|
|
/*******************************************************************************
* Copyright (c) 1998 Gemplus Development** Name : COMPCERT.C** Description : Programme de compression de certificat X.509** Author : Christophe Clavier** Modify : Laurent CASSIER** Compiler : Microsoft Visual C 5.0** Host : IBM PC and compatible machines under Windows 95.** Release : 1.10.001** Last Modif : 04/03/98: V1.10.001 - Change dictionary management and add* CC_Init(), CC_Exit() functions.* 30/01/98: V1.00.005 - Cancel (_OPT_HEADER) the modification in* the length of subjectPKInfo and signature* made in the previous version.* 28/01/98: V1.00.004 - Allows up to 32767 entries in the dictionary* and stores the length of the subjectPKInfo* and signature on one byte instead of two if* it is less than 128.* 13/01/98: V1.00.003 - Modify for meta-compression and dictionary* version ascending compatibility.* 11/12/97: V1.00.002 - Modify for new dictionary format* and compatible with CSP and PKCS.* 27/08/97: V1.00.001 - First implementation.*********************************************************************************** Warning :** Remark : Flags de compilations :** - _STUDY : Lorsqu'il est d�fini, des fichiers de log utiles* lors de l'�tude de l'efficacit� des algos* de compression. sont g�n�r�s.** - _TRICKY_COMPRESSION : Lorsqu'il est d�fini, on ne tente pas* de compresser les champs* 'subjectPublicKey' et 'signature' qui* sont essentiellement al�atoires.** - _OPT_HEADER : Lorsqu'il est d�fini, et si _TRICKY_COMPRESSION* est d�fini �galement, le header de longueur des* compress�s de subjectPKInfo et de signature* sont optimis�s pour ne tenir sur un seul octet* si la longueur est inf�rieure � 128 au lieu de* deux octets dans tous les cas sinon.* Ne pas d�finir ce flag permet d'�tre compatible* avec les versions inf�rieures � 1.00.005 ** - _GLOBAL_COMPRESSION : Lorsqu'il est d�fini, le compress� du* certificat est lui m�me envoy� � la* fonction CC_RawEncode afin d'y appliquer* le meilleur algo de compression dispo.** - _OPT_HEADER : Lorsqu'il est d�fini, l* certificat est lui m�me envoy� � la* fonction CC_RawEncode afin d'y appliquer* le meilleur algo de compression dispo.** - _ALGO_x (x de 1 � 7) : Lorsqu'il est d�fini, l'algo de* compression num�ro x est utilis�.** Conseils pour la version release de GemPASS :** - _STUDY : non d�fini* - _TRICKY_COMPRESSION : d�fini* - _OPT_HEADER : non d�fini* - _GLOBAL_COMPRESSION : non d�fini* - _ALGO_1 : d�fini* - _ALGO_2 : d�fini* - _ALGO_x (x>2) : non d�fini********************************************************************************/
/*------------------------------------------------------------------------------
Includes files------------------------------------------------------------------------------*/#ifdef _WINDOWS
#include <windows.h>
#endif
#include <stdio.h>
#include <io.h>
#include <fcntl.h>
#include <sys/types.h>
#include <sys/stat.h>
#include "ccdef.h"
#include "ac.h"
#include "compcert.h"
#include "gmem.h"
#include "resource.h"
extern HINSTANCE g_hInstRes;
/*------------------------------------------------------------------------------
Information section------------------------------------------------------------------------------*/#define G_NAME "COMPCERT"
#define G_RELEASE "1.10.001"
/*------------------------------------------------------------------------------
Static Variables------------------------------------------------------------------------------*/ USHORT NbDaysInMonth[] = {0, 31, 59, 90, 120, 151, 181, 212, 243, 273, 304, 334};
char* AlgorithmTypeDict[] = { /* x9-57 */ "\x2A\x86\x48\xCE\x38\x02\x01", /*x9.57-holdinstruction-none (1 2 840 10040 2 1) */ "\x2A\x86\x48\xCE\x38\x02\x02", /*x9.57-holdinstruction-callissuer (1 2 840 10040 2 2) */ "\x2A\x86\x48\xCE\x38\x02\x03", /*x9.57-holdinstruction-reject (1 2 840 10040 2 3) */ "\x2A\x86\x48\xCE\x38\x04\x01", /*x9.57-dsa (1 2 840 10040 4 1) */ "\x2A\x86\x48\xCE\x38\x04\x03", /*x9.57-dsaWithSha1 (1 2 840 10040 4 3) */ /* x9-42 */ "\x2A\x86\x48\xCE\x3E\x02\x01", /*x9.42-dhPublicNumber (1 2 840 10046 2 1) */ /* Nortel Secure Networks */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42", /*nsn-alg (1 2 840 113533 7 66) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0A", /*nsn-alg-cast5CBC (1 2 840 113533 7 66 10) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0B", /*nsn-alg-cast5MAC (1 2 840 113533 7 66 11) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0C", /*nsn-alg-pbeWithMD5AndCAST5-CBC (1 2 840 113533 7 66 12) */ /* PKCS #1 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01", /*pkcs-1 (1 2 840 113549 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x01", /*pkcs-1-rsaEncryption (1 2 840 113549 1 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x02", /*pkcs-1-MD2withRSAEncryption (1 2 840 113549 1 1 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x03", /*pkcs-1-MD4withRSAEncryption (1 2 840 113549 1 1 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x04", /*pkcs-1-MD5withRSAEncryption (1 2 840 113549 1 1 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x05", /*pkcs-1-SHA1withRSAEncryption (1 2 840 113549 1 1 5) */ /*need to determine which of the following 2 is correct */ /*"\x2A\x86\x48\x86\xF7\x0D\x01\x01\x06", pkcs-1-ripemd160WithRSAEncryption (1 2 840 113549 1 1 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x06", /*pkcs-1-rsaOAEPEncryptionSET (1 2 840 113549 1 1 6) */ /* PKCS #3 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x03", /*pkcs-3 (1 2 840 113549 1 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x03\x01", /*pkcs-3-dhKeyAgreement (1 2 840 113549 1 3 1) */ /* PKCS #5 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05", /*pkcs-5 (1 2 840 113549 1 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x01", /*pkcs-5-pbeWithMD2AndDES-CBC (1 2 840 113549 1 5 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x03", /*pkcs-5-pbeWithMD5AndDES-CBC (1 2 840 113549 1 5 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x04", /*pkcs-5-pbeWithMD2AndRC2-CBC (1 2 840 113549 1 5 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x06", /*pkcs-5-pbeWithMD5AndRC2-CBC (1 2 840 113549 1 5 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x09", /*pkcs-5-pbeWithMD5AndXOR (1 2 840 113549 1 5 9) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x0A", /*pkcs-5-pbeWithSHA1AndDES-CBC (1 2 840 113549 1 5 10) */ /* PKCS #12 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C", /*pkcs-12 (1 2 840 113549 1 12) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x01", /*pkcs-12-modeID (1 2 840 113549 1 12 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x01\x01", /*pkcs-12-OfflineTransportMode (1 2 840 113549 1 12 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x01\x02", /*pkcs-12-OnlineTransportMode (1 2 840 113549 1 12 1 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x02", /*pkcs-12-ESPVKID (1 2 840 113549 1 12 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x02\x01", /*pkcs-12-PKCS8KeyShrouding (1 2 840 113549 1 12 2 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03", /*pkcs-12-BagID (1 2 840 113549 1 12 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03\x01", /*pkcs-12-KeyBagID (1 2 840 113549 1 12 3 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03\x02", /*pkcs-12-CertAndCRLBagID (1 2 840 113549 1 12 3 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03\x03", /*pkcs-12-SecretBagID (1 2 840 113549 1 12 3 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x04", /*pkcs-12-CertBagID (1 2 840 113549 1 12 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x04\x01", /*pkcs-12-X509CertCRLBag (1 2 840 113549 1 12 4 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x04\x02", /*pkcs-12-SDSICertBag (1 2 840 113549 1 12 4 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05", /*pkcs-12-OID (1 2 840 113549 1 12 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01", /*pkcs-12-PBEID (1 2 840 113549 1 12 5 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x01", /*pkcs-12-PBEWithSha1And128BitRC4 (1 2 840 113549 1 12 5 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x02", /*pkcs-12-PBEWithSha1And40BitRC4 (1 2 840 113549 1 12 5 1 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x03", /*pkcs-12-PBEWithSha1AndTripleDESCBC (1 2 840 113549 1 12 5 1 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x04", /*pkcs-12-PBEWithSha1And128BitRC2CBC (1 2 840 113549 1 12 5 1 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x05", /*pkcs-12-PBEWithSha1And40BitRC2CBC (1 2 840 113549 1 12 5 1 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x06", /*pkcs-12-PBEWithSha1AndRC4 (1 2 840 113549 1 12 5 1 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x07", /*pkcs-12-PBEWithSha1AndRC2CBC (1 2 840 113549 1 12 5 1 7) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02", /*pkcs-12-EnvelopingID (1 2 840 113549 1 12 5 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02\x01", /*pkcs-12-RSAEncryptionWith128BitRC4 (1 2 840 113549 1 12 5 2 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02\x02", /*pkcs-12-RSAEncryptionWith40BitRC4 (1 2 840 113549 1 12 5 2 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02\x03", /*pkcs-12-RSAEncryptionWithTripleDES (1 2 840 113549 1 12 5 2 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x03", /*pkcs-12-SignatureID (1 2 840 113549 1 12 5 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x03\x01", /*pkcs-12-RSASignatureWithSHA1Digest (1 2 840 113549 1 12 5 3 1) */
/* RSADSI digest algorithms */ "\x2A\x86\x48\x86\xF7\x0D\x02", /*RSADSI-digestAlgorithm (1 2 840 113549 2) */ "\x2A\x86\x48\x86\xF7\x0D\x02\x02", /*RSADSI-md2 (1 2 840 113549 2 2) */ "\x2A\x86\x48\x86\xF7\x0D\x02\x04", /*RSADSI-md4 (1 2 840 113549 2 4) */ "\x2A\x86\x48\x86\xF7\x0D\x02\x05", /*RSADSI-md5 (1 2 840 113549 2 5) */ /* RSADSI encryption algorithms */ "\x2A\x86\x48\x86\xF7\x0D\x03", /*RSADSI-encryptionAlgorithm (1 2 840 113549 3) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x02", /*RSADSI-rc2CBC (1 2 840 113549 3 2) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x03", /*RSADSI-rc2ECB (1 2 840 113549 3 3) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x04", /*RSADSI-rc4 (1 2 840 113549 3 4) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x05", /*RSADSI-rc4WithMAC (1 2 840 113549 3 5) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x06", /*RSADSI-DESX-CBC (1 2 840 113549 3 6) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x07", /*RSADSI-DES-EDE3-CBC (1 2 840 113549 3 7) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x08", /*RSADSI-RC5CBC (1 2 840 113549 3 8) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x09", /*RSADSI-RC5CBCPad (1 2 840 113549 3 9) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x0A", /*RSADSI-CDMFCBCPad (1 2 840 113549 3 10) */ /* cryptlib */ "\x2B\x06\x01\x04\x01\x97\x55\x20\x01", /*cryptlibEnvelope (1 3 6 1 4 1 3029 32 1) */
/* Not sure about these ones: */ /*"\x2B\x0E\x02\x1A\x05", sha (1 3 14 2 26 5) */ /*"\x2B\x0E\x03\x02\x01\x01", rsa (1 3 14 3 2 1 1) */ //X-509
/*"\x2B\x0E\x03\x02\x02\x01", sqmod-N (1 3 14 3 2 2 1) */ //X-509
/*"\x2B\x0E\x03\x02\x03\x01", sqmod-NwithRSA (1 3 14 3 2 3 1) */ //X-509
/* Miscellaneous partially-defunct OIW semi-standards aka algorithms */ "\x2B\x0E\x03\x02\x02", /*ISO-algorithm-md4WitRSA (1 3 14 3 2 2) */ "\x2B\x0E\x03\x02\x03", /*ISO-algorithm-md5WithRSA (1 3 14 3 2 3) */ "\x2B\x0E\x03\x02\x04", /*ISO-algorithm-md4WithRSAEncryption (1 3 14 3 2 4) */ "\x2B\x0E\x03\x02\x06", /*ISO-algorithm-desECB (1 3 14 3 2 6) */ "\x2B\x0E\x03\x02\x07", /*ISO-algorithm-desCBC (1 3 14 3 2 7) */ "\x2B\x0E\x03\x02\x08", /*ISO-algorithm-desOFB (1 3 14 3 2 8) */ "\x2B\x0E\x03\x02\x09", /*ISO-algorithm-desCFB (1 3 14 3 2 9) */ "\x2B\x0E\x03\x02\x0A", /*ISO-algorithm-desMAC (1 3 14 3 2 10) */ "\x2B\x0E\x03\x02\x0B", /*ISO-algorithm-rsaSignature (1 3 14 3 2 11) */ //ISO 9796
"\x2B\x0E\x03\x02\x0C", /*ISO-algorithm-dsa (1 3 14 3 2 12) */ "\x2B\x0E\x03\x02\x0D", /*ISO-algorithm-dsaWithSHA (1 3 14 3 2 13) */ "\x2B\x0E\x03\x02\x0E", /*ISO-algorithm-mdc2WithRSASignature (1 3 14 3 2 14) */ "\x2B\x0E\x03\x02\x0F", /*ISO-algorithm-shaWithRSASignature (1 3 14 3 2 15) */ "\x2B\x0E\x03\x02\x10", /*ISO-algorithm-dhWithCommonModulus (1 3 14 3 2 16) */ "\x2B\x0E\x03\x02\x11", /*ISO-algorithm-desEDE (1 3 14 3 2 17) */ "\x2B\x0E\x03\x02\x12", /*ISO-algorithm-sha (1 3 14 3 2 18) */ "\x2B\x0E\x03\x02\x13", /*ISO-algorithm-mdc-2 (1 3 14 3 2 19) */ "\x2B\x0E\x03\x02\x14", /*ISO-algorithm-dsaCommon (1 3 14 3 2 20) */ "\x2B\x0E\x03\x02\x15", /*ISO-algorithm-dsaCommonWithSHA (1 3 14 3 2 21) */ "\x2B\x0E\x03\x02\x16", /*ISO-algorithm-rsaKeyTransport (1 3 14 3 2 22) */ "\x2B\x0E\x03\x02\x17", /*ISO-algorithm-keyed-hash-seal (1 3 14 3 2 23) */ "\x2B\x0E\x03\x02\x18", /*ISO-algorithm-md2WithRSASignature (1 3 14 3 2 24) */ "\x2B\x0E\x03\x02\x19", /*ISO-algorithm-md5WithRSASignature (1 3 14 3 2 25) */ "\x2B\x0E\x03\x02\x1A", /*ISO-algorithm-sha1 (1 3 14 3 2 26) */ "\x2B\x0E\x03\x02\x1B", /*ISO-algorithm-ripemd160 (1 3 14 3 2 27) */ "\x2B\x0E\x03\x02\x1D", /*ISO-algorithm-sha-1WithRSAEncryption (1 3 14 3 2 29) */ "\x2B\x0E\x03\x03\x01", /*ISO-algorithm-simple-strong-auth-mechanism (1 3 14 3 3 1) */ /* Not sure about these ones:
/*"\x2B\x0E\x07\x02\x01\x01", ElGamal (1 3 14 7 2 1 1) */ /*"\x2B\x0E\x07\x02\x03\x01", md2WithRSA (1 3 14 7 2 3 1) */ /*"\x2B\x0E\x07\x02\x03\x02", md2WithElGamal (1 3 14 7 2 3 2) */ /* X500 algorithms */ "\x55\x08", /*X500-Algorithms (2 5 8) */ "\x55\x08\x01", /*X500-Alg-Encryption (2 5 8 1) */ "\x55\x08\x01\x01", /*rsa (2 5 8 1 1) */ /* DMS-SDN-702 */ "\x60\x86\x48\x01\x65\x02\x01\x01\x01", /*id-sdnsSignatureAlgorithm (2 16 840 1 101 2 1 1 1) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x02", /*id-mosaicSignatureAlgorithm (2 16 840 1 101 2 1 1 2) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x03", /*id-sdnsConfidentialityAlgorithm (2 16 840 1 101 2 1 1 3) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x04", /*id-mosaicConfidentialityAlgorithm (2 16 840 1 101 2 1 1 4) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x05", /*id-sdnsIntegrityAlgorithm (2 16 840 1 101 2 1 1 5) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x06", /*id-mosaicIntegrityAlgorithm (2 16 840 1 101 2 1 1 6) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x07", /*id-sdnsTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 7) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x08", /*id-mosaicTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 8) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x09", /*id-sdnsKeyManagementAlgorithm (2 16 840 1 101 2 1 1 9) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0A", /*id-mosaicKeyManagementAlgorithm (2 16 840 1 101 2 1 1 10) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0B", /*id-sdnsKMandSigAlgorithm (2 16 840 1 101 2 1 1 11) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0C", /*id-mosaicKMandSigAlgorithm (2 16 840 1 101 2 1 1 12) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0D", /*id-SuiteASignatureAlgorithm (2 16 840 1 101 2 1 1 13) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0E", /*id-SuiteAConfidentialityAlgorithm (2 16 840 1 101 2 1 1 14) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0F", /*id-SuiteAIntegrityAlgorithm (2 16 840 1 101 2 1 1 15) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x10", /*id-SuiteATokenProtectionAlgorithm (2 16 840 1 101 2 1 1 16) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x11", /*id-SuiteAKeyManagementAlgorithm (2 16 840 1 101 2 1 1 17) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x12", /*id-SuiteAKMandSigAlgorithm (2 16 840 1 101 2 1 1 18) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x13", /*id-mosaicUpdatedSigAlgorithm (2 16 840 1 101 2 1 1 19) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x14", /*id-mosaicKMandUpdSigAlgorithms (2 16 840 1 101 2 1 1 20) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x15", /*id-mosaicUpdatedIntegAlgorithm (2 16 840 1 101 2 1 1 21) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x16", /*id-mosaicKeyEncryptionAlgorithm (2 16 840 1 101 2 1 1 22) */ NULL };
char* AttributeTypeDict[] = { /* x9-57 */ "\x2A\x86\x48\xCE\x38\x02\x01", /*x9.57-holdinstruction-none (1 2 840 10040 2 1) */ "\x2A\x86\x48\xCE\x38\x02\x02", /*x9.57-holdinstruction-callissuer (1 2 840 10040 2 2) */ "\x2A\x86\x48\xCE\x38\x02\x03", /*x9.57-holdinstruction-reject (1 2 840 10040 2 3) */ "\x2A\x86\x48\xCE\x38\x04\x01", /*x9.57-dsa (1 2 840 10040 4 1) */ "\x2A\x86\x48\xCE\x38\x04\x03", /*x9.57-dsaWithSha1 (1 2 840 10040 4 3) */ /* x9-42 */ "\x2A\x86\x48\xCE\x3E\x02\x01", /*x9.42-dhPublicNumber (1 2 840 10046 2 1) */ /* Nortel Secure Networks */ "\x2A\x86\x48\x86\xF6\x7D\x07", /*nsn (1 2 840 113533 7) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x41\x00", /*nsn-ce-entrustVersInfo (1 2 840 113533 7 65 0) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x41", /*nsn-ce (1 2 840 113533 7 65) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42", /*nsn-alg (1 2 840 113533 7 66) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0A", /*nsn-alg-cast5CBC (1 2 840 113533 7 66 10) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0B", /*nsn-alg-cast5MAC (1 2 840 113533 7 66 11) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x42\x0C", /*nsn-alg-pbeWithMD5AndCAST5-CBC (1 2 840 113533 7 66 12) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x43", /*nsn-oc (1 2 840 113533 7 67) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x43\x0C", /*nsn-oc-entrustUser (1 2 840 113533 7 67 0) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x44\x00", /*nsn-at-entrustCAInfo (1 2 840 113533 7 68 0) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x44\x0A", /*nsn-at-attributeCertificate (1 2 840 113533 7 68 10) */ "\x2A\x86\x48\x86\xF6\x7D\x07\x44", /*nsn-at (1 2 840 113533 7 68) */ /* PKCS #1 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01", /*pkcs-1 (1 2 840 113549 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x01", /*pkcs-1-rsaEncryption (1 2 840 113549 1 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x02", /*pkcs-1-MD2withRSAEncryption (1 2 840 113549 1 1 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x03", /*pkcs-1-MD4withRSAEncryption (1 2 840 113549 1 1 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x04", /*pkcs-1-MD5withRSAEncryption (1 2 840 113549 1 1 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x05", /*pkcs-1-SHA1withRSAEncryption (1 2 840 113549 1 1 5) */ /*need to determine which of the following 2 is correct */ /*"\x2A\x86\x48\x86\xF7\x0D\x01\x01\x06", pkcs-1-ripemd160WithRSAEncryption (1 2 840 113549 1 1 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x01\x06", /*pkcs-1-rsaOAEPEncryptionSET (1 2 840 113549 1 1 6) */ /* PKCS #3 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x03", /*pkcs-3 (1 2 840 113549 1 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x03\x01", /*pkcs-3-dhKeyAgreement (1 2 840 113549 1 3 1) */ /* PKCS #5 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05", /*pkcs-5 (1 2 840 113549 1 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x01", /*pkcs-5-pbeWithMD2AndDES-CBC (1 2 840 113549 1 5 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x03", /*pkcs-5-pbeWithMD5AndDES-CBC (1 2 840 113549 1 5 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x04", /*pkcs-5-pbeWithMD2AndRC2-CBC (1 2 840 113549 1 5 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x06", /*pkcs-5-pbeWithMD5AndRC2-CBC (1 2 840 113549 1 5 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x09", /*pkcs-5-pbeWithMD5AndXOR (1 2 840 113549 1 5 9) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x05\x0A", /*pkcs-5-pbeWithSHA1AndDES-CBC (1 2 840 113549 1 5 10) */ /* PKCS #7 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07", /*pkcs-7 (1 2 840 113549 1 7) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x01", /*pkcs-7-data (1 2 840 113549 1 7 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x02", /*pkcs-7-signedData (1 2 840 113549 1 7 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x03", /*pkcs-7-envelopedData (1 2 840 113549 1 7 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x04", /*pkcs-7-signedAndEnvelopedData (1 2 840 113549 1 7 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x05", /*pkcs-7-digestData (1 2 840 113549 1 7 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x06", /*pkcs-7-encryptedData (1 2 840 113549 1 7 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x07", /*pkcs-7-dataWithAttributes (1 2 840 113549 1 7 7) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x07\x08", /*pkcs-7-encryptedPrivateKeyInfo (1 2 840 113549 1 7 8) */ /* PKCS #9 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09", /*pkcs-9 (1 2 840 113549 1 9) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x01", /*pkcs-9-emailAddress (1 2 840 113549 1 9 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x02", /*pkcs-9-unstructuredName (1 2 840 113549 1 9 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x03", /*pkcs-9-contentType (1 2 840 113549 1 9 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x04", /*pkcs-9-messageDigest (1 2 840 113549 1 9 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x05", /*pkcs-9-signingTime (1 2 840 113549 1 9 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x06", /*pkcs-9-countersignature (1 2 840 113549 1 9 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x07", /*pkcs-9-challengePassword (1 2 840 113549 1 9 7) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x08", /*pkcs-9-unstructuredAddress (1 2 840 113549 1 9 8) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x09", /*pkcs-9-extendedCertificateAttributes (1 2 840 113549 1 9 9) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x0A", /*pkcs-9-issuerAndSerialNumber (1 2 840 113549 1 9 10) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x0B", /*pkcs-9-passwordCheck (1 2 840 113549 1 9 11) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x0C", /*pkcs-9-publicKey (1 2 840 113549 1 9 12) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x0D", /*pkcs-9-signingDescription (1 2 840 113549 1 9 13) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x0E", /*pkcs-9-X.509 extension (1 2 840 113549 1 9 14) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x09\x0F", /*pkcs-9-SMIMECapabilities (1 2 840 113549 1 9 15) */ /* PKCS #12 */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C", /*pkcs-12 (1 2 840 113549 1 12) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x01", /*pkcs-12-modeID (1 2 840 113549 1 12 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x01\x01", /*pkcs-12-OfflineTransportMode (1 2 840 113549 1 12 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x01\x02", /*pkcs-12-OnlineTransportMode (1 2 840 113549 1 12 1 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x02", /*pkcs-12-ESPVKID (1 2 840 113549 1 12 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x02\x01", /*pkcs-12-PKCS8KeyShrouding (1 2 840 113549 1 12 2 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03", /*pkcs-12-BagID (1 2 840 113549 1 12 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03\x01", /*pkcs-12-KeyBagID (1 2 840 113549 1 12 3 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03\x02", /*pkcs-12-CertAndCRLBagID (1 2 840 113549 1 12 3 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x03\x03", /*pkcs-12-SecretBagID (1 2 840 113549 1 12 3 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x04", /*pkcs-12-CertBagID (1 2 840 113549 1 12 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x04\x01", /*pkcs-12-X509CertCRLBag (1 2 840 113549 1 12 4 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x04\x02", /*pkcs-12-SDSICertBag (1 2 840 113549 1 12 4 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05", /*pkcs-12-OID (1 2 840 113549 1 12 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01", /*pkcs-12-PBEID (1 2 840 113549 1 12 5 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x01", /*pkcs-12-PBEWithSha1And128BitRC4 (1 2 840 113549 1 12 5 1 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x02", /*pkcs-12-PBEWithSha1And40BitRC4 (1 2 840 113549 1 12 5 1 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x03", /*pkcs-12-PBEWithSha1AndTripleDESCBC (1 2 840 113549 1 12 5 1 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x04", /*pkcs-12-PBEWithSha1And128BitRC2CBC (1 2 840 113549 1 12 5 1 4) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x05", /*pkcs-12-PBEWithSha1And40BitRC2CBC (1 2 840 113549 1 12 5 1 5) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x06", /*pkcs-12-PBEWithSha1AndRC4 (1 2 840 113549 1 12 5 1 6) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x01\x07", /*pkcs-12-PBEWithSha1AndRC2CBC (1 2 840 113549 1 12 5 1 7) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02", /*pkcs-12-EnvelopingID (1 2 840 113549 1 12 5 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02\x01", /*pkcs-12-RSAEncryptionWith128BitRC4 (1 2 840 113549 1 12 5 2 1) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02\x02", /*pkcs-12-RSAEncryptionWith40BitRC4 (1 2 840 113549 1 12 5 2 2) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x02\x03", /*pkcs-12-RSAEncryptionWithTripleDES (1 2 840 113549 1 12 5 2 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x03", /*pkcs-12-SignatureID (1 2 840 113549 1 12 5 3) */ "\x2A\x86\x48\x86\xF7\x0D\x01\x0C\x05\x03\x01", /*pkcs-12-RSASignatureWithSHA1Digest (1 2 840 113549 1 12 5 3 1) */
/* RSADSI digest algorithms */ "\x2A\x86\x48\x86\xF7\x0D\x02", /*RSADSI-digestAlgorithm (1 2 840 113549 2) */ "\x2A\x86\x48\x86\xF7\x0D\x02\x02", /*RSADSI-md2 (1 2 840 113549 2 2) */ "\x2A\x86\x48\x86\xF7\x0D\x02\x04", /*RSADSI-md4 (1 2 840 113549 2 4) */ "\x2A\x86\x48\x86\xF7\x0D\x02\x05", /*RSADSI-md5 (1 2 840 113549 2 5) */ /* RSADSI encryption algorithms */ "\x2A\x86\x48\x86\xF7\x0D\x03", /*RSADSI-encryptionAlgorithm (1 2 840 113549 3) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x02", /*RSADSI-rc2CBC (1 2 840 113549 3 2) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x03", /*RSADSI-rc2ECB (1 2 840 113549 3 3) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x04", /*RSADSI-rc4 (1 2 840 113549 3 4) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x05", /*RSADSI-rc4WithMAC (1 2 840 113549 3 5) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x06", /*RSADSI-DESX-CBC (1 2 840 113549 3 6) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x07", /*RSADSI-DES-EDE3-CBC (1 2 840 113549 3 7) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x08", /*RSADSI-RC5CBC (1 2 840 113549 3 8) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x09", /*RSADSI-RC5CBCPad (1 2 840 113549 3 9) */ "\x2A\x86\x48\x86\xF7\x0D\x03\x0A", /*RSADSI-CDMFCBCPad (1 2 840 113549 3 10) */ /* Microsoft OIDs */ "\x2A\x86\x48\x86\xF7\x14\x04\x03", /*microsoftExcel (1 2 840 113556 4 3) */ "\x2A\x86\x48\x86\xF7\x14\x04\x04", /*titledWithOID (1 2 840 113556 4 4) */ "\x2A\x86\x48\x86\xF7\x14\x04\x05", /*microsoftPowerPoint (1 2 840 113556 4 5) */
/* cryptlib */ "\x2B\x06\x01\x04\x01\x97\x55\x20\x01", /*cryptlibEnvelope (1 3 6 1 4 1 3029 32 1) */
/* PKIX */ "\x2B\x06\x01\x05\x05\x07", /*pkix-oid (1 3 6 1 5 5 7) */ "\x2B\x06\x01\x05\x05\x07\x01", /*pkix-subjectInfoAccess (1 3 6 1 5 5 7 1) */ "\x2B\x06\x01\x05\x05\x07\x02", /*pkix-authorityInfoAccess (1 3 6 1 5 5 7 2) */ "\x2B\x06\x01\x05\x05\x07\x04", /*pkix-cps (1 3 6 1 5 5 7 4) */ "\x2B\x06\x01\x05\x05\x07\x05", /*pkix-userNotice (1 3 6 1 5 5 7 5) */
/* Not sure about these ones: */ /*"\x2B\x0E\x02\x1A\x05", sha (1 3 14 2 26 5) */ /*"\x2B\x0E\x03\x02\x01\x01", rsa (1 3 14 3 2 1 1) */ //X-509
/*"\x2B\x0E\x03\x02\x02\x01", sqmod-N (1 3 14 3 2 2 1) */ //X-509
/*"\x2B\x0E\x03\x02\x03\x01", sqmod-NwithRSA (1 3 14 3 2 3 1) */ //X-509
/* Miscellaneous partially-defunct OIW semi-standards aka algorithms */ "\x2B\x0E\x03\x02\x02", /*ISO-algorithm-md4WitRSA (1 3 14 3 2 2) */ "\x2B\x0E\x03\x02\x03", /*ISO-algorithm-md5WithRSA (1 3 14 3 2 3) */ "\x2B\x0E\x03\x02\x04", /*ISO-algorithm-md4WithRSAEncryption (1 3 14 3 2 4) */ "\x2B\x0E\x03\x02\x06", /*ISO-algorithm-desECB (1 3 14 3 2 6) */ "\x2B\x0E\x03\x02\x07", /*ISO-algorithm-desCBC (1 3 14 3 2 7) */ "\x2B\x0E\x03\x02\x08", /*ISO-algorithm-desOFB (1 3 14 3 2 8) */ "\x2B\x0E\x03\x02\x09", /*ISO-algorithm-desCFB (1 3 14 3 2 9) */ "\x2B\x0E\x03\x02\x0A", /*ISO-algorithm-desMAC (1 3 14 3 2 10) */ "\x2B\x0E\x03\x02\x0B", /*ISO-algorithm-rsaSignature (1 3 14 3 2 11) */ //ISO 9796
"\x2B\x0E\x03\x02\x0C", /*ISO-algorithm-dsa (1 3 14 3 2 12) */ "\x2B\x0E\x03\x02\x0D", /*ISO-algorithm-dsaWithSHA (1 3 14 3 2 13) */ "\x2B\x0E\x03\x02\x0E", /*ISO-algorithm-mdc2WithRSASignature (1 3 14 3 2 14) */ "\x2B\x0E\x03\x02\x0F", /*ISO-algorithm-shaWithRSASignature (1 3 14 3 2 15) */ "\x2B\x0E\x03\x02\x10", /*ISO-algorithm-dhWithCommonModulus (1 3 14 3 2 16) */ "\x2B\x0E\x03\x02\x11", /*ISO-algorithm-desEDE (1 3 14 3 2 17) */ "\x2B\x0E\x03\x02\x12", /*ISO-algorithm-sha (1 3 14 3 2 18) */ "\x2B\x0E\x03\x02\x13", /*ISO-algorithm-mdc-2 (1 3 14 3 2 19) */ "\x2B\x0E\x03\x02\x14", /*ISO-algorithm-dsaCommon (1 3 14 3 2 20) */ "\x2B\x0E\x03\x02\x15", /*ISO-algorithm-dsaCommonWithSHA (1 3 14 3 2 21) */ "\x2B\x0E\x03\x02\x16", /*ISO-algorithm-rsaKeyTransport (1 3 14 3 2 22) */ "\x2B\x0E\x03\x02\x17", /*ISO-algorithm-keyed-hash-seal (1 3 14 3 2 23) */ "\x2B\x0E\x03\x02\x18", /*ISO-algorithm-md2WithRSASignature (1 3 14 3 2 24) */ "\x2B\x0E\x03\x02\x19", /*ISO-algorithm-md5WithRSASignature (1 3 14 3 2 25) */ "\x2B\x0E\x03\x02\x1A", /*ISO-algorithm-sha1 (1 3 14 3 2 26) */ "\x2B\x0E\x03\x02\x1B", /*ISO-algorithm-ripemd160 (1 3 14 3 2 27) */ "\x2B\x0E\x03\x02\x1D", /*ISO-algorithm-sha-1WithRSAEncryption (1 3 14 3 2 29) */ "\x2B\x0E\x03\x03\x01", /*ISO-algorithm-simple-strong-auth-mechanism (1 3 14 3 3 1) */ /* Not sure about these ones:
/*"\x2B\x0E\x07\x02\x01\x01", ElGamal (1 3 14 7 2 1 1) */ /*"\x2B\x0E\x07\x02\x03\x01", md2WithRSA (1 3 14 7 2 3 1) */ /*"\x2B\x0E\x07\x02\x03\x02", md2WithElGamal (1 3 14 7 2 3 2) */ /* X.520 id-at = 2 5 4*/ "\x55\x04\x00", /*X.520-at-objectClass (2 5 4 0) */ "\x55\x04\x01", /*X.520-at-aliasObjectName (2 5 4 1) */ "\x55\x04\x02", /*X.520-at-knowledgeInformation (2 5 4 2) */ "\x55\x04\x03", /*X.520-at-commonName (2 5 4 3) */ "\x55\x04\x04", /*X.520-at-surname (2 5 4 4) */ "\x55\x04\x05", /*X.520-at-serialNumber (2 5 4 5) */ "\x55\x04\x06", /*X.520-at-countryName (2 5 4 6) */ "\x55\x04\x07", /*X.520-at-localityName (2 5 4 7) */ "\x55\x04\x08", /*X.520-at-stateOrProvinceName (2 5 4 8) */ "\x55\x04\x09", /*X.520-at-streetAddress (2 5 4 9) */ "\x55\x04\x0A", /*X.520-at-organizationName (2 5 4 10) */ "\x55\x04\x0B", /*X.520-at-organizationalUnitName (2 5 4 11) */ "\x55\x04\x0C", /*X.520-at-title (2 5 4 12) */ "\x55\x04\x0D", /*X.520-at-description (2 5 4 13) */ "\x55\x04\x0E", /*X.520-at-searchGuide (2 5 4 14) */ "\x55\x04\x0F", /*X.520-at-businessCategory (2 5 4 15) */ "\x55\x04\x10", /*X.520-at-postalAddress (2 5 4 16) */ "\x55\x04\x11", /*X.520-at-postalCode (2 5 4 17) */ "\x55\x04\x12", /*X.520-at-postOfficeBox (2 5 4 18) */ "\x55\x04\x13", /*X.520-at-physicalDeliveryOfficeName (2 5 4 19) */ "\x55\x04\x14", /*X.520-at-telephoneNumber (2 5 4 20) */ "\x55\x04\x15", /*X.520-at-telexNumber (2 5 4 21) */ "\x55\x04\x16", /*X.520-at-teletexTerminalIdentifier (2 5 4 22) */ "\x55\x04\x17", /*X.520-at-facsimileTelephoneNumber (2 5 4 23) */ "\x55\x04\x18", /*X.520-at-x121AddreX.520-at-ss (2 5 4 24) */ "\x55\x04\x19", /*X.520-at-internationalISNNumber (2 5 4 25) */ "\x55\x04\x1A", /*X.520-at-registeredAddress (2 5 4 26) */ "\x55\x04\x1B", /*X.520-at-destinationIndicator (2 5 4 27) */ "\x55\x04\x1C", /*X.520-at-preferredDeliveryMehtod (2 5 4 28) */ "\x55\x04\x1D", /*X.520-at-presentationAddress (2 5 4 29) */ "\x55\x04\x1E", /*X.520-at-supportedApplicationContext (2 5 4 30) */ "\x55\x04\x1F", /*X.520-at-member (2 5 4 31) */ "\x55\x04\x20", /*X.520-at-owner (2 5 4 32) */ "\x55\x04\x21", /*X.520-at-roleOccupant (2 5 4 33) */ "\x55\x04\x22", /*X.520-at-seeAlso (2 5 4 34) */ "\x55\x04\x23", /*X.520-at-userPassword (2 5 4 35) */ "\x55\x04\x24", /*X.520-at-userCertificate (2 5 4 36) */ "\x55\x04\x25", /*X.520-at-CAcertificate (2 5 4 37) */ "\x55\x04\x26", /*X.520-at-authorityRevocationList (2 5 4 38) */ "\x55\x04\x27", /*X.520-at-certifcateRevocationList (2 5 4 39) */ "\x55\x04\x28", /*X.520-at-crossCertificatePair (2 5 4 40) */ "\x55\x04\x34", /*X.520-at-supportedAlgorithms (2 5 4 52) */ "\x55\x04\x35", /*X.520-at-deltaRevocationList (2 5 4 53) */ "\x55\x04\x3A", /*X.520-at-crossCertificatePair (2 5 4 58) */ /* X500 algorithms */ "\x55\x08", /*X500-Algorithms (2 5 8) */ "\x55\x08\x01", /*X500-Alg-Encryption (2 5 8 1) */ "\x55\x08\x01\x01", /*rsa (2 5 8 1 1) */ /* X.509 id-ce = 2 5 29*/ "\x55\x1D\x01", /*X.509-ce-authorityKeyIdentifier (2 5 29 1) */ "\x55\x1D\x02", /*X.509-ce-keyAttributes (2 5 29 2) */ "\x55\x1D\x03", /*X.509-ce-certificatePolicies (2 5 29 3) */ "\x55\x1D\x04", /*X.509-ce-keyUsageRestriction (2 5 29 4) */ "\x55\x1D\x05", /*X.509-ce-policyMapping (2 5 29 5) */ "\x55\x1D\x06", /*X.509-ce-subtreesConstraint (2 5 29 6) */ "\x55\x1D\x07", /*X.509-ce-subjectAltName (2 5 29 7) */ "\x55\x1D\x08", /*X.509-ce-issuerAltName (2 5 29 8) */ "\x55\x1D\x09", /*X.509-ce-subjectDirectoryAttributes (2 5 29 9) */ "\x55\x1D\x0A", /*X.509-ce-basicConstraints x.509 (2 5 29 10) */ "\x55\x1D\x0B", /*X.509-ce-nameConstraints (2 5 29 11) */ "\x55\x1D\x0C", /*X.509-ce-policyConstraints (2 5 29 12) */ "\x55\x1D\x0D", /*X.509-ce-basicConstraints 9.55 (2 5 29 13) */ "\x55\x1D\x0E", /*X.509-ce-subjectKeyIdentifier (2 5 29 14) */ "\x55\x1D\x0F", /*X.509-ce-keyUsage (2 5 29 15) */ "\x55\x1D\x10", /*X.509-ce-privateKeyUsagePeriod (2 5 29 16) */ "\x55\x1D\x11", /*X.509-ce-subjectAltName (2 5 29 17) */ "\x55\x1D\x12", /*X.509-ce-issuerAltName (2 5 29 18) */ "\x55\x1D\x13", /*X.509-ce-basicConstraints (2 5 29 19) */ "\x55\x1D\x14", /*X.509-ce-cRLNumber (2 5 29 20) */ "\x55\x1D\x15", /*X.509-ce-reasonCode (2 5 29 21) */ "\x55\x1D\x17", /*X.509-ce-instructionCode (2 5 29 23) */ "\x55\x1D\x18", /*X.509-ce-invalidityDate (2 5 29 24) */ "\x55\x1D\x1B", /*X.509-ce-deltaCRLIndicator (2 5 29 27) */ "\x55\x1D\x1C", /*X.509-ce-issuingDistributionPoint (2 5 29 28) */ "\x55\x1D\x1D", /*X.509-ce-certificateIssuer (2 5 29 29) */ "\x55\x1D\x1E", /*X.509-ce-nameConstraints (2 5 29 30) */ "\x55\x1D\x1F", /*X.509-ce-cRLDistPoints (2 5 29 31) */ "\x55\x1D\x20", /*X.509-ce-certificatePolicies (2 5 29 32) */ "\x55\x1D\x21", /*X.509-ce-policyMappings (2 5 29 33) */ "\x55\x1D\x23", /*X.509-ce-authorityKeyIdentifier (2 5 29 35) */ "\x55\x1D\x24", /*X.509-ce-policyConstraints (2 5 29 36) */ /* DMS-SDN-702 */ "\x60\x86\x48\x01\x65\x02\x01\x01\x01", /*id-sdnsSignatureAlgorithm (2 16 840 1 101 2 1 1 1) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x02", /*id-mosaicSignatureAlgorithm (2 16 840 1 101 2 1 1 2) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x03", /*id-sdnsConfidentialityAlgorithm (2 16 840 1 101 2 1 1 3) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x04", /*id-mosaicConfidentialityAlgorithm (2 16 840 1 101 2 1 1 4) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x05", /*id-sdnsIntegrityAlgorithm (2 16 840 1 101 2 1 1 5) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x06", /*id-mosaicIntegrityAlgorithm (2 16 840 1 101 2 1 1 6) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x07", /*id-sdnsTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 7) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x08", /*id-mosaicTokenProtectionAlgorithm (2 16 840 1 101 2 1 1 8) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x09", /*id-sdnsKeyManagementAlgorithm (2 16 840 1 101 2 1 1 9) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0A", /*id-mosaicKeyManagementAlgorithm (2 16 840 1 101 2 1 1 10) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0B", /*id-sdnsKMandSigAlgorithm (2 16 840 1 101 2 1 1 11) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0C", /*id-mosaicKMandSigAlgorithm (2 16 840 1 101 2 1 1 12) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0D", /*id-SuiteASignatureAlgorithm (2 16 840 1 101 2 1 1 13) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0E", /*id-SuiteAConfidentialityAlgorithm (2 16 840 1 101 2 1 1 14) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x0F", /*id-SuiteAIntegrityAlgorithm (2 16 840 1 101 2 1 1 15) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x10", /*id-SuiteATokenProtectionAlgorithm (2 16 840 1 101 2 1 1 16) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x11", /*id-SuiteAKeyManagementAlgorithm (2 16 840 1 101 2 1 1 17) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x12", /*id-SuiteAKMandSigAlgorithm (2 16 840 1 101 2 1 1 18) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x13", /*id-mosaicUpdatedSigAlgorithm (2 16 840 1 101 2 1 1 19) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x14", /*id-mosaicKMandUpdSigAlgorithms (2 16 840 1 101 2 1 1 20) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x15", /*id-mosaicUpdatedIntegAlgorithm (2 16 840 1 101 2 1 1 21) */ "\x60\x86\x48\x01\x65\x02\x01\x01\x16", /*id-mosaicKeyEncryptionAlgorithm (2 16 840 1 101 2 1 1 22) */
/* Netscape */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x01", /*netscape-cert-type (2 16 840 1 113730 1 1) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x02", /*netscape-base-url (2 16 840 1 113730 1 2) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x03", /*netscape-revocation-url (2 16 840 1 113730 1 3) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x04", /*netscape-ca-revocation-url (2 16 840 1 113730 1 4) */ "\x60\x86\x48\x01\x86\xF8\x42\x02\x05", /*netscape-cert-sequence (2 16 840 1 113730 2 5) */ "\x60\x86\x48\x01\x86\xF8\x42\x02\x06", /*netscape-cert-url (2 16 840 1 113730 2 6) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x07", /*netscape-renewal-url (2 16 840 1 113730 1 7) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x08", /*netscape-ca-policy-url (2 16 840 1 113730 1 8) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x09", /*netscape-HomePage-url (2 16 840 1 113730 1 9) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x0A", /*netscape-EntityLogo (2 16 840 1 113730 1 10) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x0B", /*netscape-UserPicture (2 16 840 1 113730 1 11) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x0C", /*netscape-ssl-server-name (2 16 840 1 113730 1 12) */ "\x60\x86\x48\x01\x86\xF8\x42\x01\x0D", /*netscape-comment (2 16 840 1 113730 1 13) */ "\x60\x86\x48\x01\x86\xF8\x42\x02", /*netscape-data-type (2 16 840 1 113730 2) */ "\x60\x86\x48\x01\x86\xF8\x42\x02\x01", /*netscape-dt-GIF (2 16 840 1 113730 2 1) */ "\x60\x86\x48\x01\x86\xF8\x42\x02\x02", /*netscape-dt-JPEG (2 16 840 1 113730 2 2) */ "\x60\x86\x48\x01\x86\xF8\x42\x02\x03", /*netscape-dt-URL (2 16 840 1 113730 2 3) */ "\x60\x86\x48\x01\x86\xF8\x42\x02\x04", /*netscape-dt-HTML (2 16 840 1 113730 2 4) */ "\x60\x86\x48\x01\x86\xF8\x42\x02\x05", /*netscape-dt-CertSeq (2 16 840 1 113730 2 5) */ "\x60\x86\x48\x01\x86\xF8\x42\x03", /*netscape-directory (2 16 840 1 113730 3) */ /* SET */ "\x86\x8D\x6F\x02", /*hashedRootKey (2 54 1775 2) */ "\x86\x8D\x6F\x03", /*certificateType (2 54 1775 3) */ "\x86\x8D\x6F\x04", /*merchantData (2 54 1775 4) */ "\x86\x8D\x6F\x05", /*cardCertRequired (2 54 1775 5) */ "\x86\x8D\x6F\x06", /*tunneling (2 54 1775 6) */ "\x86\x8D\x6F\x07", /*setQualifier (2 54 1775 7) */ "\x86\x8D\x6F\x63", /*set-data (2 54 1775 99) */ NULL };/*------------------------------------------------------------------------------
Global Variables------------------------------------------------------------------------------*/
BYTE *pDictMemory = NULL_PTR, DictVersion = 0;
BYTE* dwPtrMax = 0;
USHORT usDictCount = 0;
#ifdef _STUDY
FILE *pfdLog, *pfdLogFreq, *pfdBinAc256, *pfdBinAc16, *pfdBinAc4, *pfdBinAc2;int sum, i, Ac256[256], Ac16[16], Ac4[4], Ac2[2];#endif
/*------------------------------------------------------------------------------
Static Functions Declaration ------------------------------------------------------------------------------*/
static int CC_Comp(BLOC *pCertificate, BLOC *pCompressedCertificate );
static int CC_Uncomp(BLOC *pCompressedCertificate, BLOC *pUncompressedCertificate );
static int CC_ExtractContent(ASN1 *pAsn1 );
static int CC_BuildAsn1(ASN1 *pAsn1 );
static int SearchDataByIndex(USHORT usIndex, BYTE *pDict, BLOC *pOutBloc );
static int CC_RawEncode(BLOC *pInBloc, BLOC *pOutBloc, BOOL bUseDictionnary );
static int CC_RawDecode(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength, BOOL bUseDictionnary );
static int CC_GenericCompress(BLOC *pUncompBloc, BLOC *pCompBloc, BYTE AlgoID );
static int CC_GenericUncompress(BLOC *pCompBloc, BLOC *pUncompBloc, BYTE AlgoID );
static int CC_Encode_TBSCertificate(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_CertificateSerialNumber(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_AlgorithmIdentifier(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_Name(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_RDN(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_AVA(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_Validity(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_UTCTime(BLOC *pInBloc, BLOC *pOutBloc, BYTE *pFormat );
static int CC_Encode_SubjectPKInfo(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_UniqueIdentifier(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_Extensions(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_Extension(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Encode_Signature(BLOC *pInBloc, BLOC *pOutBloc );
static int CC_Decode_TBSCertificate(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_CertificateSerialNumber(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_AlgorithmIdentifier(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_Name(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_RDN(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_AVA(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_Validity(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_UTCTime(BYTE *pInData, BYTE Format, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_SubjectPKInfo(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_UniqueIdentifier(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_Extensions(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_Extension(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
static int CC_Decode_Signature(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength );
/*------------------------------------------------------------------------------
* static DWORD get_file_len(BYTE *lpszFileName)* * Description : Get length of file.** Remarks : Nothing.** In : lpszFileName = Name of file.** Out : Nothing.** Responses : size of file, -1 if error occur.*------------------------------------------------------------------------------*/ static DWORD get_file_len(BYTE *lpszFileName){ int fp; DWORD nLen;
fp = _open(lpszFileName, O_RDONLY); if (fp != 0) { nLen = _filelength(fp); _close(fp); } else { nLen = -1; }
return(nLen);}
/*******************************************************************************
* int CC_Init(BYTE bDictMode, BYTE *pszDictName)** Description : Lit le dictionnaire et son num�ro de version depuis la base de* registre vers la m�moire.** Remarks :** In : ** Out : ** Responses : ********************************************************************************/int CC_Init(BYTE bDictMode, BYTE *pszDictName){ switch (bDictMode) {#ifndef _STATIC
/* Dictionary read as resource data GPK_X509_DICTIONARY */ case DICT_STANDARD: { LPBYTE pbDict; DWORD cbDict; HRSRC hRsrc; HGLOBAL hDict;
hRsrc = FindResource(g_hInstRes, //MAKEINTRESOURCE(GPK_X509_DICTIONARY),
TEXT("GPK_X509_DICTIONARY"), RT_RCDATA ); if (NULL == hRsrc) { goto ERROR_INIT; } cbDict = SizeofResource(g_hInstRes, hRsrc); if (0 == cbDict) { goto ERROR_INIT; } hDict = LoadResource(g_hInstRes, hRsrc); if (NULL == hDict) { goto ERROR_INIT; } pbDict = LockResource(hDict); if (NULL == pbDict) { goto ERROR_INIT; }
DictVersion = *pbDict; usDictCount = (WORD)cbDict - 1; pDictMemory = GMEM_Alloc(usDictCount); if (pDictMemory == NULL) { goto ERROR_INIT; } memcpy(pDictMemory, &pbDict[1], usDictCount); return(RV_SUCCESS); } break;#endif
/* Dictionary read as registyry entry in HKEY_LOCAL_MACHINE with key as */ /* pszDictName parameter */ case DICT_REGISTRY: { DWORD err, dwIgn; HKEY hRegKey; BYTE *ptr;
if (pszDictName == NULL_PTR) { goto ERROR_INIT; }
err = RegCreateKeyEx(HKEY_LOCAL_MACHINE, (const char *) pszDictName, 0L, "", REG_OPTION_NON_VOLATILE, KEY_ALL_ACCESS, NULL, &hRegKey, &dwIgn ); if(err != ERROR_SUCCESS) { goto ERROR_INIT; } dwIgn = 0; err = RegQueryValueEx(hRegKey, "X509 Dictionary", NULL, NULL, NULL, &dwIgn ); if(err != ERROR_SUCCESS) { RegCloseKey(hRegKey); goto ERROR_INIT; }
ptr = GMEM_Alloc(dwIgn); if (ptr == NULL) { RegCloseKey(hRegKey); goto ERROR_INIT; }
err = RegQueryValueEx(hRegKey, "X509 Dictionary", NULL, NULL, ptr, &dwIgn ); if(err != ERROR_SUCCESS) { RegCloseKey(hRegKey); GMEM_Free(ptr); goto ERROR_INIT; }
DictVersion = (BYTE)ptr[0];
usDictCount = (WORD)dwIgn - 1; pDictMemory = GMEM_Alloc(usDictCount);
if (pDictMemory == NULL) { RegCloseKey(hRegKey); GMEM_Free(ptr); goto ERROR_INIT; }
memcpy(pDictMemory, &ptr[1], usDictCount);
RegCloseKey(hRegKey); GMEM_Free(ptr); return(RV_SUCCESS); } break;
/* Dictionary read as file in path pszDictName parameter */ case DICT_FILE: { DWORD dwFileLen; BYTE *ptr; FILE *fp;
if (pszDictName == NULL_PTR) { goto ERROR_INIT; } dwFileLen = get_file_len(pszDictName); ptr = GMEM_Alloc(dwFileLen); if (ptr == NULL) { goto ERROR_INIT; } fp = fopen(pszDictName, "rb"); if (fp == NULL) { GMEM_Free(ptr); goto ERROR_INIT; }
if (!fread(ptr, dwFileLen, 1, fp)) { fclose(fp); GMEM_Free(ptr); goto ERROR_INIT; } fclose(fp); DictVersion = (BYTE)ptr[0];
usDictCount = (WORD)dwFileLen - 1; pDictMemory = GMEM_Alloc(usDictCount);
if (pDictMemory == NULL) { GMEM_Free(ptr); goto ERROR_INIT; }
memcpy(pDictMemory, &ptr[1], usDictCount);
GMEM_Free(ptr);
return(RV_SUCCESS); } break;
default: break; }
ERROR_INIT: DictVersion = 0; usDictCount = 0; pDictMemory = NULL_PTR; return(RV_BAD_DICTIONARY);}
/*******************************************************************************
* int CC_Exit(void)** Description : Free dictionary.** Remarks :** In : ** Out : ** Responses : ********************************************************************************/int CC_Exit(void){ DictVersion = 0; usDictCount = 0; if (pDictMemory != NULL_PTR) { GMEM_Free(pDictMemory); } pDictMemory = NULL_PTR; return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Compress(BLOC *pCertificate,* BLOC *pCompressedCertificate* )** Description : Fonction de m�ta-compression visible depuis l'ext�rieur.* Adapte la sortie en fonction de la faisabilit� d'une compression* suivie d'une d�compression.** Remarks : Le champ pData du bloc d'entr�e a �t� allou� par la fonction appelant.* Le champ pData du bloc de sortie est allou� ici. Il doit �tre* d�sallou� par la fonction appelant (sauf si RV_MALLOC_FAILED).** In : *pCert : Bloc � m�ta-compresser** Out : *pCompCert : Bloc 'meta-compress�'* Si probl�me lors de la compression/decompression : Renvoie le bloc* d'entr�e pr�c�d� d'un tag sp�cifique.* Sinon : Renvoie le bloc compress� pr�c�d� du num�ro de version* du dictionnaire.** Responses : RV_SUCCESS : All is OK.* RV_COMPRESSION_FAILED : Un probl�me a eu lieu lors de l'�tape* de compression/d�compression donc le* bloc de sortie contient le bloc d'entr�e* pr�c�d� du tag TAG_COMPRESSION_FAILED.* RV_BLOC_TOO_LONG : Le bloc d'entr�e *commence* par un certificat* dont la compression a pu �tre invers�e.* Le bloc de sortie contient donc le compress�* de cette partie initiale seulement.* RV_MALLOC_FAILED : Un malloc a �chou� au niveau 'm�ta'. C'est le* seul r�el retour d'erreur.********************************************************************************/int CC_Compress(BLOC *pCert, BLOC *pCompCert )
{ BLOC TryCompCert, TryUncompCert;
TryCompCert.pData = NULL_PTR; TryCompCert.usLen = 0; TryUncompCert.pData = NULL_PTR; TryUncompCert.usLen = 0;
#ifdef _STUDY
/* Ouverture des fichiers de log */
if ((pfdLog = fopen("CompCert.log", "a+")) == 0) { return(RV_FILE_OPEN_FAILED); } fprintf(pfdLog, "\n*****************************************************\n");
if ((pfdBinAc256 = fopen("Freq256.bin", "r+b")) == 0) { if ((pfdBinAc256 = fopen("Freq256.bin", "w+b")) == 0) { return(RV_FILE_OPEN_FAILED); } memset(Ac256, 0x00, 256 * sizeof(int)); } else { fread(Ac256, sizeof(int), 256, pfdBinAc256); }
if ((pfdBinAc16 = fopen("Freq016.bin", "r+b")) == 0) { if ((pfdBinAc16 = fopen("Freq016.bin", "w+b")) == 0) { return(RV_FILE_OPEN_FAILED); } memset(Ac16, 0x00, 16 * sizeof(int)); } else { fread(Ac16, sizeof(int), 16, pfdBinAc16); }
if ((pfdBinAc4 = fopen("Freq004.bin", "r+b")) == 0) { if ((pfdBinAc4 = fopen("Freq004.bin", "w+b")) == 0) { return(RV_FILE_OPEN_FAILED); } memset(Ac4, 0x00, 4 * sizeof(int)); } else { fread(Ac4, sizeof(int), 4, pfdBinAc4); }
if ((pfdBinAc2 = fopen("Freq002.bin", "r+b")) == 0) { if ((pfdBinAc2 = fopen("Freq002.bin", "w+b")) == 0) { return(RV_FILE_OPEN_FAILED); } memset(Ac2, 0x00, 2 * sizeof(int)); } else { fread(Ac2, sizeof(int), 2, pfdBinAc2); }
#endif
if (CC_Comp(pCert, &TryCompCert) != RV_SUCCESS) { /* Si la compression s'est mal pass�e alors on renvoie le fichier
d'entr�e en indiquant que le fichier n'est pas compress� */
if (TryCompCert.pData) { GMEM_Free(TryCompCert.pData); TryCompCert.pData = NULL_PTR; }
/* Allocation de la m�moire pour le certificat compress� */ if (pCompCert->usLen < pCert->usLen + 1) { pCompCert->usLen = pCert->usLen + 1; if (pCompCert->pData) { return(RV_BUFFER_TOO_SMALL); } else { return(RV_SUCCESS); } }
pCompCert->usLen = pCert->usLen + 1; pCompCert->pData[0] = TAG_COMPRESSION_FAILED; if (pCompCert->pData) { memcpy(&pCompCert->pData[1], pCert->pData, pCert->usLen); } return(RV_COMPRESSION_FAILED); }
if ( ( (CC_Uncomp(&TryCompCert, &TryUncompCert) != RV_SUCCESS) || (pCert->usLen != TryUncompCert.usLen) || (memcmp(TryUncompCert.pData, pCert->pData, pCert->usLen) != 0) ) && (memcmp(TryUncompCert.pData, pCert->pData, TryUncompCert.usLen) != 0) ) { /* Si la d�compression s'est mal pass�e ou bien si elle n'est pas fid�le
alors on renvoie le fichier d'entr�e en indiquant que le fichier n'est pas compress� */
if (TryCompCert.pData) { GMEM_Free(TryCompCert.pData); TryCompCert.pData = NULL_PTR; } if (TryUncompCert.pData) { GMEM_Free(TryUncompCert.pData); TryUncompCert.pData = NULL_PTR; }
/* Allocation de la m�moire pour le certificat */ if (pCompCert->usLen < pCert->usLen + 1) { pCompCert->usLen = pCert->usLen + 1; if (pCompCert->pData) { return(RV_BUFFER_TOO_SMALL); } else { return(RV_SUCCESS); } }
pCompCert->usLen = pCert->usLen + 1; pCompCert->pData[0] = TAG_COMPRESSION_FAILED; if (pCompCert->pData) { memcpy(&pCompCert->pData[1], pCert->pData, pCert->usLen); } return(RV_COMPRESSION_FAILED); }
#ifdef _STUDY
fseek(pfdBinAc256, 0, SEEK_SET); fwrite(Ac256, sizeof(int), 256, pfdBinAc256); fseek(pfdBinAc16, 0, SEEK_SET); fwrite(Ac16, sizeof(int), 16, pfdBinAc16); fseek(pfdBinAc4, 0, SEEK_SET); fwrite(Ac4, sizeof(int), 4, pfdBinAc4); fseek(pfdBinAc2, 0, SEEK_SET); fwrite(Ac2, sizeof(int), 2, pfdBinAc2);
if ((pfdLogFreq = fopen("Freq.log", "w")) == 0) { return(RV_FILE_OPEN_FAILED); }
for (sum = 0, i = 0; i < 256; sum += Ac256[i], i++) ;
fprintf(pfdLogFreq, "\nTotal = %d\n\n", sum * 8); for (i = 0; i < 2; i++) { fprintf(pfdLogFreq, "0x%02X (%03d) '%c' : %8d - %04.2f %%\n", i, i, (isgraph(i) ? i : ' '), Ac2[i], ((float) 100 * Ac2[i] / (sum * 8))); }
fprintf(pfdLogFreq, "\nTotal = %d\n\n", sum * 4); for (i = 0; i < 4; i++) { fprintf(pfdLogFreq, "0x%02X (%03d) '%c' : %8d - %04.2f %%\n", i, i, (isgraph(i) ? i : ' '), Ac4[i], ((float) 100 * Ac4[i] / (sum * 4))); }
fprintf(pfdLogFreq, "\nTotal = %d\n\n", sum * 2); for (i = 0; i < 16; i++) { fprintf(pfdLogFreq, "0x%02X (%03d) '%c' : %8d - %04.2f %%\n", i, i, (isgraph(i) ? i : ' '), Ac16[i], ((float) 100 * Ac16[i] / (sum * 2))); }
fprintf(pfdLogFreq, "\nTotal = %d\n\n", sum); for (i = 0; i < 256; i++) { fprintf(pfdLogFreq, "0x%02X (%03d) '%c' : %8d - %04.2f %%\n", i, i, (isgraph(i) ? i : ' '), Ac256[i], ((float) 100 * Ac256[i] / sum)); }
fclose(pfdBinAc256); fclose(pfdBinAc16); fclose(pfdBinAc4); fclose(pfdBinAc2);
fclose(pfdLogFreq); fclose(pfdLog);
#endif
/* Si tout s'est bien pass�, on renvoie le r�sultat en indiquant
qu'il est compress� (DictVersion != 0xFF) */ /* Allocation de la m�moire pour le certificat */ if (pCompCert->usLen < TryCompCert.usLen + 1) { if (TryCompCert.pData) { GMEM_Free(TryCompCert.pData); TryCompCert.pData = NULL_PTR; } if (TryUncompCert.pData) { GMEM_Free(TryUncompCert.pData); TryUncompCert.pData = NULL_PTR; }
pCompCert->usLen = TryCompCert.usLen + 1; if (pCompCert->pData) { return(RV_BUFFER_TOO_SMALL); } else { return(RV_SUCCESS); } }
pCompCert->usLen = TryCompCert.usLen + 1; if (pCompCert->pData) { pCompCert->pData[0] = DictVersion; memcpy(&pCompCert->pData[1], TryCompCert.pData, TryCompCert.usLen); } if (TryCompCert.pData) { GMEM_Free(TryCompCert.pData); TryCompCert.pData = NULL_PTR; } if (TryUncompCert.pData) { GMEM_Free(TryUncompCert.pData); TryUncompCert.pData = NULL_PTR; }
if (pCert->usLen != TryUncompCert.usLen) { return(RV_BLOC_TOO_LONG); } return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Uncompress(BLOC *pCompCert,* BLOC *pUncompCert* )** Description : Fonction de m�ta-d�compression visible depuis l'ext�rieur.* Retourne le bloc original (entr�e de la fonction CC_Compress)* sous r�serve toutefois d'une version ad�quate du dictionnaire.** Remarks : Le champ pData du bloc d'entr�e a �t� allou� par la fonction appelant.* Le champ pData du bloc de sortie est allou� ici. Il doit �tre* d�sallou� par la fonction appelant (sauf si erreur).* Le comportement est impr�visible dans le cas o� le bloc d'entr�e* n'est pas le bloc de sortie d'un appel � la fonction CC_Compress.** In : *pCompCert : Bloc � m�ta-d�compresser** Out : *pUncompCert : Bloc 'm�ta-d�compress�'* (ou vide si RV_BAD_DICTIONARY) ** Responses : RV_SUCCESS : All is OK.* RV_BAD_DICTIONARY : La version du dictionnaire utilis�e pour la* d�compression est plus ancienne que celle* utilis�e pour la compression.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s lors de* la d�compression.********************************************************************************/int CC_Uncompress(BLOC *pCompCert, BLOC *pUncompCert )
{ int resp;
BLOC TempCompCert, TempUncompCert;
if (pCompCert->pData[0] == TAG_COMPRESSION_FAILED) { /* Allocation de la m�moire pour le certificat
On pourrait se contenter de ne retourner que la zone m�moire � partir de l'octet 1 mais la fonction de d�compression est sens�e toujours allouer la zone dans laquelle elle renvoie le d�compress� */
if(pUncompCert->usLen < pCompCert->usLen - 1) { pUncompCert->usLen = pCompCert->usLen - 1; if (pUncompCert->pData) { return(RV_BUFFER_TOO_SMALL); } else { return(RV_SUCCESS); } }
pUncompCert->usLen = pCompCert->usLen - 1; if (pUncompCert->pData) { memcpy(pUncompCert->pData, &pCompCert->pData[1], pUncompCert->usLen); } return (RV_SUCCESS); } else if (pCompCert->pData[0] <= DictVersion) { TempCompCert.pData = &pCompCert->pData[1]; TempCompCert.usLen = pCompCert->usLen - 1;
TempUncompCert.usLen = 0; resp = CC_Uncomp(&TempCompCert, &TempUncompCert); if (resp == RV_SUCCESS) { if(pUncompCert->usLen < TempUncompCert.usLen) { GMEM_Free(TempUncompCert.pData);
pUncompCert->usLen = TempUncompCert.usLen; if (pUncompCert->pData) { return(RV_BUFFER_TOO_SMALL); } else { return(RV_SUCCESS); } }
pUncompCert->usLen = TempUncompCert.usLen; if (pUncompCert->pData) { memcpy(pUncompCert->pData, TempUncompCert.pData, TempUncompCert.usLen); } GMEM_Free(TempUncompCert.pData); } return (resp); } else { return (RV_BAD_DICTIONARY); }}
/*******************************************************************************
* int CC_Comp(BLOC *pCertificate,* BLOC *pCompressedCertificate* )** Description : Fonction interne de compression d'un certificat.** Remarks : Le champ pData du bloc d'entr�e a �t� allou� par la fonction appelant.* Le champ pData du bloc de sortie est allou� ici. Il doit �tre* d�sallou� par la fonction appelant (sauf si erreur).** In : *pCertificate : Bloc � compresser** Out : *pCompressedCertificate : Bloc compress�** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Comp(BLOC *pCertificate, BLOC *pCompressedCertificate )
{ ASN1 Cert, tbsCert, signatureAlgo, signature; BLOC TmpCompCert, tbsCertEncoded, signatureAlgoEncoded, signatureEncoded; BYTE *pCurrent; int rv;
/* Eclatement du certificat en ses trois composants principaux */ dwPtrMax = pCertificate->pData + pCertificate->usLen; Cert.Asn1.pData = pCertificate->pData; rv = CC_ExtractContent(&Cert); if (rv != RV_SUCCESS) return rv; if (Cert.Asn1.usLen != pCertificate->usLen) { return(RV_INVALID_DATA); }
tbsCert.Asn1.pData = Cert.Content.pData; rv = CC_ExtractContent(&tbsCert); if (rv != RV_SUCCESS) return rv;
signatureAlgo.Asn1.pData = tbsCert.Content.pData + tbsCert.Content.usLen; rv = CC_ExtractContent(&signatureAlgo); if (rv != RV_SUCCESS) return rv;
signature.Asn1.pData = signatureAlgo.Content.pData + signatureAlgo.Content.usLen; rv = CC_ExtractContent(&signature); if (rv != RV_SUCCESS) return rv;
ASSERT(signature.Content.pData + signature.Content.usLen == Cert.Content.pData + Cert.Content.usLen);
/* Elaboration des composants principaux compress�s */
/* Les pData des blocs *Encoded sont allou�s par les fonctions CC_Encode_*.
Ils sont lib�r�s dans cette fonction apr�s usage */
tbsCertEncoded.pData = NULL; signatureAlgoEncoded.pData = NULL; signatureEncoded.pData = NULL;
rv = CC_Encode_TBSCertificate(&tbsCert.Content, &tbsCertEncoded); if (rv != RV_SUCCESS) goto err;
rv = CC_Encode_AlgorithmIdentifier(&signatureAlgo.Content, &signatureAlgoEncoded); if (rv != RV_SUCCESS) goto err;
rv = CC_Encode_Signature(&signature.Content, &signatureEncoded); if (rv != RV_SUCCESS) goto err;
/* Reconstruction du certificat compress� � partir de ses composants */
TmpCompCert.usLen = tbsCertEncoded.usLen + signatureAlgoEncoded.usLen + signatureEncoded.usLen;
/* A d�sallouer par le programme appelant */ if ((TmpCompCert.pData = GMEM_Alloc(TmpCompCert.usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = TmpCompCert.pData;
memcpy(pCurrent, tbsCertEncoded.pData, tbsCertEncoded.usLen); GMEM_Free(tbsCertEncoded.pData); pCurrent += tbsCertEncoded.usLen;
memcpy(pCurrent, signatureAlgoEncoded.pData, signatureAlgoEncoded.usLen); GMEM_Free(signatureAlgoEncoded.pData); pCurrent += signatureAlgoEncoded.usLen;
memcpy(pCurrent, signatureEncoded.pData, signatureEncoded.usLen); GMEM_Free(signatureEncoded.pData); pCurrent += signatureEncoded.usLen;
/* Et maintenant on compresse le certificat compress� !! */
#ifdef _GLOBAL_COMPRESSION
rv = CC_RawEncode(&TmpCompCert, pCompressedCertificate, FALSE); GMEM_Free(TmpCompCert.pData); if (rv != RV_SUCCESS) goto err;#else
*pCompressedCertificate = TmpCompCert;#endif
return(RV_SUCCESS);
err: GMEM_Free(tbsCertEncoded.pData); GMEM_Free(signatureAlgoEncoded.pData); GMEM_Free(signatureEncoded.pData);
return (rv);
}
/*******************************************************************************
* int CC_Uncomp(BLOC *pCompressedCertificate,* BLOC *pUncompressedCertificate* )** Description : Fonction interne de d�compression d'un certificat.** Remarks : Le champ pData du bloc d'entr�e a �t� allou� par la fonction appelant.* Le champ pData du bloc de sortie est allou� ici. Il doit �tre* d�sallou� par la fonction appelant (sauf si erreur).** In : *pCertificate : Bloc � compresser** Out : *pCompressedCertificate : Bloc compress�** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Uncomp(BLOC *pCompressedCertificate, BLOC *pUncompressedCertificate )
{ ASN1 Cert, tbsCert, signatureAlgo, signature; BLOC TmpCompCert; BYTE *pCurrent; int rv; USHORT Length;
tbsCert.Asn1.pData = NULL; signatureAlgo.Asn1.pData = NULL; signature.Asn1.pData = NULL;
#ifdef _GLOBAL_COMPRESSION
/* Length est ici inutile */ rv = CC_RawDecode(pCompressedCertificate->pData, &TmpCompCert, &Length, FALSE); if (rv != RV_SUCCESS) return rv;#else
TmpCompCert = *pCompressedCertificate;#endif
/* D�codage des diff�rents composants du certificat */ /* CC_Decode_* et cc_BuildAsn1 allouent les pData de leurs arguments de
sortie. Ces zones sont � d�sallouer � ce niveau apr�s usage. */
pCurrent = TmpCompCert.pData;
rv = CC_Decode_TBSCertificate(pCurrent, &tbsCert.Content, &Length); if (rv != RV_SUCCESS) goto err; tbsCert.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&tbsCert); GMEM_Free(tbsCert.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length; rv = CC_Decode_AlgorithmIdentifier(pCurrent, &signatureAlgo.Content, &Length); if (rv != RV_SUCCESS) goto err; signatureAlgo.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&signatureAlgo); GMEM_Free(signatureAlgo.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length; rv = CC_Decode_Signature(pCurrent, &signature.Content, &Length); if (rv != RV_SUCCESS) goto err; signature.Tag = TAG_BIT_STRING; rv = CC_BuildAsn1(&signature); GMEM_Free(signature.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
ASSERT(pCurrent == TmpCompCert.pData + TmpCompCert.usLen);
#ifdef _GLOBAL_COMPRESSION
GMEM_Free(TmpCompCert.pData);#endif
/* Reconstruction de l'enveloppe Asn1 du certificat */
/* A d�sallouer � ce niveau apr�s usage */ Cert.Content.usLen = tbsCert.Asn1.usLen + signatureAlgo.Asn1.usLen + signature.Asn1.usLen;
if ((Cert.Content.pData = GMEM_Alloc(Cert.Content.usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = Cert.Content.pData;
memcpy(pCurrent, tbsCert.Asn1.pData, tbsCert.Asn1.usLen); GMEM_Free(tbsCert.Asn1.pData); pCurrent += tbsCert.Asn1.usLen;
memcpy(pCurrent, signatureAlgo.Asn1.pData, signatureAlgo.Asn1.usLen); GMEM_Free(signatureAlgo.Asn1.pData); pCurrent += signatureAlgo.Asn1.usLen;
memcpy(pCurrent, signature.Asn1.pData, signature.Asn1.usLen); GMEM_Free(signature.Asn1.pData); pCurrent += signature.Asn1.usLen;
Cert.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&Cert); GMEM_Free(Cert.Content.pData); if (rv != RV_SUCCESS) return rv;
*pUncompressedCertificate = Cert.Asn1;
return(RV_SUCCESS);
err: GMEM_Free(tbsCert.Asn1.pData); GMEM_Free(signatureAlgo.Asn1.pData); GMEM_Free(signature.Asn1.pData);
return(rv);}
/*******************************************************************************
* int CC_ExtractContent(ASN1 *pAsn1)** Description : Extrait d'un bloc Asn1 (pAsn1->Asn1) son contenu en �laguant son* enrobage (identifier bytes, length bytes) et le place dans le* bloc pAsn1->Content.** Remarks : Le champ Asn1.pData a �t� allou� par la fonction appelant.** In : pAsn1->Asn1.pData** Out : Les champs suivants sont renseign�s (si RV_SUCCESS) :* - Tag* - Asn1.usLen* - Content.usLen* - Content.pData (pas d'allocation : on fait pointer sur la partie* ad�quate du contenu de Asn1.pData)** Responses : RV_SUCCESS : All is OK.* RV_INVALID_DATA : Le format du bloc Asn1 n'est pas support�.********************************************************************************/int CC_ExtractContent(ASN1 *pAsn1)
{ BYTE *pData; int NbBytes, i;
pData = pAsn1->Asn1.pData;
if ((pData[0] & 0x1F) == 0x1F) { /* High-tag-number : non support� */ return(RV_INVALID_DATA); } else { pAsn1->Tag = pData[0]; }
if (pData[1] == 0x80) { /* Constructed, indefinite-length method : non support� */ return(RV_INVALID_DATA); } else if (pData[1] > 0x82) { /* Constructed, definite-length method : longueur trop grande */ return(RV_INVALID_DATA); } else if (pData[1] < 0x80) { /* Primitive, definite-length method */ pAsn1->Content.usLen = pData[1]; pAsn1->Content.pData = &pData[2];
pAsn1->Asn1.usLen = pAsn1->Content.usLen + 2;
/* Looking for memory violation */ if (pData + pAsn1->Content.usLen + 2 > dwPtrMax) { return(RV_INVALID_DATA); } } else { /* Constructed, definite-length method */
NbBytes = pData[1] & 0x7F; ASSERT(NbBytes <= 2);
pAsn1->Content.usLen = 0; for (i = 0; i < NbBytes; i++) { pAsn1->Content.usLen = (pAsn1->Content.usLen << 8) + pData[2+i]; }
/* Looking for memory violation */ if (pData + pAsn1->Content.usLen+2+NbBytes > dwPtrMax) { return(RV_INVALID_DATA); }
pAsn1->Content.pData = &pData[2+NbBytes];
pAsn1->Asn1.usLen = pAsn1->Content.usLen + 2 + NbBytes; }
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_BuildAsn1(ASN1 *pAsn1)** Description : Reconstruit un bloc Asn1 (pAsn1->Asn1) � partir de son contenu* (pAsn1->Content) et de son Tag suppos� sp�cifi� (pAsn1->Tag)* en synth�tisant son enrobage (identifier bytes, length bytes).** Remarks : Le champ Content.pData a �t� allou� par la fonction appelant.* Seulement la forme 'low-tag-number' (tag sur un seul octet) est* support�e.** In : pAsn1->Content.usLen* pAsn1->Content.pData* pAsn1->Tag** Out : Les champs suivants sont renseign�s (si RV_SUCCESS) :* - Asn1.usLen* - Asn1.pData (allou� ici, � lib�rer par la fonction appelant)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.********************************************************************************/int CC_BuildAsn1(ASN1 *pAsn1)
{ if (pAsn1->Content.usLen < 0x0080) { pAsn1->Asn1.usLen = pAsn1->Content.usLen + 2;
if ((pAsn1->Asn1.pData = GMEM_Alloc(pAsn1->Asn1.usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pAsn1->Asn1.pData[0] = (BYTE) pAsn1->Tag; pAsn1->Asn1.pData[1] = (BYTE) pAsn1->Content.usLen; memcpy(&(pAsn1->Asn1.pData[2]), pAsn1->Content.pData, pAsn1->Content.usLen); } else { if (pAsn1->Content.usLen < 0x0100) { pAsn1->Asn1.usLen = pAsn1->Content.usLen + 3;
if ((pAsn1->Asn1.pData = GMEM_Alloc(pAsn1->Asn1.usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pAsn1->Asn1.pData[0] = pAsn1->Tag; pAsn1->Asn1.pData[1] = 0x81; pAsn1->Asn1.pData[2] = (BYTE)pAsn1->Content.usLen; memcpy(&(pAsn1->Asn1.pData[3]), pAsn1->Content.pData, pAsn1->Content.usLen); } else { pAsn1->Asn1.usLen = pAsn1->Content.usLen + 4;
if ((pAsn1->Asn1.pData = GMEM_Alloc(pAsn1->Asn1.usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pAsn1->Asn1.pData[0] = pAsn1->Tag; pAsn1->Asn1.pData[1] = 0x82; pAsn1->Asn1.pData[2] = pAsn1->Content.usLen >> 8; pAsn1->Asn1.pData[3] = pAsn1->Content.usLen & 0x00FF; memcpy(&(pAsn1->Asn1.pData[4]), pAsn1->Content.pData, pAsn1->Content.usLen); } }
return(RV_SUCCESS);}
/*******************************************************************************
* int SearchDataByIndex(USHORT usIndex,* BYTE *pDict,* BLOC *pOutBloc* )** Description : Recherche l'entr�e (mot/phrase) dans le dictionnaire dont* l'index est sp�cifi� en entr�e.** Remarks : Le format du dictionnaire est le suivant :** - 2 octets : le nombre d'entr�es* - 2 octets : la longueur totale du dictionnaire** - 2 octets : I0, l'index de l'entr�e 0* - 2 octets : L0, la longueur de l'entr�e 0* - L0 octets : l'entr�e 0** - 2 octets : I1, l'index de l'entr�e 1* - 2 octets : L1, la longueur de l'entr�e 1* - L1 octets : l'entr�e 1** - ........** In : usIndex : l'index du mot/phrase recherch�* pDict : pointe sur le dictionnaire charg� en m�moire** Out : pOutBloc : l'entr�e correspondant � l'index** Responses : RV_SUCCESS : All is OK.* RV_BAD_DICTIONARY : Aucune entr�e ayant le bon index n'a �t�* trouv�e dans le dictionnaire.********************************************************************************/int SearchDataByIndex(USHORT usIndex, BYTE *pDict, BLOC *pOutBloc )
{ BYTE *pCurrent; BOOL bFound = FALSE; USHORT i, usLength, usCount, usCurrent;
usCount = *(USHORT *)pDict; //memcpy(&usCount, pDict, sizeof(usCount));
pCurrent = pDict + 4;
bFound = FALSE;
for (i = 0; i < usCount; i++) { usCurrent = *(USHORT UNALIGNED *)pCurrent; //memcpy(&usCurrent, (USHORT *) pCurrent, 2);
pCurrent += 2; if (usCurrent == usIndex) { bFound = TRUE; break; } usLength = *(USHORT UNALIGNED *)pCurrent; //memcpy(&usLength, (USHORT *) pCurrent, 2);
pCurrent += (2 + usLength); } if (!bFound) { return(RV_BAD_DICTIONARY); }
usLength = *(USHORT UNALIGNED *)pCurrent; //memcpy(&usLength, (USHORT *) pCurrent, 2);
pCurrent += 2;
pOutBloc->pData = pCurrent; pOutBloc->usLen = usLength;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_RawEncode(BLOC *pInBloc,* BLOC *pOutBloc,* BOOL bUseDictionary* )** Description : Traite le bloc d'entr�e comme une donn�e terminale dans le* processus d'extractions successives des enrobages Asn1.* Le but est ici de compresser au maximum ce bloc sans faire* aucune hypoth�se sur sa structure Asn1. Pour ce faire, on* commence (si bUseDictionary == TRUE) par remplacer chaque* mot/phrase du dictionnaire rencontr� par son index pr�c�d� d'un* caract�re d'�chappement, puis on applique � la donn�e r�siduelle* successivement chaque algorithme de compression statistique pour* n'en retenir que le meilleur. La sortie est le meilleur* compress� du r�sidu pr�c�d� d'un header codant le num�ro de* l'algo ainsi que la longueur du compress�. ** Remarks :** In : pInBloc : le bloc � encoder* bUseDictionary : on peut ne pas utiliser le dictionnaire** Out : pOutBloc : le bloc encod� (m�moire allou�e ici � lib�rer par le* programme appelant)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* RV_INVALID_DATA : Le meilleur compress� du r�sidu est trop long.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_RawEncode(BLOC *pInBloc, BLOC *pOutBloc, BOOL bUseDictionary )
{ BLOC OldBloc, NewBloc, CompBloc, BestBloc; BOOL bFound; BYTE *pCurrent, *pToCurrent, *pFromCurrent, *pData, BestAlgoId; int// value,
rv; USHORT pos, usEscapeCount, usIndex, usLength, usCount, usCurrent;
/* Il peut �tre int�ressant de ne pas utiliser le dictionnaire si on sait
qu'il ne va pas servir car cela evite de doubler les 0xFF pour rien */
if (bUseDictionary == FALSE) { OldBloc.usLen = pInBloc->usLen; if ((OldBloc.pData = GMEM_Alloc(OldBloc.usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } memcpy(OldBloc.pData, pInBloc->pData, OldBloc.usLen); } else { /* On recopie le bloc d'entr�e dans un bloc de travail en doublant les 'escape' */
pCurrent = pInBloc->pData; usEscapeCount = 0; for (pos = 0; pos < pInBloc->usLen; pos++) { if (*pCurrent == ESCAPE_CHAR) { usEscapeCount++; } pCurrent++; }
OldBloc.usLen = pInBloc->usLen + usEscapeCount; if ((OldBloc.pData = GMEM_Alloc(OldBloc.usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pFromCurrent = pInBloc->pData; pToCurrent = OldBloc.pData; for (pos = 0; pos < pInBloc->usLen; pos++) { if ((*pToCurrent = *pFromCurrent) == ESCAPE_CHAR) { pToCurrent++; *pToCurrent = ESCAPE_CHAR; } pFromCurrent++; pToCurrent++; }
/* Si un dictionnaire existe, on l'utilise pour coder ses entr�es rencontr�es */
if (pDictMemory != NULL_PTR) { pCurrent = pDictMemory;
memcpy(&usCount, pCurrent, sizeof(usCount)); pCurrent += 4;
for (usCurrent = 0; usCurrent < usCount; usCurrent++) { memcpy(&usIndex, pCurrent, sizeof(usIndex)); pCurrent += 2;
memcpy(&usLength, pCurrent, sizeof(usLength)); pCurrent += 2;
if (usLength <= OldBloc.usLen) { bFound = FALSE; for (pos = 0; pos < OldBloc.usLen - usLength + 1; pos++) { if (memcmp(pCurrent, OldBloc.pData + pos, usLength) == 0) { bFound = TRUE; break; } }
if (bFound) { if (usIndex < 0x80) { NewBloc.usLen = OldBloc.usLen - usLength + 2; if ((NewBloc.pData = GMEM_Alloc(NewBloc.usLen)) == NULL_PTR) { GMEM_Free(OldBloc.pData); return(RV_MALLOC_FAILED); } memcpy(NewBloc.pData, OldBloc.pData, pos); NewBloc.pData[pos] = ESCAPE_CHAR; NewBloc.pData[pos + 1] = (BYTE) usIndex; memcpy(NewBloc.pData + pos + 2, OldBloc.pData + pos + usLength, OldBloc.usLen - pos - usLength); GMEM_Free(OldBloc.pData); } else { NewBloc.usLen = OldBloc.usLen - usLength + 3; if ((NewBloc.pData = GMEM_Alloc(NewBloc.usLen)) == NULL_PTR) { GMEM_Free(OldBloc.pData); return(RV_MALLOC_FAILED); } memcpy(NewBloc.pData, OldBloc.pData, pos); NewBloc.pData[pos] = ESCAPE_CHAR; NewBloc.pData[pos + 1] = (BYTE) (usIndex >> 8) | 0x80; NewBloc.pData[pos + 2] = (BYTE) (usIndex & 0x00FF); memcpy(NewBloc.pData + pos + 3, OldBloc.pData + pos + usLength, OldBloc.usLen - pos - usLength); GMEM_Free(OldBloc.pData); }
OldBloc = NewBloc; } }
pCurrent += usLength; } } }
#ifdef _STUDY
for (i = 0; i < OldBloc.usLen; i++) { value = OldBloc.pData[i]; Ac256[value]++;
Ac16[value & 0x0F]++; Ac16[(value & 0xF0) >> 4]++;
Ac4[value & 0x03]++; Ac4[(value & 0x0C) >> 2]++; Ac4[(value & 0x30) >> 4]++; Ac4[(value & 0xC0) >> 6]++;
Ac2[value & 0x01]++; value >>= 1; Ac2[value & 0x01]++; value >>= 1; Ac2[value & 0x01]++; value >>= 1; Ac2[value & 0x01]++; value >>= 1; Ac2[value & 0x01]++; value >>= 1; Ac2[value & 0x01]++; value >>= 1; Ac2[value & 0x01]++; value >>= 1; Ac2[value & 0x01]++; value >>= 1; }
fprintf(pfdLog, "\n"); for (i = 0; i < (OldBloc.usLen <= 8 ? OldBloc.usLen : 8); i++) { fprintf(pfdLog, "%02X", OldBloc.pData[i]); } fprintf(pfdLog, " ("); for (i = 0; i < (OldBloc.usLen <= 8 ? OldBloc.usLen : 8); i++) { fprintf(pfdLog, "%c", OldBloc.pData[i]); } fprintf(pfdLog, ")\n");
#endif
BestBloc = OldBloc; BestAlgoId = ALGO_NONE;
#ifdef _ALGO_1
rv = CC_GenericCompress(&OldBloc, &CompBloc, ALGO_ACFX8); if (rv == RV_MALLOC_FAILED) return rv; // The compression algorithm may return RV_COMPRESSION_FAILED when
// the compression algorithm wants to use MORE space than the input data.
// In such a case, the algorithm returns the raw data in the compressed block
if (CompBloc.usLen < BestBloc.usLen) { /* On pr�serve OldBloc.pData qui sert pour les autres algos */ if (BestBloc.pData != OldBloc.pData) { GMEM_Free(BestBloc.pData); } BestBloc = CompBloc; BestAlgoId = ALGO_ACFX8; } else { GMEM_Free(CompBloc.pData); }#endif
#ifdef _ALGO_2
rv = CC_GenericCompress(&OldBloc, &CompBloc, ALGO_ACAD8); if (rv == RV_MALLOC_FAILED) return rv; // The compression algorithm may return RV_COMPRESSION_FAILED when
// the compression algorithm wants to use MORE space than the input data.
// In such a case, the algorithm returns the raw data in the compressed block
if (CompBloc.usLen < BestBloc.usLen) { /* On pr�serve OldBloc.pData qui sert pour les autres algos */ if (BestBloc.pData != OldBloc.pData) { GMEM_Free(BestBloc.pData); } BestBloc = CompBloc; BestAlgoId = ALGO_ACAD8; } else { GMEM_Free(CompBloc.pData); }#endif
if (BestBloc.usLen < 0x1F) /* La valeur 0x1F peut engendrer 0xFF = ESCAPE_CHAR */ { if ((pData = GMEM_Alloc(BestBloc.usLen + 1)) == NULL_PTR) { GMEM_Free(BestBloc.pData); return(RV_MALLOC_FAILED); } else { pData[0] = (BestAlgoId << 5) | BestBloc.usLen; memcpy(&pData[1], BestBloc.pData, BestBloc.usLen);
pOutBloc->usLen = BestBloc.usLen + 1; pOutBloc->pData = pData;
GMEM_Free(BestBloc.pData); } } else if (BestBloc.usLen < 0x2000) { if ((pData = GMEM_Alloc(BestBloc.usLen + 3)) == NULL_PTR) { GMEM_Free(BestBloc.pData); return(RV_MALLOC_FAILED); } else { pData[0] = ESCAPE_CHAR; pData[1] = (BestAlgoId << 5) | (BestBloc.usLen >> 8); pData[2] = BestBloc.usLen & 0xFF; memcpy(&pData[3], BestBloc.pData, BestBloc.usLen);
pOutBloc->usLen = BestBloc.usLen + 3; pOutBloc->pData = pData;
GMEM_Free(BestBloc.pData); } } else { GMEM_Free(BestBloc.pData); return(RV_INVALID_DATA); }
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_RawDecode(BYTE *pInBloc,* BLOC *pOutBloc,* USHORT *pLength,* BOOL bUseDictionnary* )** Description : Transformation inverse de 'CC_RawEncode'. ** Remarks :** In : pInBloc : le bloc � d�coder* bUseDictionary : on peut ne pas utiliser le dictionnaire (doit* �tre consistent avec l'encodage)** Out : pOutBloc : le bloc d�cod� (m�moire allou�e ici � lib�rer par le* programme appelant)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_RawDecode(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength, BOOL bUseDictionary )
{ BLOC OldBloc, NewBloc, RecordBloc, CompData; BYTE AlgoId; int rv; USHORT pos, usIndex;
if (pInData[0] == ESCAPE_CHAR) { AlgoId = pInData[1] >> 5; CompData.usLen = ((pInData[1] & 0x1F) << 8) + pInData[2]; CompData.pData = &(pInData[3]); *pLength = CompData.usLen + 3; } else { AlgoId = pInData[0] >> 5; CompData.usLen = pInData[0] & 0x1F; CompData.pData = &(pInData[1]); *pLength = CompData.usLen + 1; }
rv = CC_GenericUncompress(&CompData, &OldBloc, AlgoId); if (rv != RV_SUCCESS) return rv;
if (bUseDictionary) { pos = 0; while (pos < OldBloc.usLen) { if (OldBloc.pData[pos] == ESCAPE_CHAR) { if (OldBloc.pData[pos + 1] == ESCAPE_CHAR) { NewBloc.usLen = OldBloc.usLen - 1; if ((NewBloc.pData = GMEM_Alloc(NewBloc.usLen)) == NULL_PTR) { GMEM_Free(OldBloc.pData); return(RV_MALLOC_FAILED); }
memcpy(NewBloc.pData, OldBloc.pData, pos); NewBloc.pData[pos] = ESCAPE_CHAR; memcpy(NewBloc.pData + pos + 1, OldBloc.pData + pos + 2, OldBloc.usLen - pos - 2);
GMEM_Free(OldBloc.pData); OldBloc = NewBloc;
pos++; } else if (OldBloc.pData[pos + 1] < 0x80) { usIndex = OldBloc.pData[pos + 1];
rv = SearchDataByIndex(usIndex, pDictMemory, &RecordBloc); if (rv != RV_SUCCESS) { GMEM_Free(OldBloc.pData); return rv; }
NewBloc.usLen = OldBloc.usLen - 2 + RecordBloc.usLen; if ((NewBloc.pData = GMEM_Alloc(NewBloc.usLen)) == NULL_PTR) { GMEM_Free(OldBloc.pData); return(RV_MALLOC_FAILED); }
memcpy(NewBloc.pData, OldBloc.pData, pos); memcpy(NewBloc.pData + pos, RecordBloc.pData, RecordBloc.usLen); memcpy(NewBloc.pData + pos + RecordBloc.usLen, OldBloc.pData + pos + 2, OldBloc.usLen - pos - 2);
GMEM_Free(OldBloc.pData); OldBloc = NewBloc;
pos += RecordBloc.usLen; } else { usIndex = ((OldBloc.pData[pos + 1] & 0x7F) << 8) + OldBloc.pData[pos + 2];
rv = SearchDataByIndex(usIndex, pDictMemory, &RecordBloc); if (rv != RV_SUCCESS) { GMEM_Free(OldBloc.pData); return rv; }
NewBloc.usLen = OldBloc.usLen - 3 + RecordBloc.usLen; if ((NewBloc.pData = GMEM_Alloc(NewBloc.usLen)) == NULL_PTR) { GMEM_Free(OldBloc.pData); return(RV_MALLOC_FAILED); }
memcpy(NewBloc.pData, OldBloc.pData, pos); memcpy(NewBloc.pData + pos, RecordBloc.pData, RecordBloc.usLen); memcpy(NewBloc.pData + pos + RecordBloc.usLen, OldBloc.pData + pos + 3, OldBloc.usLen - pos - 3);
GMEM_Free(OldBloc.pData); OldBloc = NewBloc;
pos += RecordBloc.usLen; } } else { pos++; } } }
*pOutBloc = OldBloc;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_GenericCompress(BLOC *pUncompBloc,* BLOC *pCompBloc,* BYTE AlgoId* )** Description : Effectue une compression statistique sur la donn�e d'entr�e en* utilisant l'algorithme sp�cifi� dans AlgoId.** Remarks : Si l'algorithme sp�cifi� n'est pas impl�ment�, renvoie la donn�e* originale.** In : pUncompBloc : la donn�e � compresser* AlgoId : num�ro de l'algorithme � employer** Out : pCompBloc : la donn�e compress�e (m�moire allou�e ici � lib�rer* par la fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.********************************************************************************/int CC_GenericCompress(BLOC *pUncompBloc, BLOC *pCompBloc, BYTE AlgoId )
{ switch(AlgoId) {#ifdef _ALGO_1
case ALGO_ACFX8 : /* Arithmetic coding, byte oriented, fixed model */ { if (AcFx8_Encode(pUncompBloc, pCompBloc) != RV_SUCCESS) { return(RV_INVALID_DATA); } break; }#endif
#ifdef _ALGO_2
case ALGO_ACAD8 : /* Arithmetic coding, byte oriented, adaptative model */ { if (AcAd8_Encode(pUncompBloc, pCompBloc) != RV_SUCCESS) { return(RV_INVALID_DATA); } break; }#endif
default : { if ((pCompBloc->pData = GMEM_Alloc(pUncompBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } pCompBloc->usLen = pUncompBloc->usLen; memcpy(pCompBloc->pData, pUncompBloc->pData, pCompBloc->usLen); break; } }
#ifdef _STUDY
fprintf(pfdLog, "Algo : %d | 0x%04x (%04d) -> 0x%04x (%04d)", AlgoId, pUncompBloc->usLen, pUncompBloc->usLen, pCompBloc->usLen, pCompBloc->usLen ); if (pUncompBloc->usLen > pCompBloc->usLen) { fprintf(pfdLog, " | %d", pCompBloc->usLen - pUncompBloc->usLen); } fprintf(pfdLog, "\n");#endif
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_GenericUncompress(BLOC *pCompBloc,* BLOC *pUncompBloc,* BYTE AlgoID* )** Description : Effectue une d�compression statistique sur la donn�e d'entr�e en* utilisant l'algorithme sp�cifi� dans AlgoId.** Remarks : ** In : pUncompBloc : la donn�e � d�compresser* AlgoId : num�ro de l'algorithme � employer** Out : pCompBloc : la donn�e d�compress�e (m�moire allou�e ici �* lib�rer par la fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* RV_INVALID_DATA : L'algorithme sp�cifi� n'existe pas.********************************************************************************/int CC_GenericUncompress(BLOC *pCompBloc, BLOC *pUncompBloc, BYTE AlgoId )
{ switch(AlgoId) { case ALGO_NONE : pUncompBloc->usLen = pCompBloc->usLen; if ((pUncompBloc->pData = GMEM_Alloc(pUncompBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } memcpy(pUncompBloc->pData, pCompBloc->pData, pUncompBloc->usLen); break;
#ifdef _ALGO_1
case ALGO_ACFX8 : if (AcFx8_Decode(pCompBloc, pUncompBloc) != RV_SUCCESS) { return(RV_INVALID_DATA); } break;#endif
#ifdef _ALGO_2
case ALGO_ACAD8 : if (AcAd8_Decode(pCompBloc, pUncompBloc) != RV_SUCCESS) { return(RV_INVALID_DATA); } break;#endif
default : return(RV_INVALID_DATA); break; }
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_TBSCertificate(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type TBSCertificate.* Ceci consiste en l'�clatement en ses diff�rents composants,* leurs d�senrobages Asn1 et leurs encodages respectifs, et la* concat�nation de ces r�sultats.** Remarks : Certaines parties d'un TBSCertificate sont optionnelles. On* d�tecte pour chacune d'elles si elle est pr�sente et on* l'indique dans des bits r�serv�s d'un octet de contr�le plac�* en d�but du r�sultat encod�. Cet octet de contr�le contient* �galement le num�ro de version X.509 du certificat.** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_TBSCertificate(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 serialNumberPart, signaturePart, issuerPart, validityPart, subjectPart, subjectPKInfoPart, issuerUIDPart, subjectUIDPart, extensionsPart; BLOC serialNumberEncoded, signatureEncoded, issuerEncoded, validityEncoded, subjectEncoded, subjectPKInfoEncoded, issuerUIDEncoded, subjectUIDEncoded, extensionsEncoded; BOOL bVersionPresent = FALSE, bIssuerUIDPresent = FALSE, bSubjectUIDPresent = FALSE, bExtensionsPresent = FALSE; BYTE *pCurrent; int rv; USHORT usVersion = 0;
/* D�composition du tbsCertificate en ses diff�rents composants */ pCurrent = pInBloc->pData;
if (pCurrent[0] == TAG_OPTION_VERSION) { /* On a alors A0 03 02 01 vv o� vv est la version */ bVersionPresent = TRUE; usVersion = pCurrent[4]; pCurrent += 5; }
serialNumberPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&serialNumberPart); if (rv != RV_SUCCESS) return rv; pCurrent = serialNumberPart.Content.pData + serialNumberPart.Content.usLen;
signaturePart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&signaturePart); if (rv != RV_SUCCESS) return rv; pCurrent = signaturePart.Content.pData + signaturePart.Content.usLen;
issuerPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&issuerPart); if (rv != RV_SUCCESS) return rv; pCurrent = issuerPart.Content.pData + issuerPart.Content.usLen;
validityPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&validityPart); if (rv != RV_SUCCESS) return rv; pCurrent = validityPart.Content.pData + validityPart.Content.usLen;
subjectPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&subjectPart);#ifdef _STUDY
// fprintf(pfdLog, "Subject : %d octets\n", subjectPart.Asn1.usLen);
#endif
if (rv != RV_SUCCESS) return rv; pCurrent = subjectPart.Content.pData + subjectPart.Content.usLen;
subjectPKInfoPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&subjectPKInfoPart); if (rv != RV_SUCCESS) return rv; pCurrent = subjectPKInfoPart.Content.pData + subjectPKInfoPart.Content.usLen;
if (pCurrent[0] == TAG_OPTION_ISSUER_UID) { bIssuerUIDPresent = TRUE;
issuerUIDPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&issuerUIDPart); if (rv != RV_SUCCESS) return rv; pCurrent = issuerUIDPart.Content.pData + issuerUIDPart.Content.usLen; }
if (pCurrent[0] == TAG_OPTION_SUBJECT_UID) { bSubjectUIDPresent = TRUE;
subjectUIDPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&subjectUIDPart); if (rv != RV_SUCCESS) return rv; pCurrent = subjectUIDPart.Content.pData + subjectUIDPart.Content.usLen; }
if (pCurrent[0] == TAG_OPTION_EXTENSIONS) { bExtensionsPresent = TRUE;
extensionsPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&extensionsPart); if (rv != RV_SUCCESS) return rv; pCurrent = extensionsPart.Content.pData + extensionsPart.Content.usLen; }
/* Encodages des diff�rents composants et calcul de la longueur n�cessaire */
/* Les pData des blocs *Encoded sont allou�s par les fonctions CC_Encode_*.
Ils sont lib�r�s dans cette fonction apr�s usage */
serialNumberEncoded.pData = NULL; signatureEncoded.pData = NULL; issuerEncoded.pData = NULL; validityEncoded.pData = NULL; subjectEncoded.pData = NULL; subjectPKInfoEncoded.pData= NULL; issuerUIDEncoded.pData = NULL; subjectUIDEncoded.pData = NULL; extensionsEncoded.pData = NULL;
pOutBloc->usLen = 1;
rv = CC_Encode_CertificateSerialNumber(&serialNumberPart.Content, &serialNumberEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += serialNumberEncoded.usLen;
rv = CC_Encode_AlgorithmIdentifier(&signaturePart.Content, &signatureEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += signatureEncoded.usLen;
rv = CC_Encode_Name(&issuerPart.Content, &issuerEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += issuerEncoded.usLen;
rv = CC_Encode_Validity(&validityPart.Content, &validityEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += validityEncoded.usLen;
rv = CC_Encode_Name(&subjectPart.Content, &subjectEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += subjectEncoded.usLen;
rv = CC_Encode_SubjectPKInfo(&subjectPKInfoPart.Content, &subjectPKInfoEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += subjectPKInfoEncoded.usLen;
if (bIssuerUIDPresent == TRUE) { rv = CC_Encode_UniqueIdentifier(&issuerUIDPart.Content, &issuerUIDEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += issuerUIDEncoded.usLen; }
if (bSubjectUIDPresent == TRUE) { rv = CC_Encode_UniqueIdentifier(&subjectUIDPart.Content, &subjectUIDEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += subjectUIDEncoded.usLen; }
if (bExtensionsPresent == TRUE) { rv = CC_Encode_Extensions(&extensionsPart.Content, &extensionsEncoded); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += extensionsEncoded.usLen; }
/* Reconstruction � partir des composants */
/* A d�sallouer par le programme appelant */ if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
*pCurrent = 0x80 * (bVersionPresent == TRUE) + 0x40 * (bIssuerUIDPresent == TRUE) + 0x20 * (bSubjectUIDPresent == TRUE) + 0x10 * (bExtensionsPresent == TRUE) + usVersion; pCurrent++;
memcpy(pCurrent, serialNumberEncoded.pData, serialNumberEncoded.usLen); GMEM_Free(serialNumberEncoded.pData); pCurrent += serialNumberEncoded.usLen;
memcpy(pCurrent, signatureEncoded.pData, signatureEncoded.usLen); GMEM_Free(signatureEncoded.pData); pCurrent += signatureEncoded.usLen;
memcpy(pCurrent, issuerEncoded.pData, issuerEncoded.usLen); GMEM_Free(issuerEncoded.pData); pCurrent += issuerEncoded.usLen;
memcpy(pCurrent, validityEncoded.pData, validityEncoded.usLen); GMEM_Free(validityEncoded.pData); pCurrent += validityEncoded.usLen;
memcpy(pCurrent, subjectEncoded.pData, subjectEncoded.usLen); GMEM_Free(subjectEncoded.pData); pCurrent += subjectEncoded.usLen;
memcpy(pCurrent, subjectPKInfoEncoded.pData, subjectPKInfoEncoded.usLen); GMEM_Free(subjectPKInfoEncoded.pData); pCurrent += subjectPKInfoEncoded.usLen;
if (bIssuerUIDPresent == TRUE) { memcpy(pCurrent, issuerUIDEncoded.pData, issuerUIDEncoded.usLen); GMEM_Free(issuerUIDEncoded.pData); pCurrent += issuerUIDEncoded.usLen; }
if (bSubjectUIDPresent == TRUE) { memcpy(pCurrent, subjectUIDEncoded.pData, subjectUIDEncoded.usLen); GMEM_Free(subjectUIDEncoded.pData); pCurrent += subjectUIDEncoded.usLen; }
if (bExtensionsPresent == TRUE) { memcpy(pCurrent, extensionsEncoded.pData, extensionsEncoded.usLen); GMEM_Free(extensionsEncoded.pData); pCurrent += extensionsEncoded.usLen; }
return(RV_SUCCESS);
err: GMEM_Free(serialNumberEncoded.pData); GMEM_Free(signatureEncoded.pData); GMEM_Free(issuerEncoded.pData); GMEM_Free(validityEncoded.pData); GMEM_Free(subjectEncoded.pData); GMEM_Free(subjectPKInfoEncoded.pData); GMEM_Free(issuerUIDEncoded.pData); GMEM_Free(subjectUIDEncoded.pData); GMEM_Free(extensionsEncoded.pData); return rv;}
/*******************************************************************************
* int CC_Encode_CertificateSerialNumber(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type CertificateSerialNumber.* Ceci consiste seulement en l'encodage brute (CC_RawEncode) de la* donn�e d'entr�e.** Remarks : ** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_CertificateSerialNumber(BLOC *pInBloc, BLOC *pOutBloc )
{ int rv;
rv = CC_RawEncode(pInBloc, pOutBloc, TRUE); if (rv != RV_SUCCESS) return rv;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_AlgorithmIdentifier(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type AlgorithmIdentifier.* Ceci consiste en l'�clatement en ses diff�rents composants,* leurs d�senrobages Asn1 et leurs encodages respectifs, et la* concat�nation de ces r�sultats.** Remarks : bNullParam sert � coder sur un bit l'information qu'il n'y a pas* de param�tre � l'algorithme. Cette information occupe toujours* deux octets dans le certificat est vaut toujours {0x05, 0x00}.* On utilise un dictionnaire statique (d�fini au d�but de ce* source) pour remplacer le type d'algorithme par un index.* Un octet de contr�le (en d�but du r�sultat) indique, ou bien que* l'on n'a pas trouv� le type d'algo dans le dico (valeur 0xFF ->* Encodage brut de la donn�e d'entr�e int�grale), ou bien un flag* pr�cisant s'il y a des param�tres et l'index du type d'algo.** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_AlgorithmIdentifier(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 AlgorithmPart, ParametersPart; BLOC AlgorithmIdentifierEncoded, ParametersAsn1Encoded; BOOL bFound, bNoParam = FALSE, bNullParam = FALSE; int rv; USHORT Index, AlgoIndex;
AlgorithmPart.Asn1.pData = pInBloc->pData; rv = CC_ExtractContent(&AlgorithmPart); if (rv != RV_SUCCESS) return rv;
if (AlgorithmPart.Asn1.usLen == pInBloc->usLen) { bNoParam = TRUE; bNullParam = FALSE; } else { ParametersPart.Asn1.pData = AlgorithmPart.Content.pData + AlgorithmPart.Content.usLen; rv = CC_ExtractContent(&ParametersPart); if (rv != RV_SUCCESS) return rv;
if (ParametersPart.Content.usLen == 0) { bNoParam = TRUE; bNullParam = TRUE; } }
/* Recherche de l'identifiant de l'algorithme dans le dictionnaire */
Index = 0; bFound = FALSE; while ((bFound == FALSE) && (AlgorithmTypeDict[Index] != NULL)) { if (!memcmp(AlgorithmTypeDict[Index], AlgorithmPart.Content.pData, AlgorithmPart.Content.usLen)) { bFound = TRUE; AlgoIndex = Index; } Index++; }
/* Construction de l'encodage */
if (bFound == TRUE) { if (bNoParam == TRUE) { if (bNullParam == TRUE) { /* Si on a trouv� l'algorithme et il n'y a pas de param�tre */
pOutBloc->usLen = 1; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return (RV_MALLOC_FAILED); }
pOutBloc->pData[0] = (AlgoIndex | 0x80); } else { pOutBloc->usLen = 2; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return (RV_MALLOC_FAILED); }
pOutBloc->pData[0] = ABSENT_PARAMETER_CHAR; pOutBloc->pData[1] = (BYTE) AlgoIndex; } } else {
/* Si on a trouv� l'algorithme et il y a des param�tres */ /* On RawEncode non pas le contenu des param�tres mais l'Asn1 entier
car on n'est pas s�r de l'encapsulage */
rv = CC_RawEncode(&(ParametersPart.Asn1), &ParametersAsn1Encoded, TRUE); if (rv != RV_SUCCESS) return rv;
pOutBloc->usLen = 1 + ParametersAsn1Encoded.usLen; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { GMEM_Free(ParametersAsn1Encoded.pData); return (RV_MALLOC_FAILED); }
pOutBloc->pData[0] = (BYTE) AlgoIndex; memcpy(&(pOutBloc->pData[1]), ParametersAsn1Encoded.pData, ParametersAsn1Encoded.usLen);
GMEM_Free(ParametersAsn1Encoded.pData); } } else { /* Si on n'a pas trouv� l'algorithme dans le dictionnaire */ /* On RawEncode le contenu de AlgorithmIdentifier c'est � dire la
concat�nation du asn1 de AlgorithmPart et du asn1 de ParametersPart */
rv = CC_RawEncode(pInBloc, &AlgorithmIdentifierEncoded, TRUE); if (rv != RV_SUCCESS) return rv;
pOutBloc->usLen = 1 + AlgorithmIdentifierEncoded.usLen; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { GMEM_Free(AlgorithmIdentifierEncoded.pData); return (RV_MALLOC_FAILED); }
pOutBloc->pData[0] = ESCAPE_CHAR; memcpy(&(pOutBloc->pData[1]), AlgorithmIdentifierEncoded.pData, AlgorithmIdentifierEncoded.usLen);
GMEM_Free(AlgorithmIdentifierEncoded.pData); }
return (RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_Name(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type Name.* Ceci consiste en l'�clatement en ses diff�rents composants,* leurs d�senrobages Asn1 et leurs encodages respectifs, et la* concat�nation de ces r�sultats.** Remarks : Un octet de contr�le (en d�but du r�sultat) indique le nombre* de RelativeDistinguishedName dont est compos� le Name.** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_Name(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 RDN[MAX_RDN]; BLOC RDNEncoded[MAX_RDN]; BYTE *pCurrent; USHORT i, usNbRDN; int rv;
/* D�composition du Name en ses diff�rents RelativeDistinguishedName */
pCurrent = pInBloc->pData; usNbRDN = 0;
while (pCurrent < pInBloc->pData + pInBloc->usLen) { RDN[usNbRDN].Asn1.pData = pCurrent; rv = CC_ExtractContent(&(RDN[usNbRDN])); if (rv != RV_SUCCESS) return rv; pCurrent = RDN[usNbRDN].Content.pData + RDN[usNbRDN].Content.usLen; usNbRDN++; }
ASSERT(pCurrent == pInBloc->pData + pInBloc->usLen);
/* Encodages des diff�rents composants et calcul de la longueur n�cessaire */
for (i = 0; i < usNbRDN; i++) { RDNEncoded[i].pData = NULL; }
pOutBloc->usLen = 1; for (i = 0; i < usNbRDN; i++) { rv = CC_Encode_RDN(&RDN[i].Content, &RDNEncoded[i]); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += RDNEncoded[i].usLen; }
/* Reconstruction � partir des composants */
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
*pCurrent = (BYTE) usNbRDN; pCurrent++;
for (i = 0; i < usNbRDN; i++) { memcpy(pCurrent, RDNEncoded[i].pData, RDNEncoded[i].usLen); GMEM_Free(RDNEncoded[i].pData); pCurrent += RDNEncoded[i].usLen; }
return(RV_SUCCESS);
err: for (i = 0; i < usNbRDN; i++) { GMEM_Free(RDNEncoded[i].pData); } return (rv);}
/*******************************************************************************
* int CC_Encode_RDN(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type RelativeDistinguishedName (RDN).* Ceci consiste en l'�clatement en ses diff�rents composants,* leurs d�senrobages Asn1 et leurs encodages respectifs, et la* concat�nation de ces r�sultats.** Remarks : Un octet de contr�le (en d�but du r�sultat) indique le nombre* de AttributeValueAssertion dont est compos� le RDN.** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_RDN(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 AVA[MAX_AVA]; BLOC AVAEncoded[MAX_AVA]; BYTE *pCurrent; USHORT i, usNbAVA; int rv;
/* D�composition du RDN en ses diff�rents AVA */
pCurrent = pInBloc->pData; usNbAVA = 0;
while (pCurrent < pInBloc->pData + pInBloc->usLen) { AVA[usNbAVA].Asn1.pData = pCurrent; rv = CC_ExtractContent(&(AVA[usNbAVA])); if (rv != RV_SUCCESS) return rv; pCurrent = AVA[usNbAVA].Content.pData + AVA[usNbAVA].Content.usLen; usNbAVA++; }
ASSERT(pCurrent == pInBloc->pData + pInBloc->usLen);
/* Encodages des diff�rents composants et calcul de la longueur n�cessaire */
for (i = 0; i < usNbAVA; i++) { AVAEncoded[i].pData = NULL; }
pOutBloc->usLen = 1; for (i = 0; i < usNbAVA; i++) { rv = CC_Encode_AVA(&AVA[i].Content, &AVAEncoded[i]); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += AVAEncoded[i].usLen; }
/* Reconstruction � partir des composants */
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
*pCurrent = (BYTE) usNbAVA; pCurrent++;
for (i = 0; i < usNbAVA; i++) { memcpy(pCurrent, AVAEncoded[i].pData, AVAEncoded[i].usLen); GMEM_Free(AVAEncoded[i].pData); pCurrent += AVAEncoded[i].usLen; }
return(RV_SUCCESS);
err: for (i = 0; i < usNbAVA; i++) { GMEM_Free(AVAEncoded[i].pData); }
return(rv);
}
/*******************************************************************************
* int CC_Encode_AVA(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type AttributeValueAssertion (AVA).* Ceci consiste en l'�clatement en ses diff�rents composants,* leurs d�senrobages Asn1 et leurs encodages respectifs, et la* concat�nation de ces r�sultats.** Remarks : On utilise un dictionnaire statique (d�fini au d�but de ce* source) pour remplacer le type d'attribut par un index.* Un octet de contr�le (en d�but du r�sultat) indique, ou bien que* l'on n'a pas trouv� le type d'attribut dans le dico (0xFF)* ou l'index du type d'attribut.* On ne code pas le Content de AttributeValue mais son Asn1 car on* n'est pas s�r du tag employ�.** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_AVA(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 AttributeTypePart, AttributeValuePart; BLOC AttributeTypeEncoded, AttributeValueEncoded; BOOL bFound; USHORT Index, AttributeTypeIndex; int rv;
/* D�composition */
AttributeTypePart.Asn1.pData = pInBloc->pData; rv = CC_ExtractContent(&AttributeTypePart); if (rv != RV_SUCCESS) return rv;
AttributeValuePart.Asn1.pData = AttributeTypePart.Content.pData + AttributeTypePart.Content.usLen; rv = CC_ExtractContent(&AttributeValuePart); /* Pas n�cessaire */ if (rv != RV_SUCCESS) return rv;
/* Recherche de l'identifiant de l'AttributeType dans le dictionnaire */
Index = 0; bFound = FALSE; while((bFound == FALSE) && (AttributeTypeDict[Index] != NULL)) { if (!memcmp(AttributeTypeDict[Index], AttributeTypePart.Content.pData, AttributeTypePart.Content.usLen)) { bFound = TRUE; AttributeTypeIndex = Index; } Index++; }
/* Construction de l'encodage */
/* Attention : on encode aussi l'enrobage de AttributeValue ! */
if (bFound == TRUE) { /* Il nous faut la longueur enrobage compris mais cette ligne est-elle
vraiment n�cessaire ? */ AttributeValuePart.Asn1.usLen = (unsigned short) (DWORD)((pInBloc->pData + pInBloc->usLen) - AttributeValuePart.Asn1.pData);
rv = CC_RawEncode(&(AttributeValuePart.Asn1), &AttributeValueEncoded, TRUE); if (rv != RV_SUCCESS) return rv;
pOutBloc->usLen = 1 + AttributeValueEncoded.usLen; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { GMEM_Free(AttributeValueEncoded.pData); return(RV_MALLOC_FAILED); }
pOutBloc->pData[0] = (BYTE) AttributeTypeIndex; memcpy(&(pOutBloc->pData[1]), AttributeValueEncoded.pData, AttributeValueEncoded.usLen);
GMEM_Free(AttributeValueEncoded.pData); } else { /* Si on n'a pas trouv� l'attribut dans le dictionnaire */
rv = CC_RawEncode(&(AttributeTypePart.Content), &AttributeTypeEncoded, TRUE); if (rv != RV_SUCCESS) return rv;
rv = CC_RawEncode(&(AttributeValuePart.Asn1), &AttributeValueEncoded, TRUE); if (rv != RV_SUCCESS) { GMEM_Free(AttributeTypeEncoded.pData); return rv; }
pOutBloc->usLen = 1 + AttributeTypeEncoded.usLen + AttributeValueEncoded.usLen;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { GMEM_Free(AttributeTypeEncoded.pData); GMEM_Free(AttributeValueEncoded.pData); return(RV_MALLOC_FAILED); }
pOutBloc->pData[0] = ESCAPE_CHAR; memcpy(&(pOutBloc->pData[1]), AttributeTypeEncoded.pData, AttributeTypeEncoded.usLen); memcpy(&(pOutBloc->pData[1 + AttributeTypeEncoded.usLen]), AttributeValueEncoded.pData, AttributeValueEncoded.usLen);
GMEM_Free(AttributeTypeEncoded.pData); GMEM_Free(AttributeValueEncoded.pData); }
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_Validity(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type Validity.* Ceci consiste en l'�clatement en ses diff�rents composants,* leurs d�senrobages Asn1 et leurs encodages respectifs, et la* concat�nation de ces r�sultats.** Remarks : Un octet de contr�le (en d�but du r�sultat) indique les formats* des deux parties notBefore et notAfter.* * In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_Validity(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 notBeforePart, notAfterPart; BLOC notBeforeEncoded, notAfterEncoded; BYTE notBeforeFormat, notAfterFormat, *pCurrent; int rv;
/* D�composition */ pCurrent = pInBloc->pData;
notBeforePart.Asn1.pData = pCurrent; rv = CC_ExtractContent(¬BeforePart); if (rv != RV_SUCCESS) return rv; pCurrent = notBeforePart.Content.pData + notBeforePart.Content.usLen;
notAfterPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(¬AfterPart); if (rv != RV_SUCCESS) return rv; pCurrent = notAfterPart.Content.pData + notAfterPart.Content.usLen;
/* Encodages des diff�rents composants et calcul de la longueur n�cessaire */
pOutBloc->usLen = 1;
rv = CC_Encode_UTCTime(¬BeforePart.Content, ¬BeforeEncoded, ¬BeforeFormat); if (rv != RV_SUCCESS) return rv; pOutBloc->usLen += notBeforeEncoded.usLen;
rv = CC_Encode_UTCTime(¬AfterPart.Content, ¬AfterEncoded, ¬AfterFormat); if (rv != RV_SUCCESS) { GMEM_Free(notBeforeEncoded.pData); return rv; } pOutBloc->usLen += notAfterEncoded.usLen;
/* Reconstruction � partir des composants */
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { GMEM_Free(notBeforeEncoded.pData); GMEM_Free(notAfterEncoded.pData); return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
*pCurrent = (notBeforeFormat << 4) + notAfterFormat; pCurrent++;
memcpy(pCurrent, notBeforeEncoded.pData, notBeforeEncoded.usLen); GMEM_Free(notBeforeEncoded.pData); pCurrent += notBeforeEncoded.usLen;
memcpy(pCurrent, notAfterEncoded.pData, notAfterEncoded.usLen); GMEM_Free(notAfterEncoded.pData); pCurrent += notAfterEncoded.usLen;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_UTCTime(BLOC *pInBloc,* BLOC *pOutBloc,* BYTE *pFormat* )** Description : Encode une donn�e de type UTCTime.* Suivant le format d�tect�, l'encodage consiste en :* - sur 32 bits : le nombre de minutes ou de secondes depuis une* date de r�f�rence.* - sur 16 bits : le nombre de minutes de d�calage UTC* s'il y a lieu.** Remarks : * * In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pFormat : indique au quel format �tait la donn�e d'entr�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_UTCTime(BLOC *pInBloc, BLOC *pOutBloc, BYTE *pFormat )
{ BYTE *pData; ULONG ulNbMinute, ulNbSecond; USHORT usNbDeltaMinute, usYear, usMonth, usDay, usHour, usMinute, usSecond, usDeltaHour, usDeltaMinute, usDayInYear;
pData = pInBloc->pData;
/* Calcul du nombre de minutes */
usYear = 10 * (pData[0] - '0') + (pData[1] - '0'); usMonth = 10 * (pData[2] - '0') + (pData[3] - '0'); usDay = 10 * (pData[4] - '0') + (pData[5] - '0'); usHour = 10 * (pData[6] - '0') + (pData[7] - '0'); usMinute = 10 * (pData[8] - '0') + (pData[9] - '0');
ASSERT((usYear >= 0) && (usYear <= 99)); ASSERT((usMonth >= 1) && (usMonth <= 12)); ASSERT((usDay >= 1) && (usDay <= 31)); ASSERT((usHour >= 0) && (usHour <= 23)); ASSERT((usMinute >= 0) && (usMinute <= 59));
/* Le nombre de jours dans l'ann�e vaut 0 le 1er janvier */
usDayInYear = NbDaysInMonth[usMonth - 1] + (usDay - 1); if (((usYear % 4) == 0) && (usMonth >= 3)) usDayInYear++;
/* L'ann�e 00 est compt�e bissextile ci-dessous */ /* L'ann�e courante si elle l'est a d�j� �t� compt�e dans usDayInYear */
/*
Probl�me sur l'�valuation de (usYear - 1) / 4 : usYear = 8 -> 1 usYear = 4 -> 0 usYear = 0 -> 0 !!
ulNbMinute = usYear * UTCT_MINUTE_IN_YEAR + (1 + (usYear - 1) / 4) * UTCT_MINUTE_IN_DAY + usDayInYear * UTCT_MINUTE_IN_DAY + usHour * UTCT_MINUTE_IN_HOUR + usMinute; */
ulNbMinute = usYear * UTCT_MINUTE_IN_YEAR + (usYear + 3) / 4 * UTCT_MINUTE_IN_DAY // Ann�es bissextiles
+ usDayInYear * UTCT_MINUTE_IN_DAY + usHour * UTCT_MINUTE_IN_HOUR + usMinute;
/* Le format et la suite des calculs en fonction de la longueur */
switch(pInBloc->usLen) { case 11 : *pFormat = UTCT_YYMMDDhhmmZ;
ASSERT(pData[10] == 'Z');
pOutBloc->usLen = 4; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } *(ULONG *)pOutBloc->pData = ulNbMinute;
break;
case 13 : *pFormat = UTCT_YYMMDDhhmmssZ;
usSecond = 10 * (pData[10] - '0') + (pData[11] - '0'); ASSERT((usSecond >= 0) && (usSecond <= 59)); ASSERT(pData[12] == 'Z');
ulNbSecond = 60 * ulNbMinute + usSecond; pOutBloc->usLen = 4; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } *(ULONG *)pOutBloc->pData = ulNbSecond;
break;
case 15 : if (pData[10] == '+') { *pFormat = UTCT_YYMMDDhhmmphhmm; } else if (pData[10] == '-') { *pFormat = UTCT_YYMMDDhhmmmhhmm; } else { return(RV_INVALID_DATA); }
usDeltaHour = 10 * (pData[11] - '0') + (pData[12] - '0'); usDeltaMinute = 10 * (pData[13] - '0') + (pData[14] - '0'); ASSERT((usDeltaHour >= 0) && (usDeltaHour <= 23)); ASSERT((usDeltaMinute >= 0) && (usDeltaMinute <= 59));
usNbDeltaMinute = 60 * usDeltaHour + usDeltaMinute; pOutBloc->usLen = 4 + 2; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } *(ULONG *)pOutBloc->pData = ulNbMinute; *(USHORT *)(pOutBloc->pData + sizeof(ulNbMinute)) = usNbDeltaMinute;
break;
case 17 : if (pData[12] == '+') { *pFormat = UTCT_YYMMDDhhmmphhmm; } else if (pData[12] == '-') { *pFormat = UTCT_YYMMDDhhmmmhhmm; } else { return(RV_INVALID_DATA); }
usSecond = 10 * (pData[10] - '0') + (pData[11] - '0'); ASSERT((usSecond >= 0) && (usSecond <= 59));
ulNbSecond = 60 * ulNbMinute + usSecond; usDeltaHour = 10 * (pData[13] - '0') + (pData[14] - '0'); usDeltaMinute = 10 * (pData[15] - '0') + (pData[16] - '0'); ASSERT((usDeltaHour >= 0) && (usDeltaHour <= 23)); ASSERT((usDeltaMinute >= 0) && (usDeltaMinute <= 59));
usNbDeltaMinute = 60 * usDeltaHour + usDeltaMinute; pOutBloc->usLen = 4 + 2; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } *(ULONG *)pOutBloc->pData = ulNbSecond; *(USHORT *)(pOutBloc->pData + sizeof(ulNbSecond)) = usNbDeltaMinute;
break;
default : return(RV_INVALID_DATA); }
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_SubjectPKInfo(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type SubjectPublicKeyInfo.* Ceci consiste en l'�clatement en ses diff�rents composants,* leurs d�senrobages Asn1 et leurs encodages respectifs, et la* concat�nation de ces r�sultats.** Remarks : ** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_SubjectPKInfo(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 algorithmPart, subjectPKPart; BLOC algorithmEncoded, subjectPKEncoded; BYTE// *pData,
*pCurrent; int rv;
/* D�composition du SubjectPKInfo en ses diff�rents composants */ pCurrent = pInBloc->pData;
algorithmPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&algorithmPart); if (rv != RV_SUCCESS) return rv; pCurrent = algorithmPart.Content.pData + algorithmPart.Content.usLen;
subjectPKPart.Asn1.pData = pCurrent; rv = CC_ExtractContent(&subjectPKPart); if (rv != RV_SUCCESS) return rv; pCurrent = subjectPKPart.Content.pData + subjectPKPart.Content.usLen;
/* Encodages des diff�rents composants et calcul de la longueur n�cessaire */
pOutBloc->usLen = 0;
rv = CC_Encode_AlgorithmIdentifier(&algorithmPart.Content, &algorithmEncoded); if (rv != RV_SUCCESS) return rv; pOutBloc->usLen += algorithmEncoded.usLen;
#ifdef _TRICKY_COMPRESSION
/* Ne pas faire le RawEncode permet de gagner l'octet 0xFF et �ventuellement plus */#ifdef _OPT_HEADER
if (subjectPKPart.Content.usLen < 0x80) { if ((pData = GMEM_Alloc(pInBloc->usLen + 1)) == NULL_PTR) { return(RV_MALLOC_FAILED); } else { pData[0] = subjectPKPart.Content.usLen; memcpy(&pData[1], subjectPKPart.Content.pData, subjectPKPart.Content.usLen);
subjectPKEncoded.usLen = subjectPKPart.Content.usLen + 1; subjectPKEncoded.pData = pData; } pOutBloc->usLen += subjectPKEncoded.usLen; } else { if ((pData = GMEM_Alloc(pInBloc->usLen + 2)) == NULL_PTR) { return(RV_MALLOC_FAILED); } else { pData[0] = 0x80 | (subjectPKPart.Content.usLen >> 8); pData[1] = subjectPKPart.Content.usLen & 0x00FF; memcpy(&pData[2], subjectPKPart.Content.pData, subjectPKPart.Content.usLen);
subjectPKEncoded.usLen = subjectPKPart.Content.usLen + 2; subjectPKEncoded.pData = pData; } pOutBloc->usLen += subjectPKEncoded.usLen; }#else /* _OPT_HEADER */
if ((pData = GMEM_Alloc(pInBloc->usLen + 2)) == NULL_PTR) { return(RV_MALLOC_FAILED); } else { pData[0] = subjectPKPart.Content.usLen >> 8; pData[1] = subjectPKPart.Content.usLen & 0x00FF; memcpy(&pData[2], subjectPKPart.Content.pData, subjectPKPart.Content.usLen);
subjectPKEncoded.usLen = subjectPKPart.Content.usLen + 2; subjectPKEncoded.pData = pData; } pOutBloc->usLen += subjectPKEncoded.usLen;#endif
#else /* _TRICKY_COMPRESSION */
rv = CC_RawEncode(&subjectPKPart.Content, &subjectPKEncoded, FALSE); if (rv != RV_SUCCESS) { GMEM_Free(algorithmEncoded.pData); return rv; } pOutBloc->usLen += subjectPKEncoded.usLen;#endif
/* Reconstruction � partir des composants */
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { GMEM_Free(algorithmEncoded.pData); GMEM_Free(subjectPKEncoded.pData); return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
memcpy(pCurrent, algorithmEncoded.pData, algorithmEncoded.usLen); GMEM_Free(algorithmEncoded.pData); pCurrent += algorithmEncoded.usLen;
memcpy(pCurrent, subjectPKEncoded.pData, subjectPKEncoded.usLen); GMEM_Free(subjectPKEncoded.pData); pCurrent += subjectPKEncoded.usLen;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_UniqueIdentifier(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type UniqueIdentifier.* Ceci consiste seulement en l'encodage brute (CC_RawEncode) de la* donn�e d'entr�e.** Remarks : ** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_UniqueIdentifier(BLOC *pInBloc, BLOC *pOutBloc )
{ int rv;
rv = CC_RawEncode(pInBloc, pOutBloc, TRUE); if (rv != RV_SUCCESS) return rv;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_Extensions(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type Extensions.* Ceci consiste seulement en l'encodage brute (CC_RawEncode) de la* donn�e d'entr�e.** Remarks : Un d�senrobage suppl�mentaire (context specific) est requis. * Un octet de contr�le (en d�but du r�sultat) indique le nombre* de Extension dont est compos� le Extensions.** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_Extensions(BLOC *pInBloc, BLOC *pOutBloc )
{ ASN1 ExtensionPart[MAX_EXTENSION], InInAsn1; BLOC ExtensionEncoded[MAX_EXTENSION], *pInInBloc; BYTE *pCurrent; int rv; USHORT i, usNbExtension;
/* On enl�ve l'enrobage 'context specific' suppl�mentaire */ /* et on travaille avec pInInBloc au lieu de pInBloc */
InInAsn1.Asn1.pData = pInBloc->pData; rv = CC_ExtractContent(&InInAsn1); if (rv != RV_SUCCESS) return rv;
pInInBloc = &(InInAsn1.Content);
/* D�composition de Extensions en ses diff�rents Extension */
pCurrent = pInInBloc->pData; usNbExtension = 0;
while (pCurrent < pInInBloc->pData + pInInBloc->usLen) { ExtensionPart[usNbExtension].Asn1.pData = pCurrent; rv = CC_ExtractContent(&(ExtensionPart[usNbExtension])); if (rv != RV_SUCCESS) return rv; pCurrent = ExtensionPart[usNbExtension].Content.pData + ExtensionPart[usNbExtension].Content.usLen; usNbExtension++; }
ASSERT(pCurrent == pInInBloc->pData + pInInBloc->usLen);
/* Encodages des diff�rents composants et calcul de la longueur n�cessaire */
for (i = 0; i < usNbExtension; i++) { ExtensionEncoded[i].pData = NULL; }
pOutBloc->usLen = 1; for (i = 0; i < usNbExtension; i++) { rv = CC_Encode_Extension(&ExtensionPart[i].Content, &ExtensionEncoded[i]); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += ExtensionEncoded[i].usLen; }
/* Reconstruction � partir des composants */
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
*pCurrent = (BYTE) usNbExtension; pCurrent++;
for (i = 0; i < usNbExtension; i++) { memcpy(pCurrent, ExtensionEncoded[i].pData, ExtensionEncoded[i].usLen); GMEM_Free(ExtensionEncoded[i].pData); pCurrent += ExtensionEncoded[i].usLen; }
return(RV_SUCCESS);
err: for (i = 0; i < usNbExtension; i++) { GMEM_Free(ExtensionEncoded[i].pData); }
return(rv);}
/*******************************************************************************
* int CC_Encode_Extension(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode une donn�e de type Extension.* Ceci consiste seulement en l'encodage brute (CC_RawEncode) de la* donn�e d'entr�e.** Remarks : ** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_Extension(BLOC *pInBloc, BLOC *pOutBloc )
{ int rv;
rv = CC_RawEncode(pInBloc, pOutBloc, TRUE); if (rv != RV_SUCCESS) return rv;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Encode_Signature(BLOC *pInBloc,* BLOC *pOutBloc* )** Description : Encode la signature du certificat.* Ceci consiste seulement en l'encodage brute (CC_RawEncode) de la* donn�e d'entr�e.** Remarks : On peut �viter de tenter de compresser (CC_RawEncode) si on* estime que cela ne sera pas efficace (donn�e al�atoire).* Cela permet de gagner un octet (0xFF) pour les donn�es de taille* sup�rieure � 30 octets (cas g�n�ral).** In : pInBloc : la partie � encoder (champ Content)** Out : pOutBloc : l'encod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Encode_Signature(BLOC *pInBloc, BLOC *pOutBloc )
{// BYTE
// *pData;
int rv;
#ifdef _TRICKY_COMPRESSION
/* Ne pas faire le RawEncode permet de gagner l'octet 0xFF */#ifdef _OPT_HEADER
if (pInBloc->usLen < 0x80) { if ((pData = GMEM_Alloc(pInBloc->usLen + 1)) == NULL_PTR) { return(RV_MALLOC_FAILED); } else { pData[0] = pInBloc->usLen; memcpy(&pData[1], pInBloc->pData, pInBloc->usLen);
pOutBloc->usLen = pInBloc->usLen + 1; pOutBloc->pData = pData; } } else { if ((pData = GMEM_Alloc(pInBloc->usLen + 2)) == NULL_PTR) { return(RV_MALLOC_FAILED); } else { pData[0] = 0x80 | (pInBloc->usLen >> 8); pData[1] = pInBloc->usLen & 0x00FF; memcpy(&pData[2], pInBloc->pData, pInBloc->usLen);
pOutBloc->usLen = pInBloc->usLen + 2; pOutBloc->pData = pData; } }#else /* _OPT_HEADER */
if ((pData = GMEM_Alloc(pInBloc->usLen + 2)) == NULL_PTR) { return(RV_MALLOC_FAILED); } else { pData[0] = pInBloc->usLen >> 8; pData[1] = pInBloc->usLen & 0x00FF; memcpy(&pData[2], pInBloc->pData, pInBloc->usLen);
pOutBloc->usLen = pInBloc->usLen + 2; pOutBloc->pData = pData; }#endif
#else /* _TRICKY_COMPRESSION */
rv = CC_RawEncode(pInBloc, pOutBloc, TRUE); if (rv != RV_SUCCESS) return rv;#endif
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Decode_TBSCertificate(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type TBSCertificate.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : ** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_TBSCertificate(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 serialNumberPart, signaturePart, issuerPart, validityPart, subjectPart, subjectPKInfoPart, issuerUIDPart, subjectUIDPart, extensionsPart; BOOL bVersionPresent, bIssuerUIDPresent, bSubjectUIDPresent, bExtensionsPresent; BYTE *pCurrent; int rv; USHORT usVersion = 0, Length;
serialNumberPart.Asn1.pData = NULL; signaturePart.Asn1.pData = NULL; issuerPart.Asn1.pData = NULL; validityPart.Asn1.pData = NULL; subjectPart.Asn1.pData = NULL; subjectPKInfoPart.Asn1.pData = NULL; issuerUIDPart.Asn1.pData = NULL; subjectUIDPart.Asn1.pData = NULL; extensionsPart.Asn1.pData = NULL;
pCurrent = pInData; bVersionPresent = ((*pCurrent & 0x80) != 0); bIssuerUIDPresent = ((*pCurrent & 0x40) != 0); bSubjectUIDPresent = ((*pCurrent & 0x20) != 0); bExtensionsPresent = ((*pCurrent & 0x10) != 0); usVersion = *pCurrent & 0x03; pCurrent++;
rv = CC_Decode_CertificateSerialNumber(pCurrent, &(serialNumberPart.Content), &Length); if (rv != RV_SUCCESS) goto err; serialNumberPart.Tag = TAG_INTEGER; rv = CC_BuildAsn1(&serialNumberPart); GMEM_Free(serialNumberPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
rv = CC_Decode_AlgorithmIdentifier(pCurrent, &(signaturePart.Content), &Length); if (rv != RV_SUCCESS) goto err; signaturePart.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&signaturePart); GMEM_Free(signaturePart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
rv = CC_Decode_Name(pCurrent, &(issuerPart.Content), &Length); if (rv != RV_SUCCESS) goto err; issuerPart.Tag = TAG_SEQUENCE_OF; rv = CC_BuildAsn1(&issuerPart); GMEM_Free(issuerPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
rv = CC_Decode_Validity(pCurrent, &(validityPart.Content), &Length); if (rv != RV_SUCCESS) goto err; validityPart.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&validityPart); GMEM_Free(validityPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
rv = CC_Decode_Name(pCurrent, &(subjectPart.Content), &Length); if (rv != RV_SUCCESS) goto err; subjectPart.Tag = TAG_SEQUENCE_OF; rv = CC_BuildAsn1(&subjectPart); GMEM_Free(subjectPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
rv = CC_Decode_SubjectPKInfo(pCurrent, &(subjectPKInfoPart.Content), &Length); if (rv != RV_SUCCESS) goto err; subjectPKInfoPart.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&subjectPKInfoPart); GMEM_Free(subjectPKInfoPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
if (bIssuerUIDPresent == TRUE) { rv = CC_Decode_UniqueIdentifier(pCurrent, &(issuerUIDPart.Content), &Length); if (rv != RV_SUCCESS) goto err; issuerUIDPart.Tag = TAG_OPTION_ISSUER_UID; rv = CC_BuildAsn1(&issuerUIDPart); GMEM_Free(issuerUIDPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length; }
if (bSubjectUIDPresent == TRUE) { rv = CC_Decode_UniqueIdentifier(pCurrent, &(subjectUIDPart.Content), &Length); if (rv != RV_SUCCESS) goto err; subjectUIDPart.Tag = TAG_OPTION_SUBJECT_UID; rv = CC_BuildAsn1(&subjectUIDPart); GMEM_Free(subjectUIDPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length; }
if (bExtensionsPresent == TRUE) { rv = CC_Decode_Extensions(pCurrent, &(extensionsPart.Content), &Length); if (rv != RV_SUCCESS) goto err; extensionsPart.Tag = TAG_OPTION_EXTENSIONS; rv = CC_BuildAsn1(&extensionsPart); GMEM_Free(extensionsPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length; }
*pLength = (unsigned short)(DWORD) (pCurrent - pInData);
/* Calcul de la longueur du tbsCertificate d�cod� et allocation */ pOutBloc->usLen = (bVersionPresent ? 5 : 0) + serialNumberPart.Asn1.usLen + signaturePart.Asn1.usLen + issuerPart.Asn1.usLen + validityPart.Asn1.usLen + subjectPart.Asn1.usLen + subjectPKInfoPart.Asn1.usLen + (bIssuerUIDPresent ? issuerUIDPart.Asn1.usLen : 0) + (bSubjectUIDPresent ? subjectUIDPart.Asn1.usLen : 0) + (bExtensionsPresent ? extensionsPart.Asn1.usLen : 0);
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
/* Reconstruction du tbsCertificate d�cod� */ pCurrent = pOutBloc->pData;
if (bVersionPresent == TRUE) { pCurrent[0] = TAG_OPTION_VERSION; pCurrent[1] = 0x03; pCurrent[2] = 0x02; pCurrent[3] = 0x01; pCurrent[4] = (BYTE)usVersion; pCurrent += 5; }
memcpy(pCurrent, serialNumberPart.Asn1.pData, serialNumberPart.Asn1.usLen); GMEM_Free(serialNumberPart.Asn1.pData); pCurrent += serialNumberPart.Asn1.usLen;
memcpy(pCurrent, signaturePart.Asn1.pData, signaturePart.Asn1.usLen); GMEM_Free(signaturePart.Asn1.pData); pCurrent += signaturePart.Asn1.usLen;
memcpy(pCurrent, issuerPart.Asn1.pData, issuerPart.Asn1.usLen); GMEM_Free(issuerPart.Asn1.pData); pCurrent += issuerPart.Asn1.usLen;
memcpy(pCurrent, validityPart.Asn1.pData, validityPart.Asn1.usLen); GMEM_Free(validityPart.Asn1.pData); pCurrent += validityPart.Asn1.usLen;
memcpy(pCurrent, subjectPart.Asn1.pData, subjectPart.Asn1.usLen); GMEM_Free(subjectPart.Asn1.pData); pCurrent += subjectPart.Asn1.usLen;
memcpy(pCurrent, subjectPKInfoPart.Asn1.pData, subjectPKInfoPart.Asn1.usLen); GMEM_Free(subjectPKInfoPart.Asn1.pData); pCurrent += subjectPKInfoPart.Asn1.usLen;
if (bIssuerUIDPresent == TRUE) { memcpy(pCurrent, issuerUIDPart.Asn1.pData, issuerUIDPart.Asn1.usLen); GMEM_Free(issuerUIDPart.Asn1.pData); pCurrent += issuerUIDPart.Asn1.usLen; }
if (bSubjectUIDPresent == TRUE) { memcpy(pCurrent, subjectUIDPart.Asn1.pData, subjectUIDPart.Asn1.usLen); GMEM_Free(subjectUIDPart.Asn1.pData); pCurrent += subjectUIDPart.Asn1.usLen; }
if (bExtensionsPresent == TRUE) { memcpy(pCurrent, extensionsPart.Asn1.pData, extensionsPart.Asn1.usLen); GMEM_Free(extensionsPart.Asn1.pData); pCurrent += extensionsPart.Asn1.usLen; }
return(RV_SUCCESS);
err: GMEM_Free(serialNumberPart.Asn1.pData); GMEM_Free(signaturePart.Asn1.pData); GMEM_Free(issuerPart.Asn1.pData); GMEM_Free(validityPart.Asn1.pData); GMEM_Free(subjectPart.Asn1.pData); GMEM_Free(subjectPKInfoPart.Asn1.pData); GMEM_Free(issuerUIDPart.Asn1.pData); GMEM_Free(subjectUIDPart.Asn1.pData); GMEM_Free(extensionsPart.Asn1.pData);
return (rv);}
/*******************************************************************************
* int CC_Decode_CertificateSerialNumber(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type CertificateSerialNumber.* Ceci consiste seulement en le d�codage brute (CC_RawDecode) de* la donn�e d'entr�e.** Remarks : ** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_CertificateSerialNumber(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ int rv;
rv = CC_RawDecode(pInData, pOutBloc, pLength, TRUE); if (rv != RV_SUCCESS) return rv;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Decode_AlgorithmIdentifier(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type AlgorithmIdentifier.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_AlgorithmIdentifier(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 AlgorithmPart, ParametersPart; BOOL bNullParam = FALSE, bNoParam = FALSE; int rv; USHORT AlgoIndex, Length;
AlgorithmPart.Asn1.pData = NULL; ParametersPart.Asn1.pData = NULL;
if (pInData[0] == ESCAPE_CHAR) { rv = CC_RawDecode(&pInData[1], pOutBloc, &Length, TRUE); *pLength = 1 + Length; } else { if (pInData[0] == ABSENT_PARAMETER_CHAR) { bNoParam = TRUE; bNullParam = FALSE; AlgoIndex = pInData[1]; } else { bNoParam = ((pInData[0] & 0x80) != 0); bNullParam = bNoParam; AlgoIndex = pInData[0] & 0x7F; }
if (bNoParam == TRUE) { AlgorithmPart.Content.usLen = (USHORT)strlen(AlgorithmTypeDict[AlgoIndex]); if ((AlgorithmPart.Content.pData = GMEM_Alloc(AlgorithmPart.Content.usLen)) == NULL_PTR) { return (RV_MALLOC_FAILED); } memcpy(AlgorithmPart.Content.pData, AlgorithmTypeDict[AlgoIndex], AlgorithmPart.Content.usLen);
AlgorithmPart.Tag = TAG_OBJECT_IDENTIFIER; rv = CC_BuildAsn1(&AlgorithmPart); GMEM_Free(AlgorithmPart.Content.pData); if (rv != RV_SUCCESS) goto err;
if (bNullParam == FALSE) { pOutBloc->usLen = AlgorithmPart.Asn1.usLen; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
memcpy(pOutBloc->pData, AlgorithmPart.Asn1.pData, AlgorithmPart.Asn1.usLen);
*pLength = 2;
GMEM_Free(AlgorithmPart.Asn1.pData); } else { pOutBloc->usLen = AlgorithmPart.Asn1.usLen + 2; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
memcpy(pOutBloc->pData, AlgorithmPart.Asn1.pData, AlgorithmPart.Asn1.usLen);
pOutBloc->pData[AlgorithmPart.Asn1.usLen] = 0x05; pOutBloc->pData[AlgorithmPart.Asn1.usLen+1] = 0x00;
*pLength = 1;
GMEM_Free(AlgorithmPart.Asn1.pData);
} } else { AlgorithmPart.Content.usLen = (USHORT)strlen(AlgorithmTypeDict[AlgoIndex]); if ((AlgorithmPart.Content.pData = GMEM_Alloc(AlgorithmPart.Content.usLen)) == NULL_PTR) { return (RV_MALLOC_FAILED); } memcpy(AlgorithmPart.Content.pData, AlgorithmTypeDict[AlgoIndex], AlgorithmPart.Content.usLen);
AlgorithmPart.Tag = TAG_OBJECT_IDENTIFIER; rv = CC_BuildAsn1(&AlgorithmPart); GMEM_Free(AlgorithmPart.Content.pData); if (rv != RV_SUCCESS) goto err;
/* On recup�re directement l'asn1 des param�tres */ rv = CC_RawDecode(&pInData[1], &(ParametersPart.Asn1), &Length, TRUE); if (rv != RV_SUCCESS) goto err;
pOutBloc->usLen = AlgorithmPart.Asn1.usLen + ParametersPart.Asn1.usLen; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; } memcpy(pOutBloc->pData, AlgorithmPart.Asn1.pData, AlgorithmPart.Asn1.usLen); memcpy(pOutBloc->pData + AlgorithmPart.Asn1.usLen, ParametersPart.Asn1.pData, ParametersPart.Asn1.usLen);
*pLength = 1 + Length;
GMEM_Free(AlgorithmPart.Asn1.pData); GMEM_Free(ParametersPart.Asn1.pData); } }
return (RV_SUCCESS);
err: GMEM_Free(AlgorithmPart.Asn1.pData); GMEM_Free(ParametersPart.Asn1.pData);
return rv;}
/*******************************************************************************
* int CC_Decode_Name(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type Name.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_Name(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 RDN[MAX_RDN]; BYTE *pCurrent; int rv; USHORT i, usNbRDN, Length;
/* D�codage des diff�rents composants et calcul de la longueur n�cessaire */
pCurrent = pInData; pOutBloc->usLen = 0; usNbRDN = (USHORT) *pCurrent; pCurrent++; for (i = 0; i < usNbRDN; i++) { RDN[i].Asn1.pData = NULL; }
for (i = 0; i < usNbRDN; i++) { rv = CC_Decode_RDN(pCurrent, &(RDN[i].Content), &Length); if (rv != RV_SUCCESS) goto err; RDN[i].Tag = TAG_SET_OF; rv = CC_BuildAsn1(&RDN[i]); GMEM_Free(RDN[i].Content.pData); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += RDN[i].Asn1.usLen; pCurrent += Length; }
*pLength = (unsigned short)(DWORD) (pCurrent - pInData);
/* Reconstruction du Name d�cod� */ if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
for (i = 0; i < usNbRDN; i++) { memcpy(pCurrent, RDN[i].Asn1.pData, RDN[i].Asn1.usLen); GMEM_Free(RDN[i].Asn1.pData); pCurrent += RDN[i].Asn1.usLen; }
return(RV_SUCCESS);
err: for (i = 0; i < usNbRDN; i++) { GMEM_Free(RDN[i].Asn1.pData); }
return rv;}
/*******************************************************************************
* int CC_Decode_RDN(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type RelativeDistinguishedName.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_RDN(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 AVA[MAX_AVA]; BYTE *pCurrent; int rv; USHORT i, usNbAVA, Length;
/* D�codage des diff�rents composants et calcul de la longueur n�cessaire */
pCurrent = pInData; pOutBloc->usLen = 0; usNbAVA = *pCurrent; pCurrent++; for (i = 0; i < usNbAVA; i++) { AVA[i].Asn1.pData = NULL; } for (i = 0; i < usNbAVA; i++) { rv = CC_Decode_AVA(pCurrent, &(AVA[i].Content), &Length); if (rv != RV_SUCCESS) goto err; AVA[i].Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&AVA[i]); GMEM_Free(AVA[i].Content.pData); if (rv != RV_SUCCESS) goto err; pOutBloc->usLen += AVA[i].Asn1.usLen; pCurrent += Length; }
*pLength = (unsigned short)(DWORD) (pCurrent - pInData);
/* Reconstruction du Name d�cod� */ if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
for (i = 0; i < usNbAVA; i++) { memcpy(pCurrent, AVA[i].Asn1.pData, AVA[i].Asn1.usLen); GMEM_Free(AVA[i].Asn1.pData); pCurrent += AVA[i].Asn1.usLen; }
return(RV_SUCCESS);
err: for (i = 0; i < usNbAVA; i++) { GMEM_Free(AVA[i].Asn1.pData); }
return rv;}
/*******************************************************************************
* int CC_Decode_AVA(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type AttributeValueAssertion.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_AVA(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 AttributeTypePart, AttributeValuePart; BYTE *pCurrent; int rv; USHORT AttributeTypeIndex, Length;
AttributeTypePart.Asn1.pData = NULL; AttributeValuePart.Asn1.pData = NULL; if (pInData[0] == ESCAPE_CHAR) { pCurrent = &pInData[1];
rv = CC_RawDecode(pCurrent, &(AttributeTypePart.Content), &Length, TRUE); if (rv != RV_SUCCESS) goto err; AttributeTypePart.Tag = TAG_OBJECT_IDENTIFIER; rv = CC_BuildAsn1(&AttributeTypePart); GMEM_Free(AttributeTypePart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
/* Ce que l'on d�code contient d�j� l'enrobage */ rv = CC_RawDecode(pCurrent, &(AttributeValuePart.Asn1), &Length, TRUE); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
*pLength = (unsigned short)(DWORD) (pCurrent - pInData);
pOutBloc->usLen = AttributeTypePart.Asn1.usLen + AttributeValuePart.Asn1.usLen;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
memcpy(pCurrent, AttributeTypePart.Asn1.pData, AttributeTypePart.Asn1.usLen); GMEM_Free(AttributeTypePart.Asn1.pData); pCurrent += AttributeTypePart.Asn1.usLen;
memcpy(pCurrent, AttributeValuePart.Asn1.pData, AttributeValuePart.Asn1.usLen); GMEM_Free(AttributeValuePart.Asn1.pData); pCurrent += AttributeValuePart.Asn1.usLen; } else { AttributeTypeIndex = pInData[0];
AttributeTypePart.Content.usLen = (USHORT)strlen(AttributeTypeDict[AttributeTypeIndex]); if ((AttributeTypePart.Content.pData = GMEM_Alloc(AttributeTypePart.Content.usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; } memcpy(AttributeTypePart.Content.pData, AttributeTypeDict[AttributeTypeIndex], AttributeTypePart.Content.usLen);
AttributeTypePart.Tag = TAG_OBJECT_IDENTIFIER; rv = CC_BuildAsn1(&AttributeTypePart); GMEM_Free(AttributeTypePart.Content.pData); if (rv != RV_SUCCESS) goto err;
rv = CC_RawDecode(&pInData[1], &(AttributeValuePart.Asn1), &Length, TRUE); if (rv != RV_SUCCESS) goto err;
pOutBloc->usLen = AttributeTypePart.Asn1.usLen + AttributeValuePart.Asn1.usLen;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = pOutBloc->pData;
memcpy(pCurrent, AttributeTypePart.Asn1.pData, AttributeTypePart.Asn1.usLen); GMEM_Free(AttributeTypePart.Asn1.pData); pCurrent += AttributeTypePart.Asn1.usLen;
memcpy(pCurrent, AttributeValuePart.Asn1.pData, AttributeValuePart.Asn1.usLen); GMEM_Free(AttributeValuePart.Asn1.pData); pCurrent += AttributeValuePart.Asn1.usLen;
*pLength = 1 + Length; } return(RV_SUCCESS);
err: GMEM_Free(AttributeTypePart.Asn1.pData); GMEM_Free(AttributeValuePart.Asn1.pData);
return rv;}
/*******************************************************************************
* int CC_Decode_Validity(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type Validity.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_Validity(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 notBeforePart, notAfterPart; BYTE notBeforeFormat, notAfterFormat, *pCurrent; int rv; USHORT Length;
notBeforePart.Asn1.pData = NULL; notAfterPart.Asn1.pData = NULL;
pCurrent = pInData;
notBeforeFormat = (*pCurrent & 0xF0) >> 4; notAfterFormat = *pCurrent & 0x0F; pCurrent++;
rv = CC_Decode_UTCTime(pCurrent, notBeforeFormat, &(notBeforePart.Content), &Length); if (rv != RV_SUCCESS) goto err; notBeforePart.Tag = TAG_UTCT; rv = CC_BuildAsn1(¬BeforePart); GMEM_Free(notBeforePart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
rv = CC_Decode_UTCTime(pCurrent, notAfterFormat, &(notAfterPart.Content), &Length); if (rv != RV_SUCCESS) goto err; notAfterPart.Tag = TAG_UTCT; rv = CC_BuildAsn1(¬AfterPart); GMEM_Free(notAfterPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
*pLength = (unsigned short)(DWORD) (pCurrent - pInData);
/* Calcul de la longueur de Validity d�cod� et allocation */ pOutBloc->usLen = notBeforePart.Asn1.usLen + notAfterPart.Asn1.usLen;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
/* Reconstruction de Validity d�cod� */ pCurrent = pOutBloc->pData;
memcpy(pCurrent, notBeforePart.Asn1.pData, notBeforePart.Asn1.usLen); GMEM_Free(notBeforePart.Asn1.pData); pCurrent += notBeforePart.Asn1.usLen;
memcpy(pCurrent, notAfterPart.Asn1.pData, notAfterPart.Asn1.usLen); GMEM_Free(notAfterPart.Asn1.pData); pCurrent += notAfterPart.Asn1.usLen;
return(RV_SUCCESS);
err: GMEM_Free(notBeforePart.Asn1.pData); GMEM_Free(notAfterPart.Asn1.pData);
return rv;}
/*******************************************************************************
* int CC_Decode_UTCTime(BYTE *pInData,* BYTE Format, * BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type UTCTime.* Ceci consiste en la reconstruction de la chaine initiale suivant* le format au quel elle �tait exprim�e.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)* Format : indique au quel format �tait la donn�e d'entr�e** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* RV_INVALID_DATA : Le format sp�cifi� en entr�e est invalide.********************************************************************************/int CC_Decode_UTCTime(BYTE *pInData, BYTE Format, BLOC *pOutBloc, USHORT *pLength )
{ BOOL bBissextile = FALSE; BYTE *pCurrent; ULONG ulTime, ulNbHour, ulNbMinute; USHORT usNbDeltaMinute, usNbDay, usNbFourYears, usNbDayInYear, usYear, usMonth, usDay, usHour, usMinute, usSecond, usDeltaHour, usDeltaMinute;
ulTime = *(ULONG UNALIGNED *)pInData; //memcpy( &ulTime, (ULONG *) &pInData[0],4);
switch(Format) { case UTCT_YYMMDDhhmmssZ : case UTCT_YYMMDDhhmmssphhmm : case UTCT_YYMMDDhhmmssmhhmm :
usSecond = (USHORT) (ulTime % 60); ulNbMinute = ulTime / 60;
break;
default :
ulNbMinute = ulTime;
break; }
switch(Format) { case UTCT_YYMMDDhhmmphhmm : case UTCT_YYMMDDhhmmmhhmm : case UTCT_YYMMDDhhmmssphhmm : case UTCT_YYMMDDhhmmssmhhmm :
*pLength = 6;
usNbDeltaMinute = *(USHORT UNALIGNED *)&pInData[4]; //memcpy(&usNbDeltaMinute, (USHORT *) &pInData[4], 2);
ASSERT((usNbDeltaMinute >= 0) && (usNbDeltaMinute < 3600));
usDeltaMinute = usNbDeltaMinute % 60; usDeltaHour = usNbDeltaMinute / 60;
break;
default :
*pLength = 4;
break; }
usMinute = (USHORT) (ulNbMinute % 60); ulNbHour = ulNbMinute / 60;
usHour = (USHORT) (ulNbHour % 24); usNbDay = (USHORT) (ulNbHour / 24);
usNbFourYears = usNbDay / 1461; usNbDay = usNbDay % 1461; usYear = 4 * usNbFourYears;
if ((usNbDay >= 0) && (usNbDay <= 365)) { bBissextile = TRUE; usNbDayInYear = usNbDay; } if ((usNbDay >= 366) && (usNbDay <= 730)) { usYear += 1; usNbDayInYear = usNbDay - 366; } if ((usNbDay >= 731) && (usNbDay <= 1095)) { usYear += 2; usNbDayInYear = usNbDay - 731; } if ((usNbDay >= 1096) && (usNbDay <= 1460)) { usYear += 3; usNbDayInYear = usNbDay - 1096; }
usMonth = 1; while (usNbDayInYear >= (((usMonth >= 2) && (bBissextile)) ? NbDaysInMonth[usMonth] + 1 : NbDaysInMonth[usMonth])) { usMonth++; }
usDay = usNbDayInYear - (((usMonth - 1 >= 2) && (bBissextile)) ? NbDaysInMonth[usMonth - 1] + 1 : NbDaysInMonth[usMonth - 1]) + 1; switch(Format) { case UTCT_YYMMDDhhmmZ :
pOutBloc->usLen = 11;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
*pCurrent++ = '0' + usYear / 10; *pCurrent++ = '0' + usYear % 10; *pCurrent++ = '0' + usMonth / 10; *pCurrent++ = '0' + usMonth % 10; *pCurrent++ = '0' + usDay / 10; *pCurrent++ = '0' + usDay % 10; *pCurrent++ = '0' + usHour / 10; *pCurrent++ = '0' + usHour % 10; *pCurrent++ = '0' + usMinute / 10; *pCurrent++ = '0' + usMinute % 10; *pCurrent = 'Z';
break;
case UTCT_YYMMDDhhmmphhmm :
pOutBloc->usLen = 15;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
*pCurrent++ = '0' + usYear / 10; *pCurrent++ = '0' + usYear % 10; *pCurrent++ = '0' + usMonth / 10; *pCurrent++ = '0' + usMonth % 10; *pCurrent++ = '0' + usDay / 10; *pCurrent++ = '0' + usDay % 10; *pCurrent++ = '0' + usHour / 10; *pCurrent++ = '0' + usHour % 10; *pCurrent++ = '0' + usMinute / 10; *pCurrent++ = '0' + usMinute % 10; *pCurrent++ = '+'; *pCurrent++ = '0' + usDeltaHour / 10; *pCurrent++ = '0' + usDeltaHour % 10; *pCurrent++ = '0' + usDeltaMinute / 10; *pCurrent++ = '0' + usDeltaMinute % 10;
break;
case UTCT_YYMMDDhhmmmhhmm :
pOutBloc->usLen = 15;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
*pCurrent++ = '0' + usYear / 10; *pCurrent++ = '0' + usYear % 10; *pCurrent++ = '0' + usMonth / 10; *pCurrent++ = '0' + usMonth % 10; *pCurrent++ = '0' + usDay / 10; *pCurrent++ = '0' + usDay % 10; *pCurrent++ = '0' + usHour / 10; *pCurrent++ = '0' + usHour % 10; *pCurrent++ = '0' + usMinute / 10; *pCurrent++ = '0' + usMinute % 10; *pCurrent++ = '-'; *pCurrent++ = '0' + usDeltaHour / 10; *pCurrent++ = '0' + usDeltaHour % 10; *pCurrent++ = '0' + usDeltaMinute / 10; *pCurrent++ = '0' + usDeltaMinute % 10;
break;
case UTCT_YYMMDDhhmmssZ :
pOutBloc->usLen = 13;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
*pCurrent++ = '0' + usYear / 10; *pCurrent++ = '0' + usYear % 10; *pCurrent++ = '0' + usMonth / 10; *pCurrent++ = '0' + usMonth % 10; *pCurrent++ = '0' + usDay / 10; *pCurrent++ = '0' + usDay % 10; *pCurrent++ = '0' + usHour / 10; *pCurrent++ = '0' + usHour % 10; *pCurrent++ = '0' + usMinute / 10; *pCurrent++ = '0' + usMinute % 10; *pCurrent++ = '0' + usSecond / 10; *pCurrent++ = '0' + usSecond % 10; *pCurrent++ = 'Z';
break;
case UTCT_YYMMDDhhmmssphhmm :
pOutBloc->usLen = 17;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
*pCurrent++ = '0' + usYear / 10; *pCurrent++ = '0' + usYear % 10; *pCurrent++ = '0' + usMonth / 10; *pCurrent++ = '0' + usMonth % 10; *pCurrent++ = '0' + usDay / 10; *pCurrent++ = '0' + usDay % 10; *pCurrent++ = '0' + usHour / 10; *pCurrent++ = '0' + usHour % 10; *pCurrent++ = '0' + usMinute / 10; *pCurrent++ = '0' + usMinute % 10; *pCurrent++ = '0' + usSecond / 10; *pCurrent++ = '0' + usSecond % 10; *pCurrent++ = '+'; *pCurrent++ = '0' + usDeltaHour / 10; *pCurrent++ = '0' + usDeltaHour % 10; *pCurrent++ = '0' + usDeltaMinute / 10; *pCurrent++ = '0' + usDeltaMinute % 10;
break;
case UTCT_YYMMDDhhmmssmhhmm :
pOutBloc->usLen = 17;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); }
pCurrent = pOutBloc->pData;
*pCurrent++ = '0' + usYear / 10; *pCurrent++ = '0' + usYear % 10; *pCurrent++ = '0' + usMonth / 10; *pCurrent++ = '0' + usMonth % 10; *pCurrent++ = '0' + usDay / 10; *pCurrent++ = '0' + usDay % 10; *pCurrent++ = '0' + usHour / 10; *pCurrent++ = '0' + usHour % 10; *pCurrent++ = '0' + usMinute / 10; *pCurrent++ = '0' + usMinute % 10; *pCurrent++ = '0' + usSecond / 10; *pCurrent++ = '0' + usSecond % 10; *pCurrent++ = '-'; *pCurrent++ = '0' + usDeltaHour / 10; *pCurrent++ = '0' + usDeltaHour % 10; *pCurrent++ = '0' + usDeltaMinute / 10; *pCurrent++ = '0' + usDeltaMinute % 10;
break;
default :
return(RV_INVALID_DATA);
break; }
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Decode_SubjectPKInfo(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type SubjectPublicKeyInfo.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_SubjectPKInfo(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 algorithmPart, subjectPKPart;// BLOC
// CompData;
BYTE *pCurrent; int rv; USHORT Length;
algorithmPart.Asn1.pData = NULL; subjectPKPart.Asn1.pData = NULL;
pCurrent = pInData; rv = CC_Decode_AlgorithmIdentifier(pCurrent, &(algorithmPart.Content), &Length); if (rv != RV_SUCCESS) goto err; algorithmPart.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&algorithmPart); GMEM_Free(algorithmPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;
#ifdef _TRICKY_COMPRESSION
/* Ne pas faire le RawDecode a permis de gagner l'octet 0xFF */#ifdef _OPT_HEADER
if (pCurrent[0] < 0x80) { CompData.usLen = pCurrent[0]; CompData.pData = &(pCurrent[1]); Length = CompData.usLen + 1; } else { CompData.usLen = ((pCurrent[0] & 0x7F) << 8) + pCurrent[1]; CompData.pData = &(pCurrent[2]); Length = CompData.usLen + 2; }#else /* _OPT_HEADER */
CompData.usLen = (pCurrent[0] << 8) + pCurrent[1]; CompData.pData = &(pCurrent[2]); Length = CompData.usLen + 2;#endif
subjectPKPart.Content.usLen = CompData.usLen; if ((subjectPKPart.Content.pData = GMEM_Alloc(subjectPKPart.Content.usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; } memcpy(subjectPKPart.Content.pData, CompData.pData, subjectPKPart.Content.usLen );
subjectPKPart.Tag = TAG_BIT_STRING; rv = CC_BuildAsn1(&subjectPKPart); GMEM_Free(subjectPKPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;#else /* _TRICKY_COMPRESSION */
rv = CC_RawDecode(pCurrent, &(subjectPKPart.Content), &Length, FALSE); if (rv != RV_SUCCESS) goto err; subjectPKPart.Tag = TAG_BIT_STRING; rv = CC_BuildAsn1(&subjectPKPart); GMEM_Free(subjectPKPart.Content.pData); if (rv != RV_SUCCESS) goto err; pCurrent += Length;#endif
*pLength = (unsigned short)(DWORD) (pCurrent - pInData);
/* Calcul de la longueur du d�cod� et allocation */ pOutBloc->usLen = algorithmPart.Asn1.usLen + subjectPKPart.Asn1.usLen;
if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
/* Reconstruction */ pCurrent = pOutBloc->pData;
memcpy(pCurrent, algorithmPart.Asn1.pData, algorithmPart.Asn1.usLen); GMEM_Free(algorithmPart.Asn1.pData); pCurrent += algorithmPart.Asn1.usLen;
memcpy(pCurrent, subjectPKPart.Asn1.pData, subjectPKPart.Asn1.usLen); GMEM_Free(subjectPKPart.Asn1.pData); pCurrent += subjectPKPart.Asn1.usLen;
return(RV_SUCCESS);
err: GMEM_Free(algorithmPart.Asn1.pData); GMEM_Free(subjectPKPart.Asn1.pData);
return rv;}
/*******************************************************************************
* int CC_Decode_UniqueIdentifier(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type UniqueIdentifier.* Ceci consiste seulement en le d�codage brute (CC_RawDecode) de* la donn�e d'entr�e.** Remarks : ** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_UniqueIdentifier(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ int rv;
rv = CC_RawDecode(pInData, pOutBloc, pLength, TRUE); if (rv != RV_SUCCESS) return rv;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Decode_Extensions(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type Extensions.* Ceci consiste en le d�codage des diff�rentes parties encod�es* successives, leurs enrobages respectifs (tags uniquement* par la spec X.509), et la concat�nation de ces r�sultats.** Remarks : Voir l'encodage* L'ajout d'un enrobage 'context sp�cifique' est requis** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)* pLength : la longueur de donn�es encod�s utilis�e** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_Extensions(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ ASN1 ExtensionPart[MAX_AVA], InOutAsn1; BYTE *pCurrent; int rv; USHORT i, usNbExtension, Length;
/* D�codage des diff�rents composants et calcul de la longueur n�cessaire */
pCurrent = pInData; InOutAsn1.Content.usLen = 0; usNbExtension = *pCurrent; pCurrent++;
for (i = 0; i < usNbExtension; i++) { ExtensionPart[i].Asn1.pData = NULL; }
for (i = 0; i < usNbExtension; i++) { rv = CC_Decode_Extension(pCurrent, &(ExtensionPart[i].Content), &Length); if (rv != RV_SUCCESS) goto err; ExtensionPart[i].Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&ExtensionPart[i]); GMEM_Free(ExtensionPart[i].Content.pData); if (rv != RV_SUCCESS) goto err; InOutAsn1.Content.usLen += ExtensionPart[i].Asn1.usLen; pCurrent += Length; }
*pLength = (unsigned short)(DWORD) (pCurrent - pInData);
/* Reconstruction de la partie int�rieure au 'context specific' */ if ((InOutAsn1.Content.pData = GMEM_Alloc(InOutAsn1.Content.usLen)) == NULL_PTR) { rv = RV_MALLOC_FAILED; goto err; }
pCurrent = InOutAsn1.Content.pData;
for (i = 0; i < usNbExtension; i++) { memcpy(pCurrent, ExtensionPart[i].Asn1.pData, ExtensionPart[i].Asn1.usLen); GMEM_Free(ExtensionPart[i].Asn1.pData); pCurrent += ExtensionPart[i].Asn1.usLen; }
/* Ajout de l'enrobage 'context specific' */
InOutAsn1.Tag = TAG_SEQUENCE; rv = CC_BuildAsn1(&InOutAsn1); GMEM_Free(InOutAsn1.Content.pData); if (rv != RV_SUCCESS) return rv;
*pOutBloc = InOutAsn1.Asn1; return(RV_SUCCESS);
err: for (i = 0; i < usNbExtension; i++) { GMEM_Free(ExtensionPart[i].Asn1.pData); }
return rv;}
/*******************************************************************************
* int CC_Decode_Extension(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code une donn�e de type Extension.* Ceci consiste seulement en le d�codage brute (CC_RawDecode) de* la donn�e d'entr�e.** Remarks : ** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_Extension(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{ int rv;
rv = CC_RawDecode(pInData, pOutBloc, pLength, TRUE); if (rv != RV_SUCCESS) return rv;
return(RV_SUCCESS);}
/*******************************************************************************
* int CC_Decode_Signature(BYTE *pInData,* BLOC *pOutBloc,* USHORT *pLength* )** Description : D�code la signature du certificat.* Ceci consiste seulement en le d�codage brute (CC_RawDecode) de* la donn�e d'entr�e.** Remarks : Voir l'encodage** In : pInBloc : la partie � d�coder (champ Content)** Out : pOutBloc : le d�cod� (m�moire allou�e ici � lib�rer par la* fonction appelante)** Responses : RV_SUCCESS : All is OK.* RV_MALLOC_FAILED : Un malloc a �chou�.* Autre : D'autres codes d'erreur peuvent �tre retourn�s par des* fonctions d'un niveau inf�rieur.********************************************************************************/int CC_Decode_Signature(BYTE *pInData, BLOC *pOutBloc, USHORT *pLength )
{// BLOC
// CompData;
int rv;
#ifdef _TRICKY_COMPRESSION
/* Ne pas faire le RawDecode a permis de gagner l'octet 0xFF */#ifdef _OPT_HEADER
if (pInData[0] < 0x80) { CompData.usLen = pInData[0]; CompData.pData = &(pInData[1]); *pLength = CompData.usLen + 1; } else { CompData.usLen = ((pInData[0] & 0x7F) << 8) + pInData[1]; CompData.pData = &(pInData[2]); *pLength = CompData.usLen + 2; }#else /* _OPT_HEADER */
CompData.usLen = (pInData[0] << 8) + pInData[1]; CompData.pData = &(pInData[2]); *pLength = CompData.usLen + 2;#endif
pOutBloc->usLen = CompData.usLen; if ((pOutBloc->pData = GMEM_Alloc(pOutBloc->usLen)) == NULL_PTR) { return(RV_MALLOC_FAILED); } memcpy(pOutBloc->pData, CompData.pData, pOutBloc->usLen);#else /* _TRICKY_COMPRESSION */
rv = CC_RawDecode(pInData, pOutBloc, pLength, TRUE); if (rv != RV_SUCCESS) return rv;#endif
return(RV_SUCCESS);}
|
