kris
/
boringssl
1
0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
3519 коммитов
12 Ветки
38 MiB
 
 
 
 
 
 
Дерево: 5fa2538162
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из '5fa2538162'
${ noResults }
boringssl/crypto/pkcs8/p5_pbe.c

152 строки
4.6 KiB
Исходник Вина История 

  1. /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL

  2.  * project 1999.

  3.  */

  4. /* ====================================================================

  5.  * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.

  6.  *

  7.  * Redistribution and use in source and binary forms, with or without

  8.  * modification, are permitted provided that the following conditions

  9.  * are met:

  10.  *

  11.  * 1. Redistributions of source code must retain the above copyright

  12.  *    notice, this list of conditions and the following disclaimer.

  13.  *

  14.  * 2. Redistributions in binary form must reproduce the above copyright

  15.  *    notice, this list of conditions and the following disclaimer in

  16.  *    the documentation and/or other materials provided with the

  17.  *    distribution.

  18.  *

  19.  * 3. All advertising materials mentioning features or use of this

  20.  *    software must display the following acknowledgment:

  21.  *    "This product includes software developed by the OpenSSL Project

  22.  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"

  23.  *

  24.  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to

  25.  *    endorse or promote products derived from this software without

  26.  *    prior written permission. For written permission, please contact

  27.  *    licensing@OpenSSL.org.

  28.  *

  29.  * 5. Products derived from this software may not be called "OpenSSL"

  30.  *    nor may "OpenSSL" appear in their names without prior written

  31.  *    permission of the OpenSSL Project.

  32.  *

  33.  * 6. Redistributions of any form whatsoever must retain the following

  34.  *    acknowledgment:

  35.  *    "This product includes software developed by the OpenSSL Project

  36.  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"

  37.  *

  38.  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY

  39.  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  40.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR

  41.  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR

  42.  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  43.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

  44.  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  45.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  46.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

  47.  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

  48.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

  49.  * OF THE POSSIBILITY OF SUCH DAMAGE.

  50.  * ====================================================================

  51.  *

  52.  * This product includes cryptographic software written by Eric Young

  53.  * (eay@cryptsoft.com).  This product includes software written by Tim

  54.  * Hudson (tjh@cryptsoft.com). */

  55. 

  56. #include <string.h>

  57. 

  58. #include <openssl/asn1t.h>

  59. #include <openssl/err.h>

  60. #include <openssl/obj.h>

  61. #include <openssl/pkcs8.h>

  62. #include <openssl/rand.h>

  63. #include <openssl/x509.h>

  64. 

  65. #include "internal.h"

  66. 

  67. 

  68. /* PKCS#5 password based encryption structure */

  69. 

  70. ASN1_SEQUENCE(PBEPARAM) = {

  71. 	ASN1_SIMPLE(PBEPARAM, salt, ASN1_OCTET_STRING),

  72. 	ASN1_SIMPLE(PBEPARAM, iter, ASN1_INTEGER)

  73. } ASN1_SEQUENCE_END(PBEPARAM)

  74. 

  75. IMPLEMENT_ASN1_FUNCTIONS(PBEPARAM)

  76. 

  77. 

  78. /* Set an algorithm identifier for a PKCS#5 PBE algorithm */

  79. 

  80. int PKCS5_pbe_set0_algor(X509_ALGOR *algor, int alg, int iter,

  81. 				const unsigned char *salt, int saltlen)

  82. 	{

  83. 	PBEPARAM *pbe=NULL;

  84. 	ASN1_STRING *pbe_str=NULL;

  85. 	unsigned char *sstr;

  86. 

  87. 	pbe = PBEPARAM_new();

  88. 	if (!pbe)

  89. 		{

  90. 		OPENSSL_PUT_ERROR(PKCS8, ERR_R_MALLOC_FAILURE);

  91. 		goto err;

  92. 		}

  93. 	if(iter <= 0)

  94. 		iter = PKCS5_DEFAULT_ITERATIONS;

  95. 	if (!ASN1_INTEGER_set(pbe->iter, iter))

  96. 		{

  97. 		OPENSSL_PUT_ERROR(PKCS8, ERR_R_MALLOC_FAILURE);

  98. 		goto err;

  99. 		}

  100. 	if (!saltlen)

  101. 		saltlen = PKCS5_SALT_LEN;

  102. 	if (!ASN1_STRING_set(pbe->salt, NULL, saltlen))

  103. 		{

  104. 		OPENSSL_PUT_ERROR(PKCS8, ERR_R_MALLOC_FAILURE);

  105. 		goto err;

  106. 		}

  107. 	sstr = ASN1_STRING_data(pbe->salt);

  108. 	if (salt)

  109. 		memcpy(sstr, salt, saltlen);

  110. 	else if (!RAND_bytes(sstr, saltlen))

  111. 		goto err;

  112. 

  113. 	if(!ASN1_item_pack(pbe, ASN1_ITEM_rptr(PBEPARAM), &pbe_str))

  114. 		{

  115. 		OPENSSL_PUT_ERROR(PKCS8, ERR_R_MALLOC_FAILURE);

  116. 		goto err;

  117. 		}

  118. 

  119. 	PBEPARAM_free(pbe);

  120. 	pbe = NULL;

  121. 

  122. 	if (X509_ALGOR_set0(algor, OBJ_nid2obj(alg), V_ASN1_SEQUENCE, pbe_str))

  123. 		return 1;

  124. 

  125. err:

  126. 	if (pbe != NULL)

  127. 		PBEPARAM_free(pbe);

  128. 	if (pbe_str != NULL)

  129. 		ASN1_STRING_free(pbe_str);

  130. 	return 0;

  131. 	}

  132. 

  133. /* Return an algorithm identifier for a PKCS#5 PBE algorithm */

  134. 

  135. X509_ALGOR *PKCS5_pbe_set(int alg, int iter,

  136. 				const unsigned char *salt, int saltlen)

  137. 	{

  138. 	X509_ALGOR *ret;

  139. 	ret = X509_ALGOR_new();

  140. 	if (!ret)

  141. 		{

  142. 		OPENSSL_PUT_ERROR(PKCS8, ERR_R_MALLOC_FAILURE);

  143. 		return NULL;

  144. 		}

  145. 

  146. 	if (PKCS5_pbe_set0_algor(ret, alg, iter, salt, saltlen)) 

  147. 		return ret;

  148. 

  149. 	X509_ALGOR_free(ret);

  150. 	return NULL;

  151. 	}