OpenCoverage

pvkfmt.c

Absolute File Name:/home/opencoverage/opencoverage/guest-scripts/libressl/src/crypto/pem/pvkfmt.c
Source codeSwitch to Preprocessed file
LineSourceCount
1/* $OpenBSD: pvkfmt.c,v 1.20 2018/08/05 11:19:25 bcook Exp $ */-
2/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL-
3 * project 2005.-
4 */-
5/* ====================================================================-
6 * Copyright (c) 2005 The OpenSSL Project. All rights reserved.-
7 *-
8 * Redistribution and use in source and binary forms, with or without-
9 * modification, are permitted provided that the following conditions-
10 * are met:-
11 *-
12 * 1. Redistributions of source code must retain the above copyright-
13 * notice, this list of conditions and the following disclaimer.-
14 *-
15 * 2. Redistributions in binary form must reproduce the above copyright-
16 * notice, this list of conditions and the following disclaimer in-
17 * the documentation and/or other materials provided with the-
18 * distribution.-
19 *-
20 * 3. All advertising materials mentioning features or use of this-
21 * software must display the following acknowledgment:-
22 * "This product includes software developed by the OpenSSL Project-
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"-
24 *-
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to-
26 * endorse or promote products derived from this software without-
27 * prior written permission. For written permission, please contact-
28 * licensing@OpenSSL.org.-
29 *-
30 * 5. Products derived from this software may not be called "OpenSSL"-
31 * nor may "OpenSSL" appear in their names without prior written-
32 * permission of the OpenSSL Project.-
33 *-
34 * 6. Redistributions of any form whatsoever must retain the following-
35 * acknowledgment:-
36 * "This product includes software developed by the OpenSSL Project-
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"-
38 *-
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY-
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE-
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR-
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR-
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,-
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT-
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;-
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)-
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,-
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)-
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED-
50 * OF THE POSSIBILITY OF SUCH DAMAGE.-
51 * ====================================================================-
52 *-
53 * This product includes cryptographic software written by Eric Young-
54 * (eay@cryptsoft.com). This product includes software written by Tim-
55 * Hudson (tjh@cryptsoft.com).-
56 *-
57 */-
58-
59/* Support for PVK format keys and related structures (such a PUBLICKEYBLOB-
60 * and PRIVATEKEYBLOB).-
61 */-
62-
63#include <stdlib.h>-
64#include <string.h>-
65-
66#include <openssl/opensslconf.h>-
67-
68#include <openssl/bn.h>-
69#include <openssl/err.h>-
70#include <openssl/pem.h>-
71-
72#if !defined(OPENSSL_NO_RSA) && !defined(OPENSSL_NO_DSA)-
73#include <openssl/dsa.h>-
74#include <openssl/rsa.h>-
75-
76#include "bn_lcl.h"-
77-
78/* Utility function: read a DWORD (4 byte unsigned integer) in little endian-
79 * format-
80 */-
81-
82static unsigned int-
83read_ledword(const unsigned char **in)-
84{-
85 const unsigned char *p = *in;-
86 unsigned int ret;-
87-
88 ret = *p++;-
89 ret |= (*p++ << 8);-
90 ret |= (*p++ << 16);-
91 ret |= (*p++ << 24);-
92 *in = p;-
93 return ret;
never executed: return ret;
0
94}-
95-
96/* Read a BIGNUM in little endian format. The docs say that this should take up-
97 * bitlen/8 bytes.-
98 */-
99-
100static int-
101read_lebn(const unsigned char **in, unsigned int nbyte, BIGNUM **r)-
102{-
103 const unsigned char *p;-
104 unsigned char *tmpbuf, *q;-
105 unsigned int i;-
106-
107 p = *in + nbyte - 1;-
108 tmpbuf = malloc(nbyte);-
109 if (!tmpbuf)
!tmpbufDescription
TRUEnever evaluated
FALSEnever evaluated
0
110 return 0;
never executed: return 0;
0
111 q = tmpbuf;-
112 for (i = 0; i < nbyte; i++)
i < nbyteDescription
TRUEnever evaluated
FALSEnever evaluated
0
113 *q++ = *p--;
never executed: *q++ = *p--;
0
114 *r = BN_bin2bn(tmpbuf, nbyte, NULL);-
115 free(tmpbuf);-
116 if (*r) {
*rDescription
TRUEnever evaluated
FALSEnever evaluated
0
117 *in += nbyte;-
118 return 1;
never executed: return 1;
0
119 } else-
120 return 0;
never executed: return 0;
0
121}-
122-
123-
124/* Convert private key blob to EVP_PKEY: RSA and DSA keys supported */-
125-
126#define MS_PUBLICKEYBLOB 0x6-
127#define MS_PRIVATEKEYBLOB 0x7-
128#define MS_RSA1MAGIC 0x31415352L-
129#define MS_RSA2MAGIC 0x32415352L-
130#define MS_DSS1MAGIC 0x31535344L-
131#define MS_DSS2MAGIC 0x32535344L-
132-
133#define MS_KEYALG_RSA_KEYX 0xa400-
134#define MS_KEYALG_DSS_SIGN 0x2200-
135-
136#define MS_KEYTYPE_KEYX 0x1-
137#define MS_KEYTYPE_SIGN 0x2-
138-
139/* The PVK file magic number: seems to spell out "bobsfile", who is Bob? */-
140#define MS_PVKMAGIC 0xb0b5f11eL-
141/* Salt length for PVK files */-
142#define PVK_SALTLEN 0x10-
143-
144static EVP_PKEY *b2i_rsa(const unsigned char **in, unsigned int length,-
145 unsigned int bitlen, int ispub);-
146static EVP_PKEY *b2i_dss(const unsigned char **in, unsigned int length,-
147 unsigned int bitlen, int ispub);-
148-
149static int-
150do_blob_header(const unsigned char **in, unsigned int length,-
151 unsigned int *pmagic, unsigned int *pbitlen, int *pisdss, int *pispub)-
152{-
153 const unsigned char *p = *in;-
154-
155 if (length < 16)
length < 16Description
TRUEnever evaluated
FALSEnever evaluated
0
156 return 0;
never executed: return 0;
0
157 /* bType */-
158 if (*p == MS_PUBLICKEYBLOB) {
*p == 0x6Description
TRUEnever evaluated
FALSEnever evaluated
0
159 if (*pispub == 0) {
*pispub == 0Description
TRUEnever evaluated
FALSEnever evaluated
0
160 PEMerror(PEM_R_EXPECTING_PRIVATE_KEY_BLOB);-
161 return 0;
never executed: return 0;
0
162 }-
163 *pispub = 1;-
164 } else if (*p == MS_PRIVATEKEYBLOB) {
never executed: end of block
*p == 0x7Description
TRUEnever evaluated
FALSEnever evaluated
0
165 if (*pispub == 1) {
*pispub == 1Description
TRUEnever evaluated
FALSEnever evaluated
0
166 PEMerror(PEM_R_EXPECTING_PUBLIC_KEY_BLOB);-
167 return 0;
never executed: return 0;
0
168 }-
169 *pispub = 0;-
170 } else
never executed: end of block
0
171 return 0;
never executed: return 0;
0
172 p++;-
173 /* Version */-
174 if (*p++ != 0x2) {
*p++ != 0x2Description
TRUEnever evaluated
FALSEnever evaluated
0
175 PEMerror(PEM_R_BAD_VERSION_NUMBER);-
176 return 0;
never executed: return 0;
0
177 }-
178 /* Ignore reserved, aiKeyAlg */-
179 p += 6;-
180 *pmagic = read_ledword(&p);-
181 *pbitlen = read_ledword(&p);-
182 if (*pbitlen > 65536) {
*pbitlen > 65536Description
TRUEnever evaluated
FALSEnever evaluated
0
183 PEMerror(PEM_R_INCONSISTENT_HEADER);-
184 return 0;
never executed: return 0;
0
185 }-
186 *pisdss = 0;-
187 switch (*pmagic) {-
188-
189 case MS_DSS1MAGIC:
never executed: case 0x31535344L:
0
190 *pisdss = 1;-
191 case MS_RSA1MAGIC:
code before this statement never executed: case 0x31415352L:
never executed: case 0x31415352L:
0
192 if (*pispub == 0) {
*pispub == 0Description
TRUEnever evaluated
FALSEnever evaluated
0
193 PEMerror(PEM_R_EXPECTING_PRIVATE_KEY_BLOB);-
194 return 0;
never executed: return 0;
0
195 }-
196 break;
never executed: break;
0
197-
198 case MS_DSS2MAGIC:
never executed: case 0x32535344L:
0
199 *pisdss = 1;-
200 case MS_RSA2MAGIC:
code before this statement never executed: case 0x32415352L:
never executed: case 0x32415352L:
0
201 if (*pispub == 1) {
*pispub == 1Description
TRUEnever evaluated
FALSEnever evaluated
0
202 PEMerror(PEM_R_EXPECTING_PUBLIC_KEY_BLOB);-
203 return 0;
never executed: return 0;
0
204 }-
205 break;
never executed: break;
0
206-
207 default:
never executed: default:
0
208 PEMerror(PEM_R_BAD_MAGIC_NUMBER);-
209 return -1;
never executed: return -1;
0
210 }-
211 *in = p;-
212 return 1;
never executed: return 1;
0
213}-
214-
215static unsigned int-
216blob_length(unsigned bitlen, int isdss, int ispub)-
217{-
218 unsigned int nbyte, hnbyte;-
219-
220 nbyte = (bitlen + 7) >> 3;-
221 hnbyte = (bitlen + 15) >> 4;-
222 if (isdss) {
isdssDescription
TRUEnever evaluated
FALSEnever evaluated
0
223-
224 /* Expected length: 20 for q + 3 components bitlen each + 24-
225 * for seed structure.-
226 */-
227 if (ispub)
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
228 return 44 + 3 * nbyte;
never executed: return 44 + 3 * nbyte;
0
229 /* Expected length: 20 for q, priv, 2 bitlen components + 24-
230 * for seed structure.-
231 */-
232 else-
233 return 64 + 2 * nbyte;
never executed: return 64 + 2 * nbyte;
0
234 } else {-
235 /* Expected length: 4 for 'e' + 'n' */-
236 if (ispub)
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
237 return 4 + nbyte;
never executed: return 4 + nbyte;
0
238 else-
239 /* Expected length: 4 for 'e' and 7 other components.-
240 * 2 components are bitlen size, 5 are bitlen/2-
241 */-
242 return 4 + 2*nbyte + 5*hnbyte;
never executed: return 4 + 2*nbyte + 5*hnbyte;
0
243 }-
244-
245}-
246-
247static EVP_PKEY *-
248do_b2i(const unsigned char **in, unsigned int length, int ispub)-
249{-
250 const unsigned char *p = *in;-
251 unsigned int bitlen, magic;-
252 int isdss;-
253-
254 if (do_blob_header(&p, length, &magic, &bitlen, &isdss, &ispub) <= 0) {
do_blob_header..., &ispub) <= 0Description
TRUEnever evaluated
FALSEnever evaluated
0
255 PEMerror(PEM_R_KEYBLOB_HEADER_PARSE_ERROR);-
256 return NULL;
never executed: return ((void *)0) ;
0
257 }-
258 length -= 16;-
259 if (length < blob_length(bitlen, isdss, ispub)) {
length < blob_... isdss, ispub)Description
TRUEnever evaluated
FALSEnever evaluated
0
260 PEMerror(PEM_R_KEYBLOB_TOO_SHORT);-
261 return NULL;
never executed: return ((void *)0) ;
0
262 }-
263 if (isdss)
isdssDescription
TRUEnever evaluated
FALSEnever evaluated
0
264 return b2i_dss(&p, length, bitlen, ispub);
never executed: return b2i_dss(&p, length, bitlen, ispub);
0
265 else-
266 return b2i_rsa(&p, length, bitlen, ispub);
never executed: return b2i_rsa(&p, length, bitlen, ispub);
0
267}-
268-
269static EVP_PKEY *-
270do_b2i_bio(BIO *in, int ispub)-
271{-
272 const unsigned char *p;-
273 unsigned char hdr_buf[16], *buf = NULL;-
274 unsigned int bitlen, magic, length;-
275 int isdss;-
276 EVP_PKEY *ret = NULL;-
277-
278 if (BIO_read(in, hdr_buf, 16) != 16) {
BIO_read(in, h...buf, 16) != 16Description
TRUEnever evaluated
FALSEnever evaluated
0
279 PEMerror(PEM_R_KEYBLOB_TOO_SHORT);-
280 return NULL;
never executed: return ((void *)0) ;
0
281 }-
282 p = hdr_buf;-
283 if (do_blob_header(&p, 16, &magic, &bitlen, &isdss, &ispub) <= 0)
do_blob_header..., &ispub) <= 0Description
TRUEnever evaluated
FALSEnever evaluated
0
284 return NULL;
never executed: return ((void *)0) ;
0
285-
286 length = blob_length(bitlen, isdss, ispub);-
287 buf = malloc(length);-
288 if (!buf) {
!bufDescription
TRUEnever evaluated
FALSEnever evaluated
0
289 PEMerror(ERR_R_MALLOC_FAILURE);-
290 goto err;
never executed: goto err;
0
291 }-
292 p = buf;-
293 if (BIO_read(in, buf, length) != (int)length) {
BIO_read(in, b...!= (int)lengthDescription
TRUEnever evaluated
FALSEnever evaluated
0
294 PEMerror(PEM_R_KEYBLOB_TOO_SHORT);-
295 goto err;
never executed: goto err;
0
296 }-
297-
298 if (isdss)
isdssDescription
TRUEnever evaluated
FALSEnever evaluated
0
299 ret = b2i_dss(&p, length, bitlen, ispub);
never executed: ret = b2i_dss(&p, length, bitlen, ispub);
0
300 else-
301 ret = b2i_rsa(&p, length, bitlen, ispub);
never executed: ret = b2i_rsa(&p, length, bitlen, ispub);
0
302-
303err:
code before this statement never executed: err:
0
304 free(buf);-
305 return ret;
never executed: return ret;
0
306}-
307-
308static EVP_PKEY *-
309b2i_dss(const unsigned char **in, unsigned int length, unsigned int bitlen,-
310 int ispub)-
311{-
312 const unsigned char *p = *in;-
313 EVP_PKEY *ret = NULL;-
314 DSA *dsa = NULL;-
315 BN_CTX *ctx = NULL;-
316 unsigned int nbyte;-
317-
318 nbyte = (bitlen + 7) >> 3;-
319-
320 dsa = DSA_new();-
321 ret = EVP_PKEY_new();-
322 if (!dsa || !ret)
!dsaDescription
TRUEnever evaluated
FALSEnever evaluated
!retDescription
TRUEnever evaluated
FALSEnever evaluated
0
323 goto memerr;
never executed: goto memerr;
0
324 if (!read_lebn(&p, nbyte, &dsa->p))
!read_lebn(&p, nbyte, &dsa->p)Description
TRUEnever evaluated
FALSEnever evaluated
0
325 goto memerr;
never executed: goto memerr;
0
326 if (!read_lebn(&p, 20, &dsa->q))
!read_lebn(&p, 20, &dsa->q)Description
TRUEnever evaluated
FALSEnever evaluated
0
327 goto memerr;
never executed: goto memerr;
0
328 if (!read_lebn(&p, nbyte, &dsa->g))
!read_lebn(&p, nbyte, &dsa->g)Description
TRUEnever evaluated
FALSEnever evaluated
0
329 goto memerr;
never executed: goto memerr;
0
330 if (ispub) {
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
331 if (!read_lebn(&p, nbyte, &dsa->pub_key))
!read_lebn(&p,...&dsa->pub_key)Description
TRUEnever evaluated
FALSEnever evaluated
0
332 goto memerr;
never executed: goto memerr;
0
333 } else {
never executed: end of block
0
334 if (!read_lebn(&p, 20, &dsa->priv_key))
!read_lebn(&p,...dsa->priv_key)Description
TRUEnever evaluated
FALSEnever evaluated
0
335 goto memerr;
never executed: goto memerr;
0
336 /* Calculate public key */-
337 if (!(dsa->pub_key = BN_new()))
!(dsa->pub_key = BN_new())Description
TRUEnever evaluated
FALSEnever evaluated
0
338 goto memerr;
never executed: goto memerr;
0
339 if (!(ctx = BN_CTX_new()))
!(ctx = BN_CTX_new())Description
TRUEnever evaluated
FALSEnever evaluated
0
340 goto memerr;
never executed: goto memerr;
0
341 if (!BN_mod_exp_ct(dsa->pub_key, dsa->g,
!BN_mod_exp_ct..., dsa->p, ctx)Description
TRUEnever evaluated
FALSEnever evaluated
0
342 dsa->priv_key, dsa->p, ctx))
!BN_mod_exp_ct..., dsa->p, ctx)Description
TRUEnever evaluated
FALSEnever evaluated
0
343 goto memerr;
never executed: goto memerr;
0
344 BN_CTX_free(ctx);-
345 }
never executed: end of block
0
346-
347 EVP_PKEY_set1_DSA(ret, dsa);-
348 DSA_free(dsa);-
349 *in = p;-
350 return ret;
never executed: return ret;
0
351-
352memerr:-
353 PEMerror(ERR_R_MALLOC_FAILURE);-
354 DSA_free(dsa);-
355 EVP_PKEY_free(ret);-
356 BN_CTX_free(ctx);-
357 return NULL;
never executed: return ((void *)0) ;
0
358}-
359-
360static EVP_PKEY *-
361b2i_rsa(const unsigned char **in, unsigned int length, unsigned int bitlen,-
362 int ispub)-
363{-
364 const unsigned char *p = *in;-
365 EVP_PKEY *ret = NULL;-
366 RSA *rsa = NULL;-
367 unsigned int nbyte, hnbyte;-
368-
369 nbyte = (bitlen + 7) >> 3;-
370 hnbyte = (bitlen + 15) >> 4;-
371 rsa = RSA_new();-
372 ret = EVP_PKEY_new();-
373 if (!rsa || !ret)
!rsaDescription
TRUEnever evaluated
FALSEnever evaluated
!retDescription
TRUEnever evaluated
FALSEnever evaluated
0
374 goto memerr;
never executed: goto memerr;
0
375 rsa->e = BN_new();-
376 if (!rsa->e)
!rsa->eDescription
TRUEnever evaluated
FALSEnever evaluated
0
377 goto memerr;
never executed: goto memerr;
0
378 if (!BN_set_word(rsa->e, read_ledword(&p)))
!BN_set_word(r...d_ledword(&p))Description
TRUEnever evaluated
FALSEnever evaluated
0
379 goto memerr;
never executed: goto memerr;
0
380 if (!read_lebn(&p, nbyte, &rsa->n))
!read_lebn(&p, nbyte, &rsa->n)Description
TRUEnever evaluated
FALSEnever evaluated
0
381 goto memerr;
never executed: goto memerr;
0
382 if (!ispub) {
!ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
383 if (!read_lebn(&p, hnbyte, &rsa->p))
!read_lebn(&p,...byte, &rsa->p)Description
TRUEnever evaluated
FALSEnever evaluated
0
384 goto memerr;
never executed: goto memerr;
0
385 if (!read_lebn(&p, hnbyte, &rsa->q))
!read_lebn(&p,...byte, &rsa->q)Description
TRUEnever evaluated
FALSEnever evaluated
0
386 goto memerr;
never executed: goto memerr;
0
387 if (!read_lebn(&p, hnbyte, &rsa->dmp1))
!read_lebn(&p,...e, &rsa->dmp1)Description
TRUEnever evaluated
FALSEnever evaluated
0
388 goto memerr;
never executed: goto memerr;
0
389 if (!read_lebn(&p, hnbyte, &rsa->dmq1))
!read_lebn(&p,...e, &rsa->dmq1)Description
TRUEnever evaluated
FALSEnever evaluated
0
390 goto memerr;
never executed: goto memerr;
0
391 if (!read_lebn(&p, hnbyte, &rsa->iqmp))
!read_lebn(&p,...e, &rsa->iqmp)Description
TRUEnever evaluated
FALSEnever evaluated
0
392 goto memerr;
never executed: goto memerr;
0
393 if (!read_lebn(&p, nbyte, &rsa->d))
!read_lebn(&p, nbyte, &rsa->d)Description
TRUEnever evaluated
FALSEnever evaluated
0
394 goto memerr;
never executed: goto memerr;
0
395 }
never executed: end of block
0
396-
397 EVP_PKEY_set1_RSA(ret, rsa);-
398 RSA_free(rsa);-
399 *in = p;-
400 return ret;
never executed: return ret;
0
401-
402memerr:-
403 PEMerror(ERR_R_MALLOC_FAILURE);-
404 RSA_free(rsa);-
405 EVP_PKEY_free(ret);-
406 return NULL;
never executed: return ((void *)0) ;
0
407}-
408-
409EVP_PKEY *-
410b2i_PrivateKey(const unsigned char **in, long length)-
411{-
412 return do_b2i(in, length, 0);
never executed: return do_b2i(in, length, 0);
0
413}-
414-
415EVP_PKEY *-
416b2i_PublicKey(const unsigned char **in, long length)-
417{-
418 return do_b2i(in, length, 1);
never executed: return do_b2i(in, length, 1);
0
419}-
420-
421EVP_PKEY *-
422b2i_PrivateKey_bio(BIO *in)-
423{-
424 return do_b2i_bio(in, 0);
never executed: return do_b2i_bio(in, 0);
0
425}-
426-
427EVP_PKEY *-
428b2i_PublicKey_bio(BIO *in)-
429{-
430 return do_b2i_bio(in, 1);
never executed: return do_b2i_bio(in, 1);
0
431}-
432-
433static void-
434write_ledword(unsigned char **out, unsigned int dw)-
435{-
436 unsigned char *p = *out;-
437-
438 *p++ = dw & 0xff;-
439 *p++ = (dw >> 8) & 0xff;-
440 *p++ = (dw >> 16) & 0xff;-
441 *p++ = (dw >> 24) & 0xff;-
442 *out = p;-
443}
never executed: end of block
0
444-
445static void-
446write_lebn(unsigned char **out, const BIGNUM *bn, int len)-
447{-
448 int nb, i;-
449 unsigned char *p = *out, *q, c;-
450-
451 nb = BN_num_bytes(bn);-
452 BN_bn2bin(bn, p);-
453 q = p + nb - 1;-
454 /* In place byte order reversal */-
455 for (i = 0; i < nb / 2; i++) {
i < nb / 2Description
TRUEnever evaluated
FALSEnever evaluated
0
456 c = *p;-
457 *p++ = *q;-
458 *q-- = c;-
459 }
never executed: end of block
0
460 *out += nb;-
461 /* Pad with zeroes if we have to */-
462 if (len > 0) {
len > 0Description
TRUEnever evaluated
FALSEnever evaluated
0
463 len -= nb;-
464 if (len > 0) {
len > 0Description
TRUEnever evaluated
FALSEnever evaluated
0
465 memset(*out, 0, len);-
466 *out += len;-
467 }
never executed: end of block
0
468 }
never executed: end of block
0
469}
never executed: end of block
0
470-
471-
472static int check_bitlen_rsa(RSA *rsa, int ispub, unsigned int *magic);-
473static int check_bitlen_dsa(DSA *dsa, int ispub, unsigned int *magic);-
474-
475static void write_rsa(unsigned char **out, RSA *rsa, int ispub);-
476static void write_dsa(unsigned char **out, DSA *dsa, int ispub);-
477-
478static int-
479do_i2b(unsigned char **out, EVP_PKEY *pk, int ispub)-
480{-
481 unsigned char *p;-
482 unsigned int bitlen, magic = 0, keyalg;-
483 int outlen, noinc = 0;-
484-
485 if (pk->type == EVP_PKEY_DSA) {
pk->type == 116Description
TRUEnever evaluated
FALSEnever evaluated
0
486 bitlen = check_bitlen_dsa(pk->pkey.dsa, ispub, &magic);-
487 keyalg = MS_KEYALG_DSS_SIGN;-
488 } else if (pk->type == EVP_PKEY_RSA) {
never executed: end of block
pk->type == 6Description
TRUEnever evaluated
FALSEnever evaluated
0
489 bitlen = check_bitlen_rsa(pk->pkey.rsa, ispub, &magic);-
490 keyalg = MS_KEYALG_RSA_KEYX;-
491 } else
never executed: end of block
0
492 return -1;
never executed: return -1;
0
493 if (bitlen == 0)
bitlen == 0Description
TRUEnever evaluated
FALSEnever evaluated
0
494 return -1;
never executed: return -1;
0
495 outlen = 16 + blob_length(bitlen,-
496 keyalg == MS_KEYALG_DSS_SIGN ? 1 : 0, ispub);-
497 if (out == NULL)
out == ((void *)0)Description
TRUEnever evaluated
FALSEnever evaluated
0
498 return outlen;
never executed: return outlen;
0
499 if (*out)
*outDescription
TRUEnever evaluated
FALSEnever evaluated
0
500 p = *out;
never executed: p = *out;
0
501 else {-
502 p = malloc(outlen);-
503 if (!p)
!pDescription
TRUEnever evaluated
FALSEnever evaluated
0
504 return -1;
never executed: return -1;
0
505 *out = p;-
506 noinc = 1;-
507 }
never executed: end of block
0
508 if (ispub)
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
509 *p++ = MS_PUBLICKEYBLOB;
never executed: *p++ = 0x6;
0
510 else-
511 *p++ = MS_PRIVATEKEYBLOB;
never executed: *p++ = 0x7;
0
512 *p++ = 0x2;-
513 *p++ = 0;-
514 *p++ = 0;-
515 write_ledword(&p, keyalg);-
516 write_ledword(&p, magic);-
517 write_ledword(&p, bitlen);-
518 if (keyalg == MS_KEYALG_DSS_SIGN)
keyalg == 0x2200Description
TRUEnever evaluated
FALSEnever evaluated
0
519 write_dsa(&p, pk->pkey.dsa, ispub);
never executed: write_dsa(&p, pk->pkey.dsa, ispub);
0
520 else-
521 write_rsa(&p, pk->pkey.rsa, ispub);
never executed: write_rsa(&p, pk->pkey.rsa, ispub);
0
522 if (!noinc)
!noincDescription
TRUEnever evaluated
FALSEnever evaluated
0
523 *out += outlen;
never executed: *out += outlen;
0
524 return outlen;
never executed: return outlen;
0
525}-
526-
527static int-
528do_i2b_bio(BIO *out, EVP_PKEY *pk, int ispub)-
529{-
530 unsigned char *tmp = NULL;-
531 int outlen, wrlen;-
532-
533 outlen = do_i2b(&tmp, pk, ispub);-
534 if (outlen < 0)
outlen < 0Description
TRUEnever evaluated
FALSEnever evaluated
0
535 return -1;
never executed: return -1;
0
536 wrlen = BIO_write(out, tmp, outlen);-
537 free(tmp);-
538 if (wrlen == outlen)
wrlen == outlenDescription
TRUEnever evaluated
FALSEnever evaluated
0
539 return outlen;
never executed: return outlen;
0
540 return -1;
never executed: return -1;
0
541}-
542-
543static int-
544check_bitlen_dsa(DSA *dsa, int ispub, unsigned int *pmagic)-
545{-
546 int bitlen;-
547-
548 bitlen = BN_num_bits(dsa->p);-
549 if ((bitlen & 7) || (BN_num_bits(dsa->q) != 160) ||
(bitlen & 7)Description
TRUEnever evaluated
FALSEnever evaluated
(BN_num_bits(dsa->q) != 160)Description
TRUEnever evaluated
FALSEnever evaluated
0
550 (BN_num_bits(dsa->g) > bitlen))
(BN_num_bits(dsa->g) > bitlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
551 goto badkey;
never executed: goto badkey;
0
552 if (ispub) {
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
553 if (BN_num_bits(dsa->pub_key) > bitlen)
BN_num_bits(ds..._key) > bitlenDescription
TRUEnever evaluated
FALSEnever evaluated
0
554 goto badkey;
never executed: goto badkey;
0
555 *pmagic = MS_DSS1MAGIC;-
556 } else {
never executed: end of block
0
557 if (BN_num_bits(dsa->priv_key) > 160)
BN_num_bits(ds...riv_key) > 160Description
TRUEnever evaluated
FALSEnever evaluated
0
558 goto badkey;
never executed: goto badkey;
0
559 *pmagic = MS_DSS2MAGIC;-
560 }
never executed: end of block
0
561-
562 return bitlen;
never executed: return bitlen;
0
563-
564badkey:-
565 PEMerror(PEM_R_UNSUPPORTED_KEY_COMPONENTS);-
566 return 0;
never executed: return 0;
0
567}-
568-
569static int-
570check_bitlen_rsa(RSA *rsa, int ispub, unsigned int *pmagic)-
571{-
572 int nbyte, hnbyte, bitlen;-
573-
574 if (BN_num_bits(rsa->e) > 32)
BN_num_bits(rsa->e) > 32Description
TRUEnever evaluated
FALSEnever evaluated
0
575 goto badkey;
never executed: goto badkey;
0
576 bitlen = BN_num_bits(rsa->n);-
577 nbyte = BN_num_bytes(rsa->n);-
578 hnbyte = (BN_num_bits(rsa->n) + 15) >> 4;-
579 if (ispub) {
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
580 *pmagic = MS_RSA1MAGIC;-
581 return bitlen;
never executed: return bitlen;
0
582 } else {-
583 *pmagic = MS_RSA2MAGIC;-
584 /* For private key each component must fit within nbyte or-
585 * hnbyte.-
586 */-
587 if (BN_num_bytes(rsa->d) > nbyte)
((BN_num_bits(...+7)/8) > nbyteDescription
TRUEnever evaluated
FALSEnever evaluated
0
588 goto badkey;
never executed: goto badkey;
0
589 if ((BN_num_bytes(rsa->iqmp) > hnbyte) ||
(((BN_num_bits...)/8) > hnbyte)Description
TRUEnever evaluated
FALSEnever evaluated
0
590 (BN_num_bytes(rsa->p) > hnbyte) ||
(((BN_num_bits...)/8) > hnbyte)Description
TRUEnever evaluated
FALSEnever evaluated
0
591 (BN_num_bytes(rsa->q) > hnbyte) ||
(((BN_num_bits...)/8) > hnbyte)Description
TRUEnever evaluated
FALSEnever evaluated
0
592 (BN_num_bytes(rsa->dmp1) > hnbyte) ||
(((BN_num_bits...)/8) > hnbyte)Description
TRUEnever evaluated
FALSEnever evaluated
0
593 (BN_num_bytes(rsa->dmq1) > hnbyte))
(((BN_num_bits...)/8) > hnbyte)Description
TRUEnever evaluated
FALSEnever evaluated
0
594 goto badkey;
never executed: goto badkey;
0
595 }
never executed: end of block
0
596 return bitlen;
never executed: return bitlen;
0
597-
598badkey:-
599 PEMerror(PEM_R_UNSUPPORTED_KEY_COMPONENTS);-
600 return 0;
never executed: return 0;
0
601}-
602-
603static void-
604write_rsa(unsigned char **out, RSA *rsa, int ispub)-
605{-
606 int nbyte, hnbyte;-
607-
608 nbyte = BN_num_bytes(rsa->n);-
609 hnbyte = (BN_num_bits(rsa->n) + 15) >> 4;-
610 write_lebn(out, rsa->e, 4);-
611 write_lebn(out, rsa->n, -1);-
612 if (ispub)
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
613 return;
never executed: return;
0
614 write_lebn(out, rsa->p, hnbyte);-
615 write_lebn(out, rsa->q, hnbyte);-
616 write_lebn(out, rsa->dmp1, hnbyte);-
617 write_lebn(out, rsa->dmq1, hnbyte);-
618 write_lebn(out, rsa->iqmp, hnbyte);-
619 write_lebn(out, rsa->d, nbyte);-
620}
never executed: end of block
0
621-
622static void-
623write_dsa(unsigned char **out, DSA *dsa, int ispub)-
624{-
625 int nbyte;-
626-
627 nbyte = BN_num_bytes(dsa->p);-
628 write_lebn(out, dsa->p, nbyte);-
629 write_lebn(out, dsa->q, 20);-
630 write_lebn(out, dsa->g, nbyte);-
631 if (ispub)
ispubDescription
TRUEnever evaluated
FALSEnever evaluated
0
632 write_lebn(out, dsa->pub_key, nbyte);
never executed: write_lebn(out, dsa->pub_key, nbyte);
0
633 else-
634 write_lebn(out, dsa->priv_key, 20);
never executed: write_lebn(out, dsa->priv_key, 20);
0
635 /* Set "invalid" for seed structure values */-
636 memset(*out, 0xff, 24);-
637 *out += 24;-
638 return;
never executed: return;
0
639}-
640-
641int-
642i2b_PrivateKey_bio(BIO *out, EVP_PKEY *pk)-
643{-
644 return do_i2b_bio(out, pk, 0);
never executed: return do_i2b_bio(out, pk, 0);
0
645}-
646-
647int-
648i2b_PublicKey_bio(BIO *out, EVP_PKEY *pk)-
649{-
650 return do_i2b_bio(out, pk, 1);
never executed: return do_i2b_bio(out, pk, 1);
0
651}-
652-
653#ifndef OPENSSL_NO_RC4-
654-
655static int-
656do_PVK_header(const unsigned char **in, unsigned int length, int skip_magic,-
657 unsigned int *psaltlen, unsigned int *pkeylen)-
658{-
659 const unsigned char *p = *in;-
660 unsigned int pvk_magic, is_encrypted;-
661-
662 if (skip_magic) {
skip_magicDescription
TRUEnever evaluated
FALSEnever evaluated
0
663 if (length < 20) {
length < 20Description
TRUEnever evaluated
FALSEnever evaluated
0
664 PEMerror(PEM_R_PVK_TOO_SHORT);-
665 return 0;
never executed: return 0;
0
666 }-
667 length -= 20;-
668 } else {
never executed: end of block
0
669 if (length < 24) {
length < 24Description
TRUEnever evaluated
FALSEnever evaluated
0
670 PEMerror(PEM_R_PVK_TOO_SHORT);-
671 return 0;
never executed: return 0;
0
672 }-
673 length -= 24;-
674 pvk_magic = read_ledword(&p);-
675 if (pvk_magic != MS_PVKMAGIC) {
pvk_magic != 0xb0b5f11eLDescription
TRUEnever evaluated
FALSEnever evaluated
0
676 PEMerror(PEM_R_BAD_MAGIC_NUMBER);-
677 return 0;
never executed: return 0;
0
678 }-
679 }
never executed: end of block
0
680 /* Skip reserved */-
681 p += 4;-
682 /*keytype = */read_ledword(&p);-
683 is_encrypted = read_ledword(&p);-
684 *psaltlen = read_ledword(&p);-
685 *pkeylen = read_ledword(&p);-
686 if (*psaltlen > 65536 || *pkeylen > 65536) {
*psaltlen > 65536Description
TRUEnever evaluated
FALSEnever evaluated
*pkeylen > 65536Description
TRUEnever evaluated
FALSEnever evaluated
0
687 PEMerror(PEM_R_ERROR_CONVERTING_PRIVATE_KEY);-
688 return 0;
never executed: return 0;
0
689 }-
690-
691 if (is_encrypted && !*psaltlen) {
is_encryptedDescription
TRUEnever evaluated
FALSEnever evaluated
!*psaltlenDescription
TRUEnever evaluated
FALSEnever evaluated
0
692 PEMerror(PEM_R_INCONSISTENT_HEADER);-
693 return 0;
never executed: return 0;
0
694 }-
695-
696 *in = p;-
697 return 1;
never executed: return 1;
0
698}-
699-
700static int-
701derive_pvk_key(unsigned char *key, const unsigned char *salt,-
702 unsigned int saltlen, const unsigned char *pass, int passlen)-
703{-
704 EVP_MD_CTX mctx;-
705 int rv = 1;-
706-
707 EVP_MD_CTX_init(&mctx);-
708 if (!EVP_DigestInit_ex(&mctx, EVP_sha1(), NULL) ||
!EVP_DigestIni... ((void *)0) )Description
TRUEnever evaluated
FALSEnever evaluated
0
709 !EVP_DigestUpdate(&mctx, salt, saltlen) ||
!EVP_DigestUpd...salt, saltlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
710 !EVP_DigestUpdate(&mctx, pass, passlen) ||
!EVP_DigestUpd...pass, passlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
711 !EVP_DigestFinal_ex(&mctx, key, NULL))
!EVP_DigestFin... ((void *)0) )Description
TRUEnever evaluated
FALSEnever evaluated
0
712 rv = 0;
never executed: rv = 0;
0
713-
714 EVP_MD_CTX_cleanup(&mctx);-
715 return rv;
never executed: return rv;
0
716}-
717-
718static EVP_PKEY *-
719do_PVK_body(const unsigned char **in, unsigned int saltlen,-
720 unsigned int keylen, pem_password_cb *cb, void *u)-
721{-
722 EVP_PKEY *ret = NULL;-
723 const unsigned char *p = *in;-
724 unsigned int magic;-
725 unsigned char *enctmp = NULL, *q;-
726 EVP_CIPHER_CTX cctx;-
727-
728 EVP_CIPHER_CTX_init(&cctx);-
729 if (saltlen) {
saltlenDescription
TRUEnever evaluated
FALSEnever evaluated
0
730 char psbuf[PEM_BUFSIZE];-
731 unsigned char keybuf[20];-
732 int enctmplen, inlen;-
733-
734 if (cb)
cbDescription
TRUEnever evaluated
FALSEnever evaluated
0
735 inlen = cb(psbuf, PEM_BUFSIZE, 0, u);
never executed: inlen = cb(psbuf, 1024, 0, u);
0
736 else-
737 inlen = PEM_def_callback(psbuf, PEM_BUFSIZE, 0, u);
never executed: inlen = PEM_def_callback(psbuf, 1024, 0, u);
0
738 if (inlen <= 0) {
inlen <= 0Description
TRUEnever evaluated
FALSEnever evaluated
0
739 PEMerror(PEM_R_BAD_PASSWORD_READ);-
740 goto err;
never executed: goto err;
0
741 }-
742 enctmp = malloc(keylen + 8);-
743 if (!enctmp) {
!enctmpDescription
TRUEnever evaluated
FALSEnever evaluated
0
744 PEMerror(ERR_R_MALLOC_FAILURE);-
745 goto err;
never executed: goto err;
0
746 }-
747 if (!derive_pvk_key(keybuf, p, saltlen, (unsigned char *)psbuf,
!derive_pvk_ke...)psbuf, inlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
748 inlen)) {
!derive_pvk_ke...)psbuf, inlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
749 goto err;
never executed: goto err;
0
750 }-
751 p += saltlen;-
752 /* Copy BLOBHEADER across, decrypt rest */-
753 memcpy(enctmp, p, 8);-
754 p += 8;-
755 if (keylen < 8) {
keylen < 8Description
TRUEnever evaluated
FALSEnever evaluated
0
756 PEMerror(PEM_R_PVK_TOO_SHORT);-
757 goto err;
never executed: goto err;
0
758 }-
759 inlen = keylen - 8;-
760 q = enctmp + 8;-
761 if (!EVP_DecryptInit_ex(&cctx, EVP_rc4(), NULL, keybuf, NULL))
!EVP_DecryptIn... ((void *)0) )Description
TRUEnever evaluated
FALSEnever evaluated
0
762 goto err;
never executed: goto err;
0
763 if (!EVP_DecryptUpdate(&cctx, q, &enctmplen, p, inlen))
!EVP_DecryptUp...len, p, inlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
764 goto err;
never executed: goto err;
0
765 if (!EVP_DecryptFinal_ex(&cctx, q + enctmplen, &enctmplen))
!EVP_DecryptFi...n, &enctmplen)Description
TRUEnever evaluated
FALSEnever evaluated
0
766 goto err;
never executed: goto err;
0
767 magic = read_ledword((const unsigned char **)&q);-
768 if (magic != MS_RSA2MAGIC && magic != MS_DSS2MAGIC) {
magic != 0x32415352LDescription
TRUEnever evaluated
FALSEnever evaluated
magic != 0x32535344LDescription
TRUEnever evaluated
FALSEnever evaluated
0
769 q = enctmp + 8;-
770 memset(keybuf + 5, 0, 11);-
771 if (!EVP_DecryptInit_ex(&cctx, EVP_rc4(), NULL, keybuf,
!EVP_DecryptIn... ((void *)0) )Description
TRUEnever evaluated
FALSEnever evaluated
0
772 NULL))
!EVP_DecryptIn... ((void *)0) )Description
TRUEnever evaluated
FALSEnever evaluated
0
773 goto err;
never executed: goto err;
0
774 explicit_bzero(keybuf, 20);-
775 if (!EVP_DecryptUpdate(&cctx, q, &enctmplen, p, inlen))
!EVP_DecryptUp...len, p, inlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
776 goto err;
never executed: goto err;
0
777 if (!EVP_DecryptFinal_ex(&cctx, q + enctmplen,
!EVP_DecryptFi...n, &enctmplen)Description
TRUEnever evaluated
FALSEnever evaluated
0
778 &enctmplen))
!EVP_DecryptFi...n, &enctmplen)Description
TRUEnever evaluated
FALSEnever evaluated
0
779 goto err;
never executed: goto err;
0
780 magic = read_ledword((const unsigned char **)&q);-
781 if (magic != MS_RSA2MAGIC && magic != MS_DSS2MAGIC) {
magic != 0x32415352LDescription
TRUEnever evaluated
FALSEnever evaluated
magic != 0x32535344LDescription
TRUEnever evaluated
FALSEnever evaluated
0
782 PEMerror(PEM_R_BAD_DECRYPT);-
783 goto err;
never executed: goto err;
0
784 }-
785 } else
never executed: end of block
0
786 explicit_bzero(keybuf, 20);
never executed: explicit_bzero(keybuf, 20);
0
787 p = enctmp;-
788 }
never executed: end of block
0
789-
790 ret = b2i_PrivateKey(&p, keylen);-
791-
792err:
code before this statement never executed: err:
0
793 EVP_CIPHER_CTX_cleanup(&cctx);-
794 if (enctmp && saltlen)
enctmpDescription
TRUEnever evaluated
FALSEnever evaluated
saltlenDescription
TRUEnever evaluated
FALSEnever evaluated
0
795 free(enctmp);
never executed: free(enctmp);
0
796 return ret;
never executed: return ret;
0
797}-
798-
799-
800EVP_PKEY *-
801b2i_PVK_bio(BIO *in, pem_password_cb *cb, void *u)-
802{-
803 unsigned char pvk_hdr[24], *buf = NULL;-
804 const unsigned char *p;-
805 size_t buflen;-
806 EVP_PKEY *ret = NULL;-
807 unsigned int saltlen, keylen;-
808-
809 if (BIO_read(in, pvk_hdr, 24) != 24) {
BIO_read(in, p...hdr, 24) != 24Description
TRUEnever evaluated
FALSEnever evaluated
0
810 PEMerror(PEM_R_PVK_DATA_TOO_SHORT);-
811 return NULL;
never executed: return ((void *)0) ;
0
812 }-
813 p = pvk_hdr;-
814-
815 if (!do_PVK_header(&p, 24, 0, &saltlen, &keylen))
!do_PVK_header...tlen, &keylen)Description
TRUEnever evaluated
FALSEnever evaluated
0
816 return 0;
never executed: return 0;
0
817 buflen = keylen + saltlen;-
818 buf = malloc(buflen);-
819 if (!buf) {
!bufDescription
TRUEnever evaluated
FALSEnever evaluated
0
820 PEMerror(ERR_R_MALLOC_FAILURE);-
821 return 0;
never executed: return 0;
0
822 }-
823 p = buf;-
824 if (BIO_read(in, buf, buflen) != buflen) {
BIO_read(in, b...len) != buflenDescription
TRUEnever evaluated
FALSEnever evaluated
0
825 PEMerror(PEM_R_PVK_DATA_TOO_SHORT);-
826 goto err;
never executed: goto err;
0
827 }-
828 ret = do_PVK_body(&p, saltlen, keylen, cb, u);-
829-
830err:
code before this statement never executed: err:
0
831 freezero(buf, buflen);-
832 return ret;
never executed: return ret;
0
833}-
834-
835static int-
836i2b_PVK(unsigned char **out, EVP_PKEY*pk, int enclevel, pem_password_cb *cb,-
837 void *u)-
838{-
839 int outlen = 24, pklen;-
840 unsigned char *p, *salt = NULL;-
841 EVP_CIPHER_CTX cctx;-
842-
843 EVP_CIPHER_CTX_init(&cctx);-
844 if (enclevel)
enclevelDescription
TRUEnever evaluated
FALSEnever evaluated
0
845 outlen += PVK_SALTLEN;
never executed: outlen += 0x10;
0
846 pklen = do_i2b(NULL, pk, 0);-
847 if (pklen < 0)
pklen < 0Description
TRUEnever evaluated
FALSEnever evaluated
0
848 return -1;
never executed: return -1;
0
849 outlen += pklen;-
850 p = malloc(outlen);-
851 if (!p) {
!pDescription
TRUEnever evaluated
FALSEnever evaluated
0
852 PEMerror(ERR_R_MALLOC_FAILURE);-
853 return -1;
never executed: return -1;
0
854 }-
855-
856 write_ledword(&p, MS_PVKMAGIC);-
857 write_ledword(&p, 0);-
858 if (pk->type == EVP_PKEY_DSA)
pk->type == 116Description
TRUEnever evaluated
FALSEnever evaluated
0
859 write_ledword(&p, MS_KEYTYPE_SIGN);
never executed: write_ledword(&p, 0x2);
0
860 else-
861 write_ledword(&p, MS_KEYTYPE_KEYX);
never executed: write_ledword(&p, 0x1);
0
862 write_ledword(&p, enclevel ? 1 : 0);-
863 write_ledword(&p, enclevel ? PVK_SALTLEN : 0);-
864 write_ledword(&p, pklen);-
865 if (enclevel) {
enclevelDescription
TRUEnever evaluated
FALSEnever evaluated
0
866 arc4random_buf(p, PVK_SALTLEN);-
867 salt = p;-
868 p += PVK_SALTLEN;-
869 }
never executed: end of block
0
870 do_i2b(&p, pk, 0);-
871 if (enclevel == 0) {
enclevel == 0Description
TRUEnever evaluated
FALSEnever evaluated
0
872 *out = p;-
873 return outlen;
never executed: return outlen;
0
874 } else {-
875 char psbuf[PEM_BUFSIZE];-
876 unsigned char keybuf[20];-
877 int enctmplen, inlen;-
878 if (cb)
cbDescription
TRUEnever evaluated
FALSEnever evaluated
0
879 inlen = cb(psbuf, PEM_BUFSIZE, 1, u);
never executed: inlen = cb(psbuf, 1024, 1, u);
0
880 else-
881 inlen = PEM_def_callback(psbuf, PEM_BUFSIZE, 1, u);
never executed: inlen = PEM_def_callback(psbuf, 1024, 1, u);
0
882 if (inlen <= 0) {
inlen <= 0Description
TRUEnever evaluated
FALSEnever evaluated
0
883 PEMerror(PEM_R_BAD_PASSWORD_READ);-
884 goto error;
never executed: goto error;
0
885 }-
886 if (!derive_pvk_key(keybuf, salt, PVK_SALTLEN,
!derive_pvk_ke...)psbuf, inlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
887 (unsigned char *)psbuf, inlen))
!derive_pvk_ke...)psbuf, inlen)Description
TRUEnever evaluated
FALSEnever evaluated
0
888 goto error;
never executed: goto error;
0
889 if (enclevel == 1)
enclevel == 1Description
TRUEnever evaluated
FALSEnever evaluated
0
890 memset(keybuf + 5, 0, 11);
never executed: memset(keybuf + 5, 0, 11);
0
891 p = salt + PVK_SALTLEN + 8;-
892 if (!EVP_EncryptInit_ex(&cctx, EVP_rc4(), NULL, keybuf, NULL))
!EVP_EncryptIn... ((void *)0) )Description
TRUEnever evaluated
FALSEnever evaluated
0
893 goto error;
never executed: goto error;
0
894 explicit_bzero(keybuf, 20);-
895 if (!EVP_DecryptUpdate(&cctx, p, &enctmplen, p, pklen - 8))
!EVP_DecryptUp... p, pklen - 8)Description
TRUEnever evaluated
FALSEnever evaluated
0
896 goto error;
never executed: goto error;
0
897 if (!EVP_DecryptFinal_ex(&cctx, p + enctmplen, &enctmplen))
!EVP_DecryptFi...n, &enctmplen)Description
TRUEnever evaluated
FALSEnever evaluated
0
898 goto error;
never executed: goto error;
0
899 }
never executed: end of block
0
900 EVP_CIPHER_CTX_cleanup(&cctx);-
901 *out = p;-
902 return outlen;
never executed: return outlen;
0
903-
904error:-
905 EVP_CIPHER_CTX_cleanup(&cctx);-
906 free(p);-
907 return -1;
never executed: return -1;
0
908}-
909-
910int-
911i2b_PVK_bio(BIO *out, EVP_PKEY *pk, int enclevel, pem_password_cb *cb, void *u)-
912{-
913 unsigned char *tmp = NULL;-
914 int outlen, wrlen;-
915-
916 outlen = i2b_PVK(&tmp, pk, enclevel, cb, u);-
917 if (outlen < 0)
outlen < 0Description
TRUEnever evaluated
FALSEnever evaluated
0
918 return -1;
never executed: return -1;
0
919 wrlen = BIO_write(out, tmp, outlen);-
920 free(tmp);-
921 if (wrlen == outlen) {
wrlen == outlenDescription
TRUEnever evaluated
FALSEnever evaluated
0
922 PEMerror(PEM_R_BIO_WRITE_FAILURE);-
923 return outlen;
never executed: return outlen;
0
924 }-
925 return -1;
never executed: return -1;
0
926}-
927-
928#endif-
929-
930#endif-
Source codeSwitch to Preprocessed file
Generated by Squish Coco 4.2.2