/* $OpenBSD: as.c,v 1.5 2019/11/27 17:18:24 deraadt Exp $ */ /* * Copyright (c) 2019 Kristaps Dzonsons * * Permission to use, copy, modify, and distribute this software for any * purpose with or without fee is hereby granted, provided that the above * copyright notice and this permission notice appear in all copies. * * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ #include #include #include #include #include #include #include #include #include #include "extern.h" /* * Parse a uint32_t AS identifier from an ASN1_INTEGER. * This relies on the specification for ASN1_INTEGER itself, which is * essentially a series of big-endian bytes in the unsigned case. * All we do here is check if the number is negative then start copying * over bytes. * This is necessary because ASN1_INTEGER_get() on a 32-bit machine * (e.g., i386) will fail for AS numbers of UINT32_MAX. */ int as_id_parse(const ASN1_INTEGER *v, uint32_t *out) { int i; uint32_t res = 0; /* If the negative bit is set, this is wrong. */ if (v->type & V_ASN1_NEG) return 0; /* Too many bytes for us to consider. */ if ((size_t)v->length > sizeof(uint32_t)) return 0; /* Stored as big-endian bytes. */ for (i = 0; i < v->length; i++) { res <<= 8; res |= v->data[i]; } *out = res; return 1; } /* * Given a newly-parsed AS number or range "a", make sure that "a" does * not overlap with any other numbers or ranges in the "as" array. * This is defined by RFC 3779 section 3.2.3.4. * Returns zero on failure, non-zero on success. */ int as_check_overlap(const struct cert_as *a, const char *fn, const struct cert_as *as, size_t asz) { size_t i; /* We can have only one inheritence statement. */ if (asz && (a->type == CERT_AS_INHERIT || as[0].type == CERT_AS_INHERIT)) { warnx("%s: RFC 3779 section 3.2.3.3: " "cannot have inheritence and multiple ASnum or " "multiple inheritence", fn); return 0; } /* Now check for overlaps between singletons/ranges. */ for (i = 0; i < asz; i++) switch (as[i].type) { case CERT_AS_ID: switch (a->type) { case CERT_AS_ID: if (a->id != as[i].id) break; warnx("%s: RFC 3779 section 3.2.3.4: " "cannot have overlapping ASnum", fn); return 0; case CERT_AS_RANGE: if (as->range.min > as[i].id || as->range.max < as[i].id) break; warnx("%s: RFC 3779 section 3.2.3.4: " "cannot have overlapping ASnum", fn); return 0; default: abort(); } break; case CERT_AS_RANGE: switch (a->type) { case CERT_AS_ID: if (as[i].range.min > a->id || as[i].range.max < a->id) break; warnx("%s: RFC 3779 section 3.2.3.4: " "cannot have overlapping ASnum", fn); return 0; case CERT_AS_RANGE: if (a->range.max < as[i].range.min || a->range.min > as[i].range.max) break; warnx("%s: RFC 3779 section 3.2.3.4: " "cannot have overlapping ASnum", fn); return 0; default: abort(); } break; default: abort(); } return 1; } /* * See if a given AS range (which may be the same number, in the case of * singleton AS identifiers) is covered by the AS numbers or ranges * specified in the "as" array. * Return <0 if there is no cover, 0 if we're inheriting, >0 if there is. */ int as_check_covered(uint32_t min, uint32_t max, const struct cert_as *as, size_t asz) { size_t i; uint32_t amin, amax; for (i = 0; i < asz; i++) { if (as[i].type == CERT_AS_INHERIT) return 0; amin = as[i].type == CERT_AS_RANGE ? as[i].range.min : as[i].id; amax = as[i].type == CERT_AS_RANGE? as[i].range.max : as[i].id; if (min >= amin && max <= amax) return 1; } return -1; }