1*5697Smcpowers /* ***** BEGIN LICENSE BLOCK *****
2*5697Smcpowers * Version: MPL 1.1/GPL 2.0/LGPL 2.1
3*5697Smcpowers *
4*5697Smcpowers * The contents of this file are subject to the Mozilla Public License Version
5*5697Smcpowers * 1.1 (the "License"); you may not use this file except in compliance with
6*5697Smcpowers * the License. You may obtain a copy of the License at
7*5697Smcpowers * http://www.mozilla.org/MPL/
8*5697Smcpowers *
9*5697Smcpowers * Software distributed under the License is distributed on an "AS IS" basis,
10*5697Smcpowers * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
11*5697Smcpowers * for the specific language governing rights and limitations under the
12*5697Smcpowers * License.
13*5697Smcpowers *
14*5697Smcpowers * The Original Code is the Netscape security libraries.
15*5697Smcpowers *
16*5697Smcpowers * The Initial Developer of the Original Code is
17*5697Smcpowers * Netscape Communications Corporation.
18*5697Smcpowers * Portions created by the Initial Developer are Copyright (C) 1994-2000
19*5697Smcpowers * the Initial Developer. All Rights Reserved.
20*5697Smcpowers *
21*5697Smcpowers * Contributor(s):
22*5697Smcpowers * Dr Vipul Gupta <vipul.gupta@sun.com>, Sun Microsystems Laboratories
23*5697Smcpowers *
24*5697Smcpowers * Alternatively, the contents of this file may be used under the terms of
25*5697Smcpowers * either the GNU General Public License Version 2 or later (the "GPL"), or
26*5697Smcpowers * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
27*5697Smcpowers * in which case the provisions of the GPL or the LGPL are applicable instead
28*5697Smcpowers * of those above. If you wish to allow use of your version of this file only
29*5697Smcpowers * under the terms of either the GPL or the LGPL, and not to allow others to
30*5697Smcpowers * use your version of this file under the terms of the MPL, indicate your
31*5697Smcpowers * decision by deleting the provisions above and replace them with the notice
32*5697Smcpowers * and other provisions required by the GPL or the LGPL. If you do not delete
33*5697Smcpowers * the provisions above, a recipient may use your version of this file under
34*5697Smcpowers * the terms of any one of the MPL, the GPL or the LGPL.
35*5697Smcpowers *
36*5697Smcpowers * ***** END LICENSE BLOCK ***** */
37*5697Smcpowers /*
38*5697Smcpowers * Copyright 2007 Sun Microsystems, Inc. All rights reserved.
39*5697Smcpowers * Use is subject to license terms.
40*5697Smcpowers *
41*5697Smcpowers * Sun elects to use this software under the MPL license.
42*5697Smcpowers */
43*5697Smcpowers
44*5697Smcpowers #pragma ident "%Z%%M% %I% %E% SMI"
45*5697Smcpowers
46*5697Smcpowers #include <sys/types.h>
47*5697Smcpowers #include <sys/systm.h>
48*5697Smcpowers #include <sys/param.h>
49*5697Smcpowers #ifdef _KERNEL
50*5697Smcpowers #include <sys/kmem.h>
51*5697Smcpowers #else
52*5697Smcpowers #include <string.h>
53*5697Smcpowers #endif
54*5697Smcpowers #include "ec.h"
55*5697Smcpowers #include "ecl-curve.h"
56*5697Smcpowers #include "ecc_impl.h"
57*5697Smcpowers #include "secoidt.h"
58*5697Smcpowers
59*5697Smcpowers #define CERTICOM_OID 0x2b, 0x81, 0x04
60*5697Smcpowers #define SECG_OID CERTICOM_OID, 0x00
61*5697Smcpowers
62*5697Smcpowers #define ANSI_X962_OID 0x2a, 0x86, 0x48, 0xce, 0x3d
63*5697Smcpowers #define ANSI_X962_CURVE_OID ANSI_X962_OID, 0x03
64*5697Smcpowers #define ANSI_X962_GF2m_OID ANSI_X962_CURVE_OID, 0x00
65*5697Smcpowers #define ANSI_X962_GFp_OID ANSI_X962_CURVE_OID, 0x01
66*5697Smcpowers
67*5697Smcpowers #define CONST_OID static const unsigned char
68*5697Smcpowers
69*5697Smcpowers /* ANSI X9.62 prime curve OIDs */
70*5697Smcpowers /* NOTE: prime192v1 is the same as secp192r1, prime256v1 is the
71*5697Smcpowers * same as secp256r1
72*5697Smcpowers */
73*5697Smcpowers CONST_OID ansiX962prime192v1[] = { ANSI_X962_GFp_OID, 0x01 };
74*5697Smcpowers CONST_OID ansiX962prime192v2[] = { ANSI_X962_GFp_OID, 0x02 };
75*5697Smcpowers CONST_OID ansiX962prime192v3[] = { ANSI_X962_GFp_OID, 0x03 };
76*5697Smcpowers CONST_OID ansiX962prime239v1[] = { ANSI_X962_GFp_OID, 0x04 };
77*5697Smcpowers CONST_OID ansiX962prime239v2[] = { ANSI_X962_GFp_OID, 0x05 };
78*5697Smcpowers CONST_OID ansiX962prime239v3[] = { ANSI_X962_GFp_OID, 0x06 };
79*5697Smcpowers CONST_OID ansiX962prime256v1[] = { ANSI_X962_GFp_OID, 0x07 };
80*5697Smcpowers
81*5697Smcpowers /* SECG prime curve OIDs */
82*5697Smcpowers CONST_OID secgECsecp112r1[] = { SECG_OID, 0x06 };
83*5697Smcpowers CONST_OID secgECsecp112r2[] = { SECG_OID, 0x07 };
84*5697Smcpowers CONST_OID secgECsecp128r1[] = { SECG_OID, 0x1c };
85*5697Smcpowers CONST_OID secgECsecp128r2[] = { SECG_OID, 0x1d };
86*5697Smcpowers CONST_OID secgECsecp160k1[] = { SECG_OID, 0x09 };
87*5697Smcpowers CONST_OID secgECsecp160r1[] = { SECG_OID, 0x08 };
88*5697Smcpowers CONST_OID secgECsecp160r2[] = { SECG_OID, 0x1e };
89*5697Smcpowers CONST_OID secgECsecp192k1[] = { SECG_OID, 0x1f };
90*5697Smcpowers CONST_OID secgECsecp224k1[] = { SECG_OID, 0x20 };
91*5697Smcpowers CONST_OID secgECsecp224r1[] = { SECG_OID, 0x21 };
92*5697Smcpowers CONST_OID secgECsecp256k1[] = { SECG_OID, 0x0a };
93*5697Smcpowers CONST_OID secgECsecp384r1[] = { SECG_OID, 0x22 };
94*5697Smcpowers CONST_OID secgECsecp521r1[] = { SECG_OID, 0x23 };
95*5697Smcpowers
96*5697Smcpowers /* SECG characterisitic two curve OIDs */
97*5697Smcpowers CONST_OID secgECsect113r1[] = {SECG_OID, 0x04 };
98*5697Smcpowers CONST_OID secgECsect113r2[] = {SECG_OID, 0x05 };
99*5697Smcpowers CONST_OID secgECsect131r1[] = {SECG_OID, 0x16 };
100*5697Smcpowers CONST_OID secgECsect131r2[] = {SECG_OID, 0x17 };
101*5697Smcpowers CONST_OID secgECsect163k1[] = {SECG_OID, 0x01 };
102*5697Smcpowers CONST_OID secgECsect163r1[] = {SECG_OID, 0x02 };
103*5697Smcpowers CONST_OID secgECsect163r2[] = {SECG_OID, 0x0f };
104*5697Smcpowers CONST_OID secgECsect193r1[] = {SECG_OID, 0x18 };
105*5697Smcpowers CONST_OID secgECsect193r2[] = {SECG_OID, 0x19 };
106*5697Smcpowers CONST_OID secgECsect233k1[] = {SECG_OID, 0x1a };
107*5697Smcpowers CONST_OID secgECsect233r1[] = {SECG_OID, 0x1b };
108*5697Smcpowers CONST_OID secgECsect239k1[] = {SECG_OID, 0x03 };
109*5697Smcpowers CONST_OID secgECsect283k1[] = {SECG_OID, 0x10 };
110*5697Smcpowers CONST_OID secgECsect283r1[] = {SECG_OID, 0x11 };
111*5697Smcpowers CONST_OID secgECsect409k1[] = {SECG_OID, 0x24 };
112*5697Smcpowers CONST_OID secgECsect409r1[] = {SECG_OID, 0x25 };
113*5697Smcpowers CONST_OID secgECsect571k1[] = {SECG_OID, 0x26 };
114*5697Smcpowers CONST_OID secgECsect571r1[] = {SECG_OID, 0x27 };
115*5697Smcpowers
116*5697Smcpowers /* ANSI X9.62 characteristic two curve OIDs */
117*5697Smcpowers CONST_OID ansiX962c2pnb163v1[] = { ANSI_X962_GF2m_OID, 0x01 };
118*5697Smcpowers CONST_OID ansiX962c2pnb163v2[] = { ANSI_X962_GF2m_OID, 0x02 };
119*5697Smcpowers CONST_OID ansiX962c2pnb163v3[] = { ANSI_X962_GF2m_OID, 0x03 };
120*5697Smcpowers CONST_OID ansiX962c2pnb176v1[] = { ANSI_X962_GF2m_OID, 0x04 };
121*5697Smcpowers CONST_OID ansiX962c2tnb191v1[] = { ANSI_X962_GF2m_OID, 0x05 };
122*5697Smcpowers CONST_OID ansiX962c2tnb191v2[] = { ANSI_X962_GF2m_OID, 0x06 };
123*5697Smcpowers CONST_OID ansiX962c2tnb191v3[] = { ANSI_X962_GF2m_OID, 0x07 };
124*5697Smcpowers CONST_OID ansiX962c2onb191v4[] = { ANSI_X962_GF2m_OID, 0x08 };
125*5697Smcpowers CONST_OID ansiX962c2onb191v5[] = { ANSI_X962_GF2m_OID, 0x09 };
126*5697Smcpowers CONST_OID ansiX962c2pnb208w1[] = { ANSI_X962_GF2m_OID, 0x0a };
127*5697Smcpowers CONST_OID ansiX962c2tnb239v1[] = { ANSI_X962_GF2m_OID, 0x0b };
128*5697Smcpowers CONST_OID ansiX962c2tnb239v2[] = { ANSI_X962_GF2m_OID, 0x0c };
129*5697Smcpowers CONST_OID ansiX962c2tnb239v3[] = { ANSI_X962_GF2m_OID, 0x0d };
130*5697Smcpowers CONST_OID ansiX962c2onb239v4[] = { ANSI_X962_GF2m_OID, 0x0e };
131*5697Smcpowers CONST_OID ansiX962c2onb239v5[] = { ANSI_X962_GF2m_OID, 0x0f };
132*5697Smcpowers CONST_OID ansiX962c2pnb272w1[] = { ANSI_X962_GF2m_OID, 0x10 };
133*5697Smcpowers CONST_OID ansiX962c2pnb304w1[] = { ANSI_X962_GF2m_OID, 0x11 };
134*5697Smcpowers CONST_OID ansiX962c2tnb359v1[] = { ANSI_X962_GF2m_OID, 0x12 };
135*5697Smcpowers CONST_OID ansiX962c2pnb368w1[] = { ANSI_X962_GF2m_OID, 0x13 };
136*5697Smcpowers CONST_OID ansiX962c2tnb431r1[] = { ANSI_X962_GF2m_OID, 0x14 };
137*5697Smcpowers
138*5697Smcpowers #define OI(x) { siDEROID, (unsigned char *)x, sizeof x }
139*5697Smcpowers #ifndef SECOID_NO_STRINGS
140*5697Smcpowers #define OD(oid,tag,desc,mech,ext) { OI(oid), tag, desc, mech, ext }
141*5697Smcpowers #else
142*5697Smcpowers #define OD(oid,tag,desc,mech,ext) { OI(oid), tag, 0, mech, ext }
143*5697Smcpowers #endif
144*5697Smcpowers
145*5697Smcpowers #define CKM_INVALID_MECHANISM 0xffffffffUL
146*5697Smcpowers
147*5697Smcpowers /* XXX this is incorrect */
148*5697Smcpowers #define INVALID_CERT_EXTENSION 1
149*5697Smcpowers
150*5697Smcpowers #define CKM_ECDSA 0x00001041
151*5697Smcpowers #define CKM_ECDSA_SHA1 0x00001042
152*5697Smcpowers #define CKM_ECDH1_DERIVE 0x00001050
153*5697Smcpowers
154*5697Smcpowers static SECOidData ANSI_prime_oids[] = {
155*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
156*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
157*5697Smcpowers
158*5697Smcpowers OD( ansiX962prime192v1, ECCurve_NIST_P192,
159*5697Smcpowers "ANSI X9.62 elliptic curve prime192v1 (aka secp192r1, NIST P-192)",
160*5697Smcpowers CKM_INVALID_MECHANISM,
161*5697Smcpowers INVALID_CERT_EXTENSION ),
162*5697Smcpowers OD( ansiX962prime192v2, ECCurve_X9_62_PRIME_192V2,
163*5697Smcpowers "ANSI X9.62 elliptic curve prime192v2",
164*5697Smcpowers CKM_INVALID_MECHANISM,
165*5697Smcpowers INVALID_CERT_EXTENSION ),
166*5697Smcpowers OD( ansiX962prime192v3, ECCurve_X9_62_PRIME_192V3,
167*5697Smcpowers "ANSI X9.62 elliptic curve prime192v3",
168*5697Smcpowers CKM_INVALID_MECHANISM,
169*5697Smcpowers INVALID_CERT_EXTENSION ),
170*5697Smcpowers OD( ansiX962prime239v1, ECCurve_X9_62_PRIME_239V1,
171*5697Smcpowers "ANSI X9.62 elliptic curve prime239v1",
172*5697Smcpowers CKM_INVALID_MECHANISM,
173*5697Smcpowers INVALID_CERT_EXTENSION ),
174*5697Smcpowers OD( ansiX962prime239v2, ECCurve_X9_62_PRIME_239V2,
175*5697Smcpowers "ANSI X9.62 elliptic curve prime239v2",
176*5697Smcpowers CKM_INVALID_MECHANISM,
177*5697Smcpowers INVALID_CERT_EXTENSION ),
178*5697Smcpowers OD( ansiX962prime239v3, ECCurve_X9_62_PRIME_239V3,
179*5697Smcpowers "ANSI X9.62 elliptic curve prime239v3",
180*5697Smcpowers CKM_INVALID_MECHANISM,
181*5697Smcpowers INVALID_CERT_EXTENSION ),
182*5697Smcpowers OD( ansiX962prime256v1, ECCurve_NIST_P256,
183*5697Smcpowers "ANSI X9.62 elliptic curve prime256v1 (aka secp256r1, NIST P-256)",
184*5697Smcpowers CKM_INVALID_MECHANISM,
185*5697Smcpowers INVALID_CERT_EXTENSION )
186*5697Smcpowers };
187*5697Smcpowers
188*5697Smcpowers static SECOidData SECG_oids[] = {
189*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
190*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
191*5697Smcpowers
192*5697Smcpowers OD( secgECsect163k1, ECCurve_NIST_K163,
193*5697Smcpowers "SECG elliptic curve sect163k1 (aka NIST K-163)",
194*5697Smcpowers CKM_INVALID_MECHANISM,
195*5697Smcpowers INVALID_CERT_EXTENSION ),
196*5697Smcpowers OD( secgECsect163r1, ECCurve_SECG_CHAR2_163R1,
197*5697Smcpowers "SECG elliptic curve sect163r1",
198*5697Smcpowers CKM_INVALID_MECHANISM,
199*5697Smcpowers INVALID_CERT_EXTENSION ),
200*5697Smcpowers OD( secgECsect239k1, ECCurve_SECG_CHAR2_239K1,
201*5697Smcpowers "SECG elliptic curve sect239k1",
202*5697Smcpowers CKM_INVALID_MECHANISM,
203*5697Smcpowers INVALID_CERT_EXTENSION ),
204*5697Smcpowers OD( secgECsect113r1, ECCurve_SECG_CHAR2_113R1,
205*5697Smcpowers "SECG elliptic curve sect113r1",
206*5697Smcpowers CKM_INVALID_MECHANISM,
207*5697Smcpowers INVALID_CERT_EXTENSION ),
208*5697Smcpowers OD( secgECsect113r2, ECCurve_SECG_CHAR2_113R2,
209*5697Smcpowers "SECG elliptic curve sect113r2",
210*5697Smcpowers CKM_INVALID_MECHANISM,
211*5697Smcpowers INVALID_CERT_EXTENSION ),
212*5697Smcpowers OD( secgECsecp112r1, ECCurve_SECG_PRIME_112R1,
213*5697Smcpowers "SECG elliptic curve secp112r1",
214*5697Smcpowers CKM_INVALID_MECHANISM,
215*5697Smcpowers INVALID_CERT_EXTENSION ),
216*5697Smcpowers OD( secgECsecp112r2, ECCurve_SECG_PRIME_112R2,
217*5697Smcpowers "SECG elliptic curve secp112r2",
218*5697Smcpowers CKM_INVALID_MECHANISM,
219*5697Smcpowers INVALID_CERT_EXTENSION ),
220*5697Smcpowers OD( secgECsecp160r1, ECCurve_SECG_PRIME_160R1,
221*5697Smcpowers "SECG elliptic curve secp160r1",
222*5697Smcpowers CKM_INVALID_MECHANISM,
223*5697Smcpowers INVALID_CERT_EXTENSION ),
224*5697Smcpowers OD( secgECsecp160k1, ECCurve_SECG_PRIME_160K1,
225*5697Smcpowers "SECG elliptic curve secp160k1",
226*5697Smcpowers CKM_INVALID_MECHANISM,
227*5697Smcpowers INVALID_CERT_EXTENSION ),
228*5697Smcpowers OD( secgECsecp256k1, ECCurve_SECG_PRIME_256K1,
229*5697Smcpowers "SECG elliptic curve secp256k1",
230*5697Smcpowers CKM_INVALID_MECHANISM,
231*5697Smcpowers INVALID_CERT_EXTENSION ),
232*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
233*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
234*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
235*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
236*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
237*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
238*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
239*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
240*5697Smcpowers OD( secgECsect163r2, ECCurve_NIST_B163,
241*5697Smcpowers "SECG elliptic curve sect163r2 (aka NIST B-163)",
242*5697Smcpowers CKM_INVALID_MECHANISM,
243*5697Smcpowers INVALID_CERT_EXTENSION ),
244*5697Smcpowers OD( secgECsect283k1, ECCurve_NIST_K283,
245*5697Smcpowers "SECG elliptic curve sect283k1 (aka NIST K-283)",
246*5697Smcpowers CKM_INVALID_MECHANISM,
247*5697Smcpowers INVALID_CERT_EXTENSION ),
248*5697Smcpowers OD( secgECsect283r1, ECCurve_NIST_B283,
249*5697Smcpowers "SECG elliptic curve sect283r1 (aka NIST B-283)",
250*5697Smcpowers CKM_INVALID_MECHANISM,
251*5697Smcpowers INVALID_CERT_EXTENSION ),
252*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
253*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
254*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
255*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
256*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
257*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
258*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
259*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
260*5697Smcpowers OD( secgECsect131r1, ECCurve_SECG_CHAR2_131R1,
261*5697Smcpowers "SECG elliptic curve sect131r1",
262*5697Smcpowers CKM_INVALID_MECHANISM,
263*5697Smcpowers INVALID_CERT_EXTENSION ),
264*5697Smcpowers OD( secgECsect131r2, ECCurve_SECG_CHAR2_131R2,
265*5697Smcpowers "SECG elliptic curve sect131r2",
266*5697Smcpowers CKM_INVALID_MECHANISM,
267*5697Smcpowers INVALID_CERT_EXTENSION ),
268*5697Smcpowers OD( secgECsect193r1, ECCurve_SECG_CHAR2_193R1,
269*5697Smcpowers "SECG elliptic curve sect193r1",
270*5697Smcpowers CKM_INVALID_MECHANISM,
271*5697Smcpowers INVALID_CERT_EXTENSION ),
272*5697Smcpowers OD( secgECsect193r2, ECCurve_SECG_CHAR2_193R2,
273*5697Smcpowers "SECG elliptic curve sect193r2",
274*5697Smcpowers CKM_INVALID_MECHANISM,
275*5697Smcpowers INVALID_CERT_EXTENSION ),
276*5697Smcpowers OD( secgECsect233k1, ECCurve_NIST_K233,
277*5697Smcpowers "SECG elliptic curve sect233k1 (aka NIST K-233)",
278*5697Smcpowers CKM_INVALID_MECHANISM,
279*5697Smcpowers INVALID_CERT_EXTENSION ),
280*5697Smcpowers OD( secgECsect233r1, ECCurve_NIST_B233,
281*5697Smcpowers "SECG elliptic curve sect233r1 (aka NIST B-233)",
282*5697Smcpowers CKM_INVALID_MECHANISM,
283*5697Smcpowers INVALID_CERT_EXTENSION ),
284*5697Smcpowers OD( secgECsecp128r1, ECCurve_SECG_PRIME_128R1,
285*5697Smcpowers "SECG elliptic curve secp128r1",
286*5697Smcpowers CKM_INVALID_MECHANISM,
287*5697Smcpowers INVALID_CERT_EXTENSION ),
288*5697Smcpowers OD( secgECsecp128r2, ECCurve_SECG_PRIME_128R2,
289*5697Smcpowers "SECG elliptic curve secp128r2",
290*5697Smcpowers CKM_INVALID_MECHANISM,
291*5697Smcpowers INVALID_CERT_EXTENSION ),
292*5697Smcpowers OD( secgECsecp160r2, ECCurve_SECG_PRIME_160R2,
293*5697Smcpowers "SECG elliptic curve secp160r2",
294*5697Smcpowers CKM_INVALID_MECHANISM,
295*5697Smcpowers INVALID_CERT_EXTENSION ),
296*5697Smcpowers OD( secgECsecp192k1, ECCurve_SECG_PRIME_192K1,
297*5697Smcpowers "SECG elliptic curve secp192k1",
298*5697Smcpowers CKM_INVALID_MECHANISM,
299*5697Smcpowers INVALID_CERT_EXTENSION ),
300*5697Smcpowers OD( secgECsecp224k1, ECCurve_SECG_PRIME_224K1,
301*5697Smcpowers "SECG elliptic curve secp224k1",
302*5697Smcpowers CKM_INVALID_MECHANISM,
303*5697Smcpowers INVALID_CERT_EXTENSION ),
304*5697Smcpowers OD( secgECsecp224r1, ECCurve_NIST_P224,
305*5697Smcpowers "SECG elliptic curve secp224r1 (aka NIST P-224)",
306*5697Smcpowers CKM_INVALID_MECHANISM,
307*5697Smcpowers INVALID_CERT_EXTENSION ),
308*5697Smcpowers OD( secgECsecp384r1, ECCurve_NIST_P384,
309*5697Smcpowers "SECG elliptic curve secp384r1 (aka NIST P-384)",
310*5697Smcpowers CKM_INVALID_MECHANISM,
311*5697Smcpowers INVALID_CERT_EXTENSION ),
312*5697Smcpowers OD( secgECsecp521r1, ECCurve_NIST_P521,
313*5697Smcpowers "SECG elliptic curve secp521r1 (aka NIST P-521)",
314*5697Smcpowers CKM_INVALID_MECHANISM,
315*5697Smcpowers INVALID_CERT_EXTENSION ),
316*5697Smcpowers OD( secgECsect409k1, ECCurve_NIST_K409,
317*5697Smcpowers "SECG elliptic curve sect409k1 (aka NIST K-409)",
318*5697Smcpowers CKM_INVALID_MECHANISM,
319*5697Smcpowers INVALID_CERT_EXTENSION ),
320*5697Smcpowers OD( secgECsect409r1, ECCurve_NIST_B409,
321*5697Smcpowers "SECG elliptic curve sect409r1 (aka NIST B-409)",
322*5697Smcpowers CKM_INVALID_MECHANISM,
323*5697Smcpowers INVALID_CERT_EXTENSION ),
324*5697Smcpowers OD( secgECsect571k1, ECCurve_NIST_K571,
325*5697Smcpowers "SECG elliptic curve sect571k1 (aka NIST K-571)",
326*5697Smcpowers CKM_INVALID_MECHANISM,
327*5697Smcpowers INVALID_CERT_EXTENSION ),
328*5697Smcpowers OD( secgECsect571r1, ECCurve_NIST_B571,
329*5697Smcpowers "SECG elliptic curve sect571r1 (aka NIST B-571)",
330*5697Smcpowers CKM_INVALID_MECHANISM,
331*5697Smcpowers INVALID_CERT_EXTENSION )
332*5697Smcpowers };
333*5697Smcpowers
334*5697Smcpowers static SECOidData ANSI_oids[] = {
335*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
336*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
337*5697Smcpowers
338*5697Smcpowers /* ANSI X9.62 named elliptic curves (characteristic two field) */
339*5697Smcpowers OD( ansiX962c2pnb163v1, ECCurve_X9_62_CHAR2_PNB163V1,
340*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb163v1",
341*5697Smcpowers CKM_INVALID_MECHANISM,
342*5697Smcpowers INVALID_CERT_EXTENSION ),
343*5697Smcpowers OD( ansiX962c2pnb163v2, ECCurve_X9_62_CHAR2_PNB163V2,
344*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb163v2",
345*5697Smcpowers CKM_INVALID_MECHANISM,
346*5697Smcpowers INVALID_CERT_EXTENSION ),
347*5697Smcpowers OD( ansiX962c2pnb163v3, ECCurve_X9_62_CHAR2_PNB163V3,
348*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb163v3",
349*5697Smcpowers CKM_INVALID_MECHANISM,
350*5697Smcpowers INVALID_CERT_EXTENSION ),
351*5697Smcpowers OD( ansiX962c2pnb176v1, ECCurve_X9_62_CHAR2_PNB176V1,
352*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb176v1",
353*5697Smcpowers CKM_INVALID_MECHANISM,
354*5697Smcpowers INVALID_CERT_EXTENSION ),
355*5697Smcpowers OD( ansiX962c2tnb191v1, ECCurve_X9_62_CHAR2_TNB191V1,
356*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb191v1",
357*5697Smcpowers CKM_INVALID_MECHANISM,
358*5697Smcpowers INVALID_CERT_EXTENSION ),
359*5697Smcpowers OD( ansiX962c2tnb191v2, ECCurve_X9_62_CHAR2_TNB191V2,
360*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb191v2",
361*5697Smcpowers CKM_INVALID_MECHANISM,
362*5697Smcpowers INVALID_CERT_EXTENSION ),
363*5697Smcpowers OD( ansiX962c2tnb191v3, ECCurve_X9_62_CHAR2_TNB191V3,
364*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb191v3",
365*5697Smcpowers CKM_INVALID_MECHANISM,
366*5697Smcpowers INVALID_CERT_EXTENSION ),
367*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
368*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
369*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
370*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
371*5697Smcpowers OD( ansiX962c2pnb208w1, ECCurve_X9_62_CHAR2_PNB208W1,
372*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb208w1",
373*5697Smcpowers CKM_INVALID_MECHANISM,
374*5697Smcpowers INVALID_CERT_EXTENSION ),
375*5697Smcpowers OD( ansiX962c2tnb239v1, ECCurve_X9_62_CHAR2_TNB239V1,
376*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb239v1",
377*5697Smcpowers CKM_INVALID_MECHANISM,
378*5697Smcpowers INVALID_CERT_EXTENSION ),
379*5697Smcpowers OD( ansiX962c2tnb239v2, ECCurve_X9_62_CHAR2_TNB239V2,
380*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb239v2",
381*5697Smcpowers CKM_INVALID_MECHANISM,
382*5697Smcpowers INVALID_CERT_EXTENSION ),
383*5697Smcpowers OD( ansiX962c2tnb239v3, ECCurve_X9_62_CHAR2_TNB239V3,
384*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb239v3",
385*5697Smcpowers CKM_INVALID_MECHANISM,
386*5697Smcpowers INVALID_CERT_EXTENSION ),
387*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
388*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
389*5697Smcpowers { { siDEROID, NULL, 0 }, ECCurve_noName,
390*5697Smcpowers "Unknown OID", CKM_INVALID_MECHANISM, INVALID_CERT_EXTENSION },
391*5697Smcpowers OD( ansiX962c2pnb272w1, ECCurve_X9_62_CHAR2_PNB272W1,
392*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb272w1",
393*5697Smcpowers CKM_INVALID_MECHANISM,
394*5697Smcpowers INVALID_CERT_EXTENSION ),
395*5697Smcpowers OD( ansiX962c2pnb304w1, ECCurve_X9_62_CHAR2_PNB304W1,
396*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb304w1",
397*5697Smcpowers CKM_INVALID_MECHANISM,
398*5697Smcpowers INVALID_CERT_EXTENSION ),
399*5697Smcpowers OD( ansiX962c2tnb359v1, ECCurve_X9_62_CHAR2_TNB359V1,
400*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb359v1",
401*5697Smcpowers CKM_INVALID_MECHANISM,
402*5697Smcpowers INVALID_CERT_EXTENSION ),
403*5697Smcpowers OD( ansiX962c2pnb368w1, ECCurve_X9_62_CHAR2_PNB368W1,
404*5697Smcpowers "ANSI X9.62 elliptic curve c2pnb368w1",
405*5697Smcpowers CKM_INVALID_MECHANISM,
406*5697Smcpowers INVALID_CERT_EXTENSION ),
407*5697Smcpowers OD( ansiX962c2tnb431r1, ECCurve_X9_62_CHAR2_TNB431R1,
408*5697Smcpowers "ANSI X9.62 elliptic curve c2tnb431r1",
409*5697Smcpowers CKM_INVALID_MECHANISM,
410*5697Smcpowers INVALID_CERT_EXTENSION )
411*5697Smcpowers };
412*5697Smcpowers
413*5697Smcpowers SECOidData *
SECOID_FindOID(const SECItem * oid)414*5697Smcpowers SECOID_FindOID(const SECItem *oid)
415*5697Smcpowers {
416*5697Smcpowers SECOidData *po;
417*5697Smcpowers SECOidData *ret;
418*5697Smcpowers int i;
419*5697Smcpowers
420*5697Smcpowers if (oid->len == 8) {
421*5697Smcpowers if (oid->data[6] == 0x00) {
422*5697Smcpowers /* XXX bounds check */
423*5697Smcpowers po = &ANSI_oids[oid->data[7]];
424*5697Smcpowers if (memcmp(oid->data, po->oid.data, 8) == 0)
425*5697Smcpowers ret = po;
426*5697Smcpowers }
427*5697Smcpowers if (oid->data[6] == 0x01) {
428*5697Smcpowers /* XXX bounds check */
429*5697Smcpowers po = &ANSI_prime_oids[oid->data[7]];
430*5697Smcpowers if (memcmp(oid->data, po->oid.data, 8) == 0)
431*5697Smcpowers ret = po;
432*5697Smcpowers }
433*5697Smcpowers } else if (oid->len == 5) {
434*5697Smcpowers /* XXX bounds check */
435*5697Smcpowers po = &SECG_oids[oid->data[4]];
436*5697Smcpowers if (memcmp(oid->data, po->oid.data, 5) == 0)
437*5697Smcpowers ret = po;
438*5697Smcpowers } else {
439*5697Smcpowers ret = NULL;
440*5697Smcpowers }
441*5697Smcpowers return(ret);
442*5697Smcpowers }
443*5697Smcpowers
444*5697Smcpowers ECCurveName
SECOID_FindOIDTag(const SECItem * oid)445*5697Smcpowers SECOID_FindOIDTag(const SECItem *oid)
446*5697Smcpowers {
447*5697Smcpowers SECOidData *oiddata;
448*5697Smcpowers
449*5697Smcpowers oiddata = SECOID_FindOID (oid);
450*5697Smcpowers if (oiddata == NULL)
451*5697Smcpowers return ECCurve_noName;
452*5697Smcpowers
453*5697Smcpowers return oiddata->offset;
454*5697Smcpowers }
455