2 * Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
10 #include <openssl/crypto.h>
11 #include "crypto/store.h"
12 #include "internal/core.h"
13 #include "internal/namemap.h"
14 #include "internal/property.h"
15 #include "internal/provider.h"
16 #include "store_local.h"
18 int OSSL_STORE_LOADER_up_ref(OSSL_STORE_LOADER *loader)
22 if (loader->prov != NULL)
23 CRYPTO_UP_REF(&loader->refcnt, &ref, loader->lock);
27 void OSSL_STORE_LOADER_free(OSSL_STORE_LOADER *loader)
29 if (loader != NULL && loader->prov != NULL) {
32 CRYPTO_DOWN_REF(&loader->refcnt, &i, loader->lock);
35 ossl_provider_free(loader->prov);
36 CRYPTO_THREAD_lock_free(loader->lock);
42 * OSSL_STORE_LOADER_new() expects the scheme as a constant string,
43 * which we currently don't have, so we need an alternative allocator.
45 static OSSL_STORE_LOADER *new_loader(OSSL_PROVIDER *prov)
47 OSSL_STORE_LOADER *loader;
49 if ((loader = OPENSSL_zalloc(sizeof(*loader))) == NULL
50 || (loader->lock = CRYPTO_THREAD_lock_new()) == NULL) {
55 ossl_provider_up_ref(prov);
61 static int up_ref_loader(void *method)
63 return OSSL_STORE_LOADER_up_ref(method);
66 static void free_loader(void *method)
68 OSSL_STORE_LOADER_free(method);
71 /* Permanent loader method store, constructor and destructor */
72 static void loader_store_free(void *vstore)
74 ossl_method_store_free(vstore);
77 static void *loader_store_new(OSSL_LIB_CTX *ctx)
79 return ossl_method_store_new(ctx);
83 static const OSSL_LIB_CTX_METHOD loader_store_method = {
84 /* We want loader_store to be cleaned up before the provider store */
85 OSSL_LIB_CTX_METHOD_PRIORITY_2,
90 /* Data to be passed through ossl_method_construct() */
91 struct loader_data_st {
93 int scheme_id; /* For get_loader_from_store() */
94 const char *scheme; /* For get_loader_from_store() */
95 const char *propquery; /* For get_loader_from_store() */
97 OSSL_METHOD_STORE *tmp_store; /* For get_tmp_loader_store() */
99 unsigned int flag_construct_error_occurred : 1;
103 * Generic routines to fetch / create OSSL_STORE methods with
104 * ossl_method_construct()
107 /* Temporary loader method store, constructor and destructor */
108 static void *get_tmp_loader_store(void *data)
110 struct loader_data_st *methdata = data;
112 if (methdata->tmp_store == NULL)
113 methdata->tmp_store = ossl_method_store_new(methdata->libctx);
114 return methdata->tmp_store;
117 static void dealloc_tmp_loader_store(void *store)
120 ossl_method_store_free(store);
123 /* Get the permanent loader store */
124 static OSSL_METHOD_STORE *get_loader_store(OSSL_LIB_CTX *libctx)
126 return ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_STORE_LOADER_STORE_INDEX,
127 &loader_store_method);
130 /* Get loader methods from a store, or put one in */
131 static void *get_loader_from_store(void *store, const OSSL_PROVIDER **prov,
134 struct loader_data_st *methdata = data;
138 if ((id = methdata->scheme_id) == 0) {
139 OSSL_NAMEMAP *namemap = ossl_namemap_stored(methdata->libctx);
141 id = ossl_namemap_name2num(namemap, methdata->scheme);
145 && (store = get_loader_store(methdata->libctx)) == NULL)
148 if (!ossl_method_store_fetch(store, id, methdata->propquery, prov, &method))
153 static int put_loader_in_store(void *store, void *method,
154 const OSSL_PROVIDER *prov,
155 const char *scheme, const char *propdef,
158 struct loader_data_st *methdata = data;
159 OSSL_NAMEMAP *namemap;
162 if ((namemap = ossl_namemap_stored(methdata->libctx)) == NULL
163 || (id = ossl_namemap_name2num(namemap, scheme)) == 0)
166 if (store == NULL && (store = get_loader_store(methdata->libctx)) == NULL)
169 return ossl_method_store_add(store, prov, id, propdef, method,
170 up_ref_loader, free_loader);
173 static void *loader_from_algorithm(int scheme_id, const OSSL_ALGORITHM *algodef,
176 OSSL_STORE_LOADER *loader = NULL;
177 const OSSL_DISPATCH *fns = algodef->implementation;
179 if ((loader = new_loader(prov)) == NULL)
181 loader->scheme_id = scheme_id;
182 loader->propdef = algodef->property_definition;
183 loader->description = algodef->algorithm_description;
185 for (; fns->function_id != 0; fns++) {
186 switch (fns->function_id) {
187 case OSSL_FUNC_STORE_OPEN:
188 if (loader->p_open == NULL)
189 loader->p_open = OSSL_FUNC_store_open(fns);
191 case OSSL_FUNC_STORE_ATTACH:
192 if (loader->p_attach == NULL)
193 loader->p_attach = OSSL_FUNC_store_attach(fns);
195 case OSSL_FUNC_STORE_SETTABLE_CTX_PARAMS:
196 if (loader->p_settable_ctx_params == NULL)
197 loader->p_settable_ctx_params =
198 OSSL_FUNC_store_settable_ctx_params(fns);
200 case OSSL_FUNC_STORE_SET_CTX_PARAMS:
201 if (loader->p_set_ctx_params == NULL)
202 loader->p_set_ctx_params = OSSL_FUNC_store_set_ctx_params(fns);
204 case OSSL_FUNC_STORE_LOAD:
205 if (loader->p_load == NULL)
206 loader->p_load = OSSL_FUNC_store_load(fns);
208 case OSSL_FUNC_STORE_EOF:
209 if (loader->p_eof == NULL)
210 loader->p_eof = OSSL_FUNC_store_eof(fns);
212 case OSSL_FUNC_STORE_CLOSE:
213 if (loader->p_close == NULL)
214 loader->p_close = OSSL_FUNC_store_close(fns);
216 case OSSL_FUNC_STORE_EXPORT_OBJECT:
217 if (loader->p_export_object == NULL)
218 loader->p_export_object = OSSL_FUNC_store_export_object(fns);
223 if ((loader->p_open == NULL && loader->p_attach == NULL)
224 || loader->p_load == NULL
225 || loader->p_eof == NULL
226 || loader->p_close == NULL) {
227 /* Only set_ctx_params is optionaal */
228 OSSL_STORE_LOADER_free(loader);
229 ERR_raise(ERR_LIB_OSSL_STORE, OSSL_STORE_R_LOADER_INCOMPLETE);
236 * The core fetching functionality passes the scheme of the implementation.
237 * This function is responsible to getting an identity number for them,
238 * then call loader_from_algorithm() with that identity number.
240 static void *construct_loader(const OSSL_ALGORITHM *algodef,
241 OSSL_PROVIDER *prov, void *data)
244 * This function is only called if get_loader_from_store() returned
245 * NULL, so it's safe to say that of all the spots to create a new
246 * namemap entry, this is it. Should the scheme already exist there, we
247 * know that ossl_namemap_add() will return its corresponding number.
249 struct loader_data_st *methdata = data;
250 OSSL_LIB_CTX *libctx = ossl_provider_libctx(prov);
251 OSSL_NAMEMAP *namemap = ossl_namemap_stored(libctx);
252 const char *scheme = algodef->algorithm_names;
253 int id = ossl_namemap_add_name(namemap, 0, scheme);
257 method = loader_from_algorithm(id, algodef, prov);
260 * Flag to indicate that there was actual construction errors. This
261 * helps inner_loader_fetch() determine what error it should
262 * record on inaccessible algorithms.
265 methdata->flag_construct_error_occurred = 1;
270 /* Intermediary function to avoid ugly casts, used below */
271 static void destruct_loader(void *method, void *data)
273 OSSL_STORE_LOADER_free(method);
276 /* Fetching support. Can fetch by numeric identity or by scheme */
277 static OSSL_STORE_LOADER *
278 inner_loader_fetch(struct loader_data_st *methdata, int id,
279 const char *scheme, const char *properties)
281 OSSL_METHOD_STORE *store = get_loader_store(methdata->libctx);
282 OSSL_NAMEMAP *namemap = ossl_namemap_stored(methdata->libctx);
286 if (store == NULL || namemap == NULL) {
287 ERR_raise(ERR_LIB_OSSL_STORE, ERR_R_PASSED_INVALID_ARGUMENT);
292 * If we have been passed both an id and a scheme, we have an
293 * internal programming error.
295 if (!ossl_assert(id == 0 || scheme == NULL)) {
296 ERR_raise(ERR_LIB_OSSL_STORE, ERR_R_INTERNAL_ERROR);
300 /* If we haven't received a name id yet, try to get one for the name */
301 if (id == 0 && scheme != NULL)
302 id = ossl_namemap_name2num(namemap, scheme);
305 * If we haven't found the name yet, chances are that the algorithm to
306 * be fetched is unsupported.
312 || !ossl_method_store_cache_get(store, NULL, id, properties, &method)) {
313 OSSL_METHOD_CONSTRUCT_METHOD mcm = {
314 get_tmp_loader_store,
315 get_loader_from_store,
320 OSSL_PROVIDER *prov = NULL;
322 methdata->scheme_id = id;
323 methdata->scheme = scheme;
324 methdata->propquery = properties;
325 methdata->flag_construct_error_occurred = 0;
326 if ((method = ossl_method_construct(methdata->libctx, OSSL_OP_STORE,
327 &prov, 0 /* !force_cache */,
328 &mcm, methdata)) != NULL) {
330 * If construction did create a method for us, we know that there
331 * is a correct scheme_id, since those have already been calculated
332 * in get_loader_from_store() and put_loader_in_store() above.
335 id = ossl_namemap_name2num(namemap, scheme);
336 ossl_method_store_cache_set(store, prov, id, properties, method,
337 up_ref_loader, free_loader);
341 * If we never were in the constructor, the algorithm to be fetched
344 unsupported = !methdata->flag_construct_error_occurred;
347 if ((id != 0 || scheme != NULL) && method == NULL) {
348 int code = unsupported ? ERR_R_UNSUPPORTED : ERR_R_FETCH_FAILED;
349 const char *helpful_msg =
351 ? ( "No store loader found. For standard store loaders you need "
352 "at least one of the default or base providers available. "
353 "Did you forget to load them? Info: " )
357 scheme = ossl_namemap_num2name(namemap, id, 0);
358 ERR_raise_data(ERR_LIB_OSSL_STORE, code,
359 "%s%s, Scheme (%s : %d), Properties (%s)",
361 ossl_lib_ctx_get_descriptor(methdata->libctx),
362 scheme = NULL ? "<null>" : scheme, id,
363 properties == NULL ? "<null>" : properties);
369 OSSL_STORE_LOADER *OSSL_STORE_LOADER_fetch(OSSL_LIB_CTX *libctx,
371 const char *properties)
373 struct loader_data_st methdata;
376 methdata.libctx = libctx;
377 methdata.tmp_store = NULL;
378 method = inner_loader_fetch(&methdata, 0, scheme, properties);
379 dealloc_tmp_loader_store(methdata.tmp_store);
383 OSSL_STORE_LOADER *ossl_store_loader_fetch_by_number(OSSL_LIB_CTX *libctx,
385 const char *properties)
387 struct loader_data_st methdata;
390 methdata.libctx = libctx;
391 methdata.tmp_store = NULL;
392 method = inner_loader_fetch(&methdata, scheme_id, NULL, properties);
393 dealloc_tmp_loader_store(methdata.tmp_store);
398 * Library of basic method functions
401 const OSSL_PROVIDER *OSSL_STORE_LOADER_get0_provider(const OSSL_STORE_LOADER *loader)
403 if (!ossl_assert(loader != NULL)) {
404 ERR_raise(ERR_LIB_OSSL_STORE, ERR_R_PASSED_NULL_PARAMETER);
411 const char *OSSL_STORE_LOADER_get0_properties(const OSSL_STORE_LOADER *loader)
413 if (!ossl_assert(loader != NULL)) {
414 ERR_raise(ERR_LIB_OSSL_STORE, ERR_R_PASSED_NULL_PARAMETER);
418 return loader->propdef;
421 int ossl_store_loader_get_number(const OSSL_STORE_LOADER *loader)
423 if (!ossl_assert(loader != NULL)) {
424 ERR_raise(ERR_LIB_OSSL_STORE, ERR_R_PASSED_NULL_PARAMETER);
428 return loader->scheme_id;
431 const char *OSSL_STORE_LOADER_get0_description(const OSSL_STORE_LOADER *loader)
433 return loader->description;
436 int OSSL_STORE_LOADER_is_a(const OSSL_STORE_LOADER *loader, const char *name)
438 if (loader->prov != NULL) {
439 OSSL_LIB_CTX *libctx = ossl_provider_libctx(loader->prov);
440 OSSL_NAMEMAP *namemap = ossl_namemap_stored(libctx);
442 return ossl_namemap_name2num(namemap, name) == loader->scheme_id;
447 struct do_one_data_st {
448 void (*user_fn)(OSSL_STORE_LOADER *loader, void *arg);
452 static void do_one(ossl_unused int id, void *method, void *arg)
454 struct do_one_data_st *data = arg;
456 data->user_fn(method, data->user_arg);
459 void OSSL_STORE_LOADER_do_all_provided(OSSL_LIB_CTX *libctx,
460 void (*user_fn)(OSSL_STORE_LOADER *loader,
464 struct loader_data_st methdata;
465 struct do_one_data_st data;
467 methdata.libctx = libctx;
468 methdata.tmp_store = NULL;
469 (void)inner_loader_fetch(&methdata, 0, NULL, NULL /* properties */);
471 data.user_fn = user_fn;
472 data.user_arg = user_arg;
473 if (methdata.tmp_store != NULL)
474 ossl_method_store_do_all(methdata.tmp_store, &do_one, &data);
475 ossl_method_store_do_all(get_loader_store(libctx), &do_one, &data);
476 dealloc_tmp_loader_store(methdata.tmp_store);
479 int OSSL_STORE_LOADER_names_do_all(const OSSL_STORE_LOADER *loader,
480 void (*fn)(const char *name, void *data),
486 if (loader->prov != NULL) {
487 OSSL_LIB_CTX *libctx = ossl_provider_libctx(loader->prov);
488 OSSL_NAMEMAP *namemap = ossl_namemap_stored(libctx);
490 return ossl_namemap_doall_names(namemap, loader->scheme_id, fn, data);