PageRenderTime 59ms CodeModel.GetById 17ms RepoModel.GetById 0ms app.codeStats 1ms

/security/nss/lib/pkcs12/p12d.c

http://github.com/zpao/v8monkey
C | 3581 lines | 2568 code | 500 blank | 513 comment | 611 complexity | 440184944dbc8980c185cb61abeecce8 MD5 | raw file
Possible License(s): MPL-2.0-no-copyleft-exception, LGPL-3.0, AGPL-1.0, LGPL-2.1, BSD-3-Clause, GPL-2.0, JSON, Apache-2.0, 0BSD

Large files files are truncated, but you can click here to view the full file

    

  1. /* ***** BEGIN LICENSE BLOCK *****
    2. 

  2.  * Version: MPL 1.1/GPL 2.0/LGPL 2.1
    3. 

  3.  *
    4. 

  4.  * The contents of this file are subject to the Mozilla Public License Version
    5. 

  5.  * 1.1 (the "License"); you may not use this file except in compliance with
    6. 

  6.  * the License. You may obtain a copy of the License at
    7. 

  7.  * http://www.mozilla.org/MPL/
    8. 

  8.  *
    9. 

  9.  * Software distributed under the License is distributed on an "AS IS" basis,
    10. 

  10.  * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
    11. 

  11.  * for the specific language governing rights and limitations under the
    12. 

  12.  * License.
    13. 

  13.  *
    14. 

  14.  * The Original Code is the Netscape security libraries.
    15. 

  15.  *
    16. 

  16.  * The Initial Developer of the Original Code is
    17. 

  17.  * Netscape Communications Corporation.
    18. 

  18.  * Portions created by the Initial Developer are Copyright (C) 1994-2000
    19. 

  19.  * the Initial Developer. All Rights Reserved.
    20. 

  20.  *
    21. 

  21.  * Contributor(s):
    22. 

  22.  *   Dr Vipul Gupta <vipul.gupta@sun.com>, Sun Microsystems Laboratories
    23. 

  23.  *
    24. 

  24.  * Alternatively, the contents of this file may be used under the terms of
    25. 

  25.  * either the GNU General Public License Version 2 or later (the "GPL"), or
    26. 

  26.  * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
    27. 

  27.  * in which case the provisions of the GPL or the LGPL are applicable instead
    28. 

  28.  * of those above. If you wish to allow use of your version of this file only
    29. 

  29.  * under the terms of either the GPL or the LGPL, and not to allow others to
    30. 

  30.  * use your version of this file under the terms of the MPL, indicate your
    31. 

  31.  * decision by deleting the provisions above and replace them with the notice
    32. 

  32.  * and other provisions required by the GPL or the LGPL. If you do not delete
    33. 

  33.  * the provisions above, a recipient may use your version of this file under
    34. 

  34.  * the terms of any one of the MPL, the GPL or the LGPL.
    35. 

  35.  *
    36. 

  36.  * ***** END LICENSE BLOCK ***** */
    37. 

  37. 

  38. 

  39. #include "nssrenam.h"
    40. 

  40. #include "p12t.h"
    41. 

  41. #include "p12.h"
    42. 

  42. #include "plarena.h"
    43. 

  43. #include "secitem.h"
    44. 

  44. #include "secoid.h"
    45. 

  45. #include "seccomon.h"
    46. 

  46. #include "secport.h"
    47. 

  47. #include "cert.h"
    48. 

  48. #include "secpkcs7.h"
    49. 

  49. #include "secasn1.h"
    50. 

  50. #include "secerr.h"
    51. 

  51. #include "pk11func.h"
    52. 

  52. #include "p12plcy.h"
    53. 

  53. #include "p12local.h"
    54. 

  54. #include "secder.h"
    55. 

  55. #include "secport.h"
    56. 

  56. 

  57. #include "certdb.h"
    58. 

  58. 

  59. #include "prcpucfg.h"
    60. 

  60. 

  61. /* This belongs in secport.h */
    62. 

  62. #define PORT_ArenaGrowArray(poolp, oldptr, type, oldnum, newnum) \
    63. 

  63.     (type *)PORT_ArenaGrow((poolp), (oldptr), \
    64. 

  64. 			   (oldnum) * sizeof(type), (newnum) * sizeof(type))
    65. 

  65. 

  66. 

  67. typedef struct sec_PKCS12SafeContentsContextStr sec_PKCS12SafeContentsContext;
    68. 

  68. 

  69. /* Opaque structure for decoding SafeContents.  These are used
    70. 

  70.  * for each authenticated safe as well as any nested safe contents.
    71. 

  71.  */
    72. 

  72. struct sec_PKCS12SafeContentsContextStr {
    73. 

  73.     /* the parent decoder context */
    74. 

  74.     SEC_PKCS12DecoderContext *p12dcx;
    75. 

  75. 

  76.     /* memory arena to allocate space from */
    77. 

  77.     PRArenaPool *arena;
    78. 

  78. 

  79.     /* decoder context and destination for decoding safe contents */
    80. 

  80.     SEC_ASN1DecoderContext *safeContentsA1Dcx;
    81. 

  81.     sec_PKCS12SafeContents safeContents;
    82. 

  82. 

  83.     /* information for decoding safe bags within the safe contents.
    84. 

  84.      * these variables are updated for each safe bag decoded.
    85. 

  85.      */
    86. 

  86.     SEC_ASN1DecoderContext *currentSafeBagA1Dcx;
    87. 

  87.     sec_PKCS12SafeBag *currentSafeBag;
    88. 

  88.     PRBool skipCurrentSafeBag;
    89. 

  89. 

  90.     /* if the safe contents is nested, the parent is pointed to here. */
    91. 

  91.     sec_PKCS12SafeContentsContext *nestedSafeContentsCtx;
    92. 

  92. };
    93. 

  93. 

  94. /* opaque decoder context structure.  information for decoding a pkcs 12
    95. 

  95.  * PDU are stored here as well as decoding pointers for intermediary 
    96. 

  96.  * structures which are part of the PKCS 12 PDU.  Upon a successful
    97. 

  97.  * decode, the safe bags containing certificates and keys encountered.
    98. 

  98.  */  
    99. 

  99. struct SEC_PKCS12DecoderContextStr {
    100. 

  100.     PRArenaPool *arena;
    101. 

  101.     PK11SlotInfo *slot;
    102. 

  102.     void *wincx;
    103. 

  103.     PRBool error;
    104. 

  104.     int errorValue;
    105. 

  105. 

  106.     /* password */
    107. 

  107.     SECItem *pwitem;
    108. 

  108. 

  109.     /* used for decoding the PFX structure */
    110. 

  110.     SEC_ASN1DecoderContext 	*pfxA1Dcx;
    111. 

  111.     sec_PKCS12PFXItem 		pfx;
    112. 

  112. 

  113.     /* safe bags found during decoding */  
    114. 

  114.     sec_PKCS12SafeBag 		**safeBags;
    115. 

  115.     unsigned int 		safeBagCount;
    116. 

  116. 

  117.     /* state variables for decoding authenticated safes. */
    118. 

  118.     SEC_PKCS7DecoderContext 	*currentASafeP7Dcx;
    119. 

  119.     SEC_ASN1DecoderContext 	*aSafeA1Dcx;
    120. 

  120.     SEC_PKCS7DecoderContext 	*aSafeP7Dcx;
    121. 

  121.     SEC_PKCS7ContentInfo 	*aSafeCinfo;
    122. 

  122.     sec_PKCS12AuthenticatedSafe authSafe;
    123. 

  123.     sec_PKCS12SafeContents 	safeContents;
    124. 

  124. 

  125.     /* safe contents info */
    126. 

  126.     unsigned int 		safeContentsCnt;
    127. 

  127.     sec_PKCS12SafeContentsContext **safeContentsList;
    128. 

  128. 

  129.     /* HMAC info */
    130. 

  130.     sec_PKCS12MacData		macData;
    131. 

  131. 

  132.     /* routines for reading back the data to be hmac'd */
    133. 

  133.     /* They are called as follows.
    134. 

  134.      *
    135. 

  135.      * Stage 1: decode the aSafes cinfo into a buffer in dArg,
    136. 

  136.      * which p12d.c sometimes refers to as the "temp file".
    137. 

  137.      * This occurs during SEC_PKCS12DecoderUpdate calls.
    138. 

  138.      *
    139. 

  139.      * dOpen(dArg, PR_FALSE)
    140. 

  140.      * dWrite(dArg, buf, len)
    141. 

  141.      * ...
    142. 

  142.      * dWrite(dArg, buf, len)
    143. 

  143.      * dClose(dArg, PR_FALSE)
    144. 

  144.      *
    145. 

  145.      * Stage 2: verify MAC
    146. 

  146.      * This occurs SEC_PKCS12DecoderVerify.
    147. 

  147.      *
    148. 

  148.      * dOpen(dArg, PR_TRUE)
    149. 

  149.      * dRead(dArg, buf, IN_BUF_LEN)
    150. 

  150.      * ...
    151. 

  151.      * dRead(dArg, buf, IN_BUF_LEN)
    152. 

  152.      * dClose(dArg, PR_TRUE)
    153. 

  153.      */
    154. 

  154.     digestOpenFn 		dOpen;
    155. 

  155.     digestCloseFn 		dClose;
    156. 

  156.     digestIOFn 			dRead, dWrite;
    157. 

  157.     void 			*dArg;
    158. 

  158.     PRBool			dIsOpen;  /* is the temp file created? */
    159. 

  159. 

  160.     /* helper functions */
    161. 

  161.     SECKEYGetPasswordKey 	pwfn;
    162. 

  162.     void 			*pwfnarg;
    163. 

  163.     PRBool 			swapUnicodeBytes;
    164. 

  164. 

  165.     /* import information */
    166. 

  166.     PRBool 			bagsVerified;
    167. 

  167. 

  168.     /* buffer management for the default callbacks implementation */
    169. 

  169.     void        *buffer;      /* storage area */
    170. 

  170.     PRInt32     filesize;     /* actual data size */
    171. 

  171.     PRInt32     allocated;    /* total buffer size allocated */
    172. 

  172.     PRInt32     currentpos;   /* position counter */
    173. 

  173.     SECPKCS12TargetTokenCAs tokenCAs;
    174. 

  174.     sec_PKCS12SafeBag **keyList;/* used by ...IterateNext() */
    175. 

  175.     unsigned int iteration;
    176. 

  176.     SEC_PKCS12DecoderItem decitem;
    177. 

  177. };
    178. 

  178. 

  179. /* forward declarations of functions that are used when decoding
    180. 

  180.  * safeContents bags which are nested and when decoding the 
    181. 

  181.  * authenticatedSafes.
    182. 

  182.  */
    183. 

  183. static SECStatus
    184. 

  184. sec_pkcs12_decoder_begin_nested_safe_contents(sec_PKCS12SafeContentsContext 
    185. 

  185. 							*safeContentsCtx);
    186. 

  186. static SECStatus
    187. 

  187. sec_pkcs12_decoder_finish_nested_safe_contents(sec_PKCS12SafeContentsContext
    188. 

  188. 							*safeContentsCtx);
    189. 

  189. 

  190. 

  191. /* make sure that the PFX version being decoded is a version
    192. 

  192.  * which we support.
    193. 

  193.  */
    194. 

  194. static PRBool
    195. 

  195. sec_pkcs12_proper_version(sec_PKCS12PFXItem *pfx)
    196. 

  196. {
    197. 

  197.     /* if no version, assume it is not supported */
    198. 

  198.     if(pfx->version.len == 0) {
    199. 

  199. 	return PR_FALSE;
    200. 

  200.     }
    201. 

  201. 

  202.     if(DER_GetInteger(&pfx->version) > SEC_PKCS12_VERSION) {
    203. 

  203. 	return PR_FALSE;
    204. 

  204.     }
    205. 

  205. 

  206.     return PR_TRUE;
    207. 

  207. }
    208. 

  208. 

  209. /* retrieve the key for decrypting the safe contents */ 
    210. 

  210. static PK11SymKey *
    211. 

  211. sec_pkcs12_decoder_get_decrypt_key(void *arg, SECAlgorithmID *algid)
    212. 

  212. {
    213. 

  213.     SEC_PKCS12DecoderContext *p12dcx = (SEC_PKCS12DecoderContext *) arg;
    214. 

  214.     PK11SlotInfo *slot;
    215. 

  215.     PK11SymKey *bulkKey;
    216. 

  216. 

  217.     if(!p12dcx) {
    218. 

  218. 	return NULL;
    219. 

  219.     }
    220. 

  220. 

  221.     /* if no slot specified, use the internal key slot */
    222. 

  222.     if(p12dcx->slot) {
    223. 

  223. 	slot = PK11_ReferenceSlot(p12dcx->slot);
    224. 

  224.     } else {
    225. 

  225. 	slot = PK11_GetInternalKeySlot();
    226. 

  226.     }
    227. 

  227. 

  228.     bulkKey = PK11_PBEKeyGen(slot, algid, p12dcx->pwitem, 
    229. 

  229. 						PR_FALSE, p12dcx->wincx);
    230. 

  230.     /* some tokens can't generate PBE keys on their own, generate the
    231. 

  231.      * key in the internal slot, and let the Import code deal with it,
    232. 

  232.      * (if the slot can't generate PBEs, then we need to use the internal
    233. 

  233.      * slot anyway to unwrap). */
    234. 

  234.     if (!bulkKey && !PK11_IsInternal(slot)) {
    235. 

  235. 	PK11_FreeSlot(slot);
    236. 

  236. 	slot = PK11_GetInternalKeySlot();
    237. 

  237. 	bulkKey = PK11_PBEKeyGen(slot, algid, p12dcx->pwitem, 
    238. 

  238. 						PR_FALSE, p12dcx->wincx);
    239. 

  239.     }
    240. 

  240.     PK11_FreeSlot(slot);
    241. 

  241. 

  242.     /* set the password data on the key */
    243. 

  243.     if (bulkKey) {
    244. 

  244.         PK11_SetSymKeyUserData(bulkKey,p12dcx->pwitem, NULL);
    245. 

  245.     }
    246. 

  246. 

  247. 

  248.     return bulkKey;
    249. 

  249. }
    250. 

  250. 

  251. /* XXX this needs to be modified to handle enveloped data.  most
    252. 

  252.  * likely, it should mirror the routines for SMIME in that regard.
    253. 

  253.  */
    254. 

  254. static PRBool
    255. 

  255. sec_pkcs12_decoder_decryption_allowed(SECAlgorithmID *algid, 
    256. 

  256. 				      PK11SymKey *bulkkey)
    257. 

  257. {
    258. 

  258.     PRBool decryptionAllowed = SEC_PKCS12DecryptionAllowed(algid);
    259. 

  259. 

  260.     if(!decryptionAllowed) {
    261. 

  261. 	return PR_FALSE;
    262. 

  262.     }
    263. 

  263. 

  264.     return PR_TRUE;
    265. 

  265. }
    266. 

  266. 

  267. /* when we encounter a new safe bag during the decoding, we need
    268. 

  268.  * to allocate space for the bag to be decoded to and set the 
    269. 

  269.  * state variables appropriately.  all of the safe bags are allocated
    270. 

  270.  * in a buffer in the outer SEC_PKCS12DecoderContext, however,
    271. 

  271.  * a pointer to the safeBag is also used in the sec_PKCS12SafeContentsContext
    272. 

  272.  * for the current bag.
    273. 

  273.  */
    274. 

  274. static SECStatus
    275. 

  275. sec_pkcs12_decoder_init_new_safe_bag(sec_PKCS12SafeContentsContext 
    276. 

  276. 						*safeContentsCtx)
    277. 

  277. {
    278. 

  278.     void *mark = NULL;
    279. 

  279.     SEC_PKCS12DecoderContext *p12dcx;
    280. 

  280. 

  281.     /* make sure that the structures are defined, and there has
    282. 

  282.      * not been an error in the decoding 
    283. 

  283.      */
    284. 

  284.     if(!safeContentsCtx || !safeContentsCtx->p12dcx 
    285. 

  285. 		|| safeContentsCtx->p12dcx->error) {
    286. 

  286. 	return SECFailure;
    287. 

  287.     }
    288. 

  288. 

  289.     p12dcx = safeContentsCtx->p12dcx;
    290. 

  290.     mark = PORT_ArenaMark(p12dcx->arena);
    291. 

  291. 

  292.     /* allocate a new safe bag, if bags already exist, grow the 
    293. 

  293.      * list of bags, otherwise allocate a new list.  the list is
    294. 

  294.      * NULL terminated.
    295. 

  295.      */
    296. 

  296.     p12dcx->safeBags = (!p12dcx->safeBagCount)
    297. 

  297. 	? PORT_ArenaZNewArray(p12dcx->arena, sec_PKCS12SafeBag *, 2)
    298. 

  298.         : PORT_ArenaGrowArray(p12dcx->arena, p12dcx->safeBags,
    299. 

  299. 				sec_PKCS12SafeBag *, p12dcx->safeBagCount + 1,
    300. 

  300. 				p12dcx->safeBagCount + 2);
    301. 

  301. 

  302.     if(!p12dcx->safeBags) {
    303. 

  303. 	p12dcx->errorValue = PORT_GetError();
    304. 

  304. 	goto loser;
    305. 

  305.     }
    306. 

  306. 

  307.     /* append the bag to the end of the list and update the reference
    308. 

  308.      * in the safeContentsCtx.
    309. 

  309.      */
    310. 

  310.     p12dcx->safeBags[p12dcx->safeBagCount] = 
    311. 

  311.     safeContentsCtx->currentSafeBag = 
    312. 

  312. 			    PORT_ArenaZNew(p12dcx->arena, sec_PKCS12SafeBag);
    313. 

  313.     if(!safeContentsCtx->currentSafeBag) {
    314. 

  314. 	p12dcx->errorValue = PORT_GetError();
    315. 

  315. 	goto loser;
    316. 

  316.     }
    317. 

  317.     p12dcx->safeBags[++p12dcx->safeBagCount] = NULL;
    318. 

  318. 

  319.     safeContentsCtx->currentSafeBag->slot = safeContentsCtx->p12dcx->slot;
    320. 

  320.     safeContentsCtx->currentSafeBag->pwitem = safeContentsCtx->p12dcx->pwitem;
    321. 

  321.     safeContentsCtx->currentSafeBag->swapUnicodeBytes = 
    322. 

  322. 				safeContentsCtx->p12dcx->swapUnicodeBytes;
    323. 

  323.     safeContentsCtx->currentSafeBag->arena = safeContentsCtx->p12dcx->arena;
    324. 

  324.     safeContentsCtx->currentSafeBag->tokenCAs = 
    325. 

  325. 				safeContentsCtx->p12dcx->tokenCAs;
    326. 

  326. 

  327.     PORT_ArenaUnmark(p12dcx->arena, mark);
    328. 

  328.     return SECSuccess;
    329. 

  329. 

  330. loser:
    331. 

  331. 

  332.     /* if an error occurred, release the memory and set the error flag
    333. 

  333.      * the only possible errors triggered by this function are memory 
    334. 

  334.      * related.
    335. 

  335.      */
    336. 

  336.     if(mark) {
    337. 

  337. 	PORT_ArenaRelease(p12dcx->arena, mark);
    338. 

  338.     }
    339. 

  339. 

  340.     p12dcx->error = PR_TRUE;
    341. 

  341.     return SECFailure;
    342. 

  342. }
    343. 

  343. 

  344. /* A wrapper for updating the ASN1 context in which a safeBag is
    345. 

  345.  * being decoded.  This function is called as a callback from
    346. 

  346.  * secasn1d when decoding SafeContents structures.
    347. 

  347.  */
    348. 

  348. static void
    349. 

  349. sec_pkcs12_decoder_safe_bag_update(void *arg, const char *data, 
    350. 

  350. 				   unsigned long len, int depth, 
    351. 

  351. 				   SEC_ASN1EncodingPart data_kind)
    352. 

  352. {
    353. 

  353.     sec_PKCS12SafeContentsContext *safeContentsCtx = 
    354. 

  354.         (sec_PKCS12SafeContentsContext *)arg;
    355. 

  355.     SEC_PKCS12DecoderContext *p12dcx;
    356. 

  356.     SECStatus rv;
    357. 

  357. 

  358.     /* make sure that we are not skipping the current safeBag,
    359. 

  359.      * and that there are no errors.  If so, just return rather
    360. 

  360.      * than continuing to process.
    361. 

  361.      */
    362. 

  362.     if(!safeContentsCtx || !safeContentsCtx->p12dcx 
    363. 

  363. 		|| safeContentsCtx->p12dcx->error 
    364. 

  364. 		|| safeContentsCtx->skipCurrentSafeBag) {
    365. 

  365. 	return;
    366. 

  366.     }
    367. 

  367.     p12dcx = safeContentsCtx->p12dcx;
    368. 

  368. 

  369.     rv = SEC_ASN1DecoderUpdate(safeContentsCtx->currentSafeBagA1Dcx, data, len);
    370. 

  370.     if(rv != SECSuccess) {
    371. 

  371. 	p12dcx->errorValue = PORT_GetError();
    372. 

  372. 	goto loser;
    373. 

  373.     }
    374. 

  374. 

  375.     return;
    376. 

  376. 

  377. loser:
    378. 

  378.     /* set the error, and finish the decoder context.  because there 
    379. 

  379.      * is not a way of returning an error message, it may be worth
    380. 

  380.      * while to do a check higher up and finish any decoding contexts
    381. 

  381.      * that are still open.
    382. 

  382.      */
    383. 

  383.     p12dcx->error = PR_TRUE;
    384. 

  384.     SEC_ASN1DecoderFinish(safeContentsCtx->currentSafeBagA1Dcx);
    385. 

  385.     safeContentsCtx->currentSafeBagA1Dcx = NULL;
    386. 

  386.     return;
    387. 

  387. }
    388. 

  388. 

  389. /* notify function for decoding safeBags.  This function is
    390. 

  390.  * used to filter safeBag types which are not supported,
    391. 

  391.  * initiate the decoding of nested safe contents, and decode
    392. 

  392.  * safeBags in general.  this function is set when the decoder
    393. 

  393.  * context for the safeBag is first created.
    394. 

  394.  */
    395. 

  395. static void
    396. 

  396. sec_pkcs12_decoder_safe_bag_notify(void *arg, PRBool before,
    397. 

  397. 				   void *dest, int real_depth)
    398. 

  398. {
    399. 

  399.     sec_PKCS12SafeContentsContext *safeContentsCtx = 
    400. 

  400.         (sec_PKCS12SafeContentsContext *)arg;
    401. 

  401.     SEC_PKCS12DecoderContext *p12dcx;
    402. 

  402.     sec_PKCS12SafeBag *bag;
    403. 

  403.     PRBool after;
    404. 

  404. 

  405.     /* if an error is encountered, return */
    406. 

  406.     if(!safeContentsCtx || !safeContentsCtx->p12dcx || 
    407. 

  407. 		safeContentsCtx->p12dcx->error) {
    408. 

  408. 	return;
    409. 

  409.     }
    410. 

  410.     p12dcx = safeContentsCtx->p12dcx;
    411. 

  411. 

  412.     /* to make things more readable */
    413. 

  413.     if(before)
    414. 

  414. 	after = PR_FALSE;
    415. 

  415.     else 
    416. 

  416. 	after = PR_TRUE;
    417. 

  417. 

  418.     /* have we determined the safeBagType yet? */
    419. 

  419.     bag = safeContentsCtx->currentSafeBag;
    420. 

  420.     if(bag->bagTypeTag == NULL) {
    421. 

  421. 	if(after && (dest == &(bag->safeBagType))) {
    422. 

  422. 	    bag->bagTypeTag = SECOID_FindOID(&(bag->safeBagType));
    423. 

  423. 	    if(bag->bagTypeTag == NULL) {
    424. 

  424. 		p12dcx->error = PR_TRUE;
    425. 

  425. 		p12dcx->errorValue = SEC_ERROR_PKCS12_CORRUPT_PFX_STRUCTURE;
    426. 

  426. 	    }
    427. 

  427. 	}
    428. 

  428. 	return;
    429. 

  429.     }
    430. 

  430. 

  431.     /* process the safeBag depending on it's type.  those
    432. 

  432.      * which we do not support, are ignored.  we start a decoding
    433. 

  433.      * context for a nested safeContents.
    434. 

  434.      */
    435. 

  435.     switch(bag->bagTypeTag->offset) {
    436. 

  436. 	case SEC_OID_PKCS12_V1_KEY_BAG_ID:
    437. 

  437. 	case SEC_OID_PKCS12_V1_CERT_BAG_ID:
    438. 

  438. 	case SEC_OID_PKCS12_V1_PKCS8_SHROUDED_KEY_BAG_ID:
    439. 

  439. 	    break;
    440. 

  440. 	case SEC_OID_PKCS12_V1_SAFE_CONTENTS_BAG_ID:
    441. 

  441. 	    /* if we are just starting to decode the safeContents, initialize
    442. 

  442. 	     * a new safeContentsCtx to process it.
    443. 

  443. 	     */
    444. 

  444. 	    if(before && (dest == &(bag->safeBagContent))) {
    445. 

  445. 		sec_pkcs12_decoder_begin_nested_safe_contents(safeContentsCtx);
    446. 

  446. 	    } else if(after && (dest == &(bag->safeBagContent))) {
    447. 

  447. 		/* clean up the nested decoding */
    448. 

  448. 		sec_pkcs12_decoder_finish_nested_safe_contents(safeContentsCtx);
    449. 

  449. 	    }
    450. 

  450. 	    break;
    451. 

  451. 	case SEC_OID_PKCS12_V1_CRL_BAG_ID:
    452. 

  452. 	case SEC_OID_PKCS12_V1_SECRET_BAG_ID:
    453. 

  453. 	default:
    454. 

  454. 	    /* skip any safe bag types we don't understand or handle */
    455. 

  455. 	    safeContentsCtx->skipCurrentSafeBag = PR_TRUE;
    456. 

  456. 	    break;
    457. 

  457.     }
    458. 

  458. 

  459.     return;
    460. 

  460. }
    461. 

  461. 

  462. /* notify function for decoding safe contents.  each entry in the
    463. 

  463.  * safe contents is a safeBag which needs to be allocated and
    464. 

  464.  * the decoding context initialized at the beginning and then
    465. 

  465.  * the context needs to be closed and finished at the end.
    466. 

  466.  *
    467. 

  467.  * this function is set when the safeContents decode context is
    468. 

  468.  * initialized.
    469. 

  469.  */
    470. 

  470. static void
    471. 

  471. sec_pkcs12_decoder_safe_contents_notify(void *arg, PRBool before,
    472. 

  472. 					void *dest, int real_depth)
    473. 

  473. {
    474. 

  474.     sec_PKCS12SafeContentsContext *safeContentsCtx = 
    475. 

  475.         (sec_PKCS12SafeContentsContext*)arg;
    476. 

  476.     SEC_PKCS12DecoderContext *p12dcx;
    477. 

  477.     SECStatus rv;
    478. 

  478. 

  479.     /* if there is an error we don't want to continue processing,
    480. 

  480.      * just return and keep going.
    481. 

  481.      */
    482. 

  482.     if(!safeContentsCtx || !safeContentsCtx->p12dcx 
    483. 

  483. 		|| safeContentsCtx->p12dcx->error) {
    484. 

  484. 	return;
    485. 

  485.     }
    486. 

  486.     p12dcx = safeContentsCtx->p12dcx;
    487. 

  487. 

  488.     /* if we are done with the current safeBag, then we need to
    489. 

  489.      * finish the context and set the state variables appropriately.
    490. 

  490.      */
    491. 

  491.     if(!before) {
    492. 

  492. 	SEC_ASN1DecoderClearFilterProc(safeContentsCtx->safeContentsA1Dcx);
    493. 

  493. 	SEC_ASN1DecoderFinish(safeContentsCtx->currentSafeBagA1Dcx);
    494. 

  494. 	safeContentsCtx->currentSafeBagA1Dcx = NULL;
    495. 

  495. 	safeContentsCtx->skipCurrentSafeBag = PR_FALSE;
    496. 

  496.     } else {
    497. 

  497. 	/* we are starting a new safe bag.  we need to allocate space
    498. 

  498. 	 * for the bag and initialize the decoding context.
    499. 

  499. 	 */
    500. 

  500. 	rv = sec_pkcs12_decoder_init_new_safe_bag(safeContentsCtx);
    501. 

  501. 	if(rv != SECSuccess) {
    502. 

  502. 	    goto loser;
    503. 

  503. 	}
    504. 

  504. 

  505. 	/* set up the decoder context */
    506. 

  506. 	safeContentsCtx->currentSafeBagA1Dcx = 
    507. 

  507. 		SEC_ASN1DecoderStart(p12dcx->arena,
    508. 

  508. 				     safeContentsCtx->currentSafeBag,
    509. 

  509. 				     sec_PKCS12SafeBagTemplate);
    510. 

  510. 	if(!safeContentsCtx->currentSafeBagA1Dcx) {
    511. 

  511. 	    p12dcx->errorValue = PORT_GetError();
    512. 

  512. 	    goto loser;
    513. 

  513. 	}
    514. 

  514. 

  515. 	/* set the notify and filter procs so that the safe bag
    516. 

  516. 	 * data gets sent to the proper location when decoding.
    517. 

  517. 	 */
    518. 

  518. 	SEC_ASN1DecoderSetNotifyProc(safeContentsCtx->currentSafeBagA1Dcx, 
    519. 

  519. 				 sec_pkcs12_decoder_safe_bag_notify, 
    520. 

  520. 				 safeContentsCtx);
    521. 

  521. 	SEC_ASN1DecoderSetFilterProc(safeContentsCtx->safeContentsA1Dcx, 
    522. 

  522. 				 sec_pkcs12_decoder_safe_bag_update, 
    523. 

  523. 				 safeContentsCtx, PR_TRUE);
    524. 

  524.     }
    525. 

  525. 

  526.     return;
    527. 

  527. 

  528. loser:
    529. 

  529.     /* in the event of an error, we want to close the decoding
    530. 

  530.      * context and clear the filter and notify procedures.
    531. 

  531.      */
    532. 

  532.     p12dcx->error = PR_TRUE;
    533. 

  533. 

  534.     if(safeContentsCtx->currentSafeBagA1Dcx) {
    535. 

  535. 	SEC_ASN1DecoderFinish(safeContentsCtx->currentSafeBagA1Dcx);
    536. 

  536. 	safeContentsCtx->currentSafeBagA1Dcx = NULL;
    537. 

  537.     }
    538. 

  538. 

  539.     SEC_ASN1DecoderClearNotifyProc(safeContentsCtx->safeContentsA1Dcx);
    540. 

  540.     SEC_ASN1DecoderClearFilterProc(safeContentsCtx->safeContentsA1Dcx);
    541. 

  541. 

  542.     return;
    543. 

  543. }
    544. 

  544. 

  545. /* initialize the safeContents for decoding.  this routine
    546. 

  546.  * is used for authenticatedSafes as well as nested safeContents.
    547. 

  547.  */
    548. 

  548. static sec_PKCS12SafeContentsContext *
    549. 

  549. sec_pkcs12_decoder_safe_contents_init_decode(SEC_PKCS12DecoderContext *p12dcx,
    550. 

  550. 					     PRBool nestedSafe)
    551. 

  551. {
    552. 

  552.     sec_PKCS12SafeContentsContext *safeContentsCtx = NULL;
    553. 

  553.     const SEC_ASN1Template *theTemplate;
    554. 

  554. 

  555.     if(!p12dcx || p12dcx->error) {
    556. 

  556. 	return NULL;
    557. 

  557.     }
    558. 

  558. 

  559.     /* allocate a new safeContents list or grow the existing list and
    560. 

  560.      * append the new safeContents onto the end.
    561. 

  561.      */
    562. 

  562.     p12dcx->safeContentsList = (!p12dcx->safeContentsCnt) 
    563. 

  563. 	? PORT_ArenaZNewArray(p12dcx->arena, sec_PKCS12SafeContentsContext *, 2)
    564. 

  564. 	: PORT_ArenaGrowArray(p12dcx->arena, p12dcx->safeContentsList,
    565. 

  565. 			        sec_PKCS12SafeContentsContext *,
    566. 

  566. 			        1 + p12dcx->safeContentsCnt,
    567. 

  567. 			        2 + p12dcx->safeContentsCnt);
    568. 

  568. 

  569.     if(!p12dcx->safeContentsList) {
    570. 

  570. 	p12dcx->errorValue = PORT_GetError();
    571. 

  571. 	goto loser;
    572. 

  572.     }
    573. 

  573. 

  574.     p12dcx->safeContentsList[p12dcx->safeContentsCnt] = safeContentsCtx = 
    575. 

  575.         PORT_ArenaZNew(p12dcx->arena, sec_PKCS12SafeContentsContext);
    576. 

  576.     if(!p12dcx->safeContentsList[p12dcx->safeContentsCnt]) {
    577. 

  577. 	p12dcx->errorValue = PORT_GetError();
    578. 

  578. 	goto loser;
    579. 

  579.     }
    580. 

  580.     p12dcx->safeContentsList[++p12dcx->safeContentsCnt] = NULL;
    581. 

  581. 

  582.     /* set up the state variables */
    583. 

  583.     safeContentsCtx->p12dcx = p12dcx;
    584. 

  584.     safeContentsCtx->arena = p12dcx->arena;
    585. 

  585. 

  586.     /* begin the decoding -- the template is based on whether we are
    587. 

  587.      * decoding a nested safeContents or not.
    588. 

  588.      */
    589. 

  589.     if(nestedSafe == PR_TRUE) {
    590. 

  590. 	theTemplate = sec_PKCS12NestedSafeContentsDecodeTemplate;
    591. 

  591.     } else {
    592. 

  592. 	theTemplate = sec_PKCS12SafeContentsDecodeTemplate;
    593. 

  593.     }
    594. 

  594. 

  595.     /* start the decoder context */
    596. 

  596.     safeContentsCtx->safeContentsA1Dcx = SEC_ASN1DecoderStart(p12dcx->arena, 
    597. 

  597. 					&safeContentsCtx->safeContents,
    598. 

  598. 					theTemplate);
    599. 

  599. 	
    600. 

  600.     if(!safeContentsCtx->safeContentsA1Dcx) {
    601. 

  601. 	p12dcx->errorValue = PORT_GetError();
    602. 

  602. 	goto loser;
    603. 

  603.     }
    604. 

  604. 

  605.     /* set the safeContents notify procedure to look for
    606. 

  606.      * and start the decode of safeBags.
    607. 

  607.      */
    608. 

  608.     SEC_ASN1DecoderSetNotifyProc(safeContentsCtx->safeContentsA1Dcx, 
    609. 

  609. 				sec_pkcs12_decoder_safe_contents_notify,
    610. 

  610. 				safeContentsCtx);
    611. 

  611. 

  612.     return safeContentsCtx;
    613. 

  613. 

  614. loser:
    615. 

  615.     /* in the case of an error, we want to finish the decoder
    616. 

  616.      * context and set the error flag.
    617. 

  617.      */
    618. 

  618.     if(safeContentsCtx && safeContentsCtx->safeContentsA1Dcx) {
    619. 

  619. 	SEC_ASN1DecoderFinish(safeContentsCtx->safeContentsA1Dcx);
    620. 

  620. 	safeContentsCtx->safeContentsA1Dcx = NULL;
    621. 

  621.     }
    622. 

  622. 

  623.     p12dcx->error = PR_TRUE;
    624. 

  624. 

  625.     return NULL;
    626. 

  626. }
    627. 

  627. 

  628. /* wrapper for updating safeContents.  this is set as the filter of
    629. 

  629.  * safeBag when there is a nested safeContents.
    630. 

  630.  */
    631. 

  631. static void
    632. 

  632. sec_pkcs12_decoder_nested_safe_contents_update(void *arg, const char *buf,
    633. 

  633. 					  unsigned long len, int depth,
    634. 

  634. 					  SEC_ASN1EncodingPart data_kind)
    635. 

  635. {
    636. 

  636.     sec_PKCS12SafeContentsContext *safeContentsCtx = 
    637. 

  637.         (sec_PKCS12SafeContentsContext *)arg;
    638. 

  638.     SEC_PKCS12DecoderContext *p12dcx;
    639. 

  639.     SECStatus rv;
    640. 

  640. 

  641.     /* check for an error */
    642. 

  642.     if(!safeContentsCtx || !safeContentsCtx->p12dcx 
    643. 

  643. 			|| safeContentsCtx->p12dcx->error
    644. 

  644. 			|| !safeContentsCtx->safeContentsA1Dcx) {
    645. 

  645. 	return;
    646. 

  646.     }
    647. 

  647. 

  648.     /* no need to update if no data sent in */
    649. 

  649.     if(!len || !buf) {
    650. 

  650. 	return;
    651. 

  651.     }
    652. 

  652. 

  653.     /* update the decoding context */
    654. 

  654.     p12dcx = safeContentsCtx->p12dcx;
    655. 

  655.     rv = SEC_ASN1DecoderUpdate(safeContentsCtx->safeContentsA1Dcx, buf, len);
    656. 

  656.     if(rv != SECSuccess) {
    657. 

  657. 	p12dcx->errorValue = PORT_GetError();
    658. 

  658. 	goto loser;
    659. 

  659.     }
    660. 

  660. 

  661.     return;
    662. 

  662. 

  663. loser:
    664. 

  664.     /* handle any errors.  If a decoding context is open, close it. */
    665. 

  665.     p12dcx->error = PR_TRUE;
    666. 

  666.     if(safeContentsCtx->safeContentsA1Dcx) {
    667. 

  667. 	SEC_ASN1DecoderFinish(safeContentsCtx->safeContentsA1Dcx);
    668. 

  668. 	safeContentsCtx->safeContentsA1Dcx = NULL;
    669. 

  669.     }
    670. 

  670. }
    671. 

  671. 

  672. /* whenever a new safeContentsSafeBag is encountered, we need
    673. 

  673.  * to init a safeContentsContext.  
    674. 

  674.  */
    675. 

  675. static SECStatus  
    676. 

  676. sec_pkcs12_decoder_begin_nested_safe_contents(sec_PKCS12SafeContentsContext 
    677. 

  677. 							*safeContentsCtx)
    678. 

  678. {
    679. 

  679.     /* check for an error */
    680. 

  680.     if(!safeContentsCtx || !safeContentsCtx->p12dcx || 
    681. 

  681. 		safeContentsCtx->p12dcx->error) {
    682. 

  682. 	return SECFailure;
    683. 

  683.     }
    684. 

  684. 

  685.     safeContentsCtx->nestedSafeContentsCtx = 
    686. 

  686.     	sec_pkcs12_decoder_safe_contents_init_decode(safeContentsCtx->p12dcx,
    687. 

  687. 						     PR_TRUE);
    688. 

  688.     if(!safeContentsCtx->nestedSafeContentsCtx) {
    689. 

  689. 	return SECFailure;
    690. 

  690.     }
    691. 

  691. 

  692.     /* set up new filter proc */
    693. 

  693.     SEC_ASN1DecoderSetNotifyProc(
    694. 

  694.                      safeContentsCtx->nestedSafeContentsCtx->safeContentsA1Dcx,
    695. 

  695. 				 sec_pkcs12_decoder_safe_contents_notify,
    696. 

  696. 				 safeContentsCtx->nestedSafeContentsCtx);
    697. 

  697. 

  698.     SEC_ASN1DecoderSetFilterProc(safeContentsCtx->currentSafeBagA1Dcx,
    699. 

  699. 				 sec_pkcs12_decoder_nested_safe_contents_update,
    700. 

  700. 				 safeContentsCtx->nestedSafeContentsCtx, 
    701. 

  701. 				 PR_TRUE);
    702. 

  702. 

  703.     return SECSuccess;
    704. 

  704. }
    705. 

  705. 

  706. /* when the safeContents is done decoding, we need to reset the
    707. 

  707.  * proper filter and notify procs and close the decoding context 
    708. 

  708.  */
    709. 

  709. static SECStatus
    710. 

  710. sec_pkcs12_decoder_finish_nested_safe_contents(sec_PKCS12SafeContentsContext
    711. 

  711. 							*safeContentsCtx)
    712. 

  712. {
    713. 

  713.     /* check for error */
    714. 

  714.     if(!safeContentsCtx || !safeContentsCtx->p12dcx || 
    715. 

  715. 		safeContentsCtx->p12dcx->error) {
    716. 

  716. 	return SECFailure;
    717. 

  717.     }
    718. 

  718. 

  719.     /* clean up */	
    720. 

  720.     SEC_ASN1DecoderClearFilterProc(safeContentsCtx->currentSafeBagA1Dcx);
    721. 

  721.     SEC_ASN1DecoderClearNotifyProc(
    722. 

  722.                     safeContentsCtx->nestedSafeContentsCtx->safeContentsA1Dcx);
    723. 

  723.     SEC_ASN1DecoderFinish(
    724. 

  724.                     safeContentsCtx->nestedSafeContentsCtx->safeContentsA1Dcx);
    725. 

  725.     safeContentsCtx->nestedSafeContentsCtx->safeContentsA1Dcx = NULL;
    726. 

  726.     safeContentsCtx->nestedSafeContentsCtx = NULL;
    727. 

  727. 

  728.     return SECSuccess;
    729. 

  729. }
    730. 

  730. 

  731. /* wrapper for updating safeContents.  This is used when decoding
    732. 

  732.  * the nested safeContents and any authenticatedSafes.
    733. 

  733.  */
    734. 

  734. static void
    735. 

  735. sec_pkcs12_decoder_safe_contents_callback(void *arg, const char *buf,
    736. 

  736. 					  unsigned long len)
    737. 

  737. {
    738. 

  738.     SECStatus rv;
    739. 

  739.     sec_PKCS12SafeContentsContext *safeContentsCtx = 
    740. 

  740.         (sec_PKCS12SafeContentsContext *)arg;
    741. 

  741.     SEC_PKCS12DecoderContext *p12dcx;
    742. 

  742. 

  743.     /* check for error */  
    744. 

  744.     if(!safeContentsCtx || !safeContentsCtx->p12dcx 
    745. 

  745. 		|| safeContentsCtx->p12dcx->error
    746. 

  746. 		|| !safeContentsCtx->safeContentsA1Dcx) {
    747. 

  747. 	return;
    748. 

  748.     }
    749. 

  749.     p12dcx = safeContentsCtx->p12dcx;
    750. 

  750. 

  751.     /* update the decoder */
    752. 

  752.     rv = SEC_ASN1DecoderUpdate(safeContentsCtx->safeContentsA1Dcx, buf, len);
    753. 

  753.     if(rv != SECSuccess) {
    754. 

  754. 	/* if we fail while trying to decode a 'safe', it's probably because
    755. 

  755. 	 * we didn't have the correct password. */
    756. 

  756. 	PORT_SetError(SEC_ERROR_BAD_PASSWORD);
    757. 

  757. 	p12dcx->errorValue = SEC_ERROR_PKCS12_CORRUPT_PFX_STRUCTURE;
    758. 

  758. 	SEC_PKCS7DecoderAbort(p12dcx->currentASafeP7Dcx,SEC_ERROR_BAD_PASSWORD);
    759. 

  759. 	goto loser;
    760. 

  760.     }
    761. 

  761. 

  762.     return;
    763. 

  763. 

  764. loser:
    765. 

  765.     /* set the error and finish the context */
    766. 

  766.     p12dcx->error = PR_TRUE;
    767. 

  767.     if(safeContentsCtx->safeContentsA1Dcx) {
    768. 

  768. 	SEC_ASN1DecoderFinish(safeContentsCtx->safeContentsA1Dcx);
    769. 

  769. 	safeContentsCtx->safeContentsA1Dcx = NULL;
    770. 

  770.     }
    771. 

  771. 

  772.     return;
    773. 

  773. }
    774. 

  774. 

  775. /* this is a wrapper for the ASN1 decoder to call SEC_PKCS7DecoderUpdate
    776. 

  776.  */
    777. 

  777. static void
    778. 

  778. sec_pkcs12_decoder_wrap_p7_update(void *arg, const char *data,
    779. 

  779. 				  unsigned long len, int depth,
    780. 

  780. 				  SEC_ASN1EncodingPart data_kind)
    781. 

  781. {
    782. 

  782.     SEC_PKCS7DecoderContext *p7dcx = (SEC_PKCS7DecoderContext *)arg;
    783. 

  783. 

  784.     SEC_PKCS7DecoderUpdate(p7dcx, data, len);
    785. 

  785. }
    786. 

  786. 

  787. /* notify function for decoding aSafes.  at the beginning,
    788. 

  788.  * of an authenticatedSafe, we start a decode of a safeContents.
    789. 

  789.  * at the end, we clean up the safeContents decoder context and
    790. 

  790.  * reset state variables 
    791. 

  791.  */
    792. 

  792. static void
    793. 

  793. sec_pkcs12_decoder_asafes_notify(void *arg, PRBool before, void *dest, 
    794. 

  794. 			       int real_depth)
    795. 

  795. {
    796. 

  796.     SEC_PKCS12DecoderContext *p12dcx;
    797. 

  797.     sec_PKCS12SafeContentsContext *safeContentsCtx;
    798. 

  798. 

  799.     /* make sure no error occurred. */
    800. 

  800.     p12dcx = (SEC_PKCS12DecoderContext *)arg;
    801. 

  801.     if(!p12dcx || p12dcx->error) {
    802. 

  802. 	return;
    803. 

  803.     }
    804. 

  804. 

  805.     if(before) {
    806. 

  806. 

  807. 	/* init a new safeContentsContext */
    808. 

  808. 	safeContentsCtx = sec_pkcs12_decoder_safe_contents_init_decode(p12dcx, 
    809. 

  809. 								PR_FALSE);
    810. 

  810. 	if(!safeContentsCtx) {
    811. 

  811. 	    goto loser;
    812. 

  812. 	}
    813. 

  813. 

  814. 	/* initiate the PKCS7ContentInfo decode */
    815. 

  815. 	p12dcx->currentASafeP7Dcx = SEC_PKCS7DecoderStart(
    816. 

  816. 				sec_pkcs12_decoder_safe_contents_callback,
    817. 

  817. 				safeContentsCtx, 
    818. 

  818. 				p12dcx->pwfn, p12dcx->pwfnarg,
    819. 

  819. 				sec_pkcs12_decoder_get_decrypt_key, p12dcx,
    820. 

  820. 				sec_pkcs12_decoder_decryption_allowed);
    821. 

  821. 	if(!p12dcx->currentASafeP7Dcx) {
    822. 

  822. 	    p12dcx->errorValue = PORT_GetError();
    823. 

  823. 	    goto loser;
    824. 

  824. 	}
    825. 

  825. 	SEC_ASN1DecoderSetFilterProc(p12dcx->aSafeA1Dcx, 
    826. 

  826. 				     sec_pkcs12_decoder_wrap_p7_update,
    827. 

  827. 				     p12dcx->currentASafeP7Dcx, PR_TRUE);
    828. 

  828.     }
    829. 

  829. 

  830.     if(!before) {
    831. 

  831. 	/* if one is being decoded, finish the decode */
    832. 

  832. 	if(p12dcx->currentASafeP7Dcx != NULL) {
    833. 

  833. 	    SEC_PKCS7ContentInfo * cinfo;
    834. 

  834. 	    unsigned int cnt = p12dcx->safeContentsCnt - 1;
    835. 

  835. 	    safeContentsCtx = p12dcx->safeContentsList[cnt];
    836. 

  836. 	    if (safeContentsCtx->safeContentsA1Dcx) {
    837. 

  837. 		SEC_ASN1DecoderFinish(safeContentsCtx->safeContentsA1Dcx);
    838. 

  838. 		safeContentsCtx->safeContentsA1Dcx = NULL;
    839. 

  839. 	    }
    840. 

  840. 	    cinfo = SEC_PKCS7DecoderFinish(p12dcx->currentASafeP7Dcx);
    841. 

  841. 	    p12dcx->currentASafeP7Dcx = NULL;
    842. 

  842. 	    if(!cinfo) {
    843. 

  843. 		p12dcx->errorValue = PORT_GetError();
    844. 

  844. 		goto loser;
    845. 

  845. 	    }
    846. 

  846. 	    SEC_PKCS7DestroyContentInfo(cinfo); /* don't leak it */
    847. 

  847. 	}
    848. 

  848.     }
    849. 

  849. 

  850. 

  851.     return;
    852. 

  852. 

  853. loser:
    854. 

  854.     /* set the error flag */
    855. 

  855.     p12dcx->error = PR_TRUE;
    856. 

  856.     return;
    857. 

  857. }
    858. 

  858. 

  859. /* wrapper for updating asafes decoding context.  this function
    860. 

  860.  * writes data being decoded to disk, so that a mac can be computed
    861. 

  861.  * later.  
    862. 

  862.  */
    863. 

  863. static void
    864. 

  864. sec_pkcs12_decoder_asafes_callback(void *arg, const char *buf, 
    865. 

  865. 				  unsigned long len)
    866. 

  866. {
    867. 

  867.     SEC_PKCS12DecoderContext *p12dcx = (SEC_PKCS12DecoderContext *)arg;
    868. 

  868.     SECStatus rv;
    869. 

  869. 

  870.     if(!p12dcx || p12dcx->error) {
    871. 

  871. 	return;
    872. 

  872.     }
    873. 

  873. 

  874.     /* update the context */
    875. 

  875.     rv = SEC_ASN1DecoderUpdate(p12dcx->aSafeA1Dcx, buf, len);
    876. 

  876.     if(rv != SECSuccess) {
    877. 

  877. 	p12dcx->errorValue = PORT_GetError();
    878. 

  878. 	p12dcx->error = PR_TRUE;
    879. 

  879. 	goto loser;
    880. 

  880.     }
    881. 

  881. 

  882.     /* if we are writing to a file, write out the new information */
    883. 

  883.     if(p12dcx->dWrite) {
    884. 

  884. 	unsigned long writeLen = (*p12dcx->dWrite)(p12dcx->dArg, 	
    885. 

  885. 						   (unsigned char *)buf, len);
    886. 

  886. 	if(writeLen != len) {
    887. 

  887. 	    p12dcx->errorValue = PORT_GetError();
    888. 

  888. 	    goto loser;
    889. 

  889. 	}
    890. 

  890.     }
    891. 

  891. 

  892.     return;
    893. 

  893. 

  894. loser:
    895. 

  895.     /* set the error flag */
    896. 

  896.     p12dcx->error = PR_TRUE;
    897. 

  897.     SEC_ASN1DecoderFinish(p12dcx->aSafeA1Dcx);
    898. 

  898.     p12dcx->aSafeA1Dcx = NULL;
    899. 

  899. 

  900.     return;
    901. 

  901. }
    902. 

  902.    
    903. 

  903. /* start the decode of an authenticatedSafe contentInfo.
    904. 

  904.  */ 
    905. 

  905. static SECStatus
    906. 

  906. sec_pkcs12_decode_start_asafes_cinfo(SEC_PKCS12DecoderContext *p12dcx)
    907. 

  907. {
    908. 

  908.     if(!p12dcx || p12dcx->error) {
    909. 

  909. 	return SECFailure;
    910. 

  910.     }
    911. 

  911. 

  912.     /* start the decode context */
    913. 

  913.     p12dcx->aSafeA1Dcx = SEC_ASN1DecoderStart(p12dcx->arena, 
    914. 

  914.     					&p12dcx->authSafe,
    915. 

  915.     					sec_PKCS12AuthenticatedSafeTemplate);
    916. 

  916.     if(!p12dcx->aSafeA1Dcx) {
    917. 

  917. 	p12dcx->errorValue = PORT_GetError();
    918. 

  918.    	goto loser;
    919. 

  919.     }
    920. 

  920. 

  921.     /* set the notify function */
    922. 

  922.     SEC_ASN1DecoderSetNotifyProc(p12dcx->aSafeA1Dcx,
    923. 

  923.     				 sec_pkcs12_decoder_asafes_notify, p12dcx);
    924. 

  924. 

  925.     /* begin the authSafe decoder context */
    926. 

  926.     p12dcx->aSafeP7Dcx = SEC_PKCS7DecoderStart(
    927. 

  927.     				sec_pkcs12_decoder_asafes_callback, p12dcx,
    928. 

  928.     				p12dcx->pwfn, p12dcx->pwfnarg, NULL, NULL, NULL);
    929. 

  929.     if(!p12dcx->aSafeP7Dcx) {
    930. 

  930. 	p12dcx->errorValue = PORT_GetError();
    931. 

  931. 	goto loser;
    932. 

  932.     }
    933. 

  933.   
    934. 

  934.     /* open the temp file for writing, if the filter functions were set */ 
    935. 

  935.     if(p12dcx->dOpen && (*p12dcx->dOpen)(p12dcx->dArg, PR_FALSE) 
    936. 

  936. 				!= SECSuccess) {
    937. 

  937. 	p12dcx->errorValue = PORT_GetError();
    938. 

  938. 	goto loser;
    939. 

  939.     }
    940. 

  940.     /* dOpen(dArg, PR_FALSE) creates the temp file */
    941. 

  941.     p12dcx->dIsOpen = PR_TRUE;
    942. 

  942. 

  943.     return SECSuccess;
    944. 

  944. 

  945. loser:
    946. 

  946.     p12dcx->error = PR_TRUE;
    947. 

  947. 

  948.     if(p12dcx->aSafeA1Dcx) {
    949. 

  949. 	SEC_ASN1DecoderFinish(p12dcx->aSafeA1Dcx);
    950. 

  950. 	p12dcx->aSafeA1Dcx = NULL;
    951. 

  951.     } 
    952. 

  952. 

  953.     if(p12dcx->aSafeP7Dcx) {
    954. 

  954. 	SEC_PKCS7DecoderFinish(p12dcx->aSafeP7Dcx);
    955. 

  955. 	p12dcx->aSafeP7Dcx = NULL;
    956. 

  956.     }
    957. 

  957. 

  958.     return SECFailure;
    959. 

  959. }
    960. 

  960. 

  961. /* wrapper for updating the safeContents.  this function is used as
    962. 

  962.  * a filter for the pfx when decoding the authenticated safes 
    963. 

  963.  */
    964. 

  964. static void 
    965. 

  965. sec_pkcs12_decode_asafes_cinfo_update(void *arg, const char *buf,
    966. 

  966. 				      unsigned long len, int depth,
    967. 

  967. 				      SEC_ASN1EncodingPart data_kind)
    968. 

  968. {
    969. 

  969.     SEC_PKCS12DecoderContext *p12dcx;
    970. 

  970.     SECStatus rv;
    971. 

  971. 

  972.     p12dcx = (SEC_PKCS12DecoderContext*)arg;
    973. 

  973.     if(!p12dcx || p12dcx->error) {
    974. 

  974. 	return;
    975. 

  975.     }
    976. 

  976. 

  977.     /* update the safeContents decoder */
    978. 

  978.     rv = SEC_PKCS7DecoderUpdate(p12dcx->aSafeP7Dcx, buf, len);
    979. 

  979.     if(rv != SECSuccess) {
    980. 

  980. 	p12dcx->errorValue = SEC_ERROR_PKCS12_CORRUPT_PFX_STRUCTURE;
    981. 

  981. 	goto loser;
    982. 

  982.     }
    983. 

  983. 

  984.     return;
    985. 

  985. 

  986. loser:
    987. 

  987. 

  988.     /* did we find an error?  if so, close the context and set the 
    989. 

  989.      * error flag.
    990. 

  990.      */
    991. 

  991.     SEC_PKCS7DecoderFinish(p12dcx->aSafeP7Dcx);
    992. 

  992.     p12dcx->aSafeP7Dcx = NULL;
    993. 

  993.     p12dcx->error = PR_TRUE;
    994. 

  994. }
    995. 

  995. 

  996. /* notify procedure used while decoding the pfx.  When we encounter
    997. 

  997.  * the authSafes, we want to trigger the decoding of authSafes as well
    998. 

  998.  * as when we encounter the macData, trigger the decoding of it.  we do
    999. 

  999.  * this because we we are streaming the decoder and not decoding in place.
    1000. 

  1000.  * the pfx which is the destination, only has the version decoded into it.
    1001. 

  1001.  */
    1002. 

  1002. static void 
    1003. 

  1003. sec_pkcs12_decoder_pfx_notify_proc(void *arg, PRBool before, void *dest,
    1004. 

  1004. 				   int real_depth)
    1005. 

  1005. {
    1006. 

  1006.     SECStatus rv;
    1007. 

  1007.     SEC_PKCS12DecoderContext *p12dcx = (SEC_PKCS12DecoderContext*)arg;
    1008. 

  1008. 

  1009.     /* if an error occurs, clear the notifyProc and the filterProc 
    1010. 

  1010.      * and continue. 
    1011. 

  1011.      */
    1012. 

  1012.     if(p12dcx->error) {
    1013. 

  1013. 	SEC_ASN1DecoderClearNotifyProc(p12dcx->pfxA1Dcx);
    1014. 

  1014. 	SEC_ASN1DecoderClearFilterProc(p12dcx->pfxA1Dcx);
    1015. 

  1015. 	return;
    1016. 

  1016.     }
    1017. 

  1017. 

  1018.     if(before && (dest == &p12dcx->pfx.encodedAuthSafe)) {
    1019. 

  1019. 

  1020. 	/* we want to make sure this is a version we support */
    1021. 

  1021. 	if(!sec_pkcs12_proper_version(&p12dcx->pfx)) {
    1022. 

  1022. 	    p12dcx->errorValue = SEC_ERROR_PKCS12_UNSUPPORTED_VERSION;
    1023. 

  1023. 	    goto loser;
    1024. 

  1024. 	}
    1025. 

  1025. 

  1026. 	/* start the decode of the aSafes cinfo... */
    1027. 

  1027. 	rv = sec_pkcs12_decode_start_asafes_cinfo(p12dcx);
    1028. 

  1028. 	if(rv != SECSuccess) {
    1029. 

  1029. 	    goto loser;
    1030. 

  1030. 	}
    1031. 

  1031. 

  1032. 	/* set the filter proc to update the authenticated safes. */
    1033. 

  1033. 	SEC_ASN1DecoderSetFilterProc(p12dcx->pfxA1Dcx,
    1034. 

  1034. 				     sec_pkcs12_decode_asafes_cinfo_update,
    1035. 

  1035. 				     p12dcx, PR_TRUE);
    1036. 

  1036.     }
    1037. 

  1037. 

  1038.     if(!before && (dest == &p12dcx->pfx.encodedAuthSafe)) {
    1039. 

  1039. 

  1040. 	/* we are done decoding the authenticatedSafes, so we need to 
    1041. 

  1041. 	 * finish the decoderContext and clear the filter proc
    1042. 

  1042. 	 * and close the hmac callback, if present
    1043. 

  1043. 	 */
    1044. 

  1044. 	p12dcx->aSafeCinfo = SEC_PKCS7DecoderFinish(p12dcx->aSafeP7Dcx);
    1045. 

  1045. 	p12dcx->aSafeP7Dcx = NULL;
    1046. 

  1046. 	if(!p12dcx->aSafeCinfo) {
    1047. 

  1047. 	    p12dcx->errorValue = PORT_GetError();
    1048. 

  1048. 	    goto loser;
    1049. 

  1049. 	}
    1050. 

  1050. 	SEC_ASN1DecoderClearFilterProc(p12dcx->pfxA1Dcx);
    1051. 

  1051. 	if(p12dcx->dClose && ((*p12dcx->dClose)(p12dcx->dArg, PR_FALSE) 
    1052. 

  1052. 				!= SECSuccess)) {
    1053. 

  1053. 	    p12dcx->errorValue = PORT_GetError();
    1054. 

  1054. 	    goto loser;
    1055. 

  1055. 	}
    1056. 

  1056. 

  1057.     }
    1058. 

  1058. 

  1059.     return;
    1060. 

  1060. 

  1061. loser:
    1062. 

  1062.     p12dcx->error = PR_TRUE;
    1063. 

  1063. }
    1064. 

  1064. 

  1065. /*  default implementations of the open/close/read/write functions for
    1066. 

  1066.     SEC_PKCS12DecoderStart 
    1067. 

  1067. */
    1068. 

  1068. 

  1069. #define DEFAULT_TEMP_SIZE 4096
    1070. 

  1070. 

  1071. static SECStatus
    1072. 

  1072. p12u_DigestOpen(void *arg, PRBool readData)
    1073. 

  1073. {
    1074. 

  1074.     SEC_PKCS12DecoderContext* p12cxt = arg;
    1075. 

  1075. 

  1076.     p12cxt->currentpos = 0;
    1077. 

  1077. 

  1078.     if (PR_FALSE == readData) {
    1079. 

  1079.         /* allocate an initial buffer */
    1080. 

  1080.         p12cxt->filesize = 0;
    1081. 

  1081.         p12cxt->allocated = DEFAULT_TEMP_SIZE;
    1082. 

  1082.         p12cxt->buffer = PORT_Alloc(DEFAULT_TEMP_SIZE);
    1083. 

  1083.         PR_ASSERT(p12cxt->buffer);
    1084. 

  1084.     }
    1085. 

  1085.     else
    1086. 

  1086.     {
    1087. 

  1087.         PR_ASSERT(p12cxt->buffer);
    1088. 

  1088.         if (!p12cxt->buffer) {
    1089. 

  1089.             return SECFailure; /* no data to read */
    1090. 

  1090.         }
    1091. 

  1091.     }
    1092. 

  1092. 

  1093.     return SECSuccess;
    1094. 

  1094. }
    1095. 

  1095. 

  1096. static SECStatus
    1097. 

  1097. p12u_DigestClose(void *arg, PRBool removeFile)
    1098. 

  1098. {
    1099. 

  1099.     SEC_PKCS12DecoderContext* p12cxt = arg;
    1100. 

  1100. 

  1101.     PR_ASSERT(p12cxt);
    1102. 

  1102.     if (!p12cxt) {
    1103. 

  1103.         return SECFailure;
    1104. 

  1104.     }
    1105. 

  1105.     p12cxt->currentpos = 0;
    1106. 

  1106. 

  1107.     if (PR_TRUE == removeFile) {
    1108. 

  1108.         PR_ASSERT(p12cxt->buffer);
    1109. 

  1109.         if (!p12cxt->buffer) {
    1110. 

  1110.             return SECFailure;
    1111. 

  1111.         }
    1112. 

  1112.         if (p12cxt->buffer) {
    1113. 

  1113.             PORT_Free(p12cxt->buffer);
    1114. 

  1114.             p12cxt->buffer = NULL;
    1115. 

  1115.             p12cxt->allocated = 0;
    1116. 

  1116.             p12cxt->filesize = 0;
    1117. 

  1117.         }
    1118. 

  1118.     }
    1119. 

  1119. 

  1120.     return SECSuccess;
    1121. 

  1121. }
    1122. 

  1122. 

  1123. static int
    1124. 

  1124. p12u_DigestRead(void *arg, unsigned char *buf, unsigned long len)
    1125. 

  1125. {
    1126. 

  1126.     int toread = len;
    1127. 

  1127.     SEC_PKCS12DecoderContext* p12cxt = arg;
    1128. 

  1128. 

  1129.     if(!buf || len == 0 || !p12cxt->buffer) {
    1130. 

  1130. 	PORT_SetError(SEC_ERROR_INVALID_ARGS);
    1131. 

  1131. 	return -1;
    1132. 

  1132.     }
    1133. 

  1133. 

  1134.     if ((p12cxt->filesize - p12cxt->currentpos) < (long)len) {
    1135. 

  1135.         /* trying to read past the end of the buffer */
    1136. 

  1136.         toread = p12cxt->filesize - p12cxt->currentpos;
    1137. 

  1137.     }
    1138. 

  1138.     memcpy(buf, (char*)p12cxt->buffer + p12cxt->currentpos, toread);
    1139. 

  1139.     p12cxt->currentpos += toread;
    1140. 

  1140.     return toread;
    1141. 

  1141. }
    1142. 

  1142. 

  1143. static int
    1144. 

  1144. p12u_DigestWrite(void *arg, unsigned char *buf, unsigned long len)
    1145. 

  1145. {
    1146. 

  1146.     SEC_PKCS12DecoderContext* p12cxt = arg;
    1147. 

  1147. 

  1148.     if(!buf || len == 0) {
    1149. 

  1149.         return -1;
    1150. 

  1150.     }
    1151. 

  1151. 

  1152.     if (p12cxt->currentpos+(long)len > p12cxt->filesize) {
    1153. 

  1153.         p12cxt->filesize = p12cxt->currentpos + len;
    1154. 

  1154.     }
    1155. 

  1155.     else {
    1156. 

  1156.         p12cxt->filesize += len;
    1157. 

  1157.     }
    1158. 

  1158.     if (p12cxt->filesize > p12cxt->allocated) {
    1159. 

  1159.         void* newbuffer;
    1160. 

  1160.         size_t newsize = p12cxt->filesize + DEFAULT_TEMP_SIZE;
    1161. 

  1161.         newbuffer  = PORT_Realloc(p12cxt->buffer, newsize);
    1162. 

  1162.         if (NULL == newbuffer) {
    1163. 

  1163.             return -1; /* can't extend the buffer */
    1164. 

  1164.         }
    1165. 

  1165.         p12cxt->buffer = newbuffer;
    1166. 

  1166.         p12cxt->allocated = newsize;
    1167. 

  1167.     }
    1168. 

  1168.     PR_ASSERT(p12cxt->buffer);
    1169. 

  1169.     memcpy((char*)p12cxt->buffer + p12cxt->currentpos, buf, len);
    1170. 

  1170.     p12cxt->currentpos += len;
    1171. 

  1171.     return len;
    1172. 

  1172. }
    1173. 

  1173. 

  1174. /* SEC_PKCS12DecoderStart
    1175. 

  1175.  *	Creates a decoder context for decoding a PKCS 12 PDU objct.
    1176. 

  1176.  *	This function sets up the initial decoding context for the
    1177. 

  1177.  *	PFX and sets the needed state variables.
    1178. 

  1178.  *
    1179. 

  1179.  *	pwitem - the password for the hMac and any encoded safes.
    1180. 

  1180.  *		 this should be changed to take a callback which retrieves
    1181. 

  1181.  *		 the password.  it may be possible for different safes to
    1182. 

  1182.  *		 have different passwords.  also, the password is already
    1183. 

  1183.  *		 in unicode.  it should probably be converted down below via
    1184. 

  1184.  *		 a unicode conversion callback.
    1185. 

  1185.  *	slot - the slot to import the dataa into should multiple slots 
    1186. 

  1186.  *		 be supported based on key type and cert type?
    1187. 

  1187.  *	dOpen, dClose, dRead, dWrite - digest routines for writing data
    1188. 

  1188.  *		 to a file so it could be read back and the hmac recomputed
    1189. 

  1189.  *		 and verified.  doesn't seem to be a way for both encoding
    1190. 

  1190.  *		 and decoding to be single pass, thus the need for these
    1191. 

  1191.  *		 routines.
    1192. 

  1192.  *	dArg - the argument for dOpen, etc.
    1193. 

  1193.  *
    1194. 

  1194.  *      if NULL == dOpen == dClose == dRead == dWrite == dArg, then default
    1195. 

  1195.  *      implementations using a memory buffer are used
    1196. 

  1196.  *
    1197. 

  1197.  *	This function returns the decoder context, if it was successful.
    1198. 

  1198.  *	Otherwise, null is returned.
    1199. 

  1199.  */
    1200. 

  1200. SEC_PKCS12DecoderContext *
    1201. 

  1201. SEC_PKCS12DecoderStart(SECItem *pwitem, PK11SlotInfo *slot, void *wincx,
    1202. 

  1202. 		       digestOpenFn dOpen, digestCloseFn dClose, 
    1203. 

  1203. 		       digestIOFn dRead, digestIOFn dWrite, void *dArg)
    1204. 

  1204. {
    1205. 

  1205.     SEC_PKCS12DecoderContext *p12dcx;
    1206. 

  1206.     PRArenaPool *arena;
    1207. 

  1207. 

  1208.     arena = PORT_NewArena(2048); /* different size? */
    1209. 

  1209.     if(!arena) {
    1210. 

  1210. 	return NULL;	/* error is already set */
    1211. 

  1211.     }
    1212. 

  1212. 

  1213.     /* allocate the decoder context and set the state variables */
    1214. 

  1214.     p12dcx = PORT_ArenaZNew(arena, SEC_PKCS12DecoderContext);
    1215. 

  1215.     if(!p12dcx) {
    1216. 

  1216. 	goto loser;	/* error is already set */
    1217. 

  1217.     }
    1218. 

  1218. 

  1219.     if (!dOpen && !dClose && !dRead && !dWrite && !dArg) {
    1220. 

  1220.         /* use default implementations */
    1221. 

  1221.         dOpen = p12u_DigestOpen;
    1222. 

  1222.         dClose = p12u_DigestClose;
    1223. 

  1223.         dRead = p12u_DigestRead;
    1224. 

  1224.         dWrite = p12u_DigestWrite;
    1225. 

  1225.         dArg = (void*)p12dcx;
    1226. 

  1226.     }
    1227. 

  1227. 

  1228.     p12dcx->arena = arena;
    1229. 

  1229.     p12dcx->pwitem = pwitem;
    1230. 

  1230.     p12dcx->slot = (slot ? PK11_ReferenceSlot(slot) 
    1231. 

  1231. 						: PK11_GetInternalKeySlot());
    1232. 

  1232.     p12dcx->wincx = wincx;
    1233. 

  1233.     p12dcx->tokenCAs = SECPKCS12TargetTokenNoCAs;
    1234. 

  1234. #ifdef IS_LITTLE_ENDIAN
    1235. 

  1235.     p12dcx->swapUnicodeBytes = PR_TRUE;
    1236. 

  1236. #else
    1237. 

  1237.     p12dcx->swapUnicodeBytes = PR_FALSE;
    1238. 

  1238. #endif
    1239. 

  1239.     p12dcx->errorValue = 0;
    1240. 

  1240.     p12dcx->error = PR_FALSE;
    1241. 

  1241. 

  1242.     /* start the decoding of the PFX and set the notify proc
    1243. 

  1243.      * for the PFX item.
    1244. 

  1244.      */
    1245. 

  1245.     p12dcx->pfxA1Dcx = SEC_ASN1DecoderStart(p12dcx->arena, &p12dcx->pfx,
    1246. 

  1246.     					  sec_PKCS12PFXItemTemplate);
    1247. 

  1247.     if(!p12dcx->pfxA1Dcx) {
    1248. 

  1248. 	PK11_FreeSlot(p12dcx->slot);
    1249. 

  1249. 	goto loser;
    1250. 

  1250.     }
    1251. 

  1251. 

  1252.     SEC_ASN1DecoderSetNotifyProc(p12dcx->pfxA1Dcx, 
    1253. 

  1253. 				 sec_pkcs12_decoder_pfx_notify_proc,
    1254. 

  1254.     				 p12dcx); 
    1255. 

  1255.     
    1256. 

  1256.     /* set up digest functions */
    1257. 

  1257.     p12dcx->dOpen = dOpen;
    1258. 

  1258.     p12dcx->dWrite = dWrite;
    1259. 

  1259.     p12dcx->dClose = dClose;
    1260. 

  1260.     p12dcx->dRead = dRead;
    1261. 

  1261.     p12dcx->dArg = dArg;
    1262. 

  1262.     p12dcx->dIsOpen = PR_FALSE;
    1263. 

  1263.     
    1264. 

  1264.     p12dcx->keyList = NULL;
    1265. 

  1265.     p12dcx->decitem.type = 0;
    1266. 

  1266.     p12dcx->decitem.der = NULL;
    1267. 

  1267.     p12dcx->decitem.hasKey = PR_FALSE;
    1268. 

  1268.     p12dcx->decitem.friendlyName = NULL;
    1269. 

  1269.     p12dcx->iteration = 0;
    1270. 

  1270. 

  1271.     return p12dcx;
    1272. 

  1272. 

  1273. loser:
    1274. 

  1274.     PORT_FreeArena(arena, PR_TRUE);
    1275. 

  1275.     return NULL;
    1276. 

  1276. }
    1277. 

  1277. 

  1278. SECStatus
    1279. 

  1279. SEC_PKCS12DecoderSetTargetTokenCAs(SEC_PKCS12DecoderContext *p12dcx,
    1280. 

  1280. 		SECPKCS12TargetTokenCAs tokenCAs)
    1281. 

  1281. {
    1282. 

  1282.     if (!p12dcx || p12dcx->error) {
    1283. 

  1283. 	return SECFailure;
    1284. 

  1284.     }
    1285. 

  1285.     p12dcx->tokenCAs = tokenCAs;
    1286. 

  1286.     return SECSuccess;
    1287. 

  1287. }
    1288. 

  1288. 

  1289. 

  1290. /* SEC_PKCS12DecoderUpdate 
    1291. 

  1291.  *	Streaming update sending more data to the decoder.  If 
    1292. 

  1292.  *	an error occurs, SECFailure is returned.
    1293. 

  1293.  *
    1294. 

  1294.  *	p12dcx - the decoder context 
    1295. 

  1295.  *	data, len - the data buffer and length of data to send to 
    1296. 

  1296.  *		the update functions.
    1297. 

  1297.  */
    1298. 

  1298. SECStatus
    1299. 

  1299. SEC_PKCS12DecoderUpdate(SEC_PKCS12DecoderContext *p12dcx,
    1300. 

  1300. 			unsigned char *data, unsigned long len)
    1301. 

  1301. {
    1302. 

  1302.     SECStatus rv;
    1303. 

  1303. 

  1304.     if(!p12dcx || p12dcx->error) {
    1305. 

  1305. 	PORT_SetError(SEC_ERROR_INVALID_ARGS);
    1306. 

  1306. 	return SECFailure;
    1307. 

  1307.     }
    1308. 

  1308. 

  1309.     /* update the PFX decoder context */
    1310. 

  1310.     rv = SEC_ASN1DecoderUpdate(p12dcx->pfxA1Dcx, (const char *)data, len);
    1311. 

  1311.     if(rv != SECSuccess) {
    1312. 

  1312. 	p12dcx->errorValue = SEC_ERROR_PKCS12_CORRUPT_PFX_STRUCTURE;
    1313. 

  1313. 	goto loser;
    1314. 

  1314.     }
    1315. 

  1315. 

  1316.     return SECSuccess;
    1317. 

  1317. 

  1318. loser:
    1319. 

  1319. 

  1320.     p12dcx->error = PR_TRUE;
    1321. 

  1321.     return SECFailure;
    1322. 

  1322. }
    1323. 

  1323. 

  1324. /* This should be a nice sized buffer for reading in data (potentially large 
    1325. 

  1325. ** amounts) to be MACed.  It should be MUCH larger than HASH_LENGTH_MAX.
    1326. 

  1326. */
    1327. 

  1327. #define IN_BUF_LEN	1024
    1328. 

  1328. #ifdef DEBUG
    1329. 

  1329. static const char bufferEnd[] = { "BufferEnd" } ;
    1330. 

  1330. #endif
    1331. 

  1331. #define FUDGE 128 /* must be as large as bufferEnd or more. */
    1332. 

  1332. 

  1333. /* verify the hmac by reading the data from the temporary file
    1334. 

  1334.  * using the routines specified when the decodingContext was 
    1335. 

  1335.  * created and return SECSuccess if the hmac matches.
    1336. 

  1336.  */
    1337. 

  1337. static SECStatus
    1338. 

  1338. sec_pkcs12_decoder_verify_mac(SEC_PKCS12DecoderContext *p12dcx)
    1339. 

  1339. {
    1340. 

  1340.     PK11Context *     pk11cx = NULL;
    1341. 

  1341.     PK11SymKey *      symKey = NULL;
    1342. 

  1342.     SECItem *         params = NULL;
    1343. 

  1343.     unsigned char *   buf;
    1344. 

  1344.     SECStatus         rv     = SECFailure;
    1345. 

  1345.     SECStatus         lrv;
    1346. 

  1346.     unsigned int      bufLen;
    1347. 

  1347.     int               iteration;
    1348. 

  1348.     int               bytesRead;
    1349. 

  1349.     SECOidTag         algtag;
    1350. 

  1350.     SECItem           hmacRes;
    1351. 

  1351.     SECItem           ignore = {0};
    1352. 

  1352.     CK_MECHANISM_TYPE integrityMech;
    1353. 

  1353.     
    1354. 

  1354.     if(!p12dcx || p12dcx->error) {
    1355. 

  1355. 	PORT_SetError(SEC_ERROR_INVALID_ARGS);
    1356. 

  1356. 	return SECFailure;
    1357. 

  1357.     }
    1358. 

  1358.     buf = (unsigned char *)PORT_Alloc(IN_BUF_LEN + FUDGE);
    1359. 

  1359.     if (!buf)
    1360. 

  1360.     	return SECFailure;  /* error code has been set. */
    1361. 

  1361. 

  1362. #ifdef DEBUG
    1363. 

  1363.     memcpy(buf + IN_BUF_LEN, bufferEnd, sizeof bufferEnd);
    1364. 

  1364. #endif
    1365. 

  1365. 

  1366.     /* generate hmac key */
    1367. 

  1367.     if(p12dcx->macData.iter.data) {
    1368. 

  1368. 	iteration = (int)DER_GetInteger(&p12dcx->macData.iter);
    1369. 

  1369.     } else {
    1370. 

  1370. 	iteration = 1;
    1371. 

  1371.     }
    1372. 

  1372. 

  1373.     params = PK11_CreatePBEParams(&p12dcx->macData.macSalt, p12dcx->pwitem,
    1374. 

  1374.                                   iteration);
    1375. 

  1375. 

  1376.     algtag = SECOID_GetAlgorithmTag(&p12dcx->macData.safeMac.digestAlgorithm);
    1377. 

  1377.     switch (algtag) {
    1378. 

  1378.     case SEC_OID_SHA1:
    1379. 

  1379. 	integrityMech = CKM_NETSCAPE_PBE_SHA1_HMAC_KEY_GEN; break;
    1380. 

  1380.     case SEC_OID_MD5:
    1381. 

  1381. 	integrityMech = CKM_NETSCAPE_PBE_MD5_HMAC_KEY_GEN;  break;
    1382. 

  1382.     case SEC_OID_MD2:
    1383. 

  1383. 	integrityMech = CKM_NETSCAPE_PBE_MD2_HMAC_KEY_GEN;  break;
    1384. 

  1384.     default:
    1385. 

  1385. 	goto loser;
    1386. 

  1386.     }
    1387. 

  1387. 

  1388.     symKey = PK11_KeyGen(NULL, integrityMech, params, 20, NULL);
    1389. 

  1389.     PK11_DestroyPBEParams(params);
    1390. 

  1390.     params = NULL;
    1391. 

  1391.     if (!symKey) goto loser;
    1392. 

  1392.     /* init hmac */
    1393. 

  1393.     pk11cx = PK11_CreateContextBySymKey(sec_pkcs12_algtag_to_mech(algtag),
    1394. 

  1394.                                         CKA_SIGN, symKey, &ignore);
    1395. 

  1395.     if(!pk11cx) {
    1396. 

  1396. 	goto loser;
    1397. 

  1397.     }
    1398. 

  1398.     lrv = PK11_DigestBegin(pk11cx);
    1399. 

  1399.     if (lrv == SECFailure ) {
    1400. 

  1400. 	goto loser;
    1401. 

  1401.     }
    1402. 

  1402. 

  1403.     /* try to open the data for readback */
    1404. 

  1404.     if(p12dcx->dOpen && ((*p12dcx->dOpen)(p12dcx->dArg, PR_TRUE) 
    1405. 

  1405. 			!= SECSuccess)) {
    1406. 

  1406. 	goto loser;
    1407. 

  1407.     }
    1408. 

  1408. 

  1409.     /* read the data back IN_BUF_LEN bytes at a time and recompute
    1410. 

  1410.      * the hmac.  if fewer bytes are read than are requested, it is
    1411. 

  1411.      * assumed that the end of file has been reached. if bytesRead
    1412. 

  1412.      * is returned as -1, then an error occurred reading from the 
    1413. 

  1413.      * file.
    1414. 

  1414.      */
    1415. 

  1415.     do {
    1416. 

  1416. 	bytesRead = (*p12dcx->dRead)(p12dcx->dArg, buf, IN_BUF_LEN);
    1417. 

  1417. 	if (bytesRead < 0) {
    1418. 

  1418. 	    PORT_SetError(SEC_ERROR_PKCS12_UNABLE_TO_READ);
    1419. 

  1419. 	    goto loser;
    1420. 

  1420. 	}
    1421. 

  1421. 	PORT_Assert(bytesRead <= IN_BUF_LEN);
    1422. 

  1422. 	PORT_Assert(!memcmp(buf + IN_BUF_LEN, bufferEnd, sizeof bufferEnd));
    1423. 

  1423. 

  1424. 	if (bytesRead > IN_BUF_LEN) {
    1425. 

  1425. 	    /* dRead callback overflowed buffer. */
    1426. 

  1426. 	    PORT_SetError(SEC_ERROR_INPUT_LEN);
    1427. 

  1427. 	    goto loser;
    1428. 

  1428. 	}
    1429. 

  1429. 

  1430. 	if (bytesRead) {
    1431. 

  1431. 	    lrv = PK11_DigestOp(pk11cx, buf, bytesRead);
    1432. 

  1432. 	    if (lrv == SECFailure) {
    1433. 

  1433. 		goto loser;
    1434. 

  1434. 	    }
    1435. 

  1435.     	}
    1436. 

  1436.     } while (bytesRead == IN_BUF_LEN);
    1437. 

  1437. 

  1438.     /* finish the hmac context */
    1439. 

  1439.     lrv = PK11_DigestFinal(pk11cx, buf, &bufLen, IN_BUF_LEN);
    1440. 

  1440.     if (lrv == SECFailure ) {
    1441. 

  1441. 	goto loser;
    1442. 

  1442.     }
    1443. 

  1443. 

  1444.     hmacRes.data = buf;
    1445. 

  1445.     hmacRes.len = bufLen;
    1446. 

  1446. 

  1447.     /* is the hmac computed the same as the hmac which was decoded? */
    1448. 

  1448.     rv = SECSuccess;
    1449. 

  1449.     if(SECITEM_CompareItem(&hmacRes, &p12dcx->macData.safeMac.digest) 
    1450. 

  1450. 			!= SECEqual) {
    1451. 

  1451. 	PORT_SetError(SEC_ERROR_PKCS12_INVALID_MAC);
    1452. 

  1452. 	rv = SECFailure;
    1453. 

  1453.     }
    1454. 

  1454. 

  1455. loser:
    1456. 

  1456.     /* close the file and remove it */
    1457. 

  1457.     if(p12dcx->dClose) {
    1458. 

  1458. 	(*p12dcx->dClose)(p12dcx->dArg, PR_TRUE);
    1459. 

  1459. 	p12dcx->dIsOpen = PR_FALSE;
    1460. 

  1460.     }
    1461. 

  1461. 

  1462.     if(pk11cx) {
    1463. 

  1463. 	PK11_DestroyContext(pk11cx, PR_TRUE);
    1464. 

  1464.     }
    1465. 

  1465.     if (params) {
    1466. 

  1466. 	PK11_DestroyPBEParams(params);
    1467. 

  1467.     }
    1468. 

  1468.     if (symKey) {
    1469. 

  1469. 	PK11_FreeSymKey(symKey);
    1470. 

  1470.     }
    1471. 

  1471.     PORT_ZFree(buf, IN_BUF_LEN + FUDGE);
    1472. 

  1472. 

  1473.     return rv;
    1474. 

  1474. }
    1475. 

  1475. 

  1476. /* SEC_PKCS12DecoderVerify
    1477. 

  1477.  * 	Verify the macData or the signature of the decoded PKCS 12 PDU.
    1478. 

  1478.  *	If the signature or the macData do not match, SECFailure is
    1479. 

  1479.  *	returned.
    1480. 

  1480.  *
    1481. 

  1481.  * 	p12dcx - the decoder context 
    1482. 

  1482.  */
    1483. 

  1483. SECStatus
    1484. 

  1484. SEC_PKCS12DecoderVerify(SEC_PKCS12DecoderContext *p12dcx)
    1485. 

  1485. {
    1486. 

  1486.     SECStatus rv = SECSuccess;
    1487. 

  1487. 

  1488.     /* make sure that no errors have occurred... */
    1489. 

  1489.     if(!p12dcx) {
    1490. 

  1490. 	PORT_SetError(SEC_ERROR_INVALID_ARGS);
    1491. 

  1491. 	return SECFailure;
    1492. 

  1492.     }
    1493. 

  1493.     if(p12dcx->error) {
    1494. 

  1494. 	/* error code is already set! PORT_SetError(p12dcx->errorValue); */
    1495. 

  1495. 	return SECFailure;
    1496. 

  1496.     }
    1497. 

  1497. 

  1498.     rv = SEC_ASN1DecoderFinish(p12dcx->pfxA1Dcx);
    1499. 

  1499.     p12dcx->pfxA1Dcx = NULL;
    1500. 

  1500.     if(rv != SECSuccess) {
    1501. 

  1501. 	return rv;
    1502. 

  1502.     }
    1503. 

  1503. 

  1504.     /* check the signature or the mac depending on the type of
    1505. 

  1505.      * integrity used.
    1506. 

  1506.      */
    1507. 

  1507.     if(p12dcx->pfx.encodedMacData.len) {
    1508. 

  1508. 	rv = SEC_ASN1DecodeItem(p12dcx->arena, &p12dcx->macData,
    1509. 

  1509. 				sec_PKCS12MacDataTemplate,
    1510. 

  1510. 				&p12dcx->pfx.encodedMacData);
    1511. 

  1511. 	if(rv == SECSuccess) {
    1512. 

  1512. 	    return sec_pkcs12_decoder_verify_mac(p12dcx);
    1513. 

  1513. 	}
    1514. 

  1514. 	return rv;
    1515. 

  1515.     } 
    1516. 

  1516.     if (SEC_PKCS7VerifySignature(p12dcx->aSafeCinfo, certUsageEmailSigner, 
    1517. 

  1517.                                  PR_FALSE)) {
    1518. 

  1518. 	return SECSuccess;
    1519. 

  1519.     } 
    1520. 

  1520.     PORT_SetError(SEC_ERROR_PKCS12_INVALID_MAC);
    1521. 

  1521.     return SECFailure;
    1522. 

  1522. }
    1523. 

  1523. 

  1524. /* SEC_PKCS12DecoderFinish
    1525. 

  1525.  *	Free any open ASN1 or PKCS7 decoder contexts and then
    1526. 

  1526.  *	free the arena pool which everything should be allocated
    1527. 

  1527.  *	from.  This function should be called upon completion of
    1528. 

  1528.  *	decoding and installing of a pfx pdu.  This should be
    1529. 

  1529.  *	called even if an error occurs.
    1530. 

  1530.  *
    1531. 

  1531.  *	p12dcx - the decoder context
    1532. 

  1532.  */
    1533. 

  1533. void
    1534. 

  1534. SEC_PKCS12DecoderFinish(SEC_PKCS12DecoderContext *p12dcx)
    1535. 

  1535. {
    1536. 

  1536.     unsigned int i;
    1537. 

  1537. 

  1538.     if(!p12dcx) {
    1539. 

  1539. 	PORT_SetError(SEC_ERROR_INVALID_ARGS);
    1540. 

  1540. 	return;
    1541. 

  1541.     }
    1542. 

  1542. 

  1543.     if(p12dcx->pfxA1Dcx) {
    1544. 

  1544. 	SEC_ASN1DecoderFinish(p12dcx->pfxA1Dcx);
    1545. 

  1545. 	p12dcx->pfxA1Dcx = NULL;
    1546. 

  1546.     }
    1547. 

  1547. 

  1548.     if(p12dcx->aSafeA1Dcx) {
    1549. 

  1549. 	SEC_ASN1DecoderFinish(p12dcx->aSafeA1Dcx);
    1550. 

  1550. 	p12dcx->aSafeA1Dcx = NULL;
    1551. 

  1551.     }
    1552. 

  1552. 

  1553.     /* cleanup any old ASN1 decoder contexts */
    1554. 

  1554.     for (i = 0; i < p12dcx->safeContentsCnt; ++i) {
    1555. 

  1555. 	sec_PKCS12SafeContentsContext *safeContentsCtx, *nested;
    1556. 

  1556. 	safeContentsCtx = p12dcx->safeContentsList[i];
    1557. 

  1557. 	if (safeContentsCtx) {
    1558. 

  1558. 	    nested = safeContentsCtx->nestedSafeContentsCtx;
    1559. 

  1559. 	    while (nested) {
    1560. 

  1560. 		if (nested->safeContentsA1Dcx) {
    1561. 

  1561. 		    SEC_ASN1DecoderFinish(nested->safeContentsA1Dcx);
    1562. 

  1562. 		    nested->safeContentsA1Dcx = NULL;
    1563. 

  1563. 		}
    1564. 

  1564. 		nested = nested->nestedSafeContentsCtx;
    1565. 

  1565. 	    }
    1566. 

  1566. 	    if (safeContentsCtx->safeContentsA1Dcx) {
    1567. 

  1567. 		SEC_ASN1DecoderFinish(safeContentsCtx->safeContentsA1Dcx);
    1568. 

  1568. 		safeContentsCtx->safeContentsA1Dcx = NULL;
    1569. 

  1569. 	    }
    1570. 

  1570. 	}
    1571. 

  1571.     }
    1572. 

  1572. 

  1573.     if (p12dcx->currentASafeP7Dcx &&
    1574. 

  1574. 	p12dcx->currentASafeP7Dcx != p12dcx->aSafeP7Dcx) {
    1575. 

  1575. 	SEC_PKCS7ContentInfo * cinfo;
    1576. 

  1576. 	cinfo = SEC_PKCS7DecoderFinish(p12dcx->currentASafeP7Dcx);
    1577. 

  1577. 	if (cinfo) {
    1578. 

  1578. 	    SEC_PKCS7DestroyContentInfo(cinfo); /* don't leak it */
    1579. 

  1579. 	}
    1580. 

  1580.     }
    1581. 

  1581.     p12dcx->currentASafeP7Dcx = NULL;
    1582. 

  1582. 

  1583.     if(p12dcx->aSafeP7Dcx) {
    1584. 

  1584. 	SEC_PKCS7ContentInfo * cinfo;
    1585. 

  1585. 	cinfo = SEC_PKCS7DecoderFinish(p12dcx->aSafeP7Dcx);
    1586. 

  1586. 	if (cinfo) {
    1587. 

  1587. 	    SEC_PKCS7DestroyContentInfo(cinfo);
    1588. 

  1588. 	}
    1589. 

  1589. 	p12dcx->aSafeP7Dcx = NULL;
    1590. 

  1590.     }
    1591. 

  1591. 

  1592.     if(p12dcx->aSafeCinfo) {
    1593. 

  1593. 	SEC_PKCS7DestroyContentInfo(p12dcx->aSafeCinfo);
    1594. 

  1594. 	p12dcx->aSafeCinfo = NULL;
    1595. 

  1595.     }
    1596. 

  1596. 

  1597.     if (p12dcx->decitem.type != 0 && p12dcx->decitem.der != NULL) {
    1598. 

  1598.         SECITEM_FreeItem(p12dcx->decitem.der, PR_TRUE);
    1599. 

  1599.     }
    1600. 

  1600.     if (p12dcx->decitem.friendlyName != NULL) {
    1601. 

  1601.         SECITEM_FreeItem(p12dcx->decitem.friendlyName, PR_TRUE);
    1602. 

  1602.     }
    1603. 

  1603. 

  1604.     if(p12dcx->slot) {
    1605. 

  1605. 	PK11_FreeSlot(p12dcx->slot);
    1606. 

  1606. 	p12dcx->slot = NULL;
    1607. 

  1607.     }
    1608. 

  1608. 

  1609.     if(p12dcx->dIsOpen && p12dcx->dClose) {
    1610. 

  1610. 	(*p12dcx->dClose)(p12dcx->dArg, PR_TRUE);
    1611. 

  1611. 	p12dcx->dIsOpen = PR_FALSE;
    1612. 

  1612.     }
    1613. 

  1613. 

  1614.     if(p12dcx->arena) {
    1615. 

  1615. 	PORT_FreeArena(p12dcx->arena, PR_TRUE);
    1616. 

  1616.     }
    1617. 

  1617. }
    1618. 

  1618. 

  1619. static SECStatus
    1620. 

  1620. sec_pkcs12_decoder_set_attribute_value(sec_PKCS12SafeBag *bag,
    1621. 

  1621. 			       SECOidTag attributeType,
    1622. 

  1622. 			       SECItem *attrValue)
    1623. 

  1623. {
    1624. 

  1624.     int i = 0;
    1625. 

  1625.     SECOidData *oid;
    1626. 

  1626. 

  1627.     if(!bag || !attrValue) {
    1628. 

  1628. 	PORT_SetError(SEC_ERROR_INVALID_ARGS);
    1629. 

  1629. 	return SECFailure;
    1630. 

  1630.     }
    1631. 

  1631. 

  1632.     oid = SECOID_FindOIDByTag(attributeType);
    1633. 

  1633.     if(!oid) {
    1634. 

  1634. 	return SECFailure;
    1635. 

  1635.     }
    1636. 

  1636. 

  1637.     if(!bag->attribs) {
    1638. 

  1638. 	bag->attribs = 
    1639. 

  1639. 		PORT_ArenaZNewArray(bag->arena, sec_PKCS12Attribute *, 2);
    1640. 

  1640.     } else {
    1641. 

  1641. 	while(bag->attribs[i]) 
    1642. 

  1642. 	    i++;
    1643. 

  1643. 	bag->attribs = PORT_ArenaGrowArray(bag->arena, bag->attribs, 
    1644. 

  1644. 				           sec_PKCS12Attribute *, i + 1, i + 2);
    1645. 

  1645.     }
    1646. 

  1646. 

  1647.     if(!bag->attribs) {
    1648. 

  1648. 	return SECFailure;
    1649. 

  1649.     }
    1650. 

  1650. 

  1651.     bag->attribs[i] = PORT_ArenaZNew(bag->arena, sec_PKCS12Attribute);
    1652. 

  1652.     if(!bag->attribs) {
    1653. 

  1653. 	return SECFailure;
    1654. 

  1654.     }
    1655. 

  1655. 

  1656.     bag->attribs[i]->attrValue = PORT_ArenaZNewArray(bag->arena, SECItem *, 2);
    1657. 

  1657.     if(!bag->attribs[i]->attrValue) {
    1658. 

  1658. 	return SECFailure;
    1659. 

  1659.     }
    1660. 

  1660. 

  1661.     bag->attribs[i+1] = NULL;
    1662. 

  1662.     bag->attribs[i]->attrValue[0] = attrValue;
    1663. 

  1663.     bag->attribs[i]->attrValue[1] = NULL;
    1664. 

  1664. 

  1665.     return SECITEM_CopyItem(bag->arena, &bag->attribs[i]->attrType, &oid->oid);
    1666. 

  1666. }
    1667. 

  1667. 

  1668. static SECItem *
    1669. 

  1669. sec_pkcs12_get_attribute_value(sec_PKCS12SafeBag *bag,
    1670. 

  1670. 			       SECOidTag attributeType)
    1671. 

  1671. {
    1672. 

  1672.     int i;
    1673. 

  1673. 

  1674.     if(!bag->attribs) {
    1675. 

  1675. 	PORT_SetError(SEC_ERROR_INVALID_ARGS);
    1676. 

  1676. 	return NULL;
    1677. 

  1677.     }
    1678. 

  1678. 

  1679.     for (i = 0; bag->attribs[i] != NULL; i++) {
    1680. 

  1680. 	if (SECOID_FindOIDTag(&bag->attribs[i]->attrType) == attributeType) {
    1681. 

  1681. 	    return bag->attribs[i]->attrValue[0];
    1682. 

  1682. 	}
    1683. 

  1683.     }
    1684. 

  1684.     return NULL;
    1685. 

  1685. }
    1686. 

  1686. 

  1687. /* For now, this function will merely remove any ":"
    1688. 

  1688.  * in the nickname which the PK11 functions may have
    1689. 

  1689.  * placed there.  This will keep dual certs from appearing
    1690. 

  1690.  * twice under "Your" certificates when imported onto smart
    1691. 

  1691.  * cards.  Once with the name "Slot:Cert" and another with
    1692. 

  1692.  * the nickname "Slot:Slot:Cert"
    1693. 

  1693.  */
    1694. 

  1694. static void
    1695. 

  1695. sec_pkcs12_sanitize_nickname(PK11SlotInfo *slot, SECItem *nick)
    1696. 

  1696. {
    1697. 

  1697.     char *nickname;
    1698. 

  1698.     char *delimit;
    1699. 

  1699.     int delimitlen;
    1700. 

  1700.  
    1701. 

  1701.     nickname = (char*)nick->data;
    1702. 

  1702.     if ((delimit = PORT_Strchr(nickname, ':')) != NULL) {
    1703. 

  1703.         char *slotName;
    1704. 

  1704. 	int slotNameLen;
    1705. 

  1705. 

  1706. 	slotNameLen = delimit-nickname;
    1707. 

  1707. 	slotName = PORT_NewArray(char, (slotNameLen+1));
    1708. 

  1708. 	PORT_Assert(slotName);
    1709. 

  1709. 	if (slotName == NULL) {
    1710. 

  1710. 	  /* What else can we do?*/
    1711. 

  1711. 	  return;
    1712. 

  1712. 	}
    1713. 

  1713. 	PORT_Memcpy(slotName, nickname, slotNameLen);
    1714. 

  1714. 	slotName[slotNameLen] = '\0';
    1715. 

  1715. 	if (PORT_Strcmp(PK11_GetTokenName(slot), slotName) == 0) {
    1716. 

  1716. 	  delimitlen = PORT_Strlen(delimit+1);
    1717. 

  1717. 	  
    1718.

Large files files are truncated, but you can click here to view the full file