Skip to content

JonathanWilbur/asn1.rs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

188 Commits

.vscode

.vscode

 
 

asn1

asn1

 
 

cms

cms

 
 

config

config

 
 

dirstudio-api-types

dirstudio-api-types

 
 

dirstudio

dirstudio

 
 

doc

doc

 
 

gser

gser

 
 

idm

idm

 
 

ldap-schema-parsers

ldap-schema-parsers

 
 

ldap

ldap

 
 

mock-tcpstream

mock-tcpstream

 
 

nsap-address

nsap-address

 
 

osi-net

osi-net

 
 

rfc4523-parsing

rfc4523-parsing

 
 

rose-idm

rose-idm

 
 

rose-stream

rose-stream

 
 

rose

rose

 
 

teletex

teletex

 
 

tpkt

tpkt

 
 

x500-client

x500-client

 
 

x500

x500

 
 

x500dsa

x500dsa

 
 

x690

x690

 
 

x691

x691

 
 

.editorconfig

.editorconfig

 
 

.gitignore

.gitignore

 
 

Cargo.lock

Cargo.lock

 
 

Cargo.toml

Cargo.toml

 
 

README.md

README.md

 
 

request.tsq

request.tsq

 
 

response.tsr

response.tsr

 
 

tsp.config.toml

tsp.config.toml

 
 

Repository files navigation

Wildboar Rust ASN.1 Libraries

This monorepo is a sort of "incubator" for ASN.1 / ITU / cryptography-related projects in Rust. It started off as just an ASN.1-related monorepo, but I started using it in other libraries to see if it was adequate for its intended purpose.

This is very much a work in progress. There is almost no documentation now, but it will be very well documented once it is all stabilized.

Decisions to make

  • Should BIT STRING just be a simple array of bytes and a length field, like in Go?
    • I think this should be fine. This would even work well for PER and JER.
    • One difference between X.690 and X.691 encoding is that PER encodes the number of bits, whereas BER, CER, and DER encode the number of padding bits.
      • I think the latter is computationally simpler and more secure.
        • It is easy to validate. If you encode the length of bits, it could misalign with the number of bytes.
    • This would also probably be more performant, since large bit strings are used in cryptographic files.
  • Should chrono be used at all? It seems like dates should just be represented as integers.
  • Is it even possible to have a uniform interface between codecs?
    • I highly doubt it. Even if this is possible, I need to develop all of the codecs to discover what this interface even would be.

How to handle EXPLICIT encoding?

This is a tricky problem, because you have to know the length of the inner value before you can encode the outer value's length field. We don't want to create a new buffer, write the inner TLV tuple to that, then copy it all to another buffer.

...Unless you use indeterminate length encoding.

However, indeterminate length encoding is much higher overhead for lots of small values, and would almost certainly lead to very serious compatibility issues. (The Go ASN.1 library only supports DER, for example.)

What if you wrote out the encoded values backwards?

This would fix this problem, but the output would be sure to be buggy, and it would not be reversible. You could not directly use the output of an encoder as input to a decoder and get the original value.

Also, reversing is still going to do a byte-for-byte copy.

This problem is much worse than I realized. Say you have a value of type:

[1] EXPLICIT [2] EXPLICIT [3] EXPLICIT [4] EXPLICIT BOOLEAN

The innermost BOOLEAN is going to get:

  1. Encoded, then...
  2. Copied into the value bytes of [4], which gets...
  3. Copied into the value bytes of [3], which gets...
  4. Copied into the value bytes of [2], which gets...
  5. Copied into the value bytes of [1]

For a deeply structured type, it is plausible that large strings could get copied over and over again.

I think the solution would be to produce some sort of intermediary encoding, like this:

enum X690Encoding {
    IMPLICIT(Vec<u8>), // the value bytes
    EXPLICIT(X690Element), // the inner TLV tuple
    constructed(Vec<X690Element>) // an array of inner TLV tuples
}

struct X690Element {
    tag_class: TagClass;
    tag_number: TagNumber;
    value: X690Encoding;
}

Let's look at this data structure:

Person ::= SEQUENCE {
    name        UTF8String,
    age         INTEGER,
    married     BOOLEAN
}

bob Person ::= { name "Bob McGobb", age 43, married FALSE }

Under this scheme, the values of the above data structure would get encoded separately, each producing intermediate values:

let name = X690Element{
    tag_class: TagClass::UNIVERSAL,
    tag_number: 12,
    value: X690Encoding::IMPLICIT(vec![ 'B', 'o', 'b', ' ', 'M', 'c', 'G', 'o', 'b', 'b' ]),
};
let age = X690Element{
    tag_class: TagClass::UNIVERSAL,
    tag_number: 2,
    value: X690Encoding::IMPLICIT(vec![ 43 ]),
};
let married = X690Element{
    tag_class: TagClass::UNIVERSAL,
    tag_number: 1,
    value: X690Encoding::IMPLICIT(vec![ 0xFF ]),
};
let bob = X690Element{
    tag_class: TagClass::UNIVERSAL,
    tag_number: 16,
    value: X690Encoding::constructed(vec![ name, age, married ]),
};

To encode bob, we need to know the length of bob. What is the length of bob? Well, it's the sum of lengths of all of the constituent elements. What is the length of name? It is the length needed to encode the tag and number, plus the length of IMPLICIT encoding. If it were EXPLICIT, this procedure would just recurse into the inner element.

This is a much more performant alternative, because we don't repeatedly copy inner values. In fact, they can be written to a buffer just once, since .write_vectored() might be available.

There is still one small problem, and I say "small" because the performance hit would probably be almost unnoticeable, even to profiling: calculating the length bytes is a recursive procedure, and with the algorithm as it is, the length has to be recalculated for every single element every time it is used in the calculation of the length of another element. It would be much more performant if we could do a "single-sweep." For that reason, we will add one more field to the X690Element: last_calculated_length of type Option<usize>. This will be set once an element and all of its subordinates' length are calculated, so that every subordinate, recursively, does not have to have its length recalculated.

Finally, there are some circumstances where users will want to simply relay raw bytes that are known to be a valid BER-encoded (or CER / DER) element without first decoding them. If we were to decode a raw sequence of bytes into such an element, we would, at minimum, have to parse the tag number, determine the length, and copy the value bytes of the element into a new vector. The copy, in particular, could be computationally expensive. Instead, we will add a fourth variant of X690Encoding, called already_encoded, which contains a vector of bytes. When this variant is used, the tag class and number are ignored, the length need not be calculated, and the raw bytes it contains are simply concatenated to the end of the encoding.

There is one more performance enhancement we'll use: sometimes, for the sake of memory resourcefulness, you do not want to load the entire contents of the encoded value into memory. Fortunately, since the only thing we need to do with the already_encoded variant is read it, we can abstract it out our need to use the Vec<u8> and just use a Read type instead, so that encoded values can be streamed from the filesystem, say, 10000 bytes at a time, so that memory won't be consumed by a single gigantic ASN.1 element.

Finally, we may want to save the name of a value, if there is one, so we add a name field. This just helps with debugging: if a particular element is the cause of some error, we can display it's name, such as subjectPublicKeyInfo.

The final element looks like this:

enum X690Encoding {
    IMPLICIT(Vec<u8>), // the value bytes
    EXPLICIT(X690Element), // the inner TLV tuple
    constructed(Vec<X690Element>) // an array of inner TLV tuples
    already_encoded(Read), // the already-encoded TLV
}

struct X690Element {
    pub name: Option<String>;
    pub tag_class: TagClass;
    pub tag_number: TagNumber;
    pub value: X690Encoding;
    last_calculated_length: Option<usize>; // Maybe not pub
}

Encoding Instructions

Abstract ASN.1 values are translated to their X690Element equivalents. The "root" element that needs encoding is passed into ber_encode(), cer_encode() or der_encode(). The input is immediately passed into x690_cst() which returns a single X690Element, which may use the constructed variant of value to contain substituent X690Elements. This CST is passed into ber_encode_cst().

TODO: Do I need to record which encoding was used to encode a given value? I don't think so.

TODO: Do I need to record which nodes have been visited to avoid infinite loops?

Attributes

Eventually, we will define attribute macros that can be used to control how structured types are encoded.

Usage should look something like this:

struct AlgorithmIdentifier {
    #[asn1_component(UNIVERSAL, 6)]
    pub algorithm: OBJECT_IDENTIFIER;
    pub parameters: OPTIONAL<ANY>;
}

Which would translate to this:

struct AlgorithmIdentifier {
    pub const _tag_class_for_algorithm: TagClass = UNIVERSAL;
    pub const _tag_number_for_algorithm: TagNumber = 6;
    pub algorithm: OBJECT_IDENTIFIER;
    pub parameters: OPTIONAL<ANY>;
}

Actually, that might not work well, because some component types are CHOICE types, which can have multiple tags. You also need to handle EXPLICIT, IMPLICIT, and sometimes constraints too.

https://doc.rust-lang.org/reference/procedural-macros.html#attribute-macros

Encoding Control Notation

Encoding controls are passed in as parameters to the *er_encode() functions, which control how these elements are encoded.

Future libraries

TODO

  • x690
    • Rename things sensibly.
    • Print asn1parse output (OTOH, do lots of printing / display functions belong in this library?)
    • Remove unused things
  • Is there some way to abstract ROSE out of X.500, so it can be recycled among projects?
  • Just an idea: if you are using trait type parameters, such as X690Element to constrain ROSE-related values to X690Elements instead of ASN1Value, couldn't you implement an IDM layer that accepts only BER and DER encoding for impl ROSEReceiver<X690Element>?
  • Shouldn't the API implement a lazy technique? As, just decode PDUs as they are needed? In other words, pull, rather than eagerly parse and enqueue.
  • ROSE client
    • StartTLS
    • Implicit TLS
    • Generate and track InvokeIds
  • X.500
    • Move modules under modules or asn1
    • Defaults for structs (how did I miss this?)
      • I think that was because, if any field is required, this can't be defined.
    • Validators
    • .inner_data() for OPTIONALLY-PROTECTED types.
    • Iterator for ListResult and SearchResult
    • Preserve bytes of SIGNED
    • Validate the size and length constraints in an ORAddress
  • Some sort of write() and flush() interface for encoding indeterminate length form.
    • This needs to "trickle down" into the IDM layer.

Licensing

The following licenses:

  • Mozilla Public License (MPL)
  • GNU Public License (GPL)

Forbid usage within most packages in this library.

In particular:

Package License Issue
smartstring MPL bodil/smartstring#44

ASN.1 Decoder Macro

I don't plan on implementing this now, because I think this will involve creating a whole ASN.1 parser in Rust, which will be needed to parse the TokenStream of a function-like macro. But the API would look like:

def_asn1_ber_codecs!({
  algorithm AlgorithmIdentifier,
  parameters ANY DEFINED BY algorithm OPTIONAL,
  ...
})

// Compiles to something like:

pub const _rctl1_components_for_AlgorithmIdentifier: &[ComponentSpec; 2] = &[
    ComponentSpec::new(
        "algorithm",
        false,
        TagSelector::tag((TagClass::UNIVERSAL, 6)),
        None,
        None,
    ),
    ComponentSpec::new("parameters", true, TagSelector::any, None, None),
];

pub const _rctl2_components_for_AlgorithmIdentifier: &[ComponentSpec; 0] = &[];

pub const _eal_components_for_AlgorithmIdentifier: &[ComponentSpec; 0] = &[];

pub fn _decode_AlgorithmIdentifier(el: &X690Element) -> ASN1Result<AlgorithmIdentifier> {
    |el_: &X690Element| -> ASN1Result<AlgorithmIdentifier> {
        let elements = match el_.value.borrow() {
            X690Encoding::Constructed(children) => children,
            _ => return Err(ASN1Error::new(ASN1ErrorCode::invalid_construction)),
        };
        let el_refs_ = elements.iter().collect::<Vec<&X690Element>>();
        let (_components, _unrecognized) = _parse_sequence(
            el_refs_.as_slice(),
            _rctl1_components_for_AlgorithmIdentifier,
            _eal_components_for_AlgorithmIdentifier,
            _rctl2_components_for_AlgorithmIdentifier,
        )?;
        let algorithm = ber_decode_object_identifier(_components.get("algorithm").unwrap())?;
        let parameters: OPTIONAL<X690Element> = match _components.get("parameters") {
            Some(c_) => Some(x690_identity(c_)?),
            _ => None,
        };
        Ok(AlgorithmIdentifier {
            algorithm,
            parameters,
            _unrecognized,
        })
    }(&el)
}

pub fn _encode_AlgorithmIdentifier(value_: &AlgorithmIdentifier) -> ASN1Result<X690Element> {
    |value_: &AlgorithmIdentifier| -> ASN1Result<X690Element> {
        let mut components_: Vec<X690Element> = Vec::with_capacity(12);
        components_.push(ber_encode_object_identifier(&value_.algorithm)?);
        if let Some(v_) = &value_.parameters {
            components_.push(x690_identity(&v_)?);
        }
        Ok(X690Element::new(
            TagClass::UNIVERSAL,
            ASN1_UNIVERSAL_TAG_NUMBER_SEQUENCE,
            Arc::new(X690Encoding::Constructed(
                [components_, value_._unrecognized.clone()].concat(),
            )),
        ))
    }(&value_)
}

About

Incubator for the BEST Rust ASN.1, X.500, etc. libraries

Topics

ldap asn1 x500

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages