/src/openssl/crypto/core_namemap.c
Line | Count | Source |
1 | | /* |
2 | | * Copyright 2019-2026 The OpenSSL Project Authors. All Rights Reserved. |
3 | | * |
4 | | * Licensed under the Apache License 2.0 (the "License"). You may not use |
5 | | * this file except in compliance with the License. You can obtain a copy |
6 | | * in the file LICENSE in the source distribution or at |
7 | | * https://www.openssl.org/source/license.html |
8 | | */ |
9 | | |
10 | | #include "internal/namemap.h" |
11 | | #include "internal/tsan_assist.h" |
12 | | #include "internal/hashtable.h" |
13 | | #include "internal/sizes.h" |
14 | | #include "crypto/context.h" |
15 | | #include "crypto/evp.h" |
16 | | |
17 | 314 | #define NAMEMAP_HT_BUCKETS 512 |
18 | | |
19 | 8.09M | #define NAMEMAP_NAME_LEN 64 |
20 | | HT_START_KEY_DEFN(namenum_key) |
21 | | HT_DEF_KEY_FIELD_CHAR_ARRAY(name, NAMEMAP_NAME_LEN) |
22 | | HT_END_KEY_DEFN(NAMENUM_KEY) |
23 | | |
24 | | /*- |
25 | | * The namemap itself |
26 | | * ================== |
27 | | */ |
28 | | |
29 | | typedef STACK_OF(OPENSSL_STRING) NAMES; |
30 | | |
31 | | DEFINE_STACK_OF(NAMES) |
32 | | |
33 | | struct ossl_namemap_st { |
34 | | /* Flags */ |
35 | | unsigned int stored : 1; /* If 1, it's stored in a library context */ |
36 | | |
37 | | HT *namenum_ht; /* Name->number mapping */ |
38 | | |
39 | | CRYPTO_RWLOCK *lock; |
40 | | STACK_OF(NAMES) *numnames; |
41 | | |
42 | | TSAN_QUALIFIER int max_number; /* Current max number */ |
43 | | }; |
44 | | |
45 | | static void name_string_free(char *name) |
46 | 24.7k | { |
47 | 24.7k | OPENSSL_free(name); |
48 | 24.7k | } |
49 | | |
50 | | static void names_free(NAMES *n) |
51 | 11.0k | { |
52 | 11.0k | sk_OPENSSL_STRING_pop_free(n, name_string_free); |
53 | 11.0k | } |
54 | | |
55 | | /* OSSL_LIB_CTX_METHOD functions for a namemap stored in a library context */ |
56 | | |
57 | | void *ossl_stored_namemap_new(OSSL_LIB_CTX *libctx) |
58 | 380 | { |
59 | 380 | OSSL_NAMEMAP *namemap = ossl_namemap_new(libctx); |
60 | | |
61 | 380 | if (namemap != NULL) |
62 | 380 | namemap->stored = 1; |
63 | | |
64 | 380 | return namemap; |
65 | 380 | } |
66 | | |
67 | | void ossl_stored_namemap_free(void *vnamemap) |
68 | 196 | { |
69 | 196 | OSSL_NAMEMAP *namemap = vnamemap; |
70 | | |
71 | 196 | if (namemap != NULL) { |
72 | | /* Pretend it isn't stored, or ossl_namemap_free() will do nothing */ |
73 | 196 | namemap->stored = 0; |
74 | 196 | ossl_namemap_free(namemap); |
75 | 196 | } |
76 | 196 | } |
77 | | |
78 | | /*- |
79 | | * API functions |
80 | | * ============= |
81 | | */ |
82 | | |
83 | | int ossl_namemap_empty(OSSL_NAMEMAP *namemap) |
84 | 268M | { |
85 | | #ifdef TSAN_REQUIRES_LOCKING |
86 | | /* No TSAN support */ |
87 | | int rv; |
88 | | |
89 | | if (namemap == NULL) |
90 | | return 1; |
91 | | |
92 | | if (!CRYPTO_THREAD_read_lock(namemap->lock)) |
93 | | return -1; |
94 | | rv = namemap->max_number == 0; |
95 | | CRYPTO_THREAD_unlock(namemap->lock); |
96 | | return rv; |
97 | | #else |
98 | | /* Have TSAN support */ |
99 | 268M | return namemap == NULL || tsan_load(&namemap->max_number) == 0; |
100 | 268M | #endif |
101 | 268M | } |
102 | | |
103 | | /* |
104 | | * Call the callback for all names in the namemap with the given number. |
105 | | * A return value 1 means that the callback was called for all names. A |
106 | | * return value of 0 means that the callback was not called for any names. |
107 | | */ |
108 | | int ossl_namemap_doall_names(const OSSL_NAMEMAP *namemap, int number, |
109 | | void (*fn)(const char *name, void *data), |
110 | | void *data) |
111 | 922k | { |
112 | 922k | int i; |
113 | 922k | NAMES *names; |
114 | | |
115 | 922k | if (namemap == NULL || number <= 0) |
116 | 0 | return 0; |
117 | | |
118 | | /* |
119 | | * We duplicate the NAMES stack under a read lock. Subsequently we call |
120 | | * the user function, so that we're not holding the read lock when in user |
121 | | * code. This could lead to deadlocks. |
122 | | */ |
123 | 922k | if (!CRYPTO_THREAD_read_lock(namemap->lock)) |
124 | 0 | return 0; |
125 | | |
126 | 922k | names = sk_NAMES_value(namemap->numnames, number - 1); |
127 | 922k | if (names != NULL) |
128 | 922k | names = sk_OPENSSL_STRING_dup(names); |
129 | | |
130 | 922k | CRYPTO_THREAD_unlock(namemap->lock); |
131 | | |
132 | 922k | if (names == NULL) |
133 | 0 | return 0; |
134 | | |
135 | 3.96M | for (i = 0; i < sk_OPENSSL_STRING_num(names); i++) |
136 | 3.04M | fn(sk_OPENSSL_STRING_value(names, i), data); |
137 | | |
138 | 922k | sk_OPENSSL_STRING_free(names); |
139 | 922k | return i > 0; |
140 | 922k | } |
141 | | |
142 | | int ossl_namemap_name2num(const OSSL_NAMEMAP *namemap, const char *name) |
143 | 231M | { |
144 | 231M | if (name == NULL) |
145 | 44.9k | return 0; |
146 | 231M | return ossl_namemap_name2num_n(namemap, name, strlen(name)); |
147 | 231M | } |
148 | | |
149 | | int ossl_namemap_name2num_n(const OSSL_NAMEMAP *namemap, |
150 | | const char *name, size_t name_len) |
151 | 8.09M | { |
152 | 8.09M | int number = 0; |
153 | 8.09M | HT_VALUE *val; |
154 | 8.09M | NAMENUM_KEY key; |
155 | | |
156 | 8.09M | #ifndef FIPS_MODULE |
157 | 8.09M | if (namemap == NULL) |
158 | 0 | namemap = ossl_namemap_stored(NULL); |
159 | 8.09M | #endif |
160 | | |
161 | 8.09M | if (namemap == NULL) |
162 | 0 | return 0; |
163 | | |
164 | 8.09M | if (name_len > NAMEMAP_NAME_LEN) |
165 | 428 | name_len = NAMEMAP_NAME_LEN; |
166 | | |
167 | 8.09M | HT_INIT_RAW_KEY(&key); |
168 | 8.09M | HT_COPY_RAW_KEY_CASE(TO_HT_KEY(&key), name, name_len); |
169 | | |
170 | 8.09M | val = ossl_ht_get(namemap->namenum_ht, TO_HT_KEY(&key)); |
171 | | |
172 | 8.09M | if (val != NULL) |
173 | | /* We store a (small) int directly instead of a pointer to it. */ |
174 | 7.36M | number = (int)(intptr_t)val->value; |
175 | | |
176 | 8.09M | return number; |
177 | 8.09M | } |
178 | | |
179 | | const char *ossl_namemap_num2name(const OSSL_NAMEMAP *namemap, int number, |
180 | | int idx) |
181 | 0 | { |
182 | 0 | NAMES *names; |
183 | 0 | const char *ret = NULL; |
184 | |
|
185 | 0 | if (namemap == NULL || number <= 0) |
186 | 0 | return NULL; |
187 | | |
188 | 0 | if (!CRYPTO_THREAD_read_lock(namemap->lock)) |
189 | 0 | return NULL; |
190 | | |
191 | 0 | names = sk_NAMES_value(namemap->numnames, number - 1); |
192 | 0 | if (names != NULL) |
193 | 0 | ret = sk_OPENSSL_STRING_value(names, idx); |
194 | |
|
195 | 0 | CRYPTO_THREAD_unlock(namemap->lock); |
196 | |
|
197 | 0 | return ret; |
198 | 0 | } |
199 | | |
200 | | /* This function is not thread safe, the namemap must be locked */ |
201 | | static int numname_insert(OSSL_NAMEMAP *namemap, int number, |
202 | | const char *name) |
203 | 39.2k | { |
204 | 39.2k | NAMES *names; |
205 | 39.2k | char *tmpname; |
206 | | |
207 | 39.2k | if (number > 0) { |
208 | 21.8k | names = sk_NAMES_value(namemap->numnames, number - 1); |
209 | 21.8k | if (!ossl_assert(names != NULL)) { |
210 | | /* cannot happen */ |
211 | 0 | return 0; |
212 | 0 | } |
213 | 21.8k | } else { |
214 | | /* a completely new entry */ |
215 | 17.4k | names = sk_OPENSSL_STRING_new_null(); |
216 | 17.4k | if (names == NULL) |
217 | 0 | return 0; |
218 | 17.4k | } |
219 | | |
220 | 39.2k | if ((tmpname = OPENSSL_strdup(name)) == NULL) |
221 | 0 | goto err; |
222 | | |
223 | 39.2k | if (!sk_OPENSSL_STRING_push(names, tmpname)) |
224 | 0 | goto err; |
225 | 39.2k | tmpname = NULL; |
226 | | |
227 | 39.2k | if (number <= 0) { |
228 | 17.4k | if (!sk_NAMES_push(namemap->numnames, names)) |
229 | 0 | goto err; |
230 | 17.4k | number = sk_NAMES_num(namemap->numnames); |
231 | 17.4k | } |
232 | 39.2k | return number; |
233 | | |
234 | 0 | err: |
235 | 0 | if (number <= 0) |
236 | 0 | sk_OPENSSL_STRING_pop_free(names, name_string_free); |
237 | 0 | OPENSSL_free(tmpname); |
238 | 0 | return 0; |
239 | 39.2k | } |
240 | | |
241 | | /* This function is not thread safe, the namemap must be locked */ |
242 | | static int namemap_add_name(OSSL_NAMEMAP *namemap, int number, |
243 | | const char *name) |
244 | 25.3k | { |
245 | 25.3k | int ret; |
246 | 25.3k | HT_VALUE val = { 0 }; |
247 | 25.3k | NAMENUM_KEY key; |
248 | | |
249 | | /* If it already exists, we don't add it */ |
250 | 25.3k | if ((ret = ossl_namemap_name2num(namemap, name)) != 0) |
251 | 14.4k | return ret; |
252 | | |
253 | 10.9k | if ((number = numname_insert(namemap, number, name)) == 0) |
254 | 0 | return 0; |
255 | | |
256 | | /* Using tsan_store alone here is safe since we're under lock */ |
257 | 10.9k | tsan_store(&namemap->max_number, number); |
258 | | |
259 | 10.9k | HT_INIT_RAW_KEY(&key); |
260 | 10.9k | HT_COPY_RAW_KEY_CASE(TO_HT_KEY(&key), name, strlen(name)); |
261 | | |
262 | 10.9k | val.value = (void *)(intptr_t)number; |
263 | 10.9k | ret = ossl_ht_insert(namemap->namenum_ht, TO_HT_KEY(&key), &val, NULL); |
264 | 10.9k | if (ret <= 0) { |
265 | | /* |
266 | | * We either got an allocation failure (INTERNAL_ERROR), or |
267 | | * hit too many conflicts in the table (TOO_MANY_NAMES) |
268 | | */ |
269 | 0 | ERR_raise(ERR_LIB_CRYPTO, (ret < 0) ? CRYPTO_R_TOO_MANY_NAMES : ERR_R_INTERNAL_ERROR); |
270 | 0 | return 0; |
271 | 0 | } |
272 | 10.9k | return number; |
273 | 10.9k | } |
274 | | |
275 | | int ossl_namemap_add_name(OSSL_NAMEMAP *namemap, int number, |
276 | | const char *name) |
277 | 59.8k | { |
278 | 59.8k | int tmp_number; |
279 | | |
280 | 59.8k | #ifndef FIPS_MODULE |
281 | 59.8k | if (namemap == NULL) |
282 | 0 | namemap = ossl_namemap_stored(NULL); |
283 | 59.8k | #endif |
284 | | |
285 | 59.8k | if (name == NULL || *name == 0 || namemap == NULL) |
286 | 0 | return 0; |
287 | | |
288 | 59.8k | if (!CRYPTO_THREAD_write_lock(namemap->lock)) |
289 | 0 | return 0; |
290 | 59.8k | tmp_number = namemap_add_name(namemap, number, name); |
291 | 59.8k | CRYPTO_THREAD_unlock(namemap->lock); |
292 | 59.8k | return tmp_number; |
293 | 59.8k | } |
294 | | |
295 | | int ossl_namemap_add_names(OSSL_NAMEMAP *namemap, int number, |
296 | | const char *names, const char separator) |
297 | 23.8k | { |
298 | 23.8k | char *tmp, *p, *q, *endp; |
299 | | |
300 | | /* Check that we have a namemap */ |
301 | 23.8k | if (!ossl_assert(namemap != NULL)) { |
302 | 0 | ERR_raise(ERR_LIB_CRYPTO, ERR_R_PASSED_NULL_PARAMETER); |
303 | 0 | return 0; |
304 | 0 | } |
305 | | |
306 | 23.8k | if ((tmp = OPENSSL_strdup(names)) == NULL) |
307 | 0 | return 0; |
308 | | |
309 | 23.8k | if (!CRYPTO_THREAD_write_lock(namemap->lock)) { |
310 | 0 | OPENSSL_free(tmp); |
311 | 0 | return 0; |
312 | 0 | } |
313 | | /* |
314 | | * Check that no name is an empty string, and that all names have at |
315 | | * most one numeric identity together. |
316 | | */ |
317 | 68.9k | for (p = tmp; *p != '\0'; p = q) { |
318 | 45.1k | int this_number; |
319 | 45.1k | size_t l; |
320 | | |
321 | 45.1k | if ((q = strchr(p, separator)) == NULL) { |
322 | 23.8k | l = strlen(p); /* offset to \0 */ |
323 | 23.8k | q = p + l; |
324 | 23.8k | } else { |
325 | 21.2k | l = q - p; /* offset to the next separator */ |
326 | 21.2k | *q++ = '\0'; |
327 | 21.2k | } |
328 | | |
329 | 45.1k | if (*p == '\0') { |
330 | 0 | ERR_raise(ERR_LIB_CRYPTO, CRYPTO_R_BAD_ALGORITHM_NAME); |
331 | 0 | number = 0; |
332 | 0 | goto end; |
333 | 0 | } |
334 | | |
335 | 45.1k | this_number = ossl_namemap_name2num(namemap, p); |
336 | | |
337 | 45.1k | if (number == 0) { |
338 | 33.5k | number = this_number; |
339 | 33.5k | } else if (this_number != 0 && this_number != number) { |
340 | 0 | ERR_raise_data(ERR_LIB_CRYPTO, CRYPTO_R_CONFLICTING_NAMES, |
341 | 0 | "\"%s\" has an existing different identity %d (from \"%s\")", |
342 | 0 | p, this_number, names); |
343 | 0 | number = 0; |
344 | 0 | goto end; |
345 | 0 | } |
346 | 45.1k | } |
347 | 23.8k | endp = p; |
348 | | |
349 | | /* Now that we have checked, register all names */ |
350 | 68.9k | for (p = tmp; p < endp; p = q) { |
351 | 45.1k | int this_number; |
352 | | |
353 | 45.1k | q = p + strlen(p) + 1; |
354 | | |
355 | 45.1k | this_number = namemap_add_name(namemap, number, p); |
356 | 45.1k | if (number == 0) { |
357 | 8.96k | number = this_number; |
358 | 36.1k | } else if (this_number != number) { |
359 | 0 | ERR_raise_data(ERR_LIB_CRYPTO, ERR_R_INTERNAL_ERROR, |
360 | 0 | "Got number %d when expecting %d", |
361 | 0 | this_number, number); |
362 | 0 | number = 0; |
363 | 0 | goto end; |
364 | 0 | } |
365 | 45.1k | } |
366 | | |
367 | 23.8k | end: |
368 | 23.8k | CRYPTO_THREAD_unlock(namemap->lock); |
369 | 23.8k | OPENSSL_free(tmp); |
370 | 23.8k | return number; |
371 | 23.8k | } |
372 | | |
373 | | /*- |
374 | | * Pre-population |
375 | | * ============== |
376 | | */ |
377 | | |
378 | | #ifndef FIPS_MODULE |
379 | | #include <openssl/evp.h> |
380 | | |
381 | | /* Creates an initial namemap with names found in the legacy method db */ |
382 | | static void get_legacy_evp_names(int base_nid, int nid, const char *pem_name, |
383 | | void *arg) |
384 | 25.5k | { |
385 | 25.5k | int num = 0; |
386 | 25.5k | ASN1_OBJECT *obj; |
387 | | |
388 | 25.5k | if (base_nid != NID_undef) { |
389 | 416 | num = ossl_namemap_add_name(arg, num, OBJ_nid2sn(base_nid)); |
390 | 416 | num = ossl_namemap_add_name(arg, num, OBJ_nid2ln(base_nid)); |
391 | 416 | } |
392 | | |
393 | 25.5k | if (nid != NID_undef) { |
394 | 20.7k | num = ossl_namemap_add_name(arg, num, OBJ_nid2sn(nid)); |
395 | 20.7k | num = ossl_namemap_add_name(arg, num, OBJ_nid2ln(nid)); |
396 | 20.7k | if ((obj = OBJ_nid2obj(nid)) != NULL) { |
397 | 20.7k | char txtoid[OSSL_MAX_NAME_SIZE]; |
398 | | |
399 | 20.7k | if (OBJ_obj2txt(txtoid, sizeof(txtoid), obj, 1) > 0) |
400 | 20.6k | num = ossl_namemap_add_name(arg, num, txtoid); |
401 | 20.7k | } |
402 | 20.7k | } |
403 | 25.5k | if (pem_name != NULL) |
404 | 1.08k | num = ossl_namemap_add_name(arg, num, pem_name); |
405 | 25.5k | } |
406 | | |
407 | | static void get_legacy_cipher_names(const OBJ_NAME *on, void *arg) |
408 | 18.0k | { |
409 | 18.0k | const EVP_CIPHER *cipher = (void *)OBJ_NAME_get(on->name, on->type); |
410 | | |
411 | 18.0k | if (cipher != NULL) |
412 | 18.0k | get_legacy_evp_names(NID_undef, EVP_CIPHER_get_type(cipher), NULL, arg); |
413 | 18.0k | } |
414 | | |
415 | | static void get_legacy_md_names(const OBJ_NAME *on, void *arg) |
416 | 5.84k | { |
417 | 5.84k | const EVP_MD *md = (void *)OBJ_NAME_get(on->name, on->type); |
418 | | |
419 | 5.84k | if (md != NULL) |
420 | 5.84k | get_legacy_evp_names(NID_undef, EVP_MD_get_type(md), NULL, arg); |
421 | 5.84k | } |
422 | | |
423 | | #ifndef OPENSSL_NO_DEPRECATED_3_6 |
424 | | static void get_legacy_pkey_meth_names(const EVP_PKEY_ASN1_METHOD *ameth, |
425 | | void *arg) |
426 | 1.50k | { |
427 | 1.50k | int nid = 0, base_nid = 0, flags = 0; |
428 | 1.50k | const char *pem_name = NULL; |
429 | | |
430 | 1.50k | evp_pkey_asn1_get0_info(&nid, &base_nid, &flags, NULL, &pem_name, ameth); |
431 | 1.50k | if (nid != NID_undef) { |
432 | 1.50k | if ((flags & ASN1_PKEY_ALIAS) == 0) { |
433 | 990 | switch (nid) { |
434 | 99 | case EVP_PKEY_DHX: |
435 | | /* We know that the name "DHX" is used too */ |
436 | 99 | get_legacy_evp_names(0, nid, "DHX", arg); |
437 | | /* FALLTHRU */ |
438 | 990 | default: |
439 | 990 | get_legacy_evp_names(0, nid, pem_name, arg); |
440 | 990 | } |
441 | 990 | } else { |
442 | | /* |
443 | | * Treat aliases carefully, some of them are undesirable, or |
444 | | * should not be treated as such for providers. |
445 | | */ |
446 | | |
447 | 515 | switch (nid) { |
448 | 99 | case EVP_PKEY_SM2: |
449 | | /* |
450 | | * SM2 is a separate keytype with providers, not an alias for |
451 | | * EC. |
452 | | */ |
453 | 99 | get_legacy_evp_names(0, nid, pem_name, arg); |
454 | 99 | break; |
455 | 416 | default: |
456 | | /* Use the short name of the base nid as the common reference */ |
457 | 416 | get_legacy_evp_names(base_nid, nid, pem_name, arg); |
458 | 515 | } |
459 | 515 | } |
460 | 1.50k | } |
461 | 1.50k | } |
462 | | #endif /* OPENSSL_NO_DEPRECATED_3_6 */ |
463 | | #endif |
464 | | |
465 | | /*- |
466 | | * Constructors / destructors |
467 | | * ========================== |
468 | | */ |
469 | | |
470 | | OSSL_NAMEMAP *ossl_namemap_stored(OSSL_LIB_CTX *libctx) |
471 | 17.2M | { |
472 | 17.2M | #ifndef FIPS_MODULE |
473 | 17.2M | int nms; |
474 | 17.2M | #endif |
475 | 17.2M | OSSL_NAMEMAP *namemap = ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_NAMEMAP_INDEX); |
476 | | |
477 | 17.2M | if (namemap == NULL) |
478 | 0 | return NULL; |
479 | | |
480 | 17.2M | #ifndef FIPS_MODULE |
481 | 17.2M | nms = ossl_namemap_empty(namemap); |
482 | 17.2M | if (nms < 0) { |
483 | | /* |
484 | | * Could not get lock to make the count, so maybe internal objects |
485 | | * weren't added. This seems safest. |
486 | | */ |
487 | 0 | return NULL; |
488 | 0 | } |
489 | 17.2M | if (nms == 1) { |
490 | 42 | int num; |
491 | | |
492 | | /* Before pilfering, we make sure the legacy database is populated */ |
493 | 42 | OPENSSL_init_crypto(OPENSSL_INIT_ADD_ALL_CIPHERS |
494 | 42 | | OPENSSL_INIT_ADD_ALL_DIGESTS, |
495 | 42 | NULL); |
496 | | |
497 | 42 | OBJ_NAME_do_all(OBJ_NAME_TYPE_CIPHER_METH, |
498 | 42 | get_legacy_cipher_names, namemap); |
499 | 42 | OBJ_NAME_do_all(OBJ_NAME_TYPE_MD_METH, |
500 | 42 | get_legacy_md_names, namemap); |
501 | | |
502 | | /* |
503 | | * Some old providers (<= 3.5) may not have the rsassaPSS alias which |
504 | | * may cause problems in some cases. We add it manually here |
505 | | */ |
506 | 42 | num = ossl_namemap_add_name(namemap, 0, "RSA-PSS"); |
507 | 42 | if (num != 0) { |
508 | 42 | ossl_namemap_add_name(namemap, num, "rsassaPss"); |
509 | | /* Add other RSA-PSS aliases as well */ |
510 | 42 | ossl_namemap_add_name(namemap, num, "RSASSA-PSS"); |
511 | 42 | ossl_namemap_add_name(namemap, num, "1.2.840.113549.1.1.10"); |
512 | 42 | } |
513 | 42 | #ifndef OPENSSL_NO_DEPRECATED_3_6 |
514 | 42 | { |
515 | 42 | int i, end; |
516 | | |
517 | | /* We also pilfer data from the legacy EVP_PKEY_ASN1_METHODs */ |
518 | 672 | for (i = 0, end = evp_pkey_asn1_get_count(); i < end; i++) |
519 | 630 | get_legacy_pkey_meth_names(evp_pkey_asn1_get0(i), namemap); |
520 | 42 | } |
521 | 42 | #endif |
522 | 42 | } |
523 | 17.2M | #endif |
524 | | |
525 | 17.2M | return namemap; |
526 | 17.2M | } |
527 | | |
528 | | OSSL_NAMEMAP *ossl_namemap_new(OSSL_LIB_CTX *libctx) |
529 | 314 | { |
530 | 314 | OSSL_NAMEMAP *namemap; |
531 | 314 | HT_CONFIG htconf = { NULL, NULL, NULL, NAMEMAP_HT_BUCKETS, 1, 1, 0 }; |
532 | | |
533 | 314 | htconf.ctx = libctx; |
534 | | |
535 | 314 | if ((namemap = OPENSSL_zalloc(sizeof(*namemap))) == NULL) |
536 | 0 | goto err; |
537 | | |
538 | 314 | if ((namemap->lock = CRYPTO_THREAD_lock_new()) == NULL) |
539 | 0 | goto err; |
540 | | |
541 | 314 | if ((namemap->namenum_ht = ossl_ht_new(&htconf)) == NULL) |
542 | 0 | goto err; |
543 | | |
544 | 314 | if ((namemap->numnames = sk_NAMES_new_null()) == NULL) |
545 | 0 | goto err; |
546 | | |
547 | 314 | return namemap; |
548 | | |
549 | 0 | err: |
550 | 0 | ossl_namemap_free(namemap); |
551 | 0 | return NULL; |
552 | 314 | } |
553 | | |
554 | | void ossl_namemap_free(OSSL_NAMEMAP *namemap) |
555 | 203 | { |
556 | 203 | if (namemap == NULL || namemap->stored) |
557 | 0 | return; |
558 | | |
559 | 203 | sk_NAMES_pop_free(namemap->numnames, names_free); |
560 | | |
561 | 203 | ossl_ht_free(namemap->namenum_ht); |
562 | | |
563 | 203 | CRYPTO_THREAD_lock_free(namemap->lock); |
564 | 203 | OPENSSL_free(namemap); |
565 | 203 | } |