feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Validate asn date based on string length

Browse Source
This commit is contained in:
Anthony Hu
2025-03-27 20:35:20 -04:00
parent 1c56a2674a
commit 67d2abfa86
1 changed files with 20 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
wolfcrypt/src/asn.c
View File

@ -15028,6 +15028,26 @@ static WC_INLINE int GetTime_Long(long* value, const byte* date, int* idx)
int ExtractDate(const unsigned char* date, unsigned char format, int ExtractDate(const unsigned char* date, unsigned char format,
struct tm* certTime, int* idx) struct tm* certTime, int* idx)
{ {
int i = *idx;
/* Validate date string length based on format */
if (format == ASN_UTC_TIME) {
/* UTCTime format requires YYMMDDHHMMSSZ.
* subtract 1 to exclude null terminator. */
if (XSTRLEN((const char*)date + i) < (ASN_UTC_TIME_SIZE - 1)) {
return ASN_PARSE_E;
}
}
else if (format == ASN_GENERALIZED_TIME) {
/* GeneralizedTime format requires YYYYMMDDHHMMSSZ.
* subtract 1 to exclude null terminator. */
if (XSTRLEN((const char*)date + i) < (ASN_GENERALIZED_TIME_SIZE - 1)) {
return ASN_PARSE_E;
}
} else {
return ASN_PARSE_E;
}
XMEMSET(certTime, 0, sizeof(struct tm)); XMEMSET(certTime, 0, sizeof(struct tm));
/* Get the first two bytes of the year (century) */ /* Get the first two bytes of the year (century) */