Tree - source-git/openssl - CentOS Git server

source-git / openssl

Blame apps/apps.c

Blob History Raw

Packit	c4476c	`/*`
Packit	c4476c	`* Copyright 1995-2019 The OpenSSL Project Authors. All Rights Reserved.`
Packit	c4476c	`*`
Packit	c4476c	`* Licensed under the OpenSSL license (the "License"). You may not use`
Packit	c4476c	`* this file except in compliance with the License. You can obtain a copy`
Packit	c4476c	`* in the file LICENSE in the source distribution or at`
Packit	c4476c	`* https://www.openssl.org/source/license.html`
Packit	c4476c	`*/`
Packit	c4476c
Packit	c4476c	`#if !defined(_POSIX_C_SOURCE) && defined(OPENSSL_SYS_VMS)`
Packit	c4476c	`/*`
Packit	c4476c	`* On VMS, you need to define this to get the declaration of fileno(). The`
Packit	c4476c	`* value 2 is to make sure no function defined in POSIX-2 is left undefined.`
Packit	c4476c	`*/`
Packit	c4476c	`# define _POSIX_C_SOURCE 2`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`#include <stdio.h>`
Packit	c4476c	`#include <stdlib.h>`
Packit	c4476c	`#include <string.h>`
Packit	c4476c	`#include <sys/types.h>`
Packit	c4476c	`#ifndef OPENSSL_NO_POSIX_IO`
Packit	c4476c	`# include <sys/stat.h>`
Packit	c4476c	`# include <fcntl.h>`
Packit	c4476c	`#endif`
Packit	c4476c	`#include <ctype.h>`
Packit	c4476c	`#include <errno.h>`
Packit	c4476c	`#include <openssl/err.h>`
Packit	c4476c	`#include <openssl/x509.h>`
Packit	c4476c	`#include <openssl/x509v3.h>`
Packit	c4476c	`#include <openssl/pem.h>`
Packit	c4476c	`#include <openssl/pkcs12.h>`
Packit	c4476c	`#include <openssl/ui.h>`
Packit	c4476c	`#include <openssl/safestack.h>`
Packit	c4476c	`#ifndef OPENSSL_NO_ENGINE`
Packit	c4476c	`# include <openssl/engine.h>`
Packit	c4476c	`#endif`
Packit	c4476c	`#ifndef OPENSSL_NO_RSA`
Packit	c4476c	`# include <openssl/rsa.h>`
Packit	c4476c	`#endif`
Packit	c4476c	`#include <openssl/bn.h>`
Packit	c4476c	`#include <openssl/ssl.h>`
Packit	c4476c	`#include "apps.h"`
Packit	c4476c
Packit	c4476c	`#ifdef _WIN32`
Packit	c4476c	`static int WIN32_rename(const char from, const char to);`
Packit	c4476c	`# define rename(from,to) WIN32_rename((from),(to))`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`#if defined(OPENSSL_SYS_WINDOWS) \|\| defined(OPENSSL_SYS_MSDOS)`
Packit	c4476c	`# include <conio.h>`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`#if defined(OPENSSL_SYS_MSDOS) && !defined(_WIN32)`
Packit	c4476c	`# define _kbhit kbhit`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`typedef struct {`
Packit	c4476c	`const char *name;`
Packit	c4476c	`unsigned long flag;`
Packit	c4476c	`unsigned long mask;`
Packit	c4476c	`} NAME_EX_TBL;`
Packit	c4476c
Packit	c4476c	`static UI_METHOD *ui_method = NULL;`
Packit	c4476c	`static const UI_METHOD *ui_fallback_method = NULL;`
Packit	c4476c
Packit	c4476c	`static int set_table_opts(unsigned long flags, const char arg,`
Packit	c4476c	`const NAME_EX_TBL * in_tbl);`
Packit	c4476c	`static int set_multi_opts(unsigned long flags, const char arg,`
Packit	c4476c	`const NAME_EX_TBL * in_tbl);`
Packit	c4476c
Packit	c4476c	`int app_init(long mesgwin);`
Packit	c4476c
Packit	c4476c	`int chopup_args(ARGS arg, char buf)`
Packit	c4476c	`{`
Packit	c4476c	`int quoted;`
Packit	c4476c	`char c = '\0', *p = NULL;`
Packit	c4476c
Packit	c4476c	`arg->argc = 0;`
Packit	c4476c	`if (arg->size == 0) {`
Packit	c4476c	`arg->size = 20;`
Packit	c4476c	`arg->argv = app_malloc(sizeof(arg->argv) arg->size, "argv space");`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`for (p = buf;;) {`
Packit	c4476c	`/* Skip whitespace. */`
Packit	c4476c	`while (p && isspace(_UC(p)))`
Packit	c4476c	`p++;`
Packit	c4476c	`if (!*p)`
Packit	c4476c	`break;`
Packit	c4476c
Packit	c4476c	`/* The start of something good :-) */`
Packit	c4476c	`if (arg->argc >= arg->size) {`
Packit	c4476c	`char **tmp;`
Packit	c4476c	`arg->size += 20;`
Packit	c4476c	`tmp = OPENSSL_realloc(arg->argv, sizeof(arg->argv) arg->size);`
Packit	c4476c	`if (tmp == NULL)`
Packit	c4476c	`return 0;`
Packit	c4476c	`arg->argv = tmp;`
Packit	c4476c	`}`
Packit	c4476c	`quoted = p == '\'' \|\| p == '"';`
Packit	c4476c	`if (quoted)`
Packit	c4476c	`c = *p++;`
Packit	c4476c	`arg->argv[arg->argc++] = p;`
Packit	c4476c
Packit	c4476c	`/* now look for the end of this */`
Packit	c4476c	`if (quoted) {`
Packit	c4476c	`while (p && p != c)`
Packit	c4476c	`p++;`
Packit	c4476c	`*p++ = '\0';`
Packit	c4476c	`} else {`
Packit	c4476c	`while (p && !isspace(_UC(p)))`
Packit	c4476c	`p++;`
Packit	c4476c	`if (*p)`
Packit	c4476c	`*p++ = '\0';`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`arg->argv[arg->argc] = NULL;`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#ifndef APP_INIT`
Packit	c4476c	`int app_init(long mesgwin)`
Packit	c4476c	`{`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`int ctx_set_verify_locations(SSL_CTX ctx, const char CAfile,`
Packit	c4476c	`const char *CApath, int noCAfile, int noCApath)`
Packit	c4476c	`{`
Packit	c4476c	`if (CAfile == NULL && CApath == NULL) {`
Packit	c4476c	`if (!noCAfile && SSL_CTX_set_default_verify_file(ctx) <= 0)`
Packit	c4476c	`return 0;`
Packit	c4476c	`if (!noCApath && SSL_CTX_set_default_verify_dir(ctx) <= 0)`
Packit	c4476c	`return 0;`
Packit	c4476c
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`return SSL_CTX_load_verify_locations(ctx, CAfile, CApath);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#ifndef OPENSSL_NO_CT`
Packit	c4476c
Packit	c4476c	`int ctx_set_ctlog_list_file(SSL_CTX ctx, const char path)`
Packit	c4476c	`{`
Packit	c4476c	`if (path == NULL)`
Packit	c4476c	`return SSL_CTX_set_default_ctlog_list_file(ctx);`
Packit	c4476c
Packit	c4476c	`return SSL_CTX_set_ctlog_list_file(ctx, path);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`static unsigned long nmflag = 0;`
Packit	c4476c	`static char nmflag_set = 0;`
Packit	c4476c
Packit	c4476c	`int set_nameopt(const char *arg)`
Packit	c4476c	`{`
Packit	c4476c	`int ret = set_name_ex(&nmflag, arg);`
Packit	c4476c
Packit	c4476c	`if (ret)`
Packit	c4476c	`nmflag_set = 1;`
Packit	c4476c
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`unsigned long get_nameopt(void)`
Packit	c4476c	`{`
Packit	c4476c	`return (nmflag_set) ? nmflag : XN_FLAG_ONELINE;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int dump_cert_text(BIO out, X509 x)`
Packit	c4476c	`{`
Packit	c4476c	`print_name(out, "subject=", X509_get_subject_name(x), get_nameopt());`
Packit	c4476c	`BIO_puts(out, "\n");`
Packit	c4476c	`print_name(out, "issuer=", X509_get_issuer_name(x), get_nameopt());`
Packit	c4476c	`BIO_puts(out, "\n");`
Packit	c4476c
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int ui_open(UI *ui)`
Packit	c4476c	`{`
Packit	c4476c	`int (opener)(UI ui) = UI_method_get_opener(ui_fallback_method);`
Packit	c4476c
Packit	c4476c	`if (opener)`
Packit	c4476c	`return opener(ui);`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int ui_read(UI ui, UI_STRING uis)`
Packit	c4476c	`{`
Packit	c4476c	`int (reader)(UI ui, UI_STRING *uis) = NULL;`
Packit	c4476c
Packit	c4476c	`if (UI_get_input_flags(uis) & UI_INPUT_FLAG_DEFAULT_PWD`
Packit	c4476c	`&& UI_get0_user_data(ui)) {`
Packit	c4476c	`switch (UI_get_string_type(uis)) {`
Packit	c4476c	`case UIT_PROMPT:`
Packit	c4476c	`case UIT_VERIFY:`
Packit	c4476c	`{`
Packit	c4476c	`const char *password =`
Packit	c4476c	`((PW_CB_DATA *)UI_get0_user_data(ui))->password;`
Packit	c4476c	`if (password && password[0] != '\0') {`
Packit	c4476c	`UI_set_result(ui, uis, password);`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`break;`
Packit	c4476c	`case UIT_NONE:`
Packit	c4476c	`case UIT_BOOLEAN:`
Packit	c4476c	`case UIT_INFO:`
Packit	c4476c	`case UIT_ERROR:`
Packit	c4476c	`break;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`reader = UI_method_get_reader(ui_fallback_method);`
Packit	c4476c	`if (reader)`
Packit	c4476c	`return reader(ui, uis);`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int ui_write(UI ui, UI_STRING uis)`
Packit	c4476c	`{`
Packit	c4476c	`int (writer)(UI ui, UI_STRING *uis) = NULL;`
Packit	c4476c
Packit	c4476c	`if (UI_get_input_flags(uis) & UI_INPUT_FLAG_DEFAULT_PWD`
Packit	c4476c	`&& UI_get0_user_data(ui)) {`
Packit	c4476c	`switch (UI_get_string_type(uis)) {`
Packit	c4476c	`case UIT_PROMPT:`
Packit	c4476c	`case UIT_VERIFY:`
Packit	c4476c	`{`
Packit	c4476c	`const char *password =`
Packit	c4476c	`((PW_CB_DATA *)UI_get0_user_data(ui))->password;`
Packit	c4476c	`if (password && password[0] != '\0')`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`break;`
Packit	c4476c	`case UIT_NONE:`
Packit	c4476c	`case UIT_BOOLEAN:`
Packit	c4476c	`case UIT_INFO:`
Packit	c4476c	`case UIT_ERROR:`
Packit	c4476c	`break;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`writer = UI_method_get_writer(ui_fallback_method);`
Packit	c4476c	`if (writer)`
Packit	c4476c	`return writer(ui, uis);`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int ui_close(UI *ui)`
Packit	c4476c	`{`
Packit	c4476c	`int (closer)(UI ui) = UI_method_get_closer(ui_fallback_method);`
Packit	c4476c
Packit	c4476c	`if (closer)`
Packit	c4476c	`return closer(ui);`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int setup_ui_method(void)`
Packit	c4476c	`{`
Packit	c4476c	`ui_fallback_method = UI_null();`
Packit	c4476c	`#ifndef OPENSSL_NO_UI_CONSOLE`
Packit	c4476c	`ui_fallback_method = UI_OpenSSL();`
Packit	c4476c	`#endif`
Packit	c4476c	`ui_method = UI_create_method("OpenSSL application user interface");`
Packit	c4476c	`UI_method_set_opener(ui_method, ui_open);`
Packit	c4476c	`UI_method_set_reader(ui_method, ui_read);`
Packit	c4476c	`UI_method_set_writer(ui_method, ui_write);`
Packit	c4476c	`UI_method_set_closer(ui_method, ui_close);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void destroy_ui_method(void)`
Packit	c4476c	`{`
Packit	c4476c	`if (ui_method) {`
Packit	c4476c	`UI_destroy_method(ui_method);`
Packit	c4476c	`ui_method = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`const UI_METHOD *get_ui_method(void)`
Packit	c4476c	`{`
Packit	c4476c	`return ui_method;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int password_callback(char buf, int bufsiz, int verify, PW_CB_DATA cb_tmp)`
Packit	c4476c	`{`
Packit	c4476c	`int res = 0;`
Packit	c4476c	`UI *ui = NULL;`
Packit	c4476c	`PW_CB_DATA cb_data = (PW_CB_DATA )cb_tmp;`
Packit	c4476c
Packit	c4476c	`ui = UI_new_method(ui_method);`
Packit	c4476c	`if (ui) {`
Packit	c4476c	`int ok = 0;`
Packit	c4476c	`char *buff = NULL;`
Packit	c4476c	`int ui_flags = 0;`
Packit	c4476c	`const char *prompt_info = NULL;`
Packit	c4476c	`char *prompt;`
Packit	c4476c
Packit	c4476c	`if (cb_data != NULL && cb_data->prompt_info != NULL)`
Packit	c4476c	`prompt_info = cb_data->prompt_info;`
Packit	c4476c	`prompt = UI_construct_prompt(ui, "pass phrase", prompt_info);`
Packit	c4476c	`if (!prompt) {`
Packit	c4476c	`BIO_printf(bio_err, "Out of memory\n");`
Packit	c4476c	`UI_free(ui);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`ui_flags \|= UI_INPUT_FLAG_DEFAULT_PWD;`
Packit	c4476c	`UI_ctrl(ui, UI_CTRL_PRINT_ERRORS, 1, 0, 0);`
Packit	c4476c
Packit	c4476c	`/* We know that there is no previous user data to return to us */`
Packit	c4476c	`(void)UI_add_user_data(ui, cb_data);`
Packit	c4476c
Packit	c4476c	`ok = UI_add_input_string(ui, prompt, ui_flags, buf,`
Packit	c4476c	`PW_MIN_LENGTH, bufsiz - 1);`
Packit	c4476c
Packit	c4476c	`if (ok >= 0 && verify) {`
Packit	c4476c	`buff = app_malloc(bufsiz, "password buffer");`
Packit	c4476c	`ok = UI_add_verify_string(ui, prompt, ui_flags, buff,`
Packit	c4476c	`PW_MIN_LENGTH, bufsiz - 1, buf);`
Packit	c4476c	`}`
Packit	c4476c	`if (ok >= 0)`
Packit	c4476c	`do {`
Packit	c4476c	`ok = UI_process(ui);`
Packit	c4476c	`} while (ok < 0 && UI_ctrl(ui, UI_CTRL_IS_REDOABLE, 0, 0, 0));`
Packit	c4476c
Packit	c4476c	`OPENSSL_clear_free(buff, (unsigned int)bufsiz);`
Packit	c4476c
Packit	c4476c	`if (ok >= 0)`
Packit	c4476c	`res = strlen(buf);`
Packit	c4476c	`if (ok == -1) {`
Packit	c4476c	`BIO_printf(bio_err, "User interface error\n");`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`OPENSSL_cleanse(buf, (unsigned int)bufsiz);`
Packit	c4476c	`res = 0;`
Packit	c4476c	`}`
Packit	c4476c	`if (ok == -2) {`
Packit	c4476c	`BIO_printf(bio_err, "aborted!\n");`
Packit	c4476c	`OPENSSL_cleanse(buf, (unsigned int)bufsiz);`
Packit	c4476c	`res = 0;`
Packit	c4476c	`}`
Packit	c4476c	`UI_free(ui);`
Packit	c4476c	`OPENSSL_free(prompt);`
Packit	c4476c	`}`
Packit	c4476c	`return res;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static char app_get_pass(const char arg, int keepbio);`
Packit	c4476c
Packit	c4476c	`int app_passwd(const char arg1, const char arg2, char pass1, char pass2)`
Packit	c4476c	`{`
Packit	c4476c	`int same;`
Packit	c4476c	`if (arg2 == NULL \|\| arg1 == NULL \|\| strcmp(arg1, arg2))`
Packit	c4476c	`same = 0;`
Packit	c4476c	`else`
Packit	c4476c	`same = 1;`
Packit	c4476c	`if (arg1 != NULL) {`
Packit	c4476c	`*pass1 = app_get_pass(arg1, same);`
Packit	c4476c	`if (*pass1 == NULL)`
Packit	c4476c	`return 0;`
Packit	c4476c	`} else if (pass1 != NULL) {`
Packit	c4476c	`*pass1 = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`if (arg2 != NULL) {`
Packit	c4476c	`*pass2 = app_get_pass(arg2, same ? 2 : 0);`
Packit	c4476c	`if (*pass2 == NULL)`
Packit	c4476c	`return 0;`
Packit	c4476c	`} else if (pass2 != NULL) {`
Packit	c4476c	`*pass2 = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static char app_get_pass(const char arg, int keepbio)`
Packit	c4476c	`{`
Packit	c4476c	`char *tmp, tpass[APP_PASS_LEN];`
Packit	c4476c	`static BIO *pwdbio = NULL;`
Packit	c4476c	`int i;`
Packit	c4476c
Packit	c4476c	`if (strncmp(arg, "pass:", 5) == 0)`
Packit	c4476c	`return OPENSSL_strdup(arg + 5);`
Packit	c4476c	`if (strncmp(arg, "env:", 4) == 0) {`
Packit	c4476c	`tmp = getenv(arg + 4);`
Packit	c4476c	`if (tmp == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "Can't read environment variable %s\n", arg + 4);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`return OPENSSL_strdup(tmp);`
Packit	c4476c	`}`
Packit	c4476c	`if (!keepbio \|\| pwdbio == NULL) {`
Packit	c4476c	`if (strncmp(arg, "file:", 5) == 0) {`
Packit	c4476c	`pwdbio = BIO_new_file(arg + 5, "r");`
Packit	c4476c	`if (pwdbio == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "Can't open file %s\n", arg + 5);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`#if !defined(_WIN32)`
Packit	c4476c	`/*`
Packit	c4476c	`* Under _WIN32, which covers even Win64 and CE, file`
Packit	c4476c	`* descriptors referenced by BIO_s_fd are not inherited`
Packit	c4476c	`* by child process and therefore below is not an option.`
Packit	c4476c	`* It could have been an option if bss_fd.c was operating`
Packit	c4476c	`* on real Windows descriptors, such as those obtained`
Packit	c4476c	`* with CreateFile.`
Packit	c4476c	`*/`
Packit	c4476c	`} else if (strncmp(arg, "fd:", 3) == 0) {`
Packit	c4476c	`BIO *btmp;`
Packit	c4476c	`i = atoi(arg + 3);`
Packit	c4476c	`if (i >= 0)`
Packit	c4476c	`pwdbio = BIO_new_fd(i, BIO_NOCLOSE);`
Packit	c4476c	`if ((i < 0) \|\| !pwdbio) {`
Packit	c4476c	`BIO_printf(bio_err, "Can't access file descriptor %s\n", arg + 3);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`/*`
Packit	c4476c	`* Can't do BIO_gets on an fd BIO so add a buffering BIO`
Packit	c4476c	`*/`
Packit	c4476c	`btmp = BIO_new(BIO_f_buffer());`
Packit	c4476c	`pwdbio = BIO_push(btmp, pwdbio);`
Packit	c4476c	`#endif`
Packit	c4476c	`} else if (strcmp(arg, "stdin") == 0) {`
Packit	c4476c	`pwdbio = dup_bio_in(FORMAT_TEXT);`
Packit	c4476c	`if (!pwdbio) {`
Packit	c4476c	`BIO_printf(bio_err, "Can't open BIO for stdin\n");`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`} else {`
Packit	c4476c	`BIO_printf(bio_err, "Invalid password argument \"%s\"\n", arg);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`i = BIO_gets(pwdbio, tpass, APP_PASS_LEN);`
Packit	c4476c	`if (keepbio != 1) {`
Packit	c4476c	`BIO_free_all(pwdbio);`
Packit	c4476c	`pwdbio = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`if (i <= 0) {`
Packit	c4476c	`BIO_printf(bio_err, "Error reading password from BIO\n");`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`tmp = strchr(tpass, '\n');`
Packit	c4476c	`if (tmp != NULL)`
Packit	c4476c	`*tmp = 0;`
Packit	c4476c	`return OPENSSL_strdup(tpass);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`CONF app_load_config_bio(BIO in, const char *filename)`
Packit	c4476c	`{`
Packit	c4476c	`long errorline = -1;`
Packit	c4476c	`CONF *conf;`
Packit	c4476c	`int i;`
Packit	c4476c
Packit	c4476c	`conf = NCONF_new(NULL);`
Packit	c4476c	`i = NCONF_load_bio(conf, in, &errorline);`
Packit	c4476c	`if (i > 0)`
Packit	c4476c	`return conf;`
Packit	c4476c
Packit	c4476c	`if (errorline <= 0) {`
Packit	c4476c	`BIO_printf(bio_err, "%s: Can't load ", opt_getprog());`
Packit	c4476c	`} else {`
Packit	c4476c	`BIO_printf(bio_err, "%s: Error on line %ld of ", opt_getprog(),`
Packit	c4476c	`errorline);`
Packit	c4476c	`}`
Packit	c4476c	`if (filename != NULL)`
Packit	c4476c	`BIO_printf(bio_err, "config file \"%s\"\n", filename);`
Packit	c4476c	`else`
Packit	c4476c	`BIO_printf(bio_err, "config input");`
Packit	c4476c
Packit	c4476c	`NCONF_free(conf);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`CONF app_load_config(const char filename)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *in;`
Packit	c4476c	`CONF *conf;`
Packit	c4476c
Packit	c4476c	`in = bio_open_default(filename, 'r', FORMAT_TEXT);`
Packit	c4476c	`if (in == NULL)`
Packit	c4476c	`return NULL;`
Packit	c4476c
Packit	c4476c	`conf = app_load_config_bio(in, filename);`
Packit	c4476c	`BIO_free(in);`
Packit	c4476c	`return conf;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`CONF app_load_config_quiet(const char filename)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *in;`
Packit	c4476c	`CONF *conf;`
Packit	c4476c
Packit	c4476c	`in = bio_open_default_quiet(filename, 'r', FORMAT_TEXT);`
Packit	c4476c	`if (in == NULL)`
Packit	c4476c	`return NULL;`
Packit	c4476c
Packit	c4476c	`conf = app_load_config_bio(in, filename);`
Packit	c4476c	`BIO_free(in);`
Packit	c4476c	`return conf;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int app_load_modules(const CONF *config)`
Packit	c4476c	`{`
Packit	c4476c	`CONF *to_free = NULL;`
Packit	c4476c
Packit	c4476c	`if (config == NULL)`
Packit	c4476c	`config = to_free = app_load_config_quiet(default_config_file);`
Packit	c4476c	`if (config == NULL)`
Packit	c4476c	`return 1;`
Packit	c4476c
Packit	c4476c	`if (CONF_modules_load(config, NULL, 0) <= 0) {`
Packit	c4476c	`BIO_printf(bio_err, "Error configuring OpenSSL modules\n");`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`NCONF_free(to_free);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c	`NCONF_free(to_free);`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int add_oid_section(CONF *conf)`
Packit	c4476c	`{`
Packit	c4476c	`char *p;`
Packit	c4476c	`STACK_OF(CONF_VALUE) *sktmp;`
Packit	c4476c	`CONF_VALUE *cnf;`
Packit	c4476c	`int i;`
Packit	c4476c
Packit	c4476c	`if ((p = NCONF_get_string(conf, NULL, "oid_section")) == NULL) {`
Packit	c4476c	`ERR_clear_error();`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`if ((sktmp = NCONF_get_section(conf, p)) == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "problem loading oid section %s\n", p);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c	`for (i = 0; i < sk_CONF_VALUE_num(sktmp); i++) {`
Packit	c4476c	`cnf = sk_CONF_VALUE_value(sktmp, i);`
Packit	c4476c	`if (OBJ_create(cnf->value, cnf->name, cnf->name) == NID_undef) {`
Packit	c4476c	`BIO_printf(bio_err, "problem creating object %s=%s\n",`
Packit	c4476c	`cnf->name, cnf->value);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int load_pkcs12(BIO in, const char desc,`
Packit	c4476c	`pem_password_cb pem_cb, void cb_data,`
Packit	c4476c	`EVP_PKEY pkey, X509 cert, STACK_OF(X509) **ca)`
Packit	c4476c	`{`
Packit	c4476c	`const char *pass;`
Packit	c4476c	`char tpass[PEM_BUFSIZE];`
Packit	c4476c	`int len, ret = 0;`
Packit	c4476c	`PKCS12 *p12;`
Packit	c4476c	`p12 = d2i_PKCS12_bio(in, NULL);`
Packit	c4476c	`if (p12 == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "Error loading PKCS12 file for %s\n", desc);`
Packit	c4476c	`goto die;`
Packit	c4476c	`}`
Packit	c4476c	`/* See if an empty password will do */`
Packit	c4476c	`if (PKCS12_verify_mac(p12, "", 0) \|\| PKCS12_verify_mac(p12, NULL, 0)) {`
Packit	c4476c	`pass = "";`
Packit	c4476c	`} else {`
Packit	c4476c	`if (!pem_cb)`
Packit	c4476c	`pem_cb = (pem_password_cb *)password_callback;`
Packit	c4476c	`len = pem_cb(tpass, PEM_BUFSIZE, 0, cb_data);`
Packit	c4476c	`if (len < 0) {`
Packit	c4476c	`BIO_printf(bio_err, "Passphrase callback error for %s\n", desc);`
Packit	c4476c	`goto die;`
Packit	c4476c	`}`
Packit	c4476c	`if (len < PEM_BUFSIZE)`
Packit	c4476c	`tpass[len] = 0;`
Packit	c4476c	`if (!PKCS12_verify_mac(p12, tpass, len)) {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"Mac verify error (wrong password?) in PKCS12 file for %s\n",`
Packit	c4476c	`desc);`
Packit	c4476c	`goto die;`
Packit	c4476c	`}`
Packit	c4476c	`pass = tpass;`
Packit	c4476c	`}`
Packit	c4476c	`ret = PKCS12_parse(p12, pass, pkey, cert, ca);`
Packit	c4476c	`die:`
Packit	c4476c	`PKCS12_free(p12);`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#if !defined(OPENSSL_NO_OCSP) && !defined(OPENSSL_NO_SOCK)`
Packit	c4476c	`static int load_cert_crl_http(const char url, X509 pcert, X509_CRL *pcrl)`
Packit	c4476c	`{`
Packit	c4476c	`char host = NULL, port = NULL, *path = NULL;`
Packit	c4476c	`BIO *bio = NULL;`
Packit	c4476c	`OCSP_REQ_CTX *rctx = NULL;`
Packit	c4476c	`int use_ssl, rv = 0;`
Packit	c4476c	`if (!OCSP_parse_url(url, &host, &port, &path, &use_ssl))`
Packit	c4476c	`goto err;`
Packit	c4476c	`if (use_ssl) {`
Packit	c4476c	`BIO_puts(bio_err, "https not supported\n");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`bio = BIO_new_connect(host);`
Packit	c4476c	`if (!bio \|\| !BIO_set_conn_port(bio, port))`
Packit	c4476c	`goto err;`
Packit	c4476c	`rctx = OCSP_REQ_CTX_new(bio, 1024);`
Packit	c4476c	`if (rctx == NULL)`
Packit	c4476c	`goto err;`
Packit	c4476c	`if (!OCSP_REQ_CTX_http(rctx, "GET", path))`
Packit	c4476c	`goto err;`
Packit	c4476c	`if (!OCSP_REQ_CTX_add1_header(rctx, "Host", host))`
Packit	c4476c	`goto err;`
Packit	c4476c	`if (pcert) {`
Packit	c4476c	`do {`
Packit	c4476c	`rv = X509_http_nbio(rctx, pcert);`
Packit	c4476c	`} while (rv == -1);`
Packit	c4476c	`} else {`
Packit	c4476c	`do {`
Packit	c4476c	`rv = X509_CRL_http_nbio(rctx, pcrl);`
Packit	c4476c	`} while (rv == -1);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`err:`
Packit	c4476c	`OPENSSL_free(host);`
Packit	c4476c	`OPENSSL_free(path);`
Packit	c4476c	`OPENSSL_free(port);`
Packit	c4476c	`BIO_free_all(bio);`
Packit	c4476c	`OCSP_REQ_CTX_free(rctx);`
Packit	c4476c	`if (rv != 1) {`
Packit	c4476c	`BIO_printf(bio_err, "Error loading %s from %s\n",`
Packit	c4476c	`pcert ? "certificate" : "CRL", url);`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`}`
Packit	c4476c	`return rv;`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`X509 load_cert(const char file, int format, const char *cert_descrip)`
Packit	c4476c	`{`
Packit	c4476c	`X509 *x = NULL;`
Packit	c4476c	`BIO *cert;`
Packit	c4476c
Packit	c4476c	`if (format == FORMAT_HTTP) {`
Packit	c4476c	`#if !defined(OPENSSL_NO_OCSP) && !defined(OPENSSL_NO_SOCK)`
Packit	c4476c	`load_cert_crl_http(file, &x, NULL);`
Packit	c4476c	`#endif`
Packit	c4476c	`return x;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (file == NULL) {`
Packit	c4476c	`unbuffer(stdin);`
Packit	c4476c	`cert = dup_bio_in(format);`
Packit	c4476c	`} else {`
Packit	c4476c	`cert = bio_open_default(file, 'r', format);`
Packit	c4476c	`}`
Packit	c4476c	`if (cert == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c
Packit	c4476c	`if (format == FORMAT_ASN1) {`
Packit	c4476c	`x = d2i_X509_bio(cert, NULL);`
Packit	c4476c	`} else if (format == FORMAT_PEM) {`
Packit	c4476c	`x = PEM_read_bio_X509_AUX(cert, NULL,`
Packit	c4476c	`(pem_password_cb *)password_callback, NULL);`
Packit	c4476c	`} else if (format == FORMAT_PKCS12) {`
Packit	c4476c	`if (!load_pkcs12(cert, cert_descrip, NULL, NULL, NULL, &x, NULL))`
Packit	c4476c	`goto end;`
Packit	c4476c	`} else {`
Packit	c4476c	`BIO_printf(bio_err, "bad input format specified for %s\n", cert_descrip);`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`end:`
Packit	c4476c	`if (x == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to load certificate\n");`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`}`
Packit	c4476c	`BIO_free(cert);`
Packit	c4476c	`return x;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`X509_CRL load_crl(const char infile, int format)`
Packit	c4476c	`{`
Packit	c4476c	`X509_CRL *x = NULL;`
Packit	c4476c	`BIO *in = NULL;`
Packit	c4476c
Packit	c4476c	`if (format == FORMAT_HTTP) {`
Packit	c4476c	`#if !defined(OPENSSL_NO_OCSP) && !defined(OPENSSL_NO_SOCK)`
Packit	c4476c	`load_cert_crl_http(infile, NULL, &x);`
Packit	c4476c	`#endif`
Packit	c4476c	`return x;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`in = bio_open_default(infile, 'r', format);`
Packit	c4476c	`if (in == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c	`if (format == FORMAT_ASN1) {`
Packit	c4476c	`x = d2i_X509_CRL_bio(in, NULL);`
Packit	c4476c	`} else if (format == FORMAT_PEM) {`
Packit	c4476c	`x = PEM_read_bio_X509_CRL(in, NULL, NULL, NULL);`
Packit	c4476c	`} else {`
Packit	c4476c	`BIO_printf(bio_err, "bad input format specified for input crl\n");`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`if (x == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to load CRL\n");`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`end:`
Packit	c4476c	`BIO_free(in);`
Packit	c4476c	`return x;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`EVP_PKEY load_key(const char file, int format, int maybe_stdin,`
Packit	c4476c	`const char pass, ENGINE e, const char *key_descrip)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *key = NULL;`
Packit	c4476c	`EVP_PKEY *pkey = NULL;`
Packit	c4476c	`PW_CB_DATA cb_data;`
Packit	c4476c
Packit	c4476c	`cb_data.password = pass;`
Packit	c4476c	`cb_data.prompt_info = file;`
Packit	c4476c
Packit	c4476c	`if (file == NULL && (!maybe_stdin \|\| format == FORMAT_ENGINE)) {`
Packit	c4476c	`BIO_printf(bio_err, "no keyfile specified\n");`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`if (format == FORMAT_ENGINE) {`
Packit	c4476c	`if (e == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "no engine specified\n");`
Packit	c4476c	`} else {`
Packit	c4476c	`#ifndef OPENSSL_NO_ENGINE`
Packit	c4476c	`if (ENGINE_init(e)) {`
Packit	c4476c	`pkey = ENGINE_load_private_key(e, file, ui_method, &cb_data);`
Packit	c4476c	`ENGINE_finish(e);`
Packit	c4476c	`}`
Packit	c4476c	`if (pkey == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "cannot load %s from engine\n", key_descrip);`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`}`
Packit	c4476c	`#else`
Packit	c4476c	`BIO_printf(bio_err, "engines not supported\n");`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`if (file == NULL && maybe_stdin) {`
Packit	c4476c	`unbuffer(stdin);`
Packit	c4476c	`key = dup_bio_in(format);`
Packit	c4476c	`} else {`
Packit	c4476c	`key = bio_open_default(file, 'r', format);`
Packit	c4476c	`}`
Packit	c4476c	`if (key == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c	`if (format == FORMAT_ASN1) {`
Packit	c4476c	`pkey = d2i_PrivateKey_bio(key, NULL);`
Packit	c4476c	`} else if (format == FORMAT_PEM) {`
Packit	c4476c	`pkey = PEM_read_bio_PrivateKey(key, NULL,`
Packit	c4476c	`(pem_password_cb *)password_callback,`
Packit	c4476c	`&cb_data);`
Packit	c4476c	`} else if (format == FORMAT_PKCS12) {`
Packit	c4476c	`if (!load_pkcs12(key, key_descrip,`
Packit	c4476c	`(pem_password_cb *)password_callback, &cb_data,`
Packit	c4476c	`&pkey, NULL, NULL))`
Packit	c4476c	`goto end;`
Packit	c4476c	`#if !defined(OPENSSL_NO_RSA) && !defined(OPENSSL_NO_DSA) && !defined (OPENSSL_NO_RC4)`
Packit	c4476c	`} else if (format == FORMAT_MSBLOB) {`
Packit	c4476c	`pkey = b2i_PrivateKey_bio(key);`
Packit	c4476c	`} else if (format == FORMAT_PVK) {`
Packit	c4476c	`pkey = b2i_PVK_bio(key, (pem_password_cb *)password_callback,`
Packit	c4476c	`&cb_data);`
Packit	c4476c	`#endif`
Packit	c4476c	`} else {`
Packit	c4476c	`BIO_printf(bio_err, "bad input format specified for key file\n");`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`end:`
Packit	c4476c	`BIO_free(key);`
Packit	c4476c	`if (pkey == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to load %s\n", key_descrip);`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`}`
Packit	c4476c	`return pkey;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`EVP_PKEY load_pubkey(const char file, int format, int maybe_stdin,`
Packit	c4476c	`const char pass, ENGINE e, const char *key_descrip)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *key = NULL;`
Packit	c4476c	`EVP_PKEY *pkey = NULL;`
Packit	c4476c	`PW_CB_DATA cb_data;`
Packit	c4476c
Packit	c4476c	`cb_data.password = pass;`
Packit	c4476c	`cb_data.prompt_info = file;`
Packit	c4476c
Packit	c4476c	`if (file == NULL && (!maybe_stdin \|\| format == FORMAT_ENGINE)) {`
Packit	c4476c	`BIO_printf(bio_err, "no keyfile specified\n");`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`if (format == FORMAT_ENGINE) {`
Packit	c4476c	`if (e == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "no engine specified\n");`
Packit	c4476c	`} else {`
Packit	c4476c	`#ifndef OPENSSL_NO_ENGINE`
Packit	c4476c	`pkey = ENGINE_load_public_key(e, file, ui_method, &cb_data);`
Packit	c4476c	`if (pkey == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "cannot load %s from engine\n", key_descrip);`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`}`
Packit	c4476c	`#else`
Packit	c4476c	`BIO_printf(bio_err, "engines not supported\n");`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`if (file == NULL && maybe_stdin) {`
Packit	c4476c	`unbuffer(stdin);`
Packit	c4476c	`key = dup_bio_in(format);`
Packit	c4476c	`} else {`
Packit	c4476c	`key = bio_open_default(file, 'r', format);`
Packit	c4476c	`}`
Packit	c4476c	`if (key == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c	`if (format == FORMAT_ASN1) {`
Packit	c4476c	`pkey = d2i_PUBKEY_bio(key, NULL);`
Packit	c4476c	`} else if (format == FORMAT_ASN1RSA) {`
Packit	c4476c	`#ifndef OPENSSL_NO_RSA`
Packit	c4476c	`RSA *rsa;`
Packit	c4476c	`rsa = d2i_RSAPublicKey_bio(key, NULL);`
Packit	c4476c	`if (rsa) {`
Packit	c4476c	`pkey = EVP_PKEY_new();`
Packit	c4476c	`if (pkey != NULL)`
Packit	c4476c	`EVP_PKEY_set1_RSA(pkey, rsa);`
Packit	c4476c	`RSA_free(rsa);`
Packit	c4476c	`} else`
Packit	c4476c	`#else`
Packit	c4476c	`BIO_printf(bio_err, "RSA keys not supported\n");`
Packit	c4476c	`#endif`
Packit	c4476c	`pkey = NULL;`
Packit	c4476c	`} else if (format == FORMAT_PEMRSA) {`
Packit	c4476c	`#ifndef OPENSSL_NO_RSA`
Packit	c4476c	`RSA *rsa;`
Packit	c4476c	`rsa = PEM_read_bio_RSAPublicKey(key, NULL,`
Packit	c4476c	`(pem_password_cb *)password_callback,`
Packit	c4476c	`&cb_data);`
Packit	c4476c	`if (rsa != NULL) {`
Packit	c4476c	`pkey = EVP_PKEY_new();`
Packit	c4476c	`if (pkey != NULL)`
Packit	c4476c	`EVP_PKEY_set1_RSA(pkey, rsa);`
Packit	c4476c	`RSA_free(rsa);`
Packit	c4476c	`} else`
Packit	c4476c	`#else`
Packit	c4476c	`BIO_printf(bio_err, "RSA keys not supported\n");`
Packit	c4476c	`#endif`
Packit	c4476c	`pkey = NULL;`
Packit	c4476c	`} else if (format == FORMAT_PEM) {`
Packit	c4476c	`pkey = PEM_read_bio_PUBKEY(key, NULL,`
Packit	c4476c	`(pem_password_cb *)password_callback,`
Packit	c4476c	`&cb_data);`
Packit	c4476c	`#if !defined(OPENSSL_NO_RSA) && !defined(OPENSSL_NO_DSA)`
Packit	c4476c	`} else if (format == FORMAT_MSBLOB) {`
Packit	c4476c	`pkey = b2i_PublicKey_bio(key);`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c	`end:`
Packit	c4476c	`BIO_free(key);`
Packit	c4476c	`if (pkey == NULL)`
Packit	c4476c	`BIO_printf(bio_err, "unable to load %s\n", key_descrip);`
Packit	c4476c	`return pkey;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int load_certs_crls(const char *file, int format,`
Packit	c4476c	`const char pass, const char desc,`
Packit	c4476c	`STACK_OF(X509) **pcerts,`
Packit	c4476c	`STACK_OF(X509_CRL) **pcrls)`
Packit	c4476c	`{`
Packit	c4476c	`int i;`
Packit	c4476c	`BIO *bio;`
Packit	c4476c	`STACK_OF(X509_INFO) *xis = NULL;`
Packit	c4476c	`X509_INFO *xi;`
Packit	c4476c	`PW_CB_DATA cb_data;`
Packit	c4476c	`int rv = 0;`
Packit	c4476c
Packit	c4476c	`cb_data.password = pass;`
Packit	c4476c	`cb_data.prompt_info = file;`
Packit	c4476c
Packit	c4476c	`if (format != FORMAT_PEM) {`
Packit	c4476c	`BIO_printf(bio_err, "bad input format specified for %s\n", desc);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`bio = bio_open_default(file, 'r', FORMAT_PEM);`
Packit	c4476c	`if (bio == NULL)`
Packit	c4476c	`return 0;`
Packit	c4476c
Packit	c4476c	`xis = PEM_X509_INFO_read_bio(bio, NULL,`
Packit	c4476c	`(pem_password_cb *)password_callback,`
Packit	c4476c	`&cb_data);`
Packit	c4476c
Packit	c4476c	`BIO_free(bio);`
Packit	c4476c
Packit	c4476c	`if (pcerts != NULL && *pcerts == NULL) {`
Packit	c4476c	`*pcerts = sk_X509_new_null();`
Packit	c4476c	`if (*pcerts == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (pcrls != NULL && *pcrls == NULL) {`
Packit	c4476c	`*pcrls = sk_X509_CRL_new_null();`
Packit	c4476c	`if (*pcrls == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`for (i = 0; i < sk_X509_INFO_num(xis); i++) {`
Packit	c4476c	`xi = sk_X509_INFO_value(xis, i);`
Packit	c4476c	`if (xi->x509 != NULL && pcerts != NULL) {`
Packit	c4476c	`if (!sk_X509_push(*pcerts, xi->x509))`
Packit	c4476c	`goto end;`
Packit	c4476c	`xi->x509 = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`if (xi->crl != NULL && pcrls != NULL) {`
Packit	c4476c	`if (!sk_X509_CRL_push(*pcrls, xi->crl))`
Packit	c4476c	`goto end;`
Packit	c4476c	`xi->crl = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (pcerts != NULL && sk_X509_num(*pcerts) > 0)`
Packit	c4476c	`rv = 1;`
Packit	c4476c
Packit	c4476c	`if (pcrls != NULL && sk_X509_CRL_num(*pcrls) > 0)`
Packit	c4476c	`rv = 1;`
Packit	c4476c
Packit	c4476c	`end:`
Packit	c4476c
Packit	c4476c	`sk_X509_INFO_pop_free(xis, X509_INFO_free);`
Packit	c4476c
Packit	c4476c	`if (rv == 0) {`
Packit	c4476c	`if (pcerts != NULL) {`
Packit	c4476c	`sk_X509_pop_free(*pcerts, X509_free);`
Packit	c4476c	`*pcerts = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`if (pcrls != NULL) {`
Packit	c4476c	`sk_X509_CRL_pop_free(*pcrls, X509_CRL_free);`
Packit	c4476c	`*pcrls = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`BIO_printf(bio_err, "unable to load %s\n",`
Packit	c4476c	`pcerts ? "certificates" : "CRLs");`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`}`
Packit	c4476c	`return rv;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void* app_malloc(int sz, const char *what)`
Packit	c4476c	`{`
Packit	c4476c	`void *vp = OPENSSL_malloc(sz);`
Packit	c4476c
Packit	c4476c	`if (vp == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "%s: Could not allocate %d bytes for %s\n",`
Packit	c4476c	`opt_getprog(), sz, what);`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`exit(1);`
Packit	c4476c	`}`
Packit	c4476c	`return vp;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Initialize or extend, if *certs != NULL, a certificate stack.`
Packit	c4476c	`*/`
Packit	c4476c	`int load_certs(const char file, STACK_OF(X509) *certs, int format,`
Packit	c4476c	`const char pass, const char desc)`
Packit	c4476c	`{`
Packit	c4476c	`return load_certs_crls(file, format, pass, desc, certs, NULL);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Initialize or extend, if *crls != NULL, a certificate stack.`
Packit	c4476c	`*/`
Packit	c4476c	`int load_crls(const char file, STACK_OF(X509_CRL) *crls, int format,`
Packit	c4476c	`const char pass, const char desc)`
Packit	c4476c	`{`
Packit	c4476c	`return load_certs_crls(file, format, pass, desc, NULL, crls);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#define X509V3_EXT_UNKNOWN_MASK (0xfL << 16)`
Packit	c4476c	`/* Return error for unknown extensions */`
Packit	c4476c	`#define X509V3_EXT_DEFAULT 0`
Packit	c4476c	`/* Print error for unknown extensions */`
Packit	c4476c	`#define X509V3_EXT_ERROR_UNKNOWN (1L << 16)`
Packit	c4476c	`/* ASN1 parse unknown extensions */`
Packit	c4476c	`#define X509V3_EXT_PARSE_UNKNOWN (2L << 16)`
Packit	c4476c	`/* BIO_dump unknown extensions */`
Packit	c4476c	`#define X509V3_EXT_DUMP_UNKNOWN (3L << 16)`
Packit	c4476c
Packit	c4476c	`#define X509_FLAG_CA (X509_FLAG_NO_ISSUER \| X509_FLAG_NO_PUBKEY \| \`
Packit	c4476c	`X509_FLAG_NO_HEADER \| X509_FLAG_NO_VERSION)`
Packit	c4476c
Packit	c4476c	`int set_cert_ex(unsigned long flags, const char arg)`
Packit	c4476c	`{`
Packit	c4476c	`static const NAME_EX_TBL cert_tbl[] = {`
Packit	c4476c	`{"compatible", X509_FLAG_COMPAT, 0xffffffffl},`
Packit	c4476c	`{"ca_default", X509_FLAG_CA, 0xffffffffl},`
Packit	c4476c	`{"no_header", X509_FLAG_NO_HEADER, 0},`
Packit	c4476c	`{"no_version", X509_FLAG_NO_VERSION, 0},`
Packit	c4476c	`{"no_serial", X509_FLAG_NO_SERIAL, 0},`
Packit	c4476c	`{"no_signame", X509_FLAG_NO_SIGNAME, 0},`
Packit	c4476c	`{"no_validity", X509_FLAG_NO_VALIDITY, 0},`
Packit	c4476c	`{"no_subject", X509_FLAG_NO_SUBJECT, 0},`
Packit	c4476c	`{"no_issuer", X509_FLAG_NO_ISSUER, 0},`
Packit	c4476c	`{"no_pubkey", X509_FLAG_NO_PUBKEY, 0},`
Packit	c4476c	`{"no_extensions", X509_FLAG_NO_EXTENSIONS, 0},`
Packit	c4476c	`{"no_sigdump", X509_FLAG_NO_SIGDUMP, 0},`
Packit	c4476c	`{"no_aux", X509_FLAG_NO_AUX, 0},`
Packit	c4476c	`{"no_attributes", X509_FLAG_NO_ATTRIBUTES, 0},`
Packit	c4476c	`{"ext_default", X509V3_EXT_DEFAULT, X509V3_EXT_UNKNOWN_MASK},`
Packit	c4476c	`{"ext_error", X509V3_EXT_ERROR_UNKNOWN, X509V3_EXT_UNKNOWN_MASK},`
Packit	c4476c	`{"ext_parse", X509V3_EXT_PARSE_UNKNOWN, X509V3_EXT_UNKNOWN_MASK},`
Packit	c4476c	`{"ext_dump", X509V3_EXT_DUMP_UNKNOWN, X509V3_EXT_UNKNOWN_MASK},`
Packit	c4476c	`{NULL, 0, 0}`
Packit	c4476c	`};`
Packit	c4476c	`return set_multi_opts(flags, arg, cert_tbl);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int set_name_ex(unsigned long flags, const char arg)`
Packit	c4476c	`{`
Packit	c4476c	`static const NAME_EX_TBL ex_tbl[] = {`
Packit	c4476c	`{"esc_2253", ASN1_STRFLGS_ESC_2253, 0},`
Packit	c4476c	`{"esc_2254", ASN1_STRFLGS_ESC_2254, 0},`
Packit	c4476c	`{"esc_ctrl", ASN1_STRFLGS_ESC_CTRL, 0},`
Packit	c4476c	`{"esc_msb", ASN1_STRFLGS_ESC_MSB, 0},`
Packit	c4476c	`{"use_quote", ASN1_STRFLGS_ESC_QUOTE, 0},`
Packit	c4476c	`{"utf8", ASN1_STRFLGS_UTF8_CONVERT, 0},`
Packit	c4476c	`{"ignore_type", ASN1_STRFLGS_IGNORE_TYPE, 0},`
Packit	c4476c	`{"show_type", ASN1_STRFLGS_SHOW_TYPE, 0},`
Packit	c4476c	`{"dump_all", ASN1_STRFLGS_DUMP_ALL, 0},`
Packit	c4476c	`{"dump_nostr", ASN1_STRFLGS_DUMP_UNKNOWN, 0},`
Packit	c4476c	`{"dump_der", ASN1_STRFLGS_DUMP_DER, 0},`
Packit	c4476c	`{"compat", XN_FLAG_COMPAT, 0xffffffffL},`
Packit	c4476c	`{"sep_comma_plus", XN_FLAG_SEP_COMMA_PLUS, XN_FLAG_SEP_MASK},`
Packit	c4476c	`{"sep_comma_plus_space", XN_FLAG_SEP_CPLUS_SPC, XN_FLAG_SEP_MASK},`
Packit	c4476c	`{"sep_semi_plus_space", XN_FLAG_SEP_SPLUS_SPC, XN_FLAG_SEP_MASK},`
Packit	c4476c	`{"sep_multiline", XN_FLAG_SEP_MULTILINE, XN_FLAG_SEP_MASK},`
Packit	c4476c	`{"dn_rev", XN_FLAG_DN_REV, 0},`
Packit	c4476c	`{"nofname", XN_FLAG_FN_NONE, XN_FLAG_FN_MASK},`
Packit	c4476c	`{"sname", XN_FLAG_FN_SN, XN_FLAG_FN_MASK},`
Packit	c4476c	`{"lname", XN_FLAG_FN_LN, XN_FLAG_FN_MASK},`
Packit	c4476c	`{"align", XN_FLAG_FN_ALIGN, 0},`
Packit	c4476c	`{"oid", XN_FLAG_FN_OID, XN_FLAG_FN_MASK},`
Packit	c4476c	`{"space_eq", XN_FLAG_SPC_EQ, 0},`
Packit	c4476c	`{"dump_unknown", XN_FLAG_DUMP_UNKNOWN_FIELDS, 0},`
Packit	c4476c	`{"RFC2253", XN_FLAG_RFC2253, 0xffffffffL},`
Packit	c4476c	`{"oneline", XN_FLAG_ONELINE, 0xffffffffL},`
Packit	c4476c	`{"multiline", XN_FLAG_MULTILINE, 0xffffffffL},`
Packit	c4476c	`{"ca_default", XN_FLAG_MULTILINE, 0xffffffffL},`
Packit	c4476c	`{NULL, 0, 0}`
Packit	c4476c	`};`
Packit	c4476c	`if (set_multi_opts(flags, arg, ex_tbl) == 0)`
Packit	c4476c	`return 0;`
Packit	c4476c	`if (*flags != XN_FLAG_COMPAT`
Packit	c4476c	`&& (*flags & XN_FLAG_SEP_MASK) == 0)`
Packit	c4476c	`*flags \|= XN_FLAG_SEP_CPLUS_SPC;`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int set_ext_copy(int copy_type, const char arg)`
Packit	c4476c	`{`
Packit	c4476c	`if (strcasecmp(arg, "none") == 0)`
Packit	c4476c	`*copy_type = EXT_COPY_NONE;`
Packit	c4476c	`else if (strcasecmp(arg, "copy") == 0)`
Packit	c4476c	`*copy_type = EXT_COPY_ADD;`
Packit	c4476c	`else if (strcasecmp(arg, "copyall") == 0)`
Packit	c4476c	`*copy_type = EXT_COPY_ALL;`
Packit	c4476c	`else`
Packit	c4476c	`return 0;`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int copy_extensions(X509 x, X509_REQ req, int copy_type)`
Packit	c4476c	`{`
Packit	c4476c	`STACK_OF(X509_EXTENSION) *exts = NULL;`
Packit	c4476c	`X509_EXTENSION ext, tmpext;`
Packit	c4476c	`ASN1_OBJECT *obj;`
Packit	c4476c	`int i, idx, ret = 0;`
Packit	c4476c	`if (!x \|\| !req \|\| (copy_type == EXT_COPY_NONE))`
Packit	c4476c	`return 1;`
Packit	c4476c	`exts = X509_REQ_get_extensions(req);`
Packit	c4476c
Packit	c4476c	`for (i = 0; i < sk_X509_EXTENSION_num(exts); i++) {`
Packit	c4476c	`ext = sk_X509_EXTENSION_value(exts, i);`
Packit	c4476c	`obj = X509_EXTENSION_get_object(ext);`
Packit	c4476c	`idx = X509_get_ext_by_OBJ(x, obj, -1);`
Packit	c4476c	`/* Does extension exist? */`
Packit	c4476c	`if (idx != -1) {`
Packit	c4476c	`/* If normal copy don't override existing extension */`
Packit	c4476c	`if (copy_type == EXT_COPY_ADD)`
Packit	c4476c	`continue;`
Packit	c4476c	`/* Delete all extensions of same type */`
Packit	c4476c	`do {`
Packit	c4476c	`tmpext = X509_get_ext(x, idx);`
Packit	c4476c	`X509_delete_ext(x, idx);`
Packit	c4476c	`X509_EXTENSION_free(tmpext);`
Packit	c4476c	`idx = X509_get_ext_by_OBJ(x, obj, -1);`
Packit	c4476c	`} while (idx != -1);`
Packit	c4476c	`}`
Packit	c4476c	`if (!X509_add_ext(x, ext, -1))`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`ret = 1;`
Packit	c4476c
Packit	c4476c	`end:`
Packit	c4476c
Packit	c4476c	`sk_X509_EXTENSION_pop_free(exts, X509_EXTENSION_free);`
Packit	c4476c
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int set_multi_opts(unsigned long flags, const char arg,`
Packit	c4476c	`const NAME_EX_TBL * in_tbl)`
Packit	c4476c	`{`
Packit	c4476c	`STACK_OF(CONF_VALUE) *vals;`
Packit	c4476c	`CONF_VALUE *val;`
Packit	c4476c	`int i, ret = 1;`
Packit	c4476c	`if (!arg)`
Packit	c4476c	`return 0;`
Packit	c4476c	`vals = X509V3_parse_list(arg);`
Packit	c4476c	`for (i = 0; i < sk_CONF_VALUE_num(vals); i++) {`
Packit	c4476c	`val = sk_CONF_VALUE_value(vals, i);`
Packit	c4476c	`if (!set_table_opts(flags, val->name, in_tbl))`
Packit	c4476c	`ret = 0;`
Packit	c4476c	`}`
Packit	c4476c	`sk_CONF_VALUE_pop_free(vals, X509V3_conf_free);`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int set_table_opts(unsigned long flags, const char arg,`
Packit	c4476c	`const NAME_EX_TBL * in_tbl)`
Packit	c4476c	`{`
Packit	c4476c	`char c;`
Packit	c4476c	`const NAME_EX_TBL *ptbl;`
Packit	c4476c	`c = arg[0];`
Packit	c4476c
Packit	c4476c	`if (c == '-') {`
Packit	c4476c	`c = 0;`
Packit	c4476c	`arg++;`
Packit	c4476c	`} else if (c == '+') {`
Packit	c4476c	`c = 1;`
Packit	c4476c	`arg++;`
Packit	c4476c	`} else {`
Packit	c4476c	`c = 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`for (ptbl = in_tbl; ptbl->name; ptbl++) {`
Packit	c4476c	`if (strcasecmp(arg, ptbl->name) == 0) {`
Packit	c4476c	`*flags &= ~ptbl->mask;`
Packit	c4476c	`if (c)`
Packit	c4476c	`*flags \|= ptbl->flag;`
Packit	c4476c	`else`
Packit	c4476c	`*flags &= ~ptbl->flag;`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void print_name(BIO out, const char title, X509_NAME *nm,`
Packit	c4476c	`unsigned long lflags)`
Packit	c4476c	`{`
Packit	c4476c	`char *buf;`
Packit	c4476c	`char mline = 0;`
Packit	c4476c	`int indent = 0;`
Packit	c4476c
Packit	c4476c	`if (title)`
Packit	c4476c	`BIO_puts(out, title);`
Packit	c4476c	`if ((lflags & XN_FLAG_SEP_MASK) == XN_FLAG_SEP_MULTILINE) {`
Packit	c4476c	`mline = 1;`
Packit	c4476c	`indent = 4;`
Packit	c4476c	`}`
Packit	c4476c	`if (lflags == XN_FLAG_COMPAT) {`
Packit	c4476c	`buf = X509_NAME_oneline(nm, 0, 0);`
Packit	c4476c	`BIO_puts(out, buf);`
Packit	c4476c	`BIO_puts(out, "\n");`
Packit	c4476c	`OPENSSL_free(buf);`
Packit	c4476c	`} else {`
Packit	c4476c	`if (mline)`
Packit	c4476c	`BIO_puts(out, "\n");`
Packit	c4476c	`X509_NAME_print_ex(out, nm, indent, lflags);`
Packit	c4476c	`BIO_puts(out, "\n");`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void print_bignum_var(BIO out, const BIGNUM in, const char *var,`
Packit	c4476c	`int len, unsigned char *buffer)`
Packit	c4476c	`{`
Packit	c4476c	`BIO_printf(out, " static unsigned char %s_%d[] = {", var, len);`
Packit	c4476c	`if (BN_is_zero(in)) {`
Packit	c4476c	`BIO_printf(out, "\n 0x00");`
Packit	c4476c	`} else {`
Packit	c4476c	`int i, l;`
Packit	c4476c
Packit	c4476c	`l = BN_bn2bin(in, buffer);`
Packit	c4476c	`for (i = 0; i < l; i++) {`
Packit	c4476c	`BIO_printf(out, (i % 10) == 0 ? "\n " : " ");`
Packit	c4476c	`if (i < l - 1)`
Packit	c4476c	`BIO_printf(out, "0x%02X,", buffer[i]);`
Packit	c4476c	`else`
Packit	c4476c	`BIO_printf(out, "0x%02X", buffer[i]);`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`BIO_printf(out, "\n };\n");`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void print_array(BIO out, const char title, int len, const unsigned char* d)`
Packit	c4476c	`{`
Packit	c4476c	`int i;`
Packit	c4476c
Packit	c4476c	`BIO_printf(out, "unsigned char %s[%d] = {", title, len);`
Packit	c4476c	`for (i = 0; i < len; i++) {`
Packit	c4476c	`if ((i % 10) == 0)`
Packit	c4476c	`BIO_printf(out, "\n ");`
Packit	c4476c	`if (i < len - 1)`
Packit	c4476c	`BIO_printf(out, "0x%02X, ", d[i]);`
Packit	c4476c	`else`
Packit	c4476c	`BIO_printf(out, "0x%02X", d[i]);`
Packit	c4476c	`}`
Packit	c4476c	`BIO_printf(out, "\n};\n");`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`X509_STORE setup_verify(const char CAfile, const char *CApath, int noCAfile, int noCApath)`
Packit	c4476c	`{`
Packit	c4476c	`X509_STORE *store = X509_STORE_new();`
Packit	c4476c	`X509_LOOKUP *lookup;`
Packit	c4476c
Packit	c4476c	`if (store == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c
Packit	c4476c	`if (CAfile != NULL \|\| !noCAfile) {`
Packit	c4476c	`lookup = X509_STORE_add_lookup(store, X509_LOOKUP_file());`
Packit	c4476c	`if (lookup == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c	`if (CAfile) {`
Packit	c4476c	`if (!X509_LOOKUP_load_file(lookup, CAfile, X509_FILETYPE_PEM)) {`
Packit	c4476c	`BIO_printf(bio_err, "Error loading file %s\n", CAfile);`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`} else {`
Packit	c4476c	`X509_LOOKUP_load_file(lookup, NULL, X509_FILETYPE_DEFAULT);`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (CApath != NULL \|\| !noCApath) {`
Packit	c4476c	`lookup = X509_STORE_add_lookup(store, X509_LOOKUP_hash_dir());`
Packit	c4476c	`if (lookup == NULL)`
Packit	c4476c	`goto end;`
Packit	c4476c	`if (CApath) {`
Packit	c4476c	`if (!X509_LOOKUP_add_dir(lookup, CApath, X509_FILETYPE_PEM)) {`
Packit	c4476c	`BIO_printf(bio_err, "Error loading directory %s\n", CApath);`
Packit	c4476c	`goto end;`
Packit	c4476c	`}`
Packit	c4476c	`} else {`
Packit	c4476c	`X509_LOOKUP_add_dir(lookup, NULL, X509_FILETYPE_DEFAULT);`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`ERR_clear_error();`
Packit	c4476c	`return store;`
Packit	c4476c	`end:`
Packit	c4476c	`X509_STORE_free(store);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#ifndef OPENSSL_NO_ENGINE`
Packit	c4476c	`/* Try to load an engine in a shareable library */`
Packit	c4476c	`static ENGINE try_load_engine(const char engine)`
Packit	c4476c	`{`
Packit	c4476c	`ENGINE *e = ENGINE_by_id("dynamic");`
Packit	c4476c	`if (e) {`
Packit	c4476c	`if (!ENGINE_ctrl_cmd_string(e, "SO_PATH", engine, 0)`
Packit	c4476c	`\|\| !ENGINE_ctrl_cmd_string(e, "LOAD", NULL, 0)) {`
Packit	c4476c	`ENGINE_free(e);`
Packit	c4476c	`e = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`return e;`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`ENGINE setup_engine(const char engine, int debug)`
Packit	c4476c	`{`
Packit	c4476c	`ENGINE *e = NULL;`
Packit	c4476c
Packit	c4476c	`#ifndef OPENSSL_NO_ENGINE`
Packit	c4476c	`if (engine != NULL) {`
Packit	c4476c	`if (strcmp(engine, "auto") == 0) {`
Packit	c4476c	`BIO_printf(bio_err, "enabling auto ENGINE support\n");`
Packit	c4476c	`ENGINE_register_all_complete();`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`if ((e = ENGINE_by_id(engine)) == NULL`
Packit	c4476c	`&& (e = try_load_engine(engine)) == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "invalid engine \"%s\"\n", engine);`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`if (debug) {`
Packit	c4476c	`ENGINE_ctrl(e, ENGINE_CTRL_SET_LOGSTREAM, 0, bio_err, 0);`
Packit	c4476c	`}`
Packit	c4476c	`ENGINE_ctrl_cmd(e, "SET_USER_INTERFACE", 0, ui_method, 0, 1);`
Packit	c4476c	`if (!ENGINE_set_default(e, ENGINE_METHOD_ALL)) {`
Packit	c4476c	`BIO_printf(bio_err, "can't use that engine\n");`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`ENGINE_free(e);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`BIO_printf(bio_err, "engine \"%s\" set.\n", ENGINE_get_id(e));`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c	`return e;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void release_engine(ENGINE *e)`
Packit	c4476c	`{`
Packit	c4476c	`#ifndef OPENSSL_NO_ENGINE`
Packit	c4476c	`if (e != NULL)`
Packit	c4476c	`/* Free our "structural" reference. */`
Packit	c4476c	`ENGINE_free(e);`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static unsigned long index_serial_hash(const OPENSSL_CSTRING *a)`
Packit	c4476c	`{`
Packit	c4476c	`const char *n;`
Packit	c4476c
Packit	c4476c	`n = a[DB_serial];`
Packit	c4476c	`while (*n == '0')`
Packit	c4476c	`n++;`
Packit	c4476c	`return OPENSSL_LH_strhash(n);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int index_serial_cmp(const OPENSSL_CSTRING *a,`
Packit	c4476c	`const OPENSSL_CSTRING *b)`
Packit	c4476c	`{`
Packit	c4476c	`const char aa, bb;`
Packit	c4476c
Packit	c4476c	`for (aa = a[DB_serial]; *aa == '0'; aa++) ;`
Packit	c4476c	`for (bb = b[DB_serial]; *bb == '0'; bb++) ;`
Packit	c4476c	`return strcmp(aa, bb);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static int index_name_qual(char **a)`
Packit	c4476c	`{`
Packit	c4476c	`return (a[0][0] == 'V');`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static unsigned long index_name_hash(const OPENSSL_CSTRING *a)`
Packit	c4476c	`{`
Packit	c4476c	`return OPENSSL_LH_strhash(a[DB_name]);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int index_name_cmp(const OPENSSL_CSTRING a, const OPENSSL_CSTRING b)`
Packit	c4476c	`{`
Packit	c4476c	`return strcmp(a[DB_name], b[DB_name]);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static IMPLEMENT_LHASH_HASH_FN(index_serial, OPENSSL_CSTRING)`
Packit	c4476c	`static IMPLEMENT_LHASH_COMP_FN(index_serial, OPENSSL_CSTRING)`
Packit	c4476c	`static IMPLEMENT_LHASH_HASH_FN(index_name, OPENSSL_CSTRING)`
Packit	c4476c	`static IMPLEMENT_LHASH_COMP_FN(index_name, OPENSSL_CSTRING)`
Packit	c4476c	`#undef BSIZE`
Packit	c4476c	`#define BSIZE 256`
Packit	c4476c	`BIGNUM load_serial(const char serialfile, int create, ASN1_INTEGER **retai)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *in = NULL;`
Packit	c4476c	`BIGNUM *ret = NULL;`
Packit	c4476c	`char buf[1024];`
Packit	c4476c	`ASN1_INTEGER *ai = NULL;`
Packit	c4476c
Packit	c4476c	`ai = ASN1_INTEGER_new();`
Packit	c4476c	`if (ai == NULL)`
Packit	c4476c	`goto err;`
Packit	c4476c
Packit	c4476c	`in = BIO_new_file(serialfile, "r");`
Packit	c4476c	`if (in == NULL) {`
Packit	c4476c	`if (!create) {`
Packit	c4476c	`perror(serialfile);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`ERR_clear_error();`
Packit	c4476c	`ret = BN_new();`
Packit	c4476c	`if (ret == NULL \|\| !rand_serial(ret, ai))`
Packit	c4476c	`BIO_printf(bio_err, "Out of memory\n");`
Packit	c4476c	`} else {`
Packit	c4476c	`if (!a2i_ASN1_INTEGER(in, ai, buf, 1024)) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to load number from %s\n",`
Packit	c4476c	`serialfile);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`ret = ASN1_INTEGER_to_BN(ai, NULL);`
Packit	c4476c	`if (ret == NULL) {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"error converting number from bin to BIGNUM\n");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (ret && retai) {`
Packit	c4476c	`*retai = ai;`
Packit	c4476c	`ai = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`err:`
Packit	c4476c	`BIO_free(in);`
Packit	c4476c	`ASN1_INTEGER_free(ai);`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int save_serial(const char serialfile, const char suffix, const BIGNUM *serial,`
Packit	c4476c	`ASN1_INTEGER **retai)`
Packit	c4476c	`{`
Packit	c4476c	`char buf[1][BSIZE];`
Packit	c4476c	`BIO *out = NULL;`
Packit	c4476c	`int ret = 0;`
Packit	c4476c	`ASN1_INTEGER *ai = NULL;`
Packit	c4476c	`int j;`
Packit	c4476c
Packit	c4476c	`if (suffix == NULL)`
Packit	c4476c	`j = strlen(serialfile);`
Packit	c4476c	`else`
Packit	c4476c	`j = strlen(serialfile) + strlen(suffix) + 1;`
Packit	c4476c	`if (j >= BSIZE) {`
Packit	c4476c	`BIO_printf(bio_err, "file name too long\n");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (suffix == NULL)`
Packit	c4476c	`OPENSSL_strlcpy(buf[0], serialfile, BSIZE);`
Packit	c4476c	`else {`
Packit	c4476c	`#ifndef OPENSSL_SYS_VMS`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s.%s", serialfile, suffix);`
Packit	c4476c	`#else`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s-%s", serialfile, suffix);`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c	`out = BIO_new_file(buf[0], "w");`
Packit	c4476c	`if (out == NULL) {`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if ((ai = BN_to_ASN1_INTEGER(serial, NULL)) == NULL) {`
Packit	c4476c	`BIO_printf(bio_err, "error converting serial to ASN.1 format\n");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`i2a_ASN1_INTEGER(out, ai);`
Packit	c4476c	`BIO_puts(out, "\n");`
Packit	c4476c	`ret = 1;`
Packit	c4476c	`if (retai) {`
Packit	c4476c	`*retai = ai;`
Packit	c4476c	`ai = NULL;`
Packit	c4476c	`}`
Packit	c4476c	`err:`
Packit	c4476c	`BIO_free_all(out);`
Packit	c4476c	`ASN1_INTEGER_free(ai);`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int rotate_serial(const char serialfile, const char new_suffix,`
Packit	c4476c	`const char *old_suffix)`
Packit	c4476c	`{`
Packit	c4476c	`char buf[2][BSIZE];`
Packit	c4476c	`int i, j;`
Packit	c4476c
Packit	c4476c	`i = strlen(serialfile) + strlen(old_suffix);`
Packit	c4476c	`j = strlen(serialfile) + strlen(new_suffix);`
Packit	c4476c	`if (i > j)`
Packit	c4476c	`j = i;`
Packit	c4476c	`if (j + 1 >= BSIZE) {`
Packit	c4476c	`BIO_printf(bio_err, "file name too long\n");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`#ifndef OPENSSL_SYS_VMS`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s.%s", serialfile, new_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[1], sizeof(buf[1]), "%s.%s", serialfile, old_suffix);`
Packit	c4476c	`#else`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s-%s", serialfile, new_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[1], sizeof(buf[1]), "%s-%s", serialfile, old_suffix);`
Packit	c4476c	`#endif`
Packit	c4476c	`if (rename(serialfile, buf[1]) < 0 && errno != ENOENT`
Packit	c4476c	`#ifdef ENOTDIR`
Packit	c4476c	`&& errno != ENOTDIR`
Packit	c4476c	`#endif`
Packit	c4476c	`) {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"unable to rename %s to %s\n", serialfile, buf[1]);`
Packit	c4476c	`perror("reason");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`if (rename(buf[0], serialfile) < 0) {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"unable to rename %s to %s\n", buf[0], serialfile);`
Packit	c4476c	`perror("reason");`
Packit	c4476c	`rename(buf[1], serialfile);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`return 1;`
Packit	c4476c	`err:`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int rand_serial(BIGNUM b, ASN1_INTEGER ai)`
Packit	c4476c	`{`
Packit	c4476c	`BIGNUM *btmp;`
Packit	c4476c	`int ret = 0;`
Packit	c4476c
Packit	c4476c	`btmp = b == NULL ? BN_new() : b;`
Packit	c4476c	`if (btmp == NULL)`
Packit	c4476c	`return 0;`
Packit	c4476c
Packit	c4476c	`if (!BN_rand(btmp, SERIAL_RAND_BITS, BN_RAND_TOP_ANY, BN_RAND_BOTTOM_ANY))`
Packit	c4476c	`goto error;`
Packit	c4476c	`if (ai && !BN_to_ASN1_INTEGER(btmp, ai))`
Packit	c4476c	`goto error;`
Packit	c4476c
Packit	c4476c	`ret = 1;`
Packit	c4476c
Packit	c4476c	`error:`
Packit	c4476c
Packit	c4476c	`if (btmp != b)`
Packit	c4476c	`BN_free(btmp);`
Packit	c4476c
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`CA_DB load_index(const char dbfile, DB_ATTR *db_attr)`
Packit	c4476c	`{`
Packit	c4476c	`CA_DB *retdb = NULL;`
Packit	c4476c	`TXT_DB *tmpdb = NULL;`
Packit	c4476c	`BIO *in;`
Packit	c4476c	`CONF *dbattr_conf = NULL;`
Packit	c4476c	`char buf[BSIZE];`
Packit	c4476c	`#ifndef OPENSSL_NO_POSIX_IO`
Packit	c4476c	`FILE *dbfp;`
Packit	c4476c	`struct stat dbst;`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`in = BIO_new_file(dbfile, "r");`
Packit	c4476c	`if (in == NULL) {`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#ifndef OPENSSL_NO_POSIX_IO`
Packit	c4476c	`BIO_get_fp(in, &dbfp);`
Packit	c4476c	`if (fstat(fileno(dbfp), &dbst) == -1) {`
Packit	c4476c	`SYSerr(SYS_F_FSTAT, errno);`
Packit	c4476c	`ERR_add_error_data(3, "fstat('", dbfile, "')");`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`if ((tmpdb = TXT_DB_read(in, DB_NUMBER)) == NULL)`
Packit	c4476c	`goto err;`
Packit	c4476c
Packit	c4476c	`#ifndef OPENSSL_SYS_VMS`
Packit	c4476c	`BIO_snprintf(buf, sizeof(buf), "%s.attr", dbfile);`
Packit	c4476c	`#else`
Packit	c4476c	`BIO_snprintf(buf, sizeof(buf), "%s-attr", dbfile);`
Packit	c4476c	`#endif`
Packit	c4476c	`dbattr_conf = app_load_config_quiet(buf);`
Packit	c4476c
Packit	c4476c	`retdb = app_malloc(sizeof(*retdb), "new DB");`
Packit	c4476c	`retdb->db = tmpdb;`
Packit	c4476c	`tmpdb = NULL;`
Packit	c4476c	`if (db_attr)`
Packit	c4476c	`retdb->attributes = *db_attr;`
Packit	c4476c	`else {`
Packit	c4476c	`retdb->attributes.unique_subject = 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (dbattr_conf) {`
Packit	c4476c	`char *p = NCONF_get_string(dbattr_conf, NULL, "unique_subject");`
Packit	c4476c	`if (p) {`
Packit	c4476c	`retdb->attributes.unique_subject = parse_yesno(p, 1);`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`retdb->dbfname = OPENSSL_strdup(dbfile);`
Packit	c4476c	`#ifndef OPENSSL_NO_POSIX_IO`
Packit	c4476c	`retdb->dbst = dbst;`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`err:`
Packit	c4476c	`NCONF_free(dbattr_conf);`
Packit	c4476c	`TXT_DB_free(tmpdb);`
Packit	c4476c	`BIO_free_all(in);`
Packit	c4476c	`return retdb;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Returns > 0 on success, <= 0 on error`
Packit	c4476c	`*/`
Packit	c4476c	`int index_index(CA_DB *db)`
Packit	c4476c	`{`
Packit	c4476c	`if (!TXT_DB_create_index(db->db, DB_serial, NULL,`
Packit	c4476c	`LHASH_HASH_FN(index_serial),`
Packit	c4476c	`LHASH_COMP_FN(index_serial))) {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"error creating serial number index:(%ld,%ld,%ld)\n",`
Packit	c4476c	`db->db->error, db->db->arg1, db->db->arg2);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (db->attributes.unique_subject`
Packit	c4476c	`&& !TXT_DB_create_index(db->db, DB_name, index_name_qual,`
Packit	c4476c	`LHASH_HASH_FN(index_name),`
Packit	c4476c	`LHASH_COMP_FN(index_name))) {`
Packit	c4476c	`BIO_printf(bio_err, "error creating name index:(%ld,%ld,%ld)\n",`
Packit	c4476c	`db->db->error, db->db->arg1, db->db->arg2);`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int save_index(const char dbfile, const char suffix, CA_DB *db)`
Packit	c4476c	`{`
Packit	c4476c	`char buf[3][BSIZE];`
Packit	c4476c	`BIO *out;`
Packit	c4476c	`int j;`
Packit	c4476c
Packit	c4476c	`j = strlen(dbfile) + strlen(suffix);`
Packit	c4476c	`if (j + 6 >= BSIZE) {`
Packit	c4476c	`BIO_printf(bio_err, "file name too long\n");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`#ifndef OPENSSL_SYS_VMS`
Packit	c4476c	`j = BIO_snprintf(buf[2], sizeof(buf[2]), "%s.attr", dbfile);`
Packit	c4476c	`j = BIO_snprintf(buf[1], sizeof(buf[1]), "%s.attr.%s", dbfile, suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s.%s", dbfile, suffix);`
Packit	c4476c	`#else`
Packit	c4476c	`j = BIO_snprintf(buf[2], sizeof(buf[2]), "%s-attr", dbfile);`
Packit	c4476c	`j = BIO_snprintf(buf[1], sizeof(buf[1]), "%s-attr-%s", dbfile, suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s-%s", dbfile, suffix);`
Packit	c4476c	`#endif`
Packit	c4476c	`out = BIO_new_file(buf[0], "w");`
Packit	c4476c	`if (out == NULL) {`
Packit	c4476c	`perror(dbfile);`
Packit	c4476c	`BIO_printf(bio_err, "unable to open '%s'\n", dbfile);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`j = TXT_DB_write(out, db->db);`
Packit	c4476c	`BIO_free(out);`
Packit	c4476c	`if (j <= 0)`
Packit	c4476c	`goto err;`
Packit	c4476c
Packit	c4476c	`out = BIO_new_file(buf[1], "w");`
Packit	c4476c	`if (out == NULL) {`
Packit	c4476c	`perror(buf[2]);`
Packit	c4476c	`BIO_printf(bio_err, "unable to open '%s'\n", buf[2]);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`BIO_printf(out, "unique_subject = %s\n",`
Packit	c4476c	`db->attributes.unique_subject ? "yes" : "no");`
Packit	c4476c	`BIO_free(out);`
Packit	c4476c
Packit	c4476c	`return 1;`
Packit	c4476c	`err:`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int rotate_index(const char dbfile, const char new_suffix,`
Packit	c4476c	`const char *old_suffix)`
Packit	c4476c	`{`
Packit	c4476c	`char buf[5][BSIZE];`
Packit	c4476c	`int i, j;`
Packit	c4476c
Packit	c4476c	`i = strlen(dbfile) + strlen(old_suffix);`
Packit	c4476c	`j = strlen(dbfile) + strlen(new_suffix);`
Packit	c4476c	`if (i > j)`
Packit	c4476c	`j = i;`
Packit	c4476c	`if (j + 6 >= BSIZE) {`
Packit	c4476c	`BIO_printf(bio_err, "file name too long\n");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`#ifndef OPENSSL_SYS_VMS`
Packit	c4476c	`j = BIO_snprintf(buf[4], sizeof(buf[4]), "%s.attr", dbfile);`
Packit	c4476c	`j = BIO_snprintf(buf[3], sizeof(buf[3]), "%s.attr.%s", dbfile, old_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[2], sizeof(buf[2]), "%s.attr.%s", dbfile, new_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[1], sizeof(buf[1]), "%s.%s", dbfile, old_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s.%s", dbfile, new_suffix);`
Packit	c4476c	`#else`
Packit	c4476c	`j = BIO_snprintf(buf[4], sizeof(buf[4]), "%s-attr", dbfile);`
Packit	c4476c	`j = BIO_snprintf(buf[3], sizeof(buf[3]), "%s-attr-%s", dbfile, old_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[2], sizeof(buf[2]), "%s-attr-%s", dbfile, new_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[1], sizeof(buf[1]), "%s-%s", dbfile, old_suffix);`
Packit	c4476c	`j = BIO_snprintf(buf[0], sizeof(buf[0]), "%s-%s", dbfile, new_suffix);`
Packit	c4476c	`#endif`
Packit	c4476c	`if (rename(dbfile, buf[1]) < 0 && errno != ENOENT`
Packit	c4476c	`#ifdef ENOTDIR`
Packit	c4476c	`&& errno != ENOTDIR`
Packit	c4476c	`#endif`
Packit	c4476c	`) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to rename %s to %s\n", dbfile, buf[1]);`
Packit	c4476c	`perror("reason");`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`if (rename(buf[0], dbfile) < 0) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to rename %s to %s\n", buf[0], dbfile);`
Packit	c4476c	`perror("reason");`
Packit	c4476c	`rename(buf[1], dbfile);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`if (rename(buf[4], buf[3]) < 0 && errno != ENOENT`
Packit	c4476c	`#ifdef ENOTDIR`
Packit	c4476c	`&& errno != ENOTDIR`
Packit	c4476c	`#endif`
Packit	c4476c	`) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to rename %s to %s\n", buf[4], buf[3]);`
Packit	c4476c	`perror("reason");`
Packit	c4476c	`rename(dbfile, buf[0]);`
Packit	c4476c	`rename(buf[1], dbfile);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`if (rename(buf[2], buf[4]) < 0) {`
Packit	c4476c	`BIO_printf(bio_err, "unable to rename %s to %s\n", buf[2], buf[4]);`
Packit	c4476c	`perror("reason");`
Packit	c4476c	`rename(buf[3], buf[4]);`
Packit	c4476c	`rename(dbfile, buf[0]);`
Packit	c4476c	`rename(buf[1], dbfile);`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`return 1;`
Packit	c4476c	`err:`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void free_index(CA_DB *db)`
Packit	c4476c	`{`
Packit	c4476c	`if (db) {`
Packit	c4476c	`TXT_DB_free(db->db);`
Packit	c4476c	`OPENSSL_free(db->dbfname);`
Packit	c4476c	`OPENSSL_free(db);`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int parse_yesno(const char *str, int def)`
Packit	c4476c	`{`
Packit	c4476c	`if (str) {`
Packit	c4476c	`switch (*str) {`
Packit	c4476c	`case 'f': /* false */`
Packit	c4476c	`case 'F': /* FALSE */`
Packit	c4476c	`case 'n': /* no */`
Packit	c4476c	`case 'N': /* NO */`
Packit	c4476c	`case '0': /* 0 */`
Packit	c4476c	`return 0;`
Packit	c4476c	`case 't': /* true */`
Packit	c4476c	`case 'T': /* TRUE */`
Packit	c4476c	`case 'y': /* yes */`
Packit	c4476c	`case 'Y': /* YES */`
Packit	c4476c	`case '1': /* 1 */`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`return def;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* name is expected to be in the format /type0=value0/type1=value1/type2=...`
Packit	c4476c	`* where characters may be escaped by \`
Packit	c4476c	`*/`
Packit	c4476c	`X509_NAME parse_name(const char cp, long chtype, int canmulti)`
Packit	c4476c	`{`
Packit	c4476c	`int nextismulti = 0;`
Packit	c4476c	`char *work;`
Packit	c4476c	`X509_NAME *n;`
Packit	c4476c
Packit	c4476c	`if (*cp++ != '/') {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"name is expected to be in the format "`
Packit	c4476c	`"/type0=value0/type1=value1/type2=... where characters may "`
Packit	c4476c	`"be escaped by \\. This name is not in that format: '%s'\n",`
Packit	c4476c	`--cp);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`n = X509_NAME_new();`
Packit	c4476c	`if (n == NULL)`
Packit	c4476c	`return NULL;`
Packit	c4476c	`work = OPENSSL_strdup(cp);`
Packit	c4476c	`if (work == NULL)`
Packit	c4476c	`goto err;`
Packit	c4476c
Packit	c4476c	`while (*cp) {`
Packit	c4476c	`char *bp = work;`
Packit	c4476c	`char *typestr = bp;`
Packit	c4476c	`unsigned char *valstr;`
Packit	c4476c	`int nid;`
Packit	c4476c	`int ismulti = nextismulti;`
Packit	c4476c	`nextismulti = 0;`
Packit	c4476c
Packit	c4476c	`/* Collect the type */`
Packit	c4476c	`while (cp && cp != '=')`
Packit	c4476c	`bp++ = cp++;`
Packit	c4476c	`if (*cp == '\0') {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"%s: Hit end of string before finding the equals.\n",`
Packit	c4476c	`opt_getprog());`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`*bp++ = '\0';`
Packit	c4476c	`++cp;`
Packit	c4476c
Packit	c4476c	`/* Collect the value. */`
Packit	c4476c	`valstr = (unsigned char *)bp;`
Packit	c4476c	`for (; cp && cp != '/'; bp++ = cp++) {`
Packit	c4476c	`if (canmulti && *cp == '+') {`
Packit	c4476c	`nextismulti = 1;`
Packit	c4476c	`break;`
Packit	c4476c	`}`
Packit	c4476c	`if (cp == '\\' && ++cp == '\0') {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"%s: escape character at end of string\n",`
Packit	c4476c	`opt_getprog());`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`*bp++ = '\0';`
Packit	c4476c
Packit	c4476c	`/* If not at EOS (must be + or /), move forward. */`
Packit	c4476c	`if (*cp)`
Packit	c4476c	`++cp;`
Packit	c4476c
Packit	c4476c	`/* Parse */`
Packit	c4476c	`nid = OBJ_txt2nid(typestr);`
Packit	c4476c	`if (nid == NID_undef) {`
Packit	c4476c	`BIO_printf(bio_err, "%s: Skipping unknown attribute \"%s\"\n",`
Packit	c4476c	`opt_getprog(), typestr);`
Packit	c4476c	`continue;`
Packit	c4476c	`}`
Packit	c4476c	`if (*valstr == '\0') {`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"%s: No value provided for Subject Attribute %s, skipped\n",`
Packit	c4476c	`opt_getprog(), typestr);`
Packit	c4476c	`continue;`
Packit	c4476c	`}`
Packit	c4476c	`if (!X509_NAME_add_entry_by_NID(n, nid, chtype,`
Packit	c4476c	`valstr, strlen((char *)valstr),`
Packit	c4476c	`-1, ismulti ? -1 : 0))`
Packit	c4476c	`goto err;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`OPENSSL_free(work);`
Packit	c4476c	`return n;`
Packit	c4476c
Packit	c4476c	`err:`
Packit	c4476c	`X509_NAME_free(n);`
Packit	c4476c	`OPENSSL_free(work);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Read whole contents of a BIO into an allocated memory buffer and return`
Packit	c4476c	`* it.`
Packit	c4476c	`*/`
Packit	c4476c
Packit	c4476c	`int bio_to_mem(unsigned char *out, int maxlen, BIO in)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *mem;`
Packit	c4476c	`int len, ret;`
Packit	c4476c	`unsigned char tbuf[1024];`
Packit	c4476c
Packit	c4476c	`mem = BIO_new(BIO_s_mem());`
Packit	c4476c	`if (mem == NULL)`
Packit	c4476c	`return -1;`
Packit	c4476c	`for (;;) {`
Packit	c4476c	`if ((maxlen != -1) && maxlen < 1024)`
Packit	c4476c	`len = maxlen;`
Packit	c4476c	`else`
Packit	c4476c	`len = 1024;`
Packit	c4476c	`len = BIO_read(in, tbuf, len);`
Packit	c4476c	`if (len < 0) {`
Packit	c4476c	`BIO_free(mem);`
Packit	c4476c	`return -1;`
Packit	c4476c	`}`
Packit	c4476c	`if (len == 0)`
Packit	c4476c	`break;`
Packit	c4476c	`if (BIO_write(mem, tbuf, len) != len) {`
Packit	c4476c	`BIO_free(mem);`
Packit	c4476c	`return -1;`
Packit	c4476c	`}`
Packit	c4476c	`maxlen -= len;`
Packit	c4476c
Packit	c4476c	`if (maxlen == 0)`
Packit	c4476c	`break;`
Packit	c4476c	`}`
Packit	c4476c	`ret = BIO_get_mem_data(mem, (char **)out);`
Packit	c4476c	`BIO_set_flags(mem, BIO_FLAGS_MEM_RDONLY);`
Packit	c4476c	`BIO_free(mem);`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int pkey_ctrl_string(EVP_PKEY_CTX ctx, const char value)`
Packit	c4476c	`{`
Packit	c4476c	`int rv;`
Packit	c4476c	`char stmp, vtmp = NULL;`
Packit	c4476c	`stmp = OPENSSL_strdup(value);`
Packit	c4476c	`if (!stmp)`
Packit	c4476c	`return -1;`
Packit	c4476c	`vtmp = strchr(stmp, ':');`
Packit	c4476c	`if (vtmp) {`
Packit	c4476c	`*vtmp = 0;`
Packit	c4476c	`vtmp++;`
Packit	c4476c	`}`
Packit	c4476c	`rv = EVP_PKEY_CTX_ctrl_str(ctx, stmp, vtmp);`
Packit	c4476c	`OPENSSL_free(stmp);`
Packit	c4476c	`return rv;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static void nodes_print(const char name, STACK_OF(X509_POLICY_NODE) nodes)`
Packit	c4476c	`{`
Packit	c4476c	`X509_POLICY_NODE *node;`
Packit	c4476c	`int i;`
Packit	c4476c
Packit	c4476c	`BIO_printf(bio_err, "%s Policies:", name);`
Packit	c4476c	`if (nodes) {`
Packit	c4476c	`BIO_puts(bio_err, "\n");`
Packit	c4476c	`for (i = 0; i < sk_X509_POLICY_NODE_num(nodes); i++) {`
Packit	c4476c	`node = sk_X509_POLICY_NODE_value(nodes, i);`
Packit	c4476c	`X509_POLICY_NODE_print(bio_err, node, 2);`
Packit	c4476c	`}`
Packit	c4476c	`} else {`
Packit	c4476c	`BIO_puts(bio_err, " <empty>\n");`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void policies_print(X509_STORE_CTX *ctx)`
Packit	c4476c	`{`
Packit	c4476c	`X509_POLICY_TREE *tree;`
Packit	c4476c	`int explicit_policy;`
Packit	c4476c	`tree = X509_STORE_CTX_get0_policy_tree(ctx);`
Packit	c4476c	`explicit_policy = X509_STORE_CTX_get_explicit_policy(ctx);`
Packit	c4476c
Packit	c4476c	`BIO_printf(bio_err, "Require explicit Policy: %s\n",`
Packit	c4476c	`explicit_policy ? "True" : "False");`
Packit	c4476c
Packit	c4476c	`nodes_print("Authority", X509_policy_tree_get0_policies(tree));`
Packit	c4476c	`nodes_print("User", X509_policy_tree_get0_user_policies(tree));`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*-`
Packit	c4476c	`* next_protos_parse parses a comma separated list of strings into a string`
Packit	c4476c	`* in a format suitable for passing to SSL_CTX_set_next_protos_advertised.`
Packit	c4476c	`* outlen: (output) set to the length of the resulting buffer on success.`
Packit	c4476c	`* err: (maybe NULL) on failure, an error message line is written to this BIO.`
Packit	c4476c	`* in: a NUL terminated string like "abc,def,ghi"`
Packit	c4476c	`*`
Packit	c4476c	`* returns: a malloc'd buffer or NULL on failure.`
Packit	c4476c	`*/`
Packit	c4476c	`unsigned char next_protos_parse(size_t outlen, const char *in)`
Packit	c4476c	`{`
Packit	c4476c	`size_t len;`
Packit	c4476c	`unsigned char *out;`
Packit	c4476c	`size_t i, start = 0;`
Packit	c4476c	`size_t skipped = 0;`
Packit	c4476c
Packit	c4476c	`len = strlen(in);`
Packit	c4476c	`if (len == 0 \|\| len >= 65535)`
Packit	c4476c	`return NULL;`
Packit	c4476c
Packit	c4476c	`out = app_malloc(len + 1, "NPN buffer");`
Packit	c4476c	`for (i = 0; i <= len; ++i) {`
Packit	c4476c	`if (i == len \|\| in[i] == ',') {`
Packit	c4476c	`/*`
Packit	c4476c	`* Zero-length ALPN elements are invalid on the wire, we could be`
Packit	c4476c	`* strict and reject the entire string, but just ignoring extra`
Packit	c4476c	`* commas seems harmless and more friendly.`
Packit	c4476c	`*`
Packit	c4476c	`* Every comma we skip in this way puts the input buffer another`
Packit	c4476c	`* byte ahead of the output buffer, so all stores into the output`
Packit	c4476c	`* buffer need to be decremented by the number commas skipped.`
Packit	c4476c	`*/`
Packit	c4476c	`if (i == start) {`
Packit	c4476c	`++start;`
Packit	c4476c	`++skipped;`
Packit	c4476c	`continue;`
Packit	c4476c	`}`
Packit	c4476c	`if (i - start > 255) {`
Packit	c4476c	`OPENSSL_free(out);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`out[start-skipped] = (unsigned char)(i - start);`
Packit	c4476c	`start = i + 1;`
Packit	c4476c	`} else {`
Packit	c4476c	`out[i + 1 - skipped] = in[i];`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (len <= skipped) {`
Packit	c4476c	`OPENSSL_free(out);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`*outlen = len + 1 - skipped;`
Packit	c4476c	`return out;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void print_cert_checks(BIO bio, X509 x,`
Packit	c4476c	`const char *checkhost,`
Packit	c4476c	`const char checkemail, const char checkip)`
Packit	c4476c	`{`
Packit	c4476c	`if (x == NULL)`
Packit	c4476c	`return;`
Packit	c4476c	`if (checkhost) {`
Packit	c4476c	`BIO_printf(bio, "Hostname %s does%s match certificate\n",`
Packit	c4476c	`checkhost,`
Packit	c4476c	`X509_check_host(x, checkhost, 0, 0, NULL) == 1`
Packit	c4476c	`? "" : " NOT");`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (checkemail) {`
Packit	c4476c	`BIO_printf(bio, "Email %s does%s match certificate\n",`
Packit	c4476c	`checkemail, X509_check_email(x, checkemail, 0, 0)`
Packit	c4476c	`? "" : " NOT");`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (checkip) {`
Packit	c4476c	`BIO_printf(bio, "IP %s does%s match certificate\n",`
Packit	c4476c	`checkip, X509_check_ip_asc(x, checkip, 0) ? "" : " NOT");`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/* Get first http URL from a DIST_POINT structure */`
Packit	c4476c
Packit	c4476c	`static const char get_dp_url(DIST_POINT dp)`
Packit	c4476c	`{`
Packit	c4476c	`GENERAL_NAMES *gens;`
Packit	c4476c	`GENERAL_NAME *gen;`
Packit	c4476c	`int i, gtype;`
Packit	c4476c	`ASN1_STRING *uri;`
Packit	c4476c	`if (!dp->distpoint \|\| dp->distpoint->type != 0)`
Packit	c4476c	`return NULL;`
Packit	c4476c	`gens = dp->distpoint->name.fullname;`
Packit	c4476c	`for (i = 0; i < sk_GENERAL_NAME_num(gens); i++) {`
Packit	c4476c	`gen = sk_GENERAL_NAME_value(gens, i);`
Packit	c4476c	`uri = GENERAL_NAME_get0_value(gen, &gtype);`
Packit	c4476c	`if (gtype == GEN_URI && ASN1_STRING_length(uri) > 6) {`
Packit	c4476c	`const char uptr = (const char )ASN1_STRING_get0_data(uri);`
Packit	c4476c	`if (strncmp(uptr, "http://", 7) == 0)`
Packit	c4476c	`return uptr;`
Packit	c4476c	`}`
Packit	c4476c	`}`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Look through a CRLDP structure and attempt to find an http URL to`
Packit	c4476c	`* downloads a CRL from.`
Packit	c4476c	`*/`
Packit	c4476c
Packit	c4476c	`static X509_CRL load_crl_crldp(STACK_OF(DIST_POINT) crldp)`
Packit	c4476c	`{`
Packit	c4476c	`int i;`
Packit	c4476c	`const char *urlptr = NULL;`
Packit	c4476c	`for (i = 0; i < sk_DIST_POINT_num(crldp); i++) {`
Packit	c4476c	`DIST_POINT *dp = sk_DIST_POINT_value(crldp, i);`
Packit	c4476c	`urlptr = get_dp_url(dp);`
Packit	c4476c	`if (urlptr)`
Packit	c4476c	`return load_crl(urlptr, FORMAT_HTTP);`
Packit	c4476c	`}`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Example of downloading CRLs from CRLDP: not usable for real world as it`
Packit	c4476c	`* always downloads, doesn't support non-blocking I/O and doesn't cache`
Packit	c4476c	`* anything.`
Packit	c4476c	`*/`
Packit	c4476c
Packit	c4476c	`static STACK_OF(X509_CRL) crls_http_cb(X509_STORE_CTX ctx, X509_NAME *nm)`
Packit	c4476c	`{`
Packit	c4476c	`X509 *x;`
Packit	c4476c	`STACK_OF(X509_CRL) *crls = NULL;`
Packit	c4476c	`X509_CRL *crl;`
Packit	c4476c	`STACK_OF(DIST_POINT) *crldp;`
Packit	c4476c
Packit	c4476c	`crls = sk_X509_CRL_new_null();`
Packit	c4476c	`if (!crls)`
Packit	c4476c	`return NULL;`
Packit	c4476c	`x = X509_STORE_CTX_get_current_cert(ctx);`
Packit	c4476c	`crldp = X509_get_ext_d2i(x, NID_crl_distribution_points, NULL, NULL);`
Packit	c4476c	`crl = load_crl_crldp(crldp);`
Packit	c4476c	`sk_DIST_POINT_pop_free(crldp, DIST_POINT_free);`
Packit	c4476c	`if (!crl) {`
Packit	c4476c	`sk_X509_CRL_free(crls);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c	`sk_X509_CRL_push(crls, crl);`
Packit	c4476c	`/* Try to download delta CRL */`
Packit	c4476c	`crldp = X509_get_ext_d2i(x, NID_freshest_crl, NULL, NULL);`
Packit	c4476c	`crl = load_crl_crldp(crldp);`
Packit	c4476c	`sk_DIST_POINT_pop_free(crldp, DIST_POINT_free);`
Packit	c4476c	`if (crl)`
Packit	c4476c	`sk_X509_CRL_push(crls, crl);`
Packit	c4476c	`return crls;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void store_setup_crl_download(X509_STORE *st)`
Packit	c4476c	`{`
Packit	c4476c	`X509_STORE_set_lookup_crls_cb(st, crls_http_cb);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Platform-specific sections`
Packit	c4476c	`*/`
Packit	c4476c	`#if defined(_WIN32)`
Packit	c4476c	`# ifdef fileno`
Packit	c4476c	`# undef fileno`
Packit	c4476c	`# define fileno(a) (int)_fileno(a)`
Packit	c4476c	`# endif`
Packit	c4476c
Packit	c4476c	`# include <windows.h>`
Packit	c4476c	`# include <tchar.h>`
Packit	c4476c
Packit	c4476c	`static int WIN32_rename(const char from, const char to)`
Packit	c4476c	`{`
Packit	c4476c	`TCHAR tfrom = NULL, tto;`
Packit	c4476c	`DWORD err;`
Packit	c4476c	`int ret = 0;`
Packit	c4476c
Packit	c4476c	`if (sizeof(TCHAR) == 1) {`
Packit	c4476c	`tfrom = (TCHAR *)from;`
Packit	c4476c	`tto = (TCHAR *)to;`
Packit	c4476c	`} else { /* UNICODE path */`
Packit	c4476c
Packit	c4476c	`size_t i, flen = strlen(from) + 1, tlen = strlen(to) + 1;`
Packit	c4476c	`tfrom = malloc(sizeof(tfrom) (flen + tlen));`
Packit	c4476c	`if (tfrom == NULL)`
Packit	c4476c	`goto err;`
Packit	c4476c	`tto = tfrom + flen;`
Packit	c4476c	`# if !defined(_WIN32_WCE) \|\| _WIN32_WCE>=101`
Packit	c4476c	`if (!MultiByteToWideChar(CP_ACP, 0, from, flen, (WCHAR *)tfrom, flen))`
Packit	c4476c	`# endif`
Packit	c4476c	`for (i = 0; i < flen; i++)`
Packit	c4476c	`tfrom[i] = (TCHAR)from[i];`
Packit	c4476c	`# if !defined(_WIN32_WCE) \|\| _WIN32_WCE>=101`
Packit	c4476c	`if (!MultiByteToWideChar(CP_ACP, 0, to, tlen, (WCHAR *)tto, tlen))`
Packit	c4476c	`# endif`
Packit	c4476c	`for (i = 0; i < tlen; i++)`
Packit	c4476c	`tto[i] = (TCHAR)to[i];`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (MoveFile(tfrom, tto))`
Packit	c4476c	`goto ok;`
Packit	c4476c	`err = GetLastError();`
Packit	c4476c	`if (err == ERROR_ALREADY_EXISTS \|\| err == ERROR_FILE_EXISTS) {`
Packit	c4476c	`if (DeleteFile(tto) && MoveFile(tfrom, tto))`
Packit	c4476c	`goto ok;`
Packit	c4476c	`err = GetLastError();`
Packit	c4476c	`}`
Packit	c4476c	`if (err == ERROR_FILE_NOT_FOUND \|\| err == ERROR_PATH_NOT_FOUND)`
Packit	c4476c	`errno = ENOENT;`
Packit	c4476c	`else if (err == ERROR_ACCESS_DENIED)`
Packit	c4476c	`errno = EACCES;`
Packit	c4476c	`else`
Packit	c4476c	`errno = EINVAL; /* we could map more codes... */`
Packit	c4476c	`err:`
Packit	c4476c	`ret = -1;`
Packit	c4476c	`ok:`
Packit	c4476c	`if (tfrom != NULL && tfrom != (TCHAR *)from)`
Packit	c4476c	`free(tfrom);`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`/* app_tminterval section */`
Packit	c4476c	`#if defined(_WIN32)`
Packit	c4476c	`double app_tminterval(int stop, int usertime)`
Packit	c4476c	`{`
Packit	c4476c	`FILETIME now;`
Packit	c4476c	`double ret = 0;`
Packit	c4476c	`static ULARGE_INTEGER tmstart;`
Packit	c4476c	`static int warning = 1;`
Packit	c4476c	`# ifdef _WIN32_WINNT`
Packit	c4476c	`static HANDLE proc = NULL;`
Packit	c4476c
Packit	c4476c	`if (proc == NULL) {`
Packit	c4476c	`if (check_winnt())`
Packit	c4476c	`proc = OpenProcess(PROCESS_QUERY_INFORMATION, FALSE,`
Packit	c4476c	`GetCurrentProcessId());`
Packit	c4476c	`if (proc == NULL)`
Packit	c4476c	`proc = (HANDLE) - 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (usertime && proc != (HANDLE) - 1) {`
Packit	c4476c	`FILETIME junk;`
Packit	c4476c	`GetProcessTimes(proc, &junk, &junk, &junk, &now;;`
Packit	c4476c	`} else`
Packit	c4476c	`# endif`
Packit	c4476c	`{`
Packit	c4476c	`SYSTEMTIME systime;`
Packit	c4476c
Packit	c4476c	`if (usertime && warning) {`
Packit	c4476c	`BIO_printf(bio_err, "To get meaningful results, run "`
Packit	c4476c	`"this program on idle system.\n");`
Packit	c4476c	`warning = 0;`
Packit	c4476c	`}`
Packit	c4476c	`GetSystemTime(&systime);`
Packit	c4476c	`SystemTimeToFileTime(&systime, &now;;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`if (stop == TM_START) {`
Packit	c4476c	`tmstart.u.LowPart = now.dwLowDateTime;`
Packit	c4476c	`tmstart.u.HighPart = now.dwHighDateTime;`
Packit	c4476c	`} else {`
Packit	c4476c	`ULARGE_INTEGER tmstop;`
Packit	c4476c
Packit	c4476c	`tmstop.u.LowPart = now.dwLowDateTime;`
Packit	c4476c	`tmstop.u.HighPart = now.dwHighDateTime;`
Packit	c4476c
Packit	c4476c	`ret = (__int64)(tmstop.QuadPart - tmstart.QuadPart) * 1e-7;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c	`#elif defined(OPENSSL_SYS_VXWORKS)`
Packit	c4476c	`# include <time.h>`
Packit	c4476c
Packit	c4476c	`double app_tminterval(int stop, int usertime)`
Packit	c4476c	`{`
Packit	c4476c	`double ret = 0;`
Packit	c4476c	`# ifdef CLOCK_REALTIME`
Packit	c4476c	`static struct timespec tmstart;`
Packit	c4476c	`struct timespec now;`
Packit	c4476c	`# else`
Packit	c4476c	`static unsigned long tmstart;`
Packit	c4476c	`unsigned long now;`
Packit	c4476c	`# endif`
Packit	c4476c	`static int warning = 1;`
Packit	c4476c
Packit	c4476c	`if (usertime && warning) {`
Packit	c4476c	`BIO_printf(bio_err, "To get meaningful results, run "`
Packit	c4476c	`"this program on idle system.\n");`
Packit	c4476c	`warning = 0;`
Packit	c4476c	`}`
Packit	c4476c	`# ifdef CLOCK_REALTIME`
Packit	c4476c	`clock_gettime(CLOCK_REALTIME, &now;;`
Packit	c4476c	`if (stop == TM_START)`
Packit	c4476c	`tmstart = now;`
Packit	c4476c	`else`
Packit	c4476c	`ret = ((now.tv_sec + now.tv_nsec * 1e-9)`
Packit	c4476c	`- (tmstart.tv_sec + tmstart.tv_nsec * 1e-9));`
Packit	c4476c	`# else`
Packit	c4476c	`now = tickGet();`
Packit	c4476c	`if (stop == TM_START)`
Packit	c4476c	`tmstart = now;`
Packit	c4476c	`else`
Packit	c4476c	`ret = (now - tmstart) / (double)sysClkRateGet();`
Packit	c4476c	`# endif`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#elif defined(OPENSSL_SYSTEM_VMS)`
Packit	c4476c	`# include <time.h>`
Packit	c4476c	`# include <times.h>`
Packit	c4476c
Packit	c4476c	`double app_tminterval(int stop, int usertime)`
Packit	c4476c	`{`
Packit	c4476c	`static clock_t tmstart;`
Packit	c4476c	`double ret = 0;`
Packit	c4476c	`clock_t now;`
Packit	c4476c	`# ifdef __TMS`
Packit	c4476c	`struct tms rus;`
Packit	c4476c
Packit	c4476c	`now = times(&rus;;`
Packit	c4476c	`if (usertime)`
Packit	c4476c	`now = rus.tms_utime;`
Packit	c4476c	`# else`
Packit	c4476c	`if (usertime)`
Packit	c4476c	`now = clock(); /* sum of user and kernel times */`
Packit	c4476c	`else {`
Packit	c4476c	`struct timeval tv;`
Packit	c4476c	`gettimeofday(&tv, NULL);`
Packit	c4476c	`now = (clock_t)((unsigned long long)tv.tv_sec * CLK_TCK +`
Packit	c4476c	`(unsigned long long)tv.tv_usec * (1000000 / CLK_TCK)`
Packit	c4476c	`);`
Packit	c4476c	`}`
Packit	c4476c	`# endif`
Packit	c4476c	`if (stop == TM_START)`
Packit	c4476c	`tmstart = now;`
Packit	c4476c	`else`
Packit	c4476c	`ret = (now - tmstart) / (double)(CLK_TCK);`
Packit	c4476c
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#elif defined(_SC_CLK_TCK) /* by means of unistd.h */`
Packit	c4476c	`# include <sys/times.h>`
Packit	c4476c
Packit	c4476c	`double app_tminterval(int stop, int usertime)`
Packit	c4476c	`{`
Packit	c4476c	`double ret = 0;`
Packit	c4476c	`struct tms rus;`
Packit	c4476c	`clock_t now = times(&rus;;`
Packit	c4476c	`static clock_t tmstart;`
Packit	c4476c
Packit	c4476c	`if (usertime)`
Packit	c4476c	`now = rus.tms_utime;`
Packit	c4476c
Packit	c4476c	`if (stop == TM_START) {`
Packit	c4476c	`tmstart = now;`
Packit	c4476c	`} else {`
Packit	c4476c	`long int tck = sysconf(_SC_CLK_TCK);`
Packit	c4476c	`ret = (now - tmstart) / (double)tck;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#else`
Packit	c4476c	`# include <sys/time.h>`
Packit	c4476c	`# include <sys/resource.h>`
Packit	c4476c
Packit	c4476c	`double app_tminterval(int stop, int usertime)`
Packit	c4476c	`{`
Packit	c4476c	`double ret = 0;`
Packit	c4476c	`struct rusage rus;`
Packit	c4476c	`struct timeval now;`
Packit	c4476c	`static struct timeval tmstart;`
Packit	c4476c
Packit	c4476c	`if (usertime)`
Packit	c4476c	`getrusage(RUSAGE_SELF, &rus), now = rus.ru_utime;`
Packit	c4476c	`else`
Packit	c4476c	`gettimeofday(&now, NULL);`
Packit	c4476c
Packit	c4476c	`if (stop == TM_START)`
Packit	c4476c	`tmstart = now;`
Packit	c4476c	`else`
Packit	c4476c	`ret = ((now.tv_sec + now.tv_usec * 1e-6)`
Packit	c4476c	`- (tmstart.tv_sec + tmstart.tv_usec * 1e-6));`
Packit	c4476c
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`int app_access(const char* name, int flag)`
Packit	c4476c	`{`
Packit	c4476c	`#ifdef _WIN32`
Packit	c4476c	`return _access(name, flag);`
Packit	c4476c	`#else`
Packit	c4476c	`return access(name, flag);`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/* app_isdir section */`
Packit	c4476c	`#ifdef _WIN32`
Packit	c4476c	`int app_isdir(const char *name)`
Packit	c4476c	`{`
Packit	c4476c	`DWORD attr;`
Packit	c4476c	`# if defined(UNICODE) \|\| defined(_UNICODE)`
Packit	c4476c	`size_t i, len_0 = strlen(name) + 1;`
Packit	c4476c	`WCHAR tempname[MAX_PATH];`
Packit	c4476c
Packit	c4476c	`if (len_0 > MAX_PATH)`
Packit	c4476c	`return -1;`
Packit	c4476c
Packit	c4476c	`# if !defined(_WIN32_WCE) \|\| _WIN32_WCE>=101`
Packit	c4476c	`if (!MultiByteToWideChar(CP_ACP, 0, name, len_0, tempname, MAX_PATH))`
Packit	c4476c	`# endif`
Packit	c4476c	`for (i = 0; i < len_0; i++)`
Packit	c4476c	`tempname[i] = (WCHAR)name[i];`
Packit	c4476c
Packit	c4476c	`attr = GetFileAttributes(tempname);`
Packit	c4476c	`# else`
Packit	c4476c	`attr = GetFileAttributes(name);`
Packit	c4476c	`# endif`
Packit	c4476c	`if (attr == INVALID_FILE_ATTRIBUTES)`
Packit	c4476c	`return -1;`
Packit	c4476c	`return ((attr & FILE_ATTRIBUTE_DIRECTORY) != 0);`
Packit	c4476c	`}`
Packit	c4476c	`#else`
Packit	c4476c	`# include <sys/stat.h>`
Packit	c4476c	`# ifndef S_ISDIR`
Packit	c4476c	`# if defined(_S_IFMT) && defined(_S_IFDIR)`
Packit	c4476c	`# define S_ISDIR(a) (((a) & _S_IFMT) == _S_IFDIR)`
Packit	c4476c	`# else`
Packit	c4476c	`# define S_ISDIR(a) (((a) & S_IFMT) == S_IFDIR)`
Packit	c4476c	`# endif`
Packit	c4476c	`# endif`
Packit	c4476c
Packit	c4476c	`int app_isdir(const char *name)`
Packit	c4476c	`{`
Packit	c4476c	`# if defined(S_ISDIR)`
Packit	c4476c	`struct stat st;`
Packit	c4476c
Packit	c4476c	`if (stat(name, &st) == 0)`
Packit	c4476c	`return S_ISDIR(st.st_mode);`
Packit	c4476c	`else`
Packit	c4476c	`return -1;`
Packit	c4476c	`# else`
Packit	c4476c	`return -1;`
Packit	c4476c	`# endif`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`/* raw_read\|write section */`
Packit	c4476c	`#if defined(__VMS)`
Packit	c4476c	`# include "vms_term_sock.h"`
Packit	c4476c	`static int stdin_sock = -1;`
Packit	c4476c
Packit	c4476c	`static void close_stdin_sock(void)`
Packit	c4476c	`{`
Packit	c4476c	`TerminalSocket (TERM_SOCK_DELETE, &stdin_sock);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int fileno_stdin(void)`
Packit	c4476c	`{`
Packit	c4476c	`if (stdin_sock == -1) {`
Packit	c4476c	`TerminalSocket(TERM_SOCK_CREATE, &stdin_sock);`
Packit	c4476c	`atexit(close_stdin_sock);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`return stdin_sock;`
Packit	c4476c	`}`
Packit	c4476c	`#else`
Packit	c4476c	`int fileno_stdin(void)`
Packit	c4476c	`{`
Packit	c4476c	`return fileno(stdin);`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`int fileno_stdout(void)`
Packit	c4476c	`{`
Packit	c4476c	`return fileno(stdout);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#if defined(_WIN32) && defined(STD_INPUT_HANDLE)`
Packit	c4476c	`int raw_read_stdin(void *buf, int siz)`
Packit	c4476c	`{`
Packit	c4476c	`DWORD n;`
Packit	c4476c	`if (ReadFile(GetStdHandle(STD_INPUT_HANDLE), buf, siz, &n, NULL))`
Packit	c4476c	`return n;`
Packit	c4476c	`else`
Packit	c4476c	`return -1;`
Packit	c4476c	`}`
Packit	c4476c	`#elif defined(__VMS)`
Packit	c4476c	`# include <sys/socket.h>`
Packit	c4476c
Packit	c4476c	`int raw_read_stdin(void *buf, int siz)`
Packit	c4476c	`{`
Packit	c4476c	`return recv(fileno_stdin(), buf, siz, 0);`
Packit	c4476c	`}`
Packit	c4476c	`#else`
Packit	c4476c	`int raw_read_stdin(void *buf, int siz)`
Packit	c4476c	`{`
Packit	c4476c	`return read(fileno_stdin(), buf, siz);`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`#if defined(_WIN32) && defined(STD_OUTPUT_HANDLE)`
Packit	c4476c	`int raw_write_stdout(const void *buf, int siz)`
Packit	c4476c	`{`
Packit	c4476c	`DWORD n;`
Packit	c4476c	`if (WriteFile(GetStdHandle(STD_OUTPUT_HANDLE), buf, siz, &n, NULL))`
Packit	c4476c	`return n;`
Packit	c4476c	`else`
Packit	c4476c	`return -1;`
Packit	c4476c	`}`
Packit	c4476c	`#else`
Packit	c4476c	`int raw_write_stdout(const void *buf, int siz)`
Packit	c4476c	`{`
Packit	c4476c	`return write(fileno_stdout(), buf, siz);`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Centralized handling if input and output files with format specification`
Packit	c4476c	`* The format is meant to show what the input and output is supposed to be,`
Packit	c4476c	`* and is therefore a show of intent more than anything else. However, it`
Packit	c4476c	`* does impact behavior on some platform, such as differentiating between`
Packit	c4476c	`* text and binary input/output on non-Unix platforms`
Packit	c4476c	`*/`
Packit	c4476c	`static int istext(int format)`
Packit	c4476c	`{`
Packit	c4476c	`return (format & B_FORMAT_TEXT) == B_FORMAT_TEXT;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`BIO *dup_bio_in(int format)`
Packit	c4476c	`{`
Packit	c4476c	`return BIO_new_fp(stdin,`
Packit	c4476c	`BIO_NOCLOSE \| (istext(format) ? BIO_FP_TEXT : 0));`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static BIO_METHOD *prefix_method = NULL;`
Packit	c4476c
Packit	c4476c	`BIO *dup_bio_out(int format)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *b = BIO_new_fp(stdout,`
Packit	c4476c	`BIO_NOCLOSE \| (istext(format) ? BIO_FP_TEXT : 0));`
Packit	c4476c	`void *prefix = NULL;`
Packit	c4476c
Packit	c4476c	`#ifdef OPENSSL_SYS_VMS`
Packit	c4476c	`if (istext(format))`
Packit	c4476c	`b = BIO_push(BIO_new(BIO_f_linebuffer()), b);`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`if (istext(format) && (prefix = getenv("HARNESS_OSSL_PREFIX")) != NULL) {`
Packit	c4476c	`if (prefix_method == NULL)`
Packit	c4476c	`prefix_method = apps_bf_prefix();`
Packit	c4476c	`b = BIO_push(BIO_new(prefix_method), b);`
Packit	c4476c	`BIO_ctrl(b, PREFIX_CTRL_SET_PREFIX, 0, prefix);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`return b;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`BIO *dup_bio_err(int format)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *b = BIO_new_fp(stderr,`
Packit	c4476c	`BIO_NOCLOSE \| (istext(format) ? BIO_FP_TEXT : 0));`
Packit	c4476c	`#ifdef OPENSSL_SYS_VMS`
Packit	c4476c	`if (istext(format))`
Packit	c4476c	`b = BIO_push(BIO_new(BIO_f_linebuffer()), b);`
Packit	c4476c	`#endif`
Packit	c4476c	`return b;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void destroy_prefix_method(void)`
Packit	c4476c	`{`
Packit	c4476c	`BIO_meth_free(prefix_method);`
Packit	c4476c	`prefix_method = NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void unbuffer(FILE *fp)`
Packit	c4476c	`{`
Packit	c4476c	`/*`
Packit	c4476c	`* On VMS, setbuf() will only take 32-bit pointers, and a compilation`
Packit	c4476c	`* with /POINTER_SIZE=64 will give off a MAYLOSEDATA2 warning here.`
Packit	c4476c	`* However, we trust that the C RTL will never give us a FILE pointer`
Packit	c4476c	`* above the first 4 GB of memory, so we simply turn off the warning`
Packit	c4476c	`* temporarily.`
Packit	c4476c	`*/`
Packit	c4476c	`#if defined(OPENSSL_SYS_VMS) && defined(__DECC)`
Packit	c4476c	`# pragma environment save`
Packit	c4476c	`# pragma message disable maylosedata2`
Packit	c4476c	`#endif`
Packit	c4476c	`setbuf(fp, NULL);`
Packit	c4476c	`#if defined(OPENSSL_SYS_VMS) && defined(__DECC)`
Packit	c4476c	`# pragma environment restore`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static const char *modestr(char mode, int format)`
Packit	c4476c	`{`
Packit	c4476c	`OPENSSL_assert(mode == 'a' \|\| mode == 'r' \|\| mode == 'w');`
Packit	c4476c
Packit	c4476c	`switch (mode) {`
Packit	c4476c	`case 'a':`
Packit	c4476c	`return istext(format) ? "a" : "ab";`
Packit	c4476c	`case 'r':`
Packit	c4476c	`return istext(format) ? "r" : "rb";`
Packit	c4476c	`case 'w':`
Packit	c4476c	`return istext(format) ? "w" : "wb";`
Packit	c4476c	`}`
Packit	c4476c	`/* The assert above should make sure we never reach this point */`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static const char *modeverb(char mode)`
Packit	c4476c	`{`
Packit	c4476c	`switch (mode) {`
Packit	c4476c	`case 'a':`
Packit	c4476c	`return "appending";`
Packit	c4476c	`case 'r':`
Packit	c4476c	`return "reading";`
Packit	c4476c	`case 'w':`
Packit	c4476c	`return "writing";`
Packit	c4476c	`}`
Packit	c4476c	`return "(doing something)";`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/*`
Packit	c4476c	`* Open a file for writing, owner-read-only.`
Packit	c4476c	`*/`
Packit	c4476c	`BIO bio_open_owner(const char filename, int format, int private)`
Packit	c4476c	`{`
Packit	c4476c	`FILE *fp = NULL;`
Packit	c4476c	`BIO *b = NULL;`
Packit	c4476c	`int fd = -1, bflags, mode, textmode;`
Packit	c4476c
Packit	c4476c	`if (!private \|\| filename == NULL \|\| strcmp(filename, "-") == 0)`
Packit	c4476c	`return bio_open_default(filename, 'w', format);`
Packit	c4476c
Packit	c4476c	`mode = O_WRONLY;`
Packit	c4476c	`#ifdef O_CREAT`
Packit	c4476c	`mode \|= O_CREAT;`
Packit	c4476c	`#endif`
Packit	c4476c	`#ifdef O_TRUNC`
Packit	c4476c	`mode \|= O_TRUNC;`
Packit	c4476c	`#endif`
Packit	c4476c	`textmode = istext(format);`
Packit	c4476c	`if (!textmode) {`
Packit	c4476c	`#ifdef O_BINARY`
Packit	c4476c	`mode \|= O_BINARY;`
Packit	c4476c	`#elif defined(_O_BINARY)`
Packit	c4476c	`mode \|= _O_BINARY;`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`#ifdef OPENSSL_SYS_VMS`
Packit	c4476c	`/* VMS doesn't have O_BINARY, it just doesn't make sense. But,`
Packit	c4476c	`* it still needs to know that we're going binary, or fdopen()`
Packit	c4476c	`* will fail with "invalid argument"... so we tell VMS what the`
Packit	c4476c	`* context is.`
Packit	c4476c	`*/`
Packit	c4476c	`if (!textmode)`
Packit	c4476c	`fd = open(filename, mode, 0600, "ctx=bin");`
Packit	c4476c	`else`
Packit	c4476c	`#endif`
Packit	c4476c	`fd = open(filename, mode, 0600);`
Packit	c4476c	`if (fd < 0)`
Packit	c4476c	`goto err;`
Packit	c4476c	`fp = fdopen(fd, modestr('w', format));`
Packit	c4476c	`if (fp == NULL)`
Packit	c4476c	`goto err;`
Packit	c4476c	`bflags = BIO_CLOSE;`
Packit	c4476c	`if (textmode)`
Packit	c4476c	`bflags \|= BIO_FP_TEXT;`
Packit	c4476c	`b = BIO_new_fp(fp, bflags);`
Packit	c4476c	`if (b)`
Packit	c4476c	`return b;`
Packit	c4476c
Packit	c4476c	`err:`
Packit	c4476c	`BIO_printf(bio_err, "%s: Can't open \"%s\" for writing, %s\n",`
Packit	c4476c	`opt_getprog(), filename, strerror(errno));`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`/* If we have fp, then fdopen took over fd, so don't close both. */`
Packit	c4476c	`if (fp)`
Packit	c4476c	`fclose(fp);`
Packit	c4476c	`else if (fd >= 0)`
Packit	c4476c	`close(fd);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`static BIO bio_open_default_(const char filename, char mode, int format,`
Packit	c4476c	`int quiet)`
Packit	c4476c	`{`
Packit	c4476c	`BIO *ret;`
Packit	c4476c
Packit	c4476c	`if (filename == NULL \|\| strcmp(filename, "-") == 0) {`
Packit	c4476c	`ret = mode == 'r' ? dup_bio_in(format) : dup_bio_out(format);`
Packit	c4476c	`if (quiet) {`
Packit	c4476c	`ERR_clear_error();`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c	`if (ret != NULL)`
Packit	c4476c	`return ret;`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"Can't open %s, %s\n",`
Packit	c4476c	`mode == 'r' ? "stdin" : "stdout", strerror(errno));`
Packit	c4476c	`} else {`
Packit	c4476c	`ret = BIO_new_file(filename, modestr(mode, format));`
Packit	c4476c	`if (quiet) {`
Packit	c4476c	`ERR_clear_error();`
Packit	c4476c	`return ret;`
Packit	c4476c	`}`
Packit	c4476c	`if (ret != NULL)`
Packit	c4476c	`return ret;`
Packit	c4476c	`BIO_printf(bio_err,`
Packit	c4476c	`"Can't open %s for %s, %s\n",`
Packit	c4476c	`filename, modeverb(mode), strerror(errno));`
Packit	c4476c	`}`
Packit	c4476c	`ERR_print_errors(bio_err);`
Packit	c4476c	`return NULL;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`BIO bio_open_default(const char filename, char mode, int format)`
Packit	c4476c	`{`
Packit	c4476c	`return bio_open_default_(filename, mode, format, 0);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`BIO bio_open_default_quiet(const char filename, char mode, int format)`
Packit	c4476c	`{`
Packit	c4476c	`return bio_open_default_(filename, mode, format, 1);`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void wait_for_async(SSL *s)`
Packit	c4476c	`{`
Packit	c4476c	`/* On Windows select only works for sockets, so we simply don't wait */`
Packit	c4476c	`#ifndef OPENSSL_SYS_WINDOWS`
Packit	c4476c	`int width = 0;`
Packit	c4476c	`fd_set asyncfds;`
Packit	c4476c	`OSSL_ASYNC_FD *fds;`
Packit	c4476c	`size_t numfds;`
Packit	c4476c	`size_t i;`
Packit	c4476c
Packit	c4476c	`if (!SSL_get_all_async_fds(s, NULL, &numfds))`
Packit	c4476c	`return;`
Packit	c4476c	`if (numfds == 0)`
Packit	c4476c	`return;`
Packit	c4476c	`fds = app_malloc(sizeof(OSSL_ASYNC_FD) * numfds, "allocate async fds");`
Packit	c4476c	`if (!SSL_get_all_async_fds(s, fds, &numfds)) {`
Packit	c4476c	`OPENSSL_free(fds);`
Packit	c4476c	`return;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`FD_ZERO(&asyncfds);`
Packit	c4476c	`for (i = 0; i < numfds; i++) {`
Packit	c4476c	`if (width <= (int)fds[i])`
Packit	c4476c	`width = (int)fds[i] + 1;`
Packit	c4476c	`openssl_fdset((int)fds[i], &asyncfds);`
Packit	c4476c	`}`
Packit	c4476c	`select(width, (void *)&asyncfds, NULL, NULL, NULL);`
Packit	c4476c	`OPENSSL_free(fds);`
Packit	c4476c	`#endif`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`/* if OPENSSL_SYS_WINDOWS is defined then so is OPENSSL_SYS_MSDOS */`
Packit	c4476c	`#if defined(OPENSSL_SYS_MSDOS)`
Packit	c4476c	`int has_stdin_waiting(void)`
Packit	c4476c	`{`
Packit	c4476c	`# if defined(OPENSSL_SYS_WINDOWS)`
Packit	c4476c	`HANDLE inhand = GetStdHandle(STD_INPUT_HANDLE);`
Packit	c4476c	`DWORD events = 0;`
Packit	c4476c	`INPUT_RECORD inputrec;`
Packit	c4476c	`DWORD insize = 1;`
Packit	c4476c	`BOOL peeked;`
Packit	c4476c
Packit	c4476c	`if (inhand == INVALID_HANDLE_VALUE) {`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`peeked = PeekConsoleInput(inhand, &inputrec, insize, &events);`
Packit	c4476c	`if (!peeked) {`
Packit	c4476c	`/* Probably redirected input? _kbhit() does not work in this case */`
Packit	c4476c	`if (!feof(stdin)) {`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c	`# endif`
Packit	c4476c	`return _kbhit();`
Packit	c4476c	`}`
Packit	c4476c	`#endif`
Packit	c4476c
Packit	c4476c	`/* Corrupt a signature by modifying final byte */`
Packit	c4476c	`void corrupt_signature(const ASN1_STRING *signature)`
Packit	c4476c	`{`
Packit	c4476c	`unsigned char *s = signature->data;`
Packit	c4476c	`s[signature->length - 1] ^= 0x1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`int set_cert_times(X509 x, const char startdate, const char *enddate,`
Packit	c4476c	`int days)`
Packit	c4476c	`{`
Packit	c4476c	`if (startdate == NULL \|\| strcmp(startdate, "today") == 0) {`
Packit	c4476c	`if (X509_gmtime_adj(X509_getm_notBefore(x), 0) == NULL)`
Packit	c4476c	`return 0;`
Packit	c4476c	`} else {`
Packit	c4476c	`if (!ASN1_TIME_set_string_X509(X509_getm_notBefore(x), startdate))`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c	`if (enddate == NULL) {`
Packit	c4476c	`if (X509_time_adj_ex(X509_getm_notAfter(x), days, 0, NULL)`
Packit	c4476c	`== NULL)`
Packit	c4476c	`return 0;`
Packit	c4476c	`} else if (!ASN1_TIME_set_string_X509(X509_getm_notAfter(x), enddate)) {`
Packit	c4476c	`return 0;`
Packit	c4476c	`}`
Packit	c4476c	`return 1;`
Packit	c4476c	`}`
Packit	c4476c
Packit	c4476c	`void make_uppercase(char *string)`
Packit	c4476c	`{`
Packit	c4476c	`int i;`
Packit	c4476c
Packit	c4476c	`for (i = 0; string[i] != '\0'; i++)`
Packit	c4476c	`string[i] = toupper((unsigned char)string[i]);`
Packit	c4476c	`}`

source-git / openssl

Source Code

Blame apps/apps.c