/src/libressl/crypto/pem/pem_pk8.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* $OpenBSD: pem_pk8.c,v 1.14 2023/07/07 13:40:44 beck Exp $ */ |
2 | | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
3 | | * All rights reserved. |
4 | | * |
5 | | * This package is an SSL implementation written |
6 | | * by Eric Young (eay@cryptsoft.com). |
7 | | * The implementation was written so as to conform with Netscapes SSL. |
8 | | * |
9 | | * This library is free for commercial and non-commercial use as long as |
10 | | * the following conditions are aheared to. The following conditions |
11 | | * apply to all code found in this distribution, be it the RC4, RSA, |
12 | | * lhash, DES, etc., code; not just the SSL code. The SSL documentation |
13 | | * included with this distribution is covered by the same copyright terms |
14 | | * except that the holder is Tim Hudson (tjh@cryptsoft.com). |
15 | | * |
16 | | * Copyright remains Eric Young's, and as such any Copyright notices in |
17 | | * the code are not to be removed. |
18 | | * If this package is used in a product, Eric Young should be given attribution |
19 | | * as the author of the parts of the library used. |
20 | | * This can be in the form of a textual message at program startup or |
21 | | * in documentation (online or textual) provided with the package. |
22 | | * |
23 | | * Redistribution and use in source and binary forms, with or without |
24 | | * modification, are permitted provided that the following conditions |
25 | | * are met: |
26 | | * 1. Redistributions of source code must retain the copyright |
27 | | * notice, this list of conditions and the following disclaimer. |
28 | | * 2. Redistributions in binary form must reproduce the above copyright |
29 | | * notice, this list of conditions and the following disclaimer in the |
30 | | * documentation and/or other materials provided with the distribution. |
31 | | * 3. All advertising materials mentioning features or use of this software |
32 | | * must display the following acknowledgement: |
33 | | * "This product includes cryptographic software written by |
34 | | * Eric Young (eay@cryptsoft.com)" |
35 | | * The word 'cryptographic' can be left out if the rouines from the library |
36 | | * being used are not cryptographic related :-). |
37 | | * 4. If you include any Windows specific code (or a derivative thereof) from |
38 | | * the apps directory (application code) you must include an acknowledgement: |
39 | | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" |
40 | | * |
41 | | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND |
42 | | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
43 | | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
44 | | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE |
45 | | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
46 | | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS |
47 | | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
48 | | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT |
49 | | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY |
50 | | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF |
51 | | * SUCH DAMAGE. |
52 | | * |
53 | | * The licence and distribution terms for any publically available version or |
54 | | * derivative of this code cannot be changed. i.e. this code cannot simply be |
55 | | * copied and put under another distribution licence |
56 | | * [including the GNU Public Licence.] |
57 | | */ |
58 | | |
59 | | #include <stdio.h> |
60 | | #include <string.h> |
61 | | |
62 | | #include <openssl/buffer.h> |
63 | | #include <openssl/err.h> |
64 | | #include <openssl/evp.h> |
65 | | #include <openssl/objects.h> |
66 | | #include <openssl/pem.h> |
67 | | #include <openssl/pkcs12.h> |
68 | | #include <openssl/x509.h> |
69 | | |
70 | | static int do_pk8pkey(BIO *bp, EVP_PKEY *x, int isder, int nid, |
71 | | const EVP_CIPHER *enc, char *kstr, int klen, pem_password_cb *cb, void *u); |
72 | | static int do_pk8pkey_fp(FILE *bp, EVP_PKEY *x, int isder, int nid, |
73 | | const EVP_CIPHER *enc, char *kstr, int klen, pem_password_cb *cb, void *u); |
74 | | |
75 | | /* These functions write a private key in PKCS#8 format: it is a "drop in" |
76 | | * replacement for PEM_write_bio_PrivateKey() and friends. As usual if 'enc' |
77 | | * is NULL then it uses the unencrypted private key form. The 'nid' versions |
78 | | * uses PKCS#5 v1.5 PBE algorithms whereas the others use PKCS#5 v2.0. |
79 | | */ |
80 | | |
81 | | int |
82 | | PEM_write_bio_PKCS8PrivateKey_nid(BIO *bp, EVP_PKEY *x, int nid, char *kstr, |
83 | | int klen, pem_password_cb *cb, void *u) |
84 | 0 | { |
85 | 0 | return do_pk8pkey(bp, x, 0, nid, NULL, kstr, klen, cb, u); |
86 | 0 | } |
87 | | LCRYPTO_ALIAS(PEM_write_bio_PKCS8PrivateKey_nid); |
88 | | |
89 | | int |
90 | | PEM_write_bio_PKCS8PrivateKey(BIO *bp, EVP_PKEY *x, const EVP_CIPHER *enc, |
91 | | char *kstr, int klen, pem_password_cb *cb, void *u) |
92 | 0 | { |
93 | 0 | return do_pk8pkey(bp, x, 0, -1, enc, kstr, klen, cb, u); |
94 | 0 | } |
95 | | LCRYPTO_ALIAS(PEM_write_bio_PKCS8PrivateKey); |
96 | | |
97 | | int |
98 | | i2d_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY *x, const EVP_CIPHER *enc, |
99 | | char *kstr, int klen, pem_password_cb *cb, void *u) |
100 | 0 | { |
101 | 0 | return do_pk8pkey(bp, x, 1, -1, enc, kstr, klen, cb, u); |
102 | 0 | } |
103 | | LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_bio); |
104 | | |
105 | | int |
106 | | i2d_PKCS8PrivateKey_nid_bio(BIO *bp, EVP_PKEY *x, int nid, |
107 | | char *kstr, int klen, pem_password_cb *cb, void *u) |
108 | 0 | { |
109 | 0 | return do_pk8pkey(bp, x, 1, nid, NULL, kstr, klen, cb, u); |
110 | 0 | } |
111 | | LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_nid_bio); |
112 | | |
113 | | static int |
114 | | do_pk8pkey(BIO *bp, EVP_PKEY *x, int isder, int nid, const EVP_CIPHER *enc, |
115 | | char *kstr, int klen, pem_password_cb *cb, void *u) |
116 | 0 | { |
117 | 0 | X509_SIG *p8; |
118 | 0 | PKCS8_PRIV_KEY_INFO *p8inf; |
119 | 0 | char buf[PEM_BUFSIZE]; |
120 | 0 | int ret; |
121 | |
|
122 | 0 | if (!(p8inf = EVP_PKEY2PKCS8(x))) { |
123 | 0 | PEMerror(PEM_R_ERROR_CONVERTING_PRIVATE_KEY); |
124 | 0 | return 0; |
125 | 0 | } |
126 | 0 | if (enc || (nid != -1)) { |
127 | 0 | if (!kstr) { |
128 | 0 | if (!cb) |
129 | 0 | klen = PEM_def_callback(buf, PEM_BUFSIZE, 1, u); |
130 | 0 | else |
131 | 0 | klen = cb(buf, PEM_BUFSIZE, 1, u); |
132 | 0 | if (klen <= 0) { |
133 | 0 | PEMerror(PEM_R_READ_KEY); |
134 | 0 | PKCS8_PRIV_KEY_INFO_free(p8inf); |
135 | 0 | return 0; |
136 | 0 | } |
137 | | |
138 | 0 | kstr = buf; |
139 | 0 | } |
140 | 0 | p8 = PKCS8_encrypt(nid, enc, kstr, klen, NULL, 0, 0, p8inf); |
141 | 0 | if (kstr == buf) |
142 | 0 | explicit_bzero(buf, klen); |
143 | 0 | PKCS8_PRIV_KEY_INFO_free(p8inf); |
144 | 0 | if (isder) |
145 | 0 | ret = i2d_PKCS8_bio(bp, p8); |
146 | 0 | else |
147 | 0 | ret = PEM_write_bio_PKCS8(bp, p8); |
148 | 0 | X509_SIG_free(p8); |
149 | 0 | return ret; |
150 | 0 | } else { |
151 | 0 | if (isder) |
152 | 0 | ret = i2d_PKCS8_PRIV_KEY_INFO_bio(bp, p8inf); |
153 | 0 | else |
154 | 0 | ret = PEM_write_bio_PKCS8_PRIV_KEY_INFO(bp, p8inf); |
155 | 0 | PKCS8_PRIV_KEY_INFO_free(p8inf); |
156 | 0 | return ret; |
157 | 0 | } |
158 | 0 | } |
159 | | |
160 | | EVP_PKEY * |
161 | | d2i_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY **x, pem_password_cb *cb, void *u) |
162 | 0 | { |
163 | 0 | PKCS8_PRIV_KEY_INFO *p8inf = NULL; |
164 | 0 | X509_SIG *p8 = NULL; |
165 | 0 | int klen; |
166 | 0 | EVP_PKEY *ret; |
167 | 0 | char psbuf[PEM_BUFSIZE]; |
168 | |
|
169 | 0 | p8 = d2i_PKCS8_bio(bp, NULL); |
170 | 0 | if (!p8) |
171 | 0 | return NULL; |
172 | 0 | if (cb) |
173 | 0 | klen = cb(psbuf, PEM_BUFSIZE, 0, u); |
174 | 0 | else |
175 | 0 | klen = PEM_def_callback(psbuf, PEM_BUFSIZE, 0, u); |
176 | 0 | if (klen <= 0) { |
177 | 0 | PEMerror(PEM_R_BAD_PASSWORD_READ); |
178 | 0 | X509_SIG_free(p8); |
179 | 0 | return NULL; |
180 | 0 | } |
181 | 0 | p8inf = PKCS8_decrypt(p8, psbuf, klen); |
182 | 0 | X509_SIG_free(p8); |
183 | 0 | if (!p8inf) |
184 | 0 | return NULL; |
185 | 0 | ret = EVP_PKCS82PKEY(p8inf); |
186 | 0 | PKCS8_PRIV_KEY_INFO_free(p8inf); |
187 | 0 | if (!ret) |
188 | 0 | return NULL; |
189 | 0 | if (x) { |
190 | 0 | EVP_PKEY_free(*x); |
191 | 0 | *x = ret; |
192 | 0 | } |
193 | 0 | return ret; |
194 | 0 | } |
195 | | LCRYPTO_ALIAS(d2i_PKCS8PrivateKey_bio); |
196 | | |
197 | | |
198 | | int |
199 | | i2d_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY *x, const EVP_CIPHER *enc, |
200 | | char *kstr, int klen, pem_password_cb *cb, void *u) |
201 | 0 | { |
202 | 0 | return do_pk8pkey_fp(fp, x, 1, -1, enc, kstr, klen, cb, u); |
203 | 0 | } |
204 | | LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_fp); |
205 | | |
206 | | int |
207 | | i2d_PKCS8PrivateKey_nid_fp(FILE *fp, EVP_PKEY *x, int nid, char *kstr, |
208 | | int klen, pem_password_cb *cb, void *u) |
209 | 0 | { |
210 | 0 | return do_pk8pkey_fp(fp, x, 1, nid, NULL, kstr, klen, cb, u); |
211 | 0 | } |
212 | | LCRYPTO_ALIAS(i2d_PKCS8PrivateKey_nid_fp); |
213 | | |
214 | | int |
215 | | PEM_write_PKCS8PrivateKey_nid(FILE *fp, EVP_PKEY *x, int nid, char *kstr, |
216 | | int klen, pem_password_cb *cb, void *u) |
217 | 0 | { |
218 | 0 | return do_pk8pkey_fp(fp, x, 0, nid, NULL, kstr, klen, cb, u); |
219 | 0 | } |
220 | | LCRYPTO_ALIAS(PEM_write_PKCS8PrivateKey_nid); |
221 | | |
222 | | int |
223 | | PEM_write_PKCS8PrivateKey(FILE *fp, EVP_PKEY *x, const EVP_CIPHER *enc, |
224 | | char *kstr, int klen, pem_password_cb *cb, void *u) |
225 | 0 | { |
226 | 0 | return do_pk8pkey_fp(fp, x, 0, -1, enc, kstr, klen, cb, u); |
227 | 0 | } |
228 | | LCRYPTO_ALIAS(PEM_write_PKCS8PrivateKey); |
229 | | |
230 | | static int |
231 | | do_pk8pkey_fp(FILE *fp, EVP_PKEY *x, int isder, int nid, const EVP_CIPHER *enc, |
232 | | char *kstr, int klen, pem_password_cb *cb, void *u) |
233 | 0 | { |
234 | 0 | BIO *bp; |
235 | 0 | int ret; |
236 | |
|
237 | 0 | if (!(bp = BIO_new_fp(fp, BIO_NOCLOSE))) { |
238 | 0 | PEMerror(ERR_R_BUF_LIB); |
239 | 0 | return (0); |
240 | 0 | } |
241 | 0 | ret = do_pk8pkey(bp, x, isder, nid, enc, kstr, klen, cb, u); |
242 | 0 | BIO_free(bp); |
243 | 0 | return ret; |
244 | 0 | } |
245 | | |
246 | | EVP_PKEY * |
247 | | d2i_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY **x, pem_password_cb *cb, void *u) |
248 | 0 | { |
249 | 0 | BIO *bp; |
250 | 0 | EVP_PKEY *ret; |
251 | |
|
252 | 0 | if (!(bp = BIO_new_fp(fp, BIO_NOCLOSE))) { |
253 | 0 | PEMerror(ERR_R_BUF_LIB); |
254 | 0 | return NULL; |
255 | 0 | } |
256 | 0 | ret = d2i_PKCS8PrivateKey_bio(bp, x, cb, u); |
257 | 0 | BIO_free(bp); |
258 | 0 | return ret; |
259 | 0 | } |
260 | | LCRYPTO_ALIAS(d2i_PKCS8PrivateKey_fp); |
261 | | |
262 | | X509_SIG * |
263 | | PEM_read_PKCS8(FILE *fp, X509_SIG **x, pem_password_cb *cb, void *u) |
264 | 0 | { |
265 | 0 | return PEM_ASN1_read((d2i_of_void *)d2i_X509_SIG, PEM_STRING_PKCS8, fp, |
266 | 0 | (void **)x, cb, u); |
267 | 0 | } |
268 | | LCRYPTO_ALIAS(PEM_read_PKCS8); |
269 | | |
270 | | int |
271 | | PEM_write_PKCS8(FILE *fp, X509_SIG *x) |
272 | 0 | { |
273 | 0 | return PEM_ASN1_write((i2d_of_void *)i2d_X509_SIG, PEM_STRING_PKCS8, fp, |
274 | 0 | x, NULL, NULL, 0, NULL, NULL); |
275 | 0 | } |
276 | | LCRYPTO_ALIAS(PEM_write_PKCS8); |
277 | | |
278 | | X509_SIG * |
279 | | PEM_read_bio_PKCS8(BIO *bp, X509_SIG **x, pem_password_cb *cb, void *u) |
280 | 0 | { |
281 | 0 | return PEM_ASN1_read_bio((d2i_of_void *)d2i_X509_SIG, PEM_STRING_PKCS8, bp, |
282 | 0 | (void **)x, cb, u); |
283 | 0 | } |
284 | | LCRYPTO_ALIAS(PEM_read_bio_PKCS8); |
285 | | |
286 | | int |
287 | | PEM_write_bio_PKCS8(BIO *bp, X509_SIG *x) |
288 | 0 | { |
289 | 0 | return PEM_ASN1_write_bio((i2d_of_void *)i2d_X509_SIG, PEM_STRING_PKCS8, bp, |
290 | 0 | x, NULL, NULL, 0, NULL, NULL); |
291 | 0 | } |
292 | | LCRYPTO_ALIAS(PEM_write_bio_PKCS8); |
293 | | |
294 | | PKCS8_PRIV_KEY_INFO * |
295 | | PEM_read_PKCS8_PRIV_KEY_INFO(FILE *fp, PKCS8_PRIV_KEY_INFO **x, pem_password_cb *cb, void *u) |
296 | 0 | { |
297 | 0 | return PEM_ASN1_read((d2i_of_void *)d2i_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, fp, |
298 | 0 | (void **)x, cb, u); |
299 | 0 | } |
300 | | LCRYPTO_ALIAS(PEM_read_PKCS8_PRIV_KEY_INFO); |
301 | | |
302 | | int |
303 | | PEM_write_PKCS8_PRIV_KEY_INFO(FILE *fp, PKCS8_PRIV_KEY_INFO *x) |
304 | 0 | { |
305 | 0 | return PEM_ASN1_write((i2d_of_void *)i2d_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, fp, |
306 | 0 | x, NULL, NULL, 0, NULL, NULL); |
307 | 0 | } |
308 | | LCRYPTO_ALIAS(PEM_write_PKCS8_PRIV_KEY_INFO); |
309 | | |
310 | | PKCS8_PRIV_KEY_INFO * |
311 | | PEM_read_bio_PKCS8_PRIV_KEY_INFO(BIO *bp, PKCS8_PRIV_KEY_INFO **x, pem_password_cb *cb, void *u) |
312 | 0 | { |
313 | 0 | return PEM_ASN1_read_bio((d2i_of_void *)d2i_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, bp, |
314 | 0 | (void **)x, cb, u); |
315 | 0 | } |
316 | | LCRYPTO_ALIAS(PEM_read_bio_PKCS8_PRIV_KEY_INFO); |
317 | | |
318 | | int |
319 | | PEM_write_bio_PKCS8_PRIV_KEY_INFO(BIO *bp, PKCS8_PRIV_KEY_INFO *x) |
320 | 0 | { |
321 | 0 | return PEM_ASN1_write_bio((i2d_of_void *)i2d_PKCS8_PRIV_KEY_INFO, PEM_STRING_PKCS8INF, bp, |
322 | 0 | x, NULL, NULL, 0, NULL, NULL); |
323 | 0 | } |
324 | | LCRYPTO_ALIAS(PEM_write_bio_PKCS8_PRIV_KEY_INFO); |