/src/openssl/crypto/core_namemap.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* |
2 | | * Copyright 2019-2025 The OpenSSL Project Authors. All Rights Reserved. |
3 | | * |
4 | | * Licensed under the Apache License 2.0 (the "License"). You may not use |
5 | | * this file except in compliance with the License. You can obtain a copy |
6 | | * in the file LICENSE in the source distribution or at |
7 | | * https://www.openssl.org/source/license.html |
8 | | */ |
9 | | |
10 | | /* |
11 | | * For EVP_PKEY_asn1_get0_info(), EVP_PKEY_asn1_get_count() and |
12 | | * EVP_PKEY_asn1_get0() |
13 | | */ |
14 | | #define OPENSSL_SUPPRESS_DEPRECATED |
15 | | |
16 | | #include "internal/namemap.h" |
17 | | #include "internal/tsan_assist.h" |
18 | | #include "internal/hashtable.h" |
19 | | #include "internal/sizes.h" |
20 | | #include "crypto/context.h" |
21 | | |
22 | 9 | #define NAMEMAP_HT_BUCKETS 512 |
23 | | |
24 | | HT_START_KEY_DEFN(namenum_key) |
25 | | HT_DEF_KEY_FIELD_CHAR_ARRAY(name, 64) |
26 | | HT_END_KEY_DEFN(NAMENUM_KEY) |
27 | | |
28 | | /*- |
29 | | * The namemap itself |
30 | | * ================== |
31 | | */ |
32 | | |
33 | | typedef STACK_OF(OPENSSL_STRING) NAMES; |
34 | | |
35 | | DEFINE_STACK_OF(NAMES) |
36 | | |
37 | | struct ossl_namemap_st { |
38 | | /* Flags */ |
39 | | unsigned int stored:1; /* If 1, it's stored in a library context */ |
40 | | |
41 | | HT *namenum_ht; /* Name->number mapping */ |
42 | | |
43 | | CRYPTO_RWLOCK *lock; |
44 | | STACK_OF(NAMES) *numnames; |
45 | | |
46 | | TSAN_QUALIFIER int max_number; /* Current max number */ |
47 | | }; |
48 | | |
49 | | static void name_string_free(char *name) |
50 | 291 | { |
51 | 291 | OPENSSL_free(name); |
52 | 291 | } |
53 | | |
54 | | static void names_free(NAMES *n) |
55 | 125 | { |
56 | 125 | sk_OPENSSL_STRING_pop_free(n, name_string_free); |
57 | 125 | } |
58 | | |
59 | | /* OSSL_LIB_CTX_METHOD functions for a namemap stored in a library context */ |
60 | | |
61 | | void *ossl_stored_namemap_new(OSSL_LIB_CTX *libctx) |
62 | 9 | { |
63 | 9 | OSSL_NAMEMAP *namemap = ossl_namemap_new(libctx); |
64 | | |
65 | 9 | if (namemap != NULL) |
66 | 9 | namemap->stored = 1; |
67 | | |
68 | 9 | return namemap; |
69 | 9 | } |
70 | | |
71 | | void ossl_stored_namemap_free(void *vnamemap) |
72 | 3 | { |
73 | 3 | OSSL_NAMEMAP *namemap = vnamemap; |
74 | | |
75 | 3 | if (namemap != NULL) { |
76 | | /* Pretend it isn't stored, or ossl_namemap_free() will do nothing */ |
77 | 3 | namemap->stored = 0; |
78 | 3 | ossl_namemap_free(namemap); |
79 | 3 | } |
80 | 3 | } |
81 | | |
82 | | /*- |
83 | | * API functions |
84 | | * ============= |
85 | | */ |
86 | | |
87 | | int ossl_namemap_empty(OSSL_NAMEMAP *namemap) |
88 | 1.08M | { |
89 | | #ifdef TSAN_REQUIRES_LOCKING |
90 | | /* No TSAN support */ |
91 | | int rv; |
92 | | |
93 | | if (namemap == NULL) |
94 | | return 1; |
95 | | |
96 | | if (!CRYPTO_THREAD_read_lock(namemap->lock)) |
97 | | return -1; |
98 | | rv = namemap->max_number == 0; |
99 | | CRYPTO_THREAD_unlock(namemap->lock); |
100 | | return rv; |
101 | | #else |
102 | | /* Have TSAN support */ |
103 | 1.08M | return namemap == NULL || tsan_load(&namemap->max_number) == 0; |
104 | 1.08M | #endif |
105 | 1.08M | } |
106 | | |
107 | | /* |
108 | | * Call the callback for all names in the namemap with the given number. |
109 | | * A return value 1 means that the callback was called for all names. A |
110 | | * return value of 0 means that the callback was not called for any names. |
111 | | */ |
112 | | int ossl_namemap_doall_names(const OSSL_NAMEMAP *namemap, int number, |
113 | | void (*fn)(const char *name, void *data), |
114 | | void *data) |
115 | 278 | { |
116 | 278 | int i; |
117 | 278 | NAMES *names; |
118 | | |
119 | 278 | if (namemap == NULL || number <= 0) |
120 | 0 | return 0; |
121 | | |
122 | | /* |
123 | | * We duplicate the NAMES stack under a read lock. Subsequently we call |
124 | | * the user function, so that we're not holding the read lock when in user |
125 | | * code. This could lead to deadlocks. |
126 | | */ |
127 | 278 | if (!CRYPTO_THREAD_read_lock(namemap->lock)) |
128 | 0 | return 0; |
129 | | |
130 | 278 | names = sk_NAMES_value(namemap->numnames, number - 1); |
131 | 278 | if (names != NULL) |
132 | 278 | names = sk_OPENSSL_STRING_dup(names); |
133 | | |
134 | 278 | CRYPTO_THREAD_unlock(namemap->lock); |
135 | | |
136 | 278 | if (names == NULL) |
137 | 0 | return 0; |
138 | | |
139 | 895 | for (i = 0; i < sk_OPENSSL_STRING_num(names); i++) |
140 | 617 | fn(sk_OPENSSL_STRING_value(names, i), data); |
141 | | |
142 | 278 | sk_OPENSSL_STRING_free(names); |
143 | 278 | return i > 0; |
144 | 278 | } |
145 | | |
146 | | int ossl_namemap_name2num(const OSSL_NAMEMAP *namemap, const char *name) |
147 | 1.09M | { |
148 | 1.09M | int number = 0; |
149 | 1.09M | HT_VALUE *val; |
150 | 1.09M | NAMENUM_KEY key; |
151 | | |
152 | 1.09M | #ifndef FIPS_MODULE |
153 | 1.09M | if (namemap == NULL) |
154 | 0 | namemap = ossl_namemap_stored(NULL); |
155 | 1.09M | #endif |
156 | | |
157 | 1.09M | if (namemap == NULL) |
158 | 0 | return 0; |
159 | | |
160 | 1.09M | HT_INIT_KEY(&key); |
161 | 1.09M | HT_SET_KEY_STRING_CASE(&key, name, name); |
162 | | |
163 | 1.09M | val = ossl_ht_get(namemap->namenum_ht, TO_HT_KEY(&key)); |
164 | | |
165 | 1.09M | if (val != NULL) |
166 | | /* We store a (small) int directly instead of a pointer to it. */ |
167 | 1.08M | number = (int)(intptr_t)val->value; |
168 | | |
169 | 1.09M | return number; |
170 | 1.09M | } |
171 | | |
172 | | int ossl_namemap_name2num_n(const OSSL_NAMEMAP *namemap, |
173 | | const char *name, size_t name_len) |
174 | 1.14k | { |
175 | 1.14k | int number = 0; |
176 | 1.14k | HT_VALUE *val; |
177 | 1.14k | NAMENUM_KEY key; |
178 | | |
179 | 1.14k | #ifndef FIPS_MODULE |
180 | 1.14k | if (namemap == NULL) |
181 | 0 | namemap = ossl_namemap_stored(NULL); |
182 | 1.14k | #endif |
183 | | |
184 | 1.14k | if (namemap == NULL) |
185 | 0 | return 0; |
186 | | |
187 | 1.14k | HT_INIT_KEY(&key); |
188 | 1.14k | HT_SET_KEY_STRING_CASE_N(&key, name, name, (int)name_len); |
189 | | |
190 | 1.14k | val = ossl_ht_get(namemap->namenum_ht, TO_HT_KEY(&key)); |
191 | | |
192 | 1.14k | if (val != NULL) |
193 | | /* We store a (small) int directly instead of a pointer to it. */ |
194 | 447 | number = (int)(intptr_t)val->value; |
195 | | |
196 | 1.14k | return number; |
197 | 1.14k | } |
198 | | |
199 | | const char *ossl_namemap_num2name(const OSSL_NAMEMAP *namemap, int number, |
200 | | int idx) |
201 | 0 | { |
202 | 0 | NAMES *names; |
203 | 0 | const char *ret = NULL; |
204 | |
|
205 | 0 | if (namemap == NULL || number <= 0) |
206 | 0 | return NULL; |
207 | | |
208 | 0 | if (!CRYPTO_THREAD_read_lock(namemap->lock)) |
209 | 0 | return NULL; |
210 | | |
211 | 0 | names = sk_NAMES_value(namemap->numnames, number - 1); |
212 | 0 | if (names != NULL) |
213 | 0 | ret = sk_OPENSSL_STRING_value(names, idx); |
214 | |
|
215 | 0 | CRYPTO_THREAD_unlock(namemap->lock); |
216 | |
|
217 | 0 | return ret; |
218 | 0 | } |
219 | | |
220 | | /* This function is not thread safe, the namemap must be locked */ |
221 | | static int numname_insert(OSSL_NAMEMAP *namemap, int number, |
222 | | const char *name) |
223 | 1.29k | { |
224 | 1.29k | NAMES *names; |
225 | 1.29k | char *tmpname; |
226 | | |
227 | 1.29k | if (number > 0) { |
228 | 717 | names = sk_NAMES_value(namemap->numnames, number - 1); |
229 | 717 | if (!ossl_assert(names != NULL)) { |
230 | | /* cannot happen */ |
231 | 0 | return 0; |
232 | 0 | } |
233 | 717 | } else { |
234 | | /* a completely new entry */ |
235 | 574 | names = sk_OPENSSL_STRING_new_null(); |
236 | 574 | if (names == NULL) |
237 | 0 | return 0; |
238 | 574 | } |
239 | | |
240 | 1.29k | if ((tmpname = OPENSSL_strdup(name)) == NULL) |
241 | 0 | goto err; |
242 | | |
243 | 1.29k | if (!sk_OPENSSL_STRING_push(names, tmpname)) |
244 | 0 | goto err; |
245 | 1.29k | tmpname = NULL; |
246 | | |
247 | 1.29k | if (number <= 0) { |
248 | 574 | if (!sk_NAMES_push(namemap->numnames, names)) |
249 | 0 | goto err; |
250 | 574 | number = sk_NAMES_num(namemap->numnames); |
251 | 574 | } |
252 | 1.29k | return number; |
253 | | |
254 | 0 | err: |
255 | 0 | if (number <= 0) |
256 | 0 | sk_OPENSSL_STRING_pop_free(names, name_string_free); |
257 | 0 | OPENSSL_free(tmpname); |
258 | 0 | return 0; |
259 | 1.29k | } |
260 | | |
261 | | /* This function is not thread safe, the namemap must be locked */ |
262 | | static int namemap_add_name(OSSL_NAMEMAP *namemap, int number, |
263 | | const char *name) |
264 | 3.20k | { |
265 | 3.20k | int ret; |
266 | 3.20k | HT_VALUE val = { 0 }; |
267 | 3.20k | NAMENUM_KEY key; |
268 | | |
269 | | /* If it already exists, we don't add it */ |
270 | 3.20k | if ((ret = ossl_namemap_name2num(namemap, name)) != 0) |
271 | 1.91k | return ret; |
272 | | |
273 | 1.29k | if ((number = numname_insert(namemap, number, name)) == 0) |
274 | 0 | return 0; |
275 | | |
276 | | /* Using tsan_store alone here is safe since we're under lock */ |
277 | 1.29k | tsan_store(&namemap->max_number, number); |
278 | | |
279 | 1.29k | HT_INIT_KEY(&key); |
280 | 1.29k | HT_SET_KEY_STRING_CASE(&key, name, name); |
281 | 1.29k | val.value = (void *)(intptr_t)number; |
282 | 1.29k | ret = ossl_ht_insert(namemap->namenum_ht, TO_HT_KEY(&key), &val, NULL); |
283 | 1.29k | if (ret <= 0) { |
284 | | /* |
285 | | * We either got an allocation failure (INTERNAL_ERROR), or |
286 | | * hit too many conflicts in the table (TOO_MANY_NAMES) |
287 | | */ |
288 | 0 | ERR_raise(ERR_LIB_CRYPTO, (ret < 0) ? CRYPTO_R_TOO_MANY_NAMES : ERR_R_INTERNAL_ERROR); |
289 | 0 | return 0; |
290 | 0 | } |
291 | 1.29k | return number; |
292 | 1.29k | } |
293 | | |
294 | | int ossl_namemap_add_name(OSSL_NAMEMAP *namemap, int number, |
295 | | const char *name) |
296 | 2.58k | { |
297 | 2.58k | int tmp_number; |
298 | | |
299 | 2.58k | #ifndef FIPS_MODULE |
300 | 2.58k | if (namemap == NULL) |
301 | 0 | namemap = ossl_namemap_stored(NULL); |
302 | 2.58k | #endif |
303 | | |
304 | 2.58k | if (name == NULL || *name == 0 || namemap == NULL) |
305 | 0 | return 0; |
306 | | |
307 | 2.58k | if (!CRYPTO_THREAD_write_lock(namemap->lock)) |
308 | 0 | return 0; |
309 | 2.58k | tmp_number = namemap_add_name(namemap, number, name); |
310 | 2.58k | CRYPTO_THREAD_unlock(namemap->lock); |
311 | 2.58k | return tmp_number; |
312 | 2.58k | } |
313 | | |
314 | | int ossl_namemap_add_names(OSSL_NAMEMAP *namemap, int number, |
315 | | const char *names, const char separator) |
316 | 278 | { |
317 | 278 | char *tmp, *p, *q, *endp; |
318 | | |
319 | | /* Check that we have a namemap */ |
320 | 278 | if (!ossl_assert(namemap != NULL)) { |
321 | 0 | ERR_raise(ERR_LIB_CRYPTO, ERR_R_PASSED_NULL_PARAMETER); |
322 | 0 | return 0; |
323 | 0 | } |
324 | | |
325 | 278 | if ((tmp = OPENSSL_strdup(names)) == NULL) |
326 | 0 | return 0; |
327 | | |
328 | 278 | if (!CRYPTO_THREAD_write_lock(namemap->lock)) { |
329 | 0 | OPENSSL_free(tmp); |
330 | 0 | return 0; |
331 | 0 | } |
332 | | /* |
333 | | * Check that no name is an empty string, and that all names have at |
334 | | * most one numeric identity together. |
335 | | */ |
336 | 895 | for (p = tmp; *p != '\0'; p = q) { |
337 | 617 | int this_number; |
338 | 617 | size_t l; |
339 | | |
340 | 617 | if ((q = strchr(p, separator)) == NULL) { |
341 | 278 | l = strlen(p); /* offset to \0 */ |
342 | 278 | q = p + l; |
343 | 339 | } else { |
344 | 339 | l = q - p; /* offset to the next separator */ |
345 | 339 | *q++ = '\0'; |
346 | 339 | } |
347 | | |
348 | 617 | if (*p == '\0') { |
349 | 0 | ERR_raise(ERR_LIB_CRYPTO, CRYPTO_R_BAD_ALGORITHM_NAME); |
350 | 0 | number = 0; |
351 | 0 | goto end; |
352 | 0 | } |
353 | | |
354 | 617 | this_number = ossl_namemap_name2num(namemap, p); |
355 | | |
356 | 617 | if (number == 0) { |
357 | 385 | number = this_number; |
358 | 385 | } else if (this_number != 0 && this_number != number) { |
359 | 0 | ERR_raise_data(ERR_LIB_CRYPTO, CRYPTO_R_CONFLICTING_NAMES, |
360 | 0 | "\"%s\" has an existing different identity %d (from \"%s\")", |
361 | 0 | p, this_number, names); |
362 | 0 | number = 0; |
363 | 0 | goto end; |
364 | 0 | } |
365 | 617 | } |
366 | 278 | endp = p; |
367 | | |
368 | | /* Now that we have checked, register all names */ |
369 | 895 | for (p = tmp; p < endp; p = q) { |
370 | 617 | int this_number; |
371 | | |
372 | 617 | q = p + strlen(p) + 1; |
373 | | |
374 | 617 | this_number = namemap_add_name(namemap, number, p); |
375 | 617 | if (number == 0) { |
376 | 106 | number = this_number; |
377 | 511 | } else if (this_number != number) { |
378 | 0 | ERR_raise_data(ERR_LIB_CRYPTO, ERR_R_INTERNAL_ERROR, |
379 | 0 | "Got number %d when expecting %d", |
380 | 0 | this_number, number); |
381 | 0 | number = 0; |
382 | 0 | goto end; |
383 | 0 | } |
384 | 617 | } |
385 | | |
386 | 278 | end: |
387 | 278 | CRYPTO_THREAD_unlock(namemap->lock); |
388 | 278 | OPENSSL_free(tmp); |
389 | 278 | return number; |
390 | 278 | } |
391 | | |
392 | | /*- |
393 | | * Pre-population |
394 | | * ============== |
395 | | */ |
396 | | |
397 | | #ifndef FIPS_MODULE |
398 | | #include <openssl/evp.h> |
399 | | |
400 | | /* Creates an initial namemap with names found in the legacy method db */ |
401 | | static void get_legacy_evp_names(int base_nid, int nid, const char *pem_name, |
402 | | void *arg) |
403 | 996 | { |
404 | 996 | int num = 0; |
405 | 996 | ASN1_OBJECT *obj; |
406 | | |
407 | 996 | if (base_nid != NID_undef) { |
408 | 16 | num = ossl_namemap_add_name(arg, num, OBJ_nid2sn(base_nid)); |
409 | 16 | num = ossl_namemap_add_name(arg, num, OBJ_nid2ln(base_nid)); |
410 | 16 | } |
411 | | |
412 | 996 | if (nid != NID_undef) { |
413 | 832 | num = ossl_namemap_add_name(arg, num, OBJ_nid2sn(nid)); |
414 | 832 | num = ossl_namemap_add_name(arg, num, OBJ_nid2ln(nid)); |
415 | 832 | if ((obj = OBJ_nid2obj(nid)) != NULL) { |
416 | 832 | char txtoid[OSSL_MAX_NAME_SIZE]; |
417 | | |
418 | 832 | if (OBJ_obj2txt(txtoid, sizeof(txtoid), obj, 1) > 0) |
419 | 828 | num = ossl_namemap_add_name(arg, num, txtoid); |
420 | 832 | } |
421 | 832 | } |
422 | 996 | if (pem_name != NULL) |
423 | 44 | num = ossl_namemap_add_name(arg, num, pem_name); |
424 | 996 | } |
425 | | |
426 | | static void get_legacy_cipher_names(const OBJ_NAME *on, void *arg) |
427 | 696 | { |
428 | 696 | const EVP_CIPHER *cipher = (void *)OBJ_NAME_get(on->name, on->type); |
429 | | |
430 | 696 | if (cipher != NULL) |
431 | 696 | get_legacy_evp_names(NID_undef, EVP_CIPHER_get_type(cipher), NULL, arg); |
432 | 696 | } |
433 | | |
434 | | static void get_legacy_md_names(const OBJ_NAME *on, void *arg) |
435 | 236 | { |
436 | 236 | const EVP_MD *md = (void *)OBJ_NAME_get(on->name, on->type); |
437 | | |
438 | 236 | if (md != NULL) |
439 | 236 | get_legacy_evp_names(0, EVP_MD_get_type(md), NULL, arg); |
440 | 236 | } |
441 | | |
442 | | # ifndef OPENSSL_NO_DEPRECATED_3_6 |
443 | | static void get_legacy_pkey_meth_names(const EVP_PKEY_ASN1_METHOD *ameth, |
444 | | void *arg) |
445 | 60 | { |
446 | 60 | int nid = 0, base_nid = 0, flags = 0; |
447 | 60 | const char *pem_name = NULL; |
448 | | |
449 | 60 | EVP_PKEY_asn1_get0_info(&nid, &base_nid, &flags, NULL, &pem_name, ameth); |
450 | 60 | if (nid != NID_undef) { |
451 | 60 | if ((flags & ASN1_PKEY_ALIAS) == 0) { |
452 | 40 | switch (nid) { |
453 | 4 | case EVP_PKEY_DHX: |
454 | | /* We know that the name "DHX" is used too */ |
455 | 4 | get_legacy_evp_names(0, nid, "DHX", arg); |
456 | | /* FALLTHRU */ |
457 | 40 | default: |
458 | 40 | get_legacy_evp_names(0, nid, pem_name, arg); |
459 | 40 | } |
460 | 40 | } else { |
461 | | /* |
462 | | * Treat aliases carefully, some of them are undesirable, or |
463 | | * should not be treated as such for providers. |
464 | | */ |
465 | | |
466 | 20 | switch (nid) { |
467 | 4 | case EVP_PKEY_SM2: |
468 | | /* |
469 | | * SM2 is a separate keytype with providers, not an alias for |
470 | | * EC. |
471 | | */ |
472 | 4 | get_legacy_evp_names(0, nid, pem_name, arg); |
473 | 4 | break; |
474 | 16 | default: |
475 | | /* Use the short name of the base nid as the common reference */ |
476 | 16 | get_legacy_evp_names(base_nid, nid, pem_name, arg); |
477 | 20 | } |
478 | 20 | } |
479 | 60 | } |
480 | 60 | } |
481 | | # endif /* OPENSSL_NO_DEPRECATED_3_6 */ |
482 | | #endif |
483 | | |
484 | | /*- |
485 | | * Constructors / destructors |
486 | | * ========================== |
487 | | */ |
488 | | |
489 | | OSSL_NAMEMAP *ossl_namemap_stored(OSSL_LIB_CTX *libctx) |
490 | 1.08M | { |
491 | 1.08M | #ifndef FIPS_MODULE |
492 | 1.08M | int nms; |
493 | 1.08M | #endif |
494 | 1.08M | OSSL_NAMEMAP *namemap = |
495 | 1.08M | ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_NAMEMAP_INDEX); |
496 | | |
497 | 1.08M | if (namemap == NULL) |
498 | 0 | return NULL; |
499 | | |
500 | 1.08M | #ifndef FIPS_MODULE |
501 | 1.08M | nms = ossl_namemap_empty(namemap); |
502 | 1.08M | if (nms < 0) { |
503 | | /* |
504 | | * Could not get lock to make the count, so maybe internal objects |
505 | | * weren't added. This seems safest. |
506 | | */ |
507 | 0 | return NULL; |
508 | 0 | } |
509 | 1.08M | if (nms == 1) { |
510 | 4 | int num; |
511 | | |
512 | | /* Before pilfering, we make sure the legacy database is populated */ |
513 | 4 | OPENSSL_init_crypto(OPENSSL_INIT_ADD_ALL_CIPHERS |
514 | 4 | | OPENSSL_INIT_ADD_ALL_DIGESTS, NULL); |
515 | | |
516 | 4 | OBJ_NAME_do_all(OBJ_NAME_TYPE_CIPHER_METH, |
517 | 4 | get_legacy_cipher_names, namemap); |
518 | 4 | OBJ_NAME_do_all(OBJ_NAME_TYPE_MD_METH, |
519 | 4 | get_legacy_md_names, namemap); |
520 | | |
521 | | /* |
522 | | * Some old providers (<= 3.5) may not have the rsassaPSS alias which |
523 | | * may cause problems in some cases. We add it manually here |
524 | | */ |
525 | 4 | num = ossl_namemap_add_name(namemap, 0, "RSA-PSS"); |
526 | 4 | if (num != 0) { |
527 | 4 | ossl_namemap_add_name(namemap, num, "rsassaPss"); |
528 | | /* Add other RSA-PSS aliases as well */ |
529 | 4 | ossl_namemap_add_name(namemap, num, "RSASSA-PSS"); |
530 | 4 | ossl_namemap_add_name(namemap, num, "1.2.840.113549.1.1.10"); |
531 | 4 | } |
532 | 4 | # ifndef OPENSSL_NO_DEPRECATED_3_6 |
533 | 4 | { |
534 | 4 | int i, end; |
535 | | |
536 | | /* We also pilfer data from the legacy EVP_PKEY_ASN1_METHODs */ |
537 | 64 | for (i = 0, end = EVP_PKEY_asn1_get_count(); i < end; i++) |
538 | 60 | get_legacy_pkey_meth_names(EVP_PKEY_asn1_get0(i), namemap); |
539 | 4 | } |
540 | 4 | # endif |
541 | 4 | } |
542 | 1.08M | #endif |
543 | | |
544 | 1.08M | return namemap; |
545 | 1.08M | } |
546 | | |
547 | | OSSL_NAMEMAP *ossl_namemap_new(OSSL_LIB_CTX *libctx) |
548 | 9 | { |
549 | 9 | OSSL_NAMEMAP *namemap; |
550 | 9 | HT_CONFIG htconf = { NULL, NULL, NULL, NAMEMAP_HT_BUCKETS, 1, 1 }; |
551 | | |
552 | 9 | htconf.ctx = libctx; |
553 | | |
554 | 9 | if ((namemap = OPENSSL_zalloc(sizeof(*namemap))) == NULL) |
555 | 0 | goto err; |
556 | | |
557 | 9 | if ((namemap->lock = CRYPTO_THREAD_lock_new()) == NULL) |
558 | 0 | goto err; |
559 | | |
560 | 9 | if ((namemap->namenum_ht = ossl_ht_new(&htconf)) == NULL) |
561 | 0 | goto err; |
562 | | |
563 | 9 | if ((namemap->numnames = sk_NAMES_new_null()) == NULL) |
564 | 0 | goto err; |
565 | | |
566 | 9 | return namemap; |
567 | | |
568 | 0 | err: |
569 | 0 | ossl_namemap_free(namemap); |
570 | 0 | return NULL; |
571 | 9 | } |
572 | | |
573 | | void ossl_namemap_free(OSSL_NAMEMAP *namemap) |
574 | 3 | { |
575 | 3 | if (namemap == NULL || namemap->stored) |
576 | 0 | return; |
577 | | |
578 | 3 | sk_NAMES_pop_free(namemap->numnames, names_free); |
579 | | |
580 | 3 | ossl_ht_free(namemap->namenum_ht); |
581 | | |
582 | 3 | CRYPTO_THREAD_lock_free(namemap->lock); |
583 | 3 | OPENSSL_free(namemap); |
584 | 3 | } |