2 /* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
62 #include <openssl/e_os2.h>
63 #ifndef OPENSSL_NO_BIO
64 #include <openssl/bio.h>
66 #ifndef OPENSSL_NO_STACK
67 #include <openssl/stack.h>
69 #include <openssl/evp.h>
70 #include <openssl/x509.h>
71 #include <openssl/pem2.h>
77 #define PEM_BUFSIZE 1024
79 #define PEM_OBJ_UNDEF 0
80 #define PEM_OBJ_X509 1
81 #define PEM_OBJ_X509_REQ 2
83 #define PEM_OBJ_SSL_SESSION 4
84 #define PEM_OBJ_PRIV_KEY 10
85 #define PEM_OBJ_PRIV_RSA 11
86 #define PEM_OBJ_PRIV_DSA 12
87 #define PEM_OBJ_PRIV_DH 13
88 #define PEM_OBJ_PUB_RSA 14
89 #define PEM_OBJ_PUB_DSA 15
90 #define PEM_OBJ_PUB_DH 16
91 #define PEM_OBJ_DHPARAMS 17
92 #define PEM_OBJ_DSAPARAMS 18
93 #define PEM_OBJ_PRIV_RSA_PUBLIC 19
94 #define PEM_OBJ_PRIV_ECDSA 20
95 #define PEM_OBJ_PUB_ECDSA 21
96 #define PEM_OBJ_ECPARAMETERS 22
99 #define PEM_DEK_DES_CBC 40
100 #define PEM_DEK_IDEA_CBC 45
101 #define PEM_DEK_DES_EDE 50
102 #define PEM_DEK_DES_ECB 60
103 #define PEM_DEK_RSA 70
104 #define PEM_DEK_RSA_MD2 80
105 #define PEM_DEK_RSA_MD5 90
107 #define PEM_MD_MD2 NID_md2
108 #define PEM_MD_MD5 NID_md5
109 #define PEM_MD_SHA NID_sha
110 #define PEM_MD_MD2_RSA NID_md2WithRSAEncryption
111 #define PEM_MD_MD5_RSA NID_md5WithRSAEncryption
112 #define PEM_MD_SHA_RSA NID_sha1WithRSAEncryption
114 #define PEM_STRING_X509_OLD "X509 CERTIFICATE"
115 #define PEM_STRING_X509 "CERTIFICATE"
116 #define PEM_STRING_X509_PAIR "CERTIFICATE PAIR"
117 #define PEM_STRING_X509_TRUSTED "TRUSTED CERTIFICATE"
118 #define PEM_STRING_X509_REQ_OLD "NEW CERTIFICATE REQUEST"
119 #define PEM_STRING_X509_REQ "CERTIFICATE REQUEST"
120 #define PEM_STRING_X509_CRL "X509 CRL"
121 #define PEM_STRING_EVP_PKEY "ANY PRIVATE KEY"
122 #define PEM_STRING_PUBLIC "PUBLIC KEY"
123 #define PEM_STRING_RSA "RSA PRIVATE KEY"
124 #define PEM_STRING_RSA_PUBLIC "RSA PUBLIC KEY"
125 #define PEM_STRING_DSA "DSA PRIVATE KEY"
126 #define PEM_STRING_DSA_PUBLIC "DSA PUBLIC KEY"
127 #define PEM_STRING_PKCS7 "PKCS7"
128 #define PEM_STRING_PKCS8 "ENCRYPTED PRIVATE KEY"
129 #define PEM_STRING_PKCS8INF "PRIVATE KEY"
130 #define PEM_STRING_DHPARAMS "DH PARAMETERS"
131 #define PEM_STRING_SSL_SESSION "SSL SESSION PARAMETERS"
132 #define PEM_STRING_DSAPARAMS "DSA PARAMETERS"
133 #define PEM_STRING_ECDSA_PUBLIC "ECDSA PUBLIC KEY"
134 #define PEM_STRING_ECPARAMETERS "EC PARAMETERS"
135 #define PEM_STRING_ECPRIVATEKEY "EC PRIVATE KEY"
137 /* Note that this structure is initialised by PEM_SealInit and cleaned up
138 by PEM_SealFinal (at least for now) */
139 typedef struct PEM_Encode_Seal_st
141 EVP_ENCODE_CTX encode;
143 EVP_CIPHER_CTX cipher;
144 } PEM_ENCODE_SEAL_CTX;
146 /* enc_type is one off */
147 #define PEM_TYPE_ENCRYPTED 10
148 #define PEM_TYPE_MIC_ONLY 20
149 #define PEM_TYPE_MIC_CLEAR 30
150 #define PEM_TYPE_CLEAR 40
152 typedef struct pem_recip_st
159 /* char iv[8]; unused and wrong size */
162 typedef struct pem_ctx_st
164 int type; /* what type of object */
175 /* unused, and wrong size
176 unsigned char iv[8]; */
179 PEM_USER *originator;
182 PEM_USER **recipient;
184 #ifndef OPENSSL_NO_STACK
185 STACK *x509_chain; /* certificate chain */
187 char *x509_chain; /* certificate chain */
189 EVP_MD *md; /* signature type */
191 int md_enc; /* is the md encrypted or not? */
192 int md_len; /* length of md_data */
193 char *md_data; /* message digest, could be pkey encrypted */
195 EVP_CIPHER *dec; /* date encryption cipher */
196 int key_len; /* key length */
197 unsigned char *key; /* key */
198 /* unused, and wrong size
199 unsigned char iv[8]; */
202 int data_enc; /* is the data encrypted */
207 /* These macros make the PEM_read/PEM_write functions easier to maintain and
208 * write. Now they are all implemented with either:
209 * IMPLEMENT_PEM_rw(...) or IMPLEMENT_PEM_rw_cb(...)
212 #ifdef OPENSSL_NO_FP_API
214 #define IMPLEMENT_PEM_read_fp(name, type, str, asn1) /**/
215 #define IMPLEMENT_PEM_write_fp(name, type, str, asn1) /**/
216 #define IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1) /**/
220 #define IMPLEMENT_PEM_read_fp(name, type, str, asn1) \
221 type *PEM_read_##name(FILE *fp, type **x, pem_password_cb *cb, void *u)\
223 return((type *)PEM_ASN1_read((char *(*)())d2i_##asn1, str,fp,(char **)x,\
227 #define IMPLEMENT_PEM_write_fp(name, type, str, asn1) \
228 int PEM_write_##name(FILE *fp, type *x) \
230 return(PEM_ASN1_write((int (*)())i2d_##asn1,str,fp, (char *)x, \
231 NULL,NULL,0,NULL,NULL)); \
234 #define IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1) \
235 int PEM_write_##name(FILE *fp, type *x, const EVP_CIPHER *enc, \
236 unsigned char *kstr, int klen, pem_password_cb *cb, \
239 return(PEM_ASN1_write((int (*)())i2d_##asn1,str,fp, \
240 (char *)x,enc,kstr,klen,cb,u)); \
245 #define IMPLEMENT_PEM_read_bio(name, type, str, asn1) \
246 type *PEM_read_bio_##name(BIO *bp, type **x, pem_password_cb *cb, void *u)\
248 return((type *)PEM_ASN1_read_bio((char *(*)())d2i_##asn1, str,bp,\
252 #define IMPLEMENT_PEM_write_bio(name, type, str, asn1) \
253 int PEM_write_bio_##name(BIO *bp, type *x) \
255 return(PEM_ASN1_write_bio((int (*)())i2d_##asn1,str,bp, (char *)x, \
256 NULL,NULL,0,NULL,NULL)); \
259 #define IMPLEMENT_PEM_write_cb_bio(name, type, str, asn1) \
260 int PEM_write_bio_##name(BIO *bp, type *x, const EVP_CIPHER *enc, \
261 unsigned char *kstr, int klen, pem_password_cb *cb, void *u) \
263 return(PEM_ASN1_write_bio((int (*)())i2d_##asn1,str,bp, \
264 (char *)x,enc,kstr,klen,cb,u)); \
267 #define IMPLEMENT_PEM_write(name, type, str, asn1) \
268 IMPLEMENT_PEM_write_bio(name, type, str, asn1) \
269 IMPLEMENT_PEM_write_fp(name, type, str, asn1)
271 #define IMPLEMENT_PEM_write_cb(name, type, str, asn1) \
272 IMPLEMENT_PEM_write_cb_bio(name, type, str, asn1) \
273 IMPLEMENT_PEM_write_cb_fp(name, type, str, asn1)
275 #define IMPLEMENT_PEM_read(name, type, str, asn1) \
276 IMPLEMENT_PEM_read_bio(name, type, str, asn1) \
277 IMPLEMENT_PEM_read_fp(name, type, str, asn1)
279 #define IMPLEMENT_PEM_rw(name, type, str, asn1) \
280 IMPLEMENT_PEM_read(name, type, str, asn1) \
281 IMPLEMENT_PEM_write(name, type, str, asn1)
283 #define IMPLEMENT_PEM_rw_cb(name, type, str, asn1) \
284 IMPLEMENT_PEM_read(name, type, str, asn1) \
285 IMPLEMENT_PEM_write_cb(name, type, str, asn1)
287 /* These are the same except they are for the declarations */
289 #if defined(OPENSSL_SYS_WIN16) || defined(OPENSSL_NO_FP_API)
291 #define DECLARE_PEM_read_fp(name, type) /**/
292 #define DECLARE_PEM_write_fp(name, type) /**/
293 #define DECLARE_PEM_write_cb_fp(name, type) /**/
297 #define DECLARE_PEM_read_fp(name, type) \
298 type *PEM_read_##name(FILE *fp, type **x, pem_password_cb *cb, void *u);
300 #define DECLARE_PEM_write_fp(name, type) \
301 int PEM_write_##name(FILE *fp, type *x);
303 #define DECLARE_PEM_write_cb_fp(name, type) \
304 int PEM_write_##name(FILE *fp, type *x, const EVP_CIPHER *enc, \
305 unsigned char *kstr, int klen, pem_password_cb *cb, void *u);
309 #ifndef OPENSSL_NO_BIO
310 #define DECLARE_PEM_read_bio(name, type) \
311 type *PEM_read_bio_##name(BIO *bp, type **x, pem_password_cb *cb, void *u);
313 #define DECLARE_PEM_write_bio(name, type) \
314 int PEM_write_bio_##name(BIO *bp, type *x);
316 #define DECLARE_PEM_write_cb_bio(name, type) \
317 int PEM_write_bio_##name(BIO *bp, type *x, const EVP_CIPHER *enc, \
318 unsigned char *kstr, int klen, pem_password_cb *cb, void *u);
322 #define DECLARE_PEM_read_bio(name, type) /**/
323 #define DECLARE_PEM_write_bio(name, type) /**/
324 #define DECLARE_PEM_write_cb_bio(name, type) /**/
328 #define DECLARE_PEM_write(name, type) \
329 DECLARE_PEM_write_bio(name, type) \
330 DECLARE_PEM_write_fp(name, type)
332 #define DECLARE_PEM_write_cb(name, type) \
333 DECLARE_PEM_write_cb_bio(name, type) \
334 DECLARE_PEM_write_cb_fp(name, type)
336 #define DECLARE_PEM_read(name, type) \
337 DECLARE_PEM_read_bio(name, type) \
338 DECLARE_PEM_read_fp(name, type)
340 #define DECLARE_PEM_rw(name, type) \
341 DECLARE_PEM_read(name, type) \
342 DECLARE_PEM_write(name, type)
344 #define DECLARE_PEM_rw_cb(name, type) \
345 DECLARE_PEM_read(name, type) \
346 DECLARE_PEM_write_cb(name, type)
350 #define PEM_write_SSL_SESSION(fp,x) \
351 PEM_ASN1_write((int (*)())i2d_SSL_SESSION, \
352 PEM_STRING_SSL_SESSION,fp, (char *)x, NULL,NULL,0,NULL,NULL)
353 #define PEM_write_X509(fp,x) \
354 PEM_ASN1_write((int (*)())i2d_X509,PEM_STRING_X509,fp, \
355 (char *)x, NULL,NULL,0,NULL,NULL)
356 #define PEM_write_X509_REQ(fp,x) PEM_ASN1_write( \
357 (int (*)())i2d_X509_REQ,PEM_STRING_X509_REQ,fp,(char *)x, \
358 NULL,NULL,0,NULL,NULL)
359 #define PEM_write_X509_CRL(fp,x) \
360 PEM_ASN1_write((int (*)())i2d_X509_CRL,PEM_STRING_X509_CRL, \
361 fp,(char *)x, NULL,NULL,0,NULL,NULL)
362 #define PEM_write_RSAPrivateKey(fp,x,enc,kstr,klen,cb,u) \
363 PEM_ASN1_write((int (*)())i2d_RSAPrivateKey,PEM_STRING_RSA,fp,\
364 (char *)x,enc,kstr,klen,cb,u)
365 #define PEM_write_RSAPublicKey(fp,x) \
366 PEM_ASN1_write((int (*)())i2d_RSAPublicKey,\
367 PEM_STRING_RSA_PUBLIC,fp,(char *)x,NULL,NULL,0,NULL,NULL)
368 #define PEM_write_DSAPrivateKey(fp,x,enc,kstr,klen,cb,u) \
369 PEM_ASN1_write((int (*)())i2d_DSAPrivateKey,PEM_STRING_DSA,fp,\
370 (char *)x,enc,kstr,klen,cb,u)
371 #define PEM_write_PrivateKey(bp,x,enc,kstr,klen,cb,u) \
372 PEM_ASN1_write((int (*)())i2d_PrivateKey,\
373 (((x)->type == EVP_PKEY_DSA)?PEM_STRING_DSA:PEM_STRING_RSA),\
374 bp,(char *)x,enc,kstr,klen,cb,u)
375 #define PEM_write_PKCS7(fp,x) \
376 PEM_ASN1_write((int (*)())i2d_PKCS7,PEM_STRING_PKCS7,fp, \
377 (char *)x, NULL,NULL,0,NULL,NULL)
378 #define PEM_write_DHparams(fp,x) \
379 PEM_ASN1_write((int (*)())i2d_DHparams,PEM_STRING_DHPARAMS,fp,\
380 (char *)x,NULL,NULL,0,NULL,NULL)
382 #define PEM_write_NETSCAPE_CERT_SEQUENCE(fp,x) \
383 PEM_ASN1_write((int (*)())i2d_NETSCAPE_CERT_SEQUENCE, \
384 PEM_STRING_X509,fp, \
385 (char *)x, NULL,NULL,0,NULL,NULL)
387 #define PEM_read_SSL_SESSION(fp,x,cb,u) (SSL_SESSION *)PEM_ASN1_read( \
388 (char *(*)())d2i_SSL_SESSION,PEM_STRING_SSL_SESSION,fp,(char **)x,cb,u)
389 #define PEM_read_X509(fp,x,cb,u) (X509 *)PEM_ASN1_read( \
390 (char *(*)())d2i_X509,PEM_STRING_X509,fp,(char **)x,cb,u)
391 #define PEM_read_X509_REQ(fp,x,cb,u) (X509_REQ *)PEM_ASN1_read( \
392 (char *(*)())d2i_X509_REQ,PEM_STRING_X509_REQ,fp,(char **)x,cb,u)
393 #define PEM_read_X509_CRL(fp,x,cb,u) (X509_CRL *)PEM_ASN1_read( \
394 (char *(*)())d2i_X509_CRL,PEM_STRING_X509_CRL,fp,(char **)x,cb,u)
395 #define PEM_read_RSAPrivateKey(fp,x,cb,u) (RSA *)PEM_ASN1_read( \
396 (char *(*)())d2i_RSAPrivateKey,PEM_STRING_RSA,fp,(char **)x,cb,u)
397 #define PEM_read_RSAPublicKey(fp,x,cb,u) (RSA *)PEM_ASN1_read( \
398 (char *(*)())d2i_RSAPublicKey,PEM_STRING_RSA_PUBLIC,fp,(char **)x,cb,u)
399 #define PEM_read_DSAPrivateKey(fp,x,cb,u) (DSA *)PEM_ASN1_read( \
400 (char *(*)())d2i_DSAPrivateKey,PEM_STRING_DSA,fp,(char **)x,cb,u)
401 #define PEM_read_PrivateKey(fp,x,cb,u) (EVP_PKEY *)PEM_ASN1_read( \
402 (char *(*)())d2i_PrivateKey,PEM_STRING_EVP_PKEY,fp,(char **)x,cb,u)
403 #define PEM_read_PKCS7(fp,x,cb,u) (PKCS7 *)PEM_ASN1_read( \
404 (char *(*)())d2i_PKCS7,PEM_STRING_PKCS7,fp,(char **)x,cb,u)
405 #define PEM_read_DHparams(fp,x,cb,u) (DH *)PEM_ASN1_read( \
406 (char *(*)())d2i_DHparams,PEM_STRING_DHPARAMS,fp,(char **)x,cb,u)
408 #define PEM_read_NETSCAPE_CERT_SEQUENCE(fp,x,cb,u) \
409 (NETSCAPE_CERT_SEQUENCE *)PEM_ASN1_read( \
410 (char *(*)())d2i_NETSCAPE_CERT_SEQUENCE,PEM_STRING_X509,fp,\
413 #define PEM_write_bio_SSL_SESSION(bp,x) \
414 PEM_ASN1_write_bio((int (*)())i2d_SSL_SESSION, \
415 PEM_STRING_SSL_SESSION,bp, (char *)x, NULL,NULL,0,NULL,NULL)
416 #define PEM_write_bio_X509(bp,x) \
417 PEM_ASN1_write_bio((int (*)())i2d_X509,PEM_STRING_X509,bp, \
418 (char *)x, NULL,NULL,0,NULL,NULL)
419 #define PEM_write_bio_X509_REQ(bp,x) PEM_ASN1_write_bio( \
420 (int (*)())i2d_X509_REQ,PEM_STRING_X509_REQ,bp,(char *)x, \
421 NULL,NULL,0,NULL,NULL)
422 #define PEM_write_bio_X509_CRL(bp,x) \
423 PEM_ASN1_write_bio((int (*)())i2d_X509_CRL,PEM_STRING_X509_CRL,\
424 bp,(char *)x, NULL,NULL,0,NULL,NULL)
425 #define PEM_write_bio_RSAPrivateKey(bp,x,enc,kstr,klen,cb,u) \
426 PEM_ASN1_write_bio((int (*)())i2d_RSAPrivateKey,PEM_STRING_RSA,\
427 bp,(char *)x,enc,kstr,klen,cb,u)
428 #define PEM_write_bio_RSAPublicKey(bp,x) \
429 PEM_ASN1_write_bio((int (*)())i2d_RSAPublicKey, \
430 PEM_STRING_RSA_PUBLIC,\
431 bp,(char *)x,NULL,NULL,0,NULL,NULL)
432 #define PEM_write_bio_DSAPrivateKey(bp,x,enc,kstr,klen,cb,u) \
433 PEM_ASN1_write_bio((int (*)())i2d_DSAPrivateKey,PEM_STRING_DSA,\
434 bp,(char *)x,enc,kstr,klen,cb,u)
435 #define PEM_write_bio_PrivateKey(bp,x,enc,kstr,klen,cb,u) \
436 PEM_ASN1_write_bio((int (*)())i2d_PrivateKey,\
437 (((x)->type == EVP_PKEY_DSA)?PEM_STRING_DSA:PEM_STRING_RSA),\
438 bp,(char *)x,enc,kstr,klen,cb,u)
439 #define PEM_write_bio_PKCS7(bp,x) \
440 PEM_ASN1_write_bio((int (*)())i2d_PKCS7,PEM_STRING_PKCS7,bp, \
441 (char *)x, NULL,NULL,0,NULL,NULL)
442 #define PEM_write_bio_DHparams(bp,x) \
443 PEM_ASN1_write_bio((int (*)())i2d_DHparams,PEM_STRING_DHPARAMS,\
444 bp,(char *)x,NULL,NULL,0,NULL,NULL)
445 #define PEM_write_bio_DSAparams(bp,x) \
446 PEM_ASN1_write_bio((int (*)())i2d_DSAparams, \
447 PEM_STRING_DSAPARAMS,bp,(char *)x,NULL,NULL,0,NULL,NULL)
449 #define PEM_write_bio_NETSCAPE_CERT_SEQUENCE(bp,x) \
450 PEM_ASN1_write_bio((int (*)())i2d_NETSCAPE_CERT_SEQUENCE, \
451 PEM_STRING_X509,bp, \
452 (char *)x, NULL,NULL,0,NULL,NULL)
454 #define PEM_read_bio_SSL_SESSION(bp,x,cb,u) (SSL_SESSION *)PEM_ASN1_read_bio( \
455 (char *(*)())d2i_SSL_SESSION,PEM_STRING_SSL_SESSION,bp,(char **)x,cb,u)
456 #define PEM_read_bio_X509(bp,x,cb,u) (X509 *)PEM_ASN1_read_bio( \
457 (char *(*)())d2i_X509,PEM_STRING_X509,bp,(char **)x,cb,u)
458 #define PEM_read_bio_X509_REQ(bp,x,cb,u) (X509_REQ *)PEM_ASN1_read_bio( \
459 (char *(*)())d2i_X509_REQ,PEM_STRING_X509_REQ,bp,(char **)x,cb,u)
460 #define PEM_read_bio_X509_CRL(bp,x,cb,u) (X509_CRL *)PEM_ASN1_read_bio( \
461 (char *(*)())d2i_X509_CRL,PEM_STRING_X509_CRL,bp,(char **)x,cb,u)
462 #define PEM_read_bio_RSAPrivateKey(bp,x,cb,u) (RSA *)PEM_ASN1_read_bio( \
463 (char *(*)())d2i_RSAPrivateKey,PEM_STRING_RSA,bp,(char **)x,cb,u)
464 #define PEM_read_bio_RSAPublicKey(bp,x,cb,u) (RSA *)PEM_ASN1_read_bio( \
465 (char *(*)())d2i_RSAPublicKey,PEM_STRING_RSA_PUBLIC,bp,(char **)x,cb,u)
466 #define PEM_read_bio_DSAPrivateKey(bp,x,cb,u) (DSA *)PEM_ASN1_read_bio( \
467 (char *(*)())d2i_DSAPrivateKey,PEM_STRING_DSA,bp,(char **)x,cb,u)
468 #define PEM_read_bio_PrivateKey(bp,x,cb,u) (EVP_PKEY *)PEM_ASN1_read_bio( \
469 (char *(*)())d2i_PrivateKey,PEM_STRING_EVP_PKEY,bp,(char **)x,cb,u)
471 #define PEM_read_bio_PKCS7(bp,x,cb,u) (PKCS7 *)PEM_ASN1_read_bio( \
472 (char *(*)())d2i_PKCS7,PEM_STRING_PKCS7,bp,(char **)x,cb,u)
473 #define PEM_read_bio_DHparams(bp,x,cb,u) (DH *)PEM_ASN1_read_bio( \
474 (char *(*)())d2i_DHparams,PEM_STRING_DHPARAMS,bp,(char **)x,cb,u)
475 #define PEM_read_bio_DSAparams(bp,x,cb,u) (DSA *)PEM_ASN1_read_bio( \
476 (char *(*)())d2i_DSAparams,PEM_STRING_DSAPARAMS,bp,(char **)x,cb,u)
478 #define PEM_read_bio_NETSCAPE_CERT_SEQUENCE(bp,x,cb,u) \
479 (NETSCAPE_CERT_SEQUENCE *)PEM_ASN1_read_bio( \
480 (char *(*)())d2i_NETSCAPE_CERT_SEQUENCE,PEM_STRING_X509,bp,\
486 /* "userdata": new with OpenSSL 0.9.4 */
487 typedef int pem_password_cb(char *buf, int size, int rwflag, void *userdata);
489 /* OpenSSL 0.9.3, 0.9.3a */
490 typedef int pem_password_cb(char *buf, int size, int rwflag);
493 int PEM_get_EVP_CIPHER_INFO(char *header, EVP_CIPHER_INFO *cipher);
494 int PEM_do_header (EVP_CIPHER_INFO *cipher, unsigned char *data,long *len,
495 pem_password_cb *callback,void *u);
497 #ifndef OPENSSL_NO_BIO
498 int PEM_read_bio(BIO *bp, char **name, char **header,
499 unsigned char **data,long *len);
500 int PEM_write_bio(BIO *bp,const char *name,char *hdr,unsigned char *data,
502 int PEM_bytes_read_bio(unsigned char **pdata, long *plen, char **pnm, const char *name, BIO *bp,
503 pem_password_cb *cb, void *u);
504 char * PEM_ASN1_read_bio(char *(*d2i)(),const char *name,BIO *bp,char **x,
505 pem_password_cb *cb, void *u);
506 int PEM_ASN1_write_bio(int (*i2d)(),const char *name,BIO *bp,char *x,
507 const EVP_CIPHER *enc,unsigned char *kstr,int klen,
508 pem_password_cb *cb, void *u);
509 STACK_OF(X509_INFO) * PEM_X509_INFO_read_bio(BIO *bp, STACK_OF(X509_INFO) *sk, pem_password_cb *cb, void *u);
510 int PEM_X509_INFO_write_bio(BIO *bp,X509_INFO *xi, EVP_CIPHER *enc,
511 unsigned char *kstr, int klen, pem_password_cb *cd, void *u);
514 #ifndef OPENSSL_SYS_WIN16
515 int PEM_read(FILE *fp, char **name, char **header,
516 unsigned char **data,long *len);
517 int PEM_write(FILE *fp,char *name,char *hdr,unsigned char *data,long len);
518 char * PEM_ASN1_read(char *(*d2i)(),const char *name,FILE *fp,char **x,
519 pem_password_cb *cb, void *u);
520 int PEM_ASN1_write(int (*i2d)(),const char *name,FILE *fp,char *x,
521 const EVP_CIPHER *enc,unsigned char *kstr,int klen,
522 pem_password_cb *callback, void *u);
523 STACK_OF(X509_INFO) * PEM_X509_INFO_read(FILE *fp, STACK_OF(X509_INFO) *sk,
524 pem_password_cb *cb, void *u);
527 int PEM_SealInit(PEM_ENCODE_SEAL_CTX *ctx, EVP_CIPHER *type,
528 EVP_MD *md_type, unsigned char **ek, int *ekl,
529 unsigned char *iv, EVP_PKEY **pubk, int npubk);
530 void PEM_SealUpdate(PEM_ENCODE_SEAL_CTX *ctx, unsigned char *out, int *outl,
531 unsigned char *in, int inl);
532 int PEM_SealFinal(PEM_ENCODE_SEAL_CTX *ctx, unsigned char *sig,int *sigl,
533 unsigned char *out, int *outl, EVP_PKEY *priv);
535 void PEM_SignInit(EVP_MD_CTX *ctx, EVP_MD *type);
536 void PEM_SignUpdate(EVP_MD_CTX *ctx,unsigned char *d,unsigned int cnt);
537 int PEM_SignFinal(EVP_MD_CTX *ctx, unsigned char *sigret,
538 unsigned int *siglen, EVP_PKEY *pkey);
540 int PEM_def_callback(char *buf, int num, int w, void *key);
541 void PEM_proc_type(char *buf, int type);
542 void PEM_dek_info(char *buf, const char *type, int len, char *str);
544 #ifndef SSLEAY_MACROS
546 #include <openssl/symhacks.h>
548 DECLARE_PEM_rw(X509, X509)
550 DECLARE_PEM_rw(X509_AUX, X509)
552 DECLARE_PEM_rw(X509_CERT_PAIR, X509_CERT_PAIR)
554 DECLARE_PEM_rw(X509_REQ, X509_REQ)
555 DECLARE_PEM_write(X509_REQ_NEW, X509_REQ)
557 DECLARE_PEM_rw(X509_CRL, X509_CRL)
559 DECLARE_PEM_rw(PKCS7, PKCS7)
561 DECLARE_PEM_rw(NETSCAPE_CERT_SEQUENCE, NETSCAPE_CERT_SEQUENCE)
563 DECLARE_PEM_rw(PKCS8, X509_SIG)
565 DECLARE_PEM_rw(PKCS8_PRIV_KEY_INFO, PKCS8_PRIV_KEY_INFO)
567 #ifndef OPENSSL_NO_RSA
569 DECLARE_PEM_rw_cb(RSAPrivateKey, RSA)
571 DECLARE_PEM_rw(RSAPublicKey, RSA)
572 DECLARE_PEM_rw(RSA_PUBKEY, RSA)
576 #ifndef OPENSSL_NO_DSA
578 DECLARE_PEM_rw_cb(DSAPrivateKey, DSA)
580 DECLARE_PEM_rw(DSA_PUBKEY, DSA)
582 DECLARE_PEM_rw(DSAparams, DSA)
586 #ifndef OPENSSL_NO_EC
587 DECLARE_PEM_rw(ECPKParameters, EC_GROUP)
588 DECLARE_PEM_rw_cb(ECPrivateKey, EC_KEY)
589 DECLARE_PEM_rw(EC_PUBKEY, EC_KEY)
592 #ifndef OPENSSL_NO_DH
594 DECLARE_PEM_rw(DHparams, DH)
598 DECLARE_PEM_rw_cb(PrivateKey, EVP_PKEY)
600 DECLARE_PEM_rw(PUBKEY, EVP_PKEY)
602 int PEM_write_bio_PKCS8PrivateKey_nid(BIO *bp, EVP_PKEY *x, int nid,
603 char *kstr, int klen,
604 pem_password_cb *cb, void *u);
605 int PEM_write_bio_PKCS8PrivateKey(BIO *, EVP_PKEY *, const EVP_CIPHER *,
606 char *, int, pem_password_cb *, void *);
607 int i2d_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY *x, const EVP_CIPHER *enc,
608 char *kstr, int klen,
609 pem_password_cb *cb, void *u);
610 int i2d_PKCS8PrivateKey_nid_bio(BIO *bp, EVP_PKEY *x, int nid,
611 char *kstr, int klen,
612 pem_password_cb *cb, void *u);
613 EVP_PKEY *d2i_PKCS8PrivateKey_bio(BIO *bp, EVP_PKEY **x, pem_password_cb *cb, void *u);
615 int i2d_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY *x, const EVP_CIPHER *enc,
616 char *kstr, int klen,
617 pem_password_cb *cb, void *u);
618 int i2d_PKCS8PrivateKey_nid_fp(FILE *fp, EVP_PKEY *x, int nid,
619 char *kstr, int klen,
620 pem_password_cb *cb, void *u);
621 int PEM_write_PKCS8PrivateKey_nid(FILE *fp, EVP_PKEY *x, int nid,
622 char *kstr, int klen,
623 pem_password_cb *cb, void *u);
625 EVP_PKEY *d2i_PKCS8PrivateKey_fp(FILE *fp, EVP_PKEY **x, pem_password_cb *cb, void *u);
627 int PEM_write_PKCS8PrivateKey(FILE *fp,EVP_PKEY *x,const EVP_CIPHER *enc,
628 char *kstr,int klen, pem_password_cb *cd, void *u);
630 #endif /* SSLEAY_MACROS */
633 /* BEGIN ERROR CODES */
634 /* The following lines are auto generated by the script mkerr.pl. Any changes
635 * made after this point may be overwritten when the script is next run.
637 void ERR_load_PEM_strings(void);
639 /* Error codes for the PEM functions. */
641 /* Function codes. */
642 #define PEM_F_D2I_PKCS8PRIVATEKEY_BIO 120
643 #define PEM_F_D2I_PKCS8PRIVATEKEY_FP 121
644 #define PEM_F_DEF_CALLBACK 100
645 #define PEM_F_LOAD_IV 101
646 #define PEM_F_PEM_ASN1_READ 102
647 #define PEM_F_PEM_ASN1_READ_BIO 103
648 #define PEM_F_PEM_ASN1_WRITE 104
649 #define PEM_F_PEM_ASN1_WRITE_BIO 105
650 #define PEM_F_PEM_DO_HEADER 106
651 #define PEM_F_PEM_F_DO_PK8KEY_FP 122
652 #define PEM_F_PEM_F_PEM_WRITE_PKCS8PRIVATEKEY 118
653 #define PEM_F_PEM_GET_EVP_CIPHER_INFO 107
654 #define PEM_F_PEM_READ 108
655 #define PEM_F_PEM_READ_BIO 109
656 #define PEM_F_PEM_SEALFINAL 110
657 #define PEM_F_PEM_SEALINIT 111
658 #define PEM_F_PEM_SIGNFINAL 112
659 #define PEM_F_PEM_WRITE 113
660 #define PEM_F_PEM_WRITE_BIO 114
661 #define PEM_F_PEM_WRITE_BIO_PKCS8PRIVATEKEY 119
662 #define PEM_F_PEM_X509_INFO_READ 115
663 #define PEM_F_PEM_X509_INFO_READ_BIO 116
664 #define PEM_F_PEM_X509_INFO_WRITE_BIO 117
667 #define PEM_R_BAD_BASE64_DECODE 100
668 #define PEM_R_BAD_DECRYPT 101
669 #define PEM_R_BAD_END_LINE 102
670 #define PEM_R_BAD_IV_CHARS 103
671 #define PEM_R_BAD_PASSWORD_READ 104
672 #define PEM_R_ERROR_CONVERTING_PRIVATE_KEY 115
673 #define PEM_R_NOT_DEK_INFO 105
674 #define PEM_R_NOT_ENCRYPTED 106
675 #define PEM_R_NOT_PROC_TYPE 107
676 #define PEM_R_NO_START_LINE 108
677 #define PEM_R_PROBLEMS_GETTING_PASSWORD 109
678 #define PEM_R_PUBLIC_KEY_NO_RSA 110
679 #define PEM_R_READ_KEY 111
680 #define PEM_R_SHORT_HEADER 112
681 #define PEM_R_UNSUPPORTED_CIPHER 113
682 #define PEM_R_UNSUPPORTED_ENCRYPTION 114