Mirror of :pserver:cvs@cvs.fefe.de:/cvs libowfat https://www.fefe.de/libowfat/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

78 lines
3.1 KiB

#include "scan.h"
/* ASN.1 DER encoded length:
* if (value<=0x80):
* emit value;
* otherwise:
* emit 0x80+bytes_that_follow
* emit all the bytes in the number, number saved big endian
* examples:
* 5 -> 0x05
* 0xc2 -> 0x81 0xc2
* 0x123 -> 0x82 0x01 0x23
* 0x12345 -> 0x83 0x01 0x23 0x45
/* We provide two functions.
* One that only parses the length value (scan_asn1derlengthvalue), and
* one that also makes sure that as many bytes as specified by the
* length are in the input buffer (scan_asn1derlength).
* If you are trying to parse ASN.1, use scan_asn1derlength.
* If you just want to use the integer encoding format used by ASN.1 DER
* for lengths, use scan_asn1derlengthvalue. */
size_t scan_asn1derlengthvalue(const char* src,size_t len,unsigned long long* value) {
if (len==0 || len>=-(uintptr_t)src) return 0;
unsigned int i,c=*src;
unsigned long long l;
if ((c&0x80)==0) {
return 1;
/* Highest bit set: lower 7 bits is the length of the length value in bytes. */
if (!c) return 0; /* length 0x80 means indefinite length encoding, not supported here */
l=(unsigned char)src[1];
if (l==0) return 0; /* not minimally encoded: 0x82 0x00 0xc2 instead of 0x81 0xc2 */
if (c>sizeof(l)) return 0; /* too many bytes, does not fit into target integer type */
if (c+1>len) return 0; /* not enough data in input buffer */
for (i=2; i<=c; ++i)
l=l*256+(unsigned char)src[i];
if (l<0x7f) return 0; /* not minimally encoded: 0x81 0x70 instead of 0x70 */
return i;
size_t scan_asn1derlength(const char* src,size_t len,unsigned long long* value) {
unsigned long long l;
size_t i=scan_asn1derlengthvalue(src,len,&l);
if (!i || l > len-i) return 0; /* make sure data would fit into buffer */
return i;
#include <assert.h>
int main() {
unsigned long long i;
/* first check actual parsing */
assert(scan_asn1derlengthvalue("\x05",1,&i)==1 && i==5);
assert(scan_asn1derlengthvalue("\x81\xc2",2,&i)==2 && i==0xc2);
assert(scan_asn1derlengthvalue("\x82\x01\x23",3,&i)==3 && i==0x123);
assert(scan_asn1derlengthvalue("\x83\x01\x23\x45",4,&i)==4 && i==0x12345);
assert(scan_asn1derlengthvalue("\x83\x01\x23\x45",5,&i)==4 && i==0x12345);
assert(scan_asn1derlengthvalue("\x80",1,&i)==0); // reject indefinite length encoding
assert(scan_asn1derlengthvalue("\x81\x05",2,&i)==0); // reject non-minimal encoding
assert(scan_asn1derlengthvalue("\x81\xc2",1,&i)==0); // reject truncated message
assert(scan_asn1derlengthvalue("\x82\xc2",2,&i)==0); // reject truncated message
assert(scan_asn1derlengthvalue("\x82\x00\xc2",3,&i)==0); // reject non-minimal encoding
assert(scan_asn1derlengthvalue("\x89\x01\x02\x03\x04\x05\x06\x07\x08\x09",10,&i)==0); // value does not fit in target integer
/* now check buffer length checking in scan_asn1derlength */
assert(scan_asn1derlength("\x01",2,&i)==1 && i==1); // ok
assert(scan_asn1derlength("\x02",2,&i)==0); // buffer too small
assert(scan_asn1derlength("\x88\xff\xff\xff\xff\xff\xff\xff\xff",9,&i)==0); // buffer too small, and integer overflow in naive check
return 0;