asn1_cms_asn1.c source code [netbsd/objdir.amd64/compat/amd64/i386/crypto/external/bsd/heimdal/lib/libasn1/asn1_cms_asn1.c]

1	/ Generated from cms.asn1 /
2	/ Do not edit /
3
4	#define ASN1_LIB
5
6	#include <stdio.h>
7	#include <stdlib.h>
8	#include <time.h>
9	#include <string.h>
10	#include <errno.h>
11	#include <limits.h>
12	#include <krb5/krb5-types.h>
13	#include "cms_asn1.h"
14	#include "cms_asn1-priv.h"
15	#include <krb5/asn1_err.h>
16	#include <krb5/der.h>
17	#include <asn1-template.h>
18
19	#include <krb5/parse_units.h>
20
21	static unsigned oid_id_pkcs7_variable_num[`6`] = {`1`, `2`, `840`, `113549`, `1`, `7` };
22	const heim_oid asn1_oid_id_pkcs7 = { `6`, oid_id_pkcs7_variable_num };
23
24	static unsigned oid_id_pkcs7_data_variable_num[`7`] = {`1`, `2`, `840`, `113549`, `1`, `7`, `1` };
25	const heim_oid asn1_oid_id_pkcs7_data = { `7`, oid_id_pkcs7_data_variable_num };
26
27	static unsigned oid_id_pkcs7_signedData_variable_num[`7`] = {`1`, `2`, `840`, `113549`, `1`, `7`, `2` };
28	const heim_oid asn1_oid_id_pkcs7_signedData = { `7`, oid_id_pkcs7_signedData_variable_num };
29
30	static unsigned oid_id_pkcs7_envelopedData_variable_num[`7`] = {`1`, `2`, `840`, `113549`, `1`, `7`, `3` };
31	const heim_oid asn1_oid_id_pkcs7_envelopedData = { `7`, oid_id_pkcs7_envelopedData_variable_num };
32
33	static unsigned oid_id_pkcs7_signedAndEnvelopedData_variable_num[`7`] = {`1`, `2`, `840`, `113549`, `1`, `7`, `4` };
34	const heim_oid asn1_oid_id_pkcs7_signedAndEnvelopedData = { `7`, oid_id_pkcs7_signedAndEnvelopedData_variable_num };
35
36	static unsigned oid_id_pkcs7_digestedData_variable_num[`7`] = {`1`, `2`, `840`, `113549`, `1`, `7`, `5` };
37	const heim_oid asn1_oid_id_pkcs7_digestedData = { `7`, oid_id_pkcs7_digestedData_variable_num };
38
39	static unsigned oid_id_pkcs7_encryptedData_variable_num[`7`] = {`1`, `2`, `840`, `113549`, `1`, `7`, `6` };
40	const heim_oid asn1_oid_id_pkcs7_encryptedData = { `7`, oid_id_pkcs7_encryptedData_variable_num };
41
42	int ASN1CALL
43	encode_CMSVersion(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CMSVersion data, size_t size)
44	{
45	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
46	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
47	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
48
49	{
50	int enumint = (int)*data;
51	e = der_put_integer(p, len, &enumint, &l);
52	if (e) return e;
53	p -= l; len -= l; ret += l;
54
55	}
56	;e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_Integer, &l);
57	if (e) return e;
58	p -= l; len -= l; ret += l;
59
60	*size = ret;
61	return `0`;
62	}
63
64	int ASN1CALL
65	decode_CMSVersion(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CMSVersion data, size_t *size)
66	{
67	size_t ret = `0`;
68	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
69	int e HEIMDAL_UNUSED_ATTRIBUTE;
70
71	memset(data, `0`, sizeof(*data));
72	{
73	size_t Top_datalen, Top_oldlen;
74	Der_type Top_type;
75	int is_indefinite1;
76	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Integer, &Top_datalen, &l);
77	if (e == `0` && Top_type != PRIM) { e = ASN1_BAD_ID; }
78	if(e) goto fail;
79	p += l; len -= l; ret += l;
80	Top_oldlen = len;
81	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
82	{ e = ASN1_BAD_FORMAT; goto fail; }
83	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
84	int enumint;
85	e = der_get_integer(p, len, &enumint, &l);
86	if(e) goto fail;
87	p += l; len -= l; ret += l;
88	*data = enumint;
89	}
90	if(is_indefinite1){
91	len += `2`;
92	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
93	if(e) goto fail;
94	p += l; len -= l; ret += l;
95	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
96	} else
97	len = Top_oldlen - Top_datalen;
98	}
99	if(size) *size = ret;
100	return `0`;
101	fail:
102	free_CMSVersion(data);
103	return e;
104	}
105
106	void ASN1CALL
107	free_CMSVersion(CMSVersion *data)
108	{
109	}
110
111	size_t ASN1CALL
112	length_CMSVersion(const CMSVersion *data)
113	{
114	size_t ret = `0`;
115	{
116	int enumint = *data;
117	ret += der_length_integer(&enumint);
118	}
119	ret += `1` + der_length_len (ret);
120	return ret;
121	}
122
123	int ASN1CALL
124	copy_CMSVersion(const CMSVersion from, CMSVersion to)
125	{
126	memset(to, `0`, sizeof(*to));
127	(to) = (from);
128	return `0`;
129	}
130
131	int ASN1CALL
132	encode_DigestAlgorithmIdentifier(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* DigestAlgorithmIdentifier data, size_t size)
133	{
134	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
135	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
136	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
137
138	e = encode_AlgorithmIdentifier(p, len, data, &l);
139	if (e) return e;
140	p -= l; len -= l; ret += l;
141
142	*size = ret;
143	return `0`;
144	}
145
146	int ASN1CALL
147	decode_DigestAlgorithmIdentifier(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, DigestAlgorithmIdentifier data, size_t *size)
148	{
149	size_t ret = `0`;
150	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
151	int e HEIMDAL_UNUSED_ATTRIBUTE;
152
153	memset(data, `0`, sizeof(*data));
154	e = decode_AlgorithmIdentifier(p, len, data, &l);
155	if(e) goto fail;
156	p += l; len -= l; ret += l;
157	if(size) *size = ret;
158	return `0`;
159	fail:
160	free_DigestAlgorithmIdentifier(data);
161	return e;
162	}
163
164	void ASN1CALL
165	free_DigestAlgorithmIdentifier(DigestAlgorithmIdentifier *data)
166	{
167	free_AlgorithmIdentifier(data);
168	}
169
170	size_t ASN1CALL
171	length_DigestAlgorithmIdentifier(const DigestAlgorithmIdentifier *data)
172	{
173	size_t ret = `0`;
174	ret += length_AlgorithmIdentifier(data);
175	return ret;
176	}
177
178	int ASN1CALL
179	copy_DigestAlgorithmIdentifier(const DigestAlgorithmIdentifier from, DigestAlgorithmIdentifier to)
180	{
181	memset(to, `0`, sizeof(*to));
182	if(copy_AlgorithmIdentifier(from, to)) goto fail;
183	return `0`;
184	fail:
185	free_DigestAlgorithmIdentifier(to);
186	return ENOMEM;
187	}
188
189	int ASN1CALL
190	encode_DigestAlgorithmIdentifiers(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* DigestAlgorithmIdentifiers data, size_t size)
191	{
192	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
193	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
194	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
195
196	{
197	heim_octet_string *val;
198	size_t elen = `0`, totallen = `0`;
199	int eret = `0`;
200	if ((data)->len > UINT_MAX/sizeof(val[`0`]))
201	return ERANGE;
202	val = malloc(sizeof(val[`0`]) * (data)->len);
203	if (val == NULL && (data)->len != `0`) return ENOMEM;
204	for(i = `0`; i < (int)(data)->len; i++) {
205	ASN1_MALLOC_ENCODE(DigestAlgorithmIdentifier, val[i].data, val[i].length, &(data)->val[i], &elen, eret);
206	if(eret) {
207	i--;
208	while (i >= `0`) {
209	free(val[i].data);
210	i--;
211	}
212	free(val);
213	return eret;
214	}
215	totallen += elen;
216	}
217	if (totallen > len) {
218	for (i = `0`; i < (int)(data)->len; i++) {
219	free(val[i].data);
220	}
221	free(val);
222	return ASN1_OVERFLOW;
223	}
224	qsort(val, (data)->len, sizeof(val[`0`]), _heim_der_set_sort);
225	for(i = (int)(data)->len - `1`; i >= `0`; --i) {
226	p -= val[i].length;
227	ret += val[i].length;
228	memcpy(p + `1`, val[i].data, val[i].length);
229	free(val[i].data);
230	}
231	free(val);
232	}
233	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Set, &l);
234	if (e) return e;
235	p -= l; len -= l; ret += l;
236
237	*size = ret;
238	return `0`;
239	}
240
241	int ASN1CALL
242	decode_DigestAlgorithmIdentifiers(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, DigestAlgorithmIdentifiers data, size_t *size)
243	{
244	size_t ret = `0`;
245	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
246	int e HEIMDAL_UNUSED_ATTRIBUTE;
247
248	memset(data, `0`, sizeof(*data));
249	{
250	size_t Top_datalen, Top_oldlen;
251	Der_type Top_type;
252	int is_indefinite1;
253	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Set, &Top_datalen, &l);
254	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
255	if(e) goto fail;
256	p += l; len -= l; ret += l;
257	Top_oldlen = len;
258	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
259	{ e = ASN1_BAD_FORMAT; goto fail; }
260	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
261	size_t Top_Tag_origlen = len;
262	size_t Top_Tag_oldret = ret;
263	size_t Top_Tag_olen = `0`;
264	void *Top_Tag_tmp;
265	ret = `0`;
266	(data)->len = `0`;
267	(data)->val = NULL;
268	while(ret < Top_Tag_origlen) {
269	size_t Top_Tag_nlen = Top_Tag_olen + sizeof(*((data)->val));
270	if (Top_Tag_olen > Top_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
271	Top_Tag_olen = Top_Tag_nlen;
272	Top_Tag_tmp = realloc((data)->val, Top_Tag_olen);
273	if (Top_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
274	(data)->val = Top_Tag_tmp;
275	e = decode_DigestAlgorithmIdentifier(p, len, &(data)->val[(data)->len], &l);
276	if(e) goto fail;
277	p += l; len -= l; ret += l;
278	(data)->len++;
279	len = Top_Tag_origlen - ret;
280	}
281	ret += Top_Tag_oldret;
282	}
283	if(is_indefinite1){
284	len += `2`;
285	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
286	if(e) goto fail;
287	p += l; len -= l; ret += l;
288	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
289	} else
290	len = Top_oldlen - Top_datalen;
291	}
292	if(size) *size = ret;
293	return `0`;
294	fail:
295	free_DigestAlgorithmIdentifiers(data);
296	return e;
297	}
298
299	void ASN1CALL
300	free_DigestAlgorithmIdentifiers(DigestAlgorithmIdentifiers *data)
301	{
302	while((data)->len){
303	free_DigestAlgorithmIdentifier(&(data)->val[(data)->len-`1`]);
304	(data)->len--;
305	}
306	free((data)->val);
307	(data)->val = NULL;
308	}
309
310	size_t ASN1CALL
311	length_DigestAlgorithmIdentifiers(const DigestAlgorithmIdentifiers *data)
312	{
313	size_t ret = `0`;
314	{
315	size_t Top_tag_oldret = ret;
316	unsigned int n_Top_tag;
317	ret = `0`;
318	for(n_Top_tag = (data)->len; n_Top_tag > `0`; --n_Top_tag){
319	size_t Top_tag_for_oldret = ret;
320	ret = `0`;
321	ret += length_DigestAlgorithmIdentifier(&(data)->val[n_Top_tag - `1`]);
322	ret += Top_tag_for_oldret;
323	}
324	ret += Top_tag_oldret;
325	}
326	ret += `1` + der_length_len (ret);
327	return ret;
328	}
329
330	int ASN1CALL
331	copy_DigestAlgorithmIdentifiers(const DigestAlgorithmIdentifiers from, DigestAlgorithmIdentifiers to)
332	{
333	memset(to, `0`, sizeof(*to));
334	if(((to)->val = malloc((from)->len * sizeof(*(to)->val))) == NULL && (from)->len != `0`)
335	goto fail;
336	for((to)->len = `0`; (to)->len < (from)->len; (to)->len++){
337	if(copy_DigestAlgorithmIdentifier(&(from)->val[(to)->len], &(to)->val[(to)->len])) goto fail;
338	}
339	return `0`;
340	fail:
341	free_DigestAlgorithmIdentifiers(to);
342	return ENOMEM;
343	}
344
345	int ASN1CALL
346	add_DigestAlgorithmIdentifiers(DigestAlgorithmIdentifiers data, const* DigestAlgorithmIdentifier *element)
347	{
348	int ret;
349	void *ptr;
350
351	ptr = realloc(data->val,
352	(data->len + `1`) * sizeof(data->val[`0`]));
353	if (ptr == NULL) return ENOMEM;
354	data->val = ptr;
355
356	ret = copy_DigestAlgorithmIdentifier(element, &data->val[data->len]);
357	if (ret) return ret;
358	data->len++;
359	return `0`;
360	}
361
362	int ASN1CALL
363	remove_DigestAlgorithmIdentifiers(DigestAlgorithmIdentifiers data, unsigned* int element)
364	{
365	void *ptr;
366
367	if (data->len == `0` \|\| element >= data->len)
368	return ASN1_OVERRUN;
369	free_DigestAlgorithmIdentifier(&data->val[element]);
370	data->len--;
371	if (element < data->len)
372	memmove(&data->val[element], &data->val[element + `1`],
373	sizeof(data->val[`0`]) * (data->len - element));
374	ptr = realloc(data->val, data->len * sizeof(data->val[`0`]));
375	if (ptr != NULL \|\| data->len == `0`) data->val = ptr;
376	return `0`;
377	}
378
379	int ASN1CALL
380	encode_SignatureAlgorithmIdentifier(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* SignatureAlgorithmIdentifier data, size_t size)
381	{
382	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
383	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
384	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
385
386	e = encode_AlgorithmIdentifier(p, len, data, &l);
387	if (e) return e;
388	p -= l; len -= l; ret += l;
389
390	*size = ret;
391	return `0`;
392	}
393
394	int ASN1CALL
395	decode_SignatureAlgorithmIdentifier(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, SignatureAlgorithmIdentifier data, size_t *size)
396	{
397	size_t ret = `0`;
398	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
399	int e HEIMDAL_UNUSED_ATTRIBUTE;
400
401	memset(data, `0`, sizeof(*data));
402	e = decode_AlgorithmIdentifier(p, len, data, &l);
403	if(e) goto fail;
404	p += l; len -= l; ret += l;
405	if(size) *size = ret;
406	return `0`;
407	fail:
408	free_SignatureAlgorithmIdentifier(data);
409	return e;
410	}
411
412	void ASN1CALL
413	free_SignatureAlgorithmIdentifier(SignatureAlgorithmIdentifier *data)
414	{
415	free_AlgorithmIdentifier(data);
416	}
417
418	size_t ASN1CALL
419	length_SignatureAlgorithmIdentifier(const SignatureAlgorithmIdentifier *data)
420	{
421	size_t ret = `0`;
422	ret += length_AlgorithmIdentifier(data);
423	return ret;
424	}
425
426	int ASN1CALL
427	copy_SignatureAlgorithmIdentifier(const SignatureAlgorithmIdentifier from, SignatureAlgorithmIdentifier to)
428	{
429	memset(to, `0`, sizeof(*to));
430	if(copy_AlgorithmIdentifier(from, to)) goto fail;
431	return `0`;
432	fail:
433	free_SignatureAlgorithmIdentifier(to);
434	return ENOMEM;
435	}
436
437	int ASN1CALL
438	encode_ContentType(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* ContentType data, size_t size)
439	{
440	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
441	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
442	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
443
444	e = der_put_oid(p, len, data, &l);
445	if (e) return e;
446	p -= l; len -= l; ret += l;
447
448	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OID, &l);
449	if (e) return e;
450	p -= l; len -= l; ret += l;
451
452	*size = ret;
453	return `0`;
454	}
455
456	int ASN1CALL
457	decode_ContentType(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, ContentType data, size_t *size)
458	{
459	size_t ret = `0`;
460	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
461	int e HEIMDAL_UNUSED_ATTRIBUTE;
462
463	memset(data, `0`, sizeof(*data));
464	{
465	size_t Top_datalen, Top_oldlen;
466	Der_type Top_type;
467	int is_indefinite1;
468	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_OID, &Top_datalen, &l);
469	if (e == `0` && Top_type != PRIM) { e = ASN1_BAD_ID; }
470	if(e) goto fail;
471	p += l; len -= l; ret += l;
472	Top_oldlen = len;
473	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
474	{ e = ASN1_BAD_FORMAT; goto fail; }
475	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = der_get_oid(p, len, data, &l);
476	if(e) goto fail;
477	p += l; len -= l; ret += l;
478	if(is_indefinite1){
479	len += `2`;
480	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
481	if(e) goto fail;
482	p += l; len -= l; ret += l;
483	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
484	} else
485	len = Top_oldlen - Top_datalen;
486	}
487	if(size) *size = ret;
488	return `0`;
489	fail:
490	free_ContentType(data);
491	return e;
492	}
493
494	void ASN1CALL
495	free_ContentType(ContentType *data)
496	{
497	der_free_oid(data);
498	}
499
500	size_t ASN1CALL
501	length_ContentType(const ContentType *data)
502	{
503	size_t ret = `0`;
504	ret += der_length_oid(data);
505	ret += `1` + der_length_len (ret);
506	return ret;
507	}
508
509	int ASN1CALL
510	copy_ContentType(const ContentType from, ContentType to)
511	{
512	memset(to, `0`, sizeof(*to));
513	if(der_copy_oid(from, to)) goto fail;
514	return `0`;
515	fail:
516	free_ContentType(to);
517	return ENOMEM;
518	}
519
520	int ASN1CALL
521	encode_MessageDigest(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* MessageDigest data, size_t size)
522	{
523	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
524	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
525	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
526
527	e = der_put_octet_string(p, len, data, &l);
528	if (e) return e;
529	p -= l; len -= l; ret += l;
530
531	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OctetString, &l);
532	if (e) return e;
533	p -= l; len -= l; ret += l;
534
535	*size = ret;
536	return `0`;
537	}
538
539	int ASN1CALL
540	decode_MessageDigest(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, MessageDigest data, size_t *size)
541	{
542	size_t ret = `0`;
543	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
544	int e HEIMDAL_UNUSED_ATTRIBUTE;
545
546	memset(data, `0`, sizeof(*data));
547	{
548	size_t Top_datalen, Top_oldlen;
549	Der_type Top_type;
550	int is_indefinite1;
551	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_OctetString, &Top_datalen, &l);
552	if(e) goto fail;
553	p += l; len -= l; ret += l;
554	Top_oldlen = len;
555	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
556	{ e = ASN1_BAD_FORMAT; goto fail; }
557	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (Top_type == CONS) {
558	e = der_get_octet_string_ber(p, len, data, &l);
559	if(e) goto fail;
560	p += l; len -= l; ret += l;
561	} else {
562	e = der_get_octet_string(p, len, data, &l);
563	if(e) goto fail;
564	p += l; len -= l; ret += l;
565	}
566	if(is_indefinite1){
567	len += `2`;
568	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
569	if(e) goto fail;
570	p += l; len -= l; ret += l;
571	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
572	} else
573	len = Top_oldlen - Top_datalen;
574	}
575	if(size) *size = ret;
576	return `0`;
577	fail:
578	free_MessageDigest(data);
579	return e;
580	}
581
582	void ASN1CALL
583	free_MessageDigest(MessageDigest *data)
584	{
585	der_free_octet_string(data);
586	}
587
588	size_t ASN1CALL
589	length_MessageDigest(const MessageDigest *data)
590	{
591	size_t ret = `0`;
592	ret += der_length_octet_string(data);
593	ret += `1` + der_length_len (ret);
594	return ret;
595	}
596
597	int ASN1CALL
598	copy_MessageDigest(const MessageDigest from, MessageDigest to)
599	{
600	memset(to, `0`, sizeof(*to));
601	if(der_copy_octet_string(from, to)) goto fail;
602	return `0`;
603	fail:
604	free_MessageDigest(to);
605	return ENOMEM;
606	}
607
608	int ASN1CALL
609	encode_ContentInfo(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* ContentInfo data, size_t size)
610	{
611	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
612	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
613	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
614
615	/ content /
616	if((data)->content) {
617	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
618	ret = `0`;
619	e = encode_heim_any(p, len, (data)->content, &l);
620	if (e) return e;
621	p -= l; len -= l; ret += l;
622
623	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `0`, &l);
624	if (e) return e;
625	p -= l; len -= l; ret += l;
626
627	ret += Top_tag_oldret;
628	}
629	/ contentType /
630	{
631	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
632	ret = `0`;
633	e = encode_ContentType(p, len, &(data)->contentType, &l);
634	if (e) return e;
635	p -= l; len -= l; ret += l;
636
637	ret += Top_tag_oldret;
638	}
639	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
640	if (e) return e;
641	p -= l; len -= l; ret += l;
642
643	*size = ret;
644	return `0`;
645	}
646
647	int ASN1CALL
648	decode_ContentInfo(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, ContentInfo data, size_t *size)
649	{
650	size_t ret = `0`;
651	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
652	int e HEIMDAL_UNUSED_ATTRIBUTE;
653
654	memset(data, `0`, sizeof(*data));
655	{
656	size_t Top_datalen, Top_oldlen;
657	Der_type Top_type;
658	int is_indefinite1;
659	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
660	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
661	if(e) goto fail;
662	p += l; len -= l; ret += l;
663	Top_oldlen = len;
664	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
665	{ e = ASN1_BAD_FORMAT; goto fail; }
666	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_ContentType(p, len, &(data)->contentType, &l);
667	if(e) goto fail;
668	p += l; len -= l; ret += l;
669	{
670	size_t content_datalen, content_oldlen;
671	Der_type content_type;
672	int is_indefinite3;
673	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &content_type, `0`, &content_datalen, &l);
674	if (e == `0` && content_type != CONS) { e = ASN1_BAD_ID; }
675	if(e) {
676	(data)->content = NULL;
677	} else {
678	(data)->content = calloc(`1`, sizeof(*(data)->content));
679	if ((data)->content == NULL) { e = ENOMEM; goto fail; }
680	p += l; len -= l; ret += l;
681	content_oldlen = len;
682	if((is_indefinite3 = _heim_fix_dce(content_datalen, &len)) < `0`)
683	{ e = ASN1_BAD_FORMAT; goto fail; }
684	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_heim_any(p, len, (data)->content, &l);
685	if(e) goto fail;
686	p += l; len -= l; ret += l;
687	if(is_indefinite3){
688	len += `2`;
689	e = der_match_tag_and_length(p, len, (Der_class)`0`, &content_type, UT_EndOfContent, &content_datalen, &l);
690	if(e) goto fail;
691	p += l; len -= l; ret += l;
692	if (content_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
693	} else
694	len = content_oldlen - content_datalen;
695	}
696	}
697	if(is_indefinite1){
698	len += `2`;
699	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
700	if(e) goto fail;
701	p += l; len -= l; ret += l;
702	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
703	} else
704	len = Top_oldlen - Top_datalen;
705	}
706	if(size) *size = ret;
707	return `0`;
708	fail:
709	free_ContentInfo(data);
710	return e;
711	}
712
713	void ASN1CALL
714	free_ContentInfo(ContentInfo *data)
715	{
716	free_ContentType(&(data)->contentType);
717	if((data)->content) {
718	free_heim_any((data)->content);
719	free((data)->content);
720	(data)->content = NULL;
721	}
722	}
723
724	size_t ASN1CALL
725	length_ContentInfo(const ContentInfo *data)
726	{
727	size_t ret = `0`;
728	{
729	size_t Top_tag_oldret = ret;
730	ret = `0`;
731	ret += length_ContentType(&(data)->contentType);
732	ret += Top_tag_oldret;
733	}
734	if((data)->content){
735	size_t Top_tag_oldret = ret;
736	ret = `0`;
737	ret += length_heim_any((data)->content);
738	ret += `1` + der_length_len (ret);
739	ret += Top_tag_oldret;
740	}
741	ret += `1` + der_length_len (ret);
742	return ret;
743	}
744
745	int ASN1CALL
746	copy_ContentInfo(const ContentInfo from, ContentInfo to)
747	{
748	memset(to, `0`, sizeof(*to));
749	if(copy_ContentType(&(from)->contentType, &(to)->contentType)) goto fail;
750	if((from)->content) {
751	(to)->content = malloc(sizeof(*(to)->content));
752	if((to)->content == NULL) goto fail;
753	if(copy_heim_any((from)->content, (to)->content)) goto fail;
754	}else
755	(to)->content = NULL;
756	return `0`;
757	fail:
758	free_ContentInfo(to);
759	return ENOMEM;
760	}
761
762	int ASN1CALL
763	encode_EncapsulatedContentInfo(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* EncapsulatedContentInfo data, size_t size)
764	{
765	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
766	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
767	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
768
769	/ eContent /
770	if((data)->eContent) {
771	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
772	ret = `0`;
773	e = der_put_octet_string(p, len, (data)->eContent, &l);
774	if (e) return e;
775	p -= l; len -= l; ret += l;
776
777	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OctetString, &l);
778	if (e) return e;
779	p -= l; len -= l; ret += l;
780
781	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `0`, &l);
782	if (e) return e;
783	p -= l; len -= l; ret += l;
784
785	ret += Top_tag_oldret;
786	}
787	/ eContentType /
788	{
789	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
790	ret = `0`;
791	e = encode_ContentType(p, len, &(data)->eContentType, &l);
792	if (e) return e;
793	p -= l; len -= l; ret += l;
794
795	ret += Top_tag_oldret;
796	}
797	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
798	if (e) return e;
799	p -= l; len -= l; ret += l;
800
801	*size = ret;
802	return `0`;
803	}
804
805	int ASN1CALL
806	decode_EncapsulatedContentInfo(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, EncapsulatedContentInfo data, size_t *size)
807	{
808	size_t ret = `0`;
809	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
810	int e HEIMDAL_UNUSED_ATTRIBUTE;
811
812	memset(data, `0`, sizeof(*data));
813	{
814	size_t Top_datalen, Top_oldlen;
815	Der_type Top_type;
816	int is_indefinite1;
817	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
818	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
819	if(e) goto fail;
820	p += l; len -= l; ret += l;
821	Top_oldlen = len;
822	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
823	{ e = ASN1_BAD_FORMAT; goto fail; }
824	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_ContentType(p, len, &(data)->eContentType, &l);
825	if(e) goto fail;
826	p += l; len -= l; ret += l;
827	{
828	size_t eContent_datalen, eContent_oldlen;
829	Der_type eContent_type;
830	int is_indefinite3;
831	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &eContent_type, `0`, &eContent_datalen, &l);
832	if (e == `0` && eContent_type != CONS) { e = ASN1_BAD_ID; }
833	if(e) {
834	(data)->eContent = NULL;
835	} else {
836	(data)->eContent = calloc(`1`, sizeof(*(data)->eContent));
837	if ((data)->eContent == NULL) { e = ENOMEM; goto fail; }
838	p += l; len -= l; ret += l;
839	eContent_oldlen = len;
840	if((is_indefinite3 = _heim_fix_dce(eContent_datalen, &len)) < `0`)
841	{ e = ASN1_BAD_FORMAT; goto fail; }
842	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
843	size_t eContent_Tag_datalen, eContent_Tag_oldlen;
844	Der_type eContent_Tag_type;
845	int is_indefinite4;
846	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &eContent_Tag_type, UT_OctetString, &eContent_Tag_datalen, &l);
847	if(e) goto fail;
848	p += l; len -= l; ret += l;
849	eContent_Tag_oldlen = len;
850	if((is_indefinite4 = _heim_fix_dce(eContent_Tag_datalen, &len)) < `0`)
851	{ e = ASN1_BAD_FORMAT; goto fail; }
852	if (is_indefinite4) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (eContent_Tag_type == CONS) {
853	e = der_get_octet_string_ber(p, len, (data)->eContent, &l);
854	if(e) goto fail;
855	p += l; len -= l; ret += l;
856	} else {
857	e = der_get_octet_string(p, len, (data)->eContent, &l);
858	if(e) goto fail;
859	p += l; len -= l; ret += l;
860	}
861	if(is_indefinite4){
862	len += `2`;
863	e = der_match_tag_and_length(p, len, (Der_class)`0`, &eContent_Tag_type, UT_EndOfContent, &eContent_Tag_datalen, &l);
864	if(e) goto fail;
865	p += l; len -= l; ret += l;
866	if (eContent_Tag_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
867	} else
868	len = eContent_Tag_oldlen - eContent_Tag_datalen;
869	}
870	if(is_indefinite3){
871	len += `2`;
872	e = der_match_tag_and_length(p, len, (Der_class)`0`, &eContent_type, UT_EndOfContent, &eContent_datalen, &l);
873	if(e) goto fail;
874	p += l; len -= l; ret += l;
875	if (eContent_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
876	} else
877	len = eContent_oldlen - eContent_datalen;
878	}
879	}
880	if(is_indefinite1){
881	len += `2`;
882	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
883	if(e) goto fail;
884	p += l; len -= l; ret += l;
885	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
886	} else
887	len = Top_oldlen - Top_datalen;
888	}
889	if(size) *size = ret;
890	return `0`;
891	fail:
892	free_EncapsulatedContentInfo(data);
893	return e;
894	}
895
896	void ASN1CALL
897	free_EncapsulatedContentInfo(EncapsulatedContentInfo *data)
898	{
899	free_ContentType(&(data)->eContentType);
900	if((data)->eContent) {
901	der_free_octet_string((data)->eContent);
902	free((data)->eContent);
903	(data)->eContent = NULL;
904	}
905	}
906
907	size_t ASN1CALL
908	length_EncapsulatedContentInfo(const EncapsulatedContentInfo *data)
909	{
910	size_t ret = `0`;
911	{
912	size_t Top_tag_oldret = ret;
913	ret = `0`;
914	ret += length_ContentType(&(data)->eContentType);
915	ret += Top_tag_oldret;
916	}
917	if((data)->eContent){
918	size_t Top_tag_oldret = ret;
919	ret = `0`;
920	ret += der_length_octet_string((data)->eContent);
921	ret += `1` + der_length_len (ret);
922	ret += `1` + der_length_len (ret);
923	ret += Top_tag_oldret;
924	}
925	ret += `1` + der_length_len (ret);
926	return ret;
927	}
928
929	int ASN1CALL
930	copy_EncapsulatedContentInfo(const EncapsulatedContentInfo from, EncapsulatedContentInfo to)
931	{
932	memset(to, `0`, sizeof(*to));
933	if(copy_ContentType(&(from)->eContentType, &(to)->eContentType)) goto fail;
934	if((from)->eContent) {
935	(to)->eContent = malloc(sizeof(*(to)->eContent));
936	if((to)->eContent == NULL) goto fail;
937	if(der_copy_octet_string((from)->eContent, (to)->eContent)) goto fail;
938	}else
939	(to)->eContent = NULL;
940	return `0`;
941	fail:
942	free_EncapsulatedContentInfo(to);
943	return ENOMEM;
944	}
945
946	int ASN1CALL
947	encode_CertificateSet(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CertificateSet data, size_t size)
948	{
949	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
950	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
951	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
952
953	{
954	heim_octet_string *val;
955	size_t elen = `0`, totallen = `0`;
956	int eret = `0`;
957	if ((data)->len > UINT_MAX/sizeof(val[`0`]))
958	return ERANGE;
959	val = malloc(sizeof(val[`0`]) * (data)->len);
960	if (val == NULL && (data)->len != `0`) return ENOMEM;
961	for(i = `0`; i < (int)(data)->len; i++) {
962	ASN1_MALLOC_ENCODE(heim_any, val[i].data, val[i].length, &(data)->val[i], &elen, eret);
963	if(eret) {
964	i--;
965	while (i >= `0`) {
966	free(val[i].data);
967	i--;
968	}
969	free(val);
970	return eret;
971	}
972	totallen += elen;
973	}
974	if (totallen > len) {
975	for (i = `0`; i < (int)(data)->len; i++) {
976	free(val[i].data);
977	}
978	free(val);
979	return ASN1_OVERFLOW;
980	}
981	qsort(val, (data)->len, sizeof(val[`0`]), _heim_der_set_sort);
982	for(i = (int)(data)->len - `1`; i >= `0`; --i) {
983	p -= val[i].length;
984	ret += val[i].length;
985	memcpy(p + `1`, val[i].data, val[i].length);
986	free(val[i].data);
987	}
988	free(val);
989	}
990	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Set, &l);
991	if (e) return e;
992	p -= l; len -= l; ret += l;
993
994	*size = ret;
995	return `0`;
996	}
997
998	int ASN1CALL
999	decode_CertificateSet(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CertificateSet data, size_t *size)
1000	{
1001	size_t ret = `0`;
1002	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1003	int e HEIMDAL_UNUSED_ATTRIBUTE;
1004
1005	memset(data, `0`, sizeof(*data));
1006	{
1007	size_t Top_datalen, Top_oldlen;
1008	Der_type Top_type;
1009	int is_indefinite1;
1010	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Set, &Top_datalen, &l);
1011	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
1012	if(e) goto fail;
1013	p += l; len -= l; ret += l;
1014	Top_oldlen = len;
1015	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
1016	{ e = ASN1_BAD_FORMAT; goto fail; }
1017	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
1018	size_t Top_Tag_origlen = len;
1019	size_t Top_Tag_oldret = ret;
1020	size_t Top_Tag_olen = `0`;
1021	void *Top_Tag_tmp;
1022	ret = `0`;
1023	(data)->len = `0`;
1024	(data)->val = NULL;
1025	while(ret < Top_Tag_origlen) {
1026	size_t Top_Tag_nlen = Top_Tag_olen + sizeof(*((data)->val));
1027	if (Top_Tag_olen > Top_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
1028	Top_Tag_olen = Top_Tag_nlen;
1029	Top_Tag_tmp = realloc((data)->val, Top_Tag_olen);
1030	if (Top_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
1031	(data)->val = Top_Tag_tmp;
1032	e = decode_heim_any(p, len, &(data)->val[(data)->len], &l);
1033	if(e) goto fail;
1034	p += l; len -= l; ret += l;
1035	(data)->len++;
1036	len = Top_Tag_origlen - ret;
1037	}
1038	ret += Top_Tag_oldret;
1039	}
1040	if(is_indefinite1){
1041	len += `2`;
1042	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
1043	if(e) goto fail;
1044	p += l; len -= l; ret += l;
1045	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
1046	} else
1047	len = Top_oldlen - Top_datalen;
1048	}
1049	if(size) *size = ret;
1050	return `0`;
1051	fail:
1052	free_CertificateSet(data);
1053	return e;
1054	}
1055
1056	void ASN1CALL
1057	free_CertificateSet(CertificateSet *data)
1058	{
1059	while((data)->len){
1060	free_heim_any(&(data)->val[(data)->len-`1`]);
1061	(data)->len--;
1062	}
1063	free((data)->val);
1064	(data)->val = NULL;
1065	}
1066
1067	size_t ASN1CALL
1068	length_CertificateSet(const CertificateSet *data)
1069	{
1070	size_t ret = `0`;
1071	{
1072	size_t Top_tag_oldret = ret;
1073	unsigned int n_Top_tag;
1074	ret = `0`;
1075	for(n_Top_tag = (data)->len; n_Top_tag > `0`; --n_Top_tag){
1076	size_t Top_tag_for_oldret = ret;
1077	ret = `0`;
1078	ret += length_heim_any(&(data)->val[n_Top_tag - `1`]);
1079	ret += Top_tag_for_oldret;
1080	}
1081	ret += Top_tag_oldret;
1082	}
1083	ret += `1` + der_length_len (ret);
1084	return ret;
1085	}
1086
1087	int ASN1CALL
1088	copy_CertificateSet(const CertificateSet from, CertificateSet to)
1089	{
1090	memset(to, `0`, sizeof(*to));
1091	if(((to)->val = malloc((from)->len * sizeof(*(to)->val))) == NULL && (from)->len != `0`)
1092	goto fail;
1093	for((to)->len = `0`; (to)->len < (from)->len; (to)->len++){
1094	if(copy_heim_any(&(from)->val[(to)->len], &(to)->val[(to)->len])) goto fail;
1095	}
1096	return `0`;
1097	fail:
1098	free_CertificateSet(to);
1099	return ENOMEM;
1100	}
1101
1102	int ASN1CALL
1103	encode_CertificateList(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CertificateList data, size_t size)
1104	{
1105	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1106	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1107	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1108
1109	e = encode_Certificate(p, len, data, &l);
1110	if (e) return e;
1111	p -= l; len -= l; ret += l;
1112
1113	*size = ret;
1114	return `0`;
1115	}
1116
1117	int ASN1CALL
1118	decode_CertificateList(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CertificateList data, size_t *size)
1119	{
1120	size_t ret = `0`;
1121	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1122	int e HEIMDAL_UNUSED_ATTRIBUTE;
1123
1124	memset(data, `0`, sizeof(*data));
1125	e = decode_Certificate(p, len, data, &l);
1126	if(e) goto fail;
1127	p += l; len -= l; ret += l;
1128	if(size) *size = ret;
1129	return `0`;
1130	fail:
1131	free_CertificateList(data);
1132	return e;
1133	}
1134
1135	void ASN1CALL
1136	free_CertificateList(CertificateList *data)
1137	{
1138	free_Certificate(data);
1139	}
1140
1141	size_t ASN1CALL
1142	length_CertificateList(const CertificateList *data)
1143	{
1144	size_t ret = `0`;
1145	ret += length_Certificate(data);
1146	return ret;
1147	}
1148
1149	int ASN1CALL
1150	copy_CertificateList(const CertificateList from, CertificateList to)
1151	{
1152	memset(to, `0`, sizeof(*to));
1153	if(copy_Certificate(from, to)) goto fail;
1154	return `0`;
1155	fail:
1156	free_CertificateList(to);
1157	return ENOMEM;
1158	}
1159
1160	int ASN1CALL
1161	encode_CertificateRevocationLists(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CertificateRevocationLists data, size_t size)
1162	{
1163	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1164	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1165	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1166
1167	{
1168	heim_octet_string *val;
1169	size_t elen = `0`, totallen = `0`;
1170	int eret = `0`;
1171	if ((data)->len > UINT_MAX/sizeof(val[`0`]))
1172	return ERANGE;
1173	val = malloc(sizeof(val[`0`]) * (data)->len);
1174	if (val == NULL && (data)->len != `0`) return ENOMEM;
1175	for(i = `0`; i < (int)(data)->len; i++) {
1176	ASN1_MALLOC_ENCODE(CertificateList, val[i].data, val[i].length, &(data)->val[i], &elen, eret);
1177	if(eret) {
1178	i--;
1179	while (i >= `0`) {
1180	free(val[i].data);
1181	i--;
1182	}
1183	free(val);
1184	return eret;
1185	}
1186	totallen += elen;
1187	}
1188	if (totallen > len) {
1189	for (i = `0`; i < (int)(data)->len; i++) {
1190	free(val[i].data);
1191	}
1192	free(val);
1193	return ASN1_OVERFLOW;
1194	}
1195	qsort(val, (data)->len, sizeof(val[`0`]), _heim_der_set_sort);
1196	for(i = (int)(data)->len - `1`; i >= `0`; --i) {
1197	p -= val[i].length;
1198	ret += val[i].length;
1199	memcpy(p + `1`, val[i].data, val[i].length);
1200	free(val[i].data);
1201	}
1202	free(val);
1203	}
1204	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Set, &l);
1205	if (e) return e;
1206	p -= l; len -= l; ret += l;
1207
1208	*size = ret;
1209	return `0`;
1210	}
1211
1212	int ASN1CALL
1213	decode_CertificateRevocationLists(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CertificateRevocationLists data, size_t *size)
1214	{
1215	size_t ret = `0`;
1216	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1217	int e HEIMDAL_UNUSED_ATTRIBUTE;
1218
1219	memset(data, `0`, sizeof(*data));
1220	{
1221	size_t Top_datalen, Top_oldlen;
1222	Der_type Top_type;
1223	int is_indefinite1;
1224	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Set, &Top_datalen, &l);
1225	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
1226	if(e) goto fail;
1227	p += l; len -= l; ret += l;
1228	Top_oldlen = len;
1229	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
1230	{ e = ASN1_BAD_FORMAT; goto fail; }
1231	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
1232	size_t Top_Tag_origlen = len;
1233	size_t Top_Tag_oldret = ret;
1234	size_t Top_Tag_olen = `0`;
1235	void *Top_Tag_tmp;
1236	ret = `0`;
1237	(data)->len = `0`;
1238	(data)->val = NULL;
1239	while(ret < Top_Tag_origlen) {
1240	size_t Top_Tag_nlen = Top_Tag_olen + sizeof(*((data)->val));
1241	if (Top_Tag_olen > Top_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
1242	Top_Tag_olen = Top_Tag_nlen;
1243	Top_Tag_tmp = realloc((data)->val, Top_Tag_olen);
1244	if (Top_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
1245	(data)->val = Top_Tag_tmp;
1246	e = decode_CertificateList(p, len, &(data)->val[(data)->len], &l);
1247	if(e) goto fail;
1248	p += l; len -= l; ret += l;
1249	(data)->len++;
1250	len = Top_Tag_origlen - ret;
1251	}
1252	ret += Top_Tag_oldret;
1253	}
1254	if(is_indefinite1){
1255	len += `2`;
1256	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
1257	if(e) goto fail;
1258	p += l; len -= l; ret += l;
1259	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
1260	} else
1261	len = Top_oldlen - Top_datalen;
1262	}
1263	if(size) *size = ret;
1264	return `0`;
1265	fail:
1266	free_CertificateRevocationLists(data);
1267	return e;
1268	}
1269
1270	void ASN1CALL
1271	free_CertificateRevocationLists(CertificateRevocationLists *data)
1272	{
1273	while((data)->len){
1274	free_CertificateList(&(data)->val[(data)->len-`1`]);
1275	(data)->len--;
1276	}
1277	free((data)->val);
1278	(data)->val = NULL;
1279	}
1280
1281	size_t ASN1CALL
1282	length_CertificateRevocationLists(const CertificateRevocationLists *data)
1283	{
1284	size_t ret = `0`;
1285	{
1286	size_t Top_tag_oldret = ret;
1287	unsigned int n_Top_tag;
1288	ret = `0`;
1289	for(n_Top_tag = (data)->len; n_Top_tag > `0`; --n_Top_tag){
1290	size_t Top_tag_for_oldret = ret;
1291	ret = `0`;
1292	ret += length_CertificateList(&(data)->val[n_Top_tag - `1`]);
1293	ret += Top_tag_for_oldret;
1294	}
1295	ret += Top_tag_oldret;
1296	}
1297	ret += `1` + der_length_len (ret);
1298	return ret;
1299	}
1300
1301	int ASN1CALL
1302	copy_CertificateRevocationLists(const CertificateRevocationLists from, CertificateRevocationLists to)
1303	{
1304	memset(to, `0`, sizeof(*to));
1305	if(((to)->val = malloc((from)->len * sizeof(*(to)->val))) == NULL && (from)->len != `0`)
1306	goto fail;
1307	for((to)->len = `0`; (to)->len < (from)->len; (to)->len++){
1308	if(copy_CertificateList(&(from)->val[(to)->len], &(to)->val[(to)->len])) goto fail;
1309	}
1310	return `0`;
1311	fail:
1312	free_CertificateRevocationLists(to);
1313	return ENOMEM;
1314	}
1315
1316	int ASN1CALL
1317	encode_IssuerAndSerialNumber(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* IssuerAndSerialNumber data, size_t size)
1318	{
1319	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1320	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1321	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1322
1323	/ serialNumber /
1324	{
1325	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
1326	ret = `0`;
1327	e = encode_CertificateSerialNumber(p, len, &(data)->serialNumber, &l);
1328	if (e) return e;
1329	p -= l; len -= l; ret += l;
1330
1331	ret += Top_tag_oldret;
1332	}
1333	/ issuer /
1334	{
1335	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
1336	ret = `0`;
1337	e = encode_Name(p, len, &(data)->issuer, &l);
1338	if (e) return e;
1339	p -= l; len -= l; ret += l;
1340
1341	ret += Top_tag_oldret;
1342	}
1343	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
1344	if (e) return e;
1345	p -= l; len -= l; ret += l;
1346
1347	*size = ret;
1348	return `0`;
1349	}
1350
1351	int ASN1CALL
1352	decode_IssuerAndSerialNumber(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, IssuerAndSerialNumber data, size_t *size)
1353	{
1354	size_t ret = `0`;
1355	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1356	int e HEIMDAL_UNUSED_ATTRIBUTE;
1357
1358	memset(data, `0`, sizeof(*data));
1359	{
1360	size_t Top_datalen, Top_oldlen;
1361	Der_type Top_type;
1362	int is_indefinite1;
1363	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
1364	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
1365	if(e) goto fail;
1366	p += l; len -= l; ret += l;
1367	Top_oldlen = len;
1368	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
1369	{ e = ASN1_BAD_FORMAT; goto fail; }
1370	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_Name(p, len, &(data)->issuer, &l);
1371	if(e) goto fail;
1372	p += l; len -= l; ret += l;
1373	e = decode_CertificateSerialNumber(p, len, &(data)->serialNumber, &l);
1374	if(e) goto fail;
1375	p += l; len -= l; ret += l;
1376	if(is_indefinite1){
1377	len += `2`;
1378	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
1379	if(e) goto fail;
1380	p += l; len -= l; ret += l;
1381	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
1382	} else
1383	len = Top_oldlen - Top_datalen;
1384	}
1385	if(size) *size = ret;
1386	return `0`;
1387	fail:
1388	free_IssuerAndSerialNumber(data);
1389	return e;
1390	}
1391
1392	void ASN1CALL
1393	free_IssuerAndSerialNumber(IssuerAndSerialNumber *data)
1394	{
1395	free_Name(&(data)->issuer);
1396	free_CertificateSerialNumber(&(data)->serialNumber);
1397	}
1398
1399	size_t ASN1CALL
1400	length_IssuerAndSerialNumber(const IssuerAndSerialNumber *data)
1401	{
1402	size_t ret = `0`;
1403	{
1404	size_t Top_tag_oldret = ret;
1405	ret = `0`;
1406	ret += length_Name(&(data)->issuer);
1407	ret += Top_tag_oldret;
1408	}
1409	{
1410	size_t Top_tag_oldret = ret;
1411	ret = `0`;
1412	ret += length_CertificateSerialNumber(&(data)->serialNumber);
1413	ret += Top_tag_oldret;
1414	}
1415	ret += `1` + der_length_len (ret);
1416	return ret;
1417	}
1418
1419	int ASN1CALL
1420	copy_IssuerAndSerialNumber(const IssuerAndSerialNumber from, IssuerAndSerialNumber to)
1421	{
1422	memset(to, `0`, sizeof(*to));
1423	if(copy_Name(&(from)->issuer, &(to)->issuer)) goto fail;
1424	if(copy_CertificateSerialNumber(&(from)->serialNumber, &(to)->serialNumber)) goto fail;
1425	return `0`;
1426	fail:
1427	free_IssuerAndSerialNumber(to);
1428	return ENOMEM;
1429	}
1430
1431	int ASN1CALL
1432	encode_CMSIdentifier(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CMSIdentifier data, size_t size)
1433	{
1434	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1435	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1436	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1437
1438
1439	switch((data)->element) {
1440	case choice_CMSIdentifier_subjectKeyIdentifier: {size_t Top_oldret = ret;
1441	ret = `0`;
1442	e = encode_SubjectKeyIdentifier(p, len, &((data))->u.subjectKeyIdentifier, &l);
1443	if (e) return e;
1444	p -= l; len -= l; ret += l;
1445
1446	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `0`, &l);
1447	if (e) return e;
1448	p -= l; len -= l; ret += l;
1449
1450	ret += Top_oldret;
1451	break;
1452	}
1453	case choice_CMSIdentifier_issuerAndSerialNumber: {size_t Top_oldret = ret;
1454	ret = `0`;
1455	e = encode_IssuerAndSerialNumber(p, len, &((data))->u.issuerAndSerialNumber, &l);
1456	if (e) return e;
1457	p -= l; len -= l; ret += l;
1458
1459	ret += Top_oldret;
1460	break;
1461	}
1462	};
1463	*size = ret;
1464	return `0`;
1465	}
1466
1467	int ASN1CALL
1468	decode_CMSIdentifier(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CMSIdentifier data, size_t *size)
1469	{
1470	size_t ret = `0`;
1471	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1472	int e HEIMDAL_UNUSED_ATTRIBUTE;
1473
1474	memset(data, `0`, sizeof(*data));
1475	if (der_match_tag(p, len, ASN1_C_UNIV, CONS, UT_Sequence, NULL) == `0`) {
1476	e = decode_IssuerAndSerialNumber(p, len, &(data)->u.issuerAndSerialNumber, &l);
1477	if(e) goto fail;
1478	p += l; len -= l; ret += l;
1479	(data)->element = choice_CMSIdentifier_issuerAndSerialNumber;
1480	}
1481	else if (der_match_tag(p, len, ASN1_C_CONTEXT, CONS, `0`, NULL) == `0`) {
1482	{
1483	size_t subjectKeyIdentifier_datalen, subjectKeyIdentifier_oldlen;
1484	Der_type subjectKeyIdentifier_type;
1485	int is_indefinite2;
1486	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &subjectKeyIdentifier_type, `0`, &subjectKeyIdentifier_datalen, &l);
1487	if (e == `0` && subjectKeyIdentifier_type != CONS) { e = ASN1_BAD_ID; }
1488	if(e) goto fail;
1489	p += l; len -= l; ret += l;
1490	subjectKeyIdentifier_oldlen = len;
1491	if((is_indefinite2 = _heim_fix_dce(subjectKeyIdentifier_datalen, &len)) < `0`)
1492	{ e = ASN1_BAD_FORMAT; goto fail; }
1493	if (is_indefinite2) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_SubjectKeyIdentifier(p, len, &(data)->u.subjectKeyIdentifier, &l);
1494	if(e) goto fail;
1495	p += l; len -= l; ret += l;
1496	if(is_indefinite2){
1497	len += `2`;
1498	e = der_match_tag_and_length(p, len, (Der_class)`0`, &subjectKeyIdentifier_type, UT_EndOfContent, &subjectKeyIdentifier_datalen, &l);
1499	if(e) goto fail;
1500	p += l; len -= l; ret += l;
1501	if (subjectKeyIdentifier_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
1502	} else
1503	len = subjectKeyIdentifier_oldlen - subjectKeyIdentifier_datalen;
1504	}
1505	(data)->element = choice_CMSIdentifier_subjectKeyIdentifier;
1506	}
1507	else {
1508	e = ASN1_PARSE_ERROR;
1509	goto fail;
1510	}
1511	if(size) *size = ret;
1512	return `0`;
1513	fail:
1514	free_CMSIdentifier(data);
1515	return e;
1516	}
1517
1518	void ASN1CALL
1519	free_CMSIdentifier(CMSIdentifier *data)
1520	{
1521	switch((data)->element) {
1522	case choice_CMSIdentifier_issuerAndSerialNumber:
1523	free_IssuerAndSerialNumber(&(data)->u.issuerAndSerialNumber);
1524	break;
1525	case choice_CMSIdentifier_subjectKeyIdentifier:
1526	free_SubjectKeyIdentifier(&(data)->u.subjectKeyIdentifier);
1527	break;
1528	}
1529	}
1530
1531	size_t ASN1CALL
1532	length_CMSIdentifier(const CMSIdentifier *data)
1533	{
1534	size_t ret = `0`;
1535	switch((data)->element) {
1536	case choice_CMSIdentifier_issuerAndSerialNumber:
1537	{
1538	size_t Top_oldret = ret;
1539	ret = `0`;
1540	ret += length_IssuerAndSerialNumber(&(data)->u.issuerAndSerialNumber);
1541	ret += Top_oldret;
1542	}
1543	break;
1544	case choice_CMSIdentifier_subjectKeyIdentifier:
1545	{
1546	size_t Top_oldret = ret;
1547	ret = `0`;
1548	ret += length_SubjectKeyIdentifier(&(data)->u.subjectKeyIdentifier);
1549	ret += `1` + der_length_len (ret);
1550	ret += Top_oldret;
1551	}
1552	break;
1553	}
1554	return ret;
1555	}
1556
1557	int ASN1CALL
1558	copy_CMSIdentifier(const CMSIdentifier from, CMSIdentifier to)
1559	{
1560	memset(to, `0`, sizeof(*to));
1561	(to)->element = (from)->element;
1562	switch((from)->element) {
1563	case choice_CMSIdentifier_issuerAndSerialNumber:
1564	if(copy_IssuerAndSerialNumber(&(from)->u.issuerAndSerialNumber, &(to)->u.issuerAndSerialNumber)) goto fail;
1565	break;
1566	case choice_CMSIdentifier_subjectKeyIdentifier:
1567	if(copy_SubjectKeyIdentifier(&(from)->u.subjectKeyIdentifier, &(to)->u.subjectKeyIdentifier)) goto fail;
1568	break;
1569	}
1570	return `0`;
1571	fail:
1572	free_CMSIdentifier(to);
1573	return ENOMEM;
1574	}
1575
1576	int ASN1CALL
1577	encode_SignerIdentifier(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* SignerIdentifier data, size_t size)
1578	{
1579	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1580	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1581	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1582
1583	e = encode_CMSIdentifier(p, len, data, &l);
1584	if (e) return e;
1585	p -= l; len -= l; ret += l;
1586
1587	*size = ret;
1588	return `0`;
1589	}
1590
1591	int ASN1CALL
1592	decode_SignerIdentifier(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, SignerIdentifier data, size_t *size)
1593	{
1594	size_t ret = `0`;
1595	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1596	int e HEIMDAL_UNUSED_ATTRIBUTE;
1597
1598	memset(data, `0`, sizeof(*data));
1599	e = decode_CMSIdentifier(p, len, data, &l);
1600	if(e) goto fail;
1601	p += l; len -= l; ret += l;
1602	if(size) *size = ret;
1603	return `0`;
1604	fail:
1605	free_SignerIdentifier(data);
1606	return e;
1607	}
1608
1609	void ASN1CALL
1610	free_SignerIdentifier(SignerIdentifier *data)
1611	{
1612	free_CMSIdentifier(data);
1613	}
1614
1615	size_t ASN1CALL
1616	length_SignerIdentifier(const SignerIdentifier *data)
1617	{
1618	size_t ret = `0`;
1619	ret += length_CMSIdentifier(data);
1620	return ret;
1621	}
1622
1623	int ASN1CALL
1624	copy_SignerIdentifier(const SignerIdentifier from, SignerIdentifier to)
1625	{
1626	memset(to, `0`, sizeof(*to));
1627	if(copy_CMSIdentifier(from, to)) goto fail;
1628	return `0`;
1629	fail:
1630	free_SignerIdentifier(to);
1631	return ENOMEM;
1632	}
1633
1634	int ASN1CALL
1635	encode_RecipientIdentifier(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* RecipientIdentifier data, size_t size)
1636	{
1637	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1638	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1639	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1640
1641	e = encode_CMSIdentifier(p, len, data, &l);
1642	if (e) return e;
1643	p -= l; len -= l; ret += l;
1644
1645	*size = ret;
1646	return `0`;
1647	}
1648
1649	int ASN1CALL
1650	decode_RecipientIdentifier(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, RecipientIdentifier data, size_t *size)
1651	{
1652	size_t ret = `0`;
1653	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1654	int e HEIMDAL_UNUSED_ATTRIBUTE;
1655
1656	memset(data, `0`, sizeof(*data));
1657	e = decode_CMSIdentifier(p, len, data, &l);
1658	if(e) goto fail;
1659	p += l; len -= l; ret += l;
1660	if(size) *size = ret;
1661	return `0`;
1662	fail:
1663	free_RecipientIdentifier(data);
1664	return e;
1665	}
1666
1667	void ASN1CALL
1668	free_RecipientIdentifier(RecipientIdentifier *data)
1669	{
1670	free_CMSIdentifier(data);
1671	}
1672
1673	size_t ASN1CALL
1674	length_RecipientIdentifier(const RecipientIdentifier *data)
1675	{
1676	size_t ret = `0`;
1677	ret += length_CMSIdentifier(data);
1678	return ret;
1679	}
1680
1681	int ASN1CALL
1682	copy_RecipientIdentifier(const RecipientIdentifier from, RecipientIdentifier to)
1683	{
1684	memset(to, `0`, sizeof(*to));
1685	if(copy_CMSIdentifier(from, to)) goto fail;
1686	return `0`;
1687	fail:
1688	free_RecipientIdentifier(to);
1689	return ENOMEM;
1690	}
1691
1692	int ASN1CALL
1693	encode_CMSAttributes(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CMSAttributes data, size_t size)
1694	{
1695	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1696	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1697	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1698
1699	{
1700	heim_octet_string *val;
1701	size_t elen = `0`, totallen = `0`;
1702	int eret = `0`;
1703	if ((data)->len > UINT_MAX/sizeof(val[`0`]))
1704	return ERANGE;
1705	val = malloc(sizeof(val[`0`]) * (data)->len);
1706	if (val == NULL && (data)->len != `0`) return ENOMEM;
1707	for(i = `0`; i < (int)(data)->len; i++) {
1708	ASN1_MALLOC_ENCODE(Attribute, val[i].data, val[i].length, &(data)->val[i], &elen, eret);
1709	if(eret) {
1710	i--;
1711	while (i >= `0`) {
1712	free(val[i].data);
1713	i--;
1714	}
1715	free(val);
1716	return eret;
1717	}
1718	totallen += elen;
1719	}
1720	if (totallen > len) {
1721	for (i = `0`; i < (int)(data)->len; i++) {
1722	free(val[i].data);
1723	}
1724	free(val);
1725	return ASN1_OVERFLOW;
1726	}
1727	qsort(val, (data)->len, sizeof(val[`0`]), _heim_der_set_sort);
1728	for(i = (int)(data)->len - `1`; i >= `0`; --i) {
1729	p -= val[i].length;
1730	ret += val[i].length;
1731	memcpy(p + `1`, val[i].data, val[i].length);
1732	free(val[i].data);
1733	}
1734	free(val);
1735	}
1736	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Set, &l);
1737	if (e) return e;
1738	p -= l; len -= l; ret += l;
1739
1740	*size = ret;
1741	return `0`;
1742	}
1743
1744	int ASN1CALL
1745	decode_CMSAttributes(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CMSAttributes data, size_t *size)
1746	{
1747	size_t ret = `0`;
1748	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1749	int e HEIMDAL_UNUSED_ATTRIBUTE;
1750
1751	memset(data, `0`, sizeof(*data));
1752	{
1753	size_t Top_datalen, Top_oldlen;
1754	Der_type Top_type;
1755	int is_indefinite1;
1756	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Set, &Top_datalen, &l);
1757	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
1758	if(e) goto fail;
1759	p += l; len -= l; ret += l;
1760	Top_oldlen = len;
1761	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
1762	{ e = ASN1_BAD_FORMAT; goto fail; }
1763	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
1764	size_t Top_Tag_origlen = len;
1765	size_t Top_Tag_oldret = ret;
1766	size_t Top_Tag_olen = `0`;
1767	void *Top_Tag_tmp;
1768	ret = `0`;
1769	(data)->len = `0`;
1770	(data)->val = NULL;
1771	while(ret < Top_Tag_origlen) {
1772	size_t Top_Tag_nlen = Top_Tag_olen + sizeof(*((data)->val));
1773	if (Top_Tag_olen > Top_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
1774	Top_Tag_olen = Top_Tag_nlen;
1775	Top_Tag_tmp = realloc((data)->val, Top_Tag_olen);
1776	if (Top_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
1777	(data)->val = Top_Tag_tmp;
1778	e = decode_Attribute(p, len, &(data)->val[(data)->len], &l);
1779	if(e) goto fail;
1780	p += l; len -= l; ret += l;
1781	(data)->len++;
1782	len = Top_Tag_origlen - ret;
1783	}
1784	ret += Top_Tag_oldret;
1785	}
1786	if(is_indefinite1){
1787	len += `2`;
1788	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
1789	if(e) goto fail;
1790	p += l; len -= l; ret += l;
1791	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
1792	} else
1793	len = Top_oldlen - Top_datalen;
1794	}
1795	if(size) *size = ret;
1796	return `0`;
1797	fail:
1798	free_CMSAttributes(data);
1799	return e;
1800	}
1801
1802	void ASN1CALL
1803	free_CMSAttributes(CMSAttributes *data)
1804	{
1805	while((data)->len){
1806	free_Attribute(&(data)->val[(data)->len-`1`]);
1807	(data)->len--;
1808	}
1809	free((data)->val);
1810	(data)->val = NULL;
1811	}
1812
1813	size_t ASN1CALL
1814	length_CMSAttributes(const CMSAttributes *data)
1815	{
1816	size_t ret = `0`;
1817	{
1818	size_t Top_tag_oldret = ret;
1819	unsigned int n_Top_tag;
1820	ret = `0`;
1821	for(n_Top_tag = (data)->len; n_Top_tag > `0`; --n_Top_tag){
1822	size_t Top_tag_for_oldret = ret;
1823	ret = `0`;
1824	ret += length_Attribute(&(data)->val[n_Top_tag - `1`]);
1825	ret += Top_tag_for_oldret;
1826	}
1827	ret += Top_tag_oldret;
1828	}
1829	ret += `1` + der_length_len (ret);
1830	return ret;
1831	}
1832
1833	int ASN1CALL
1834	copy_CMSAttributes(const CMSAttributes from, CMSAttributes to)
1835	{
1836	memset(to, `0`, sizeof(*to));
1837	if(((to)->val = malloc((from)->len * sizeof(*(to)->val))) == NULL && (from)->len != `0`)
1838	goto fail;
1839	for((to)->len = `0`; (to)->len < (from)->len; (to)->len++){
1840	if(copy_Attribute(&(from)->val[(to)->len], &(to)->val[(to)->len])) goto fail;
1841	}
1842	return `0`;
1843	fail:
1844	free_CMSAttributes(to);
1845	return ENOMEM;
1846	}
1847
1848	int ASN1CALL
1849	encode_SignatureValue(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* SignatureValue data, size_t size)
1850	{
1851	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1852	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1853	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1854
1855	e = der_put_octet_string(p, len, data, &l);
1856	if (e) return e;
1857	p -= l; len -= l; ret += l;
1858
1859	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OctetString, &l);
1860	if (e) return e;
1861	p -= l; len -= l; ret += l;
1862
1863	*size = ret;
1864	return `0`;
1865	}
1866
1867	int ASN1CALL
1868	decode_SignatureValue(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, SignatureValue data, size_t *size)
1869	{
1870	size_t ret = `0`;
1871	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1872	int e HEIMDAL_UNUSED_ATTRIBUTE;
1873
1874	memset(data, `0`, sizeof(*data));
1875	{
1876	size_t Top_datalen, Top_oldlen;
1877	Der_type Top_type;
1878	int is_indefinite1;
1879	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_OctetString, &Top_datalen, &l);
1880	if(e) goto fail;
1881	p += l; len -= l; ret += l;
1882	Top_oldlen = len;
1883	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
1884	{ e = ASN1_BAD_FORMAT; goto fail; }
1885	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (Top_type == CONS) {
1886	e = der_get_octet_string_ber(p, len, data, &l);
1887	if(e) goto fail;
1888	p += l; len -= l; ret += l;
1889	} else {
1890	e = der_get_octet_string(p, len, data, &l);
1891	if(e) goto fail;
1892	p += l; len -= l; ret += l;
1893	}
1894	if(is_indefinite1){
1895	len += `2`;
1896	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
1897	if(e) goto fail;
1898	p += l; len -= l; ret += l;
1899	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
1900	} else
1901	len = Top_oldlen - Top_datalen;
1902	}
1903	if(size) *size = ret;
1904	return `0`;
1905	fail:
1906	free_SignatureValue(data);
1907	return e;
1908	}
1909
1910	void ASN1CALL
1911	free_SignatureValue(SignatureValue *data)
1912	{
1913	der_free_octet_string(data);
1914	}
1915
1916	size_t ASN1CALL
1917	length_SignatureValue(const SignatureValue *data)
1918	{
1919	size_t ret = `0`;
1920	ret += der_length_octet_string(data);
1921	ret += `1` + der_length_len (ret);
1922	return ret;
1923	}
1924
1925	int ASN1CALL
1926	copy_SignatureValue(const SignatureValue from, SignatureValue to)
1927	{
1928	memset(to, `0`, sizeof(*to));
1929	if(der_copy_octet_string(from, to)) goto fail;
1930	return `0`;
1931	fail:
1932	free_SignatureValue(to);
1933	return ENOMEM;
1934	}
1935
1936	int ASN1CALL
1937	encode_SignerInfo(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* SignerInfo data, size_t size)
1938	{
1939	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
1940	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
1941	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
1942
1943	/ unsignedAttrs /
1944	if((data)->unsignedAttrs) {
1945	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
1946	ret = `0`;
1947	{
1948	heim_octet_string *val;
1949	size_t elen = `0`, totallen = `0`;
1950	int eret = `0`;
1951	if (((data)->unsignedAttrs)->len > UINT_MAX/sizeof(val[`0`]))
1952	return ERANGE;
1953	val = malloc(sizeof(val[`0`]) * ((data)->unsignedAttrs)->len);
1954	if (val == NULL && ((data)->unsignedAttrs)->len != `0`) return ENOMEM;
1955	for(i = `0`; i < (int)((data)->unsignedAttrs)->len; i++) {
1956	ASN1_MALLOC_ENCODE(Attribute, val[i].data, val[i].length, &((data)->unsignedAttrs)->val[i], &elen, eret);
1957	if(eret) {
1958	i--;
1959	while (i >= `0`) {
1960	free(val[i].data);
1961	i--;
1962	}
1963	free(val);
1964	return eret;
1965	}
1966	totallen += elen;
1967	}
1968	if (totallen > len) {
1969	for (i = `0`; i < (int)((data)->unsignedAttrs)->len; i++) {
1970	free(val[i].data);
1971	}
1972	free(val);
1973	return ASN1_OVERFLOW;
1974	}
1975	qsort(val, ((data)->unsignedAttrs)->len, sizeof(val[`0`]), _heim_der_set_sort);
1976	for(i = (int)((data)->unsignedAttrs)->len - `1`; i >= `0`; --i) {
1977	p -= val[i].length;
1978	ret += val[i].length;
1979	memcpy(p + `1`, val[i].data, val[i].length);
1980	free(val[i].data);
1981	}
1982	free(val);
1983	}
1984	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `1`, &l);
1985	if (e) return e;
1986	p -= l; len -= l; ret += l;
1987
1988	ret += Top_tag_oldret;
1989	}
1990	/ signature /
1991	{
1992	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
1993	ret = `0`;
1994	e = encode_SignatureValue(p, len, &(data)->signature, &l);
1995	if (e) return e;
1996	p -= l; len -= l; ret += l;
1997
1998	ret += Top_tag_oldret;
1999	}
2000	/ signatureAlgorithm /
2001	{
2002	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2003	ret = `0`;
2004	e = encode_SignatureAlgorithmIdentifier(p, len, &(data)->signatureAlgorithm, &l);
2005	if (e) return e;
2006	p -= l; len -= l; ret += l;
2007
2008	ret += Top_tag_oldret;
2009	}
2010	/ signedAttrs /
2011	if((data)->signedAttrs) {
2012	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2013	ret = `0`;
2014	{
2015	heim_octet_string *val;
2016	size_t elen = `0`, totallen = `0`;
2017	int eret = `0`;
2018	if (((data)->signedAttrs)->len > UINT_MAX/sizeof(val[`0`]))
2019	return ERANGE;
2020	val = malloc(sizeof(val[`0`]) * ((data)->signedAttrs)->len);
2021	if (val == NULL && ((data)->signedAttrs)->len != `0`) return ENOMEM;
2022	for(i = `0`; i < (int)((data)->signedAttrs)->len; i++) {
2023	ASN1_MALLOC_ENCODE(Attribute, val[i].data, val[i].length, &((data)->signedAttrs)->val[i], &elen, eret);
2024	if(eret) {
2025	i--;
2026	while (i >= `0`) {
2027	free(val[i].data);
2028	i--;
2029	}
2030	free(val);
2031	return eret;
2032	}
2033	totallen += elen;
2034	}
2035	if (totallen > len) {
2036	for (i = `0`; i < (int)((data)->signedAttrs)->len; i++) {
2037	free(val[i].data);
2038	}
2039	free(val);
2040	return ASN1_OVERFLOW;
2041	}
2042	qsort(val, ((data)->signedAttrs)->len, sizeof(val[`0`]), _heim_der_set_sort);
2043	for(i = (int)((data)->signedAttrs)->len - `1`; i >= `0`; --i) {
2044	p -= val[i].length;
2045	ret += val[i].length;
2046	memcpy(p + `1`, val[i].data, val[i].length);
2047	free(val[i].data);
2048	}
2049	free(val);
2050	}
2051	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `0`, &l);
2052	if (e) return e;
2053	p -= l; len -= l; ret += l;
2054
2055	ret += Top_tag_oldret;
2056	}
2057	/ digestAlgorithm /
2058	{
2059	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2060	ret = `0`;
2061	e = encode_DigestAlgorithmIdentifier(p, len, &(data)->digestAlgorithm, &l);
2062	if (e) return e;
2063	p -= l; len -= l; ret += l;
2064
2065	ret += Top_tag_oldret;
2066	}
2067	/ sid /
2068	{
2069	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2070	ret = `0`;
2071	e = encode_SignerIdentifier(p, len, &(data)->sid, &l);
2072	if (e) return e;
2073	p -= l; len -= l; ret += l;
2074
2075	ret += Top_tag_oldret;
2076	}
2077	/ version /
2078	{
2079	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2080	ret = `0`;
2081	e = encode_CMSVersion(p, len, &(data)->version, &l);
2082	if (e) return e;
2083	p -= l; len -= l; ret += l;
2084
2085	ret += Top_tag_oldret;
2086	}
2087	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
2088	if (e) return e;
2089	p -= l; len -= l; ret += l;
2090
2091	*size = ret;
2092	return `0`;
2093	}
2094
2095	int ASN1CALL
2096	decode_SignerInfo(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, SignerInfo data, size_t *size)
2097	{
2098	size_t ret = `0`;
2099	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
2100	int e HEIMDAL_UNUSED_ATTRIBUTE;
2101
2102	memset(data, `0`, sizeof(*data));
2103	{
2104	size_t Top_datalen, Top_oldlen;
2105	Der_type Top_type;
2106	int is_indefinite1;
2107	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
2108	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
2109	if(e) goto fail;
2110	p += l; len -= l; ret += l;
2111	Top_oldlen = len;
2112	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
2113	{ e = ASN1_BAD_FORMAT; goto fail; }
2114	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_CMSVersion(p, len, &(data)->version, &l);
2115	if(e) goto fail;
2116	p += l; len -= l; ret += l;
2117	e = decode_SignerIdentifier(p, len, &(data)->sid, &l);
2118	if(e) goto fail;
2119	p += l; len -= l; ret += l;
2120	e = decode_DigestAlgorithmIdentifier(p, len, &(data)->digestAlgorithm, &l);
2121	if(e) goto fail;
2122	p += l; len -= l; ret += l;
2123	{
2124	size_t signedAttrs_datalen, signedAttrs_oldlen;
2125	Der_type signedAttrs_type;
2126	int is_indefinite3;
2127	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &signedAttrs_type, `0`, &signedAttrs_datalen, &l);
2128	if (e == `0` && signedAttrs_type != CONS) { e = ASN1_BAD_ID; }
2129	if(e) {
2130	(data)->signedAttrs = NULL;
2131	} else {
2132	(data)->signedAttrs = calloc(`1`, sizeof(*(data)->signedAttrs));
2133	if ((data)->signedAttrs == NULL) { e = ENOMEM; goto fail; }
2134	p += l; len -= l; ret += l;
2135	signedAttrs_oldlen = len;
2136	if((is_indefinite3 = _heim_fix_dce(signedAttrs_datalen, &len)) < `0`)
2137	{ e = ASN1_BAD_FORMAT; goto fail; }
2138	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
2139	size_t signedAttrs_Tag_origlen = len;
2140	size_t signedAttrs_Tag_oldret = ret;
2141	size_t signedAttrs_Tag_olen = `0`;
2142	void *signedAttrs_Tag_tmp;
2143	ret = `0`;
2144	((data)->signedAttrs)->len = `0`;
2145	((data)->signedAttrs)->val = NULL;
2146	while(ret < signedAttrs_Tag_origlen) {
2147	size_t signedAttrs_Tag_nlen = signedAttrs_Tag_olen + sizeof(*(((data)->signedAttrs)->val));
2148	if (signedAttrs_Tag_olen > signedAttrs_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
2149	signedAttrs_Tag_olen = signedAttrs_Tag_nlen;
2150	signedAttrs_Tag_tmp = realloc(((data)->signedAttrs)->val, signedAttrs_Tag_olen);
2151	if (signedAttrs_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
2152	((data)->signedAttrs)->val = signedAttrs_Tag_tmp;
2153	e = decode_Attribute(p, len, &((data)->signedAttrs)->val[((data)->signedAttrs)->len], &l);
2154	if(e) goto fail;
2155	p += l; len -= l; ret += l;
2156	((data)->signedAttrs)->len++;
2157	len = signedAttrs_Tag_origlen - ret;
2158	}
2159	ret += signedAttrs_Tag_oldret;
2160	}
2161	if(is_indefinite3){
2162	len += `2`;
2163	e = der_match_tag_and_length(p, len, (Der_class)`0`, &signedAttrs_type, UT_EndOfContent, &signedAttrs_datalen, &l);
2164	if(e) goto fail;
2165	p += l; len -= l; ret += l;
2166	if (signedAttrs_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
2167	} else
2168	len = signedAttrs_oldlen - signedAttrs_datalen;
2169	}
2170	}
2171	e = decode_SignatureAlgorithmIdentifier(p, len, &(data)->signatureAlgorithm, &l);
2172	if(e) goto fail;
2173	p += l; len -= l; ret += l;
2174	e = decode_SignatureValue(p, len, &(data)->signature, &l);
2175	if(e) goto fail;
2176	p += l; len -= l; ret += l;
2177	{
2178	size_t unsignedAttrs_datalen, unsignedAttrs_oldlen;
2179	Der_type unsignedAttrs_type;
2180	int is_indefinite3;
2181	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &unsignedAttrs_type, `1`, &unsignedAttrs_datalen, &l);
2182	if (e == `0` && unsignedAttrs_type != CONS) { e = ASN1_BAD_ID; }
2183	if(e) {
2184	(data)->unsignedAttrs = NULL;
2185	} else {
2186	(data)->unsignedAttrs = calloc(`1`, sizeof(*(data)->unsignedAttrs));
2187	if ((data)->unsignedAttrs == NULL) { e = ENOMEM; goto fail; }
2188	p += l; len -= l; ret += l;
2189	unsignedAttrs_oldlen = len;
2190	if((is_indefinite3 = _heim_fix_dce(unsignedAttrs_datalen, &len)) < `0`)
2191	{ e = ASN1_BAD_FORMAT; goto fail; }
2192	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
2193	size_t unsignedAttrs_Tag_origlen = len;
2194	size_t unsignedAttrs_Tag_oldret = ret;
2195	size_t unsignedAttrs_Tag_olen = `0`;
2196	void *unsignedAttrs_Tag_tmp;
2197	ret = `0`;
2198	((data)->unsignedAttrs)->len = `0`;
2199	((data)->unsignedAttrs)->val = NULL;
2200	while(ret < unsignedAttrs_Tag_origlen) {
2201	size_t unsignedAttrs_Tag_nlen = unsignedAttrs_Tag_olen + sizeof(*(((data)->unsignedAttrs)->val));
2202	if (unsignedAttrs_Tag_olen > unsignedAttrs_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
2203	unsignedAttrs_Tag_olen = unsignedAttrs_Tag_nlen;
2204	unsignedAttrs_Tag_tmp = realloc(((data)->unsignedAttrs)->val, unsignedAttrs_Tag_olen);
2205	if (unsignedAttrs_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
2206	((data)->unsignedAttrs)->val = unsignedAttrs_Tag_tmp;
2207	e = decode_Attribute(p, len, &((data)->unsignedAttrs)->val[((data)->unsignedAttrs)->len], &l);
2208	if(e) goto fail;
2209	p += l; len -= l; ret += l;
2210	((data)->unsignedAttrs)->len++;
2211	len = unsignedAttrs_Tag_origlen - ret;
2212	}
2213	ret += unsignedAttrs_Tag_oldret;
2214	}
2215	if(is_indefinite3){
2216	len += `2`;
2217	e = der_match_tag_and_length(p, len, (Der_class)`0`, &unsignedAttrs_type, UT_EndOfContent, &unsignedAttrs_datalen, &l);
2218	if(e) goto fail;
2219	p += l; len -= l; ret += l;
2220	if (unsignedAttrs_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
2221	} else
2222	len = unsignedAttrs_oldlen - unsignedAttrs_datalen;
2223	}
2224	}
2225	if(is_indefinite1){
2226	len += `2`;
2227	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
2228	if(e) goto fail;
2229	p += l; len -= l; ret += l;
2230	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
2231	} else
2232	len = Top_oldlen - Top_datalen;
2233	}
2234	if(size) *size = ret;
2235	return `0`;
2236	fail:
2237	free_SignerInfo(data);
2238	return e;
2239	}
2240
2241	void ASN1CALL
2242	free_SignerInfo(SignerInfo *data)
2243	{
2244	free_CMSVersion(&(data)->version);
2245	free_SignerIdentifier(&(data)->sid);
2246	free_DigestAlgorithmIdentifier(&(data)->digestAlgorithm);
2247	if((data)->signedAttrs) {
2248	while(((data)->signedAttrs)->len){
2249	free_Attribute(&((data)->signedAttrs)->val[((data)->signedAttrs)->len-`1`]);
2250	((data)->signedAttrs)->len--;
2251	}
2252	free(((data)->signedAttrs)->val);
2253	((data)->signedAttrs)->val = NULL;
2254	free((data)->signedAttrs);
2255	(data)->signedAttrs = NULL;
2256	}
2257	free_SignatureAlgorithmIdentifier(&(data)->signatureAlgorithm);
2258	free_SignatureValue(&(data)->signature);
2259	if((data)->unsignedAttrs) {
2260	while(((data)->unsignedAttrs)->len){
2261	free_Attribute(&((data)->unsignedAttrs)->val[((data)->unsignedAttrs)->len-`1`]);
2262	((data)->unsignedAttrs)->len--;
2263	}
2264	free(((data)->unsignedAttrs)->val);
2265	((data)->unsignedAttrs)->val = NULL;
2266	free((data)->unsignedAttrs);
2267	(data)->unsignedAttrs = NULL;
2268	}
2269	}
2270
2271	size_t ASN1CALL
2272	length_SignerInfo(const SignerInfo *data)
2273	{
2274	size_t ret = `0`;
2275	{
2276	size_t Top_tag_oldret = ret;
2277	ret = `0`;
2278	ret += length_CMSVersion(&(data)->version);
2279	ret += Top_tag_oldret;
2280	}
2281	{
2282	size_t Top_tag_oldret = ret;
2283	ret = `0`;
2284	ret += length_SignerIdentifier(&(data)->sid);
2285	ret += Top_tag_oldret;
2286	}
2287	{
2288	size_t Top_tag_oldret = ret;
2289	ret = `0`;
2290	ret += length_DigestAlgorithmIdentifier(&(data)->digestAlgorithm);
2291	ret += Top_tag_oldret;
2292	}
2293	if((data)->signedAttrs){
2294	size_t Top_tag_oldret = ret;
2295	ret = `0`;
2296	{
2297	size_t signedAttrs_tag_oldret = ret;
2298	unsigned int n_signedAttrs_tag;
2299	ret = `0`;
2300	for(n_signedAttrs_tag = ((data)->signedAttrs)->len; n_signedAttrs_tag > `0`; --n_signedAttrs_tag){
2301	size_t signedAttrs_tag_for_oldret = ret;
2302	ret = `0`;
2303	ret += length_Attribute(&((data)->signedAttrs)->val[n_signedAttrs_tag - `1`]);
2304	ret += signedAttrs_tag_for_oldret;
2305	}
2306	ret += signedAttrs_tag_oldret;
2307	}
2308	ret += `1` + der_length_len (ret);
2309	ret += Top_tag_oldret;
2310	}
2311	{
2312	size_t Top_tag_oldret = ret;
2313	ret = `0`;
2314	ret += length_SignatureAlgorithmIdentifier(&(data)->signatureAlgorithm);
2315	ret += Top_tag_oldret;
2316	}
2317	{
2318	size_t Top_tag_oldret = ret;
2319	ret = `0`;
2320	ret += length_SignatureValue(&(data)->signature);
2321	ret += Top_tag_oldret;
2322	}
2323	if((data)->unsignedAttrs){
2324	size_t Top_tag_oldret = ret;
2325	ret = `0`;
2326	{
2327	size_t unsignedAttrs_tag_oldret = ret;
2328	unsigned int n_unsignedAttrs_tag;
2329	ret = `0`;
2330	for(n_unsignedAttrs_tag = ((data)->unsignedAttrs)->len; n_unsignedAttrs_tag > `0`; --n_unsignedAttrs_tag){
2331	size_t unsignedAttrs_tag_for_oldret = ret;
2332	ret = `0`;
2333	ret += length_Attribute(&((data)->unsignedAttrs)->val[n_unsignedAttrs_tag - `1`]);
2334	ret += unsignedAttrs_tag_for_oldret;
2335	}
2336	ret += unsignedAttrs_tag_oldret;
2337	}
2338	ret += `1` + der_length_len (ret);
2339	ret += Top_tag_oldret;
2340	}
2341	ret += `1` + der_length_len (ret);
2342	return ret;
2343	}
2344
2345	int ASN1CALL
2346	copy_SignerInfo(const SignerInfo from, SignerInfo to)
2347	{
2348	memset(to, `0`, sizeof(*to));
2349	if(copy_CMSVersion(&(from)->version, &(to)->version)) goto fail;
2350	if(copy_SignerIdentifier(&(from)->sid, &(to)->sid)) goto fail;
2351	if(copy_DigestAlgorithmIdentifier(&(from)->digestAlgorithm, &(to)->digestAlgorithm)) goto fail;
2352	if((from)->signedAttrs) {
2353	(to)->signedAttrs = malloc(sizeof(*(to)->signedAttrs));
2354	if((to)->signedAttrs == NULL) goto fail;
2355	if((((to)->signedAttrs)->val = malloc(((from)->signedAttrs)->len * sizeof(*((to)->signedAttrs)->val))) == NULL && ((from)->signedAttrs)->len != `0`)
2356	goto fail;
2357	for(((to)->signedAttrs)->len = `0`; ((to)->signedAttrs)->len < ((from)->signedAttrs)->len; ((to)->signedAttrs)->len++){
2358	if(copy_Attribute(&((from)->signedAttrs)->val[((to)->signedAttrs)->len], &((to)->signedAttrs)->val[((to)->signedAttrs)->len])) goto fail;
2359	}
2360	}else
2361	(to)->signedAttrs = NULL;
2362	if(copy_SignatureAlgorithmIdentifier(&(from)->signatureAlgorithm, &(to)->signatureAlgorithm)) goto fail;
2363	if(copy_SignatureValue(&(from)->signature, &(to)->signature)) goto fail;
2364	if((from)->unsignedAttrs) {
2365	(to)->unsignedAttrs = malloc(sizeof(*(to)->unsignedAttrs));
2366	if((to)->unsignedAttrs == NULL) goto fail;
2367	if((((to)->unsignedAttrs)->val = malloc(((from)->unsignedAttrs)->len * sizeof(*((to)->unsignedAttrs)->val))) == NULL && ((from)->unsignedAttrs)->len != `0`)
2368	goto fail;
2369	for(((to)->unsignedAttrs)->len = `0`; ((to)->unsignedAttrs)->len < ((from)->unsignedAttrs)->len; ((to)->unsignedAttrs)->len++){
2370	if(copy_Attribute(&((from)->unsignedAttrs)->val[((to)->unsignedAttrs)->len], &((to)->unsignedAttrs)->val[((to)->unsignedAttrs)->len])) goto fail;
2371	}
2372	}else
2373	(to)->unsignedAttrs = NULL;
2374	return `0`;
2375	fail:
2376	free_SignerInfo(to);
2377	return ENOMEM;
2378	}
2379
2380	int ASN1CALL
2381	encode_SignerInfos(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* SignerInfos data, size_t size)
2382	{
2383	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
2384	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
2385	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
2386
2387	{
2388	heim_octet_string *val;
2389	size_t elen = `0`, totallen = `0`;
2390	int eret = `0`;
2391	if ((data)->len > UINT_MAX/sizeof(val[`0`]))
2392	return ERANGE;
2393	val = malloc(sizeof(val[`0`]) * (data)->len);
2394	if (val == NULL && (data)->len != `0`) return ENOMEM;
2395	for(i = `0`; i < (int)(data)->len; i++) {
2396	ASN1_MALLOC_ENCODE(SignerInfo, val[i].data, val[i].length, &(data)->val[i], &elen, eret);
2397	if(eret) {
2398	i--;
2399	while (i >= `0`) {
2400	free(val[i].data);
2401	i--;
2402	}
2403	free(val);
2404	return eret;
2405	}
2406	totallen += elen;
2407	}
2408	if (totallen > len) {
2409	for (i = `0`; i < (int)(data)->len; i++) {
2410	free(val[i].data);
2411	}
2412	free(val);
2413	return ASN1_OVERFLOW;
2414	}
2415	qsort(val, (data)->len, sizeof(val[`0`]), _heim_der_set_sort);
2416	for(i = (int)(data)->len - `1`; i >= `0`; --i) {
2417	p -= val[i].length;
2418	ret += val[i].length;
2419	memcpy(p + `1`, val[i].data, val[i].length);
2420	free(val[i].data);
2421	}
2422	free(val);
2423	}
2424	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Set, &l);
2425	if (e) return e;
2426	p -= l; len -= l; ret += l;
2427
2428	*size = ret;
2429	return `0`;
2430	}
2431
2432	int ASN1CALL
2433	decode_SignerInfos(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, SignerInfos data, size_t *size)
2434	{
2435	size_t ret = `0`;
2436	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
2437	int e HEIMDAL_UNUSED_ATTRIBUTE;
2438
2439	memset(data, `0`, sizeof(*data));
2440	{
2441	size_t Top_datalen, Top_oldlen;
2442	Der_type Top_type;
2443	int is_indefinite1;
2444	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Set, &Top_datalen, &l);
2445	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
2446	if(e) goto fail;
2447	p += l; len -= l; ret += l;
2448	Top_oldlen = len;
2449	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
2450	{ e = ASN1_BAD_FORMAT; goto fail; }
2451	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
2452	size_t Top_Tag_origlen = len;
2453	size_t Top_Tag_oldret = ret;
2454	size_t Top_Tag_olen = `0`;
2455	void *Top_Tag_tmp;
2456	ret = `0`;
2457	(data)->len = `0`;
2458	(data)->val = NULL;
2459	while(ret < Top_Tag_origlen) {
2460	size_t Top_Tag_nlen = Top_Tag_olen + sizeof(*((data)->val));
2461	if (Top_Tag_olen > Top_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
2462	Top_Tag_olen = Top_Tag_nlen;
2463	Top_Tag_tmp = realloc((data)->val, Top_Tag_olen);
2464	if (Top_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
2465	(data)->val = Top_Tag_tmp;
2466	e = decode_SignerInfo(p, len, &(data)->val[(data)->len], &l);
2467	if(e) goto fail;
2468	p += l; len -= l; ret += l;
2469	(data)->len++;
2470	len = Top_Tag_origlen - ret;
2471	}
2472	ret += Top_Tag_oldret;
2473	}
2474	if(is_indefinite1){
2475	len += `2`;
2476	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
2477	if(e) goto fail;
2478	p += l; len -= l; ret += l;
2479	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
2480	} else
2481	len = Top_oldlen - Top_datalen;
2482	}
2483	if(size) *size = ret;
2484	return `0`;
2485	fail:
2486	free_SignerInfos(data);
2487	return e;
2488	}
2489
2490	void ASN1CALL
2491	free_SignerInfos(SignerInfos *data)
2492	{
2493	while((data)->len){
2494	free_SignerInfo(&(data)->val[(data)->len-`1`]);
2495	(data)->len--;
2496	}
2497	free((data)->val);
2498	(data)->val = NULL;
2499	}
2500
2501	size_t ASN1CALL
2502	length_SignerInfos(const SignerInfos *data)
2503	{
2504	size_t ret = `0`;
2505	{
2506	size_t Top_tag_oldret = ret;
2507	unsigned int n_Top_tag;
2508	ret = `0`;
2509	for(n_Top_tag = (data)->len; n_Top_tag > `0`; --n_Top_tag){
2510	size_t Top_tag_for_oldret = ret;
2511	ret = `0`;
2512	ret += length_SignerInfo(&(data)->val[n_Top_tag - `1`]);
2513	ret += Top_tag_for_oldret;
2514	}
2515	ret += Top_tag_oldret;
2516	}
2517	ret += `1` + der_length_len (ret);
2518	return ret;
2519	}
2520
2521	int ASN1CALL
2522	copy_SignerInfos(const SignerInfos from, SignerInfos to)
2523	{
2524	memset(to, `0`, sizeof(*to));
2525	if(((to)->val = malloc((from)->len * sizeof(*(to)->val))) == NULL && (from)->len != `0`)
2526	goto fail;
2527	for((to)->len = `0`; (to)->len < (from)->len; (to)->len++){
2528	if(copy_SignerInfo(&(from)->val[(to)->len], &(to)->val[(to)->len])) goto fail;
2529	}
2530	return `0`;
2531	fail:
2532	free_SignerInfos(to);
2533	return ENOMEM;
2534	}
2535
2536	int ASN1CALL
2537	encode_SignedData(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* SignedData data, size_t size)
2538	{
2539	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
2540	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
2541	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
2542
2543	/ signerInfos /
2544	{
2545	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2546	ret = `0`;
2547	e = encode_SignerInfos(p, len, &(data)->signerInfos, &l);
2548	if (e) return e;
2549	p -= l; len -= l; ret += l;
2550
2551	ret += Top_tag_oldret;
2552	}
2553	/ crls /
2554	if((data)->crls) {
2555	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2556	ret = `0`;
2557	e = encode_heim_any(p, len, (data)->crls, &l);
2558	if (e) return e;
2559	p -= l; len -= l; ret += l;
2560
2561	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `1`, &l);
2562	if (e) return e;
2563	p -= l; len -= l; ret += l;
2564
2565	ret += Top_tag_oldret;
2566	}
2567	/ certificates /
2568	if((data)->certificates) {
2569	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2570	ret = `0`;
2571	{
2572	heim_octet_string *val;
2573	size_t elen = `0`, totallen = `0`;
2574	int eret = `0`;
2575	if (((data)->certificates)->len > UINT_MAX/sizeof(val[`0`]))
2576	return ERANGE;
2577	val = malloc(sizeof(val[`0`]) * ((data)->certificates)->len);
2578	if (val == NULL && ((data)->certificates)->len != `0`) return ENOMEM;
2579	for(i = `0`; i < (int)((data)->certificates)->len; i++) {
2580	ASN1_MALLOC_ENCODE(heim_any, val[i].data, val[i].length, &((data)->certificates)->val[i], &elen, eret);
2581	if(eret) {
2582	i--;
2583	while (i >= `0`) {
2584	free(val[i].data);
2585	i--;
2586	}
2587	free(val);
2588	return eret;
2589	}
2590	totallen += elen;
2591	}
2592	if (totallen > len) {
2593	for (i = `0`; i < (int)((data)->certificates)->len; i++) {
2594	free(val[i].data);
2595	}
2596	free(val);
2597	return ASN1_OVERFLOW;
2598	}
2599	qsort(val, ((data)->certificates)->len, sizeof(val[`0`]), _heim_der_set_sort);
2600	for(i = (int)((data)->certificates)->len - `1`; i >= `0`; --i) {
2601	p -= val[i].length;
2602	ret += val[i].length;
2603	memcpy(p + `1`, val[i].data, val[i].length);
2604	free(val[i].data);
2605	}
2606	free(val);
2607	}
2608	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `0`, &l);
2609	if (e) return e;
2610	p -= l; len -= l; ret += l;
2611
2612	ret += Top_tag_oldret;
2613	}
2614	/ encapContentInfo /
2615	{
2616	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2617	ret = `0`;
2618	e = encode_EncapsulatedContentInfo(p, len, &(data)->encapContentInfo, &l);
2619	if (e) return e;
2620	p -= l; len -= l; ret += l;
2621
2622	ret += Top_tag_oldret;
2623	}
2624	/ digestAlgorithms /
2625	{
2626	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2627	ret = `0`;
2628	e = encode_DigestAlgorithmIdentifiers(p, len, &(data)->digestAlgorithms, &l);
2629	if (e) return e;
2630	p -= l; len -= l; ret += l;
2631
2632	ret += Top_tag_oldret;
2633	}
2634	/ version /
2635	{
2636	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2637	ret = `0`;
2638	e = encode_CMSVersion(p, len, &(data)->version, &l);
2639	if (e) return e;
2640	p -= l; len -= l; ret += l;
2641
2642	ret += Top_tag_oldret;
2643	}
2644	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
2645	if (e) return e;
2646	p -= l; len -= l; ret += l;
2647
2648	*size = ret;
2649	return `0`;
2650	}
2651
2652	int ASN1CALL
2653	decode_SignedData(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, SignedData data, size_t *size)
2654	{
2655	size_t ret = `0`;
2656	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
2657	int e HEIMDAL_UNUSED_ATTRIBUTE;
2658
2659	memset(data, `0`, sizeof(*data));
2660	{
2661	size_t Top_datalen, Top_oldlen;
2662	Der_type Top_type;
2663	int is_indefinite1;
2664	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
2665	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
2666	if(e) goto fail;
2667	p += l; len -= l; ret += l;
2668	Top_oldlen = len;
2669	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
2670	{ e = ASN1_BAD_FORMAT; goto fail; }
2671	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_CMSVersion(p, len, &(data)->version, &l);
2672	if(e) goto fail;
2673	p += l; len -= l; ret += l;
2674	e = decode_DigestAlgorithmIdentifiers(p, len, &(data)->digestAlgorithms, &l);
2675	if(e) goto fail;
2676	p += l; len -= l; ret += l;
2677	e = decode_EncapsulatedContentInfo(p, len, &(data)->encapContentInfo, &l);
2678	if(e) goto fail;
2679	p += l; len -= l; ret += l;
2680	{
2681	size_t certificates_datalen, certificates_oldlen;
2682	Der_type certificates_type;
2683	int is_indefinite3;
2684	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &certificates_type, `0`, &certificates_datalen, &l);
2685	if (e == `0` && certificates_type != CONS) { e = ASN1_BAD_ID; }
2686	if(e) {
2687	(data)->certificates = NULL;
2688	} else {
2689	(data)->certificates = calloc(`1`, sizeof(*(data)->certificates));
2690	if ((data)->certificates == NULL) { e = ENOMEM; goto fail; }
2691	p += l; len -= l; ret += l;
2692	certificates_oldlen = len;
2693	if((is_indefinite3 = _heim_fix_dce(certificates_datalen, &len)) < `0`)
2694	{ e = ASN1_BAD_FORMAT; goto fail; }
2695	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
2696	size_t certificates_Tag_origlen = len;
2697	size_t certificates_Tag_oldret = ret;
2698	size_t certificates_Tag_olen = `0`;
2699	void *certificates_Tag_tmp;
2700	ret = `0`;
2701	((data)->certificates)->len = `0`;
2702	((data)->certificates)->val = NULL;
2703	while(ret < certificates_Tag_origlen) {
2704	size_t certificates_Tag_nlen = certificates_Tag_olen + sizeof(*(((data)->certificates)->val));
2705	if (certificates_Tag_olen > certificates_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
2706	certificates_Tag_olen = certificates_Tag_nlen;
2707	certificates_Tag_tmp = realloc(((data)->certificates)->val, certificates_Tag_olen);
2708	if (certificates_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
2709	((data)->certificates)->val = certificates_Tag_tmp;
2710	e = decode_heim_any(p, len, &((data)->certificates)->val[((data)->certificates)->len], &l);
2711	if(e) goto fail;
2712	p += l; len -= l; ret += l;
2713	((data)->certificates)->len++;
2714	len = certificates_Tag_origlen - ret;
2715	}
2716	ret += certificates_Tag_oldret;
2717	}
2718	if(is_indefinite3){
2719	len += `2`;
2720	e = der_match_tag_and_length(p, len, (Der_class)`0`, &certificates_type, UT_EndOfContent, &certificates_datalen, &l);
2721	if(e) goto fail;
2722	p += l; len -= l; ret += l;
2723	if (certificates_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
2724	} else
2725	len = certificates_oldlen - certificates_datalen;
2726	}
2727	}
2728	{
2729	size_t crls_datalen, crls_oldlen;
2730	Der_type crls_type;
2731	int is_indefinite3;
2732	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &crls_type, `1`, &crls_datalen, &l);
2733	if (e == `0` && crls_type != CONS) { e = ASN1_BAD_ID; }
2734	if(e) {
2735	(data)->crls = NULL;
2736	} else {
2737	(data)->crls = calloc(`1`, sizeof(*(data)->crls));
2738	if ((data)->crls == NULL) { e = ENOMEM; goto fail; }
2739	p += l; len -= l; ret += l;
2740	crls_oldlen = len;
2741	if((is_indefinite3 = _heim_fix_dce(crls_datalen, &len)) < `0`)
2742	{ e = ASN1_BAD_FORMAT; goto fail; }
2743	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_heim_any(p, len, (data)->crls, &l);
2744	if(e) goto fail;
2745	p += l; len -= l; ret += l;
2746	if(is_indefinite3){
2747	len += `2`;
2748	e = der_match_tag_and_length(p, len, (Der_class)`0`, &crls_type, UT_EndOfContent, &crls_datalen, &l);
2749	if(e) goto fail;
2750	p += l; len -= l; ret += l;
2751	if (crls_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
2752	} else
2753	len = crls_oldlen - crls_datalen;
2754	}
2755	}
2756	e = decode_SignerInfos(p, len, &(data)->signerInfos, &l);
2757	if(e) goto fail;
2758	p += l; len -= l; ret += l;
2759	if(is_indefinite1){
2760	len += `2`;
2761	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
2762	if(e) goto fail;
2763	p += l; len -= l; ret += l;
2764	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
2765	} else
2766	len = Top_oldlen - Top_datalen;
2767	}
2768	if(size) *size = ret;
2769	return `0`;
2770	fail:
2771	free_SignedData(data);
2772	return e;
2773	}
2774
2775	void ASN1CALL
2776	free_SignedData(SignedData *data)
2777	{
2778	free_CMSVersion(&(data)->version);
2779	free_DigestAlgorithmIdentifiers(&(data)->digestAlgorithms);
2780	free_EncapsulatedContentInfo(&(data)->encapContentInfo);
2781	if((data)->certificates) {
2782	while(((data)->certificates)->len){
2783	free_heim_any(&((data)->certificates)->val[((data)->certificates)->len-`1`]);
2784	((data)->certificates)->len--;
2785	}
2786	free(((data)->certificates)->val);
2787	((data)->certificates)->val = NULL;
2788	free((data)->certificates);
2789	(data)->certificates = NULL;
2790	}
2791	if((data)->crls) {
2792	free_heim_any((data)->crls);
2793	free((data)->crls);
2794	(data)->crls = NULL;
2795	}
2796	free_SignerInfos(&(data)->signerInfos);
2797	}
2798
2799	size_t ASN1CALL
2800	length_SignedData(const SignedData *data)
2801	{
2802	size_t ret = `0`;
2803	{
2804	size_t Top_tag_oldret = ret;
2805	ret = `0`;
2806	ret += length_CMSVersion(&(data)->version);
2807	ret += Top_tag_oldret;
2808	}
2809	{
2810	size_t Top_tag_oldret = ret;
2811	ret = `0`;
2812	ret += length_DigestAlgorithmIdentifiers(&(data)->digestAlgorithms);
2813	ret += Top_tag_oldret;
2814	}
2815	{
2816	size_t Top_tag_oldret = ret;
2817	ret = `0`;
2818	ret += length_EncapsulatedContentInfo(&(data)->encapContentInfo);
2819	ret += Top_tag_oldret;
2820	}
2821	if((data)->certificates){
2822	size_t Top_tag_oldret = ret;
2823	ret = `0`;
2824	{
2825	size_t certificates_tag_oldret = ret;
2826	unsigned int n_certificates_tag;
2827	ret = `0`;
2828	for(n_certificates_tag = ((data)->certificates)->len; n_certificates_tag > `0`; --n_certificates_tag){
2829	size_t certificates_tag_for_oldret = ret;
2830	ret = `0`;
2831	ret += length_heim_any(&((data)->certificates)->val[n_certificates_tag - `1`]);
2832	ret += certificates_tag_for_oldret;
2833	}
2834	ret += certificates_tag_oldret;
2835	}
2836	ret += `1` + der_length_len (ret);
2837	ret += Top_tag_oldret;
2838	}
2839	if((data)->crls){
2840	size_t Top_tag_oldret = ret;
2841	ret = `0`;
2842	ret += length_heim_any((data)->crls);
2843	ret += `1` + der_length_len (ret);
2844	ret += Top_tag_oldret;
2845	}
2846	{
2847	size_t Top_tag_oldret = ret;
2848	ret = `0`;
2849	ret += length_SignerInfos(&(data)->signerInfos);
2850	ret += Top_tag_oldret;
2851	}
2852	ret += `1` + der_length_len (ret);
2853	return ret;
2854	}
2855
2856	int ASN1CALL
2857	copy_SignedData(const SignedData from, SignedData to)
2858	{
2859	memset(to, `0`, sizeof(*to));
2860	if(copy_CMSVersion(&(from)->version, &(to)->version)) goto fail;
2861	if(copy_DigestAlgorithmIdentifiers(&(from)->digestAlgorithms, &(to)->digestAlgorithms)) goto fail;
2862	if(copy_EncapsulatedContentInfo(&(from)->encapContentInfo, &(to)->encapContentInfo)) goto fail;
2863	if((from)->certificates) {
2864	(to)->certificates = malloc(sizeof(*(to)->certificates));
2865	if((to)->certificates == NULL) goto fail;
2866	if((((to)->certificates)->val = malloc(((from)->certificates)->len * sizeof(*((to)->certificates)->val))) == NULL && ((from)->certificates)->len != `0`)
2867	goto fail;
2868	for(((to)->certificates)->len = `0`; ((to)->certificates)->len < ((from)->certificates)->len; ((to)->certificates)->len++){
2869	if(copy_heim_any(&((from)->certificates)->val[((to)->certificates)->len], &((to)->certificates)->val[((to)->certificates)->len])) goto fail;
2870	}
2871	}else
2872	(to)->certificates = NULL;
2873	if((from)->crls) {
2874	(to)->crls = malloc(sizeof(*(to)->crls));
2875	if((to)->crls == NULL) goto fail;
2876	if(copy_heim_any((from)->crls, (to)->crls)) goto fail;
2877	}else
2878	(to)->crls = NULL;
2879	if(copy_SignerInfos(&(from)->signerInfos, &(to)->signerInfos)) goto fail;
2880	return `0`;
2881	fail:
2882	free_SignedData(to);
2883	return ENOMEM;
2884	}
2885
2886	int ASN1CALL
2887	encode_OriginatorInfo(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* OriginatorInfo data, size_t size)
2888	{
2889	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
2890	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
2891	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
2892
2893	/ crls /
2894	if((data)->crls) {
2895	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2896	ret = `0`;
2897	e = encode_heim_any(p, len, (data)->crls, &l);
2898	if (e) return e;
2899	p -= l; len -= l; ret += l;
2900
2901	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `1`, &l);
2902	if (e) return e;
2903	p -= l; len -= l; ret += l;
2904
2905	ret += Top_tag_oldret;
2906	}
2907	/ certs /
2908	if((data)->certs) {
2909	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
2910	ret = `0`;
2911	{
2912	heim_octet_string *val;
2913	size_t elen = `0`, totallen = `0`;
2914	int eret = `0`;
2915	if (((data)->certs)->len > UINT_MAX/sizeof(val[`0`]))
2916	return ERANGE;
2917	val = malloc(sizeof(val[`0`]) * ((data)->certs)->len);
2918	if (val == NULL && ((data)->certs)->len != `0`) return ENOMEM;
2919	for(i = `0`; i < (int)((data)->certs)->len; i++) {
2920	ASN1_MALLOC_ENCODE(heim_any, val[i].data, val[i].length, &((data)->certs)->val[i], &elen, eret);
2921	if(eret) {
2922	i--;
2923	while (i >= `0`) {
2924	free(val[i].data);
2925	i--;
2926	}
2927	free(val);
2928	return eret;
2929	}
2930	totallen += elen;
2931	}
2932	if (totallen > len) {
2933	for (i = `0`; i < (int)((data)->certs)->len; i++) {
2934	free(val[i].data);
2935	}
2936	free(val);
2937	return ASN1_OVERFLOW;
2938	}
2939	qsort(val, ((data)->certs)->len, sizeof(val[`0`]), _heim_der_set_sort);
2940	for(i = (int)((data)->certs)->len - `1`; i >= `0`; --i) {
2941	p -= val[i].length;
2942	ret += val[i].length;
2943	memcpy(p + `1`, val[i].data, val[i].length);
2944	free(val[i].data);
2945	}
2946	free(val);
2947	}
2948	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `0`, &l);
2949	if (e) return e;
2950	p -= l; len -= l; ret += l;
2951
2952	ret += Top_tag_oldret;
2953	}
2954	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
2955	if (e) return e;
2956	p -= l; len -= l; ret += l;
2957
2958	*size = ret;
2959	return `0`;
2960	}
2961
2962	int ASN1CALL
2963	decode_OriginatorInfo(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, OriginatorInfo data, size_t *size)
2964	{
2965	size_t ret = `0`;
2966	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
2967	int e HEIMDAL_UNUSED_ATTRIBUTE;
2968
2969	memset(data, `0`, sizeof(*data));
2970	{
2971	size_t Top_datalen, Top_oldlen;
2972	Der_type Top_type;
2973	int is_indefinite1;
2974	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
2975	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
2976	if(e) goto fail;
2977	p += l; len -= l; ret += l;
2978	Top_oldlen = len;
2979	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
2980	{ e = ASN1_BAD_FORMAT; goto fail; }
2981	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
2982	size_t certs_datalen, certs_oldlen;
2983	Der_type certs_type;
2984	int is_indefinite3;
2985	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &certs_type, `0`, &certs_datalen, &l);
2986	if (e == `0` && certs_type != CONS) { e = ASN1_BAD_ID; }
2987	if(e) {
2988	(data)->certs = NULL;
2989	} else {
2990	(data)->certs = calloc(`1`, sizeof(*(data)->certs));
2991	if ((data)->certs == NULL) { e = ENOMEM; goto fail; }
2992	p += l; len -= l; ret += l;
2993	certs_oldlen = len;
2994	if((is_indefinite3 = _heim_fix_dce(certs_datalen, &len)) < `0`)
2995	{ e = ASN1_BAD_FORMAT; goto fail; }
2996	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
2997	size_t certs_Tag_origlen = len;
2998	size_t certs_Tag_oldret = ret;
2999	size_t certs_Tag_olen = `0`;
3000	void *certs_Tag_tmp;
3001	ret = `0`;
3002	((data)->certs)->len = `0`;
3003	((data)->certs)->val = NULL;
3004	while(ret < certs_Tag_origlen) {
3005	size_t certs_Tag_nlen = certs_Tag_olen + sizeof(*(((data)->certs)->val));
3006	if (certs_Tag_olen > certs_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
3007	certs_Tag_olen = certs_Tag_nlen;
3008	certs_Tag_tmp = realloc(((data)->certs)->val, certs_Tag_olen);
3009	if (certs_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
3010	((data)->certs)->val = certs_Tag_tmp;
3011	e = decode_heim_any(p, len, &((data)->certs)->val[((data)->certs)->len], &l);
3012	if(e) goto fail;
3013	p += l; len -= l; ret += l;
3014	((data)->certs)->len++;
3015	len = certs_Tag_origlen - ret;
3016	}
3017	ret += certs_Tag_oldret;
3018	}
3019	if(is_indefinite3){
3020	len += `2`;
3021	e = der_match_tag_and_length(p, len, (Der_class)`0`, &certs_type, UT_EndOfContent, &certs_datalen, &l);
3022	if(e) goto fail;
3023	p += l; len -= l; ret += l;
3024	if (certs_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3025	} else
3026	len = certs_oldlen - certs_datalen;
3027	}
3028	}
3029	{
3030	size_t crls_datalen, crls_oldlen;
3031	Der_type crls_type;
3032	int is_indefinite3;
3033	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &crls_type, `1`, &crls_datalen, &l);
3034	if (e == `0` && crls_type != CONS) { e = ASN1_BAD_ID; }
3035	if(e) {
3036	(data)->crls = NULL;
3037	} else {
3038	(data)->crls = calloc(`1`, sizeof(*(data)->crls));
3039	if ((data)->crls == NULL) { e = ENOMEM; goto fail; }
3040	p += l; len -= l; ret += l;
3041	crls_oldlen = len;
3042	if((is_indefinite3 = _heim_fix_dce(crls_datalen, &len)) < `0`)
3043	{ e = ASN1_BAD_FORMAT; goto fail; }
3044	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_heim_any(p, len, (data)->crls, &l);
3045	if(e) goto fail;
3046	p += l; len -= l; ret += l;
3047	if(is_indefinite3){
3048	len += `2`;
3049	e = der_match_tag_and_length(p, len, (Der_class)`0`, &crls_type, UT_EndOfContent, &crls_datalen, &l);
3050	if(e) goto fail;
3051	p += l; len -= l; ret += l;
3052	if (crls_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3053	} else
3054	len = crls_oldlen - crls_datalen;
3055	}
3056	}
3057	if(is_indefinite1){
3058	len += `2`;
3059	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
3060	if(e) goto fail;
3061	p += l; len -= l; ret += l;
3062	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3063	} else
3064	len = Top_oldlen - Top_datalen;
3065	}
3066	if(size) *size = ret;
3067	return `0`;
3068	fail:
3069	free_OriginatorInfo(data);
3070	return e;
3071	}
3072
3073	void ASN1CALL
3074	free_OriginatorInfo(OriginatorInfo *data)
3075	{
3076	if((data)->certs) {
3077	while(((data)->certs)->len){
3078	free_heim_any(&((data)->certs)->val[((data)->certs)->len-`1`]);
3079	((data)->certs)->len--;
3080	}
3081	free(((data)->certs)->val);
3082	((data)->certs)->val = NULL;
3083	free((data)->certs);
3084	(data)->certs = NULL;
3085	}
3086	if((data)->crls) {
3087	free_heim_any((data)->crls);
3088	free((data)->crls);
3089	(data)->crls = NULL;
3090	}
3091	}
3092
3093	size_t ASN1CALL
3094	length_OriginatorInfo(const OriginatorInfo *data)
3095	{
3096	size_t ret = `0`;
3097	if((data)->certs){
3098	size_t Top_tag_oldret = ret;
3099	ret = `0`;
3100	{
3101	size_t certs_tag_oldret = ret;
3102	unsigned int n_certs_tag;
3103	ret = `0`;
3104	for(n_certs_tag = ((data)->certs)->len; n_certs_tag > `0`; --n_certs_tag){
3105	size_t certs_tag_for_oldret = ret;
3106	ret = `0`;
3107	ret += length_heim_any(&((data)->certs)->val[n_certs_tag - `1`]);
3108	ret += certs_tag_for_oldret;
3109	}
3110	ret += certs_tag_oldret;
3111	}
3112	ret += `1` + der_length_len (ret);
3113	ret += Top_tag_oldret;
3114	}
3115	if((data)->crls){
3116	size_t Top_tag_oldret = ret;
3117	ret = `0`;
3118	ret += length_heim_any((data)->crls);
3119	ret += `1` + der_length_len (ret);
3120	ret += Top_tag_oldret;
3121	}
3122	ret += `1` + der_length_len (ret);
3123	return ret;
3124	}
3125
3126	int ASN1CALL
3127	copy_OriginatorInfo(const OriginatorInfo from, OriginatorInfo to)
3128	{
3129	memset(to, `0`, sizeof(*to));
3130	if((from)->certs) {
3131	(to)->certs = malloc(sizeof(*(to)->certs));
3132	if((to)->certs == NULL) goto fail;
3133	if((((to)->certs)->val = malloc(((from)->certs)->len * sizeof(*((to)->certs)->val))) == NULL && ((from)->certs)->len != `0`)
3134	goto fail;
3135	for(((to)->certs)->len = `0`; ((to)->certs)->len < ((from)->certs)->len; ((to)->certs)->len++){
3136	if(copy_heim_any(&((from)->certs)->val[((to)->certs)->len], &((to)->certs)->val[((to)->certs)->len])) goto fail;
3137	}
3138	}else
3139	(to)->certs = NULL;
3140	if((from)->crls) {
3141	(to)->crls = malloc(sizeof(*(to)->crls));
3142	if((to)->crls == NULL) goto fail;
3143	if(copy_heim_any((from)->crls, (to)->crls)) goto fail;
3144	}else
3145	(to)->crls = NULL;
3146	return `0`;
3147	fail:
3148	free_OriginatorInfo(to);
3149	return ENOMEM;
3150	}
3151
3152	int ASN1CALL
3153	encode_KeyEncryptionAlgorithmIdentifier(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* KeyEncryptionAlgorithmIdentifier data, size_t size)
3154	{
3155	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3156	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3157	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3158
3159	e = encode_AlgorithmIdentifier(p, len, data, &l);
3160	if (e) return e;
3161	p -= l; len -= l; ret += l;
3162
3163	*size = ret;
3164	return `0`;
3165	}
3166
3167	int ASN1CALL
3168	decode_KeyEncryptionAlgorithmIdentifier(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, KeyEncryptionAlgorithmIdentifier data, size_t *size)
3169	{
3170	size_t ret = `0`;
3171	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3172	int e HEIMDAL_UNUSED_ATTRIBUTE;
3173
3174	memset(data, `0`, sizeof(*data));
3175	e = decode_AlgorithmIdentifier(p, len, data, &l);
3176	if(e) goto fail;
3177	p += l; len -= l; ret += l;
3178	if(size) *size = ret;
3179	return `0`;
3180	fail:
3181	free_KeyEncryptionAlgorithmIdentifier(data);
3182	return e;
3183	}
3184
3185	void ASN1CALL
3186	free_KeyEncryptionAlgorithmIdentifier(KeyEncryptionAlgorithmIdentifier *data)
3187	{
3188	free_AlgorithmIdentifier(data);
3189	}
3190
3191	size_t ASN1CALL
3192	length_KeyEncryptionAlgorithmIdentifier(const KeyEncryptionAlgorithmIdentifier *data)
3193	{
3194	size_t ret = `0`;
3195	ret += length_AlgorithmIdentifier(data);
3196	return ret;
3197	}
3198
3199	int ASN1CALL
3200	copy_KeyEncryptionAlgorithmIdentifier(const KeyEncryptionAlgorithmIdentifier from, KeyEncryptionAlgorithmIdentifier to)
3201	{
3202	memset(to, `0`, sizeof(*to));
3203	if(copy_AlgorithmIdentifier(from, to)) goto fail;
3204	return `0`;
3205	fail:
3206	free_KeyEncryptionAlgorithmIdentifier(to);
3207	return ENOMEM;
3208	}
3209
3210	int ASN1CALL
3211	encode_ContentEncryptionAlgorithmIdentifier(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* ContentEncryptionAlgorithmIdentifier data, size_t size)
3212	{
3213	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3214	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3215	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3216
3217	e = encode_AlgorithmIdentifier(p, len, data, &l);
3218	if (e) return e;
3219	p -= l; len -= l; ret += l;
3220
3221	*size = ret;
3222	return `0`;
3223	}
3224
3225	int ASN1CALL
3226	decode_ContentEncryptionAlgorithmIdentifier(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, ContentEncryptionAlgorithmIdentifier data, size_t *size)
3227	{
3228	size_t ret = `0`;
3229	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3230	int e HEIMDAL_UNUSED_ATTRIBUTE;
3231
3232	memset(data, `0`, sizeof(*data));
3233	e = decode_AlgorithmIdentifier(p, len, data, &l);
3234	if(e) goto fail;
3235	p += l; len -= l; ret += l;
3236	if(size) *size = ret;
3237	return `0`;
3238	fail:
3239	free_ContentEncryptionAlgorithmIdentifier(data);
3240	return e;
3241	}
3242
3243	void ASN1CALL
3244	free_ContentEncryptionAlgorithmIdentifier(ContentEncryptionAlgorithmIdentifier *data)
3245	{
3246	free_AlgorithmIdentifier(data);
3247	}
3248
3249	size_t ASN1CALL
3250	length_ContentEncryptionAlgorithmIdentifier(const ContentEncryptionAlgorithmIdentifier *data)
3251	{
3252	size_t ret = `0`;
3253	ret += length_AlgorithmIdentifier(data);
3254	return ret;
3255	}
3256
3257	int ASN1CALL
3258	copy_ContentEncryptionAlgorithmIdentifier(const ContentEncryptionAlgorithmIdentifier from, ContentEncryptionAlgorithmIdentifier to)
3259	{
3260	memset(to, `0`, sizeof(*to));
3261	if(copy_AlgorithmIdentifier(from, to)) goto fail;
3262	return `0`;
3263	fail:
3264	free_ContentEncryptionAlgorithmIdentifier(to);
3265	return ENOMEM;
3266	}
3267
3268	int ASN1CALL
3269	encode_EncryptedKey(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* EncryptedKey data, size_t size)
3270	{
3271	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3272	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3273	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3274
3275	e = der_put_octet_string(p, len, data, &l);
3276	if (e) return e;
3277	p -= l; len -= l; ret += l;
3278
3279	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OctetString, &l);
3280	if (e) return e;
3281	p -= l; len -= l; ret += l;
3282
3283	*size = ret;
3284	return `0`;
3285	}
3286
3287	int ASN1CALL
3288	decode_EncryptedKey(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, EncryptedKey data, size_t *size)
3289	{
3290	size_t ret = `0`;
3291	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3292	int e HEIMDAL_UNUSED_ATTRIBUTE;
3293
3294	memset(data, `0`, sizeof(*data));
3295	{
3296	size_t Top_datalen, Top_oldlen;
3297	Der_type Top_type;
3298	int is_indefinite1;
3299	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_OctetString, &Top_datalen, &l);
3300	if(e) goto fail;
3301	p += l; len -= l; ret += l;
3302	Top_oldlen = len;
3303	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
3304	{ e = ASN1_BAD_FORMAT; goto fail; }
3305	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (Top_type == CONS) {
3306	e = der_get_octet_string_ber(p, len, data, &l);
3307	if(e) goto fail;
3308	p += l; len -= l; ret += l;
3309	} else {
3310	e = der_get_octet_string(p, len, data, &l);
3311	if(e) goto fail;
3312	p += l; len -= l; ret += l;
3313	}
3314	if(is_indefinite1){
3315	len += `2`;
3316	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
3317	if(e) goto fail;
3318	p += l; len -= l; ret += l;
3319	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3320	} else
3321	len = Top_oldlen - Top_datalen;
3322	}
3323	if(size) *size = ret;
3324	return `0`;
3325	fail:
3326	free_EncryptedKey(data);
3327	return e;
3328	}
3329
3330	void ASN1CALL
3331	free_EncryptedKey(EncryptedKey *data)
3332	{
3333	der_free_octet_string(data);
3334	}
3335
3336	size_t ASN1CALL
3337	length_EncryptedKey(const EncryptedKey *data)
3338	{
3339	size_t ret = `0`;
3340	ret += der_length_octet_string(data);
3341	ret += `1` + der_length_len (ret);
3342	return ret;
3343	}
3344
3345	int ASN1CALL
3346	copy_EncryptedKey(const EncryptedKey from, EncryptedKey to)
3347	{
3348	memset(to, `0`, sizeof(*to));
3349	if(der_copy_octet_string(from, to)) goto fail;
3350	return `0`;
3351	fail:
3352	free_EncryptedKey(to);
3353	return ENOMEM;
3354	}
3355
3356	int ASN1CALL
3357	encode_KeyTransRecipientInfo(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* KeyTransRecipientInfo data, size_t size)
3358	{
3359	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3360	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3361	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3362
3363	/ encryptedKey /
3364	{
3365	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
3366	ret = `0`;
3367	e = encode_EncryptedKey(p, len, &(data)->encryptedKey, &l);
3368	if (e) return e;
3369	p -= l; len -= l; ret += l;
3370
3371	ret += Top_tag_oldret;
3372	}
3373	/ keyEncryptionAlgorithm /
3374	{
3375	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
3376	ret = `0`;
3377	e = encode_KeyEncryptionAlgorithmIdentifier(p, len, &(data)->keyEncryptionAlgorithm, &l);
3378	if (e) return e;
3379	p -= l; len -= l; ret += l;
3380
3381	ret += Top_tag_oldret;
3382	}
3383	/ rid /
3384	{
3385	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
3386	ret = `0`;
3387	e = encode_RecipientIdentifier(p, len, &(data)->rid, &l);
3388	if (e) return e;
3389	p -= l; len -= l; ret += l;
3390
3391	ret += Top_tag_oldret;
3392	}
3393	/ version /
3394	{
3395	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
3396	ret = `0`;
3397	e = encode_CMSVersion(p, len, &(data)->version, &l);
3398	if (e) return e;
3399	p -= l; len -= l; ret += l;
3400
3401	ret += Top_tag_oldret;
3402	}
3403	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
3404	if (e) return e;
3405	p -= l; len -= l; ret += l;
3406
3407	*size = ret;
3408	return `0`;
3409	}
3410
3411	int ASN1CALL
3412	decode_KeyTransRecipientInfo(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, KeyTransRecipientInfo data, size_t *size)
3413	{
3414	size_t ret = `0`;
3415	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3416	int e HEIMDAL_UNUSED_ATTRIBUTE;
3417
3418	memset(data, `0`, sizeof(*data));
3419	{
3420	size_t Top_datalen, Top_oldlen;
3421	Der_type Top_type;
3422	int is_indefinite1;
3423	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
3424	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
3425	if(e) goto fail;
3426	p += l; len -= l; ret += l;
3427	Top_oldlen = len;
3428	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
3429	{ e = ASN1_BAD_FORMAT; goto fail; }
3430	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_CMSVersion(p, len, &(data)->version, &l);
3431	if(e) goto fail;
3432	p += l; len -= l; ret += l;
3433	e = decode_RecipientIdentifier(p, len, &(data)->rid, &l);
3434	if(e) goto fail;
3435	p += l; len -= l; ret += l;
3436	e = decode_KeyEncryptionAlgorithmIdentifier(p, len, &(data)->keyEncryptionAlgorithm, &l);
3437	if(e) goto fail;
3438	p += l; len -= l; ret += l;
3439	e = decode_EncryptedKey(p, len, &(data)->encryptedKey, &l);
3440	if(e) goto fail;
3441	p += l; len -= l; ret += l;
3442	if(is_indefinite1){
3443	len += `2`;
3444	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
3445	if(e) goto fail;
3446	p += l; len -= l; ret += l;
3447	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3448	} else
3449	len = Top_oldlen - Top_datalen;
3450	}
3451	if(size) *size = ret;
3452	return `0`;
3453	fail:
3454	free_KeyTransRecipientInfo(data);
3455	return e;
3456	}
3457
3458	void ASN1CALL
3459	free_KeyTransRecipientInfo(KeyTransRecipientInfo *data)
3460	{
3461	free_CMSVersion(&(data)->version);
3462	free_RecipientIdentifier(&(data)->rid);
3463	free_KeyEncryptionAlgorithmIdentifier(&(data)->keyEncryptionAlgorithm);
3464	free_EncryptedKey(&(data)->encryptedKey);
3465	}
3466
3467	size_t ASN1CALL
3468	length_KeyTransRecipientInfo(const KeyTransRecipientInfo *data)
3469	{
3470	size_t ret = `0`;
3471	{
3472	size_t Top_tag_oldret = ret;
3473	ret = `0`;
3474	ret += length_CMSVersion(&(data)->version);
3475	ret += Top_tag_oldret;
3476	}
3477	{
3478	size_t Top_tag_oldret = ret;
3479	ret = `0`;
3480	ret += length_RecipientIdentifier(&(data)->rid);
3481	ret += Top_tag_oldret;
3482	}
3483	{
3484	size_t Top_tag_oldret = ret;
3485	ret = `0`;
3486	ret += length_KeyEncryptionAlgorithmIdentifier(&(data)->keyEncryptionAlgorithm);
3487	ret += Top_tag_oldret;
3488	}
3489	{
3490	size_t Top_tag_oldret = ret;
3491	ret = `0`;
3492	ret += length_EncryptedKey(&(data)->encryptedKey);
3493	ret += Top_tag_oldret;
3494	}
3495	ret += `1` + der_length_len (ret);
3496	return ret;
3497	}
3498
3499	int ASN1CALL
3500	copy_KeyTransRecipientInfo(const KeyTransRecipientInfo from, KeyTransRecipientInfo to)
3501	{
3502	memset(to, `0`, sizeof(*to));
3503	if(copy_CMSVersion(&(from)->version, &(to)->version)) goto fail;
3504	if(copy_RecipientIdentifier(&(from)->rid, &(to)->rid)) goto fail;
3505	if(copy_KeyEncryptionAlgorithmIdentifier(&(from)->keyEncryptionAlgorithm, &(to)->keyEncryptionAlgorithm)) goto fail;
3506	if(copy_EncryptedKey(&(from)->encryptedKey, &(to)->encryptedKey)) goto fail;
3507	return `0`;
3508	fail:
3509	free_KeyTransRecipientInfo(to);
3510	return ENOMEM;
3511	}
3512
3513	int ASN1CALL
3514	encode_RecipientInfo(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* RecipientInfo data, size_t size)
3515	{
3516	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3517	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3518	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3519
3520	e = encode_KeyTransRecipientInfo(p, len, data, &l);
3521	if (e) return e;
3522	p -= l; len -= l; ret += l;
3523
3524	*size = ret;
3525	return `0`;
3526	}
3527
3528	int ASN1CALL
3529	decode_RecipientInfo(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, RecipientInfo data, size_t *size)
3530	{
3531	size_t ret = `0`;
3532	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3533	int e HEIMDAL_UNUSED_ATTRIBUTE;
3534
3535	memset(data, `0`, sizeof(*data));
3536	e = decode_KeyTransRecipientInfo(p, len, data, &l);
3537	if(e) goto fail;
3538	p += l; len -= l; ret += l;
3539	if(size) *size = ret;
3540	return `0`;
3541	fail:
3542	free_RecipientInfo(data);
3543	return e;
3544	}
3545
3546	void ASN1CALL
3547	free_RecipientInfo(RecipientInfo *data)
3548	{
3549	free_KeyTransRecipientInfo(data);
3550	}
3551
3552	size_t ASN1CALL
3553	length_RecipientInfo(const RecipientInfo *data)
3554	{
3555	size_t ret = `0`;
3556	ret += length_KeyTransRecipientInfo(data);
3557	return ret;
3558	}
3559
3560	int ASN1CALL
3561	copy_RecipientInfo(const RecipientInfo from, RecipientInfo to)
3562	{
3563	memset(to, `0`, sizeof(*to));
3564	if(copy_KeyTransRecipientInfo(from, to)) goto fail;
3565	return `0`;
3566	fail:
3567	free_RecipientInfo(to);
3568	return ENOMEM;
3569	}
3570
3571	int ASN1CALL
3572	encode_RecipientInfos(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* RecipientInfos data, size_t size)
3573	{
3574	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3575	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3576	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3577
3578	{
3579	heim_octet_string *val;
3580	size_t elen = `0`, totallen = `0`;
3581	int eret = `0`;
3582	if ((data)->len > UINT_MAX/sizeof(val[`0`]))
3583	return ERANGE;
3584	val = malloc(sizeof(val[`0`]) * (data)->len);
3585	if (val == NULL && (data)->len != `0`) return ENOMEM;
3586	for(i = `0`; i < (int)(data)->len; i++) {
3587	ASN1_MALLOC_ENCODE(RecipientInfo, val[i].data, val[i].length, &(data)->val[i], &elen, eret);
3588	if(eret) {
3589	i--;
3590	while (i >= `0`) {
3591	free(val[i].data);
3592	i--;
3593	}
3594	free(val);
3595	return eret;
3596	}
3597	totallen += elen;
3598	}
3599	if (totallen > len) {
3600	for (i = `0`; i < (int)(data)->len; i++) {
3601	free(val[i].data);
3602	}
3603	free(val);
3604	return ASN1_OVERFLOW;
3605	}
3606	qsort(val, (data)->len, sizeof(val[`0`]), _heim_der_set_sort);
3607	for(i = (int)(data)->len - `1`; i >= `0`; --i) {
3608	p -= val[i].length;
3609	ret += val[i].length;
3610	memcpy(p + `1`, val[i].data, val[i].length);
3611	free(val[i].data);
3612	}
3613	free(val);
3614	}
3615	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Set, &l);
3616	if (e) return e;
3617	p -= l; len -= l; ret += l;
3618
3619	*size = ret;
3620	return `0`;
3621	}
3622
3623	int ASN1CALL
3624	decode_RecipientInfos(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, RecipientInfos data, size_t *size)
3625	{
3626	size_t ret = `0`;
3627	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3628	int e HEIMDAL_UNUSED_ATTRIBUTE;
3629
3630	memset(data, `0`, sizeof(*data));
3631	{
3632	size_t Top_datalen, Top_oldlen;
3633	Der_type Top_type;
3634	int is_indefinite1;
3635	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Set, &Top_datalen, &l);
3636	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
3637	if(e) goto fail;
3638	p += l; len -= l; ret += l;
3639	Top_oldlen = len;
3640	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
3641	{ e = ASN1_BAD_FORMAT; goto fail; }
3642	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
3643	size_t Top_Tag_origlen = len;
3644	size_t Top_Tag_oldret = ret;
3645	size_t Top_Tag_olen = `0`;
3646	void *Top_Tag_tmp;
3647	ret = `0`;
3648	(data)->len = `0`;
3649	(data)->val = NULL;
3650	while(ret < Top_Tag_origlen) {
3651	size_t Top_Tag_nlen = Top_Tag_olen + sizeof(*((data)->val));
3652	if (Top_Tag_olen > Top_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
3653	Top_Tag_olen = Top_Tag_nlen;
3654	Top_Tag_tmp = realloc((data)->val, Top_Tag_olen);
3655	if (Top_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
3656	(data)->val = Top_Tag_tmp;
3657	e = decode_RecipientInfo(p, len, &(data)->val[(data)->len], &l);
3658	if(e) goto fail;
3659	p += l; len -= l; ret += l;
3660	(data)->len++;
3661	len = Top_Tag_origlen - ret;
3662	}
3663	ret += Top_Tag_oldret;
3664	}
3665	if(is_indefinite1){
3666	len += `2`;
3667	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
3668	if(e) goto fail;
3669	p += l; len -= l; ret += l;
3670	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3671	} else
3672	len = Top_oldlen - Top_datalen;
3673	}
3674	if(size) *size = ret;
3675	return `0`;
3676	fail:
3677	free_RecipientInfos(data);
3678	return e;
3679	}
3680
3681	void ASN1CALL
3682	free_RecipientInfos(RecipientInfos *data)
3683	{
3684	while((data)->len){
3685	free_RecipientInfo(&(data)->val[(data)->len-`1`]);
3686	(data)->len--;
3687	}
3688	free((data)->val);
3689	(data)->val = NULL;
3690	}
3691
3692	size_t ASN1CALL
3693	length_RecipientInfos(const RecipientInfos *data)
3694	{
3695	size_t ret = `0`;
3696	{
3697	size_t Top_tag_oldret = ret;
3698	unsigned int n_Top_tag;
3699	ret = `0`;
3700	for(n_Top_tag = (data)->len; n_Top_tag > `0`; --n_Top_tag){
3701	size_t Top_tag_for_oldret = ret;
3702	ret = `0`;
3703	ret += length_RecipientInfo(&(data)->val[n_Top_tag - `1`]);
3704	ret += Top_tag_for_oldret;
3705	}
3706	ret += Top_tag_oldret;
3707	}
3708	ret += `1` + der_length_len (ret);
3709	return ret;
3710	}
3711
3712	int ASN1CALL
3713	copy_RecipientInfos(const RecipientInfos from, RecipientInfos to)
3714	{
3715	memset(to, `0`, sizeof(*to));
3716	if(((to)->val = malloc((from)->len * sizeof(*(to)->val))) == NULL && (from)->len != `0`)
3717	goto fail;
3718	for((to)->len = `0`; (to)->len < (from)->len; (to)->len++){
3719	if(copy_RecipientInfo(&(from)->val[(to)->len], &(to)->val[(to)->len])) goto fail;
3720	}
3721	return `0`;
3722	fail:
3723	free_RecipientInfos(to);
3724	return ENOMEM;
3725	}
3726
3727	int ASN1CALL
3728	encode_EncryptedContent(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* EncryptedContent data, size_t size)
3729	{
3730	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3731	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3732	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3733
3734	e = der_put_octet_string(p, len, data, &l);
3735	if (e) return e;
3736	p -= l; len -= l; ret += l;
3737
3738	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OctetString, &l);
3739	if (e) return e;
3740	p -= l; len -= l; ret += l;
3741
3742	*size = ret;
3743	return `0`;
3744	}
3745
3746	int ASN1CALL
3747	decode_EncryptedContent(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, EncryptedContent data, size_t *size)
3748	{
3749	size_t ret = `0`;
3750	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3751	int e HEIMDAL_UNUSED_ATTRIBUTE;
3752
3753	memset(data, `0`, sizeof(*data));
3754	{
3755	size_t Top_datalen, Top_oldlen;
3756	Der_type Top_type;
3757	int is_indefinite1;
3758	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_OctetString, &Top_datalen, &l);
3759	if(e) goto fail;
3760	p += l; len -= l; ret += l;
3761	Top_oldlen = len;
3762	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
3763	{ e = ASN1_BAD_FORMAT; goto fail; }
3764	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (Top_type == CONS) {
3765	e = der_get_octet_string_ber(p, len, data, &l);
3766	if(e) goto fail;
3767	p += l; len -= l; ret += l;
3768	} else {
3769	e = der_get_octet_string(p, len, data, &l);
3770	if(e) goto fail;
3771	p += l; len -= l; ret += l;
3772	}
3773	if(is_indefinite1){
3774	len += `2`;
3775	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
3776	if(e) goto fail;
3777	p += l; len -= l; ret += l;
3778	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3779	} else
3780	len = Top_oldlen - Top_datalen;
3781	}
3782	if(size) *size = ret;
3783	return `0`;
3784	fail:
3785	free_EncryptedContent(data);
3786	return e;
3787	}
3788
3789	void ASN1CALL
3790	free_EncryptedContent(EncryptedContent *data)
3791	{
3792	der_free_octet_string(data);
3793	}
3794
3795	size_t ASN1CALL
3796	length_EncryptedContent(const EncryptedContent *data)
3797	{
3798	size_t ret = `0`;
3799	ret += der_length_octet_string(data);
3800	ret += `1` + der_length_len (ret);
3801	return ret;
3802	}
3803
3804	int ASN1CALL
3805	copy_EncryptedContent(const EncryptedContent from, EncryptedContent to)
3806	{
3807	memset(to, `0`, sizeof(*to));
3808	if(der_copy_octet_string(from, to)) goto fail;
3809	return `0`;
3810	fail:
3811	free_EncryptedContent(to);
3812	return ENOMEM;
3813	}
3814
3815	int ASN1CALL
3816	encode_EncryptedContentInfo(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* EncryptedContentInfo data, size_t size)
3817	{
3818	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3819	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3820	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
3821
3822	/ encryptedContent /
3823	if((data)->encryptedContent) {
3824	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
3825	ret = `0`;
3826	e = der_put_octet_string(p, len, (data)->encryptedContent, &l);
3827	if (e) return e;
3828	p -= l; len -= l; ret += l;
3829
3830	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, PRIM, `0`, &l);
3831	if (e) return e;
3832	p -= l; len -= l; ret += l;
3833
3834	ret += Top_tag_oldret;
3835	}
3836	/ contentEncryptionAlgorithm /
3837	{
3838	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
3839	ret = `0`;
3840	e = encode_ContentEncryptionAlgorithmIdentifier(p, len, &(data)->contentEncryptionAlgorithm, &l);
3841	if (e) return e;
3842	p -= l; len -= l; ret += l;
3843
3844	ret += Top_tag_oldret;
3845	}
3846	/ contentType /
3847	{
3848	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
3849	ret = `0`;
3850	e = encode_ContentType(p, len, &(data)->contentType, &l);
3851	if (e) return e;
3852	p -= l; len -= l; ret += l;
3853
3854	ret += Top_tag_oldret;
3855	}
3856	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
3857	if (e) return e;
3858	p -= l; len -= l; ret += l;
3859
3860	*size = ret;
3861	return `0`;
3862	}
3863
3864	int ASN1CALL
3865	decode_EncryptedContentInfo(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, EncryptedContentInfo data, size_t *size)
3866	{
3867	size_t ret = `0`;
3868	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
3869	int e HEIMDAL_UNUSED_ATTRIBUTE;
3870
3871	memset(data, `0`, sizeof(*data));
3872	{
3873	size_t Top_datalen, Top_oldlen;
3874	Der_type Top_type;
3875	int is_indefinite1;
3876	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
3877	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
3878	if(e) goto fail;
3879	p += l; len -= l; ret += l;
3880	Top_oldlen = len;
3881	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
3882	{ e = ASN1_BAD_FORMAT; goto fail; }
3883	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_ContentType(p, len, &(data)->contentType, &l);
3884	if(e) goto fail;
3885	p += l; len -= l; ret += l;
3886	e = decode_ContentEncryptionAlgorithmIdentifier(p, len, &(data)->contentEncryptionAlgorithm, &l);
3887	if(e) goto fail;
3888	p += l; len -= l; ret += l;
3889	{
3890	size_t encryptedContent_datalen, encryptedContent_oldlen;
3891	Der_type encryptedContent_type;
3892	int is_indefinite3;
3893	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &encryptedContent_type, `0`, &encryptedContent_datalen, &l);
3894	if(e) {
3895	(data)->encryptedContent = NULL;
3896	} else {
3897	(data)->encryptedContent = calloc(`1`, sizeof(*(data)->encryptedContent));
3898	if ((data)->encryptedContent == NULL) { e = ENOMEM; goto fail; }
3899	p += l; len -= l; ret += l;
3900	encryptedContent_oldlen = len;
3901	if((is_indefinite3 = _heim_fix_dce(encryptedContent_datalen, &len)) < `0`)
3902	{ e = ASN1_BAD_FORMAT; goto fail; }
3903	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (encryptedContent_type == CONS) {
3904	e = der_get_octet_string_ber(p, len, (data)->encryptedContent, &l);
3905	if(e) goto fail;
3906	p += l; len -= l; ret += l;
3907	} else {
3908	e = der_get_octet_string(p, len, (data)->encryptedContent, &l);
3909	if(e) goto fail;
3910	p += l; len -= l; ret += l;
3911	}
3912	if(is_indefinite3){
3913	len += `2`;
3914	e = der_match_tag_and_length(p, len, (Der_class)`0`, &encryptedContent_type, UT_EndOfContent, &encryptedContent_datalen, &l);
3915	if(e) goto fail;
3916	p += l; len -= l; ret += l;
3917	if (encryptedContent_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3918	} else
3919	len = encryptedContent_oldlen - encryptedContent_datalen;
3920	}
3921	}
3922	if(is_indefinite1){
3923	len += `2`;
3924	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
3925	if(e) goto fail;
3926	p += l; len -= l; ret += l;
3927	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
3928	} else
3929	len = Top_oldlen - Top_datalen;
3930	}
3931	if(size) *size = ret;
3932	return `0`;
3933	fail:
3934	free_EncryptedContentInfo(data);
3935	return e;
3936	}
3937
3938	void ASN1CALL
3939	free_EncryptedContentInfo(EncryptedContentInfo *data)
3940	{
3941	free_ContentType(&(data)->contentType);
3942	free_ContentEncryptionAlgorithmIdentifier(&(data)->contentEncryptionAlgorithm);
3943	if((data)->encryptedContent) {
3944	der_free_octet_string((data)->encryptedContent);
3945	free((data)->encryptedContent);
3946	(data)->encryptedContent = NULL;
3947	}
3948	}
3949
3950	size_t ASN1CALL
3951	length_EncryptedContentInfo(const EncryptedContentInfo *data)
3952	{
3953	size_t ret = `0`;
3954	{
3955	size_t Top_tag_oldret = ret;
3956	ret = `0`;
3957	ret += length_ContentType(&(data)->contentType);
3958	ret += Top_tag_oldret;
3959	}
3960	{
3961	size_t Top_tag_oldret = ret;
3962	ret = `0`;
3963	ret += length_ContentEncryptionAlgorithmIdentifier(&(data)->contentEncryptionAlgorithm);
3964	ret += Top_tag_oldret;
3965	}
3966	if((data)->encryptedContent){
3967	size_t Top_tag_oldret = ret;
3968	ret = `0`;
3969	ret += der_length_octet_string((data)->encryptedContent);
3970	ret += `1` + der_length_len (ret);
3971	ret += Top_tag_oldret;
3972	}
3973	ret += `1` + der_length_len (ret);
3974	return ret;
3975	}
3976
3977	int ASN1CALL
3978	copy_EncryptedContentInfo(const EncryptedContentInfo from, EncryptedContentInfo to)
3979	{
3980	memset(to, `0`, sizeof(*to));
3981	if(copy_ContentType(&(from)->contentType, &(to)->contentType)) goto fail;
3982	if(copy_ContentEncryptionAlgorithmIdentifier(&(from)->contentEncryptionAlgorithm, &(to)->contentEncryptionAlgorithm)) goto fail;
3983	if((from)->encryptedContent) {
3984	(to)->encryptedContent = malloc(sizeof(*(to)->encryptedContent));
3985	if((to)->encryptedContent == NULL) goto fail;
3986	if(der_copy_octet_string((from)->encryptedContent, (to)->encryptedContent)) goto fail;
3987	}else
3988	(to)->encryptedContent = NULL;
3989	return `0`;
3990	fail:
3991	free_EncryptedContentInfo(to);
3992	return ENOMEM;
3993	}
3994
3995	int ASN1CALL
3996	encode_UnprotectedAttributes(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* UnprotectedAttributes data, size_t size)
3997	{
3998	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
3999	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4000	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
4001
4002	{
4003	heim_octet_string *val;
4004	size_t elen = `0`, totallen = `0`;
4005	int eret = `0`;
4006	if ((data)->len > UINT_MAX/sizeof(val[`0`]))
4007	return ERANGE;
4008	val = malloc(sizeof(val[`0`]) * (data)->len);
4009	if (val == NULL && (data)->len != `0`) return ENOMEM;
4010	for(i = `0`; i < (int)(data)->len; i++) {
4011	ASN1_MALLOC_ENCODE(Attribute, val[i].data, val[i].length, &(data)->val[i], &elen, eret);
4012	if(eret) {
4013	i--;
4014	while (i >= `0`) {
4015	free(val[i].data);
4016	i--;
4017	}
4018	free(val);
4019	return eret;
4020	}
4021	totallen += elen;
4022	}
4023	if (totallen > len) {
4024	for (i = `0`; i < (int)(data)->len; i++) {
4025	free(val[i].data);
4026	}
4027	free(val);
4028	return ASN1_OVERFLOW;
4029	}
4030	qsort(val, (data)->len, sizeof(val[`0`]), _heim_der_set_sort);
4031	for(i = (int)(data)->len - `1`; i >= `0`; --i) {
4032	p -= val[i].length;
4033	ret += val[i].length;
4034	memcpy(p + `1`, val[i].data, val[i].length);
4035	free(val[i].data);
4036	}
4037	free(val);
4038	}
4039	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Set, &l);
4040	if (e) return e;
4041	p -= l; len -= l; ret += l;
4042
4043	*size = ret;
4044	return `0`;
4045	}
4046
4047	int ASN1CALL
4048	decode_UnprotectedAttributes(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, UnprotectedAttributes data, size_t *size)
4049	{
4050	size_t ret = `0`;
4051	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4052	int e HEIMDAL_UNUSED_ATTRIBUTE;
4053
4054	memset(data, `0`, sizeof(*data));
4055	{
4056	size_t Top_datalen, Top_oldlen;
4057	Der_type Top_type;
4058	int is_indefinite1;
4059	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Set, &Top_datalen, &l);
4060	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
4061	if(e) goto fail;
4062	p += l; len -= l; ret += l;
4063	Top_oldlen = len;
4064	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
4065	{ e = ASN1_BAD_FORMAT; goto fail; }
4066	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
4067	size_t Top_Tag_origlen = len;
4068	size_t Top_Tag_oldret = ret;
4069	size_t Top_Tag_olen = `0`;
4070	void *Top_Tag_tmp;
4071	ret = `0`;
4072	(data)->len = `0`;
4073	(data)->val = NULL;
4074	while(ret < Top_Tag_origlen) {
4075	size_t Top_Tag_nlen = Top_Tag_olen + sizeof(*((data)->val));
4076	if (Top_Tag_olen > Top_Tag_nlen) { e = ASN1_OVERFLOW; goto fail; }
4077	Top_Tag_olen = Top_Tag_nlen;
4078	Top_Tag_tmp = realloc((data)->val, Top_Tag_olen);
4079	if (Top_Tag_tmp == NULL) { e = ENOMEM; goto fail; }
4080	(data)->val = Top_Tag_tmp;
4081	e = decode_Attribute(p, len, &(data)->val[(data)->len], &l);
4082	if(e) goto fail;
4083	p += l; len -= l; ret += l;
4084	(data)->len++;
4085	len = Top_Tag_origlen - ret;
4086	}
4087	ret += Top_Tag_oldret;
4088	}
4089	if(is_indefinite1){
4090	len += `2`;
4091	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
4092	if(e) goto fail;
4093	p += l; len -= l; ret += l;
4094	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4095	} else
4096	len = Top_oldlen - Top_datalen;
4097	}
4098	if(size) *size = ret;
4099	return `0`;
4100	fail:
4101	free_UnprotectedAttributes(data);
4102	return e;
4103	}
4104
4105	void ASN1CALL
4106	free_UnprotectedAttributes(UnprotectedAttributes *data)
4107	{
4108	while((data)->len){
4109	free_Attribute(&(data)->val[(data)->len-`1`]);
4110	(data)->len--;
4111	}
4112	free((data)->val);
4113	(data)->val = NULL;
4114	}
4115
4116	size_t ASN1CALL
4117	length_UnprotectedAttributes(const UnprotectedAttributes *data)
4118	{
4119	size_t ret = `0`;
4120	{
4121	size_t Top_tag_oldret = ret;
4122	unsigned int n_Top_tag;
4123	ret = `0`;
4124	for(n_Top_tag = (data)->len; n_Top_tag > `0`; --n_Top_tag){
4125	size_t Top_tag_for_oldret = ret;
4126	ret = `0`;
4127	ret += length_Attribute(&(data)->val[n_Top_tag - `1`]);
4128	ret += Top_tag_for_oldret;
4129	}
4130	ret += Top_tag_oldret;
4131	}
4132	ret += `1` + der_length_len (ret);
4133	return ret;
4134	}
4135
4136	int ASN1CALL
4137	copy_UnprotectedAttributes(const UnprotectedAttributes from, UnprotectedAttributes to)
4138	{
4139	memset(to, `0`, sizeof(*to));
4140	if(((to)->val = malloc((from)->len * sizeof(*(to)->val))) == NULL && (from)->len != `0`)
4141	goto fail;
4142	for((to)->len = `0`; (to)->len < (from)->len; (to)->len++){
4143	if(copy_Attribute(&(from)->val[(to)->len], &(to)->val[(to)->len])) goto fail;
4144	}
4145	return `0`;
4146	fail:
4147	free_UnprotectedAttributes(to);
4148	return ENOMEM;
4149	}
4150
4151	int ASN1CALL
4152	encode_CMSEncryptedData(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CMSEncryptedData data, size_t size)
4153	{
4154	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
4155	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4156	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
4157
4158	/ unprotectedAttrs /
4159	if((data)->unprotectedAttrs) {
4160	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4161	ret = `0`;
4162	e = encode_heim_any(p, len, (data)->unprotectedAttrs, &l);
4163	if (e) return e;
4164	p -= l; len -= l; ret += l;
4165
4166	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `1`, &l);
4167	if (e) return e;
4168	p -= l; len -= l; ret += l;
4169
4170	ret += Top_tag_oldret;
4171	}
4172	/ encryptedContentInfo /
4173	{
4174	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4175	ret = `0`;
4176	e = encode_EncryptedContentInfo(p, len, &(data)->encryptedContentInfo, &l);
4177	if (e) return e;
4178	p -= l; len -= l; ret += l;
4179
4180	ret += Top_tag_oldret;
4181	}
4182	/ version /
4183	{
4184	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4185	ret = `0`;
4186	e = encode_CMSVersion(p, len, &(data)->version, &l);
4187	if (e) return e;
4188	p -= l; len -= l; ret += l;
4189
4190	ret += Top_tag_oldret;
4191	}
4192	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
4193	if (e) return e;
4194	p -= l; len -= l; ret += l;
4195
4196	*size = ret;
4197	return `0`;
4198	}
4199
4200	int ASN1CALL
4201	decode_CMSEncryptedData(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CMSEncryptedData data, size_t *size)
4202	{
4203	size_t ret = `0`;
4204	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4205	int e HEIMDAL_UNUSED_ATTRIBUTE;
4206
4207	memset(data, `0`, sizeof(*data));
4208	{
4209	size_t Top_datalen, Top_oldlen;
4210	Der_type Top_type;
4211	int is_indefinite1;
4212	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
4213	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
4214	if(e) goto fail;
4215	p += l; len -= l; ret += l;
4216	Top_oldlen = len;
4217	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
4218	{ e = ASN1_BAD_FORMAT; goto fail; }
4219	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_CMSVersion(p, len, &(data)->version, &l);
4220	if(e) goto fail;
4221	p += l; len -= l; ret += l;
4222	e = decode_EncryptedContentInfo(p, len, &(data)->encryptedContentInfo, &l);
4223	if(e) goto fail;
4224	p += l; len -= l; ret += l;
4225	{
4226	size_t unprotectedAttrs_datalen, unprotectedAttrs_oldlen;
4227	Der_type unprotectedAttrs_type;
4228	int is_indefinite3;
4229	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &unprotectedAttrs_type, `1`, &unprotectedAttrs_datalen, &l);
4230	if (e == `0` && unprotectedAttrs_type != CONS) { e = ASN1_BAD_ID; }
4231	if(e) {
4232	(data)->unprotectedAttrs = NULL;
4233	} else {
4234	(data)->unprotectedAttrs = calloc(`1`, sizeof(*(data)->unprotectedAttrs));
4235	if ((data)->unprotectedAttrs == NULL) { e = ENOMEM; goto fail; }
4236	p += l; len -= l; ret += l;
4237	unprotectedAttrs_oldlen = len;
4238	if((is_indefinite3 = _heim_fix_dce(unprotectedAttrs_datalen, &len)) < `0`)
4239	{ e = ASN1_BAD_FORMAT; goto fail; }
4240	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_heim_any(p, len, (data)->unprotectedAttrs, &l);
4241	if(e) goto fail;
4242	p += l; len -= l; ret += l;
4243	if(is_indefinite3){
4244	len += `2`;
4245	e = der_match_tag_and_length(p, len, (Der_class)`0`, &unprotectedAttrs_type, UT_EndOfContent, &unprotectedAttrs_datalen, &l);
4246	if(e) goto fail;
4247	p += l; len -= l; ret += l;
4248	if (unprotectedAttrs_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4249	} else
4250	len = unprotectedAttrs_oldlen - unprotectedAttrs_datalen;
4251	}
4252	}
4253	if(is_indefinite1){
4254	len += `2`;
4255	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
4256	if(e) goto fail;
4257	p += l; len -= l; ret += l;
4258	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4259	} else
4260	len = Top_oldlen - Top_datalen;
4261	}
4262	if(size) *size = ret;
4263	return `0`;
4264	fail:
4265	free_CMSEncryptedData(data);
4266	return e;
4267	}
4268
4269	void ASN1CALL
4270	free_CMSEncryptedData(CMSEncryptedData *data)
4271	{
4272	free_CMSVersion(&(data)->version);
4273	free_EncryptedContentInfo(&(data)->encryptedContentInfo);
4274	if((data)->unprotectedAttrs) {
4275	free_heim_any((data)->unprotectedAttrs);
4276	free((data)->unprotectedAttrs);
4277	(data)->unprotectedAttrs = NULL;
4278	}
4279	}
4280
4281	size_t ASN1CALL
4282	length_CMSEncryptedData(const CMSEncryptedData *data)
4283	{
4284	size_t ret = `0`;
4285	{
4286	size_t Top_tag_oldret = ret;
4287	ret = `0`;
4288	ret += length_CMSVersion(&(data)->version);
4289	ret += Top_tag_oldret;
4290	}
4291	{
4292	size_t Top_tag_oldret = ret;
4293	ret = `0`;
4294	ret += length_EncryptedContentInfo(&(data)->encryptedContentInfo);
4295	ret += Top_tag_oldret;
4296	}
4297	if((data)->unprotectedAttrs){
4298	size_t Top_tag_oldret = ret;
4299	ret = `0`;
4300	ret += length_heim_any((data)->unprotectedAttrs);
4301	ret += `1` + der_length_len (ret);
4302	ret += Top_tag_oldret;
4303	}
4304	ret += `1` + der_length_len (ret);
4305	return ret;
4306	}
4307
4308	int ASN1CALL
4309	copy_CMSEncryptedData(const CMSEncryptedData from, CMSEncryptedData to)
4310	{
4311	memset(to, `0`, sizeof(*to));
4312	if(copy_CMSVersion(&(from)->version, &(to)->version)) goto fail;
4313	if(copy_EncryptedContentInfo(&(from)->encryptedContentInfo, &(to)->encryptedContentInfo)) goto fail;
4314	if((from)->unprotectedAttrs) {
4315	(to)->unprotectedAttrs = malloc(sizeof(*(to)->unprotectedAttrs));
4316	if((to)->unprotectedAttrs == NULL) goto fail;
4317	if(copy_heim_any((from)->unprotectedAttrs, (to)->unprotectedAttrs)) goto fail;
4318	}else
4319	(to)->unprotectedAttrs = NULL;
4320	return `0`;
4321	fail:
4322	free_CMSEncryptedData(to);
4323	return ENOMEM;
4324	}
4325
4326	int ASN1CALL
4327	encode_EnvelopedData(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* EnvelopedData data, size_t size)
4328	{
4329	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
4330	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4331	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
4332
4333	/ unprotectedAttrs /
4334	if((data)->unprotectedAttrs) {
4335	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4336	ret = `0`;
4337	e = encode_heim_any(p, len, (data)->unprotectedAttrs, &l);
4338	if (e) return e;
4339	p -= l; len -= l; ret += l;
4340
4341	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `1`, &l);
4342	if (e) return e;
4343	p -= l; len -= l; ret += l;
4344
4345	ret += Top_tag_oldret;
4346	}
4347	/ encryptedContentInfo /
4348	{
4349	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4350	ret = `0`;
4351	e = encode_EncryptedContentInfo(p, len, &(data)->encryptedContentInfo, &l);
4352	if (e) return e;
4353	p -= l; len -= l; ret += l;
4354
4355	ret += Top_tag_oldret;
4356	}
4357	/ recipientInfos /
4358	{
4359	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4360	ret = `0`;
4361	e = encode_RecipientInfos(p, len, &(data)->recipientInfos, &l);
4362	if (e) return e;
4363	p -= l; len -= l; ret += l;
4364
4365	ret += Top_tag_oldret;
4366	}
4367	/ originatorInfo /
4368	if((data)->originatorInfo) {
4369	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4370	ret = `0`;
4371	e = encode_heim_any(p, len, (data)->originatorInfo, &l);
4372	if (e) return e;
4373	p -= l; len -= l; ret += l;
4374
4375	e = der_put_length_and_tag (p, len, ret, ASN1_C_CONTEXT, CONS, `0`, &l);
4376	if (e) return e;
4377	p -= l; len -= l; ret += l;
4378
4379	ret += Top_tag_oldret;
4380	}
4381	/ version /
4382	{
4383	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4384	ret = `0`;
4385	e = encode_CMSVersion(p, len, &(data)->version, &l);
4386	if (e) return e;
4387	p -= l; len -= l; ret += l;
4388
4389	ret += Top_tag_oldret;
4390	}
4391	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
4392	if (e) return e;
4393	p -= l; len -= l; ret += l;
4394
4395	*size = ret;
4396	return `0`;
4397	}
4398
4399	int ASN1CALL
4400	decode_EnvelopedData(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, EnvelopedData data, size_t *size)
4401	{
4402	size_t ret = `0`;
4403	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4404	int e HEIMDAL_UNUSED_ATTRIBUTE;
4405
4406	memset(data, `0`, sizeof(*data));
4407	{
4408	size_t Top_datalen, Top_oldlen;
4409	Der_type Top_type;
4410	int is_indefinite1;
4411	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
4412	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
4413	if(e) goto fail;
4414	p += l; len -= l; ret += l;
4415	Top_oldlen = len;
4416	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
4417	{ e = ASN1_BAD_FORMAT; goto fail; }
4418	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_CMSVersion(p, len, &(data)->version, &l);
4419	if(e) goto fail;
4420	p += l; len -= l; ret += l;
4421	{
4422	size_t originatorInfo_datalen, originatorInfo_oldlen;
4423	Der_type originatorInfo_type;
4424	int is_indefinite3;
4425	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &originatorInfo_type, `0`, &originatorInfo_datalen, &l);
4426	if (e == `0` && originatorInfo_type != CONS) { e = ASN1_BAD_ID; }
4427	if(e) {
4428	(data)->originatorInfo = NULL;
4429	} else {
4430	(data)->originatorInfo = calloc(`1`, sizeof(*(data)->originatorInfo));
4431	if ((data)->originatorInfo == NULL) { e = ENOMEM; goto fail; }
4432	p += l; len -= l; ret += l;
4433	originatorInfo_oldlen = len;
4434	if((is_indefinite3 = _heim_fix_dce(originatorInfo_datalen, &len)) < `0`)
4435	{ e = ASN1_BAD_FORMAT; goto fail; }
4436	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_heim_any(p, len, (data)->originatorInfo, &l);
4437	if(e) goto fail;
4438	p += l; len -= l; ret += l;
4439	if(is_indefinite3){
4440	len += `2`;
4441	e = der_match_tag_and_length(p, len, (Der_class)`0`, &originatorInfo_type, UT_EndOfContent, &originatorInfo_datalen, &l);
4442	if(e) goto fail;
4443	p += l; len -= l; ret += l;
4444	if (originatorInfo_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4445	} else
4446	len = originatorInfo_oldlen - originatorInfo_datalen;
4447	}
4448	}
4449	e = decode_RecipientInfos(p, len, &(data)->recipientInfos, &l);
4450	if(e) goto fail;
4451	p += l; len -= l; ret += l;
4452	e = decode_EncryptedContentInfo(p, len, &(data)->encryptedContentInfo, &l);
4453	if(e) goto fail;
4454	p += l; len -= l; ret += l;
4455	{
4456	size_t unprotectedAttrs_datalen, unprotectedAttrs_oldlen;
4457	Der_type unprotectedAttrs_type;
4458	int is_indefinite3;
4459	e = der_match_tag_and_length(p, len, ASN1_C_CONTEXT, &unprotectedAttrs_type, `1`, &unprotectedAttrs_datalen, &l);
4460	if (e == `0` && unprotectedAttrs_type != CONS) { e = ASN1_BAD_ID; }
4461	if(e) {
4462	(data)->unprotectedAttrs = NULL;
4463	} else {
4464	(data)->unprotectedAttrs = calloc(`1`, sizeof(*(data)->unprotectedAttrs));
4465	if ((data)->unprotectedAttrs == NULL) { e = ENOMEM; goto fail; }
4466	p += l; len -= l; ret += l;
4467	unprotectedAttrs_oldlen = len;
4468	if((is_indefinite3 = _heim_fix_dce(unprotectedAttrs_datalen, &len)) < `0`)
4469	{ e = ASN1_BAD_FORMAT; goto fail; }
4470	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = decode_heim_any(p, len, (data)->unprotectedAttrs, &l);
4471	if(e) goto fail;
4472	p += l; len -= l; ret += l;
4473	if(is_indefinite3){
4474	len += `2`;
4475	e = der_match_tag_and_length(p, len, (Der_class)`0`, &unprotectedAttrs_type, UT_EndOfContent, &unprotectedAttrs_datalen, &l);
4476	if(e) goto fail;
4477	p += l; len -= l; ret += l;
4478	if (unprotectedAttrs_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4479	} else
4480	len = unprotectedAttrs_oldlen - unprotectedAttrs_datalen;
4481	}
4482	}
4483	if(is_indefinite1){
4484	len += `2`;
4485	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
4486	if(e) goto fail;
4487	p += l; len -= l; ret += l;
4488	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4489	} else
4490	len = Top_oldlen - Top_datalen;
4491	}
4492	if(size) *size = ret;
4493	return `0`;
4494	fail:
4495	free_EnvelopedData(data);
4496	return e;
4497	}
4498
4499	void ASN1CALL
4500	free_EnvelopedData(EnvelopedData *data)
4501	{
4502	free_CMSVersion(&(data)->version);
4503	if((data)->originatorInfo) {
4504	free_heim_any((data)->originatorInfo);
4505	free((data)->originatorInfo);
4506	(data)->originatorInfo = NULL;
4507	}
4508	free_RecipientInfos(&(data)->recipientInfos);
4509	free_EncryptedContentInfo(&(data)->encryptedContentInfo);
4510	if((data)->unprotectedAttrs) {
4511	free_heim_any((data)->unprotectedAttrs);
4512	free((data)->unprotectedAttrs);
4513	(data)->unprotectedAttrs = NULL;
4514	}
4515	}
4516
4517	size_t ASN1CALL
4518	length_EnvelopedData(const EnvelopedData *data)
4519	{
4520	size_t ret = `0`;
4521	{
4522	size_t Top_tag_oldret = ret;
4523	ret = `0`;
4524	ret += length_CMSVersion(&(data)->version);
4525	ret += Top_tag_oldret;
4526	}
4527	if((data)->originatorInfo){
4528	size_t Top_tag_oldret = ret;
4529	ret = `0`;
4530	ret += length_heim_any((data)->originatorInfo);
4531	ret += `1` + der_length_len (ret);
4532	ret += Top_tag_oldret;
4533	}
4534	{
4535	size_t Top_tag_oldret = ret;
4536	ret = `0`;
4537	ret += length_RecipientInfos(&(data)->recipientInfos);
4538	ret += Top_tag_oldret;
4539	}
4540	{
4541	size_t Top_tag_oldret = ret;
4542	ret = `0`;
4543	ret += length_EncryptedContentInfo(&(data)->encryptedContentInfo);
4544	ret += Top_tag_oldret;
4545	}
4546	if((data)->unprotectedAttrs){
4547	size_t Top_tag_oldret = ret;
4548	ret = `0`;
4549	ret += length_heim_any((data)->unprotectedAttrs);
4550	ret += `1` + der_length_len (ret);
4551	ret += Top_tag_oldret;
4552	}
4553	ret += `1` + der_length_len (ret);
4554	return ret;
4555	}
4556
4557	int ASN1CALL
4558	copy_EnvelopedData(const EnvelopedData from, EnvelopedData to)
4559	{
4560	memset(to, `0`, sizeof(*to));
4561	if(copy_CMSVersion(&(from)->version, &(to)->version)) goto fail;
4562	if((from)->originatorInfo) {
4563	(to)->originatorInfo = malloc(sizeof(*(to)->originatorInfo));
4564	if((to)->originatorInfo == NULL) goto fail;
4565	if(copy_heim_any((from)->originatorInfo, (to)->originatorInfo)) goto fail;
4566	}else
4567	(to)->originatorInfo = NULL;
4568	if(copy_RecipientInfos(&(from)->recipientInfos, &(to)->recipientInfos)) goto fail;
4569	if(copy_EncryptedContentInfo(&(from)->encryptedContentInfo, &(to)->encryptedContentInfo)) goto fail;
4570	if((from)->unprotectedAttrs) {
4571	(to)->unprotectedAttrs = malloc(sizeof(*(to)->unprotectedAttrs));
4572	if((to)->unprotectedAttrs == NULL) goto fail;
4573	if(copy_heim_any((from)->unprotectedAttrs, (to)->unprotectedAttrs)) goto fail;
4574	}else
4575	(to)->unprotectedAttrs = NULL;
4576	return `0`;
4577	fail:
4578	free_EnvelopedData(to);
4579	return ENOMEM;
4580	}
4581
4582	int ASN1CALL
4583	encode_CMSRC2CBCParameter(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CMSRC2CBCParameter data, size_t size)
4584	{
4585	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
4586	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4587	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
4588
4589	/ iv /
4590	{
4591	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4592	ret = `0`;
4593	e = der_put_octet_string(p, len, &(data)->iv, &l);
4594	if (e) return e;
4595	p -= l; len -= l; ret += l;
4596
4597	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OctetString, &l);
4598	if (e) return e;
4599	p -= l; len -= l; ret += l;
4600
4601	ret += Top_tag_oldret;
4602	}
4603	/ rc2ParameterVersion /
4604	{
4605	size_t Top_tag_oldret HEIMDAL_UNUSED_ATTRIBUTE = ret;
4606	ret = `0`;
4607	e = der_put_unsigned(p, len, &(data)->rc2ParameterVersion, &l);
4608	if (e) return e;
4609	p -= l; len -= l; ret += l;
4610
4611	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_Integer, &l);
4612	if (e) return e;
4613	p -= l; len -= l; ret += l;
4614
4615	ret += Top_tag_oldret;
4616	}
4617	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, CONS, UT_Sequence, &l);
4618	if (e) return e;
4619	p -= l; len -= l; ret += l;
4620
4621	*size = ret;
4622	return `0`;
4623	}
4624
4625	int ASN1CALL
4626	decode_CMSRC2CBCParameter(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CMSRC2CBCParameter data, size_t *size)
4627	{
4628	size_t ret = `0`;
4629	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4630	int e HEIMDAL_UNUSED_ATTRIBUTE;
4631
4632	memset(data, `0`, sizeof(*data));
4633	{
4634	size_t Top_datalen, Top_oldlen;
4635	Der_type Top_type;
4636	int is_indefinite1;
4637	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_Sequence, &Top_datalen, &l);
4638	if (e == `0` && Top_type != CONS) { e = ASN1_BAD_ID; }
4639	if(e) goto fail;
4640	p += l; len -= l; ret += l;
4641	Top_oldlen = len;
4642	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
4643	{ e = ASN1_BAD_FORMAT; goto fail; }
4644	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }{
4645	size_t rc2ParameterVersion_datalen, rc2ParameterVersion_oldlen;
4646	Der_type rc2ParameterVersion_type;
4647	int is_indefinite3;
4648	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &rc2ParameterVersion_type, UT_Integer, &rc2ParameterVersion_datalen, &l);
4649	if (e == `0` && rc2ParameterVersion_type != PRIM) { e = ASN1_BAD_ID; }
4650	if(e) goto fail;
4651	p += l; len -= l; ret += l;
4652	rc2ParameterVersion_oldlen = len;
4653	if((is_indefinite3 = _heim_fix_dce(rc2ParameterVersion_datalen, &len)) < `0`)
4654	{ e = ASN1_BAD_FORMAT; goto fail; }
4655	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }e = der_get_unsigned(p, len, &(data)->rc2ParameterVersion, &l);
4656	if(e) goto fail;
4657	p += l; len -= l; ret += l;
4658	if(is_indefinite3){
4659	len += `2`;
4660	e = der_match_tag_and_length(p, len, (Der_class)`0`, &rc2ParameterVersion_type, UT_EndOfContent, &rc2ParameterVersion_datalen, &l);
4661	if(e) goto fail;
4662	p += l; len -= l; ret += l;
4663	if (rc2ParameterVersion_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4664	} else
4665	len = rc2ParameterVersion_oldlen - rc2ParameterVersion_datalen;
4666	}
4667	{
4668	size_t iv_datalen, iv_oldlen;
4669	Der_type iv_type;
4670	int is_indefinite3;
4671	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &iv_type, UT_OctetString, &iv_datalen, &l);
4672	if(e) goto fail;
4673	p += l; len -= l; ret += l;
4674	iv_oldlen = len;
4675	if((is_indefinite3 = _heim_fix_dce(iv_datalen, &len)) < `0`)
4676	{ e = ASN1_BAD_FORMAT; goto fail; }
4677	if (is_indefinite3) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (iv_type == CONS) {
4678	e = der_get_octet_string_ber(p, len, &(data)->iv, &l);
4679	if(e) goto fail;
4680	p += l; len -= l; ret += l;
4681	} else {
4682	e = der_get_octet_string(p, len, &(data)->iv, &l);
4683	if(e) goto fail;
4684	p += l; len -= l; ret += l;
4685	}
4686	if(is_indefinite3){
4687	len += `2`;
4688	e = der_match_tag_and_length(p, len, (Der_class)`0`, &iv_type, UT_EndOfContent, &iv_datalen, &l);
4689	if(e) goto fail;
4690	p += l; len -= l; ret += l;
4691	if (iv_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4692	} else
4693	len = iv_oldlen - iv_datalen;
4694	}
4695	if(is_indefinite1){
4696	len += `2`;
4697	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
4698	if(e) goto fail;
4699	p += l; len -= l; ret += l;
4700	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4701	} else
4702	len = Top_oldlen - Top_datalen;
4703	}
4704	if(size) *size = ret;
4705	return `0`;
4706	fail:
4707	free_CMSRC2CBCParameter(data);
4708	return e;
4709	}
4710
4711	void ASN1CALL
4712	free_CMSRC2CBCParameter(CMSRC2CBCParameter *data)
4713	{
4714	der_free_octet_string(&(data)->iv);
4715	}
4716
4717	size_t ASN1CALL
4718	length_CMSRC2CBCParameter(const CMSRC2CBCParameter *data)
4719	{
4720	size_t ret = `0`;
4721	{
4722	size_t Top_tag_oldret = ret;
4723	ret = `0`;
4724	ret += der_length_unsigned(&(data)->rc2ParameterVersion);
4725	ret += `1` + der_length_len (ret);
4726	ret += Top_tag_oldret;
4727	}
4728	{
4729	size_t Top_tag_oldret = ret;
4730	ret = `0`;
4731	ret += der_length_octet_string(&(data)->iv);
4732	ret += `1` + der_length_len (ret);
4733	ret += Top_tag_oldret;
4734	}
4735	ret += `1` + der_length_len (ret);
4736	return ret;
4737	}
4738
4739	int ASN1CALL
4740	copy_CMSRC2CBCParameter(const CMSRC2CBCParameter from, CMSRC2CBCParameter to)
4741	{
4742	memset(to, `0`, sizeof(*to));
4743	(&(to)->rc2ParameterVersion) = (&(from)->rc2ParameterVersion);
4744	if(der_copy_octet_string(&(from)->iv, &(to)->iv)) goto fail;
4745	return `0`;
4746	fail:
4747	free_CMSRC2CBCParameter(to);
4748	return ENOMEM;
4749	}
4750
4751	int ASN1CALL
4752	encode_CMSCBCParameter(unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, const* CMSCBCParameter data, size_t size)
4753	{
4754	size_t ret HEIMDAL_UNUSED_ATTRIBUTE = `0`;
4755	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4756	int i HEIMDAL_UNUSED_ATTRIBUTE, e HEIMDAL_UNUSED_ATTRIBUTE;
4757
4758	e = der_put_octet_string(p, len, data, &l);
4759	if (e) return e;
4760	p -= l; len -= l; ret += l;
4761
4762	e = der_put_length_and_tag (p, len, ret, ASN1_C_UNIV, PRIM, UT_OctetString, &l);
4763	if (e) return e;
4764	p -= l; len -= l; ret += l;
4765
4766	*size = ret;
4767	return `0`;
4768	}
4769
4770	int ASN1CALL
4771	decode_CMSCBCParameter(const unsigned char p HEIMDAL_UNUSED_ATTRIBUTE, size_t len HEIMDAL_UNUSED_ATTRIBUTE, CMSCBCParameter data, size_t *size)
4772	{
4773	size_t ret = `0`;
4774	size_t l HEIMDAL_UNUSED_ATTRIBUTE;
4775	int e HEIMDAL_UNUSED_ATTRIBUTE;
4776
4777	memset(data, `0`, sizeof(*data));
4778	{
4779	size_t Top_datalen, Top_oldlen;
4780	Der_type Top_type;
4781	int is_indefinite1;
4782	e = der_match_tag_and_length(p, len, ASN1_C_UNIV, &Top_type, UT_OctetString, &Top_datalen, &l);
4783	if(e) goto fail;
4784	p += l; len -= l; ret += l;
4785	Top_oldlen = len;
4786	if((is_indefinite1 = _heim_fix_dce(Top_datalen, &len)) < `0`)
4787	{ e = ASN1_BAD_FORMAT; goto fail; }
4788	if (is_indefinite1) { if (len < `2`) { e = ASN1_OVERRUN; goto fail; } len -= `2`; }if (Top_type == CONS) {
4789	e = der_get_octet_string_ber(p, len, data, &l);
4790	if(e) goto fail;
4791	p += l; len -= l; ret += l;
4792	} else {
4793	e = der_get_octet_string(p, len, data, &l);
4794	if(e) goto fail;
4795	p += l; len -= l; ret += l;
4796	}
4797	if(is_indefinite1){
4798	len += `2`;
4799	e = der_match_tag_and_length(p, len, (Der_class)`0`, &Top_type, UT_EndOfContent, &Top_datalen, &l);
4800	if(e) goto fail;
4801	p += l; len -= l; ret += l;
4802	if (Top_type != (Der_type)`0`) { e = ASN1_BAD_ID; goto fail; }
4803	} else
4804	len = Top_oldlen - Top_datalen;
4805	}
4806	if(size) *size = ret;
4807	return `0`;
4808	fail:
4809	free_CMSCBCParameter(data);
4810	return e;
4811	}
4812
4813	void ASN1CALL
4814	free_CMSCBCParameter(CMSCBCParameter *data)
4815	{
4816	der_free_octet_string(data);
4817	}
4818
4819	size_t ASN1CALL
4820	length_CMSCBCParameter(const CMSCBCParameter *data)
4821	{
4822	size_t ret = `0`;
4823	ret += der_length_octet_string(data);
4824	ret += `1` + der_length_len (ret);
4825	return ret;
4826	}
4827
4828	int ASN1CALL
4829	copy_CMSCBCParameter(const CMSCBCParameter from, CMSCBCParameter to)
4830	{
4831	memset(to, `0`, sizeof(*to));
4832	if(der_copy_octet_string(from, to)) goto fail;
4833	return `0`;
4834	fail:
4835	free_CMSCBCParameter(to);
4836	return ENOMEM;
4837	}
4838
4839

Browse the source code of netbsd/objdir.amd64/compat/amd64/i386/crypto/external/bsd/heimdal/lib/libasn1/asn1_cms_asn1.c