Google Git
Sign in
boringssl/boringssl.git/5ba305643f55d37a3e45e8388a36d50c1b2d4ff5^!/./include/openssl
commit
5ba305643f55d37a3e45e8388a36d50c1b2d4ff5
[log] [tgz]
author
Doug Hogan <doug@acyclic.org>
Mon Feb 02 00:40:21 2015 -0800
committer
Adam Langley <agl@chromium.org>
Tue Feb 03 11:03:59 2015 -0800
tree
5d8d113006269bcfdcfd44d455fa5d52c612bffb
parent
2683af70e73f116e14db2bca6290fa4a010a2ee4 [diff]
Don't accept tag number 31 (long form identifier octets) in CBB_add_asn1.

Tag number 31 is a long form tag that requires multiple octets.  It
cannot be handled by adding a single uint8.  Changed CBB_add_asn1()
to return 0 when it is passed in the extension for tag 31.

Change-Id: Ia33936d4f174d1a7176eb11da0b5c7370efb9416

diff --git a/include/openssl/bytestring.h b/include/openssl/bytestring.h
index bfbdd03..e10621a 100644
--- a/include/openssl/bytestring.h
+++ b/include/openssl/bytestring.h

@@ -287,7 +287,9 @@
 
 /* CBB_add_asn sets |*out_contents| to a |CBB| into which the contents of an
  * ASN.1 object can be written. The |tag| argument will be used as the tag for
- * the object. It returns one on success or zero on error. */
+ * the object. Passing in |tag| number 31 will return in an error since only
+ * single octet identifiers are supported. It returns one on success or zero
+ * on error. */
 OPENSSL_EXPORT int CBB_add_asn1(CBB *cbb, CBB *out_contents, uint8_t tag);
 
 /* CBB_add_bytes appends |len| bytes from |data| to |cbb|. It returns one on