1 files changed, 68 insertions, 85 deletions
diff --git a/src/lib/libcrypto/pkcs12/pkcs12.h b/src/lib/libcrypto/pkcs12/pkcs12.h
index 4cfba5e6c6..1786b6d4f3 100644
--- a/src/lib/libcrypto/pkcs12/pkcs12.h
+++ b/src/lib/libcrypto/pkcs12/pkcs12.h
@@ -59,13 +59,13 @@
 #ifndef HEADER_PKCS12_H
 #define HEADER_PKCS12_H
+#include <openssl/bio.h>
+#include <openssl/x509.h>
 #ifdef __cplusplus
 extern "C" {
 #endif
-#include <openssl/bio.h>
-#include <openssl/x509.h>
 #define PKCS12_KEY_ID   1
 #define PKCS12_IV_ID    2
 #define PKCS12_MAC_ID   3
@@ -108,19 +108,24 @@ PKCS12_MAC_DATA *mac;
 PKCS7 *authsafes;
 } PKCS12;
+PREDECLARE_STACK_OF(PKCS12_SAFEBAG)
 typedef struct {
 ASN1_OBJECT *type;
 union {
        struct pkcs12_bag_st *bag; /* secret, crl and certbag */
        struct pkcs8_priv_key_info_st   *keybag; /* keybag */
        X509_SIG *shkeybag; /* shrouded key bag */
-        STACK /* PKCS12_SAFEBAG */ *safes;
+        STACK_OF(PKCS12_SAFEBAG) *safes;
        ASN1_TYPE *other;
 }value;
 STACK_OF(X509_ATTRIBUTE) *attrib;
-ASN1_TYPE *rest;
 } PKCS12_SAFEBAG;
+DECLARE_STACK_OF(PKCS12_SAFEBAG)
+DECLARE_ASN1_SET_OF(PKCS12_SAFEBAG)
+DECLARE_PKCS12_STACK_OF(PKCS12_SAFEBAG)
 typedef struct pkcs12_bag_st {
 ASN1_OBJECT *type;
 union {
@@ -135,56 +140,25 @@ union {
 #define PKCS12_ERROR    0
 #define PKCS12_OK       1
-#define M_PKCS12_bag_type(bag) OBJ_obj2nid(bag->type)
+/* Compatibility macros */
-#define M_PKCS12_cert_bag_type(bag) OBJ_obj2nid(bag->value.bag->type)
-#define M_PKCS12_crl_bag_type M_PKCS12_cert_bag_type
-#define M_PKCS12_x5092certbag(x509) \
-PKCS12_pack_safebag ((char *)(x509), i2d_X509, NID_x509Certificate, NID_certBag)
-#define M_PKCS12_x509crl2certbag(crl) \
-PKCS12_pack_safebag ((char *)(crl), i2d_X509CRL, NID_x509Crl, NID_crlBag)
-#define M_PKCS12_certbag2x509(bg) \
-(X509 *) ASN1_unpack_string ((bg)->value.bag->value.octet, \
-(char *(*)())d2i_X509)
-#define M_PKCS12_certbag2x509crl(bg) \
-(X509CRL *) ASN1_unpack_string ((bg)->value.bag->value.octet, \
-(char *(*)())d2i_X509CRL)
-/*#define M_PKCS12_pkcs82rsa(p8) \
+#define M_PKCS12_x5092certbag PKCS12_x5092certbag
-(RSA *) ASN1_unpack_string ((p8)->pkey, (char *(*)())d2i_RSAPrivateKey)*/
+#define M_PKCS12_x509crl2certbag PKCS12_x509crl2certbag
-#define M_PKCS12_unpack_p7data(p7) \
+#define M_PKCS12_certbag2x509 PKCS12_certbag2x509
-ASN1_seq_unpack ((p7)->d.data->data, p7->d.data->length, \
+#define M_PKCS12_certbag2x509crl PKCS12_certbag2x509crl 
-                         (char *(*)())d2i_PKCS12_SAFEBAG, PKCS12_SAFEBAG_free)
-#define M_PKCS12_pack_authsafes(p12, safes) \
+#define M_PKCS12_unpack_p7data PKCS12_unpack_p7data
-ASN1_seq_pack((safes), (int (*)())i2d_PKCS7,\
+#define M_PKCS12_pack_authsafes PKCS12_pack_authsafes
-        &(p12)->authsafes->d.data->data, &(p12)->authsafes->d.data->length)
+#define M_PKCS12_unpack_authsafes PKCS12_unpack_authsafes
+#define M_PKCS12_unpack_p7encdata PKCS12_unpack_p7encdata
-#define M_PKCS12_unpack_authsafes(p12) \
+#define M_PKCS12_decrypt_skey PKCS12_decrypt_skey
-ASN1_seq_unpack((p12)->authsafes->d.data->data, \
+#define M_PKCS8_decrypt PKCS8_decrypt
-                (p12)->authsafes->d.data->length, (char *(*)())d2i_PKCS7, \
-                                                        PKCS7_free)
-#define M_PKCS12_unpack_p7encdata(p7, pass, passlen) \
+#define M_PKCS12_bag_type(bag) OBJ_obj2nid(bag->type)
-(STACK *) PKCS12_decrypt_d2i ((p7)->d.encrypted->enc_data->algorithm,\
+#define M_PKCS12_cert_bag_type(bag) OBJ_obj2nid(bag->value.bag->type)
-                         (char *(*)())d2i_PKCS12_SAFEBAG, PKCS12_SAFEBAG_free, \
+#define M_PKCS12_crl_bag_type M_PKCS12_cert_bag_type
-                                                        (pass), (passlen), \
-                        (p7)->d.encrypted->enc_data->enc_data, 3)
-#define M_PKCS12_decrypt_skey(bag, pass, passlen) \
-(PKCS8_PRIV_KEY_INFO *) PKCS12_decrypt_d2i ((bag)->value.shkeybag->algor, \
-(char *(*)())d2i_PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO_free, \
-                                                (pass), (passlen), \
-                         (bag)->value.shkeybag->digest, 2)
-#define M_PKCS8_decrypt(p8, pass, passlen) \
-(PKCS8_PRIV_KEY_INFO *) PKCS12_decrypt_d2i ((p8)->algor, \
-(char *(*)())d2i_PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO_free,\
-                         (pass), (passlen), (p8)->digest, 2)
 #define PKCS12_get_attr(bag, attr_nid) \
                         PKCS12_get_attr_gen(bag->attrib, attr_nid)
@@ -195,8 +169,17 @@ ASN1_seq_unpack((p12)->authsafes->d.data->data, \
 #define PKCS12_mac_present(p12) ((p12)->mac ? 1 : 0)
-PKCS12_SAFEBAG *PKCS12_pack_safebag(char *obj, int (*i2d)(), int nid1, int nid2);
+PKCS12_SAFEBAG *PKCS12_x5092certbag(X509 *x509);
+PKCS12_SAFEBAG *PKCS12_x509crl2certbag(X509_CRL *crl);
+X509 *PKCS12_certbag2x509(PKCS12_SAFEBAG *bag);
+X509_CRL *PKCS12_certbag2x509crl(PKCS12_SAFEBAG *bag);
+PKCS12_SAFEBAG *PKCS12_item_pack_safebag(void *obj, const ASN1_ITEM *it, int nid1,
+             int nid2);
 PKCS12_SAFEBAG *PKCS12_MAKE_KEYBAG(PKCS8_PRIV_KEY_INFO *p8);
+PKCS8_PRIV_KEY_INFO *PKCS8_decrypt(X509_SIG *p8, const char *pass, int passlen);
+PKCS8_PRIV_KEY_INFO *PKCS12_decrypt_skey(PKCS12_SAFEBAG *bag, const char *pass,
+                                                                int passlen);
 X509_SIG *PKCS8_encrypt(int pbe_nid, const EVP_CIPHER *cipher, 
                        const char *pass, int passlen,
                        unsigned char *salt, int saltlen, int iter,
@@ -205,13 +188,21 @@ PKCS12_SAFEBAG *PKCS12_MAKE_SHKEYBAG(int pbe_nid, const char *pass,
                                     int passlen, unsigned char *salt,
                                     int saltlen, int iter,
                                     PKCS8_PRIV_KEY_INFO *p8);
-PKCS7 *PKCS12_pack_p7data(STACK *sk);
+PKCS7 *PKCS12_pack_p7data(STACK_OF(PKCS12_SAFEBAG) *sk);
+STACK_OF(PKCS12_SAFEBAG) *PKCS12_unpack_p7data(PKCS7 *p7);
 PKCS7 *PKCS12_pack_p7encdata(int pbe_nid, const char *pass, int passlen,
                             unsigned char *salt, int saltlen, int iter,
-                             STACK *bags);
+                             STACK_OF(PKCS12_SAFEBAG) *bags);
+STACK_OF(PKCS12_SAFEBAG) *PKCS12_unpack_p7encdata(PKCS7 *p7, const char *pass, int passlen);
+int PKCS12_pack_authsafes(PKCS12 *p12, STACK_OF(PKCS7) *safes);
+STACK_OF(PKCS7) *PKCS12_unpack_authsafes(PKCS12 *p12);
 int PKCS12_add_localkeyid(PKCS12_SAFEBAG *bag, unsigned char *name, int namelen);
 int PKCS12_add_friendlyname_asc(PKCS12_SAFEBAG *bag, const char *name,
                                int namelen);
+int PKCS12_add_CSPName_asc(PKCS12_SAFEBAG *bag, const char *name,
+                                int namelen);
 int PKCS12_add_friendlyname_uni(PKCS12_SAFEBAG *bag, const unsigned char *name,
                                int namelen);
 int PKCS8_add_keyusage(PKCS8_PRIV_KEY_INFO *p8, int usage);
@@ -220,64 +211,55 @@ char *PKCS12_get_friendlyname(PKCS12_SAFEBAG *bag);
 unsigned char *PKCS12_pbe_crypt(X509_ALGOR *algor, const char *pass,
                                int passlen, unsigned char *in, int inlen,
                                unsigned char **data, int *datalen, int en_de);
-char *PKCS12_decrypt_d2i(X509_ALGOR *algor, char *(*d2i)(),
+void * PKCS12_item_decrypt_d2i(X509_ALGOR *algor, const ASN1_ITEM *it,
-                         void (*free_func)(), const char *pass, int passlen,
+             const char *pass, int passlen, ASN1_OCTET_STRING *oct, int zbuf);
-                         ASN1_STRING *oct, int seq);
+ASN1_OCTET_STRING *PKCS12_item_i2d_encrypt(X509_ALGOR *algor, const ASN1_ITEM *it,
-ASN1_STRING *PKCS12_i2d_encrypt(X509_ALGOR *algor, int (*i2d)(),
+                                       const char *pass, int passlen,
-                                const char *pass, int passlen, char *obj,
+                                       void *obj, int zbuf);
-                                int seq);
 PKCS12 *PKCS12_init(int mode);
 int PKCS12_key_gen_asc(const char *pass, int passlen, unsigned char *salt,
                       int saltlen, int id, int iter, int n,
                       unsigned char *out, const EVP_MD *md_type);
 int PKCS12_key_gen_uni(unsigned char *pass, int passlen, unsigned char *salt, int saltlen, int id, int iter, int n, unsigned char *out, const EVP_MD *md_type);
 int PKCS12_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen,
-                         ASN1_TYPE *param, EVP_CIPHER *cipher, EVP_MD *md_type,
+                         ASN1_TYPE *param, const EVP_CIPHER *cipher, const EVP_MD *md_type,
                         int en_de);
 int PKCS12_gen_mac(PKCS12 *p12, const char *pass, int passlen,
                         unsigned char *mac, unsigned int *maclen);
 int PKCS12_verify_mac(PKCS12 *p12, const char *pass, int passlen);
 int PKCS12_set_mac(PKCS12 *p12, const char *pass, int passlen,
                   unsigned char *salt, int saltlen, int iter,
-                   EVP_MD *md_type);
+                   const EVP_MD *md_type);
 int PKCS12_setup_mac(PKCS12 *p12, int iter, unsigned char *salt,
-                                         int saltlen, EVP_MD *md_type);
+                                         int saltlen, const EVP_MD *md_type);
-unsigned char *asc2uni(const char *asc, unsigned char **uni, int *unilen);
+unsigned char *asc2uni(const char *asc, int asclen, unsigned char **uni, int *unilen);
 char *uni2asc(unsigned char *uni, int unilen);
-int i2d_PKCS12_BAGS(PKCS12_BAGS *a, unsigned char **pp);
-PKCS12_BAGS *PKCS12_BAGS_new(void);
+DECLARE_ASN1_FUNCTIONS(PKCS12)
-PKCS12_BAGS *d2i_PKCS12_BAGS(PKCS12_BAGS **a, unsigned char **pp, long length);
+DECLARE_ASN1_FUNCTIONS(PKCS12_MAC_DATA)
-void PKCS12_BAGS_free(PKCS12_BAGS *a);
+DECLARE_ASN1_FUNCTIONS(PKCS12_SAFEBAG)
-int i2d_PKCS12(PKCS12 *a, unsigned char **pp);
+DECLARE_ASN1_FUNCTIONS(PKCS12_BAGS)
-PKCS12 *d2i_PKCS12(PKCS12 **a, unsigned char **pp, long length);
-PKCS12 *PKCS12_new(void);
+DECLARE_ASN1_ITEM(PKCS12_SAFEBAGS)
-void PKCS12_free(PKCS12 *a);
+DECLARE_ASN1_ITEM(PKCS12_AUTHSAFES)
-int i2d_PKCS12_MAC_DATA(PKCS12_MAC_DATA *a, unsigned char **pp);
-PKCS12_MAC_DATA *PKCS12_MAC_DATA_new(void);
-PKCS12_MAC_DATA *d2i_PKCS12_MAC_DATA(PKCS12_MAC_DATA **a, unsigned char **pp,
-                                                                 long length);
-void PKCS12_MAC_DATA_free(PKCS12_MAC_DATA *a);
-int i2d_PKCS12_SAFEBAG(PKCS12_SAFEBAG *a, unsigned char **pp);
-PKCS12_SAFEBAG *PKCS12_SAFEBAG_new(void);
-PKCS12_SAFEBAG *d2i_PKCS12_SAFEBAG(PKCS12_SAFEBAG **a, unsigned char **pp,
-                                                                 long length);
-void PKCS12_SAFEBAG_free(PKCS12_SAFEBAG *a);
-void ERR_load_PKCS12_strings(void);
 void PKCS12_PBE_add(void);
 int PKCS12_parse(PKCS12 *p12, const char *pass, EVP_PKEY **pkey, X509 **cert,
-                 STACK **ca);
+                 STACK_OF(X509) **ca);
 PKCS12 *PKCS12_create(char *pass, char *name, EVP_PKEY *pkey, X509 *cert,
-                         STACK *ca, int nid_key, int nid_cert, int iter,
+                         STACK_OF(X509) *ca, int nid_key, int nid_cert, int iter,
                                                 int mac_iter, int keytype);
 int i2d_PKCS12_bio(BIO *bp, PKCS12 *p12);
 int i2d_PKCS12_fp(FILE *fp, PKCS12 *p12);
 PKCS12 *d2i_PKCS12_bio(BIO *bp, PKCS12 **p12);
 PKCS12 *d2i_PKCS12_fp(FILE *fp, PKCS12 **p12);
+int PKCS12_newpass(PKCS12 *p12, char *oldpass, char *newpass);
 /* BEGIN ERROR CODES */
 /* The following lines are auto generated by the script mkerr.pl. Any changes
 * made after this point may be overwritten when the script is next run.
 */
+void ERR_load_PKCS12_strings(void);
 /* Error codes for the PKCS12 functions. */
@@ -296,6 +278,7 @@ PKCS12 *d2i_PKCS12_fp(FILE *fp, PKCS12 **p12);
 #define PKCS12_F_PKCS12_KEY_GEN_UNI                      111
 #define PKCS12_F_PKCS12_MAKE_KEYBAG                      112
 #define PKCS12_F_PKCS12_MAKE_SHKEYBAG                    113
+#define PKCS12_F_PKCS12_NEWPASS                          128
 #define PKCS12_F_PKCS12_PACK_P7DATA                      114
 #define PKCS12_F_PKCS12_PACK_P7ENCDATA                   115
 #define PKCS12_F_PKCS12_PACK_SAFEBAG                     117
@@ -313,6 +296,7 @@ PKCS12 *d2i_PKCS12_fp(FILE *fp, PKCS12 **p12);
 #define PKCS12_R_DECODE_ERROR                            101
 #define PKCS12_R_ENCODE_ERROR                            102
 #define PKCS12_R_ENCRYPT_ERROR                           103
+#define PKCS12_R_ERROR_SETTING_ENCRYPTED_DATA_TYPE       120
 #define PKCS12_R_INVALID_NULL_ARGUMENT                   104
 #define PKCS12_R_INVALID_NULL_PKCS12_POINTER             105
 #define PKCS12_R_IV_GEN_ERROR                            106
@@ -334,4 +318,3 @@ PKCS12 *d2i_PKCS12_fp(FILE *fp, PKCS12 **p12);
 }
 #endif
 #endif

diff --git a/src/lib/libcrypto/pkcs12/pkcs12.h b/src/lib/libcrypto/pkcs12/pkcs12.h index 4cfba5e6c6..1786b6d4f3 100644 --- a/src/lib/libcrypto/pkcs12/pkcs12.h +++ b/src/lib/libcrypto/pkcs12/pkcs12.h
@@ -59,13 +59,13 @@
59	#ifndef HEADER_PKCS12_H	59	#ifndef HEADER_PKCS12_H
60	#define HEADER_PKCS12_H	60	#define HEADER_PKCS12_H
61		61
		62	#include <openssl/bio.h>
		63	#include <openssl/x509.h>
		64
62	#ifdef __cplusplus	65	#ifdef __cplusplus
63	extern "C" {	66	extern "C" {
64	#endif	67	#endif
65		68
66	#include <openssl/bio.h>
67	#include <openssl/x509.h>
68
69	#define PKCS12_KEY_ID 1	69	#define PKCS12_KEY_ID 1
70	#define PKCS12_IV_ID 2	70	#define PKCS12_IV_ID 2
71	#define PKCS12_MAC_ID 3	71	#define PKCS12_MAC_ID 3
@@ -108,19 +108,24 @@ PKCS12_MAC_DATA *mac;
108	PKCS7 *authsafes;	108	PKCS7 *authsafes;
109	} PKCS12;	109	} PKCS12;
110		110
		111	PREDECLARE_STACK_OF(PKCS12_SAFEBAG)
		112
111	typedef struct {	113	typedef struct {
112	ASN1_OBJECT *type;	114	ASN1_OBJECT *type;
113	union {	115	union {
114	struct pkcs12_bag_st bag; / secret, crl and certbag */	116	struct pkcs12_bag_st bag; / secret, crl and certbag */
115	struct pkcs8_priv_key_info_st keybag; / keybag */	117	struct pkcs8_priv_key_info_st keybag; / keybag */
116	X509_SIG shkeybag; / shrouded key bag */	118	X509_SIG shkeybag; / shrouded key bag */
117	STACK /* PKCS12_SAFEBAG / safes;	119	STACK_OF(PKCS12_SAFEBAG) *safes;
118	ASN1_TYPE *other;	120	ASN1_TYPE *other;
119	}value;	121	}value;
120	STACK_OF(X509_ATTRIBUTE) *attrib;	122	STACK_OF(X509_ATTRIBUTE) *attrib;
121	ASN1_TYPE *rest;
122	} PKCS12_SAFEBAG;	123	} PKCS12_SAFEBAG;
123		124
		125	DECLARE_STACK_OF(PKCS12_SAFEBAG)
		126	DECLARE_ASN1_SET_OF(PKCS12_SAFEBAG)
		127	DECLARE_PKCS12_STACK_OF(PKCS12_SAFEBAG)
		128
124	typedef struct pkcs12_bag_st {	129	typedef struct pkcs12_bag_st {
125	ASN1_OBJECT *type;	130	ASN1_OBJECT *type;
126	union {	131	union {
@@ -135,56 +140,25 @@ union {
135	#define PKCS12_ERROR 0	140	#define PKCS12_ERROR 0
136	#define PKCS12_OK 1	141	#define PKCS12_OK 1
137		142
138	#define M_PKCS12_bag_type(bag) OBJ_obj2nid(bag->type)	143	/* Compatibility macros */
139	#define M_PKCS12_cert_bag_type(bag) OBJ_obj2nid(bag->value.bag->type)
140	#define M_PKCS12_crl_bag_type M_PKCS12_cert_bag_type
141
142	#define M_PKCS12_x5092certbag(x509) \
143	PKCS12_pack_safebag ((char *)(x509), i2d_X509, NID_x509Certificate, NID_certBag)
144
145	#define M_PKCS12_x509crl2certbag(crl) \
146	PKCS12_pack_safebag ((char *)(crl), i2d_X509CRL, NID_x509Crl, NID_crlBag)
147
148	#define M_PKCS12_certbag2x509(bg) \
149	(X509 *) ASN1_unpack_string ((bg)->value.bag->value.octet, \
150	(char ()())d2i_X509)
151
152	#define M_PKCS12_certbag2x509crl(bg) \
153	(X509CRL *) ASN1_unpack_string ((bg)->value.bag->value.octet, \
154	(char ()())d2i_X509CRL)
155		144
156	/*#define M_PKCS12_pkcs82rsa(p8) \	145	#define M_PKCS12_x5092certbag PKCS12_x5092certbag
157	(RSA ) ASN1_unpack_string ((p8)->pkey, (char ()())d2i_RSAPrivateKey)/	146	#define M_PKCS12_x509crl2certbag PKCS12_x509crl2certbag
158		147
159	#define M_PKCS12_unpack_p7data(p7) \	148	#define M_PKCS12_certbag2x509 PKCS12_certbag2x509
160	ASN1_seq_unpack ((p7)->d.data->data, p7->d.data->length, \	149	#define M_PKCS12_certbag2x509crl PKCS12_certbag2x509crl
161	(char ()())d2i_PKCS12_SAFEBAG, PKCS12_SAFEBAG_free)
162		150
163	#define M_PKCS12_pack_authsafes(p12, safes) \	151	#define M_PKCS12_unpack_p7data PKCS12_unpack_p7data
164	ASN1_seq_pack((safes), (int (*)())i2d_PKCS7,\	152	#define M_PKCS12_pack_authsafes PKCS12_pack_authsafes
165	&(p12)->authsafes->d.data->data, &(p12)->authsafes->d.data->length)	153	#define M_PKCS12_unpack_authsafes PKCS12_unpack_authsafes
		154	#define M_PKCS12_unpack_p7encdata PKCS12_unpack_p7encdata
166		155
167	#define M_PKCS12_unpack_authsafes(p12) \	156	#define M_PKCS12_decrypt_skey PKCS12_decrypt_skey
168	ASN1_seq_unpack((p12)->authsafes->d.data->data, \	157	#define M_PKCS8_decrypt PKCS8_decrypt
169	(p12)->authsafes->d.data->length, (char ()())d2i_PKCS7, \
170	PKCS7_free)
171		158
172	#define M_PKCS12_unpack_p7encdata(p7, pass, passlen) \	159	#define M_PKCS12_bag_type(bag) OBJ_obj2nid(bag->type)
173	(STACK *) PKCS12_decrypt_d2i ((p7)->d.encrypted->enc_data->algorithm,\	160	#define M_PKCS12_cert_bag_type(bag) OBJ_obj2nid(bag->value.bag->type)
174	(char ()())d2i_PKCS12_SAFEBAG, PKCS12_SAFEBAG_free, \	161	#define M_PKCS12_crl_bag_type M_PKCS12_cert_bag_type
175	(pass), (passlen), \
176	(p7)->d.encrypted->enc_data->enc_data, 3)
177
178	#define M_PKCS12_decrypt_skey(bag, pass, passlen) \
179	(PKCS8_PRIV_KEY_INFO *) PKCS12_decrypt_d2i ((bag)->value.shkeybag->algor, \
180	(char ()())d2i_PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO_free, \
181	(pass), (passlen), \
182	(bag)->value.shkeybag->digest, 2)
183
184	#define M_PKCS8_decrypt(p8, pass, passlen) \
185	(PKCS8_PRIV_KEY_INFO *) PKCS12_decrypt_d2i ((p8)->algor, \
186	(char ()())d2i_PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO_free,\
187	(pass), (passlen), (p8)->digest, 2)
188		162
189	#define PKCS12_get_attr(bag, attr_nid) \	163	#define PKCS12_get_attr(bag, attr_nid) \
190	PKCS12_get_attr_gen(bag->attrib, attr_nid)	164	PKCS12_get_attr_gen(bag->attrib, attr_nid)
@@ -195,8 +169,17 @@ ASN1_seq_unpack((p12)->authsafes->d.data->data, \
195	#define PKCS12_mac_present(p12) ((p12)->mac ? 1 : 0)	169	#define PKCS12_mac_present(p12) ((p12)->mac ? 1 : 0)
196		170
197		171
198	PKCS12_SAFEBAG PKCS12_pack_safebag(char obj, int (*i2d)(), int nid1, int nid2);	172	PKCS12_SAFEBAG PKCS12_x5092certbag(X509 x509);
		173	PKCS12_SAFEBAG PKCS12_x509crl2certbag(X509_CRL crl);
		174	X509 PKCS12_certbag2x509(PKCS12_SAFEBAG bag);
		175	X509_CRL PKCS12_certbag2x509crl(PKCS12_SAFEBAG bag);
		176
		177	PKCS12_SAFEBAG PKCS12_item_pack_safebag(void obj, const ASN1_ITEM *it, int nid1,
		178	int nid2);
199	PKCS12_SAFEBAG PKCS12_MAKE_KEYBAG(PKCS8_PRIV_KEY_INFO p8);	179	PKCS12_SAFEBAG PKCS12_MAKE_KEYBAG(PKCS8_PRIV_KEY_INFO p8);
		180	PKCS8_PRIV_KEY_INFO PKCS8_decrypt(X509_SIG p8, const char *pass, int passlen);
		181	PKCS8_PRIV_KEY_INFO PKCS12_decrypt_skey(PKCS12_SAFEBAG bag, const char *pass,
		182	int passlen);
200	X509_SIG PKCS8_encrypt(int pbe_nid, const EVP_CIPHER cipher,	183	X509_SIG PKCS8_encrypt(int pbe_nid, const EVP_CIPHER cipher,
201	const char *pass, int passlen,	184	const char *pass, int passlen,
202	unsigned char *salt, int saltlen, int iter,	185	unsigned char *salt, int saltlen, int iter,
@@ -205,13 +188,21 @@ PKCS12_SAFEBAG PKCS12_MAKE_SHKEYBAG(int pbe_nid, const char pass,
205	int passlen, unsigned char *salt,	188	int passlen, unsigned char *salt,
206	int saltlen, int iter,	189	int saltlen, int iter,
207	PKCS8_PRIV_KEY_INFO *p8);	190	PKCS8_PRIV_KEY_INFO *p8);
208	PKCS7 PKCS12_pack_p7data(STACK sk);	191	PKCS7 PKCS12_pack_p7data(STACK_OF(PKCS12_SAFEBAG) sk);
		192	STACK_OF(PKCS12_SAFEBAG) PKCS12_unpack_p7data(PKCS7 p7);
209	PKCS7 PKCS12_pack_p7encdata(int pbe_nid, const char pass, int passlen,	193	PKCS7 PKCS12_pack_p7encdata(int pbe_nid, const char pass, int passlen,
210	unsigned char *salt, int saltlen, int iter,	194	unsigned char *salt, int saltlen, int iter,
211	STACK *bags);	195	STACK_OF(PKCS12_SAFEBAG) *bags);
		196	STACK_OF(PKCS12_SAFEBAG) PKCS12_unpack_p7encdata(PKCS7 p7, const char *pass, int passlen);
		197
		198	int PKCS12_pack_authsafes(PKCS12 p12, STACK_OF(PKCS7) safes);
		199	STACK_OF(PKCS7) PKCS12_unpack_authsafes(PKCS12 p12);
		200
212	int PKCS12_add_localkeyid(PKCS12_SAFEBAG bag, unsigned char name, int namelen);	201	int PKCS12_add_localkeyid(PKCS12_SAFEBAG bag, unsigned char name, int namelen);
213	int PKCS12_add_friendlyname_asc(PKCS12_SAFEBAG bag, const char name,	202	int PKCS12_add_friendlyname_asc(PKCS12_SAFEBAG bag, const char name,
214	int namelen);	203	int namelen);
		204	int PKCS12_add_CSPName_asc(PKCS12_SAFEBAG bag, const char name,
		205	int namelen);
215	int PKCS12_add_friendlyname_uni(PKCS12_SAFEBAG bag, const unsigned char name,	206	int PKCS12_add_friendlyname_uni(PKCS12_SAFEBAG bag, const unsigned char name,
216	int namelen);	207	int namelen);
217	int PKCS8_add_keyusage(PKCS8_PRIV_KEY_INFO *p8, int usage);	208	int PKCS8_add_keyusage(PKCS8_PRIV_KEY_INFO *p8, int usage);
@@ -220,64 +211,55 @@ char PKCS12_get_friendlyname(PKCS12_SAFEBAG bag);
220	unsigned char PKCS12_pbe_crypt(X509_ALGOR algor, const char *pass,	211	unsigned char PKCS12_pbe_crypt(X509_ALGOR algor, const char *pass,
221	int passlen, unsigned char *in, int inlen,	212	int passlen, unsigned char *in, int inlen,
222	unsigned char *data, int datalen, int en_de);	213	unsigned char *data, int datalen, int en_de);
223	char PKCS12_decrypt_d2i(X509_ALGOR algor, char (d2i)(),	214	void * PKCS12_item_decrypt_d2i(X509_ALGOR algor, const ASN1_ITEM it,
224	void (free_func)(), const char pass, int passlen,	215	const char pass, int passlen, ASN1_OCTET_STRING oct, int zbuf);
225	ASN1_STRING *oct, int seq);	216	ASN1_OCTET_STRING PKCS12_item_i2d_encrypt(X509_ALGOR algor, const ASN1_ITEM *it,
226	ASN1_STRING PKCS12_i2d_encrypt(X509_ALGOR algor, int (*i2d)(),	217	const char *pass, int passlen,
227	const char pass, int passlen, char obj,	218	void *obj, int zbuf);
228	int seq);
229	PKCS12 *PKCS12_init(int mode);	219	PKCS12 *PKCS12_init(int mode);
230	int PKCS12_key_gen_asc(const char pass, int passlen, unsigned char salt,	220	int PKCS12_key_gen_asc(const char pass, int passlen, unsigned char salt,
231	int saltlen, int id, int iter, int n,	221	int saltlen, int id, int iter, int n,
232	unsigned char out, const EVP_MD md_type);	222	unsigned char out, const EVP_MD md_type);
233	int PKCS12_key_gen_uni(unsigned char pass, int passlen, unsigned char salt, int saltlen, int id, int iter, int n, unsigned char out, const EVP_MD md_type);	223	int PKCS12_key_gen_uni(unsigned char pass, int passlen, unsigned char salt, int saltlen, int id, int iter, int n, unsigned char out, const EVP_MD md_type);
234	int PKCS12_PBE_keyivgen(EVP_CIPHER_CTX ctx, const char pass, int passlen,	224	int PKCS12_PBE_keyivgen(EVP_CIPHER_CTX ctx, const char pass, int passlen,
235	ASN1_TYPE param, EVP_CIPHER cipher, EVP_MD *md_type,	225	ASN1_TYPE param, const EVP_CIPHER cipher, const EVP_MD *md_type,
236	int en_de);	226	int en_de);
237	int PKCS12_gen_mac(PKCS12 p12, const char pass, int passlen,	227	int PKCS12_gen_mac(PKCS12 p12, const char pass, int passlen,
238	unsigned char mac, unsigned int maclen);	228	unsigned char mac, unsigned int maclen);
239	int PKCS12_verify_mac(PKCS12 p12, const char pass, int passlen);	229	int PKCS12_verify_mac(PKCS12 p12, const char pass, int passlen);
240	int PKCS12_set_mac(PKCS12 p12, const char pass, int passlen,	230	int PKCS12_set_mac(PKCS12 p12, const char pass, int passlen,
241	unsigned char *salt, int saltlen, int iter,	231	unsigned char *salt, int saltlen, int iter,
242	EVP_MD *md_type);	232	const EVP_MD *md_type);
243	int PKCS12_setup_mac(PKCS12 p12, int iter, unsigned char salt,	233	int PKCS12_setup_mac(PKCS12 p12, int iter, unsigned char salt,
244	int saltlen, EVP_MD *md_type);	234	int saltlen, const EVP_MD *md_type);
245	unsigned char asc2uni(const char asc, unsigned char *uni, int unilen);	235	unsigned char asc2uni(const char asc, int asclen, unsigned char *uni, int unilen);
246	char uni2asc(unsigned char uni, int unilen);	236	char uni2asc(unsigned char uni, int unilen);
247	int i2d_PKCS12_BAGS(PKCS12_BAGS a, unsigned char *pp);	237
248	PKCS12_BAGS *PKCS12_BAGS_new(void);	238	DECLARE_ASN1_FUNCTIONS(PKCS12)
249	PKCS12_BAGS d2i_PKCS12_BAGS(PKCS12_BAGS a, unsigned char *pp, long length);	239	DECLARE_ASN1_FUNCTIONS(PKCS12_MAC_DATA)
250	void PKCS12_BAGS_free(PKCS12_BAGS *a);	240	DECLARE_ASN1_FUNCTIONS(PKCS12_SAFEBAG)
251	int i2d_PKCS12(PKCS12 a, unsigned char *pp);	241	DECLARE_ASN1_FUNCTIONS(PKCS12_BAGS)
252	PKCS12 d2i_PKCS12(PKCS12 a, unsigned char *pp, long length);	242
253	PKCS12 *PKCS12_new(void);	243	DECLARE_ASN1_ITEM(PKCS12_SAFEBAGS)
254	void PKCS12_free(PKCS12 *a);	244	DECLARE_ASN1_ITEM(PKCS12_AUTHSAFES)
255	int i2d_PKCS12_MAC_DATA(PKCS12_MAC_DATA a, unsigned char *pp);	245
256	PKCS12_MAC_DATA *PKCS12_MAC_DATA_new(void);
257	PKCS12_MAC_DATA d2i_PKCS12_MAC_DATA(PKCS12_MAC_DATA a, unsigned char *pp,
258	long length);
259	void PKCS12_MAC_DATA_free(PKCS12_MAC_DATA *a);
260	int i2d_PKCS12_SAFEBAG(PKCS12_SAFEBAG a, unsigned char *pp);
261	PKCS12_SAFEBAG *PKCS12_SAFEBAG_new(void);
262	PKCS12_SAFEBAG d2i_PKCS12_SAFEBAG(PKCS12_SAFEBAG a, unsigned char *pp,
263	long length);
264	void PKCS12_SAFEBAG_free(PKCS12_SAFEBAG *a);
265	void ERR_load_PKCS12_strings(void);
266	void PKCS12_PBE_add(void);	246	void PKCS12_PBE_add(void);
267	int PKCS12_parse(PKCS12 p12, const char pass, EVP_PKEY pkey, X509 cert,	247	int PKCS12_parse(PKCS12 p12, const char pass, EVP_PKEY pkey, X509 cert,
268	STACK **ca);	248	STACK_OF(X509) **ca);
269	PKCS12 PKCS12_create(char pass, char name, EVP_PKEY pkey, X509 *cert,	249	PKCS12 PKCS12_create(char pass, char name, EVP_PKEY pkey, X509 *cert,
270	STACK *ca, int nid_key, int nid_cert, int iter,	250	STACK_OF(X509) *ca, int nid_key, int nid_cert, int iter,
271	int mac_iter, int keytype);	251	int mac_iter, int keytype);
272	int i2d_PKCS12_bio(BIO bp, PKCS12 p12);	252	int i2d_PKCS12_bio(BIO bp, PKCS12 p12);
273	int i2d_PKCS12_fp(FILE fp, PKCS12 p12);	253	int i2d_PKCS12_fp(FILE fp, PKCS12 p12);
274	PKCS12 d2i_PKCS12_bio(BIO bp, PKCS12 **p12);	254	PKCS12 d2i_PKCS12_bio(BIO bp, PKCS12 **p12);
275	PKCS12 d2i_PKCS12_fp(FILE fp, PKCS12 **p12);	255	PKCS12 d2i_PKCS12_fp(FILE fp, PKCS12 **p12);
		256	int PKCS12_newpass(PKCS12 p12, char oldpass, char *newpass);
276		257
277	/* BEGIN ERROR CODES */	258	/* BEGIN ERROR CODES */
278	/* The following lines are auto generated by the script mkerr.pl. Any changes	259	/* The following lines are auto generated by the script mkerr.pl. Any changes
279	* made after this point may be overwritten when the script is next run.	260	* made after this point may be overwritten when the script is next run.
280	*/	261	*/
		262	void ERR_load_PKCS12_strings(void);
281		263
282	/* Error codes for the PKCS12 functions. */	264	/* Error codes for the PKCS12 functions. */
283		265
@@ -296,6 +278,7 @@ PKCS12 d2i_PKCS12_fp(FILE fp, PKCS12 **p12);
296	#define PKCS12_F_PKCS12_KEY_GEN_UNI 111	278	#define PKCS12_F_PKCS12_KEY_GEN_UNI 111
297	#define PKCS12_F_PKCS12_MAKE_KEYBAG 112	279	#define PKCS12_F_PKCS12_MAKE_KEYBAG 112
298	#define PKCS12_F_PKCS12_MAKE_SHKEYBAG 113	280	#define PKCS12_F_PKCS12_MAKE_SHKEYBAG 113
		281	#define PKCS12_F_PKCS12_NEWPASS 128
299	#define PKCS12_F_PKCS12_PACK_P7DATA 114	282	#define PKCS12_F_PKCS12_PACK_P7DATA 114
300	#define PKCS12_F_PKCS12_PACK_P7ENCDATA 115	283	#define PKCS12_F_PKCS12_PACK_P7ENCDATA 115
301	#define PKCS12_F_PKCS12_PACK_SAFEBAG 117	284	#define PKCS12_F_PKCS12_PACK_SAFEBAG 117
@@ -313,6 +296,7 @@ PKCS12 d2i_PKCS12_fp(FILE fp, PKCS12 **p12);
313	#define PKCS12_R_DECODE_ERROR 101	296	#define PKCS12_R_DECODE_ERROR 101
314	#define PKCS12_R_ENCODE_ERROR 102	297	#define PKCS12_R_ENCODE_ERROR 102
315	#define PKCS12_R_ENCRYPT_ERROR 103	298	#define PKCS12_R_ENCRYPT_ERROR 103
		299	#define PKCS12_R_ERROR_SETTING_ENCRYPTED_DATA_TYPE 120
316	#define PKCS12_R_INVALID_NULL_ARGUMENT 104	300	#define PKCS12_R_INVALID_NULL_ARGUMENT 104
317	#define PKCS12_R_INVALID_NULL_PKCS12_POINTER 105	301	#define PKCS12_R_INVALID_NULL_PKCS12_POINTER 105
318	#define PKCS12_R_IV_GEN_ERROR 106	302	#define PKCS12_R_IV_GEN_ERROR 106
@@ -334,4 +318,3 @@ PKCS12 d2i_PKCS12_fp(FILE fp, PKCS12 **p12);
334	}	318	}
335	#endif	319	#endif
336	#endif	320	#endif
337