2 * Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
11 #include "crypto/ctype.h"
13 #include "internal/cryptlib.h"
14 #include <openssl/lhash.h>
15 #include <openssl/asn1.h>
16 #include "crypto/objects.h"
17 #include <openssl/bn.h>
18 #include "crypto/asn1.h"
19 #include "obj_local.h"
21 /* obj_dat.h is generated from objects.h by obj_dat.pl */
24 DECLARE_OBJ_BSEARCH_CMP_FN(const ASN1_OBJECT *, unsigned int, sn);
25 DECLARE_OBJ_BSEARCH_CMP_FN(const ASN1_OBJECT *, unsigned int, ln);
26 DECLARE_OBJ_BSEARCH_CMP_FN(const ASN1_OBJECT *, unsigned int, obj);
38 static int new_nid = NUM_NID;
39 static LHASH_OF(ADDED_OBJ) *added = NULL;
41 static int sn_cmp(const ASN1_OBJECT *const *a, const unsigned int *b)
43 return strcmp((*a)->sn, nid_objs[*b].sn);
46 IMPLEMENT_OBJ_BSEARCH_CMP_FN(const ASN1_OBJECT *, unsigned int, sn);
48 static int ln_cmp(const ASN1_OBJECT *const *a, const unsigned int *b)
50 return strcmp((*a)->ln, nid_objs[*b].ln);
53 IMPLEMENT_OBJ_BSEARCH_CMP_FN(const ASN1_OBJECT *, unsigned int, ln);
55 static unsigned long added_obj_hash(const ADDED_OBJ *ca)
59 unsigned long ret = 0;
65 ret = a->length << 20L;
66 p = (unsigned char *)a->data;
67 for (i = 0; i < a->length; i++)
68 ret ^= p[i] << ((i * 3) % 24);
71 ret = OPENSSL_LH_strhash(a->sn);
74 ret = OPENSSL_LH_strhash(a->ln);
84 ret |= ((unsigned long)ca->type) << 30L;
88 static int added_obj_cmp(const ADDED_OBJ *ca, const ADDED_OBJ *cb)
93 i = ca->type - cb->type;
100 i = (a->length - b->length);
103 return memcmp(a->data, b->data, (size_t)a->length);
107 else if (b->sn == NULL)
110 return strcmp(a->sn, b->sn);
114 else if (b->ln == NULL)
117 return strcmp(a->ln, b->ln);
119 return a->nid - b->nid;
126 static int init_added(void)
130 added = lh_ADDED_OBJ_new(added_obj_hash, added_obj_cmp);
131 return added != NULL;
134 static void cleanup1_doall(ADDED_OBJ *a)
137 a->obj->flags |= ASN1_OBJECT_FLAG_DYNAMIC |
138 ASN1_OBJECT_FLAG_DYNAMIC_STRINGS | ASN1_OBJECT_FLAG_DYNAMIC_DATA;
141 static void cleanup2_doall(ADDED_OBJ *a)
146 static void cleanup3_doall(ADDED_OBJ *a)
148 if (--a->obj->nid == 0)
149 ASN1_OBJECT_free(a->obj);
153 void obj_cleanup_int(void)
157 lh_ADDED_OBJ_set_down_load(added, 0);
158 lh_ADDED_OBJ_doall(added, cleanup1_doall); /* zero counters */
159 lh_ADDED_OBJ_doall(added, cleanup2_doall); /* set counters */
160 lh_ADDED_OBJ_doall(added, cleanup3_doall); /* free objects */
161 lh_ADDED_OBJ_free(added);
165 int OBJ_new_nid(int num)
174 int OBJ_add_object(const ASN1_OBJECT *obj)
177 ADDED_OBJ *ao[4] = { NULL, NULL, NULL, NULL }, *aop;
183 if ((o = OBJ_dup(obj)) == NULL)
185 if ((ao[ADDED_NID] = OPENSSL_malloc(sizeof(*ao[0]))) == NULL)
187 if ((o->length != 0) && (obj->data != NULL))
188 if ((ao[ADDED_DATA] = OPENSSL_malloc(sizeof(*ao[0]))) == NULL)
191 if ((ao[ADDED_SNAME] = OPENSSL_malloc(sizeof(*ao[0]))) == NULL)
194 if ((ao[ADDED_LNAME] = OPENSSL_malloc(sizeof(*ao[0]))) == NULL)
197 for (i = ADDED_DATA; i <= ADDED_NID; i++) {
201 aop = lh_ADDED_OBJ_insert(added, ao[i]);
202 /* memory leak, but should not normally matter */
207 ~(ASN1_OBJECT_FLAG_DYNAMIC | ASN1_OBJECT_FLAG_DYNAMIC_STRINGS |
208 ASN1_OBJECT_FLAG_DYNAMIC_DATA);
212 OBJerr(OBJ_F_OBJ_ADD_OBJECT, ERR_R_MALLOC_FAILURE);
214 for (i = ADDED_DATA; i <= ADDED_NID; i++)
220 ASN1_OBJECT *OBJ_nid2obj(int n)
225 if ((n >= 0) && (n < NUM_NID)) {
226 if ((n != NID_undef) && (nid_objs[n].nid == NID_undef)) {
227 OBJerr(OBJ_F_OBJ_NID2OBJ, OBJ_R_UNKNOWN_NID);
230 return (ASN1_OBJECT *)&(nid_objs[n]);
233 /* Make sure we've loaded config before checking for any "added" objects */
234 OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL);
242 adp = lh_ADDED_OBJ_retrieve(added, &ad);
246 OBJerr(OBJ_F_OBJ_NID2OBJ, OBJ_R_UNKNOWN_NID);
250 const char *OBJ_nid2sn(int n)
255 if ((n >= 0) && (n < NUM_NID)) {
256 if ((n != NID_undef) && (nid_objs[n].nid == NID_undef)) {
257 OBJerr(OBJ_F_OBJ_NID2SN, OBJ_R_UNKNOWN_NID);
260 return nid_objs[n].sn;
263 /* Make sure we've loaded config before checking for any "added" objects */
264 OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL);
272 adp = lh_ADDED_OBJ_retrieve(added, &ad);
276 OBJerr(OBJ_F_OBJ_NID2SN, OBJ_R_UNKNOWN_NID);
280 const char *OBJ_nid2ln(int n)
285 if ((n >= 0) && (n < NUM_NID)) {
286 if ((n != NID_undef) && (nid_objs[n].nid == NID_undef)) {
287 OBJerr(OBJ_F_OBJ_NID2LN, OBJ_R_UNKNOWN_NID);
290 return nid_objs[n].ln;
293 /* Make sure we've loaded config before checking for any "added" objects */
294 OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL);
302 adp = lh_ADDED_OBJ_retrieve(added, &ad);
306 OBJerr(OBJ_F_OBJ_NID2LN, OBJ_R_UNKNOWN_NID);
310 static int obj_cmp(const ASN1_OBJECT *const *ap, const unsigned int *bp)
313 const ASN1_OBJECT *a = *ap;
314 const ASN1_OBJECT *b = &nid_objs[*bp];
316 j = (a->length - b->length);
321 return memcmp(a->data, b->data, a->length);
324 IMPLEMENT_OBJ_BSEARCH_CMP_FN(const ASN1_OBJECT *, unsigned int, obj);
326 int OBJ_obj2nid(const ASN1_OBJECT *a)
328 const unsigned int *op;
339 /* Make sure we've loaded config before checking for any "added" objects */
340 OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL);
343 ad.type = ADDED_DATA;
344 ad.obj = (ASN1_OBJECT *)a; /* XXX: ugly but harmless */
345 adp = lh_ADDED_OBJ_retrieve(added, &ad);
347 return adp->obj->nid;
349 op = OBJ_bsearch_obj(&a, obj_objs, NUM_OBJ);
352 return nid_objs[*op].nid;
356 * Convert an object name into an ASN1_OBJECT if "noname" is not set then
357 * search for short and long names first. This will convert the "dotted" form
358 * into an object: unlike OBJ_txt2nid it can be used with any objects, not
359 * just registered ones.
362 ASN1_OBJECT *OBJ_txt2obj(const char *s, int no_name)
368 const unsigned char *cp;
372 if (((nid = OBJ_sn2nid(s)) != NID_undef) ||
373 ((nid = OBJ_ln2nid(s)) != NID_undef))
374 return OBJ_nid2obj(nid);
377 /* Work out size of content octets */
378 i = a2d_ASN1_OBJECT(NULL, 0, s, -1);
380 /* Don't clear the error */
386 /* Work out total size */
387 j = ASN1_object_size(0, i, V_ASN1_OBJECT);
391 if ((buf = OPENSSL_malloc(j)) == NULL) {
392 OBJerr(OBJ_F_OBJ_TXT2OBJ, ERR_R_MALLOC_FAILURE);
397 /* Write out tag+length */
398 ASN1_put_object(&p, 0, i, V_ASN1_OBJECT, V_ASN1_UNIVERSAL);
399 /* Write out contents */
400 a2d_ASN1_OBJECT(p, i, s, -1);
403 op = d2i_ASN1_OBJECT(NULL, &cp, j);
408 int OBJ_obj2txt(char *buf, int buf_len, const ASN1_OBJECT *a, int no_name)
410 int i, n = 0, len, nid, first, use_bn;
413 const unsigned char *p;
414 char tbuf[DECIMAL_SIZE(i) + DECIMAL_SIZE(l) + 2];
416 /* Ensure that, at every state, |buf| is NUL-terminated. */
417 if (buf && buf_len > 0)
420 if ((a == NULL) || (a->data == NULL))
423 if (!no_name && (nid = OBJ_obj2nid(a)) != NID_undef) {
430 OPENSSL_strlcpy(buf, s, buf_len);
446 unsigned char c = *p++;
448 if ((len == 0) && (c & 0x80))
451 if (!BN_add_word(bl, c & 0x7f))
457 if (!use_bn && (l > (ULONG_MAX >> 7L))) {
458 if (bl == NULL && (bl = BN_new()) == NULL)
460 if (!BN_set_word(bl, l))
465 if (!BN_lshift(bl, bl, 7))
476 if (!BN_sub_word(bl, 80))
484 if (buf && (buf_len > 1)) {
494 bndec = BN_bn2dec(bl);
504 OPENSSL_strlcpy(buf, bndec, buf_len);
517 BIO_snprintf(tbuf, sizeof(tbuf), ".%lu", l);
519 if (buf && (buf_len > 0)) {
520 OPENSSL_strlcpy(buf, tbuf, buf_len);
542 int OBJ_txt2nid(const char *s)
546 obj = OBJ_txt2obj(s, 0);
547 nid = OBJ_obj2nid(obj);
548 ASN1_OBJECT_free(obj);
552 int OBJ_ln2nid(const char *s)
555 const ASN1_OBJECT *oo = &o;
557 const unsigned int *op;
559 /* Make sure we've loaded config before checking for any "added" objects */
560 OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL);
564 ad.type = ADDED_LNAME;
566 adp = lh_ADDED_OBJ_retrieve(added, &ad);
568 return adp->obj->nid;
570 op = OBJ_bsearch_ln(&oo, ln_objs, NUM_LN);
573 return nid_objs[*op].nid;
576 int OBJ_sn2nid(const char *s)
579 const ASN1_OBJECT *oo = &o;
581 const unsigned int *op;
583 /* Make sure we've loaded config before checking for any "added" objects */
584 OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL);
588 ad.type = ADDED_SNAME;
590 adp = lh_ADDED_OBJ_retrieve(added, &ad);
592 return adp->obj->nid;
594 op = OBJ_bsearch_sn(&oo, sn_objs, NUM_SN);
597 return nid_objs[*op].nid;
600 const void *OBJ_bsearch_(const void *key, const void *base, int num, int size,
601 int (*cmp) (const void *, const void *))
603 return OBJ_bsearch_ex_(key, base, num, size, cmp, 0);
606 const void *OBJ_bsearch_ex_(const void *key, const void *base, int num,
608 int (*cmp) (const void *, const void *),
611 const char *p = ossl_bsearch(key, base, num, size, cmp, flags);
613 #ifdef CHARSET_EBCDIC
615 * THIS IS A KLUDGE - Because the *_obj is sorted in ASCII order, and I
616 * don't have perl (yet), we revert to a *LINEAR* search when the object
617 * wasn't found in the binary search.
620 const char *base_ = base;
621 int l, h, i = 0, c = 0;
623 for (i = 0; i < num; ++i) {
624 p = &(base_[i * size]);
627 || (c < 0 && (flags & OBJ_BSEARCH_VALUE_ON_NOMATCH)))
636 * Parse a BIO sink to create some extra oid's objects.
637 * Line format:<OID:isdigit or '.']><isspace><SN><isspace><LN>
639 int OBJ_create_objects(BIO *in)
643 char *o, *s, *l = NULL;
647 i = BIO_gets(in, buf, 512);
651 if (!ossl_isalnum(buf[0]))
654 while (ossl_isdigit(*s) || *s == '.')
658 while (ossl_isspace(*s))
664 while (*l != '\0' && !ossl_isspace(*l))
668 while (ossl_isspace(*l))
682 if (!OBJ_create(o, s, l))
688 int OBJ_create(const char *oid, const char *sn, const char *ln)
690 ASN1_OBJECT *tmpoid = NULL;
693 /* Check to see if short or long name already present */
694 if ((sn != NULL && OBJ_sn2nid(sn) != NID_undef)
695 || (ln != NULL && OBJ_ln2nid(ln) != NID_undef)) {
696 OBJerr(OBJ_F_OBJ_CREATE, OBJ_R_OID_EXISTS);
700 /* Convert numerical OID string to an ASN1_OBJECT structure */
701 tmpoid = OBJ_txt2obj(oid, 1);
705 /* If NID is not NID_undef then object already exists */
706 if (OBJ_obj2nid(tmpoid) != NID_undef) {
707 OBJerr(OBJ_F_OBJ_CREATE, OBJ_R_OID_EXISTS);
711 tmpoid->nid = OBJ_new_nid(1);
712 tmpoid->sn = (char *)sn;
713 tmpoid->ln = (char *)ln;
715 ok = OBJ_add_object(tmpoid);
721 ASN1_OBJECT_free(tmpoid);
725 size_t OBJ_length(const ASN1_OBJECT *obj)
732 const unsigned char *OBJ_get0_data(const ASN1_OBJECT *obj)