1 files changed, 0 insertions, 190 deletions
diff --git a/src/lib/libcrypto/pkcs12/p12_decr.c b/src/lib/libcrypto/pkcs12/p12_decr.c
deleted file mode 100644
index ad4e0bc660..0000000000
--- a/src/lib/libcrypto/pkcs12/p12_decr.c
+++ /dev/null
@@ -1,190 +0,0 @@
-/* $OpenBSD: p12_decr.c,v 1.17 2015/09/30 18:41:06 jsing Exp $ */
-/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
- * project 1999.
- */
-/* ====================================================================
- * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- *
- * 1. Redistributions of source code must retain the above copyright
- *    notice, this list of conditions and the following disclaimer.
- *
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in
- *    the documentation and/or other materials provided with the
- *    distribution.
- *
- * 3. All advertising materials mentioning features or use of this
- *    software must display the following acknowledgment:
- *    "This product includes software developed by the OpenSSL Project
- *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
- *
- * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
- *    endorse or promote products derived from this software without
- *    prior written permission. For written permission, please contact
- *    licensing@OpenSSL.org.
- *
- * 5. Products derived from this software may not be called "OpenSSL"
- *    nor may "OpenSSL" appear in their names without prior written
- *    permission of the OpenSSL Project.
- *
- * 6. Redistributions of any form whatsoever must retain the following
- *    acknowledgment:
- *    "This product includes software developed by the OpenSSL Project
- *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
- *
- * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
- * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
- * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
- * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
- * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
- * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
- * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
- * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
- * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
- * OF THE POSSIBILITY OF SUCH DAMAGE.
- * ====================================================================
- *
- * This product includes cryptographic software written by Eric Young
- * (eay@cryptsoft.com).  This product includes software written by Tim
- * Hudson (tjh@cryptsoft.com).
- *
- */
-#include <stdio.h>
-#include <string.h>
-#include <openssl/err.h>
-#include <openssl/pkcs12.h>
-/* Encrypt/Decrypt a buffer based on password and algor, result in a
- * malloc'ed buffer
- */
-unsigned char *
-PKCS12_pbe_crypt(X509_ALGOR *algor, const char *pass, int passlen,
-    unsigned char *in, int inlen, unsigned char **data, int *datalen, int en_de)
-{
-        unsigned char *out;
-        int outlen, i;
-        EVP_CIPHER_CTX ctx;
-        EVP_CIPHER_CTX_init(&ctx);
-        /* Decrypt data */
-        if (!EVP_PBE_CipherInit(algor->algorithm, pass, passlen,
-            algor->parameter, &ctx, en_de)) {
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
-                    PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR);
-                goto err;
-        }
-        if (!(out = malloc(inlen + EVP_CIPHER_CTX_block_size(&ctx)))) {
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_MALLOC_FAILURE);
-                goto err;
-        }
-        if (!EVP_CipherUpdate(&ctx, out, &i, in, inlen)) {
-                free(out);
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_EVP_LIB);
-                goto err;
-        }
-        outlen = i;
-        if (!EVP_CipherFinal_ex(&ctx, out + i, &i)) {
-                free(out);
-                out = NULL;
-                PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
-                    PKCS12_R_PKCS12_CIPHERFINAL_ERROR);
-                goto err;
-        }
-        outlen += i;
-        if (datalen)
-                *datalen = outlen;
-        if (data)
-                *data = out;
-err:
-        EVP_CIPHER_CTX_cleanup(&ctx);
-        return out;
-}
-/* Decrypt an OCTET STRING and decode ASN1 structure
- * if zbuf set zero buffer after use.
- */
-void *
-PKCS12_item_decrypt_d2i(X509_ALGOR *algor, const ASN1_ITEM *it,
-    const char *pass, int passlen, ASN1_OCTET_STRING *oct, int zbuf)
-{
-        unsigned char *out;
-        const unsigned char *p;
-        void *ret;
-        int outlen;
-        if (!PKCS12_pbe_crypt(algor, pass, passlen, oct->data, oct->length,
-            &out, &outlen, 0)) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
-                    PKCS12_R_PKCS12_PBE_CRYPT_ERROR);
-                return NULL;
-        }
-        p = out;
-        ret = ASN1_item_d2i(NULL, &p, outlen, it);
-        if (zbuf)
-                explicit_bzero(out, outlen);
-        if (!ret)
-                PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
-                    PKCS12_R_DECODE_ERROR);
-        free(out);
-        return ret;
-}
-/* Encode ASN1 structure and encrypt, return OCTET STRING
- * if zbuf set zero encoding.
- */
-ASN1_OCTET_STRING *
-PKCS12_item_i2d_encrypt(X509_ALGOR *algor, const ASN1_ITEM *it,
-    const char *pass, int passlen,
-    void *obj, int zbuf)
-{
-        ASN1_OCTET_STRING *oct;
-        unsigned char *in = NULL;
-        int inlen;
-        if (!(oct = ASN1_OCTET_STRING_new ())) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    ERR_R_MALLOC_FAILURE);
-                return NULL;
-        }
-        inlen = ASN1_item_i2d(obj, &in, it);
-        if (!in) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    PKCS12_R_ENCODE_ERROR);
-                goto err;
-        }
-        if (!PKCS12_pbe_crypt(algor, pass, passlen, in, inlen, &oct->data,
-            &oct->length, 1)) {
-                PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
-                    PKCS12_R_ENCRYPT_ERROR);
-                goto err;
-        }
-        if (zbuf)
-                explicit_bzero(in, inlen);
-        free(in);
-        return oct;
-err:
-        free(in);
-        ASN1_OCTET_STRING_free(oct);
-        return NULL;
-}
-IMPLEMENT_PKCS12_STACK_OF(PKCS7)

diff --git a/src/lib/libcrypto/pkcs12/p12_decr.c b/src/lib/libcrypto/pkcs12/p12_decr.c deleted file mode 100644 index ad4e0bc660..0000000000 --- a/src/lib/libcrypto/pkcs12/p12_decr.c +++ /dev/null
@@ -1,190 +0,0 @@
1	/* $OpenBSD: p12_decr.c,v 1.17 2015/09/30 18:41:06 jsing Exp $ */
2	/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3	* project 1999.
4	*/
5	/* ====================================================================
6	* Copyright (c) 1999 The OpenSSL Project. All rights reserved.
7	*
8	* Redistribution and use in source and binary forms, with or without
9	* modification, are permitted provided that the following conditions
10	* are met:
11	*
12	* 1. Redistributions of source code must retain the above copyright
13	* notice, this list of conditions and the following disclaimer.
14	*
15	* 2. Redistributions in binary form must reproduce the above copyright
16	* notice, this list of conditions and the following disclaimer in
17	* the documentation and/or other materials provided with the
18	* distribution.
19	*
20	* 3. All advertising materials mentioning features or use of this
21	* software must display the following acknowledgment:
22	* "This product includes software developed by the OpenSSL Project
23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24	*
25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26	* endorse or promote products derived from this software without
27	* prior written permission. For written permission, please contact
28	* licensing@OpenSSL.org.
29	*
30	* 5. Products derived from this software may not be called "OpenSSL"
31	* nor may "OpenSSL" appear in their names without prior written
32	* permission of the OpenSSL Project.
33	*
34	* 6. Redistributions of any form whatsoever must retain the following
35	* acknowledgment:
36	* "This product includes software developed by the OpenSSL Project
37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38	*
39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50	* OF THE POSSIBILITY OF SUCH DAMAGE.
51	* ====================================================================
52	*
53	* This product includes cryptographic software written by Eric Young
54	* (eay@cryptsoft.com). This product includes software written by Tim
55	* Hudson (tjh@cryptsoft.com).
56	*
57	*/
58
59	#include <stdio.h>
60	#include <string.h>
61
62	#include <openssl/err.h>
63	#include <openssl/pkcs12.h>
64
65	/* Encrypt/Decrypt a buffer based on password and algor, result in a
66	* malloc'ed buffer
67	*/
68
69	unsigned char *
70	PKCS12_pbe_crypt(X509_ALGOR algor, const char pass, int passlen,
71	unsigned char in, int inlen, unsigned char data, int datalen, int en_de)
72	{
73	unsigned char *out;
74	int outlen, i;
75	EVP_CIPHER_CTX ctx;
76
77	EVP_CIPHER_CTX_init(&ctx);
78	/* Decrypt data */
79	if (!EVP_PBE_CipherInit(algor->algorithm, pass, passlen,
80	algor->parameter, &ctx, en_de)) {
81	out = NULL;
82	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
83	PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR);
84	goto err;
85	}
86
87	if (!(out = malloc(inlen + EVP_CIPHER_CTX_block_size(&ctx)))) {
88	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_MALLOC_FAILURE);
89	goto err;
90	}
91
92	if (!EVP_CipherUpdate(&ctx, out, &i, in, inlen)) {
93	free(out);
94	out = NULL;
95	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT, ERR_R_EVP_LIB);
96	goto err;
97	}
98
99	outlen = i;
100	if (!EVP_CipherFinal_ex(&ctx, out + i, &i)) {
101	free(out);
102	out = NULL;
103	PKCS12err(PKCS12_F_PKCS12_PBE_CRYPT,
104	PKCS12_R_PKCS12_CIPHERFINAL_ERROR);
105	goto err;
106	}
107	outlen += i;
108	if (datalen)
109	*datalen = outlen;
110	if (data)
111	*data = out;
112
113	err:
114	EVP_CIPHER_CTX_cleanup(&ctx);
115	return out;
116
117	}
118
119	/* Decrypt an OCTET STRING and decode ASN1 structure
120	* if zbuf set zero buffer after use.
121	*/
122
123	void *
124	PKCS12_item_decrypt_d2i(X509_ALGOR algor, const ASN1_ITEM it,
125	const char pass, int passlen, ASN1_OCTET_STRING oct, int zbuf)
126	{
127	unsigned char *out;
128	const unsigned char *p;
129	void *ret;
130	int outlen;
131
132	if (!PKCS12_pbe_crypt(algor, pass, passlen, oct->data, oct->length,
133	&out, &outlen, 0)) {
134	PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
135	PKCS12_R_PKCS12_PBE_CRYPT_ERROR);
136	return NULL;
137	}
138	p = out;
139	ret = ASN1_item_d2i(NULL, &p, outlen, it);
140	if (zbuf)
141	explicit_bzero(out, outlen);
142	if (!ret)
143	PKCS12err(PKCS12_F_PKCS12_ITEM_DECRYPT_D2I,
144	PKCS12_R_DECODE_ERROR);
145	free(out);
146	return ret;
147	}
148
149	/* Encode ASN1 structure and encrypt, return OCTET STRING
150	* if zbuf set zero encoding.
151	*/
152
153	ASN1_OCTET_STRING *
154	PKCS12_item_i2d_encrypt(X509_ALGOR algor, const ASN1_ITEM it,
155	const char *pass, int passlen,
156	void *obj, int zbuf)
157	{
158	ASN1_OCTET_STRING *oct;
159	unsigned char *in = NULL;
160	int inlen;
161
162	if (!(oct = ASN1_OCTET_STRING_new ())) {
163	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
164	ERR_R_MALLOC_FAILURE);
165	return NULL;
166	}
167	inlen = ASN1_item_i2d(obj, &in, it);
168	if (!in) {
169	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
170	PKCS12_R_ENCODE_ERROR);
171	goto err;
172	}
173	if (!PKCS12_pbe_crypt(algor, pass, passlen, in, inlen, &oct->data,
174	&oct->length, 1)) {
175	PKCS12err(PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT,
176	PKCS12_R_ENCRYPT_ERROR);
177	goto err;
178	}
179	if (zbuf)
180	explicit_bzero(in, inlen);
181	free(in);
182	return oct;
183
184	err:
185	free(in);
186	ASN1_OCTET_STRING_free(oct);
187	return NULL;
188	}
189
190	IMPLEMENT_PKCS12_STACK_OF(PKCS7)