iPXE
asn1.h
Go to the documentation of this file.
1 #ifndef _IPXE_ASN1_H
2 #define _IPXE_ASN1_H
3 
4 /** @file
5  *
6  * ASN.1 encoding
7  *
8  */
9 
10 FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );
11 
12 #include <stddef.h>
13 #include <stdint.h>
14 #include <stdarg.h>
15 #include <assert.h>
16 #include <time.h>
17 #include <ipxe/tables.h>
18 
19 /** An ASN.1 object cursor */
20 struct asn1_cursor {
21  /** Start of data */
22  const void *data;
23  /** Length of data */
24  size_t len;
25 };
26 
27 /** An ASN.1 object builder */
28 struct asn1_builder {
29  /** Data
30  *
31  * This is always dynamically allocated. If @c data is NULL
32  * while @len is non-zero, this indicates that a memory
33  * allocation error has occurred during the building process.
34  */
35  void *data;
36  /** Length of data */
37  size_t len;
38 };
39 
40 /** Maximum (viable) length of ASN.1 length
41  *
42  * While in theory unlimited, this length is sufficient to contain a
43  * size_t.
44  */
45 #define ASN1_MAX_LEN_LEN ( 1 + sizeof ( size_t ) )
46 
47 /** An ASN.1 header */
48 struct asn1_builder_header {
49  /** Type */
50  uint8_t type;
51  /** Length (encoded) */
52  uint8_t length[ASN1_MAX_LEN_LEN];
53 } __attribute__ (( packed ));
54 
55 /** ASN.1 end */
56 #define ASN1_END 0x00
57 
58 /** ASN.1 boolean */
59 #define ASN1_BOOLEAN 0x01
60 
61 /** ASN.1 integer */
62 #define ASN1_INTEGER 0x02
63 
64 /** ASN.1 bit string */
65 #define ASN1_BIT_STRING 0x03
66 
67 /** ASN.1 octet string */
68 #define ASN1_OCTET_STRING 0x04
69 
70 /** ASN.1 null */
71 #define ASN1_NULL 0x05
72 
73 /** ASN.1 object identifier */
74 #define ASN1_OID 0x06
75 
76 /** ASN.1 enumeration */
77 #define ASN1_ENUMERATED 0x0a
78 
79 /** ASN.1 UTF-8 string */
80 #define ASN1_UTF8_STRING 0x0c
81 
82 /** ASN.1 UTC time */
83 #define ASN1_UTC_TIME 0x17
84 
85 /** ASN.1 generalized time */
86 #define ASN1_GENERALIZED_TIME 0x18
87 
88 /** ASN.1 sequence */
89 #define ASN1_SEQUENCE 0x30
90 
91 /** ASN.1 set */
92 #define ASN1_SET 0x31
93 
94 /** ASN.1 implicit tag */
95 #define ASN1_IMPLICIT_TAG( number) ( 0x80 | (number) )
96 
97 /** ASN.1 explicit tag */
98 #define ASN1_EXPLICIT_TAG( number) ( 0xa0 | (number) )
99 
100 /** ASN.1 "any tag" magic value */
101 #define ASN1_ANY -1U
102 
103 /** Construct a short ASN.1 value */
104 #define ASN1_SHORT( tag, ... ) \
105  (tag), VA_ARG_COUNT ( __VA_ARGS__ ), __VA_ARGS__
106 
107 /** Initial OID byte */
108 #define ASN1_OID_INITIAL( first, second ) ( ( (first) * 40 ) + (second) )
109 
110 /** Single-byte OID value
111  *
112  * Valid for values up to 127
113  */
114 #define ASN1_OID_SINGLE( value ) ( (value) & 0x7f )
115 
116 /** Double-byte OID value
117  *
118  * Valid for values up to 16383
119  */
120 #define ASN1_OID_DOUBLE( value ) \
121  ( 0x80 | ( ( (value) >> 7 ) & 0x7f ) ), ASN1_OID_SINGLE ( (value) )
122 
123 /** Double-byte OID value
124  *
125  * Valid for values up to 2097151
126  */
127 #define ASN1_OID_TRIPLE( value ) \
128  ( 0x80 | ( ( (value) >> 14 ) & 0x7f ) ), ASN1_OID_DOUBLE ( (value) )
129 
130 /** ASN.1 OID for ecPublicKey (1.2.840.10045.2.1) */
131 #define ASN1_OID_ECPUBLICKEY \
132  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
133  ASN1_OID_DOUBLE ( 10045 ), ASN1_OID_SINGLE ( 2 ), \
134  ASN1_OID_SINGLE ( 1 )
135 
136 /** ASN.1 OID for prime256v1 (1.2.840.10045.3.1.7) */
137 #define ASN1_OID_PRIME256V1 \
138  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
139  ASN1_OID_DOUBLE ( 10045 ), ASN1_OID_SINGLE ( 3 ), \
140  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 7 )
141 
142 /** ASN.1 OID for ecdsa-with-SHA224 (1.2.840.10045.4.3.1) */
143 #define ASN1_OID_ECDSA_WITH_SHA224 \
144  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
145  ASN1_OID_DOUBLE ( 10045 ), ASN1_OID_SINGLE ( 4 ), \
146  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 1 )
147 
148 /** ASN.1 OID for ecdsa-with-SHA256 (1.2.840.10045.4.3.2) */
149 #define ASN1_OID_ECDSA_WITH_SHA256 \
150  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
151  ASN1_OID_DOUBLE ( 10045 ), ASN1_OID_SINGLE ( 4 ), \
152  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 2 )
153 
154 /** ASN.1 OID for ecdsa-with-SHA384 (1.2.840.10045.4.3.3) */
155 #define ASN1_OID_ECDSA_WITH_SHA384 \
156  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
157  ASN1_OID_DOUBLE ( 10045 ), ASN1_OID_SINGLE ( 4 ), \
158  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 3 )
159 
160 /** ASN.1 OID for ecdsa-with-SHA512 (1.2.840.10045.4.3.4) */
161 #define ASN1_OID_ECDSA_WITH_SHA512 \
162  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
163  ASN1_OID_DOUBLE ( 10045 ), ASN1_OID_SINGLE ( 4 ), \
164  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 )
165 
166 /** ASN.1 OID for rsaEncryption (1.2.840.113549.1.1.1) */
167 #define ASN1_OID_RSAENCRYPTION \
168  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
169  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
170  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 1 )
171 
172 /** ASN.1 OID for md5WithRSAEncryption (1.2.840.113549.1.1.4) */
173 #define ASN1_OID_MD5WITHRSAENCRYPTION \
174  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
175  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
176  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 4 )
177 
178 /** ASN.1 OID for sha1WithRSAEncryption (1.2.840.113549.1.1.5) */
179 #define ASN1_OID_SHA1WITHRSAENCRYPTION \
180  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
181  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
182  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 5 )
183 
184 /** ASN.1 OID for sha256WithRSAEncryption (1.2.840.113549.1.1.11) */
185 #define ASN1_OID_SHA256WITHRSAENCRYPTION \
186  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
187  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
188  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 11 )
189 
190 /** ASN.1 OID for sha384WithRSAEncryption (1.2.840.113549.1.1.12) */
191 #define ASN1_OID_SHA384WITHRSAENCRYPTION \
192  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
193  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
194  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 12 )
195 
196 /** ASN.1 OID for sha512WithRSAEncryption (1.2.840.113549.1.1.13) */
197 #define ASN1_OID_SHA512WITHRSAENCRYPTION \
198  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
199  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
200  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 13 )
201 
202 /** ASN.1 OID for sha224WithRSAEncryption (1.2.840.113549.1.1.14) */
203 #define ASN1_OID_SHA224WITHRSAENCRYPTION \
204  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
205  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
206  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 14 )
207 
208 /** ASN.1 OID for id-md4 (1.2.840.113549.2.4) */
209 #define ASN1_OID_MD4 \
210  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
211  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 2 ), \
212  ASN1_OID_SINGLE ( 4 )
213 
214 /** ASN.1 OID for id-md5 (1.2.840.113549.2.5) */
215 #define ASN1_OID_MD5 \
216  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
217  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 2 ), \
218  ASN1_OID_SINGLE ( 5 )
219 
220 /** ASN.1 OID for id-sha1 (1.3.14.3.2.26) */
221 #define ASN1_OID_SHA1 \
222  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_SINGLE ( 14 ), \
223  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 2 ), \
224  ASN1_OID_SINGLE ( 26 )
225 
226 /** ASN.1 OID for id-x25519 (1.3.101.110) */
227 #define ASN1_OID_X25519 \
228  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_SINGLE ( 101 ), \
229  ASN1_OID_SINGLE ( 110 )
230 
231 /** ASN.1 OID for secp384r1 (1.3.132.0.34) */
232 #define ASN1_OID_SECP384R1 \
233  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_DOUBLE ( 132 ), \
234  ASN1_OID_SINGLE ( 0 ), ASN1_OID_SINGLE ( 34 )
235 
236 /** ASN.1 OID for id-aes128-cbc (2.16.840.1.101.3.4.1.2) */
237 #define ASN1_OID_AES128_CBC \
238  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
239  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
240  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
241  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 2 )
242 
243 /** ASN.1 OID for id-aes128-gcm (2.16.840.1.101.3.4.1.6) */
244 #define ASN1_OID_AES128_GCM \
245  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
246  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
247  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
248  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 6 )
249 
250 /** ASN.1 OID for id-aes192-cbc (2.16.840.1.101.3.4.1.22) */
251 #define ASN1_OID_AES192_CBC \
252  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
253  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
254  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
255  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 22 )
256 
257 /** ASN.1 OID for id-aes192-gcm (2.16.840.1.101.3.4.1.26) */
258 #define ASN1_OID_AES192_GCM \
259  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
260  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
261  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
262  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 26 )
263 
264 /** ASN.1 OID for id-aes256-cbc (2.16.840.1.101.3.4.1.42) */
265 #define ASN1_OID_AES256_CBC \
266  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
267  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
268  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
269  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 42 )
270 
271 /** ASN.1 OID for id-aes256-gcm (2.16.840.1.101.3.4.1.46) */
272 #define ASN1_OID_AES256_GCM \
273  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
274  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
275  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
276  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 46 )
277 
278 /** ASN.1 OID for id-sha256 (2.16.840.1.101.3.4.2.1) */
279 #define ASN1_OID_SHA256 \
280  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
281  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
282  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
283  ASN1_OID_SINGLE ( 2 ), ASN1_OID_SINGLE ( 1 )
284 
285 /** ASN.1 OID for id-sha384 (2.16.840.1.101.3.4.2.2) */
286 #define ASN1_OID_SHA384 \
287  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
288  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
289  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
290  ASN1_OID_SINGLE ( 2 ), ASN1_OID_SINGLE ( 2 )
291 
292 /** ASN.1 OID for id-sha512 (2.16.840.1.101.3.4.2.3) */
293 #define ASN1_OID_SHA512 \
294  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
295  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
296  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
297  ASN1_OID_SINGLE ( 2 ), ASN1_OID_SINGLE ( 3 )
298 
299 /** ASN.1 OID for id-sha224 (2.16.840.1.101.3.4.2.4) */
300 #define ASN1_OID_SHA224 \
301  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
302  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
303  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
304  ASN1_OID_SINGLE ( 2 ), ASN1_OID_SINGLE ( 4 )
305 
306 /** ASN.1 OID for id-sha512-224 (2.16.840.1.101.3.4.2.5) */
307 #define ASN1_OID_SHA512_224 \
308  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
309  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
310  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
311  ASN1_OID_SINGLE ( 2 ), ASN1_OID_SINGLE ( 5 )
312 
313 /** ASN.1 OID for id-sha512-256 (2.16.840.1.101.3.4.2.6) */
314 #define ASN1_OID_SHA512_256 \
315  ASN1_OID_INITIAL ( 2, 16 ), ASN1_OID_DOUBLE ( 840 ), \
316  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 101 ), \
317  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 4 ), \
318  ASN1_OID_SINGLE ( 2 ), ASN1_OID_SINGLE ( 6 )
319 
320 /** ASN.1 OID for commonName (2.5.4.3) */
321 #define ASN1_OID_COMMON_NAME \
322  ASN1_OID_INITIAL ( 2, 5 ), ASN1_OID_SINGLE ( 4 ), \
323  ASN1_OID_SINGLE ( 3 )
324 
325 /** ASN.1 OID for id-ce-keyUsage (2.5.29.15) */
326 #define ASN1_OID_KEYUSAGE \
327  ASN1_OID_INITIAL ( 2, 5 ), ASN1_OID_SINGLE ( 29 ), \
328  ASN1_OID_SINGLE ( 15 )
329 
330 /** ASN.1 OID for id-ce-basicConstraints (2.5.29.19) */
331 #define ASN1_OID_BASICCONSTRAINTS \
332  ASN1_OID_INITIAL ( 2, 5 ), ASN1_OID_SINGLE ( 29 ), \
333  ASN1_OID_SINGLE ( 19 )
334 
335 /** ASN.1 OID for id-ce-extKeyUsage (2.5.29.37) */
336 #define ASN1_OID_EXTKEYUSAGE \
337  ASN1_OID_INITIAL ( 2, 5 ), ASN1_OID_SINGLE ( 29 ), \
338  ASN1_OID_SINGLE ( 37 )
339 
340 /** ASN.1 OID for id-kp-codeSigning (1.3.6.1.5.5.7.3.3) */
341 #define ASN1_OID_CODESIGNING \
342  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_SINGLE ( 6 ), \
343  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 5 ), \
344  ASN1_OID_SINGLE ( 5 ), ASN1_OID_SINGLE ( 7 ), \
345  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 3 )
346 
347 /** ASN.1 OID for id-signedData (1.2.840.113549.1.7.2) */
348 #define ASN1_OID_SIGNEDDATA \
349  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
350  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
351  ASN1_OID_SINGLE ( 7 ), ASN1_OID_SINGLE ( 2 )
352 
353 /** ASN.1 OID for id-envelopedData (1.2.840.113549.1.7.3) */
354 #define ASN1_OID_ENVELOPEDDATA \
355  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
356  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
357  ASN1_OID_SINGLE ( 7 ), ASN1_OID_SINGLE ( 3 )
358 
359 /** ASN.1 OID for id-authEnvelopedData (1.2.840.113549.1.9.16.1.23) */
360 #define ASN1_OID_AUTHENVELOPEDDATA \
361  ASN1_OID_INITIAL ( 1, 2 ), ASN1_OID_DOUBLE ( 840 ), \
362  ASN1_OID_TRIPLE ( 113549 ), ASN1_OID_SINGLE ( 1 ), \
363  ASN1_OID_SINGLE ( 9 ), ASN1_OID_SINGLE ( 16 ), \
364  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 23 )
365 
366 /** ASN.1 OID for id-pe-authorityInfoAccess (1.3.6.1.5.5.7.1.1) */
367 #define ASN1_OID_AUTHORITYINFOACCESS \
368  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_SINGLE ( 6 ), \
369  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 5 ), \
370  ASN1_OID_SINGLE ( 5 ), ASN1_OID_SINGLE ( 7 ), \
371  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 1 )
372 
373 /** ASN.1 OID for id-ad-ocsp (1.3.6.1.5.5.7.48.1) */
374 #define ASN1_OID_OCSP \
375  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_SINGLE ( 6 ), \
376  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 5 ), \
377  ASN1_OID_SINGLE ( 5 ), ASN1_OID_SINGLE ( 7 ), \
378  ASN1_OID_SINGLE ( 48 ), ASN1_OID_SINGLE ( 1 )
379 
380 /** ASN.1 OID for id-pkix-ocsp-basic ( 1.3.6.1.5.5.7.48.1.1) */
381 #define ASN1_OID_OCSP_BASIC \
382  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_SINGLE ( 6 ), \
383  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 5 ), \
384  ASN1_OID_SINGLE ( 5 ), ASN1_OID_SINGLE ( 7 ), \
385  ASN1_OID_SINGLE ( 48 ), ASN1_OID_SINGLE ( 1 ), \
386  ASN1_OID_SINGLE ( 1 )
387 
388 /** ASN.1 OID for id-kp-OCSPSigning (1.3.6.1.5.5.7.3.9) */
389 #define ASN1_OID_OCSPSIGNING \
390  ASN1_OID_INITIAL ( 1, 3 ), ASN1_OID_SINGLE ( 6 ), \
391  ASN1_OID_SINGLE ( 1 ), ASN1_OID_SINGLE ( 5 ), \
392  ASN1_OID_SINGLE ( 5 ), ASN1_OID_SINGLE ( 7 ), \
393  ASN1_OID_SINGLE ( 3 ), ASN1_OID_SINGLE ( 9 )
394 
395 /** ASN.1 OID for id-ce-subjectAltName (2.5.29.17) */
396 #define ASN1_OID_SUBJECTALTNAME \
397  ASN1_OID_INITIAL ( 2, 5 ), ASN1_OID_SINGLE ( 29 ), \
398  ASN1_OID_SINGLE ( 17 )
399 
400 /** Define an ASN.1 cursor for a static value */
401 #define ASN1_CURSOR( value ) { \
402  .data = value, \
403  .len = sizeof ( value ), \
404  }
405 
406 /** An ASN.1 OID-identified algorithm */
407 struct asn1_algorithm {
408  /** Name */
409  const char *name;
410  /** Object identifier */
411  struct asn1_cursor oid;
412  /** Public-key algorithm (if applicable) */
413  struct pubkey_algorithm *pubkey;
414  /** Digest algorithm (if applicable) */
415  struct digest_algorithm *digest;
416  /** Cipher algorithm (if applicable) */
417  struct cipher_algorithm *cipher;
418  /** Elliptic curve (if applicable) */
419  struct elliptic_curve *curve;
420  /**
421  * Parse algorithm parameters (optional)
422  *
423  * @v algorithm Algorithm
424  * @v param Parameters to parse (and potentially modify)
425  * @ret rc Return status code
426  */
427  int ( * parse ) ( struct asn1_algorithm *algorithm,
428  struct asn1_cursor *params );
429 };
430 
431 /** ASN.1 OID-identified algorithms */
432 #define ASN1_ALGORITHMS __table ( struct asn1_algorithm, "asn1_algorithms" )
433 
434 /** Declare an ASN.1 OID-identified algorithm */
435 #define __asn1_algorithm __table_entry ( ASN1_ALGORITHMS, 01 )
436 
437 /* ASN.1 OID-identified algorithms */
438 extern struct asn1_algorithm rsa_encryption_algorithm __asn1_algorithm;
439 extern struct asn1_algorithm md5_with_rsa_encryption_algorithm __asn1_algorithm;
440 extern struct asn1_algorithm
441 sha1_with_rsa_encryption_algorithm __asn1_algorithm;
442 extern struct asn1_algorithm
443 sha256_with_rsa_encryption_algorithm __asn1_algorithm;
444 extern struct asn1_algorithm
445 sha384_with_rsa_encryption_algorithm __asn1_algorithm;
446 extern struct asn1_algorithm
447 sha512_with_rsa_encryption_algorithm __asn1_algorithm;
448 extern struct asn1_algorithm
449 sha224_with_rsa_encryption_algorithm __asn1_algorithm;
450 extern struct asn1_algorithm oid_md4_algorithm __asn1_algorithm;
451 extern struct asn1_algorithm oid_md5_algorithm __asn1_algorithm;
452 extern struct asn1_algorithm oid_sha1_algorithm __asn1_algorithm;
453 extern struct asn1_algorithm oid_sha256_algorithm __asn1_algorithm;
454 extern struct asn1_algorithm oid_sha384_algorithm __asn1_algorithm;
455 extern struct asn1_algorithm oid_sha512_algorithm __asn1_algorithm;
456 extern struct asn1_algorithm oid_sha224_algorithm __asn1_algorithm;
457 extern struct asn1_algorithm oid_sha512_224_algorithm __asn1_algorithm;
458 extern struct asn1_algorithm oid_sha512_256_algorithm __asn1_algorithm;
459 extern struct asn1_algorithm ecpubkey_algorithm __asn1_algorithm;
460 
461 /**
462  * Invalidate ASN.1 object cursor
463  *
464  * @v cursor ASN.1 object cursor
465  */
466 static inline __attribute__ (( always_inline )) void
467 asn1_invalidate_cursor ( struct asn1_cursor *cursor ) {
468  cursor->len = 0;
469 }
470 
471 /**
472  * Extract ASN.1 type
473  *
474  * @v cursor ASN.1 object cursor
475  * @ret type Type, or ASN1_END if cursor is invalid
476  */
477 static inline __attribute__ (( always_inline )) unsigned int
478 asn1_type ( const struct asn1_cursor *cursor ) {
479  const uint8_t *type = cursor->data;
480 
481  return ( ( cursor->len >= sizeof ( *type ) ) ? *type : ASN1_END );
482 }
483 
484 /**
485  * Get cursor for built object
486  *
487  * @v builder ASN.1 object builder
488  * @ret cursor ASN.1 object cursor
489  */
490 static inline __attribute__ (( always_inline )) struct asn1_cursor *
491 asn1_built ( struct asn1_builder *builder ) {
492  union {
493  struct asn1_builder builder;
494  struct asn1_cursor cursor;
495  } *u = container_of ( builder, typeof ( *u ), builder );
496 
497  /* Sanity check */
498  build_assert ( ( ( const void * ) &u->builder.data ) ==
499  &u->cursor.data );
500  build_assert ( &u->builder.len == &u->cursor.len );
501 
502  return &u->cursor;
503 }
504 
505 extern int asn1_enter ( struct asn1_cursor *cursor, unsigned int type );
506 extern int asn1_skip_if_exists ( struct asn1_cursor *cursor,
507  unsigned int type );
508 extern int asn1_skip ( struct asn1_cursor *cursor, unsigned int type );
509 extern int asn1_shrink ( struct asn1_cursor *cursor, unsigned int type );
510 extern int asn1_enter_any ( struct asn1_cursor *cursor );
511 extern int asn1_skip_any ( struct asn1_cursor *cursor );
512 extern int asn1_shrink_any ( struct asn1_cursor *cursor );
513 extern int asn1_enter_bits ( struct asn1_cursor *cursor,
514  unsigned int *unused );
515 extern int asn1_enter_unsigned ( struct asn1_cursor *cursor );
516 extern int asn1_boolean ( const struct asn1_cursor *cursor );
517 extern int asn1_integer ( const struct asn1_cursor *cursor, int *value );
518 extern int asn1_compare ( const struct asn1_cursor *cursor1,
519  const struct asn1_cursor *cursor2 );
520 extern int asn1_algorithm ( const struct asn1_cursor *cursor,
521  struct asn1_algorithm **algorithm,
522  struct asn1_cursor *params );
523 extern int asn1_pubkey_algorithm ( const struct asn1_cursor *cursor,
524  struct asn1_algorithm **algorithm );
525 extern int asn1_digest_algorithm ( const struct asn1_cursor *cursor,
526  struct asn1_algorithm **algorithm );
527 extern int asn1_cipher_algorithm ( const struct asn1_cursor *cursor,
528  struct asn1_algorithm **algorithm,
529  struct asn1_cursor *params );
530 extern int asn1_signature_algorithm ( const struct asn1_cursor *cursor,
531  struct asn1_algorithm **algorithm );
532 extern int asn1_curve_algorithm ( const struct asn1_cursor *cursor,
533  struct asn1_algorithm *wrapper,
534  struct asn1_algorithm **algorithm );
535 extern int asn1_check_algorithm ( const struct asn1_cursor *cursor,
536  struct asn1_algorithm *expected,
537  struct asn1_cursor *params );
538 extern int asn1_parse_cbc ( struct asn1_algorithm *algorithm,
539  struct asn1_cursor *params );
540 extern int asn1_parse_gcm ( struct asn1_algorithm *algorithm,
541  struct asn1_cursor *params );
542 extern int asn1_generalized_time ( const struct asn1_cursor *cursor,
543  time_t *time );
544 extern int asn1_grow ( struct asn1_builder *builder, size_t extra );
545 extern int asn1_prepend_raw ( struct asn1_builder *builder, const void *data,
546  size_t len );
547 extern int asn1_prepend ( struct asn1_builder *builder, unsigned int type,
548  const void *data, size_t len );
549 extern int asn1_wrap ( struct asn1_builder *builder, unsigned int type );
550 
551 #endif /* _IPXE_ASN1_H */
asn1_algorithm
int asn1_algorithm(const struct asn1_cursor *cursor, struct asn1_algorithm **algorithm, struct asn1_cursor *params)
Parse ASN.1 OID-identified algorithm.
Definition: asn1.c:493
__attribute__
#define __attribute__(x)
Definition: compiler.h:10
asn1_algorithm
An ASN.1 OID-identified algorithm.
Definition: asn1.h:407
asn1_builder::data
void * data
Data.
Definition: asn1.h:35
asn1_algorithm::cipher
struct cipher_algorithm * cipher
Cipher algorithm (if applicable)
Definition: asn1.h:417
extra
uint8_t extra
Signature extra byte.
Definition: smbios.h:17
asn1_digest_algorithm
int asn1_digest_algorithm(const struct asn1_cursor *cursor, struct asn1_algorithm **algorithm)
Parse ASN.1 OID-identified digest algorithm.
Definition: asn1.c:569
asn1_generalized_time
int asn1_generalized_time(const struct asn1_cursor *cursor, time_t *time)
Parse ASN.1 GeneralizedTime.
Definition: asn1.c:776
ASN1_END
#define ASN1_END
ASN.1 end.
Definition: asn1.h:56
asn1_boolean
int asn1_boolean(const struct asn1_cursor *cursor)
Parse value of ASN.1 boolean.
Definition: asn1.c:391
asn1_cipher_algorithm
int asn1_cipher_algorithm(const struct asn1_cursor *cursor, struct asn1_algorithm **algorithm, struct asn1_cursor *params)
Parse ASN.1 OID-identified cipher algorithm.
Definition: asn1.c:596
type
uint32_t type
Operating system type.
Definition: ena.h:12
asn1_cursor::data
const void * data
Start of data.
Definition: asn1.h:22
asn1_skip
int asn1_skip(struct asn1_cursor *cursor, unsigned int type)
Skip ASN.1 object.
Definition: asn1.c:230
asn1_curve_algorithm
int asn1_curve_algorithm(const struct asn1_cursor *cursor, struct asn1_algorithm *wrapper, struct asn1_algorithm **algorithm)
Parse ASN.1 OID-identified elliptic curve algorithm.
Definition: asn1.c:658
asn1_prepend_raw
int asn1_prepend_raw(struct asn1_builder *builder, const void *data, size_t len)
Prepend raw data to ASN.1 builder.
Definition: asn1.c:948
asn1_enter
int asn1_enter(struct asn1_cursor *cursor, unsigned int type)
Enter ASN.1 object.
Definition: asn1.c:168
u
union @18 u
asn1_builder_header::length
uint8_t length[ASN1_MAX_LEN_LEN]
Length (encoded)
Definition: asn1.h:52
asn1_type
static unsigned int asn1_type(const struct asn1_cursor *cursor)
Extract ASN.1 type.
Definition: asn1.h:478
asn1_builder_header::type
uint8_t type
Type.
Definition: asn1.h:50
asn1_shrink
int asn1_shrink(struct asn1_cursor *cursor, unsigned int type)
Shrink ASN.1 cursor to fit object.
Definition: asn1.c:253
asn1_cursor::len
size_t len
Length of data.
Definition: asn1.h:24
asn1_skip_if_exists
int asn1_skip_if_exists(struct asn1_cursor *cursor, unsigned int type)
Skip ASN.1 object if present.
Definition: asn1.c:201
asn1_algorithm::pubkey
struct pubkey_algorithm * pubkey
Public-key algorithm (if applicable)
Definition: asn1.h:413
asn1_shrink_any
int asn1_shrink_any(struct asn1_cursor *cursor)
Shrink ASN.1 object of any type.
Definition: asn1.c:299
asn1_prepend
int asn1_prepend(struct asn1_builder *builder, unsigned int type, const void *data, size_t len)
Prepend data to ASN.1 builder.
Definition: asn1.c:971
assert.h
Assertions.
container_of
#define container_of(ptr, type, field)
Get containing structure.
Definition: stddef.h:35
asn1_pubkey_algorithm
int asn1_pubkey_algorithm(const struct asn1_cursor *cursor, struct asn1_algorithm **algorithm)
Parse ASN.1 OID-identified public-key algorithm.
Definition: asn1.c:543
value
pseudo_bit_t value[0x00020]
Definition: arbel.h:13
len
ring len
Length.
Definition: dwmac.h:231
build_assert
#define build_assert(condition)
Assert a condition at build time (after dead code elimination)
Definition: assert.h:76
asn1_parse_gcm
int asn1_parse_gcm(struct asn1_algorithm *algorithm, struct asn1_cursor *params)
ASN1_MAX_LEN_LEN
#define ASN1_MAX_LEN_LEN
Maximum (viable) length of ASN.1 length.
Definition: asn1.h:45
asn1_compare
int asn1_compare(const struct asn1_cursor *cursor1, const struct asn1_cursor *cursor2)
Compare two ASN.1 objects.
Definition: asn1.c:457
asn1_wrap
int asn1_wrap(struct asn1_builder *builder, unsigned int type)
Wrap ASN.1 builder.
Definition: asn1.c:998
asn1_signature_algorithm
int asn1_signature_algorithm(const struct asn1_cursor *cursor, struct asn1_algorithm **algorithm)
Parse ASN.1 OID-identified signature algorithm.
Definition: asn1.c:623
asn1_invalidate_cursor
static void asn1_invalidate_cursor(struct asn1_cursor *cursor)
Invalidate ASN.1 object cursor.
Definition: asn1.h:467
FILE_LICENCE
FILE_LICENCE(GPL2_OR_LATER_OR_UBDL)
asn1_enter_bits
int asn1_enter_bits(struct asn1_cursor *cursor, unsigned int *unused)
Enter ASN.1 bit string.
Definition: asn1.c:310
asn1_algorithm::curve
struct elliptic_curve * curve
Elliptic curve (if applicable)
Definition: asn1.h:419
asn1_builder
An ASN.1 object builder.
Definition: asn1.h:28
uint8_t
unsigned char uint8_t
Definition: stdint.h:10
asn1_algorithm::oid
struct asn1_cursor oid
Object identifier.
Definition: asn1.h:411
asn1_enter_unsigned
int asn1_enter_unsigned(struct asn1_cursor *cursor)
Enter ASN.1 unsigned integer.
Definition: asn1.c:368
asn1_integer
int asn1_integer(const struct asn1_cursor *cursor, int *value)
Parse value of ASN.1 integer.
Definition: asn1.c:415
__asn1_algorithm
#define __asn1_algorithm
Declare an ASN.1 OID-identified algorithm.
Definition: asn1.h:435
unused
uint8_t unused
Unused.
Definition: librm.h:140
asn1_check_algorithm
int asn1_check_algorithm(const struct asn1_cursor *cursor, struct asn1_algorithm *expected, struct asn1_cursor *params)
Check ASN.1 OID-identified algorithm.
Definition: asn1.c:704
asn1_skip_any
int asn1_skip_any(struct asn1_cursor *cursor)
Skip ASN.1 object of any type.
Definition: asn1.c:289
asn1_builder_header
An ASN.1 header.
Definition: asn1.h:48
algorithm
u16 algorithm
Authentication algorithm (Open System or Shared Key)
Definition: ieee80211.h:1030
asn1_algorithm::name
const char * name
Name.
Definition: asn1.h:409
elliptic_curve
An elliptic curve.
Definition: crypto.h:177
asn1_algorithm::digest
struct digest_algorithm * digest
Digest algorithm (if applicable)
Definition: asn1.h:415
asn1_grow
int asn1_grow(struct asn1_builder *builder, size_t extra)
Grow ASN.1 builder.
Definition: asn1.c:915
digest_algorithm
A message digest algorithm.
Definition: crypto.h:18
data
uint8_t data[48]
Additional event data.
Definition: ena.h:22
cipher_algorithm
A cipher algorithm.
Definition: crypto.h:50
tables.h
Linker tables.
asn1_built
static struct asn1_cursor * asn1_built(struct asn1_builder *builder)
Get cursor for built object.
Definition: asn1.h:491
typeof
typeof(acpi_finder=acpi_find)
ACPI table finder.
Definition: acpi.c:47
asn1_algorithm::parse
int(* parse)(struct asn1_algorithm *algorithm, struct asn1_cursor *params)
Parse algorithm parameters (optional)
Definition: asn1.h:427
asn1_parse_cbc
int asn1_parse_cbc(struct asn1_algorithm *algorithm, struct asn1_cursor *params)
Parse ASN.1 CBC cipher parameters.
Definition: asn1.c:731
time_t
int64_t time_t
Seconds since the Epoch.
Definition: time.h:18
time.h
Time source.
asn1_builder::len
size_t len
Length of data.
Definition: asn1.h:37
asn1_cursor
An ASN.1 object cursor.
Definition: asn1.h:20
pubkey_algorithm
A public key algorithm.
Definition: crypto.h:121
asn1_enter_any
int asn1_enter_any(struct asn1_cursor *cursor)
Enter ASN.1 object of any type.
Definition: asn1.c:279
Generated by   doxygen 1.8.15