kris
/
boringssl
1
0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
153 коммитов
12 Ветки
38 MiB
 
 
 
 
 
 
Дерево: 389110ae89
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из '389110ae89'
${ noResults }
boringssl/crypto/obj/obj.c

659 строки
16 KiB
Исходник Вина История 

  1. /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)

  2.  * All rights reserved.

  3.  *

  4.  * This package is an SSL implementation written

  5.  * by Eric Young (eay@cryptsoft.com).

  6.  * The implementation was written so as to conform with Netscapes SSL.

  7.  *

  8.  * This library is free for commercial and non-commercial use as long as

  9.  * the following conditions are aheared to.  The following conditions

  10.  * apply to all code found in this distribution, be it the RC4, RSA,

  11.  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation

  12.  * included with this distribution is covered by the same copyright terms

  13.  * except that the holder is Tim Hudson (tjh@cryptsoft.com).

  14.  *

  15.  * Copyright remains Eric Young's, and as such any Copyright notices in

  16.  * the code are not to be removed.

  17.  * If this package is used in a product, Eric Young should be given attribution

  18.  * as the author of the parts of the library used.

  19.  * This can be in the form of a textual message at program startup or

  20.  * in documentation (online or textual) provided with the package.

  21.  *

  22.  * Redistribution and use in source and binary forms, with or without

  23.  * modification, are permitted provided that the following conditions

  24.  * are met:

  25.  * 1. Redistributions of source code must retain the copyright

  26.  *    notice, this list of conditions and the following disclaimer.

  27.  * 2. Redistributions in binary form must reproduce the above copyright

  28.  *    notice, this list of conditions and the following disclaimer in the

  29.  *    documentation and/or other materials provided with the distribution.

  30.  * 3. All advertising materials mentioning features or use of this software

  31.  *    must display the following acknowledgement:

  32.  *    "This product includes cryptographic software written by

  33.  *     Eric Young (eay@cryptsoft.com)"

  34.  *    The word 'cryptographic' can be left out if the rouines from the library

  35.  *    being used are not cryptographic related :-).

  36.  * 4. If you include any Windows specific code (or a derivative thereof) from

  37.  *    the apps directory (application code) you must include an acknowledgement:

  38.  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"

  39.  *

  40.  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND

  41.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  42.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  43.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

  44.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

  45.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

  46.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  47.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

  48.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

  49.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

  50.  * SUCH DAMAGE.

  51.  *

  52.  * The licence and distribution terms for any publically available version or

  53.  * derivative of this code cannot be changed.  i.e. this code cannot simply be

  54.  * copied and put under another distribution licence

  55.  * [including the GNU Public Licence.] */

  56. 

  57. #include <openssl/obj.h>

  58. 

  59. #include <limits.h>

  60. 

  61. #include <openssl/asn1.h>

  62. #include <openssl/buf.h>

  63. #include <openssl/bytestring.h>

  64. #include <openssl/err.h>

  65. #include <openssl/lhash.h>

  66. #include <openssl/mem.h>

  67. #include <openssl/thread.h>

  68. 

  69. #include "obj_dat.h"

  70. 

  71. /* These globals are protected by CRYPTO_LOCK_OBJ. */

  72. static LHASH_OF(ASN1_OBJECT) *global_added_by_data = NULL;

  73. static LHASH_OF(ASN1_OBJECT) *global_added_by_nid = NULL;

  74. static LHASH_OF(ASN1_OBJECT) *global_added_by_short_name = NULL;

  75. static LHASH_OF(ASN1_OBJECT) *global_added_by_long_name = NULL;

  76. 

  77. static unsigned global_next_nid = NUM_NID;

  78. 

  79. static int obj_next_nid() {

  80.   int ret;

  81. 

  82.   CRYPTO_w_lock(CRYPTO_LOCK_OBJ);

  83.   ret = global_next_nid++;

  84.   CRYPTO_w_unlock(CRYPTO_LOCK_OBJ);

  85. 

  86.   return ret;

  87. }

  88. 

  89. ASN1_OBJECT *OBJ_dup(const ASN1_OBJECT *o) {

  90.   ASN1_OBJECT *r;

  91.   unsigned char *data = NULL;

  92.   char *sn = NULL, *ln = NULL;

  93. 

  94.   if (o == NULL) {

  95.     return NULL;

  96.   }

  97. 

  98.   if (!(o->flags & ASN1_OBJECT_FLAG_DYNAMIC)) {

  99.     /* TODO(fork): this is a little dangerous. */

  100.     return (ASN1_OBJECT *)o;

  101.   }

  102. 

  103.   r = ASN1_OBJECT_new();

  104.   if (r == NULL) {

  105.     OPENSSL_PUT_ERROR(OBJ, OBJ_dup, ERR_R_ASN1_LIB);

  106.     return NULL;

  107.   }

  108.   r->ln = r->sn = NULL;

  109. 

  110.   data = OPENSSL_malloc(o->length);

  111.   if (data == NULL) {

  112.     goto err;

  113.   }

  114.   if (o->data != NULL) {

  115.     memcpy(data, o->data, o->length);

  116.   }

  117. 

  118.   /* once data is attached to an object, it remains const */

  119.   r->data = data;

  120.   r->length = o->length;

  121.   r->nid = o->nid;

  122. 

  123.   if (o->ln != NULL) {

  124.     ln = OPENSSL_strdup(o->ln);

  125.     if (ln == NULL) {

  126.       goto err;

  127.     }

  128.   }

  129. 

  130.   if (o->sn != NULL) {

  131.     sn = OPENSSL_strdup(o->sn);

  132.     if (sn) {

  133.       goto err;

  134.     }

  135.   }

  136. 

  137.   r->sn = sn;

  138.   r->ln = ln;

  139. 

  140.   r->flags =

  141.       o->flags | (ASN1_OBJECT_FLAG_DYNAMIC | ASN1_OBJECT_FLAG_DYNAMIC_STRINGS |

  142.                   ASN1_OBJECT_FLAG_DYNAMIC_DATA);

  143.   return r;

  144. 

  145. err:

  146.   OPENSSL_PUT_ERROR(OBJ, OBJ_dup, ERR_R_MALLOC_FAILURE);

  147.   if (ln != NULL) {

  148.     OPENSSL_free(ln);

  149.   }

  150.   if (sn != NULL) {

  151.     OPENSSL_free(sn);

  152.   }

  153.   if (data != NULL) {

  154.     OPENSSL_free(data);

  155.   }

  156.   OPENSSL_free(r);

  157.   return NULL;

  158. }

  159. 

  160. int OBJ_cmp(const ASN1_OBJECT *a, const ASN1_OBJECT *b) {

  161.   int ret;

  162. 

  163.   ret = a->length - b->length;

  164.   if (ret) {

  165.     return ret;

  166.   }

  167.   return memcmp(a->data, b->data, a->length);

  168. }

  169. 

  170. /* nids_cmp is called to search the kNIDsInOIDOrder array. The |key| argument

  171.  * is an |ASN1_OBJECT|* that we're looking for and |element| is a pointer to an

  172.  * unsigned int in the array. */

  173. static int obj_cmp(const void *key, const void *element) {

  174.   int j;

  175.   unsigned nid = *((unsigned*) element);

  176.   const ASN1_OBJECT *a = key;

  177.   const ASN1_OBJECT *b = &kObjects[nid];

  178. 

  179.   j = a->length - b->length;

  180.   if (j) {

  181.     return j;

  182.   }

  183.   return memcmp(a->data, b->data, a->length);

  184. }

  185. 

  186. int OBJ_obj2nid(const ASN1_OBJECT *obj) {

  187.   const unsigned int *nid_ptr;

  188. 

  189.   if (obj == NULL) {

  190.     return NID_undef;

  191.   }

  192. 

  193.   if (obj->nid != 0) {

  194.     return obj->nid;

  195.   }

  196. 

  197.   CRYPTO_r_lock(CRYPTO_LOCK_OBJ);

  198.   if (global_added_by_data != NULL) {

  199.     ASN1_OBJECT *match;

  200. 

  201.     match = lh_ASN1_OBJECT_retrieve(global_added_by_data, obj);

  202.     if (match != NULL) {

  203.       CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  204.       return match->nid;

  205.     }

  206.   }

  207.   CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  208. 

  209.   nid_ptr = bsearch(obj, kNIDsInOIDOrder, NUM_OBJ, sizeof(unsigned), obj_cmp);

  210.   if (nid_ptr == NULL) {

  211.     return NID_undef;

  212.   }

  213. 

  214.   return kObjects[*nid_ptr].nid;

  215. }

  216. 

  217. int OBJ_cbs2nid(const CBS *cbs) {

  218.   ASN1_OBJECT obj;

  219.   memset(&obj, 0, sizeof(obj));

  220.   obj.data = CBS_data(cbs);

  221.   obj.length = CBS_len(cbs);

  222. 

  223.   return OBJ_obj2nid(&obj);

  224. }

  225. 

  226. /* short_name_cmp is called to search the kNIDsInShortNameOrder array. The

  227.  * |key| argument is name that we're looking for and |element| is a pointer to

  228.  * an unsigned int in the array. */

  229. static int short_name_cmp(const void *key, const void *element) {

  230.   const char *name = (const char *) key;

  231.   unsigned nid = *((unsigned*) element);

  232. 

  233.   return strcmp(name, kObjects[nid].sn);

  234. }

  235. 

  236. int OBJ_sn2nid(const char *short_name) {

  237.   const unsigned int *nid_ptr;

  238. 

  239.   CRYPTO_r_lock(CRYPTO_LOCK_OBJ);

  240.   if (global_added_by_short_name != NULL) {

  241.     ASN1_OBJECT *match, template;

  242. 

  243.     template.sn = short_name;

  244.     match = lh_ASN1_OBJECT_retrieve(global_added_by_short_name, &template);

  245.     if (match != NULL) {

  246.       CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  247.       return match->nid;

  248.     }

  249.   }

  250.   CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  251. 

  252.   nid_ptr = bsearch(short_name, kNIDsInShortNameOrder, NUM_SN, sizeof(unsigned), short_name_cmp);

  253.   if (nid_ptr == NULL) {

  254.     return NID_undef;

  255.   }

  256. 

  257.   return kObjects[*nid_ptr].nid;

  258. }

  259. 

  260. /* long_name_cmp is called to search the kNIDsInLongNameOrder array. The

  261.  * |key| argument is name that we're looking for and |element| is a pointer to

  262.  * an unsigned int in the array. */

  263. static int long_name_cmp(const void *key, const void *element) {

  264.   const char *name = (const char *) key;

  265.   unsigned nid = *((unsigned*) element);

  266. 

  267.   return strcmp(name, kObjects[nid].ln);

  268. }

  269. 

  270. int OBJ_ln2nid(const char *long_name) {

  271.   const unsigned int *nid_ptr;

  272. 

  273.   CRYPTO_r_lock(CRYPTO_LOCK_OBJ);

  274.   if (global_added_by_long_name != NULL) {

  275.     ASN1_OBJECT *match, template;

  276. 

  277.     template.ln = long_name;

  278.     match = lh_ASN1_OBJECT_retrieve(global_added_by_long_name, &template);

  279.     if (match != NULL) {

  280.       CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  281.       return match->nid;

  282.     }

  283.   }

  284.   CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  285. 

  286.   nid_ptr = bsearch(long_name, kNIDsInLongNameOrder, NUM_LN, sizeof(unsigned), long_name_cmp);

  287.   if (nid_ptr == NULL) {

  288.     return NID_undef;

  289.   }

  290. 

  291.   return kObjects[*nid_ptr].nid;

  292. }

  293. 

  294. int OBJ_txt2nid(const char *s) {

  295.   ASN1_OBJECT *obj;

  296.   int nid;

  297. 

  298.   obj = OBJ_txt2obj(s, 0 /* search names */);

  299.   nid = OBJ_obj2nid(obj);

  300.   ASN1_OBJECT_free(obj);

  301.   return nid;

  302. }

  303. 

  304. const ASN1_OBJECT *OBJ_nid2obj(int nid) {

  305.   if (nid >= 0 && nid < NUM_NID) {

  306.     if (nid != NID_undef && kObjects[nid].nid == NID_undef) {

  307.       goto err;

  308.     }

  309.     return &kObjects[nid];

  310.   }

  311. 

  312.   CRYPTO_r_lock(CRYPTO_LOCK_OBJ);

  313.   if (global_added_by_nid != NULL) {

  314.     ASN1_OBJECT *match, template;

  315. 

  316.     template.nid = nid;

  317.     match = lh_ASN1_OBJECT_retrieve(global_added_by_nid, &template);

  318.     if (match != NULL) {

  319.       CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  320.       return match;

  321.     }

  322.   }

  323.   CRYPTO_r_unlock(CRYPTO_LOCK_OBJ);

  324. 

  325. err:

  326.   OPENSSL_PUT_ERROR(OBJ, OBJ_nid2obj, OBJ_R_UNKNOWN_NID);

  327.   return NULL;

  328. }

  329. 

  330. const char *OBJ_nid2sn(int nid) {

  331.   const ASN1_OBJECT *obj = OBJ_nid2obj(nid);

  332.   if (obj == NULL) {

  333.     return NULL;

  334.   }

  335. 

  336.   return obj->sn;

  337. }

  338. 

  339. const char *OBJ_nid2ln(int nid) {

  340.   const ASN1_OBJECT *obj = OBJ_nid2obj(nid);

  341.   if (obj == NULL) {

  342.     return NULL;

  343.   }

  344. 

  345.   return obj->ln;

  346. }

  347. 

  348. ASN1_OBJECT *OBJ_txt2obj(const char *s, int dont_search_names) {

  349.   int nid = NID_undef;

  350.   ASN1_OBJECT *op = NULL;

  351.   unsigned char *buf;

  352.   unsigned char *p;

  353.   const unsigned char *bufp;

  354.   int contents_len, total_len;

  355. 

  356.   if (!dont_search_names) {

  357.     nid = OBJ_sn2nid(s);

  358.     if (nid == NID_undef) {

  359.       nid = OBJ_ln2nid(s);

  360.     }

  361. 

  362.     if (nid != NID_undef) {

  363.       return (ASN1_OBJECT*) OBJ_nid2obj(nid);

  364.     }

  365.   }

  366. 

  367.   /* Work out size of content octets */

  368.   contents_len = a2d_ASN1_OBJECT(NULL, 0, s, -1);

  369.   if (contents_len <= 0) {

  370.     return NULL;

  371.   }

  372.   /* Work out total size */

  373.   total_len = ASN1_object_size(0, contents_len, V_ASN1_OBJECT);

  374. 

  375.   buf = OPENSSL_malloc(total_len);

  376.   if (buf == NULL) {

  377.     OPENSSL_PUT_ERROR(OBJ, OBJ_txt2obj, ERR_R_MALLOC_FAILURE);

  378.     return NULL;

  379.   }

  380. 

  381.   p = buf;

  382.   /* Write out tag+length */

  383.   ASN1_put_object(&p, 0, contents_len, V_ASN1_OBJECT, V_ASN1_UNIVERSAL);

  384.   /* Write out contents */

  385.   a2d_ASN1_OBJECT(p, contents_len, s, -1);

  386. 

  387.   bufp = buf;

  388.   op = d2i_ASN1_OBJECT(NULL, &bufp, total_len);

  389.   OPENSSL_free(buf);

  390. 

  391.   return op;

  392. }

  393. 

  394. int OBJ_obj2txt(char *out, int out_len, const ASN1_OBJECT *obj, int dont_return_name) {

  395.   int i, n = 0, len, nid, first, use_bn;

  396.   BIGNUM *bl;

  397.   unsigned long l;

  398.   const unsigned char *p;

  399.   char tbuf[DECIMAL_SIZE(i) + DECIMAL_SIZE(l) + 2];

  400. 

  401.   if (out && out_len > 0) {

  402.     out[0] = 0;

  403.   }

  404. 

  405.   if (obj == NULL || obj->data == NULL) {

  406.     return 0;

  407.   }

  408. 

  409.   if (!dont_return_name && (nid = OBJ_obj2nid(obj)) != NID_undef) {

  410.     const char *s;

  411.     s = OBJ_nid2ln(nid);

  412.     if (s == NULL) {

  413.       s = OBJ_nid2sn(nid);

  414.     }

  415.     if (s) {

  416.       if (out) {

  417.         BUF_strlcpy(out, s, out_len);

  418.       }

  419.       return strlen(s);

  420.     }

  421.   }

  422. 

  423.   len = obj->length;

  424.   p = obj->data;

  425. 

  426.   first = 1;

  427.   bl = NULL;

  428. 

  429.   while (len > 0) {

  430.     l = 0;

  431.     use_bn = 0;

  432.     for (;;) {

  433.       unsigned char c = *p++;

  434.       len--;

  435.       if (len == 0 && (c & 0x80)) {

  436.         goto err;

  437.       }

  438.       if (use_bn) {

  439.         if (!BN_add_word(bl, c & 0x7f)) {

  440.           goto err;

  441.         }

  442.       } else {

  443.         l |= c & 0x7f;

  444.       }

  445.       if (!(c & 0x80)) {

  446.         break;

  447.       }

  448.       if (!use_bn && (l > (ULONG_MAX >> 7L))) {

  449.         if (!bl && !(bl = BN_new())) {

  450.           goto err;

  451.         }

  452.         if (!BN_set_word(bl, l)) {

  453.           goto err;

  454.         }

  455.         use_bn = 1;

  456.       }

  457.       if (use_bn) {

  458.         if (!BN_lshift(bl, bl, 7)) {

  459.           goto err;

  460.         }

  461.       } else {

  462.         l <<= 7L;

  463.       }

  464.     }

  465. 

  466.     if (first) {

  467.       first = 0;

  468.       if (l >= 80) {

  469.         i = 2;

  470.         if (use_bn) {

  471.           if (!BN_sub_word(bl, 80)) {

  472.             goto err;

  473.           }

  474.         } else {

  475.           l -= 80;

  476.         }

  477.       } else {

  478.         i = (int)(l / 40);

  479.         l -= (long)(i * 40);

  480.       }

  481.       if (out && out_len > 1) {

  482.         *out++ = i + '0';

  483.         *out = '0';

  484.         out_len--;

  485.       }

  486.       n++;

  487.     }

  488. 

  489.     if (use_bn) {

  490.       char *bndec;

  491.       bndec = BN_bn2dec(bl);

  492.       if (!bndec) {

  493.         goto err;

  494.       }

  495.       i = strlen(bndec);

  496.       if (out) {

  497.         if (out_len > 1) {

  498.           *out++ = '.';

  499.           *out = 0;

  500.           out_len--;

  501.         }

  502.         BUF_strlcpy(out, bndec, out_len);

  503.         if (i > out_len) {

  504.           out += out_len;

  505.           out_len = 0;

  506.         } else {

  507.           out += i;

  508.           out_len -= i;

  509.         }

  510.       }

  511.       n++;

  512.       n += i;

  513.       OPENSSL_free(bndec);

  514.     } else {

  515.       BIO_snprintf(tbuf, sizeof(tbuf), ".%lu", l);

  516.       i = strlen(tbuf);

  517.       if (out && out_len > 0) {

  518.         BUF_strlcpy(out, tbuf, out_len);

  519.         if (i > out_len) {

  520.           out += out_len;

  521.           out_len = 0;

  522.         } else {

  523.           out += i;

  524.           out_len -= i;

  525.         }

  526.       }

  527.       n += i;

  528.     }

  529.   }

  530. 

  531.   if (bl) {

  532.     BN_free(bl);

  533.   }

  534.   return n;

  535. 

  536. err:

  537.   if (bl) {

  538.     BN_free(bl);

  539.   }

  540.   return -1;

  541. }

  542. 

  543. static uint32_t hash_nid(const ASN1_OBJECT *obj) {

  544.   return obj->nid;

  545. }

  546. 

  547. static int cmp_nid(const ASN1_OBJECT *a, const ASN1_OBJECT *b) {

  548.   return a->nid - b->nid;

  549. }

  550. 

  551. static uint32_t hash_data(const ASN1_OBJECT *obj) {

  552.   return OPENSSL_hash32(obj->data, obj->length);

  553. }

  554. 

  555. static int cmp_data(const ASN1_OBJECT *a, const ASN1_OBJECT *b) {

  556.   int i = a->length - b->length;

  557.   if (i) {

  558.     return i;

  559.   }

  560.   return memcmp(a->data, b->data, a->length);

  561. }

  562. 

  563. static uint32_t hash_short_name(const ASN1_OBJECT *obj) {

  564.   return lh_strhash(obj->sn);

  565. }

  566. 

  567. static int cmp_short_name(const ASN1_OBJECT *a, const ASN1_OBJECT *b) {

  568.   return strcmp(a->sn, b->sn);

  569. }

  570. 

  571. static uint32_t hash_long_name(const ASN1_OBJECT *obj) {

  572.   return lh_strhash(obj->ln);

  573. }

  574. 

  575. static int cmp_long_name(const ASN1_OBJECT *a, const ASN1_OBJECT *b) {

  576.   return strcmp(a->ln, b->ln);

  577. }

  578. 

  579. /* obj_add_object inserts |obj| into the various global hashes for run-time

  580.  * added objects. It returns one on success or zero otherwise. */

  581. static int obj_add_object(ASN1_OBJECT *obj) {

  582.   int ok;

  583.   ASN1_OBJECT *old_object;

  584. 

  585.   obj->flags &= ~(ASN1_OBJECT_FLAG_DYNAMIC | ASN1_OBJECT_FLAG_DYNAMIC_STRINGS |

  586.                   ASN1_OBJECT_FLAG_DYNAMIC_DATA);

  587. 

  588.   CRYPTO_w_lock(CRYPTO_LOCK_OBJ);

  589.   if (global_added_by_nid == NULL) {

  590.     global_added_by_nid = lh_ASN1_OBJECT_new(hash_nid, cmp_nid);

  591.     global_added_by_data = lh_ASN1_OBJECT_new(hash_data, cmp_data);

  592.     global_added_by_short_name = lh_ASN1_OBJECT_new(hash_short_name, cmp_short_name);

  593.     global_added_by_long_name = lh_ASN1_OBJECT_new(hash_long_name, cmp_long_name);

  594.   }

  595. 

  596.   /* We don't pay attention to |old_object| (which contains any previous object

  597.    * that was evicted from the hashes) because we don't have a reference count

  598.    * on ASN1_OBJECT values. Also, we should never have duplicates nids and so

  599.    * should always have objects in |global_added_by_nid|. */

  600. 

  601.   ok = lh_ASN1_OBJECT_insert(global_added_by_nid, &old_object, obj);

  602.   if (obj->length != 0 && obj->data != NULL) {

  603.     ok &= lh_ASN1_OBJECT_insert(global_added_by_data, &old_object, obj);

  604.   }

  605.   if (obj->sn != NULL) {

  606.     ok &= lh_ASN1_OBJECT_insert(global_added_by_short_name, &old_object, obj);

  607.   }

  608.   if (obj->ln != NULL) {

  609.     ok &= lh_ASN1_OBJECT_insert(global_added_by_long_name, &old_object, obj);

  610.   }

  611.   CRYPTO_w_unlock(CRYPTO_LOCK_OBJ);

  612. 

  613.   return ok;

  614. }

  615. 

  616. int OBJ_create(const char *oid, const char *short_name, const char *long_name) {

  617.   int ret = NID_undef;

  618.   ASN1_OBJECT *op = NULL;

  619.   unsigned char *buf = NULL;

  620.   int len;

  621. 

  622.   len = a2d_ASN1_OBJECT(NULL, 0, oid, -1);

  623.   if (len <= 0) {

  624.     goto err;

  625.   }

  626. 

  627.   buf = OPENSSL_malloc(len);

  628.   if (buf == NULL) {

  629.     OPENSSL_PUT_ERROR(OBJ, OBJ_create, ERR_R_MALLOC_FAILURE);

  630.     goto err;

  631.   }

  632. 

  633.   len = a2d_ASN1_OBJECT(buf, len, oid, -1);

  634.   if (len == 0) {

  635.     goto err;

  636.   }

  637. 

  638.   op = (ASN1_OBJECT *)ASN1_OBJECT_create(obj_next_nid(), buf, len, short_name,

  639.                                          long_name);

  640.   if (op == NULL) {

  641.     goto err;

  642.   }

  643. 

  644.   if (obj_add_object(op)) {

  645.     ret = op->nid;

  646.   }

  647.   op = NULL;

  648. 

  649. err:

  650.   if (op != NULL) {

  651.     ASN1_OBJECT_free(op);

  652.   }

  653.   if (buf != NULL) {

  654.     OPENSSL_free(buf);

  655.   }

  656. 

  657.   return ret;

  658. }