[thirdparty/openssl.git] / providers / common / securitycheck_default.c

/*
 * Copyright 2020-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include "internal/deprecated.h"

#include <openssl/rsa.h>
#include <openssl/core.h>
#include <openssl/core_names.h>
#include <openssl/obj_mac.h>
#include "prov/securitycheck.h"
#include "internal/nelem.h"

/* Disable the security checks in the default provider */
int ossl_securitycheck_enabled(OSSL_LIB_CTX *libctx)
{
    return 0;
}

/* Disable the ems check in the default provider */
int ossl_tls1_prf_ems_check_enabled(OSSL_LIB_CTX *libctx)
{
    return 0;
}

int ossl_digest_rsa_sign_get_md_nid(OSSL_LIB_CTX *ctx, const EVP_MD *md,
                                    ossl_unused int sha1_allowed)
{
    int mdnid;

    static const OSSL_ITEM name_to_nid[] = {
        { NID_md5,       OSSL_DIGEST_NAME_MD5       },
        { NID_md5_sha1,  OSSL_DIGEST_NAME_MD5_SHA1  },
        { NID_md2,       OSSL_DIGEST_NAME_MD2       },
        { NID_md4,       OSSL_DIGEST_NAME_MD4       },
        { NID_mdc2,      OSSL_DIGEST_NAME_MDC2      },
        { NID_ripemd160, OSSL_DIGEST_NAME_RIPEMD160 },
    };

    mdnid = ossl_digest_get_approved_nid_with_sha1(ctx, md, 1);
    if (mdnid == NID_undef)
        mdnid = ossl_digest_md_to_nid(md, name_to_nid, OSSL_NELEM(name_to_nid));
    return mdnid;
}
Commit	Line	Data
16fbda84	1	/*
da1c088f	2	* Copyright 2020-2023 The OpenSSL Project Authors. All Rights Reserved.
16fbda84 SL	3	*
	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
	10	#include "internal/deprecated.h"
	11
	12	#include <openssl/rsa.h>
	13	#include <openssl/core.h>
	14	#include <openssl/core_names.h>
	15	#include <openssl/obj_mac.h>
7a810fac	16	#include "prov/securitycheck.h"
16fbda84 SL	17	#include "internal/nelem.h"
16fbda84 SL	18
7a810fac	19	/* Disable the security checks in the default provider */
6ce58488	20	int ossl_securitycheck_enabled(OSSL_LIB_CTX *libctx)
16fbda84	21	{
7a810fac	22	return 0;
16fbda84 SL	23	}
16fbda84 SL	24
50ea5cdc	25	/* Disable the ems check in the default provider */
	26	int ossl_tls1_prf_ems_check_enabled(OSSL_LIB_CTX *libctx)
	27	{
	28	return 0;
	29	}
	30
6ce58488	31	int ossl_digest_rsa_sign_get_md_nid(OSSL_LIB_CTX ctx, const EVP_MD md,
7b676cc8	32	ossl_unused int sha1_allowed)
16fbda84 SL	33	{
	34	int mdnid;
	35
	36	static const OSSL_ITEM name_to_nid[] = {
	37	{ NID_md5, OSSL_DIGEST_NAME_MD5 },
	38	{ NID_md5_sha1, OSSL_DIGEST_NAME_MD5_SHA1 },
	39	{ NID_md2, OSSL_DIGEST_NAME_MD2 },
	40	{ NID_md4, OSSL_DIGEST_NAME_MD4 },
	41	{ NID_mdc2, OSSL_DIGEST_NAME_MDC2 },
	42	{ NID_ripemd160, OSSL_DIGEST_NAME_RIPEMD160 },
	43	};
16fbda84	44
6ce58488	45	mdnid = ossl_digest_get_approved_nid_with_sha1(ctx, md, 1);
16fbda84	46	if (mdnid == NID_undef)
7b676cc8	47	mdnid = ossl_digest_md_to_nid(md, name_to_nid, OSSL_NELEM(name_to_nid));
16fbda84 SL	48	return mdnid;
16fbda84 SL	49	}