1 files changed, 0 insertions, 324 deletions
diff --git a/src/lib/libcrypto/pem/pem_pk8.c b/src/lib/libcrypto/pem/pem_pk8.c
deleted file mode 100644
index 6d0c0cbd57..0000000000
--- a/src/lib/libcrypto/pem/pem_pk8.c
+++ /dev/null
@@ -1,324 +0,0 @@
-/* $OpenBSD: pem_pk8.c,v 1.14 2023/07/07 13:40:44 beck Exp $ */
-/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
- * All rights reserved.
- *
- * This package is an SSL implementation written
- * by Eric Young (eay@cryptsoft.com).
- * The implementation was written so as to conform with Netscapes SSL.
- *
- * This library is free for commercial and non-commercial use as long as
- * the following conditions are aheared to.  The following conditions
- * apply to all code found in this distribution, be it the RC4, RSA,
- * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
- * included with this distribution is covered by the same copyright terms
- * except that the holder is Tim Hudson (tjh@cryptsoft.com).
- *
- * Copyright remains Eric Young's, and as such any Copyright notices in
- * the code are not to be removed.
- * If this package is used in a product, Eric Young should be given attribution
- * as the author of the parts of the library used.
- * This can be in the form of a textual message at program startup or
- * in documentation (online or textual) provided with the package.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    "This product includes cryptographic software written by
- *     Eric Young (eay@cryptsoft.com)"
- *    The word 'cryptographic' can be left out if the rouines from the library
- *    being used are not cryptographic related :-).
- * 4. If you include any Windows specific code (or a derivative thereof) from
- *    the apps directory (application code) you must include an acknowledgement:
- *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
- *
- * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- *
- * The licence and distribution terms for any publically available version or
- * derivative of this code cannot be changed.  i.e. this code cannot simply be
- * copied and put under another distribution licence
- * [including the GNU Public Licence.]
- */
-#include <stdio.h>
-#include <string.h>
-#include <openssl/buffer.h>
-#include <openssl/err.h>
-#include <openssl/evp.h>
-#include <openssl/objects.h>
-#include <openssl/pem.h>
-#include <openssl/pkcs12.h>
-#include <openssl/x509.h>
-static int do_pk8pkey(BIO *bp, EVP_PKEY *x, int isder, int nid,
-    const EVP_CIPHER *enc, char *kstr, int klen, pem_password_cb *cb, void *u);
-static int do_pk8pkey_fp(FILE *bp, EVP_PKEY *x, int isder, int nid,
-    const EVP_CIPHER *enc, char *kstr, int klen, pem_password_cb *cb, void *u);
-/* These functions write a private key in PKCS#8 format: it is a "drop in"
- * replacement for PEM_write_bio_PrivateKey() and friends. As usual if 'enc'
- * is NULL then it uses the unencrypted private key form. The 'nid' versions
- * uses PKCS#5 v1.5 PBE algorithms whereas the others use PKCS#5 v2.0.
- */
-int
-PEM_write_bio_PKCS8PrivateKey_nid(BIO *bp, EVP_PKEY *x, int nid, char *kstr,
-    int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey(bp, x, 0, nid, NULL, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(PEM_write_bio_PKCS8PrivateKey_nid);
-int
-PEM_write_bio_PKCS8PrivateKey(BIO *bp, EVP_PKEY *x, const EVP_CIPHER *enc,
-    char *kstr, int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey(bp, x, 0, -1, enc, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(PEM_write_bio_PKCS8PrivateKey);
-int
-i2d_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY *x, const EVP_CIPHER *enc,
-    char *kstr, int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey(bp, x, 1, -1, enc, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_bio);
-int
-i2d_PKCS8PrivateKey_nid_bio(BIO *bp, EVP_PKEY *x, int nid,
-    char *kstr, int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey(bp, x, 1, nid, NULL, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_nid_bio);
-static int
-do_pk8pkey(BIO *bp, EVP_PKEY *x, int isder, int nid, const EVP_CIPHER *enc,
-    char *kstr, int klen, pem_password_cb *cb, void *u)
-{
-        X509_SIG *p8;
-        PKCS8_PRIV_KEY_INFO *p8inf;
-        char buf[PEM_BUFSIZE];
-        int ret;
-        if (!(p8inf = EVP_PKEY2PKCS8(x))) {
-                PEMerror(PEM_R_ERROR_CONVERTING_PRIVATE_KEY);
-                return 0;
-        }
-        if (enc || (nid != -1)) {
-                if (!kstr) {
-                        if (!cb)
-                                klen = PEM_def_callback(buf, PEM_BUFSIZE, 1, u);
-                        else
-                                klen = cb(buf, PEM_BUFSIZE, 1, u);
-                        if (klen <= 0) {
-                                PEMerror(PEM_R_READ_KEY);
-                                PKCS8_PRIV_KEY_INFO_free(p8inf);
-                                return 0;
-                        }
-                        kstr = buf;
-                }
-                p8 = PKCS8_encrypt(nid, enc, kstr, klen, NULL, 0, 0, p8inf);
-                if (kstr == buf)
-                        explicit_bzero(buf, klen);
-                PKCS8_PRIV_KEY_INFO_free(p8inf);
-                if (isder)
-                        ret = i2d_PKCS8_bio(bp, p8);
-                else
-                        ret = PEM_write_bio_PKCS8(bp, p8);
-                X509_SIG_free(p8);
-                return ret;
-        } else {
-                if (isder)
-                        ret = i2d_PKCS8_PRIV_KEY_INFO_bio(bp, p8inf);
-                else
-                        ret = PEM_write_bio_PKCS8_PRIV_KEY_INFO(bp, p8inf);
-                PKCS8_PRIV_KEY_INFO_free(p8inf);
-                return ret;
-        }
-}
-EVP_PKEY *
-d2i_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY **x, pem_password_cb *cb, void *u)
-{
-        PKCS8_PRIV_KEY_INFO *p8inf = NULL;
-        X509_SIG *p8 = NULL;
-        int klen;
-        EVP_PKEY *ret;
-        char psbuf[PEM_BUFSIZE];
-        p8 = d2i_PKCS8_bio(bp, NULL);
-        if (!p8)
-                return NULL;
-        if (cb)
-                klen = cb(psbuf, PEM_BUFSIZE, 0, u);
-        else
-                klen = PEM_def_callback(psbuf, PEM_BUFSIZE, 0, u);
-        if (klen <= 0) {
-                PEMerror(PEM_R_BAD_PASSWORD_READ);
-                X509_SIG_free(p8);
-                return NULL;
-        }
-        p8inf = PKCS8_decrypt(p8, psbuf, klen);
-        X509_SIG_free(p8);
-        if (!p8inf)
-                return NULL;
-        ret = EVP_PKCS82PKEY(p8inf);
-        PKCS8_PRIV_KEY_INFO_free(p8inf);
-        if (!ret)
-                return NULL;
-        if (x) {
-                EVP_PKEY_free(*x);
-                *x = ret;
-        }
-        return ret;
-}
-LCRYPTO_ALIAS(d2i_PKCS8PrivateKey_bio);
-int
-i2d_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY *x, const EVP_CIPHER *enc,
-    char *kstr, int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey_fp(fp, x, 1, -1, enc, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_fp);
-int
-i2d_PKCS8PrivateKey_nid_fp(FILE *fp, EVP_PKEY *x, int nid, char *kstr,
-    int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey_fp(fp, x, 1, nid, NULL, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_nid_fp);
-int
-PEM_write_PKCS8PrivateKey_nid(FILE *fp, EVP_PKEY *x, int nid, char *kstr,
-    int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey_fp(fp, x, 0, nid, NULL, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(PEM_write_PKCS8PrivateKey_nid);
-int
-PEM_write_PKCS8PrivateKey(FILE *fp, EVP_PKEY *x, const EVP_CIPHER *enc,
-    char *kstr, int klen, pem_password_cb *cb, void *u)
-{
-        return do_pk8pkey_fp(fp, x, 0, -1, enc, kstr, klen, cb, u);
-}
-LCRYPTO_ALIAS(PEM_write_PKCS8PrivateKey);
-static int
-do_pk8pkey_fp(FILE *fp, EVP_PKEY *x, int isder, int nid, const EVP_CIPHER *enc,
-    char *kstr, int klen, pem_password_cb *cb, void *u)
-{
-        BIO *bp;
-        int ret;
-        if (!(bp = BIO_new_fp(fp, BIO_NOCLOSE))) {
-                PEMerror(ERR_R_BUF_LIB);
-                return (0);
-        }
-        ret = do_pk8pkey(bp, x, isder, nid, enc, kstr, klen, cb, u);
-        BIO_free(bp);
-        return ret;
-}
-EVP_PKEY *
-d2i_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY **x, pem_password_cb *cb, void *u)
-{
-        BIO *bp;
-        EVP_PKEY *ret;
-        if (!(bp = BIO_new_fp(fp, BIO_NOCLOSE))) {
-                PEMerror(ERR_R_BUF_LIB);
-                return NULL;
-        }
-        ret = d2i_PKCS8PrivateKey_bio(bp, x, cb, u);
-        BIO_free(bp);
-        return ret;
-}
-LCRYPTO_ALIAS(d2i_PKCS8PrivateKey_fp);
-X509_SIG *
-PEM_read_PKCS8(FILE *fp, X509_SIG **x, pem_password_cb *cb, void *u)
-{
-        return PEM_ASN1_read((d2i_of_void *)d2i_X509_SIG, PEM_STRING_PKCS8, fp,
-            (void **)x, cb, u);
-}
-LCRYPTO_ALIAS(PEM_read_PKCS8);
-int
-PEM_write_PKCS8(FILE *fp, X509_SIG *x)
-{
-        return PEM_ASN1_write((i2d_of_void *)i2d_X509_SIG, PEM_STRING_PKCS8, fp,
-            x, NULL, NULL, 0, NULL, NULL);
-}
-LCRYPTO_ALIAS(PEM_write_PKCS8);
-X509_SIG *
-PEM_read_bio_PKCS8(BIO *bp, X509_SIG **x, pem_password_cb *cb, void *u)
-{
-        return PEM_ASN1_read_bio((d2i_of_void *)d2i_X509_SIG, PEM_STRING_PKCS8, bp,
-            (void **)x, cb, u);
-}
-LCRYPTO_ALIAS(PEM_read_bio_PKCS8);
-int
-PEM_write_bio_PKCS8(BIO *bp, X509_SIG *x)
-{
-        return PEM_ASN1_write_bio((i2d_of_void *)i2d_X509_SIG, PEM_STRING_PKCS8, bp,
-            x, NULL, NULL, 0, NULL, NULL);
-}
-LCRYPTO_ALIAS(PEM_write_bio_PKCS8);
-PKCS8_PRIV_KEY_INFO *
-PEM_read_PKCS8_PRIV_KEY_INFO(FILE *fp, PKCS8_PRIV_KEY_INFO **x, pem_password_cb *cb, void *u)
-{
-        return PEM_ASN1_read((d2i_of_void *)d2i_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, fp,
-            (void **)x, cb, u);
-}
-LCRYPTO_ALIAS(PEM_read_PKCS8_PRIV_KEY_INFO);
-int
-PEM_write_PKCS8_PRIV_KEY_INFO(FILE *fp, PKCS8_PRIV_KEY_INFO *x)
-{
-        return PEM_ASN1_write((i2d_of_void *)i2d_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, fp,
-            x, NULL, NULL, 0, NULL, NULL);
-}
-LCRYPTO_ALIAS(PEM_write_PKCS8_PRIV_KEY_INFO);
-PKCS8_PRIV_KEY_INFO *
-PEM_read_bio_PKCS8_PRIV_KEY_INFO(BIO *bp, PKCS8_PRIV_KEY_INFO **x, pem_password_cb *cb, void *u)
-{
-        return PEM_ASN1_read_bio((d2i_of_void *)d2i_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, bp,
-            (void **)x, cb, u);
-}
-LCRYPTO_ALIAS(PEM_read_bio_PKCS8_PRIV_KEY_INFO);
-int
-PEM_write_bio_PKCS8_PRIV_KEY_INFO(BIO *bp, PKCS8_PRIV_KEY_INFO *x)
-{
-        return PEM_ASN1_write_bio((i2d_of_void *)i2d_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, bp,
-            x, NULL, NULL, 0, NULL, NULL);
-}
-LCRYPTO_ALIAS(PEM_write_bio_PKCS8_PRIV_KEY_INFO);

diff --git a/src/lib/libcrypto/pem/pem_pk8.c b/src/lib/libcrypto/pem/pem_pk8.c deleted file mode 100644 index 6d0c0cbd57..0000000000 --- a/src/lib/libcrypto/pem/pem_pk8.c +++ /dev/null
@@ -1,324 +0,0 @@
1	/* $OpenBSD: pem_pk8.c,v 1.14 2023/07/07 13:40:44 beck Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.
4	*
5	* This package is an SSL implementation written
6	* by Eric Young (eay@cryptsoft.com).
7	* The implementation was written so as to conform with Netscapes SSL.
8	*
9	* This library is free for commercial and non-commercial use as long as
10	* the following conditions are aheared to. The following conditions
11	* apply to all code found in this distribution, be it the RC4, RSA,
12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
13	* included with this distribution is covered by the same copyright terms
14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
15	*
16	* Copyright remains Eric Young's, and as such any Copyright notices in
17	* the code are not to be removed.
18	* If this package is used in a product, Eric Young should be given attribution
19	* as the author of the parts of the library used.
20	* This can be in the form of a textual message at program startup or
21	* in documentation (online or textual) provided with the package.
22	*
23	* Redistribution and use in source and binary forms, with or without
24	* modification, are permitted provided that the following conditions
25	* are met:
26	* 1. Redistributions of source code must retain the copyright
27	* notice, this list of conditions and the following disclaimer.
28	* 2. Redistributions in binary form must reproduce the above copyright
29	* notice, this list of conditions and the following disclaimer in the
30	* documentation and/or other materials provided with the distribution.
31	* 3. All advertising materials mentioning features or use of this software
32	* must display the following acknowledgement:
33	* "This product includes cryptographic software written by
34	* Eric Young (eay@cryptsoft.com)"
35	* The word 'cryptographic' can be left out if the rouines from the library
36	* being used are not cryptographic related :-).
37	* 4. If you include any Windows specific code (or a derivative thereof) from
38	* the apps directory (application code) you must include an acknowledgement:
39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40	*
41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51	* SUCH DAMAGE.
52	*
53	* The licence and distribution terms for any publically available version or
54	* derivative of this code cannot be changed. i.e. this code cannot simply be
55	* copied and put under another distribution licence
56	* [including the GNU Public Licence.]
57	*/
58
59	#include <stdio.h>
60	#include <string.h>
61
62	#include <openssl/buffer.h>
63	#include <openssl/err.h>
64	#include <openssl/evp.h>
65	#include <openssl/objects.h>
66	#include <openssl/pem.h>
67	#include <openssl/pkcs12.h>
68	#include <openssl/x509.h>
69
70	static int do_pk8pkey(BIO bp, EVP_PKEY x, int isder, int nid,
71	const EVP_CIPHER enc, char kstr, int klen, pem_password_cb cb, void u);
72	static int do_pk8pkey_fp(FILE bp, EVP_PKEY x, int isder, int nid,
73	const EVP_CIPHER enc, char kstr, int klen, pem_password_cb cb, void u);
74
75	/* These functions write a private key in PKCS#8 format: it is a "drop in"
76	* replacement for PEM_write_bio_PrivateKey() and friends. As usual if 'enc'
77	* is NULL then it uses the unencrypted private key form. The 'nid' versions
78	* uses PKCS#5 v1.5 PBE algorithms whereas the others use PKCS#5 v2.0.
79	*/
80
81	int
82	PEM_write_bio_PKCS8PrivateKey_nid(BIO bp, EVP_PKEY x, int nid, char *kstr,
83	int klen, pem_password_cb cb, void u)
84	{
85	return do_pk8pkey(bp, x, 0, nid, NULL, kstr, klen, cb, u);
86	}
87	LCRYPTO_ALIAS(PEM_write_bio_PKCS8PrivateKey_nid);
88
89	int
90	PEM_write_bio_PKCS8PrivateKey(BIO bp, EVP_PKEY x, const EVP_CIPHER *enc,
91	char kstr, int klen, pem_password_cb cb, void *u)
92	{
93	return do_pk8pkey(bp, x, 0, -1, enc, kstr, klen, cb, u);
94	}
95	LCRYPTO_ALIAS(PEM_write_bio_PKCS8PrivateKey);
96
97	int
98	i2d_PKCS8PrivateKey_bio(BIO bp, EVP_PKEY x, const EVP_CIPHER *enc,
99	char kstr, int klen, pem_password_cb cb, void *u)
100	{
101	return do_pk8pkey(bp, x, 1, -1, enc, kstr, klen, cb, u);
102	}
103	LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_bio);
104
105	int
106	i2d_PKCS8PrivateKey_nid_bio(BIO bp, EVP_PKEY x, int nid,
107	char kstr, int klen, pem_password_cb cb, void *u)
108	{
109	return do_pk8pkey(bp, x, 1, nid, NULL, kstr, klen, cb, u);
110	}
111	LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_nid_bio);
112
113	static int
114	do_pk8pkey(BIO bp, EVP_PKEY x, int isder, int nid, const EVP_CIPHER *enc,
115	char kstr, int klen, pem_password_cb cb, void *u)
116	{
117	X509_SIG *p8;
118	PKCS8_PRIV_KEY_INFO *p8inf;
119	char buf[PEM_BUFSIZE];
120	int ret;
121
122	if (!(p8inf = EVP_PKEY2PKCS8(x))) {
123	PEMerror(PEM_R_ERROR_CONVERTING_PRIVATE_KEY);
124	return 0;
125	}
126	if (enc \|\| (nid != -1)) {
127	if (!kstr) {
128	if (!cb)
129	klen = PEM_def_callback(buf, PEM_BUFSIZE, 1, u);
130	else
131	klen = cb(buf, PEM_BUFSIZE, 1, u);
132	if (klen <= 0) {
133	PEMerror(PEM_R_READ_KEY);
134	PKCS8_PRIV_KEY_INFO_free(p8inf);
135	return 0;
136	}
137
138	kstr = buf;
139	}
140	p8 = PKCS8_encrypt(nid, enc, kstr, klen, NULL, 0, 0, p8inf);
141	if (kstr == buf)
142	explicit_bzero(buf, klen);
143	PKCS8_PRIV_KEY_INFO_free(p8inf);
144	if (isder)
145	ret = i2d_PKCS8_bio(bp, p8);
146	else
147	ret = PEM_write_bio_PKCS8(bp, p8);
148	X509_SIG_free(p8);
149	return ret;
150	} else {
151	if (isder)
152	ret = i2d_PKCS8_PRIV_KEY_INFO_bio(bp, p8inf);
153	else
154	ret = PEM_write_bio_PKCS8_PRIV_KEY_INFO(bp, p8inf);
155	PKCS8_PRIV_KEY_INFO_free(p8inf);
156	return ret;
157	}
158	}
159
160	EVP_PKEY *
161	d2i_PKCS8PrivateKey_bio(BIO bp, EVP_PKEY x, pem_password_cb cb, void *u)
162	{
163	PKCS8_PRIV_KEY_INFO *p8inf = NULL;
164	X509_SIG *p8 = NULL;
165	int klen;
166	EVP_PKEY *ret;
167	char psbuf[PEM_BUFSIZE];
168
169	p8 = d2i_PKCS8_bio(bp, NULL);
170	if (!p8)
171	return NULL;
172	if (cb)
173	klen = cb(psbuf, PEM_BUFSIZE, 0, u);
174	else
175	klen = PEM_def_callback(psbuf, PEM_BUFSIZE, 0, u);
176	if (klen <= 0) {
177	PEMerror(PEM_R_BAD_PASSWORD_READ);
178	X509_SIG_free(p8);
179	return NULL;
180	}
181	p8inf = PKCS8_decrypt(p8, psbuf, klen);
182	X509_SIG_free(p8);
183	if (!p8inf)
184	return NULL;
185	ret = EVP_PKCS82PKEY(p8inf);
186	PKCS8_PRIV_KEY_INFO_free(p8inf);
187	if (!ret)
188	return NULL;
189	if (x) {
190	EVP_PKEY_free(*x);
191	*x = ret;
192	}
193	return ret;
194	}
195	LCRYPTO_ALIAS(d2i_PKCS8PrivateKey_bio);
196
197
198	int
199	i2d_PKCS8PrivateKey_fp(FILE fp, EVP_PKEY x, const EVP_CIPHER *enc,
200	char kstr, int klen, pem_password_cb cb, void *u)
201	{
202	return do_pk8pkey_fp(fp, x, 1, -1, enc, kstr, klen, cb, u);
203	}
204	LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_fp);
205
206	int
207	i2d_PKCS8PrivateKey_nid_fp(FILE fp, EVP_PKEY x, int nid, char *kstr,
208	int klen, pem_password_cb cb, void u)
209	{
210	return do_pk8pkey_fp(fp, x, 1, nid, NULL, kstr, klen, cb, u);
211	}
212	LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_nid_fp);
213
214	int
215	PEM_write_PKCS8PrivateKey_nid(FILE fp, EVP_PKEY x, int nid, char *kstr,
216	int klen, pem_password_cb cb, void u)
217	{
218	return do_pk8pkey_fp(fp, x, 0, nid, NULL, kstr, klen, cb, u);
219	}
220	LCRYPTO_ALIAS(PEM_write_PKCS8PrivateKey_nid);
221
222	int
223	PEM_write_PKCS8PrivateKey(FILE fp, EVP_PKEY x, const EVP_CIPHER *enc,
224	char kstr, int klen, pem_password_cb cb, void *u)
225	{
226	return do_pk8pkey_fp(fp, x, 0, -1, enc, kstr, klen, cb, u);
227	}
228	LCRYPTO_ALIAS(PEM_write_PKCS8PrivateKey);
229
230	static int
231	do_pk8pkey_fp(FILE fp, EVP_PKEY x, int isder, int nid, const EVP_CIPHER *enc,
232	char kstr, int klen, pem_password_cb cb, void *u)
233	{
234	BIO *bp;
235	int ret;
236
237	if (!(bp = BIO_new_fp(fp, BIO_NOCLOSE))) {
238	PEMerror(ERR_R_BUF_LIB);
239	return (0);
240	}
241	ret = do_pk8pkey(bp, x, isder, nid, enc, kstr, klen, cb, u);
242	BIO_free(bp);
243	return ret;
244	}
245
246	EVP_PKEY *
247	d2i_PKCS8PrivateKey_fp(FILE fp, EVP_PKEY x, pem_password_cb cb, void *u)
248	{
249	BIO *bp;
250	EVP_PKEY *ret;
251
252	if (!(bp = BIO_new_fp(fp, BIO_NOCLOSE))) {
253	PEMerror(ERR_R_BUF_LIB);
254	return NULL;
255	}
256	ret = d2i_PKCS8PrivateKey_bio(bp, x, cb, u);
257	BIO_free(bp);
258	return ret;
259	}
260	LCRYPTO_ALIAS(d2i_PKCS8PrivateKey_fp);
261
262	X509_SIG *
263	PEM_read_PKCS8(FILE fp, X509_SIG x, pem_password_cb cb, void *u)
264	{
265	return PEM_ASN1_read((d2i_of_void *)d2i_X509_SIG, PEM_STRING_PKCS8, fp,
266	(void **)x, cb, u);
267	}
268	LCRYPTO_ALIAS(PEM_read_PKCS8);
269
270	int
271	PEM_write_PKCS8(FILE fp, X509_SIG x)
272	{
273	return PEM_ASN1_write((i2d_of_void *)i2d_X509_SIG, PEM_STRING_PKCS8, fp,
274	x, NULL, NULL, 0, NULL, NULL);
275	}
276	LCRYPTO_ALIAS(PEM_write_PKCS8);
277
278	X509_SIG *
279	PEM_read_bio_PKCS8(BIO bp, X509_SIG x, pem_password_cb cb, void *u)
280	{
281	return PEM_ASN1_read_bio((d2i_of_void *)d2i_X509_SIG, PEM_STRING_PKCS8, bp,
282	(void **)x, cb, u);
283	}
284	LCRYPTO_ALIAS(PEM_read_bio_PKCS8);
285
286	int
287	PEM_write_bio_PKCS8(BIO bp, X509_SIG x)
288	{
289	return PEM_ASN1_write_bio((i2d_of_void *)i2d_X509_SIG, PEM_STRING_PKCS8, bp,
290	x, NULL, NULL, 0, NULL, NULL);
291	}
292	LCRYPTO_ALIAS(PEM_write_bio_PKCS8);
293
294	PKCS8_PRIV_KEY_INFO *
295	PEM_read_PKCS8_PRIV_KEY_INFO(FILE fp, PKCS8_PRIV_KEY_INFO x, pem_password_cb cb, void *u)
296	{
297	return PEM_ASN1_read((d2i_of_void *)d2i_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, fp,
298	(void **)x, cb, u);
299	}
300	LCRYPTO_ALIAS(PEM_read_PKCS8_PRIV_KEY_INFO);
301
302	int
303	PEM_write_PKCS8_PRIV_KEY_INFO(FILE fp, PKCS8_PRIV_KEY_INFO x)
304	{
305	return PEM_ASN1_write((i2d_of_void *)i2d_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, fp,
306	x, NULL, NULL, 0, NULL, NULL);
307	}
308	LCRYPTO_ALIAS(PEM_write_PKCS8_PRIV_KEY_INFO);
309
310	PKCS8_PRIV_KEY_INFO *
311	PEM_read_bio_PKCS8_PRIV_KEY_INFO(BIO bp, PKCS8_PRIV_KEY_INFO x, pem_password_cb cb, void *u)
312	{
313	return PEM_ASN1_read_bio((d2i_of_void *)d2i_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, bp,
314	(void **)x, cb, u);
315	}
316	LCRYPTO_ALIAS(PEM_read_bio_PKCS8_PRIV_KEY_INFO);
317
318	int
319	PEM_write_bio_PKCS8_PRIV_KEY_INFO(BIO bp, PKCS8_PRIV_KEY_INFO x)
320	{
321	return PEM_ASN1_write_bio((i2d_of_void *)i2d_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, bp,
322	x, NULL, NULL, 0, NULL, NULL);
323	}
324	LCRYPTO_ALIAS(PEM_write_bio_PKCS8_PRIV_KEY_INFO);