~ubuntu-branches/ubuntu/maverick/openssl/maverick

« back to all changes in this revision

Viewing changes to crypto/pkcs12/p12_crt.c

Committer: Bazaar Package Importer
Author(s): Kurt Roeckx
Date: 2005-12-13 21:37:42 UTC
mto: (11.1.1 lenny)
mto: This revision was merged to the branch mainline in revision 4.
Revision ID: james.westby@ubuntu.com-20051213213742-d0ydaylf80l16bj1

Tags: upstream-0.9.8a

Import upstream version 0.9.8a

files added:
ChangeLog.0_9_7-stable_not-in-head

ChangeLog.0_9_7-stable_not-in-head_FIPS

INSTALL.NW

INSTALL.W64

Makefile.shared

Netware

Netware/build.bat

Netware/cpy_tests.bat

Netware/do_tests.pl

Netware/globals.txt

Netware/readme.txt

Netware/set_env.bat

apps/ec.c

apps/ecparam.c

apps/timeouts.h

certs/argena.pem

certs/argeng.pem

certs/demo

certs/demo/ca-cert.pem

certs/demo/dsa-ca.pem

certs/demo/dsa-pca.pem

certs/demo/nortelCA.pem

certs/demo/pca-cert.pem

certs/demo/timCA.pem

certs/demo/tjhCA.pem

certs/demo/vsigntca.pem

certs/expired/RegTP-4R.pem

certs/expired/factory.pem

certs/expired/rsa-cca.pem

certs/expired/vsign2.pem

certs/wellsfgo.pem

crypto/LPdir_nyi.c

crypto/LPdir_unix.c

crypto/LPdir_vms.c

crypto/LPdir_win.c

crypto/LPdir_win32.c

crypto/LPdir_wince.c

crypto/aes/asm

crypto/aes/asm/aes-586.pl

crypto/aes/asm/aes-ia64.S

crypto/asn1/asn1_gen.c

crypto/bio/bio_lcl.h

crypto/bio/bss_dgram.c

crypto/bn/asm/ppc.pl

crypto/bn/bn_const.c

crypto/bn/bn_depr.c

crypto/bn/bn_gf2m.c

crypto/bn/bn_nist.c

crypto/des/asm/des_enc.m4

crypto/dh/dh_depr.c

crypto/dsa/dsa_depr.c

crypto/ec/ec2_mult.c

crypto/ec/ec2_smpl.c

crypto/ec/ec2_smpt.c

crypto/ec/ec_asn1.c

crypto/ec/ec_check.c

crypto/ec/ec_curve.c

crypto/ec/ec_key.c

crypto/ec/ec_print.c

crypto/ecdh

crypto/ecdh/Makefile

crypto/ecdh/ecdh.h

crypto/ecdh/ecdhtest.c

crypto/ecdh/ech_err.c

crypto/ecdh/ech_key.c

crypto/ecdh/ech_lib.c

crypto/ecdh/ech_locl.h

crypto/ecdh/ech_ossl.c

crypto/ecdsa

crypto/ecdsa/Makefile

crypto/ecdsa/ecdsa.h

crypto/ecdsa/ecdsatest.c

crypto/ecdsa/ecs_asn1.c

crypto/ecdsa/ecs_err.c

crypto/ecdsa/ecs_lib.c

crypto/ecdsa/ecs_locl.h

crypto/ecdsa/ecs_ossl.c

crypto/ecdsa/ecs_sign.c

crypto/ecdsa/ecs_vrf.c

crypto/engine/eng_cryptodev.c

crypto/engine/eng_padlock.c

crypto/engine/tb_ecdh.c

crypto/engine/tb_ecdsa.c

crypto/engine/tb_store.c

crypto/evp/m_ecdsa.c

crypto/ia64cpuid.S

crypto/md5/asm/md5-x86_64.pl

crypto/o_dir.c

crypto/o_dir.h

crypto/o_dir_test.c

crypto/perlasm/x86_64-xlate.pl

crypto/pqueue

crypto/pqueue/Makefile

crypto/pqueue/pq_compat.h

crypto/pqueue/pq_test.c

crypto/pqueue/pqueue.c

crypto/pqueue/pqueue.h

crypto/rand/rand_nw.c

crypto/rc4/asm/rc4-ia64.S

crypto/rc4/asm/rc4-x86_64.pl

crypto/rsa/rsa_depr.c

crypto/rsa/rsa_pss.c

crypto/rsa/rsa_x931.c

crypto/sha/asm/sha1-ia64.pl

crypto/sha/asm/sha512-ia64.pl

crypto/sha/asm/sha512-sse2.pl

crypto/sha/sha256.c

crypto/sha/sha256t.c

crypto/sha/sha512.c

crypto/sha/sha512t.c

crypto/sparccpuid.S

crypto/store

crypto/store/Makefile

crypto/store/README

crypto/store/store.h

crypto/store/str_err.c

crypto/store/str_lib.c

crypto/store/str_locl.h

crypto/store/str_mem.c

crypto/store/str_meth.c

crypto/threads/netware.bat

crypto/x509/x509_vpm.c

crypto/x509v3/pcy_cache.c

crypto/x509v3/pcy_data.c

crypto/x509v3/pcy_int.h

crypto/x509v3/pcy_lib.c

crypto/x509v3/pcy_map.c

crypto/x509v3/pcy_node.c

crypto/x509v3/pcy_tree.c

crypto/x509v3/v3_ncons.c

crypto/x509v3/v3_pci.c

crypto/x509v3/v3_pcia.c

crypto/x509v3/v3_pcons.c

crypto/x509v3/v3_pmaps.c

crypto/x86_64cpuid.pl

crypto/x86cpuid.pl

demos/ssltest-ecc

demos/ssltest-ecc/ECC-RSAcertgen.sh

demos/ssltest-ecc/ECCcertgen.sh

demos/ssltest-ecc/README

demos/ssltest-ecc/RSAcertgen.sh

demos/ssltest-ecc/ssltest.sh

demos/tunala/test.sh

doc/HOWTO/proxy_certificates.txt

doc/apps/ec.pod

doc/apps/ecparam.pod

doc/apps/errstr.pod

doc/apps/x509v3_config.pod

doc/crypto/ASN1_generate_nconf.pod

doc/crypto/BN_BLINDING_new.pod

doc/crypto/ERR_set_mark.pod

doc/crypto/OPENSSL_Applink.pod

doc/crypto/OPENSSL_ia32cap.pod

doc/crypto/ecdsa.pod

doc/crypto/x509.pod

doc/fingerprints.txt

engines

engines/Makefile

engines/axp.opt

engines/e_4758cca.c

engines/e_4758cca.ec

engines/e_4758cca_err.c

engines/e_4758cca_err.h

engines/e_aep.c

engines/e_aep.ec

engines/e_aep_err.c

engines/e_aep_err.h

engines/e_atalla.c

engines/e_atalla.ec

engines/e_atalla_err.c

engines/e_atalla_err.h

engines/e_chil.c

engines/e_chil.ec

engines/e_chil_err.c

engines/e_chil_err.h

engines/e_cswift.c

engines/e_cswift.ec

engines/e_cswift_err.c

engines/e_cswift_err.h

engines/e_gmp.c

engines/e_gmp.ec

engines/e_gmp_err.c

engines/e_gmp_err.h

engines/e_nuron.c

engines/e_nuron.ec

engines/e_nuron_err.c

engines/e_nuron_err.h

engines/e_sureware.c

engines/e_sureware.ec

engines/e_sureware_err.c

engines/e_sureware_err.h

engines/e_ubsec.c

engines/e_ubsec.ec

engines/e_ubsec_err.c

engines/e_ubsec_err.h

engines/engine_vector.mar

engines/makeengines.com

engines/vax.opt

engines/vendor_defns

engines/vendor_defns/aep.h

engines/vendor_defns/atalla.h

engines/vendor_defns/cswift.h

engines/vendor_defns/hw_4758_cca.h

engines/vendor_defns/hw_ubsec.h

engines/vendor_defns/hwcryptohook.h

engines/vendor_defns/sureware.h

include/openssl/dtls1.h

include/openssl/ecdh.h

include/openssl/ecdsa.h

include/openssl/pq_compat.h

include/openssl/pqueue.h

include/openssl/store.h

ms/applink.c

ms/do_win64a.bat

ms/do_win64i.bat

ms/uplink.c

ms/uplink.h

ms/uplink.pl

ssl/d1_both.c

ssl/d1_clnt.c

ssl/d1_enc.c

ssl/d1_lib.c

ssl/d1_meth.c

ssl/d1_pkt.c

ssl/d1_srvr.c

ssl/dtls1.h

test/P1ss.cnf

test/P2ss.cnf

test/ecdhtest.c

test/ecdsatest.c

test/sha256t.c

test/sha512t.c

test/testsslproxy

util/extract-section.pl

util/opensslwrap.sh

util/pl/netware.pl

util/shlib_wrap.sh

files removed:
apps/der_chop

apps/der_chop.in

bugs/VC16.bug

certs/ICE-CA.pem

certs/ICE-root.pem

certs/ICE-user.pem

certs/ICE.crl

certs/RegTP-4R.pem

certs/ca-cert.pem

certs/dsa-ca.pem

certs/dsa-pca.pem

certs/factory.pem

certs/nortelCA.pem

certs/pca-cert.pem

certs/rsa-cca.pem

certs/timCA.pem

certs/tjhCA.pem

certs/vsign2.pem

certs/vsigntca.pem

comm.txt

comms.txt

crypto/bn/asm/alpha

crypto/bn/asm/alpha.s

crypto/bn/asm/alpha.s.works

crypto/bn/asm/alpha.works

crypto/bn/asm/alpha.works/add.pl

crypto/bn/asm/alpha.works/div.pl

crypto/bn/asm/alpha.works/mul.pl

crypto/bn/asm/alpha.works/mul_add.pl

crypto/bn/asm/alpha.works/mul_c4.pl

crypto/bn/asm/alpha.works/mul_c4.works.pl

crypto/bn/asm/alpha.works/mul_c8.pl

crypto/bn/asm/alpha.works/sqr.pl

crypto/bn/asm/alpha.works/sqr_c4.pl

crypto/bn/asm/alpha.works/sqr_c8.pl

crypto/bn/asm/alpha.works/sub.pl

crypto/bn/asm/alpha/add.pl

crypto/bn/asm/alpha/div.pl

crypto/bn/asm/alpha/mul.pl

crypto/bn/asm/alpha/mul_add.pl

crypto/bn/asm/alpha/mul_c4.pl

crypto/bn/asm/alpha/mul_c4.works.pl

crypto/bn/asm/alpha/mul_c8.pl

crypto/bn/asm/alpha/sqr.pl

crypto/bn/asm/alpha/sqr_c4.pl

crypto/bn/asm/alpha/sqr_c8.pl

crypto/bn/asm/alpha/sub.pl

crypto/bn/asm/bn-alpha.pl

crypto/bn/asm/ca.pl

crypto/bn/asm/co-alpha.pl

crypto/bn/asm/mips1.s

crypto/bn/asm/pa-risc.s

crypto/bn/asm/pa-risc2.s.old

crypto/bn/asm/r3000.s

crypto/ec/ecp_recp.c

crypto/engine/hw.ec

crypto/engine/hw_4758_cca.c

crypto/engine/hw_4758_cca_err.c

crypto/engine/hw_4758_cca_err.h

crypto/engine/hw_aep.c

crypto/engine/hw_aep_err.c

crypto/engine/hw_aep_err.h

crypto/engine/hw_atalla.c

crypto/engine/hw_atalla_err.c

crypto/engine/hw_atalla_err.h

crypto/engine/hw_cryptodev.c

crypto/engine/hw_cswift.c

crypto/engine/hw_cswift_err.c

crypto/engine/hw_cswift_err.h

crypto/engine/hw_ncipher.c

crypto/engine/hw_ncipher_err.c

crypto/engine/hw_ncipher_err.h

crypto/engine/hw_nuron.c

crypto/engine/hw_nuron_err.c

crypto/engine/hw_nuron_err.h

crypto/engine/hw_sureware.c

crypto/engine/hw_sureware_err.c

crypto/engine/hw_sureware_err.h

crypto/engine/hw_ubsec.c

crypto/engine/hw_ubsec_err.c

crypto/engine/hw_ubsec_err.h

crypto/engine/vendor_defns

crypto/engine/vendor_defns/aep.h

crypto/engine/vendor_defns/atalla.h

crypto/engine/vendor_defns/cswift.h

crypto/engine/vendor_defns/hw_4758_cca.h

crypto/engine/vendor_defns/hw_ubsec.h

crypto/engine/vendor_defns/hwcryptohook.h

crypto/engine/vendor_defns/sureware.h

crypto/perlasm/alpha.pl

diffs.6

diffs.6e

diffs.6x

diffs.7

diffs.sec

diffs.sec6

diffs.sec6e

diffs.sec7

diffs.secfix

do_patch.sh

fips

fips/Makefile

fips/aes

fips/aes/Makefile

fips/aes/fingerprint.sha1

fips/aes/fips_aes_core.c

fips/aes/fips_aes_locl.h

fips/aes/fips_aes_selftest.c

fips/aes/fips_aesavs.c

fips/des

fips/des/Makefile

fips/des/asm

fips/des/asm/fips-dx86-elf.s

fips/des/fingerprint.sha1

fips/des/fips_des_enc.c

fips/des/fips_des_locl.h

fips/des/fips_des_selftest.c

fips/des/fips_desmovs.c

fips/des/fips_set_key.c

fips/dh

fips/dh/Makefile

fips/dh/fingerprint.sha1

fips/dh/fips_dh_check.c

fips/dh/fips_dh_gen.c

fips/dh/fips_dh_key.c

fips/dsa

fips/dsa/Makefile

fips/dsa/fingerprint.sha1

fips/dsa/fips_dsa_gen.c

fips/dsa/fips_dsa_ossl.c

fips/dsa/fips_dsa_selftest.c

fips/dsa/fips_dsatest.c

fips/dsa/fips_dssvs.c

fips/fingerprint.sha1

fips/fips-lib.com

fips/fips.c

fips/fips.h

fips/fips_check_sha1

fips/fips_err.h

fips/fips_err_wrapper.c

fips/fips_locl.h

fips/fips_make_sha1

fips/fips_test_suite.c

fips/install.com

fips/openssl_fips_fingerprint

fips/rand

fips/rand/Makefile

fips/rand/fingerprint.sha1

fips/rand/fips_rand.c

fips/rand/fips_rand.h

fips/rand/fips_randtest.c

fips/rsa

fips/rsa/Makefile

fips/rsa/fingerprint.sha1

fips/rsa/fips_rsa_eay.c

fips/rsa/fips_rsa_gen.c

fips/rsa/fips_rsa_selftest.c

fips/sha1

fips/sha1/Makefile

fips/sha1/asm

fips/sha1/asm/sx86-elf.s

fips/sha1/fingerprint.sha1

fips/sha1/fips_md32_common.h

fips/sha1/fips_sha1_selftest.c

fips/sha1/fips_sha1dgst.c

fips/sha1/fips_sha1test.c

fips/sha1/fips_sha_locl.h

fips/sha1/fips_standalone_sha1.c

fips/sha1/sha1hashes.txt

fips/sha1/sha1vectors.txt

fips/sha1/standalone.sha1

include/openssl/fips.h

include/openssl/fips_rand.h

include/openssl/mdc2.h

include/openssl/rc5.h

ms/16all.bat

ms/speed16.bat

test/fips_aes_data

test/fips_aesavs.c

test/fips_desmovs.c

test/fips_dsatest.c

test/fips_randtest.c

test/fips_sha1test.c

test/sha1hashes.txt

test/sha1vectors.txt

test/testfipsssl

util/pl/BC-16.pl

util/pl/VC-16.pl

util/pl/VC-CE.pl

files modified:
CHANGES

Configure

INSTALL

INSTALL.DJGPP

INSTALL.W32

INSTALL.WCE

LICENSE

Makefile

Makefile.bak

Makefile.org

NEWS

PROBLEMS

README

VMS/mkshared.com

apps/CA.pl

apps/CA.pl.in

apps/CA.sh

apps/Makefile

apps/apps.c

apps/apps.h

apps/asn1pars.c

apps/ca.c

apps/ciphers.c

apps/crl.c

apps/dgst.c

apps/dh.c

apps/dhparam.c

apps/dsa.c

apps/dsaparam.c

apps/enc.c

apps/engine.c

apps/gendh.c

apps/gendsa.c

apps/genrsa.c

apps/makeapps.com

apps/ocsp.c

apps/openssl-vms.cnf

apps/openssl.c

apps/openssl.cnf

apps/passwd.c

apps/pkcs12.c

apps/prime.c

apps/progs.h

apps/progs.pl

apps/rand.c

apps/req.c

apps/rsa.c

apps/rsautl.c

apps/s_apps.h

apps/s_cb.c

apps/s_client.c

apps/s_server.c

apps/s_socket.c

apps/s_time.c

apps/sess_id.c

apps/smime.c

apps/speed.c

apps/spkac.c

apps/verify.c

apps/version.c

apps/x509.c

config

crypto/Makefile

crypto/aes/Makefile

crypto/aes/aes.h

crypto/aes/aes_cbc.c

crypto/aes/aes_cfb.c

crypto/aes/aes_core.c

crypto/aes/aes_locl.h

crypto/asn1/Makefile

crypto/asn1/a_bitstr.c

crypto/asn1/a_bool.c

crypto/asn1/a_bytes.c

crypto/asn1/a_d2i_fp.c

crypto/asn1/a_digest.c

crypto/asn1/a_dup.c

crypto/asn1/a_enum.c

crypto/asn1/a_gentm.c

crypto/asn1/a_hdr.c

crypto/asn1/a_i2d_fp.c

crypto/asn1/a_int.c

crypto/asn1/a_mbstr.c

crypto/asn1/a_meth.c

crypto/asn1/a_object.c

crypto/asn1/a_octet.c

crypto/asn1/a_print.c

crypto/asn1/a_set.c

crypto/asn1/a_sign.c

crypto/asn1/a_strex.c

crypto/asn1/a_type.c

crypto/asn1/a_utctm.c

crypto/asn1/a_verify.c

crypto/asn1/asn1.h

crypto/asn1/asn1_err.c

crypto/asn1/asn1_lib.c

crypto/asn1/asn1_mac.h

crypto/asn1/asn1_par.c

crypto/asn1/asn1t.h

crypto/asn1/asn_moid.c

crypto/asn1/asn_pack.c

crypto/asn1/d2i_pr.c

crypto/asn1/d2i_pu.c

crypto/asn1/evp_asn1.c

crypto/asn1/i2d_pr.c

crypto/asn1/i2d_pu.c

crypto/asn1/n_pkey.c

crypto/asn1/p5_pbe.c

crypto/asn1/p5_pbev2.c

crypto/asn1/t_bitst.c

crypto/asn1/t_crl.c

crypto/asn1/t_pkey.c

crypto/asn1/t_req.c

crypto/asn1/t_spki.c

crypto/asn1/t_x509.c

crypto/asn1/tasn_dec.c

crypto/asn1/tasn_enc.c

crypto/asn1/tasn_fre.c

crypto/asn1/tasn_new.c

crypto/asn1/tasn_typ.c

crypto/asn1/tasn_utl.c

crypto/asn1/x_bignum.c

crypto/asn1/x_crl.c

crypto/asn1/x_long.c

crypto/asn1/x_name.c

crypto/asn1/x_pkey.c

crypto/asn1/x_pubkey.c

crypto/asn1/x_x509.c

crypto/asn1/x_x509a.c

crypto/bf/Makefile

crypto/bf/bf_enc.c

crypto/bf/bf_opts.c

crypto/bf/bfspeed.c

crypto/bf/bftest.c

crypto/bio/Makefile

crypto/bio/b_dump.c

crypto/bio/b_print.c

crypto/bio/b_sock.c

crypto/bio/bf_nbio.c

crypto/bio/bio.h

crypto/bio/bio_err.c

crypto/bio/bio_lib.c

crypto/bio/bss_acpt.c

crypto/bio/bss_conn.c

crypto/bio/bss_fd.c

crypto/bio/bss_file.c

crypto/bio/bss_log.c

crypto/bio/bss_sock.c

crypto/bn/Makefile

crypto/bn/asm/bn-586.pl

crypto/bn/asm/x86_64-gcc.c

crypto/bn/bn.h

crypto/bn/bn_add.c

crypto/bn/bn_asm.c

crypto/bn/bn_blind.c

crypto/bn/bn_ctx.c

crypto/bn/bn_div.c

crypto/bn/bn_err.c

crypto/bn/bn_exp.c

crypto/bn/bn_exp2.c

crypto/bn/bn_gcd.c

crypto/bn/bn_kron.c

crypto/bn/bn_lcl.h

crypto/bn/bn_lib.c

crypto/bn/bn_mod.c

crypto/bn/bn_mont.c

crypto/bn/bn_mpi.c

crypto/bn/bn_mul.c

crypto/bn/bn_prime.c

crypto/bn/bn_prime.pl

crypto/bn/bn_print.c

crypto/bn/bn_rand.c

crypto/bn/bn_recp.c

crypto/bn/bn_shift.c

crypto/bn/bn_sqr.c

crypto/bn/bn_sqrt.c

crypto/bn/bn_word.c

crypto/bn/bntest.c

crypto/bn/expspeed.c

crypto/bn/exptest.c

crypto/buffer/Makefile

crypto/buffer/buf_err.c

crypto/buffer/buffer.c

crypto/buffer/buffer.h

crypto/cast/Makefile

crypto/cast/cast.h

crypto/cast/cast_lcl.h

crypto/cast/cast_spd.c

crypto/cast/castopts.c

crypto/cast/casttest.c

crypto/comp/Makefile

crypto/comp/c_zlib.c

crypto/comp/comp.h

crypto/comp/comp_err.c

crypto/comp/comp_lib.c

crypto/conf/Makefile

crypto/conf/conf.h

crypto/conf/conf_def.c

crypto/conf/conf_err.c

crypto/conf/conf_lib.c

crypto/conf/conf_mod.c

crypto/cpt_err.c

crypto/cryptlib.c

crypto/cryptlib.h

crypto/crypto-lib.com

crypto/crypto.h

crypto/cversion.c

crypto/des/FILES0

crypto/des/Makefile

crypto/des/cfb64ede.c

crypto/des/cfb_enc.c

crypto/des/des.h

crypto/des/des_enc.c

crypto/des/des_locl.h

crypto/des/des_old.c

crypto/des/des_old.h

crypto/des/des_opts.c

crypto/des/destest.c

crypto/des/ecb3_enc.c

crypto/des/ede_cbcm_enc.c

crypto/des/fcrypt.c

crypto/des/read2pwd.c

crypto/des/set_key.c

crypto/des/speed.c

crypto/des/str2key.c

crypto/dh/Makefile

crypto/dh/dh.h

crypto/dh/dh_check.c

crypto/dh/dh_err.c

crypto/dh/dh_gen.c

crypto/dh/dh_key.c

crypto/dh/dhtest.c

crypto/dsa/Makefile

crypto/dsa/dsa.h

crypto/dsa/dsa_err.c

crypto/dsa/dsa_gen.c

crypto/dsa/dsa_key.c

crypto/dsa/dsa_lib.c

crypto/dsa/dsa_ossl.c

crypto/dsa/dsa_sign.c

crypto/dsa/dsa_vrf.c

crypto/dsa/dsatest.c

crypto/dso/Makefile

crypto/dso/dso.h

crypto/dso/dso_dl.c

crypto/dso/dso_dlfcn.c

crypto/dso/dso_err.c

crypto/dso/dso_lib.c

crypto/dso/dso_null.c

crypto/dso/dso_vms.c

crypto/dso/dso_win32.c

crypto/ebcdic.c

crypto/ec/Makefile

crypto/ec/ec.h

crypto/ec/ec_cvt.c

crypto/ec/ec_err.c

crypto/ec/ec_lcl.h

crypto/ec/ec_lib.c

crypto/ec/ec_mult.c

crypto/ec/ecp_mont.c

crypto/ec/ecp_nist.c

crypto/ec/ecp_smpl.c

crypto/ec/ectest.c

crypto/engine/Makefile

crypto/engine/eng_all.c

crypto/engine/eng_cnf.c

crypto/engine/eng_ctrl.c

crypto/engine/eng_dyn.c

crypto/engine/eng_err.c

crypto/engine/eng_fat.c

crypto/engine/eng_init.c

crypto/engine/eng_int.h

crypto/engine/eng_lib.c

crypto/engine/eng_list.c

crypto/engine/eng_openssl.c

crypto/engine/eng_pkey.c

crypto/engine/eng_table.c

crypto/engine/engine.h

crypto/engine/enginetest.c

crypto/engine/tb_cipher.c

crypto/engine/tb_dh.c

crypto/engine/tb_digest.c

crypto/engine/tb_dsa.c

crypto/engine/tb_rand.c

crypto/engine/tb_rsa.c

crypto/err/Makefile

crypto/err/err.c

crypto/err/err.h

crypto/err/err_all.c

crypto/err/err_prn.c

crypto/err/openssl.ec

crypto/evp/Makefile

crypto/evp/bio_b64.c

crypto/evp/bio_enc.c

crypto/evp/bio_md.c

crypto/evp/bio_ok.c

crypto/evp/c_all.c

crypto/evp/c_alld.c

crypto/evp/digest.c

crypto/evp/e_aes.c

crypto/evp/e_bf.c

crypto/evp/e_cast.c

crypto/evp/e_des.c

crypto/evp/e_des3.c

crypto/evp/e_idea.c

crypto/evp/e_null.c

crypto/evp/e_old.c

crypto/evp/e_rc2.c

crypto/evp/e_rc4.c

crypto/evp/e_rc5.c

crypto/evp/e_xcbc_d.c

crypto/evp/encode.c

crypto/evp/evp.h

crypto/evp/evp_enc.c

crypto/evp/evp_err.c

crypto/evp/evp_key.c

crypto/evp/evp_lib.c

crypto/evp/evp_pbe.c

crypto/evp/evp_pkey.c

crypto/evp/evp_test.c

crypto/evp/evptests.txt

crypto/evp/m_dss.c

crypto/evp/m_dss1.c

crypto/evp/m_md2.c

crypto/evp/m_md4.c

crypto/evp/m_md5.c

crypto/evp/m_mdc2.c

crypto/evp/m_null.c

crypto/evp/m_ripemd.c

crypto/evp/m_sha.c

crypto/evp/m_sha1.c

crypto/evp/names.c

crypto/evp/p5_crpt.c

crypto/evp/p5_crpt2.c

crypto/evp/p_dec.c

crypto/evp/p_enc.c

crypto/evp/p_lib.c

crypto/evp/p_open.c

crypto/evp/p_seal.c

crypto/evp/p_verify.c

crypto/ex_data.c

crypto/hmac/Makefile

crypto/hmac/hmac.c

crypto/hmac/hmac.h

crypto/idea/Makefile

crypto/idea/idea.h

crypto/idea/idea_spd.c

crypto/idea/ideatest.c

crypto/install.com

crypto/krb5/Makefile

crypto/krb5/krb5_asn.h

crypto/lhash/Makefile

crypto/lhash/lhash.c

crypto/lhash/lhash.h

crypto/md2/Makefile

crypto/md2/md2.h

crypto/md2/md2_dgst.c

crypto/md2/md2_one.c

crypto/md2/md2test.c

crypto/md32_common.h

crypto/md4/Makefile

crypto/md4/md4.h

crypto/md4/md4_dgst.c

crypto/md4/md4_locl.h

crypto/md4/md4_one.c

crypto/md4/md4test.c

crypto/md5/Makefile

crypto/md5/md5.h

crypto/md5/md5_dgst.c

crypto/md5/md5_locl.h

crypto/md5/md5_one.c

crypto/md5/md5test.c

crypto/mdc2/Makefile

crypto/mdc2/mdc2.h

crypto/mdc2/mdc2_one.c

crypto/mdc2/mdc2dgst.c

crypto/mdc2/mdc2test.c

crypto/mem.c

crypto/mem_clr.c

crypto/mem_dbg.c

crypto/o_str.c

crypto/o_str.h

crypto/objects/Makefile

crypto/objects/o_names.c

crypto/objects/obj_dat.c

crypto/objects/obj_dat.h

crypto/objects/obj_dat.pl

crypto/objects/obj_err.c

crypto/objects/obj_mac.h

crypto/objects/obj_mac.num

crypto/objects/objects.h

crypto/objects/objects.txt

crypto/ocsp/Makefile

crypto/ocsp/ocsp.h

crypto/ocsp/ocsp_cl.c

crypto/ocsp/ocsp_err.c

crypto/ocsp/ocsp_ext.c

crypto/ocsp/ocsp_lib.c

crypto/ocsp/ocsp_prn.c

crypto/opensslconf.h

crypto/opensslconf.h.in

crypto/opensslv.h

crypto/ossl_typ.h

crypto/pem/Makefile

crypto/pem/pem.h

crypto/pem/pem_all.c

crypto/pem/pem_err.c

crypto/pem/pem_info.c

crypto/pem/pem_lib.c

crypto/pem/pem_oth.c

crypto/pem/pem_pk8.c

crypto/pem/pem_pkey.c

crypto/pem/pem_seal.c

crypto/pem/pem_xaux.c

crypto/perlasm/cbc.pl

crypto/perlasm/x86asm.pl

crypto/perlasm/x86ms.pl

crypto/perlasm/x86nasm.pl

crypto/perlasm/x86unix.pl

crypto/pkcs12/Makefile

crypto/pkcs12/p12_add.c

crypto/pkcs12/p12_crpt.c

crypto/pkcs12/p12_crt.c

crypto/pkcs12/p12_decr.c

crypto/pkcs12/p12_init.c

crypto/pkcs12/p12_key.c

crypto/pkcs12/p12_kiss.c

crypto/pkcs12/p12_mutl.c

crypto/pkcs12/p12_npas.c

crypto/pkcs12/pk12err.c

crypto/pkcs12/pkcs12.h

crypto/pkcs7/Makefile

crypto/pkcs7/bio_ber.c

crypto/pkcs7/example.c

crypto/pkcs7/pk7_asn1.c

crypto/pkcs7/pk7_attr.c

crypto/pkcs7/pk7_doit.c

crypto/pkcs7/pk7_lib.c

crypto/pkcs7/pk7_mime.c

crypto/pkcs7/pk7_smime.c

crypto/pkcs7/pkcs7.h

crypto/pkcs7/pkcs7err.c

crypto/rand/Makefile

crypto/rand/md_rand.c

crypto/rand/rand.h

crypto/rand/rand_egd.c

crypto/rand/rand_err.c

crypto/rand/rand_lib.c

crypto/rand/rand_unix.c

crypto/rand/rand_vms.c

crypto/rand/rand_win.c

crypto/rand/randfile.c

crypto/rand/randtest.c

crypto/rc2/Makefile

crypto/rc2/rc2.h

crypto/rc2/rc2_skey.c

crypto/rc2/rc2speed.c

crypto/rc2/rc2test.c

crypto/rc4/Makefile

crypto/rc4/asm/rc4-586.pl

crypto/rc4/rc4.c

crypto/rc4/rc4.h

crypto/rc4/rc4_enc.c

crypto/rc4/rc4_locl.h

crypto/rc4/rc4_skey.c

crypto/rc4/rc4speed.c

crypto/rc4/rc4test.c

crypto/rc5/Makefile

crypto/rc5/rc5.h

crypto/rc5/rc5_locl.h

crypto/rc5/rc5speed.c

crypto/ripemd/Makefile

crypto/ripemd/ripemd.h

crypto/ripemd/rmd_dgst.c

crypto/ripemd/rmd_locl.h

crypto/ripemd/rmd_one.c

crypto/ripemd/rmdtest.c

crypto/rsa/Makefile

crypto/rsa/rsa.h

crypto/rsa/rsa_asn1.c

crypto/rsa/rsa_chk.c

crypto/rsa/rsa_eay.c

crypto/rsa/rsa_err.c

crypto/rsa/rsa_gen.c

crypto/rsa/rsa_lib.c

crypto/rsa/rsa_null.c

crypto/rsa/rsa_oaep.c

crypto/rsa/rsa_saos.c

crypto/rsa/rsa_sign.c

crypto/rsa/rsa_test.c

crypto/sha/Makefile

crypto/sha/asm/sha1-586.pl

crypto/sha/sha.h

crypto/sha/sha1_one.c

crypto/sha/sha1dgst.c

crypto/sha/sha1test.c

crypto/sha/sha_dgst.c

crypto/sha/sha_locl.h

crypto/sha/sha_one.c

crypto/sha/shatest.c

crypto/stack/Makefile

crypto/stack/safestack.h

crypto/stack/stack.c

crypto/stack/stack.h

crypto/symhacks.h

crypto/threads/mttest.c

crypto/threads/th-lock.c

crypto/tmdiff.c

crypto/tmdiff.h

crypto/txt_db/Makefile

crypto/txt_db/txt_db.c

crypto/txt_db/txt_db.h

crypto/ui/Makefile

crypto/ui/ui.h

crypto/ui/ui_err.c

crypto/ui/ui_lib.c

crypto/ui/ui_locl.h

crypto/ui/ui_openssl.c

crypto/ui/ui_util.c

crypto/uid.c

crypto/x509/Makefile

crypto/x509/by_dir.c

crypto/x509/by_file.c

crypto/x509/x509.h

crypto/x509/x509_att.c

crypto/x509/x509_cmp.c

crypto/x509/x509_err.c

crypto/x509/x509_lu.c

crypto/x509/x509_r2x.c

crypto/x509/x509_req.c

crypto/x509/x509_trs.c

crypto/x509/x509_txt.c

crypto/x509/x509_v3.c

crypto/x509/x509_vfy.c

crypto/x509/x509_vfy.h

crypto/x509/x509cset.c

crypto/x509/x509name.c

crypto/x509/x509spki.c

crypto/x509/x509type.c

crypto/x509/x_all.c

crypto/x509v3/Makefile

crypto/x509v3/ext_dat.h

crypto/x509v3/v3_akey.c

crypto/x509v3/v3_alt.c

crypto/x509v3/v3_bitst.c

crypto/x509v3/v3_conf.c

crypto/x509v3/v3_cpols.c

crypto/x509v3/v3_extku.c

crypto/x509v3/v3_ia5.c

crypto/x509v3/v3_info.c

crypto/x509v3/v3_int.c

crypto/x509v3/v3_lib.c

crypto/x509v3/v3_ocsp.c

crypto/x509v3/v3_prn.c

crypto/x509v3/v3_purp.c

crypto/x509v3/v3_skey.c

crypto/x509v3/v3_sxnet.c

crypto/x509v3/v3_utl.c

crypto/x509v3/v3err.c

crypto/x509v3/x509v3.h

demos/easy_tls/easy-tls.c

demos/tunala/autoungunk.sh

demos/tunala/cb.c

demos/tunala/configure.in

demos/tunala/tunala.c

demos/tunala/tunala.h

doc/HOWTO/certificates.txt

doc/HOWTO/keys.txt

doc/apps/CA.pl.pod

doc/apps/asn1parse.pod

doc/apps/ca.pod

doc/apps/config.pod

doc/apps/dgst.pod

doc/apps/enc.pod

doc/apps/req.pod

doc/apps/s_client.pod

doc/apps/s_server.pod

doc/apps/x509.pod

doc/crypto/ASN1_STRING_print_ex.pod

doc/crypto/BN_add_word.pod

doc/crypto/BN_new.pod

doc/crypto/ERR_error_string.pod

doc/crypto/EVP_BytesToKey.pod

doc/crypto/EVP_DigestInit.pod

doc/crypto/EVP_EncryptInit.pod

doc/crypto/EVP_SealInit.pod

doc/crypto/EVP_SignInit.pod

doc/crypto/OPENSSL_config.pod

doc/crypto/PKCS12_create.pod

doc/crypto/PKCS7_sign.pod

doc/crypto/RSA_sign.pod

doc/crypto/SMIME_write_PKCS7.pod

doc/crypto/X509_NAME_ENTRY_get_object.pod

doc/crypto/X509_NAME_add_entry_by_txt.pod

doc/crypto/X509_NAME_print_ex.pod

doc/crypto/blowfish.pod

doc/crypto/bn.pod

doc/crypto/bn_internal.pod

doc/crypto/d2i_X509.pod

doc/crypto/d2i_X509_CRL.pod

doc/crypto/d2i_X509_REQ.pod

doc/crypto/des_modes.pod

doc/crypto/engine.pod

doc/crypto/threads.pod

doc/openssl.txt

doc/ssl/SSL_CIPHER_get_name.pod

doc/ssl/SSL_CTX_get_ex_new_index.pod

doc/ssl/SSL_CTX_get_verify_mode.pod

doc/ssl/SSL_CTX_set_cert_store.pod

doc/ssl/SSL_CTX_set_info_callback.pod

doc/ssl/SSL_CTX_set_options.pod

doc/ssl/SSL_CTX_set_quiet_shutdown.pod

doc/ssl/SSL_CTX_use_certificate.pod

doc/ssl/SSL_SESSION_get_ex_new_index.pod

doc/ssl/SSL_SESSION_get_time.pod

doc/ssl/SSL_get_SSL_CTX.pod

doc/ssl/SSL_get_ciphers.pod

doc/ssl/SSL_get_client_CA_list.pod

doc/ssl/SSL_get_current_cipher.pod

doc/ssl/SSL_get_default_timeout.pod

doc/ssl/SSL_get_error.pod

doc/ssl/SSL_get_ex_new_index.pod

doc/ssl/SSL_get_fd.pod

doc/ssl/SSL_get_peer_cert_chain.pod

doc/ssl/SSL_get_peer_certificate.pod

doc/ssl/SSL_get_session.pod

doc/ssl/SSL_get_verify_result.pod

doc/ssl/SSL_get_version.pod

doc/ssl/SSL_pending.pod

doc/ssl/SSL_set_shutdown.pod

doc/ssl/SSL_shutdown.pod

doc/ssl/SSL_state_string.pod

doc/ssl/SSL_want.pod

doc/ssl/d2i_SSL_SESSION.pod

doc/ssl/ssl.pod

doc/standards.txt

e_os.h

e_os2.h

install.com

makevms.com

ms/README

ms/do_masm.bat

ms/do_ms.bat

ms/do_nasm.bat

ms/do_nt.bat

ms/test.bat

ms/testss.bat

openssl.spec

shlib/Makefile.hpux10-cc

shlib/hpux10-cc.sh

ssl/Makefile

ssl/bio_ssl.c

ssl/install.com

ssl/kssl.c

ssl/kssl.h

ssl/s23_clnt.c

ssl/s23_lib.c

ssl/s23_meth.c

ssl/s23_srvr.c

ssl/s2_clnt.c

ssl/s2_enc.c

ssl/s2_lib.c

ssl/s2_meth.c

ssl/s2_srvr.c

ssl/s3_both.c

ssl/s3_clnt.c

ssl/s3_enc.c

ssl/s3_lib.c

ssl/s3_meth.c

ssl/s3_pkt.c

ssl/s3_srvr.c

ssl/ssl-lib.com

ssl/ssl.h

ssl/ssl3.h

ssl/ssl_algs.c

ssl/ssl_asn1.c

ssl/ssl_cert.c

ssl/ssl_ciph.c

ssl/ssl_err.c

ssl/ssl_lib.c

ssl/ssl_locl.h

ssl/ssl_rsa.c

ssl/ssl_sess.c

ssl/ssl_txt.c

ssl/ssltest.c

ssl/t1_clnt.c

ssl/t1_enc.c

ssl/t1_lib.c

ssl/t1_meth.c

ssl/t1_srvr.c

ssl/tls1.h

test/CAss.cnf

test/Makefile

test/Uss.cnf

test/bctest

test/evptests.txt

test/maketests.com

test/mdc2test.c

test/rc5test.c

test/tcrl

test/testca

test/testenc

test/testgen

test/tests.com

test/testss

test/testssl

test/tpkcs7

test/tpkcs7d

test/treq

test/trsa

test/tsid

test/tverify.com

test/tx509

tools/Makefile

tools/c_rehash

util/ck_errf.pl

util/cygwin.sh

util/domd

util/libeay.num

util/mk1mf.pl

util/mkdef.pl

util/mkerr.pl

util/mkfiles.pl

util/mklink.pl

util/mkstack.pl

util/pl/BC-32.pl

util/pl/Mingw32.pl

util/pl/OS2-EMX.pl

util/pl/VC-32.pl

util/pl/linux.pl

util/pl/ultrix.pl

util/pl/unix.pl

util/pod2man.pl

util/selftest.pl

util/ssleay.num

Show diffs side-by-side

added added

removed removed

crypto/pkcs12/p12_crt.c

/* p12_crt.c */

/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL

* project 1999.

* project.

/* ====================================================================

* Redistribution and use in source and binary forms, with or without

* modification, are permitted provided that the following conditions

#include "cryptlib.h"

#include <openssl/pkcs12.h>

static int pkcs12_add_bag(STACK_OF(PKCS12_SAFEBAG) **pbags, PKCS12_SAFEBAG *bag);

PKCS12 *PKCS12_create(char *pass, char *name, EVP_PKEY *pkey, X509 *cert,

STACK_OF(X509) *ca, int nid_key, int nid_cert, int iter, int mac_iter,

int keytype)

{

PKCS12 *p12;

STACK_OF(PKCS12_SAFEBAG) *bags;

STACK_OF(PKCS7) *safes;

PKCS12_SAFEBAG *bag;

PKCS8_PRIV_KEY_INFO *p8;

PKCS7 *authsafe;

X509 *tcert;

PKCS12 *p12 = NULL;

STACK_OF(PKCS7) *safes = NULL;

STACK_OF(PKCS12_SAFEBAG) *bags = NULL;

PKCS12_SAFEBAG *bag = NULL;

int i;

unsigned char keyid[EVP_MAX_MD_SIZE];

unsigned int keyidlen;

unsigned int keyidlen = 0;

/* Set defaults */

if(!nid_cert) nid_cert = NID_pbe_WithSHA1And40BitRC2_CBC;

if(!nid_key) nid_key = NID_pbe_WithSHA1And3_Key_TripleDES_CBC;

if(!iter) iter = PKCS12_DEFAULT_ITER;

if(!mac_iter) mac_iter = 1;

if (!nid_cert)

nid_cert = NID_pbe_WithSHA1And40BitRC2_CBC;

if (!nid_key)

nid_key = NID_pbe_WithSHA1And3_Key_TripleDES_CBC;

if (!iter)

iter = PKCS12_DEFAULT_ITER;

if (!mac_iter)

mac_iter = 1;

if(!pkey || !cert) {

if(!pkey && !cert && !ca)

{

PKCS12err(PKCS12_F_PKCS12_CREATE,PKCS12_R_INVALID_NULL_ARGUMENT);

return NULL;

}

if(!X509_check_private_key(cert, pkey)) return NULL;

if(!(bags = sk_PKCS12_SAFEBAG_new_null ())) {

PKCS12err(PKCS12_F_PKCS12_CREATE,ERR_R_MALLOC_FAILURE);

return NULL;

}

/* Add user certificate */

if(!(bag = PKCS12_x5092certbag(cert))) return NULL;

if(name && !PKCS12_add_friendlyname(bag, name, -1)) return NULL;

X509_digest(cert, EVP_sha1(), keyid, &keyidlen);

100

if(!PKCS12_add_localkeyid(bag, keyid, keyidlen)) return NULL;

101

102

if(!sk_PKCS12_SAFEBAG_push(bags, bag)) {

103

PKCS12err(PKCS12_F_PKCS12_CREATE,ERR_R_MALLOC_FAILURE);

104

return NULL;

105

}

106

}

if (pkey && cert)

{

if(!X509_check_private_key(cert, pkey))

return NULL;

X509_digest(cert, EVP_sha1(), keyid, &keyidlen);

}

100

101

if (cert)

102

{

103

bag = PKCS12_add_cert(&bags, cert);

104

if(name && !PKCS12_add_friendlyname(bag, name, -1))

105

goto err;

106

if(keyidlen && !PKCS12_add_localkeyid(bag, keyid, keyidlen))

107

goto err;

108

}

109

107

110

/* Add all other certificates */

108

if(ca) {

109

for(i = 0; i < sk_X509_num(ca); i++) {

110

tcert = sk_X509_value(ca, i);

111

if(!(bag = PKCS12_x5092certbag(tcert))) return NULL;

112

if(!sk_PKCS12_SAFEBAG_push(bags, bag)) {

113

PKCS12err(PKCS12_F_PKCS12_CREATE,ERR_R_MALLOC_FAILURE);

114

return NULL;

111

for(i = 0; i < sk_X509_num(ca); i++)

112

{

113

if (!PKCS12_add_cert(&bags, sk_X509_value(ca, i)))

114

goto err;

115

}

116

117

if (bags && !PKCS12_add_safe(&safes, bags, nid_cert, iter, pass))

118

goto err;

119

120

sk_PKCS12_SAFEBAG_pop_free(bags, PKCS12_SAFEBAG_free);

121

bags = NULL;

122

123

if (pkey)

124

{

125

int cspidx;

126

bag = PKCS12_add_key(&bags, pkey, keytype, iter, nid_key, pass);

127

128

if (!bag)

129

goto err;

130

131

cspidx = EVP_PKEY_get_attr_by_NID(pkey, NID_ms_csp_name, -1);

132

if (cspidx >= 0)

133

{

134

X509_ATTRIBUTE *cspattr;

135

cspattr = EVP_PKEY_get_attr(pkey, cspidx);

136

if (!X509at_add1_attr(&bag->attrib, cspattr))

137

goto err;

115

138

}

139

140

if(name && !PKCS12_add_friendlyname(bag, name, -1))

141

goto err;

142

if(keyidlen && !PKCS12_add_localkeyid(bag, keyid, keyidlen))

143

goto err;

116

144

}

117

}

118

119

/* Turn certbags into encrypted authsafe */

120

authsafe = PKCS12_pack_p7encdata (nid_cert, pass, -1, NULL, 0,

121

iter, bags);

122

sk_PKCS12_SAFEBAG_pop_free(bags, PKCS12_SAFEBAG_free);

123

124

if (!authsafe) return NULL;

125

126

if(!(safes = sk_PKCS7_new_null ())

127

|| !sk_PKCS7_push(safes, authsafe)) {

128

PKCS12err(PKCS12_F_PKCS12_CREATE,ERR_R_MALLOC_FAILURE);

129

return NULL;

130

}

131

132

/* Make a shrouded key bag */

133

if(!(p8 = EVP_PKEY2PKCS8 (pkey))) return NULL;

134

if(keytype && !PKCS8_add_keyusage(p8, keytype)) return NULL;

135

bag = PKCS12_MAKE_SHKEYBAG (nid_key, pass, -1, NULL, 0, iter, p8);

136

if(!bag) return NULL;

137

PKCS8_PRIV_KEY_INFO_free(p8);

138

if (name && !PKCS12_add_friendlyname (bag, name, -1)) return NULL;

139

if(!PKCS12_add_localkeyid (bag, keyid, keyidlen)) return NULL;

140

if(!(bags = sk_PKCS12_SAFEBAG_new_null())

141

|| !sk_PKCS12_SAFEBAG_push (bags, bag)) {

142

PKCS12err(PKCS12_F_PKCS12_CREATE,ERR_R_MALLOC_FAILURE);

143

return NULL;

144

}

145

/* Turn it into unencrypted safe bag */

146

if(!(authsafe = PKCS12_pack_p7data (bags))) return NULL;

147

sk_PKCS12_SAFEBAG_pop_free(bags, PKCS12_SAFEBAG_free);

148

if(!sk_PKCS7_push(safes, authsafe)) {

149

PKCS12err(PKCS12_F_PKCS12_CREATE,ERR_R_MALLOC_FAILURE);

150

return NULL;

151

}

152

153

if(!(p12 = PKCS12_init (NID_pkcs7_data))) return NULL;

154

155

if(!PKCS12_pack_authsafes (p12, safes)) return NULL;

145

146

if (bags && !PKCS12_add_safe(&safes, bags, -1, 0, NULL))

147

goto err;

148

149

sk_PKCS12_SAFEBAG_pop_free(bags, PKCS12_SAFEBAG_free);

150

bags = NULL;

151

152

p12 = PKCS12_add_safes(safes, 0);

156

153

157

154

sk_PKCS7_pop_free(safes, PKCS7_free);

158

155

159

if(!PKCS12_set_mac (p12, pass, -1, NULL, 0, mac_iter, NULL))

160

return NULL;

156

safes = NULL;

157

158

if ((mac_iter != -1) &&

159

!PKCS12_set_mac(p12, pass, -1, NULL, 0, mac_iter, NULL))

160

goto err;

161

162

return p12;

163

164

err:

165

166

if (p12)

167

PKCS12_free(p12);

168

if (safes)

169

sk_PKCS7_pop_free(safes, PKCS7_free);

170

if (bags)

171

sk_PKCS12_SAFEBAG_pop_free(bags, PKCS12_SAFEBAG_free);

172

return NULL;

173

164

174

}

175

176

PKCS12_SAFEBAG *PKCS12_add_cert(STACK_OF(PKCS12_SAFEBAG) **pbags, X509 *cert)

177

{

178

PKCS12_SAFEBAG *bag = NULL;

179

char *name;

180

int namelen = -1;

181

unsigned char *keyid;

182

int keyidlen = -1;

183

184

/* Add user certificate */

185

if(!(bag = PKCS12_x5092certbag(cert)))

186

goto err;

187

188

/* Use friendlyName and localKeyID in certificate.

189

* (if present)

190

191

192

name = (char *)X509_alias_get0(cert, &namelen);

193

194

if(name && !PKCS12_add_friendlyname(bag, name, namelen))

195

goto err;

196

197

keyid = X509_keyid_get0(cert, &keyidlen);

198

199

if(keyid && !PKCS12_add_localkeyid(bag, keyid, keyidlen))

200

goto err;

201

202

if (!pkcs12_add_bag(pbags, bag))

203

goto err;

204

205

return bag;

206

207

err:

208

209

if (bag)

210

PKCS12_SAFEBAG_free(bag);

211

212

return NULL;

213

214

}

215

216

PKCS12_SAFEBAG *PKCS12_add_key(STACK_OF(PKCS12_SAFEBAG) **pbags, EVP_PKEY *key,

217

int key_usage, int iter,

218

int nid_key, char *pass)

219

{

220

221

PKCS12_SAFEBAG *bag = NULL;

222

PKCS8_PRIV_KEY_INFO *p8 = NULL;

223

224

/* Make a PKCS#8 structure */

225

if(!(p8 = EVP_PKEY2PKCS8(key)))

226

goto err;

227

if(key_usage && !PKCS8_add_keyusage(p8, key_usage))

228

goto err;

229

if (nid_key != -1)

230

{

231

bag = PKCS12_MAKE_SHKEYBAG(nid_key, pass, -1, NULL, 0, iter, p8);

232

PKCS8_PRIV_KEY_INFO_free(p8);

233

}

234

else

235

bag = PKCS12_MAKE_KEYBAG(p8);

236

237

if(!bag)

238

goto err;

239

240

if (!pkcs12_add_bag(pbags, bag))

241

goto err;

242

243

return bag;

244

245

err:

246

247

if (bag)

248

PKCS12_SAFEBAG_free(bag);

249

250

return NULL;

251

252

}

253

254

int PKCS12_add_safe(STACK_OF(PKCS7) **psafes, STACK_OF(PKCS12_SAFEBAG) *bags,

255

int nid_safe, int iter, char *pass)

256

{

257

PKCS7 *p7 = NULL;

258

int free_safes = 0;

259

260

if (!*psafes)

261

{

262

*psafes = sk_PKCS7_new_null();

263

if (!*psafes)

264

return 0;

265

free_safes = 1;

266

}

267

else

268

free_safes = 0;

269

270

if (nid_safe == 0)

271

nid_safe = NID_pbe_WithSHA1And40BitRC2_CBC;

272

273

if (nid_safe == -1)

274

p7 = PKCS12_pack_p7data(bags);

275

else

276

p7 = PKCS12_pack_p7encdata(nid_safe, pass, -1, NULL, 0,

277

iter, bags);

278

if (!p7)

279

goto err;

280

281

if (!sk_PKCS7_push(*psafes, p7))

282

goto err;

283

284

return 1;

285

286

err:

287

if (free_safes)

288

{

289

sk_PKCS7_free(*psafes);

290

*psafes = NULL;

291

}

292

293

if (p7)

294

PKCS7_free(p7);

295

296

return 0;

297

298

}

299

300

static int pkcs12_add_bag(STACK_OF(PKCS12_SAFEBAG) **pbags, PKCS12_SAFEBAG *bag)

301

{

302

int free_bags;

303

if (!pbags)

304

return 1;

305

if (!*pbags)

306

{

307

*pbags = sk_PKCS12_SAFEBAG_new_null();

308

if (!*pbags)

309

return 0;

310

free_bags = 1;

311

}

312

else

313

free_bags = 0;

314

315

if (!sk_PKCS12_SAFEBAG_push(*pbags, bag))

316

{

317

if (free_bags)

318

{

319

sk_PKCS12_SAFEBAG_free(*pbags);

320

*pbags = NULL;

321

}

322

return 0;

323

}

324

325

return 1;

326

327

}

328

329

330

PKCS12 *PKCS12_add_safes(STACK_OF(PKCS7) *safes, int nid_p7)

331

{

332

PKCS12 *p12;

333

if (nid_p7 <= 0)

334

nid_p7 = NID_pkcs7_data;

335

p12 = PKCS12_init(nid_p7);

336

337

if (!p12)

338

return NULL;

339

340

if(!PKCS12_pack_authsafes(p12, safes))

341

{

342

PKCS12_free(p12);

343

return NULL;

344

}

345

346

return p12;

347

348

}

Older »