1
10
13
14
20
21
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
104
105
106
107
108
109
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
132
133
134
135
136
137
138
139
...
...
...
#define NX_SECURE_SOURCE_CODE
#include "nx_secure_tls.h"
...
...
UINT _nx_secure_tls_remote_certificate_buffer_allocate(NX_SECURE_TLS_SESSION *tls_session, UINT certs_number, VOID *certificate_buffer, ULONG buffer_size)
{
UINT status;
UINT metadata_size;
UINT cert_buffer_size;
UCHAR *buffer_ptr;
NX_SECURE_X509_CERT *cert_ptr;
UINT count;
metadata_size = sizeof(NX_SECURE_X509_CERT) * certs_number;
if(buffer_size < metadata_size)
{
return(NX_INVALID_PARAMETERS);
}if (buffer_size < metadata_size) { ... }
cert_buffer_size = (buffer_size - metadata_size) / certs_number;
if(cert_buffer_size < NX_SECURE_TLS_MINIMUM_CERTIFICATE_SIZE)
{
return(NX_INVALID_PARAMETERS);
}if (cert_buffer_size < NX_SECURE_TLS_MINIMUM_CERTIFICATE_SIZE) { ... }
buffer_ptr = (UCHAR*)(certificate_buffer);
for(count = 0; count < certs_number; count++)
{
cert_ptr = (NX_SECURE_X509_CERT*)(buffer_ptr);
buffer_ptr += sizeof(NX_SECURE_X509_CERT);
status = _nx_secure_tls_remote_certificate_allocate(tls_session, cert_ptr, buffer_ptr, cert_buffer_size);
if(status != NX_SUCCESS)
{
return(status);
}if (status != NX_SUCCESS) { ... }
buffer_ptr += cert_buffer_size;
}for (count = 0; count < certs_number; count++) { ... }
return(NX_SUCCESS);
}{ ... }