net/cert/internal/parse_certificate.cc - Issue 1383873002: Add a function for parsing an RFC 5280 Extension.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/cert/internal/parse_certificate.cc

Issue 1383873002: Add a function for parsing an RFC 5280 Extension. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: rebase Created 5 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/cert/internal/parse_certificate.cc

diff --git a/net/cert/internal/parse_certificate.cc b/net/cert/internal/parse_certificate.cc

index 9535459bb8ad27ccb39b0807e24d210d4c5212ff..8de3a336548a2d080bbd03cb77d82e0371c6d762 100644

--- a/net/cert/internal/parse_certificate.cc

+++ b/net/cert/internal/parse_certificate.cc

@@ -353,4 +353,56 @@ bool ParseTbsCertificate(const der::Input& tbs_tlv, ParsedTbsCertificate* out) {

return true;

}

+// From RFC 5280:

+//

+// Extension ::= SEQUENCE {

+// extnID OBJECT IDENTIFIER,

+// critical BOOLEAN DEFAULT FALSE,

+// extnValue OCTET STRING

+// -- contains the DER encoding of an ASN.1 value

+// -- corresponding to the extension type identified

+// -- by extnID

+// }

+bool ParseExtension(const der::Input& extension_tlv, ParsedExtension* out) {

+ der::Parser parser(extension_tlv);

+ // Extension ::= SEQUENCE {

+ der::Parser extension_parser;

+ if (!parser.ReadSequence(&extension_parser))

+ return false;

+ // extnID OBJECT IDENTIFIER,

+ if (!extension_parser.ReadTag(der::kOid, &out->oid))

+ return false;

+ // critical BOOLEAN DEFAULT FALSE,

+ out->critical = false;

+ bool has_critical;

+ der::Input critical;

+ if (!extension_parser.ReadOptionalTag(der::kBool, &critical, &has_critical))

+ return false;

+ if (has_critical) {

+ if (!der::ParseBool(critical, &out->critical))

+ return false;

+ if (!out->critical)

+ return false; // DER-encoding requires DEFAULT values be omitted.

+ }

+ // extnValue OCTET STRING

+ if (!extension_parser.ReadTag(der::kOctetString, &out->value))

+ return false;

+ // By definition the input was a single Extension sequence, so there shouldn't

+ // be unconsumed data.

+ if (parser.HasMore())

+ return false;

+ // The Extension type does not have an extension point (everything goes in

+ // extnValue).

+ if (extension_parser.HasMore())

+ return false;

davidben 2015/11/04 17:56:12 Super nitpicky nit: I'd swap the order of this che

eroman 2015/11/07 00:35:35 Done.

+ return true;

} // namespace net

« net/cert/internal/parse_certificate.h ('K') | « net/cert/internal/parse_certificate.h ('k') | net/cert/internal/parse_certificate_unittest.cc » ('j') | no next file with comments »