X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/84aacf34eae6543be9f0280b2015385f91e5c2c6..b54c578e17e9bcbd74aa30ea75e25e955b9a6205:/OSX/utilities/SecSCTUtils.c?ds=inline

diff --git a/OSX/utilities/SecSCTUtils.c b/OSX/utilities/SecSCTUtils.c
new file mode 100644
index 00000000..ed8a38b2
--- /dev/null
+++ b/OSX/utilities/SecSCTUtils.c
@@ -0,0 +1,65 @@
+//
+//  SecSCTUtils.c
+//  utilities
+/*
+ * Copyright (c) 2015 Apple Inc. All Rights Reserved.
+ *
+ * @APPLE_LICENSE_HEADER_START@
+ *
+ * This file contains Original Code and/or Modifications of Original Code
+ * as defined in and that are subject to the Apple Public Source License
+ * Version 2.0 (the 'License'). You may not use this file except in
+ * compliance with the License. Please obtain a copy of the License at
+ * http://www.opensource.apple.com/apsl/ and read it before using this
+ * file.
+ *
+ * The Original Code and all software distributed under the License are
+ * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
+ * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
+ * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
+ * Please see the License for the specific language governing rights and
+ * limitations under the License.
+ *
+ * @APPLE_LICENSE_HEADER_END@
+ */
+
+#include <AssertMacros.h>
+#include <utilities/SecCFWrappers.h>
+#include "SecSCTUtils.h"
+
+static size_t SSLDecodeSize(const uint8_t *p)
+{
+    return (p[0]<<8 | p[1]);
+}
+
+CFArrayRef SecCreateSignedCertificateTimestampsArrayFromSerializedSCTList(const uint8_t *p, size_t listLen)
+{
+    size_t encodedListLen;
+    CFMutableArrayRef sctArray = CFArrayCreateMutable(kCFAllocatorDefault, 0, &kCFTypeArrayCallBacks);
+    require_quiet(sctArray, out);
+
+    require(listLen > 2 , out);
+    encodedListLen = SSLDecodeSize(p); p+=2; listLen-=2;
+
+    require(encodedListLen==listLen, out);
+
+    while (listLen > 0)
+    {
+        size_t itemLen;
+        require(listLen >= 2, out);
+        itemLen = SSLDecodeSize(p); p += 2; listLen-=2;
+        require(itemLen <= listLen, out);
+        CFDataRef sctData = CFDataCreate(kCFAllocatorDefault, p, itemLen);
+        p += itemLen; listLen -= itemLen;
+        require(sctData, out);
+        CFArrayAppendValue(sctArray, sctData);
+        CFReleaseSafe(sctData);
+    }
+
+    return sctArray;
+
+out:
+    CFReleaseSafe(sctArray);
+    return NULL;
+}