[thirdparty/openssl.git] / crypto / evp / p_lib.c

/* crypto/evp/p_lib.c */
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 * 
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 * 
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from 
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 * 
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 * 
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */

#include <stdio.h>
#include "cryptlib.h"
#include <openssl/bn.h>
#include <openssl/err.h>
#include <openssl/objects.h>
#include <openssl/evp.h>
#include <openssl/asn1_mac.h>
#include <openssl/x509.h>
#ifndef OPENSSL_NO_RSA
#include <openssl/rsa.h>
#endif
#ifndef OPENSSL_NO_DSA
#include <openssl/dsa.h>
#endif
#ifndef OPENSSL_NO_DH
#include <openssl/dh.h>
#endif

#ifndef OPENSSL_NO_ENGINE
#include <openssl/engine.h>
#endif

#include "asn1_locl.h"

static void EVP_PKEY_free_it(EVP_PKEY *x);

int EVP_PKEY_bits(EVP_PKEY *pkey)
	{
	if (pkey && pkey->ameth && pkey->ameth->pkey_bits)
		return pkey->ameth->pkey_bits(pkey);
	return 0;
	}

int EVP_PKEY_size(EVP_PKEY *pkey)
	{
	if (pkey && pkey->ameth && pkey->ameth->pkey_size)
		return pkey->ameth->pkey_size(pkey);
	return 0;
	}

int EVP_PKEY_save_parameters(EVP_PKEY *pkey, int mode)
	{
#ifndef OPENSSL_NO_DSA
	if (pkey->type == EVP_PKEY_DSA)
		{
		int ret=pkey->save_parameters;

		if (mode >= 0)
			pkey->save_parameters=mode;
		return(ret);
		}
#endif
#ifndef OPENSSL_NO_EC
	if (pkey->type == EVP_PKEY_EC)
		{
		int ret = pkey->save_parameters;

		if (mode >= 0)
			pkey->save_parameters = mode;
		return(ret);
		}
#endif
	return(0);
	}

int EVP_PKEY_copy_parameters(EVP_PKEY *to, const EVP_PKEY *from)
	{
	if (to->type != from->type)
		{
		EVPerr(EVP_F_EVP_PKEY_COPY_PARAMETERS,EVP_R_DIFFERENT_KEY_TYPES);
		goto err;
		}

	if (EVP_PKEY_missing_parameters(from))
		{
		EVPerr(EVP_F_EVP_PKEY_COPY_PARAMETERS,EVP_R_MISSING_PARAMETERS);
		goto err;
		}
	if (from->ameth && from->ameth->param_copy)
		return from->ameth->param_copy(to, from);
err:
	return 0;
	}

int EVP_PKEY_missing_parameters(const EVP_PKEY *pkey)
	{
	if (pkey->ameth && pkey->ameth->param_missing)
		return pkey->ameth->param_missing(pkey);
	return 0;
	}

int EVP_PKEY_cmp_parameters(const EVP_PKEY *a, const EVP_PKEY *b)
	{
	if (a->type != b->type)
		return -1;
	if (a->ameth && a->ameth->param_cmp)
		return a->ameth->param_cmp(a, b);
	return -2;
	}

int EVP_PKEY_cmp(const EVP_PKEY *a, const EVP_PKEY *b)
	{
	if (a->type != b->type)
		return -1;

	if (a->ameth)
		{
		int ret;
		/* Compare parameters if the algorithm has them */
		if (a->ameth->param_cmp)
			{
			ret = a->ameth->param_cmp(a, b);
			if (ret <= 0)
				return ret;
			}

		if (a->ameth->pub_cmp)
			return a->ameth->pub_cmp(a, b);
		}

	return -2;
	}

EVP_PKEY *EVP_PKEY_new(void)
	{
	EVP_PKEY *ret;

	ret=(EVP_PKEY *)OPENSSL_malloc(sizeof(EVP_PKEY));
	if (ret == NULL)
		{
		EVPerr(EVP_F_EVP_PKEY_NEW,ERR_R_MALLOC_FAILURE);
		return(NULL);
		}
	ret->type=EVP_PKEY_NONE;
	ret->save_type=EVP_PKEY_NONE;
	ret->references=1;
	ret->ameth=NULL;
	ret->engine=NULL;
	ret->pkey.ptr=NULL;
	ret->attributes=NULL;
	ret->save_parameters=1;
	return(ret);
	}

/* Setup a public key ASN1 method and ENGINE from a NID or a string.
 * If pkey is NULL just return 1 or 0 if the algorithm exists.
 */

static int pkey_set_type(EVP_PKEY *pkey, int type, const char *str, int len)
	{
	const EVP_PKEY_ASN1_METHOD *ameth;
	ENGINE *e = NULL;
	if (pkey)
		{
		if (pkey->pkey.ptr)
			EVP_PKEY_free_it(pkey);
		/* If key type matches and a method exists then this
		 * lookup has succeeded once so just indicate success.
		 */
		if ((type == pkey->save_type) && pkey->ameth)
			return 1;
#ifndef OPENSSL_NO_ENGINE
		/* If we have an ENGINE release it */
		if (pkey->engine)
			{
			ENGINE_finish(pkey->engine);
			pkey->engine = NULL;
			}
#endif
		}
	if (str)
		ameth = EVP_PKEY_asn1_find_str(&e, str, len);
	else
		ameth = EVP_PKEY_asn1_find(&e, type);
#ifndef OPENSSL_NO_ENGINE
	if (!pkey && e)
		ENGINE_finish(e);
#endif
	if (!ameth)
		{
		EVPerr(EVP_F_PKEY_SET_TYPE, EVP_R_UNSUPPORTED_ALGORITHM);
		return 0;
		}
	if (pkey)
		{
		pkey->ameth = ameth;
		pkey->engine = e;

		pkey->type = pkey->ameth->pkey_id;
		pkey->save_type=type;
		}
	return 1;
	}

int EVP_PKEY_set_type(EVP_PKEY *pkey, int type)
	{
	return pkey_set_type(pkey, type, NULL, -1);
	}

int EVP_PKEY_set_type_str(EVP_PKEY *pkey, const char *str, int len)
	{
	return pkey_set_type(pkey, EVP_PKEY_NONE, str, len);
	}

int EVP_PKEY_assign(EVP_PKEY *pkey, int type, void *key)
	{
	if (!EVP_PKEY_set_type(pkey, type))
		return 0;
	pkey->pkey.ptr=key;
	return (key != NULL);
	}

void *EVP_PKEY_get0(EVP_PKEY *pkey)
	{
	return pkey->pkey.ptr;
	}

#ifndef OPENSSL_NO_RSA
int EVP_PKEY_set1_RSA(EVP_PKEY *pkey, RSA *key)
{
	int ret = EVP_PKEY_assign_RSA(pkey, key);
	if(ret)
		RSA_up_ref(key);
	return ret;
}

RSA *EVP_PKEY_get1_RSA(EVP_PKEY *pkey)
	{
	if(pkey->type != EVP_PKEY_RSA) {
		EVPerr(EVP_F_EVP_PKEY_GET1_RSA, EVP_R_EXPECTING_AN_RSA_KEY);
		return NULL;
	}
	RSA_up_ref(pkey->pkey.rsa);
	return pkey->pkey.rsa;
}
#endif

#ifndef OPENSSL_NO_DSA
int EVP_PKEY_set1_DSA(EVP_PKEY *pkey, DSA *key)
{
	int ret = EVP_PKEY_assign_DSA(pkey, key);
	if(ret)
		DSA_up_ref(key);
	return ret;
}

DSA *EVP_PKEY_get1_DSA(EVP_PKEY *pkey)
	{
	if(pkey->type != EVP_PKEY_DSA) {
		EVPerr(EVP_F_EVP_PKEY_GET1_DSA, EVP_R_EXPECTING_A_DSA_KEY);
		return NULL;
	}
	DSA_up_ref(pkey->pkey.dsa);
	return pkey->pkey.dsa;
}
#endif

#ifndef OPENSSL_NO_EC

int EVP_PKEY_set1_EC_KEY(EVP_PKEY *pkey, EC_KEY *key)
{
	int ret = EVP_PKEY_assign_EC_KEY(pkey,key);
	if (ret)
		EC_KEY_up_ref(key);
	return ret;
}

EC_KEY *EVP_PKEY_get1_EC_KEY(EVP_PKEY *pkey)
{
	if (pkey->type != EVP_PKEY_EC)
	{
		EVPerr(EVP_F_EVP_PKEY_GET1_EC_KEY, EVP_R_EXPECTING_A_EC_KEY);
		return NULL;
	}
	EC_KEY_up_ref(pkey->pkey.ec);
	return pkey->pkey.ec;
}
#endif


#ifndef OPENSSL_NO_DH

int EVP_PKEY_set1_DH(EVP_PKEY *pkey, DH *key)
{
	int ret = EVP_PKEY_assign_DH(pkey, key);
	if(ret)
		DH_up_ref(key);
	return ret;
}

DH *EVP_PKEY_get1_DH(EVP_PKEY *pkey)
	{
	if(pkey->type != EVP_PKEY_DH && pkey->type != EVP_PKEY_DHX) {
		EVPerr(EVP_F_EVP_PKEY_GET1_DH, EVP_R_EXPECTING_A_DH_KEY);
		return NULL;
	}
	DH_up_ref(pkey->pkey.dh);
	return pkey->pkey.dh;
}
#endif

int EVP_PKEY_type(int type)
	{
	int ret;
	const EVP_PKEY_ASN1_METHOD *ameth;
	ENGINE *e;
	ameth = EVP_PKEY_asn1_find(&e, type);
	if (ameth)
		ret = ameth->pkey_id;
	else
		ret = NID_undef;
#ifndef OPENSSL_NO_ENGINE
	if (e)
		ENGINE_finish(e);
#endif
	return ret;
	}

int EVP_PKEY_id(const EVP_PKEY *pkey)
	{
	return pkey->type;
	}

int EVP_PKEY_base_id(const EVP_PKEY *pkey)
	{
	return EVP_PKEY_type(pkey->type);
	}

void EVP_PKEY_free(EVP_PKEY *x)
	{
	int i;

	if (x == NULL) return;

	i=CRYPTO_add(&x->references,-1,CRYPTO_LOCK_EVP_PKEY);
#ifdef REF_PRINT
	REF_PRINT("EVP_PKEY",x);
#endif
	if (i > 0) return;
#ifdef REF_CHECK
	if (i < 0)
		{
		fprintf(stderr,"EVP_PKEY_free, bad reference count\n");
		abort();
		}
#endif
	EVP_PKEY_free_it(x);
	if (x->attributes)
		sk_X509_ATTRIBUTE_pop_free(x->attributes, X509_ATTRIBUTE_free);
	OPENSSL_free(x);
	}

static void EVP_PKEY_free_it(EVP_PKEY *x)
	{
	if (x->ameth && x->ameth->pkey_free)
		{
		x->ameth->pkey_free(x);
		x->pkey.ptr = NULL;
		}
#ifndef OPENSSL_NO_ENGINE
	if (x->engine)
		{
		ENGINE_finish(x->engine);
		x->engine = NULL;
		}
#endif
	}

static int unsup_alg(BIO *out, const EVP_PKEY *pkey, int indent,
				const char *kstr)
	{
	BIO_indent(out, indent, 128);
	BIO_printf(out, "%s algorithm \"%s\" unsupported\n",
						kstr, OBJ_nid2ln(pkey->type));
	return 1;
	}

int EVP_PKEY_print_public(BIO *out, const EVP_PKEY *pkey,
				int indent, ASN1_PCTX *pctx)
	{
	if (pkey->ameth && pkey->ameth->pub_print)
		return pkey->ameth->pub_print(out, pkey, indent, pctx);
	
	return unsup_alg(out, pkey, indent, "Public Key");
	}

int EVP_PKEY_print_private(BIO *out, const EVP_PKEY *pkey,
				int indent, ASN1_PCTX *pctx)
	{
	if (pkey->ameth && pkey->ameth->priv_print)
		return pkey->ameth->priv_print(out, pkey, indent, pctx);
	
	return unsup_alg(out, pkey, indent, "Private Key");
	}

int EVP_PKEY_print_params(BIO *out, const EVP_PKEY *pkey,
				int indent, ASN1_PCTX *pctx)
	{
	if (pkey->ameth && pkey->ameth->param_print)
		return pkey->ameth->param_print(out, pkey, indent, pctx);
	return unsup_alg(out, pkey, indent, "Parameters");
	}

int EVP_PKEY_get_default_digest_nid(EVP_PKEY *pkey, int *pnid)
	{
	if (!pkey->ameth || !pkey->ameth->pkey_ctrl)
		return -2;
	return pkey->ameth->pkey_ctrl(pkey, ASN1_PKEY_CTRL_DEFAULT_MD_NID,
						0, pnid);
	}
Commit	Line	Data
d02b48c6	1	/* crypto/evp/p_lib.c */
58964a49	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
d02b48c6 RE	3	* All rights reserved.
	4	*
	5	* This package is an SSL implementation written
	6	* by Eric Young (eay@cryptsoft.com).
	7	* The implementation was written so as to conform with Netscapes SSL.
	8	*
	9	* This library is free for commercial and non-commercial use as long as
	10	* the following conditions are aheared to. The following conditions
	11	* apply to all code found in this distribution, be it the RC4, RSA,
	12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
	13	* included with this distribution is covered by the same copyright terms
	14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
	15	*
	16	* Copyright remains Eric Young's, and as such any Copyright notices in
	17	* the code are not to be removed.
	18	* If this package is used in a product, Eric Young should be given attribution
	19	* as the author of the parts of the library used.
	20	* This can be in the form of a textual message at program startup or
	21	* in documentation (online or textual) provided with the package.
	22	*
	23	* Redistribution and use in source and binary forms, with or without
	24	* modification, are permitted provided that the following conditions
	25	* are met:
	26	* 1. Redistributions of source code must retain the copyright
	27	* notice, this list of conditions and the following disclaimer.
	28	* 2. Redistributions in binary form must reproduce the above copyright
	29	* notice, this list of conditions and the following disclaimer in the
	30	* documentation and/or other materials provided with the distribution.
	31	* 3. All advertising materials mentioning features or use of this software
	32	* must display the following acknowledgement:
	33	* "This product includes cryptographic software written by
	34	* Eric Young (eay@cryptsoft.com)"
	35	* The word 'cryptographic' can be left out if the rouines from the library
	36	* being used are not cryptographic related :-).
	37	* 4. If you include any Windows specific code (or a derivative thereof) from
	38	* the apps directory (application code) you must include an acknowledgement:
	39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
	40	*
	41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
	42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
	45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
	46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
	47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
	49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
	50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
	51	* SUCH DAMAGE.
	52	*
	53	* The licence and distribution terms for any publically available version or
	54	* derivative of this code cannot be changed. i.e. this code cannot simply be
	55	* copied and put under another distribution licence
	56	* [including the GNU Public Licence.]
	57	*/
	58
	59	#include <stdio.h>
	60	#include "cryptlib.h"
4d94ae00 BM	61	#include <openssl/bn.h>
4d94ae00 BM	62	#include <openssl/err.h>
ec577822 BM	63	#include <openssl/objects.h>
	64	#include <openssl/evp.h>
	65	#include <openssl/asn1_mac.h>
	66	#include <openssl/x509.h>
3eeaab4b	67	#ifndef OPENSSL_NO_RSA
60a938c6	68	#include <openssl/rsa.h>
3eeaab4b NL	69	#endif
3eeaab4b NL	70	#ifndef OPENSSL_NO_DSA
60a938c6	71	#include <openssl/dsa.h>
3eeaab4b NL	72	#endif
3eeaab4b NL	73	#ifndef OPENSSL_NO_DH
60a938c6	74	#include <openssl/dh.h>
3eeaab4b	75	#endif
d02b48c6	76
01b8b3c7 DSH	77	#ifndef OPENSSL_NO_ENGINE
	78	#include <openssl/engine.h>
	79	#endif
	80
18e377b4 DSH	81	#include "asn1_locl.h"
18e377b4 DSH	82
d02b48c6	83	static void EVP_PKEY_free_it(EVP_PKEY *x);
bb2297a4	84
6b691a5c	85	int EVP_PKEY_bits(EVP_PKEY *pkey)
58964a49	86	{
6f81892e DSH	87	if (pkey && pkey->ameth && pkey->ameth->pkey_bits)
	88	return pkey->ameth->pkey_bits(pkey);
	89	return 0;
58964a49 RE	90	}
58964a49 RE	91
6b691a5c	92	int EVP_PKEY_size(EVP_PKEY *pkey)
d02b48c6	93	{
6f81892e DSH	94	if (pkey && pkey->ameth && pkey->ameth->pkey_size)
	95	return pkey->ameth->pkey_size(pkey);
	96	return 0;
d02b48c6 RE	97	}
d02b48c6 RE	98
6b691a5c	99	int EVP_PKEY_save_parameters(EVP_PKEY *pkey, int mode)
d02b48c6	100	{
cf1b7d96	101	#ifndef OPENSSL_NO_DSA
d02b48c6 RE	102	if (pkey->type == EVP_PKEY_DSA)
d02b48c6 RE	103	{
bc8a9f1f	104	int ret=pkey->save_parameters;
d02b48c6 RE	105
	106	if (mode >= 0)
	107	pkey->save_parameters=mode;
	108	return(ret);
	109	}
4d94ae00	110	#endif
5488bb61 BM	111	#ifndef OPENSSL_NO_EC
5488bb61 BM	112	if (pkey->type == EVP_PKEY_EC)
4d94ae00 BM	113	{
	114	int ret = pkey->save_parameters;
	115
	116	if (mode >= 0)
	117	pkey->save_parameters = mode;
	118	return(ret);
	119	}
d02b48c6 RE	120	#endif
	121	return(0);
	122	}
	123
a8b72844	124	int EVP_PKEY_copy_parameters(EVP_PKEY to, const EVP_PKEY from)
d02b48c6 RE	125	{
	126	if (to->type != from->type)
	127	{
	128	EVPerr(EVP_F_EVP_PKEY_COPY_PARAMETERS,EVP_R_DIFFERENT_KEY_TYPES);
58964a49	129	goto err;
d02b48c6 RE	130	}
	131
	132	if (EVP_PKEY_missing_parameters(from))
	133	{
657e60fa	134	EVPerr(EVP_F_EVP_PKEY_COPY_PARAMETERS,EVP_R_MISSING_PARAMETERS);
58964a49	135	goto err;
d02b48c6	136	}
6f81892e DSH	137	if (from->ameth && from->ameth->param_copy)
6f81892e DSH	138	return from->ameth->param_copy(to, from);
d02b48c6	139	err:
6f81892e	140	return 0;
d02b48c6 RE	141	}
d02b48c6 RE	142
af0f0f3e	143	int EVP_PKEY_missing_parameters(const EVP_PKEY *pkey)
d02b48c6	144	{
6f81892e DSH	145	if (pkey->ameth && pkey->ameth->param_missing)
	146	return pkey->ameth->param_missing(pkey);
	147	return 0;
d02b48c6 RE	148	}
d02b48c6 RE	149
af0f0f3e	150	int EVP_PKEY_cmp_parameters(const EVP_PKEY a, const EVP_PKEY b)
58964a49	151	{
6f81892e DSH	152	if (a->type != b->type)
	153	return -1;
	154	if (a->ameth && a->ameth->param_cmp)
	155	return a->ameth->param_cmp(a, b);
b4634358	156	return -2;
58964a49 RE	157	}
58964a49 RE	158
af0f0f3e	159	int EVP_PKEY_cmp(const EVP_PKEY a, const EVP_PKEY b)
e6526fbf RL	160	{
	161	if (a->type != b->type)
	162	return -1;
	163
975efcba	164	if (a->ameth)
86207c19 DSH	165	{
	166	int ret;
	167	/* Compare parameters if the algorithm has them */
975efcba	168	if (a->ameth->param_cmp)
86207c19	169	{
975efcba	170	ret = a->ameth->param_cmp(a, b);
86207c19 DSH	171	if (ret <= 0)
	172	return ret;
	173	}
	174
	175	if (a->ameth->pub_cmp)
	176	return a->ameth->pub_cmp(a, b);
	177	}
e6526fbf	178
6f81892e	179	return -2;
e6526fbf RL	180	}
e6526fbf RL	181
6b691a5c	182	EVP_PKEY *EVP_PKEY_new(void)
d02b48c6 RE	183	{
	184	EVP_PKEY *ret;
	185
26a3a48d	186	ret=(EVP_PKEY *)OPENSSL_malloc(sizeof(EVP_PKEY));
d02b48c6 RE	187	if (ret == NULL)
	188	{
	189	EVPerr(EVP_F_EVP_PKEY_NEW,ERR_R_MALLOC_FAILURE);
	190	return(NULL);
	191	}
	192	ret->type=EVP_PKEY_NONE;
01b8b3c7	193	ret->save_type=EVP_PKEY_NONE;
d02b48c6	194	ret->references=1;
6f81892e	195	ret->ameth=NULL;
01b8b3c7	196	ret->engine=NULL;
d02b48c6 RE	197	ret->pkey.ptr=NULL;
	198	ret->attributes=NULL;
	199	ret->save_parameters=1;
	200	return(ret);
	201	}
	202
01b8b3c7 DSH	203	/* Setup a public key ASN1 method and ENGINE from a NID or a string.
	204	* If pkey is NULL just return 1 or 0 if the algorithm exists.
	205	*/
	206
	207	static int pkey_set_type(EVP_PKEY pkey, int type, const char str, int len)
d02b48c6	208	{
6f81892e	209	const EVP_PKEY_ASN1_METHOD *ameth;
01b8b3c7 DSH	210	ENGINE *e = NULL;
	211	if (pkey)
	212	{
	213	if (pkey->pkey.ptr)
	214	EVP_PKEY_free_it(pkey);
	215	/* If key type matches and a method exists then this
	216	* lookup has succeeded once so just indicate success.
	217	*/
	218	if ((type == pkey->save_type) && pkey->ameth)
	219	return 1;
	220	#ifndef OPENSSL_NO_ENGINE
	221	/* If we have an ENGINE release it */
	222	if (pkey->engine)
773b63d6	223	{
01b8b3c7	224	ENGINE_finish(pkey->engine);
773b63d6 DSH	225	pkey->engine = NULL;
773b63d6 DSH	226	}
01b8b3c7 DSH	227	#endif
	228	}
	229	if (str)
	230	ameth = EVP_PKEY_asn1_find_str(&e, str, len);
	231	else
	232	ameth = EVP_PKEY_asn1_find(&e, type);
	233	#ifndef OPENSSL_NO_ENGINE
	234	if (!pkey && e)
	235	ENGINE_finish(e);
	236	#endif
	237	if (!ameth)
	238	{
	239	EVPerr(EVP_F_PKEY_SET_TYPE, EVP_R_UNSUPPORTED_ALGORITHM);
	240	return 0;
	241	}
	242	if (pkey)
	243	{
	244	pkey->ameth = ameth;
	245	pkey->engine = e;
	246
	247	pkey->type = pkey->ameth->pkey_id;
	248	pkey->save_type=type;
	249	}
	250	return 1;
	251	}
	252
	253	int EVP_PKEY_set_type(EVP_PKEY *pkey, int type)
	254	{
	255	return pkey_set_type(pkey, type, NULL, -1);
	256	}
	257
	258	int EVP_PKEY_set_type_str(EVP_PKEY pkey, const char str, int len)
	259	{
	260	return pkey_set_type(pkey, EVP_PKEY_NONE, str, len);
	261	}
	262
	263	int EVP_PKEY_assign(EVP_PKEY pkey, int type, void key)
	264	{
	265	if (!EVP_PKEY_set_type(pkey, type))
	266	return 0;
d02b48c6	267	pkey->pkey.ptr=key;
01b8b3c7	268	return (key != NULL);
d02b48c6 RE	269	}
d02b48c6 RE	270
db98bbc1 DSH	271	void EVP_PKEY_get0(EVP_PKEY pkey)
	272	{
	273	return pkey->pkey.ptr;
	274	}
	275
cf1b7d96	276	#ifndef OPENSSL_NO_RSA
c7cb16a8	277	int EVP_PKEY_set1_RSA(EVP_PKEY pkey, RSA key)
52664f50	278	{
6d3724d3	279	int ret = EVP_PKEY_assign_RSA(pkey, key);
78435364	280	if(ret)
6ac4e8bd	281	RSA_up_ref(key);
6d3724d3	282	return ret;
52664f50 DSH	283	}
52664f50 DSH	284
c7cb16a8	285	RSA EVP_PKEY_get1_RSA(EVP_PKEY pkey)
f769ce3e DSH	286	{
f769ce3e DSH	287	if(pkey->type != EVP_PKEY_RSA) {
c7cb16a8	288	EVPerr(EVP_F_EVP_PKEY_GET1_RSA, EVP_R_EXPECTING_AN_RSA_KEY);
f769ce3e DSH	289	return NULL;
f769ce3e DSH	290	}
6ac4e8bd	291	RSA_up_ref(pkey->pkey.rsa);
f769ce3e DSH	292	return pkey->pkey.rsa;
	293	}
	294	#endif
	295
cf1b7d96	296	#ifndef OPENSSL_NO_DSA
c7cb16a8	297	int EVP_PKEY_set1_DSA(EVP_PKEY pkey, DSA key)
52664f50	298	{
6d3724d3	299	int ret = EVP_PKEY_assign_DSA(pkey, key);
78435364	300	if(ret)
6ac4e8bd	301	DSA_up_ref(key);
6d3724d3	302	return ret;
52664f50 DSH	303	}
52664f50 DSH	304
c7cb16a8	305	DSA EVP_PKEY_get1_DSA(EVP_PKEY pkey)
f769ce3e DSH	306	{
f769ce3e DSH	307	if(pkey->type != EVP_PKEY_DSA) {
c7cb16a8	308	EVPerr(EVP_F_EVP_PKEY_GET1_DSA, EVP_R_EXPECTING_A_DSA_KEY);
f769ce3e DSH	309	return NULL;
f769ce3e DSH	310	}
6ac4e8bd	311	DSA_up_ref(pkey->pkey.dsa);
f769ce3e DSH	312	return pkey->pkey.dsa;
	313	}
	314	#endif
	315
14a7cfb3	316	#ifndef OPENSSL_NO_EC
4d94ae00	317
14a7cfb3	318	int EVP_PKEY_set1_EC_KEY(EVP_PKEY pkey, EC_KEY key)
4d94ae00	319	{
14a7cfb3	320	int ret = EVP_PKEY_assign_EC_KEY(pkey,key);
9dd84053 NL	321	if (ret)
	322	EC_KEY_up_ref(key);
	323	return ret;
4d94ae00 BM	324	}
4d94ae00 BM	325
14a7cfb3	326	EC_KEY EVP_PKEY_get1_EC_KEY(EVP_PKEY pkey)
4d94ae00	327	{
14a7cfb3	328	if (pkey->type != EVP_PKEY_EC)
4d94ae00	329	{
14a7cfb3	330	EVPerr(EVP_F_EVP_PKEY_GET1_EC_KEY, EVP_R_EXPECTING_A_EC_KEY);
4d94ae00 BM	331	return NULL;
4d94ae00 BM	332	}
9dd84053 NL	333	EC_KEY_up_ref(pkey->pkey.ec);
9dd84053 NL	334	return pkey->pkey.ec;
4d94ae00 BM	335	}
	336	#endif
	337
	338
cf1b7d96	339	#ifndef OPENSSL_NO_DH
52664f50	340
c7cb16a8	341	int EVP_PKEY_set1_DH(EVP_PKEY pkey, DH key)
52664f50	342	{
6d3724d3	343	int ret = EVP_PKEY_assign_DH(pkey, key);
78435364	344	if(ret)
e815d301	345	DH_up_ref(key);
6d3724d3	346	return ret;
52664f50 DSH	347	}
52664f50 DSH	348
c7cb16a8	349	DH EVP_PKEY_get1_DH(EVP_PKEY pkey)
f769ce3e	350	{
b2141841	351	if(pkey->type != EVP_PKEY_DH && pkey->type != EVP_PKEY_DHX) {
c7cb16a8	352	EVPerr(EVP_F_EVP_PKEY_GET1_DH, EVP_R_EXPECTING_A_DH_KEY);
f769ce3e DSH	353	return NULL;
f769ce3e DSH	354	}
e815d301	355	DH_up_ref(pkey->pkey.dh);
f769ce3e DSH	356	return pkey->pkey.dh;
	357	}
	358	#endif
	359
6b691a5c	360	int EVP_PKEY_type(int type)
d02b48c6	361	{
01b8b3c7	362	int ret;
6f81892e	363	const EVP_PKEY_ASN1_METHOD *ameth;
01b8b3c7 DSH	364	ENGINE *e;
01b8b3c7 DSH	365	ameth = EVP_PKEY_asn1_find(&e, type);
6f81892e	366	if (ameth)
01b8b3c7 DSH	367	ret = ameth->pkey_id;
	368	else
	369	ret = NID_undef;
	370	#ifndef OPENSSL_NO_ENGINE
	371	if (e)
	372	ENGINE_finish(e);
	373	#endif
	374	return ret;
d02b48c6 RE	375	}
d02b48c6 RE	376
7f57b076 DSH	377	int EVP_PKEY_id(const EVP_PKEY *pkey)
	378	{
	379	return pkey->type;
	380	}
	381
	382	int EVP_PKEY_base_id(const EVP_PKEY *pkey)
	383	{
	384	return EVP_PKEY_type(pkey->type);
	385	}
	386
6b691a5c	387	void EVP_PKEY_free(EVP_PKEY *x)
d02b48c6 RE	388	{
	389	int i;
	390
	391	if (x == NULL) return;
	392
	393	i=CRYPTO_add(&x->references,-1,CRYPTO_LOCK_EVP_PKEY);
58964a49 RE	394	#ifdef REF_PRINT
	395	REF_PRINT("EVP_PKEY",x);
	396	#endif
d02b48c6 RE	397	if (i > 0) return;
	398	#ifdef REF_CHECK
	399	if (i < 0)
	400	{
	401	fprintf(stderr,"EVP_PKEY_free, bad reference count\n");
	402	abort();
	403	}
	404	#endif
	405	EVP_PKEY_free_it(x);
b6995add DSH	406	if (x->attributes)
b6995add DSH	407	sk_X509_ATTRIBUTE_pop_free(x->attributes, X509_ATTRIBUTE_free);
26a3a48d	408	OPENSSL_free(x);
d02b48c6 RE	409	}
d02b48c6 RE	410
6b691a5c	411	static void EVP_PKEY_free_it(EVP_PKEY *x)
d02b48c6	412	{
6f81892e	413	if (x->ameth && x->ameth->pkey_free)
09c1dc85	414	{
6f81892e	415	x->ameth->pkey_free(x);
09c1dc85 DSH	416	x->pkey.ptr = NULL;
09c1dc85 DSH	417	}
01b8b3c7 DSH	418	#ifndef OPENSSL_NO_ENGINE
	419	if (x->engine)
	420	{
	421	ENGINE_finish(x->engine);
	422	x->engine = NULL;
	423	}
	424	#endif
d02b48c6 RE	425	}
d02b48c6 RE	426
35208f36 DSH	427	static int unsup_alg(BIO out, const EVP_PKEY pkey, int indent,
	428	const char *kstr)
	429	{
	430	BIO_indent(out, indent, 128);
01b8b3c7 DSH	431	BIO_printf(out, "%s algorithm \"%s\" unsupported\n",
01b8b3c7 DSH	432	kstr, OBJ_nid2ln(pkey->type));
35208f36 DSH	433	return 1;
	434	}
	435
	436	int EVP_PKEY_print_public(BIO out, const EVP_PKEY pkey,
	437	int indent, ASN1_PCTX *pctx)
	438	{
	439	if (pkey->ameth && pkey->ameth->pub_print)
	440	return pkey->ameth->pub_print(out, pkey, indent, pctx);
	441
	442	return unsup_alg(out, pkey, indent, "Public Key");
	443	}
	444
	445	int EVP_PKEY_print_private(BIO out, const EVP_PKEY pkey,
	446	int indent, ASN1_PCTX *pctx)
	447	{
	448	if (pkey->ameth && pkey->ameth->priv_print)
	449	return pkey->ameth->priv_print(out, pkey, indent, pctx);
	450
	451	return unsup_alg(out, pkey, indent, "Private Key");
	452	}
	453
	454	int EVP_PKEY_print_params(BIO out, const EVP_PKEY pkey,
	455	int indent, ASN1_PCTX *pctx)
	456	{
	457	if (pkey->ameth && pkey->ameth->param_print)
	458	return pkey->ameth->param_print(out, pkey, indent, pctx);
	459	return unsup_alg(out, pkey, indent, "Parameters");
	460	}
03919683 DSH	461
	462	int EVP_PKEY_get_default_digest_nid(EVP_PKEY pkey, int pnid)
	463	{
	464	if (!pkey->ameth \|\| !pkey->ameth->pkey_ctrl)
	465	return -2;
	466	return pkey->ameth->pkey_ctrl(pkey, ASN1_PKEY_CTRL_DEFAULT_MD_NID,
	467	0, pnid);
	468	}
	469