add timezone-offset support to GeneralizedTime

this also fixes a bug in the length generation
2017-03-30 22:48:42 +02:00 · 2017-03-30 22:48:42 +02:00 · 83780d4764
commit 83780d4764
parent 59b4026fa7
4 changed files with 32 additions and 6 deletions
--- a/src/headers/tomcrypt_pk.h
+++ b/src/headers/tomcrypt_pk.h
@ -672,7 +672,10 @@ typedef struct {
            hh, /* hour */
            mm, /* minute */
            ss, /* second */
-            fs; /* fractional seconds */
+            fs, /* fractional seconds */
+            off_dir, /* timezone offset direction 0 == +, 1 == - */
+            off_hh, /* timezone offset hours */
+            off_mm; /* timezone offset minutes */
 } ltc_generalizedtime;

 int der_encode_generalizedtime(ltc_generalizedtime *gtime,
--- a/src/pk/asn1/der/generalizedtime/der_decode_generalizedtime.c
+++ b/src/pk/asn1/der/generalizedtime/der_decode_generalizedtime.c
@ -110,7 +110,7 @@ YYYYMMDDhhmmss.[0-9]*Z
       return CRYPT_OK;
    } else if (buf[x] == '.') {
       x++;
-       while (buf[x] != 'Z') {
+       while (buf[x] >= '0' && buf[x] <= '9') {
          unsigned fs = out->fs;
          if (x >= sizeof(buf)) return CRYPT_INVALID_PACKET;
          out->fs *= 10;
@ -118,6 +118,15 @@ YYYYMMDDhhmmss.[0-9]*Z
          if (fs < out->fs) return CRYPT_OVERFLOW;
          x++;
       }
+    }
+
+    /* now is it Z, +, - */
+    if (buf[x] == 'Z') {
+       return CRYPT_OK;
+    } else if (buf[x] == '+' || buf[x] == '-') {
+       out->off_dir = (buf[x++] == '+') ? 0 : 1;
+       DECODE_V(out->off_hh, 24);
+       DECODE_V(out->off_mm, 60);
       return CRYPT_OK;
    } else {
       return CRYPT_INVALID_PACKET;
--- a/src/pk/asn1/der/generalizedtime/der_encode_generalizedtime.c
+++ b/src/pk/asn1/der/generalizedtime/der_encode_generalizedtime.c
@ -86,7 +86,14 @@ int der_encode_generalizedtime(ltc_generalizedtime *gtime,
       }
       out[x++] = der_ia5_char_encode(baseten[gtime->fs % 10]);
    }
-    out[x++] = der_ia5_char_encode('Z');
+
+    if (gtime->off_mm || gtime->off_hh) {
+       out[x++] = der_ia5_char_encode(gtime->off_dir ? '-' : '+');
+       STORE_V(gtime->off_hh);
+       STORE_V(gtime->off_mm);
+    } else {
+       out[x++] = der_ia5_char_encode('Z');
+    }

    /* store length */
    out[1] = (unsigned char)(x - 2);
--- a/src/pk/asn1/der/generalizedtime/der_length_generalizedtime.c
+++ b/src/pk/asn1/der/generalizedtime/der_length_generalizedtime.c
@ -31,15 +31,22 @@ int der_length_generalizedtime(ltc_generalizedtime *gtime, unsigned long *outlen

   if (gtime->fs == 0) {
      /* we encode as YYYYMMDDhhmmssZ */
-      *outlen = 2 + 15;
+      *outlen = 2 + 14 + 1;
   } else {
-      /* we encode as YYYYMMDDhhmmss.fsZ */
-      unsigned long len = 2 + 17;
+      unsigned long len = 2 + 14 + 1;
      unsigned fs = gtime->fs;
      do {
         fs /= 10;
         len++;
      } while(fs != 0);
+      if (gtime->off_hh == 0 && gtime->off_mm == 0) {
+         /* we encode as YYYYMMDDhhmmss.fsZ */
+         len += 1;
+      }
+      else {
+         /* we encode as YYYYMMDDhhmmss.fs{+|-}hh'mm' */
+         len += 5;
+      }
      *outlen = len;
   }