commit f2029899b2c1dcf3e3120876794da088f42ad351
author David Benjamin <davidben@google.com> Sat Jun 25 23:26:24 2022 -0400
committer Boringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com> Thu Jul 07 16:02:46 2022 +0000
tree 6b35107b296911e593c05176601f539aca4061bf
parent 695b2e1d566c4612714b23e8f1e283926379a8c3

Tidy up ASN1_GENERALIZEDTIME_adj and ASN1_UTCTIME_adj.

ASN1_STRING_set saves having to manually manage the ASN1_STRING's
buffer. Also size that buffer correctly and align the free_s vs tmps
mismatch.

We can also assume OPENSSL_gmtime writes to the passed-in struct tm.
Every other caller already assumes this, and both POSIX (gmtime_r) and C
(gmtime_s) agree this is valid.

Finally, the cleanup logic is much simpler if we do all the time stuff
before handling the maybe-object-reuse bits.

Change-Id: I25befc8fa93a1a60246c6abcea6e5d58ee563b48
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/53227
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: David Benjamin <davidben@google.com>

crypto/asn1/a_utctm.c

diff --git a/crypto/asn1/a_utctm.c b/crypto/asn1/a_utctm.c
index ac548dd..ac6b598 100644
--- a/crypto/asn1/a_utctm.c
+++ b/crypto/asn1/a_utctm.c
@@ -105,59 +105,43 @@
 
 ASN1_UTCTIME *ASN1_UTCTIME_adj(ASN1_UTCTIME *s, time_t t, int offset_day,
                                long offset_sec) {
-  char *p;
-  struct tm *ts;
   struct tm data;
-  size_t len = 20;
-  int free_s = 0;
-
-  if (s == NULL) {
-    free_s = 1;
-    s = ASN1_UTCTIME_new();
-  }
-  if (s == NULL) {
-    goto err;
-  }
-
-  ts = OPENSSL_gmtime(&t, &data);
-  if (ts == NULL) {
-    goto err;
+  if (!OPENSSL_gmtime(&t, &data)) {
+    return NULL;
   }
 
   if (offset_day || offset_sec) {
-    if (!OPENSSL_gmtime_adj(ts, offset_day, offset_sec)) {
-      goto err;
+    if (!OPENSSL_gmtime_adj(&data, offset_day, offset_sec)) {
+      return NULL;
     }
   }
 
-  if ((ts->tm_year < 50) || (ts->tm_year >= 150)) {
-    goto err;
+  if (data.tm_year < 50 || data.tm_year >= 150) {
+    return NULL;
   }
 
-  p = (char *)s->data;
-  if ((p == NULL) || ((size_t)s->length < len)) {
-    p = OPENSSL_malloc(len);
-    if (p == NULL) {
-      OPENSSL_PUT_ERROR(ASN1, ERR_R_MALLOC_FAILURE);
-      goto err;
+  char buf[14];
+  BIO_snprintf(buf, sizeof(buf), "%02d%02d%02d%02d%02d%02dZ",
+               data.tm_year % 100, data.tm_mon + 1, data.tm_mday, data.tm_hour,
+               data.tm_min, data.tm_sec);
+
+  int free_s = 0;
+  if (s == NULL) {
+    free_s = 1;
+    s = ASN1_UTCTIME_new();
+    if (s == NULL) {
+      return NULL;
     }
-    if (s->data != NULL) {
-      OPENSSL_free(s->data);
-    }
-    s->data = (unsigned char *)p;
   }
 
-  BIO_snprintf(p, len, "%02d%02d%02d%02d%02d%02dZ", ts->tm_year % 100,
-               ts->tm_mon + 1, ts->tm_mday, ts->tm_hour, ts->tm_min,
-               ts->tm_sec);
-  s->length = strlen(p);
+  if (!ASN1_STRING_set(s, buf, strlen(buf))) {
+    if (free_s) {
+      ASN1_UTCTIME_free(s);
+    }
+    return NULL;
+  }
   s->type = V_ASN1_UTCTIME;
   return s;
-err:
-  if (free_s) {
-    ASN1_UTCTIME_free(s);
-  }
-  return NULL;
 }
 
 int ASN1_UTCTIME_cmp_time_t(const ASN1_UTCTIME *s, time_t t) {