ssl_asn1.c 23 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640
  1. /* ssl/ssl_asn1.c */
  2. /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
  3. * All rights reserved.
  4. *
  5. * This package is an SSL implementation written
  6. * by Eric Young (eay@cryptsoft.com).
  7. * The implementation was written so as to conform with Netscapes SSL.
  8. *
  9. * This library is free for commercial and non-commercial use as long as
  10. * the following conditions are aheared to. The following conditions
  11. * apply to all code found in this distribution, be it the RC4, RSA,
  12. * lhash, DES, etc., code; not just the SSL code. The SSL documentation
  13. * included with this distribution is covered by the same copyright terms
  14. * except that the holder is Tim Hudson (tjh@cryptsoft.com).
  15. *
  16. * Copyright remains Eric Young's, and as such any Copyright notices in
  17. * the code are not to be removed.
  18. * If this package is used in a product, Eric Young should be given attribution
  19. * as the author of the parts of the library used.
  20. * This can be in the form of a textual message at program startup or
  21. * in documentation (online or textual) provided with the package.
  22. *
  23. * Redistribution and use in source and binary forms, with or without
  24. * modification, are permitted provided that the following conditions
  25. * are met:
  26. * 1. Redistributions of source code must retain the copyright
  27. * notice, this list of conditions and the following disclaimer.
  28. * 2. Redistributions in binary form must reproduce the above copyright
  29. * notice, this list of conditions and the following disclaimer in the
  30. * documentation and/or other materials provided with the distribution.
  31. * 3. All advertising materials mentioning features or use of this software
  32. * must display the following acknowledgement:
  33. * "This product includes cryptographic software written by
  34. * Eric Young (eay@cryptsoft.com)"
  35. * The word 'cryptographic' can be left out if the rouines from the library
  36. * being used are not cryptographic related :-).
  37. * 4. If you include any Windows specific code (or a derivative thereof) from
  38. * the apps directory (application code) you must include an acknowledgement:
  39. * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
  40. *
  41. * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
  42. * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  43. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  44. * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  45. * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  46. * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  47. * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  48. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  49. * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  50. * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  51. * SUCH DAMAGE.
  52. *
  53. * The licence and distribution terms for any publically available version or
  54. * derivative of this code cannot be changed. i.e. this code cannot simply be
  55. * copied and put under another distribution licence
  56. * [including the GNU Public Licence.]
  57. */
  58. /* ====================================================================
  59. * Copyright 2005 Nokia. All rights reserved.
  60. *
  61. * The portions of the attached software ("Contribution") is developed by
  62. * Nokia Corporation and is licensed pursuant to the OpenSSL open source
  63. * license.
  64. *
  65. * The Contribution, originally written by Mika Kousa and Pasi Eronen of
  66. * Nokia Corporation, consists of the "PSK" (Pre-Shared Key) ciphersuites
  67. * support (see RFC 4279) to OpenSSL.
  68. *
  69. * No patent licenses or other rights except those expressly stated in
  70. * the OpenSSL open source license shall be deemed granted or received
  71. * expressly, by implication, estoppel, or otherwise.
  72. *
  73. * No assurances are provided by Nokia that the Contribution does not
  74. * infringe the patent or other intellectual property rights of any third
  75. * party or that the license provides you with all the necessary rights
  76. * to make use of the Contribution.
  77. *
  78. * THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IN
  79. * ADDITION TO THE DISCLAIMERS INCLUDED IN THE LICENSE, NOKIA
  80. * SPECIFICALLY DISCLAIMS ANY LIABILITY FOR CLAIMS BROUGHT BY YOU OR ANY
  81. * OTHER ENTITY BASED ON INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS OR
  82. * OTHERWISE.
  83. */
  84. #include <stdio.h>
  85. #include <stdlib.h>
  86. #include "ssl_locl.h"
  87. #include <openssl/asn1_mac.h>
  88. #include <openssl/objects.h>
  89. #include <openssl/x509.h>
  90. typedef struct ssl_session_asn1_st {
  91. ASN1_INTEGER version;
  92. ASN1_INTEGER ssl_version;
  93. ASN1_OCTET_STRING cipher;
  94. ASN1_OCTET_STRING comp_id;
  95. ASN1_OCTET_STRING master_key;
  96. ASN1_OCTET_STRING session_id;
  97. ASN1_OCTET_STRING session_id_context;
  98. ASN1_OCTET_STRING key_arg;
  99. #ifndef OPENSSL_NO_KRB5
  100. ASN1_OCTET_STRING krb5_princ;
  101. #endif /* OPENSSL_NO_KRB5 */
  102. ASN1_INTEGER time;
  103. ASN1_INTEGER timeout;
  104. ASN1_INTEGER verify_result;
  105. #ifndef OPENSSL_NO_TLSEXT
  106. ASN1_OCTET_STRING tlsext_hostname;
  107. ASN1_INTEGER tlsext_tick_lifetime;
  108. ASN1_OCTET_STRING tlsext_tick;
  109. #endif /* OPENSSL_NO_TLSEXT */
  110. #ifndef OPENSSL_NO_PSK
  111. ASN1_OCTET_STRING psk_identity_hint;
  112. ASN1_OCTET_STRING psk_identity;
  113. #endif /* OPENSSL_NO_PSK */
  114. #ifndef OPENSSL_NO_SRP
  115. ASN1_OCTET_STRING srp_username;
  116. #endif /* OPENSSL_NO_SRP */
  117. } SSL_SESSION_ASN1;
  118. int i2d_SSL_SESSION(SSL_SESSION *in, unsigned char **pp)
  119. {
  120. #define LSIZE2 (sizeof(long)*2)
  121. int v1 = 0, v2 = 0, v3 = 0, v4 = 0, v5 = 0;
  122. unsigned char buf[4], ibuf1[LSIZE2], ibuf2[LSIZE2];
  123. unsigned char ibuf3[LSIZE2], ibuf4[LSIZE2], ibuf5[LSIZE2];
  124. #ifndef OPENSSL_NO_TLSEXT
  125. int v6 = 0, v9 = 0, v10 = 0;
  126. unsigned char ibuf6[LSIZE2];
  127. #endif
  128. #ifndef OPENSSL_NO_PSK
  129. int v7 = 0, v8 = 0;
  130. #endif
  131. #ifndef OPENSSL_NO_COMP
  132. unsigned char cbuf;
  133. int v11 = 0;
  134. #endif
  135. #ifndef OPENSSL_NO_SRP
  136. int v12 = 0;
  137. #endif
  138. long l;
  139. SSL_SESSION_ASN1 a;
  140. M_ASN1_I2D_vars(in);
  141. if ((in == NULL) || ((in->cipher == NULL) && (in->cipher_id == 0)))
  142. return (0);
  143. /*
  144. * Note that I cheat in the following 2 assignments. I know that if the
  145. * ASN1_INTEGER passed to ASN1_INTEGER_set is > sizeof(long)+1, the
  146. * buffer will not be re-OPENSSL_malloc()ed. This is a bit evil but makes
  147. * things simple, no dynamic allocation to clean up :-)
  148. */
  149. a.version.length = LSIZE2;
  150. a.version.type = V_ASN1_INTEGER;
  151. a.version.data = ibuf1;
  152. ASN1_INTEGER_set(&(a.version), SSL_SESSION_ASN1_VERSION);
  153. a.ssl_version.length = LSIZE2;
  154. a.ssl_version.type = V_ASN1_INTEGER;
  155. a.ssl_version.data = ibuf2;
  156. ASN1_INTEGER_set(&(a.ssl_version), in->ssl_version);
  157. a.cipher.type = V_ASN1_OCTET_STRING;
  158. a.cipher.data = buf;
  159. if (in->cipher == NULL)
  160. l = in->cipher_id;
  161. else
  162. l = in->cipher->id;
  163. if (in->ssl_version == SSL2_VERSION) {
  164. a.cipher.length = 3;
  165. buf[0] = ((unsigned char)(l >> 16L)) & 0xff;
  166. buf[1] = ((unsigned char)(l >> 8L)) & 0xff;
  167. buf[2] = ((unsigned char)(l)) & 0xff;
  168. } else {
  169. a.cipher.length = 2;
  170. buf[0] = ((unsigned char)(l >> 8L)) & 0xff;
  171. buf[1] = ((unsigned char)(l)) & 0xff;
  172. }
  173. #ifndef OPENSSL_NO_COMP
  174. if (in->compress_meth) {
  175. cbuf = (unsigned char)in->compress_meth;
  176. a.comp_id.length = 1;
  177. a.comp_id.type = V_ASN1_OCTET_STRING;
  178. a.comp_id.data = &cbuf;
  179. }
  180. #endif
  181. a.master_key.length = in->master_key_length;
  182. a.master_key.type = V_ASN1_OCTET_STRING;
  183. a.master_key.data = in->master_key;
  184. a.session_id.length = in->session_id_length;
  185. a.session_id.type = V_ASN1_OCTET_STRING;
  186. a.session_id.data = in->session_id;
  187. a.session_id_context.length = in->sid_ctx_length;
  188. a.session_id_context.type = V_ASN1_OCTET_STRING;
  189. a.session_id_context.data = in->sid_ctx;
  190. a.key_arg.length = in->key_arg_length;
  191. a.key_arg.type = V_ASN1_OCTET_STRING;
  192. a.key_arg.data = in->key_arg;
  193. #ifndef OPENSSL_NO_KRB5
  194. if (in->krb5_client_princ_len) {
  195. a.krb5_princ.length = in->krb5_client_princ_len;
  196. a.krb5_princ.type = V_ASN1_OCTET_STRING;
  197. a.krb5_princ.data = in->krb5_client_princ;
  198. }
  199. #endif /* OPENSSL_NO_KRB5 */
  200. if (in->time != 0L) {
  201. a.time.length = LSIZE2;
  202. a.time.type = V_ASN1_INTEGER;
  203. a.time.data = ibuf3;
  204. ASN1_INTEGER_set(&(a.time), in->time);
  205. }
  206. if (in->timeout != 0L) {
  207. a.timeout.length = LSIZE2;
  208. a.timeout.type = V_ASN1_INTEGER;
  209. a.timeout.data = ibuf4;
  210. ASN1_INTEGER_set(&(a.timeout), in->timeout);
  211. }
  212. if (in->verify_result != X509_V_OK) {
  213. a.verify_result.length = LSIZE2;
  214. a.verify_result.type = V_ASN1_INTEGER;
  215. a.verify_result.data = ibuf5;
  216. ASN1_INTEGER_set(&a.verify_result, in->verify_result);
  217. }
  218. #ifndef OPENSSL_NO_TLSEXT
  219. if (in->tlsext_hostname) {
  220. a.tlsext_hostname.length = strlen(in->tlsext_hostname);
  221. a.tlsext_hostname.type = V_ASN1_OCTET_STRING;
  222. a.tlsext_hostname.data = (unsigned char *)in->tlsext_hostname;
  223. }
  224. if (in->tlsext_tick) {
  225. a.tlsext_tick.length = in->tlsext_ticklen;
  226. a.tlsext_tick.type = V_ASN1_OCTET_STRING;
  227. a.tlsext_tick.data = (unsigned char *)in->tlsext_tick;
  228. }
  229. if (in->tlsext_tick_lifetime_hint > 0) {
  230. a.tlsext_tick_lifetime.length = LSIZE2;
  231. a.tlsext_tick_lifetime.type = V_ASN1_INTEGER;
  232. a.tlsext_tick_lifetime.data = ibuf6;
  233. ASN1_INTEGER_set(&a.tlsext_tick_lifetime,
  234. in->tlsext_tick_lifetime_hint);
  235. }
  236. #endif /* OPENSSL_NO_TLSEXT */
  237. #ifndef OPENSSL_NO_PSK
  238. if (in->psk_identity_hint) {
  239. a.psk_identity_hint.length = strlen(in->psk_identity_hint);
  240. a.psk_identity_hint.type = V_ASN1_OCTET_STRING;
  241. a.psk_identity_hint.data = (unsigned char *)(in->psk_identity_hint);
  242. }
  243. if (in->psk_identity) {
  244. a.psk_identity.length = strlen(in->psk_identity);
  245. a.psk_identity.type = V_ASN1_OCTET_STRING;
  246. a.psk_identity.data = (unsigned char *)(in->psk_identity);
  247. }
  248. #endif /* OPENSSL_NO_PSK */
  249. #ifndef OPENSSL_NO_SRP
  250. if (in->srp_username) {
  251. a.srp_username.length = strlen(in->srp_username);
  252. a.srp_username.type = V_ASN1_OCTET_STRING;
  253. a.srp_username.data = (unsigned char *)(in->srp_username);
  254. }
  255. #endif /* OPENSSL_NO_SRP */
  256. M_ASN1_I2D_len(&(a.version), i2d_ASN1_INTEGER);
  257. M_ASN1_I2D_len(&(a.ssl_version), i2d_ASN1_INTEGER);
  258. M_ASN1_I2D_len(&(a.cipher), i2d_ASN1_OCTET_STRING);
  259. M_ASN1_I2D_len(&(a.session_id), i2d_ASN1_OCTET_STRING);
  260. M_ASN1_I2D_len(&(a.master_key), i2d_ASN1_OCTET_STRING);
  261. #ifndef OPENSSL_NO_KRB5
  262. if (in->krb5_client_princ_len)
  263. M_ASN1_I2D_len(&(a.krb5_princ), i2d_ASN1_OCTET_STRING);
  264. #endif /* OPENSSL_NO_KRB5 */
  265. if (in->key_arg_length > 0)
  266. M_ASN1_I2D_len_IMP_opt(&(a.key_arg), i2d_ASN1_OCTET_STRING);
  267. if (in->time != 0L)
  268. M_ASN1_I2D_len_EXP_opt(&(a.time), i2d_ASN1_INTEGER, 1, v1);
  269. if (in->timeout != 0L)
  270. M_ASN1_I2D_len_EXP_opt(&(a.timeout), i2d_ASN1_INTEGER, 2, v2);
  271. if (in->peer != NULL)
  272. M_ASN1_I2D_len_EXP_opt(in->peer, i2d_X509, 3, v3);
  273. M_ASN1_I2D_len_EXP_opt(&a.session_id_context, i2d_ASN1_OCTET_STRING, 4,
  274. v4);
  275. if (in->verify_result != X509_V_OK)
  276. M_ASN1_I2D_len_EXP_opt(&(a.verify_result), i2d_ASN1_INTEGER, 5, v5);
  277. #ifndef OPENSSL_NO_TLSEXT
  278. if (in->tlsext_tick_lifetime_hint > 0)
  279. M_ASN1_I2D_len_EXP_opt(&a.tlsext_tick_lifetime, i2d_ASN1_INTEGER, 9,
  280. v9);
  281. if (in->tlsext_tick)
  282. M_ASN1_I2D_len_EXP_opt(&(a.tlsext_tick), i2d_ASN1_OCTET_STRING, 10,
  283. v10);
  284. if (in->tlsext_hostname)
  285. M_ASN1_I2D_len_EXP_opt(&(a.tlsext_hostname), i2d_ASN1_OCTET_STRING, 6,
  286. v6);
  287. # ifndef OPENSSL_NO_COMP
  288. if (in->compress_meth)
  289. M_ASN1_I2D_len_EXP_opt(&(a.comp_id), i2d_ASN1_OCTET_STRING, 11, v11);
  290. # endif
  291. #endif /* OPENSSL_NO_TLSEXT */
  292. #ifndef OPENSSL_NO_PSK
  293. if (in->psk_identity_hint)
  294. M_ASN1_I2D_len_EXP_opt(&(a.psk_identity_hint), i2d_ASN1_OCTET_STRING,
  295. 7, v7);
  296. if (in->psk_identity)
  297. M_ASN1_I2D_len_EXP_opt(&(a.psk_identity), i2d_ASN1_OCTET_STRING, 8,
  298. v8);
  299. #endif /* OPENSSL_NO_PSK */
  300. #ifndef OPENSSL_NO_SRP
  301. if (in->srp_username)
  302. M_ASN1_I2D_len_EXP_opt(&(a.srp_username), i2d_ASN1_OCTET_STRING, 12,
  303. v12);
  304. #endif /* OPENSSL_NO_SRP */
  305. M_ASN1_I2D_seq_total();
  306. M_ASN1_I2D_put(&(a.version), i2d_ASN1_INTEGER);
  307. M_ASN1_I2D_put(&(a.ssl_version), i2d_ASN1_INTEGER);
  308. M_ASN1_I2D_put(&(a.cipher), i2d_ASN1_OCTET_STRING);
  309. M_ASN1_I2D_put(&(a.session_id), i2d_ASN1_OCTET_STRING);
  310. M_ASN1_I2D_put(&(a.master_key), i2d_ASN1_OCTET_STRING);
  311. #ifndef OPENSSL_NO_KRB5
  312. if (in->krb5_client_princ_len)
  313. M_ASN1_I2D_put(&(a.krb5_princ), i2d_ASN1_OCTET_STRING);
  314. #endif /* OPENSSL_NO_KRB5 */
  315. if (in->key_arg_length > 0)
  316. M_ASN1_I2D_put_IMP_opt(&(a.key_arg), i2d_ASN1_OCTET_STRING, 0);
  317. if (in->time != 0L)
  318. M_ASN1_I2D_put_EXP_opt(&(a.time), i2d_ASN1_INTEGER, 1, v1);
  319. if (in->timeout != 0L)
  320. M_ASN1_I2D_put_EXP_opt(&(a.timeout), i2d_ASN1_INTEGER, 2, v2);
  321. if (in->peer != NULL)
  322. M_ASN1_I2D_put_EXP_opt(in->peer, i2d_X509, 3, v3);
  323. M_ASN1_I2D_put_EXP_opt(&a.session_id_context, i2d_ASN1_OCTET_STRING, 4,
  324. v4);
  325. if (in->verify_result != X509_V_OK)
  326. M_ASN1_I2D_put_EXP_opt(&a.verify_result, i2d_ASN1_INTEGER, 5, v5);
  327. #ifndef OPENSSL_NO_TLSEXT
  328. if (in->tlsext_hostname)
  329. M_ASN1_I2D_put_EXP_opt(&(a.tlsext_hostname), i2d_ASN1_OCTET_STRING, 6,
  330. v6);
  331. #endif /* OPENSSL_NO_TLSEXT */
  332. #ifndef OPENSSL_NO_PSK
  333. if (in->psk_identity_hint)
  334. M_ASN1_I2D_put_EXP_opt(&(a.psk_identity_hint), i2d_ASN1_OCTET_STRING,
  335. 7, v7);
  336. if (in->psk_identity)
  337. M_ASN1_I2D_put_EXP_opt(&(a.psk_identity), i2d_ASN1_OCTET_STRING, 8,
  338. v8);
  339. #endif /* OPENSSL_NO_PSK */
  340. #ifndef OPENSSL_NO_TLSEXT
  341. if (in->tlsext_tick_lifetime_hint > 0)
  342. M_ASN1_I2D_put_EXP_opt(&a.tlsext_tick_lifetime, i2d_ASN1_INTEGER, 9,
  343. v9);
  344. if (in->tlsext_tick)
  345. M_ASN1_I2D_put_EXP_opt(&(a.tlsext_tick), i2d_ASN1_OCTET_STRING, 10,
  346. v10);
  347. #endif /* OPENSSL_NO_TLSEXT */
  348. #ifndef OPENSSL_NO_COMP
  349. if (in->compress_meth)
  350. M_ASN1_I2D_put_EXP_opt(&(a.comp_id), i2d_ASN1_OCTET_STRING, 11, v11);
  351. #endif
  352. #ifndef OPENSSL_NO_SRP
  353. if (in->srp_username)
  354. M_ASN1_I2D_put_EXP_opt(&(a.srp_username), i2d_ASN1_OCTET_STRING, 12,
  355. v12);
  356. #endif /* OPENSSL_NO_SRP */
  357. M_ASN1_I2D_finish();
  358. }
  359. SSL_SESSION *d2i_SSL_SESSION(SSL_SESSION **a, const unsigned char **pp,
  360. long length)
  361. {
  362. int ssl_version = 0, i;
  363. long id;
  364. ASN1_INTEGER ai, *aip;
  365. ASN1_OCTET_STRING os, *osp;
  366. M_ASN1_D2I_vars(a, SSL_SESSION *, SSL_SESSION_new);
  367. aip = &ai;
  368. osp = &os;
  369. M_ASN1_D2I_Init();
  370. M_ASN1_D2I_start_sequence();
  371. ai.data = NULL;
  372. ai.length = 0;
  373. M_ASN1_D2I_get_x(ASN1_INTEGER, aip, d2i_ASN1_INTEGER);
  374. if (ai.data != NULL) {
  375. OPENSSL_free(ai.data);
  376. ai.data = NULL;
  377. ai.length = 0;
  378. }
  379. /* we don't care about the version right now :-) */
  380. M_ASN1_D2I_get_x(ASN1_INTEGER, aip, d2i_ASN1_INTEGER);
  381. ssl_version = (int)ASN1_INTEGER_get(aip);
  382. ret->ssl_version = ssl_version;
  383. if (ai.data != NULL) {
  384. OPENSSL_free(ai.data);
  385. ai.data = NULL;
  386. ai.length = 0;
  387. }
  388. os.data = NULL;
  389. os.length = 0;
  390. M_ASN1_D2I_get_x(ASN1_OCTET_STRING, osp, d2i_ASN1_OCTET_STRING);
  391. if (ssl_version == SSL2_VERSION) {
  392. if (os.length != 3) {
  393. c.error = SSL_R_CIPHER_CODE_WRONG_LENGTH;
  394. c.line = __LINE__;
  395. goto err;
  396. }
  397. id = 0x02000000L |
  398. ((unsigned long)os.data[0] << 16L) |
  399. ((unsigned long)os.data[1] << 8L) | (unsigned long)os.data[2];
  400. } else if ((ssl_version >> 8) == SSL3_VERSION_MAJOR
  401. || (ssl_version >> 8) == DTLS1_VERSION_MAJOR
  402. || ssl_version == DTLS1_BAD_VER) {
  403. if (os.length != 2) {
  404. c.error = SSL_R_CIPHER_CODE_WRONG_LENGTH;
  405. c.line = __LINE__;
  406. goto err;
  407. }
  408. id = 0x03000000L |
  409. ((unsigned long)os.data[0] << 8L) | (unsigned long)os.data[1];
  410. } else {
  411. c.error = SSL_R_UNKNOWN_SSL_VERSION;
  412. c.line = __LINE__;
  413. goto err;
  414. }
  415. ret->cipher = NULL;
  416. ret->cipher_id = id;
  417. M_ASN1_D2I_get_x(ASN1_OCTET_STRING, osp, d2i_ASN1_OCTET_STRING);
  418. if ((ssl_version >> 8) >= SSL3_VERSION_MAJOR)
  419. i = SSL3_MAX_SSL_SESSION_ID_LENGTH;
  420. else /* if (ssl_version>>8 == SSL2_VERSION_MAJOR) */
  421. i = SSL2_MAX_SSL_SESSION_ID_LENGTH;
  422. if (os.length > i)
  423. os.length = i;
  424. if (os.length > (int)sizeof(ret->session_id)) /* can't happen */
  425. os.length = sizeof(ret->session_id);
  426. ret->session_id_length = os.length;
  427. OPENSSL_assert(os.length <= (int)sizeof(ret->session_id));
  428. memcpy(ret->session_id, os.data, os.length);
  429. M_ASN1_D2I_get_x(ASN1_OCTET_STRING, osp, d2i_ASN1_OCTET_STRING);
  430. if (os.length > SSL_MAX_MASTER_KEY_LENGTH)
  431. ret->master_key_length = SSL_MAX_MASTER_KEY_LENGTH;
  432. else
  433. ret->master_key_length = os.length;
  434. memcpy(ret->master_key, os.data, ret->master_key_length);
  435. os.length = 0;
  436. #ifndef OPENSSL_NO_KRB5
  437. os.length = 0;
  438. M_ASN1_D2I_get_opt(osp, d2i_ASN1_OCTET_STRING, V_ASN1_OCTET_STRING);
  439. if (os.data) {
  440. if (os.length > SSL_MAX_KRB5_PRINCIPAL_LENGTH)
  441. ret->krb5_client_princ_len = 0;
  442. else
  443. ret->krb5_client_princ_len = os.length;
  444. memcpy(ret->krb5_client_princ, os.data, ret->krb5_client_princ_len);
  445. OPENSSL_free(os.data);
  446. os.data = NULL;
  447. os.length = 0;
  448. } else
  449. ret->krb5_client_princ_len = 0;
  450. #endif /* OPENSSL_NO_KRB5 */
  451. M_ASN1_D2I_get_IMP_opt(osp, d2i_ASN1_OCTET_STRING, 0,
  452. V_ASN1_OCTET_STRING);
  453. if (os.length > SSL_MAX_KEY_ARG_LENGTH)
  454. ret->key_arg_length = SSL_MAX_KEY_ARG_LENGTH;
  455. else
  456. ret->key_arg_length = os.length;
  457. memcpy(ret->key_arg, os.data, ret->key_arg_length);
  458. if (os.data != NULL)
  459. OPENSSL_free(os.data);
  460. ai.length = 0;
  461. M_ASN1_D2I_get_EXP_opt(aip, d2i_ASN1_INTEGER, 1);
  462. if (ai.data != NULL) {
  463. ret->time = ASN1_INTEGER_get(aip);
  464. OPENSSL_free(ai.data);
  465. ai.data = NULL;
  466. ai.length = 0;
  467. } else
  468. ret->time = (unsigned long)time(NULL);
  469. ai.length = 0;
  470. M_ASN1_D2I_get_EXP_opt(aip, d2i_ASN1_INTEGER, 2);
  471. if (ai.data != NULL) {
  472. ret->timeout = ASN1_INTEGER_get(aip);
  473. OPENSSL_free(ai.data);
  474. ai.data = NULL;
  475. ai.length = 0;
  476. } else
  477. ret->timeout = 3;
  478. if (ret->peer != NULL) {
  479. X509_free(ret->peer);
  480. ret->peer = NULL;
  481. }
  482. M_ASN1_D2I_get_EXP_opt(ret->peer, d2i_X509, 3);
  483. os.length = 0;
  484. os.data = NULL;
  485. M_ASN1_D2I_get_EXP_opt(osp, d2i_ASN1_OCTET_STRING, 4);
  486. if (os.data != NULL) {
  487. if (os.length > SSL_MAX_SID_CTX_LENGTH) {
  488. c.error = SSL_R_BAD_LENGTH;
  489. c.line = __LINE__;
  490. OPENSSL_free(os.data);
  491. os.data = NULL;
  492. os.length = 0;
  493. goto err;
  494. } else {
  495. ret->sid_ctx_length = os.length;
  496. memcpy(ret->sid_ctx, os.data, os.length);
  497. }
  498. OPENSSL_free(os.data);
  499. os.data = NULL;
  500. os.length = 0;
  501. } else
  502. ret->sid_ctx_length = 0;
  503. ai.length = 0;
  504. M_ASN1_D2I_get_EXP_opt(aip, d2i_ASN1_INTEGER, 5);
  505. if (ai.data != NULL) {
  506. ret->verify_result = ASN1_INTEGER_get(aip);
  507. OPENSSL_free(ai.data);
  508. ai.data = NULL;
  509. ai.length = 0;
  510. } else
  511. ret->verify_result = X509_V_OK;
  512. #ifndef OPENSSL_NO_TLSEXT
  513. os.length = 0;
  514. os.data = NULL;
  515. M_ASN1_D2I_get_EXP_opt(osp, d2i_ASN1_OCTET_STRING, 6);
  516. if (os.data) {
  517. ret->tlsext_hostname = BUF_strndup((char *)os.data, os.length);
  518. OPENSSL_free(os.data);
  519. os.data = NULL;
  520. os.length = 0;
  521. } else
  522. ret->tlsext_hostname = NULL;
  523. #endif /* OPENSSL_NO_TLSEXT */
  524. #ifndef OPENSSL_NO_PSK
  525. os.length = 0;
  526. os.data = NULL;
  527. M_ASN1_D2I_get_EXP_opt(osp, d2i_ASN1_OCTET_STRING, 7);
  528. if (os.data) {
  529. ret->psk_identity_hint = BUF_strndup((char *)os.data, os.length);
  530. OPENSSL_free(os.data);
  531. os.data = NULL;
  532. os.length = 0;
  533. } else
  534. ret->psk_identity_hint = NULL;
  535. os.length = 0;
  536. os.data = NULL;
  537. M_ASN1_D2I_get_EXP_opt(osp, d2i_ASN1_OCTET_STRING, 8);
  538. if (os.data) {
  539. ret->psk_identity = BUF_strndup((char *)os.data, os.length);
  540. OPENSSL_free(os.data);
  541. os.data = NULL;
  542. os.length = 0;
  543. } else
  544. ret->psk_identity = NULL;
  545. #endif /* OPENSSL_NO_PSK */
  546. #ifndef OPENSSL_NO_TLSEXT
  547. ai.length = 0;
  548. M_ASN1_D2I_get_EXP_opt(aip, d2i_ASN1_INTEGER, 9);
  549. if (ai.data != NULL) {
  550. ret->tlsext_tick_lifetime_hint = ASN1_INTEGER_get(aip);
  551. OPENSSL_free(ai.data);
  552. ai.data = NULL;
  553. ai.length = 0;
  554. } else if (ret->tlsext_ticklen && ret->session_id_length)
  555. ret->tlsext_tick_lifetime_hint = -1;
  556. else
  557. ret->tlsext_tick_lifetime_hint = 0;
  558. os.length = 0;
  559. os.data = NULL;
  560. M_ASN1_D2I_get_EXP_opt(osp, d2i_ASN1_OCTET_STRING, 10);
  561. if (os.data) {
  562. ret->tlsext_tick = os.data;
  563. ret->tlsext_ticklen = os.length;
  564. os.data = NULL;
  565. os.length = 0;
  566. } else
  567. ret->tlsext_tick = NULL;
  568. #endif /* OPENSSL_NO_TLSEXT */
  569. #ifndef OPENSSL_NO_COMP
  570. os.length = 0;
  571. os.data = NULL;
  572. M_ASN1_D2I_get_EXP_opt(osp, d2i_ASN1_OCTET_STRING, 11);
  573. if (os.data) {
  574. ret->compress_meth = os.data[0];
  575. OPENSSL_free(os.data);
  576. os.data = NULL;
  577. }
  578. #endif
  579. #ifndef OPENSSL_NO_SRP
  580. os.length = 0;
  581. os.data = NULL;
  582. M_ASN1_D2I_get_EXP_opt(osp, d2i_ASN1_OCTET_STRING, 12);
  583. if (os.data) {
  584. ret->srp_username = BUF_strndup((char *)os.data, os.length);
  585. OPENSSL_free(os.data);
  586. os.data = NULL;
  587. os.length = 0;
  588. } else
  589. ret->srp_username = NULL;
  590. #endif /* OPENSSL_NO_SRP */
  591. M_ASN1_D2I_Finish(a, SSL_SESSION_free, SSL_F_D2I_SSL_SESSION);
  592. }