/src/openssl/crypto/asn1/a_object.c

Source
/*
 * Copyright 1995-2025 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <stdio.h>
#include <limits.h>
#include "crypto/ctype.h"
#include "internal/cryptlib.h"
#include <openssl/buffer.h>
#include <openssl/asn1.h>
#include <openssl/objects.h>
#include <openssl/bn.h>
#include "crypto/asn1.h"
#include "asn1_local.h"

int i2d_ASN1_OBJECT(const ASN1_OBJECT *a, unsigned char **pp)
{
    unsigned char *p, *allocated = NULL;
    int objsize;

    if ((a == NULL) || (a->data == NULL))
        return 0;

    objsize = ASN1_object_size(0, a->length, V_ASN1_OBJECT);
    if (pp == NULL || objsize == -1)
        return objsize;

    if (*pp == NULL) {
        if ((p = allocated = OPENSSL_malloc(objsize)) == NULL)
            return 0;
    } else {
        p = *pp;
    }

    ASN1_put_object(&p, 0, a->length, V_ASN1_OBJECT, V_ASN1_UNIVERSAL);
    memcpy(p, a->data, a->length);

    /*
     * If a new buffer was allocated, just return it back.
     * If not, return the incremented buffer pointer.
     */
    *pp = allocated != NULL ? allocated : p + a->length;
    return objsize;
}

int a2d_ASN1_OBJECT(unsigned char *out, int olen, const char *buf, int num)
{
    int i, first, len = 0, c, use_bn;
    char ftmp[24], *tmp = ftmp;
    int tmpsize = sizeof(ftmp);
    const char *p;
    unsigned long l;
    BIGNUM *bl = NULL;

    if (num == 0) {
        return 0;
    } else if (num == -1) {
        size_t num_s = strlen(buf);

        if (num_s >= INT_MAX) {
            ERR_raise(ERR_LIB_ASN1, ASN1_R_LENGTH_TOO_LONG);
            goto err;
        }
        num = (int)num_s;
    }

    p = buf;
    c = *(p++);
    num--;
    if ((c >= '0') && (c <= '2')) {
        first = c - '0';
    } else {
        ERR_raise(ERR_LIB_ASN1, ASN1_R_FIRST_NUM_TOO_LARGE);
        goto err;
    }

    if (num <= 0) {
        ERR_raise(ERR_LIB_ASN1, ASN1_R_MISSING_SECOND_NUMBER);
        goto err;
    }
    c = *(p++);
    num--;
    for (;;) {
        if (num <= 0)
            break;
        if ((c != '.') && (c != ' ')) {
            ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_SEPARATOR);
            goto err;
        }
        l = 0;
        use_bn = 0;
        for (;;) {
            if (num <= 0)
                break;
            num--;
            c = *(p++);
            if ((c == ' ') || (c == '.'))
                break;
            if (!ossl_isdigit(c)) {
                ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_DIGIT);
                goto err;
            }
            if (!use_bn && l >= ((ULONG_MAX - 80) / 10L)) {
                use_bn = 1;
                if (bl == NULL)
                    bl = BN_new();
                if (bl == NULL || !BN_set_word(bl, l))
                    goto err;
            }
            if (use_bn) {
                if (!BN_mul_word(bl, 10L)
                    || !BN_add_word(bl, c - '0'))
                    goto err;
            } else
                l = l * 10L + (long)(c - '0');
        }
        if (len == 0) {
            if ((first < 2) && (l >= 40)) {
                ERR_raise(ERR_LIB_ASN1, ASN1_R_SECOND_NUMBER_TOO_LARGE);
                goto err;
            }
            if (use_bn) {
                if (!BN_add_word(bl, first * 40))
                    goto err;
            } else
                l += (long)first * 40;
        }
        i = 0;
        if (use_bn) {
            int blsize;
            blsize = BN_num_bits(bl);
            blsize = (blsize + 6) / 7;
            if (blsize > tmpsize) {
                if (tmp != ftmp)
                    OPENSSL_free(tmp);
                tmpsize = blsize + 32;
                tmp = OPENSSL_malloc(tmpsize);
                if (tmp == NULL)
                    goto err;
            }
            while (blsize--) {
                BN_ULONG t = BN_div_word(bl, 0x80L);
                if (t == (BN_ULONG)-1)
                    goto err;
                tmp[i++] = (unsigned char)t;
            }
        } else {

            for (;;) {
                tmp[i++] = (unsigned char)l & 0x7f;
                l >>= 7L;
                if (l == 0L)
                    break;
            }
        }
        if (out != NULL) {
            if (len + i > olen) {
                ERR_raise(ERR_LIB_ASN1, ASN1_R_BUFFER_TOO_SMALL);
                goto err;
            }
            while (--i > 0)
                out[len++] = tmp[i] | 0x80;
            out[len++] = tmp[0];
        } else
            len += i;
    }
    if (tmp != ftmp)
        OPENSSL_free(tmp);
    BN_free(bl);
    return len;
err:
    if (tmp != ftmp)
        OPENSSL_free(tmp);
    BN_free(bl);
    return 0;
}

int i2t_ASN1_OBJECT(char *buf, int buf_len, const ASN1_OBJECT *a)
{
    return OBJ_obj2txt(buf, buf_len, a, 0);
}

int i2a_ASN1_OBJECT(BIO *bp, const ASN1_OBJECT *a)
{
    char buf[80], *p = buf;
    int i;

    if ((a == NULL) || (a->data == NULL))
        return BIO_write(bp, "NULL", 4);
    i = i2t_ASN1_OBJECT(buf, sizeof(buf), a);
    if (i > (int)(sizeof(buf) - 1)) {
        if (i > INT_MAX - 1) { /* catch an integer overflow */
            ERR_raise(ERR_LIB_ASN1, ASN1_R_LENGTH_TOO_LONG);
            return -1;
        }
        if ((p = OPENSSL_malloc(i + 1)) == NULL)
            return -1;
        i2t_ASN1_OBJECT(p, i + 1, a);
    }
    if (i <= 0) {
        i = BIO_write(bp, "<INVALID>", 9);
        if (i > 0)
            i += BIO_dump(bp, (const char *)a->data, a->length);
        return i;
    }
    BIO_write(bp, p, i);
    if (p != buf)
        OPENSSL_free(p);
    return i;
}

ASN1_OBJECT *d2i_ASN1_OBJECT(ASN1_OBJECT **a, const unsigned char **pp,
    long length)
{
    const unsigned char *p;
    long len;
    int tag, xclass;
    int inf, i;
    ASN1_OBJECT *ret = NULL;
    p = *pp;
    inf = ASN1_get_object(&p, &len, &tag, &xclass, length);
    if (inf & 0x80) {
        i = ASN1_R_BAD_OBJECT_HEADER;
        goto err;
    }

    if (tag != V_ASN1_OBJECT) {
        i = ASN1_R_EXPECTING_AN_OBJECT;
        goto err;
    }
    ret = ossl_c2i_ASN1_OBJECT(a, &p, len);
    if (ret)
        *pp = p;
    return ret;
err:
    ERR_raise(ERR_LIB_ASN1, i);
    return NULL;
}

ASN1_OBJECT *ossl_c2i_ASN1_OBJECT(ASN1_OBJECT **a, const unsigned char **pp,
    long len)
{
    ASN1_OBJECT *ret = NULL, tobj;
    const unsigned char *p;
    unsigned char *data;
    int i, length;

    /*
     * Sanity check OID encoding. Need at least one content octet. MSB must
     * be clear in the last octet. can't have leading 0x80 in subidentifiers,
     * see: X.690 8.19.2
     */
    if (len <= 0 || len > INT_MAX || pp == NULL || (p = *pp) == NULL || p[len - 1] & 0x80) {
        ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_OBJECT_ENCODING);
        return NULL;
    }
    /* Now 0 < len <= INT_MAX, so the cast is safe. */
    length = (int)len;
    /*
     * Try to lookup OID in table: these are all valid encodings so if we get
     * a match we know the OID is valid.
     */
    tobj.nid = NID_undef;
    tobj.data = p;
    tobj.length = length;
    tobj.flags = 0;
    i = OBJ_obj2nid(&tobj);
    if (i != NID_undef) {
        /*
         * Return shared registered OID object: this improves efficiency
         * because we don't have to return a dynamically allocated OID
         * and NID lookups can use the cached value.
         */
        ret = OBJ_nid2obj(i);
        if (a) {
            ASN1_OBJECT_free(*a);
            *a = ret;
        }
        *pp += len;
        return ret;
    }
    for (i = 0; i < length; i++, p++) {
        if (*p == 0x80 && (!i || !(p[-1] & 0x80))) {
            ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_OBJECT_ENCODING);
            return NULL;
        }
    }

    if ((a == NULL) || ((*a) == NULL) || !((*a)->flags & ASN1_OBJECT_FLAG_DYNAMIC)) {
        if ((ret = ASN1_OBJECT_new()) == NULL)
            return NULL;
    } else {
        ret = (*a);
    }

    p = *pp;
    /* detach data from object */
    data = (unsigned char *)ret->data;
    ret->data = NULL;
    /* once detached we can change it */
    if ((data == NULL) || (ret->length < length)) {
        ret->length = 0;
        OPENSSL_free(data);
        data = OPENSSL_malloc(length);
        if (data == NULL)
            goto err;
        ret->flags |= ASN1_OBJECT_FLAG_DYNAMIC_DATA;
    }
    memcpy(data, p, length);
    /* If there are dynamic strings, free them here, and clear the flag */
    if ((ret->flags & ASN1_OBJECT_FLAG_DYNAMIC_STRINGS) != 0) {
        OPENSSL_free((char *)ret->sn);
        OPENSSL_free((char *)ret->ln);
        ret->flags &= ~ASN1_OBJECT_FLAG_DYNAMIC_STRINGS;
    }
    /* reattach data to object, after which it remains const */
    ret->data = data;
    ret->length = length;
    ret->sn = NULL;
    ret->ln = NULL;
    /* ret->flags=ASN1_OBJECT_FLAG_DYNAMIC; we know it is dynamic */
    p += length;

    if (a != NULL)
        (*a) = ret;
    *pp = p;
    return ret;
err:
    ERR_raise(ERR_LIB_ASN1, i);
    if ((a == NULL) || (*a != ret))
        ASN1_OBJECT_free(ret);
    return NULL;
}

ASN1_OBJECT *ASN1_OBJECT_new(void)
{
    ASN1_OBJECT *ret;

    ret = OPENSSL_zalloc(sizeof(*ret));
    if (ret == NULL)
        return NULL;
    ret->flags = ASN1_OBJECT_FLAG_DYNAMIC;
    return ret;
}

void ASN1_OBJECT_free(ASN1_OBJECT *a)
{
    if (a == NULL)
        return;
    if (a->flags & ASN1_OBJECT_FLAG_DYNAMIC_STRINGS) {
#ifndef CONST_STRICT
        /*
         * Disable purely for compile-time strict const checking.  Doing this
         * on a "real" compile will cause memory leaks
         */
        OPENSSL_free((void *)a->sn);
        OPENSSL_free((void *)a->ln);
#endif
        a->sn = a->ln = NULL;
    }
    if (a->flags & ASN1_OBJECT_FLAG_DYNAMIC_DATA) {
        OPENSSL_free((void *)a->data);
        a->data = NULL;
        a->length = 0;
    }
    if (a->flags & ASN1_OBJECT_FLAG_DYNAMIC)
        OPENSSL_free(a);
}

ASN1_OBJECT *ASN1_OBJECT_create(int nid, unsigned char *data, int len,
    const char *sn, const char *ln)
{
    ASN1_OBJECT o;

    o.sn = sn;
    o.ln = ln;
    o.data = data;
    o.nid = nid;
    o.length = len;
    o.flags = ASN1_OBJECT_FLAG_DYNAMIC | ASN1_OBJECT_FLAG_DYNAMIC_STRINGS | ASN1_OBJECT_FLAG_DYNAMIC_DATA;
    return OBJ_dup(&o);
}

Coverage Report

Created: 2025-12-10 06:24

Line	Count	Source
1		/*
2		* Copyright 1995-2025 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the Apache License 2.0 (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		#include <stdio.h>
11		#include <limits.h>
12		#include "crypto/ctype.h"
13		#include "internal/cryptlib.h"
14		#include <openssl/buffer.h>
15		#include <openssl/asn1.h>
16		#include <openssl/objects.h>
17		#include <openssl/bn.h>
18		#include "crypto/asn1.h"
19		#include "asn1_local.h"
20
21		int i2d_ASN1_OBJECT(const ASN1_OBJECT a, unsigned char *pp)
22	0	{
23	0	unsigned char p, allocated = NULL;
24	0	int objsize;
25
26	0	if ((a == NULL) \|\| (a->data == NULL))
27	0	return 0;
28
29	0	objsize = ASN1_object_size(0, a->length, V_ASN1_OBJECT);
30	0	if (pp == NULL \|\| objsize == -1)
31	0	return objsize;
32
33	0	if (*pp == NULL) {
34	0	if ((p = allocated = OPENSSL_malloc(objsize)) == NULL)
35	0	return 0;
36	0	} else {
37	0	p = *pp;
38	0	}
39
40	0	ASN1_put_object(&p, 0, a->length, V_ASN1_OBJECT, V_ASN1_UNIVERSAL);
41	0	memcpy(p, a->data, a->length);
42
43		/*
44		* If a new buffer was allocated, just return it back.
45		* If not, return the incremented buffer pointer.
46		*/
47	0	*pp = allocated != NULL ? allocated : p + a->length;
48	0	return objsize;
49	0	}
50
51		int a2d_ASN1_OBJECT(unsigned char out, int olen, const char buf, int num)
52	0	{
53	0	int i, first, len = 0, c, use_bn;
54	0	char ftmp[24], *tmp = ftmp;
55	0	int tmpsize = sizeof(ftmp);
56	0	const char *p;
57	0	unsigned long l;
58	0	BIGNUM *bl = NULL;
59
60	0	if (num == 0) {
61	0	return 0;
62	0	} else if (num == -1) {
63	0	size_t num_s = strlen(buf);
64
65	0	if (num_s >= INT_MAX) {
66	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_LENGTH_TOO_LONG);
67	0	goto err;
68	0	}
69	0	num = (int)num_s;
70	0	}
71
72	0	p = buf;
73	0	c = *(p++);
74	0	num--;
75	0	if ((c >= '0') && (c <= '2')) {
76	0	first = c - '0';
77	0	} else {
78	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_FIRST_NUM_TOO_LARGE);
79	0	goto err;
80	0	}
81
82	0	if (num <= 0) {
83	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_MISSING_SECOND_NUMBER);
84	0	goto err;
85	0	}
86	0	c = *(p++);
87	0	num--;
88	0	for (;;) {
89	0	if (num <= 0)
90	0	break;
91	0	if ((c != '.') && (c != ' ')) {
92	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_SEPARATOR);
93	0	goto err;
94	0	}
95	0	l = 0;
96	0	use_bn = 0;
97	0	for (;;) {
98	0	if (num <= 0)
99	0	break;
100	0	num--;
101	0	c = *(p++);
102	0	if ((c == ' ') \|\| (c == '.'))
103	0	break;
104	0	if (!ossl_isdigit(c)) {
105	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_DIGIT);
106	0	goto err;
107	0	}
108	0	if (!use_bn && l >= ((ULONG_MAX - 80) / 10L)) {
109	0	use_bn = 1;
110	0	if (bl == NULL)
111	0	bl = BN_new();
112	0	if (bl == NULL \|\| !BN_set_word(bl, l))
113	0	goto err;
114	0	}
115	0	if (use_bn) {
116	0	if (!BN_mul_word(bl, 10L)
117	0	\|\| !BN_add_word(bl, c - '0'))
118	0	goto err;
119	0	} else
120	0	l = l * 10L + (long)(c - '0');
121	0	}
122	0	if (len == 0) {
123	0	if ((first < 2) && (l >= 40)) {
124	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_SECOND_NUMBER_TOO_LARGE);
125	0	goto err;
126	0	}
127	0	if (use_bn) {
128	0	if (!BN_add_word(bl, first * 40))
129	0	goto err;
130	0	} else
131	0	l += (long)first * 40;
132	0	}
133	0	i = 0;
134	0	if (use_bn) {
135	0	int blsize;
136	0	blsize = BN_num_bits(bl);
137	0	blsize = (blsize + 6) / 7;
138	0	if (blsize > tmpsize) {
139	0	if (tmp != ftmp)
140	0	OPENSSL_free(tmp);
141	0	tmpsize = blsize + 32;
142	0	tmp = OPENSSL_malloc(tmpsize);
143	0	if (tmp == NULL)
144	0	goto err;
145	0	}
146	0	while (blsize--) {
147	0	BN_ULONG t = BN_div_word(bl, 0x80L);
148	0	if (t == (BN_ULONG)-1)
149	0	goto err;
150	0	tmp[i++] = (unsigned char)t;
151	0	}
152	0	} else {
153
154	0	for (;;) {
155	0	tmp[i++] = (unsigned char)l & 0x7f;
156	0	l >>= 7L;
157	0	if (l == 0L)
158	0	break;
159	0	}
160	0	}
161	0	if (out != NULL) {
162	0	if (len + i > olen) {
163	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_BUFFER_TOO_SMALL);
164	0	goto err;
165	0	}
166	0	while (--i > 0)
167	0	out[len++] = tmp[i] \| 0x80;
168	0	out[len++] = tmp[0];
169	0	} else
170	0	len += i;
171	0	}
172	0	if (tmp != ftmp)
173	0	OPENSSL_free(tmp);
174	0	BN_free(bl);
175	0	return len;
176	0	err:
177	0	if (tmp != ftmp)
178	0	OPENSSL_free(tmp);
179	0	BN_free(bl);
180	0	return 0;
181	0	}
182
183		int i2t_ASN1_OBJECT(char buf, int buf_len, const ASN1_OBJECT a)
184	0	{
185	0	return OBJ_obj2txt(buf, buf_len, a, 0);
186	0	}
187
188		int i2a_ASN1_OBJECT(BIO bp, const ASN1_OBJECT a)
189	0	{
190	0	char buf[80], *p = buf;
191	0	int i;
192
193	0	if ((a == NULL) \|\| (a->data == NULL))
194	0	return BIO_write(bp, "NULL", 4);
195	0	i = i2t_ASN1_OBJECT(buf, sizeof(buf), a);
196	0	if (i > (int)(sizeof(buf) - 1)) {
197	0	if (i > INT_MAX - 1) { /* catch an integer overflow */
198	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_LENGTH_TOO_LONG);
199	0	return -1;
200	0	}
201	0	if ((p = OPENSSL_malloc(i + 1)) == NULL)
202	0	return -1;
203	0	i2t_ASN1_OBJECT(p, i + 1, a);
204	0	}
205	0	if (i <= 0) {
206	0	i = BIO_write(bp, "<INVALID>", 9);
207	0	if (i > 0)
208	0	i += BIO_dump(bp, (const char *)a->data, a->length);
209	0	return i;
210	0	}
211	0	BIO_write(bp, p, i);
212	0	if (p != buf)
213	0	OPENSSL_free(p);
214	0	return i;
215	0	}
216
217		ASN1_OBJECT d2i_ASN1_OBJECT(ASN1_OBJECT a, const unsigned char *pp,
218		long length)
219	0	{
220	0	const unsigned char *p;
221	0	long len;
222	0	int tag, xclass;
223	0	int inf, i;
224	0	ASN1_OBJECT *ret = NULL;
225	0	p = *pp;
226	0	inf = ASN1_get_object(&p, &len, &tag, &xclass, length);
227	0	if (inf & 0x80) {
228	0	i = ASN1_R_BAD_OBJECT_HEADER;
229	0	goto err;
230	0	}
231
232	0	if (tag != V_ASN1_OBJECT) {
233	0	i = ASN1_R_EXPECTING_AN_OBJECT;
234	0	goto err;
235	0	}
236	0	ret = ossl_c2i_ASN1_OBJECT(a, &p, len);
237	0	if (ret)
238	0	*pp = p;
239	0	return ret;
240	0	err:
241	0	ERR_raise(ERR_LIB_ASN1, i);
242	0	return NULL;
243	0	}
244
245		ASN1_OBJECT ossl_c2i_ASN1_OBJECT(ASN1_OBJECT a, const unsigned char *pp,
246		long len)
247	0	{
248	0	ASN1_OBJECT *ret = NULL, tobj;
249	0	const unsigned char *p;
250	0	unsigned char *data;
251	0	int i, length;
252
253		/*
254		* Sanity check OID encoding. Need at least one content octet. MSB must
255		* be clear in the last octet. can't have leading 0x80 in subidentifiers,
256		* see: X.690 8.19.2
257		*/
258	0	if (len <= 0 \|\| len > INT_MAX \|\| pp == NULL \|\| (p = *pp) == NULL \|\| p[len - 1] & 0x80) {
259	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_OBJECT_ENCODING);
260	0	return NULL;
261	0	}
262		/* Now 0 < len <= INT_MAX, so the cast is safe. */
263	0	length = (int)len;
264		/*
265		* Try to lookup OID in table: these are all valid encodings so if we get
266		* a match we know the OID is valid.
267		*/
268	0	tobj.nid = NID_undef;
269	0	tobj.data = p;
270	0	tobj.length = length;
271	0	tobj.flags = 0;
272	0	i = OBJ_obj2nid(&tobj);
273	0	if (i != NID_undef) {
274		/*
275		* Return shared registered OID object: this improves efficiency
276		* because we don't have to return a dynamically allocated OID
277		* and NID lookups can use the cached value.
278		*/
279	0	ret = OBJ_nid2obj(i);
280	0	if (a) {
281	0	ASN1_OBJECT_free(*a);
282	0	*a = ret;
283	0	}
284	0	*pp += len;
285	0	return ret;
286	0	}
287	0	for (i = 0; i < length; i++, p++) {
288	0	if (*p == 0x80 && (!i \|\| !(p[-1] & 0x80))) {
289	0	ERR_raise(ERR_LIB_ASN1, ASN1_R_INVALID_OBJECT_ENCODING);
290	0	return NULL;
291	0	}
292	0	}
293
294	0	if ((a == NULL) \|\| ((a) == NULL) \|\| !((a)->flags & ASN1_OBJECT_FLAG_DYNAMIC)) {
295	0	if ((ret = ASN1_OBJECT_new()) == NULL)
296	0	return NULL;
297	0	} else {
298	0	ret = (*a);
299	0	}
300
301	0	p = *pp;
302		/* detach data from object */
303	0	data = (unsigned char *)ret->data;
304	0	ret->data = NULL;
305		/* once detached we can change it */
306	0	if ((data == NULL) \|\| (ret->length < length)) {
307	0	ret->length = 0;
308	0	OPENSSL_free(data);
309	0	data = OPENSSL_malloc(length);
310	0	if (data == NULL)
311	0	goto err;
312	0	ret->flags \|= ASN1_OBJECT_FLAG_DYNAMIC_DATA;
313	0	}
314	0	memcpy(data, p, length);
315		/* If there are dynamic strings, free them here, and clear the flag */
316	0	if ((ret->flags & ASN1_OBJECT_FLAG_DYNAMIC_STRINGS) != 0) {
317	0	OPENSSL_free((char *)ret->sn);
318	0	OPENSSL_free((char *)ret->ln);
319	0	ret->flags &= ~ASN1_OBJECT_FLAG_DYNAMIC_STRINGS;
320	0	}
321		/* reattach data to object, after which it remains const */
322	0	ret->data = data;
323	0	ret->length = length;
324	0	ret->sn = NULL;
325	0	ret->ln = NULL;
326		/* ret->flags=ASN1_OBJECT_FLAG_DYNAMIC; we know it is dynamic */
327	0	p += length;
328
329	0	if (a != NULL)
330	0	(*a) = ret;
331	0	*pp = p;
332	0	return ret;
333	0	err:
334	0	ERR_raise(ERR_LIB_ASN1, i);
335	0	if ((a == NULL) \|\| (*a != ret))
336	0	ASN1_OBJECT_free(ret);
337	0	return NULL;
338	0	}
339
340		ASN1_OBJECT *ASN1_OBJECT_new(void)
341	0	{
342	0	ASN1_OBJECT *ret;
343
344	0	ret = OPENSSL_zalloc(sizeof(*ret));
345	0	if (ret == NULL)
346	0	return NULL;
347	0	ret->flags = ASN1_OBJECT_FLAG_DYNAMIC;
348	0	return ret;
349	0	}
350
351		void ASN1_OBJECT_free(ASN1_OBJECT *a)
352	600	{
353	600	if (a == NULL)
354	0	return;
355	600	if (a->flags & ASN1_OBJECT_FLAG_DYNAMIC_STRINGS) {
356	0	#ifndef CONST_STRICT
357		/*
358		* Disable purely for compile-time strict const checking. Doing this
359		* on a "real" compile will cause memory leaks
360		*/
361	0	OPENSSL_free((void *)a->sn);
362	0	OPENSSL_free((void *)a->ln);
363	0	#endif
364	0	a->sn = a->ln = NULL;
365	0	}
366	600	if (a->flags & ASN1_OBJECT_FLAG_DYNAMIC_DATA) {
367	0	OPENSSL_free((void *)a->data);
368	0	a->data = NULL;
369	0	a->length = 0;
370	0	}
371	600	if (a->flags & ASN1_OBJECT_FLAG_DYNAMIC)
372	0	OPENSSL_free(a);
373	600	}
374
375		ASN1_OBJECT ASN1_OBJECT_create(int nid, unsigned char data, int len,
376		const char sn, const char ln)
377	0	{
378	0	ASN1_OBJECT o;
379
380	0	o.sn = sn;
381	0	o.ln = ln;
382	0	o.data = data;
383	0	o.nid = nid;
384	0	o.length = len;
385	0	o.flags = ASN1_OBJECT_FLAG_DYNAMIC \| ASN1_OBJECT_FLAG_DYNAMIC_STRINGS \| ASN1_OBJECT_FLAG_DYNAMIC_DATA;
386	0	return OBJ_dup(&o);
387	0	}