2 /* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
66 #include <openssl/evp.h>
67 #include <openssl/x509.h>
68 #include <openssl/pem2.h>
70 #define PEM_BUFSIZE 1024
72 #define PEM_OBJ_UNDEF 0
73 #define PEM_OBJ_X509 1
74 #define PEM_OBJ_X509_REQ 2
76 #define PEM_OBJ_SSL_SESSION 4
77 #define PEM_OBJ_PRIV_KEY 10
78 #define PEM_OBJ_PRIV_RSA 11
79 #define PEM_OBJ_PRIV_DSA 12
80 #define PEM_OBJ_PRIV_DH 13
81 #define PEM_OBJ_PUB_RSA 14
82 #define PEM_OBJ_PUB_DSA 15
83 #define PEM_OBJ_PUB_DH 16
84 #define PEM_OBJ_DHPARAMS 17
85 #define PEM_OBJ_DSAPARAMS 18
86 #define PEM_OBJ_PRIV_RSA_PUBLIC 19
89 #define PEM_DEK_DES_CBC 40
90 #define PEM_DEK_IDEA_CBC 45
91 #define PEM_DEK_DES_EDE 50
92 #define PEM_DEK_DES_ECB 60
93 #define PEM_DEK_RSA 70
94 #define PEM_DEK_RSA_MD2 80
95 #define PEM_DEK_RSA_MD5 90
97 #define PEM_MD_MD2 NID_md2
98 #define PEM_MD_MD5 NID_md5
99 #define PEM_MD_SHA NID_sha
100 #define PEM_MD_MD2_RSA NID_md2WithRSAEncryption
101 #define PEM_MD_MD5_RSA NID_md5WithRSAEncryption
102 #define PEM_MD_SHA_RSA NID_sha1WithRSAEncryption
104 #define PEM_STRING_X509_OLD "X509 CERTIFICATE"
105 #define PEM_STRING_X509 "CERTIFICATE"
106 #define PEM_STRING_X509_REQ_OLD "NEW CERTIFICATE REQUEST"
107 #define PEM_STRING_X509_REQ "CERTIFICATE REQUEST"
108 #define PEM_STRING_X509_CRL "X509 CRL"
109 #define PEM_STRING_EVP_PKEY "ANY PRIVATE KEY"
110 #define PEM_STRING_RSA "RSA PRIVATE KEY"
111 #define PEM_STRING_RSA_PUBLIC "RSA PUBLIC KEY"
112 #define PEM_STRING_DSA "DSA PRIVATE KEY"
113 #define PEM_STRING_PKCS7 "PKCS7"
114 #define PEM_STRING_PKCS8 "ENCRYPTED PRIVATE KEY"
115 #define PEM_STRING_PKCS8INF "PRIVATE KEY"
116 #define PEM_STRING_DHPARAMS "DH PARAMETERS"
117 #define PEM_STRING_SSL_SESSION "SSL SESSION PARAMETERS"
118 #define PEM_STRING_DSAPARAMS "DSA PARAMETERS"
121 typedef struct PEM_Encode_Seal_st
123 EVP_ENCODE_CTX encode;
125 EVP_CIPHER_CTX cipher;
126 } PEM_ENCODE_SEAL_CTX;
128 /* enc_type is one off */
129 #define PEM_TYPE_ENCRYPTED 10
130 #define PEM_TYPE_MIC_ONLY 20
131 #define PEM_TYPE_MIC_CLEAR 30
132 #define PEM_TYPE_CLEAR 40
134 typedef struct pem_recip_st
144 typedef struct pem_ctx_st
146 int type; /* what type of object */
160 PEM_USER *originator;
163 PEM_USER **recipient;
165 #ifdef HEADER_STACK_H
166 STACK *x509_chain; /* certificate chain */
168 char *x509_chain; /* certificate chain */
170 EVP_MD *md; /* signature type */
172 int md_enc; /* is the md encrypted or not? */
173 int md_len; /* length of md_data */
174 char *md_data; /* message digest, could be pkey encrypted */
176 EVP_CIPHER *dec; /* date encryption cipher */
177 int key_len; /* key length */
178 unsigned char *key; /* key */
179 unsigned char iv[8]; /* the iv */
182 int data_enc; /* is the data encrypted */
187 /* These macros make the PEM_read/PEM_write functions easier to maintain and
188 * write. Now they are all implemented with either:
189 * IMPLEMENT_PEM_rw(...) or IMPLEMENT_PEM_rw_cb(...)
194 #define IMPLEMENT_PEM_read_fp(name, type, str, asn1) /**/
195 #define IMPLEMENT_PEM_write_fp(name, type, str, asn1) /**/
196 #define IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1) /**/
200 #define IMPLEMENT_PEM_read_fp(name, type, str, asn1) \
201 type *PEM_read_##name(FILE *fp, type **x, pem_password_cb *cb)\
203 return((type *)PEM_ASN1_read((char *(*)())d2i_##asn1, str,fp,(char **)x,cb)); \
206 #define IMPLEMENT_PEM_write_fp(name, type, str, asn1) \
207 int PEM_write_##name(FILE *fp, type *x) \
209 return(PEM_ASN1_write((int (*)())i2d_##asn1,str,fp, (char *)x, \
210 NULL,NULL,0,NULL)); \
213 #define IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1) \
214 int PEM_write_##name(FILE *fp, type *x, const EVP_CIPHER *enc, \
215 unsigned char *kstr, int klen, pem_password_cb *cb) \
217 return(PEM_ASN1_write((int (*)())i2d_##asn1,str,fp, \
218 (char *)x,enc,kstr,klen,cb)); \
223 #define IMPLEMENT_PEM_read_bio(name, type, str, asn1) \
224 type *PEM_read_bio_##name(BIO *bp, type **x, pem_password_cb *cb)\
226 return((type *)PEM_ASN1_read_bio((char *(*)())d2i_##asn1, str,bp,\
230 #define IMPLEMENT_PEM_write_bio(name, type, str, asn1) \
231 int PEM_write_bio_##name(BIO *bp, type *x) \
233 return(PEM_ASN1_write_bio((int (*)())i2d_##asn1,str,bp, (char *)x, \
234 NULL,NULL,0,NULL)); \
237 #define IMPLEMENT_PEM_write_cb_bio(name, type, str, asn1) \
238 int PEM_write_bio_##name(BIO *bp, type *x, const EVP_CIPHER *enc, \
239 unsigned char *kstr, int klen, pem_password_cb *cb) \
241 return(PEM_ASN1_write_bio((int (*)())i2d_##asn1,str,bp, \
242 (char *)x,enc,kstr,klen,cb)); \
245 #define IMPLEMENT_PEM_write(name, type, str, asn1) \
246 IMPLEMENT_PEM_write_bio(name, type, str, asn1) \
247 IMPLEMENT_PEM_write_fp(name, type, str, asn1)
249 #define IMPLEMENT_PEM_write_cb(name, type, str, asn1) \
250 IMPLEMENT_PEM_write_cb_bio(name, type, str, asn1) \
251 IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1)
253 #define IMPLEMENT_PEM_read(name, type, str, asn1) \
254 IMPLEMENT_PEM_read_bio(name, type, str, asn1) \
255 IMPLEMENT_PEM_read_fp(name, type, str, asn1)
257 #define IMPLEMENT_PEM_rw(name, type, str, asn1) \
258 IMPLEMENT_PEM_read(name, type, str, asn1) \
259 IMPLEMENT_PEM_write(name, type, str, asn1)
261 #define IMPLEMENT_PEM_rw_cb(name, type, str, asn1) \
262 IMPLEMENT_PEM_read(name, type, str, asn1) \
263 IMPLEMENT_PEM_write_cb(name, type, str, asn1)
265 /* These are the same except they are for the declarations */
267 #if defined(WIN16) || defined(NO_FP_API)
269 #define DECLARE_PEM_read_fp(name, type) /**/
270 #define DECLARE_PEM_write_fp(name, type) /**/
271 #define DECLARE_PEM_write_cb_fp(name, type) /**/
275 #define DECLARE_PEM_read_fp(name, type) \
276 type *PEM_read_##name(FILE *fp, type **x, pem_password_cb *cb);
278 #define DECLARE_PEM_write_fp(name, type) \
279 int PEM_write_##name(FILE *fp, type *x);
281 #define DECLARE_PEM_write_cb_fp(name, type) \
282 int PEM_write_##name(FILE *fp, type *x, const EVP_CIPHER *enc, \
283 unsigned char *kstr, int klen, pem_password_cb *cb);
288 #define DECLARE_PEM_read_bio(name, type) \
289 type *PEM_read_bio_##name(BIO *bp, type **x, pem_password_cb *cb);
291 #define DECLARE_PEM_write_bio(name, type) \
292 int PEM_write_bio_##name(BIO *bp, type *x);
294 #define DECLARE_PEM_write_cb_bio(name, type) \
295 int PEM_write_bio_##name(BIO *bp, type *x, const EVP_CIPHER *enc, \
296 unsigned char *kstr, int klen, pem_password_cb *cb);
300 #define DECLARE_PEM_read_bio(name, type) /**/
301 #define DECLARE_PEM_write_bio(name, type) /**/
302 #define DECLARE_PEM_write_cb_bio(name, type) /**/
306 #define DECLARE_PEM_write(name, type) \
307 DECLARE_PEM_write_bio(name, type) \
308 DECLARE_PEM_write_fp(name, type)
310 #define DECLARE_PEM_write_cb(name, type) \
311 DECLARE_PEM_write_cb_bio(name, type) \
312 DECLARE_PEM_write_cb_fp(name, type)
314 #define DECLARE_PEM_read(name, type) \
315 DECLARE_PEM_read_bio(name, type) \
316 DECLARE_PEM_read_fp(name, type)
318 #define DECLARE_PEM_rw(name, type) \
319 DECLARE_PEM_read(name, type) \
320 DECLARE_PEM_write(name, type)
322 #define DECLARE_PEM_rw_cb(name, type) \
323 DECLARE_PEM_read(name, type) \
324 DECLARE_PEM_write_cb(name, type)
328 #define PEM_write_SSL_SESSION(fp,x) \
329 PEM_ASN1_write((int (*)())i2d_SSL_SESSION, \
330 PEM_STRING_SSL_SESSION,fp, (char *)x, NULL,NULL,0,NULL)
331 #define PEM_write_X509(fp,x) \
332 PEM_ASN1_write((int (*)())i2d_X509,PEM_STRING_X509,fp, \
333 (char *)x, NULL,NULL,0,NULL)
334 #define PEM_write_X509_REQ(fp,x) PEM_ASN1_write( \
335 (int (*)())i2d_X509_REQ,PEM_STRING_X509_REQ,fp,(char *)x, \
337 #define PEM_write_X509_CRL(fp,x) \
338 PEM_ASN1_write((int (*)())i2d_X509_CRL,PEM_STRING_X509_CRL, \
339 fp,(char *)x, NULL,NULL,0,NULL)
340 #define PEM_write_RSAPrivateKey(fp,x,enc,kstr,klen,cb) \
341 PEM_ASN1_write((int (*)())i2d_RSAPrivateKey,PEM_STRING_RSA,fp,\
342 (char *)x,enc,kstr,klen,cb)
343 #define PEM_write_RSAPublicKey(fp,x) \
344 PEM_ASN1_write((int (*)())i2d_RSAPublicKey,\
345 PEM_STRING_RSA_PUBLIC,fp,(char *)x,NULL,NULL,0,NULL)
346 #define PEM_write_DSAPrivateKey(fp,x,enc,kstr,klen,cb) \
347 PEM_ASN1_write((int (*)())i2d_DSAPrivateKey,PEM_STRING_DSA,fp,\
348 (char *)x,enc,kstr,klen,cb)
349 #define PEM_write_PrivateKey(bp,x,enc,kstr,klen,cb) \
350 PEM_ASN1_write((int (*)())i2d_PrivateKey,\
351 (((x)->type == EVP_PKEY_DSA)?PEM_STRING_DSA:PEM_STRING_RSA),\
352 bp,(char *)x,enc,kstr,klen,cb)
353 #define PEM_write_PKCS7(fp,x) \
354 PEM_ASN1_write((int (*)())i2d_PKCS7,PEM_STRING_PKCS7,fp, \
355 (char *)x, NULL,NULL,0,NULL)
356 #define PEM_write_DHparams(fp,x) \
357 PEM_ASN1_write((int (*)())i2d_DHparams,PEM_STRING_DHPARAMS,fp,\
358 (char *)x,NULL,NULL,0,NULL)
360 #define PEM_write_NETSCAPE_CERT_SEQUENCE(fp,x) \
361 PEM_ASN1_write((int (*)())i2d_NETSCAPE_CERT_SEQUENCE, \
362 PEM_STRING_X509,fp, \
363 (char *)x, NULL,NULL,0,NULL)
365 #define PEM_read_SSL_SESSION(fp,x,cb) (SSL_SESSION *)PEM_ASN1_read( \
366 (char *(*)())d2i_SSL_SESSION,PEM_STRING_SSL_SESSION,fp,(char **)x,cb)
367 #define PEM_read_X509(fp,x,cb) (X509 *)PEM_ASN1_read( \
368 (char *(*)())d2i_X509,PEM_STRING_X509,fp,(char **)x,cb)
369 #define PEM_read_X509_REQ(fp,x,cb) (X509_REQ *)PEM_ASN1_read( \
370 (char *(*)())d2i_X509_REQ,PEM_STRING_X509_REQ,fp,(char **)x,cb)
371 #define PEM_read_X509_CRL(fp,x,cb) (X509_CRL *)PEM_ASN1_read( \
372 (char *(*)())d2i_X509_CRL,PEM_STRING_X509_CRL,fp,(char **)x,cb)
373 #define PEM_read_RSAPrivateKey(fp,x,cb) (RSA *)PEM_ASN1_read( \
374 (char *(*)())d2i_RSAPrivateKey,PEM_STRING_RSA,fp,(char **)x,cb)
375 #define PEM_read_RSAPublicKey(fp,x,cb) (RSA *)PEM_ASN1_read( \
376 (char *(*)())d2i_RSAPublicKey,PEM_STRING_RSA_PUBLIC,fp,(char **)x,cb)
377 #define PEM_read_DSAPrivateKey(fp,x,cb) (DSA *)PEM_ASN1_read( \
378 (char *(*)())d2i_DSAPrivateKey,PEM_STRING_DSA,fp,(char **)x,cb)
379 #define PEM_read_PrivateKey(fp,x,cb) (EVP_PKEY *)PEM_ASN1_read( \
380 (char *(*)())d2i_PrivateKey,PEM_STRING_EVP_PKEY,fp,(char **)x,cb)
381 #define PEM_read_PKCS7(fp,x,cb) (PKCS7 *)PEM_ASN1_read( \
382 (char *(*)())d2i_PKCS7,PEM_STRING_PKCS7,fp,(char **)x,cb)
383 #define PEM_read_DHparams(fp,x,cb) (DH *)PEM_ASN1_read( \
384 (char *(*)())d2i_DHparams,PEM_STRING_DHPARAMS,fp,(char **)x,cb)
386 #define PEM_read_NETSCAPE_CERT_SEQUENCE(fp,x,cb) \
387 (NETSCAPE_CERT_SEQUENCE *)PEM_ASN1_read( \
388 (char *(*)())d2i_NETSCAPE_CERT_SEQUENCE,PEM_STRING_X509,fp,\
391 #define PEM_write_bio_SSL_SESSION(bp,x) \
392 PEM_ASN1_write_bio((int (*)())i2d_SSL_SESSION, \
393 PEM_STRING_SSL_SESSION,bp, (char *)x, NULL,NULL,0,NULL)
394 #define PEM_write_bio_X509(bp,x) \
395 PEM_ASN1_write_bio((int (*)())i2d_X509,PEM_STRING_X509,bp, \
396 (char *)x, NULL,NULL,0,NULL)
397 #define PEM_write_bio_X509_REQ(bp,x) PEM_ASN1_write_bio( \
398 (int (*)())i2d_X509_REQ,PEM_STRING_X509_REQ,bp,(char *)x, \
400 #define PEM_write_bio_X509_CRL(bp,x) \
401 PEM_ASN1_write_bio((int (*)())i2d_X509_CRL,PEM_STRING_X509_CRL,\
402 bp,(char *)x, NULL,NULL,0,NULL)
403 #define PEM_write_bio_RSAPrivateKey(bp,x,enc,kstr,klen,cb) \
404 PEM_ASN1_write_bio((int (*)())i2d_RSAPrivateKey,PEM_STRING_RSA,\
405 bp,(char *)x,enc,kstr,klen,cb)
406 #define PEM_write_bio_RSAPublicKey(bp,x) \
407 PEM_ASN1_write_bio((int (*)())i2d_RSAPublicKey, \
408 PEM_STRING_RSA_PUBLIC,\
409 bp,(char *)x,NULL,NULL,0,NULL)
410 #define PEM_write_bio_DSAPrivateKey(bp,x,enc,kstr,klen,cb) \
411 PEM_ASN1_write_bio((int (*)())i2d_DSAPrivateKey,PEM_STRING_DSA,\
412 bp,(char *)x,enc,kstr,klen,cb)
413 #define PEM_write_bio_PrivateKey(bp,x,enc,kstr,klen,cb) \
414 PEM_ASN1_write_bio((int (*)())i2d_PrivateKey,\
415 (((x)->type == EVP_PKEY_DSA)?PEM_STRING_DSA:PEM_STRING_RSA),\
416 bp,(char *)x,enc,kstr,klen,cb)
417 #define PEM_write_bio_PKCS7(bp,x) \
418 PEM_ASN1_write_bio((int (*)())i2d_PKCS7,PEM_STRING_PKCS7,bp, \
419 (char *)x, NULL,NULL,0,NULL)
420 #define PEM_write_bio_DHparams(bp,x) \
421 PEM_ASN1_write_bio((int (*)())i2d_DHparams,PEM_STRING_DHPARAMS,\
422 bp,(char *)x,NULL,NULL,0,NULL)
423 #define PEM_write_bio_DSAparams(bp,x) \
424 PEM_ASN1_write_bio((int (*)())i2d_DSAparams, \
425 PEM_STRING_DSAPARAMS,bp,(char *)x,NULL,NULL,0,NULL)
427 #define PEM_write_bio_NETSCAPE_CERT_SEQUENCE(bp,x) \
428 PEM_ASN1_write_bio((int (*)())i2d_NETSCAPE_CERT_SEQUENCE, \
429 PEM_STRING_X509,bp, \
430 (char *)x, NULL,NULL,0,NULL)
432 #define PEM_read_bio_SSL_SESSION(bp,x,cb) (SSL_SESSION *)PEM_ASN1_read_bio( \
433 (char *(*)())d2i_SSL_SESSION,PEM_STRING_SSL_SESSION,bp,(char **)x,cb)
434 #define PEM_read_bio_X509(bp,x,cb) (X509 *)PEM_ASN1_read_bio( \
435 (char *(*)())d2i_X509,PEM_STRING_X509,bp,(char **)x,cb)
436 #define PEM_read_bio_X509_REQ(bp,x,cb) (X509_REQ *)PEM_ASN1_read_bio( \
437 (char *(*)())d2i_X509_REQ,PEM_STRING_X509_REQ,bp,(char **)x,cb)
438 #define PEM_read_bio_X509_CRL(bp,x,cb) (X509_CRL *)PEM_ASN1_read_bio( \
439 (char *(*)())d2i_X509_CRL,PEM_STRING_X509_CRL,bp,(char **)x,cb)
440 #define PEM_read_bio_RSAPrivateKey(bp,x,cb) (RSA *)PEM_ASN1_read_bio( \
441 (char *(*)())d2i_RSAPrivateKey,PEM_STRING_RSA,bp,(char **)x,cb)
442 #define PEM_read_bio_RSAPublicKey(bp,x,cb) (RSA *)PEM_ASN1_read_bio( \
443 (char *(*)())d2i_RSAPublicKey,PEM_STRING_RSA_PUBLIC,bp,(char **)x,cb)
444 #define PEM_read_bio_DSAPrivateKey(bp,x,cb) (DSA *)PEM_ASN1_read_bio( \
445 (char *(*)())d2i_DSAPrivateKey,PEM_STRING_DSA,bp,(char **)x,cb)
446 #define PEM_read_bio_PrivateKey(bp,x,cb) (EVP_PKEY *)PEM_ASN1_read_bio( \
447 (char *(*)())d2i_PrivateKey,PEM_STRING_EVP_PKEY,bp,(char **)x,cb)
449 #define PEM_read_bio_PKCS7(bp,x,cb) (PKCS7 *)PEM_ASN1_read_bio( \
450 (char *(*)())d2i_PKCS7,PEM_STRING_PKCS7,bp,(char **)x,cb)
451 #define PEM_read_bio_DHparams(bp,x,cb) (DH *)PEM_ASN1_read_bio( \
452 (char *(*)())d2i_DHparams,PEM_STRING_DHPARAMS,bp,(char **)x,cb)
453 #define PEM_read_bio_DSAparams(bp,x,cb) (DSA *)PEM_ASN1_read_bio( \
454 (char *(*)())d2i_DSAparams,PEM_STRING_DSAPARAMS,bp,(char **)x,cb)
456 #define PEM_read_bio_NETSCAPE_CERT_SEQUENCE(bp,x,cb) \
457 (NETSCAPE_CERT_SEQUENCE *)PEM_ASN1_read_bio( \
458 (char *(*)())d2i_NETSCAPE_CERT_SEQUENCE,PEM_STRING_X509,bp,\
463 typedef int pem_password_cb(char *buf, int size, int rwflag);
464 /* "size" should be size_t, obviously, but it was always used
465 * without a parameter list declaration, which makes it "int" */
467 int PEM_get_EVP_CIPHER_INFO(char *header, EVP_CIPHER_INFO *cipher);
468 int PEM_do_header (EVP_CIPHER_INFO *cipher, unsigned char *data,long *len,
472 int PEM_read_bio(BIO *bp, char **name, char **header,
473 unsigned char **data,long *len);
474 int PEM_write_bio(BIO *bp,const char *name,char *hdr,unsigned char *data,
476 char * PEM_ASN1_read_bio(char *(*d2i)(),const char *name,BIO *bp,char **x,
478 int PEM_ASN1_write_bio(int (*i2d)(),const char *name,BIO *bp,char *x,
479 const EVP_CIPHER *enc,unsigned char *kstr,int klen,
481 STACK_OF(X509_INFO) * PEM_X509_INFO_read_bio(BIO *bp, STACK_OF(X509_INFO) *sk, pem_password_cb *);
482 int PEM_X509_INFO_write_bio(BIO *bp,X509_INFO *xi, EVP_CIPHER *enc,
483 unsigned char *kstr, int klen, pem_password_cb *);
487 int PEM_read(FILE *fp, char **name, char **header,
488 unsigned char **data,long *len);
489 int PEM_write(FILE *fp,char *name,char *hdr,unsigned char *data,long len);
490 char * PEM_ASN1_read(char *(*d2i)(),const char *name,FILE *fp,char **x,
492 int PEM_ASN1_write(int (*i2d)(),const char *name,FILE *fp,char *x,
493 const EVP_CIPHER *enc,unsigned char *kstr,int klen,
495 STACK_OF(X509_INFO) * PEM_X509_INFO_read(FILE *fp, STACK_OF(X509_INFO) *sk,
499 int PEM_SealInit(PEM_ENCODE_SEAL_CTX *ctx, EVP_CIPHER *type,
500 EVP_MD *md_type, unsigned char **ek, int *ekl,
501 unsigned char *iv, EVP_PKEY **pubk, int npubk);
502 void PEM_SealUpdate(PEM_ENCODE_SEAL_CTX *ctx, unsigned char *out, int *outl,
503 unsigned char *in, int inl);
504 int PEM_SealFinal(PEM_ENCODE_SEAL_CTX *ctx, unsigned char *sig,int *sigl,
505 unsigned char *out, int *outl, EVP_PKEY *priv);
507 void PEM_SignInit(EVP_MD_CTX *ctx, EVP_MD *type);
508 void PEM_SignUpdate(EVP_MD_CTX *ctx,unsigned char *d,unsigned int cnt);
509 int PEM_SignFinal(EVP_MD_CTX *ctx, unsigned char *sigret,
510 unsigned int *siglen, EVP_PKEY *pkey);
512 void ERR_load_PEM_strings(void);
514 void PEM_proc_type(char *buf, int type);
515 void PEM_dek_info(char *buf, const char *type, int len, char *str);
517 #ifndef SSLEAY_MACROS
519 DECLARE_PEM_rw(X509, X509)
521 DECLARE_PEM_rw(X509_REQ, X509_REQ)
523 DECLARE_PEM_rw(X509_CRL, X509_CRL)
525 DECLARE_PEM_rw(PKCS7, PKCS7)
527 DECLARE_PEM_rw(NETSCAPE_CERT_SEQUENCE, NETSCAPE_CERT_SEQUENCE)
529 DECLARE_PEM_rw(PKCS8, X509_SIG)
531 DECLARE_PEM_rw(PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO)
535 DECLARE_PEM_rw_cb(RSAPrivateKey, RSA)
537 DECLARE_PEM_rw(RSAPublicKey, RSA)
543 DECLARE_PEM_rw_cb(DSAPrivateKey, DSA)
545 DECLARE_PEM_rw(DSAparams, DSA)
551 DECLARE_PEM_rw(DHparams, DH)
555 DECLARE_PEM_rw_cb(PrivateKey, EVP_PKEY)
558 /* Too long names need to be abbreviated to at most 31 characters */
559 #undef PEM_write_NETSCAPE_CERT_SEQUENCE
560 #define PEM_write_NETSCAPE_CERT_SEQUENCE PEM_write_NETSCAPE_CERT_SEQ
561 #undef PEM_read_bio_NETSCAPE_CERT_SEQUENCE
562 #define PEM_read_bio_NETSCAPE_CERT_SEQUENCE PEM_read_bio_NETSCAPE_CERT_SEQ
563 #undef PEM_write_bio_NETSCAPE_CERT_SEQUENCE
564 #define PEM_write_bio_NETSCAPE_CERT_SEQUENCE PEM_write_bio_NETSCAPE_CERT_SEQ
567 int PEM_write_PKCS8PrivateKey(FILE *fp,EVP_PKEY *x,const EVP_CIPHER *enc,
568 char *kstr,int klen, pem_password_cb *);
569 #endif /* SSLEAY_MACROS */
572 /* BEGIN ERROR CODES */
573 /* The following lines are auto generated by the script mkerr.pl. Any changes
574 * made after this point may be overwritten when the script is next run.
577 /* Error codes for the PEM functions. */
579 /* Function codes. */
580 #define PEM_F_DEF_CALLBACK 100
581 #define PEM_F_LOAD_IV 101
582 #define PEM_F_PEM_ASN1_READ 102
583 #define PEM_F_PEM_ASN1_READ_BIO 103
584 #define PEM_F_PEM_ASN1_WRITE 104
585 #define PEM_F_PEM_ASN1_WRITE_BIO 105
586 #define PEM_F_PEM_DO_HEADER 106
587 #define PEM_F_PEM_F_PEM_WRITE_PKCS8PRIVATEKEY 118
588 #define PEM_F_PEM_GET_EVP_CIPHER_INFO 107
589 #define PEM_F_PEM_READ 108
590 #define PEM_F_PEM_READ_BIO 109
591 #define PEM_F_PEM_SEALFINAL 110
592 #define PEM_F_PEM_SEALINIT 111
593 #define PEM_F_PEM_SIGNFINAL 112
594 #define PEM_F_PEM_WRITE 113
595 #define PEM_F_PEM_WRITE_BIO 114
596 #define PEM_F_PEM_WRITE_BIO_PKCS8PRIVATEKEY 119
597 #define PEM_F_PEM_X509_INFO_READ 115
598 #define PEM_F_PEM_X509_INFO_READ_BIO 116
599 #define PEM_F_PEM_X509_INFO_WRITE_BIO 117
602 #define PEM_R_BAD_BASE64_DECODE 100
603 #define PEM_R_BAD_DECRYPT 101
604 #define PEM_R_BAD_END_LINE 102
605 #define PEM_R_BAD_IV_CHARS 103
606 #define PEM_R_BAD_PASSWORD_READ 104
607 #define PEM_R_ERROR_CONVERTING_PRIVATE_KEY 115
608 #define PEM_R_NOT_DEK_INFO 105
609 #define PEM_R_NOT_ENCRYPTED 106
610 #define PEM_R_NOT_PROC_TYPE 107
611 #define PEM_R_NO_START_LINE 108
612 #define PEM_R_PROBLEMS_GETTING_PASSWORD 109
613 #define PEM_R_PUBLIC_KEY_NO_RSA 110
614 #define PEM_R_READ_KEY 111
615 #define PEM_R_SHORT_HEADER 112
616 #define PEM_R_UNSUPPORTED_CIPHER 113
617 #define PEM_R_UNSUPPORTED_ENCRYPTION 114