/src/openssl/crypto/asn1/p5_pbe.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* p5_pbe.c */ |
2 | | /* |
3 | | * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project |
4 | | * 1999. |
5 | | */ |
6 | | /* ==================================================================== |
7 | | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. |
8 | | * |
9 | | * Redistribution and use in source and binary forms, with or without |
10 | | * modification, are permitted provided that the following conditions |
11 | | * are met: |
12 | | * |
13 | | * 1. Redistributions of source code must retain the above copyright |
14 | | * notice, this list of conditions and the following disclaimer. |
15 | | * |
16 | | * 2. Redistributions in binary form must reproduce the above copyright |
17 | | * notice, this list of conditions and the following disclaimer in |
18 | | * the documentation and/or other materials provided with the |
19 | | * distribution. |
20 | | * |
21 | | * 3. All advertising materials mentioning features or use of this |
22 | | * software must display the following acknowledgment: |
23 | | * "This product includes software developed by the OpenSSL Project |
24 | | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" |
25 | | * |
26 | | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to |
27 | | * endorse or promote products derived from this software without |
28 | | * prior written permission. For written permission, please contact |
29 | | * licensing@OpenSSL.org. |
30 | | * |
31 | | * 5. Products derived from this software may not be called "OpenSSL" |
32 | | * nor may "OpenSSL" appear in their names without prior written |
33 | | * permission of the OpenSSL Project. |
34 | | * |
35 | | * 6. Redistributions of any form whatsoever must retain the following |
36 | | * acknowledgment: |
37 | | * "This product includes software developed by the OpenSSL Project |
38 | | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" |
39 | | * |
40 | | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY |
41 | | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
42 | | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR |
43 | | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR |
44 | | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
45 | | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
46 | | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; |
47 | | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
48 | | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, |
49 | | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
50 | | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
51 | | * OF THE POSSIBILITY OF SUCH DAMAGE. |
52 | | * ==================================================================== |
53 | | * |
54 | | * This product includes cryptographic software written by Eric Young |
55 | | * (eay@cryptsoft.com). This product includes software written by Tim |
56 | | * Hudson (tjh@cryptsoft.com). |
57 | | * |
58 | | */ |
59 | | |
60 | | #include <stdio.h> |
61 | | #include "cryptlib.h" |
62 | | #include <openssl/asn1t.h> |
63 | | #include <openssl/x509.h> |
64 | | #include <openssl/rand.h> |
65 | | |
66 | | /* PKCS#5 password based encryption structure */ |
67 | | |
68 | | ASN1_SEQUENCE(PBEPARAM) = { |
69 | | ASN1_SIMPLE(PBEPARAM, salt, ASN1_OCTET_STRING), |
70 | | ASN1_SIMPLE(PBEPARAM, iter, ASN1_INTEGER) |
71 | | } ASN1_SEQUENCE_END(PBEPARAM) |
72 | | |
73 | | IMPLEMENT_ASN1_FUNCTIONS(PBEPARAM) |
74 | | |
75 | | /* Set an algorithm identifier for a PKCS#5 PBE algorithm */ |
76 | | |
77 | | int PKCS5_pbe_set0_algor(X509_ALGOR *algor, int alg, int iter, |
78 | | const unsigned char *salt, int saltlen) |
79 | 0 | { |
80 | 0 | PBEPARAM *pbe = NULL; |
81 | 0 | ASN1_STRING *pbe_str = NULL; |
82 | 0 | unsigned char *sstr; |
83 | |
|
84 | 0 | pbe = PBEPARAM_new(); |
85 | 0 | if (!pbe) { |
86 | 0 | ASN1err(ASN1_F_PKCS5_PBE_SET0_ALGOR, ERR_R_MALLOC_FAILURE); |
87 | 0 | goto err; |
88 | 0 | } |
89 | 0 | if (iter <= 0) |
90 | 0 | iter = PKCS5_DEFAULT_ITER; |
91 | 0 | if (!ASN1_INTEGER_set(pbe->iter, iter)) { |
92 | 0 | ASN1err(ASN1_F_PKCS5_PBE_SET0_ALGOR, ERR_R_MALLOC_FAILURE); |
93 | 0 | goto err; |
94 | 0 | } |
95 | 0 | if (!saltlen) |
96 | 0 | saltlen = PKCS5_SALT_LEN; |
97 | 0 | if (!ASN1_STRING_set(pbe->salt, NULL, saltlen)) { |
98 | 0 | ASN1err(ASN1_F_PKCS5_PBE_SET0_ALGOR, ERR_R_MALLOC_FAILURE); |
99 | 0 | goto err; |
100 | 0 | } |
101 | 0 | sstr = ASN1_STRING_data(pbe->salt); |
102 | 0 | if (salt) |
103 | 0 | memcpy(sstr, salt, saltlen); |
104 | 0 | else if (RAND_bytes(sstr, saltlen) <= 0) |
105 | 0 | goto err; |
106 | | |
107 | 0 | if (!ASN1_item_pack(pbe, ASN1_ITEM_rptr(PBEPARAM), &pbe_str)) { |
108 | 0 | ASN1err(ASN1_F_PKCS5_PBE_SET0_ALGOR, ERR_R_MALLOC_FAILURE); |
109 | 0 | goto err; |
110 | 0 | } |
111 | | |
112 | 0 | PBEPARAM_free(pbe); |
113 | 0 | pbe = NULL; |
114 | |
|
115 | 0 | if (X509_ALGOR_set0(algor, OBJ_nid2obj(alg), V_ASN1_SEQUENCE, pbe_str)) |
116 | 0 | return 1; |
117 | | |
118 | 0 | err: |
119 | 0 | if (pbe != NULL) |
120 | 0 | PBEPARAM_free(pbe); |
121 | 0 | if (pbe_str != NULL) |
122 | 0 | ASN1_STRING_free(pbe_str); |
123 | 0 | return 0; |
124 | 0 | } |
125 | | |
126 | | /* Return an algorithm identifier for a PKCS#5 PBE algorithm */ |
127 | | |
128 | | X509_ALGOR *PKCS5_pbe_set(int alg, int iter, |
129 | | const unsigned char *salt, int saltlen) |
130 | 0 | { |
131 | 0 | X509_ALGOR *ret; |
132 | 0 | ret = X509_ALGOR_new(); |
133 | 0 | if (!ret) { |
134 | 0 | ASN1err(ASN1_F_PKCS5_PBE_SET, ERR_R_MALLOC_FAILURE); |
135 | 0 | return NULL; |
136 | 0 | } |
137 | | |
138 | 0 | if (PKCS5_pbe_set0_algor(ret, alg, iter, salt, saltlen)) |
139 | 0 | return ret; |
140 | | |
141 | 0 | X509_ALGOR_free(ret); |
142 | 0 | return NULL; |
143 | 0 | } |