1#! /usr/bin/env perl 2# Copyright 1995-2019 The OpenSSL Project Authors. All Rights Reserved. 3# 4# Licensed under the OpenSSL license (the "License"). You may not use 5# this file except in compliance with the License. You can obtain a copy 6# in the file LICENSE in the source distribution or at 7# https://www.openssl.org/source/license.html 8 9use integer; 10use strict; 11use warnings; 12 13# Generate the DER encoding for the given OID. 14sub der_it 15{ 16 # Prologue 17 my ($v) = @_; 18 my @a = split(/\s+/, $v); 19 my $ret = pack("C*", $a[0] * 40 + $a[1]); 20 shift @a; 21 shift @a; 22 23 # Loop over rest of bytes; or in 0x80 for multi-byte numbers. 24 my $t; 25 foreach (@a) { 26 my @r = (); 27 $t = 0; 28 while ($_ >= 128) { 29 my $x = $_ % 128; 30 $_ /= 128; 31 push(@r, ($t++ ? 0x80 : 0) | $x); 32 } 33 push(@r, ($t++ ? 0x80 : 0) | $_); 34 $ret .= pack("C*", reverse(@r)); 35 } 36 return $ret; 37} 38 39# Output year depends on the year of the script and the input file. 40my $YEAR = [localtime([stat($0)]->[9])]->[5] + 1900; 41my $iYEAR = [localtime([stat($ARGV[0])]->[9])]->[5] + 1900; 42$YEAR = $iYEAR if $iYEAR > $YEAR; 43 44# Read input, parse all #define's into OID name and value. 45# Populate %ln and %sn with long and short names (%dupln and %dupsn) 46# are used to watch for duplicates. Also %nid and %obj get the 47# NID and OBJ entries. 48my %ln; 49my %sn; 50my %dupln; 51my %dupsn; 52my %nid; 53my %obj; 54my %objd; 55open(IN, "$ARGV[0]") || die "Can't open input file $ARGV[0], $!"; 56while (<IN>) { 57 next unless /^\#define\s+(\S+)\s+(.*)$/; 58 my $v = $1; 59 my $d = $2; 60 $d =~ s/^\"//; 61 $d =~ s/\"$//; 62 if ($v =~ /^SN_(.*)$/) { 63 if (defined $dupsn{$d}) { 64 print "WARNING: Duplicate short name \"$d\"\n"; 65 } else { 66 $dupsn{$d} = 1; 67 } 68 $sn{$1} = $d; 69 } 70 elsif ($v =~ /^LN_(.*)$/) { 71 if (defined $dupln{$d}) { 72 print "WARNING: Duplicate long name \"$d\"\n"; 73 } else { 74 $dupln{$d} = 1; 75 } 76 $ln{$1} = $d; 77 } 78 elsif ($v =~ /^NID_(.*)$/) { 79 $nid{$d} = $1; 80 } 81 elsif ($v =~ /^OBJ_(.*)$/) { 82 $obj{$1} = $v; 83 $objd{$v} = $d; 84 } 85} 86close IN; 87 88# For every value in %obj, recursively expand OBJ_xxx values. That is: 89# #define OBJ_iso 1L 90# #define OBJ_identified_organization OBJ_iso,3L 91# Modify %objd values in-place. Create an %objn array that has 92my $changed; 93do { 94 $changed = 0; 95 foreach my $k (keys %objd) { 96 $changed = 1 if $objd{$k} =~ s/(OBJ_[^,]+),/$objd{$1},/; 97 } 98} while ($changed); 99 100my @a = sort { $a <=> $b } keys %nid; 101my $n = $a[$#a] + 1; 102my @lvalues = (); 103my $lvalues = 0; 104 105# Scan all defined objects, building up the @out array. 106# %obj_der holds the DER encoding as an array of bytes, and %obj_len 107# holds the length in bytes. 108my @out; 109my %obj_der; 110my %obj_len; 111for (my $i = 0; $i < $n; $i++) { 112 if (!defined $nid{$i}) { 113 push(@out, " { NULL, NULL, NID_undef },\n"); 114 next; 115 } 116 117 my $sn = defined $sn{$nid{$i}} ? "$sn{$nid{$i}}" : "NULL"; 118 my $ln = defined $ln{$nid{$i}} ? "$ln{$nid{$i}}" : "NULL"; 119 if ($sn eq "NULL") { 120 $sn = $ln; 121 $sn{$nid{$i}} = $ln; 122 } 123 if ($ln eq "NULL") { 124 $ln = $sn; 125 $ln{$nid{$i}} = $sn; 126 } 127 128 my $out = " {\"$sn\", \"$ln\", NID_$nid{$i}"; 129 if (defined $obj{$nid{$i}} && $objd{$obj{$nid{$i}}} =~ /,/) { 130 my $v = $objd{$obj{$nid{$i}}}; 131 $v =~ s/L//g; 132 $v =~ s/,/ /g; 133 my $r = &der_it($v); 134 my $z = ""; 135 my $length = 0; 136 # Format using fixed-with because we use strcmp later. 137 foreach (unpack("C*",$r)) { 138 $z .= sprintf("0x%02X,", $_); 139 $length++; 140 } 141 $obj_der{$obj{$nid{$i}}} = $z; 142 $obj_len{$obj{$nid{$i}}} = $length; 143 144 push(@lvalues, 145 sprintf(" %-45s /* [%5d] %s */\n", 146 $z, $lvalues, $obj{$nid{$i}})); 147 $out .= ", $length, &so[$lvalues]"; 148 $lvalues += $length; 149 } 150 $out .= "},\n"; 151 push(@out, $out); 152} 153 154# Finally ready to generate the output. 155print <<"EOF"; 156/* 157 * WARNING: do not edit! 158 * Generated by crypto/objects/obj_dat.pl 159 * 160 * Copyright 1995-$YEAR The OpenSSL Project Authors. All Rights Reserved. 161 * Licensed under the OpenSSL license (the "License"). You may not use 162 * this file except in compliance with the License. You can obtain a copy 163 * in the file LICENSE in the source distribution or at 164 * https://www.openssl.org/source/license.html 165 */ 166 167EOF 168 169print "/* Serialized OID's */\n"; 170printf "static const unsigned char so[%d] = {\n", $lvalues + 1; 171print @lvalues; 172print "};\n\n"; 173 174printf "#define NUM_NID %d\n", $n; 175printf "static const ASN1_OBJECT nid_objs[NUM_NID] = {\n"; 176print @out; 177print "};\n\n"; 178 179{ 180 no warnings "uninitialized"; 181 @a = grep(defined $sn{$nid{$_}}, 0 .. $n); 182} 183printf "#define NUM_SN %d\n", $#a + 1; 184printf "static const unsigned int sn_objs[NUM_SN] = {\n"; 185foreach (sort { $sn{$nid{$a}} cmp $sn{$nid{$b}} } @a) { 186 printf " %4d, /* \"$sn{$nid{$_}}\" */\n", $_; 187} 188print "};\n\n"; 189 190{ 191 no warnings "uninitialized"; 192 @a = grep(defined $ln{$nid{$_}}, 0 .. $n); 193} 194printf "#define NUM_LN %d\n", $#a + 1; 195printf "static const unsigned int ln_objs[NUM_LN] = {\n"; 196foreach (sort { $ln{$nid{$a}} cmp $ln{$nid{$b}} } @a) { 197 printf " %4d, /* \"$ln{$nid{$_}}\" */\n", $_; 198} 199print "};\n\n"; 200 201{ 202 no warnings "uninitialized"; 203 @a = grep(defined $obj{$nid{$_}}, 0 .. $n); 204} 205printf "#define NUM_OBJ %d\n", $#a + 1; 206printf "static const unsigned int obj_objs[NUM_OBJ] = {\n"; 207 208# Compare DER; prefer shorter; if some length, use the "smaller" encoding. 209sub obj_cmp 210{ 211 no warnings "uninitialized"; 212 my $A = $obj_len{$obj{$nid{$a}}}; 213 my $B = $obj_len{$obj{$nid{$b}}}; 214 my $r = $A - $B; 215 return $r if $r != 0; 216 217 $A = $obj_der{$obj{$nid{$a}}}; 218 $B = $obj_der{$obj{$nid{$b}}}; 219 return $A cmp $B; 220} 221foreach (sort obj_cmp @a) { 222 my $m = $obj{$nid{$_}}; 223 my $v = $objd{$m}; 224 $v =~ s/L//g; 225 $v =~ s/,/ /g; 226 printf " %4d, /* %-32s %s */\n", $_, $m, $v; 227} 228print "};\n"; 229