2 Unix SMB/CIFS implementation.
4 Copyright (C) Andrew Tridgell 2001
6 This program is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
21 #include "../lib/util/asn1.h"
23 /* allocate an asn1 structure */
24 struct asn1_data *asn1_init(TALLOC_CTX *mem_ctx)
26 struct asn1_data *ret = talloc_zero(mem_ctx, struct asn1_data);
28 DEBUG(0,("asn1_init failed! out of memory\n"));
33 /* free an asn1 structure */
34 void asn1_free(struct asn1_data *data)
39 /* write to the ASN1 buffer, advancing the buffer pointer */
40 bool asn1_write(struct asn1_data *data, const void *p, int len)
42 if (data->has_error) return false;
43 if (data->length < data->ofs+len) {
45 newp = talloc_realloc(data, data->data, uint8_t, data->ofs+len);
47 data->has_error = true;
51 data->length = data->ofs+len;
53 memcpy(data->data + data->ofs, p, len);
58 /* useful fn for writing a uint8_t */
59 bool asn1_write_uint8(struct asn1_data *data, uint8_t v)
61 return asn1_write(data, &v, 1);
64 /* push a tag onto the asn1 data buffer. Used for nested structures */
65 bool asn1_push_tag(struct asn1_data *data, uint8_t tag)
67 struct nesting *nesting;
69 asn1_write_uint8(data, tag);
70 nesting = talloc(data, struct nesting);
72 data->has_error = true;
76 nesting->start = data->ofs;
77 nesting->next = data->nesting;
78 data->nesting = nesting;
79 return asn1_write_uint8(data, 0xff);
83 bool asn1_pop_tag(struct asn1_data *data)
85 struct nesting *nesting;
88 nesting = data->nesting;
91 data->has_error = true;
94 len = data->ofs - (nesting->start+1);
95 /* yes, this is ugly. We don't know in advance how many bytes the length
96 of a tag will take, so we assumed 1 byte. If we were wrong then we
97 need to correct our mistake */
99 data->data[nesting->start] = 0x84;
100 if (!asn1_write_uint8(data, 0)) return false;
101 if (!asn1_write_uint8(data, 0)) return false;
102 if (!asn1_write_uint8(data, 0)) return false;
103 if (!asn1_write_uint8(data, 0)) return false;
104 memmove(data->data+nesting->start+5, data->data+nesting->start+1, len);
105 data->data[nesting->start+1] = (len>>24) & 0xFF;
106 data->data[nesting->start+2] = (len>>16) & 0xFF;
107 data->data[nesting->start+3] = (len>>8) & 0xFF;
108 data->data[nesting->start+4] = len&0xff;
109 } else if (len > 0xFFFF) {
110 data->data[nesting->start] = 0x83;
111 if (!asn1_write_uint8(data, 0)) return false;
112 if (!asn1_write_uint8(data, 0)) return false;
113 if (!asn1_write_uint8(data, 0)) return false;
114 memmove(data->data+nesting->start+4, data->data+nesting->start+1, len);
115 data->data[nesting->start+1] = (len>>16) & 0xFF;
116 data->data[nesting->start+2] = (len>>8) & 0xFF;
117 data->data[nesting->start+3] = len&0xff;
118 } else if (len > 255) {
119 data->data[nesting->start] = 0x82;
120 if (!asn1_write_uint8(data, 0)) return false;
121 if (!asn1_write_uint8(data, 0)) return false;
122 memmove(data->data+nesting->start+3, data->data+nesting->start+1, len);
123 data->data[nesting->start+1] = len>>8;
124 data->data[nesting->start+2] = len&0xff;
125 } else if (len > 127) {
126 data->data[nesting->start] = 0x81;
127 if (!asn1_write_uint8(data, 0)) return false;
128 memmove(data->data+nesting->start+2, data->data+nesting->start+1, len);
129 data->data[nesting->start+1] = len;
131 data->data[nesting->start] = len;
134 data->nesting = nesting->next;
135 talloc_free(nesting);
139 /* "i" is the one's complement representation, as is the normal result of an
140 * implicit signed->unsigned conversion */
142 static bool push_int_bigendian(struct asn1_data *data, unsigned int i, bool negative)
144 uint8_t lowest = i & 0xFF;
148 if (!push_int_bigendian(data, i, negative))
151 if (data->nesting->start+1 == data->ofs) {
153 /* We did not write anything yet, looking at the highest
157 /* Don't write leading 0xff's */
161 if ((lowest & 0x80) == 0) {
162 /* The only exception for a leading 0xff is if
163 * the highest bit is 0, which would indicate
164 * a positive value */
165 if (!asn1_write_uint8(data, 0xff))
170 /* The highest bit of a positive integer is 1,
171 * this would indicate a negative number. Push
172 * a 0 to indicate a positive one */
173 if (!asn1_write_uint8(data, 0))
179 return asn1_write_uint8(data, lowest);
182 /* write an Integer without the tag framing. Needed for example for the LDAP
183 * Abandon Operation */
185 bool asn1_write_implicit_Integer(struct asn1_data *data, int i)
188 /* -1 is special as it consists of all-0xff bytes. In
189 push_int_bigendian this is the only case that is not
190 properly handled, as all 0xff bytes would be handled as
191 leading ones to be ignored. */
192 return asn1_write_uint8(data, 0xff);
194 return push_int_bigendian(data, i, i<0);
199 /* write an integer */
200 bool asn1_write_Integer(struct asn1_data *data, int i)
202 if (!asn1_push_tag(data, ASN1_INTEGER)) return false;
203 if (!asn1_write_implicit_Integer(data, i)) return false;
204 return asn1_pop_tag(data);
207 /* write a BIT STRING */
208 bool asn1_write_BitString(struct asn1_data *data, const void *p, size_t length, uint8_t padding)
210 if (!asn1_push_tag(data, ASN1_BIT_STRING)) return false;
211 if (!asn1_write_uint8(data, padding)) return false;
212 if (!asn1_write(data, p, length)) return false;
213 return asn1_pop_tag(data);
216 bool ber_write_OID_String(TALLOC_CTX *mem_ctx, DATA_BLOB *blob, const char *OID)
219 const char *p = (const char *)OID;
223 if (!isdigit(*p)) return false;
224 v = strtoul(p, &newp, 10);
225 if (newp[0] != '.') return false;
228 if (!isdigit(*p)) return false;
229 v2 = strtoul(p, &newp, 10);
230 if (newp[0] != '.') return false;
233 /*the ber representation can't use more space then the string one */
234 *blob = data_blob_talloc(mem_ctx, NULL, strlen(OID));
235 if (!blob->data) return false;
237 blob->data[0] = 40*v + v2;
241 if (!isdigit(*p)) return false;
242 v = strtoul(p, &newp, 10);
243 if (newp[0] == '.') {
245 /* check for empty last component */
246 if (!*p) return false;
247 } else if (newp[0] == '\0') {
250 data_blob_free(blob);
253 if (v >= (1<<28)) blob->data[i++] = (0x80 | ((v>>28)&0x7f));
254 if (v >= (1<<21)) blob->data[i++] = (0x80 | ((v>>21)&0x7f));
255 if (v >= (1<<14)) blob->data[i++] = (0x80 | ((v>>14)&0x7f));
256 if (v >= (1<<7)) blob->data[i++] = (0x80 | ((v>>7)&0x7f));
257 blob->data[i++] = (v&0x7f);
266 * Serialize partial OID string.
267 * Partial OIDs are in the form:
271 bool ber_write_partial_OID_String(TALLOC_CTX *mem_ctx, DATA_BLOB *blob, const char *partial_oid)
273 TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
274 char *oid = talloc_strdup(tmp_ctx, partial_oid);
277 /* truncate partial part so ber_write_OID_String() works */
278 p = strchr(oid, ':');
284 if (!ber_write_OID_String(mem_ctx, blob, oid)) {
285 talloc_free(tmp_ctx);
289 /* Add partially encoded sub-identifier */
291 DATA_BLOB tmp_blob = strhex_to_data_blob(tmp_ctx, p);
292 if (!data_blob_append(mem_ctx, blob, tmp_blob.data,
294 talloc_free(tmp_ctx);
299 talloc_free(tmp_ctx);
304 /* write an object ID to a ASN1 buffer */
305 bool asn1_write_OID(struct asn1_data *data, const char *OID)
309 if (!asn1_push_tag(data, ASN1_OID)) return false;
311 if (!ber_write_OID_String(NULL, &blob, OID)) {
312 data->has_error = true;
316 if (!asn1_write(data, blob.data, blob.length)) {
317 data_blob_free(&blob);
318 data->has_error = true;
321 data_blob_free(&blob);
322 return asn1_pop_tag(data);
325 /* write an octet string */
326 bool asn1_write_OctetString(struct asn1_data *data, const void *p, size_t length)
328 if (!asn1_push_tag(data, ASN1_OCTET_STRING)) return false;
329 if (!asn1_write(data, p, length)) return false;
330 return asn1_pop_tag(data);
333 /* write a LDAP string */
334 bool asn1_write_LDAPString(struct asn1_data *data, const char *s)
336 return asn1_write(data, s, strlen(s));
339 /* write a LDAP string from a DATA_BLOB */
340 bool asn1_write_DATA_BLOB_LDAPString(struct asn1_data *data, const DATA_BLOB *s)
342 return asn1_write(data, s->data, s->length);
345 /* write a general string */
346 bool asn1_write_GeneralString(struct asn1_data *data, const char *s)
348 if (!asn1_push_tag(data, ASN1_GENERAL_STRING)) return false;
349 if (!asn1_write_LDAPString(data, s)) return false;
350 return asn1_pop_tag(data);
353 bool asn1_write_ContextSimple(struct asn1_data *data, uint8_t num, DATA_BLOB *blob)
355 if (!asn1_push_tag(data, ASN1_CONTEXT_SIMPLE(num))) return false;
356 if (!asn1_write(data, blob->data, blob->length)) return false;
357 return asn1_pop_tag(data);
360 /* write a BOOLEAN */
361 bool asn1_write_BOOLEAN(struct asn1_data *data, bool v)
363 if (!asn1_push_tag(data, ASN1_BOOLEAN)) return false;
364 if (!asn1_write_uint8(data, v ? 0xFF : 0)) return false;
365 return asn1_pop_tag(data);
368 bool asn1_read_BOOLEAN(struct asn1_data *data, bool *v)
371 if (!asn1_start_tag(data, ASN1_BOOLEAN)) return false;
373 if (!asn1_read_uint8(data, &tmp)) return false;
377 return asn1_end_tag(data);
380 /* write a BOOLEAN in a simple context */
381 bool asn1_write_BOOLEAN_context(struct asn1_data *data, bool v, int context)
383 if (!asn1_push_tag(data, ASN1_CONTEXT_SIMPLE(context))) return false;
384 if (!asn1_write_uint8(data, v ? 0xFF : 0)) return false;
385 return asn1_pop_tag(data);
388 bool asn1_read_BOOLEAN_context(struct asn1_data *data, bool *v, int context)
391 if (!asn1_start_tag(data, ASN1_CONTEXT_SIMPLE(context))) return false;
393 if (!asn1_read_uint8(data, &tmp)) return false;
397 return asn1_end_tag(data);
400 /* check a BOOLEAN */
401 bool asn1_check_BOOLEAN(struct asn1_data *data, bool v)
405 if (!asn1_read_uint8(data, &b)) return false;
406 if (b != ASN1_BOOLEAN) {
407 data->has_error = true;
410 if (!asn1_read_uint8(data, &b)) return false;
412 data->has_error = true;
415 return !data->has_error;
419 /* load a struct asn1_data structure with a lump of data, ready to be parsed */
420 bool asn1_load(struct asn1_data *data, DATA_BLOB blob)
423 data->data = (uint8_t *)talloc_memdup(data, blob.data, blob.length);
425 data->has_error = true;
428 data->length = blob.length;
432 /* Peek into an ASN1 buffer, not advancing the pointer */
433 bool asn1_peek(struct asn1_data *data, void *p, int len)
438 if (len < 0 || data->ofs + len < data->ofs || data->ofs + len < len)
441 if (data->ofs + len > data->length) {
442 /* we need to mark the buffer as consumed, so the caller knows
443 this was an out of data error, and not a decode error */
444 data->ofs = data->length;
448 memcpy(p, data->data + data->ofs, len);
452 /* read from a ASN1 buffer, advancing the buffer pointer */
453 bool asn1_read(struct asn1_data *data, void *p, int len)
455 if (!asn1_peek(data, p, len)) {
456 data->has_error = true;
464 /* read a uint8_t from a ASN1 buffer */
465 bool asn1_read_uint8(struct asn1_data *data, uint8_t *v)
467 return asn1_read(data, v, 1);
470 bool asn1_peek_uint8(struct asn1_data *data, uint8_t *v)
472 return asn1_peek(data, v, 1);
475 bool asn1_peek_tag(struct asn1_data *data, uint8_t tag)
479 if (asn1_tag_remaining(data) <= 0) {
483 if (!asn1_peek_uint8(data, &b))
490 * just get the needed size the tag would consume
492 bool asn1_peek_tag_needed_size(struct asn1_data *data, uint8_t tag, size_t *size)
494 off_t start_ofs = data->ofs;
498 if (data->has_error) {
502 if (!asn1_read_uint8(data, &b)) {
503 data->ofs = start_ofs;
504 data->has_error = false;
509 data->ofs = start_ofs;
510 data->has_error = false;
514 if (!asn1_read_uint8(data, &b)) {
515 data->ofs = start_ofs;
516 data->has_error = false;
522 if (!asn1_read_uint8(data, &b)) {
523 data->ofs = start_ofs;
524 data->has_error = false;
529 * We should not allow more than 4 bytes
530 * for the encoding of the tag length.
532 * Otherwise we'd overflow the taglen
533 * variable on 32 bit systems.
535 data->ofs = start_ofs;
536 data->has_error = false;
541 if (!asn1_read_uint8(data, &b)) {
542 data->ofs = start_ofs;
543 data->has_error = false;
546 taglen = (taglen << 8) | b;
553 *size = (data->ofs - start_ofs) + taglen;
555 data->ofs = start_ofs;
556 data->has_error = false;
560 /* start reading a nested asn1 structure */
561 bool asn1_start_tag(struct asn1_data *data, uint8_t tag)
564 struct nesting *nesting;
566 if (!asn1_read_uint8(data, &b))
570 data->has_error = true;
573 nesting = talloc(data, struct nesting);
575 data->has_error = true;
579 if (!asn1_read_uint8(data, &b)) {
585 if (!asn1_read_uint8(data, &b))
589 if (!asn1_read_uint8(data, &b))
591 nesting->taglen = (nesting->taglen << 8) | b;
597 nesting->start = data->ofs;
598 nesting->next = data->nesting;
599 data->nesting = nesting;
600 if (asn1_tag_remaining(data) == -1) {
603 return !data->has_error;
606 /* stop reading a tag */
607 bool asn1_end_tag(struct asn1_data *data)
609 struct nesting *nesting;
611 /* make sure we read it all */
612 if (asn1_tag_remaining(data) != 0) {
613 data->has_error = true;
617 nesting = data->nesting;
620 data->has_error = true;
624 data->nesting = nesting->next;
625 talloc_free(nesting);
629 /* work out how many bytes are left in this nested tag */
630 int asn1_tag_remaining(struct asn1_data *data)
633 if (data->has_error) {
637 if (!data->nesting) {
638 data->has_error = true;
641 remaining = data->nesting->taglen - (data->ofs - data->nesting->start);
642 if (remaining > (data->length - data->ofs)) {
643 data->has_error = true;
650 * Internal implementation for reading binary OIDs
651 * Reading is done as far in the buffer as valid OID
652 * till buffer ends or not valid sub-identifier is found.
654 static bool _ber_read_OID_String_impl(TALLOC_CTX *mem_ctx, DATA_BLOB blob,
655 char **OID, size_t *bytes_eaten)
660 char *tmp_oid = NULL;
662 if (blob.length < 2) return false;
666 tmp_oid = talloc_asprintf(mem_ctx, "%u", b[0]/40);
667 if (!tmp_oid) goto nomem;
668 tmp_oid = talloc_asprintf_append_buffer(tmp_oid, ".%u", b[0]%40);
669 if (!tmp_oid) goto nomem;
671 if (bytes_eaten != NULL) {
675 for(i = 1, v = 0; i < blob.length; i++) {
676 v = (v<<7) | (b[i]&0x7f);
677 if ( ! (b[i] & 0x80)) {
678 tmp_oid = talloc_asprintf_append_buffer(tmp_oid, ".%u", v);
683 if (!tmp_oid) goto nomem;
693 /* read an object ID from a data blob */
694 bool ber_read_OID_String(TALLOC_CTX *mem_ctx, DATA_BLOB blob, char **OID)
698 if (!_ber_read_OID_String_impl(mem_ctx, blob, OID, &bytes_eaten))
701 return (bytes_eaten == blob.length);
705 * Deserialize partial OID string.
706 * Partial OIDs are in the form:
710 bool ber_read_partial_OID_String(TALLOC_CTX *mem_ctx, DATA_BLOB blob,
715 char *identifier = NULL;
716 char *tmp_oid = NULL;
718 if (!_ber_read_OID_String_impl(mem_ctx, blob, &tmp_oid, &bytes_eaten))
721 if (bytes_eaten < blob.length) {
722 bytes_left = blob.length - bytes_eaten;
723 identifier = hex_encode_talloc(mem_ctx, &blob.data[bytes_eaten], bytes_left);
724 if (!identifier) goto nomem;
726 *partial_oid = talloc_asprintf_append_buffer(tmp_oid, ":0x%s", identifier);
727 if (!*partial_oid) goto nomem;
728 TALLOC_FREE(identifier);
730 *partial_oid = tmp_oid;
736 TALLOC_FREE(identifier);
737 TALLOC_FREE(tmp_oid);
741 /* read an object ID from a ASN1 buffer */
742 bool asn1_read_OID(struct asn1_data *data, TALLOC_CTX *mem_ctx, char **OID)
747 if (!asn1_start_tag(data, ASN1_OID)) return false;
749 len = asn1_tag_remaining(data);
751 data->has_error = true;
755 blob = data_blob(NULL, len);
757 data->has_error = true;
761 if (!asn1_read(data, blob.data, len)) return false;
762 if (!asn1_end_tag(data)) {
763 data_blob_free(&blob);
767 if (!ber_read_OID_String(mem_ctx, blob, OID)) {
768 data->has_error = true;
769 data_blob_free(&blob);
773 data_blob_free(&blob);
777 /* check that the next object ID is correct */
778 bool asn1_check_OID(struct asn1_data *data, const char *OID)
782 if (!asn1_read_OID(data, data, &id)) return false;
784 if (strcmp(id, OID) != 0) {
786 data->has_error = true;
793 /* read a LDAPString from a ASN1 buffer */
794 bool asn1_read_LDAPString(struct asn1_data *data, TALLOC_CTX *mem_ctx, char **s)
797 len = asn1_tag_remaining(data);
799 data->has_error = true;
802 *s = talloc_array(mem_ctx, char, len+1);
804 data->has_error = true;
808 return asn1_read(data, *s, len);
812 /* read a GeneralString from a ASN1 buffer */
813 bool asn1_read_GeneralString(struct asn1_data *data, TALLOC_CTX *mem_ctx, char **s)
815 if (!asn1_start_tag(data, ASN1_GENERAL_STRING)) return false;
816 if (!asn1_read_LDAPString(data, mem_ctx, s)) return false;
817 return asn1_end_tag(data);
821 /* read a octet string blob */
822 bool asn1_read_OctetString(struct asn1_data *data, TALLOC_CTX *mem_ctx, DATA_BLOB *blob)
826 if (!asn1_start_tag(data, ASN1_OCTET_STRING)) return false;
827 len = asn1_tag_remaining(data);
829 data->has_error = true;
832 *blob = data_blob_talloc(mem_ctx, NULL, len+1);
833 if (!blob->data || blob->length < len) {
834 data->has_error = true;
837 if (!asn1_read(data, blob->data, len)) goto err;
838 if (!asn1_end_tag(data)) goto err;
845 data_blob_free(blob);
846 *blob = data_blob_null;
850 bool asn1_read_ContextSimple(struct asn1_data *data, uint8_t num, DATA_BLOB *blob)
854 if (!asn1_start_tag(data, ASN1_CONTEXT_SIMPLE(num))) return false;
855 len = asn1_tag_remaining(data);
857 data->has_error = true;
860 *blob = data_blob(NULL, len);
861 if ((len != 0) && (!blob->data)) {
862 data->has_error = true;
865 if (!asn1_read(data, blob->data, len)) return false;
866 return asn1_end_tag(data);
869 /* read an integer without tag*/
870 bool asn1_read_implicit_Integer(struct asn1_data *data, int *i)
873 bool first_byte = true;
876 while (!data->has_error && asn1_tag_remaining(data)>0) {
877 if (!asn1_read_uint8(data, &b)) return false;
880 /* Number is negative.
881 Set i to -1 for sign extend. */
888 return !data->has_error;
892 /* read an integer */
893 bool asn1_read_Integer(struct asn1_data *data, int *i)
897 if (!asn1_start_tag(data, ASN1_INTEGER)) return false;
898 if (!asn1_read_implicit_Integer(data, i)) return false;
899 return asn1_end_tag(data);
902 /* read a BIT STRING */
903 bool asn1_read_BitString(struct asn1_data *data, TALLOC_CTX *mem_ctx, DATA_BLOB *blob, uint8_t *padding)
907 if (!asn1_start_tag(data, ASN1_BIT_STRING)) return false;
908 len = asn1_tag_remaining(data);
910 data->has_error = true;
913 if (!asn1_read_uint8(data, padding)) return false;
915 *blob = data_blob_talloc(mem_ctx, NULL, len+1);
916 if (!blob->data || blob->length < len) {
917 data->has_error = true;
920 if (asn1_read(data, blob->data, len - 1)) {
926 if (data->has_error) {
927 data_blob_free(blob);
928 *blob = data_blob_null;
935 /* read an integer */
936 bool asn1_read_enumerated(struct asn1_data *data, int *v)
940 if (!asn1_start_tag(data, ASN1_ENUMERATED)) return false;
941 while (!data->has_error && asn1_tag_remaining(data)>0) {
943 asn1_read_uint8(data, &b);
946 return asn1_end_tag(data);
949 /* check a enumerated value is correct */
950 bool asn1_check_enumerated(struct asn1_data *data, int v)
953 if (!asn1_start_tag(data, ASN1_ENUMERATED)) return false;
954 if (!asn1_read_uint8(data, &b)) return false;
955 if (!asn1_end_tag(data)) return false;
958 data->has_error = false;
960 return !data->has_error;
963 /* write an enumerated value to the stream */
964 bool asn1_write_enumerated(struct asn1_data *data, uint8_t v)
966 if (!asn1_push_tag(data, ASN1_ENUMERATED)) return false;
967 if (!asn1_write_uint8(data, v)) return false;
968 return asn1_pop_tag(data);
972 Get us the data just written without copying
974 bool asn1_blob(const struct asn1_data *asn1, DATA_BLOB *blob)
976 if (asn1->has_error) {
979 if (asn1->nesting != NULL) {
982 blob->data = asn1->data;
983 blob->length = asn1->length;
988 Fill in an asn1 struct without making a copy
990 void asn1_load_nocopy(struct asn1_data *data, uint8_t *buf, size_t len)
998 check if a ASN.1 blob is a full tag
1000 NTSTATUS asn1_full_tag(DATA_BLOB blob, uint8_t tag, size_t *packet_size)
1002 struct asn1_data *asn1 = asn1_init(NULL);
1005 NT_STATUS_HAVE_NO_MEMORY(asn1);
1007 asn1->data = blob.data;
1008 asn1->length = blob.length;
1009 if (!asn1_start_tag(asn1, tag)) {
1011 return STATUS_MORE_ENTRIES;
1013 size = asn1_tag_remaining(asn1) + asn1->ofs;
1017 if (size > blob.length) {
1018 return STATUS_MORE_ENTRIES;
1021 *packet_size = size;
1022 return NT_STATUS_OK;
1025 NTSTATUS asn1_peek_full_tag(DATA_BLOB blob, uint8_t tag, size_t *packet_size)
1027 struct asn1_data asn1;
1032 asn1.data = blob.data;
1033 asn1.length = blob.length;
1035 ok = asn1_peek_tag_needed_size(&asn1, tag, &size);
1037 return NT_STATUS_INVALID_BUFFER_SIZE;
1040 if (size > blob.length) {
1041 *packet_size = size;
1042 return STATUS_MORE_ENTRIES;
1045 *packet_size = size;
1046 return NT_STATUS_OK;