gmsm/smx509/oid.go

package smx509

import (
	"crypto/x509"
	"encoding/asn1"
	"reflect"
	"unsafe"
)

func setDer(oid *x509.OID, der []byte) {
	oidValue := reflect.ValueOf(oid).Elem()
	derField := oidValue.FieldByName("der")

	derPointer := (*[]byte)(unsafe.Pointer(derField.UnsafeAddr()))
	*derPointer = der
}

func getDer(oid *x509.OID) []byte {
	oidValue := reflect.ValueOf(oid).Elem()
	derField := oidValue.FieldByName("der")

	derPointer := (*[]byte)(unsafe.Pointer(derField.UnsafeAddr()))
	return *derPointer
}

func newOIDFromDER(der []byte) (x509.OID, bool) {
	if len(der) == 0 || der[len(der)-1]&0x80 != 0 {
		return x509.OID{}, false
	}

	start := 0
	for i, v := range der {
		// ITU-T X.690, section 8.19.2:
		// The subidentifier shall be encoded in the fewest possible octets,
		// that is, the leading octet of the subidentifier shall not have the value 0x80.
		if i == start && v == 0x80 {
			return x509.OID{}, false
		}
		if v&0x80 == 0 {
			start = i + 1
		}
	}

	oid := x509.OID{}
	setDer(&oid, der)
	return oid, true
}

func toASN1OID(oid x509.OID) (asn1.ObjectIdentifier, bool) {
	der := getDer(&oid)
	out := make([]int, 0, len(der)+1)

	const (
		valSize         = 31 // amount of usable bits of val for OIDs.
		bitsPerByte     = 7
		maxValSafeShift = (1 << (valSize - bitsPerByte)) - 1
	)

	val := 0

	for _, v := range der {
		if val > maxValSafeShift {
			return nil, false
		}

		val <<= bitsPerByte
		val |= int(v & 0x7F)

		if v&0x80 == 0 {
			if len(out) == 0 {
				if val < 80 {
					out = append(out, val/40)
					out = append(out, val%40)
				} else {
					out = append(out, 2)
					out = append(out, val-80)
				}
				val = 0
				continue
			}
			out = append(out, val)
			val = 0
		}
	}

	return out, true
}
smx509: add new OID type and use it in Certificate #209 2025-06-09 11:19:17 +08:00			`package smx509`

			`import (`
			`"crypto/x509"`
			`"encoding/asn1"`
			`"reflect"`
			`"unsafe"`
			`)`

			`func setDer(oid *x509.OID, der []byte) {`
			`oidValue := reflect.ValueOf(oid).Elem()`
			`derField := oidValue.FieldByName("der")`

			`derPointer := (*[]byte)(unsafe.Pointer(derField.UnsafeAddr()))`
			`*derPointer = der`
			`}`

			`func getDer(oid *x509.OID) []byte {`
			`oidValue := reflect.ValueOf(oid).Elem()`
			`derField := oidValue.FieldByName("der")`

			`derPointer := (*[]byte)(unsafe.Pointer(derField.UnsafeAddr()))`
			`return *derPointer`
			`}`

			`func newOIDFromDER(der []byte) (x509.OID, bool) {`
			`if len(der) == 0 \|\| der[len(der)-1]&0x80 != 0 {`
			`return x509.OID{}, false`
			`}`

			`start := 0`
			`for i, v := range der {`
			`// ITU-T X.690, section 8.19.2:`
			`// The subidentifier shall be encoded in the fewest possible octets,`
			`// that is, the leading octet of the subidentifier shall not have the value 0x80.`
			`if i == start && v == 0x80 {`
			`return x509.OID{}, false`
			`}`
			`if v&0x80 == 0 {`
			`start = i + 1`
			`}`
			`}`

			`oid := x509.OID{}`
			`setDer(&oid, der)`
			`return oid, true`
			`}`

			`func toASN1OID(oid x509.OID) (asn1.ObjectIdentifier, bool) {`
			`der := getDer(&oid)`
			`out := make([]int, 0, len(der)+1)`

			`const (`
			`valSize = 31 // amount of usable bits of val for OIDs.`
			`bitsPerByte = 7`
			`maxValSafeShift = (1 << (valSize - bitsPerByte)) - 1`
			`)`

			`val := 0`

			`for _, v := range der {`
			`if val > maxValSafeShift {`
			`return nil, false`
			`}`

			`val <<= bitsPerByte`
			`val \|= int(v & 0x7F)`

			`if v&0x80 == 0 {`
			`if len(out) == 0 {`
			`if val < 80 {`
			`out = append(out, val/40)`
			`out = append(out, val%40)`
			`} else {`
			`out = append(out, 2)`
			`out = append(out, val-80)`
			`}`
			`val = 0`
			`continue`
			`}`
			`out = append(out, val)`
			`val = 0`
			`}`
			`}`

			`return out, true`
			`}`