Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(143)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: net/cert/internal/parse_certificate.cc

Issue 1383873002: Add a function for parsing an RFC 5280 Extension. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Fix U-A-F in tests Created 5 years, 1 month ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « net/cert/internal/parse_certificate.h ('k') | net/cert/internal/parse_certificate_unittest.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: net/cert/internal/parse_certificate.cc
diff --git a/net/cert/internal/parse_certificate.cc b/net/cert/internal/parse_certificate.cc
index 9535459bb8ad27ccb39b0807e24d210d4c5212ff..d2bc9804e11484e9ad5970e18538e5d3735a6879 100644
--- a/net/cert/internal/parse_certificate.cc
+++ b/net/cert/internal/parse_certificate.cc
@@ -353,4 +353,56 @@ bool ParseTbsCertificate(const der::Input& tbs_tlv, ParsedTbsCertificate* out) {
return true;
}
+// From RFC 5280:
+//
+// Extension ::= SEQUENCE {
+// extnID OBJECT IDENTIFIER,
+// critical BOOLEAN DEFAULT FALSE,
+// extnValue OCTET STRING
+// -- contains the DER encoding of an ASN.1 value
+// -- corresponding to the extension type identified
+// -- by extnID
+// }
+bool ParseExtension(const der::Input& extension_tlv, ParsedExtension* out) {
+ der::Parser parser(extension_tlv);
+
+ // Extension ::= SEQUENCE {
+ der::Parser extension_parser;
+ if (!parser.ReadSequence(&extension_parser))
+ return false;
+
+ // extnID OBJECT IDENTIFIER,
+ if (!extension_parser.ReadTag(der::kOid, &out->oid))
+ return false;
+
+ // critical BOOLEAN DEFAULT FALSE,
+ out->critical = false;
+ bool has_critical;
+ der::Input critical;
+ if (!extension_parser.ReadOptionalTag(der::kBool, &critical, &has_critical))
+ return false;
+ if (has_critical) {
+ if (!der::ParseBool(critical, &out->critical))
+ return false;
+ if (!out->critical)
+ return false; // DER-encoding requires DEFAULT values be omitted.
+ }
+
+ // extnValue OCTET STRING
+ if (!extension_parser.ReadTag(der::kOctetString, &out->value))
+ return false;
+
+ // The Extension type does not have an extension point (everything goes in
+ // extnValue).
+ if (extension_parser.HasMore())
+ return false;
+
+ // By definition the input was a single Extension sequence, so there shouldn't
+ // be unconsumed data.
+ if (parser.HasMore())
+ return false;
+
+ return true;
+}
+
} // namespace net
« no previous file with comments | « net/cert/internal/parse_certificate.h ('k') | net/cert/internal/parse_certificate_unittest.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698