This commit was manufactured by cvs2git to create branch 'OPENBSD_5_7'.libressl-v2.1.5

author: cvs2svn <admin@example.com> 2015-03-08 16:48:49 +0000
committer: cvs2svn <admin@example.com> 2015-03-08 16:48:49 +0000
commit: decf84ba5550c1656a7fdb51b5b81969590c3f03 (patch)
tree: 44872802e872bdfd60730fa9cf01d9d5751251c1 /src/lib/libcrypto/pkcs12/p12_decr.c
parent: 7a8f138352aa4eb7b65ac4b1a5fe7630fbee1427 (diff)
download: openbsd-libressl-v2.1.5.tar.gz
openbsd-libressl-v2.1.5.tar.bz2
openbsd-libressl-v2.1.5.zip
1 files changed, 0 insertions, 188 deletions
diff --git a/src/lib/libcrypto/pkcs12/p12_decr.c b/src/lib/libcrypto/pkcs12/p12_decr.c
deleted file mode 100644
index 13be237b4c..0000000000
--- a/src/lib/libcrypto/pkcs12/p12_decr.c
+++ /dev/null
@@ -1,188 +0,0 @@
-/* $OpenBSD: p12_decr.c,v 1.14 2015/02/14 12:43:07 miod Exp $ */
-/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
- * project 1999.
- */
-/* ====================================================================
- * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- *
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- *
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in
- *    the documentation and/or other materials provided with the
- *    distribution.
- *
- * 3. All advertising materials mentioning features or use of this
- *    software must display the following acknowledgment:
- *    "This product includes software developed by the OpenSSL Project
- *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
- *
- * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
- *    endorse or promote products derived from this software without
- *    prior written permission. For written permission, please contact
- *    licensing@OpenSSL.org.
- *
- * 5. Products derived from this software may not be called "OpenSSL"
- *    nor may "OpenSSL" appear in their names without prior written
- *    permission of the OpenSSL Project.
- *
- * 6. Redistributions of any form whatsoever must retain the following
- *    acknowledgment:
- *    "This product includes software developed by the OpenSSL Project
- *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
- *
- * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
- * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
- * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
- * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
- * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
- * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
- * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
- * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
- * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
- * OF THE POSSIBILITY OF SUCH DAMAGE.
- * ====================================================================
- *
- * This product includes cryptographic software written by Eric Young
- * (eay@cryptsoft.com).  This product includes software written by Tim
- * Hudson (tjh@cryptsoft.com).
- *
- */
-#include <stdio.h>
-#include <openssl/err.h>
-#include <openssl/pkcs12.h>
-/* Encrypt/Decrypt a buffer based on password and algor, result in a
- * malloc'ed buffer
- */
-unsigned char *
-PKCS12_pbe_crypt(X509_ALGOR *algor, const char *pass, int passlen,
-    unsigned char *in, int inlen, unsigned char **data, int *datalen, int en_de)
-{
-        unsigned char *out;
-        int outlen, i;
-        EVP_CIPHER_CTX ctx;
-        EVP_CIPHER_CTX_init(&ctx);
-        /* Decrypt data */
-        if (!EVP_PBE_CipherInit(algor->algorithm, pass, passlen,
-            algor->parameter, &ctx, en_de)) {
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
-                    PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR);
-                return NULL;
-        }
-        if (!(out = malloc(inlen + EVP_CIPHER_CTX_block_size(&ctx)))) {
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_MALLOC_FAILURE);
-                goto err;
-        }
-        if (!EVP_CipherUpdate(&ctx, out, &i, in, inlen)) {
-                free(out);
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_EVP_LIB);
-                goto err;
-        }
-        outlen = i;
-        if (!EVP_CipherFinal_ex(&ctx, out + i, &i)) {
-                free(out);
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
-                    PKCS12_R_PKCS12_CIPHERFINAL_ERROR);
-                goto err;
-        }
-        outlen += i;
-        if (datalen)
-                *datalen = outlen;
-        if (data)
-                *data = out;
-err:
-        EVP_CIPHER_CTX_cleanup(&ctx);
-        return out;
-}
-/* Decrypt an OCTET STRING and decode ASN1 structure
- * if zbuf set zero buffer after use.
- */
-void *
-PKCS12_item_decrypt_d2i(X509_ALGOR *algor, const ASN1_ITEM *it,
-    const char *pass, int passlen, ASN1_OCTET_STRING *oct, int zbuf)
-{
-        unsigned char *out;
-        const unsigned char *p;
-        void *ret;
-        int outlen;
-        if (!PKCS12_pbe_crypt(algor, pass, passlen, oct->data, oct->length,
-            &out, &outlen, 0)) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
-                    PKCS12_R_PKCS12_PBE_CRYPT_ERROR);
-                return NULL;
-        }
-        p = out;
-        ret = ASN1_item_d2i(NULL, &p, outlen, it);
-        if (zbuf)
-                OPENSSL_cleanse(out, outlen);
-        if (!ret)
-                PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
-                    PKCS12_R_DECODE_ERROR);
-        free(out);
-        return ret;
-}
-/* Encode ASN1 structure and encrypt, return OCTET STRING
- * if zbuf set zero encoding.
- */
-ASN1_OCTET_STRING *
-PKCS12_item_i2d_encrypt(X509_ALGOR *algor, const ASN1_ITEM *it,
-    const char *pass, int passlen,
-    void *obj, int zbuf)
-{
-        ASN1_OCTET_STRING *oct;
-        unsigned char *in = NULL;
-        int inlen;
-        if (!(oct = M_ASN1_OCTET_STRING_new ())) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    ERR_R_MALLOC_FAILURE);
-                return NULL;
-        }
-        inlen = ASN1_item_i2d(obj, &in, it);
-        if (!in) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    PKCS12_R_ENCODE_ERROR);
-                goto err;
-        }
-        if (!PKCS12_pbe_crypt(algor, pass, passlen, in, inlen, &oct->data,
-            &oct->length, 1)) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    PKCS12_R_ENCRYPT_ERROR);
-                goto err;
-        }
-        if (zbuf)
-                OPENSSL_cleanse(in, inlen);
-        free(in);
-        return oct;
-err:
-        free(in);
-        M_ASN1_OCTET_STRING_free(oct);
-        return NULL;
-}
-IMPLEMENT_PKCS12_STACK_OF(PKCS7)
author	cvs2svn <admin@example.com>	2015-03-08 16:48:49 +0000
committer	cvs2svn <admin@example.com>	2015-03-08 16:48:49 +0000
commit	decf84ba5550c1656a7fdb51b5b81969590c3f03 (patch)
tree	44872802e872bdfd60730fa9cf01d9d5751251c1 /src/lib/libcrypto/pkcs12/p12_decr.c
parent	7a8f138352aa4eb7b65ac4b1a5fe7630fbee1427 (diff)
download	openbsd-libressl-v2.1.5.tar.gz openbsd-libressl-v2.1.5.tar.bz2 openbsd-libressl-v2.1.5.zip

diff --git a/src/lib/libcrypto/pkcs12/p12_decr.c b/src/lib/libcrypto/pkcs12/p12_decr.c deleted file mode 100644 index 13be237b4c..0000000000 --- a/src/lib/libcrypto/pkcs12/p12_decr.c +++ /dev/null
@@ -1,188 +0,0 @@
1	/* $OpenBSD: p12_decr.c,v 1.14 2015/02/14 12:43:07 miod Exp $ */
2	/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3	* project 1999.
4	*/
5	/* ====================================================================
6	* Copyright (c) 1999 The OpenSSL Project. All rights reserved.
7	*
8	* Redistribution and use in source and binary forms, with or without
9	* modification, are permitted provided that the following conditions
10	* are met:
11	*
12	* 1. Redistributions of source code must retain the above copyright
13	* notice, this list of conditions and the following disclaimer.
14	*
15	* 2. Redistributions in binary form must reproduce the above copyright
16	* notice, this list of conditions and the following disclaimer in
17	* the documentation and/or other materials provided with the
18	* distribution.
19	*
20	* 3. All advertising materials mentioning features or use of this
21	* software must display the following acknowledgment:
22	* "This product includes software developed by the OpenSSL Project
23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24	*
25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26	* endorse or promote products derived from this software without
27	* prior written permission. For written permission, please contact
28	* licensing@OpenSSL.org.
29	*
30	* 5. Products derived from this software may not be called "OpenSSL"
31	* nor may "OpenSSL" appear in their names without prior written
32	* permission of the OpenSSL Project.
33	*
34	* 6. Redistributions of any form whatsoever must retain the following
35	* acknowledgment:
36	* "This product includes software developed by the OpenSSL Project
37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38	*
39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50	* OF THE POSSIBILITY OF SUCH DAMAGE.
51	* ====================================================================
52	*
53	* This product includes cryptographic software written by Eric Young
54	* (eay@cryptsoft.com). This product includes software written by Tim
55	* Hudson (tjh@cryptsoft.com).
56	*
57	*/
58
59	#include <stdio.h>
60
61	#include <openssl/err.h>
62	#include <openssl/pkcs12.h>
63
64	/* Encrypt/Decrypt a buffer based on password and algor, result in a
65	* malloc'ed buffer
66	*/
67
68	unsigned char *
69	PKCS12_pbe_crypt(X509_ALGOR algor, const char pass, int passlen,
70	unsigned char in, int inlen, unsigned char data, int datalen, int en_de)
71	{
72	unsigned char *out;
73	int outlen, i;
74	EVP_CIPHER_CTX ctx;
75
76	EVP_CIPHER_CTX_init(&ctx);
77	/* Decrypt data */
78	if (!EVP_PBE_CipherInit(algor->algorithm, pass, passlen,
79	algor->parameter, &ctx, en_de)) {
80	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
81	PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR);
82	return NULL;
83	}
84
85	if (!(out = malloc(inlen + EVP_CIPHER_CTX_block_size(&ctx)))) {
86	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_MALLOC_FAILURE);
87	goto err;
88	}
89
90	if (!EVP_CipherUpdate(&ctx, out, &i, in, inlen)) {
91	free(out);
92	out = NULL;
93	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_EVP_LIB);
94	goto err;
95	}
96
97	outlen = i;
98	if (!EVP_CipherFinal_ex(&ctx, out + i, &i)) {
99	free(out);
100	out = NULL;
101	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
102	PKCS12_R_PKCS12_CIPHERFINAL_ERROR);
103	goto err;
104	}
105	outlen += i;
106	if (datalen)
107	*datalen = outlen;
108	if (data)
109	*data = out;
110
111	err:
112	EVP_CIPHER_CTX_cleanup(&ctx);
113	return out;
114
115	}
116
117	/* Decrypt an OCTET STRING and decode ASN1 structure
118	* if zbuf set zero buffer after use.
119	*/
120
121	void *
122	PKCS12_item_decrypt_d2i(X509_ALGOR algor, const ASN1_ITEM it,
123	const char pass, int passlen, ASN1_OCTET_STRING oct, int zbuf)
124	{
125	unsigned char *out;
126	const unsigned char *p;
127	void *ret;
128	int outlen;
129
130	if (!PKCS12_pbe_crypt(algor, pass, passlen, oct->data, oct->length,
131	&out, &outlen, 0)) {
132	PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
133	PKCS12_R_PKCS12_PBE_CRYPT_ERROR);
134	return NULL;
135	}
136	p = out;
137	ret = ASN1_item_d2i(NULL, &p, outlen, it);
138	if (zbuf)
139	OPENSSL_cleanse(out, outlen);
140	if (!ret)
141	PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
142	PKCS12_R_DECODE_ERROR);
143	free(out);
144	return ret;
145	}
146
147	/* Encode ASN1 structure and encrypt, return OCTET STRING
148	* if zbuf set zero encoding.
149	*/
150
151	ASN1_OCTET_STRING *
152	PKCS12_item_i2d_encrypt(X509_ALGOR algor, const ASN1_ITEM it,
153	const char *pass, int passlen,
154	void *obj, int zbuf)
155	{
156	ASN1_OCTET_STRING *oct;
157	unsigned char *in = NULL;
158	int inlen;
159
160	if (!(oct = M_ASN1_OCTET_STRING_new ())) {
161	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
162	ERR_R_MALLOC_FAILURE);
163	return NULL;
164	}
165	inlen = ASN1_item_i2d(obj, &in, it);
166	if (!in) {
167	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
168	PKCS12_R_ENCODE_ERROR);
169	goto err;
170	}
171	if (!PKCS12_pbe_crypt(algor, pass, passlen, in, inlen, &oct->data,
172	&oct->length, 1)) {
173	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
174	PKCS12_R_ENCRYPT_ERROR);
175	goto err;
176	}
177	if (zbuf)
178	OPENSSL_cleanse(in, inlen);
179	free(in);
180	return oct;
181
182	err:
183	free(in);
184	M_ASN1_OCTET_STRING_free(oct);
185	return NULL;
186	}
187
188	IMPLEMENT_PKCS12_STACK_OF(PKCS7)