source-git / openssl

Clone
Source Code
GIT

Blame crypto/pkcs12/p12_p8e.c

c8 c8s master
  1.   c4476c2d191c8f18018d947521358ac6321a212e
  2.   crypto
  3.   pkcs12
  4.   p12_p8e.c
Blob History Raw
Packit c4476c 
/*
Packit c4476c 
 * Copyright 2001-2016 The OpenSSL Project Authors. All Rights Reserved.
Packit c4476c 
 *
Packit c4476c 
 * Licensed under the OpenSSL license (the "License").  You may not use
Packit c4476c 
 * this file except in compliance with the License.  You can obtain a copy
Packit c4476c 
 * in the file LICENSE in the source distribution or at
Packit c4476c 
 * https://www.openssl.org/source/license.html
Packit c4476c 
 */
Packit c4476c
Packit c4476c 
#include <stdio.h>
Packit c4476c 
#include "internal/cryptlib.h"
Packit c4476c 
#include <openssl/pkcs12.h>
Packit c4476c 
#include "crypto/x509.h"
Packit c4476c
Packit c4476c 
X509_SIG *PKCS8_encrypt(int pbe_nid, const EVP_CIPHER *cipher,
Packit c4476c 
                        const char *pass, int passlen,
Packit c4476c 
                        unsigned char *salt, int saltlen, int iter,
Packit c4476c 
                        PKCS8_PRIV_KEY_INFO *p8inf)
Packit c4476c 
{
Packit c4476c 
    X509_SIG *p8 = NULL;
Packit c4476c 
    X509_ALGOR *pbe;
Packit c4476c
Packit c4476c 
    if (pbe_nid == -1)
Packit c4476c 
        pbe = PKCS5_pbe2_set(cipher, iter, salt, saltlen);
Packit c4476c 
    else if (EVP_PBE_find(EVP_PBE_TYPE_PRF, pbe_nid, NULL, NULL, 0))
Packit c4476c 
        pbe = PKCS5_pbe2_set_iv(cipher, iter, salt, saltlen, NULL, pbe_nid);
Packit c4476c 
    else {
Packit c4476c 
        ERR_clear_error();
Packit c4476c 
        pbe = PKCS5_pbe_set(pbe_nid, iter, salt, saltlen);
Packit c4476c 
    }
Packit c4476c 
    if (!pbe) {
Packit c4476c 
        PKCS12err(PKCS12_F_PKCS8_ENCRYPT, ERR_R_ASN1_LIB);
Packit c4476c 
        return NULL;
Packit c4476c 
    }
Packit c4476c 
    p8 = PKCS8_set0_pbe(pass, passlen, p8inf, pbe);
Packit c4476c 
    if (p8 == NULL) {
Packit c4476c 
        X509_ALGOR_free(pbe);
Packit c4476c 
        return NULL;
Packit c4476c 
    }
Packit c4476c
Packit c4476c 
    return p8;
Packit c4476c 
}
Packit c4476c
Packit c4476c 
X509_SIG *PKCS8_set0_pbe(const char *pass, int passlen,
Packit c4476c 
                         PKCS8_PRIV_KEY_INFO *p8inf, X509_ALGOR *pbe)
Packit c4476c 
{
Packit c4476c 
    X509_SIG *p8;
Packit c4476c 
    ASN1_OCTET_STRING *enckey;
Packit c4476c
Packit c4476c 
    enckey =
Packit c4476c 
        PKCS12_item_i2d_encrypt(pbe, ASN1_ITEM_rptr(PKCS8_PRIV_KEY_INFO),
Packit c4476c 
                                pass, passlen, p8inf, 1);
Packit c4476c 
    if (!enckey) {
Packit c4476c 
        PKCS12err(PKCS12_F_PKCS8_SET0_PBE, PKCS12_R_ENCRYPT_ERROR);
Packit c4476c 
        return NULL;
Packit c4476c 
    }
Packit c4476c
Packit c4476c 
    p8 = OPENSSL_zalloc(sizeof(*p8));
Packit c4476c
Packit c4476c 
    if (p8 == NULL) {
Packit c4476c 
        PKCS12err(PKCS12_F_PKCS8_SET0_PBE, ERR_R_MALLOC_FAILURE);
Packit c4476c 
        ASN1_OCTET_STRING_free(enckey);
Packit c4476c 
        return NULL;
Packit c4476c 
    }
Packit c4476c 
    p8->algor = pbe;
Packit c4476c 
    p8->digest = enckey;
Packit c4476c
Packit c4476c 
    return p8;
Packit c4476c 
}

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation