xref: /openbsd-src/lib/libcrypto/conf/conf_api.c (revision e5157e49389faebcb42b7237d55fbf096d9c2523) 
1 /* $OpenBSD: conf_api.c,v 1.11 2014/06/23 22:19:02 deraadt Exp $ */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3  * All rights reserved.
4  *
5  * This package is an SSL implementation written
6  * by Eric Young (eay@cryptsoft.com).
7  * The implementation was written so as to conform with Netscapes SSL.
8  *
9  * This library is free for commercial and non-commercial use as long as
10  * the following conditions are aheared to.  The following conditions
11  * apply to all code found in this distribution, be it the RC4, RSA,
12  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
13  * included with this distribution is covered by the same copyright terms
14  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15  *
16  * Copyright remains Eric Young's, and as such any Copyright notices in
17  * the code are not to be removed.
18  * If this package is used in a product, Eric Young should be given attribution
19  * as the author of the parts of the library used.
20  * This can be in the form of a textual message at program startup or
21  * in documentation (online or textual) provided with the package.
22  *
23  * Redistribution and use in source and binary forms, with or without
24  * modification, are permitted provided that the following conditions
25  * are met:
26  * 1. Redistributions of source code must retain the copyright
27  *    notice, this list of conditions and the following disclaimer.
28  * 2. Redistributions in binary form must reproduce the above copyright
29  *    notice, this list of conditions and the following disclaimer in the
30  *    documentation and/or other materials provided with the distribution.
31  * 3. All advertising materials mentioning features or use of this software
32  *    must display the following acknowledgement:
33  *    "This product includes cryptographic software written by
34  *     Eric Young (eay@cryptsoft.com)"
35  *    The word 'cryptographic' can be left out if the rouines from the library
36  *    being used are not cryptographic related :-).
37  * 4. If you include any Windows specific code (or a derivative thereof) from
38  *    the apps directory (application code) you must include an acknowledgement:
39  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40  *
41  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51  * SUCH DAMAGE.
52  *
53  * The licence and distribution terms for any publically available version or
54  * derivative of this code cannot be changed.  i.e. this code cannot simply be
55  * copied and put under another distribution licence
56  * [including the GNU Public Licence.]
57  */
58 
59 /* Part of the code in here was originally in conf.c, which is now removed */
60 
61 #ifndef CONF_DEBUG
62 # undef NDEBUG /* avoid conflicting definitions */
63 # define NDEBUG
64 #endif
65 
66 #include <assert.h>
67 #include <stdlib.h>
68 #include <string.h>
69 #include <unistd.h>
70 #include <openssl/conf.h>
71 #include <openssl/conf_api.h>
72 
73 static void value_free_hash_doall_arg(CONF_VALUE *a,
74     LHASH_OF(CONF_VALUE) *conf);
75 static void value_free_stack_doall(CONF_VALUE *a);
76 static IMPLEMENT_LHASH_DOALL_ARG_FN(value_free_hash, CONF_VALUE,
77     LHASH_OF(CONF_VALUE))
78 static IMPLEMENT_LHASH_DOALL_FN(value_free_stack, CONF_VALUE)
79 
80 /* Up until OpenSSL 0.9.5a, this was get_section */
81 CONF_VALUE *
82 _CONF_get_section(const CONF *conf, const char *section)
83 {
84 	CONF_VALUE *v, vv;
85 
86 	if ((conf == NULL) || (section == NULL))
87 		return (NULL);
88 	vv.name = NULL;
89 	vv.section = (char *)section;
90 	v = lh_CONF_VALUE_retrieve(conf->data, &vv);
91 	return (v);
92 }
93 
94 /* Up until OpenSSL 0.9.5a, this was CONF_get_section */
95 STACK_OF(CONF_VALUE) *
96 _CONF_get_section_values(const CONF *conf, const char *section)
97 {
98 	CONF_VALUE *v;
99 
100 	v = _CONF_get_section(conf, section);
101 	if (v != NULL)
102 		return ((STACK_OF(CONF_VALUE) *)v->value);
103 	else
104 		return (NULL);
105 }
106 
107 int
108 _CONF_add_string(CONF *conf, CONF_VALUE *section, CONF_VALUE *value)
109 {
110 	CONF_VALUE *v = NULL;
111 	STACK_OF(CONF_VALUE) *ts;
112 
113 	ts = (STACK_OF(CONF_VALUE) *)section->value;
114 
115 	value->section = section->section;
116 	if (!sk_CONF_VALUE_push(ts, value)) {
117 		return 0;
118 	}
119 
120 	v = lh_CONF_VALUE_insert(conf->data, value);
121 	if (v != NULL) {
122 		(void)sk_CONF_VALUE_delete_ptr(ts, v);
123 		free(v->name);
124 		free(v->value);
125 		free(v);
126 	}
127 	return 1;
128 }
129 
130 char *
131 _CONF_get_string(const CONF *conf, const char *section, const char *name)
132 {
133 	CONF_VALUE *v, vv;
134 	char *p;
135 
136 	if (name == NULL)
137 		return (NULL);
138 	if (conf != NULL) {
139 		if (section != NULL) {
140 			vv.name = (char *)name;
141 			vv.section = (char *)section;
142 			v = lh_CONF_VALUE_retrieve(conf->data, &vv);
143 			if (v != NULL)
144 				return (v->value);
145 			if (strcmp(section, "ENV") == 0) {
146 				if (issetugid() == 0)
147 					p = getenv(name);
148 				else
149 					p = NULL;
150 				if (p != NULL)
151 					return (p);
152 			}
153 		}
154 		vv.section = "default";
155 		vv.name = (char *)name;
156 		v = lh_CONF_VALUE_retrieve(conf->data, &vv);
157 		if (v != NULL)
158 			return (v->value);
159 		else
160 			return (NULL);
161 	} else {
162 		if (issetugid())
163 			return (NULL);
164 		return (getenv(name));
165 	}
166 }
167 
168 #if 0 /* There's no way to provide error checking with this function, so
169 	 force implementors of the higher levels to get a string and read
170 	 the number themselves. */
171 long
172 _CONF_get_number(CONF *conf, char *section, char *name)
173 {
174 	char *str;
175 	long ret = 0;
176 
177 	str = _CONF_get_string(conf, section, name);
178 	if (str == NULL)
179 		return (0);
180 	for (;;) {
181 		if (conf->meth->is_number(conf, *str))
182 			ret = ret * 10 + conf->meth->to_int(conf, *str);
183 		else
184 			return (ret);
185 		str++;
186 	}
187 }
188 #endif
189 
190 static unsigned long
191 conf_value_hash(const CONF_VALUE *v)
192 {
193 	return (lh_strhash(v->section) << 2) ^ lh_strhash(v->name);
194 }
195 
196 static IMPLEMENT_LHASH_HASH_FN(conf_value, CONF_VALUE)
197 
198 static int
199 conf_value_cmp(const CONF_VALUE *a, const CONF_VALUE *b)
200 {
201 	int i;
202 
203 	if (a->section != b->section) {
204 		i = strcmp(a->section, b->section);
205 		if (i)
206 			return (i);
207 	}
208 	if ((a->name != NULL) && (b->name != NULL)) {
209 		i = strcmp(a->name, b->name);
210 		return (i);
211 	} else if (a->name == b->name)
212 		return (0);
213 	else
214 		return ((a->name == NULL)?-1 : 1);
215 }
216 
217 static IMPLEMENT_LHASH_COMP_FN(conf_value, CONF_VALUE)
218 
219 int
220 _CONF_new_data(CONF *conf)
221 {
222 	if (conf == NULL) {
223 		return 0;
224 	}
225 	if (conf->data == NULL)
226 		if ((conf->data = lh_CONF_VALUE_new()) == NULL) {
227 			return 0;
228 		}
229 	return 1;
230 }
231 
232 void
233 _CONF_free_data(CONF *conf)
234 {
235 	if (conf == NULL || conf->data == NULL)
236 		return;
237 
238 	lh_CONF_VALUE_down_load(conf->data) = 0; /* evil thing to make
239 						  * sure the 'free()' works as
240 						  * expected */
241 	lh_CONF_VALUE_doall_arg(conf->data,
242 	    LHASH_DOALL_ARG_FN(value_free_hash),
243 	    LHASH_OF(CONF_VALUE), conf->data);
244 
245 	/* We now have only 'section' entries in the hash table.
246 	 * Due to problems with */
247 
248 	lh_CONF_VALUE_doall(conf->data, LHASH_DOALL_FN(value_free_stack));
249 	lh_CONF_VALUE_free(conf->data);
250 }
251 
252 static void
253 value_free_hash_doall_arg(CONF_VALUE *a, LHASH_OF(CONF_VALUE) *conf)
254 {
255 	if (a->name != NULL)
256 		(void)lh_CONF_VALUE_delete(conf, a);
257 }
258 
259 static void
260 value_free_stack_doall(CONF_VALUE *a)
261 {
262 	CONF_VALUE *vv;
263 	STACK_OF(CONF_VALUE) *sk;
264 	int i;
265 
266 	if (a->name != NULL)
267 		return;
268 
269 	sk = (STACK_OF(CONF_VALUE) *)a->value;
270 	for (i = sk_CONF_VALUE_num(sk) - 1; i >= 0; i--) {
271 		vv = sk_CONF_VALUE_value(sk, i);
272 		free(vv->value);
273 		free(vv->name);
274 		free(vv);
275 	}
276 	if (sk != NULL)
277 		sk_CONF_VALUE_free(sk);
278 	free(a->section);
279 	free(a);
280 }
281 
282 /* Up until OpenSSL 0.9.5a, this was new_section */
283 CONF_VALUE *
284 _CONF_new_section(CONF *conf, const char *section)
285 {
286 	STACK_OF(CONF_VALUE) *sk = NULL;
287 	int ok = 0, i;
288 	CONF_VALUE *v = NULL, *vv;
289 
290 	if ((sk = sk_CONF_VALUE_new_null()) == NULL)
291 		goto err;
292 	if ((v = malloc(sizeof(CONF_VALUE))) == NULL)
293 		goto err;
294 	i = strlen(section) + 1;
295 	if ((v->section = malloc(i)) == NULL)
296 		goto err;
297 
298 	memcpy(v->section, section, i);
299 	v->name = NULL;
300 	v->value = (char *)sk;
301 
302 	vv = lh_CONF_VALUE_insert(conf->data, v);
303 	OPENSSL_assert(vv == NULL);
304 	ok = 1;
305 
306 err:
307 	if (!ok) {
308 		if (sk != NULL)
309 			sk_CONF_VALUE_free(sk);
310 		free(v);
311 		v = NULL;
312 	}
313 	return (v);
314 }
315 
316 IMPLEMENT_STACK_OF(CONF_VALUE)
317