Home | History | Annotate | Download | only in conf
      1 /* Copyright (C) 1995-1998 Eric Young (eay (at) cryptsoft.com)
      2  * All rights reserved.
      3  *
      4  * This package is an SSL implementation written
      5  * by Eric Young (eay (at) cryptsoft.com).
      6  * The implementation was written so as to conform with Netscapes SSL.
      7  *
      8  * This library is free for commercial and non-commercial use as long as
      9  * the following conditions are aheared to.  The following conditions
     10  * apply to all code found in this distribution, be it the RC4, RSA,
     11  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
     12  * included with this distribution is covered by the same copyright terms
     13  * except that the holder is Tim Hudson (tjh (at) cryptsoft.com).
     14  *
     15  * Copyright remains Eric Young's, and as such any Copyright notices in
     16  * the code are not to be removed.
     17  * If this package is used in a product, Eric Young should be given attribution
     18  * as the author of the parts of the library used.
     19  * This can be in the form of a textual message at program startup or
     20  * in documentation (online or textual) provided with the package.
     21  *
     22  * Redistribution and use in source and binary forms, with or without
     23  * modification, are permitted provided that the following conditions
     24  * are met:
     25  * 1. Redistributions of source code must retain the copyright
     26  *    notice, this list of conditions and the following disclaimer.
     27  * 2. Redistributions in binary form must reproduce the above copyright
     28  *    notice, this list of conditions and the following disclaimer in the
     29  *    documentation and/or other materials provided with the distribution.
     30  * 3. All advertising materials mentioning features or use of this software
     31  *    must display the following acknowledgement:
     32  *    "This product includes cryptographic software written by
     33  *     Eric Young (eay (at) cryptsoft.com)"
     34  *    The word 'cryptographic' can be left out if the rouines from the library
     35  *    being used are not cryptographic related :-).
     36  * 4. If you include any Windows specific code (or a derivative thereof) from
     37  *    the apps directory (application code) you must include an acknowledgement:
     38  *    "This product includes software written by Tim Hudson (tjh (at) cryptsoft.com)"
     39  *
     40  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
     41  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
     42  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
     43  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
     44  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
     45  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
     46  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
     47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
     48  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
     49  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
     50  * SUCH DAMAGE.
     51  *
     52  * The licence and distribution terms for any publically available version or
     53  * derivative of this code cannot be changed.  i.e. this code cannot simply be
     54  * copied and put under another distribution licence
     55  * [including the GNU Public Licence.] */
     56 
     57 #include <openssl/conf.h>
     58 
     59 #include <string.h>
     60 #include <ctype.h>
     61 
     62 #include <openssl/bio.h>
     63 #include <openssl/buf.h>
     64 #include <openssl/err.h>
     65 #include <openssl/mem.h>
     66 
     67 #include "conf_def.h"
     68 
     69 
     70 static uint32_t conf_value_hash(const CONF_VALUE *v) {
     71   return (lh_strhash(v->section) << 2) ^ lh_strhash(v->name);
     72 }
     73 
     74 static int conf_value_cmp(const CONF_VALUE *a, const CONF_VALUE *b) {
     75   int i;
     76 
     77   if (a->section != b->section) {
     78     i = strcmp(a->section, b->section);
     79     if (i) {
     80       return i;
     81     }
     82   }
     83 
     84   if (a->name != NULL && b->name != NULL) {
     85     return strcmp(a->name, b->name);
     86   } else if (a->name == b->name) {
     87     return 0;
     88   } else {
     89     return (a->name == NULL) ? -1 : 1;
     90   }
     91 }
     92 
     93 CONF *NCONF_new(void *method) {
     94   CONF *conf;
     95 
     96   if (method != NULL) {
     97     return NULL;
     98   }
     99 
    100   conf = OPENSSL_malloc(sizeof(CONF));
    101   if (conf == NULL) {
    102     return NULL;
    103   }
    104 
    105   conf->data = lh_CONF_VALUE_new(conf_value_hash, conf_value_cmp);
    106   if (conf->data == NULL) {
    107     OPENSSL_free(conf);
    108     return NULL;
    109   }
    110 
    111   return conf;
    112 }
    113 
    114 CONF_VALUE *CONF_VALUE_new(void) {
    115   CONF_VALUE *v = OPENSSL_malloc(sizeof(CONF_VALUE));
    116   if (!v) {
    117     OPENSSL_PUT_ERROR(CONF, ERR_R_MALLOC_FAILURE);
    118     return NULL;
    119   }
    120   memset(v, 0, sizeof(CONF_VALUE));
    121   return v;
    122 }
    123 
    124 static void value_free_contents(CONF_VALUE *value) {
    125   if (value->section) {
    126     OPENSSL_free(value->section);
    127   }
    128   if (value->name) {
    129     OPENSSL_free(value->name);
    130     if (value->value) {
    131       OPENSSL_free(value->value);
    132     }
    133   } else {
    134     if (value->value) {
    135       sk_CONF_VALUE_free((STACK_OF(CONF_VALUE)*)value->value);
    136     }
    137   }
    138 }
    139 
    140 static void value_free(CONF_VALUE *value) {
    141   value_free_contents(value);
    142   OPENSSL_free(value);
    143 }
    144 
    145 void NCONF_free(CONF *conf) {
    146   if (conf == NULL || conf->data == NULL) {
    147     return;
    148   }
    149 
    150   lh_CONF_VALUE_doall(conf->data, value_free);
    151   lh_CONF_VALUE_free(conf->data);
    152   OPENSSL_free(conf);
    153 }
    154 
    155 CONF_VALUE *NCONF_new_section(const CONF *conf, const char *section) {
    156   STACK_OF(CONF_VALUE) *sk = NULL;
    157   int ok = 0;
    158   CONF_VALUE *v = NULL, *old_value;
    159 
    160   sk = sk_CONF_VALUE_new_null();
    161   v = CONF_VALUE_new();
    162   if (sk == NULL || v == NULL) {
    163     goto err;
    164   }
    165   v->section = OPENSSL_strdup(section);
    166   if (v->section == NULL) {
    167     goto err;
    168   }
    169 
    170   v->name = NULL;
    171   v->value = (char *)sk;
    172 
    173   if (!lh_CONF_VALUE_insert(conf->data, &old_value, v)) {
    174     goto err;
    175   }
    176   if (old_value) {
    177     value_free(old_value);
    178   }
    179   ok = 1;
    180 
    181 err:
    182   if (!ok) {
    183     if (sk != NULL) {
    184       sk_CONF_VALUE_free(sk);
    185     }
    186     if (v != NULL) {
    187       OPENSSL_free(v);
    188     }
    189     v = NULL;
    190   }
    191   return v;
    192 }
    193 
    194 static int str_copy(CONF *conf, char *section, char **pto, char *from) {
    195   int q, r, rr = 0, to = 0, len = 0;
    196   char *s, *e, *rp, *rrp, *np, *cp, v;
    197   const char *p;
    198   BUF_MEM *buf;
    199 
    200   buf = BUF_MEM_new();
    201   if (buf == NULL) {
    202     return 0;
    203   }
    204 
    205   len = strlen(from) + 1;
    206   if (!BUF_MEM_grow(buf, len)) {
    207     goto err;
    208   }
    209 
    210   for (;;) {
    211     if (IS_QUOTE(conf, *from)) {
    212       q = *from;
    213       from++;
    214       while (!IS_EOF(conf, *from) && (*from != q)) {
    215         if (IS_ESC(conf, *from)) {
    216           from++;
    217           if (IS_EOF(conf, *from)) {
    218             break;
    219           }
    220         }
    221         buf->data[to++] = *(from++);
    222       }
    223       if (*from == q) {
    224         from++;
    225       }
    226     } else if (IS_DQUOTE(conf, *from)) {
    227       q = *from;
    228       from++;
    229       while (!IS_EOF(conf, *from)) {
    230         if (*from == q) {
    231           if (*(from + 1) == q) {
    232             from++;
    233           } else {
    234             break;
    235           }
    236         }
    237         buf->data[to++] = *(from++);
    238       }
    239       if (*from == q) {
    240         from++;
    241       }
    242     } else if (IS_ESC(conf, *from)) {
    243       from++;
    244       v = *(from++);
    245       if (IS_EOF(conf, v)) {
    246         break;
    247       } else if (v == 'r') {
    248         v = '\r';
    249       } else if (v == 'n') {
    250         v = '\n';
    251       } else if (v == 'b') {
    252         v = '\b';
    253       } else if (v == 't') {
    254         v = '\t';
    255       }
    256       buf->data[to++] = v;
    257     } else if (IS_EOF(conf, *from)) {
    258       break;
    259     } else if (*from == '$') {
    260       /* try to expand it */
    261       rrp = NULL;
    262       s = &(from[1]);
    263       if (*s == '{') {
    264         q = '}';
    265       } else if (*s == '(') {
    266         q = ')';
    267       } else {
    268         q = 0;
    269       }
    270 
    271       if (q) {
    272         s++;
    273       }
    274       cp = section;
    275       e = np = s;
    276       while (IS_ALPHA_NUMERIC(conf, *e)) {
    277         e++;
    278       }
    279       if (e[0] == ':' && e[1] == ':') {
    280         cp = np;
    281         rrp = e;
    282         rr = *e;
    283         *rrp = '\0';
    284         e += 2;
    285         np = e;
    286         while (IS_ALPHA_NUMERIC(conf, *e)) {
    287           e++;
    288         }
    289       }
    290       r = *e;
    291       *e = '\0';
    292       rp = e;
    293       if (q) {
    294         if (r != q) {
    295           OPENSSL_PUT_ERROR(CONF, CONF_R_NO_CLOSE_BRACE);
    296           goto err;
    297         }
    298         e++;
    299       }
    300       /* So at this point we have
    301        * np which is the start of the name string which is
    302        *   '\0' terminated.
    303        * cp which is the start of the section string which is
    304        *   '\0' terminated.
    305        * e is the 'next point after'.
    306        * r and rr are the chars replaced by the '\0'
    307        * rp and rrp is where 'r' and 'rr' came from. */
    308       p = NCONF_get_string(conf, cp, np);
    309       if (rrp != NULL) {
    310         *rrp = rr;
    311       }
    312       *rp = r;
    313       if (p == NULL) {
    314         OPENSSL_PUT_ERROR(CONF, CONF_R_VARIABLE_HAS_NO_VALUE);
    315         goto err;
    316       }
    317       BUF_MEM_grow_clean(buf, (strlen(p) + buf->length - (e - from)));
    318       while (*p) {
    319         buf->data[to++] = *(p++);
    320       }
    321 
    322       /* Since we change the pointer 'from', we also have
    323          to change the perceived length of the string it
    324          points at.  /RL */
    325       len -= e - from;
    326       from = e;
    327 
    328       /* In case there were no braces or parenthesis around
    329          the variable reference, we have to put back the
    330          character that was replaced with a '\0'.  /RL */
    331       *rp = r;
    332     } else {
    333       buf->data[to++] = *(from++);
    334     }
    335   }
    336 
    337   buf->data[to] = '\0';
    338   if (*pto != NULL) {
    339     OPENSSL_free(*pto);
    340   }
    341   *pto = buf->data;
    342   OPENSSL_free(buf);
    343   return 1;
    344 
    345 err:
    346   if (buf != NULL) {
    347     BUF_MEM_free(buf);
    348   }
    349   return 0;
    350 }
    351 
    352 static CONF_VALUE *get_section(const CONF *conf, const char *section) {
    353   CONF_VALUE template;
    354 
    355   memset(&template, 0, sizeof(template));
    356   template.section = (char *) section;
    357   return lh_CONF_VALUE_retrieve(conf->data, &template);
    358 }
    359 
    360 STACK_OF(CONF_VALUE) *NCONF_get_section(const CONF *conf, const char *section) {
    361   CONF_VALUE *section_value = get_section(conf, section);
    362   if (section_value == NULL) {
    363     return NULL;
    364   }
    365   return (STACK_OF(CONF_VALUE)*) section_value->value;
    366 }
    367 
    368 const char *NCONF_get_string(const CONF *conf, const char *section,
    369                              const char *name) {
    370   CONF_VALUE template, *value;
    371 
    372   memset(&template, 0, sizeof(template));
    373   template.section = (char *) section;
    374   template.name = (char *) name;
    375   value = lh_CONF_VALUE_retrieve(conf->data, &template);
    376   if (value == NULL) {
    377     return NULL;
    378   }
    379   return value->value;
    380 }
    381 
    382 static int add_string(const CONF *conf, CONF_VALUE *section,
    383                       CONF_VALUE *value) {
    384   STACK_OF(CONF_VALUE) *section_stack = (STACK_OF(CONF_VALUE)*) section->value;
    385   CONF_VALUE *old_value;
    386 
    387   value->section = OPENSSL_strdup(section->section);
    388   if (!sk_CONF_VALUE_push(section_stack, value)) {
    389     return 0;
    390   }
    391 
    392   if (!lh_CONF_VALUE_insert(conf->data, &old_value, value)) {
    393     return 0;
    394   }
    395   if (old_value != NULL) {
    396     (void)sk_CONF_VALUE_delete_ptr(section_stack, old_value);
    397     value_free(old_value);
    398   }
    399 
    400   return 1;
    401 }
    402 
    403 static char *eat_ws(CONF *conf, char *p) {
    404   while (IS_WS(conf, *p) && !IS_EOF(conf, *p)) {
    405     p++;
    406   }
    407   return p;
    408 }
    409 
    410 #define scan_esc(conf, p) (((IS_EOF((conf), (p)[1])) ? ((p) + 1) : ((p) + 2)))
    411 
    412 static char *eat_alpha_numeric(CONF *conf, char *p) {
    413   for (;;) {
    414     if (IS_ESC(conf, *p)) {
    415       p = scan_esc(conf, p);
    416       continue;
    417     }
    418     if (!IS_ALPHA_NUMERIC_PUNCT(conf, *p)) {
    419       return p;
    420     }
    421     p++;
    422   }
    423 }
    424 
    425 static char *scan_quote(CONF *conf, char *p) {
    426   int q = *p;
    427 
    428   p++;
    429   while (!IS_EOF(conf, *p) && *p != q) {
    430     if (IS_ESC(conf, *p)) {
    431       p++;
    432       if (IS_EOF(conf, *p)) {
    433         return p;
    434       }
    435     }
    436     p++;
    437   }
    438   if (*p == q) {
    439     p++;
    440   }
    441   return p;
    442 }
    443 
    444 
    445 static char *scan_dquote(CONF *conf, char *p) {
    446   int q = *p;
    447 
    448   p++;
    449   while (!(IS_EOF(conf, *p))) {
    450     if (*p == q) {
    451       if (*(p + 1) == q) {
    452         p++;
    453       } else {
    454         break;
    455       }
    456     }
    457     p++;
    458   }
    459   if (*p == q) {
    460     p++;
    461   }
    462   return p;
    463 }
    464 
    465 static void clear_comments(CONF *conf, char *p) {
    466   for (;;) {
    467     if (IS_FCOMMENT(conf, *p)) {
    468       *p = '\0';
    469       return;
    470     }
    471     if (!IS_WS(conf, *p)) {
    472       break;
    473     }
    474     p++;
    475   }
    476 
    477   for (;;) {
    478     if (IS_COMMENT(conf, *p)) {
    479       *p = '\0';
    480       return;
    481     }
    482     if (IS_DQUOTE(conf, *p)) {
    483       p = scan_dquote(conf, p);
    484       continue;
    485     }
    486     if (IS_QUOTE(conf, *p)) {
    487       p = scan_quote(conf, p);
    488       continue;
    489     }
    490     if (IS_ESC(conf, *p)) {
    491       p = scan_esc(conf, p);
    492       continue;
    493     }
    494     if (IS_EOF(conf, *p)) {
    495       return;
    496     } else {
    497       p++;
    498     }
    499   }
    500 }
    501 
    502 static int def_load_bio(CONF *conf, BIO *in, long *out_error_line) {
    503   static const size_t CONFBUFSIZE = 512;
    504   int bufnum = 0, i, ii;
    505   BUF_MEM *buff = NULL;
    506   char *s, *p, *end;
    507   int again;
    508   long eline = 0;
    509   char btmp[DECIMAL_SIZE(eline) + 1];
    510   CONF_VALUE *v = NULL, *tv;
    511   CONF_VALUE *sv = NULL;
    512   char *section = NULL, *buf;
    513   char *start, *psection, *pname;
    514 
    515   if ((buff = BUF_MEM_new()) == NULL) {
    516     OPENSSL_PUT_ERROR(CONF, ERR_R_BUF_LIB);
    517     goto err;
    518   }
    519 
    520   section = OPENSSL_strdup("default");
    521   if (section == NULL) {
    522     OPENSSL_PUT_ERROR(CONF, ERR_R_MALLOC_FAILURE);
    523     goto err;
    524   }
    525 
    526   sv = NCONF_new_section(conf, section);
    527   if (sv == NULL) {
    528     OPENSSL_PUT_ERROR(CONF, CONF_R_UNABLE_TO_CREATE_NEW_SECTION);
    529     goto err;
    530   }
    531 
    532   bufnum = 0;
    533   again = 0;
    534   for (;;) {
    535     if (!BUF_MEM_grow(buff, bufnum + CONFBUFSIZE)) {
    536       OPENSSL_PUT_ERROR(CONF, ERR_R_BUF_LIB);
    537       goto err;
    538     }
    539     p = &(buff->data[bufnum]);
    540     *p = '\0';
    541     BIO_gets(in, p, CONFBUFSIZE - 1);
    542     p[CONFBUFSIZE - 1] = '\0';
    543     ii = i = strlen(p);
    544     if (i == 0 && !again) {
    545       break;
    546     }
    547     again = 0;
    548     while (i > 0) {
    549       if ((p[i - 1] != '\r') && (p[i - 1] != '\n')) {
    550         break;
    551       } else {
    552         i--;
    553       }
    554     }
    555     /* we removed some trailing stuff so there is a new
    556      * line on the end. */
    557     if (ii && i == ii) {
    558       again = 1; /* long line */
    559     } else {
    560       p[i] = '\0';
    561       eline++; /* another input line */
    562     }
    563 
    564     /* we now have a line with trailing \r\n removed */
    565 
    566     /* i is the number of bytes */
    567     bufnum += i;
    568 
    569     v = NULL;
    570     /* check for line continuation */
    571     if (bufnum >= 1) {
    572       /* If we have bytes and the last char '\\' and
    573        * second last char is not '\\' */
    574       p = &(buff->data[bufnum - 1]);
    575       if (IS_ESC(conf, p[0]) && ((bufnum <= 1) || !IS_ESC(conf, p[-1]))) {
    576         bufnum--;
    577         again = 1;
    578       }
    579     }
    580     if (again) {
    581       continue;
    582     }
    583     bufnum = 0;
    584     buf = buff->data;
    585 
    586     clear_comments(conf, buf);
    587     s = eat_ws(conf, buf);
    588     if (IS_EOF(conf, *s)) {
    589       continue; /* blank line */
    590     }
    591     if (*s == '[') {
    592       char *ss;
    593 
    594       s++;
    595       start = eat_ws(conf, s);
    596       ss = start;
    597     again:
    598       end = eat_alpha_numeric(conf, ss);
    599       p = eat_ws(conf, end);
    600       if (*p != ']') {
    601         if (*p != '\0' && ss != p) {
    602           ss = p;
    603           goto again;
    604         }
    605         OPENSSL_PUT_ERROR(CONF, CONF_R_MISSING_CLOSE_SQUARE_BRACKET);
    606         goto err;
    607       }
    608       *end = '\0';
    609       if (!str_copy(conf, NULL, &section, start)) {
    610         goto err;
    611       }
    612       if ((sv = get_section(conf, section)) == NULL) {
    613         sv = NCONF_new_section(conf, section);
    614       }
    615       if (sv == NULL) {
    616         OPENSSL_PUT_ERROR(CONF, CONF_R_UNABLE_TO_CREATE_NEW_SECTION);
    617         goto err;
    618       }
    619       continue;
    620     } else {
    621       pname = s;
    622       psection = NULL;
    623       end = eat_alpha_numeric(conf, s);
    624       if ((end[0] == ':') && (end[1] == ':')) {
    625         *end = '\0';
    626         end += 2;
    627         psection = pname;
    628         pname = end;
    629         end = eat_alpha_numeric(conf, end);
    630       }
    631       p = eat_ws(conf, end);
    632       if (*p != '=') {
    633         OPENSSL_PUT_ERROR(CONF, CONF_R_MISSING_EQUAL_SIGN);
    634         goto err;
    635       }
    636       *end = '\0';
    637       p++;
    638       start = eat_ws(conf, p);
    639       while (!IS_EOF(conf, *p)) {
    640         p++;
    641       }
    642       p--;
    643       while ((p != start) && (IS_WS(conf, *p))) {
    644         p--;
    645       }
    646       p++;
    647       *p = '\0';
    648 
    649       if (!(v = CONF_VALUE_new())) {
    650         goto err;
    651       }
    652       if (psection == NULL) {
    653         psection = section;
    654       }
    655       v->name = OPENSSL_strdup(pname);
    656       if (v->name == NULL) {
    657         OPENSSL_PUT_ERROR(CONF, ERR_R_MALLOC_FAILURE);
    658         goto err;
    659       }
    660       if (!str_copy(conf, psection, &(v->value), start)) {
    661         goto err;
    662       }
    663 
    664       if (strcmp(psection, section) != 0) {
    665         if ((tv = get_section(conf, psection)) == NULL) {
    666           tv = NCONF_new_section(conf, psection);
    667         }
    668         if (tv == NULL) {
    669           OPENSSL_PUT_ERROR(CONF, CONF_R_UNABLE_TO_CREATE_NEW_SECTION);
    670           goto err;
    671         }
    672       } else {
    673         tv = sv;
    674       }
    675       if (add_string(conf, tv, v) == 0) {
    676         OPENSSL_PUT_ERROR(CONF, ERR_R_MALLOC_FAILURE);
    677         goto err;
    678       }
    679       v = NULL;
    680     }
    681   }
    682   if (buff != NULL) {
    683     BUF_MEM_free(buff);
    684   }
    685   if (section != NULL) {
    686     OPENSSL_free(section);
    687   }
    688   return 1;
    689 
    690 err:
    691   if (buff != NULL) {
    692     BUF_MEM_free(buff);
    693   }
    694   if (section != NULL) {
    695     OPENSSL_free(section);
    696   }
    697   if (out_error_line != NULL) {
    698     *out_error_line = eline;
    699   }
    700   BIO_snprintf(btmp, sizeof btmp, "%ld", eline);
    701   ERR_add_error_data(2, "line ", btmp);
    702 
    703   if (v != NULL) {
    704     if (v->name != NULL) {
    705       OPENSSL_free(v->name);
    706     }
    707     if (v->value != NULL) {
    708       OPENSSL_free(v->value);
    709     }
    710     if (v != NULL) {
    711       OPENSSL_free(v);
    712     }
    713   }
    714   return 0;
    715 }
    716 
    717 int NCONF_load(CONF *conf, const char *filename, long *out_error_line) {
    718   BIO *in = BIO_new_file(filename, "rb");
    719   int ret;
    720 
    721   if (in == NULL) {
    722     OPENSSL_PUT_ERROR(CONF, ERR_R_SYS_LIB);
    723     return 0;
    724   }
    725 
    726   ret = def_load_bio(conf, in, out_error_line);
    727   BIO_free(in);
    728 
    729   return ret;
    730 }
    731 
    732 int NCONF_load_bio(CONF *conf, BIO *bio, long *out_error_line) {
    733   return def_load_bio(conf, bio, out_error_line);
    734 }
    735 
    736 int CONF_parse_list(const char *list, char sep, int remove_whitespace,
    737                     int (*list_cb)(const char *elem, int len, void *usr),
    738                     void *arg) {
    739   int ret;
    740   const char *lstart, *tmpend, *p;
    741 
    742   if (list == NULL) {
    743     OPENSSL_PUT_ERROR(CONF, CONF_R_LIST_CANNOT_BE_NULL);
    744     return 0;
    745   }
    746 
    747   lstart = list;
    748   for (;;) {
    749     if (remove_whitespace) {
    750       while (*lstart && isspace((unsigned char)*lstart)) {
    751         lstart++;
    752       }
    753     }
    754     p = strchr(lstart, sep);
    755     if (p == lstart || !*lstart) {
    756       ret = list_cb(NULL, 0, arg);
    757     } else {
    758       if (p) {
    759         tmpend = p - 1;
    760       } else {
    761         tmpend = lstart + strlen(lstart) - 1;
    762       }
    763       if (remove_whitespace) {
    764         while (isspace((unsigned char)*tmpend)) {
    765           tmpend--;
    766         }
    767       }
    768       ret = list_cb(lstart, tmpend - lstart + 1, arg);
    769     }
    770     if (ret <= 0) {
    771       return ret;
    772     }
    773     if (p == NULL) {
    774       return 1;
    775     }
    776     lstart = p + 1;
    777   }
    778 }
    779