diff --git a/src/java.base/share/classes/sun/security/util/DerIndefLenConverter.java b/src/java.base/share/classes/sun/security/util/DerIndefLenConverter.java index 56e1c630fb2..de8c2e5fb22 100644 --- a/src/java.base/share/classes/sun/security/util/DerIndefLenConverter.java +++ b/src/java.base/share/classes/sun/security/util/DerIndefLenConverter.java @@ -372,19 +372,18 @@ class DerIndefLenConverter { * This may block. * * @param in the input stream with tag and lenByte already read - * @param lenByte the length of the length field to remember * @param tag the tag to remember * @return a DER byte array * @throws IOException if not all indef len BER * can be resolved or another I/O error happens */ - public static byte[] convertStream(InputStream in, byte lenByte, byte tag) + public static byte[] convertStream(InputStream in, byte tag) throws IOException { int offset = 2; // for tag and length bytes int readLen = in.available(); byte[] indefData = new byte[readLen + offset]; indefData[0] = tag; - indefData[1] = lenByte; + indefData[1] = (byte)0x80; while (true) { int bytesRead = in.readNBytes(indefData, offset, readLen); if (bytesRead != readLen) { diff --git a/src/java.base/share/classes/sun/security/util/DerInputBuffer.java b/src/java.base/share/classes/sun/security/util/DerInputBuffer.java deleted file mode 100644 index a5cf8fdaafc..00000000000 --- a/src/java.base/share/classes/sun/security/util/DerInputBuffer.java +++ /dev/null @@ -1,475 +0,0 @@ -/* - * Copyright (c) 1996, 2020, Oracle and/or its affiliates. All rights reserved. - * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. - * - * This code is free software; you can redistribute it and/or modify it - * under the terms of the GNU General Public License version 2 only, as - * published by the Free Software Foundation. Oracle designates this - * particular file as subject to the "Classpath" exception as provided - * by Oracle in the LICENSE file that accompanied this code. - * - * This code is distributed in the hope that it will be useful, but WITHOUT - * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or - * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License - * version 2 for more details (a copy is included in the LICENSE file that - * accompanied this code). - * - * You should have received a copy of the GNU General Public License version - * 2 along with this work; if not, write to the Free Software Foundation, - * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. - * - * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA - * or visit www.oracle.com if you need additional information or have any - * questions. - */ - -package sun.security.util; - -import java.io.ByteArrayInputStream; -import java.io.IOException; -import java.math.BigInteger; -import java.util.Date; -import sun.util.calendar.CalendarDate; -import sun.util.calendar.CalendarSystem; - -/** - * DER input buffer ... this is the main abstraction in the DER library - * which actively works with the "untyped byte stream" abstraction. It - * does so with impunity, since it's not intended to be exposed to - * anyone who could violate the "typed value stream" DER model and hence - * corrupt the input stream of DER values. - * - * @author David Brownell - */ -class DerInputBuffer extends ByteArrayInputStream implements Cloneable { - - boolean allowBER = true; - - // used by sun/security/util/DerInputBuffer/DerInputBufferEqualsHashCode.java - DerInputBuffer(byte[] buf) { - this(buf, true); - } - - DerInputBuffer(byte[] buf, boolean allowBER) { - super(buf); - this.allowBER = allowBER; - } - - DerInputBuffer(byte[] buf, int offset, int len, boolean allowBER) { - super(buf, offset, len); - this.allowBER = allowBER; - } - - DerInputBuffer dup() { - try { - DerInputBuffer retval = (DerInputBuffer)clone(); - retval.mark(Integer.MAX_VALUE); - return retval; - } catch (CloneNotSupportedException e) { - throw new IllegalArgumentException(e.toString()); - } - } - - byte[] toByteArray() { - int len = available(); - if (len <= 0) - return null; - byte[] retval = new byte[len]; - - System.arraycopy(buf, pos, retval, 0, len); - return retval; - } - - int peek() throws IOException { - if (pos >= count) - throw new IOException("out of data"); - else - return buf[pos]; - } - - /** - * Compares this DerInputBuffer for equality with the specified - * object. - */ - public boolean equals(Object other) { - if (other instanceof DerInputBuffer) - return equals((DerInputBuffer)other); - else - return false; - } - - boolean equals(DerInputBuffer other) { - if (this == other) - return true; - - int max = this.available(); - if (other.available() != max) - return false; - for (int i = 0; i < max; i++) { - if (this.buf[this.pos + i] != other.buf[other.pos + i]) { - return false; - } - } - return true; - } - - /** - * Returns a hashcode for this DerInputBuffer. - * - * @return a hashcode for this DerInputBuffer. - */ - public int hashCode() { - int retval = 0; - - int len = available(); - int p = pos; - - for (int i = 0; i < len; i++) - retval += buf[p + i] * i; - return retval; - } - - void truncate(int len) throws IOException { - if (len > available()) - throw new IOException("insufficient data"); - count = pos + len; - } - - /** - * Returns the integer which takes up the specified number - * of bytes in this buffer as a BigInteger. - * @param len the number of bytes to use. - * @param makePositive whether to always return a positive value, - * irrespective of actual encoding - * @return the integer as a BigInteger. - */ - BigInteger getBigInteger(int len, boolean makePositive) throws IOException { - if (len > available()) - throw new IOException("short read of integer"); - - if (len == 0) { - throw new IOException("Invalid encoding: zero length Int value"); - } - - byte[] bytes = new byte[len]; - - System.arraycopy(buf, pos, bytes, 0, len); - skip(len); - - // BER allows leading 0s but DER does not - if (!allowBER && (len >= 2 && (bytes[0] == 0) && (bytes[1] >= 0))) { - throw new IOException("Invalid encoding: redundant leading 0s"); - } - - if (makePositive) { - return new BigInteger(1, bytes); - } else { - return new BigInteger(bytes); - } - } - - /** - * Returns the integer which takes up the specified number - * of bytes in this buffer. - * @throws IOException if the result is not within the valid - * range for integer, i.e. between Integer.MIN_VALUE and - * Integer.MAX_VALUE. - * @param len the number of bytes to use. - * @return the integer. - */ - public int getInteger(int len) throws IOException { - - BigInteger result = getBigInteger(len, false); - if (result.compareTo(BigInteger.valueOf(Integer.MIN_VALUE)) < 0) { - throw new IOException("Integer below minimum valid value"); - } - if (result.compareTo(BigInteger.valueOf(Integer.MAX_VALUE)) > 0) { - throw new IOException("Integer exceeds maximum valid value"); - } - return result.intValue(); - } - - /** - * Returns the bit string which takes up the specified - * number of bytes in this buffer. - */ - public byte[] getBitString(int len) throws IOException { - if (len > available()) - throw new IOException("short read of bit string"); - - if (len == 0) { - throw new IOException("Invalid encoding: zero length bit string"); - } - - int numOfPadBits = buf[pos]; - if ((numOfPadBits < 0) || (numOfPadBits > 7)) { - throw new IOException("Invalid number of padding bits"); - } - // minus the first byte which indicates the number of padding bits - byte[] retval = new byte[len - 1]; - System.arraycopy(buf, pos + 1, retval, 0, len - 1); - if (numOfPadBits != 0) { - // get rid of the padding bits - retval[len - 2] &= (0xff << numOfPadBits); - } - skip(len); - return retval; - } - - /** - * Returns the bit string which takes up the rest of this buffer. - */ - byte[] getBitString() throws IOException { - return getBitString(available()); - } - - /** - * Returns the bit string which takes up the rest of this buffer. - * The bit string need not be byte-aligned. - */ - BitArray getUnalignedBitString() throws IOException { - if (pos >= count) - return null; - /* - * Just copy the data into an aligned, padded octet buffer, - * and consume the rest of the buffer. - */ - int len = available(); - int unusedBits = buf[pos] & 0xff; - if (unusedBits > 7 ) { - throw new IOException("Invalid value for unused bits: " + unusedBits); - } - byte[] bits = new byte[len - 1]; - // number of valid bits - int length = (bits.length == 0) ? 0 : bits.length * 8 - unusedBits; - - System.arraycopy(buf, pos + 1, bits, 0, len - 1); - - BitArray bitArray = new BitArray(length, bits); - pos = count; - return bitArray; - } - - /** - * Returns the UTC Time value that takes up the specified number - * of bytes in this buffer. - * @param len the number of bytes to use - */ - public Date getUTCTime(int len) throws IOException { - if (len > available()) - throw new IOException("short read of DER UTC Time"); - - if (len < 11 || len > 17) - throw new IOException("DER UTC Time length error"); - - return getTime(len, false); - } - - /** - * Returns the Generalized Time value that takes up the specified - * number of bytes in this buffer. - * @param len the number of bytes to use - */ - public Date getGeneralizedTime(int len) throws IOException { - if (len > available()) - throw new IOException("short read of DER Generalized Time"); - - if (len < 13) - throw new IOException("DER Generalized Time length error"); - - return getTime(len, true); - - } - - /** - * Private helper routine to extract time from the der value. - * @param len the number of bytes to use - * @param generalized true if Generalized Time is to be read, false - * if UTC Time is to be read. - */ - private Date getTime(int len, boolean generalized) throws IOException { - - /* - * UTC time encoded as ASCII chars: - * YYMMDDhhmmZ - * YYMMDDhhmmssZ - * YYMMDDhhmm+hhmm - * YYMMDDhhmm-hhmm - * YYMMDDhhmmss+hhmm - * YYMMDDhhmmss-hhmm - * UTC Time is broken in storing only two digits of year. - * If YY < 50, we assume 20YY; - * if YY >= 50, we assume 19YY, as per RFC 5280. - * - * Generalized time has a four-digit year and allows any - * precision specified in ISO 8601. However, for our purposes, - * we will only allow the same format as UTC time, except that - * fractional seconds (millisecond precision) are supported. - */ - - int year, month, day, hour, minute, second, millis; - String type = null; - - if (generalized) { - type = "Generalized"; - year = 1000 * toDigit(buf[pos++], type); - year += 100 * toDigit(buf[pos++], type); - year += 10 * toDigit(buf[pos++], type); - year += toDigit(buf[pos++], type); - len -= 2; // For the two extra YY - } else { - type = "UTC"; - year = 10 * toDigit(buf[pos++], type); - year += toDigit(buf[pos++], type); - - if (year < 50) // origin 2000 - year += 2000; - else - year += 1900; // origin 1900 - } - - month = 10 * toDigit(buf[pos++], type); - month += toDigit(buf[pos++], type); - - day = 10 * toDigit(buf[pos++], type); - day += toDigit(buf[pos++], type); - - hour = 10 * toDigit(buf[pos++], type); - hour += toDigit(buf[pos++], type); - - minute = 10 * toDigit(buf[pos++], type); - minute += toDigit(buf[pos++], type); - - len -= 10; // YYMMDDhhmm - - /* - * We allow for non-encoded seconds, even though the - * IETF-PKIX specification says that the seconds should - * always be encoded even if it is zero. - */ - - millis = 0; - if (len > 2) { - second = 10 * toDigit(buf[pos++], type); - second += toDigit(buf[pos++], type); - len -= 2; - // handle fractional seconds (if present) - if (generalized && (buf[pos] == '.' || buf[pos] == ',')) { - len --; - if (len == 0) { - throw new IOException("Parse " + type + - " time, empty fractional part"); - } - pos++; - int precision = 0; - while (buf[pos] != 'Z' && - buf[pos] != '+' && - buf[pos] != '-') { - // Validate all digits in the fractional part but - // store millisecond precision only - int thisDigit = toDigit(buf[pos], type); - precision++; - len--; - if (len == 0) { - throw new IOException("Parse " + type + - " time, invalid fractional part"); - } - pos++; - switch (precision) { - case 1: - millis += 100 * thisDigit; - break; - case 2: - millis += 10 * thisDigit; - break; - case 3: - millis += thisDigit; - break; - } - } - if (precision == 0) { - throw new IOException("Parse " + type + - " time, empty fractional part"); - } - } - } else - second = 0; - - if (month == 0 || day == 0 - || month > 12 || day > 31 - || hour >= 24 || minute >= 60 || second >= 60) - throw new IOException("Parse " + type + " time, invalid format"); - - /* - * Generalized time can theoretically allow any precision, - * but we're not supporting that. - */ - CalendarSystem gcal = CalendarSystem.getGregorianCalendar(); - CalendarDate date = gcal.newCalendarDate(null); // no time zone - date.setDate(year, month, day); - date.setTimeOfDay(hour, minute, second, millis); - long time = gcal.getTime(date); - - /* - * Finally, "Z" or "+hhmm" or "-hhmm" ... offsets change hhmm - */ - if (! (len == 1 || len == 5)) - throw new IOException("Parse " + type + " time, invalid offset"); - - int hr, min; - - switch (buf[pos++]) { - case '+': - if (len != 5) { - throw new IOException("Parse " + type + " time, invalid offset"); - } - hr = 10 * toDigit(buf[pos++], type); - hr += toDigit(buf[pos++], type); - min = 10 * toDigit(buf[pos++], type); - min += toDigit(buf[pos++], type); - - if (hr >= 24 || min >= 60) - throw new IOException("Parse " + type + " time, +hhmm"); - - time -= ((hr * 60) + min) * 60 * 1000; - break; - - case '-': - if (len != 5) { - throw new IOException("Parse " + type + " time, invalid offset"); - } - hr = 10 * toDigit(buf[pos++], type); - hr += toDigit(buf[pos++], type); - min = 10 * toDigit(buf[pos++], type); - min += toDigit(buf[pos++], type); - - if (hr >= 24 || min >= 60) - throw new IOException("Parse " + type + " time, -hhmm"); - - time += ((hr * 60) + min) * 60 * 1000; - break; - - case 'Z': - if (len != 1) { - throw new IOException("Parse " + type + " time, invalid format"); - } - break; - - default: - throw new IOException("Parse " + type + " time, garbage offset"); - } - return new Date(time); - } - - /** - * Converts byte (represented as a char) to int. - * @throws IOException if integer is not a valid digit in the specified - * radix (10) - */ - private static int toDigit(byte b, String type) throws IOException { - if (b < '0' || b > '9') { - throw new IOException("Parse " + type + " time, invalid format"); - } - return b - '0'; - } -} diff --git a/src/java.base/share/classes/sun/security/util/DerInputStream.java b/src/java.base/share/classes/sun/security/util/DerInputStream.java index 0c50d0da4fc..d937cf1ec2b 100644 --- a/src/java.base/share/classes/sun/security/util/DerInputStream.java +++ b/src/java.base/share/classes/sun/security/util/DerInputStream.java @@ -1,5 +1,5 @@ /* - * Copyright (c) 1996, 2019, Oracle and/or its affiliates. All rights reserved. + * Copyright (c) 1996, 2020, Oracle and/or its affiliates. All rights reserved. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * * This code is free software; you can redistribute it and/or modify it @@ -28,11 +28,8 @@ package sun.security.util; import java.io.InputStream; import java.io.IOException; import java.math.BigInteger; -import java.nio.charset.Charset; +import java.util.Arrays; import java.util.Date; -import java.util.Vector; - -import static java.nio.charset.StandardCharsets.*; /** * A DER input stream, used for parsing ASN.1 DER-encoded data such as @@ -59,510 +56,173 @@ import static java.nio.charset.StandardCharsets.*; public class DerInputStream { - /* - * This version only supports fully buffered DER. This is easy to - * work with, though if large objects are manipulated DER becomes - * awkward to deal with. That's where BER is useful, since BER - * handles streaming data relatively well. - */ - DerInputBuffer buffer; + // The static part + final byte[] data; + final int start; // inclusive + final int end; // exclusive + final boolean allowBER; - /** The DER tag of the value; one of the tag_ constants. */ - public byte tag; + // The moving part + int pos; + int mark; /** - * Create a DER input stream from a data buffer. The buffer is not - * copied, it is shared. Accordingly, the buffer should be treated - * as read-only. + * Constructs a DerInputStream by assigning all its fields. * - * @param data the buffer from which to create the string (CONSUMED) + * No checking on arguments since all callers are internal. + * {@code data} should never be null even if length is 0. */ + public DerInputStream(byte[] data, int start, int length, boolean allowBER) { + this.data = data; + this.start = start; + this.end = start + length; + this.allowBER = allowBER; + this.pos = start; + this.mark = start; + } + public DerInputStream(byte[] data) throws IOException { - init(data, 0, data.length, true); + this(data, 0, data.length, true); } - /** - * Create a DER input stream from part of a data buffer with - * additional arg to control whether DER checks are enforced. - * The buffer is not copied, it is shared. Accordingly, the - * buffer should be treated as read-only. - * - * @param data the buffer from which to create the string (CONSUMED) - * @param offset the first index of data which will - * be read as DER input in the new stream - * @param len how long a chunk of the buffer to use, - * starting at "offset" - * @param allowBER whether to allow constructed indefinite-length - * encoding as well as tolerate leading 0s - */ - public DerInputStream(byte[] data, int offset, int len, - boolean allowBER) throws IOException { - init(data, offset, len, allowBER); - } - - /** - * Create a DER input stream from part of a data buffer. - * The buffer is not copied, it is shared. Accordingly, the - * buffer should be treated as read-only. - * - * @param data the buffer from which to create the string (CONSUMED) - * @param offset the first index of data which will - * be read as DER input in the new stream - * @param len how long a chunk of the buffer to use, - * starting at "offset" - */ public DerInputStream(byte[] data, int offset, int len) throws IOException { - init(data, offset, len, true); - } - - /* - * private helper routine - */ - private void init(byte[] data, int offset, int len, boolean allowBER) throws IOException { - if ((offset+2 > data.length) || (offset+len > data.length)) { - throw new IOException("Encoding bytes too short"); - } - // check for indefinite length encoding - if (DerIndefLenConverter.isIndefinite(data[offset+1])) { - if (!allowBER) { - throw new IOException("Indefinite length BER encoding found"); - } else { - byte[] inData = new byte[len]; - System.arraycopy(data, offset, inData, 0, len); - - DerIndefLenConverter derIn = new DerIndefLenConverter(); - byte[] result = derIn.convertBytes(inData); - if (result == null) { - throw new IOException("not all indef len BER resolved"); - } else { - buffer = new DerInputBuffer(result, allowBER); - } - } - } else { - buffer = new DerInputBuffer(data, offset, len, allowBER); - } - buffer.mark(Integer.MAX_VALUE); - } - - DerInputStream(DerInputBuffer buf) { - buffer = buf; - buffer.mark(Integer.MAX_VALUE); + this(data, offset, len, true); } /** - * Creates a new DER input stream from part of this input stream. - * - * @param len how long a chunk of the current input stream to use, - * starting at the current position. - * @param do_skip true if the existing data in the input stream should - * be skipped. If this value is false, the next data read - * on this stream and the newly created stream will be the - * same. - */ - public DerInputStream subStream(int len, boolean do_skip) - throws IOException { - DerInputBuffer newbuf = buffer.dup(); - - newbuf.truncate(len); - if (do_skip) { - buffer.skip(len); - } - return new DerInputStream(newbuf); - } - - /** - * Return what has been written to this DerInputStream - * as a byte array. Useful for debugging. + * Returns the remaining unread bytes, or, all bytes if none read yet. */ public byte[] toByteArray() { - return buffer.toByteArray(); + return Arrays.copyOfRange(data, pos, end); } - /* - * PRIMITIVES -- these are "universal" ASN.1 simple types. + /** + * Reads a DerValue from this stream. After the call, the data pointer + * is right after this DerValue so that the next call will read the + * next DerValue. * - * INTEGER, ENUMERATED, BIT STRING, OCTET STRING, NULL - * OBJECT IDENTIFIER, SEQUENCE (OF), SET (OF) - * UTF8String, PrintableString, T61String, IA5String, UTCTime, - * GeneralizedTime, BMPString. - * Note: UniversalString not supported till encoder is available. - */ - - /** - * Get an integer from the input stream as an integer. - * - * @return the integer held in this DER input stream. - */ - public int getInteger() throws IOException { - if (buffer.read() != DerValue.tag_Integer) { - throw new IOException("DER input, Integer tag error"); - } - return buffer.getInteger(getDefiniteLength(buffer)); - } - - /** - * Get a integer from the input stream as a BigInteger object. - * - * @return the integer held in this DER input stream. - */ - public BigInteger getBigInteger() throws IOException { - if (buffer.read() != DerValue.tag_Integer) { - throw new IOException("DER input, Integer tag error"); - } - return buffer.getBigInteger(getDefiniteLength(buffer), false); - } - - /** - * Returns an ASN.1 INTEGER value as a positive BigInteger. - * This is just to deal with implementations that incorrectly encode - * some values as negative. - * - * @return the integer held in this DER value as a BigInteger. - */ - public BigInteger getPositiveBigInteger() throws IOException { - if (buffer.read() != DerValue.tag_Integer) { - throw new IOException("DER input, Integer tag error"); - } - return buffer.getBigInteger(getDefiniteLength(buffer), true); - } - - /** - * Get an enumerated from the input stream. - * - * @return the integer held in this DER input stream. - */ - public int getEnumerated() throws IOException { - if (buffer.read() != DerValue.tag_Enumerated) { - throw new IOException("DER input, Enumerated tag error"); - } - return buffer.getInteger(getDefiniteLength(buffer)); - } - - /** - * Get a bit string from the input stream. Padded bits (if any) - * will be stripped off before the bit string is returned. - */ - public byte[] getBitString() throws IOException { - if (buffer.read() != DerValue.tag_BitString) - throw new IOException("DER input not an bit string"); - - return buffer.getBitString(getDefiniteLength(buffer)); - } - - /** - * Get a bit string from the input stream. The bit string need - * not be byte-aligned. - */ - public BitArray getUnalignedBitString() throws IOException { - if (buffer.read() != DerValue.tag_BitString) { - throw new IOException("DER input not a bit string"); - } - - int length = getDefiniteLength(buffer); - - if (length == 0) { - return new BitArray(0); - } - - /* - * First byte = number of excess bits in the last octet of the - * representation. - */ - length--; - int excessBits = buffer.read(); - if (excessBits < 0) { - throw new IOException("Unused bits of bit string invalid"); - } - int validBits = length*8 - excessBits; - if (validBits < 0) { - throw new IOException("Valid bits of bit string invalid"); - } - - byte[] repn = new byte[length]; - - if ((length != 0) && (buffer.read(repn) != length)) { - throw new IOException("Short read of DER bit string"); - } - - return new BitArray(validBits, repn); - } - - /** - * Returns an ASN.1 OCTET STRING from the input stream. - */ - public byte[] getOctetString() throws IOException { - if (buffer.read() != DerValue.tag_OctetString) - throw new IOException("DER input not an octet string"); - - int length = getDefiniteLength(buffer); - byte[] retval = new byte[length]; - if ((length != 0) && (buffer.read(retval) != length)) - throw new IOException("Short read of DER octet string"); - - return retval; - } - - /** - * Returns the asked number of bytes from the input stream. - */ - public void getBytes(byte[] val) throws IOException { - if ((val.length != 0) && (buffer.read(val) != val.length)) { - throw new IOException("Short read of DER octet string"); - } - } - - /** - * Reads an encoded null value from the input stream. - */ - public void getNull() throws IOException { - if (buffer.read() != DerValue.tag_Null || buffer.read() != 0) - throw new IOException("getNull, bad data"); - } - - /** - * Reads an X.200 style Object Identifier from the stream. - */ - public ObjectIdentifier getOID() throws IOException { - return new ObjectIdentifier(this); - } - - /** - * Return a sequence of encoded entities. ASN.1 sequences are - * ordered, and they are often used, like a "struct" in C or C++, - * to group data values. They may have optional or context - * specific values. - * - * @param startLen guess about how long the sequence will be - * (used to initialize an auto-growing data structure) - * @return array of the values in the sequence - */ - public DerValue[] getSequence(int startLen) throws IOException { - tag = (byte)buffer.read(); - if (tag != DerValue.tag_Sequence) - throw new IOException("Sequence tag error"); - return readVector(startLen); - } - - /** - * Return a set of encoded entities. ASN.1 sets are unordered, - * though DER may specify an order for some kinds of sets (such - * as the attributes in an X.500 relative distinguished name) - * to facilitate binary comparisons of encoded values. - * - * @param startLen guess about how large the set will be - * (used to initialize an auto-growing data structure) - * @return array of the values in the sequence - */ - public DerValue[] getSet(int startLen) throws IOException { - tag = (byte)buffer.read(); - if (tag != DerValue.tag_Set) - throw new IOException("Set tag error"); - return readVector(startLen); - } - - /** - * Return a set of encoded entities. ASN.1 sets are unordered, - * though DER may specify an order for some kinds of sets (such - * as the attributes in an X.500 relative distinguished name) - * to facilitate binary comparisons of encoded values. - * - * @param startLen guess about how large the set will be - * (used to initialize an auto-growing data structure) - * @param implicit if true tag is assumed implicit. - * @return array of the values in the sequence - */ - public DerValue[] getSet(int startLen, boolean implicit) - throws IOException { - tag = (byte)buffer.read(); - if (!implicit) { - if (tag != DerValue.tag_Set) { - throw new IOException("Set tag error"); - } - } - return (readVector(startLen)); - } - - /* - * Read a "vector" of values ... set or sequence have the - * same encoding, except for the initial tag, so both use - * this same helper routine. - */ - protected DerValue[] readVector(int startLen) throws IOException { - DerInputStream newstr; - - byte lenByte = (byte)buffer.read(); - int len = getLength(lenByte, buffer); - - if (len == -1) { - // indefinite length encoding found - buffer = new DerInputBuffer( - DerIndefLenConverter.convertStream(buffer, lenByte, tag), - buffer.allowBER); - - if (tag != buffer.read()) - throw new IOException("Indefinite length encoding" + - " not supported"); - len = DerInputStream.getDefiniteLength(buffer); - } - - if (len == 0) - // return empty array instead of null, which should be - // used only for missing optionals - return new DerValue[0]; - - /* - * Create a temporary stream from which to read the data, - * unless it's not really needed. - */ - if (buffer.available() == len) - newstr = this; - else - newstr = subStream(len, true); - - /* - * Pull values out of the stream. - */ - Vector vec = new Vector<>(startLen); - DerValue value; - - do { - value = new DerValue(newstr.buffer, buffer.allowBER); - vec.addElement(value); - } while (newstr.available() > 0); - - if (newstr.available() != 0) - throw new IOException("Extra data at end of vector"); - - /* - * Now stick them into the array we're returning. - */ - int i, max = vec.size(); - DerValue[] retval = new DerValue[max]; - - for (i = 0; i < max; i++) - retval[i] = vec.elementAt(i); - - return retval; - } - - /** - * Get a single DER-encoded value from the input stream. - * It can often be useful to pull a value from the stream - * and defer parsing it. For example, you can pull a nested - * sequence out with one call, and only examine its elements - * later when you really need to. + * @return the read DerValue. + * @throws IOException if a DerValue cannot be constructed starting from + * this position because of byte shortage or encoding error. */ public DerValue getDerValue() throws IOException { - return new DerValue(buffer); + DerValue result = new DerValue( + this.data, this.pos, this.end - this.pos, this.allowBER, true); + if (result.buffer != this.data) { + // Indefinite length observed. Unused bytes in data are appended + // to the end of return value by DerIndefLenConverter::convertBytes + // and stay inside result.buffer. + int unused = result.buffer.length - result.end; + this.pos = this.data.length - unused; + } else { + this.pos = result.end; + } + return result; + } + + // The following getXyz methods are mostly shorthands for getDerValue().getXyz(). + + public int getInteger() throws IOException { + return getDerValue().getInteger(); + } + + public BigInteger getBigInteger() throws IOException { + return getDerValue().getBigInteger(); + } + + public BigInteger getPositiveBigInteger() throws IOException { + return getDerValue().getPositiveBigInteger(); + } + + public int getEnumerated() throws IOException { + return getDerValue().getEnumerated(); + } + + public byte[] getBitString() throws IOException { + return getDerValue().getBitString(); + } + + public BitArray getUnalignedBitString() throws IOException { + return getDerValue().getUnalignedBitString(); + } + + public byte[] getOctetString() throws IOException { + // Not identical to DerValue::getOctetString. This method + // does not accept constructed OCTET STRING. + DerValue v = getDerValue(); + if (v.tag != DerValue.tag_OctetString) { + throw new IOException("DER input not an octet string"); + } + return v.getOctetString(); + } + + public void getNull() throws IOException { + getDerValue().getNull(); + } + + public ObjectIdentifier getOID() throws IOException { + return getDerValue().getOID(); } - /** - * Read a string that was encoded as a UTF8String DER value. - */ public String getUTF8String() throws IOException { - return readString(DerValue.tag_UTF8String, "UTF-8", UTF_8); + return getDerValue().getUTF8String(); } - /** - * Read a string that was encoded as a PrintableString DER value. - */ public String getPrintableString() throws IOException { - return readString(DerValue.tag_PrintableString, "Printable", - US_ASCII); + return getDerValue().getPrintableString(); } - /** - * Read a string that was encoded as a T61String DER value. - */ public String getT61String() throws IOException { - /* - * Works for common characters between T61 and ASCII. - */ - return readString(DerValue.tag_T61String, "T61", ISO_8859_1); + return getDerValue().getT61String(); } - /** - * Read a string that was encoded as a IA5String DER value. - */ - public String getIA5String() throws IOException { - return readString(DerValue.tag_IA5String, "IA5", US_ASCII); - } - - /** - * Read a string that was encoded as a BMPString DER value. - */ public String getBMPString() throws IOException { - return readString(DerValue.tag_BMPString, "BMP", UTF_16BE); + return getDerValue().getBMPString(); + } + + public String getIA5String() throws IOException { + return getDerValue().getIA5String(); } - /** - * Read a string that was encoded as a GeneralString DER value. - */ public String getGeneralString() throws IOException { - return readString(DerValue.tag_GeneralString, "General", - US_ASCII); + return getDerValue().getGeneralString(); } - /** - * Private helper routine to read an encoded string from the input - * stream. - * @param stringTag the tag for the type of string to read - * @param stringName a name to display in error messages - * @param enc the encoder to use to interpret the data. Should - * correspond to the stringTag above. - */ - private String readString(byte stringTag, String stringName, - Charset charset) throws IOException { - - if (buffer.read() != stringTag) - throw new IOException("DER input not a " + - stringName + " string"); - - int length = getDefiniteLength(buffer); - byte[] retval = new byte[length]; - if ((length != 0) && (buffer.read(retval) != length)) - throw new IOException("Short read of DER " + - stringName + " string"); - - return new String(retval, charset); - } - - /** - * Get a UTC encoded time value from the input stream. - */ public Date getUTCTime() throws IOException { - if (buffer.read() != DerValue.tag_UtcTime) - throw new IOException("DER input, UTCtime tag invalid "); - return buffer.getUTCTime(getDefiniteLength(buffer)); + return getDerValue().getUTCTime(); } - /** - * Get a Generalized encoded time value from the input stream. - */ public Date getGeneralizedTime() throws IOException { - if (buffer.read() != DerValue.tag_GeneralizedTime) - throw new IOException("DER input, GeneralizedTime tag invalid "); - return buffer.getGeneralizedTime(getDefiniteLength(buffer)); + return getDerValue().getGeneralizedTime(); } - /* - * Get a byte from the input stream. - */ - // package private - int getByte() throws IOException { - return (0x00ff & buffer.read()); + // Read a series of DerValue objects which is the sub-elements + // of a SEQUENCE and SET. + + public DerValue[] getSequence(int startLen) throws IOException { + return getDerValue().subs(DerValue.tag_Sequence, startLen); + } + + public DerValue[] getSet(int startLen) throws IOException { + return getDerValue().subs(DerValue.tag_Set, startLen); + } + + public DerValue[] getSet(int startLen, boolean implicit) throws IOException { + if (implicit) { + return getDerValue().subs((byte) 0, startLen); + } else { + return getSet(startLen); + } } public int peekByte() throws IOException { - return buffer.peek(); + if (pos == end) { + throw new IOException("At end"); + } + return data[pos]; } - // package private - int getLength() throws IOException { - return getLength(buffer); - } - - /* + /** * Get a length from the input stream, allowing for at most 32 bits of * encoding to be used. (Not the same as getting a tagged integer!) * @@ -570,38 +230,26 @@ public class DerInputStream { * @exception IOException on parsing error or unsupported lengths. */ static int getLength(InputStream in) throws IOException { - return getLength(in.read(), in); - } - - /* - * Get a length from the input stream, allowing for at most 32 bits of - * encoding to be used. (Not the same as getting a tagged integer!) - * - * @return the length or -1 if indefinite length found. - * @exception IOException on parsing error or unsupported lengths. - */ - static int getLength(int lenByte, InputStream in) throws IOException { - int value, tmp; + int lenByte = in.read(); if (lenByte == -1) { throw new IOException("Short read of DER length"); } + if (lenByte == 0x80) { + return -1; + } + int value, tmp; String mdName = "DerInputStream.getLength(): "; tmp = lenByte; if ((tmp & 0x080) == 0x00) { // short form, 1 byte datum value = tmp; - } else { // long form or indefinite + } else { // long form tmp &= 0x07f; - /* - * NOTE: tmp == 0 indicates indefinite length encoded data. - * tmp > 4 indicates more than 4Gb of data. - */ - if (tmp == 0) - return -1; - if (tmp < 0 || tmp > 4) - throw new IOException(mdName + "lengthTag=" + tmp + ", " - + ((tmp < 0) ? "incorrect DER encoding." : "too big.")); + // tmp > 4 indicates more than 4Gb of data. + if (tmp > 4) { + throw new IOException(mdName + "lengthTag=" + tmp + ", too big."); + } value = 0x0ff & in.read(); tmp--; @@ -622,12 +270,8 @@ public class DerInputStream { return value; } - int getDefiniteLength() throws IOException { - return getDefiniteLength(buffer); - } - /* - * Get a length from the input stream. + * Get a definite length from the input stream. * * @return the length * @exception IOException on parsing error or if indefinite length found. @@ -643,22 +287,22 @@ public class DerInputStream { /** * Mark the current position in the buffer, so that * a later call to reset will return here. + * The {@code readAheadLimit} is useless here because + * all data is available and we can go to anywhere at will. */ - public void mark(int value) { buffer.mark(value); } - + public void mark(int readAheadLimit) { mark = pos; } /** * Return to the position of the last mark * call. A mark is implicitly set at the beginning of * the stream when it is created. */ - public void reset() { buffer.reset(); } - + public void reset() { pos = mark; } /** * Returns the number of bytes available for reading. * This is most useful for testing whether the stream is * empty. */ - public int available() { return buffer.available(); } + public int available() { return end - pos; } } diff --git a/src/java.base/share/classes/sun/security/util/DerValue.java b/src/java.base/share/classes/sun/security/util/DerValue.java index cbd19575eaa..05fc77ac5d3 100644 --- a/src/java.base/share/classes/sun/security/util/DerValue.java +++ b/src/java.base/share/classes/sun/security/util/DerValue.java @@ -1,4 +1,4 @@ -/** +/* * Copyright (c) 1996, 2020, Oracle and/or its affiliates. All rights reserved. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * @@ -25,12 +25,14 @@ package sun.security.util; +import sun.nio.cs.UTF_32BE; +import sun.util.calendar.CalendarDate; +import sun.util.calendar.CalendarSystem; + import java.io.*; import java.math.BigInteger; import java.nio.charset.Charset; -import java.nio.charset.IllegalCharsetNameException; -import java.nio.charset.UnsupportedCharsetException; -import java.util.Date; +import java.util.*; import static java.nio.charset.StandardCharsets.*; @@ -58,24 +60,13 @@ import static java.nio.charset.StandardCharsets.*; * @author Hemma Prafullchandra */ public class DerValue { + /** The tag class types */ public static final byte TAG_UNIVERSAL = (byte)0x000; public static final byte TAG_APPLICATION = (byte)0x040; public static final byte TAG_CONTEXT = (byte)0x080; public static final byte TAG_PRIVATE = (byte)0x0c0; - /** The DER tag of the value; one of the tag_ constants. */ - public byte tag; - - protected DerInputBuffer buffer; - - /** - * The DER-encoded data of the value, never null - */ - public final DerInputStream data; - - private int length; - /* * The type starts at the first byte of the encoding, and * is one of these tag_* values. That may be all the type @@ -161,6 +152,26 @@ public class DerValue { */ public static final byte tag_SetOf = 0x31; + // This class is mostly immutable except that: + // + // 1. resetTag() modifies the tag + // 2. the data field is mutable + // + // For compatibility, data, getData() and resetTag() are preserved. + // A modern caller should call withTag() or data() instead. + // + // Also, some constructors have not cloned buffer, so the data could + // be modified externally. + + public /*final*/ byte tag; + final byte[] buffer; + private final int start; + final int end; + private final boolean allowBER; + + // Unsafe. Legacy. Never null. + final public DerInputStream data; + /* * These values are the high order bits for the other kinds of tags. */ @@ -207,18 +218,32 @@ public class DerValue { } /** - * Creates a PrintableString or UTF8string DER value from a string + * Creates a new DerValue by specifying all its fields. + */ + DerValue(byte tag, byte[] buffer, int start, int end, boolean allowBER) { + this.tag = tag; + this.buffer = buffer; + this.start = start; + this.end = end; + this.allowBER = allowBER; + this.data = data(); + } + + /** + * Creates a PrintableString or UTF8string DER value from a string. */ public DerValue(String value) { - boolean isPrintableString = true; + this(isPrintableString(value) ? tag_PrintableString : tag_UTF8String, + value); + } + + private static boolean isPrintableString(String value) { for (int i = 0; i < value.length(); i++) { if (!isPrintableStringChar(value.charAt(i))) { - isPrintableString = false; - break; + return false; } } - - data = init(isPrintableString ? tag_PrintableString : tag_UTF8String, value); + return true; } /** @@ -227,113 +252,180 @@ public class DerValue { * @param value the String object to use for the DER value */ public DerValue(byte stringTag, String value) { - data = init(stringTag, value); + this(stringTag, string2bytes(stringTag, value), false); } - // Creates a DerValue from a tag and some DER-encoded data w/ additional - // arg to control whether DER checks are enforced. - DerValue(byte tag, byte[] data, boolean allowBER) { - this.tag = tag; - buffer = new DerInputBuffer(data.clone(), allowBER); - length = data.length; - this.data = new DerInputStream(buffer); - this.data.mark(Integer.MAX_VALUE); + private static byte[] string2bytes(byte stringTag, String value) { + Charset charset = switch (stringTag) { + case tag_PrintableString, tag_IA5String, tag_GeneralString -> US_ASCII; + case tag_T61String -> ISO_8859_1; + case tag_BMPString -> UTF_16BE; + case tag_UTF8String -> UTF_8; + case tag_UniversalString -> Charset.forName("UTF_32BE"); + default -> throw new IllegalArgumentException("Unsupported DER string type"); + }; + return value.getBytes(charset); + } + + DerValue(byte tag, byte[] buffer, boolean allowBER) { + this(tag, buffer, 0, buffer.length, allowBER); } /** * Creates a DerValue from a tag and some DER-encoded data. * + * This is a public constructor. + * * @param tag the DER type tag - * @param data the DER-encoded data + * @param buffer the DER-encoded data */ - public DerValue(byte tag, byte[] data) { - this(tag, data, true); + public DerValue(byte tag, byte[] buffer) { + this(tag, buffer.clone(), true); } - /* - * package private + /** + * Parse an ASN.1/BER encoded datum. The entire encoding must hold exactly + * one datum, including its tag and length. + * + * This is a public constructor. */ - DerValue(DerInputBuffer in) throws IOException { + public DerValue(byte[] encoding) throws IOException { + this(encoding.clone(), 0, encoding.length, true, false); + } - // XXX must also parse BER-encoded constructed - // values such as sequences, sets... - tag = (byte)in.read(); - byte lenByte = (byte)in.read(); - length = DerInputStream.getLength(lenByte, in); - if (length == -1) { // indefinite length encoding found - DerInputBuffer inbuf = in.dup(); - inbuf = new DerInputBuffer( - DerIndefLenConverter.convertStream(inbuf, lenByte, tag), - in.allowBER); - if (tag != inbuf.read()) - throw new IOException - ("Indefinite length encoding not supported"); - length = DerInputStream.getDefiniteLength(inbuf); - buffer = inbuf.dup(); - buffer.truncate(length); - data = new DerInputStream(buffer); - // indefinite form is encoded by sending a length field with a - // length of 0. - i.e. [1000|0000]. - // the object is ended by sending two zero bytes. - in.skip(length + 2); - } else { + /** + * Parse an ASN.1 encoded datum from a byte array. + * + * @param buf the byte array containing the DER-encoded datum + * @param offset where the encoded datum starts inside {@code buf} + * @param len length of bytes to parse inside {@code buf} + * @param allowBER whether BER is allowed + * @param allowMore whether extra bytes are allowed after the encoded datum. + * If true, {@code len} can be bigger than the length of + * the encoded datum. + * + * @throws IOException if it's an invalid encoding or there are extra bytes + * after the encoded datum and {@code allowMore} is false. + */ + DerValue(byte[] buf, int offset, int len, boolean allowBER, boolean allowMore) + throws IOException { - buffer = in.dup(); - buffer.truncate(length); - data = new DerInputStream(buffer); - - in.skip(length); + if (len < 2) { + throw new IOException("Too short"); } - } + int pos = offset; + tag = buf[pos++]; + int lenByte = buf[pos++]; - // Get an ASN.1/DER encoded datum from a buffer w/ additional - // arg to control whether DER checks are enforced. - DerValue(byte[] buf, boolean allowBER) throws IOException { - data = init(true, new ByteArrayInputStream(buf), allowBER); - } + int length; + if (lenByte == (byte) 0x80) { // indefinite length + if (!allowBER) { + throw new IOException("Indefinite length encoding " + + "not supported with DER"); + } + if (!isConstructed()) { + throw new IOException("Indefinite length encoding " + + "not supported with non-constructed data"); + } - /** - * Get an ASN.1/DER encoded datum from a buffer. The - * entire buffer must hold exactly one datum, including - * its tag and length. - * - * @param buf buffer holding a single DER-encoded datum. - */ - public DerValue(byte[] buf) throws IOException { - this(buf, true); - } + // Reconstruct data source + buf = DerIndefLenConverter.convertStream( + new ByteArrayInputStream(buf, pos, len - (pos - offset)), tag); + offset = 0; + len = buf.length; + pos = 2; - // Get an ASN.1/DER encoded datum from part of a buffer w/ additional - // arg to control whether DER checks are enforced. - DerValue(byte[] buf, int offset, int len, boolean allowBER) - throws IOException { - data = init(true, new ByteArrayInputStream(buf, offset, len), allowBER); - } + if (tag != buf[0]) { + throw new IOException("Indefinite length encoding not supported"); + } + lenByte = buf[1]; + if (lenByte == (byte) 0x80) { + throw new IOException("Indefinite len conversion failed"); + } + } - /** - * Get an ASN.1/DER encoded datum from part of a buffer. - * That part of the buffer must hold exactly one datum, including - * its tag and length. - * - * @param buf the buffer - * @param offset start point of the single DER-encoded dataum - * @param len how many bytes are in the encoded datum - */ - public DerValue(byte[] buf, int offset, int len) throws IOException { - this(buf, offset, len, true); + if ((lenByte & 0x080) == 0x00) { // short form, 1 byte datum + length = lenByte; + } else { // long form + lenByte &= 0x07f; + if (lenByte > 4) { + throw new IOException("Invalid lenByte"); + } + if (len < 2 + lenByte) { + throw new IOException("Not enough length bytes"); + } + length = 0x0ff & buf[pos++]; + lenByte--; + if (length == 0 && !allowBER) { + // DER requires length value be encoded in minimum number of bytes + throw new IOException("Redundant length bytes found"); + } + while (lenByte-- > 0) { + length <<= 8; + length += 0x0ff & buf[pos++]; + } + if (length < 0) { + throw new IOException("Invalid length bytes"); + } else if (length <= 127 && !allowBER) { + throw new IOException("Should use short form for length"); + } + } + // pos is now at the beginning of the content + if (len - length < pos - offset) { + throw new EOFException("not enough content"); + } + if (len - length > pos - offset && !allowMore) { + throw new IOException("extra data at the end"); + } + this.buffer = buf; + this.start = pos; + this.end = pos + length; + this.allowBER = allowBER; + this.data = data(); } // Get an ASN1/DER encoded datum from an input stream w/ additional // arg to control whether DER checks are enforced. DerValue(InputStream in, boolean allowBER) throws IOException { - data = init(false, in, allowBER); + this.tag = (byte)in.read(); + int length = DerInputStream.getLength(in); + if (length == -1) { // indefinite length encoding found + if (!allowBER) { + throw new IOException("Indefinite length encoding " + + "not supported with DER"); + } + if (!isConstructed()) { + throw new IOException("Indefinite length encoding " + + "not supported with non-constructed data"); + } + this.buffer = DerIndefLenConverter.convertStream(in, tag); + ByteArrayInputStream bin = new ByteArrayInputStream(this.buffer); + if (tag != bin.read()) { + throw new IOException + ("Indefinite length encoding not supported"); + } + length = DerInputStream.getDefiniteLength(bin); + this.start = this.buffer.length - bin.available(); + this.end = this.start + length; + // position of in is undetermined. Precisely, it might be n-bytes + // after DerValue, and these n bytes are at the end of this.buffer + // after this.end. + } else { + this.buffer = IOUtils.readExactlyNBytes(in, length); + this.start = 0; + this.end = length; + // position of in is right after the DerValue + } + this.allowBER = allowBER; + this.data = data(); } /** * Get an ASN1/DER encoded datum from an input stream. The * stream may have additional data following the encoded datum. * In case of indefinite length encoded datum, the input stream - * must hold only one datum. + * must hold only one datum, i.e. all bytes in the stream might + * be consumed. Otherwise, only one DerValue will be consumed. * * @param in the input stream holding a single DER datum, * which may be followed by additional data @@ -342,89 +434,32 @@ public class DerValue { this(in, true); } - private DerInputStream init(byte stringTag, String value) { - final Charset charset; - - tag = stringTag; - - switch (stringTag) { - case tag_PrintableString: - case tag_IA5String: - case tag_GeneralString: - charset = US_ASCII; - break; - case tag_T61String: - charset = ISO_8859_1; - break; - case tag_BMPString: - charset = UTF_16BE; - break; - case tag_UTF8String: - charset = UTF_8; - break; - case tag_UniversalString: - charset = Charset.forName("UTF_32BE"); - break; - default: - throw new IllegalArgumentException("Unsupported DER string type"); - } - - byte[] buf = value.getBytes(charset); - length = buf.length; - buffer = new DerInputBuffer(buf, true); - DerInputStream result = new DerInputStream(buffer); - result.mark(Integer.MAX_VALUE); - return result; - } - - /* - * helper routine - */ - private DerInputStream init(boolean fullyBuffered, InputStream in, - boolean allowBER) throws IOException { - - tag = (byte)in.read(); - byte lenByte = (byte)in.read(); - length = DerInputStream.getLength(lenByte, in); - if (length == -1) { // indefinite length encoding found - in = new ByteArrayInputStream( - DerIndefLenConverter.convertStream(in, lenByte, tag)); - if (tag != in.read()) - throw new IOException - ("Indefinite length encoding not supported"); - length = DerInputStream.getDefiniteLength(in); - } - - if (fullyBuffered && in.available() != length) - throw new IOException("extra data given to DerValue constructor"); - - byte[] bytes = IOUtils.readExactlyNBytes(in, length); - - buffer = new DerInputBuffer(bytes, allowBER); - return new DerInputStream(buffer); - } - /** * Encode an ASN1/DER encoded datum onto a DER output stream. */ - public void encode(DerOutputStream out) - throws IOException { + public void encode(DerOutputStream out) throws IOException { out.write(tag); - out.putLength(length); - // XXX yeech, excess copies ... DerInputBuffer.write(OutStream) - if (length > 0) { - byte[] value = new byte[length]; - // always synchronized on data - synchronized (data) { - buffer.reset(); - if (buffer.read(value) != length) { - throw new IOException("short DER value read (encode)"); - } - out.write(value); - } - } + out.putLength(end - start); + out.write(buffer, start, end - start); + data.pos = data.end; // Compatibility. Reach end. } + /** + * Returns a new DerInputStream pointing at the start of this + * DerValue's content. + * + * @return the new DerInputStream value + */ + public final DerInputStream data() { + return new DerInputStream(buffer, start, end - start, allowBER); + } + + /** + * Returns the data field inside this class directly. + * + * Both this method and the {@link #data} field should be avoided. + * Consider using {@link #data()} instead. + */ public final DerInputStream getData() { return data; } @@ -442,14 +477,12 @@ public class DerValue { if (tag != tag_Boolean) { throw new IOException("DerValue.getBoolean, not a BOOLEAN " + tag); } - if (length != 1) { + if (end - start != 1) { throw new IOException("DerValue.getBoolean, invalid length " - + length); + + (end - start)); } - if (buffer.read() != 0) { - return true; - } - return false; + data.pos = data.end; // Compatibility. Reach end. + return buffer[start] != 0; } /** @@ -458,20 +491,11 @@ public class DerValue { * @return the OID held in this DER value */ public ObjectIdentifier getOID() throws IOException { - if (tag != tag_ObjectId) + if (tag != tag_ObjectId) { throw new IOException("DerValue.getOID, not an OID " + tag); - return new ObjectIdentifier(buffer); - } - - private byte[] append(byte[] a, byte[] b) { - if (a == null) - return b; - - byte[] ret = new byte[a.length + b.length]; - System.arraycopy(a, 0, ret, 0, a.length); - System.arraycopy(b, 0, ret, a.length, b.length); - - return ret; + } + data.pos = data.end; // Compatibility. Reach end. + return new ObjectIdentifier(Arrays.copyOfRange(buffer, start, end)); } /** @@ -487,29 +511,21 @@ public class DerValue { } // Note: do not attempt to call buffer.read(bytes) at all. There's a // known bug that it returns -1 instead of 0. - if (length == 0) { + if (end - start == 0) { return new byte[0]; } - // Only allocate the array if there are enough bytes available. - // This only works for ByteArrayInputStream. - // The assignment below ensures that buffer has the required type. - ByteArrayInputStream arrayInput = buffer; - if (arrayInput.available() < length) { - throw new IOException("short read on DerValue buffer"); - } - byte[] bytes = new byte[length]; - arrayInput.read(bytes); - - if (isConstructed()) { - DerInputStream in = new DerInputStream(bytes, 0, bytes.length, - buffer.allowBER); - bytes = null; - while (in.available() != 0) { - bytes = append(bytes, in.getOctetString()); + data.pos = data.end; // Compatibility. Reach end. + if (!isConstructed()) { + return Arrays.copyOfRange(buffer, start, end); + } else { + ByteArrayOutputStream bout = new ByteArrayOutputStream(); + DerInputStream dis = data(); + while (dis.available() > 0) { + bout.write(dis.getDerValue().getOctetString()); } + return bout.toByteArray(); } - return bytes; } /** @@ -518,10 +534,18 @@ public class DerValue { * @return the integer held in this DER value. */ public int getInteger() throws IOException { - if (tag != tag_Integer) { - throw new IOException("DerValue.getInteger, not an int " + tag); + return getIntegerInternal(tag_Integer); + } + + private int getIntegerInternal(byte expectedTag) throws IOException { + BigInteger result = getBigIntegerInternal(expectedTag, false); + if (result.compareTo(BigInteger.valueOf(Integer.MIN_VALUE)) < 0) { + throw new IOException("Integer below minimum valid value"); } - return buffer.getInteger(data.available()); + if (result.compareTo(BigInteger.valueOf(Integer.MAX_VALUE)) > 0) { + throw new IOException("Integer exceeds maximum valid value"); + } + return result.intValue(); } /** @@ -530,9 +554,7 @@ public class DerValue { * @return the integer held in this DER value as a BigInteger. */ public BigInteger getBigInteger() throws IOException { - if (tag != tag_Integer) - throw new IOException("DerValue.getBigInteger, not an int " + tag); - return buffer.getBigInteger(data.available(), false); + return getBigIntegerInternal(tag_Integer, false); } /** @@ -543,9 +565,30 @@ public class DerValue { * @return the integer held in this DER value as a BigInteger. */ public BigInteger getPositiveBigInteger() throws IOException { - if (tag != tag_Integer) - throw new IOException("DerValue.getBigInteger, not an int " + tag); - return buffer.getBigInteger(data.available(), true); + return getBigIntegerInternal(tag_Integer, true); + } + + /** + * Returns a BigInteger value + * + * @param makePositive whether to always return a positive value, + * irrespective of actual encoding + * @return the integer as a BigInteger. + */ + private BigInteger getBigIntegerInternal(byte expectedTag, boolean makePositive) throws IOException { + if (tag != expectedTag) { + throw new IOException("DerValue.getBigIntegerInternal, not expected " + tag); + } + if (end == start) { + throw new IOException("Invalid encoding: zero length Int value"); + } + data.pos = data.end; // Compatibility. Reach end. + if (!allowBER && (end - start >= 2 && (buffer[start] == 0) && (buffer[start + 1] >= 0))) { + throw new IOException("Invalid encoding: redundant leading 0s"); + } + return makePositive + ? new BigInteger(1, buffer, start, end - start) + : new BigInteger(buffer, start, end - start); } /** @@ -554,11 +597,7 @@ public class DerValue { * @return the integer held in this DER value. */ public int getEnumerated() throws IOException { - if (tag != tag_Enumerated) { - throw new IOException("DerValue.getEnumerated, incorrect tag: " - + tag); - } - return buffer.getInteger(data.available()); + return getIntegerInternal(tag_Enumerated); } /** @@ -567,11 +606,7 @@ public class DerValue { * @return the bit string held in this value */ public byte[] getBitString() throws IOException { - if (tag != tag_BitString) - throw new IOException( - "DerValue.getBitString, not a bit string " + tag); - - return buffer.getBitString(); + return getBitString(false); } /** @@ -580,11 +615,7 @@ public class DerValue { * @return a BitArray representing the bit string held in this value */ public BitArray getUnalignedBitString() throws IOException { - if (tag != tag_BitString) - throw new IOException( - "DerValue.getBitString, not a bit string " + tag); - - return buffer.getUnalignedBitString(); + return getUnalignedBitString(false); } /** @@ -593,22 +624,16 @@ public class DerValue { */ // TBD: Need encoder for UniversalString before it can be handled. public String getAsString() throws IOException { - if (tag == tag_UTF8String) - return getUTF8String(); - else if (tag == tag_PrintableString) - return getPrintableString(); - else if (tag == tag_T61String) - return getT61String(); - else if (tag == tag_IA5String) - return getIA5String(); - else if (tag == tag_UniversalString) - return getUniversalString(); - else if (tag == tag_BMPString) - return getBMPString(); - else if (tag == tag_GeneralString) - return getGeneralString(); - else - return null; + return switch (tag) { + case tag_UTF8String -> getUTF8String(); + case tag_PrintableString -> getPrintableString(); + case tag_T61String -> getT61String(); + case tag_IA5String -> getIA5String(); + case tag_UniversalString -> getUniversalString(); + case tag_BMPString -> getBMPString(); + case tag_GeneralString -> getGeneralString(); + default -> null; + }; } /** @@ -620,11 +645,26 @@ public class DerValue { */ public byte[] getBitString(boolean tagImplicit) throws IOException { if (!tagImplicit) { - if (tag != tag_BitString) + if (tag != tag_BitString) { throw new IOException("DerValue.getBitString, not a bit string " - + tag); + + tag); } - return buffer.getBitString(); + } + if (end == start) { + throw new IOException("Invalid encoding: zero length bit string"); + } + int numOfPadBits = buffer[start]; + if ((numOfPadBits < 0) || (numOfPadBits > 7)) { + throw new IOException("Invalid number of padding bits"); + } + // minus the first byte which indicates the number of padding bits + byte[] retval = Arrays.copyOfRange(buffer, start + 1, end); + if (numOfPadBits != 0) { + // get rid of the padding bits + retval[end - start - 2] &= (0xff << numOfPadBits); + } + data.pos = data.end; // Compatibility. Reach end. + return retval; } /** @@ -635,13 +675,27 @@ public class DerValue { * @return the bit string held in this value */ public BitArray getUnalignedBitString(boolean tagImplicit) - throws IOException { + throws IOException { if (!tagImplicit) { - if (tag != tag_BitString) + if (tag != tag_BitString) { throw new IOException("DerValue.getBitString, not a bit string " - + tag); + + tag); } - return buffer.getUnalignedBitString(); + } + if (end == start) { + throw new IOException("Invalid encoding: zero length bit string"); + } + data.pos = data.end; // Compatibility. Reach end. + int numOfPadBits = buffer[start]; + if ((numOfPadBits < 0) || (numOfPadBits > 7)) { + throw new IOException("Invalid number of padding bits"); + } + if (end == start + 1) { + return new BitArray(0); + } else { + return new BitArray(((end - start - 1) << 3) - numOfPadBits, + Arrays.copyOfRange(buffer, start + 1, end)); + } } /** @@ -649,12 +703,16 @@ public class DerValue { * DerInputStream associated with this object. */ public byte[] getDataBytes() throws IOException { - byte[] retVal = new byte[length]; - synchronized (data) { - data.reset(); - data.getBytes(retVal); + data.pos = data.end; // Compatibility. Reach end. + return Arrays.copyOfRange(buffer, start, end); + } + + private String readStringInternal(byte expectedTag, Charset cs) throws IOException { + if (tag != expectedTag) { + throw new IOException("Incorrect string type " + tag + " is not " + expectedTag); } - return retVal; + data.pos = data.end; // Compatibility. Reach end. + return new String(buffer, start, end - start, cs); } /** @@ -662,13 +720,8 @@ public class DerValue { * * @return the printable string held in this value */ - public String getPrintableString() - throws IOException { - if (tag != tag_PrintableString) - throw new IOException( - "DerValue.getPrintableString, not a string " + tag); - - return new String(getDataBytes(), US_ASCII); + public String getPrintableString() throws IOException { + return readStringInternal(tag_PrintableString, US_ASCII); } /** @@ -677,11 +730,7 @@ public class DerValue { * @return the teletype string held in this value */ public String getT61String() throws IOException { - if (tag != tag_T61String) - throw new IOException( - "DerValue.getT61String, not T61 " + tag); - - return new String(getDataBytes(), ISO_8859_1); + return readStringInternal(tag_T61String, ISO_8859_1); } /** @@ -690,11 +739,7 @@ public class DerValue { * @return the ASCII string held in this value */ public String getIA5String() throws IOException { - if (tag != tag_IA5String) - throw new IOException( - "DerValue.getIA5String, not IA5 " + tag); - - return new String(getDataBytes(), US_ASCII); + return readStringInternal(tag_IA5String, US_ASCII); } /** @@ -704,13 +749,8 @@ public class DerValue { * this value */ public String getBMPString() throws IOException { - if (tag != tag_BMPString) - throw new IOException( - "DerValue.getBMPString, not BMP " + tag); - - // BMPString is the same as Unicode in big endian, unmarked - // format. - return new String(getDataBytes(), UTF_16BE); + // BMPString is the same as Unicode in big endian, unmarked format. + return readStringInternal(tag_BMPString, UTF_16BE); } /** @@ -720,11 +760,7 @@ public class DerValue { * this value */ public String getUTF8String() throws IOException { - if (tag != tag_UTF8String) - throw new IOException( - "DerValue.getUTF8String, not UTF-8 " + tag); - - return new String(getDataBytes(), UTF_8); + return readStringInternal(tag_UTF8String, UTF_8); } /** @@ -734,30 +770,221 @@ public class DerValue { * this value */ public String getGeneralString() throws IOException { - if (tag != tag_GeneralString) - throw new IOException( - "DerValue.getGeneralString, not GeneralString " + tag); - - return new String(getDataBytes(), US_ASCII); + return readStringInternal(tag_GeneralString, US_ASCII); } /** * Returns the ASN.1 UNIVERSAL (UTF-32) STRING value as a Java String. * * @return a string corresponding to the encoded UniversalString held in - * this value or an empty string if UTF_32BE is not a supported character - * set. + * this value */ public String getUniversalString() throws IOException { - if (tag != tag_UniversalString) - throw new IOException( - "DerValue.getUniversalString, not UniversalString " + tag); - try { - Charset cset = Charset.forName("UTF_32BE"); - return new String(getDataBytes(), cset); - } catch (IllegalCharsetNameException | UnsupportedCharsetException e) { - return ""; + return readStringInternal(tag_UniversalString, new UTF_32BE()); + } + + /** + * Reads the ASN.1 NULL value + */ + public void getNull() throws IOException { + if (tag != tag_Null) { + throw new IOException("DerValue.getNull, not NULL: " + tag); } + if (end != start) { + throw new IOException("NULL should contain no data"); + } + } + + /** + * Private helper routine to extract time from the der value. + * @param generalized true if Generalized Time is to be read, false + * if UTC Time is to be read. + */ + private Date getTimeInternal(boolean generalized) throws IOException { + + /* + * UTC time encoded as ASCII chars: + * YYMMDDhhmmZ + * YYMMDDhhmmssZ + * YYMMDDhhmm+hhmm + * YYMMDDhhmm-hhmm + * YYMMDDhhmmss+hhmm + * YYMMDDhhmmss-hhmm + * UTC Time is broken in storing only two digits of year. + * If YY < 50, we assume 20YY; + * if YY >= 50, we assume 19YY, as per RFC 5280. + * + * Generalized time has a four-digit year and allows any + * precision specified in ISO 8601. However, for our purposes, + * we will only allow the same format as UTC time, except that + * fractional seconds (millisecond precision) are supported. + */ + + int year, month, day, hour, minute, second, millis; + String type; + int pos = start; + int len = end - start; + + if (generalized) { + type = "Generalized"; + year = 1000 * toDigit(buffer[pos++], type); + year += 100 * toDigit(buffer[pos++], type); + year += 10 * toDigit(buffer[pos++], type); + year += toDigit(buffer[pos++], type); + len -= 2; // For the two extra YY + } else { + type = "UTC"; + year = 10 * toDigit(buffer[pos++], type); + year += toDigit(buffer[pos++], type); + + if (year < 50) { // origin 2000 + year += 2000; + } else { + year += 1900; // origin 1900 + } + } + + month = 10 * toDigit(buffer[pos++], type); + month += toDigit(buffer[pos++], type); + + day = 10 * toDigit(buffer[pos++], type); + day += toDigit(buffer[pos++], type); + + hour = 10 * toDigit(buffer[pos++], type); + hour += toDigit(buffer[pos++], type); + + minute = 10 * toDigit(buffer[pos++], type); + minute += toDigit(buffer[pos++], type); + + len -= 10; // YYMMDDhhmm + + /* + * We allow for non-encoded seconds, even though the + * IETF-PKIX specification says that the seconds should + * always be encoded even if it is zero. + */ + + millis = 0; + if (len > 2) { + second = 10 * toDigit(buffer[pos++], type); + second += toDigit(buffer[pos++], type); + len -= 2; + // handle fractional seconds (if present) + if (generalized && (buffer[pos] == '.' || buffer[pos] == ',')) { + len --; + if (len == 0) { + throw new IOException("Parse " + type + + " time, empty fractional part"); + } + pos++; + int precision = 0; + while (buffer[pos] != 'Z' && + buffer[pos] != '+' && + buffer[pos] != '-') { + // Validate all digits in the fractional part but + // store millisecond precision only + int thisDigit = toDigit(buffer[pos], type); + precision++; + len--; + if (len == 0) { + throw new IOException("Parse " + type + + " time, invalid fractional part"); + } + pos++; + switch (precision) { + case 1 -> millis += 100 * thisDigit; + case 2 -> millis += 10 * thisDigit; + case 3 -> millis += thisDigit; + } + } + if (precision == 0) { + throw new IOException("Parse " + type + + " time, empty fractional part"); + } + } + } else + second = 0; + + if (month == 0 || day == 0 + || month > 12 || day > 31 + || hour >= 24 || minute >= 60 || second >= 60) { + throw new IOException("Parse " + type + " time, invalid format"); + } + + /* + * Generalized time can theoretically allow any precision, + * but we're not supporting that. + */ + CalendarSystem gcal = CalendarSystem.getGregorianCalendar(); + CalendarDate date = gcal.newCalendarDate(null); // no time zone + date.setDate(year, month, day); + date.setTimeOfDay(hour, minute, second, millis); + long time = gcal.getTime(date); + + /* + * Finally, "Z" or "+hhmm" or "-hhmm" ... offsets change hhmm + */ + if (! (len == 1 || len == 5)) { + throw new IOException("Parse " + type + " time, invalid offset"); + } + + int hr, min; + + switch (buffer[pos++]) { + case '+': + if (len != 5) { + throw new IOException("Parse " + type + " time, invalid offset"); + } + hr = 10 * toDigit(buffer[pos++], type); + hr += toDigit(buffer[pos++], type); + min = 10 * toDigit(buffer[pos++], type); + min += toDigit(buffer[pos++], type); + + if (hr >= 24 || min >= 60) { + throw new IOException("Parse " + type + " time, +hhmm"); + } + + time -= ((hr * 60) + min) * 60 * 1000; + break; + + case '-': + if (len != 5) { + throw new IOException("Parse " + type + " time, invalid offset"); + } + hr = 10 * toDigit(buffer[pos++], type); + hr += toDigit(buffer[pos++], type); + min = 10 * toDigit(buffer[pos++], type); + min += toDigit(buffer[pos++], type); + + if (hr >= 24 || min >= 60) { + throw new IOException("Parse " + type + " time, -hhmm"); + } + + time += ((hr * 60) + min) * 60 * 1000; + break; + + case 'Z': + if (len != 1) { + throw new IOException("Parse " + type + " time, invalid format"); + } + break; + + default: + throw new IOException("Parse " + type + " time, garbage offset"); + } + return new Date(time); + } + + /** + * Converts byte (represented as a char) to int. + * @throws IOException if integer is not a valid digit in the specified + * radix (10) + */ + private static int toDigit(byte b, String type) throws IOException { + if (b < '0' || b > '9') { + throw new IOException("Parse " + type + " time, invalid format"); + } + return b - '0'; } /** @@ -769,7 +996,11 @@ public class DerValue { if (tag != tag_UtcTime) { throw new IOException("DerValue.getUTCTime, not a UtcTime: " + tag); } - return buffer.getUTCTime(data.available()); + if (end - start < 11 || end - start > 17) + throw new IOException("DER UTC Time length error"); + + data.pos = data.end; // Compatibility. Reach end. + return getTimeInternal(false); } /** @@ -782,7 +1013,11 @@ public class DerValue { throw new IOException( "DerValue.getGeneralizedTime, not a GeneralizedTime: " + tag); } - return buffer.getGeneralizedTime(data.available()); + if (end - start < 13) + throw new IOException("DER Generalized Time length error"); + + data.pos = data.end; // Compatibility. Reach end. + return getTimeInternal(true); } /** @@ -804,28 +1039,10 @@ public class DerValue { if (tag != other.tag) { return false; } - if (data == other.data) { + if (buffer == other.buffer && start == other.start && end == other.end) { return true; } - - // make sure the order of lock is always consistent to avoid a deadlock - return (System.identityHashCode(this.data) - > System.identityHashCode(other.data)) ? - doEquals(this, other): - doEquals(other, this); - } - - /** - * Helper for public method equals() - */ - private static boolean doEquals(DerValue d1, DerValue d2) { - synchronized (d1.data) { - synchronized (d2.data) { - d1.data.reset(); - d2.data.reset(); - return d1.buffer.equals(d2.buffer); - } - } + return Arrays.equals(buffer, start, end, other.buffer, other.start, other.end); } /** @@ -835,23 +1052,8 @@ public class DerValue { */ @Override public String toString() { - try { - - String str = getAsString(); - if (str != null) - return "\"" + str + "\""; - if (tag == tag_Null) - return "[DerValue, null]"; - if (tag == tag_ObjectId) - return "OID." + getOID(); - - // integers - else - return "[DerValue, tag = " + tag - + ", length = " + length + "]"; - } catch (IOException e) { - throw new IllegalArgumentException("misformatted DER value"); - } + return String.format("DerValue(%02x, %s, %d, %d)", + 0xff & tag, buffer, start, end); } /** @@ -862,9 +1064,8 @@ public class DerValue { */ public byte[] toByteArray() throws IOException { DerOutputStream out = new DerOutputStream(); - encode(out); - data.reset(); + data.pos = data.start; // encode go last, should go back return out.toByteArray(); } @@ -876,7 +1077,7 @@ public class DerValue { */ public DerInputStream toDerInputStream() throws IOException { if (tag == tag_Sequence || tag == tag_Set) - return new DerInputStream(buffer); + return data; throw new IOException("toDerInputStream rejects tag type " + tag); } @@ -884,7 +1085,7 @@ public class DerValue { * Get the length of the encoded value. */ public int length() { - return length; + return end - start; } /** @@ -950,12 +1151,26 @@ public class DerValue { * Set the tag of the attribute. Commonly used to reset the * tag value used for IMPLICIT encodings. * + * This method should be avoided, consider using withTag() instead. + * * @param tag the tag value */ public void resetTag(byte tag) { this.tag = tag; } + /** + * Returns a new DerValue with a different tag. This method is used + * to convert a DerValue decoded from an IMPLICIT encoding to its real + * tag. The content is not checked against the tag in this method. + * + * @param newTag the new tag + * @return a new DerValue + */ + public DerValue withTag(byte newTag) { + return new DerValue(newTag, buffer, start, end, allowBER); + } + /** * Returns a hashcode for this DerValue. * @@ -963,6 +1178,30 @@ public class DerValue { */ @Override public int hashCode() { - return toString().hashCode(); + int result = tag; + for (int i = start; i < end; i++) { + result = 31 * result + buffer[i]; + } + return result; + } + + /** + * Reads the sub-values in a constructed DerValue. + * + * @param expectedTag the expected tag, or zero if we don't check. + * This is useful when this DerValue is IMPLICIT. + * @param startLen estimated number of sub-values + * @return the sub-values in an array + */ + DerValue[] subs(byte expectedTag, int startLen) throws IOException { + if (expectedTag != 0 && expectedTag != tag) { + throw new IOException("Not the correct tag"); + } + List result = new ArrayList<>(startLen); + DerInputStream dis = data(); + while (dis.available() > 0) { + result.add(dis.getDerValue()); + } + return result.toArray(new DerValue[0]); } } diff --git a/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java b/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java index 37cb3825be0..9c7bfafa139 100644 --- a/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java +++ b/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java @@ -138,12 +138,13 @@ public final class ObjectIdentifier implements Serializable { componentLen = comp.length; } - // Check the estimated size before it is too later. + // Check the estimated size before it is too late. The check + // will be performed again in init(). checkOidSize(componentLen); - init(comp, componentLen); } else { checkOidSize(encoding.length); + check(encoding); } } @@ -244,64 +245,20 @@ public final class ObjectIdentifier implements Serializable { } } - /** - * Constructor, from an ASN.1 encoded input stream. - * Validity check NOT included. - * The encoding of the ID in the stream uses "DER", a BER/1 subset. - * In this case, that means a triple { typeId, length, data }. - * - *

NOTE: When an exception is thrown, the - * input stream has not been returned to its "initial" state. - * - * @param in DER-encoded data holding an object ID - * @exception IOException indicates a decoding error - */ - public ObjectIdentifier(DerInputStream in) throws IOException { - byte type_id; - int bufferEnd; - - /* - * Object IDs are a "universal" type, and their tag needs only - * one byte of encoding. Verify that the tag of this datum - * is that of an object ID. - * - * Then get and check the length of the ID's encoding. We set - * up so that we can use in.available() to check for the end of - * this value in the data stream. - */ - type_id = (byte)in.getByte(); - if (type_id != DerValue.tag_ObjectId) - throw new IOException ( - "ObjectIdentifier() -- data isn't an object ID" - + " (tag = " + type_id + ")" - ); - - int len = in.getDefiniteLength(); - checkOidSize(len); - if (len > in.available()) { - throw new IOException("ObjectIdentifier length exceeds " + - "data available. Length: " + len + ", Available: " + - in.available()); - } - - encoding = new byte[len]; - in.getBytes(encoding); + // Called by DerValue::getOID. No need to clone input. + ObjectIdentifier(byte[] encoding) throws IOException { + checkOidSize(encoding.length); check(encoding); + this.encoding = encoding; } - /* - * Constructor, from the rest of a DER input buffer; - * the tag and length have been removed/verified - * Validity check NOT included. + /** + * Reads an ObjectIdentifier from a DerInputStream. + * @param in the input stream + * @throws IOException if there is an encoding error */ - ObjectIdentifier(DerInputBuffer buf) throws IOException { - DerInputStream in = new DerInputStream(buf); - int len = in.available(); - checkOidSize(len); - - encoding = new byte[len]; - in.getBytes(encoding); - check(encoding); + public ObjectIdentifier(DerInputStream in) throws IOException { + encoding = in.getDerValue().getOID().encoding; } private void init(int[] components, int length) throws IOException { diff --git a/test/jdk/sun/security/util/DerInputBuffer/DerInputBufferEqualsHashCode.java b/test/jdk/sun/security/util/DerInputBuffer/DerInputBufferEqualsHashCode.java deleted file mode 100644 index 2d040923a4f..00000000000 --- a/test/jdk/sun/security/util/DerInputBuffer/DerInputBufferEqualsHashCode.java +++ /dev/null @@ -1,111 +0,0 @@ -/* - * Copyright (c) 1999, Oracle and/or its affiliates. All rights reserved. - * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. - * - * This code is free software; you can redistribute it and/or modify it - * under the terms of the GNU General Public License version 2 only, as - * published by the Free Software Foundation. - * - * This code is distributed in the hope that it will be useful, but WITHOUT - * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or - * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License - * version 2 for more details (a copy is included in the LICENSE file that - * accompanied this code). - * - * You should have received a copy of the GNU General Public License version - * 2 along with this work; if not, write to the Free Software Foundation, - * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. - * - * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA - * or visit www.oracle.com if you need additional information or have any - * questions. - */ - -/* - * @test - * @author Gary Ellison - * @bug 4170635 - * @summary Verify equals()/hashCode() contract honored - * @modules java.base/sun.security.util:+open - * java.base/sun.security.x509 - * @run main/othervm/policy=Allow.policy DerInputBufferEqualsHashCode - */ - -import java.io.*; -import sun.security.util.*; -import sun.security.x509.*; -import java.lang.reflect.*; - - -public class DerInputBufferEqualsHashCode { - - public static void main(String[] args) throws Exception { - - String name1 = "CN=eve s. dropper"; - DerOutputStream deros; - byte[] ba; - // encode - X500Name dn1 = new X500Name(name1); - - deros = new DerOutputStream(); - dn1.encode(deros); - ba = deros.toByteArray(); - - GetDIBConstructor a = new GetDIBConstructor(); - java.security.AccessController.doPrivileged(a); - Constructor c = a.getCons(); - - Object[] objs = new Object[1]; - objs[0] = ba; - - Object db1 = null, db2 = null; - try { - db1 = c.newInstance(objs); - db2 = c.newInstance(objs); - } catch (Exception e) { - System.out.println("Caught unexpected exception " + e); - throw e; - } - - if ( (db1.equals(db2)) == (db1.hashCode()==db2.hashCode()) ) - System.out.println("PASSED"); - else - throw new Exception("FAILED equals()/hashCode() contract"); - - } -} - - -class GetDIBConstructor implements java.security.PrivilegedExceptionAction { - - private Class dibClass = null; - private Constructor dibCons = null; - - public Object run() throws Exception { - try { - dibClass = Class.forName("sun.security.util.DerInputBuffer"); - Constructor[] cons = dibClass.getDeclaredConstructors(); - - int i; - for (i = 0; i < cons.length; i++) { - Class [] parms = cons[i].getParameterTypes(); - if (parms.length == 1) { - if (parms[0].getName().equalsIgnoreCase("[B")) { - cons[i].setAccessible(true); - break; - } - } - } - dibCons = cons[i]; - } catch (Exception e) { - System.out.println("Caught unexpected exception " + e); - throw e; - } - return dibCons; - } - - public Constructor getCons(){ - return dibCons; - } - -} diff --git a/test/jdk/sun/security/util/DerValue/DeepOctets.java b/test/jdk/sun/security/util/DerValue/DeepOctets.java new file mode 100644 index 00000000000..cceaa739768 --- /dev/null +++ b/test/jdk/sun/security/util/DerValue/DeepOctets.java @@ -0,0 +1,58 @@ +/* + * Copyright (c) 2020, Oracle and/or its affiliates. All rights reserved. + * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. + * + * This code is free software; you can redistribute it and/or modify it + * under the terms of the GNU General Public License version 2 only, as + * published by the Free Software Foundation. + * + * This code is distributed in the hope that it will be useful, but WITHOUT + * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or + * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License + * version 2 for more details (a copy is included in the LICENSE file that + * accompanied this code). + * + * You should have received a copy of the GNU General Public License version + * 2 along with this work; if not, write to the Free Software Foundation, + * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. + * + * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA + * or visit www.oracle.com if you need additional information or have any + * questions. + */ + +/* + * @test + * @bug 8249783 + * @summary read very deep constructed OCTET STRING + * @modules java.base/sun.security.util + * @library /test/lib + */ + +import jdk.test.lib.Asserts; +import jdk.test.lib.Utils; +import sun.security.util.DerInputStream; +import sun.security.util.DerValue; + +import java.io.IOException; + +public class DeepOctets { + + public static void main(String[] args) throws Exception { + byte[] input = { + 0x24, 24, + 0x24, 8, 4, 2, 'a', 'b', 4, 2, 'c', 'd', + 0x24, 8, 4, 2, 'e', 'f', 4, 2, 'g', 'h', + 4, 2, 'i', 'j' + }; + + // DerValue::getOctetString supports constructed BER + byte[] s = new DerValue(input).getOctetString(); + Asserts.assertEQ(new String(s), "abcdefghij"); + + // DerInputStream::getOctetString does not + Utils.runAndCheckException( + () -> new DerInputStream(input).getOctetString(), + IOException.class); + } +} diff --git a/test/jdk/sun/security/util/DerValue/Indefinite.java b/test/jdk/sun/security/util/DerValue/Indefinite.java index c5064315a4f..17270c6642f 100644 --- a/test/jdk/sun/security/util/DerValue/Indefinite.java +++ b/test/jdk/sun/security/util/DerValue/Indefinite.java @@ -1,5 +1,5 @@ /* - * Copyright (c) 2008, Oracle and/or its affiliates. All rights reserved. + * Copyright (c) 2008, 2020, Oracle and/or its affiliates. All rights reserved. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * * This code is free software; you can redistribute it and/or modify it @@ -23,23 +23,78 @@ /* * @test - * @bug 6731685 + * @bug 6731685 8249783 * @summary CertificateFactory.generateCertificates throws IOException on PKCS7 cert chain * @modules java.base/sun.security.util + * @library /test/lib */ import java.io.*; +import java.lang.reflect.Field; +import java.util.Arrays; + +import jdk.test.lib.Asserts; +import jdk.test.lib.Utils; +import jdk.test.lib.hexdump.HexPrinter; import sun.security.util.*; public class Indefinite { public static void main(String[] args) throws Exception { - byte[] input = { - // An OCTET-STRING in 2 parts - 4, (byte)0x80, 4, 2, 'a', 'b', 4, 2, 'c', 'd', 0, 0, - // Garbage follows, may be falsely recognized as EOC - 0, 0, 0, 0 - }; - new DerValue(new ByteArrayInputStream(input)); + + // Indefinite length with trailing bytes + test(true, new byte[] { + // An OCTET-STRING in 2 parts + 0x24, (byte) 0x80, 4, 2, 'a', 'b', 4, 2, 'c', 'd', 0, 0, + // Garbage follows, may be falsely recognized as EOC + 0, 0, 0, 0, + // and more + 7, 8, 9, 10}); + + // Definite length with trailing bytes + test(false, new byte[] { + 4, 4, 'a', 'b', 'c', 'd', + 0, 0, 0, 0, 7, 8, 9, 10 }); + } + + static void test(boolean indefinite, byte[] input) throws Exception { + + // 1. parse stream + InputStream ins = new ByteArrayInputStream(input); + DerValue v = new DerValue(ins); + Asserts.assertEQ(new String(v.getOctetString()), "abcd"); + + if (indefinite) { + // Trailing bytes might be consumed by the conversion but can + // be found in DerValue "after end". + Field buffer = DerValue.class.getDeclaredField("buffer"); + Field end = DerValue.class.getDeclaredField("end"); + buffer.setAccessible(true); + end.setAccessible(true); + int bufferLen = ((byte[])buffer.get(v)).length; + int endPos = end.getInt(v); + // Data "after end": bufferLen - endPos + // Data remained in stream: ins.available()x` + Asserts.assertEQ(bufferLen - endPos + ins.available(), 8); + } else { + // Trailing bytes remain in the stream for definite length + Asserts.assertEQ(ins.available(), 8); + } + + // 2. parse DerInputStream + DerInputStream ds = new DerInputStream(input); + Asserts.assertEQ(new String(ds.getDerValue().getOctetString()), "abcd"); + Asserts.assertEQ(ds.available(), 8); + Asserts.assertTrue(Arrays.equals(ds.toByteArray(), + new byte[]{0,0,0,0,7,8,9,10})); + + // 3. Parse full byte array + Utils.runAndCheckException(() -> new DerValue(input), + e -> Asserts.assertTrue(e instanceof IOException + && e.getMessage().equals("extra data at the end"))); + + // 4. Parse exact byte array + Asserts.assertEQ(new String(new DerValue(Arrays.copyOf(input, input.length - 8)) + .getOctetString()), "abcd"); } }