2 * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
5 /* ====================================================================
6 * Copyright (c) 2006-2018 The OpenSSL Project. All rights reserved.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in
17 * the documentation and/or other materials provided with the
20 * 3. All advertising materials mentioning features or use of this
21 * software must display the following acknowledgment:
22 * "This product includes software developed by the OpenSSL Project
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 * endorse or promote products derived from this software without
27 * prior written permission. For written permission, please contact
28 * licensing@OpenSSL.org.
30 * 5. Products derived from this software may not be called "OpenSSL"
31 * nor may "OpenSSL" appear in their names without prior written
32 * permission of the OpenSSL Project.
34 * 6. Redistributions of any form whatsoever must retain the following
36 * "This product includes software developed by the OpenSSL Project
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 * OF THE POSSIBILITY OF SUCH DAMAGE.
51 * ====================================================================
53 * This product includes cryptographic software written by Eric Young
54 * (eay@cryptsoft.com). This product includes software written by Tim
55 * Hudson (tjh@cryptsoft.com).
61 #include <openssl/asn1t.h>
62 #include <openssl/x509.h>
63 #ifndef OPENSSL_NO_ENGINE
64 # include <openssl/engine.h>
66 #include "asn1_locl.h"
68 extern const EVP_PKEY_ASN1_METHOD rsa_asn1_meths[];
69 extern const EVP_PKEY_ASN1_METHOD dsa_asn1_meths[];
70 extern const EVP_PKEY_ASN1_METHOD dh_asn1_meth;
71 extern const EVP_PKEY_ASN1_METHOD dhx_asn1_meth;
72 extern const EVP_PKEY_ASN1_METHOD eckey_asn1_meth;
73 extern const EVP_PKEY_ASN1_METHOD hmac_asn1_meth;
74 extern const EVP_PKEY_ASN1_METHOD cmac_asn1_meth;
76 /* Keep this sorted in type order !! */
77 static const EVP_PKEY_ASN1_METHOD *standard_methods[] = {
78 #ifndef OPENSSL_NO_RSA
85 #ifndef OPENSSL_NO_DSA
96 #ifndef OPENSSL_NO_CMAC
104 typedef int sk_cmp_fn_type(const char *const *a, const char *const *b);
105 DECLARE_STACK_OF(EVP_PKEY_ASN1_METHOD)
106 static STACK_OF(EVP_PKEY_ASN1_METHOD) *app_methods = NULL;
113 i < sizeof(standard_methods) / sizeof(EVP_PKEY_ASN1_METHOD *); i++)
114 fprintf(stderr, "Number %d id=%d (%s)\n", i,
115 standard_methods[i]->pkey_id,
116 OBJ_nid2sn(standard_methods[i]->pkey_id));
120 DECLARE_OBJ_BSEARCH_CMP_FN(const EVP_PKEY_ASN1_METHOD *,
121 const EVP_PKEY_ASN1_METHOD *, ameth);
123 static int ameth_cmp(const EVP_PKEY_ASN1_METHOD *const *a,
124 const EVP_PKEY_ASN1_METHOD *const *b)
126 return ((*a)->pkey_id - (*b)->pkey_id);
129 IMPLEMENT_OBJ_BSEARCH_CMP_FN(const EVP_PKEY_ASN1_METHOD *,
130 const EVP_PKEY_ASN1_METHOD *, ameth);
132 int EVP_PKEY_asn1_get_count(void)
134 int num = sizeof(standard_methods) / sizeof(EVP_PKEY_ASN1_METHOD *);
136 num += sk_EVP_PKEY_ASN1_METHOD_num(app_methods);
140 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_get0(int idx)
142 int num = sizeof(standard_methods) / sizeof(EVP_PKEY_ASN1_METHOD *);
146 return standard_methods[idx];
148 return sk_EVP_PKEY_ASN1_METHOD_value(app_methods, idx);
151 static const EVP_PKEY_ASN1_METHOD *pkey_asn1_find(int type)
153 EVP_PKEY_ASN1_METHOD tmp;
154 const EVP_PKEY_ASN1_METHOD *t = &tmp, **ret;
158 idx = sk_EVP_PKEY_ASN1_METHOD_find(app_methods, &tmp);
160 return sk_EVP_PKEY_ASN1_METHOD_value(app_methods, idx);
162 ret = OBJ_bsearch_ameth(&t, standard_methods, sizeof(standard_methods)
163 / sizeof(EVP_PKEY_ASN1_METHOD *));
170 * Find an implementation of an ASN1 algorithm. If 'pe' is not NULL also
171 * search through engines and set *pe to a functional reference to the engine
172 * implementing 'type' or NULL if no engine implements it.
175 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_find(ENGINE **pe, int type)
177 const EVP_PKEY_ASN1_METHOD *t;
180 t = pkey_asn1_find(type);
181 if (!t || !(t->pkey_flags & ASN1_PKEY_ALIAS))
183 type = t->pkey_base_id;
186 #ifndef OPENSSL_NO_ENGINE
188 /* type will contain the final unaliased type */
189 e = ENGINE_get_pkey_asn1_meth_engine(type);
192 return ENGINE_get_pkey_asn1_meth(e, type);
200 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_find_str(ENGINE **pe,
201 const char *str, int len)
204 const EVP_PKEY_ASN1_METHOD *ameth;
208 #ifndef OPENSSL_NO_ENGINE
210 ameth = ENGINE_pkey_asn1_find_str(&e, str, len);
213 * Convert structural into functional reference
224 for (i = 0; i < EVP_PKEY_asn1_get_count(); i++) {
225 ameth = EVP_PKEY_asn1_get0(i);
226 if (ameth->pkey_flags & ASN1_PKEY_ALIAS)
228 if (((int)strlen(ameth->pem_str) == len) &&
229 !strncasecmp(ameth->pem_str, str, len))
235 int EVP_PKEY_asn1_add0(const EVP_PKEY_ASN1_METHOD *ameth)
238 * One of the following must be true:
240 * pem_str == NULL AND ASN1_PKEY_ALIAS is set
241 * pem_str != NULL AND ASN1_PKEY_ALIAS is clear
243 * Anything else is an error and may lead to a corrupt ASN1 method table
245 if (!((ameth->pem_str == NULL
246 && (ameth->pkey_flags & ASN1_PKEY_ALIAS) != 0)
247 || (ameth->pem_str != NULL
248 && (ameth->pkey_flags & ASN1_PKEY_ALIAS) == 0))) {
252 if (app_methods == NULL) {
253 app_methods = sk_EVP_PKEY_ASN1_METHOD_new(ameth_cmp);
257 if (!sk_EVP_PKEY_ASN1_METHOD_push(app_methods, ameth))
259 sk_EVP_PKEY_ASN1_METHOD_sort(app_methods);
263 int EVP_PKEY_asn1_add_alias(int to, int from)
265 EVP_PKEY_ASN1_METHOD *ameth;
266 ameth = EVP_PKEY_asn1_new(from, ASN1_PKEY_ALIAS, NULL, NULL);
269 ameth->pkey_base_id = to;
270 if (!EVP_PKEY_asn1_add0(ameth)) {
271 EVP_PKEY_asn1_free(ameth);
277 int EVP_PKEY_asn1_get0_info(int *ppkey_id, int *ppkey_base_id,
278 int *ppkey_flags, const char **pinfo,
279 const char **ppem_str,
280 const EVP_PKEY_ASN1_METHOD *ameth)
285 *ppkey_id = ameth->pkey_id;
287 *ppkey_base_id = ameth->pkey_base_id;
289 *ppkey_flags = ameth->pkey_flags;
291 *pinfo = ameth->info;
293 *ppem_str = ameth->pem_str;
297 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_get0_asn1(EVP_PKEY *pkey)
302 EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_new(int id, int flags,
303 const char *pem_str, const char *info)
305 EVP_PKEY_ASN1_METHOD *ameth;
306 ameth = OPENSSL_malloc(sizeof(EVP_PKEY_ASN1_METHOD));
310 memset(ameth, 0, sizeof(EVP_PKEY_ASN1_METHOD));
313 ameth->pkey_base_id = id;
314 ameth->pkey_flags = flags | ASN1_PKEY_DYNAMIC;
317 ameth->info = BUF_strdup(info);
324 ameth->pem_str = BUF_strdup(pem_str);
328 ameth->pem_str = NULL;
330 ameth->pub_decode = 0;
331 ameth->pub_encode = 0;
333 ameth->pub_print = 0;
335 ameth->priv_decode = 0;
336 ameth->priv_encode = 0;
337 ameth->priv_print = 0;
339 ameth->old_priv_encode = 0;
340 ameth->old_priv_decode = 0;
342 ameth->item_verify = 0;
343 ameth->item_sign = 0;
345 ameth->pkey_size = 0;
346 ameth->pkey_bits = 0;
348 ameth->param_decode = 0;
349 ameth->param_encode = 0;
350 ameth->param_missing = 0;
351 ameth->param_copy = 0;
352 ameth->param_cmp = 0;
353 ameth->param_print = 0;
355 ameth->pkey_free = 0;
356 ameth->pkey_ctrl = 0;
362 EVP_PKEY_asn1_free(ameth);
367 void EVP_PKEY_asn1_copy(EVP_PKEY_ASN1_METHOD *dst,
368 const EVP_PKEY_ASN1_METHOD *src)
371 dst->pub_decode = src->pub_decode;
372 dst->pub_encode = src->pub_encode;
373 dst->pub_cmp = src->pub_cmp;
374 dst->pub_print = src->pub_print;
376 dst->priv_decode = src->priv_decode;
377 dst->priv_encode = src->priv_encode;
378 dst->priv_print = src->priv_print;
380 dst->old_priv_encode = src->old_priv_encode;
381 dst->old_priv_decode = src->old_priv_decode;
383 dst->pkey_size = src->pkey_size;
384 dst->pkey_bits = src->pkey_bits;
386 dst->param_decode = src->param_decode;
387 dst->param_encode = src->param_encode;
388 dst->param_missing = src->param_missing;
389 dst->param_copy = src->param_copy;
390 dst->param_cmp = src->param_cmp;
391 dst->param_print = src->param_print;
393 dst->pkey_free = src->pkey_free;
394 dst->pkey_ctrl = src->pkey_ctrl;
396 dst->item_sign = src->item_sign;
397 dst->item_verify = src->item_verify;
401 void EVP_PKEY_asn1_free(EVP_PKEY_ASN1_METHOD *ameth)
403 if (ameth && (ameth->pkey_flags & ASN1_PKEY_DYNAMIC)) {
405 OPENSSL_free(ameth->pem_str);
407 OPENSSL_free(ameth->info);
412 void EVP_PKEY_asn1_set_public(EVP_PKEY_ASN1_METHOD *ameth,
413 int (*pub_decode) (EVP_PKEY *pk,
415 int (*pub_encode) (X509_PUBKEY *pub,
417 int (*pub_cmp) (const EVP_PKEY *a,
419 int (*pub_print) (BIO *out,
420 const EVP_PKEY *pkey,
421 int indent, ASN1_PCTX *pctx),
422 int (*pkey_size) (const EVP_PKEY *pk),
423 int (*pkey_bits) (const EVP_PKEY *pk))
425 ameth->pub_decode = pub_decode;
426 ameth->pub_encode = pub_encode;
427 ameth->pub_cmp = pub_cmp;
428 ameth->pub_print = pub_print;
429 ameth->pkey_size = pkey_size;
430 ameth->pkey_bits = pkey_bits;
433 void EVP_PKEY_asn1_set_private(EVP_PKEY_ASN1_METHOD *ameth,
434 int (*priv_decode) (EVP_PKEY *pk,
437 int (*priv_encode) (PKCS8_PRIV_KEY_INFO *p8,
439 int (*priv_print) (BIO *out,
440 const EVP_PKEY *pkey,
444 ameth->priv_decode = priv_decode;
445 ameth->priv_encode = priv_encode;
446 ameth->priv_print = priv_print;
449 void EVP_PKEY_asn1_set_param(EVP_PKEY_ASN1_METHOD *ameth,
450 int (*param_decode) (EVP_PKEY *pkey,
451 const unsigned char **pder,
453 int (*param_encode) (const EVP_PKEY *pkey,
454 unsigned char **pder),
455 int (*param_missing) (const EVP_PKEY *pk),
456 int (*param_copy) (EVP_PKEY *to,
457 const EVP_PKEY *from),
458 int (*param_cmp) (const EVP_PKEY *a,
460 int (*param_print) (BIO *out,
461 const EVP_PKEY *pkey,
462 int indent, ASN1_PCTX *pctx))
464 ameth->param_decode = param_decode;
465 ameth->param_encode = param_encode;
466 ameth->param_missing = param_missing;
467 ameth->param_copy = param_copy;
468 ameth->param_cmp = param_cmp;
469 ameth->param_print = param_print;
472 void EVP_PKEY_asn1_set_free(EVP_PKEY_ASN1_METHOD *ameth,
473 void (*pkey_free) (EVP_PKEY *pkey))
475 ameth->pkey_free = pkey_free;
478 void EVP_PKEY_asn1_set_ctrl(EVP_PKEY_ASN1_METHOD *ameth,
479 int (*pkey_ctrl) (EVP_PKEY *pkey, int op,
480 long arg1, void *arg2))
482 ameth->pkey_ctrl = pkey_ctrl;
485 void EVP_PKEY_asn1_set_item(EVP_PKEY_ASN1_METHOD *ameth,
486 int (*item_verify) (EVP_MD_CTX *ctx,
490 ASN1_BIT_STRING *sig,
492 int (*item_sign) (EVP_MD_CTX *ctx,
497 ASN1_BIT_STRING *sig))
499 ameth->item_sign = item_sign;
500 ameth->item_verify = item_verify;