1 files changed, 0 insertions, 427 deletions
diff --git a/src/lib/libcrypto/evp/bio_enc.c b/src/lib/libcrypto/evp/bio_enc.c
deleted file mode 100644
index e367faa967..0000000000
--- a/src/lib/libcrypto/evp/bio_enc.c
+++ /dev/null
@@ -1,427 +0,0 @@
-/* $OpenBSD: bio_enc.c,v 1.18 2014/07/11 08:44:48 jsing Exp $ */
-/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
- * All rights reserved.
- *
- * This package is an SSL implementation written
- * by Eric Young (eay@cryptsoft.com).
- * The implementation was written so as to conform with Netscapes SSL.
- *
- * This library is free for commercial and non-commercial use as long as
- * the following conditions are aheared to.  The following conditions
- * apply to all code found in this distribution, be it the RC4, RSA,
- * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
- * included with this distribution is covered by the same copyright terms
- * except that the holder is Tim Hudson (tjh@cryptsoft.com).
- *
- * Copyright remains Eric Young's, and as such any Copyright notices in
- * the code are not to be removed.
- * If this package is used in a product, Eric Young should be given attribution
- * as the author of the parts of the library used.
- * This can be in the form of a textual message at program startup or
- * in documentation (online or textual) provided with the package.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    "This product includes cryptographic software written by
- *     Eric Young (eay@cryptsoft.com)"
- *    The word 'cryptographic' can be left out if the rouines from the library
- *    being used are not cryptographic related :-).
- * 4. If you include any Windows specific code (or a derivative thereof) from
- *    the apps directory (application code) you must include an acknowledgement:
- *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
- *
- * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- *
- * The licence and distribution terms for any publically available version or
- * derivative of this code cannot be changed.  i.e. this code cannot simply be
- * copied and put under another distribution licence
- * [including the GNU Public Licence.]
- */
-#include <errno.h>
-#include <stdio.h>
-#include <string.h>
-#include <openssl/buffer.h>
-#include <openssl/evp.h>
-static int enc_write(BIO *h, const char *buf, int num);
-static int enc_read(BIO *h, char *buf, int size);
-/*static int enc_puts(BIO *h, const char *str); */
-/*static int enc_gets(BIO *h, char *str, int size); */
-static long enc_ctrl(BIO *h, int cmd, long arg1, void *arg2);
-static int enc_new(BIO *h);
-static int enc_free(BIO *data);
-static long enc_callback_ctrl(BIO *h, int cmd, bio_info_cb *fps);
-#define ENC_BLOCK_SIZE  (1024*4)
-#define BUF_OFFSET      (EVP_MAX_BLOCK_LENGTH*2)
-typedef struct enc_struct {
-        int buf_len;
-        int buf_off;
-        int cont;               /* <= 0 when finished */
-        int finished;
-        int ok;                 /* bad decrypt */
-        EVP_CIPHER_CTX cipher;
-        /* buf is larger than ENC_BLOCK_SIZE because EVP_DecryptUpdate
-         * can return up to a block more data than is presented to it
-         */
-        char buf[ENC_BLOCK_SIZE + BUF_OFFSET + 2];
-} BIO_ENC_CTX;
-static BIO_METHOD methods_enc = {
-        .type = BIO_TYPE_CIPHER,
-        .name = "cipher",
-        .bwrite = enc_write,
-        .bread = enc_read,
-        .ctrl = enc_ctrl,
-        .create = enc_new,
-        .destroy = enc_free,
-        .callback_ctrl = enc_callback_ctrl
-};
-BIO_METHOD *
-BIO_f_cipher(void)
-{
-        return (&methods_enc);
-}
-static int
-enc_new(BIO *bi)
-{
-        BIO_ENC_CTX *ctx;
-        ctx = malloc(sizeof(BIO_ENC_CTX));
-        if (ctx == NULL)
-                return (0);
-        EVP_CIPHER_CTX_init(&ctx->cipher);
-        ctx->buf_len = 0;
-        ctx->buf_off = 0;
-        ctx->cont = 1;
-        ctx->finished = 0;
-        ctx->ok = 1;
-        bi->init = 0;
-        bi->ptr = (char *)ctx;
-        bi->flags = 0;
-        return (1);
-}
-static int
-enc_free(BIO *a)
-{
-        BIO_ENC_CTX *b;
-        if (a == NULL)
-                return (0);
-        b = (BIO_ENC_CTX *)a->ptr;
-        EVP_CIPHER_CTX_cleanup(&(b->cipher));
-        OPENSSL_cleanse(a->ptr, sizeof(BIO_ENC_CTX));
-        free(a->ptr);
-        a->ptr = NULL;
-        a->init = 0;
-        a->flags = 0;
-        return (1);
-}
-static int
-enc_read(BIO *b, char *out, int outl)
-{
-        int ret = 0, i;
-        BIO_ENC_CTX *ctx;
-        if (out == NULL)
-                return (0);
-        ctx = (BIO_ENC_CTX *)b->ptr;
-        if ((ctx == NULL) || (b->next_bio == NULL))
-                return (0);
-        /* First check if there are bytes decoded/encoded */
-        if (ctx->buf_len > 0) {
-                i = ctx->buf_len - ctx->buf_off;
-                if (i > outl)
-                        i = outl;
-                memcpy(out, &(ctx->buf[ctx->buf_off]), i);
-                ret = i;
-                out += i;
-                outl -= i;
-                ctx->buf_off += i;
-                if (ctx->buf_len == ctx->buf_off) {
-                        ctx->buf_len = 0;
-                        ctx->buf_off = 0;
-                }
-        }
-        /* At this point, we have room of outl bytes and an empty
-         * buffer, so we should read in some more. */
-        while (outl > 0) {
-                if (ctx->cont <= 0)
-                        break;
-                /* read in at IV offset, read the EVP_Cipher
-                 * documentation about why */
-                i = BIO_read(b->next_bio, &(ctx->buf[BUF_OFFSET]), ENC_BLOCK_SIZE);
-                if (i <= 0) {
-                        /* Should be continue next time we are called? */
-                        if (!BIO_should_retry(b->next_bio)) {
-                                ctx->cont = i;
-                                i = EVP_CipherFinal_ex(&(ctx->cipher),
-                                    (unsigned char *)ctx->buf,
-                                    &(ctx->buf_len));
-                                ctx->ok = i;
-                                ctx->buf_off = 0;
-                        } else {
-                                ret = (ret == 0) ? i : ret;
-                                break;
-                        }
-                } else {
-                        EVP_CipherUpdate(&(ctx->cipher),
-                            (unsigned char *)ctx->buf, &ctx->buf_len,
-                            (unsigned char *)&(ctx->buf[BUF_OFFSET]), i);
-                        ctx->cont = 1;
-                        /* Note: it is possible for EVP_CipherUpdate to
-                         * decrypt zero bytes because this is or looks like
-                         * the final block: if this happens we should retry
-                         * and either read more data or decrypt the final
-                         * block
-                         */
-                        if (ctx->buf_len == 0)
-                                continue;
-                }
-                if (ctx->buf_len <= outl)
-                        i = ctx->buf_len;
-                else
-                        i = outl;
-                if (i <= 0)
-                        break;
-                memcpy(out, ctx->buf, i);
-                ret += i;
-                ctx->buf_off = i;
-                outl -= i;
-                out += i;
-        }
-        BIO_clear_retry_flags(b);
-        BIO_copy_next_retry(b);
-        return ((ret == 0) ? ctx->cont : ret);
-}
-static int
-enc_write(BIO *b, const char *in, int inl)
-{
-        int ret = 0, n, i;
-        BIO_ENC_CTX *ctx;
-        ctx = (BIO_ENC_CTX *)b->ptr;
-        ret = inl;
-        BIO_clear_retry_flags(b);
-        n = ctx->buf_len - ctx->buf_off;
-        while (n > 0) {
-                i = BIO_write(b->next_bio, &(ctx->buf[ctx->buf_off]), n);
-                if (i <= 0) {
-                        BIO_copy_next_retry(b);
-                        return (i);
-                }
-                ctx->buf_off += i;
-                n -= i;
-        }
-        /* at this point all pending data has been written */
-        if ((in == NULL) || (inl <= 0))
-                return (0);
-        ctx->buf_off = 0;
-        while (inl > 0) {
-                n = (inl > ENC_BLOCK_SIZE) ? ENC_BLOCK_SIZE : inl;
-                EVP_CipherUpdate(&(ctx->cipher),
-                    (unsigned char *)ctx->buf, &ctx->buf_len,
-                    (unsigned char *)in, n);
-                inl -= n;
-                in += n;
-                ctx->buf_off = 0;
-                n = ctx->buf_len;
-                while (n > 0) {
-                        i = BIO_write(b->next_bio, &(ctx->buf[ctx->buf_off]), n);
-                        if (i <= 0) {
-                                BIO_copy_next_retry(b);
-                                return (ret == inl) ? i : ret - inl;
-                        }
-                        n -= i;
-                        ctx->buf_off += i;
-                }
-                ctx->buf_len = 0;
-                ctx->buf_off = 0;
-        }
-        BIO_copy_next_retry(b);
-        return (ret);
-}
-static long
-enc_ctrl(BIO *b, int cmd, long num, void *ptr)
-{
-        BIO *dbio;
-        BIO_ENC_CTX *ctx, *dctx;
-        long ret = 1;
-        int i;
-        EVP_CIPHER_CTX **c_ctx;
-        ctx = (BIO_ENC_CTX *)b->ptr;
-        switch (cmd) {
-        case BIO_CTRL_RESET:
-                ctx->ok = 1;
-                ctx->finished = 0;
-                EVP_CipherInit_ex(&(ctx->cipher), NULL, NULL, NULL, NULL,
-                    ctx->cipher.encrypt);
-                ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
-                break;
-        case BIO_CTRL_EOF:      /* More to read */
-                if (ctx->cont <= 0)
-                        ret = 1;
-                else
-                        ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
-                break;
-        case BIO_CTRL_WPENDING:
-                ret = ctx->buf_len - ctx->buf_off;
-                if (ret <= 0)
-                        ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
-                break;
-        case BIO_CTRL_PENDING: /* More to read in buffer */
-                ret = ctx->buf_len - ctx->buf_off;
-                if (ret <= 0)
-                        ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
-                break;
-        case BIO_CTRL_FLUSH:
-                /* do a final write */
-again:
-                while (ctx->buf_len != ctx->buf_off) {
-                        i = enc_write(b, NULL, 0);
-                        if (i < 0)
-                                return i;
-                }
-                if (!ctx->finished) {
-                        ctx->finished = 1;
-                        ctx->buf_off = 0;
-                        ret = EVP_CipherFinal_ex(&(ctx->cipher),
-                            (unsigned char *)ctx->buf,
-                            &(ctx->buf_len));
-                        ctx->ok = (int)ret;
-                        if (ret <= 0)
-                                break;
-                        /* push out the bytes */
-                        goto again;
-                }
-                /* Finally flush the underlying BIO */
-                ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
-                break;
-        case BIO_C_GET_CIPHER_STATUS:
-                ret = (long)ctx->ok;
-                break;
-        case BIO_C_DO_STATE_MACHINE:
-                BIO_clear_retry_flags(b);
-                ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
-                BIO_copy_next_retry(b);
-                break;
-        case BIO_C_GET_CIPHER_CTX:
-                c_ctx = (EVP_CIPHER_CTX **)ptr;
-                (*c_ctx) = &(ctx->cipher);
-                b->init = 1;
-                break;
-        case BIO_CTRL_DUP:
-                dbio = (BIO *)ptr;
-                dctx = (BIO_ENC_CTX *)dbio->ptr;
-                EVP_CIPHER_CTX_init(&dctx->cipher);
-                ret = EVP_CIPHER_CTX_copy(&dctx->cipher, &ctx->cipher);
-                if (ret)
-                        dbio->init = 1;
-                break;
-        default:
-                ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
-                break;
-        }
-        return (ret);
-}
-static long
-enc_callback_ctrl(BIO *b, int cmd, bio_info_cb *fp)
-{
-        long ret = 1;
-        if (b->next_bio == NULL)
-                return (0);
-        switch (cmd) {
-        default:
-                ret = BIO_callback_ctrl(b->next_bio, cmd, fp);
-                break;
-        }
-        return (ret);
-}
-/*
-void BIO_set_cipher_ctx(b,c)
-BIO *b;
-EVP_CIPHER_ctx *c;
-        {
-        if (b == NULL) return;
-        if ((b->callback != NULL) &&
-                (b->callback(b,BIO_CB_CTRL,(char *)c,BIO_CTRL_SET,e,0L) <= 0))
-                return;
-        b->init=1;
-        ctx=(BIO_ENC_CTX *)b->ptr;
-        memcpy(ctx->cipher,c,sizeof(EVP_CIPHER_CTX));
-        if (b->callback != NULL)
-                b->callback(b,BIO_CB_CTRL,(char *)c,BIO_CTRL_SET,e,1L);
-        }
-*/
-void
-BIO_set_cipher(BIO *b, const EVP_CIPHER *c, const unsigned char *k,
-    const unsigned char *i, int e)
-{
-        BIO_ENC_CTX *ctx;
-        if (b == NULL)
-                return;
-        if ((b->callback != NULL) &&
-            (b->callback(b, BIO_CB_CTRL, (const char *)c, BIO_CTRL_SET, e, 0L) <= 0))
-                return;
-        b->init = 1;
-        ctx = (BIO_ENC_CTX *)b->ptr;
-        EVP_CipherInit_ex(&(ctx->cipher), c, NULL, k, i, e);
-        if (b->callback != NULL)
-                b->callback(b, BIO_CB_CTRL, (const char *)c, BIO_CTRL_SET, e, 1L);
-}

diff --git a/src/lib/libcrypto/evp/bio_enc.c b/src/lib/libcrypto/evp/bio_enc.c deleted file mode 100644 index e367faa967..0000000000 --- a/src/lib/libcrypto/evp/bio_enc.c +++ /dev/null
@@ -1,427 +0,0 @@
1	/* $OpenBSD: bio_enc.c,v 1.18 2014/07/11 08:44:48 jsing Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.
4	*
5	* This package is an SSL implementation written
6	* by Eric Young (eay@cryptsoft.com).
7	* The implementation was written so as to conform with Netscapes SSL.
8	*
9	* This library is free for commercial and non-commercial use as long as
10	* the following conditions are aheared to. The following conditions
11	* apply to all code found in this distribution, be it the RC4, RSA,
12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
13	* included with this distribution is covered by the same copyright terms
14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
15	*
16	* Copyright remains Eric Young's, and as such any Copyright notices in
17	* the code are not to be removed.
18	* If this package is used in a product, Eric Young should be given attribution
19	* as the author of the parts of the library used.
20	* This can be in the form of a textual message at program startup or
21	* in documentation (online or textual) provided with the package.
22	*
23	* Redistribution and use in source and binary forms, with or without
24	* modification, are permitted provided that the following conditions
25	* are met:
26	* 1. Redistributions of source code must retain the copyright
27	* notice, this list of conditions and the following disclaimer.
28	* 2. Redistributions in binary form must reproduce the above copyright
29	* notice, this list of conditions and the following disclaimer in the
30	* documentation and/or other materials provided with the distribution.
31	* 3. All advertising materials mentioning features or use of this software
32	* must display the following acknowledgement:
33	* "This product includes cryptographic software written by
34	* Eric Young (eay@cryptsoft.com)"
35	* The word 'cryptographic' can be left out if the rouines from the library
36	* being used are not cryptographic related :-).
37	* 4. If you include any Windows specific code (or a derivative thereof) from
38	* the apps directory (application code) you must include an acknowledgement:
39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40	*
41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51	* SUCH DAMAGE.
52	*
53	* The licence and distribution terms for any publically available version or
54	* derivative of this code cannot be changed. i.e. this code cannot simply be
55	* copied and put under another distribution licence
56	* [including the GNU Public Licence.]
57	*/
58
59	#include <errno.h>
60	#include <stdio.h>
61	#include <string.h>
62
63	#include <openssl/buffer.h>
64	#include <openssl/evp.h>
65
66	static int enc_write(BIO h, const char buf, int num);
67	static int enc_read(BIO h, char buf, int size);
68	/static int enc_puts(BIO h, const char str); /
69	/static int enc_gets(BIO h, char str, int size); /
70	static long enc_ctrl(BIO h, int cmd, long arg1, void arg2);
71	static int enc_new(BIO *h);
72	static int enc_free(BIO *data);
73	static long enc_callback_ctrl(BIO h, int cmd, bio_info_cb fps);
74	#define ENC_BLOCK_SIZE (1024*4)
75	#define BUF_OFFSET (EVP_MAX_BLOCK_LENGTH*2)
76
77	typedef struct enc_struct {
78	int buf_len;
79	int buf_off;
80	int cont; /* <= 0 when finished */
81	int finished;
82	int ok; /* bad decrypt */
83	EVP_CIPHER_CTX cipher;
84	/* buf is larger than ENC_BLOCK_SIZE because EVP_DecryptUpdate
85	* can return up to a block more data than is presented to it
86	*/
87	char buf[ENC_BLOCK_SIZE + BUF_OFFSET + 2];
88	} BIO_ENC_CTX;
89
90	static BIO_METHOD methods_enc = {
91	.type = BIO_TYPE_CIPHER,
92	.name = "cipher",
93	.bwrite = enc_write,
94	.bread = enc_read,
95	.ctrl = enc_ctrl,
96	.create = enc_new,
97	.destroy = enc_free,
98	.callback_ctrl = enc_callback_ctrl
99	};
100
101	BIO_METHOD *
102	BIO_f_cipher(void)
103	{
104	return (&methods_enc);
105	}
106
107	static int
108	enc_new(BIO *bi)
109	{
110	BIO_ENC_CTX *ctx;
111
112	ctx = malloc(sizeof(BIO_ENC_CTX));
113	if (ctx == NULL)
114	return (0);
115	EVP_CIPHER_CTX_init(&ctx->cipher);
116
117	ctx->buf_len = 0;
118	ctx->buf_off = 0;
119	ctx->cont = 1;
120	ctx->finished = 0;
121	ctx->ok = 1;
122
123	bi->init = 0;
124	bi->ptr = (char *)ctx;
125	bi->flags = 0;
126	return (1);
127	}
128
129	static int
130	enc_free(BIO *a)
131	{
132	BIO_ENC_CTX *b;
133
134	if (a == NULL)
135	return (0);
136	b = (BIO_ENC_CTX *)a->ptr;
137	EVP_CIPHER_CTX_cleanup(&(b->cipher));
138	OPENSSL_cleanse(a->ptr, sizeof(BIO_ENC_CTX));
139	free(a->ptr);
140	a->ptr = NULL;
141	a->init = 0;
142	a->flags = 0;
143	return (1);
144	}
145
146	static int
147	enc_read(BIO b, char out, int outl)
148	{
149	int ret = 0, i;
150	BIO_ENC_CTX *ctx;
151
152	if (out == NULL)
153	return (0);
154	ctx = (BIO_ENC_CTX *)b->ptr;
155
156	if ((ctx == NULL) \|\| (b->next_bio == NULL))
157	return (0);
158
159	/* First check if there are bytes decoded/encoded */
160	if (ctx->buf_len > 0) {
161	i = ctx->buf_len - ctx->buf_off;
162	if (i > outl)
163	i = outl;
164	memcpy(out, &(ctx->buf[ctx->buf_off]), i);
165	ret = i;
166	out += i;
167	outl -= i;
168	ctx->buf_off += i;
169	if (ctx->buf_len == ctx->buf_off) {
170	ctx->buf_len = 0;
171	ctx->buf_off = 0;
172	}
173	}
174
175	/* At this point, we have room of outl bytes and an empty
176	* buffer, so we should read in some more. */
177
178	while (outl > 0) {
179	if (ctx->cont <= 0)
180	break;
181
182	/* read in at IV offset, read the EVP_Cipher
183	* documentation about why */
184	i = BIO_read(b->next_bio, &(ctx->buf[BUF_OFFSET]), ENC_BLOCK_SIZE);
185
186	if (i <= 0) {
187	/* Should be continue next time we are called? */
188	if (!BIO_should_retry(b->next_bio)) {
189	ctx->cont = i;
190	i = EVP_CipherFinal_ex(&(ctx->cipher),
191	(unsigned char *)ctx->buf,
192	&(ctx->buf_len));
193	ctx->ok = i;
194	ctx->buf_off = 0;
195	} else {
196	ret = (ret == 0) ? i : ret;
197	break;
198	}
199	} else {
200	EVP_CipherUpdate(&(ctx->cipher),
201	(unsigned char *)ctx->buf, &ctx->buf_len,
202	(unsigned char *)&(ctx->buf[BUF_OFFSET]), i);
203	ctx->cont = 1;
204	/* Note: it is possible for EVP_CipherUpdate to
205	* decrypt zero bytes because this is or looks like
206	* the final block: if this happens we should retry
207	* and either read more data or decrypt the final
208	* block
209	*/
210	if (ctx->buf_len == 0)
211	continue;
212	}
213
214	if (ctx->buf_len <= outl)
215	i = ctx->buf_len;
216	else
217	i = outl;
218	if (i <= 0)
219	break;
220	memcpy(out, ctx->buf, i);
221	ret += i;
222	ctx->buf_off = i;
223	outl -= i;
224	out += i;
225	}
226
227	BIO_clear_retry_flags(b);
228	BIO_copy_next_retry(b);
229	return ((ret == 0) ? ctx->cont : ret);
230	}
231
232	static int
233	enc_write(BIO b, const char in, int inl)
234	{
235	int ret = 0, n, i;
236	BIO_ENC_CTX *ctx;
237
238	ctx = (BIO_ENC_CTX *)b->ptr;
239	ret = inl;
240
241	BIO_clear_retry_flags(b);
242	n = ctx->buf_len - ctx->buf_off;
243	while (n > 0) {
244	i = BIO_write(b->next_bio, &(ctx->buf[ctx->buf_off]), n);
245	if (i <= 0) {
246	BIO_copy_next_retry(b);
247	return (i);
248	}
249	ctx->buf_off += i;
250	n -= i;
251	}
252	/* at this point all pending data has been written */
253
254	if ((in == NULL) \|\| (inl <= 0))
255	return (0);
256
257	ctx->buf_off = 0;
258	while (inl > 0) {
259	n = (inl > ENC_BLOCK_SIZE) ? ENC_BLOCK_SIZE : inl;
260	EVP_CipherUpdate(&(ctx->cipher),
261	(unsigned char *)ctx->buf, &ctx->buf_len,
262	(unsigned char *)in, n);
263	inl -= n;
264	in += n;
265
266	ctx->buf_off = 0;
267	n = ctx->buf_len;
268	while (n > 0) {
269	i = BIO_write(b->next_bio, &(ctx->buf[ctx->buf_off]), n);
270	if (i <= 0) {
271	BIO_copy_next_retry(b);
272	return (ret == inl) ? i : ret - inl;
273	}
274	n -= i;
275	ctx->buf_off += i;
276	}
277	ctx->buf_len = 0;
278	ctx->buf_off = 0;
279	}
280	BIO_copy_next_retry(b);
281	return (ret);
282	}
283
284	static long
285	enc_ctrl(BIO b, int cmd, long num, void ptr)
286	{
287	BIO *dbio;
288	BIO_ENC_CTX ctx, dctx;
289	long ret = 1;
290	int i;
291	EVP_CIPHER_CTX **c_ctx;
292
293	ctx = (BIO_ENC_CTX *)b->ptr;
294
295	switch (cmd) {
296	case BIO_CTRL_RESET:
297	ctx->ok = 1;
298	ctx->finished = 0;
299	EVP_CipherInit_ex(&(ctx->cipher), NULL, NULL, NULL, NULL,
300	ctx->cipher.encrypt);
301	ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
302	break;
303	case BIO_CTRL_EOF: /* More to read */
304	if (ctx->cont <= 0)
305	ret = 1;
306	else
307	ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
308	break;
309	case BIO_CTRL_WPENDING:
310	ret = ctx->buf_len - ctx->buf_off;
311	if (ret <= 0)
312	ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
313	break;
314	case BIO_CTRL_PENDING: /* More to read in buffer */
315	ret = ctx->buf_len - ctx->buf_off;
316	if (ret <= 0)
317	ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
318	break;
319	case BIO_CTRL_FLUSH:
320	/* do a final write */
321	again:
322	while (ctx->buf_len != ctx->buf_off) {
323	i = enc_write(b, NULL, 0);
324	if (i < 0)
325	return i;
326	}
327
328	if (!ctx->finished) {
329	ctx->finished = 1;
330	ctx->buf_off = 0;
331	ret = EVP_CipherFinal_ex(&(ctx->cipher),
332	(unsigned char *)ctx->buf,
333	&(ctx->buf_len));
334	ctx->ok = (int)ret;
335	if (ret <= 0)
336	break;
337
338	/* push out the bytes */
339	goto again;
340	}
341
342	/* Finally flush the underlying BIO */
343	ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
344	break;
345	case BIO_C_GET_CIPHER_STATUS:
346	ret = (long)ctx->ok;
347	break;
348	case BIO_C_DO_STATE_MACHINE:
349	BIO_clear_retry_flags(b);
350	ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
351	BIO_copy_next_retry(b);
352	break;
353	case BIO_C_GET_CIPHER_CTX:
354	c_ctx = (EVP_CIPHER_CTX **)ptr;
355	(*c_ctx) = &(ctx->cipher);
356	b->init = 1;
357	break;
358	case BIO_CTRL_DUP:
359	dbio = (BIO *)ptr;
360	dctx = (BIO_ENC_CTX *)dbio->ptr;
361	EVP_CIPHER_CTX_init(&dctx->cipher);
362	ret = EVP_CIPHER_CTX_copy(&dctx->cipher, &ctx->cipher);
363	if (ret)
364	dbio->init = 1;
365	break;
366	default:
367	ret = BIO_ctrl(b->next_bio, cmd, num, ptr);
368	break;
369	}
370	return (ret);
371	}
372
373	static long
374	enc_callback_ctrl(BIO b, int cmd, bio_info_cb fp)
375	{
376	long ret = 1;
377
378	if (b->next_bio == NULL)
379	return (0);
380	switch (cmd) {
381	default:
382	ret = BIO_callback_ctrl(b->next_bio, cmd, fp);
383	break;
384	}
385	return (ret);
386	}
387
388	/*
389	void BIO_set_cipher_ctx(b,c)
390	BIO *b;
391	EVP_CIPHER_ctx *c;
392	{
393	if (b == NULL) return;
394
395	if ((b->callback != NULL) &&
396	(b->callback(b,BIO_CB_CTRL,(char *)c,BIO_CTRL_SET,e,0L) <= 0))
397	return;
398
399	b->init=1;
400	ctx=(BIO_ENC_CTX *)b->ptr;
401	memcpy(ctx->cipher,c,sizeof(EVP_CIPHER_CTX));
402
403	if (b->callback != NULL)
404	b->callback(b,BIO_CB_CTRL,(char *)c,BIO_CTRL_SET,e,1L);
405	}
406	*/
407
408	void
409	BIO_set_cipher(BIO b, const EVP_CIPHER c, const unsigned char *k,
410	const unsigned char *i, int e)
411	{
412	BIO_ENC_CTX *ctx;
413
414	if (b == NULL)
415	return;
416
417	if ((b->callback != NULL) &&
418	(b->callback(b, BIO_CB_CTRL, (const char *)c, BIO_CTRL_SET, e, 0L) <= 0))
419	return;
420
421	b->init = 1;
422	ctx = (BIO_ENC_CTX *)b->ptr;
423	EVP_CipherInit_ex(&(ctx->cipher), c, NULL, k, i, e);
424
425	if (b->callback != NULL)
426	b->callback(b, BIO_CB_CTRL, (const char *)c, BIO_CTRL_SET, e, 1L);
427	}