1 files changed, 0 insertions, 189 deletions
diff --git a/src/lib/libcrypto/pkcs12/p12_decr.c b/src/lib/libcrypto/pkcs12/p12_decr.c
deleted file mode 100644
index 4cccf43d3f..0000000000
--- a/src/lib/libcrypto/pkcs12/p12_decr.c
+++ /dev/null
@@ -1,189 +0,0 @@
-/* $OpenBSD: p12_decr.c,v 1.15 2015/05/15 11:00:14 jsg Exp $ */
-/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
- * project 1999.
- */
-/* ====================================================================
- * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- *
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- *
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in
- *    the documentation and/or other materials provided with the
- *    distribution.
- *
- * 3. All advertising materials mentioning features or use of this
- *    software must display the following acknowledgment:
- *    "This product includes software developed by the OpenSSL Project
- *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
- *
- * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
- *    endorse or promote products derived from this software without
- *    prior written permission. For written permission, please contact
- *    licensing@OpenSSL.org.
- *
- * 5. Products derived from this software may not be called "OpenSSL"
- *    nor may "OpenSSL" appear in their names without prior written
- *    permission of the OpenSSL Project.
- *
- * 6. Redistributions of any form whatsoever must retain the following
- *    acknowledgment:
- *    "This product includes software developed by the OpenSSL Project
- *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
- *
- * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
- * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
- * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
- * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
- * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
- * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
- * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
- * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
- * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
- * OF THE POSSIBILITY OF SUCH DAMAGE.
- * ====================================================================
- *
- * This product includes cryptographic software written by Eric Young
- * (eay@cryptsoft.com).  This product includes software written by Tim
- * Hudson (tjh@cryptsoft.com).
- *
- */
-#include <stdio.h>
-#include <openssl/err.h>
-#include <openssl/pkcs12.h>
-/* Encrypt/Decrypt a buffer based on password and algor, result in a
- * malloc'ed buffer
- */
-unsigned char *
-PKCS12_pbe_crypt(X509_ALGOR *algor, const char *pass, int passlen,
-    unsigned char *in, int inlen, unsigned char **data, int *datalen, int en_de)
-{
-        unsigned char *out;
-        int outlen, i;
-        EVP_CIPHER_CTX ctx;
-        EVP_CIPHER_CTX_init(&ctx);
-        /* Decrypt data */
-        if (!EVP_PBE_CipherInit(algor->algorithm, pass, passlen,
-            algor->parameter, &ctx, en_de)) {
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
-                    PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR);
-                goto err;
-        }
-        if (!(out = malloc(inlen + EVP_CIPHER_CTX_block_size(&ctx)))) {
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_MALLOC_FAILURE);
-                goto err;
-        }
-        if (!EVP_CipherUpdate(&ctx, out, &i, in, inlen)) {
-                free(out);
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_EVP_LIB);
-                goto err;
-        }
-        outlen = i;
-        if (!EVP_CipherFinal_ex(&ctx, out + i, &i)) {
-                free(out);
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
-                    PKCS12_R_PKCS12_CIPHERFINAL_ERROR);
-                goto err;
-        }
-        outlen += i;
-        if (datalen)
-                *datalen = outlen;
-        if (data)
-                *data = out;
-err:
-        EVP_CIPHER_CTX_cleanup(&ctx);
-        return out;
-}
-/* Decrypt an OCTET STRING and decode ASN1 structure
- * if zbuf set zero buffer after use.
- */
-void *
-PKCS12_item_decrypt_d2i(X509_ALGOR *algor, const ASN1_ITEM *it,
-    const char *pass, int passlen, ASN1_OCTET_STRING *oct, int zbuf)
-{
-        unsigned char *out;
-        const unsigned char *p;
-        void *ret;
-        int outlen;
-        if (!PKCS12_pbe_crypt(algor, pass, passlen, oct->data, oct->length,
-            &out, &outlen, 0)) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
-                    PKCS12_R_PKCS12_PBE_CRYPT_ERROR);
-                return NULL;
-        }
-        p = out;
-        ret = ASN1_item_d2i(NULL, &p, outlen, it);
-        if (zbuf)
-                OPENSSL_cleanse(out, outlen);
-        if (!ret)
-                PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
-                    PKCS12_R_DECODE_ERROR);
-        free(out);
-        return ret;
-}
-/* Encode ASN1 structure and encrypt, return OCTET STRING
- * if zbuf set zero encoding.
- */
-ASN1_OCTET_STRING *
-PKCS12_item_i2d_encrypt(X509_ALGOR *algor, const ASN1_ITEM *it,
-    const char *pass, int passlen,
-    void *obj, int zbuf)
-{
-        ASN1_OCTET_STRING *oct;
-        unsigned char *in = NULL;
-        int inlen;
-        if (!(oct = M_ASN1_OCTET_STRING_new ())) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    ERR_R_MALLOC_FAILURE);
-                return NULL;
-        }
-        inlen = ASN1_item_i2d(obj, &in, it);
-        if (!in) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    PKCS12_R_ENCODE_ERROR);
-                goto err;
-        }
-        if (!PKCS12_pbe_crypt(algor, pass, passlen, in, inlen, &oct->data,
-            &oct->length, 1)) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    PKCS12_R_ENCRYPT_ERROR);
-                goto err;
-        }
-        if (zbuf)
-                OPENSSL_cleanse(in, inlen);
-        free(in);
-        return oct;
-err:
-        free(in);
-        M_ASN1_OCTET_STRING_free(oct);
-        return NULL;
-}
-IMPLEMENT_PKCS12_STACK_OF(PKCS7)

diff --git a/src/lib/libcrypto/pkcs12/p12_decr.c b/src/lib/libcrypto/pkcs12/p12_decr.c deleted file mode 100644 index 4cccf43d3f..0000000000 --- a/src/lib/libcrypto/pkcs12/p12_decr.c +++ /dev/null
@@ -1,189 +0,0 @@
1	/* $OpenBSD: p12_decr.c,v 1.15 2015/05/15 11:00:14 jsg Exp $ */
2	/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3	* project 1999.
4	*/
5	/* ====================================================================
6	* Copyright (c) 1999 The OpenSSL Project. All rights reserved.
7	*
8	* Redistribution and use in source and binary forms, with or without
9	* modification, are permitted provided that the following conditions
10	* are met:
11	*
12	* 1. Redistributions of source code must retain the above copyright
13	* notice, this list of conditions and the following disclaimer.
14	*
15	* 2. Redistributions in binary form must reproduce the above copyright
16	* notice, this list of conditions and the following disclaimer in
17	* the documentation and/or other materials provided with the
18	* distribution.
19	*
20	* 3. All advertising materials mentioning features or use of this
21	* software must display the following acknowledgment:
22	* "This product includes software developed by the OpenSSL Project
23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24	*
25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26	* endorse or promote products derived from this software without
27	* prior written permission. For written permission, please contact
28	* licensing@OpenSSL.org.
29	*
30	* 5. Products derived from this software may not be called "OpenSSL"
31	* nor may "OpenSSL" appear in their names without prior written
32	* permission of the OpenSSL Project.
33	*
34	* 6. Redistributions of any form whatsoever must retain the following
35	* acknowledgment:
36	* "This product includes software developed by the OpenSSL Project
37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38	*
39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50	* OF THE POSSIBILITY OF SUCH DAMAGE.
51	* ====================================================================
52	*
53	* This product includes cryptographic software written by Eric Young
54	* (eay@cryptsoft.com). This product includes software written by Tim
55	* Hudson (tjh@cryptsoft.com).
56	*
57	*/
58
59	#include <stdio.h>
60
61	#include <openssl/err.h>
62	#include <openssl/pkcs12.h>
63
64	/* Encrypt/Decrypt a buffer based on password and algor, result in a
65	* malloc'ed buffer
66	*/
67
68	unsigned char *
69	PKCS12_pbe_crypt(X509_ALGOR algor, const char pass, int passlen,
70	unsigned char in, int inlen, unsigned char data, int datalen, int en_de)
71	{
72	unsigned char *out;
73	int outlen, i;
74	EVP_CIPHER_CTX ctx;
75
76	EVP_CIPHER_CTX_init(&ctx);
77	/* Decrypt data */
78	if (!EVP_PBE_CipherInit(algor->algorithm, pass, passlen,
79	algor->parameter, &ctx, en_de)) {
80	out = NULL;
81	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
82	PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR);
83	goto err;
84	}
85
86	if (!(out = malloc(inlen + EVP_CIPHER_CTX_block_size(&ctx)))) {
87	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_MALLOC_FAILURE);
88	goto err;
89	}
90
91	if (!EVP_CipherUpdate(&ctx, out, &i, in, inlen)) {
92	free(out);
93	out = NULL;
94	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_EVP_LIB);
95	goto err;
96	}
97
98	outlen = i;
99	if (!EVP_CipherFinal_ex(&ctx, out + i, &i)) {
100	free(out);
101	out = NULL;
102	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
103	PKCS12_R_PKCS12_CIPHERFINAL_ERROR);
104	goto err;
105	}
106	outlen += i;
107	if (datalen)
108	*datalen = outlen;
109	if (data)
110	*data = out;
111
112	err:
113	EVP_CIPHER_CTX_cleanup(&ctx);
114	return out;
115
116	}
117
118	/* Decrypt an OCTET STRING and decode ASN1 structure
119	* if zbuf set zero buffer after use.
120	*/
121
122	void *
123	PKCS12_item_decrypt_d2i(X509_ALGOR algor, const ASN1_ITEM it,
124	const char pass, int passlen, ASN1_OCTET_STRING oct, int zbuf)
125	{
126	unsigned char *out;
127	const unsigned char *p;
128	void *ret;
129	int outlen;
130
131	if (!PKCS12_pbe_crypt(algor, pass, passlen, oct->data, oct->length,
132	&out, &outlen, 0)) {
133	PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
134	PKCS12_R_PKCS12_PBE_CRYPT_ERROR);
135	return NULL;
136	}
137	p = out;
138	ret = ASN1_item_d2i(NULL, &p, outlen, it);
139	if (zbuf)
140	OPENSSL_cleanse(out, outlen);
141	if (!ret)
142	PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
143	PKCS12_R_DECODE_ERROR);
144	free(out);
145	return ret;
146	}
147
148	/* Encode ASN1 structure and encrypt, return OCTET STRING
149	* if zbuf set zero encoding.
150	*/
151
152	ASN1_OCTET_STRING *
153	PKCS12_item_i2d_encrypt(X509_ALGOR algor, const ASN1_ITEM it,
154	const char *pass, int passlen,
155	void *obj, int zbuf)
156	{
157	ASN1_OCTET_STRING *oct;
158	unsigned char *in = NULL;
159	int inlen;
160
161	if (!(oct = M_ASN1_OCTET_STRING_new ())) {
162	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
163	ERR_R_MALLOC_FAILURE);
164	return NULL;
165	}
166	inlen = ASN1_item_i2d(obj, &in, it);
167	if (!in) {
168	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
169	PKCS12_R_ENCODE_ERROR);
170	goto err;
171	}
172	if (!PKCS12_pbe_crypt(algor, pass, passlen, in, inlen, &oct->data,
173	&oct->length, 1)) {
174	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
175	PKCS12_R_ENCRYPT_ERROR);
176	goto err;
177	}
178	if (zbuf)
179	OPENSSL_cleanse(in, inlen);
180	free(in);
181	return oct;
182
183	err:
184	free(in);
185	M_ASN1_OCTET_STRING_free(oct);
186	return NULL;
187	}
188
189	IMPLEMENT_PKCS12_STACK_OF(PKCS7)