1 files changed, 365 insertions, 0 deletions
diff --git a/src/lib/libcrypto/asn1/n_pkey.c b/src/lib/libcrypto/asn1/n_pkey.c
new file mode 100644
index 0000000000..5110c91bec
--- /dev/null
+++ b/src/lib/libcrypto/asn1/n_pkey.c
@@ -0,0 +1,365 @@
+/* crypto/asn1/n_pkey.c */
+/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
+ * All rights reserved.
+ *
+ * This package is an SSL implementation written
+ * by Eric Young (eay@cryptsoft.com).
+ * The implementation was written so as to conform with Netscapes SSL.
+ * 
+ * This library is free for commercial and non-commercial use as long as
+ * the following conditions are aheared to.  The following conditions
+ * apply to all code found in this distribution, be it the RC4, RSA,
+ * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * included with this distribution is covered by the same copyright terms
+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * 
+ * Copyright remains Eric Young's, and as such any Copyright notices in
+ * the code are not to be removed.
+ * If this package is used in a product, Eric Young should be given attribution
+ * as the author of the parts of the library used.
+ * This can be in the form of a textual message at program startup or
+ * in documentation (online or textual) provided with the package.
+ * 
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. All advertising materials mentioning features or use of this software
+ *    must display the following acknowledgement:
+ *    "This product includes cryptographic software written by
+ *     Eric Young (eay@cryptsoft.com)"
+ *    The word 'cryptographic' can be left out if the rouines from the library
+ *    being used are not cryptographic related :-).
+ * 4. If you include any Windows specific code (or a derivative thereof) from 
+ *    the apps directory (application code) you must include an acknowledgement:
+ *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
+ * 
+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ * 
+ * The licence and distribution terms for any publically available version or
+ * derivative of this code cannot be changed.  i.e. this code cannot simply be
+ * copied and put under another distribution licence
+ * [including the GNU Public Licence.]
+ */
+#include <stdio.h>
+#include "cryptlib.h"
+#include "rsa.h"
+#include "objects.h"
+#include "asn1_mac.h"
+#include "evp.h"
+#include "x509.h"
+#ifndef NO_RC4
+typedef struct netscape_pkey_st
+        {
+        ASN1_INTEGER *version;
+        X509_ALGOR *algor;
+        ASN1_OCTET_STRING *private_key;
+        } NETSCAPE_PKEY;
+/*
+ * ASN1err(ASN1_F_D2I_NETSCAPE_RSA,ASN1_R_LENGTH_MISMATCH);
+ * ASN1err(ASN1_F_D2I_NETSCAPE_RSA,ASN1_R_DECODING_ERROR);
+ * ASN1err(ASN1_F_D2I_NETSCAPE_PKEY,ASN1_R_DECODING_ERROR);
+ * ASN1err(ASN1_F_NETSCAPE_PKEY_NEW,ASN1_R_DECODING_ERROR);
+ */
+#ifndef NOPROTO
+static int i2d_NETSCAPE_PKEY(NETSCAPE_PKEY *a, unsigned char **pp);
+static NETSCAPE_PKEY *d2i_NETSCAPE_PKEY(NETSCAPE_PKEY **a,unsigned char **pp, long length);
+static NETSCAPE_PKEY *NETSCAPE_PKEY_new(void);
+static void NETSCAPE_PKEY_free(NETSCAPE_PKEY *);
+#else
+static int i2d_NETSCAPE_PKEY();
+static NETSCAPE_PKEY *d2i_NETSCAPE_PKEY();
+static NETSCAPE_PKEY *NETSCAPE_PKEY_new();
+static void NETSCAPE_PKEY_free();
+#endif
+int i2d_Netscape_RSA(a,pp,cb)
+RSA *a;
+unsigned char **pp;
+int (*cb)();
+        {
+        int i,j,l[6];
+        NETSCAPE_PKEY *pkey;
+        unsigned char buf[256],*zz;
+        unsigned char key[EVP_MAX_KEY_LENGTH];
+        EVP_CIPHER_CTX ctx;
+        X509_ALGOR *alg=NULL;
+        ASN1_OCTET_STRING os,os2;
+        M_ASN1_I2D_vars(a);
+        if (a == NULL) return(0);
+#ifdef WIN32
+        r=r; /* shut the damn compiler up :-) */
+#endif
+        os.data=os2.data=NULL;
+        if ((pkey=NETSCAPE_PKEY_new()) == NULL) goto err;
+        if (!ASN1_INTEGER_set(pkey->version,0)) goto err;
+        if (pkey->algor->algorithm != NULL)
+                ASN1_OBJECT_free(pkey->algor->algorithm);
+        pkey->algor->algorithm=OBJ_nid2obj(NID_rsaEncryption);
+        if ((pkey->algor->parameter=ASN1_TYPE_new()) == NULL) goto err;
+        pkey->algor->parameter->type=V_ASN1_NULL;
+        l[0]=i2d_RSAPrivateKey(a,NULL);
+        pkey->private_key->length=l[0];
+        os2.length=i2d_NETSCAPE_PKEY(pkey,NULL);
+        l[1]=i2d_ASN1_OCTET_STRING(&os2,NULL);
+        if ((alg=X509_ALGOR_new()) == NULL) goto err;
+        if (alg->algorithm != NULL)
+                ASN1_OBJECT_free(alg->algorithm);
+        alg->algorithm=OBJ_nid2obj(NID_rc4);
+        if ((alg->parameter=ASN1_TYPE_new()) == NULL) goto err;
+        alg->parameter->type=V_ASN1_NULL;
+        l[2]=i2d_X509_ALGOR(alg,NULL);
+        l[3]=ASN1_object_size(1,l[2]+l[1],V_ASN1_SEQUENCE);
+        os.data=(unsigned char *)"private-key";
+        os.length=11;
+        l[4]=i2d_ASN1_OCTET_STRING(&os,NULL);
+        l[5]=ASN1_object_size(1,l[4]+l[3],V_ASN1_SEQUENCE);
+        if (pp == NULL)
+                {
+                if (pkey != NULL) NETSCAPE_PKEY_free(pkey);
+                if (alg != NULL) X509_ALGOR_free(alg);
+                return(l[5]);
+                }
+        if (pkey->private_key->data != NULL)
+                Free((char *)pkey->private_key->data);
+        if ((pkey->private_key->data=(unsigned char *)Malloc(l[0])) == NULL)
+                {
+                ASN1err(ASN1_F_I2D_NETSCAPE_RSA,ERR_R_MALLOC_FAILURE);
+                goto err;
+                }
+        zz=pkey->private_key->data;
+        i2d_RSAPrivateKey(a,&zz);
+        if ((os2.data=(unsigned char *)Malloc(os2.length)) == NULL)
+                {
+                ASN1err(ASN1_F_I2D_NETSCAPE_RSA,ERR_R_MALLOC_FAILURE);
+                goto err;
+                }
+        zz=os2.data;
+        i2d_NETSCAPE_PKEY(pkey,&zz);
+                
+        if (cb == NULL)
+                cb=EVP_read_pw_string;
+        i=cb(buf,256,"Enter Private Key password:",1);
+        if (i != 0)
+                {
+                ASN1err(ASN1_F_I2D_NETSCAPE_RSA,ASN1_R_BAD_PASSWORD_READ);
+                goto err;
+                }
+        EVP_BytesToKey(EVP_rc4(),EVP_md5(),NULL,buf,
+                strlen((char *)buf),1,key,NULL);
+        memset(buf,0,256);
+        EVP_CIPHER_CTX_init(&ctx);
+        EVP_EncryptInit(&ctx,EVP_rc4(),key,NULL);
+        EVP_EncryptUpdate(&ctx,os2.data,&i,os2.data,os2.length);
+        EVP_EncryptFinal(&ctx,&(os2.data[i]),&j);
+        EVP_CIPHER_CTX_cleanup(&ctx);
+        p= *pp;
+        ASN1_put_object(&p,1,l[4]+l[3],V_ASN1_SEQUENCE,V_ASN1_UNIVERSAL);
+        i2d_ASN1_OCTET_STRING(&os,&p);
+        ASN1_put_object(&p,1,l[2]+l[1],V_ASN1_SEQUENCE,V_ASN1_UNIVERSAL);
+        i2d_X509_ALGOR(alg,&p);
+        i2d_ASN1_OCTET_STRING(&os2,&p);
+        ret=l[5];
+err:
+        if (os2.data != NULL) Free((char *)os2.data);
+        if (alg != NULL) X509_ALGOR_free(alg);
+        if (pkey != NULL) NETSCAPE_PKEY_free(pkey);
+        r=r;
+        return(ret);
+        }
+RSA *d2i_Netscape_RSA(a,pp,length,cb)
+RSA **a;
+unsigned char **pp;
+long length;
+int (*cb)();
+        {
+        RSA *ret=NULL;
+        ASN1_OCTET_STRING *os=NULL;
+        ASN1_CTX c;
+        c.pp=pp;
+        c.error=ASN1_R_DECODING_ERROR;
+        M_ASN1_D2I_Init();
+        M_ASN1_D2I_start_sequence();
+        M_ASN1_D2I_get(os,d2i_ASN1_OCTET_STRING);
+        if ((os->length != 11) || (strncmp("private-key",
+                (char *)os->data,os->length) != 0))
+                {
+                ASN1err(ASN1_F_D2I_NETSCAPE_RSA,ASN1_R_PRIVATE_KEY_HEADER_MISSING);
+                ASN1_BIT_STRING_free(os);
+                goto err;
+                }
+        ASN1_BIT_STRING_free(os);
+        c.q=c.p;
+        if ((ret=d2i_Netscape_RSA_2(a,&c.p,c.slen,cb)) == NULL) goto err;
+        c.slen-=(c.p-c.q);
+        M_ASN1_D2I_Finish(a,RSA_free,ASN1_F_D2I_NETSCAPE_RSA);
+        }
+RSA *d2i_Netscape_RSA_2(a,pp,length,cb)
+RSA **a;
+unsigned char **pp;
+long length;
+int (*cb)();
+        {
+        NETSCAPE_PKEY *pkey=NULL;
+        RSA *ret=NULL;
+        int i,j;
+        unsigned char buf[256],*zz;
+        unsigned char key[EVP_MAX_KEY_LENGTH];
+        EVP_CIPHER_CTX ctx;
+        X509_ALGOR *alg=NULL;
+        ASN1_OCTET_STRING *os=NULL;
+        ASN1_CTX c;
+        c.error=ASN1_R_ERROR_STACK;
+        c.pp=pp;
+        M_ASN1_D2I_Init();
+        M_ASN1_D2I_start_sequence();
+        M_ASN1_D2I_get(alg,d2i_X509_ALGOR);
+        if (OBJ_obj2nid(alg->algorithm) != NID_rc4)
+                {
+                ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_UNSUPPORTED_ENCRYPTION_ALGORITHM);
+                goto err;
+                }
+        M_ASN1_D2I_get(os,d2i_ASN1_OCTET_STRING);
+        if (cb == NULL)
+                cb=EVP_read_pw_string;
+        i=cb(buf,256,"Enter Private Key password:",0);
+        if (i != 0)
+                {
+                ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_BAD_PASSWORD_READ);
+                goto err;
+                }
+        EVP_BytesToKey(EVP_rc4(),EVP_md5(),NULL,buf,
+                strlen((char *)buf),1,key,NULL);
+        memset(buf,0,256);
+        EVP_CIPHER_CTX_init(&ctx);
+        EVP_DecryptInit(&ctx,EVP_rc4(),key,NULL);
+        EVP_DecryptUpdate(&ctx,os->data,&i,os->data,os->length);
+        EVP_DecryptFinal(&ctx,&(os->data[i]),&j);
+        EVP_CIPHER_CTX_cleanup(&ctx);
+        os->length=i+j;
+        zz=os->data;
+        if ((pkey=d2i_NETSCAPE_PKEY(NULL,&zz,os->length)) == NULL)
+                {
+                ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_UNABLE_TO_DECODE_RSA_PRIVATE_KEY);
+                goto err;
+                }
+                
+        zz=pkey->private_key->data;
+        if ((ret=d2i_RSAPrivateKey(a,&zz,pkey->private_key->length)) == NULL)
+                {
+                ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_UNABLE_TO_DECODE_RSA_KEY);
+                goto err;
+                }
+        if (!asn1_Finish(&c)) goto err;
+        *pp=c.p;
+err:
+        if (pkey != NULL) NETSCAPE_PKEY_free(pkey);
+        if (os != NULL) ASN1_BIT_STRING_free(os);
+        if (alg != NULL) X509_ALGOR_free(alg);
+        return(ret);
+        }
+static int i2d_NETSCAPE_PKEY(a,pp)
+NETSCAPE_PKEY *a;
+unsigned char **pp;
+        {
+        M_ASN1_I2D_vars(a);
+        M_ASN1_I2D_len(a->version,      i2d_ASN1_INTEGER);
+        M_ASN1_I2D_len(a->algor,        i2d_X509_ALGOR);
+        M_ASN1_I2D_len(a->private_key,  i2d_ASN1_OCTET_STRING);
+        M_ASN1_I2D_seq_total();
+        M_ASN1_I2D_put(a->version,      i2d_ASN1_INTEGER);
+        M_ASN1_I2D_put(a->algor,        i2d_X509_ALGOR);
+        M_ASN1_I2D_put(a->private_key,  i2d_ASN1_OCTET_STRING);
+        M_ASN1_I2D_finish();
+        }
+static NETSCAPE_PKEY *d2i_NETSCAPE_PKEY(a,pp,length)
+NETSCAPE_PKEY **a;
+unsigned char **pp;
+long length;
+        {
+        M_ASN1_D2I_vars(a,NETSCAPE_PKEY *,NETSCAPE_PKEY_new);
+        M_ASN1_D2I_Init();
+        M_ASN1_D2I_start_sequence();
+        M_ASN1_D2I_get(ret->version,d2i_ASN1_INTEGER);
+        M_ASN1_D2I_get(ret->algor,d2i_X509_ALGOR);
+        M_ASN1_D2I_get(ret->private_key,d2i_ASN1_OCTET_STRING);
+        M_ASN1_D2I_Finish(a,NETSCAPE_PKEY_free,ASN1_F_D2I_NETSCAPE_PKEY);
+        }
+static NETSCAPE_PKEY *NETSCAPE_PKEY_new()
+        {
+        NETSCAPE_PKEY *ret=NULL;
+        M_ASN1_New_Malloc(ret,NETSCAPE_PKEY);
+        M_ASN1_New(ret->version,ASN1_INTEGER_new);
+        M_ASN1_New(ret->algor,X509_ALGOR_new);
+        M_ASN1_New(ret->private_key,ASN1_OCTET_STRING_new);
+        return(ret);
+        M_ASN1_New_Error(ASN1_F_NETSCAPE_PKEY_NEW);
+        }
+static void NETSCAPE_PKEY_free(a)
+NETSCAPE_PKEY *a;
+        {
+        if (a == NULL) return;
+        ASN1_INTEGER_free(a->version);
+        X509_ALGOR_free(a->algor);
+        ASN1_OCTET_STRING_free(a->private_key);
+        Free((char *)a);
+        }
+#endif /* NO_RC4 */

diff --git a/src/lib/libcrypto/asn1/n_pkey.c b/src/lib/libcrypto/asn1/n_pkey.c new file mode 100644 index 0000000000..5110c91bec --- /dev/null +++ b/src/lib/libcrypto/asn1/n_pkey.c
@@ -0,0 +1,365 @@
	1	/* crypto/asn1/n_pkey.c */
	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
	3	* All rights reserved.
	4	*
	5	* This package is an SSL implementation written
	6	* by Eric Young (eay@cryptsoft.com).
	7	* The implementation was written so as to conform with Netscapes SSL.
	8	*
	9	* This library is free for commercial and non-commercial use as long as
	10	* the following conditions are aheared to. The following conditions
	11	* apply to all code found in this distribution, be it the RC4, RSA,
	12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
	13	* included with this distribution is covered by the same copyright terms
	14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
	15	*
	16	* Copyright remains Eric Young's, and as such any Copyright notices in
	17	* the code are not to be removed.
	18	* If this package is used in a product, Eric Young should be given attribution
	19	* as the author of the parts of the library used.
	20	* This can be in the form of a textual message at program startup or
	21	* in documentation (online or textual) provided with the package.
	22	*
	23	* Redistribution and use in source and binary forms, with or without
	24	* modification, are permitted provided that the following conditions
	25	* are met:
	26	* 1. Redistributions of source code must retain the copyright
	27	* notice, this list of conditions and the following disclaimer.
	28	* 2. Redistributions in binary form must reproduce the above copyright
	29	* notice, this list of conditions and the following disclaimer in the
	30	* documentation and/or other materials provided with the distribution.
	31	* 3. All advertising materials mentioning features or use of this software
	32	* must display the following acknowledgement:
	33	* "This product includes cryptographic software written by
	34	* Eric Young (eay@cryptsoft.com)"
	35	* The word 'cryptographic' can be left out if the rouines from the library
	36	* being used are not cryptographic related :-).
	37	* 4. If you include any Windows specific code (or a derivative thereof) from
	38	* the apps directory (application code) you must include an acknowledgement:
	39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
	40	*
	41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
	42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
	45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
	46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
	47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
	49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
	50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
	51	* SUCH DAMAGE.
	52	*
	53	* The licence and distribution terms for any publically available version or
	54	* derivative of this code cannot be changed. i.e. this code cannot simply be
	55	* copied and put under another distribution licence
	56	* [including the GNU Public Licence.]
	57	*/
	58
	59	#include <stdio.h>
	60	#include "cryptlib.h"
	61	#include "rsa.h"
	62	#include "objects.h"
	63	#include "asn1_mac.h"
	64	#include "evp.h"
	65	#include "x509.h"
	66
	67
	68	#ifndef NO_RC4
	69
	70	typedef struct netscape_pkey_st
	71	{
	72	ASN1_INTEGER *version;
	73	X509_ALGOR *algor;
	74	ASN1_OCTET_STRING *private_key;
	75	} NETSCAPE_PKEY;
	76
	77	/*
	78	* ASN1err(ASN1_F_D2I_NETSCAPE_RSA,ASN1_R_LENGTH_MISMATCH);
	79	* ASN1err(ASN1_F_D2I_NETSCAPE_RSA,ASN1_R_DECODING_ERROR);
	80	* ASN1err(ASN1_F_D2I_NETSCAPE_PKEY,ASN1_R_DECODING_ERROR);
	81	* ASN1err(ASN1_F_NETSCAPE_PKEY_NEW,ASN1_R_DECODING_ERROR);
	82	*/
	83	#ifndef NOPROTO
	84	static int i2d_NETSCAPE_PKEY(NETSCAPE_PKEY a, unsigned char *pp);
	85	static NETSCAPE_PKEY d2i_NETSCAPE_PKEY(NETSCAPE_PKEY a,unsigned char *pp, long length);
	86	static NETSCAPE_PKEY *NETSCAPE_PKEY_new(void);
	87	static void NETSCAPE_PKEY_free(NETSCAPE_PKEY *);
	88	#else
	89	static int i2d_NETSCAPE_PKEY();
	90	static NETSCAPE_PKEY *d2i_NETSCAPE_PKEY();
	91	static NETSCAPE_PKEY *NETSCAPE_PKEY_new();
	92	static void NETSCAPE_PKEY_free();
	93	#endif
	94
	95	int i2d_Netscape_RSA(a,pp,cb)
	96	RSA *a;
	97	unsigned char **pp;
	98	int (*cb)();
	99	{
	100	int i,j,l[6];
	101	NETSCAPE_PKEY *pkey;
	102	unsigned char buf[256],*zz;
	103	unsigned char key[EVP_MAX_KEY_LENGTH];
	104	EVP_CIPHER_CTX ctx;
	105	X509_ALGOR *alg=NULL;
	106	ASN1_OCTET_STRING os,os2;
	107	M_ASN1_I2D_vars(a);
	108
	109	if (a == NULL) return(0);
	110
	111	#ifdef WIN32
	112	r=r; /* shut the damn compiler up :-) */
	113	#endif
	114
	115	os.data=os2.data=NULL;
	116	if ((pkey=NETSCAPE_PKEY_new()) == NULL) goto err;
	117	if (!ASN1_INTEGER_set(pkey->version,0)) goto err;
	118
	119	if (pkey->algor->algorithm != NULL)
	120	ASN1_OBJECT_free(pkey->algor->algorithm);
	121	pkey->algor->algorithm=OBJ_nid2obj(NID_rsaEncryption);
	122	if ((pkey->algor->parameter=ASN1_TYPE_new()) == NULL) goto err;
	123	pkey->algor->parameter->type=V_ASN1_NULL;
	124
	125	l[0]=i2d_RSAPrivateKey(a,NULL);
	126	pkey->private_key->length=l[0];
	127
	128	os2.length=i2d_NETSCAPE_PKEY(pkey,NULL);
	129	l[1]=i2d_ASN1_OCTET_STRING(&os2,NULL);
	130
	131	if ((alg=X509_ALGOR_new()) == NULL) goto err;
	132	if (alg->algorithm != NULL)
	133	ASN1_OBJECT_free(alg->algorithm);
	134	alg->algorithm=OBJ_nid2obj(NID_rc4);
	135	if ((alg->parameter=ASN1_TYPE_new()) == NULL) goto err;
	136	alg->parameter->type=V_ASN1_NULL;
	137
	138	l[2]=i2d_X509_ALGOR(alg,NULL);
	139	l[3]=ASN1_object_size(1,l[2]+l[1],V_ASN1_SEQUENCE);
	140
	141	os.data=(unsigned char *)"private-key";
	142	os.length=11;
	143	l[4]=i2d_ASN1_OCTET_STRING(&os,NULL);
	144
	145	l[5]=ASN1_object_size(1,l[4]+l[3],V_ASN1_SEQUENCE);
	146
	147	if (pp == NULL)
	148	{
	149	if (pkey != NULL) NETSCAPE_PKEY_free(pkey);
	150	if (alg != NULL) X509_ALGOR_free(alg);
	151	return(l[5]);
	152	}
	153
	154	if (pkey->private_key->data != NULL)
	155	Free((char *)pkey->private_key->data);
	156	if ((pkey->private_key->data=(unsigned char *)Malloc(l[0])) == NULL)
	157	{
	158	ASN1err(ASN1_F_I2D_NETSCAPE_RSA,ERR_R_MALLOC_FAILURE);
	159	goto err;
	160	}
	161	zz=pkey->private_key->data;
	162	i2d_RSAPrivateKey(a,&zz);
	163
	164	if ((os2.data=(unsigned char *)Malloc(os2.length)) == NULL)
	165	{
	166	ASN1err(ASN1_F_I2D_NETSCAPE_RSA,ERR_R_MALLOC_FAILURE);
	167	goto err;
	168	}
	169	zz=os2.data;
	170	i2d_NETSCAPE_PKEY(pkey,&zz);
	171
	172	if (cb == NULL)
	173	cb=EVP_read_pw_string;
	174	i=cb(buf,256,"Enter Private Key password:",1);
	175	if (i != 0)
	176	{
	177	ASN1err(ASN1_F_I2D_NETSCAPE_RSA,ASN1_R_BAD_PASSWORD_READ);
	178	goto err;
	179	}
	180	EVP_BytesToKey(EVP_rc4(),EVP_md5(),NULL,buf,
	181	strlen((char *)buf),1,key,NULL);
	182	memset(buf,0,256);
	183
	184	EVP_CIPHER_CTX_init(&ctx);
	185	EVP_EncryptInit(&ctx,EVP_rc4(),key,NULL);
	186	EVP_EncryptUpdate(&ctx,os2.data,&i,os2.data,os2.length);
	187	EVP_EncryptFinal(&ctx,&(os2.data[i]),&j);
	188	EVP_CIPHER_CTX_cleanup(&ctx);
	189
	190	p= *pp;
	191	ASN1_put_object(&p,1,l[4]+l[3],V_ASN1_SEQUENCE,V_ASN1_UNIVERSAL);
	192	i2d_ASN1_OCTET_STRING(&os,&p);
	193	ASN1_put_object(&p,1,l[2]+l[1],V_ASN1_SEQUENCE,V_ASN1_UNIVERSAL);
	194	i2d_X509_ALGOR(alg,&p);
	195	i2d_ASN1_OCTET_STRING(&os2,&p);
	196	ret=l[5];
	197	err:
	198	if (os2.data != NULL) Free((char *)os2.data);
	199	if (alg != NULL) X509_ALGOR_free(alg);
	200	if (pkey != NULL) NETSCAPE_PKEY_free(pkey);
	201	r=r;
	202	return(ret);
	203	}
	204
	205	RSA *d2i_Netscape_RSA(a,pp,length,cb)
	206	RSA **a;
	207	unsigned char **pp;
	208	long length;
	209	int (*cb)();
	210	{
	211	RSA *ret=NULL;
	212	ASN1_OCTET_STRING *os=NULL;
	213	ASN1_CTX c;
	214
	215	c.pp=pp;
	216	c.error=ASN1_R_DECODING_ERROR;
	217
	218	M_ASN1_D2I_Init();
	219	M_ASN1_D2I_start_sequence();
	220	M_ASN1_D2I_get(os,d2i_ASN1_OCTET_STRING);
	221	if ((os->length != 11) \|\| (strncmp("private-key",
	222	(char *)os->data,os->length) != 0))
	223	{
	224	ASN1err(ASN1_F_D2I_NETSCAPE_RSA,ASN1_R_PRIVATE_KEY_HEADER_MISSING);
	225	ASN1_BIT_STRING_free(os);
	226	goto err;
	227	}
	228	ASN1_BIT_STRING_free(os);
	229	c.q=c.p;
	230	if ((ret=d2i_Netscape_RSA_2(a,&c.p,c.slen,cb)) == NULL) goto err;
	231	c.slen-=(c.p-c.q);
	232
	233	M_ASN1_D2I_Finish(a,RSA_free,ASN1_F_D2I_NETSCAPE_RSA);
	234	}
	235
	236	RSA *d2i_Netscape_RSA_2(a,pp,length,cb)
	237	RSA **a;
	238	unsigned char **pp;
	239	long length;
	240	int (*cb)();
	241	{
	242	NETSCAPE_PKEY *pkey=NULL;
	243	RSA *ret=NULL;
	244	int i,j;
	245	unsigned char buf[256],*zz;
	246	unsigned char key[EVP_MAX_KEY_LENGTH];
	247	EVP_CIPHER_CTX ctx;
	248	X509_ALGOR *alg=NULL;
	249	ASN1_OCTET_STRING *os=NULL;
	250	ASN1_CTX c;
	251
	252	c.error=ASN1_R_ERROR_STACK;
	253	c.pp=pp;
	254
	255	M_ASN1_D2I_Init();
	256	M_ASN1_D2I_start_sequence();
	257	M_ASN1_D2I_get(alg,d2i_X509_ALGOR);
	258	if (OBJ_obj2nid(alg->algorithm) != NID_rc4)
	259	{
	260	ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_UNSUPPORTED_ENCRYPTION_ALGORITHM);
	261	goto err;
	262	}
	263	M_ASN1_D2I_get(os,d2i_ASN1_OCTET_STRING);
	264	if (cb == NULL)
	265	cb=EVP_read_pw_string;
	266	i=cb(buf,256,"Enter Private Key password:",0);
	267	if (i != 0)
	268	{
	269	ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_BAD_PASSWORD_READ);
	270	goto err;
	271	}
	272
	273	EVP_BytesToKey(EVP_rc4(),EVP_md5(),NULL,buf,
	274	strlen((char *)buf),1,key,NULL);
	275	memset(buf,0,256);
	276
	277	EVP_CIPHER_CTX_init(&ctx);
	278	EVP_DecryptInit(&ctx,EVP_rc4(),key,NULL);
	279	EVP_DecryptUpdate(&ctx,os->data,&i,os->data,os->length);
	280	EVP_DecryptFinal(&ctx,&(os->data[i]),&j);
	281	EVP_CIPHER_CTX_cleanup(&ctx);
	282	os->length=i+j;
	283
	284	zz=os->data;
	285
	286	if ((pkey=d2i_NETSCAPE_PKEY(NULL,&zz,os->length)) == NULL)
	287	{
	288	ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_UNABLE_TO_DECODE_RSA_PRIVATE_KEY);
	289	goto err;
	290	}
	291
	292	zz=pkey->private_key->data;
	293	if ((ret=d2i_RSAPrivateKey(a,&zz,pkey->private_key->length)) == NULL)
	294	{
	295	ASN1err(ASN1_F_D2I_NETSCAPE_RSA_2,ASN1_R_UNABLE_TO_DECODE_RSA_KEY);
	296	goto err;
	297	}
	298	if (!asn1_Finish(&c)) goto err;
	299	*pp=c.p;
	300	err:
	301	if (pkey != NULL) NETSCAPE_PKEY_free(pkey);
	302	if (os != NULL) ASN1_BIT_STRING_free(os);
	303	if (alg != NULL) X509_ALGOR_free(alg);
	304	return(ret);
	305	}
	306
	307	static int i2d_NETSCAPE_PKEY(a,pp)
	308	NETSCAPE_PKEY *a;
	309	unsigned char **pp;
	310	{
	311	M_ASN1_I2D_vars(a);
	312
	313
	314	M_ASN1_I2D_len(a->version, i2d_ASN1_INTEGER);
	315	M_ASN1_I2D_len(a->algor, i2d_X509_ALGOR);
	316	M_ASN1_I2D_len(a->private_key, i2d_ASN1_OCTET_STRING);
	317
	318	M_ASN1_I2D_seq_total();
	319
	320	M_ASN1_I2D_put(a->version, i2d_ASN1_INTEGER);
	321	M_ASN1_I2D_put(a->algor, i2d_X509_ALGOR);
	322	M_ASN1_I2D_put(a->private_key, i2d_ASN1_OCTET_STRING);
	323
	324	M_ASN1_I2D_finish();
	325	}
	326
	327	static NETSCAPE_PKEY *d2i_NETSCAPE_PKEY(a,pp,length)
	328	NETSCAPE_PKEY **a;
	329	unsigned char **pp;
	330	long length;
	331	{
	332	M_ASN1_D2I_vars(a,NETSCAPE_PKEY *,NETSCAPE_PKEY_new);
	333
	334	M_ASN1_D2I_Init();
	335	M_ASN1_D2I_start_sequence();
	336	M_ASN1_D2I_get(ret->version,d2i_ASN1_INTEGER);
	337	M_ASN1_D2I_get(ret->algor,d2i_X509_ALGOR);
	338	M_ASN1_D2I_get(ret->private_key,d2i_ASN1_OCTET_STRING);
	339	M_ASN1_D2I_Finish(a,NETSCAPE_PKEY_free,ASN1_F_D2I_NETSCAPE_PKEY);
	340	}
	341
	342	static NETSCAPE_PKEY *NETSCAPE_PKEY_new()
	343	{
	344	NETSCAPE_PKEY *ret=NULL;
	345
	346	M_ASN1_New_Malloc(ret,NETSCAPE_PKEY);
	347	M_ASN1_New(ret->version,ASN1_INTEGER_new);
	348	M_ASN1_New(ret->algor,X509_ALGOR_new);
	349	M_ASN1_New(ret->private_key,ASN1_OCTET_STRING_new);
	350	return(ret);
	351	M_ASN1_New_Error(ASN1_F_NETSCAPE_PKEY_NEW);
	352	}
	353
	354	static void NETSCAPE_PKEY_free(a)
	355	NETSCAPE_PKEY *a;
	356	{
	357	if (a == NULL) return;
	358	ASN1_INTEGER_free(a->version);
	359	X509_ALGOR_free(a->algor);
	360	ASN1_OCTET_STRING_free(a->private_key);
	361	Free((char *)a);
	362	}
	363
	364	#endif /* NO_RC4 */
	365