eng_ctrl.c revision 127128
1/* crypto/engine/eng_ctrl.c */ 2/* ==================================================================== 3 * Copyright (c) 1999-2001 The OpenSSL Project. All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 9 * 1. Redistributions of source code must retain the above copyright 10 * notice, this list of conditions and the following disclaimer. 11 * 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in 14 * the documentation and/or other materials provided with the 15 * distribution. 16 * 17 * 3. All advertising materials mentioning features or use of this 18 * software must display the following acknowledgment: 19 * "This product includes software developed by the OpenSSL Project 20 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" 21 * 22 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to 23 * endorse or promote products derived from this software without 24 * prior written permission. For written permission, please contact 25 * licensing@OpenSSL.org. 26 * 27 * 5. Products derived from this software may not be called "OpenSSL" 28 * nor may "OpenSSL" appear in their names without prior written 29 * permission of the OpenSSL Project. 30 * 31 * 6. Redistributions of any form whatsoever must retain the following 32 * acknowledgment: 33 * "This product includes software developed by the OpenSSL Project 34 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" 35 * 36 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY 37 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 38 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 39 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR 40 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, 41 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 42 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 43 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 44 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 45 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 46 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED 47 * OF THE POSSIBILITY OF SUCH DAMAGE. 48 * ==================================================================== 49 * 50 * This product includes cryptographic software written by Eric Young 51 * (eay@cryptsoft.com). This product includes software written by Tim 52 * Hudson (tjh@cryptsoft.com). 53 * 54 */ 55 56#include <openssl/crypto.h> 57#include "cryptlib.h" 58#include "eng_int.h" 59#include <openssl/engine.h> 60 61/* When querying a ENGINE-specific control command's 'description', this string 62 * is used if the ENGINE_CMD_DEFN has cmd_desc set to NULL. */ 63static const char *int_no_description = ""; 64 65/* These internal functions handle 'CMD'-related control commands when the 66 * ENGINE in question has asked us to take care of it (ie. the ENGINE did not 67 * set the ENGINE_FLAGS_MANUAL_CMD_CTRL flag. */ 68 69static int int_ctrl_cmd_is_null(const ENGINE_CMD_DEFN *defn) 70 { 71 if((defn->cmd_num == 0) || (defn->cmd_name == NULL)) 72 return 1; 73 return 0; 74 } 75 76static int int_ctrl_cmd_by_name(const ENGINE_CMD_DEFN *defn, const char *s) 77 { 78 int idx = 0; 79 while(!int_ctrl_cmd_is_null(defn) && (strcmp(defn->cmd_name, s) != 0)) 80 { 81 idx++; 82 defn++; 83 } 84 if(int_ctrl_cmd_is_null(defn)) 85 /* The given name wasn't found */ 86 return -1; 87 return idx; 88 } 89 90static int int_ctrl_cmd_by_num(const ENGINE_CMD_DEFN *defn, unsigned int num) 91 { 92 int idx = 0; 93 /* NB: It is stipulated that 'cmd_defn' lists are ordered by cmd_num. So 94 * our searches don't need to take any longer than necessary. */ 95 while(!int_ctrl_cmd_is_null(defn) && (defn->cmd_num < num)) 96 { 97 idx++; 98 defn++; 99 } 100 if(defn->cmd_num == num) 101 return idx; 102 /* The given cmd_num wasn't found */ 103 return -1; 104 } 105 106static int int_ctrl_helper(ENGINE *e, int cmd, long i, void *p, void (*f)()) 107 { 108 int idx; 109 char *s = (char *)p; 110 /* Take care of the easy one first (eg. it requires no searches) */ 111 if(cmd == ENGINE_CTRL_GET_FIRST_CMD_TYPE) 112 { 113 if((e->cmd_defns == NULL) || int_ctrl_cmd_is_null(e->cmd_defns)) 114 return 0; 115 return e->cmd_defns->cmd_num; 116 } 117 /* One or two commands require that "p" be a valid string buffer */ 118 if((cmd == ENGINE_CTRL_GET_CMD_FROM_NAME) || 119 (cmd == ENGINE_CTRL_GET_NAME_FROM_CMD) || 120 (cmd == ENGINE_CTRL_GET_DESC_FROM_CMD)) 121 { 122 if(s == NULL) 123 { 124 ENGINEerr(ENGINE_F_INT_CTRL_HELPER, 125 ERR_R_PASSED_NULL_PARAMETER); 126 return -1; 127 } 128 } 129 /* Now handle cmd_name -> cmd_num conversion */ 130 if(cmd == ENGINE_CTRL_GET_CMD_FROM_NAME) 131 { 132 if((e->cmd_defns == NULL) || ((idx = int_ctrl_cmd_by_name( 133 e->cmd_defns, s)) < 0)) 134 { 135 ENGINEerr(ENGINE_F_INT_CTRL_HELPER, 136 ENGINE_R_INVALID_CMD_NAME); 137 return -1; 138 } 139 return e->cmd_defns[idx].cmd_num; 140 } 141 /* For the rest of the commands, the 'long' argument must specify a 142 * valie command number - so we need to conduct a search. */ 143 if((e->cmd_defns == NULL) || ((idx = int_ctrl_cmd_by_num(e->cmd_defns, 144 (unsigned int)i)) < 0)) 145 { 146 ENGINEerr(ENGINE_F_INT_CTRL_HELPER, 147 ENGINE_R_INVALID_CMD_NUMBER); 148 return -1; 149 } 150 /* Now the logic splits depending on command type */ 151 switch(cmd) 152 { 153 case ENGINE_CTRL_GET_NEXT_CMD_TYPE: 154 idx++; 155 if(int_ctrl_cmd_is_null(e->cmd_defns + idx)) 156 /* end-of-list */ 157 return 0; 158 else 159 return e->cmd_defns[idx].cmd_num; 160 case ENGINE_CTRL_GET_NAME_LEN_FROM_CMD: 161 return strlen(e->cmd_defns[idx].cmd_name); 162 case ENGINE_CTRL_GET_NAME_FROM_CMD: 163 return BIO_snprintf(s,strlen(e->cmd_defns[idx].cmd_name) + 1, 164 "%s", e->cmd_defns[idx].cmd_name); 165 case ENGINE_CTRL_GET_DESC_LEN_FROM_CMD: 166 if(e->cmd_defns[idx].cmd_desc) 167 return strlen(e->cmd_defns[idx].cmd_desc); 168 return strlen(int_no_description); 169 case ENGINE_CTRL_GET_DESC_FROM_CMD: 170 if(e->cmd_defns[idx].cmd_desc) 171 return BIO_snprintf(s, 172 strlen(e->cmd_defns[idx].cmd_desc) + 1, 173 "%s", e->cmd_defns[idx].cmd_desc); 174 return BIO_snprintf(s, strlen(int_no_description) + 1,"%s", 175 int_no_description); 176 case ENGINE_CTRL_GET_CMD_FLAGS: 177 return e->cmd_defns[idx].cmd_flags; 178 } 179 /* Shouldn't really be here ... */ 180 ENGINEerr(ENGINE_F_INT_CTRL_HELPER,ENGINE_R_INTERNAL_LIST_ERROR); 181 return -1; 182 } 183 184int ENGINE_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) 185 { 186 int ctrl_exists, ref_exists; 187 if(e == NULL) 188 { 189 ENGINEerr(ENGINE_F_ENGINE_CTRL,ERR_R_PASSED_NULL_PARAMETER); 190 return 0; 191 } 192 CRYPTO_w_lock(CRYPTO_LOCK_ENGINE); 193 ref_exists = ((e->struct_ref > 0) ? 1 : 0); 194 CRYPTO_w_unlock(CRYPTO_LOCK_ENGINE); 195 ctrl_exists = ((e->ctrl == NULL) ? 0 : 1); 196 if(!ref_exists) 197 { 198 ENGINEerr(ENGINE_F_ENGINE_CTRL,ENGINE_R_NO_REFERENCE); 199 return 0; 200 } 201 /* Intercept any "root-level" commands before trying to hand them on to 202 * ctrl() handlers. */ 203 switch(cmd) 204 { 205 case ENGINE_CTRL_HAS_CTRL_FUNCTION: 206 return ctrl_exists; 207 case ENGINE_CTRL_GET_FIRST_CMD_TYPE: 208 case ENGINE_CTRL_GET_NEXT_CMD_TYPE: 209 case ENGINE_CTRL_GET_CMD_FROM_NAME: 210 case ENGINE_CTRL_GET_NAME_LEN_FROM_CMD: 211 case ENGINE_CTRL_GET_NAME_FROM_CMD: 212 case ENGINE_CTRL_GET_DESC_LEN_FROM_CMD: 213 case ENGINE_CTRL_GET_DESC_FROM_CMD: 214 case ENGINE_CTRL_GET_CMD_FLAGS: 215 if(ctrl_exists && !(e->flags & ENGINE_FLAGS_MANUAL_CMD_CTRL)) 216 return int_ctrl_helper(e,cmd,i,p,f); 217 if(!ctrl_exists) 218 { 219 ENGINEerr(ENGINE_F_ENGINE_CTRL,ENGINE_R_NO_CONTROL_FUNCTION); 220 /* For these cmd-related functions, failure is indicated 221 * by a -1 return value (because 0 is used as a valid 222 * return in some places). */ 223 return -1; 224 } 225 default: 226 break; 227 } 228 /* Anything else requires a ctrl() handler to exist. */ 229 if(!ctrl_exists) 230 { 231 ENGINEerr(ENGINE_F_ENGINE_CTRL,ENGINE_R_NO_CONTROL_FUNCTION); 232 return 0; 233 } 234 return e->ctrl(e, cmd, i, p, f); 235 } 236 237int ENGINE_cmd_is_executable(ENGINE *e, int cmd) 238 { 239 int flags; 240 if((flags = ENGINE_ctrl(e, ENGINE_CTRL_GET_CMD_FLAGS, cmd, NULL, NULL)) < 0) 241 { 242 ENGINEerr(ENGINE_F_ENGINE_CMD_IS_EXECUTABLE, 243 ENGINE_R_INVALID_CMD_NUMBER); 244 return 0; 245 } 246 if(!(flags & ENGINE_CMD_FLAG_NO_INPUT) && 247 !(flags & ENGINE_CMD_FLAG_NUMERIC) && 248 !(flags & ENGINE_CMD_FLAG_STRING)) 249 return 0; 250 return 1; 251 } 252 253int ENGINE_ctrl_cmd(ENGINE *e, const char *cmd_name, 254 long i, void *p, void (*f)(), int cmd_optional) 255 { 256 int num; 257 258 if((e == NULL) || (cmd_name == NULL)) 259 { 260 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 261 ERR_R_PASSED_NULL_PARAMETER); 262 return 0; 263 } 264 if((e->ctrl == NULL) || ((num = ENGINE_ctrl(e, 265 ENGINE_CTRL_GET_CMD_FROM_NAME, 266 0, (void *)cmd_name, NULL)) <= 0)) 267 { 268 /* If the command didn't *have* to be supported, we fake 269 * success. This allows certain settings to be specified for 270 * multiple ENGINEs and only require a change of ENGINE id 271 * (without having to selectively apply settings). Eg. changing 272 * from a hardware device back to the regular software ENGINE 273 * without editing the config file, etc. */ 274 if(cmd_optional) 275 { 276 ERR_clear_error(); 277 return 1; 278 } 279 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD, 280 ENGINE_R_INVALID_CMD_NAME); 281 return 0; 282 } 283 /* Force the result of the control command to 0 or 1, for the reasons 284 * mentioned before. */ 285 if (ENGINE_ctrl(e, num, i, p, f)) 286 return 1; 287 return 0; 288 } 289 290int ENGINE_ctrl_cmd_string(ENGINE *e, const char *cmd_name, const char *arg, 291 int cmd_optional) 292 { 293 int num, flags; 294 long l; 295 char *ptr; 296 if((e == NULL) || (cmd_name == NULL)) 297 { 298 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 299 ERR_R_PASSED_NULL_PARAMETER); 300 return 0; 301 } 302 if((e->ctrl == NULL) || ((num = ENGINE_ctrl(e, 303 ENGINE_CTRL_GET_CMD_FROM_NAME, 304 0, (void *)cmd_name, NULL)) <= 0)) 305 { 306 /* If the command didn't *have* to be supported, we fake 307 * success. This allows certain settings to be specified for 308 * multiple ENGINEs and only require a change of ENGINE id 309 * (without having to selectively apply settings). Eg. changing 310 * from a hardware device back to the regular software ENGINE 311 * without editing the config file, etc. */ 312 if(cmd_optional) 313 { 314 ERR_clear_error(); 315 return 1; 316 } 317 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 318 ENGINE_R_INVALID_CMD_NAME); 319 return 0; 320 } 321 if(!ENGINE_cmd_is_executable(e, num)) 322 { 323 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 324 ENGINE_R_CMD_NOT_EXECUTABLE); 325 return 0; 326 } 327 if((flags = ENGINE_ctrl(e, ENGINE_CTRL_GET_CMD_FLAGS, num, NULL, NULL)) < 0) 328 { 329 /* Shouldn't happen, given that ENGINE_cmd_is_executable() 330 * returned success. */ 331 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 332 ENGINE_R_INTERNAL_LIST_ERROR); 333 return 0; 334 } 335 /* If the command takes no input, there must be no input. And vice 336 * versa. */ 337 if(flags & ENGINE_CMD_FLAG_NO_INPUT) 338 { 339 if(arg != NULL) 340 { 341 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 342 ENGINE_R_COMMAND_TAKES_NO_INPUT); 343 return 0; 344 } 345 /* We deliberately force the result of ENGINE_ctrl() to 0 or 1 346 * rather than returning it as "return data". This is to ensure 347 * usage of these commands is consistent across applications and 348 * that certain applications don't understand it one way, and 349 * others another. */ 350 if(ENGINE_ctrl(e, num, 0, (void *)arg, NULL)) 351 return 1; 352 return 0; 353 } 354 /* So, we require input */ 355 if(arg == NULL) 356 { 357 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 358 ENGINE_R_COMMAND_TAKES_INPUT); 359 return 0; 360 } 361 /* If it takes string input, that's easy */ 362 if(flags & ENGINE_CMD_FLAG_STRING) 363 { 364 /* Same explanation as above */ 365 if(ENGINE_ctrl(e, num, 0, (void *)arg, NULL)) 366 return 1; 367 return 0; 368 } 369 /* If it doesn't take numeric either, then it is unsupported for use in 370 * a config-setting situation, which is what this function is for. This 371 * should never happen though, because ENGINE_cmd_is_executable() was 372 * used. */ 373 if(!(flags & ENGINE_CMD_FLAG_NUMERIC)) 374 { 375 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 376 ENGINE_R_INTERNAL_LIST_ERROR); 377 return 0; 378 } 379 l = strtol(arg, &ptr, 10); 380 if((arg == ptr) || (*ptr != '\0')) 381 { 382 ENGINEerr(ENGINE_F_ENGINE_CTRL_CMD_STRING, 383 ENGINE_R_ARGUMENT_IS_NOT_A_NUMBER); 384 return 0; 385 } 386 /* Force the result of the control command to 0 or 1, for the reasons 387 * mentioned before. */ 388 if(ENGINE_ctrl(e, num, l, NULL, NULL)) 389 return 1; 390 return 0; 391 } 392