xref: /freebsd/crypto/openssl/providers/common/securitycheck_default.c (revision 9f23cbd6cae82fd77edfad7173432fa8dccd0a95)
1 /*
2  * Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
3  *
4  * Licensed under the Apache License 2.0 (the "License").  You may not use
5  * this file except in compliance with the License.  You can obtain a copy
6  * in the file LICENSE in the source distribution or at
7  * https://www.openssl.org/source/license.html
8  */
9 
10 #include "internal/deprecated.h"
11 
12 #include <openssl/rsa.h>
13 #include <openssl/core.h>
14 #include <openssl/core_names.h>
15 #include <openssl/obj_mac.h>
16 #include "prov/securitycheck.h"
17 #include "internal/nelem.h"
18 
19 /* Disable the security checks in the default provider */
20 int ossl_securitycheck_enabled(OSSL_LIB_CTX *libctx)
21 {
22     return 0;
23 }
24 
25 int ossl_digest_rsa_sign_get_md_nid(OSSL_LIB_CTX *ctx, const EVP_MD *md,
26                                     ossl_unused int sha1_allowed)
27 {
28     int mdnid;
29 
30     static const OSSL_ITEM name_to_nid[] = {
31         { NID_md5,       OSSL_DIGEST_NAME_MD5       },
32         { NID_md5_sha1,  OSSL_DIGEST_NAME_MD5_SHA1  },
33         { NID_md2,       OSSL_DIGEST_NAME_MD2       },
34         { NID_md4,       OSSL_DIGEST_NAME_MD4       },
35         { NID_mdc2,      OSSL_DIGEST_NAME_MDC2      },
36         { NID_ripemd160, OSSL_DIGEST_NAME_RIPEMD160 },
37     };
38 
39     mdnid = ossl_digest_get_approved_nid_with_sha1(ctx, md, 1);
40     if (mdnid == NID_undef)
41         mdnid = ossl_digest_md_to_nid(md, name_to_nid, OSSL_NELEM(name_to_nid));
42     return mdnid;
43 }
44