Line | Source | Count |
1 | | - |
2 | | - |
3 | | - |
4 | | - |
5 | | - |
6 | | - |
7 | | - |
8 | | - |
9 | | - |
10 | | - |
11 | | - |
12 | | - |
13 | | - |
14 | | - |
15 | | - |
16 | | - |
17 | | - |
18 | | - |
19 | | - |
20 | | - |
21 | | - |
22 | | - |
23 | | - |
24 | | - |
25 | | - |
26 | | - |
27 | | - |
28 | | - |
29 | | - |
30 | | - |
31 | | - |
32 | | - |
33 | | - |
34 | | - |
35 | | - |
36 | | - |
37 | | - |
38 | | - |
39 | | - |
40 | | - |
41 | | - |
42 | | - |
43 | | - |
44 | | - |
45 | | - |
46 | | - |
47 | | - |
48 | | - |
49 | | - |
50 | | - |
51 | | - |
52 | | - |
53 | | - |
54 | | - |
55 | | - |
56 | | - |
57 | | - |
58 | | - |
59 | #include <stdio.h> | - |
60 | #include <string.h> | - |
61 | | - |
62 | #include <openssl/err.h> | - |
63 | #include <openssl/pkcs12.h> | - |
64 | | - |
65 | | - |
66 | | - |
67 | | - |
68 | | - |
69 | unsigned char * | - |
70 | PKCS12_pbe_crypt(const X509_ALGOR *algor, const char *pass, int passlen, | - |
71 | const unsigned char *in, int inlen, unsigned char **data, int *datalen, | - |
72 | int en_de) | - |
73 | { | - |
74 | unsigned char *out; | - |
75 | int outlen, i; | - |
76 | EVP_CIPHER_CTX ctx; | - |
77 | | - |
78 | EVP_CIPHER_CTX_init(&ctx); | - |
79 | | - |
80 | if (!EVP_PBE_CipherInit(algor->algorithm, pass, passlen,TRUE | never evaluated | FALSE | never evaluated |
| 0 |
81 | algor->parameter, &ctx, en_de)) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
82 | out = NULL; | - |
83 | PKCS12error(PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR); | - |
84 | goto err; never executed: goto err; | 0 |
85 | } | - |
86 | | - |
87 | if (!(out = malloc(inlen + EVP_CIPHER_CTX_block_size(&ctx)))) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
88 | PKCS12error(ERR_R_MALLOC_FAILURE); | - |
89 | goto err; never executed: goto err; | 0 |
90 | } | - |
91 | | - |
92 | if (!EVP_CipherUpdate(&ctx, out, &i, in, inlen)) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
93 | free(out); | - |
94 | out = NULL; | - |
95 | PKCS12error(ERR_R_EVP_LIB); | - |
96 | goto err; never executed: goto err; | 0 |
97 | } | - |
98 | | - |
99 | outlen = i; | - |
100 | if (!EVP_CipherFinal_ex(&ctx, out + i, &i)) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
101 | free(out); | - |
102 | out = NULL; | - |
103 | PKCS12error(PKCS12_R_PKCS12_CIPHERFINAL_ERROR); | - |
104 | goto err; never executed: goto err; | 0 |
105 | } | - |
106 | outlen += i; | - |
107 | if (datalen)TRUE | never evaluated | FALSE | never evaluated |
| 0 |
108 | *datalen = outlen; never executed: *datalen = outlen; | 0 |
109 | if (data)TRUE | never evaluated | FALSE | never evaluated |
| 0 |
110 | *data = out; never executed: *data = out; | 0 |
111 | | - |
112 | err: code before this statement never executed: err: | 0 |
113 | EVP_CIPHER_CTX_cleanup(&ctx); | - |
114 | return out; never executed: return out; | 0 |
115 | | - |
116 | } | - |
117 | | - |
118 | | - |
119 | | - |
120 | | - |
121 | | - |
122 | void * | - |
123 | PKCS12_item_decrypt_d2i(const X509_ALGOR *algor, const ASN1_ITEM *it, | - |
124 | const char *pass, int passlen, const ASN1_OCTET_STRING *oct, int zbuf) | - |
125 | { | - |
126 | unsigned char *out; | - |
127 | const unsigned char *p; | - |
128 | void *ret; | - |
129 | int outlen; | - |
130 | | - |
131 | if (!PKCS12_pbe_crypt(algor, pass, passlen, oct->data, oct->length,TRUE | never evaluated | FALSE | never evaluated |
| 0 |
132 | &out, &outlen, 0)) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
133 | PKCS12error(PKCS12_R_PKCS12_PBE_CRYPT_ERROR); | - |
134 | return NULL; never executed: return ((void *)0) ; | 0 |
135 | } | - |
136 | p = out; | - |
137 | ret = ASN1_item_d2i(NULL, &p, outlen, it); | - |
138 | if (zbuf)TRUE | never evaluated | FALSE | never evaluated |
| 0 |
139 | explicit_bzero(out, outlen); never executed: explicit_bzero(out, outlen); | 0 |
140 | if (!ret)TRUE | never evaluated | FALSE | never evaluated |
| 0 |
141 | PKCS12error(PKCS12_R_DECODE_ERROR); never executed: ERR_put_error(35,(0xfff),(101),__FILE__,141); | 0 |
142 | free(out); | - |
143 | return ret; never executed: return ret; | 0 |
144 | } | - |
145 | | - |
146 | | - |
147 | | - |
148 | | - |
149 | | - |
150 | ASN1_OCTET_STRING * | - |
151 | PKCS12_item_i2d_encrypt(X509_ALGOR *algor, const ASN1_ITEM *it, | - |
152 | const char *pass, int passlen, | - |
153 | void *obj, int zbuf) | - |
154 | { | - |
155 | ASN1_OCTET_STRING *oct; | - |
156 | unsigned char *in = NULL; | - |
157 | int inlen; | - |
158 | | - |
159 | if (!(oct = ASN1_OCTET_STRING_new ())) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
160 | PKCS12error(ERR_R_MALLOC_FAILURE); | - |
161 | return NULL; never executed: return ((void *)0) ; | 0 |
162 | } | - |
163 | inlen = ASN1_item_i2d(obj, &in, it); | - |
164 | if (!in) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
165 | PKCS12error(PKCS12_R_ENCODE_ERROR); | - |
166 | goto err; never executed: goto err; | 0 |
167 | } | - |
168 | if (!PKCS12_pbe_crypt(algor, pass, passlen, in, inlen, &oct->data,TRUE | never evaluated | FALSE | never evaluated |
| 0 |
169 | &oct->length, 1)) {TRUE | never evaluated | FALSE | never evaluated |
| 0 |
170 | PKCS12error(PKCS12_R_ENCRYPT_ERROR); | - |
171 | goto err; never executed: goto err; | 0 |
172 | } | - |
173 | if (zbuf)TRUE | never evaluated | FALSE | never evaluated |
| 0 |
174 | explicit_bzero(in, inlen); never executed: explicit_bzero(in, inlen); | 0 |
175 | free(in); | - |
176 | return oct; never executed: return oct; | 0 |
177 | | - |
178 | err: | - |
179 | free(in); | - |
180 | ASN1_OCTET_STRING_free(oct); | - |
181 | return NULL; never executed: return ((void *)0) ; | 0 |
182 | } | - |
183 | | - |
184 | IMPLEMENT_PKCS12_STACK_OF(PKCS7) | - |
| | |