2 /* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
62 #ifndef OPENSSL_NO_BIO
63 #include <openssl/bio.h>
65 #ifndef OPENSSL_NO_STACK
66 #include <openssl/stack.h>
68 #include <openssl/evp.h>
69 #include <openssl/x509.h>
70 #include <openssl/pem2.h>
71 #include <openssl/e_os2.h>
77 #define PEM_BUFSIZE 1024
79 #define PEM_OBJ_UNDEF 0
80 #define PEM_OBJ_X509 1
81 #define PEM_OBJ_X509_REQ 2
83 #define PEM_OBJ_SSL_SESSION 4
84 #define PEM_OBJ_PRIV_KEY 10
85 #define PEM_OBJ_PRIV_RSA 11
86 #define PEM_OBJ_PRIV_DSA 12
87 #define PEM_OBJ_PRIV_DH 13
88 #define PEM_OBJ_PUB_RSA 14
89 #define PEM_OBJ_PUB_DSA 15
90 #define PEM_OBJ_PUB_DH 16
91 #define PEM_OBJ_DHPARAMS 17
92 #define PEM_OBJ_DSAPARAMS 18
93 #define PEM_OBJ_PRIV_RSA_PUBLIC 19
96 #define PEM_DEK_DES_CBC 40
97 #define PEM_DEK_IDEA_CBC 45
98 #define PEM_DEK_DES_EDE 50
99 #define PEM_DEK_DES_ECB 60
100 #define PEM_DEK_RSA 70
101 #define PEM_DEK_RSA_MD2 80
102 #define PEM_DEK_RSA_MD5 90
104 #define PEM_MD_MD2 NID_md2
105 #define PEM_MD_MD5 NID_md5
106 #define PEM_MD_SHA NID_sha
107 #define PEM_MD_MD2_RSA NID_md2WithRSAEncryption
108 #define PEM_MD_MD5_RSA NID_md5WithRSAEncryption
109 #define PEM_MD_SHA_RSA NID_sha1WithRSAEncryption
111 #define PEM_STRING_X509_OLD "X509 CERTIFICATE"
112 #define PEM_STRING_X509 "CERTIFICATE"
113 #define PEM_STRING_X509_TRUSTED "TRUSTED CERTIFICATE"
114 #define PEM_STRING_X509_REQ_OLD "NEW CERTIFICATE REQUEST"
115 #define PEM_STRING_X509_REQ "CERTIFICATE REQUEST"
116 #define PEM_STRING_X509_CRL "X509 CRL"
117 #define PEM_STRING_EVP_PKEY "ANY PRIVATE KEY"
118 #define PEM_STRING_PUBLIC "PUBLIC KEY"
119 #define PEM_STRING_RSA "RSA PRIVATE KEY"
120 #define PEM_STRING_RSA_PUBLIC "RSA PUBLIC KEY"
121 #define PEM_STRING_DSA "DSA PRIVATE KEY"
122 #define PEM_STRING_DSA_PUBLIC "DSA PUBLIC KEY"
123 #define PEM_STRING_PKCS7 "PKCS7"
124 #define PEM_STRING_PKCS8 "ENCRYPTED PRIVATE KEY"
125 #define PEM_STRING_PKCS8INF "PRIVATE KEY"
126 #define PEM_STRING_DHPARAMS "DH PARAMETERS"
127 #define PEM_STRING_SSL_SESSION "SSL SESSION PARAMETERS"
128 #define PEM_STRING_DSAPARAMS "DSA PARAMETERS"
131 typedef struct PEM_Encode_Seal_st
133 EVP_ENCODE_CTX encode;
135 EVP_CIPHER_CTX cipher;
136 } PEM_ENCODE_SEAL_CTX;
138 /* enc_type is one off */
139 #define PEM_TYPE_ENCRYPTED 10
140 #define PEM_TYPE_MIC_ONLY 20
141 #define PEM_TYPE_MIC_CLEAR 30
142 #define PEM_TYPE_CLEAR 40
144 typedef struct pem_recip_st
154 typedef struct pem_ctx_st
156 int type; /* what type of object */
170 PEM_USER *originator;
173 PEM_USER **recipient;
175 #ifndef OPENSSL_NO_STACK
176 STACK *x509_chain; /* certificate chain */
178 char *x509_chain; /* certificate chain */
180 EVP_MD *md; /* signature type */
182 int md_enc; /* is the md encrypted or not? */
183 int md_len; /* length of md_data */
184 char *md_data; /* message digest, could be pkey encrypted */
186 EVP_CIPHER *dec; /* date encryption cipher */
187 int key_len; /* key length */
188 unsigned char *key; /* key */
189 unsigned char iv[8]; /* the iv */
192 int data_enc; /* is the data encrypted */
197 /* These macros make the PEM_read/PEM_write functions easier to maintain and
198 * write. Now they are all implemented with either:
199 * IMPLEMENT_PEM_rw(...) or IMPLEMENT_PEM_rw_cb(...)
202 #ifdef OPENSSL_NO_FP_API
204 #define IMPLEMENT_PEM_read_fp(name, type, str, asn1) /**/
205 #define IMPLEMENT_PEM_write_fp(name, type, str, asn1) /**/
206 #define IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1) /**/
210 #define IMPLEMENT_PEM_read_fp(name, type, str, asn1) \
211 type *PEM_read_##name(FILE *fp, type **x, pem_password_cb *cb, void *u)\
213 return((type *)PEM_ASN1_read((char *(*)())d2i_##asn1, str,fp,(char **)x,\
217 #define IMPLEMENT_PEM_write_fp(name, type, str, asn1) \
218 int PEM_write_##name(FILE *fp, type *x) \
220 return(PEM_ASN1_write((int (*)())i2d_##asn1,str,fp, (char *)x, \
221 NULL,NULL,0,NULL,NULL)); \
224 #define IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1) \
225 int PEM_write_##name(FILE *fp, type *x, const EVP_CIPHER *enc, \
226 unsigned char *kstr, int klen, pem_password_cb *cb, \
229 return(PEM_ASN1_write((int (*)())i2d_##asn1,str,fp, \
230 (char *)x,enc,kstr,klen,cb,u)); \
235 #define IMPLEMENT_PEM_read_bio(name, type, str, asn1) \
236 type *PEM_read_bio_##name(BIO *bp, type **x, pem_password_cb *cb, void *u)\
238 return((type *)PEM_ASN1_read_bio((char *(*)())d2i_##asn1, str,bp,\
242 #define IMPLEMENT_PEM_write_bio(name, type, str, asn1) \
243 int PEM_write_bio_##name(BIO *bp, type *x) \
245 return(PEM_ASN1_write_bio((int (*)())i2d_##asn1,str,bp, (char *)x, \
246 NULL,NULL,0,NULL,NULL)); \
249 #define IMPLEMENT_PEM_write_cb_bio(name, type, str, asn1) \
250 int PEM_write_bio_##name(BIO *bp, type *x, const EVP_CIPHER *enc, \
251 unsigned char *kstr, int klen, pem_password_cb *cb, void *u) \
253 return(PEM_ASN1_write_bio((int (*)())i2d_##asn1,str,bp, \
254 (char *)x,enc,kstr,klen,cb,u)); \
257 #define IMPLEMENT_PEM_write(name, type, str, asn1) \
258 IMPLEMENT_PEM_write_bio(name, type, str, asn1) \
259 IMPLEMENT_PEM_write_fp(name, type, str, asn1)
261 #define IMPLEMENT_PEM_write_cb(name, type, str, asn1) \
262 IMPLEMENT_PEM_write_cb_bio(name, type, str, asn1) \
263 IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1)
265 #define IMPLEMENT_PEM_read(name, type, str, asn1) \
266 IMPLEMENT_PEM_read_bio(name, type, str, asn1) \
267 IMPLEMENT_PEM_read_fp(name, type, str, asn1)
269 #define IMPLEMENT_PEM_rw(name, type, str, asn1) \
270 IMPLEMENT_PEM_read(name, type, str, asn1) \
271 IMPLEMENT_PEM_write(name, type, str, asn1)
273 #define IMPLEMENT_PEM_rw_cb(name, type, str, asn1) \
274 IMPLEMENT_PEM_read(name, type, str, asn1) \
275 IMPLEMENT_PEM_write_cb(name, type, str, asn1)
277 /* These are the same except they are for the declarations */
279 #if defined(OPENSSL_SYS_WIN16) || defined(OPENSSL_NO_FP_API)
281 #define DECLARE_PEM_read_fp(name, type) /**/
282 #define DECLARE_PEM_write_fp(name, type) /**/
283 #define DECLARE_PEM_write_cb_fp(name, type) /**/
287 #define DECLARE_PEM_read_fp(name, type) \
288 type *PEM_read_##name(FILE *fp, type **x, pem_password_cb *cb, void *u);
290 #define DECLARE_PEM_write_fp(name, type) \
291 int PEM_write_##name(FILE *fp, type *x);
293 #define DECLARE_PEM_write_cb_fp(name, type) \
294 int PEM_write_##name(FILE *fp, type *x, const EVP_CIPHER *enc, \
295 unsigned char *kstr, int klen, pem_password_cb *cb, void *u);
299 #ifndef OPENSSL_NO_BIO
300 #define DECLARE_PEM_read_bio(name, type) \
301 type *PEM_read_bio_##name(BIO *bp, type **x, pem_password_cb *cb, void *u);
303 #define DECLARE_PEM_write_bio(name, type) \
304 int PEM_write_bio_##name(BIO *bp, type *x);
306 #define DECLARE_PEM_write_cb_bio(name, type) \
307 int PEM_write_bio_##name(BIO *bp, type *x, const EVP_CIPHER *enc, \
308 unsigned char *kstr, int klen, pem_password_cb *cb, void *u);
312 #define DECLARE_PEM_read_bio(name, type) /**/
313 #define DECLARE_PEM_write_bio(name, type) /**/
314 #define DECLARE_PEM_write_cb_bio(name, type) /**/
318 #define DECLARE_PEM_write(name, type) \
319 DECLARE_PEM_write_bio(name, type) \
320 DECLARE_PEM_write_fp(name, type)
322 #define DECLARE_PEM_write_cb(name, type) \
323 DECLARE_PEM_write_cb_bio(name, type) \
324 DECLARE_PEM_write_cb_fp(name, type)
326 #define DECLARE_PEM_read(name, type) \
327 DECLARE_PEM_read_bio(name, type) \
328 DECLARE_PEM_read_fp(name, type)
330 #define DECLARE_PEM_rw(name, type) \
331 DECLARE_PEM_read(name, type) \
332 DECLARE_PEM_write(name, type)
334 #define DECLARE_PEM_rw_cb(name, type) \
335 DECLARE_PEM_read(name, type) \
336 DECLARE_PEM_write_cb(name, type)
340 #define PEM_write_SSL_SESSION(fp,x) \
341 PEM_ASN1_write((int (*)())i2d_SSL_SESSION, \
342 PEM_STRING_SSL_SESSION,fp, (char *)x, NULL,NULL,0,NULL,NULL)
343 #define PEM_write_X509(fp,x) \
344 PEM_ASN1_write((int (*)())i2d_X509,PEM_STRING_X509,fp, \
345 (char *)x, NULL,NULL,0,NULL,NULL)
346 #define PEM_write_X509_REQ(fp,x) PEM_ASN1_write( \
347 (int (*)())i2d_X509_REQ,PEM_STRING_X509_REQ,fp,(char *)x, \
348 NULL,NULL,0,NULL,NULL)
349 #define PEM_write_X509_CRL(fp,x) \
350 PEM_ASN1_write((int (*)())i2d_X509_CRL,PEM_STRING_X509_CRL, \
351 fp,(char *)x, NULL,NULL,0,NULL,NULL)
352 #define PEM_write_RSAPrivateKey(fp,x,enc,kstr,klen,cb,u) \
353 PEM_ASN1_write((int (*)())i2d_RSAPrivateKey,PEM_STRING_RSA,fp,\
354 (char *)x,enc,kstr,klen,cb,u)
355 #define PEM_write_RSAPublicKey(fp,x) \
356 PEM_ASN1_write((int (*)())i2d_RSAPublicKey,\
357 PEM_STRING_RSA_PUBLIC,fp,(char *)x,NULL,NULL,0,NULL,NULL)
358 #define PEM_write_DSAPrivateKey(fp,x,enc,kstr,klen,cb,u) \
359 PEM_ASN1_write((int (*)())i2d_DSAPrivateKey,PEM_STRING_DSA,fp,\
360 (char *)x,enc,kstr,klen,cb,u)
361 #define PEM_write_PrivateKey(bp,x,enc,kstr,klen,cb,u) \
362 PEM_ASN1_write((int (*)())i2d_PrivateKey,\
363 (((x)->type == EVP_PKEY_DSA)?PEM_STRING_DSA:PEM_STRING_RSA),\
364 bp,(char *)x,enc,kstr,klen,cb,u)
365 #define PEM_write_PKCS7(fp,x) \
366 PEM_ASN1_write((int (*)())i2d_PKCS7,PEM_STRING_PKCS7,fp, \
367 (char *)x, NULL,NULL,0,NULL,NULL)
368 #define PEM_write_DHparams(fp,x) \
369 PEM_ASN1_write((int (*)())i2d_DHparams,PEM_STRING_DHPARAMS,fp,\
370 (char *)x,NULL,NULL,0,NULL,NULL)
372 #define PEM_write_NETSCAPE_CERT_SEQUENCE(fp,x) \
373 PEM_ASN1_write((int (*)())i2d_NETSCAPE_CERT_SEQUENCE, \
374 PEM_STRING_X509,fp, \
375 (char *)x, NULL,NULL,0,NULL,NULL)
377 #define PEM_read_SSL_SESSION(fp,x,cb,u) (SSL_SESSION *)PEM_ASN1_read( \
378 (char *(*)())d2i_SSL_SESSION,PEM_STRING_SSL_SESSION,fp,(char **)x,cb,u)
379 #define PEM_read_X509(fp,x,cb,u) (X509 *)PEM_ASN1_read( \
380 (char *(*)())d2i_X509,PEM_STRING_X509,fp,(char **)x,cb,u)
381 #define PEM_read_X509_REQ(fp,x,cb,u) (X509_REQ *)PEM_ASN1_read( \
382 (char *(*)())d2i_X509_REQ,PEM_STRING_X509_REQ,fp,(char **)x,cb,u)
383 #define PEM_read_X509_CRL(fp,x,cb,u) (X509_CRL *)PEM_ASN1_read( \
384 (char *(*)())d2i_X509_CRL,PEM_STRING_X509_CRL,fp,(char **)x,cb,u)
385 #define PEM_read_RSAPrivateKey(fp,x,cb,u) (RSA *)PEM_ASN1_read( \
386 (char *(*)())d2i_RSAPrivateKey,PEM_STRING_RSA,fp,(char **)x,cb,u)
387 #define PEM_read_RSAPublicKey(fp,x,cb,u) (RSA *)PEM_ASN1_read( \
388 (char *(*)())d2i_RSAPublicKey,PEM_STRING_RSA_PUBLIC,fp,(char **)x,cb,u)
389 #define PEM_read_DSAPrivateKey(fp,x,cb,u) (DSA *)PEM_ASN1_read( \
390 (char *(*)())d2i_DSAPrivateKey,PEM_STRING_DSA,fp,(char **)x,cb,u)
391 #define PEM_read_PrivateKey(fp,x,cb,u) (EVP_PKEY *)PEM_ASN1_read( \
392 (char *(*)())d2i_PrivateKey,PEM_STRING_EVP_PKEY,fp,(char **)x,cb,u)
393 #define PEM_read_PKCS7(fp,x,cb,u) (PKCS7 *)PEM_ASN1_read( \
394 (char *(*)())d2i_PKCS7,PEM_STRING_PKCS7,fp,(char **)x,cb,u)
395 #define PEM_read_DHparams(fp,x,cb,u) (DH *)PEM_ASN1_read( \
396 (char *(*)())d2i_DHparams,PEM_STRING_DHPARAMS,fp,(char **)x,cb,u)
398 #define PEM_read_NETSCAPE_CERT_SEQUENCE(fp,x,cb,u) \
399 (NETSCAPE_CERT_SEQUENCE *)PEM_ASN1_read( \
400 (char *(*)())d2i_NETSCAPE_CERT_SEQUENCE,PEM_STRING_X509,fp,\
403 #define PEM_write_bio_SSL_SESSION(bp,x) \
404 PEM_ASN1_write_bio((int (*)())i2d_SSL_SESSION, \
405 PEM_STRING_SSL_SESSION,bp, (char *)x, NULL,NULL,0,NULL,NULL)
406 #define PEM_write_bio_X509(bp,x) \
407 PEM_ASN1_write_bio((int (*)())i2d_X509,PEM_STRING_X509,bp, \
408 (char *)x, NULL,NULL,0,NULL,NULL)
409 #define PEM_write_bio_X509_REQ(bp,x) PEM_ASN1_write_bio( \
410 (int (*)())i2d_X509_REQ,PEM_STRING_X509_REQ,bp,(char *)x, \
411 NULL,NULL,0,NULL,NULL)
412 #define PEM_write_bio_X509_CRL(bp,x) \
413 PEM_ASN1_write_bio((int (*)())i2d_X509_CRL,PEM_STRING_X509_CRL,\
414 bp,(char *)x, NULL,NULL,0,NULL,NULL)
415 #define PEM_write_bio_RSAPrivateKey(bp,x,enc,kstr,klen,cb,u) \
416 PEM_ASN1_write_bio((int (*)())i2d_RSAPrivateKey,PEM_STRING_RSA,\
417 bp,(char *)x,enc,kstr,klen,cb,u)
418 #define PEM_write_bio_RSAPublicKey(bp,x) \
419 PEM_ASN1_write_bio((int (*)())i2d_RSAPublicKey, \
420 PEM_STRING_RSA_PUBLIC,\
421 bp,(char *)x,NULL,NULL,0,NULL,NULL)
422 #define PEM_write_bio_DSAPrivateKey(bp,x,enc,kstr,klen,cb,u) \
423 PEM_ASN1_write_bio((int (*)())i2d_DSAPrivateKey,PEM_STRING_DSA,\
424 bp,(char *)x,enc,kstr,klen,cb,u)
425 #define PEM_write_bio_PrivateKey(bp,x,enc,kstr,klen,cb,u) \
426 PEM_ASN1_write_bio((int (*)())i2d_PrivateKey,\
427 (((x)->type == EVP_PKEY_DSA)?PEM_STRING_DSA:PEM_STRING_RSA),\
428 bp,(char *)x,enc,kstr,klen,cb,u)
429 #define PEM_write_bio_PKCS7(bp,x) \
430 PEM_ASN1_write_bio((int (*)())i2d_PKCS7,PEM_STRING_PKCS7,bp, \
431 (char *)x, NULL,NULL,0,NULL,NULL)
432 #define PEM_write_bio_DHparams(bp,x) \
433 PEM_ASN1_write_bio((int (*)())i2d_DHparams,PEM_STRING_DHPARAMS,\
434 bp,(char *)x,NULL,NULL,0,NULL,NULL)
435 #define PEM_write_bio_DSAparams(bp,x) \
436 PEM_ASN1_write_bio((int (*)())i2d_DSAparams, \
437 PEM_STRING_DSAPARAMS,bp,(char *)x,NULL,NULL,0,NULL,NULL)
439 #define PEM_write_bio_NETSCAPE_CERT_SEQUENCE(bp,x) \
440 PEM_ASN1_write_bio((int (*)())i2d_NETSCAPE_CERT_SEQUENCE, \
441 PEM_STRING_X509,bp, \
442 (char *)x, NULL,NULL,0,NULL,NULL)
444 #define PEM_read_bio_SSL_SESSION(bp,x,cb,u) (SSL_SESSION *)PEM_ASN1_read_bio( \
445 (char *(*)())d2i_SSL_SESSION,PEM_STRING_SSL_SESSION,bp,(char **)x,cb,u)
446 #define PEM_read_bio_X509(bp,x,cb,u) (X509 *)PEM_ASN1_read_bio( \
447 (char *(*)())d2i_X509,PEM_STRING_X509,bp,(char **)x,cb,u)
448 #define PEM_read_bio_X509_REQ(bp,x,cb,u) (X509_REQ *)PEM_ASN1_read_bio( \
449 (char *(*)())d2i_X509_REQ,PEM_STRING_X509_REQ,bp,(char **)x,cb,u)
450 #define PEM_read_bio_X509_CRL(bp,x,cb,u) (X509_CRL *)PEM_ASN1_read_bio( \
451 (char *(*)())d2i_X509_CRL,PEM_STRING_X509_CRL,bp,(char **)x,cb,u)
452 #define PEM_read_bio_RSAPrivateKey(bp,x,cb,u) (RSA *)PEM_ASN1_read_bio( \
453 (char *(*)())d2i_RSAPrivateKey,PEM_STRING_RSA,bp,(char **)x,cb,u)
454 #define PEM_read_bio_RSAPublicKey(bp,x,cb,u) (RSA *)PEM_ASN1_read_bio( \
455 (char *(*)())d2i_RSAPublicKey,PEM_STRING_RSA_PUBLIC,bp,(char **)x,cb,u)
456 #define PEM_read_bio_DSAPrivateKey(bp,x,cb,u) (DSA *)PEM_ASN1_read_bio( \
457 (char *(*)())d2i_DSAPrivateKey,PEM_STRING_DSA,bp,(char **)x,cb,u)
458 #define PEM_read_bio_PrivateKey(bp,x,cb,u) (EVP_PKEY *)PEM_ASN1_read_bio( \
459 (char *(*)())d2i_PrivateKey,PEM_STRING_EVP_PKEY,bp,(char **)x,cb,u)
461 #define PEM_read_bio_PKCS7(bp,x,cb,u) (PKCS7 *)PEM_ASN1_read_bio( \
462 (char *(*)())d2i_PKCS7,PEM_STRING_PKCS7,bp,(char **)x,cb,u)
463 #define PEM_read_bio_DHparams(bp,x,cb,u) (DH *)PEM_ASN1_read_bio( \
464 (char *(*)())d2i_DHparams,PEM_STRING_DHPARAMS,bp,(char **)x,cb,u)
465 #define PEM_read_bio_DSAparams(bp,x,cb,u) (DSA *)PEM_ASN1_read_bio( \
466 (char *(*)())d2i_DSAparams,PEM_STRING_DSAPARAMS,bp,(char **)x,cb,u)
468 #define PEM_read_bio_NETSCAPE_CERT_SEQUENCE(bp,x,cb,u) \
469 (NETSCAPE_CERT_SEQUENCE *)PEM_ASN1_read_bio( \
470 (char *(*)())d2i_NETSCAPE_CERT_SEQUENCE,PEM_STRING_X509,bp,\
476 /* "userdata": new with OpenSSL 0.9.4 */
477 typedef int pem_password_cb(char *buf, int size, int rwflag, void *userdata);
479 /* OpenSSL 0.9.3, 0.9.3a */
480 typedef int pem_password_cb(char *buf, int size, int rwflag);
483 int PEM_get_EVP_CIPHER_INFO(char *header, EVP_CIPHER_INFO *cipher);
484 int PEM_do_header (EVP_CIPHER_INFO *cipher, unsigned char *data,long *len,
485 pem_password_cb *callback,void *u);
487 #ifndef OPENSSL_NO_BIO
488 int PEM_read_bio(BIO *bp, char **name, char **header,
489 unsigned char **data,long *len);
490 int PEM_write_bio(BIO *bp,const char *name,char *hdr,unsigned char *data,
492 int PEM_bytes_read_bio(unsigned char **pdata, long *plen, char **pnm, const char *name, BIO *bp,
493 pem_password_cb *cb, void *u);
494 char * PEM_ASN1_read_bio(char *(*d2i)(),const char *name,BIO *bp,char **x,
495 pem_password_cb *cb, void *u);
496 int PEM_ASN1_write_bio(int (*i2d)(),const char *name,BIO *bp,char *x,
497 const EVP_CIPHER *enc,unsigned char *kstr,int klen,
498 pem_password_cb *cb, void *u);
499 STACK_OF(X509_INFO) * PEM_X509_INFO_read_bio(BIO *bp, STACK_OF(X509_INFO) *sk, pem_password_cb *cb, void *u);
500 int PEM_X509_INFO_write_bio(BIO *bp,X509_INFO *xi, EVP_CIPHER *enc,
501 unsigned char *kstr, int klen, pem_password_cb *cd, void *u);
504 #ifndef OPENSSL_SYS_WIN16
505 int PEM_read(FILE *fp, char **name, char **header,
506 unsigned char **data,long *len);
507 int PEM_write(FILE *fp,char *name,char *hdr,unsigned char *data,long len);
508 char * PEM_ASN1_read(char *(*d2i)(),const char *name,FILE *fp,char **x,
509 pem_password_cb *cb, void *u);
510 int PEM_ASN1_write(int (*i2d)(),const char *name,FILE *fp,char *x,
511 const EVP_CIPHER *enc,unsigned char *kstr,int klen,
512 pem_password_cb *callback, void *u);
513 STACK_OF(X509_INFO) * PEM_X509_INFO_read(FILE *fp, STACK_OF(X509_INFO) *sk,
514 pem_password_cb *cb, void *u);
517 int PEM_SealInit(PEM_ENCODE_SEAL_CTX *ctx, EVP_CIPHER *type,
518 EVP_MD *md_type, unsigned char **ek, int *ekl,
519 unsigned char *iv, EVP_PKEY **pubk, int npubk);
520 void PEM_SealUpdate(PEM_ENCODE_SEAL_CTX *ctx, unsigned char *out, int *outl,
521 unsigned char *in, int inl);
522 int PEM_SealFinal(PEM_ENCODE_SEAL_CTX *ctx, unsigned char *sig,int *sigl,
523 unsigned char *out, int *outl, EVP_PKEY *priv);
525 void PEM_SignInit(EVP_MD_CTX *ctx, EVP_MD *type);
526 void PEM_SignUpdate(EVP_MD_CTX *ctx,unsigned char *d,unsigned int cnt);
527 int PEM_SignFinal(EVP_MD_CTX *ctx, unsigned char *sigret,
528 unsigned int *siglen, EVP_PKEY *pkey);
530 void ERR_load_PEM_strings(void);
532 int PEM_def_callback(char *buf, int num, int w, void *key);
533 void PEM_proc_type(char *buf, int type);
534 void PEM_dek_info(char *buf, const char *type, int len, char *str);
536 #ifndef SSLEAY_MACROS
538 #include <openssl/symhacks.h>
540 DECLARE_PEM_rw(X509, X509)
542 DECLARE_PEM_rw(X509_AUX, X509)
544 DECLARE_PEM_rw(X509_REQ, X509_REQ)
545 DECLARE_PEM_write(X509_REQ_NEW, X509_REQ)
547 DECLARE_PEM_rw(X509_CRL, X509_CRL)
549 DECLARE_PEM_rw(PKCS7, PKCS7)
551 DECLARE_PEM_rw(NETSCAPE_CERT_SEQUENCE, NETSCAPE_CERT_SEQUENCE)
553 DECLARE_PEM_rw(PKCS8, X509_SIG)
555 DECLARE_PEM_rw(PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO)
557 #ifndef OPENSSL_NO_RSA
559 DECLARE_PEM_rw_cb(RSAPrivateKey, RSA)
561 DECLARE_PEM_rw(RSAPublicKey, RSA)
562 DECLARE_PEM_rw(RSA_PUBKEY, RSA)
566 #ifndef OPENSSL_NO_DSA
568 DECLARE_PEM_rw_cb(DSAPrivateKey, DSA)
570 DECLARE_PEM_rw(DSA_PUBKEY, DSA)
572 DECLARE_PEM_rw(DSAparams, DSA)
576 #ifndef OPENSSL_NO_DH
578 DECLARE_PEM_rw(DHparams, DH)
582 DECLARE_PEM_rw_cb(PrivateKey, EVP_PKEY)
584 DECLARE_PEM_rw(PUBKEY, EVP_PKEY)
586 int PEM_write_bio_PKCS8PrivateKey_nid(BIO *bp, EVP_PKEY *x, int nid,
587 char *kstr, int klen,
588 pem_password_cb *cb, void *u);
589 int PEM_write_bio_PKCS8PrivateKey(BIO *, EVP_PKEY *, const EVP_CIPHER *,
590 char *, int, pem_password_cb *, void *);
591 int i2d_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY *x, const EVP_CIPHER *enc,
592 char *kstr, int klen,
593 pem_password_cb *cb, void *u);
594 int i2d_PKCS8PrivateKey_nid_bio(BIO *bp, EVP_PKEY *x, int nid,
595 char *kstr, int klen,
596 pem_password_cb *cb, void *u);
597 EVP_PKEY *d2i_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY **x, pem_password_cb *cb, void *u);
599 int i2d_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY *x, const EVP_CIPHER *enc,
600 char *kstr, int klen,
601 pem_password_cb *cb, void *u);
602 int i2d_PKCS8PrivateKey_nid_fp(FILE *fp, EVP_PKEY *x, int nid,
603 char *kstr, int klen,
604 pem_password_cb *cb, void *u);
605 int PEM_write_PKCS8PrivateKey_nid(FILE *fp, EVP_PKEY *x, int nid,
606 char *kstr, int klen,
607 pem_password_cb *cb, void *u);
609 EVP_PKEY *d2i_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY **x, pem_password_cb *cb, void *u);
611 int PEM_write_PKCS8PrivateKey(FILE *fp,EVP_PKEY *x,const EVP_CIPHER *enc,
612 char *kstr,int klen, pem_password_cb *cd, void *u);
614 #endif /* SSLEAY_MACROS */
617 /* BEGIN ERROR CODES */
618 /* The following lines are auto generated by the script mkerr.pl. Any changes
619 * made after this point may be overwritten when the script is next run.
622 /* Error codes for the PEM functions. */
624 /* Function codes. */
625 #define PEM_F_D2I_PKCS8PRIVATEKEY_BIO 120
626 #define PEM_F_D2I_PKCS8PRIVATEKEY_FP 121
627 #define PEM_F_DEF_CALLBACK 100
628 #define PEM_F_LOAD_IV 101
629 #define PEM_F_PEM_ASN1_READ 102
630 #define PEM_F_PEM_ASN1_READ_BIO 103
631 #define PEM_F_PEM_ASN1_WRITE 104
632 #define PEM_F_PEM_ASN1_WRITE_BIO 105
633 #define PEM_F_PEM_DO_HEADER 106
634 #define PEM_F_PEM_F_DO_PK8KEY_FP 122
635 #define PEM_F_PEM_F_PEM_WRITE_PKCS8PRIVATEKEY 118
636 #define PEM_F_PEM_GET_EVP_CIPHER_INFO 107
637 #define PEM_F_PEM_READ 108
638 #define PEM_F_PEM_READ_BIO 109
639 #define PEM_F_PEM_SEALFINAL 110
640 #define PEM_F_PEM_SEALINIT 111
641 #define PEM_F_PEM_SIGNFINAL 112
642 #define PEM_F_PEM_WRITE 113
643 #define PEM_F_PEM_WRITE_BIO 114
644 #define PEM_F_PEM_WRITE_BIO_PKCS8PRIVATEKEY 119
645 #define PEM_F_PEM_X509_INFO_READ 115
646 #define PEM_F_PEM_X509_INFO_READ_BIO 116
647 #define PEM_F_PEM_X509_INFO_WRITE_BIO 117
650 #define PEM_R_BAD_BASE64_DECODE 100
651 #define PEM_R_BAD_DECRYPT 101
652 #define PEM_R_BAD_END_LINE 102
653 #define PEM_R_BAD_IV_CHARS 103
654 #define PEM_R_BAD_PASSWORD_READ 104
655 #define PEM_R_ERROR_CONVERTING_PRIVATE_KEY 115
656 #define PEM_R_NOT_DEK_INFO 105
657 #define PEM_R_NOT_ENCRYPTED 106
658 #define PEM_R_NOT_PROC_TYPE 107
659 #define PEM_R_NO_START_LINE 108
660 #define PEM_R_PROBLEMS_GETTING_PASSWORD 109
661 #define PEM_R_PUBLIC_KEY_NO_RSA 110
662 #define PEM_R_READ_KEY 111
663 #define PEM_R_SHORT_HEADER 112
664 #define PEM_R_UNSUPPORTED_CIPHER 113
665 #define PEM_R_UNSUPPORTED_ENCRYPTION 114