📄 dumpasn1.c
字号:
warnIA5 = TRUE; } } else if( doTimeStr ) { const char *timeStrPtr = ( strOption == STR_UTCTIME ) ? \ timeStr : timeStr + 2; fprintf( output, " %c%c/%c%c/", timeStrPtr[ 4 ], timeStrPtr[ 5 ], timeStrPtr[ 2 ], timeStrPtr[ 3 ] ); if( strOption == STR_UTCTIME ) fprintf( output, ( timeStr[ 0 ] < '5' ) ? "20" : "19" ); else fprintf( output, "%c%c", timeStr[ 0 ], timeStr[ 1 ] ); fprintf( output, "%c%c %c%c:%c%c:%c%c GMT", timeStrPtr[ 0 ], timeStrPtr[ 1 ], timeStrPtr[ 6 ], timeStrPtr[ 7 ], timeStrPtr[ 8 ], timeStrPtr[ 9 ], timeStrPtr[ 10 ], timeStrPtr[ 11 ] ); } else fputc( '\'', output ); fputc( '\n', output ); /* Display any problems we encountered */ if( warnPrintable ) complain( "PrintableString contains illegal character(s)", level ); if( warnIA5 ) complain( "IA5String contains illegal character(s)", level ); if( warnTime ) complain( "Time is encoded incorrectly", level ); if( warnBMP ) complain( "BMPString has missing final byte/half character", level ); }/***************************************************************************** ** ASN.1 Parsing Routines ** *****************************************************************************//* Get an integer value */static long getValue( FILE *inFile, const long length ) { long value; char ch; int i; ch = getc( inFile ); value = ch; for( i = 0; i < length - 1; i++ ) value = ( value << 8 ) | getc( inFile ); fPos += length; return( value ); }/* Get an ASN.1 objects tag and length */static int getItem( FILE *inFile, ASN1_ITEM *item ) { int tag, length, index = 0; memset( item, 0, sizeof( ASN1_ITEM ) ); item->indefinite = FALSE; tag = item->header[ index++ ] = fgetc( inFile ); item->id = tag & ~TAG_MASK; tag &= TAG_MASK; if( tag == TAG_MASK ) { int value; /* Long tag encoded as sequence of 7-bit values. This doesn't try to handle tags > INT_MAX, it'd be pretty peculiar ASN.1 if it had to use tags this large */ tag = 0; do { value = fgetc( inFile ); tag = ( tag << 7 ) | ( value & 0x7F ); item->header[ index++ ] = value; fPos++; } while( value & LEN_XTND && index < 5 && !feof( inFile ) ); if( index == 5 ) { fPos++; /* Tag */ return( FALSE ); } } item->tag = tag; if( feof( inFile ) ) { fPos++; return( FALSE ); } fPos += 2; /* Tag + length */ length = item->header[ index++ ] = fgetc( inFile ); item->headerSize = index; if( length & LEN_XTND ) { int i; length &= LEN_MASK; if( length > 4 ) { /* Impossible length value, probably because we've run into the weeds */ return( -1 ); } item->headerSize += length; item->length = 0; if( !length ) item->indefinite = TRUE; for( i = 0; i < length; i++ ) { int ch = fgetc( inFile ); item->length = ( item->length << 8 ) | ch; item->header[ i + index ] = ch; } fPos += length; } else item->length = length; return( TRUE ); }/* Check whether a BIT STRING or OCTET STRING encapsulates another object */static int checkEncapsulate( FILE *inFile, const int length ) { ASN1_ITEM nestedItem; const int currentPos = fPos; int diffPos; /* If we're not looking for encapsulated objects, return */ if( !checkEncaps ) return( FALSE ); /* Read the details of the next item in the input stream */ getItem( inFile, &nestedItem ); diffPos = fPos - currentPos; fPos = currentPos; fseek( inFile, -diffPos, SEEK_CUR ); /* If it fits exactly within the current item and has a valid-looking tag, treat it as nested data */ if( ( ( nestedItem.id & CLASS_MASK ) == UNIVERSAL || \ ( nestedItem.id & CLASS_MASK ) == CONTEXT ) && \ ( nestedItem.tag > 0 && nestedItem.tag <= 0x31 ) && \ nestedItem.length == length - diffPos ) return( TRUE ); return( FALSE ); }/* Check whether a zero-length item is OK */static int zeroLengthOK( const ASN1_ITEM *item ) { /* An implicitly-tagged NULL can have a zero length. An occurrence of this type of item is almost always an error, however OCSP uses a weird status encoding that encodes result values in tags and then has to use a NULL value to indicate that there's nothing there except the tag that encodes the status, so we allow this as well if zero-length content is explicitly enabled */ if( zeroLengthAllowed && ( item->id & CLASS_MASK ) == CONTEXT ) return( TRUE ); /* If we can't recognise the type from the tag, reject it */ if( ( item->id & CLASS_MASK ) != UNIVERSAL ) return( FALSE ); /* The following types are zero-length by definition */ if( item->tag == EOC || item->tag == NULLTAG ) return( TRUE ); /* A real with a value of zero has zero length */ if( item->tag == REAL ) return( TRUE ); /* Everything after this point requires input from the user to say that zero-length data is OK (usually it's not, so we flag it as a problem) */ if( !zeroLengthAllowed ) return( FALSE ); /* String types can have zero length except for the Unrestricted Character String type ([UNIVERSAL 29]) which has to have at least one octet for the CH-A/CH-B index */ if( item->tag == OCTETSTRING || item->tag == NUMERICSTRING || \ item->tag == PRINTABLESTRING || item->tag == T61STRING || \ item->tag == VIDEOTEXSTRING || item->tag == VISIBLESTRING || \ item->tag == IA5STRING || item->tag == GRAPHICSTRING || \ item->tag == GENERALSTRING || item->tag == UNIVERSALSTRING || \ item->tag == BMPSTRING || item->tag == UTF8STRING || \ item->tag == OBJDESCRIPTOR ) return( TRUE ); /* SEQUENCE and SET can be zero if there are absent optional/default components */ if( item->tag == SEQUENCE || item->tag == SET ) return( TRUE ); return( FALSE ); }/* Check whether the next item looks like text */static STR_OPTION checkForText( FILE *inFile, const int length ) { char buffer[ 16 ]; int isBMP = FALSE, isUnicode = FALSE; int sampleLength = min( length, 16 ), i; /* If the sample is very short, we're more careful about what we accept */ if( sampleLength < 4 ) { /* If the sample size is too small, don't try anything */ if( sampleLength <= 2 ) return( STR_NONE ); /* For samples of 3-4 characters we only allow ASCII text. These short strings are used in some places (eg PKCS #12 files) as IDs */ sampleLength = fread( buffer, 1, sampleLength, inFile ); fseek( inFile, -sampleLength, SEEK_CUR ); for( i = 0; i < sampleLength; i++ ) { if( !( isalpha( buffer[ i ] ) || isdigit( buffer[ i ] ) || \ isspace( buffer[ i ] ) ) ) return( STR_NONE ); } return( STR_IA5 ); } /* Check for ASCII-looking text */ sampleLength = fread( buffer, 1, sampleLength, inFile ); fseek( inFile, -sampleLength, SEEK_CUR ); if( isdigit( buffer[ 0 ] ) && ( length == 13 || length == 15 ) && \ buffer[ length - 1 ] == 'Z' ) { /* It looks like a time string, make sure that it really is one */ for( i = 0; i < length - 1; i++ ) { if( !isdigit( buffer[ i ] ) ) break; } if( i == length - 1 ) return( ( length == 13 ) ? STR_UTCTIME : STR_GENERALIZED ); } for( i = 0; i < sampleLength; i++ ) { /* If even bytes are zero, it could be a BMPString. Initially we set isBMP to FALSE, if it looks like a BMPString we set it to TRUE, if we then encounter a nonzero byte it's neither an ASCII nor a BMPString */ if( !( i & 1 ) ) { if( !buffer[ i ] ) { /* If we thought we were in a Unicode string but we've found a zero byte where it'd occur in a BMP string, it's neither a Unicode nor BMP string */ if( isUnicode ) return( STR_NONE ); /* We've collapsed the eigenstate (in an earlier incarnation isBMP could take values of -1, 0, or 1, with 0 being undecided, in which case this comment made a bit more sense) */ if( i < sampleLength - 2 ) { /* If the last char(s) are zero but preceding ones weren't, don't treat it as a BMP string. This can happen when storing a null-terminated string if the implementation gets the length wrong and stores the null as well */ isBMP = TRUE; } continue; } else { /* If we thought we were in a BMPString but we've found a nonzero byte where there should be a zero, it's neither an ASCII nor BMP string */ if( isBMP ) return( STR_NONE ); } } else { /* Just to make it tricky, Microsoft stuff Unicode strings into some places (to avoid having to convert them to BMPStrings, presumably) so we have to check for these as well */ if( !buffer[ i ] ) { if( isBMP ) return( STR_NONE ); isUnicode = TRUE; continue; } else if( isUnicode ) return( STR_NONE ); } if( buffer[ i ] < 0x20 || buffer[ i ] > 0x7E ) return( STR_NONE ); } /* It looks like a text string */ return( isUnicode ? STR_BMP_REVERSED : isBMP ? STR_BMP : STR_IA5 ); }/* Dump the header bytes for an object, useful for vgrepping the original object from a hex dump */static void dumpHeader( FILE *inFile, const ASN1_ITEM *item ) { int extraLen = 24 - item->headerSize, i; /* Dump the tag and length bytes */ if( !doPure ) fprintf( output, " " ); fprintf( output, "<%02X", *item->header ); for( i = 1; i < item->headerSize; i++ ) fprintf( output, " %02X", item->header[ i ] ); /* If we're asked for more, dump enough extra data to make up 24 bytes. This is somewhat ugly since it assumes we can seek backwards over the data, which means it won't always work on streams */ if( extraLen > 0 && doDumpHeader > 1 ) { /* Make sure that we don't print too much data. This doesn't work for indefinite-length data, we don't try and guess the length with this since it involves picking apart what we're printing */ if( extraLen > item->length && !item->indefinite ) extraLen = ( int ) item->length; for( i = 0; i < extraLen; i++ ) { int ch = fgetc( inFile ); if( feof( inFile ) ) extraLen = i; /* Exit loop and get fseek() correct */ else fprintf( output, " %02X", ch ); } fseek( inFile, -extraLen, SEEK_CUR ); } fputs( ">\n", output ); }/* Print a constructed ASN.1 object */static int printAsn1( FILE *inFile, const int level, long length, const int isIndefinite );static void printConstructed( FILE *inFile, int level, const ASN1_ITEM *item ) { int result; /* Special case for zero-length objects */ if( !item->length && !item->indefinite ) { fputs( " {}\n", output ); return; } fputs( " {\n", output ); result = printAsn1( inFile, level + 1, item->length, item->indefinite ); if( result ) { fprintf( output, "Error: Inconsistent object length, %d byte%s " "difference.\n", result, ( result > 1 ) ? "s" : "" ); noErrors++; } if( !doPure ) fprintf( output, INDENT_STRING ); fprintf( output, ( printDots ) ? ". " : " " ); doIndent( level ); fputs( "}\n", output ); }/* Print a single ASN.1 object */static void printASN1object( FILE *inFile, ASN1_ITEM *item, int level ) { OIDINFO *oidInfo; STR_OPTION stringType; char buffer[ MAX_OID_SIZE ]; long value; int x, y; if( ( item->id & CLASS_MASK ) != UNIVERSAL ) { static const char *const classtext[] = { "UNIVERSAL ", "APPLICATION ", "", "PRIVATE " }; /* Print the object type */ fprintf( output, "[%s%d]", classtext[ ( item->id & CLASS_MASK ) >> 6 ], item->tag ); /* Perform a sanity check */ if( ( item->tag != NULLTAG ) && ( item->length < 0 ) ) { int i; fprintf( stderr, "\nError: Object has bad length field, tag = %02X, " "length = %lX, value =", item->tag, item->length ); fprintf( stderr, "<%02X", *item->header ); for( i = 1; i < item->headerSize; i++ ) fprintf( stderr, " %02X", item->header[ i ] ); fputs( ">.\n", stderr ); exit( EXIT_FAILURE ); } if( !item->length && !item->indefinite && !zeroLengthOK( item ) ) { fputc( '\n', output ); complain( "Object has zero length", level ); return; } /* If it's constructed, print the various fields in it */ if( ( item->id & FORM_MASK ) == CONSTRUCTED ) { printConstructed( inFile, level, item ); return; } /* It's primitive, if it's a seekable stream try and determine whether it's text so we can display it as such */ if( !useStdin && \ ( stringType = checkForText( inFile, item->length ) ) != STR_NONE ) { /* It looks like a text string, dump it as text */ displayString( inFile, item->length, level, stringType ); return; } /* This could be anything, dump it as hex data */ dumpHex( inFile, item->length, level, FALSE );⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -