archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/cryptoapi/common/pkiutil/pkiasn1.cpp

1580 lines
44 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+-------------------------------------------------------------------------
  2. // Microsoft Windows
  3. //
  4. // Copyright (C) Microsoft Corporation, 1995 - 1999
  5. //
  6. // File: pkiasn1.cpp
  7. //
  8. // Contents: PKI ASN.1 support functions.
  9. //
  10. // Functions: PkiAsn1Encode
  11. // PkiAsn1Decode
  12. // PkiAsn1SetEncodingRule
  13. // PkiAsn1GetEncodingRule
  14. //
  15. // PkiAsn1ReverseBytes
  16. // PkiAsn1AllocAndReverseBytes
  17. // PkiAsn1GetOctetString
  18. // PkiAsn1SetHugeInteger
  19. // PkiAsn1FreeHugeInteger
  20. // PkiAsn1GetHugeInteger
  21. // PkiAsn1SetHugeUINT
  22. // PkiAsn1GetHugeUINT
  23. // PkiAsn1SetBitString
  24. // PkiAsn1GetBitString
  25. // PkiAsn1SetBitStringWithoutTrailingZeroes
  26. // PkiAsn1GetIA5String
  27. // PkiAsn1SetUnicodeConvertedToIA5String
  28. // PkiAsn1FreeUnicodeConvertedToIA5String
  29. // PkiAsn1GetIA5StringConvertedToUnicode
  30. // PkiAsn1GetBMPString
  31. // PkiAsn1SetAny
  32. // PkiAsn1GetAny
  33. // PkiAsn1EncodeInfoEx
  34. // PkiAsn1EncodeInfo
  35. // PkiAsn1DecodeAndAllocInfo
  36. // PkiAsn1AllocStructInfoEx
  37. // PkiAsn1DecodeAndAllocInfoEx
  38. //
  39. // PkiAsn1ToObjectIdentifier
  40. // PkiAsn1FromObjectIdentifier
  41. // PkiAsn1ToUTCTime
  42. // PkiAsn1FromUTCTime
  43. // PkiAsn1ToGeneralizedTime
  44. // PkiAsn1FromGeneralizedTime
  45. // PkiAsn1ToChoiceOfTime
  46. // PkiAsn1FromChoiceOfTime
  47. //
  48. // The Get functions decrement *plRemainExtra and advance
  49. // *ppbExtra. When *plRemainExtra becomes negative, the functions continue
  50. // with the length calculation but stop doing any copies.
  51. // The functions don't return an error for a negative *plRemainExtra.
  52. //
  53. // According to the <draft-ietf-pkix-ipki-part1-10.txt> :
  54. // For UTCTime. Where YY is greater than or equal to 50, the year shall
  55. // be interpreted as 19YY. Where YY is less than
  56. // 50, the year shall be interpreted as 20YY.
  57. //
  58. // History: 23-Oct-98 philh created
  59. //--------------------------------------------------------------------------
  61. #include "global.hxx"
  62. #include <dbgdef.h>
  64. // All the *pvInfo extra stuff needs to be aligned
  65. #define INFO_LEN_ALIGN(Len) ((Len + 7) & ~7)
  67. #define MSASN1_SUPPORTS_NOCOPY 1
  70. //
  71. // UTCTime in X.509 certs are represented using a 2-digit year
  72. // field (yuk! but true).
  73. //
  74. // According to IETF draft, YY years greater or equal than this are
  75. // to be interpreted as 19YY; YY years less than this are 20YY. Sigh.
  76. //
  77. #define MAGICYEAR 50
  79. #define YEARFIRST 1950
  80. #define YEARLAST 2049
  81. #define YEARFIRSTGENERALIZED 2050
  83. inline BOOL my_isdigit( char ch)
  84. {
  85. return (ch >= '0') && (ch <= '9');
  86. }
  88. //+-------------------------------------------------------------------------
  89. // Asn1 Encode function. The encoded output is allocated and must be freed
  90. // by calling PkiAsn1FreeEncoded().
  91. //--------------------------------------------------------------------------
  92. ASN1error_e
  93. WINAPI
  94. PkiAsn1Encode(
  95. IN ASN1encoding_t pEnc,
  96. IN void *pvAsn1Info,
  97. IN ASN1uint32_t id,
  98. OUT BYTE **ppbEncoded,
  99. OUT DWORD *pcbEncoded
  100. )
  101. {
  102. ASN1error_e Asn1Err;
  104. Asn1Err = ASN1_Encode(
  105. pEnc,
  106. pvAsn1Info,
  107. id,
  108. ASN1ENCODE_ALLOCATEBUFFER,
  109. NULL, // pbBuf
  110. 0 // cbBufSize
  111. );
  113. if (ASN1_SUCCEEDED(Asn1Err)) {
  114. Asn1Err = ASN1_SUCCESS;
  115. *ppbEncoded = pEnc->buf;
  116. *pcbEncoded = pEnc->len;
  117. } else {
  118. *ppbEncoded = NULL;
  119. *pcbEncoded = 0;
  120. }
  121. return Asn1Err;
  122. }
  124. //+-------------------------------------------------------------------------
  125. // Asn1 Encode function. The encoded output isn't allocated.
  126. //
  127. // If pbEncoded is NULL, does a length only calculation.
  128. //--------------------------------------------------------------------------
  129. ASN1error_e
  130. WINAPI
  131. PkiAsn1Encode2(
  132. IN ASN1encoding_t pEnc,
  133. IN void *pvAsn1Info,
  134. IN ASN1uint32_t id,
  135. OUT OPTIONAL BYTE *pbEncoded,
  136. IN OUT DWORD *pcbEncoded
  137. )
  138. {
  139. ASN1error_e Asn1Err;
  140. DWORD cbEncoded;
  142. if (NULL == pbEncoded)
  143. cbEncoded = 0;
  144. else
  145. cbEncoded = *pcbEncoded;
  147. if (0 == cbEncoded) {
  148. // Length only calculation
  150. Asn1Err = ASN1_Encode(
  151. pEnc,
  152. pvAsn1Info,
  153. id,
  154. ASN1ENCODE_ALLOCATEBUFFER,
  155. NULL, // pbBuf
  156. 0 // cbBufSize
  157. );
  159. if (ASN1_SUCCEEDED(Asn1Err)) {
  160. if (pbEncoded)
  161. Asn1Err = ASN1_ERR_OVERFLOW;
  162. else
  163. Asn1Err = ASN1_SUCCESS;
  164. cbEncoded = pEnc->len;
  165. PkiAsn1FreeEncoded(pEnc, pEnc->buf);
  166. }
  167. } else {
  168. Asn1Err = ASN1_Encode(
  169. pEnc,
  170. pvAsn1Info,
  171. id,
  172. ASN1ENCODE_SETBUFFER,
  173. pbEncoded,
  174. cbEncoded
  175. );
  177. if (ASN1_SUCCEEDED(Asn1Err)) {
  178. Asn1Err = ASN1_SUCCESS;
  179. cbEncoded = pEnc->len;
  180. } else if (ASN1_ERR_OVERFLOW == Asn1Err) {
  181. // Re-do as length only calculation
  182. Asn1Err = PkiAsn1Encode2(
  183. pEnc,
  184. pvAsn1Info,
  185. id,
  186. NULL, // pbEncoded
  187. &cbEncoded
  188. );
  189. if (ASN1_SUCCESS == Asn1Err)
  190. Asn1Err = ASN1_ERR_OVERFLOW;
  191. } else
  192. cbEncoded = 0;
  193. }
  195. *pcbEncoded = cbEncoded;
  196. return Asn1Err;
  197. }
  199. //+-------------------------------------------------------------------------
  200. // Asn1 Decode function. The allocated, decoded structure, **pvAsn1Info, must
  201. // be freed by calling PkiAsn1FreeDecoded().
  202. //--------------------------------------------------------------------------
  203. ASN1error_e
  204. WINAPI
  205. PkiAsn1Decode(
  206. IN ASN1decoding_t pDec,
  207. OUT void **ppvAsn1Info,
  208. IN ASN1uint32_t id,
  209. IN const BYTE *pbEncoded,
  210. IN DWORD cbEncoded
  211. )
  212. {
  213. ASN1error_e Asn1Err;
  215. *ppvAsn1Info = NULL;
  216. Asn1Err = ASN1_Decode(
  217. pDec,
  218. ppvAsn1Info,
  219. id,
  220. ASN1DECODE_SETBUFFER,
  221. (BYTE *) pbEncoded,
  222. cbEncoded
  223. );
  224. if (ASN1_SUCCEEDED(Asn1Err))
  225. Asn1Err = ASN1_SUCCESS;
  226. else {
  227. if (ASN1_ERR_BADARGS == Asn1Err)
  228. Asn1Err = ASN1_ERR_EOD;
  229. *ppvAsn1Info = NULL;
  230. }
  231. return Asn1Err;
  232. }
  234. //+-------------------------------------------------------------------------
  235. // Asn1 Decode function. The allocated, decoded structure, **pvAsn1Info, must
  236. // be freed by calling PkiAsn1FreeDecoded().
  237. //
  238. // For a successful decode, *ppbEncoded is advanced
  239. // past the decoded bytes and *pcbDecoded is decremented by the number
  240. // of decoded bytes.
  241. //--------------------------------------------------------------------------
  242. ASN1error_e
  243. WINAPI
  244. PkiAsn1Decode2(
  245. IN ASN1decoding_t pDec,
  246. OUT void **ppvAsn1Info,
  247. IN ASN1uint32_t id,
  248. IN OUT BYTE **ppbEncoded,
  249. IN OUT DWORD *pcbEncoded
  250. )
  251. {
  252. ASN1error_e Asn1Err;
  254. *ppvAsn1Info = NULL;
  255. Asn1Err = ASN1_Decode(
  256. pDec,
  257. ppvAsn1Info,
  258. id,
  259. ASN1DECODE_SETBUFFER,
  260. *ppbEncoded,
  261. *pcbEncoded
  262. );
  263. if (ASN1_SUCCEEDED(Asn1Err)) {
  264. Asn1Err = ASN1_SUCCESS;
  265. *ppbEncoded += pDec->len;
  266. *pcbEncoded -= pDec->len;
  267. } else {
  268. if (ASN1_ERR_BADARGS == Asn1Err)
  269. Asn1Err = ASN1_ERR_EOD;
  270. *ppvAsn1Info = NULL;
  271. }
  272. return Asn1Err;
  273. }
  276. //+-------------------------------------------------------------------------
  277. // Asn1 Set/Get encoding rules functions
  278. //--------------------------------------------------------------------------
  279. ASN1error_e
  280. WINAPI
  281. PkiAsn1SetEncodingRule(
  282. IN ASN1encoding_t pEnc,
  283. IN ASN1encodingrule_e eRule
  284. )
  285. {
  286. ASN1optionparam_s OptParam;
  288. OptParam.eOption = ASN1OPT_CHANGE_RULE;
  289. OptParam.eRule = eRule;
  291. return ASN1_SetEncoderOption(pEnc, &OptParam);
  292. }
  294. ASN1encodingrule_e
  295. WINAPI
  296. PkiAsn1GetEncodingRule(
  297. IN ASN1encoding_t pEnc
  298. )
  299. {
  300. ASN1error_e Asn1Err;
  301. ASN1encodingrule_e eRule;
  302. ASN1optionparam_s OptParam;
  303. OptParam.eOption = ASN1OPT_GET_RULE;
  305. Asn1Err = ASN1_GetEncoderOption(pEnc, &OptParam);
  306. if (ASN1_SUCCEEDED(Asn1Err))
  307. eRule = OptParam.eRule;
  308. else
  309. eRule = ASN1_BER_RULE_DER;
  311. return eRule;
  312. }
  315. //+-------------------------------------------------------------------------
  316. // Reverses a buffer of bytes in place
  317. //--------------------------------------------------------------------------
  318. void
  319. WINAPI
  320. PkiAsn1ReverseBytes(
  321. IN OUT PBYTE pbIn,
  322. IN DWORD cbIn
  323. )
  324. {
  325. // reverse in place
  326. PBYTE pbLo;
  327. PBYTE pbHi;
  328. BYTE bTmp;
  330. if (0 == cbIn)
  331. return;
  333. for (pbLo = pbIn, pbHi = pbIn + cbIn - 1; pbLo < pbHi; pbHi--, pbLo++) {
  334. bTmp = *pbHi;
  335. *pbHi = *pbLo;
  336. *pbLo = bTmp;
  337. }
  338. }
  340. //+-------------------------------------------------------------------------
  341. // Reverses a buffer of bytes to a new buffer. PkiAsn1Free() must be
  342. // called to free allocated bytes.
  343. //--------------------------------------------------------------------------
  344. PBYTE
  345. WINAPI
  346. PkiAsn1AllocAndReverseBytes(
  347. IN PBYTE pbIn,
  348. IN DWORD cbIn
  349. )
  350. {
  351. PBYTE pbOut;
  352. PBYTE pbSrc;
  353. PBYTE pbDst;
  354. DWORD cb;
  356. if (NULL == (pbOut = (PBYTE)PkiAsn1Alloc(cbIn)))
  357. return NULL;
  359. for (pbSrc = pbIn, pbDst = pbOut + cbIn - 1, cb = cbIn; cb > 0; cb--)
  360. *pbDst-- = *pbSrc++;
  361. return pbOut;
  362. }
  365. //+-------------------------------------------------------------------------
  366. // Get Octet String
  367. //--------------------------------------------------------------------------
  368. void
  369. WINAPI
  370. PkiAsn1GetOctetString(
  371. IN ASN1uint32_t Asn1Length,
  372. IN ASN1octet_t *pAsn1Value,
  373. IN DWORD dwFlags,
  374. OUT PCRYPT_DATA_BLOB pInfo,
  375. IN OUT BYTE **ppbExtra,
  376. IN OUT LONG *plRemainExtra
  377. )
  378. {
  379. #ifndef MSASN1_SUPPORTS_NOCOPY
  380. dwFlags &= ~CRYPT_DECODE_NOCOPY_FLAG;
  381. #endif
  382. if (dwFlags & CRYPT_DECODE_NOCOPY_FLAG) {
  383. if (*plRemainExtra >= 0) {
  384. pInfo->cbData = Asn1Length;
  385. pInfo->pbData = pAsn1Value;
  386. }
  387. } else {
  388. LONG lRemainExtra = *plRemainExtra;
  389. BYTE *pbExtra = *ppbExtra;
  390. LONG lAlignExtra;
  391. LONG lData;
  393. lData = (LONG) Asn1Length;
  394. lAlignExtra = INFO_LEN_ALIGN(lData);
  395. lRemainExtra -= lAlignExtra;
  396. if (lRemainExtra >= 0) {
  397. if (lData > 0) {
  398. pInfo->pbData = pbExtra;
  399. pInfo->cbData = (DWORD) lData;
  400. memcpy(pbExtra, pAsn1Value, lData);
  401. } else
  402. memset(pInfo, 0, sizeof(*pInfo));
  403. pbExtra += lAlignExtra;
  404. }
  405. *plRemainExtra = lRemainExtra;
  406. *ppbExtra = pbExtra;
  407. }
  408. }
  410. //+-------------------------------------------------------------------------
  411. // Set/Free/Get HugeInteger
  412. //
  413. // For PkiAsn1SetHugeInteger, PkiAsn1FreeHugeInteger must be called to free
  414. // the allocated Asn1Value.
  415. //--------------------------------------------------------------------------
  416. BOOL
  417. WINAPI
  418. PkiAsn1SetHugeInteger(
  419. IN PCRYPT_INTEGER_BLOB pInfo,
  420. OUT ASN1uint32_t *pAsn1Length,
  421. OUT ASN1octet_t **ppAsn1Value
  422. )
  423. {
  424. if (pInfo->cbData > 0) {
  425. if (NULL == (*ppAsn1Value = PkiAsn1AllocAndReverseBytes(
  426. pInfo->pbData, pInfo->cbData))) {
  427. *pAsn1Length = 0;
  428. return FALSE;
  429. }
  430. } else
  431. *ppAsn1Value = NULL;
  432. *pAsn1Length = pInfo->cbData;
  433. return TRUE;
  434. }
  436. void
  437. WINAPI
  438. PkiAsn1FreeHugeInteger(
  439. IN ASN1octet_t *pAsn1Value
  440. )
  441. {
  442. // Only for BYTE reversal
  443. PkiAsn1Free(pAsn1Value);
  444. }
  446. void
  447. WINAPI
  448. PkiAsn1GetHugeInteger(
  449. IN ASN1uint32_t Asn1Length,
  450. IN ASN1octet_t *pAsn1Value,
  451. IN DWORD dwFlags,
  452. OUT PCRYPT_INTEGER_BLOB pInfo,
  453. IN OUT BYTE **ppbExtra,
  454. IN OUT LONG *plRemainExtra
  455. )
  456. {
  457. // Since bytes need to be reversed, always need to do a copy (dwFlags = 0)
  458. PkiAsn1GetOctetString(Asn1Length, pAsn1Value, 0,
  459. pInfo, ppbExtra, plRemainExtra);
  460. if (*plRemainExtra >= 0 && pInfo->cbData > 0)
  461. PkiAsn1ReverseBytes(pInfo->pbData, pInfo->cbData);
  462. }
  464. //+-------------------------------------------------------------------------
  465. // Set/Free/Get Huge Unsigned Integer
  466. //
  467. // Set inserts a leading 0x00 before reversing. Note, any extra leading
  468. // 0x00's are removed by ASN1 before ASN.1 encoding.
  469. //
  470. // Get removes a leading 0x00 if present, after reversing.
  471. //
  472. // PkiAsn1FreeHugeUINT must be called to free the allocated Asn1Value.
  473. // PkiAsn1FreeHugeUINT has been #define'd to PkiAsn1FreeHugeInteger.
  474. //--------------------------------------------------------------------------
  475. BOOL
  476. WINAPI
  477. PkiAsn1SetHugeUINT(
  478. IN PCRYPT_UINT_BLOB pInfo,
  479. OUT ASN1uint32_t *pAsn1Length,
  480. OUT ASN1octet_t **ppAsn1Value
  481. )
  482. {
  483. BOOL fResult;
  484. DWORD cb = pInfo->cbData;
  485. BYTE *pb;
  486. DWORD i;
  488. if (cb > 0) {
  489. if (NULL == (pb = (BYTE *) PkiAsn1Alloc(cb + 1)))
  490. goto ErrorReturn;
  491. *pb = 0x00;
  492. for (i = 0; i < cb; i++)
  493. pb[1 + i] = pInfo->pbData[cb - 1 - i];
  494. cb++;
  495. } else
  496. pb = NULL;
  497. fResult = TRUE;
  498. CommonReturn:
  499. *pAsn1Length = cb;
  500. *ppAsn1Value = pb;
  501. return fResult;
  502. ErrorReturn:
  503. cb = 0;
  504. fResult = FALSE;
  505. goto CommonReturn;
  506. }
  509. void
  510. WINAPI
  511. PkiAsn1GetHugeUINT(
  512. IN ASN1uint32_t Asn1Length,
  513. IN ASN1octet_t *pAsn1Value,
  514. IN DWORD dwFlags,
  515. OUT PCRYPT_UINT_BLOB pInfo,
  516. IN OUT BYTE **ppbExtra,
  517. IN OUT LONG *plRemainExtra
  518. )
  519. {
  520. // Check for and advance past a leading 0x00.
  521. if (Asn1Length > 1 && *pAsn1Value == 0) {
  522. pAsn1Value++;
  523. Asn1Length--;
  524. }
  525. PkiAsn1GetHugeInteger(
  526. Asn1Length,
  527. pAsn1Value,
  528. dwFlags,
  529. pInfo,
  530. ppbExtra,
  531. plRemainExtra
  532. );
  533. }
  535. //+-------------------------------------------------------------------------
  536. // Set/Get BitString
  537. //--------------------------------------------------------------------------
  538. void
  539. WINAPI
  540. PkiAsn1SetBitString(
  541. IN PCRYPT_BIT_BLOB pInfo,
  542. OUT ASN1uint32_t *pAsn1BitLength,
  543. OUT ASN1octet_t **ppAsn1Value
  544. )
  545. {
  546. if (pInfo->cbData) {
  547. *ppAsn1Value = pInfo->pbData;
  548. assert(pInfo->cUnusedBits <= 7);
  549. *pAsn1BitLength = pInfo->cbData * 8 - pInfo->cUnusedBits;
  550. } else {
  551. *ppAsn1Value = NULL;
  552. *pAsn1BitLength = 0;
  553. }
  554. }
  556. static const BYTE rgbUnusedAndMask[8] =
  557. {0xFF, 0xFE, 0xFC, 0xF8, 0xF0, 0xE0, 0xC0, 0x80};
  559. void
  560. WINAPI
  561. PkiAsn1GetBitString(
  562. IN ASN1uint32_t Asn1BitLength,
  563. IN ASN1octet_t *pAsn1Value,
  564. IN DWORD dwFlags,
  565. OUT PCRYPT_BIT_BLOB pInfo,
  566. IN OUT BYTE **ppbExtra,
  567. IN OUT LONG *plRemainExtra
  568. )
  569. {
  570. #ifndef MSASN1_SUPPORTS_NOCOPY
  571. dwFlags &= ~CRYPT_DECODE_NOCOPY_FLAG;
  572. #endif
  573. if (dwFlags & CRYPT_DECODE_NOCOPY_FLAG && 0 == (Asn1BitLength % 8)) {
  574. if (*plRemainExtra >= 0) {
  575. pInfo->cbData = Asn1BitLength / 8;
  576. pInfo->cUnusedBits = 0;
  577. pInfo->pbData = pAsn1Value;
  578. }
  579. } else {
  580. LONG lRemainExtra = *plRemainExtra;
  581. BYTE *pbExtra = *ppbExtra;
  582. LONG lAlignExtra;
  583. LONG lData;
  584. DWORD cUnusedBits;
  586. lData = (LONG) Asn1BitLength / 8;
  587. cUnusedBits = Asn1BitLength % 8;
  588. if (cUnusedBits) {
  589. cUnusedBits = 8 - cUnusedBits;
  590. lData++;
  591. }
  592. lAlignExtra = INFO_LEN_ALIGN(lData);
  593. lRemainExtra -= lAlignExtra;
  594. if (lRemainExtra >= 0) {
  595. if (lData > 0) {
  596. pInfo->pbData = pbExtra;
  597. pInfo->cbData = (DWORD) lData;
  598. pInfo->cUnusedBits = cUnusedBits;
  599. memcpy(pbExtra, pAsn1Value, lData);
  600. if (cUnusedBits)
  601. *(pbExtra + lData - 1) &= rgbUnusedAndMask[cUnusedBits];
  602. } else
  603. memset(pInfo, 0, sizeof(*pInfo));
  604. pbExtra += lAlignExtra;
  605. }
  606. *plRemainExtra = lRemainExtra;
  607. *ppbExtra = pbExtra;
  608. }
  609. }
  611. //+-------------------------------------------------------------------------
  612. // Set BitString Without Trailing Zeroes
  613. //--------------------------------------------------------------------------
  614. void
  615. WINAPI
  616. PkiAsn1SetBitStringWithoutTrailingZeroes(
  617. IN PCRYPT_BIT_BLOB pInfo,
  618. OUT ASN1uint32_t *pAsn1BitLength,
  619. OUT ASN1octet_t **ppAsn1Value
  620. )
  621. {
  622. DWORD cbData;
  623. DWORD cUnusedBits;
  625. cbData = pInfo->cbData;
  626. cUnusedBits = pInfo->cUnusedBits;
  627. assert(cUnusedBits <= 7);
  629. if (cbData) {
  630. BYTE *pb;
  632. // Until we find a nonzero byte (starting with the last byte),
  633. // decrement cbData. For the last byte don't look at any unused bits.
  634. pb = pInfo->pbData + cbData - 1;
  635. if (0 == (*pb & rgbUnusedAndMask[cUnusedBits])) {
  636. cUnusedBits = 0;
  637. cbData--;
  638. pb--;
  640. for ( ; 0 < cbData && 0 == *pb; cbData--, pb--)
  641. ;
  642. }
  643. }
  645. if (cbData) {
  646. BYTE b;
  648. // Determine the number of unused bits in the last byte. Treat any
  649. // trailing zeroes as unused.
  650. b = *(pInfo->pbData + cbData - 1);
  651. assert(b);
  652. if (cUnusedBits)
  653. b = (BYTE) (b >> cUnusedBits);
  655. for (; 7 > cUnusedBits && 0 == (b & 0x01); cUnusedBits++) {
  656. b = b >> 1;
  657. }
  658. assert(b & 0x01);
  659. assert(cUnusedBits <= 7);
  661. *ppAsn1Value = pInfo->pbData;
  662. *pAsn1BitLength = cbData * 8 - cUnusedBits;
  663. } else {
  664. *ppAsn1Value = NULL;
  665. *pAsn1BitLength = 0;
  666. }
  667. }
  669. //+-------------------------------------------------------------------------
  670. // Get IA5 String
  671. //--------------------------------------------------------------------------
  672. void
  673. WINAPI
  674. PkiAsn1GetIA5String(
  675. IN ASN1uint32_t Asn1Length,
  676. IN ASN1char_t *pAsn1Value,
  677. IN DWORD dwFlags,
  678. OUT LPSTR *ppsz,
  679. IN OUT BYTE **ppbExtra,
  680. IN OUT LONG *plRemainExtra
  681. )
  682. {
  683. LONG lRemainExtra = *plRemainExtra;
  684. BYTE *pbExtra = *ppbExtra;
  685. LONG lAlignExtra;
  686. LONG lData;
  688. lData = (LONG) Asn1Length;
  689. lAlignExtra = INFO_LEN_ALIGN(lData + 1);
  690. lRemainExtra -= lAlignExtra;
  691. if (lRemainExtra >= 0) {
  692. if (lData > 0)
  693. memcpy(pbExtra, pAsn1Value, lData);
  694. *(pbExtra + lData) = 0;
  695. *ppsz = (LPSTR) pbExtra;
  696. pbExtra += lAlignExtra;
  697. }
  698. *plRemainExtra = lRemainExtra;
  699. *ppbExtra = pbExtra;
  700. }
  702. //+-------------------------------------------------------------------------
  703. // Set/Free/Get Unicode mapped to IA5 String
  704. //--------------------------------------------------------------------------
  705. BOOL
  706. WINAPI
  707. PkiAsn1SetUnicodeConvertedToIA5String(
  708. IN LPWSTR pwsz,
  709. OUT ASN1uint32_t *pAsn1Length,
  710. OUT ASN1char_t **ppAsn1Value
  711. )
  712. {
  713. BOOL fResult;
  714. LPSTR psz = NULL;
  715. int cchUTF8;
  716. int cchWideChar;
  717. int i;
  719. cchWideChar = wcslen(pwsz);
  720. if (cchWideChar == 0) {
  721. *pAsn1Length = 0;
  722. *ppAsn1Value = 0;
  723. return TRUE;
  724. }
  725. // Check that the input string contains valid IA5 characters
  726. for (i = 0; i < cchWideChar; i++) {
  727. if (pwsz[i] > 0x7F) {
  728. SetLastError((DWORD) CRYPT_E_INVALID_IA5_STRING);
  729. *pAsn1Length = (unsigned int) i;
  730. goto InvalidIA5;
  731. }
  732. }
  734. cchUTF8 = WideCharToUTF8(
  735. pwsz,
  736. cchWideChar,
  737. NULL, // lpUTF8Str
  738. 0 // cchUTF8
  739. );
  741. if (cchUTF8 <= 0)
  742. goto ErrorReturn;
  743. if (NULL == (psz = (LPSTR) PkiAsn1Alloc(cchUTF8)))
  744. goto ErrorReturn;
  745. cchUTF8 = WideCharToUTF8(
  746. pwsz,
  747. cchWideChar,
  748. psz,
  749. cchUTF8
  750. );
  751. *ppAsn1Value = psz;
  752. *pAsn1Length = cchUTF8;
  753. fResult = TRUE;
  754. goto CommonReturn;
  756. ErrorReturn:
  757. *pAsn1Length = 0;
  758. InvalidIA5:
  759. *ppAsn1Value = NULL;
  760. fResult = FALSE;
  761. CommonReturn:
  762. return fResult;
  763. }
  765. void
  766. WINAPI
  767. PkiAsn1FreeUnicodeConvertedToIA5String(
  768. IN ASN1char_t *pAsn1Value
  769. )
  770. {
  771. PkiAsn1Free(pAsn1Value);
  772. }
  774. void
  775. WINAPI
  776. PkiAsn1GetIA5StringConvertedToUnicode(
  777. IN ASN1uint32_t Asn1Length,
  778. IN ASN1char_t *pAsn1Value,
  779. IN DWORD dwFlags,
  780. OUT LPWSTR *ppwsz,
  781. IN OUT BYTE **ppbExtra,
  782. IN OUT LONG *plRemainExtra
  783. )
  784. {
  785. LONG lRemainExtra = *plRemainExtra;
  786. BYTE *pbExtra = *ppbExtra;
  787. LONG lAlignExtra;
  788. LONG lData;
  789. int cchWideChar;
  791. cchWideChar = UTF8ToWideChar(
  792. (LPSTR) pAsn1Value,
  793. Asn1Length,
  794. NULL, // lpWideCharStr
  795. 0 // cchWideChar
  796. );
  797. if (cchWideChar > 0)
  798. lData = cchWideChar * sizeof(WCHAR);
  799. else
  800. lData = 0;
  801. lAlignExtra = INFO_LEN_ALIGN(lData + sizeof(WCHAR));
  802. lRemainExtra -= lAlignExtra;
  803. if (lRemainExtra >= 0) {
  804. if (lData > 0)
  805. UTF8ToWideChar(pAsn1Value, Asn1Length,
  806. (LPWSTR) pbExtra, cchWideChar);
  807. memset(pbExtra + lData, 0, sizeof(WCHAR));
  808. *ppwsz = (LPWSTR) pbExtra;
  809. pbExtra += lAlignExtra;
  810. }
  811. *plRemainExtra = lRemainExtra;
  812. *ppbExtra = pbExtra;
  813. }
  815. //+-------------------------------------------------------------------------
  816. // Get BMP String
  817. //--------------------------------------------------------------------------
  818. void
  819. WINAPI
  820. PkiAsn1GetBMPString(
  821. IN ASN1uint32_t Asn1Length,
  822. IN ASN1char16_t *pAsn1Value,
  823. IN DWORD dwFlags,
  824. OUT LPWSTR *ppwsz,
  825. IN OUT BYTE **ppbExtra,
  826. IN OUT LONG *plRemainExtra
  827. )
  828. {
  829. LONG lRemainExtra = *plRemainExtra;
  830. BYTE *pbExtra = *ppbExtra;
  831. LONG lAlignExtra;
  832. LONG lData;
  834. lData = (LONG) Asn1Length * sizeof(WCHAR);
  835. lAlignExtra = INFO_LEN_ALIGN(lData + sizeof(WCHAR));
  836. lRemainExtra -= lAlignExtra;
  837. if (lRemainExtra >= 0) {
  838. if (lData > 0)
  839. memcpy(pbExtra, pAsn1Value, lData);
  840. memset(pbExtra + lData, 0, sizeof(WCHAR));
  841. *ppwsz = (LPWSTR) pbExtra;
  842. pbExtra += lAlignExtra;
  843. }
  844. *plRemainExtra = lRemainExtra;
  845. *ppbExtra = pbExtra;
  846. }
  849. //+-------------------------------------------------------------------------
  850. // Set/Get "Any" DER BLOB
  851. //--------------------------------------------------------------------------
  852. void
  853. WINAPI
  854. PkiAsn1SetAny(
  855. IN PCRYPT_OBJID_BLOB pInfo,
  856. OUT ASN1open_t *pAsn1
  857. )
  858. {
  859. memset(pAsn1, 0, sizeof(*pAsn1));
  860. pAsn1->encoded = pInfo->pbData;
  861. pAsn1->length = pInfo->cbData;
  862. }
  864. void
  865. WINAPI
  866. PkiAsn1GetAny(
  867. IN ASN1open_t *pAsn1,
  868. IN DWORD dwFlags,
  869. OUT PCRYPT_OBJID_BLOB pInfo,
  870. IN OUT BYTE **ppbExtra,
  871. IN OUT LONG *plRemainExtra
  872. )
  873. {
  874. #ifndef MSASN1_SUPPORTS_NOCOPY
  875. dwFlags &= ~CRYPT_DECODE_NOCOPY_FLAG;
  876. #endif
  877. if (dwFlags & CRYPT_DECODE_NOCOPY_FLAG) {
  878. if (*plRemainExtra >= 0) {
  879. pInfo->cbData = pAsn1->length;
  880. pInfo->pbData = (BYTE *) pAsn1->encoded;
  881. }
  882. } else {
  883. LONG lRemainExtra = *plRemainExtra;
  884. BYTE *pbExtra = *ppbExtra;
  885. LONG lAlignExtra;
  886. LONG lData;
  888. lData = (LONG) pAsn1->length;
  889. lAlignExtra = INFO_LEN_ALIGN(lData);
  890. lRemainExtra -= lAlignExtra;
  891. if (lRemainExtra >= 0) {
  892. if (lData > 0) {
  893. pInfo->pbData = pbExtra;
  894. pInfo->cbData = (DWORD) lData;
  895. memcpy(pbExtra, pAsn1->encoded, lData);
  896. } else
  897. memset(pInfo, 0, sizeof(*pInfo));
  898. pbExtra += lAlignExtra;
  899. }
  900. *plRemainExtra = lRemainExtra;
  901. *ppbExtra = pbExtra;
  902. }
  903. }
  906. //+-------------------------------------------------------------------------
  907. // Encode an ASN1 formatted info structure.
  908. //
  909. // If CRYPT_ENCODE_ALLOC_FLAG is set, allocate memory for pbEncoded and
  910. // return *((BYTE **) pvEncoded) = pbAllocEncoded. Otherwise,
  911. // pvEncoded points to byte array to be updated.
  912. //--------------------------------------------------------------------------
  913. BOOL
  914. WINAPI
  915. PkiAsn1EncodeInfoEx(
  916. IN ASN1encoding_t pEnc,
  917. IN ASN1uint32_t id,
  918. IN void *pvAsn1Info,
  919. IN DWORD dwFlags,
  920. IN OPTIONAL PCRYPT_ENCODE_PARA pEncodePara,
  921. OUT OPTIONAL void *pvEncoded,
  922. IN OUT DWORD *pcbEncoded
  923. )
  924. {
  925. BOOL fResult;
  926. ASN1error_e Asn1Err;
  927. DWORD cbEncoded;
  929. if (dwFlags & CRYPT_ENCODE_ALLOC_FLAG) {
  930. BYTE *pbEncoded;
  931. BYTE *pbAllocEncoded;
  932. PFN_CRYPT_ALLOC pfnAlloc;
  934. PkiAsn1SetEncodingRule(pEnc, ASN1_BER_RULE_DER);
  935. Asn1Err = PkiAsn1Encode(
  936. pEnc,
  937. pvAsn1Info,
  938. id,
  939. &pbEncoded,
  940. &cbEncoded
  941. );
  943. if (ASN1_SUCCESS != Asn1Err) {
  944. *((void **) pvEncoded) = NULL;
  945. goto Asn1EncodeError;
  946. }
  948. pfnAlloc = PkiGetEncodeAllocFunction(pEncodePara);
  949. if (NULL == (pbAllocEncoded = (BYTE *) pfnAlloc(cbEncoded))) {
  950. PkiAsn1FreeEncoded(pEnc, pbEncoded);
  951. *((void **) pvEncoded) = NULL;
  952. goto OutOfMemory;
  953. }
  954. memcpy(pbAllocEncoded, pbEncoded, cbEncoded);
  955. *((BYTE **) pvEncoded) = pbAllocEncoded;
  956. PkiAsn1FreeEncoded(pEnc, pbEncoded);
  957. } else {
  958. cbEncoded = *pcbEncoded;
  959. PkiAsn1SetEncodingRule(pEnc, ASN1_BER_RULE_DER);
  960. Asn1Err = PkiAsn1Encode2(
  961. pEnc,
  962. pvAsn1Info,
  963. id,
  964. (BYTE *) pvEncoded,
  965. &cbEncoded
  966. );
  968. if (ASN1_SUCCESS != Asn1Err) {
  969. if (ASN1_ERR_OVERFLOW == Asn1Err)
  970. goto LengthError;
  971. else
  972. goto Asn1EncodeError;
  973. }
  974. }
  976. fResult = TRUE;
  977. CommonReturn:
  978. *pcbEncoded = cbEncoded;
  979. return fResult;
  981. ErrorReturn:
  982. fResult = FALSE;
  983. goto CommonReturn;
  984. TRACE_ERROR(OutOfMemory)
  985. SET_ERROR(LengthError, ERROR_MORE_DATA)
  986. SET_ERROR_VAR(Asn1EncodeError, PkiAsn1ErrToHr(Asn1Err))
  987. }
  989. //+-------------------------------------------------------------------------
  990. // Encode an ASN1 formatted info structure
  991. //--------------------------------------------------------------------------
  992. BOOL
  993. WINAPI
  994. PkiAsn1EncodeInfo(
  995. IN ASN1encoding_t pEnc,
  996. IN ASN1uint32_t id,
  997. IN void *pvAsn1Info,
  998. OUT OPTIONAL BYTE *pbEncoded,
  999. IN OUT DWORD *pcbEncoded
  1000. )
  1001. {
  1002. return PkiAsn1EncodeInfoEx(
  1003. pEnc,
  1004. id,
  1005. pvAsn1Info,
  1006. 0, // dwFlags
  1007. NULL, // pEncodePara
  1008. pbEncoded,
  1009. pcbEncoded
  1010. );
  1011. }
  1014. //+-------------------------------------------------------------------------
  1015. // Decode into an allocated, ASN1 formatted info structure
  1016. //--------------------------------------------------------------------------
  1017. BOOL
  1018. WINAPI
  1019. PkiAsn1DecodeAndAllocInfo(
  1020. IN ASN1decoding_t pDec,
  1021. IN ASN1uint32_t id,
  1022. IN const BYTE *pbEncoded,
  1023. IN DWORD cbEncoded,
  1024. OUT void **ppvAsn1Info
  1025. )
  1026. {
  1027. BOOL fResult;
  1028. ASN1error_e Asn1Err;
  1030. *ppvAsn1Info = NULL;
  1031. if (ASN1_SUCCESS != (Asn1Err = PkiAsn1Decode(
  1032. pDec,
  1033. ppvAsn1Info,
  1034. id,
  1035. pbEncoded,
  1036. cbEncoded
  1037. )))
  1038. goto Asn1DecodeError;
  1039. fResult = TRUE;
  1040. CommonReturn:
  1041. return fResult;
  1043. ErrorReturn:
  1044. *ppvAsn1Info = NULL;
  1045. fResult = FALSE;
  1046. goto CommonReturn;
  1047. SET_ERROR_VAR(Asn1DecodeError, PkiAsn1ErrToHr(Asn1Err))
  1048. }
  1051. //+-------------------------------------------------------------------------
  1052. // Call the callback to convert the ASN1 structure into the 'C' structure.
  1053. // If CRYPT_DECODE_ALLOC_FLAG is set allocate memory for the 'C'
  1054. // structure and call the callback initially to get the length and then
  1055. // a second time to update the allocated 'C' structure.
  1056. //
  1057. // Allocated structure is returned:
  1058. // *((void **) pvStructInfo) = pvAllocStructInfo
  1059. //--------------------------------------------------------------------------
  1060. BOOL
  1061. WINAPI
  1062. PkiAsn1AllocStructInfoEx(
  1063. IN void *pvAsn1Info,
  1064. IN DWORD dwFlags,
  1065. IN OPTIONAL PCRYPT_DECODE_PARA pDecodePara,
  1066. IN PFN_PKI_ASN1_DECODE_EX_CALLBACK pfnDecodeExCallback,
  1067. OUT OPTIONAL void *pvStructInfo,
  1068. IN OUT DWORD *pcbStructInfo
  1069. )
  1070. {
  1071. BOOL fResult;
  1072. LONG lRemainExtra;
  1073. DWORD cbStructInfo;
  1075. if (NULL == pvStructInfo || (dwFlags & CRYPT_DECODE_ALLOC_FLAG)) {
  1076. cbStructInfo = 0;
  1077. lRemainExtra = 0;
  1078. } else {
  1079. cbStructInfo = *pcbStructInfo;
  1080. lRemainExtra = (LONG) cbStructInfo;
  1081. }
  1083. if (!pfnDecodeExCallback(
  1084. pvAsn1Info,
  1085. dwFlags & ~CRYPT_DECODE_ALLOC_FLAG,
  1086. pDecodePara,
  1087. pvStructInfo,
  1088. &lRemainExtra
  1089. )) goto DecodeCallbackError;
  1091. if (dwFlags & CRYPT_DECODE_ALLOC_FLAG) {
  1092. void *pv;
  1093. PFN_CRYPT_ALLOC pfnAlloc = PkiGetDecodeAllocFunction(pDecodePara);
  1095. assert(0 > lRemainExtra);
  1096. lRemainExtra = -lRemainExtra;
  1097. cbStructInfo = (DWORD) lRemainExtra;
  1099. if (NULL == (pv = pfnAlloc(cbStructInfo)))
  1100. goto OutOfMemory;
  1101. if (!pfnDecodeExCallback(
  1102. pvAsn1Info,
  1103. dwFlags & ~CRYPT_DECODE_ALLOC_FLAG,
  1104. pDecodePara,
  1105. pv,
  1106. &lRemainExtra
  1107. )) {
  1108. PFN_CRYPT_FREE pfnFree = PkiGetDecodeFreeFunction(pDecodePara);
  1109. pfnFree(pv);
  1110. goto DecodeCallbackError;
  1111. }
  1112. *((void **) pvStructInfo) = pv;
  1113. assert(0 <= lRemainExtra);
  1114. }
  1116. if (0 <= lRemainExtra) {
  1117. cbStructInfo = cbStructInfo - (DWORD) lRemainExtra;
  1118. } else {
  1119. cbStructInfo = cbStructInfo + (DWORD) -lRemainExtra;
  1120. if (pvStructInfo) {
  1121. SetLastError((DWORD) ERROR_MORE_DATA);
  1122. fResult = FALSE;
  1123. goto CommonReturn;
  1124. }
  1125. }
  1127. fResult = TRUE;
  1128. CommonReturn:
  1129. *pcbStructInfo = cbStructInfo;
  1130. return fResult;
  1132. ErrorReturn:
  1133. if (dwFlags & CRYPT_DECODE_ALLOC_FLAG)
  1134. *((void **) pvStructInfo) = NULL;
  1135. cbStructInfo = 0;
  1136. fResult = FALSE;
  1137. goto CommonReturn;
  1138. TRACE_ERROR(DecodeCallbackError)
  1139. TRACE_ERROR(OutOfMemory)
  1140. }
  1142. //+-------------------------------------------------------------------------
  1143. // Decode the ASN1 formatted info structure and call the callback
  1144. // function to convert the ASN1 structure to the 'C' structure.
  1145. //
  1146. // If CRYPT_DECODE_ALLOC_FLAG is set allocate memory for the 'C'
  1147. // structure and call the callback initially to get the length and then
  1148. // a second time to update the allocated 'C' structure.
  1149. //
  1150. // Allocated structure is returned:
  1151. // *((void **) pvStructInfo) = pvAllocStructInfo
  1152. //--------------------------------------------------------------------------
  1153. BOOL
  1154. WINAPI
  1155. PkiAsn1DecodeAndAllocInfoEx(
  1156. IN ASN1decoding_t pDec,
  1157. IN ASN1uint32_t id,
  1158. IN const BYTE *pbEncoded,
  1159. IN DWORD cbEncoded,
  1160. IN DWORD dwFlags,
  1161. IN OPTIONAL PCRYPT_DECODE_PARA pDecodePara,
  1162. IN PFN_PKI_ASN1_DECODE_EX_CALLBACK pfnDecodeExCallback,
  1163. OUT OPTIONAL void *pvStructInfo,
  1164. IN OUT DWORD *pcbStructInfo
  1165. )
  1166. {
  1167. BOOL fResult;
  1168. void *pvAsn1Info = NULL;
  1170. if (!PkiAsn1DecodeAndAllocInfo(
  1171. pDec,
  1172. id,
  1173. pbEncoded,
  1174. cbEncoded,
  1175. &pvAsn1Info
  1176. )) goto Asn1DecodeError;
  1178. fResult = PkiAsn1AllocStructInfoEx(
  1179. pvAsn1Info,
  1180. dwFlags,
  1181. pDecodePara,
  1182. pfnDecodeExCallback,
  1183. pvStructInfo,
  1184. pcbStructInfo
  1185. );
  1186. CommonReturn:
  1187. PkiAsn1FreeInfo(pDec, id, pvAsn1Info);
  1188. return fResult;
  1190. ErrorReturn:
  1191. if (dwFlags & CRYPT_DECODE_ALLOC_FLAG)
  1192. *((void **) pvStructInfo) = NULL;
  1193. *pcbStructInfo = 0;
  1194. fResult = FALSE;
  1195. goto CommonReturn;
  1196. TRACE_ERROR(Asn1DecodeError)
  1197. }
  1199. //+-------------------------------------------------------------------------
  1200. // Convert the ascii string ("1.2.9999") to ASN1's Object Identifier
  1201. // represented as an array of unsigned longs.
  1202. //
  1203. // Returns TRUE for a successful conversion.
  1204. //--------------------------------------------------------------------------
  1205. BOOL
  1206. WINAPI
  1207. PkiAsn1ToObjectIdentifier(
  1208. IN LPCSTR pszObjId,
  1209. IN OUT ASN1uint16_t *pCount,
  1210. OUT ASN1uint32_t rgulValue[]
  1211. )
  1212. {
  1213. BOOL fResult = TRUE;
  1214. unsigned short c = 0;
  1215. LPSTR psz = (LPSTR) pszObjId;
  1216. char ch;
  1218. if (psz) {
  1219. ASN1uint16_t cMax = *pCount;
  1220. ASN1uint32_t *pul = rgulValue;
  1221. while ((ch = *psz) != '\0' && c++ < cMax) {
  1222. *pul++ = (ASN1uint32_t)atol(psz);
  1223. while (my_isdigit(ch = *psz++))
  1224. ;
  1225. if (ch != '.')
  1226. break;
  1227. }
  1228. if (ch != '\0')
  1229. fResult = FALSE;
  1230. }
  1231. *pCount = c;
  1232. return fResult;
  1233. }
  1235. //+-------------------------------------------------------------------------
  1236. // Convert from ASN1's Object Identifier represented as an array of
  1237. // unsigned longs to an ascii string ("1.2.9999").
  1238. //
  1239. // Returns TRUE for a successful conversion
  1240. //--------------------------------------------------------------------------
  1241. BOOL
  1242. WINAPI
  1243. PkiAsn1FromObjectIdentifier(
  1244. IN ASN1uint16_t Count,
  1245. IN ASN1uint32_t rgulValue[],
  1246. OUT LPSTR pszObjId,
  1247. IN OUT DWORD *pcbObjId
  1248. )
  1249. {
  1250. BOOL fResult = TRUE;
  1251. LONG lRemain;
  1253. if (pszObjId == NULL)
  1254. *pcbObjId = 0;
  1256. lRemain = (LONG) *pcbObjId;
  1257. if (Count == 0) {
  1258. if (--lRemain > 0)
  1259. pszObjId++;
  1260. } else {
  1261. char rgch[36];
  1262. LONG lData;
  1263. ASN1uint32_t *pul = rgulValue;
  1264. for (; Count > 0; Count--, pul++) {
  1265. _ltoa(*pul, rgch, 10);
  1266. lData = strlen(rgch);
  1267. lRemain -= lData + 1;
  1268. if (lRemain >= 0) {
  1269. if (lData > 0) {
  1270. memcpy(pszObjId, rgch, lData);
  1271. pszObjId += lData;
  1272. }
  1273. *pszObjId++ = '.';
  1274. }
  1275. }
  1276. }
  1278. if (lRemain >= 0) {
  1279. *(pszObjId -1) = '\0';
  1280. *pcbObjId = *pcbObjId - (DWORD) lRemain;
  1281. } else {
  1282. *pcbObjId = *pcbObjId + (DWORD) -lRemain;
  1283. if (pszObjId) {
  1284. SetLastError((DWORD) ERROR_MORE_DATA);
  1285. fResult = FALSE;
  1286. }
  1287. }
  1289. return fResult;
  1290. }
  1292. //+-------------------------------------------------------------------------
  1293. // Adjust FILETIME for timezone.
  1294. //
  1295. // Returns FALSE iff conversion failed.
  1296. //--------------------------------------------------------------------------
  1297. static BOOL AdjustFileTime(
  1298. IN OUT LPFILETIME pFileTime,
  1299. IN ASN1int16_t mindiff,
  1300. IN ASN1bool_t utc
  1301. )
  1302. {
  1303. if (utc || mindiff == 0)
  1304. return TRUE;
  1306. BOOL fResult;
  1307. SYSTEMTIME stmDiff;
  1308. FILETIME ftmDiff;
  1309. short absmindiff;
  1311. memset(&stmDiff, 0, sizeof(stmDiff));
  1312. // Note: FILETIME is 100 nanoseconds interval since January 1, 1601
  1313. stmDiff.wYear = 1601;
  1314. stmDiff.wMonth = 1;
  1315. stmDiff.wDay = 1;
  1317. absmindiff = (short)( mindiff > 0 ? mindiff : -mindiff );
  1318. stmDiff.wHour = absmindiff / 60;
  1319. stmDiff.wMinute = absmindiff % 60;
  1320. if (stmDiff.wHour >= 24) {
  1321. stmDiff.wDay += stmDiff.wHour / 24;
  1322. stmDiff.wHour %= 24;
  1323. }
  1325. // Note, FILETIME is only 32 bit aligned. __int64 is 64 bit aligned.
  1326. if ((fResult = SystemTimeToFileTime(&stmDiff, &ftmDiff))) {
  1327. unsigned __int64 uTime;
  1328. unsigned __int64 uDiff;
  1330. memcpy(&uTime, pFileTime, sizeof(uTime));
  1331. memcpy(&uDiff, &ftmDiff, sizeof(uDiff));
  1333. if (mindiff > 0)
  1334. uTime += uDiff;
  1335. else
  1336. uTime -= uDiff;
  1338. memcpy(pFileTime, &uTime, sizeof(*pFileTime));
  1339. }
  1340. return fResult;
  1341. }
  1343. //+-------------------------------------------------------------------------
  1344. // Convert FILETIME to ASN1's UTCTime.
  1345. //
  1346. // Returns TRUE for a successful conversion
  1347. //--------------------------------------------------------------------------
  1348. BOOL
  1349. WINAPI
  1350. PkiAsn1ToUTCTime(
  1351. IN LPFILETIME pFileTime,
  1352. OUT ASN1utctime_t *pAsn1Time
  1353. )
  1354. {
  1355. BOOL fRet;
  1356. SYSTEMTIME t;
  1358. memset(pAsn1Time, 0, sizeof(*pAsn1Time));
  1359. if (!FileTimeToSystemTime(pFileTime, &t))
  1360. goto FileTimeToSystemTimeError;
  1361. if (t.wYear < YEARFIRST || t.wYear > YEARLAST)
  1362. goto YearRangeError;
  1364. pAsn1Time->year = (ASN1uint8_t) (t.wYear % 100);
  1365. pAsn1Time->month = (ASN1uint8_t) t.wMonth;
  1366. pAsn1Time->day = (ASN1uint8_t) t.wDay;
  1367. pAsn1Time->hour = (ASN1uint8_t) t.wHour;
  1368. pAsn1Time->minute = (ASN1uint8_t) t.wMinute;
  1369. pAsn1Time->second = (ASN1uint8_t) t.wSecond;
  1370. pAsn1Time->universal = TRUE;
  1372. fRet = TRUE;
  1373. CommonReturn:
  1374. return fRet;
  1376. ErrorReturn:
  1377. fRet = FALSE;
  1378. goto CommonReturn;
  1379. TRACE_ERROR(FileTimeToSystemTimeError)
  1380. TRACE_ERROR(YearRangeError)
  1381. }
  1383. //+-------------------------------------------------------------------------
  1384. // Convert from ASN1's UTCTime to FILETIME.
  1385. //
  1386. // Returns TRUE for a successful conversion
  1387. //--------------------------------------------------------------------------
  1388. BOOL
  1389. WINAPI
  1390. PkiAsn1FromUTCTime(
  1391. IN ASN1utctime_t *pAsn1Time,
  1392. OUT LPFILETIME pFileTime
  1393. )
  1394. {
  1395. BOOL fRet;
  1396. SYSTEMTIME t;
  1397. memset(&t, 0, sizeof(t));
  1399. t.wYear = (WORD)( pAsn1Time->year >= MAGICYEAR ?
  1400. (1900 + pAsn1Time->year) : (2000 + pAsn1Time->year) );
  1401. t.wMonth = pAsn1Time->month;
  1402. t.wDay = pAsn1Time->day;
  1403. t.wHour = pAsn1Time->hour;
  1404. t.wMinute = pAsn1Time->minute;
  1405. t.wSecond = pAsn1Time->second;
  1407. if (!SystemTimeToFileTime(&t, pFileTime))
  1408. goto SystemTimeToFileTimeError;
  1409. fRet = AdjustFileTime(
  1410. pFileTime,
  1411. pAsn1Time->diff,
  1412. pAsn1Time->universal
  1413. );
  1414. CommonReturn:
  1415. return fRet;
  1417. ErrorReturn:
  1418. fRet = FALSE;
  1419. goto CommonReturn;
  1420. TRACE_ERROR(SystemTimeToFileTimeError)
  1421. }
  1423. //+-------------------------------------------------------------------------
  1424. // Convert FILETIME to ASN1's GeneralizedTime.
  1425. //
  1426. // Returns TRUE for a successful conversion
  1427. //--------------------------------------------------------------------------
  1428. BOOL
  1429. WINAPI
  1430. PkiAsn1ToGeneralizedTime(
  1431. IN LPFILETIME pFileTime,
  1432. OUT ASN1generalizedtime_t *pAsn1Time
  1433. )
  1434. {
  1435. BOOL fRet;
  1436. SYSTEMTIME t;
  1438. memset(pAsn1Time, 0, sizeof(*pAsn1Time));
  1439. if (!FileTimeToSystemTime(pFileTime, &t))
  1440. goto FileTimeToSystemTimeError;
  1441. pAsn1Time->year = t.wYear;
  1442. pAsn1Time->month = (ASN1uint8_t) t.wMonth;
  1443. pAsn1Time->day = (ASN1uint8_t) t.wDay;
  1444. pAsn1Time->hour = (ASN1uint8_t) t.wHour;
  1445. pAsn1Time->minute = (ASN1uint8_t) t.wMinute;
  1446. pAsn1Time->second = (ASN1uint8_t) t.wSecond;
  1447. pAsn1Time->millisecond = t.wMilliseconds;
  1448. pAsn1Time->universal = TRUE;
  1450. fRet = TRUE;
  1451. CommonReturn:
  1452. return fRet;
  1454. ErrorReturn:
  1455. fRet = FALSE;
  1456. goto CommonReturn;
  1457. TRACE_ERROR(FileTimeToSystemTimeError)
  1458. }
  1460. //+-------------------------------------------------------------------------
  1461. // Convert from ASN1's GeneralizedTime to FILETIME.
  1462. //
  1463. // Returns TRUE for a successful conversion
  1464. //--------------------------------------------------------------------------
  1465. BOOL
  1466. WINAPI
  1467. PkiAsn1FromGeneralizedTime(
  1468. IN ASN1generalizedtime_t *pAsn1Time,
  1469. OUT LPFILETIME pFileTime
  1470. )
  1471. {
  1472. BOOL fRet;
  1473. SYSTEMTIME t;
  1474. memset(&t, 0, sizeof(t));
  1476. t.wYear = pAsn1Time->year;
  1477. t.wMonth = pAsn1Time->month;
  1478. t.wDay = pAsn1Time->day;
  1479. t.wHour = pAsn1Time->hour;
  1480. t.wMinute = pAsn1Time->minute;
  1481. t.wSecond = pAsn1Time->second;
  1482. t.wMilliseconds = pAsn1Time->millisecond;
  1484. if (!SystemTimeToFileTime(&t, pFileTime))
  1485. goto SystemTimeToFileTimeError;
  1486. fRet = AdjustFileTime(
  1487. pFileTime,
  1488. pAsn1Time->diff,
  1489. pAsn1Time->universal
  1490. );
  1491. CommonReturn:
  1492. return fRet;
  1494. ErrorReturn:
  1495. fRet = FALSE;
  1496. goto CommonReturn;
  1497. TRACE_ERROR(SystemTimeToFileTimeError)
  1498. }
  1501. //+-------------------------------------------------------------------------
  1502. // Convert FILETIME to ASN1's UTCTime or GeneralizedTime.
  1503. //
  1504. // If 1950 < FILETIME < 2005, then UTCTime is chosen. Otherwise,
  1505. // GeneralizedTime is chosen. GeneralizedTime values shall not include
  1506. // fractional seconds.
  1507. //
  1508. // Returns TRUE for a successful conversion
  1509. //--------------------------------------------------------------------------
  1510. BOOL
  1511. WINAPI
  1512. PkiAsn1ToChoiceOfTime(
  1513. IN LPFILETIME pFileTime,
  1514. OUT WORD *pwChoice,
  1515. OUT ASN1generalizedtime_t *pGeneralTime,
  1516. OUT ASN1utctime_t *pUtcTime
  1517. )
  1518. {
  1519. BOOL fRet;
  1520. SYSTEMTIME t;
  1522. if (!FileTimeToSystemTime(pFileTime, &t))
  1523. goto FileTimeToSystemTimeError;
  1524. if (t.wYear < YEARFIRST || t.wYear >= YEARFIRSTGENERALIZED) {
  1525. *pwChoice = PKI_ASN1_GENERALIZED_TIME_CHOICE;
  1526. memset(pGeneralTime, 0, sizeof(*pGeneralTime));
  1527. pGeneralTime->year = t.wYear;
  1528. pGeneralTime->month = (ASN1uint8_t) t.wMonth;
  1529. pGeneralTime->day = (ASN1uint8_t) t.wDay;
  1530. pGeneralTime->hour = (ASN1uint8_t) t.wHour;
  1531. pGeneralTime->minute = (ASN1uint8_t) t.wMinute;
  1532. pGeneralTime->second = (ASN1uint8_t) t.wSecond;
  1533. pGeneralTime->universal = TRUE;
  1534. } else {
  1535. *pwChoice = PKI_ASN1_UTC_TIME_CHOICE;
  1536. memset(pUtcTime, 0, sizeof(*pUtcTime));
  1537. pUtcTime->year = (ASN1uint8_t) (t.wYear % 100);
  1538. pUtcTime->month = (ASN1uint8_t) t.wMonth;
  1539. pUtcTime->day = (ASN1uint8_t) t.wDay;
  1540. pUtcTime->hour = (ASN1uint8_t) t.wHour;
  1541. pUtcTime->minute = (ASN1uint8_t) t.wMinute;
  1542. pUtcTime->second = (ASN1uint8_t) t.wSecond;
  1543. pUtcTime->universal = TRUE;
  1544. }
  1546. fRet = TRUE;
  1547. CommonReturn:
  1548. return fRet;
  1550. ErrorReturn:
  1551. fRet = FALSE;
  1552. *pwChoice = 0;
  1553. memset(pGeneralTime, 0, sizeof(*pGeneralTime));
  1554. memset(pUtcTime, 0, sizeof(*pUtcTime));
  1555. goto CommonReturn;
  1556. TRACE_ERROR(FileTimeToSystemTimeError)
  1557. }
  1560. //+-------------------------------------------------------------------------
  1561. // Convert from ASN1's UTCTime or GeneralizedTime to FILETIME.
  1562. //
  1563. // Returns TRUE for a successful conversion.
  1564. //
  1565. // Note, in asn1hdr.h, UTCTime has same typedef as GeneralizedTime.
  1566. //--------------------------------------------------------------------------
  1567. BOOL
  1568. WINAPI
  1569. PkiAsn1FromChoiceOfTime(
  1570. IN WORD wChoice,
  1571. IN ASN1generalizedtime_t *pGeneralTime,
  1572. IN ASN1utctime_t *pUtcTime,
  1573. OUT LPFILETIME pFileTime
  1574. )
  1575. {
  1576. if (PKI_ASN1_UTC_TIME_CHOICE == wChoice) {
  1577. return PkiAsn1FromUTCTime(pUtcTime, pFileTime);
  1578. } else
  1579. return PkiAsn1FromGeneralizedTime(pGeneralTime, pFileTime);
  1580. }