mirror of
https://github.com/radareorg/radare2.git
synced 2024-11-28 15:41:38 +00:00
600 lines
17 KiB
C
600 lines
17 KiB
C
/* radare2 - LGPL - Copyright 2017 - wargio */
|
|
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
#include <r_util.h>
|
|
#include "r_x509_internal.h"
|
|
#include "r_pkcs7_internal.h"
|
|
|
|
bool r_pkcs7_parse_certificaterevocationlists (RPKCS7CertificateRevocationLists *crls, RASN1Object *object) {
|
|
ut32 i;
|
|
if (!crls && !object) {
|
|
return false;
|
|
}
|
|
if (object->list.length > 0) {
|
|
crls->elements = (RX509CertificateRevocationList **) calloc (object->list.length, sizeof (RX509CertificateRevocationList*));
|
|
if (!crls->elements) {
|
|
return false;
|
|
}
|
|
crls->length = object->list.length;
|
|
for (i = 0; i < crls->length; ++i) {
|
|
crls->elements[i] = r_x509_parse_crl (object->list.objects[i]);
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_certificaterevocationlists (RPKCS7CertificateRevocationLists *crls) {
|
|
ut32 i;
|
|
if (crls) {
|
|
for (i = 0; i < crls->length; ++i) {
|
|
r_x509_free_crl (crls->elements[i]);
|
|
crls->elements[i] = NULL;
|
|
}
|
|
free (crls->elements);
|
|
crls->elements = NULL;
|
|
// Used internally pkcs #7, so it should't free crls.
|
|
}
|
|
}
|
|
|
|
bool r_pkcs7_parse_extendedcertificatesandcertificates (RPKCS7ExtendedCertificatesAndCertificates *ecac, RASN1Object *object) {
|
|
ut32 i;
|
|
if (!ecac && !object) {
|
|
return false;
|
|
}
|
|
if (object->list.length > 0) {
|
|
ecac->elements = (RX509Certificate **) calloc (object->list.length, sizeof (RX509Certificate*));
|
|
if (!ecac->elements) {
|
|
return false;
|
|
}
|
|
ecac->length = object->list.length;
|
|
for (i = 0; i < ecac->length; ++i) {
|
|
ecac->elements[i] = r_x509_parse_certificate (object->list.objects[i]);
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_extendedcertificatesandcertificates (RPKCS7ExtendedCertificatesAndCertificates *ecac) {
|
|
ut32 i;
|
|
if (ecac) {
|
|
for (i = 0; i < ecac->length; ++i) {
|
|
r_x509_free_certificate (ecac->elements[i]);
|
|
ecac->elements[i] = NULL;
|
|
}
|
|
free (ecac->elements);
|
|
ecac->elements = NULL;
|
|
// Used internally pkcs #7, so it should't free ecac.
|
|
}
|
|
}
|
|
|
|
bool r_pkcs7_parse_digestalgorithmidentifier (RPKCS7DigestAlgorithmIdentifiers *dai, RASN1Object *object) {
|
|
ut32 i;
|
|
if (!dai && !object) {
|
|
return false;
|
|
}
|
|
if (object->list.length > 0) {
|
|
dai->elements = (RX509AlgorithmIdentifier **) calloc (object->list.length, sizeof (RX509AlgorithmIdentifier*));
|
|
if (!dai->elements) {
|
|
return false;
|
|
}
|
|
dai->length = object->list.length;
|
|
for (i = 0; i < dai->length; ++i) {
|
|
// r_x509_parse_algorithmidentifier returns bool,
|
|
// so i have to allocate before calling the function
|
|
dai->elements[i] = (RX509AlgorithmIdentifier *) malloc (sizeof (RX509AlgorithmIdentifier));
|
|
//should i handle invalid memory? the function checks the pointer
|
|
//or it should return if dai->elements[i] == NULL ?
|
|
if (dai->elements[i]) {
|
|
//Memset is needed to initialize to 0 the structure and avoid garbage.
|
|
memset (dai->elements[i], 0, sizeof (RX509AlgorithmIdentifier));
|
|
r_x509_parse_algorithmidentifier (dai->elements[i], object->list.objects[i]);
|
|
}
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_digestalgorithmidentifier (RPKCS7DigestAlgorithmIdentifiers *dai) {
|
|
ut32 i;
|
|
if (dai) {
|
|
for (i = 0; i < dai->length; ++i) {
|
|
if (dai->elements[i]) {
|
|
r_x509_free_algorithmidentifier (dai->elements[i]);
|
|
// r_x509_free_algorithmidentifier doesn't free the pointer
|
|
// because on x509 the original use was internal.
|
|
free (dai->elements[i]);
|
|
dai->elements[i] = NULL;
|
|
}
|
|
}
|
|
free (dai->elements);
|
|
dai->elements = NULL;
|
|
// Used internally pkcs #7, so it should't free dai.
|
|
}
|
|
}
|
|
|
|
bool r_pkcs7_parse_contentinfo (RPKCS7ContentInfo* ci, RASN1Object *object) {
|
|
if (!ci || !object || object->list.length < 1) {
|
|
return false;
|
|
}
|
|
|
|
ci->contentType = r_asn1_stringify_oid (object->list.objects[0]->sector, object->list.objects[0]->length);
|
|
if (object->list.length == 2) {
|
|
ci->content = object->list.objects[1];
|
|
object->list.objects[1] = NULL;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_contentinfo (RPKCS7ContentInfo* ci) {
|
|
if (ci) {
|
|
r_asn1_free_object (ci->content);
|
|
r_asn1_free_string (ci->contentType);
|
|
// Used internally pkcs #7, so it should't free ci.
|
|
}
|
|
}
|
|
|
|
bool r_pkcs7_parse_issuerandserialnumber (RPKCS7IssuerAndSerialNumber* iasu, RASN1Object *object) {
|
|
if (!iasu || !object || object->list.length != 2) {
|
|
return false;
|
|
}
|
|
|
|
r_x509_parse_name (&iasu->issuer, object->list.objects[0]);
|
|
iasu->serialNumber = object->list.objects[1];
|
|
object->list.objects[1] = NULL;
|
|
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_issuerandserialnumber (RPKCS7IssuerAndSerialNumber* iasu) {
|
|
if (iasu) {
|
|
r_x509_free_name (&iasu->issuer);
|
|
r_asn1_free_object (iasu->serialNumber);
|
|
// Used internally pkcs #7, so it should't free iasu.
|
|
}
|
|
}
|
|
|
|
/*
|
|
RX509AlgorithmIdentifier digestEncryptionAlgorithm;
|
|
RASN1Object *encryptedDigest;
|
|
RASN1Object *unauthenticatedAttributes; //Optional type ??
|
|
} RPKCS7SignerInfo;
|
|
*/
|
|
|
|
bool r_pkcs7_parse_signerinfo (RPKCS7SignerInfo* si, RASN1Object *object) {
|
|
RASN1Object **elems;
|
|
ut32 shift = 3;
|
|
if (!si || !object || object->list.length < 5) {
|
|
return false;
|
|
}
|
|
elems = object->list.objects;
|
|
//Following RFC
|
|
si->version = (ut32) elems[0]->sector[0];
|
|
r_pkcs7_parse_issuerandserialnumber (&si->issuerAndSerialNumber, elems[1]);
|
|
r_x509_parse_algorithmidentifier (&si->digestAlgorithm, elems[2]);
|
|
if (shift < object->list.length && elems[shift]->klass == CLASS_CONTEXT && elems[shift]->tag == 0) {
|
|
r_pkcs7_parse_attributes (&si->authenticatedAttributes, elems[shift]);
|
|
shift++;
|
|
}
|
|
if (shift < object->list.length) {
|
|
r_x509_parse_algorithmidentifier (&si->digestEncryptionAlgorithm, elems[shift]);
|
|
shift++;
|
|
}
|
|
if (shift < object->list.length) {
|
|
si->encryptedDigest = elems[shift];
|
|
elems[shift] = NULL;
|
|
shift++;
|
|
}
|
|
if (shift < object->list.length && elems[shift]->klass == CLASS_CONTEXT && elems[shift]->tag == 1) {
|
|
r_pkcs7_parse_attributes (&si->unauthenticatedAttributes, elems[shift]);
|
|
}
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_signerinfo (RPKCS7SignerInfo* si) {
|
|
if (si) {
|
|
r_pkcs7_free_issuerandserialnumber (&si->issuerAndSerialNumber);
|
|
r_x509_free_algorithmidentifier (&si->digestAlgorithm);
|
|
r_pkcs7_free_attributes (&si->authenticatedAttributes);
|
|
r_x509_free_algorithmidentifier (&si->digestEncryptionAlgorithm);
|
|
r_asn1_free_object (si->encryptedDigest);
|
|
r_pkcs7_free_attributes (&si->unauthenticatedAttributes);
|
|
free (si);
|
|
}
|
|
}
|
|
|
|
bool r_pkcs7_parse_signerinfos (RPKCS7SignerInfos *ss, RASN1Object *object) {
|
|
ut32 i;
|
|
if (!ss && !object) {
|
|
return false;
|
|
}
|
|
if (object->list.length > 0) {
|
|
ss->elements = (RPKCS7SignerInfo **) calloc (object->list.length, sizeof (RPKCS7SignerInfo*));
|
|
if (!ss->elements) {
|
|
return false;
|
|
}
|
|
ss->length = object->list.length;
|
|
for (i = 0; i < ss->length; ++i) {
|
|
// r_pkcs7_parse_signerinfo returns bool,
|
|
// so i have to allocate before calling the function
|
|
ss->elements[i] = (RPKCS7SignerInfo *) malloc (sizeof (RPKCS7SignerInfo));
|
|
//should i handle invalid memory? the function checks the pointer
|
|
//or it should return if si->elements[i] == NULL ?
|
|
if (ss->elements[i]) {
|
|
//Memset is needed to initialize to 0 the structure and avoid garbage.
|
|
memset (ss->elements[i], 0, sizeof (RPKCS7SignerInfo));
|
|
r_pkcs7_parse_signerinfo (ss->elements[i], object->list.objects[i]);
|
|
}
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_signerinfos (RPKCS7SignerInfos *ss) {
|
|
ut32 i;
|
|
if (ss) {
|
|
for (i = 0; i < ss->length; ++i) {
|
|
r_pkcs7_free_signerinfo (ss->elements[i]);
|
|
//Free the ptr, since isn't done by the function
|
|
free (ss->elements[i]);
|
|
ss->elements[i] = NULL;
|
|
}
|
|
free (ss->elements);
|
|
ss->elements = NULL;
|
|
// Used internally pkcs #7, so it should't free si.
|
|
}
|
|
}
|
|
|
|
bool r_pkcs7_parse_signeddata (RPKCS7SignedData *sd, RASN1Object *object) {
|
|
RASN1Object **elems;
|
|
ut32 shift = 3;
|
|
if (!sd || !object || object->list.length < 4) {
|
|
return false;
|
|
}
|
|
memset (sd, 0, sizeof (RPKCS7SignedData));
|
|
elems = object->list.objects;
|
|
//Following RFC
|
|
sd->version = (ut32) elems[0]->sector[0];
|
|
r_pkcs7_parse_digestalgorithmidentifier (&sd->digestAlgorithms, elems[1]);
|
|
r_pkcs7_parse_contentinfo (&sd->contentInfo, elems[2]);
|
|
//Optional
|
|
if (shift < object->list.length && elems[shift]->klass == CLASS_CONTEXT && elems[shift]->tag == 0) {
|
|
r_pkcs7_parse_extendedcertificatesandcertificates (&sd->certificates, elems[shift]);
|
|
shift++;
|
|
}
|
|
//Optional
|
|
if (shift < object->list.length && elems[shift]->klass == CLASS_CONTEXT && elems[shift]->tag == 1) {
|
|
r_pkcs7_parse_certificaterevocationlists (&sd->crls, elems[shift]);
|
|
shift++;
|
|
}
|
|
if (shift < object->list.length)
|
|
r_pkcs7_parse_signerinfos (&sd->signerinfos, elems[shift]);
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_signeddata (RPKCS7SignedData* sd) {
|
|
if (sd) {
|
|
r_pkcs7_free_digestalgorithmidentifier (&sd->digestAlgorithms);
|
|
r_pkcs7_free_contentinfo (&sd->contentInfo);
|
|
r_pkcs7_free_extendedcertificatesandcertificates (&sd->certificates);
|
|
r_pkcs7_free_certificaterevocationlists (&sd->crls);
|
|
// Used internally pkcs #7, so it should't free sd.
|
|
}
|
|
}
|
|
|
|
RCMS *r_pkcs7_parse_cms (const ut8 *buffer, ut32 length) {
|
|
RASN1Object *object;
|
|
RCMS *container;
|
|
if (!buffer || !length) {
|
|
return NULL;
|
|
}
|
|
container = (RCMS*) malloc (sizeof (RCMS));
|
|
if (!container) {
|
|
return NULL;
|
|
}
|
|
memset (container, 0, sizeof (RCMS));
|
|
object = r_asn1_create_object (buffer, length);
|
|
if (!object || object->list.length != 2 || object->list.objects[1]->list.length != 1) {
|
|
free (container);
|
|
return NULL;
|
|
}
|
|
container->contentType = r_asn1_stringify_oid (object->list.objects[0]->sector, object->list.objects[0]->length);
|
|
r_pkcs7_parse_signeddata (&container->signedData, object->list.objects[1]->list.objects[0]);
|
|
r_asn1_free_object (object);
|
|
return container;
|
|
}
|
|
|
|
void r_pkcs7_free_cms (RCMS* container) {
|
|
if (container) {
|
|
r_asn1_free_string (container->contentType);
|
|
r_pkcs7_free_signeddata (&container->signedData);
|
|
free (container);
|
|
}
|
|
}
|
|
|
|
RPKCS7Attribute* r_pkcs7_parse_attribute (RASN1Object *object) {
|
|
RPKCS7Attribute* attribute;
|
|
if (!object || object->list.length < 1) {
|
|
return NULL;
|
|
}
|
|
attribute = (RPKCS7Attribute*) malloc (sizeof (RPKCS7Attribute));
|
|
if (!attribute) {
|
|
return NULL;
|
|
}
|
|
memset (attribute, 0, sizeof (RPKCS7Attribute));
|
|
attribute->oid = r_asn1_stringify_oid (object->list.objects[0]->sector, object->list.objects[0]->length);
|
|
if (object->list.length == 2) {
|
|
attribute->data = object->list.objects[1];
|
|
object->list.objects[1] = NULL;
|
|
}
|
|
|
|
return attribute;
|
|
}
|
|
|
|
void r_pkcs7_free_attribute (RPKCS7Attribute* attribute) {
|
|
if (attribute) {
|
|
r_asn1_free_object (attribute->data);
|
|
r_asn1_free_string (attribute->oid);
|
|
free (attribute);
|
|
}
|
|
}
|
|
|
|
bool r_pkcs7_parse_attributes (RPKCS7Attributes* attributes, RASN1Object *object) {
|
|
ut32 i;
|
|
if (!attributes || !object || !object->list.length) {
|
|
return false;
|
|
}
|
|
|
|
attributes->length = object->list.length;
|
|
if (attributes->length > 0) {
|
|
attributes->elements = (RPKCS7Attribute**) calloc (attributes->length, sizeof (RPKCS7Attribute*));
|
|
if (!attributes->elements) {
|
|
attributes->length = 0;
|
|
return false;
|
|
}
|
|
memset (attributes->elements, 0, attributes->length * sizeof (RPKCS7Attribute*));
|
|
|
|
for (i = 0; i < object->list.length; ++i) {
|
|
attributes->elements[i] = r_pkcs7_parse_attribute (object->list.objects[i]);
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
|
|
void r_pkcs7_free_attributes (RPKCS7Attributes* attributes) {
|
|
ut32 i;
|
|
if (attributes) {
|
|
for (i = 0; i < attributes->length; ++i) {
|
|
r_pkcs7_free_attribute (attributes->elements[i]);
|
|
}
|
|
free (attributes->elements);
|
|
attributes->elements = NULL;
|
|
// Used internally pkcs #7, so it should't free attributes.
|
|
}
|
|
}
|
|
|
|
char* r_pkcs7_signerinfos_dump (RX509CertificateRevocationList *crl, char* buffer, ut32 length, const char* pad) {
|
|
RASN1String *algo, *last, *next;
|
|
ut32 i, p;
|
|
int r;
|
|
char *tmp, *pad2, *pad3;
|
|
if (!crl || !buffer || !length) {
|
|
return NULL;
|
|
}
|
|
if (!pad) {
|
|
pad = "";
|
|
}
|
|
pad3 = r_str_newf ("%s ", pad);
|
|
if (!pad3) return NULL;
|
|
|
|
pad2 = pad3 + 2;
|
|
algo = crl->signature.algorithm;
|
|
last = crl->lastUpdate;
|
|
next = crl->nextUpdate;
|
|
r = snprintf (buffer, length, "%sCRL:\n%sSignature:\n%s%s\n%sIssuer\n",
|
|
pad, pad2, pad3, algo ? algo->string : "", pad2);
|
|
p = (ut32) r;
|
|
if (r < 0 || !(tmp = r_x509_name_dump (&crl->issuer, buffer + p, length - p, pad3))) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
p = tmp - buffer;
|
|
if (length <= p) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
r = snprintf (buffer + p, length - p, "%sLast Update: %s\n%sNext Update: %s\n%sRevoked Certificates:\n",
|
|
pad2, last ? last->string : "Missing",
|
|
pad2, next ? next->string : "Missing", pad2);
|
|
p += (ut32) r;
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
for (i = 0; i < crl->length; ++i) {
|
|
if (length <= p || !(tmp = r_x509_crlentry_dump (crl->revokedCertificates[i], buffer + p, length - p, pad3))) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
p = tmp - buffer;
|
|
}
|
|
|
|
free (pad3);
|
|
return buffer + p;
|
|
}
|
|
|
|
char* r_x509_signedinfo_dump (RPKCS7SignerInfo *si, char* buffer, ut32 length, const char* pad) {
|
|
RASN1String *s;
|
|
RASN1Object *o;
|
|
ut32 i, p;
|
|
int r;
|
|
char *tmp, *pad2, *pad3;
|
|
if (!si || !buffer || !length) {
|
|
return NULL;
|
|
}
|
|
if (!pad) {
|
|
pad = "";
|
|
}
|
|
pad3 = r_str_newf ("%s ", pad);
|
|
if (!pad3) return NULL;
|
|
pad2 = pad3 + 2;
|
|
|
|
|
|
r = snprintf (buffer, length, "%sSignerInfo:\n%sVersion: v%u\n%sIssuer\n", pad, pad2, si->version + 1, pad2);
|
|
p = (ut32) r;
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
|
|
if (length <= p || !(tmp = r_x509_name_dump (&si->issuerAndSerialNumber.issuer, buffer + p, length - p, pad3))) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
p = tmp - buffer;
|
|
if ((o = si->issuerAndSerialNumber.serialNumber)) {
|
|
s = r_asn1_stringify_integer (o->sector, o->length);
|
|
} else {
|
|
s = NULL;
|
|
}
|
|
r = snprintf (buffer + p, length - p, "%sSerial Number:\n%s%s\n", pad2, pad3, s ? s->string : "Missing");
|
|
p += (ut32) r;
|
|
r_asn1_free_string (s);
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
|
|
s = si->digestAlgorithm.algorithm;
|
|
r = snprintf (buffer + p, length - p, "%sDigest Algorithm:\n%s%s\n%sAuthenticated Attributes:\n",
|
|
pad2, pad3, s ? s->string : "Missing", pad2);
|
|
p += (ut32) r;
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
for (i = 0; i < si->authenticatedAttributes.length; ++i) {
|
|
RPKCS7Attribute* attr = si->authenticatedAttributes.elements[i];
|
|
if (!attr) continue;
|
|
r = snprintf (buffer + p, length - p, "%s%s: %u bytes\n",
|
|
pad3, attr->oid ? attr->oid->string : "Missing", attr->data ? attr->data->length : 0);
|
|
p += (ut32) r;
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
}
|
|
s = si->digestEncryptionAlgorithm.algorithm;
|
|
r = snprintf (buffer + p, length - p, "%sDigest Encryption Algorithm\n%s%s\n",
|
|
pad2, pad3, s ? s->string : "Missing");
|
|
p += (ut32) r;
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
|
|
// if ((o = si->encryptedDigest)) s = r_asn1_stringify_bytes (o->sector, o->length);
|
|
// else s = NULL;
|
|
// r = snprintf (buffer + p, length - p, "%sEncrypted Digest: %u bytes\n%s\n", pad2, o ? o->length : 0, s ? s->string : "Missing");
|
|
// p += (ut32) r;
|
|
// r_asn1_free_string (s);
|
|
r = snprintf (buffer + p, length - p, "%sEncrypted Digest: %u bytes\n", pad2, o ? o->length : 0);
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
r = snprintf (buffer + p, length - p, "%sUnauthenticated Attributes:\n", pad2);
|
|
p += (ut32) r;
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
for (i = 0; i < si->unauthenticatedAttributes.length; ++i) {
|
|
RPKCS7Attribute* attr = si->unauthenticatedAttributes.elements[i];
|
|
if (!attr) continue;
|
|
o = attr->data;
|
|
r = snprintf (buffer + p, length - p, "%s%s: %u bytes\n",
|
|
pad3, attr->oid ? attr->oid->string : "Missing", o ? o->length : 0);
|
|
p += (ut32) r;
|
|
if (r < 0) {
|
|
free (pad3);
|
|
return NULL;
|
|
}
|
|
}
|
|
return buffer + p;
|
|
}
|
|
|
|
char *r_pkcs7_cms_dump (RCMS* container) {
|
|
RPKCS7SignedData *sd;
|
|
ut32 i, length, p;
|
|
int r;
|
|
char *buffer, *tmp = NULL;
|
|
if (!container) {
|
|
return NULL;
|
|
}
|
|
sd = &container->signedData;
|
|
p = 0;
|
|
length = 2048 + (container->signedData.certificates.length * 1024);
|
|
buffer = (char*) malloc (length);
|
|
if (!buffer) return NULL;
|
|
memset (buffer, 0, length);
|
|
r = snprintf (buffer, length, "signedData\n Version: %u\n Digest Algorithms:\n", sd->version);
|
|
p += (ut32) r;
|
|
if (r < 0) {
|
|
free (buffer);
|
|
return NULL;
|
|
}
|
|
if (container->signedData.digestAlgorithms.elements) {
|
|
for (i = 0; i < container->signedData.digestAlgorithms.length; ++i) {
|
|
if (container->signedData.digestAlgorithms.elements[i]) {
|
|
r = snprintf (buffer + p, length - p, " %s\n", container->signedData.digestAlgorithms.elements[i]->algorithm->string);
|
|
p += (ut32) r;
|
|
if (r < 0 || length <= p) {
|
|
free (buffer);
|
|
return NULL;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
r = snprintf (buffer + p, length - p, " Certificates: %u\n", container->signedData.certificates.length);
|
|
p += (ut32) r;
|
|
if (r < 0 || length <= p) {
|
|
free (buffer);
|
|
return NULL;
|
|
}
|
|
for (i = 0; i < container->signedData.certificates.length; ++i) {
|
|
if (length <= p || !(tmp = r_x509_certificate_dump (container->signedData.certificates.elements[i], buffer + p, length - p, " "))) {
|
|
free (buffer);
|
|
return NULL;
|
|
}
|
|
p = tmp - buffer;
|
|
}
|
|
|
|
for (i = 0; i < container->signedData.crls.length; ++i) {
|
|
if (length <= p || !(tmp = r_x509_crl_dump (container->signedData.crls.elements[i], buffer + p, length - p, " "))) {
|
|
free (buffer);
|
|
return NULL;
|
|
}
|
|
p = tmp - buffer;
|
|
}
|
|
p = tmp - buffer;
|
|
r = snprintf (buffer + p, length - p, " SignerInfos:\n");
|
|
p += (ut32) r;
|
|
if (r < 0 || length <= p) {
|
|
free (buffer);
|
|
return NULL;
|
|
}
|
|
if (container->signedData.signerinfos.elements) {
|
|
for (i = 0; i < container->signedData.signerinfos.length; ++i) {
|
|
if (length <= p || !(tmp = r_x509_signedinfo_dump (container->signedData.signerinfos.elements[i], buffer + p, length - p, " "))) {
|
|
free (buffer);
|
|
return NULL;
|
|
}
|
|
p = tmp - buffer;
|
|
}
|
|
}
|
|
return buffer;
|
|
}
|
|
|