[thirdparty/openssl.git] / crypto / evp / evp_pbe.c

/*
 * Copyright 1999-2018 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <stdio.h>
#include "internal/cryptlib.h"
#include <openssl/evp.h>
#include <openssl/pkcs12.h>
#include <openssl/x509.h>
#include "evp_locl.h"

/* Password based encryption (PBE) functions */

/* Setup a cipher context from a PBE algorithm */

struct evp_pbe_st {
    int pbe_type;
    int pbe_nid;
    int cipher_nid;
    int md_nid;
    EVP_PBE_KEYGEN *keygen;
};

static STACK_OF(EVP_PBE_CTL) *pbe_algs;

static const EVP_PBE_CTL builtin_pbe[] = {
    {EVP_PBE_TYPE_OUTER, NID_pbeWithMD2AndDES_CBC,
     NID_des_cbc, NID_md2, PKCS5_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbeWithMD5AndDES_CBC,
     NID_des_cbc, NID_md5, PKCS5_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbeWithSHA1AndRC2_CBC,
     NID_rc2_64_cbc, NID_sha1, PKCS5_PBE_keyivgen},

    {EVP_PBE_TYPE_OUTER, NID_id_pbkdf2, -1, -1, PKCS5_v2_PBKDF2_keyivgen},

    {EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And128BitRC4,
     NID_rc4, NID_sha1, PKCS12_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And40BitRC4,
     NID_rc4_40, NID_sha1, PKCS12_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And3_Key_TripleDES_CBC,
     NID_des_ede3_cbc, NID_sha1, PKCS12_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And2_Key_TripleDES_CBC,
     NID_des_ede_cbc, NID_sha1, PKCS12_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And128BitRC2_CBC,
     NID_rc2_cbc, NID_sha1, PKCS12_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And40BitRC2_CBC,
     NID_rc2_40_cbc, NID_sha1, PKCS12_PBE_keyivgen},

    {EVP_PBE_TYPE_OUTER, NID_pbes2, -1, -1, PKCS5_v2_PBE_keyivgen},

    {EVP_PBE_TYPE_OUTER, NID_pbeWithMD2AndRC2_CBC,
     NID_rc2_64_cbc, NID_md2, PKCS5_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbeWithMD5AndRC2_CBC,
     NID_rc2_64_cbc, NID_md5, PKCS5_PBE_keyivgen},
    {EVP_PBE_TYPE_OUTER, NID_pbeWithSHA1AndDES_CBC,
     NID_des_cbc, NID_sha1, PKCS5_PBE_keyivgen},

    {EVP_PBE_TYPE_PRF, NID_hmacWithSHA1, -1, NID_sha1, 0},
    {EVP_PBE_TYPE_PRF, NID_hmac_md5, -1, NID_md5, 0},
    {EVP_PBE_TYPE_PRF, NID_hmac_sha1, -1, NID_sha1, 0},
    {EVP_PBE_TYPE_PRF, NID_hmacWithMD5, -1, NID_md5, 0},
    {EVP_PBE_TYPE_PRF, NID_hmacWithSHA224, -1, NID_sha224, 0},
    {EVP_PBE_TYPE_PRF, NID_hmacWithSHA256, -1, NID_sha256, 0},
    {EVP_PBE_TYPE_PRF, NID_hmacWithSHA384, -1, NID_sha384, 0},
    {EVP_PBE_TYPE_PRF, NID_hmacWithSHA512, -1, NID_sha512, 0},
    {EVP_PBE_TYPE_PRF, NID_id_HMACGostR3411_94, -1, NID_id_GostR3411_94, 0},
    {EVP_PBE_TYPE_PRF, NID_id_tc26_hmac_gost_3411_2012_256, -1,
     NID_id_GostR3411_2012_256, 0},
    {EVP_PBE_TYPE_PRF, NID_id_tc26_hmac_gost_3411_2012_512, -1,
     NID_id_GostR3411_2012_512, 0},
    {EVP_PBE_TYPE_PRF, NID_hmacWithSHA512_224, -1, NID_sha512_224, 0},
    {EVP_PBE_TYPE_PRF, NID_hmacWithSHA512_256, -1, NID_sha512_256, 0},
    {EVP_PBE_TYPE_KDF, NID_id_pbkdf2, -1, -1, PKCS5_v2_PBKDF2_keyivgen},
#ifndef OPENSSL_NO_SCRYPT
    {EVP_PBE_TYPE_KDF, NID_id_scrypt, -1, -1, PKCS5_v2_scrypt_keyivgen}
#endif
};

int EVP_PBE_CipherInit(ASN1_OBJECT *pbe_obj, const char *pass, int passlen,
                       ASN1_TYPE *param, EVP_CIPHER_CTX *ctx, int en_de)
{
    const EVP_CIPHER *cipher;
    const EVP_MD *md;
    int cipher_nid, md_nid;
    EVP_PBE_KEYGEN *keygen;

    if (!EVP_PBE_find(EVP_PBE_TYPE_OUTER, OBJ_obj2nid(pbe_obj),
                      &cipher_nid, &md_nid, &keygen)) {
        char obj_tmp[80];
        EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_UNKNOWN_PBE_ALGORITHM);
        if (!pbe_obj)
            OPENSSL_strlcpy(obj_tmp, "NULL", sizeof(obj_tmp));
        else
            i2t_ASN1_OBJECT(obj_tmp, sizeof(obj_tmp), pbe_obj);
        ERR_add_error_data(2, "TYPE=", obj_tmp);
        return 0;
    }

    if (!pass)
        passlen = 0;
    else if (passlen == -1)
        passlen = strlen(pass);

    if (cipher_nid == -1)
        cipher = NULL;
    else {
        cipher = EVP_get_cipherbynid(cipher_nid);
        if (!cipher) {
            EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_UNKNOWN_CIPHER);
            return 0;
        }
    }

    if (md_nid == -1)
        md = NULL;
    else {
        md = EVP_get_digestbynid(md_nid);
        if (!md) {
            EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_UNKNOWN_DIGEST);
            return 0;
        }
    }

    if (!keygen(ctx, pass, passlen, param, cipher, md, en_de)) {
        EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_KEYGEN_FAILURE);
        return 0;
    }
    return 1;
}

DECLARE_OBJ_BSEARCH_CMP_FN(EVP_PBE_CTL, EVP_PBE_CTL, pbe2);

static int pbe2_cmp(const EVP_PBE_CTL *pbe1, const EVP_PBE_CTL *pbe2)
{
    int ret = pbe1->pbe_type - pbe2->pbe_type;
    if (ret)
        return ret;
    else
        return pbe1->pbe_nid - pbe2->pbe_nid;
}

IMPLEMENT_OBJ_BSEARCH_CMP_FN(EVP_PBE_CTL, EVP_PBE_CTL, pbe2);

static int pbe_cmp(const EVP_PBE_CTL *const *a, const EVP_PBE_CTL *const *b)
{
    int ret = (*a)->pbe_type - (*b)->pbe_type;
    if (ret)
        return ret;
    else
        return (*a)->pbe_nid - (*b)->pbe_nid;
}

/* Add a PBE algorithm */

int EVP_PBE_alg_add_type(int pbe_type, int pbe_nid, int cipher_nid,
                         int md_nid, EVP_PBE_KEYGEN *keygen)
{
    EVP_PBE_CTL *pbe_tmp;

    if (pbe_algs == NULL) {
        pbe_algs = sk_EVP_PBE_CTL_new(pbe_cmp);
        if (pbe_algs == NULL)
            goto err;
    }

    if ((pbe_tmp = OPENSSL_malloc(sizeof(*pbe_tmp))) == NULL)
        goto err;

    pbe_tmp->pbe_type = pbe_type;
    pbe_tmp->pbe_nid = pbe_nid;
    pbe_tmp->cipher_nid = cipher_nid;
    pbe_tmp->md_nid = md_nid;
    pbe_tmp->keygen = keygen;

    if (!sk_EVP_PBE_CTL_push(pbe_algs, pbe_tmp)) {
        OPENSSL_free(pbe_tmp);
        goto err;
    }
    return 1;

 err:
    EVPerr(EVP_F_EVP_PBE_ALG_ADD_TYPE, ERR_R_MALLOC_FAILURE);
    return 0;
}

int EVP_PBE_alg_add(int nid, const EVP_CIPHER *cipher, const EVP_MD *md,
                    EVP_PBE_KEYGEN *keygen)
{
    int cipher_nid, md_nid;

    if (cipher)
        cipher_nid = EVP_CIPHER_nid(cipher);
    else
        cipher_nid = -1;
    if (md)
        md_nid = EVP_MD_type(md);
    else
        md_nid = -1;

    return EVP_PBE_alg_add_type(EVP_PBE_TYPE_OUTER, nid,
                                cipher_nid, md_nid, keygen);
}

int EVP_PBE_find(int type, int pbe_nid,
                 int *pcnid, int *pmnid, EVP_PBE_KEYGEN **pkeygen)
{
    EVP_PBE_CTL *pbetmp = NULL, pbelu;
    int i;
    if (pbe_nid == NID_undef)
        return 0;

    pbelu.pbe_type = type;
    pbelu.pbe_nid = pbe_nid;

    if (pbe_algs != NULL) {
        i = sk_EVP_PBE_CTL_find(pbe_algs, &pbelu);
        pbetmp = sk_EVP_PBE_CTL_value(pbe_algs, i);
    }
    if (pbetmp == NULL) {
        pbetmp = OBJ_bsearch_pbe2(&pbelu, builtin_pbe, OSSL_NELEM(builtin_pbe));
    }
    if (pbetmp == NULL)
        return 0;
    if (pcnid)
        *pcnid = pbetmp->cipher_nid;
    if (pmnid)
        *pmnid = pbetmp->md_nid;
    if (pkeygen)
        *pkeygen = pbetmp->keygen;
    return 1;
}

static void free_evp_pbe_ctl(EVP_PBE_CTL *pbe)
{
    OPENSSL_free(pbe);
}

void EVP_PBE_cleanup(void)
{
    sk_EVP_PBE_CTL_pop_free(pbe_algs, free_evp_pbe_ctl);
    pbe_algs = NULL;
}

int EVP_PBE_get(int *ptype, int *ppbe_nid, size_t num)
{
    const EVP_PBE_CTL *tpbe;

    if (num >= OSSL_NELEM(builtin_pbe))
        return 0;

    tpbe = builtin_pbe + num;
    if (ptype)
        *ptype = tpbe->pbe_type;
    if (ppbe_nid)
        *ppbe_nid = tpbe->pbe_nid;
    return 1;
}
Commit	Line	Data
0f113f3e	1	/*
1212818e	2	* Copyright 1999-2018 The OpenSSL Project Authors. All Rights Reserved.
cfcefcbe	3	*
4a8b0c55	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
62867571 RS	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
cfcefcbe DSH	8	*/
	9
	10	#include <stdio.h>
b39fc560	11	#include "internal/cryptlib.h"
ec577822	12	#include <openssl/evp.h>
b8f702a0	13	#include <openssl/pkcs12.h>
ec577822	14	#include <openssl/x509.h>
3d63b396	15	#include "evp_locl.h"
cfcefcbe DSH	16
	17	/* Password based encryption (PBE) functions */
	18
cfcefcbe DSH	19	/* Setup a cipher context from a PBE algorithm */
cfcefcbe DSH	20
4a1f3f27	21	struct evp_pbe_st {
0f113f3e MC	22	int pbe_type;
	23	int pbe_nid;
	24	int cipher_nid;
	25	int md_nid;
	26	EVP_PBE_KEYGEN *keygen;
4a1f3f27	27	};
0f113f3e	28
4a640fb6 DSH	29	static STACK_OF(EVP_PBE_CTL) *pbe_algs;
4a640fb6 DSH	30
0f113f3e MC	31	static const EVP_PBE_CTL builtin_pbe[] = {
	32	{EVP_PBE_TYPE_OUTER, NID_pbeWithMD2AndDES_CBC,
	33	NID_des_cbc, NID_md2, PKCS5_PBE_keyivgen},
	34	{EVP_PBE_TYPE_OUTER, NID_pbeWithMD5AndDES_CBC,
	35	NID_des_cbc, NID_md5, PKCS5_PBE_keyivgen},
	36	{EVP_PBE_TYPE_OUTER, NID_pbeWithSHA1AndRC2_CBC,
	37	NID_rc2_64_cbc, NID_sha1, PKCS5_PBE_keyivgen},
b8f702a0	38
0f113f3e	39	{EVP_PBE_TYPE_OUTER, NID_id_pbkdf2, -1, -1, PKCS5_v2_PBKDF2_keyivgen},
3d63b396	40
0f113f3e MC	41	{EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And128BitRC4,
	42	NID_rc4, NID_sha1, PKCS12_PBE_keyivgen},
	43	{EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And40BitRC4,
	44	NID_rc4_40, NID_sha1, PKCS12_PBE_keyivgen},
	45	{EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And3_Key_TripleDES_CBC,
	46	NID_des_ede3_cbc, NID_sha1, PKCS12_PBE_keyivgen},
	47	{EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And2_Key_TripleDES_CBC,
	48	NID_des_ede_cbc, NID_sha1, PKCS12_PBE_keyivgen},
	49	{EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And128BitRC2_CBC,
	50	NID_rc2_cbc, NID_sha1, PKCS12_PBE_keyivgen},
	51	{EVP_PBE_TYPE_OUTER, NID_pbe_WithSHA1And40BitRC2_CBC,
	52	NID_rc2_40_cbc, NID_sha1, PKCS12_PBE_keyivgen},
b8f702a0	53
0f113f3e	54	{EVP_PBE_TYPE_OUTER, NID_pbes2, -1, -1, PKCS5_v2_PBE_keyivgen},
a283d2a8	55
0f113f3e MC	56	{EVP_PBE_TYPE_OUTER, NID_pbeWithMD2AndRC2_CBC,
	57	NID_rc2_64_cbc, NID_md2, PKCS5_PBE_keyivgen},
	58	{EVP_PBE_TYPE_OUTER, NID_pbeWithMD5AndRC2_CBC,
	59	NID_rc2_64_cbc, NID_md5, PKCS5_PBE_keyivgen},
	60	{EVP_PBE_TYPE_OUTER, NID_pbeWithSHA1AndDES_CBC,
	61	NID_des_cbc, NID_sha1, PKCS5_PBE_keyivgen},
	62
	63	{EVP_PBE_TYPE_PRF, NID_hmacWithSHA1, -1, NID_sha1, 0},
418d49c2 MP	64	{EVP_PBE_TYPE_PRF, NID_hmac_md5, -1, NID_md5, 0},
418d49c2 MP	65	{EVP_PBE_TYPE_PRF, NID_hmac_sha1, -1, NID_sha1, 0},
0f113f3e MC	66	{EVP_PBE_TYPE_PRF, NID_hmacWithMD5, -1, NID_md5, 0},
	67	{EVP_PBE_TYPE_PRF, NID_hmacWithSHA224, -1, NID_sha224, 0},
	68	{EVP_PBE_TYPE_PRF, NID_hmacWithSHA256, -1, NID_sha256, 0},
	69	{EVP_PBE_TYPE_PRF, NID_hmacWithSHA384, -1, NID_sha384, 0},
	70	{EVP_PBE_TYPE_PRF, NID_hmacWithSHA512, -1, NID_sha512, 0},
	71	{EVP_PBE_TYPE_PRF, NID_id_HMACGostR3411_94, -1, NID_id_GostR3411_94, 0},
eeb1c397 MC	72	{EVP_PBE_TYPE_PRF, NID_id_tc26_hmac_gost_3411_2012_256, -1,
	73	NID_id_GostR3411_2012_256, 0},
	74	{EVP_PBE_TYPE_PRF, NID_id_tc26_hmac_gost_3411_2012_512, -1,
	75	NID_id_GostR3411_2012_512, 0},
f52292be P	76	{EVP_PBE_TYPE_PRF, NID_hmacWithSHA512_224, -1, NID_sha512_224, 0},
f52292be P	77	{EVP_PBE_TYPE_PRF, NID_hmacWithSHA512_256, -1, NID_sha512_256, 0},
e98aa30d	78	{EVP_PBE_TYPE_KDF, NID_id_pbkdf2, -1, -1, PKCS5_v2_PBKDF2_keyivgen},
b0809bc8	79	#ifndef OPENSSL_NO_SCRYPT
e98aa30d	80	{EVP_PBE_TYPE_KDF, NID_id_scrypt, -1, -1, PKCS5_v2_scrypt_keyivgen}
b0809bc8	81	#endif
0f113f3e	82	};
b8f702a0	83
8afca8d9	84	int EVP_PBE_CipherInit(ASN1_OBJECT pbe_obj, const char pass, int passlen,
0f113f3e MC	85	ASN1_TYPE param, EVP_CIPHER_CTX ctx, int en_de)
	86	{
	87	const EVP_CIPHER *cipher;
	88	const EVP_MD *md;
	89	int cipher_nid, md_nid;
	90	EVP_PBE_KEYGEN *keygen;
	91
	92	if (!EVP_PBE_find(EVP_PBE_TYPE_OUTER, OBJ_obj2nid(pbe_obj),
	93	&cipher_nid, &md_nid, &keygen)) {
	94	char obj_tmp[80];
	95	EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_UNKNOWN_PBE_ALGORITHM);
	96	if (!pbe_obj)
a2371fa9	97	OPENSSL_strlcpy(obj_tmp, "NULL", sizeof(obj_tmp));
0f113f3e	98	else
a2371fa9	99	i2t_ASN1_OBJECT(obj_tmp, sizeof(obj_tmp), pbe_obj);
0f113f3e MC	100	ERR_add_error_data(2, "TYPE=", obj_tmp);
	101	return 0;
	102	}
	103
	104	if (!pass)
	105	passlen = 0;
	106	else if (passlen == -1)
	107	passlen = strlen(pass);
	108
	109	if (cipher_nid == -1)
	110	cipher = NULL;
	111	else {
	112	cipher = EVP_get_cipherbynid(cipher_nid);
	113	if (!cipher) {
	114	EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_UNKNOWN_CIPHER);
	115	return 0;
	116	}
	117	}
	118
	119	if (md_nid == -1)
	120	md = NULL;
	121	else {
	122	md = EVP_get_digestbynid(md_nid);
	123	if (!md) {
	124	EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_UNKNOWN_DIGEST);
	125	return 0;
	126	}
	127	}
	128
	129	if (!keygen(ctx, pass, passlen, param, cipher, md, en_de)) {
	130	EVPerr(EVP_F_EVP_PBE_CIPHERINIT, EVP_R_KEYGEN_FAILURE);
	131	return 0;
	132	}
	133	return 1;
cfcefcbe DSH	134	}
cfcefcbe DSH	135
e19106f5	136	DECLARE_OBJ_BSEARCH_CMP_FN(EVP_PBE_CTL, EVP_PBE_CTL, pbe2);
babb3798	137
e19106f5	138	static int pbe2_cmp(const EVP_PBE_CTL pbe1, const EVP_PBE_CTL pbe2)
0f113f3e MC	139	{
	140	int ret = pbe1->pbe_type - pbe2->pbe_type;
	141	if (ret)
	142	return ret;
	143	else
	144	return pbe1->pbe_nid - pbe2->pbe_nid;
	145	}
b8f702a0	146
e19106f5	147	IMPLEMENT_OBJ_BSEARCH_CMP_FN(EVP_PBE_CTL, EVP_PBE_CTL, pbe2);
babb3798	148
0f113f3e MC	149	static int pbe_cmp(const EVP_PBE_CTL const a, const EVP_PBE_CTL const b)
	150	{
	151	int ret = (a)->pbe_type - (b)->pbe_type;
	152	if (ret)
	153	return ret;
	154	else
	155	return (a)->pbe_nid - (b)->pbe_nid;
	156	}
cfcefcbe DSH	157
	158	/* Add a PBE algorithm */
	159
0f113f3e MC	160	int EVP_PBE_alg_add_type(int pbe_type, int pbe_nid, int cipher_nid,
	161	int md_nid, EVP_PBE_KEYGEN *keygen)
	162	{
	163	EVP_PBE_CTL *pbe_tmp;
b4faea50	164
8cf9d71a	165	if (pbe_algs == NULL) {
0f113f3e	166	pbe_algs = sk_EVP_PBE_CTL_new(pbe_cmp);
8cf9d71a AG	167	if (pbe_algs == NULL)
8cf9d71a AG	168	goto err;
0f113f3e	169	}
8cf9d71a AG	170
	171	if ((pbe_tmp = OPENSSL_malloc(sizeof(*pbe_tmp))) == NULL)
	172	goto err;
	173
0f113f3e MC	174	pbe_tmp->pbe_type = pbe_type;
	175	pbe_tmp->pbe_nid = pbe_nid;
	176	pbe_tmp->cipher_nid = cipher_nid;
	177	pbe_tmp->md_nid = md_nid;
	178	pbe_tmp->keygen = keygen;
	179
68efafc5 F	180	if (!sk_EVP_PBE_CTL_push(pbe_algs, pbe_tmp)) {
	181	OPENSSL_free(pbe_tmp);
	182	goto err;
	183	}
0f113f3e	184	return 1;
8cf9d71a AG	185
	186	err:
	187	EVPerr(EVP_F_EVP_PBE_ALG_ADD_TYPE, ERR_R_MALLOC_FAILURE);
	188	return 0;
0f113f3e	189	}
856640b5 DSH	190
856640b5 DSH	191	int EVP_PBE_alg_add(int nid, const EVP_CIPHER cipher, const EVP_MD md,
0f113f3e MC	192	EVP_PBE_KEYGEN *keygen)
	193	{
	194	int cipher_nid, md_nid;
75ebbd9a	195
0f113f3e MC	196	if (cipher)
	197	cipher_nid = EVP_CIPHER_nid(cipher);
	198	else
	199	cipher_nid = -1;
	200	if (md)
	201	md_nid = EVP_MD_type(md);
	202	else
	203	md_nid = -1;
	204
	205	return EVP_PBE_alg_add_type(EVP_PBE_TYPE_OUTER, nid,
	206	cipher_nid, md_nid, keygen);
	207	}
856640b5 DSH	208
856640b5 DSH	209	int EVP_PBE_find(int type, int pbe_nid,
0f113f3e MC	210	int pcnid, int pmnid, EVP_PBE_KEYGEN **pkeygen)
	211	{
	212	EVP_PBE_CTL *pbetmp = NULL, pbelu;
	213	int i;
	214	if (pbe_nid == NID_undef)
	215	return 0;
	216
	217	pbelu.pbe_type = type;
	218	pbelu.pbe_nid = pbe_nid;
	219
5b37fef0	220	if (pbe_algs != NULL) {
0f113f3e	221	i = sk_EVP_PBE_CTL_find(pbe_algs, &pbelu);
5b37fef0	222	pbetmp = sk_EVP_PBE_CTL_value(pbe_algs, i);
0f113f3e MC	223	}
0f113f3e MC	224	if (pbetmp == NULL) {
b6eb9827	225	pbetmp = OBJ_bsearch_pbe2(&pbelu, builtin_pbe, OSSL_NELEM(builtin_pbe));
0f113f3e MC	226	}
	227	if (pbetmp == NULL)
	228	return 0;
	229	if (pcnid)
	230	*pcnid = pbetmp->cipher_nid;
	231	if (pmnid)
	232	*pmnid = pbetmp->md_nid;
	233	if (pkeygen)
	234	*pkeygen = pbetmp->keygen;
	235	return 1;
	236	}
856640b5	237
5ce278a7	238	static void free_evp_pbe_ctl(EVP_PBE_CTL *pbe)
0f113f3e	239	{
4b45c6e5	240	OPENSSL_free(pbe);
0f113f3e	241	}
ee0508d4	242
6b691a5c	243	void EVP_PBE_cleanup(void)
0f113f3e MC	244	{
	245	sk_EVP_PBE_CTL_pop_free(pbe_algs, free_evp_pbe_ctl);
	246	pbe_algs = NULL;
	247	}
d9546693 DSH	248
	249	int EVP_PBE_get(int ptype, int ppbe_nid, size_t num)
	250	{
	251	const EVP_PBE_CTL *tpbe;
	252
	253	if (num >= OSSL_NELEM(builtin_pbe))
	254	return 0;
	255
	256	tpbe = builtin_pbe + num;
	257	if (ptype)
	258	*ptype = tpbe->pbe_type;
	259	if (ppbe_nid)
	260	*ppbe_nid = tpbe->pbe_nid;
	261	return 1;
	262	}