX509;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* Algorithm object-ids */
46d884bbSDavid du Colombierenum {
46d884bbSDavid du Colombier	ALG_rsaEncryption,
46d884bbSDavid du Colombier	ALG_md2WithRSAEncryption,
46d884bbSDavid du Colombier	ALG_md4WithRSAEncryption,
46d884bbSDavid du Colombier	ALG_md5WithRSAEncryption,
46d884bbSDavid du Colombier	ALG_sha1WithRSAEncryption,
46d884bbSDavid du Colombier	ALG_sha1WithRSAEncryptionOiw,
46d884bbSDavid du Colombier	ALG_md5,
46d884bbSDavid du Colombier	NUMALGS
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombiertypedef struct Ints7 {
46d884bbSDavid du Colombier	int		len;
46d884bbSDavid du Colombier	int		data[7];
46d884bbSDavid du Colombier} Ints7;
46d884bbSDavid du Colombierstatic Ints7 oid_rsaEncryption = {7, 1, 2, 840, 113549, 1, 1, 1 };
46d884bbSDavid du Colombierstatic Ints7 oid_md2WithRSAEncryption = {7, 1, 2, 840, 113549, 1, 1, 2 };
46d884bbSDavid du Colombierstatic Ints7 oid_md4WithRSAEncryption = {7, 1, 2, 840, 113549, 1, 1, 3 };
46d884bbSDavid du Colombierstatic Ints7 oid_md5WithRSAEncryption = {7, 1, 2, 840, 113549, 1, 1, 4 };
46d884bbSDavid du Colombierstatic Ints7 oid_sha1WithRSAEncryption ={7, 1, 2, 840, 113549, 1, 1, 5 };
46d884bbSDavid du Colombierstatic Ints7 oid_sha1WithRSAEncryptionOiw ={6, 1, 3, 14, 3, 2, 29 };
46d884bbSDavid du Colombierstatic Ints7 oid_md5 ={6, 1, 2, 840, 113549, 2, 5, 0 };
46d884bbSDavid du Colombierstatic Ints *alg_oid_tab[NUMALGS+1] = {
46d884bbSDavid du Colombier	(Ints*)&oid_rsaEncryption,
46d884bbSDavid du Colombier	(Ints*)&oid_md2WithRSAEncryption,
46d884bbSDavid du Colombier	(Ints*)&oid_md4WithRSAEncryption,
46d884bbSDavid du Colombier	(Ints*)&oid_md5WithRSAEncryption,
46d884bbSDavid du Colombier	(Ints*)&oid_sha1WithRSAEncryption,
46d884bbSDavid du Colombier	(Ints*)&oid_sha1WithRSAEncryptionOiw,
46d884bbSDavid du Colombier	(Ints*)&oid_md5,
46d884bbSDavid du Colombier	nil
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombierstatic DigestFun digestalg[NUMALGS+1] = { md5, md5, md5, md5, sha1, sha1, md5, nil };
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierfreecert(CertX509* c)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(!c) return;
46d884bbSDavid du Colombier	if(c->issuer != nil)
46d884bbSDavid du Colombier		free(c->issuer);
46d884bbSDavid du Colombier	if(c->validity_start != nil)
46d884bbSDavid du Colombier		free(c->validity_start);
46d884bbSDavid du Colombier	if(c->validity_end != nil)
46d884bbSDavid du Colombier		free(c->validity_end);
46d884bbSDavid du Colombier	if(c->subject != nil)
46d884bbSDavid du Colombier		free(c->subject);
46d884bbSDavid du Colombier	freebytes(c->publickey);
46d884bbSDavid du Colombier	freebytes(c->signature);
46d884bbSDavid du Colombier	free(c);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Parse the Name ASN1 type.
46d884bbSDavid du Colombier * The sequence of RelativeDistinguishedName's gives a sort of pathname,
46d884bbSDavid du Colombier * from most general to most specific.  Each element of the path can be
46d884bbSDavid du Colombier * one or more (but usually just one) attribute-value pair, such as
46d884bbSDavid du Colombier * countryName="US".
46d884bbSDavid du Colombier * We'll just form a "postal-style" address string by concatenating the elements
46d884bbSDavid du Colombier * from most specific to least specific, separated by commas.
46d884bbSDavid du Colombier * Return name-as-string (which must be freed by caller).
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic char*
46d884bbSDavid du Colombierparse_name(Elem* e)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elist* el;
46d884bbSDavid du Colombier	Elem* es;
46d884bbSDavid du Colombier	Elist* esetl;
46d884bbSDavid du Colombier	Elem* eat;
46d884bbSDavid du Colombier	Elist* eatl;
46d884bbSDavid du Colombier	char* s;
46d884bbSDavid du Colombier	enum { MAXPARTS = 100 };
46d884bbSDavid du Colombier	char* parts[MAXPARTS];
46d884bbSDavid du Colombier	int i;
46d884bbSDavid du Colombier	int plen;
46d884bbSDavid du Colombier	char* ans = nil;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(!is_seq(e, &el))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	i = 0;
46d884bbSDavid du Colombier	plen = 0;
46d884bbSDavid du Colombier	while(el != nil) {
46d884bbSDavid du Colombier		es = &el->hd;
46d884bbSDavid du Colombier		if(!is_set(es, &esetl))
46d884bbSDavid du Colombier			goto errret;
46d884bbSDavid du Colombier		while(esetl != nil) {
46d884bbSDavid du Colombier			eat = &esetl->hd;
46d884bbSDavid du Colombier			if(!is_seq(eat, &eatl) || elistlen(eatl) != 2)
46d884bbSDavid du Colombier				goto errret;
46d884bbSDavid du Colombier			if(!is_string(&eatl->tl->hd, &s) || i>=MAXPARTS)
46d884bbSDavid du Colombier				goto errret;
46d884bbSDavid du Colombier			parts[i++] = s;
46d884bbSDavid du Colombier			plen += strlen(s) + 2;		/* room for ", " after */
46d884bbSDavid du Colombier			esetl = esetl->tl;
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier		el = el->tl;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	if(i > 0) {
46d884bbSDavid du Colombier		ans = (char*)emalloc(plen);
46d884bbSDavid du Colombier		*ans = '\0';
46d884bbSDavid du Colombier		while(--i >= 0) {
46d884bbSDavid du Colombier			s = parts[i];
46d884bbSDavid du Colombier			strcat(ans, s);
46d884bbSDavid du Colombier			if(i > 0)
46d884bbSDavid du Colombier				strcat(ans, ", ");
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombiererrret:
46d884bbSDavid du Colombier	return ans;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * Parse an AlgorithmIdentifer ASN1 type.
46d884bbSDavid du Colombier * Look up the oid in oid_tab and return one of OID_rsaEncryption, etc..,
46d884bbSDavid du Colombier * or -1 if not found.
46d884bbSDavid du Colombier * For now, ignore parameters, since none of our algorithms need them.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic int
46d884bbSDavid du Colombierparse_alg(Elem* e)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elist* el;
46d884bbSDavid du Colombier	Ints* oid;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(!is_seq(e, &el) || el == nil || !is_oid(&el->hd, &oid))
46d884bbSDavid du Colombier		return -1;
46d884bbSDavid du Colombier	return oid_lookup(oid, alg_oid_tab);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic CertX509*
46d884bbSDavid du Colombierdecode_cert(Bytes* a)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int ok = 0;
46d884bbSDavid du Colombier	int n;
46d884bbSDavid du Colombier	CertX509* c = nil;
46d884bbSDavid du Colombier	Elem  ecert;
46d884bbSDavid du Colombier	Elem* ecertinfo;
46d884bbSDavid du Colombier	Elem* esigalg;
46d884bbSDavid du Colombier	Elem* esig;
46d884bbSDavid du Colombier	Elem* eserial;
46d884bbSDavid du Colombier	Elem* eissuer;
46d884bbSDavid du Colombier	Elem* evalidity;
46d884bbSDavid du Colombier	Elem* esubj;
46d884bbSDavid du Colombier	Elem* epubkey;
46d884bbSDavid du Colombier	Elist* el;
46d884bbSDavid du Colombier	Elist* elcert = nil;
46d884bbSDavid du Colombier	Elist* elcertinfo = nil;
46d884bbSDavid du Colombier	Elist* elvalidity = nil;
46d884bbSDavid du Colombier	Elist* elpubkey = nil;
46d884bbSDavid du Colombier	Bits* bits = nil;
46d884bbSDavid du Colombier	Bytes* b;
46d884bbSDavid du Colombier	Elem* e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(decode(a->data, a->len, &ecert) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	c = (CertX509*)emalloc(sizeof(CertX509));
46d884bbSDavid du Colombier	c->serial = -1;
46d884bbSDavid du Colombier	c->issuer = nil;
46d884bbSDavid du Colombier	c->validity_start = nil;
46d884bbSDavid du Colombier	c->validity_end = nil;
46d884bbSDavid du Colombier	c->subject = nil;
46d884bbSDavid du Colombier	c->publickey_alg = -1;
46d884bbSDavid du Colombier	c->publickey = nil;
46d884bbSDavid du Colombier	c->signature_alg = -1;
46d884bbSDavid du Colombier	c->signature = nil;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	/* Certificate */
46d884bbSDavid du Colombier 	if(!is_seq(&ecert, &elcert) || elistlen(elcert) !=3)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier 	ecertinfo = &elcert->hd;
46d884bbSDavid du Colombier 	el = elcert->tl;
46d884bbSDavid du Colombier 	esigalg = &el->hd;
46d884bbSDavid du Colombier	c->signature_alg = parse_alg(esigalg);
46d884bbSDavid du Colombier 	el = el->tl;
46d884bbSDavid du Colombier 	esig = &el->hd;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	/* Certificate Info */
46d884bbSDavid du Colombier	if(!is_seq(ecertinfo, &elcertinfo))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	n = elistlen(elcertinfo);
46d884bbSDavid du Colombier  	if(n < 6)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	eserial =&elcertinfo->hd;
46d884bbSDavid du Colombier 	el = elcertinfo->tl;
46d884bbSDavid du Colombier 	/* check for optional version, marked by explicit context tag 0 */
46d884bbSDavid du Colombier	if(eserial->tag.class == Context && eserial->tag.num == 0) {
46d884bbSDavid du Colombier 		eserial = &el->hd;
46d884bbSDavid du Colombier 		if(n < 7)
46d884bbSDavid du Colombier 			goto errret;
46d884bbSDavid du Colombier 		el = el->tl;
46d884bbSDavid du Colombier 	}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(parse_alg(&el->hd) != c->signature_alg)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier 	el = el->tl;
46d884bbSDavid du Colombier 	eissuer = &el->hd;
46d884bbSDavid du Colombier 	el = el->tl;
46d884bbSDavid du Colombier 	evalidity = &el->hd;
46d884bbSDavid du Colombier 	el = el->tl;
46d884bbSDavid du Colombier 	esubj = &el->hd;
46d884bbSDavid du Colombier 	el = el->tl;
46d884bbSDavid du Colombier 	epubkey = &el->hd;
46d884bbSDavid du Colombier 	if(!is_int(eserial, &c->serial)) {
46d884bbSDavid du Colombier		if(!is_bigint(eserial, &b))
46d884bbSDavid du Colombier			goto errret;
46d884bbSDavid du Colombier		c->serial = -1;	/* else we have to change cert struct */
46d884bbSDavid du Colombier  	}
46d884bbSDavid du Colombier	c->issuer = parse_name(eissuer);
46d884bbSDavid du Colombier	if(c->issuer == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	/* Validity */
46d884bbSDavid du Colombier  	if(!is_seq(evalidity, &elvalidity))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(elistlen(elvalidity) != 2)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	e = &elvalidity->hd;
46d884bbSDavid du Colombier	if(!is_time(e, &c->validity_start))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	e->val.u.stringval = nil;	/* string ownership transfer */
46d884bbSDavid du Colombier	e = &elvalidity->tl->hd;
46d884bbSDavid du Colombier 	if(!is_time(e, &c->validity_end))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	e->val.u.stringval = nil;	/* string ownership transfer */
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	/* resume CertificateInfo */
46d884bbSDavid du Colombier 	c->subject = parse_name(esubj);
46d884bbSDavid du Colombier	if(c->subject == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	/* SubjectPublicKeyInfo */
46d884bbSDavid du Colombier 	if(!is_seq(epubkey, &elpubkey))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(elistlen(elpubkey) != 2)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	c->publickey_alg = parse_alg(&elpubkey->hd);
46d884bbSDavid du Colombier	if(c->publickey_alg < 0)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier  	if(!is_bitstring(&elpubkey->tl->hd, &bits))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(bits->unusedbits != 0)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier 	c->publickey = makebytes(bits->data, bits->len);
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	/*resume Certificate */
46d884bbSDavid du Colombier	if(c->signature_alg < 0)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier 	if(!is_bitstring(esig, &bits))
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier 	c->signature = makebytes(bits->data, bits->len);
46d884bbSDavid du Colombier	ok = 1;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombiererrret:
46d884bbSDavid du Colombier	freevalfields(&ecert.val);	/* recurses through lists, too */
46d884bbSDavid du Colombier	if(!ok){
46d884bbSDavid du Colombier		freecert(c);
46d884bbSDavid du Colombier		c = nil;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return c;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier *	RSAPublickKey :: SEQUENCE {
46d884bbSDavid du Colombier *		modulus INTEGER,
46d884bbSDavid du Colombier *		publicExponent INTEGER
46d884bbSDavid du Colombier *	}
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic RSApub*
46d884bbSDavid du Colombierdecode_rsapubkey(Bytes* a)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier	Elist *el, *l;
46d884bbSDavid du Colombier	mpint *mp;
46d884bbSDavid du Colombier	RSApub* key;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	l = nil;
46d884bbSDavid du Colombier	key = rsapuballoc();
46d884bbSDavid du Colombier	if(decode(a->data, a->len, &e) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(!is_seq(&e, &el) || elistlen(el) != 2)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	l = el;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	key->n = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->ek = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(l != nil)
46d884bbSDavid du Colombier		freeelist(l);
46d884bbSDavid du Colombier	return key;
46d884bbSDavid du Colombiererrret:
46d884bbSDavid du Colombier	if(l != nil)
46d884bbSDavid du Colombier		freeelist(l);
46d884bbSDavid du Colombier	rsapubfree(key);
46d884bbSDavid du Colombier	return nil;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier *	RSAPrivateKey ::= SEQUENCE {
46d884bbSDavid du Colombier *		version Version,
46d884bbSDavid du Colombier *		modulus INTEGER, -- n
46d884bbSDavid du Colombier *		publicExponent INTEGER, -- e
46d884bbSDavid du Colombier *		privateExponent INTEGER, -- d
46d884bbSDavid du Colombier *		prime1 INTEGER, -- p
46d884bbSDavid du Colombier *		prime2 INTEGER, -- q
46d884bbSDavid du Colombier *		exponent1 INTEGER, -- d mod (p-1)
46d884bbSDavid du Colombier *		exponent2 INTEGER, -- d mod (q-1)
46d884bbSDavid du Colombier *		coefficient INTEGER -- (inverse of q) mod p }
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic RSApriv*
46d884bbSDavid du Colombierdecode_rsaprivkey(Bytes* a)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int version;
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier	Elist *el;
46d884bbSDavid du Colombier	mpint *mp;
46d884bbSDavid du Colombier	RSApriv* key;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	key = rsaprivalloc();
46d884bbSDavid du Colombier	if(decode(a->data, a->len, &e) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(!is_seq(&e, &el) || elistlen(el) != 9)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(!is_int(&el->hd, &version) || version != 0)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->pub.n = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->pub.ek = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->dk = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->q = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->p = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->kq = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->kp = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->c2 = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	return key;
46d884bbSDavid du Colombiererrret:
46d884bbSDavid du Colombier	rsaprivfree(key);
46d884bbSDavid du Colombier	return nil;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * 	DSAPrivateKey ::= SEQUENCE{
46d884bbSDavid du Colombier *		version Version,
46d884bbSDavid du Colombier *		p INTEGER,
46d884bbSDavid du Colombier *		q INTEGER,
46d884bbSDavid du Colombier *		g INTEGER, -- alpha
46d884bbSDavid du Colombier *		pub_key INTEGER, -- key
46d884bbSDavid du Colombier *		priv_key INTEGER, -- secret
46d884bbSDavid du Colombier *	}
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic DSApriv*
46d884bbSDavid du Colombierdecode_dsaprivkey(Bytes* a)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int version;
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier	Elist *el;
46d884bbSDavid du Colombier	mpint *mp;
46d884bbSDavid du Colombier	DSApriv* key;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	key = dsaprivalloc();
46d884bbSDavid du Colombier	if(decode(a->data, a->len, &e) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(!is_seq(&e, &el) || elistlen(el) != 6)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombierversion = -1;
46d884bbSDavid du Colombier	if(!is_int(&el->hd, &version) || version != 0)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombierfprint(2, "version %d\n", version);
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->pub.p = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->pub.q = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->pub.alpha = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->pub.key = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	el = el->tl;
46d884bbSDavid du Colombier	key->secret = mp = asn1mpint(&el->hd);
46d884bbSDavid du Colombier	if(mp == nil)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	return key;
46d884bbSDavid du Colombiererrret:
46d884bbSDavid du Colombier	dsaprivfree(key);
46d884bbSDavid du Colombier	return nil;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic mpint*
46d884bbSDavid du Colombierasn1mpint(Elem *e)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bytes *b;
46d884bbSDavid du Colombier	mpint *mp;
46d884bbSDavid du Colombier	int v;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(is_int(e, &v))
46d884bbSDavid du Colombier		return itomp(v, nil);
46d884bbSDavid du Colombier	if(is_bigint(e, &b)) {
46d884bbSDavid du Colombier		mp = betomp(b->data, b->len, nil);
46d884bbSDavid du Colombier		freebytes(b);
46d884bbSDavid du Colombier		return mp;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	return nil;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic mpint*
46d884bbSDavid du Colombierpkcs1pad(Bytes *b, mpint *modulus)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int n = (mpsignif(modulus)+7)/8;
46d884bbSDavid du Colombier	int pm1, i;
46d884bbSDavid du Colombier	uchar *p;
46d884bbSDavid du Colombier	mpint *mp;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	pm1 = n - 1 - b->len;
46d884bbSDavid du Colombier	p = (uchar*)emalloc(n);
46d884bbSDavid du Colombier	p[0] = 0;
46d884bbSDavid du Colombier	p[1] = 1;
46d884bbSDavid du Colombier	for(i = 2; i < pm1; i++)
46d884bbSDavid du Colombier		p[i] = 0xFF;
46d884bbSDavid du Colombier	p[pm1] = 0;
46d884bbSDavid du Colombier	memcpy(&p[pm1+1], b->data, b->len);
46d884bbSDavid du Colombier	mp = betomp(p, n, nil);
46d884bbSDavid du Colombier	free(p);
46d884bbSDavid du Colombier	return mp;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du ColombierRSApriv*
46d884bbSDavid du Colombierasn1toRSApriv(uchar *kd, int kn)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bytes *b;
46d884bbSDavid du Colombier	RSApriv *key;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	b = makebytes(kd, kn);
46d884bbSDavid du Colombier	key = decode_rsaprivkey(b);
46d884bbSDavid du Colombier	freebytes(b);
46d884bbSDavid du Colombier	return key;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du ColombierDSApriv*
46d884bbSDavid du Colombierasn1toDSApriv(uchar *kd, int kn)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Bytes *b;
46d884bbSDavid du Colombier	DSApriv *key;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	b = makebytes(kd, kn);
46d884bbSDavid du Colombier	key = decode_dsaprivkey(b);
46d884bbSDavid du Colombier	freebytes(b);
46d884bbSDavid du Colombier	return key;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/*
46d884bbSDavid du Colombier * digest(CertificateInfo)
46d884bbSDavid du Colombier * Our ASN.1 library doesn't return pointers into the original
46d884bbSDavid du Colombier * data array, so we need to do a little hand decoding.
46d884bbSDavid du Colombier */
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombierdigest_certinfo(Bytes *cert, DigestFun digestfun, uchar *digest)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	uchar *info, *p, *pend;
46d884bbSDavid du Colombier	ulong infolen;
46d884bbSDavid du Colombier	int isconstr, length;
46d884bbSDavid du Colombier	Tag tag;
46d884bbSDavid du Colombier	Elem elem;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	p = cert->data;
46d884bbSDavid du Colombier	pend = cert->data + cert->len;
46d884bbSDavid du Colombier	if(tag_decode(&p, pend, &tag, &isconstr) != ASN_OK ||
46d884bbSDavid du Colombier	   tag.class != Universal || tag.num != SEQUENCE ||
46d884bbSDavid du Colombier	   length_decode(&p, pend, &length) != ASN_OK ||
46d884bbSDavid du Colombier	   p+length > pend ||
46d884bbSDavid du Colombier	   p+length < p)
46d884bbSDavid du Colombier		return;
46d884bbSDavid du Colombier	info = p;
46d884bbSDavid du Colombier	if(ber_decode(&p, pend, &elem) != ASN_OK)
46d884bbSDavid du Colombier		return;
46d884bbSDavid du Colombier	freevalfields(&elem.val);
46d884bbSDavid du Colombier	if(elem.tag.num != SEQUENCE)
46d884bbSDavid du Colombier		return;
46d884bbSDavid du Colombier	infolen = p - info;
46d884bbSDavid du Colombier	(*digestfun)(info, infolen, digest, nil);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic char*
46d884bbSDavid du Colombierverify_signature(Bytes* signature, RSApub *pk, uchar *edigest, Elem **psigalg)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier	Elist *el;
46d884bbSDavid du Colombier	Bytes *digest;
46d884bbSDavid du Colombier	uchar *pkcs1buf, *buf;
46d884bbSDavid du Colombier	int buflen;
46d884bbSDavid du Colombier	mpint *pkcs1;
46d884bbSDavid du Colombier	int nlen;
46d884bbSDavid du Colombier	char *err;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	err = nil;
46d884bbSDavid du Colombier	pkcs1buf = nil;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	/* one less than the byte length of the modulus */
46d884bbSDavid du Colombier	nlen = (mpsignif(pk->n)-1)/8;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	/* see 9.2.1 of rfc2437 */
46d884bbSDavid du Colombier	pkcs1 = betomp(signature->data, signature->len, nil);
46d884bbSDavid du Colombier	mpexp(pkcs1, pk->ek, pk->n, pkcs1);
46d884bbSDavid du Colombier	buflen = mptobe(pkcs1, nil, 0, &pkcs1buf);
46d884bbSDavid du Colombier	buf = pkcs1buf;
46d884bbSDavid du Colombier	if(buflen != nlen || buf[0] != 1) {
46d884bbSDavid du Colombier		err = "expected 1";
46d884bbSDavid du Colombier		goto end;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	buf++;
46d884bbSDavid du Colombier	while(buf[0] == 0xff)
46d884bbSDavid du Colombier		buf++;
46d884bbSDavid du Colombier	if(buf[0] != 0) {
46d884bbSDavid du Colombier		err = "expected 0";
46d884bbSDavid du Colombier		goto end;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	buf++;
46d884bbSDavid du Colombier	buflen -= buf-pkcs1buf;
46d884bbSDavid du Colombier	if(decode(buf, buflen, &e) != ASN_OK || !is_seq(&e, &el) || elistlen(el) != 2 ||
46d884bbSDavid du Colombier			!is_octetstring(&el->tl->hd, &digest)) {
46d884bbSDavid du Colombier		err = "signature parse error";
46d884bbSDavid du Colombier		goto end;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	*psigalg = &el->hd;
46d884bbSDavid du Colombier	if(memcmp(digest->data, edigest, digest->len) == 0)
46d884bbSDavid du Colombier		goto end;
46d884bbSDavid du Colombier	err = "digests did not match";
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierend:
46d884bbSDavid du Colombier	if(pkcs1 != nil)
46d884bbSDavid du Colombier		mpfree(pkcs1);
46d884bbSDavid du Colombier	if(pkcs1buf != nil)
46d884bbSDavid du Colombier		free(pkcs1buf);
46d884bbSDavid du Colombier	return err;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du ColombierRSApub*
46d884bbSDavid du ColombierX509toRSApub(uchar *cert, int ncert, char *name, int nname)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	char *e;
46d884bbSDavid du Colombier	Bytes *b;
46d884bbSDavid du Colombier	CertX509 *c;
46d884bbSDavid du Colombier	RSApub *pk;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	b = makebytes(cert, ncert);
46d884bbSDavid du Colombier	c = decode_cert(b);
46d884bbSDavid du Colombier	freebytes(b);
46d884bbSDavid du Colombier	if(c == nil)
46d884bbSDavid du Colombier		return nil;
46d884bbSDavid du Colombier	if(name != nil && c->subject != nil){
46d884bbSDavid du Colombier		e = strchr(c->subject, ',');
46d884bbSDavid du Colombier		if(e != nil)
46d884bbSDavid du Colombier			*e = 0;	/* take just CN part of Distinguished Name */
46d884bbSDavid du Colombier		strncpy(name, c->subject, nname);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	pk = decode_rsapubkey(c->publickey);
46d884bbSDavid du Colombier	freecert(c);
46d884bbSDavid du Colombier	return pk;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
*f591d971SDavid du Colombierint
*f591d971SDavid du Colombiergetalgo(Elem *e)
*f591d971SDavid du Colombier{
*f591d971SDavid du Colombier	Value *v;
*f591d971SDavid du Colombier	Elist *el;
*f591d971SDavid du Colombier	int a;
*f591d971SDavid du Colombier
*f591d971SDavid du Colombier	if((a = parse_alg(e)) >= 0)
*f591d971SDavid du Colombier		return a;
*f591d971SDavid du Colombier	v = &e->val;
*f591d971SDavid du Colombier	if(v->tag == VSeq){
*f591d971SDavid du Colombier		print("Seq\n");
*f591d971SDavid du Colombier		for(el = v->u.seqval; el!=nil; el = el->tl){
*f591d971SDavid du Colombier			if((a = getalgo(&el->hd)) >= 0)
*f591d971SDavid du Colombier				return a;
*f591d971SDavid du Colombier		}
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	return -1;
*f591d971SDavid du Colombier}
*f591d971SDavid du Colombier
*f591d971SDavid du Colombierstatic void edump(Elem e);
*f591d971SDavid du Colombier
*f591d971SDavid du ColombierRSApub*
*f591d971SDavid du Colombierasn1toRSApub(uchar *der, int nder)
*f591d971SDavid du Colombier{
*f591d971SDavid du Colombier	Elem e;
*f591d971SDavid du Colombier	Elist *el, *l;
*f591d971SDavid du Colombier	int n;
*f591d971SDavid du Colombier	Bits *b;
*f591d971SDavid du Colombier	RSApub *key;
*f591d971SDavid du Colombier	mpint *mp;
*f591d971SDavid du Colombier
*f591d971SDavid du Colombier	if(decode(der, nder, &e) != ASN_OK){
*f591d971SDavid du Colombier		print("didn't parse\n");
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if(!is_seq(&e, &el)){
*f591d971SDavid du Colombier		print("no seq");
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if((n = elistlen(el)) != 2){
*f591d971SDavid du Colombier		print("bad length %d\n", n);
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if((n = getalgo(&el->hd)) < 0){
*f591d971SDavid du Colombier		print("no algo\n");
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if(n != 0){
*f591d971SDavid du Colombier		print("cant do algorithm %d\n", n);
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if(!is_bitstring(&el->tl->hd, &b)){
*f591d971SDavid du Colombier		print("no bits\n");
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if(decode(b->data, b->len, &e) != ASN_OK){
*f591d971SDavid du Colombier		print("no second decode\n");
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if(!is_seq(&e, &el)){
*f591d971SDavid du Colombier		print("no second seq\n");
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	if(elistlen(el) != 2){
*f591d971SDavid du Colombier		print("no second length\n");
*f591d971SDavid du Colombier		return nil;
*f591d971SDavid du Colombier	}
*f591d971SDavid du Colombier	key = rsapuballoc();
*f591d971SDavid du Colombier
*f591d971SDavid du Colombier	l = el;
*f591d971SDavid du Colombier
*f591d971SDavid du Colombier	key->n = mp = asn1mpint(&el->hd);
*f591d971SDavid du Colombier	if(mp == nil)
*f591d971SDavid du Colombier		goto errret;
*f591d971SDavid du Colombier
*f591d971SDavid du Colombier	el = el->tl;
*f591d971SDavid du Colombier	key->ek = mp = asn1mpint(&el->hd);
*f591d971SDavid du Colombier	if(mp == nil)
*f591d971SDavid du Colombier		goto errret;
*f591d971SDavid du Colombier
*f591d971SDavid du Colombier	if(l != nil)
*f591d971SDavid du Colombier		freeelist(l);
*f591d971SDavid du Colombier	return key;
*f591d971SDavid du Colombiererrret:
*f591d971SDavid du Colombier	if(l != nil)
*f591d971SDavid du Colombier		freeelist(l);
*f591d971SDavid du Colombier	rsapubfree(key);
*f591d971SDavid du Colombier	return nil;
*f591d971SDavid du Colombier}
*f591d971SDavid du Colombier
46d884bbSDavid du Colombierchar*
46d884bbSDavid du ColombierX509verify(uchar *cert, int ncert, RSApub *pk)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	char *e;
46d884bbSDavid du Colombier	Bytes *b;
46d884bbSDavid du Colombier	CertX509 *c;
46d884bbSDavid du Colombier	uchar digest[SHA1dlen];
46d884bbSDavid du Colombier	Elem *sigalg;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	b = makebytes(cert, ncert);
46d884bbSDavid du Colombier	c = decode_cert(b);
46d884bbSDavid du Colombier	if(c != nil)
46d884bbSDavid du Colombier		digest_certinfo(b, digestalg[c->signature_alg], digest);
46d884bbSDavid du Colombier	freebytes(b);
46d884bbSDavid du Colombier	if(c == nil)
46d884bbSDavid du Colombier		return "cannot decode cert";
46d884bbSDavid du Colombier	e = verify_signature(c->signature, pk, digest, &sigalg);
46d884bbSDavid du Colombier	freecert(c);
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier/* ------- Elem constructors ---------- */
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du ColombierNull(void)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = NULLTAG;
46d884bbSDavid du Colombier	e.val.tag = VNull;
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkint(int j)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = INTEGER;
46d884bbSDavid du Colombier	e.val.tag = VInt;
46d884bbSDavid du Colombier	e.val.u.intval = j;
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkbigint(mpint *p)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier	uchar *buf;
46d884bbSDavid du Colombier	int buflen;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = INTEGER;
46d884bbSDavid du Colombier	e.val.tag = VBigInt;
46d884bbSDavid du Colombier	buflen = mptobe(p, nil, 0, &buf);
46d884bbSDavid du Colombier	e.val.u.bigintval = makebytes(buf, buflen);
46d884bbSDavid du Colombier	free(buf);
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkstring(char *s)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = IA5String;
46d884bbSDavid du Colombier	e.val.tag = VString;
46d884bbSDavid du Colombier	e.val.u.stringval = estrdup(s);
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkoctet(uchar *buf, int buflen)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = OCTET_STRING;
46d884bbSDavid du Colombier	e.val.tag = VOctets;
46d884bbSDavid du Colombier	e.val.u.octetsval = makebytes(buf, buflen);
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkbits(uchar *buf, int buflen)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = BIT_STRING;
46d884bbSDavid du Colombier	e.val.tag = VBitString;
46d884bbSDavid du Colombier	e.val.u.bitstringval = makebits(buf, buflen, 0);
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkutc(long t)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier	char utc[50];
*f591d971SDavid du Colombier	Tm *tm = gmtime(t);
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = UTCTime;
46d884bbSDavid du Colombier	e.val.tag = VString;
46d884bbSDavid du Colombier	snprint(utc, 50, "%.2d%.2d%.2d%.2d%.2d%.2dZ",
*f591d971SDavid du Colombier		tm->year % 100, tm->mon+1, tm->mday, tm->hour, tm->min, tm->sec);
46d884bbSDavid du Colombier	e.val.u.stringval = estrdup(utc);
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkoid(Ints *oid)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = OBJECT_ID;
46d884bbSDavid du Colombier	e.val.tag = VObjId;
46d884bbSDavid du Colombier	e.val.u.objidval = makeints(oid->data, oid->len);
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkseq(Elist *el)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = SEQUENCE;
46d884bbSDavid du Colombier	e.val.tag = VSeq;
46d884bbSDavid du Colombier	e.val.u.seqval = el;
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkset(Elist *el)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.tag.class = Universal;
46d884bbSDavid du Colombier	e.tag.num = SETOF;
46d884bbSDavid du Colombier	e.val.tag = VSet;
46d884bbSDavid du Colombier	e.val.u.setval = el;
46d884bbSDavid du Colombier	return e;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkalg(int alg)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	return mkseq(mkel(mkoid(alg_oid_tab[alg]), mkel(Null(), nil)));
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombiertypedef struct Ints7pref {
46d884bbSDavid du Colombier	int		len;
46d884bbSDavid du Colombier	int		data[7];
46d884bbSDavid du Colombier	char	prefix[4];
46d884bbSDavid du Colombier} Ints7pref;
46d884bbSDavid du ColombierInts7pref DN_oid[] = {
46d884bbSDavid du Colombier	{4, 2, 5, 4, 6, 0, 0, 0,  "C="},
46d884bbSDavid du Colombier	{4, 2, 5, 4, 8, 0, 0, 0,  "ST="},
46d884bbSDavid du Colombier	{4, 2, 5, 4, 7, 0, 0, 0,  "L="},
46d884bbSDavid du Colombier	{4, 2, 5, 4, 10, 0, 0, 0, "O="},
46d884bbSDavid du Colombier	{4, 2, 5, 4, 11, 0, 0, 0, "OU="},
46d884bbSDavid du Colombier	{4, 2, 5, 4, 3, 0, 0, 0,  "CN="},
46d884bbSDavid du Colombier 	{7, 1,2,840,113549,1,9,1, "E="},
46d884bbSDavid du Colombier};
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du Colombiermkname(Ints7pref *oid, char *subj)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	return mkset(mkel(mkseq(mkel(mkoid((Ints*)oid), mkel(mkstring(subj), nil))), nil));
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic Elem
46d884bbSDavid du ColombiermkDN(char *dn)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int i, j, nf;
46d884bbSDavid du Colombier	char *f[20], *prefix, *d2 = estrdup(dn);
46d884bbSDavid du Colombier	Elist* el = nil;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	nf = tokenize(d2, f, nelem(f));
46d884bbSDavid du Colombier	for(i=nf-1; i>=0; i--){
46d884bbSDavid du Colombier		for(j=0; j<nelem(DN_oid); j++){
46d884bbSDavid du Colombier			prefix = DN_oid[j].prefix;
46d884bbSDavid du Colombier			if(strncmp(f[i],prefix,strlen(prefix))==0){
46d884bbSDavid du Colombier				el = mkel(mkname(&DN_oid[j],f[i]+strlen(prefix)), el);
46d884bbSDavid du Colombier				break;
46d884bbSDavid du Colombier			}
46d884bbSDavid du Colombier		}
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	free(d2);
46d884bbSDavid du Colombier	return mkseq(el);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
*f591d971SDavid du Colombieruchar*
*f591d971SDavid du ColombierRSApubtoasn1(RSApub *pub, int *keylen)
*f591d971SDavid du Colombier{
*f591d971SDavid du Colombier	Elem pubkey;
*f591d971SDavid du Colombier	Bytes *pkbytes;
*f591d971SDavid du Colombier	uchar *key;
*f591d971SDavid du Colombier
*f591d971SDavid du Colombier	key = nil;
*f591d971SDavid du Colombier	pubkey = mkseq(mkel(mkbigint(pub->n),mkel(mkint(mptoi(pub->ek)),nil)));
*f591d971SDavid du Colombier	if(encode(pubkey, &pkbytes) != ASN_OK)
*f591d971SDavid du Colombier		goto errret;
*f591d971SDavid du Colombier	freevalfields(&pubkey.val);
*f591d971SDavid du Colombier	pubkey = mkseq(
*f591d971SDavid du Colombier		mkel(mkalg(ALG_rsaEncryption),
*f591d971SDavid du Colombier		mkel(mkbits(pkbytes->data, pkbytes->len),
*f591d971SDavid du Colombier		nil)));
*f591d971SDavid du Colombier	freebytes(pkbytes);
*f591d971SDavid du Colombier	if(encode(pubkey, &pkbytes) != ASN_OK)
*f591d971SDavid du Colombier		goto errret;
*f591d971SDavid du Colombier	if(keylen)
*f591d971SDavid du Colombier		*keylen = pkbytes->len;
*f591d971SDavid du Colombier	key = malloc(pkbytes->len);
*f591d971SDavid du Colombier	memmove(key, pkbytes->data, pkbytes->len);
*f591d971SDavid du Colombier	free(pkbytes);
*f591d971SDavid du Colombiererrret:
*f591d971SDavid du Colombier	freevalfields(&pubkey.val);
*f591d971SDavid du Colombier	return key;
*f591d971SDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombieruchar*
46d884bbSDavid du ColombierX509gen(RSApriv *priv, char *subj, ulong valid[2], int *certlen)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	int serial = 0;
46d884bbSDavid du Colombier	uchar *cert = nil;
46d884bbSDavid du Colombier	RSApub *pk = rsaprivtopub(priv);
46d884bbSDavid du Colombier	Bytes *certbytes, *pkbytes, *certinfobytes, *sigbytes;
46d884bbSDavid du Colombier	Elem e, certinfo, issuer, subject, pubkey, validity, sig;
46d884bbSDavid du Colombier	uchar digest[MD5dlen], *buf;
46d884bbSDavid du Colombier	int buflen;
46d884bbSDavid du Colombier	mpint *pkcs1;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.val.tag = VInt;  /* so freevalfields at errret is no-op */
46d884bbSDavid du Colombier	issuer = mkDN(subj);
46d884bbSDavid du Colombier	subject = mkDN(subj);
46d884bbSDavid du Colombier	pubkey = mkseq(mkel(mkbigint(pk->n),mkel(mkint(mptoi(pk->ek)),nil)));
46d884bbSDavid du Colombier	if(encode(pubkey, &pkbytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	freevalfields(&pubkey.val);
46d884bbSDavid du Colombier	pubkey = mkseq(
46d884bbSDavid du Colombier		mkel(mkalg(ALG_rsaEncryption),
46d884bbSDavid du Colombier		mkel(mkbits(pkbytes->data, pkbytes->len),
46d884bbSDavid du Colombier		nil)));
46d884bbSDavid du Colombier	freebytes(pkbytes);
46d884bbSDavid du Colombier	validity = mkseq(
46d884bbSDavid du Colombier		mkel(mkutc(valid[0]),
46d884bbSDavid du Colombier		mkel(mkutc(valid[1]),
46d884bbSDavid du Colombier		nil)));
46d884bbSDavid du Colombier	certinfo = mkseq(
46d884bbSDavid du Colombier		mkel(mkint(serial),
46d884bbSDavid du Colombier		mkel(mkalg(ALG_md5WithRSAEncryption),
46d884bbSDavid du Colombier		mkel(issuer,
46d884bbSDavid du Colombier		mkel(validity,
46d884bbSDavid du Colombier		mkel(subject,
46d884bbSDavid du Colombier		mkel(pubkey,
46d884bbSDavid du Colombier		nil)))))));
46d884bbSDavid du Colombier	if(encode(certinfo, &certinfobytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	md5(certinfobytes->data, certinfobytes->len, digest, 0);
46d884bbSDavid du Colombier	freebytes(certinfobytes);
46d884bbSDavid du Colombier	sig = mkseq(
46d884bbSDavid du Colombier		mkel(mkalg(ALG_md5),
46d884bbSDavid du Colombier		mkel(mkoctet(digest, MD5dlen),
46d884bbSDavid du Colombier		nil)));
46d884bbSDavid du Colombier	if(encode(sig, &sigbytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	pkcs1 = pkcs1pad(sigbytes, pk->n);
46d884bbSDavid du Colombier	freebytes(sigbytes);
46d884bbSDavid du Colombier	rsadecrypt(priv, pkcs1, pkcs1);
46d884bbSDavid du Colombier	buflen = mptobe(pkcs1, nil, 0, &buf);
46d884bbSDavid du Colombier	mpfree(pkcs1);
46d884bbSDavid du Colombier	e = mkseq(
46d884bbSDavid du Colombier		mkel(certinfo,
46d884bbSDavid du Colombier		mkel(mkalg(ALG_md5WithRSAEncryption),
46d884bbSDavid du Colombier		mkel(mkbits(buf, buflen),
46d884bbSDavid du Colombier		nil))));
46d884bbSDavid du Colombier	free(buf);
46d884bbSDavid du Colombier	if(encode(e, &certbytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(certlen)
46d884bbSDavid du Colombier		*certlen = certbytes->len;
46d884bbSDavid du Colombier	cert = certbytes->data;
46d884bbSDavid du Colombiererrret:
46d884bbSDavid du Colombier	freevalfields(&e.val);
46d884bbSDavid du Colombier	return cert;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombieruchar*
46d884bbSDavid du ColombierX509req(RSApriv *priv, char *subj, int *certlen)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	/* RFC 2314, PKCS #10 Certification Request Syntax */
46d884bbSDavid du Colombier	int version = 0;
46d884bbSDavid du Colombier	uchar *cert = nil;
46d884bbSDavid du Colombier	RSApub *pk = rsaprivtopub(priv);
46d884bbSDavid du Colombier	Bytes *certbytes, *pkbytes, *certinfobytes, *sigbytes;
46d884bbSDavid du Colombier	Elem e, certinfo, subject, pubkey, sig;
46d884bbSDavid du Colombier	uchar digest[MD5dlen], *buf;
46d884bbSDavid du Colombier	int buflen;
46d884bbSDavid du Colombier	mpint *pkcs1;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	e.val.tag = VInt;  /* so freevalfields at errret is no-op */
46d884bbSDavid du Colombier	subject = mkDN(subj);
46d884bbSDavid du Colombier	pubkey = mkseq(mkel(mkbigint(pk->n),mkel(mkint(mptoi(pk->ek)),nil)));
46d884bbSDavid du Colombier	if(encode(pubkey, &pkbytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	freevalfields(&pubkey.val);
46d884bbSDavid du Colombier	pubkey = mkseq(
46d884bbSDavid du Colombier		mkel(mkalg(ALG_rsaEncryption),
46d884bbSDavid du Colombier		mkel(mkbits(pkbytes->data, pkbytes->len),
46d884bbSDavid du Colombier		nil)));
46d884bbSDavid du Colombier	freebytes(pkbytes);
46d884bbSDavid du Colombier	certinfo = mkseq(
46d884bbSDavid du Colombier		mkel(mkint(version),
46d884bbSDavid du Colombier		mkel(subject,
46d884bbSDavid du Colombier		mkel(pubkey,
46d884bbSDavid du Colombier		nil))));
46d884bbSDavid du Colombier	if(encode(certinfo, &certinfobytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	md5(certinfobytes->data, certinfobytes->len, digest, 0);
46d884bbSDavid du Colombier	freebytes(certinfobytes);
46d884bbSDavid du Colombier	sig = mkseq(
46d884bbSDavid du Colombier		mkel(mkalg(ALG_md5),
46d884bbSDavid du Colombier		mkel(mkoctet(digest, MD5dlen),
46d884bbSDavid du Colombier		nil)));
46d884bbSDavid du Colombier	if(encode(sig, &sigbytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	pkcs1 = pkcs1pad(sigbytes, pk->n);
46d884bbSDavid du Colombier	freebytes(sigbytes);
46d884bbSDavid du Colombier	rsadecrypt(priv, pkcs1, pkcs1);
46d884bbSDavid du Colombier	buflen = mptobe(pkcs1, nil, 0, &buf);
46d884bbSDavid du Colombier	mpfree(pkcs1);
46d884bbSDavid du Colombier	e = mkseq(
46d884bbSDavid du Colombier		mkel(certinfo,
46d884bbSDavid du Colombier		mkel(mkalg(ALG_md5),
46d884bbSDavid du Colombier		mkel(mkbits(buf, buflen),
46d884bbSDavid du Colombier		nil))));
46d884bbSDavid du Colombier	free(buf);
46d884bbSDavid du Colombier	if(encode(e, &certbytes) != ASN_OK)
46d884bbSDavid du Colombier		goto errret;
46d884bbSDavid du Colombier	if(certlen)
46d884bbSDavid du Colombier		*certlen = certbytes->len;
46d884bbSDavid du Colombier	cert = certbytes->data;
46d884bbSDavid du Colombiererrret:
46d884bbSDavid du Colombier	freevalfields(&e.val);
46d884bbSDavid du Colombier	return cert;
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic char*
46d884bbSDavid du Colombiertagdump(Tag tag)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	if(tag.class != Universal)
46d884bbSDavid du Colombier		return smprint("class%d,num%d", tag.class, tag.num);
46d884bbSDavid du Colombier	switch(tag.num){
46d884bbSDavid du Colombier	case BOOLEAN: return "BOOLEAN";
46d884bbSDavid du Colombier	case INTEGER: return "INTEGER";
46d884bbSDavid du Colombier	case BIT_STRING: return "BIT STRING";
46d884bbSDavid du Colombier	case OCTET_STRING: return "OCTET STRING";
46d884bbSDavid du Colombier	case NULLTAG: return "NULLTAG";
46d884bbSDavid du Colombier	case OBJECT_ID: return "OID";
46d884bbSDavid du Colombier	case ObjectDescriptor: return "OBJECT_DES";
46d884bbSDavid du Colombier	case EXTERNAL: return "EXTERNAL";
46d884bbSDavid du Colombier	case REAL: return "REAL";
46d884bbSDavid du Colombier	case ENUMERATED: return "ENUMERATED";
46d884bbSDavid du Colombier	case EMBEDDED_PDV: return "EMBEDDED PDV";
46d884bbSDavid du Colombier	case SEQUENCE: return "SEQUENCE";
46d884bbSDavid du Colombier	case SETOF: return "SETOF";
46d884bbSDavid du Colombier	case UTF8String: return "UTF8String";
46d884bbSDavid du Colombier	case NumericString: return "NumericString";
46d884bbSDavid du Colombier	case PrintableString: return "PrintableString";
46d884bbSDavid du Colombier	case TeletexString: return "TeletexString";
46d884bbSDavid du Colombier	case VideotexString: return "VideotexString";
46d884bbSDavid du Colombier	case IA5String: return "IA5String";
46d884bbSDavid du Colombier	case UTCTime: return "UTCTime";
46d884bbSDavid du Colombier	case GeneralizedTime: return "GeneralizedTime";
46d884bbSDavid du Colombier	case GraphicString: return "GraphicString";
46d884bbSDavid du Colombier	case VisibleString: return "VisibleString";
46d884bbSDavid du Colombier	case GeneralString: return "GeneralString";
46d884bbSDavid du Colombier	case UniversalString: return "UniversalString";
46d884bbSDavid du Colombier	case BMPString: return "BMPString";
46d884bbSDavid du Colombier	default:
46d884bbSDavid du Colombier		return smprint("Universal,num%d", tag.num);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombierstatic void
46d884bbSDavid du Colombieredump(Elem e)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Value v;
46d884bbSDavid du Colombier	Elist *el;
46d884bbSDavid du Colombier	int i;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	print("%s{", tagdump(e.tag));
46d884bbSDavid du Colombier	v = e.val;
46d884bbSDavid du Colombier	switch(v.tag){
46d884bbSDavid du Colombier	case VBool: print("Bool %d",v.u.boolval); break;
46d884bbSDavid du Colombier	case VInt: print("Int %d",v.u.intval); break;
46d884bbSDavid du Colombier	case VOctets: print("Octets[%d] %.2x%.2x...",v.u.octetsval->len,v.u.octetsval->data[0],v.u.octetsval->data[1]); break;
46d884bbSDavid du Colombier	case VBigInt: print("BigInt[%d] %.2x%.2x...",v.u.bigintval->len,v.u.bigintval->data[0],v.u.bigintval->data[1]); break;
46d884bbSDavid du Colombier	case VReal: print("Real..."); break;
46d884bbSDavid du Colombier	case VOther: print("Other..."); break;
*f591d971SDavid du Colombier	case VBitString: print("BitString");
*f591d971SDavid du Colombier		for(i = 0; i<v.u.bitstringval->len; i++)
*f591d971SDavid du Colombier			print(" %02x", v.u.bitstringval->data[i]);
*f591d971SDavid du Colombier		break;
46d884bbSDavid du Colombier	case VNull: print("Null"); break;
46d884bbSDavid du Colombier	case VEOC: print("EOC..."); break;
46d884bbSDavid du Colombier	case VObjId: print("ObjId");
46d884bbSDavid du Colombier		for(i = 0; i<v.u.objidval->len; i++)
46d884bbSDavid du Colombier			print(" %d", v.u.objidval->data[i]);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VString: print("String \"%s\"",v.u.stringval); break;
46d884bbSDavid du Colombier	case VSeq: print("Seq\n");
46d884bbSDavid du Colombier		for(el = v.u.seqval; el!=nil; el = el->tl)
46d884bbSDavid du Colombier			edump(el->hd);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	case VSet: print("Set\n");
46d884bbSDavid du Colombier		for(el = v.u.setval; el!=nil; el = el->tl)
46d884bbSDavid du Colombier			edump(el->hd);
46d884bbSDavid du Colombier		break;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	print("}\n");
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombiervoid
46d884bbSDavid du Colombierasn1dump(uchar *der, int len)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	Elem e;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	if(decode(der, len, &e) != ASN_OK){
46d884bbSDavid du Colombier		print("didn't parse\n");
46d884bbSDavid du Colombier		exits("didn't parse");
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	edump(e);
46d884bbSDavid du Colombier}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombiervoid
46d884bbSDavid du ColombierX509dump(uchar *cert, int ncert)
46d884bbSDavid du Colombier{
46d884bbSDavid du Colombier	char *e;
46d884bbSDavid du Colombier	Bytes *b;
46d884bbSDavid du Colombier	CertX509 *c;
46d884bbSDavid du Colombier	RSApub *pk;
46d884bbSDavid du Colombier	uchar digest[SHA1dlen];
46d884bbSDavid du Colombier	Elem *sigalg;
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	print("begin X509dump\n");
46d884bbSDavid du Colombier	b = makebytes(cert, ncert);
46d884bbSDavid du Colombier	c = decode_cert(b);
46d884bbSDavid du Colombier	if(c != nil)
46d884bbSDavid du Colombier		digest_certinfo(b, digestalg[c->signature_alg], digest);
46d884bbSDavid du Colombier	freebytes(b);
46d884bbSDavid du Colombier	if(c == nil){
46d884bbSDavid du Colombier		print("cannot decode cert");
46d884bbSDavid du Colombier		return;
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	print("serial %d\n", c->serial);
46d884bbSDavid du Colombier	print("issuer %s\n", c->issuer);
46d884bbSDavid du Colombier	print("validity %s %s\n", c->validity_start, c->validity_end);
46d884bbSDavid du Colombier	print("subject %s\n", c->subject);
46d884bbSDavid du Colombier	pk = decode_rsapubkey(c->publickey);
46d884bbSDavid du Colombier	print("pubkey e=%B n(%d)=%B\n", pk->ek, mpsignif(pk->n), pk->n);
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	print("sigalg=%d digest=%.*H\n", c->signature_alg, MD5dlen, digest);
46d884bbSDavid du Colombier	e = verify_signature(c->signature, pk, digest, &sigalg);
46d884bbSDavid du Colombier	if(e==nil){
46d884bbSDavid du Colombier		e = "nil (meaning ok)";
46d884bbSDavid du Colombier		print("sigalg=\n");
46d884bbSDavid du Colombier		if(sigalg)
46d884bbSDavid du Colombier			edump(*sigalg);
46d884bbSDavid du Colombier	}
46d884bbSDavid du Colombier	print("self-signed verify_signature returns: %s\n", e);
46d884bbSDavid du Colombier
46d884bbSDavid du Colombier	rsapubfree(pk);
46d884bbSDavid du Colombier	freecert(c);
46d884bbSDavid du Colombier	print("end X509dump\n");
46d884bbSDavid du Colombier}