2 * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
5 /* ====================================================================
6 * Copyright (c) 2006-2018 The OpenSSL Project. All rights reserved.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in
17 * the documentation and/or other materials provided with the
20 * 3. All advertising materials mentioning features or use of this
21 * software must display the following acknowledgment:
22 * "This product includes software developed by the OpenSSL Project
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 * endorse or promote products derived from this software without
27 * prior written permission. For written permission, please contact
28 * licensing@OpenSSL.org.
30 * 5. Products derived from this software may not be called "OpenSSL"
31 * nor may "OpenSSL" appear in their names without prior written
32 * permission of the OpenSSL Project.
34 * 6. Redistributions of any form whatsoever must retain the following
36 * "This product includes software developed by the OpenSSL Project
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 * OF THE POSSIBILITY OF SUCH DAMAGE.
51 * ====================================================================
53 * This product includes cryptographic software written by Eric Young
54 * (eay@cryptsoft.com). This product includes software written by Tim
55 * Hudson (tjh@cryptsoft.com).
61 #include <openssl/asn1t.h>
62 #include <openssl/x509.h>
63 #ifndef OPENSSL_NO_ENGINE
64 # include <openssl/engine.h>
66 #include "asn1_locl.h"
68 extern const EVP_PKEY_ASN1_METHOD rsa_asn1_meths
[];
69 extern const EVP_PKEY_ASN1_METHOD dsa_asn1_meths
[];
70 extern const EVP_PKEY_ASN1_METHOD dh_asn1_meth
;
71 extern const EVP_PKEY_ASN1_METHOD dhx_asn1_meth
;
72 extern const EVP_PKEY_ASN1_METHOD eckey_asn1_meth
;
73 extern const EVP_PKEY_ASN1_METHOD hmac_asn1_meth
;
74 extern const EVP_PKEY_ASN1_METHOD cmac_asn1_meth
;
76 /* Keep this sorted in type order !! */
77 static const EVP_PKEY_ASN1_METHOD
*standard_methods
[] = {
78 #ifndef OPENSSL_NO_RSA
85 #ifndef OPENSSL_NO_DSA
96 #ifndef OPENSSL_NO_CMAC
104 typedef int sk_cmp_fn_type(const char *const *a
, const char *const *b
);
105 DECLARE_STACK_OF(EVP_PKEY_ASN1_METHOD
)
106 static STACK_OF(EVP_PKEY_ASN1_METHOD
) *app_methods
= NULL
;
113 i
< sizeof(standard_methods
) / sizeof(EVP_PKEY_ASN1_METHOD
*); i
++)
114 fprintf(stderr
, "Number %d id=%d (%s)\n", i
,
115 standard_methods
[i
]->pkey_id
,
116 OBJ_nid2sn(standard_methods
[i
]->pkey_id
));
120 DECLARE_OBJ_BSEARCH_CMP_FN(const EVP_PKEY_ASN1_METHOD
*,
121 const EVP_PKEY_ASN1_METHOD
*, ameth
);
123 static int ameth_cmp(const EVP_PKEY_ASN1_METHOD
*const *a
,
124 const EVP_PKEY_ASN1_METHOD
*const *b
)
126 return ((*a
)->pkey_id
- (*b
)->pkey_id
);
129 IMPLEMENT_OBJ_BSEARCH_CMP_FN(const EVP_PKEY_ASN1_METHOD
*,
130 const EVP_PKEY_ASN1_METHOD
*, ameth
);
132 int EVP_PKEY_asn1_get_count(void)
134 int num
= sizeof(standard_methods
) / sizeof(EVP_PKEY_ASN1_METHOD
*);
136 num
+= sk_EVP_PKEY_ASN1_METHOD_num(app_methods
);
140 const EVP_PKEY_ASN1_METHOD
*EVP_PKEY_asn1_get0(int idx
)
142 int num
= sizeof(standard_methods
) / sizeof(EVP_PKEY_ASN1_METHOD
*);
146 return standard_methods
[idx
];
148 return sk_EVP_PKEY_ASN1_METHOD_value(app_methods
, idx
);
151 static const EVP_PKEY_ASN1_METHOD
*pkey_asn1_find(int type
)
153 EVP_PKEY_ASN1_METHOD tmp
;
154 const EVP_PKEY_ASN1_METHOD
*t
= &tmp
, **ret
;
158 idx
= sk_EVP_PKEY_ASN1_METHOD_find(app_methods
, &tmp
);
160 return sk_EVP_PKEY_ASN1_METHOD_value(app_methods
, idx
);
162 ret
= OBJ_bsearch_ameth(&t
, standard_methods
, sizeof(standard_methods
)
163 / sizeof(EVP_PKEY_ASN1_METHOD
*));
170 * Find an implementation of an ASN1 algorithm. If 'pe' is not NULL also
171 * search through engines and set *pe to a functional reference to the engine
172 * implementing 'type' or NULL if no engine implements it.
175 const EVP_PKEY_ASN1_METHOD
*EVP_PKEY_asn1_find(ENGINE
**pe
, int type
)
177 const EVP_PKEY_ASN1_METHOD
*t
;
180 t
= pkey_asn1_find(type
);
181 if (!t
|| !(t
->pkey_flags
& ASN1_PKEY_ALIAS
))
183 type
= t
->pkey_base_id
;
186 #ifndef OPENSSL_NO_ENGINE
188 /* type will contain the final unaliased type */
189 e
= ENGINE_get_pkey_asn1_meth_engine(type
);
192 return ENGINE_get_pkey_asn1_meth(e
, type
);
200 const EVP_PKEY_ASN1_METHOD
*EVP_PKEY_asn1_find_str(ENGINE
**pe
,
201 const char *str
, int len
)
204 const EVP_PKEY_ASN1_METHOD
*ameth
;
208 #ifndef OPENSSL_NO_ENGINE
210 ameth
= ENGINE_pkey_asn1_find_str(&e
, str
, len
);
213 * Convert structural into functional reference
224 for (i
= 0; i
< EVP_PKEY_asn1_get_count(); i
++) {
225 ameth
= EVP_PKEY_asn1_get0(i
);
226 if (ameth
->pkey_flags
& ASN1_PKEY_ALIAS
)
228 if (((int)strlen(ameth
->pem_str
) == len
) &&
229 !strncasecmp(ameth
->pem_str
, str
, len
))
235 int EVP_PKEY_asn1_add0(const EVP_PKEY_ASN1_METHOD
*ameth
)
237 if (app_methods
== NULL
) {
238 app_methods
= sk_EVP_PKEY_ASN1_METHOD_new(ameth_cmp
);
242 if (!sk_EVP_PKEY_ASN1_METHOD_push(app_methods
, ameth
))
244 sk_EVP_PKEY_ASN1_METHOD_sort(app_methods
);
248 int EVP_PKEY_asn1_add_alias(int to
, int from
)
250 EVP_PKEY_ASN1_METHOD
*ameth
;
251 ameth
= EVP_PKEY_asn1_new(from
, ASN1_PKEY_ALIAS
, NULL
, NULL
);
254 ameth
->pkey_base_id
= to
;
255 if (!EVP_PKEY_asn1_add0(ameth
)) {
256 EVP_PKEY_asn1_free(ameth
);
262 int EVP_PKEY_asn1_get0_info(int *ppkey_id
, int *ppkey_base_id
,
263 int *ppkey_flags
, const char **pinfo
,
264 const char **ppem_str
,
265 const EVP_PKEY_ASN1_METHOD
*ameth
)
270 *ppkey_id
= ameth
->pkey_id
;
272 *ppkey_base_id
= ameth
->pkey_base_id
;
274 *ppkey_flags
= ameth
->pkey_flags
;
276 *pinfo
= ameth
->info
;
278 *ppem_str
= ameth
->pem_str
;
282 const EVP_PKEY_ASN1_METHOD
*EVP_PKEY_get0_asn1(EVP_PKEY
*pkey
)
287 EVP_PKEY_ASN1_METHOD
*EVP_PKEY_asn1_new(int id
, int flags
,
288 const char *pem_str
, const char *info
)
290 EVP_PKEY_ASN1_METHOD
*ameth
;
291 ameth
= OPENSSL_malloc(sizeof(EVP_PKEY_ASN1_METHOD
));
295 memset(ameth
, 0, sizeof(EVP_PKEY_ASN1_METHOD
));
298 ameth
->pkey_base_id
= id
;
299 ameth
->pkey_flags
= flags
| ASN1_PKEY_DYNAMIC
;
302 ameth
->info
= BUF_strdup(info
);
309 * One of the following must be true:
311 * pem_str == NULL AND ASN1_PKEY_ALIAS is set
312 * pem_str != NULL AND ASN1_PKEY_ALIAS is clear
314 * Anything else is an error and may lead to a corrupt ASN1 method table
316 if (!((pem_str
== NULL
&& (flags
& ASN1_PKEY_ALIAS
) != 0)
317 || (pem_str
!= NULL
&& (flags
& ASN1_PKEY_ALIAS
) == 0)))
321 ameth
->pem_str
= BUF_strdup(pem_str
);
325 ameth
->pem_str
= NULL
;
327 ameth
->pub_decode
= 0;
328 ameth
->pub_encode
= 0;
330 ameth
->pub_print
= 0;
332 ameth
->priv_decode
= 0;
333 ameth
->priv_encode
= 0;
334 ameth
->priv_print
= 0;
336 ameth
->old_priv_encode
= 0;
337 ameth
->old_priv_decode
= 0;
339 ameth
->item_verify
= 0;
340 ameth
->item_sign
= 0;
342 ameth
->pkey_size
= 0;
343 ameth
->pkey_bits
= 0;
345 ameth
->param_decode
= 0;
346 ameth
->param_encode
= 0;
347 ameth
->param_missing
= 0;
348 ameth
->param_copy
= 0;
349 ameth
->param_cmp
= 0;
350 ameth
->param_print
= 0;
352 ameth
->pkey_free
= 0;
353 ameth
->pkey_ctrl
= 0;
359 EVP_PKEY_asn1_free(ameth
);
364 void EVP_PKEY_asn1_copy(EVP_PKEY_ASN1_METHOD
*dst
,
365 const EVP_PKEY_ASN1_METHOD
*src
)
368 dst
->pub_decode
= src
->pub_decode
;
369 dst
->pub_encode
= src
->pub_encode
;
370 dst
->pub_cmp
= src
->pub_cmp
;
371 dst
->pub_print
= src
->pub_print
;
373 dst
->priv_decode
= src
->priv_decode
;
374 dst
->priv_encode
= src
->priv_encode
;
375 dst
->priv_print
= src
->priv_print
;
377 dst
->old_priv_encode
= src
->old_priv_encode
;
378 dst
->old_priv_decode
= src
->old_priv_decode
;
380 dst
->pkey_size
= src
->pkey_size
;
381 dst
->pkey_bits
= src
->pkey_bits
;
383 dst
->param_decode
= src
->param_decode
;
384 dst
->param_encode
= src
->param_encode
;
385 dst
->param_missing
= src
->param_missing
;
386 dst
->param_copy
= src
->param_copy
;
387 dst
->param_cmp
= src
->param_cmp
;
388 dst
->param_print
= src
->param_print
;
390 dst
->pkey_free
= src
->pkey_free
;
391 dst
->pkey_ctrl
= src
->pkey_ctrl
;
393 dst
->item_sign
= src
->item_sign
;
394 dst
->item_verify
= src
->item_verify
;
398 void EVP_PKEY_asn1_free(EVP_PKEY_ASN1_METHOD
*ameth
)
400 if (ameth
&& (ameth
->pkey_flags
& ASN1_PKEY_DYNAMIC
)) {
402 OPENSSL_free(ameth
->pem_str
);
404 OPENSSL_free(ameth
->info
);
409 void EVP_PKEY_asn1_set_public(EVP_PKEY_ASN1_METHOD
*ameth
,
410 int (*pub_decode
) (EVP_PKEY
*pk
,
412 int (*pub_encode
) (X509_PUBKEY
*pub
,
414 int (*pub_cmp
) (const EVP_PKEY
*a
,
416 int (*pub_print
) (BIO
*out
,
417 const EVP_PKEY
*pkey
,
418 int indent
, ASN1_PCTX
*pctx
),
419 int (*pkey_size
) (const EVP_PKEY
*pk
),
420 int (*pkey_bits
) (const EVP_PKEY
*pk
))
422 ameth
->pub_decode
= pub_decode
;
423 ameth
->pub_encode
= pub_encode
;
424 ameth
->pub_cmp
= pub_cmp
;
425 ameth
->pub_print
= pub_print
;
426 ameth
->pkey_size
= pkey_size
;
427 ameth
->pkey_bits
= pkey_bits
;
430 void EVP_PKEY_asn1_set_private(EVP_PKEY_ASN1_METHOD
*ameth
,
431 int (*priv_decode
) (EVP_PKEY
*pk
,
434 int (*priv_encode
) (PKCS8_PRIV_KEY_INFO
*p8
,
436 int (*priv_print
) (BIO
*out
,
437 const EVP_PKEY
*pkey
,
441 ameth
->priv_decode
= priv_decode
;
442 ameth
->priv_encode
= priv_encode
;
443 ameth
->priv_print
= priv_print
;
446 void EVP_PKEY_asn1_set_param(EVP_PKEY_ASN1_METHOD
*ameth
,
447 int (*param_decode
) (EVP_PKEY
*pkey
,
448 const unsigned char **pder
,
450 int (*param_encode
) (const EVP_PKEY
*pkey
,
451 unsigned char **pder
),
452 int (*param_missing
) (const EVP_PKEY
*pk
),
453 int (*param_copy
) (EVP_PKEY
*to
,
454 const EVP_PKEY
*from
),
455 int (*param_cmp
) (const EVP_PKEY
*a
,
457 int (*param_print
) (BIO
*out
,
458 const EVP_PKEY
*pkey
,
459 int indent
, ASN1_PCTX
*pctx
))
461 ameth
->param_decode
= param_decode
;
462 ameth
->param_encode
= param_encode
;
463 ameth
->param_missing
= param_missing
;
464 ameth
->param_copy
= param_copy
;
465 ameth
->param_cmp
= param_cmp
;
466 ameth
->param_print
= param_print
;
469 void EVP_PKEY_asn1_set_free(EVP_PKEY_ASN1_METHOD
*ameth
,
470 void (*pkey_free
) (EVP_PKEY
*pkey
))
472 ameth
->pkey_free
= pkey_free
;
475 void EVP_PKEY_asn1_set_ctrl(EVP_PKEY_ASN1_METHOD
*ameth
,
476 int (*pkey_ctrl
) (EVP_PKEY
*pkey
, int op
,
477 long arg1
, void *arg2
))
479 ameth
->pkey_ctrl
= pkey_ctrl
;
482 void EVP_PKEY_asn1_set_item(EVP_PKEY_ASN1_METHOD
*ameth
,
483 int (*item_verify
) (EVP_MD_CTX
*ctx
,
487 ASN1_BIT_STRING
*sig
,
489 int (*item_sign
) (EVP_MD_CTX
*ctx
,
494 ASN1_BIT_STRING
*sig
))
496 ameth
->item_sign
= item_sign
;
497 ameth
->item_verify
= item_verify
;