Function to look up Object IDs

Create a function to lookup and return an OID, short name, and long name, given a string containing any one of those, for all OIDs known to OpenSSL.

Author: StephenWall

ext/openssl/openssl.c

@@ -4588,3 +4588,83 @@ PHP_FUNCTION(openssl_random_pseudo_bytes)
 	}
 }
 /* }}} */
+
+/* {{{ Given an Object ID, or object short or long name, return an associative
+   array containing any known OID, short name, and long name, or false if the
+   object is not known.
+
+   Example:
+
+   var_dump( openssl_oid_lookup( "CN" ) );
+   var_dump( openssl_oid_lookup( "unstructuredAddress" ) );
+   var_dump( openssl_oid_lookup( "1.2.3.4.5" ) );
+   var_dump( openssl_oid_lookup( "junk" ) );
+
+   Produces;
+
+   array(3) {
+     ["oid"]=>
+     string(7) "2.5.4.3"
+     ["lname"]=>
+     string(10) "commonName"
+     ["sname"]=>
+     string(2) "CN"
+   }
+
+   array(2) {
+     ["oid"]=>
+     string(20) "1.2.840.113549.1.9.8"
+     ["lname"]=>
+     string(19) "unstructuredAddress"
+   }
+
+   array(1) {
+     ["oid"]=>
+     string(9) "1.2.3.4.5"
+   }
+
+   bool(false)
+
+*/
+PHP_FUNCTION(openssl_oid_lookup)
+{
+	zend_string * txt;
+	ASN1_OBJECT *obj;
+	char buf[1024];
+	int nid;
+
+	if (zend_parse_parameters(ZEND_NUM_ARGS(), "S", &txt) == FAILURE) {
+		return;
+	}
+
+	obj = OBJ_txt2obj(ZSTR_VAL(txt), 0);
+	if (obj == NULL) {
+		RETURN_FALSE;
+	}
+
+	OBJ_obj2txt(buf, sizeof(buf)-1, obj, 1);
+	if (*buf == '\0') {
+		RETURN_FALSE;
+	}
+
+	array_init(return_value);
+	add_assoc_string(return_value, "oid", buf);
+
+	if ((nid = OBJ_obj2nid(obj)) != NID_undef) {
+		const char *l;
+		const char *s;
+
+		l = OBJ_nid2ln(nid);
+		if (l != NULL) {
+			add_assoc_string(return_value, "lname", (char *) l);
+		}
+
+		s = OBJ_nid2sn(nid);
+		if (s != NULL && (l == NULL || strcmp(s,l) != 0)) {
+			add_assoc_string(return_value, "sname", (char *) s);
+		}
+	}
+
+	ASN1_OBJECT_free(obj);
+}
+/* }}} */

ext/openssl/openssl.stub.php

@@ -699,3 +699,5 @@ function openssl_get_cert_locations(): array {}
 function openssl_password_hash(string $algo, #[\SensitiveParameter] string $password, array $options = []): string {}
 function openssl_password_verify(string $algo, #[\SensitiveParameter] string $password, string $hash): bool {}
 #endif
+
+function openssl_oid_lookup(string $txt): array {}

ext/openssl/openssl_arginfo.h

@@ -0,0 +1,31 @@
+--TEST--
+openssl_csr_new() attributes setting tests
+--EXTENSIONS--
+openssl
+--FILE--
+<?php
+var_dump(openssl_oid_lookup("CN"));
+var_dump(openssl_oid_lookup("unstructuredAddress"));
+var_dump(openssl_oid_lookup("1.2.3.4.5"));
+var_dump(openssl_oid_lookup("junk"));
+?>
+--EXPECTF--
+array(3) {
+  ["oid"]=>
+  string(7) "2.5.4.3"
+  ["lname"]=>
+  string(10) "commonName"
+  ["sname"]=>
+  string(2) "CN"
+}
+array(2) {
+  ["oid"]=>
+  string(20) "1.2.840.113549.1.9.8"
+  ["lname"]=>
+  string(19) "unstructuredAddress"
+}
+array(1) {
+  ["oid"]=>
+  string(9) "1.2.3.4.5"
+}
+bool(false)