Home | History | Annotate | Download | only in pem
      1 /* Copyright (C) 1995-1998 Eric Young (eay (at) cryptsoft.com)
      2  * All rights reserved.
      3  *
      4  * This package is an SSL implementation written
      5  * by Eric Young (eay (at) cryptsoft.com).
      6  * The implementation was written so as to conform with Netscapes SSL.
      7  *
      8  * This library is free for commercial and non-commercial use as long as
      9  * the following conditions are aheared to.  The following conditions
     10  * apply to all code found in this distribution, be it the RC4, RSA,
     11  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
     12  * included with this distribution is covered by the same copyright terms
     13  * except that the holder is Tim Hudson (tjh (at) cryptsoft.com).
     14  *
     15  * Copyright remains Eric Young's, and as such any Copyright notices in
     16  * the code are not to be removed.
     17  * If this package is used in a product, Eric Young should be given attribution
     18  * as the author of the parts of the library used.
     19  * This can be in the form of a textual message at program startup or
     20  * in documentation (online or textual) provided with the package.
     21  *
     22  * Redistribution and use in source and binary forms, with or without
     23  * modification, are permitted provided that the following conditions
     24  * are met:
     25  * 1. Redistributions of source code must retain the copyright
     26  *    notice, this list of conditions and the following disclaimer.
     27  * 2. Redistributions in binary form must reproduce the above copyright
     28  *    notice, this list of conditions and the following disclaimer in the
     29  *    documentation and/or other materials provided with the distribution.
     30  * 3. All advertising materials mentioning features or use of this software
     31  *    must display the following acknowledgement:
     32  *    "This product includes cryptographic software written by
     33  *     Eric Young (eay (at) cryptsoft.com)"
     34  *    The word 'cryptographic' can be left out if the rouines from the library
     35  *    being used are not cryptographic related :-).
     36  * 4. If you include any Windows specific code (or a derivative thereof) from
     37  *    the apps directory (application code) you must include an acknowledgement:
     38  *    "This product includes software written by Tim Hudson (tjh (at) cryptsoft.com)"
     39  *
     40  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
     41  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
     42  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
     43  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
     44  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
     45  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
     46  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
     47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
     48  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
     49  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
     50  * SUCH DAMAGE.
     51  *
     52  * The licence and distribution terms for any publically available version or
     53  * derivative of this code cannot be changed.  i.e. this code cannot simply be
     54  * copied and put under another distribution licence
     55  * [including the GNU Public Licence.]
     56  */
     57 /* ====================================================================
     58  * Copyright (c) 1998-2002 The OpenSSL Project.  All rights reserved.
     59  *
     60  * Redistribution and use in source and binary forms, with or without
     61  * modification, are permitted provided that the following conditions
     62  * are met:
     63  *
     64  * 1. Redistributions of source code must retain the above copyright
     65  *    notice, this list of conditions and the following disclaimer.
     66  *
     67  * 2. Redistributions in binary form must reproduce the above copyright
     68  *    notice, this list of conditions and the following disclaimer in
     69  *    the documentation and/or other materials provided with the
     70  *    distribution.
     71  *
     72  * 3. All advertising materials mentioning features or use of this
     73  *    software must display the following acknowledgment:
     74  *    "This product includes software developed by the OpenSSL Project
     75  *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
     76  *
     77  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
     78  *    endorse or promote products derived from this software without
     79  *    prior written permission. For written permission, please contact
     80  *    openssl-core (at) openssl.org.
     81  *
     82  * 5. Products derived from this software may not be called "OpenSSL"
     83  *    nor may "OpenSSL" appear in their names without prior written
     84  *    permission of the OpenSSL Project.
     85  *
     86  * 6. Redistributions of any form whatsoever must retain the following
     87  *    acknowledgment:
     88  *    "This product includes software developed by the OpenSSL Project
     89  *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
     90  *
     91  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
     92  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
     93  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
     94  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
     95  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
     96  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
     97  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
     98  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
     99  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
    100  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
    101  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
    102  * OF THE POSSIBILITY OF SUCH DAMAGE.
    103  * ====================================================================
    104  *
    105  * This product includes cryptographic software written by Eric Young
    106  * (eay (at) cryptsoft.com).  This product includes software written by Tim
    107  * Hudson (tjh (at) cryptsoft.com). */
    108 
    109 #include <stdio.h>
    110 
    111 #include <openssl/bio.h>
    112 #include <openssl/dh.h>
    113 #include <openssl/dsa.h>
    114 #include <openssl/evp.h>
    115 #include <openssl/pem.h>
    116 /*#include <openssl/pkcs7.h> */
    117 #include <openssl/rsa.h>
    118 #include <openssl/x509.h>
    119 
    120 
    121 static RSA *pkey_get_rsa(EVP_PKEY *key, RSA **rsa);
    122 static DSA *pkey_get_dsa(EVP_PKEY *key, DSA **dsa);
    123 static EC_KEY *pkey_get_eckey(EVP_PKEY *key, EC_KEY **eckey);
    124 
    125 
    126 IMPLEMENT_PEM_rw(X509_REQ, X509_REQ, PEM_STRING_X509_REQ, X509_REQ)
    127 
    128 IMPLEMENT_PEM_write(X509_REQ_NEW, X509_REQ, PEM_STRING_X509_REQ_OLD, X509_REQ)
    129 
    130 IMPLEMENT_PEM_rw(X509_CRL, X509_CRL, PEM_STRING_X509_CRL, X509_CRL)
    131 
    132 
    133 
    134 /* We treat RSA or DSA private keys as a special case.
    135  *
    136  * For private keys we read in an EVP_PKEY structure with
    137  * PEM_read_bio_PrivateKey() and extract the relevant private
    138  * key: this means can handle "traditional" and PKCS#8 formats
    139  * transparently.
    140  */
    141 
    142 static RSA *pkey_get_rsa(EVP_PKEY *key, RSA **rsa)
    143 {
    144 	RSA *rtmp;
    145 	if(!key) return NULL;
    146 	rtmp = EVP_PKEY_get1_RSA(key);
    147 	EVP_PKEY_free(key);
    148 	if(!rtmp) return NULL;
    149 	if(rsa) {
    150 		RSA_free(*rsa);
    151 		*rsa = rtmp;
    152 	}
    153 	return rtmp;
    154 }
    155 
    156 RSA *PEM_read_bio_RSAPrivateKey(BIO *bp, RSA **rsa, pem_password_cb *cb,
    157 								void *u)
    158 {
    159 	EVP_PKEY *pktmp;
    160 	pktmp = PEM_read_bio_PrivateKey(bp, NULL, cb, u);
    161 	return pkey_get_rsa(pktmp, rsa);
    162 }
    163 
    164 #ifndef OPENSSL_NO_FP_API
    165 
    166 RSA *PEM_read_RSAPrivateKey(FILE *fp, RSA **rsa, pem_password_cb *cb,
    167 								void *u)
    168 {
    169 	EVP_PKEY *pktmp;
    170 	pktmp = PEM_read_PrivateKey(fp, NULL, cb, u);
    171 	return pkey_get_rsa(pktmp, rsa);
    172 }
    173 
    174 #endif
    175 
    176 IMPLEMENT_PEM_write_cb_const(RSAPrivateKey, RSA, PEM_STRING_RSA, RSAPrivateKey)
    177 
    178 IMPLEMENT_PEM_rw_const(RSAPublicKey, RSA, PEM_STRING_RSA_PUBLIC, RSAPublicKey)
    179 IMPLEMENT_PEM_rw(RSA_PUBKEY, RSA, PEM_STRING_PUBLIC, RSA_PUBKEY)
    180 
    181 #ifndef OPENSSL_NO_DSA
    182 
    183 static DSA *pkey_get_dsa(EVP_PKEY *key, DSA **dsa)
    184 {
    185 	DSA *dtmp;
    186 	if(!key) return NULL;
    187 	dtmp = EVP_PKEY_get1_DSA(key);
    188 	EVP_PKEY_free(key);
    189 	if(!dtmp) return NULL;
    190 	if(dsa) {
    191 		DSA_free(*dsa);
    192 		*dsa = dtmp;
    193 	}
    194 	return dtmp;
    195 }
    196 
    197 DSA *PEM_read_bio_DSAPrivateKey(BIO *bp, DSA **dsa, pem_password_cb *cb,
    198 								void *u)
    199 {
    200 	EVP_PKEY *pktmp;
    201 	pktmp = PEM_read_bio_PrivateKey(bp, NULL, cb, u);
    202 	return pkey_get_dsa(pktmp, dsa);	/* will free pktmp */
    203 }
    204 
    205 
    206 IMPLEMENT_PEM_write_cb_const(DSAPrivateKey, DSA, PEM_STRING_DSA, DSAPrivateKey)
    207 
    208 IMPLEMENT_PEM_rw(DSA_PUBKEY, DSA, PEM_STRING_PUBLIC, DSA_PUBKEY)
    209 
    210 #ifndef OPENSSL_NO_FP_API
    211 
    212 DSA *PEM_read_DSAPrivateKey(FILE *fp, DSA **dsa, pem_password_cb *cb,
    213 								void *u)
    214 {
    215 	EVP_PKEY *pktmp;
    216 	pktmp = PEM_read_PrivateKey(fp, NULL, cb, u);
    217 	return pkey_get_dsa(pktmp, dsa);	/* will free pktmp */
    218 }
    219 
    220 #endif
    221 
    222 IMPLEMENT_PEM_rw_const(DSAparams, DSA, PEM_STRING_DSAPARAMS, DSAparams)
    223 
    224 #endif
    225 
    226 
    227 static EC_KEY *pkey_get_eckey(EVP_PKEY *key, EC_KEY **eckey)
    228 {
    229 	EC_KEY *dtmp;
    230 	if(!key) return NULL;
    231 	dtmp = EVP_PKEY_get1_EC_KEY(key);
    232 	EVP_PKEY_free(key);
    233 	if(!dtmp) return NULL;
    234 	if(eckey)
    235 	{
    236  		EC_KEY_free(*eckey);
    237 		*eckey = dtmp;
    238 	}
    239 	return dtmp;
    240 }
    241 
    242 EC_KEY *PEM_read_bio_ECPrivateKey(BIO *bp, EC_KEY **key, pem_password_cb *cb,
    243 							void *u)
    244 {
    245 	EVP_PKEY *pktmp;
    246 	pktmp = PEM_read_bio_PrivateKey(bp, NULL, cb, u);
    247 	return pkey_get_eckey(pktmp, key);	/* will free pktmp */
    248 }
    249 
    250 IMPLEMENT_PEM_write_cb(ECPrivateKey, EC_KEY, PEM_STRING_ECPRIVATEKEY, ECPrivateKey)
    251 
    252 
    253 IMPLEMENT_PEM_rw(EC_PUBKEY, EC_KEY, PEM_STRING_PUBLIC, EC_PUBKEY)
    254 
    255 #ifndef OPENSSL_NO_FP_API
    256 
    257 EC_KEY *PEM_read_ECPrivateKey(FILE *fp, EC_KEY **eckey, pem_password_cb *cb,
    258  								void *u)
    259 {
    260 	EVP_PKEY *pktmp;
    261 	pktmp = PEM_read_PrivateKey(fp, NULL, cb, u);
    262 	return pkey_get_eckey(pktmp, eckey);	/* will free pktmp */
    263 }
    264 
    265 #endif
    266 
    267 
    268 
    269 IMPLEMENT_PEM_write_const(DHparams, DH, PEM_STRING_DHPARAMS, DHparams)
    270 
    271 IMPLEMENT_PEM_rw(PUBKEY, EVP_PKEY, PEM_STRING_PUBLIC, PUBKEY)
    272