aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorTao Bao2017-03-20 19:09:13 -0500
committerTao Bao2017-03-21 17:17:43 -0500
commit861c53c6c55db4cf6cb76d35f92804cabf1cd444 (patch)
tree440fb5ff4377db541ea46aea876ce1cd6ea29b12
parent5b2bf90e13229c8df6a5c02233753a6bd6d1c928 (diff)
downloadplatform-bootable-recovery-861c53c6c55db4cf6cb76d35f92804cabf1cd444.tar.gz
platform-bootable-recovery-861c53c6c55db4cf6cb76d35f92804cabf1cd444.tar.xz
platform-bootable-recovery-861c53c6c55db4cf6cb76d35f92804cabf1cd444.zip
Refactor asn1_decoder functions into a class.
Test: mmma bootable/recovery Test: recovery_unit_test passes. Test: recovery_component_test passes. Change-Id: If0bf25993158eaebeedff55ba4f4dd0f6e5f937d
Diffstat
-rw-r--r--asn1_decoder.cpp253
-rw-r--r--asn1_decoder.h45
-rw-r--r--tests/unit/asn1_decoder_test.cpp397
-rw-r--r--verifier.cpp76
4 files changed, 361 insertions, 410 deletions
diff --git a/asn1_decoder.cpp b/asn1_decoder.cpp
index ca4ee526..a9dfccc5 100644
--- a/asn1_decoder.cpp
+++ b/asn1_decoder.cpp
@@ -14,178 +14,145 @@
14 * limitations under the License. 14 * limitations under the License.
15 */ 15 */
16 16
17#include <malloc.h>
18#include <stdint.h>
19#include <string.h>
20
21#include "asn1_decoder.h" 17#include "asn1_decoder.h"
22 18
19#include <stdint.h>
23 20
24typedef struct asn1_context { 21int asn1_context::peek_byte() const {
25 size_t length; 22 if (length_ <= 0) {
26 const uint8_t* p; 23 return -1;
27 int app_type; 24 }
28} asn1_context_t; 25 return *p_;
29
30
31static const int kMaskConstructed = 0xE0;
32static const int kMaskTag = 0x7F;
33static const int kMaskAppType = 0x1F;
34
35static const int kTagOctetString = 0x04;
36static const int kTagOid = 0x06;
37static const int kTagSequence = 0x30;
38static const int kTagSet = 0x31;
39static const int kTagConstructed = 0xA0;
40
41asn1_context_t* asn1_context_new(const uint8_t* buffer, size_t length) {
42 asn1_context_t* ctx = (asn1_context_t*) calloc(1, sizeof(asn1_context_t));
43 if (ctx == NULL) {
44 return NULL;
45 }
46 ctx->p = buffer;
47 ctx->length = length;
48 return ctx;
49}
50
51void asn1_context_free(asn1_context_t* ctx) {
52 free(ctx);
53} 26}
54 27
55static inline int peek_byte(asn1_context_t* ctx) { 28int asn1_context::get_byte() {
56 if (ctx->length <= 0) { 29 if (length_ <= 0) {
57 return -1; 30 return -1;
58 } 31 }
59 return *ctx->p;
60}
61 32
62static inline int get_byte(asn1_context_t* ctx) { 33 int byte = *p_;
63 if (ctx->length <= 0) { 34 p_++;
64 return -1; 35 length_--;
65 } 36 return byte;
66 int byte = *ctx->p;
67 ctx->p++;
68 ctx->length--;
69 return byte;
70} 37}
71 38
72static inline bool skip_bytes(asn1_context_t* ctx, size_t num_skip) { 39bool asn1_context::skip_bytes(size_t num_skip) {
73 if (ctx->length < num_skip) { 40 if (length_ < num_skip) {
74 return false; 41 return false;
75 } 42 }
76 ctx->p += num_skip; 43 p_ += num_skip;
77 ctx->length -= num_skip; 44 length_ -= num_skip;
78 return true; 45 return true;
79} 46}
80 47
81static bool decode_length(asn1_context_t* ctx, size_t* out_len) { 48bool asn1_context::decode_length(size_t* out_len) {
82 int num_octets = get_byte(ctx); 49 int num_octets = get_byte();
83 if (num_octets == -1) { 50 if (num_octets == -1) {
84 return false; 51 return false;
85 } 52 }
86 if ((num_octets & 0x80) == 0x00) { 53 if ((num_octets & 0x80) == 0x00) {
87 *out_len = num_octets; 54 *out_len = num_octets;
88 return 1;
89 }
90 num_octets &= kMaskTag;
91 if ((size_t)num_octets >= sizeof(size_t)) {
92 return false;
93 }
94 size_t length = 0;
95 for (int i = 0; i < num_octets; ++i) {
96 int byte = get_byte(ctx);
97 if (byte == -1) {
98 return false;
99 }
100 length <<= 8;
101 length += byte;
102 }
103 *out_len = length;
104 return true; 55 return true;
56 }
57 num_octets &= kMaskTag;
58 if (static_cast<size_t>(num_octets) >= sizeof(size_t)) {
59 return false;
60 }
61 size_t length = 0;
62 for (int i = 0; i < num_octets; ++i) {
63 int byte = get_byte();
64 if (byte == -1) {
65 return false;
66 }
67 length <<= 8;
68 length += byte;
69 }
70 *out_len = length;
71 return true;
105} 72}
106 73
107/** 74/**
108 * Returns the constructed type and advances the pointer. E.g. A0 -> 0 75 * Returns the constructed type and advances the pointer. E.g. A0 -> 0
109 */ 76 */
110asn1_context_t* asn1_constructed_get(asn1_context_t* ctx) { 77asn1_context* asn1_context::asn1_constructed_get() {
111 int type = get_byte(ctx); 78 int type = get_byte();
112 if (type == -1 || (type & kMaskConstructed) != kTagConstructed) { 79 if (type == -1 || (type & kMaskConstructed) != kTagConstructed) {
113 return NULL; 80 return nullptr;
114 } 81 }
115 size_t length; 82 size_t length;
116 if (!decode_length(ctx, &length) || length > ctx->length) { 83 if (!decode_length(&length) || length > length_) {
117 return NULL; 84 return nullptr;
118 } 85 }
119 asn1_context_t* app_ctx = asn1_context_new(ctx->p, length); 86 asn1_context* app_ctx = new asn1_context(p_, length);
120 app_ctx->app_type = type & kMaskAppType; 87 app_ctx->app_type_ = type & kMaskAppType;
121 return app_ctx; 88 return app_ctx;
122} 89}
123 90
124bool asn1_constructed_skip_all(asn1_context_t* ctx) { 91bool asn1_context::asn1_constructed_skip_all() {
125 int byte = peek_byte(ctx); 92 int byte = peek_byte();
126 while (byte != -1 && (byte & kMaskConstructed) == kTagConstructed) { 93 while (byte != -1 && (byte & kMaskConstructed) == kTagConstructed) {
127 skip_bytes(ctx, 1); 94 skip_bytes(1);
128 size_t length; 95 size_t length;
129 if (!decode_length(ctx, &length) || !skip_bytes(ctx, length)) { 96 if (!decode_length(&length) || !skip_bytes(length)) {
130 return false; 97 return false;
131 }
132 byte = peek_byte(ctx);
133 } 98 }
134 return byte != -1; 99 byte = peek_byte();
100 }
101 return byte != -1;
135} 102}
136 103
137int asn1_constructed_type(asn1_context_t* ctx) { 104int asn1_context::asn1_constructed_type() const {
138 return ctx->app_type; 105 return app_type_;
139} 106}
140 107
141asn1_context_t* asn1_sequence_get(asn1_context_t* ctx) { 108asn1_context* asn1_context::asn1_sequence_get() {
142 if ((get_byte(ctx) & kMaskTag) != kTagSequence) { 109 if ((get_byte() & kMaskTag) != kTagSequence) {
143 return NULL; 110 return nullptr;
144 } 111 }
145 size_t length; 112 size_t length;
146 if (!decode_length(ctx, &length) || length > ctx->length) { 113 if (!decode_length(&length) || length > length_) {
147 return NULL; 114 return nullptr;
148 } 115 }
149 return asn1_context_new(ctx->p, length); 116 return new asn1_context(p_, length);
150} 117}
151 118
152asn1_context_t* asn1_set_get(asn1_context_t* ctx) { 119asn1_context* asn1_context::asn1_set_get() {
153 if ((get_byte(ctx) & kMaskTag) != kTagSet) { 120 if ((get_byte() & kMaskTag) != kTagSet) {
154 return NULL; 121 return nullptr;
155 } 122 }
156 size_t length; 123 size_t length;
157 if (!decode_length(ctx, &length) || length > ctx->length) { 124 if (!decode_length(&length) || length > length_) {
158 return NULL; 125 return nullptr;
159 } 126 }
160 return asn1_context_new(ctx->p, length); 127 return new asn1_context(p_, length);
161} 128}
162 129
163bool asn1_sequence_next(asn1_context_t* ctx) { 130bool asn1_context::asn1_sequence_next() {
164 size_t length; 131 size_t length;
165 if (get_byte(ctx) == -1 || !decode_length(ctx, &length) || !skip_bytes(ctx, length)) { 132 if (get_byte() == -1 || !decode_length(&length) || !skip_bytes(length)) {
166 return false; 133 return false;
167 } 134 }
168 return true; 135 return true;
169} 136}
170 137
171bool asn1_oid_get(asn1_context_t* ctx, const uint8_t** oid, size_t* length) { 138bool asn1_context::asn1_oid_get(const uint8_t** oid, size_t* length) {
172 if (get_byte(ctx) != kTagOid) { 139 if (get_byte() != kTagOid) {
173 return false; 140 return false;
174 } 141 }
175 if (!decode_length(ctx, length) || *length == 0 || *length > ctx->length) { 142 if (!decode_length(length) || *length == 0 || *length > length_) {
176 return false; 143 return false;
177 } 144 }
178 *oid = ctx->p; 145 *oid = p_;
179 return true; 146 return true;
180} 147}
181 148
182bool asn1_octet_string_get(asn1_context_t* ctx, const uint8_t** octet_string, size_t* length) { 149bool asn1_context::asn1_octet_string_get(const uint8_t** octet_string, size_t* length) {
183 if (get_byte(ctx) != kTagOctetString) { 150 if (get_byte() != kTagOctetString) {
184 return false; 151 return false;
185 } 152 }
186 if (!decode_length(ctx, length) || *length == 0 || *length > ctx->length) { 153 if (!decode_length(length) || *length == 0 || *length > length_) {
187 return false; 154 return false;
188 } 155 }
189 *octet_string = ctx->p; 156 *octet_string = p_;
190 return true; 157 return true;
191} 158}
diff --git a/asn1_decoder.h b/asn1_decoder.h
index fbd118f9..3e992115 100644
--- a/asn1_decoder.h
+++ b/asn1_decoder.h
@@ -14,23 +14,42 @@
14 * limitations under the License. 14 * limitations under the License.
15 */ 15 */
16 16
17
18#ifndef ASN1_DECODER_H_ 17#ifndef ASN1_DECODER_H_
19#define ASN1_DECODER_H_ 18#define ASN1_DECODER_H_
20 19
21#include <stdint.h> 20#include <stdint.h>
22 21
23typedef struct asn1_context asn1_context_t; 22class asn1_context {
24 23 public:
25asn1_context_t* asn1_context_new(const uint8_t* buffer, size_t length); 24 asn1_context(const uint8_t* buffer, size_t length) : p_(buffer), length_(length), app_type_(0) {}
26void asn1_context_free(asn1_context_t* ctx); 25 int asn1_constructed_type() const;
27asn1_context_t* asn1_constructed_get(asn1_context_t* ctx); 26 asn1_context* asn1_constructed_get();
28bool asn1_constructed_skip_all(asn1_context_t* ctx); 27 bool asn1_constructed_skip_all();
29int asn1_constructed_type(asn1_context_t* ctx); 28 asn1_context* asn1_sequence_get();
30asn1_context_t* asn1_sequence_get(asn1_context_t* ctx); 29 asn1_context* asn1_set_get();
31asn1_context_t* asn1_set_get(asn1_context_t* ctx); 30 bool asn1_sequence_next();
32bool asn1_sequence_next(asn1_context_t* seq); 31 bool asn1_oid_get(const uint8_t** oid, size_t* length);
33bool asn1_oid_get(asn1_context_t* ctx, const uint8_t** oid, size_t* length); 32 bool asn1_octet_string_get(const uint8_t** octet_string, size_t* length);
34bool asn1_octet_string_get(asn1_context_t* ctx, const uint8_t** octet_string, size_t* length); 33
34 private:
35 static constexpr int kMaskConstructed = 0xE0;
36 static constexpr int kMaskTag = 0x7F;
37 static constexpr int kMaskAppType = 0x1F;
38
39 static constexpr int kTagOctetString = 0x04;
40 static constexpr int kTagOid = 0x06;
41 static constexpr int kTagSequence = 0x30;
42 static constexpr int kTagSet = 0x31;
43 static constexpr int kTagConstructed = 0xA0;
44
45 int peek_byte() const;
46 int get_byte();
47 bool skip_bytes(size_t num_skip);
48 bool decode_length(size_t* out_len);
49
50 const uint8_t* p_;
51 size_t length_;
52 int app_type_;
53};
35 54
36#endif /* ASN1_DECODER_H_ */ 55#endif /* ASN1_DECODER_H_ */
diff --git a/tests/unit/asn1_decoder_test.cpp b/tests/unit/asn1_decoder_test.cpp
index 997639d8..b334a655 100644
--- a/tests/unit/asn1_decoder_test.cpp
+++ b/tests/unit/asn1_decoder_test.cpp
@@ -14,225 +14,188 @@
14 * limitations under the License. 14 * limitations under the License.
15 */ 15 */
16 16
17#define LOG_TAG "asn1_decoder_test" 17#include <stdint.h>
18
19#include <memory>
18 20
19#include <cutils/log.h>
20#include <gtest/gtest.h> 21#include <gtest/gtest.h>
21#include <stdint.h>
22#include <unistd.h>
23 22
24#include "asn1_decoder.h" 23#include "asn1_decoder.h"
25 24
26namespace android { 25TEST(Asn1DecoderTest, Empty_Failure) {
27 26 uint8_t empty[] = {};
28class Asn1DecoderTest : public testing::Test { 27 asn1_context ctx(empty, sizeof(empty));
29}; 28
30 29 ASSERT_EQ(nullptr, ctx.asn1_constructed_get());
31TEST_F(Asn1DecoderTest, Empty_Failure) { 30 ASSERT_FALSE(ctx.asn1_constructed_skip_all());
32 uint8_t empty[] = { }; 31 ASSERT_EQ(0, ctx.asn1_constructed_type());
33 asn1_context_t* ctx = asn1_context_new(empty, sizeof(empty)); 32 ASSERT_EQ(nullptr, ctx.asn1_sequence_get());
34 33 ASSERT_EQ(nullptr, ctx.asn1_set_get());
35 EXPECT_EQ(NULL, asn1_constructed_get(ctx)); 34 ASSERT_FALSE(ctx.asn1_sequence_next());
36 EXPECT_FALSE(asn1_constructed_skip_all(ctx)); 35
37 EXPECT_EQ(0, asn1_constructed_type(ctx)); 36 const uint8_t* junk;
38 EXPECT_EQ(NULL, asn1_sequence_get(ctx)); 37 size_t length;
39 EXPECT_EQ(NULL, asn1_set_get(ctx)); 38 ASSERT_FALSE(ctx.asn1_oid_get(&junk, &length));
40 EXPECT_FALSE(asn1_sequence_next(ctx)); 39 ASSERT_FALSE(ctx.asn1_octet_string_get(&junk, &length));
41 40}
42 const uint8_t* junk; 41
43 size_t length; 42TEST(Asn1DecoderTest, ConstructedGet_TruncatedLength_Failure) {
44 EXPECT_FALSE(asn1_oid_get(ctx, &junk, &length)); 43 uint8_t truncated[] = { 0xA0, 0x82 };
45 EXPECT_FALSE(asn1_octet_string_get(ctx, &junk, &length)); 44 asn1_context ctx(truncated, sizeof(truncated));
46 45 ASSERT_EQ(nullptr, ctx.asn1_constructed_get());
47 asn1_context_free(ctx); 46}
48} 47
49 48TEST(Asn1DecoderTest, ConstructedGet_LengthTooBig_Failure) {
50TEST_F(Asn1DecoderTest, ConstructedGet_TruncatedLength_Failure) { 49 uint8_t truncated[] = { 0xA0, 0x8a, 0xA5, 0x5A, 0xA5, 0x5A, 0xA5, 0x5A, 0xA5, 0x5A, 0xA5, 0x5A };
51 uint8_t truncated[] = { 0xA0, 0x82, }; 50 asn1_context ctx(truncated, sizeof(truncated));
52 asn1_context_t* ctx = asn1_context_new(truncated, sizeof(truncated)); 51 ASSERT_EQ(nullptr, ctx.asn1_constructed_get());
53 EXPECT_EQ(NULL, asn1_constructed_get(ctx)); 52}
54 asn1_context_free(ctx); 53
55} 54TEST(Asn1DecoderTest, ConstructedGet_TooSmallForChild_Failure) {
56 55 uint8_t data[] = { 0xA5, 0x02, 0x06, 0x01, 0x01 };
57TEST_F(Asn1DecoderTest, ConstructedGet_LengthTooBig_Failure) { 56 asn1_context ctx(data, sizeof(data));
58 uint8_t truncated[] = { 0xA0, 0x8a, 0xA5, 0x5A, 0xA5, 0x5A, 57 std::unique_ptr<asn1_context> ptr(ctx.asn1_constructed_get());
59 0xA5, 0x5A, 0xA5, 0x5A, 0xA5, 0x5A, }; 58 ASSERT_NE(nullptr, ptr);
60 asn1_context_t* ctx = asn1_context_new(truncated, sizeof(truncated)); 59 ASSERT_EQ(5, ptr->asn1_constructed_type());
61 EXPECT_EQ(NULL, asn1_constructed_get(ctx)); 60 const uint8_t* oid;
62 asn1_context_free(ctx); 61 size_t length;
63} 62 ASSERT_FALSE(ptr->asn1_oid_get(&oid, &length));
64 63}
65TEST_F(Asn1DecoderTest, ConstructedGet_TooSmallForChild_Failure) { 64
66 uint8_t data[] = { 0xA5, 0x02, 0x06, 0x01, 0x01, }; 65TEST(Asn1DecoderTest, ConstructedGet_Success) {
67 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 66 uint8_t data[] = { 0xA5, 0x03, 0x06, 0x01, 0x01 };
68 asn1_context_t* ptr = asn1_constructed_get(ctx); 67 asn1_context ctx(data, sizeof(data));
69 ASSERT_NE((asn1_context_t*)NULL, ptr); 68 std::unique_ptr<asn1_context> ptr(ctx.asn1_constructed_get());
70 EXPECT_EQ(5, asn1_constructed_type(ptr)); 69 ASSERT_NE(nullptr, ptr);
71 const uint8_t* oid; 70 ASSERT_EQ(5, ptr->asn1_constructed_type());
72 size_t length; 71 const uint8_t* oid;
73 EXPECT_FALSE(asn1_oid_get(ptr, &oid, &length)); 72 size_t length;
74 asn1_context_free(ptr); 73 ASSERT_TRUE(ptr->asn1_oid_get(&oid, &length));
75 asn1_context_free(ctx); 74 ASSERT_EQ(1U, length);
76} 75 ASSERT_EQ(0x01U, *oid);
77 76}
78TEST_F(Asn1DecoderTest, ConstructedGet_Success) { 77
79 uint8_t data[] = { 0xA5, 0x03, 0x06, 0x01, 0x01, }; 78TEST(Asn1DecoderTest, ConstructedSkipAll_TruncatedLength_Failure) {
80 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 79 uint8_t truncated[] = { 0xA2, 0x82 };
81 asn1_context_t* ptr = asn1_constructed_get(ctx); 80 asn1_context ctx(truncated, sizeof(truncated));
82 ASSERT_NE((asn1_context_t*)NULL, ptr); 81 ASSERT_FALSE(ctx.asn1_constructed_skip_all());
83 EXPECT_EQ(5, asn1_constructed_type(ptr)); 82}
84 const uint8_t* oid; 83
85 size_t length; 84TEST(Asn1DecoderTest, ConstructedSkipAll_Success) {
86 ASSERT_TRUE(asn1_oid_get(ptr, &oid, &length)); 85 uint8_t data[] = { 0xA0, 0x03, 0x02, 0x01, 0x01, 0xA1, 0x03, 0x02, 0x01, 0x01, 0x06, 0x01, 0xA5 };
87 EXPECT_EQ(1U, length); 86 asn1_context ctx(data, sizeof(data));
88 EXPECT_EQ(0x01U, *oid); 87 ASSERT_TRUE(ctx.asn1_constructed_skip_all());
89 asn1_context_free(ptr); 88 const uint8_t* oid;
90 asn1_context_free(ctx); 89 size_t length;
91} 90 ASSERT_TRUE(ctx.asn1_oid_get(&oid, &length));
92 91 ASSERT_EQ(1U, length);
93TEST_F(Asn1DecoderTest, ConstructedSkipAll_TruncatedLength_Failure) { 92 ASSERT_EQ(0xA5U, *oid);
94 uint8_t truncated[] = { 0xA2, 0x82, }; 93}
95 asn1_context_t* ctx = asn1_context_new(truncated, sizeof(truncated)); 94
96 EXPECT_FALSE(asn1_constructed_skip_all(ctx)); 95TEST(Asn1DecoderTest, SequenceGet_TruncatedLength_Failure) {
97 asn1_context_free(ctx); 96 uint8_t truncated[] = { 0x30, 0x82 };
98} 97 asn1_context ctx(truncated, sizeof(truncated));
99 98 ASSERT_EQ(nullptr, ctx.asn1_sequence_get());
100TEST_F(Asn1DecoderTest, ConstructedSkipAll_Success) { 99}
101 uint8_t data[] = { 0xA0, 0x03, 0x02, 0x01, 0x01, 100
102 0xA1, 0x03, 0x02, 0x01, 0x01, 101TEST(Asn1DecoderTest, SequenceGet_TooSmallForChild_Failure) {
103 0x06, 0x01, 0xA5, }; 102 uint8_t data[] = { 0x30, 0x02, 0x06, 0x01, 0x01 };
104 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 103 asn1_context ctx(data, sizeof(data));
105 ASSERT_TRUE(asn1_constructed_skip_all(ctx)); 104 std::unique_ptr<asn1_context> ptr(ctx.asn1_sequence_get());
106 const uint8_t* oid; 105 ASSERT_NE(nullptr, ptr);
107 size_t length; 106 const uint8_t* oid;
108 ASSERT_TRUE(asn1_oid_get(ctx, &oid, &length)); 107 size_t length;
109 EXPECT_EQ(1U, length); 108 ASSERT_FALSE(ptr->asn1_oid_get(&oid, &length));
110 EXPECT_EQ(0xA5U, *oid); 109}
111 asn1_context_free(ctx); 110
112} 111TEST(Asn1DecoderTest, SequenceGet_Success) {
113 112 uint8_t data[] = { 0x30, 0x03, 0x06, 0x01, 0x01 };
114TEST_F(Asn1DecoderTest, SequenceGet_TruncatedLength_Failure) { 113 asn1_context ctx(data, sizeof(data));
115 uint8_t truncated[] = { 0x30, 0x82, }; 114 std::unique_ptr<asn1_context> ptr(ctx.asn1_sequence_get());
116 asn1_context_t* ctx = asn1_context_new(truncated, sizeof(truncated)); 115 ASSERT_NE(nullptr, ptr);
117 EXPECT_EQ(NULL, asn1_sequence_get(ctx)); 116 const uint8_t* oid;
118 asn1_context_free(ctx); 117 size_t length;
119} 118 ASSERT_TRUE(ptr->asn1_oid_get(&oid, &length));
120 119 ASSERT_EQ(1U, length);
121TEST_F(Asn1DecoderTest, SequenceGet_TooSmallForChild_Failure) { 120 ASSERT_EQ(0x01U, *oid);
122 uint8_t data[] = { 0x30, 0x02, 0x06, 0x01, 0x01, }; 121}
123 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 122
124 asn1_context_t* ptr = asn1_sequence_get(ctx); 123TEST(Asn1DecoderTest, SetGet_TruncatedLength_Failure) {
125 ASSERT_NE((asn1_context_t*)NULL, ptr); 124 uint8_t truncated[] = { 0x31, 0x82 };
126 const uint8_t* oid; 125 asn1_context ctx(truncated, sizeof(truncated));
127 size_t length; 126 ASSERT_EQ(nullptr, ctx.asn1_set_get());
128 EXPECT_FALSE(asn1_oid_get(ptr, &oid, &length)); 127}
129 asn1_context_free(ptr); 128
130 asn1_context_free(ctx); 129TEST(Asn1DecoderTest, SetGet_TooSmallForChild_Failure) {
131} 130 uint8_t data[] = { 0x31, 0x02, 0x06, 0x01, 0x01 };
132 131 asn1_context ctx(data, sizeof(data));
133TEST_F(Asn1DecoderTest, SequenceGet_Success) { 132 std::unique_ptr<asn1_context> ptr(ctx.asn1_set_get());
134 uint8_t data[] = { 0x30, 0x03, 0x06, 0x01, 0x01, }; 133 ASSERT_NE(nullptr, ptr);
135 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 134 const uint8_t* oid;
136 asn1_context_t* ptr = asn1_sequence_get(ctx); 135 size_t length;
137 ASSERT_NE((asn1_context_t*)NULL, ptr); 136 ASSERT_FALSE(ptr->asn1_oid_get(&oid, &length));
138 const uint8_t* oid; 137}
139 size_t length; 138
140 ASSERT_TRUE(asn1_oid_get(ptr, &oid, &length)); 139TEST(Asn1DecoderTest, SetGet_Success) {
141 EXPECT_EQ(1U, length); 140 uint8_t data[] = { 0x31, 0x03, 0x06, 0x01, 0xBA };
142 EXPECT_EQ(0x01U, *oid); 141 asn1_context ctx(data, sizeof(data));
143 asn1_context_free(ptr); 142 std::unique_ptr<asn1_context> ptr(ctx.asn1_set_get());
144 asn1_context_free(ctx); 143 ASSERT_NE(nullptr, ptr);
145} 144 const uint8_t* oid;
146 145 size_t length;
147TEST_F(Asn1DecoderTest, SetGet_TruncatedLength_Failure) { 146 ASSERT_TRUE(ptr->asn1_oid_get(&oid, &length));
148 uint8_t truncated[] = { 0x31, 0x82, }; 147 ASSERT_EQ(1U, length);
149 asn1_context_t* ctx = asn1_context_new(truncated, sizeof(truncated)); 148 ASSERT_EQ(0xBAU, *oid);
150 EXPECT_EQ(NULL, asn1_set_get(ctx)); 149}
151 asn1_context_free(ctx); 150
152} 151TEST(Asn1DecoderTest, OidGet_LengthZero_Failure) {
153 152 uint8_t data[] = { 0x06, 0x00, 0x01 };
154TEST_F(Asn1DecoderTest, SetGet_TooSmallForChild_Failure) { 153 asn1_context ctx(data, sizeof(data));
155 uint8_t data[] = { 0x31, 0x02, 0x06, 0x01, 0x01, }; 154 const uint8_t* oid;
156 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 155 size_t length;
157 asn1_context_t* ptr = asn1_set_get(ctx); 156 ASSERT_FALSE(ctx.asn1_oid_get(&oid, &length));
158 ASSERT_NE((asn1_context_t*)NULL, ptr); 157}
159 const uint8_t* oid; 158
160 size_t length; 159TEST(Asn1DecoderTest, OidGet_TooSmall_Failure) {
161 EXPECT_FALSE(asn1_oid_get(ptr, &oid, &length)); 160 uint8_t data[] = { 0x06, 0x01 };
162 asn1_context_free(ptr); 161 asn1_context ctx(data, sizeof(data));
163 asn1_context_free(ctx); 162 const uint8_t* oid;
164} 163 size_t length;
165 164 ASSERT_FALSE(ctx.asn1_oid_get(&oid, &length));
166TEST_F(Asn1DecoderTest, SetGet_Success) { 165}
167 uint8_t data[] = { 0x31, 0x03, 0x06, 0x01, 0xBA, }; 166
168 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 167TEST(Asn1DecoderTest, OidGet_Success) {
169 asn1_context_t* ptr = asn1_set_get(ctx); 168 uint8_t data[] = { 0x06, 0x01, 0x99 };
170 ASSERT_NE((asn1_context_t*)NULL, ptr); 169 asn1_context ctx(data, sizeof(data));
171 const uint8_t* oid; 170 const uint8_t* oid;
172 size_t length; 171 size_t length;
173 ASSERT_TRUE(asn1_oid_get(ptr, &oid, &length)); 172 ASSERT_TRUE(ctx.asn1_oid_get(&oid, &length));
174 EXPECT_EQ(1U, length); 173 ASSERT_EQ(1U, length);
175 EXPECT_EQ(0xBAU, *oid); 174 ASSERT_EQ(0x99U, *oid);
176 asn1_context_free(ptr); 175}
177 asn1_context_free(ctx); 176
178} 177TEST(Asn1DecoderTest, OctetStringGet_LengthZero_Failure) {
179 178 uint8_t data[] = { 0x04, 0x00, 0x55 };
180TEST_F(Asn1DecoderTest, OidGet_LengthZero_Failure) { 179 asn1_context ctx(data, sizeof(data));
181 uint8_t data[] = { 0x06, 0x00, 0x01, }; 180 const uint8_t* string;
182 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 181 size_t length;
183 const uint8_t* oid; 182 ASSERT_FALSE(ctx.asn1_octet_string_get(&string, &length));
184 size_t length; 183}
185 EXPECT_FALSE(asn1_oid_get(ctx, &oid, &length)); 184
186 asn1_context_free(ctx); 185TEST(Asn1DecoderTest, OctetStringGet_TooSmall_Failure) {
187} 186 uint8_t data[] = { 0x04, 0x01 };
188 187 asn1_context ctx(data, sizeof(data));
189TEST_F(Asn1DecoderTest, OidGet_TooSmall_Failure) { 188 const uint8_t* string;
190 uint8_t data[] = { 0x06, 0x01, }; 189 size_t length;
191 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 190 ASSERT_FALSE(ctx.asn1_octet_string_get(&string, &length));
192 const uint8_t* oid; 191}
193 size_t length; 192
194 EXPECT_FALSE(asn1_oid_get(ctx, &oid, &length)); 193TEST(Asn1DecoderTest, OctetStringGet_Success) {
195 asn1_context_free(ctx); 194 uint8_t data[] = { 0x04, 0x01, 0xAA };
196} 195 asn1_context ctx(data, sizeof(data));
197 196 const uint8_t* string;
198TEST_F(Asn1DecoderTest, OidGet_Success) { 197 size_t length;
199 uint8_t data[] = { 0x06, 0x01, 0x99, }; 198 ASSERT_TRUE(ctx.asn1_octet_string_get(&string, &length));
200 asn1_context_t* ctx = asn1_context_new(data, sizeof(data)); 199 ASSERT_EQ(1U, length);
201 const uint8_t* oid; 200 ASSERT_EQ(0xAAU, *string);
202 size_t length; 201}
203 ASSERT_TRUE(asn1_oid_get(ctx, &oid, &length));
204 EXPECT_EQ(1U, length);
205 EXPECT_EQ(0x99U, *oid);
206 asn1_context_free(ctx);
207}
208
209TEST_F(Asn1DecoderTest, OctetStringGet_LengthZero_Failure) {
210 uint8_t data[] = { 0x04, 0x00, 0x55, };
211 asn1_context_t* ctx = asn1_context_new(data, sizeof(data));
212 const uint8_t* string;
213 size_t length;
214 ASSERT_FALSE(asn1_octet_string_get(ctx, &string, &length));
215 asn1_context_free(ctx);
216}
217
218TEST_F(Asn1DecoderTest, OctetStringGet_TooSmall_Failure) {
219 uint8_t data[] = { 0x04, 0x01, };
220 asn1_context_t* ctx = asn1_context_new(data, sizeof(data));
221 const uint8_t* string;
222 size_t length;
223 ASSERT_FALSE(asn1_octet_string_get(ctx, &string, &length));
224 asn1_context_free(ctx);
225}
226
227TEST_F(Asn1DecoderTest, OctetStringGet_Success) {
228 uint8_t data[] = { 0x04, 0x01, 0xAA, };
229 asn1_context_t* ctx = asn1_context_new(data, sizeof(data));
230 const uint8_t* string;
231 size_t length;
232 ASSERT_TRUE(asn1_octet_string_get(ctx, &string, &length));
233 EXPECT_EQ(1U, length);
234 EXPECT_EQ(0xAAU, *string);
235 asn1_context_free(ctx);
236}
237
238} // namespace android
diff --git a/verifier.cpp b/verifier.cpp
index fa344d74..e9d540cd 100644
--- a/verifier.cpp
+++ b/verifier.cpp
@@ -66,48 +66,50 @@ static bool read_pkcs7(const uint8_t* pkcs7_der, size_t pkcs7_der_len,
66 CHECK(sig_der != nullptr); 66 CHECK(sig_der != nullptr);
67 sig_der->clear(); 67 sig_der->clear();
68 68
69 asn1_context_t* ctx = asn1_context_new(pkcs7_der, pkcs7_der_len); 69 asn1_context ctx(pkcs7_der, pkcs7_der_len);
70 if (ctx == NULL) { 70
71 std::unique_ptr<asn1_context> pkcs7_seq(ctx.asn1_sequence_get());
72 if (pkcs7_seq == nullptr || !pkcs7_seq->asn1_sequence_next()) {
71 return false; 73 return false;
72 } 74 }
73 75
74 asn1_context_t* pkcs7_seq = asn1_sequence_get(ctx); 76 std::unique_ptr<asn1_context> signed_data_app(pkcs7_seq->asn1_constructed_get());
75 if (pkcs7_seq != NULL && asn1_sequence_next(pkcs7_seq)) { 77 if (signed_data_app == nullptr) {
76 asn1_context_t *signed_data_app = asn1_constructed_get(pkcs7_seq); 78 return false;
77 if (signed_data_app != NULL) { 79 }
78 asn1_context_t* signed_data_seq = asn1_sequence_get(signed_data_app); 80
79 if (signed_data_seq != NULL 81 std::unique_ptr<asn1_context> signed_data_seq(signed_data_app->asn1_sequence_get());
80 && asn1_sequence_next(signed_data_seq) 82 if (signed_data_seq == nullptr ||
81 && asn1_sequence_next(signed_data_seq) 83 !signed_data_seq->asn1_sequence_next() ||
82 && asn1_sequence_next(signed_data_seq) 84 !signed_data_seq->asn1_sequence_next() ||
83 && asn1_constructed_skip_all(signed_data_seq)) { 85 !signed_data_seq->asn1_sequence_next() ||
84 asn1_context_t *sig_set = asn1_set_get(signed_data_seq); 86 !signed_data_seq->asn1_constructed_skip_all()) {
85 if (sig_set != NULL) { 87 return false;
86 asn1_context_t* sig_seq = asn1_sequence_get(sig_set); 88 }
87 if (sig_seq != NULL 89
88 && asn1_sequence_next(sig_seq) 90 std::unique_ptr<asn1_context> sig_set(signed_data_seq->asn1_set_get());
89 && asn1_sequence_next(sig_seq) 91 if (sig_set == nullptr) {
90 && asn1_sequence_next(sig_seq) 92 return false;
91 && asn1_sequence_next(sig_seq)) { 93 }
92 const uint8_t* sig_der_ptr; 94
93 size_t sig_der_length; 95 std::unique_ptr<asn1_context> sig_seq(sig_set->asn1_sequence_get());
94 if (asn1_octet_string_get(sig_seq, &sig_der_ptr, &sig_der_length)) { 96 if (sig_seq == nullptr ||
95 sig_der->resize(sig_der_length); 97 !sig_seq->asn1_sequence_next() ||
96 std::copy(sig_der_ptr, sig_der_ptr + sig_der_length, sig_der->begin()); 98 !sig_seq->asn1_sequence_next() ||
97 } 99 !sig_seq->asn1_sequence_next() ||
98 asn1_context_free(sig_seq); 100 !sig_seq->asn1_sequence_next()) {
99 } 101 return false;
100 asn1_context_free(sig_set); 102 }
101 } 103
102 asn1_context_free(signed_data_seq); 104 const uint8_t* sig_der_ptr;
103 } 105 size_t sig_der_length;
104 asn1_context_free(signed_data_app); 106 if (!sig_seq->asn1_octet_string_get(&sig_der_ptr, &sig_der_length)) {
105 } 107 return false;
106 asn1_context_free(pkcs7_seq);
107 } 108 }
108 asn1_context_free(ctx);
109 109
110 return !sig_der->empty(); 110 sig_der->resize(sig_der_length);
111 std::copy(sig_der_ptr, sig_der_ptr + sig_der_length, sig_der->begin());
112 return true;
111} 113}
112 114
113/* 115/*
generated by cgit v1.2.3 (git 2.39.2)