[thirdparty/openssl.git] / crypto / x509 / x_pubkey.c

/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 *
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 *
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 *
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 *
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */

#include <stdio.h>
#include "internal/cryptlib.h"
#include <openssl/asn1t.h>
#include <openssl/x509.h>
#include "internal/asn1_int.h"
#include "internal/evp_int.h"
#include <openssl/rsa.h>
#include <openssl/dsa.h>

/* Minor tweak to operation: free up EVP_PKEY */
static int pubkey_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it,
                     void *exarg)
{
    if (operation == ASN1_OP_NEW_POST) {
        X509_PUBKEY *pubkey = (X509_PUBKEY *)*pval;
        pubkey->lock = CRYPTO_THREAD_lock_new();
        if (pubkey->lock == NULL)
            return 0;
    }
    if (operation == ASN1_OP_FREE_POST) {
        X509_PUBKEY *pubkey = (X509_PUBKEY *)*pval;
        CRYPTO_THREAD_lock_free(pubkey->lock);
        EVP_PKEY_free(pubkey->pkey);
    }
    return 1;
}

ASN1_SEQUENCE_cb(X509_PUBKEY, pubkey_cb) = {
        ASN1_SIMPLE(X509_PUBKEY, algor, X509_ALGOR),
        ASN1_SIMPLE(X509_PUBKEY, public_key, ASN1_BIT_STRING)
} ASN1_SEQUENCE_END_cb(X509_PUBKEY, X509_PUBKEY)

IMPLEMENT_ASN1_FUNCTIONS(X509_PUBKEY)

int X509_PUBKEY_set(X509_PUBKEY **x, EVP_PKEY *pkey)
{
    X509_PUBKEY *pk = NULL;

    if (x == NULL)
        return (0);

    if ((pk = X509_PUBKEY_new()) == NULL)
        goto error;

    if (pkey->ameth) {
        if (pkey->ameth->pub_encode) {
            if (!pkey->ameth->pub_encode(pk, pkey)) {
                X509err(X509_F_X509_PUBKEY_SET,
                        X509_R_PUBLIC_KEY_ENCODE_ERROR);
                goto error;
            }
        } else {
            X509err(X509_F_X509_PUBKEY_SET, X509_R_METHOD_NOT_SUPPORTED);
            goto error;
        }
    } else {
        X509err(X509_F_X509_PUBKEY_SET, X509_R_UNSUPPORTED_ALGORITHM);
        goto error;
    }

    X509_PUBKEY_free(*x);
    *x = pk;
    return 1;

 error:
    X509_PUBKEY_free(pk);
    return 0;
}

EVP_PKEY *X509_PUBKEY_get0(X509_PUBKEY *key)
{
    EVP_PKEY *ret = NULL;

    if (key == NULL)
        goto error;

    if (key->pkey != NULL)
        return key->pkey;

    if (key->public_key == NULL)
        goto error;

    if ((ret = EVP_PKEY_new()) == NULL) {
        X509err(X509_F_X509_PUBKEY_GET0, ERR_R_MALLOC_FAILURE);
        goto error;
    }

    if (!EVP_PKEY_set_type(ret, OBJ_obj2nid(key->algor->algorithm))) {
        X509err(X509_F_X509_PUBKEY_GET0, X509_R_UNSUPPORTED_ALGORITHM);
        goto error;
    }

    if (ret->ameth->pub_decode) {
        if (!ret->ameth->pub_decode(ret, key)) {
            X509err(X509_F_X509_PUBKEY_GET0, X509_R_PUBLIC_KEY_DECODE_ERROR);
            goto error;
        }
    } else {
        X509err(X509_F_X509_PUBKEY_GET0, X509_R_METHOD_NOT_SUPPORTED);
        goto error;
    }

    /* Check to see if another thread set key->pkey first */
    CRYPTO_THREAD_write_lock(key->lock);
    if (key->pkey) {
        CRYPTO_THREAD_unlock(key->lock);
        EVP_PKEY_free(ret);
        ret = key->pkey;
    } else {
        key->pkey = ret;
        CRYPTO_THREAD_unlock(key->lock);
    }

    return ret;

 error:
    EVP_PKEY_free(ret);
    return (NULL);
}

EVP_PKEY *X509_PUBKEY_get(X509_PUBKEY *key)
{
    EVP_PKEY *ret = X509_PUBKEY_get0(key);
    if (ret != NULL)
        EVP_PKEY_up_ref(ret);
    return ret;
}

/*
 * Now two pseudo ASN1 routines that take an EVP_PKEY structure and encode or
 * decode as X509_PUBKEY
 */

EVP_PKEY *d2i_PUBKEY(EVP_PKEY **a, const unsigned char **pp, long length)
{
    X509_PUBKEY *xpk;
    EVP_PKEY *pktmp;
    const unsigned char *q;
    q = *pp;
    xpk = d2i_X509_PUBKEY(NULL, &q, length);
    if (!xpk)
        return NULL;
    pktmp = X509_PUBKEY_get(xpk);
    X509_PUBKEY_free(xpk);
    if (!pktmp)
        return NULL;
    *pp = q;
    if (a) {
        EVP_PKEY_free(*a);
        *a = pktmp;
    }
    return pktmp;
}

int i2d_PUBKEY(EVP_PKEY *a, unsigned char **pp)
{
    X509_PUBKEY *xpk = NULL;
    int ret;
    if (!a)
        return 0;
    if (!X509_PUBKEY_set(&xpk, a))
        return 0;
    ret = i2d_X509_PUBKEY(xpk, pp);
    X509_PUBKEY_free(xpk);
    return ret;
}

/*
 * The following are equivalents but which return RSA and DSA keys
 */
#ifndef OPENSSL_NO_RSA
RSA *d2i_RSA_PUBKEY(RSA **a, const unsigned char **pp, long length)
{
    EVP_PKEY *pkey;
    RSA *key;
    const unsigned char *q;
    q = *pp;
    pkey = d2i_PUBKEY(NULL, &q, length);
    if (!pkey)
        return NULL;
    key = EVP_PKEY_get1_RSA(pkey);
    EVP_PKEY_free(pkey);
    if (!key)
        return NULL;
    *pp = q;
    if (a) {
        RSA_free(*a);
        *a = key;
    }
    return key;
}

int i2d_RSA_PUBKEY(RSA *a, unsigned char **pp)
{
    EVP_PKEY *pktmp;
    int ret;
    if (!a)
        return 0;
    pktmp = EVP_PKEY_new();
    if (pktmp == NULL) {
        ASN1err(ASN1_F_I2D_RSA_PUBKEY, ERR_R_MALLOC_FAILURE);
        return 0;
    }
    EVP_PKEY_set1_RSA(pktmp, a);
    ret = i2d_PUBKEY(pktmp, pp);
    EVP_PKEY_free(pktmp);
    return ret;
}
#endif

#ifndef OPENSSL_NO_DSA
DSA *d2i_DSA_PUBKEY(DSA **a, const unsigned char **pp, long length)
{
    EVP_PKEY *pkey;
    DSA *key;
    const unsigned char *q;
    q = *pp;
    pkey = d2i_PUBKEY(NULL, &q, length);
    if (!pkey)
        return NULL;
    key = EVP_PKEY_get1_DSA(pkey);
    EVP_PKEY_free(pkey);
    if (!key)
        return NULL;
    *pp = q;
    if (a) {
        DSA_free(*a);
        *a = key;
    }
    return key;
}

int i2d_DSA_PUBKEY(DSA *a, unsigned char **pp)
{
    EVP_PKEY *pktmp;
    int ret;
    if (!a)
        return 0;
    pktmp = EVP_PKEY_new();
    if (pktmp == NULL) {
        ASN1err(ASN1_F_I2D_DSA_PUBKEY, ERR_R_MALLOC_FAILURE);
        return 0;
    }
    EVP_PKEY_set1_DSA(pktmp, a);
    ret = i2d_PUBKEY(pktmp, pp);
    EVP_PKEY_free(pktmp);
    return ret;
}
#endif

#ifndef OPENSSL_NO_EC
EC_KEY *d2i_EC_PUBKEY(EC_KEY **a, const unsigned char **pp, long length)
{
    EVP_PKEY *pkey;
    EC_KEY *key;
    const unsigned char *q;
    q = *pp;
    pkey = d2i_PUBKEY(NULL, &q, length);
    if (!pkey)
        return (NULL);
    key = EVP_PKEY_get1_EC_KEY(pkey);
    EVP_PKEY_free(pkey);
    if (!key)
        return (NULL);
    *pp = q;
    if (a) {
        EC_KEY_free(*a);
        *a = key;
    }
    return (key);
}

int i2d_EC_PUBKEY(EC_KEY *a, unsigned char **pp)
{
    EVP_PKEY *pktmp;
    int ret;
    if (!a)
        return (0);
    if ((pktmp = EVP_PKEY_new()) == NULL) {
        ASN1err(ASN1_F_I2D_EC_PUBKEY, ERR_R_MALLOC_FAILURE);
        return (0);
    }
    EVP_PKEY_set1_EC_KEY(pktmp, a);
    ret = i2d_PUBKEY(pktmp, pp);
    EVP_PKEY_free(pktmp);
    return (ret);
}
#endif

int X509_PUBKEY_set0_param(X509_PUBKEY *pub, ASN1_OBJECT *aobj,
                           int ptype, void *pval,
                           unsigned char *penc, int penclen)
{
    if (!X509_ALGOR_set0(pub->algor, aobj, ptype, pval))
        return 0;
    if (penc) {
        OPENSSL_free(pub->public_key->data);
        pub->public_key->data = penc;
        pub->public_key->length = penclen;
        /* Set number of unused bits to zero */
        pub->public_key->flags &= ~(ASN1_STRING_FLAG_BITS_LEFT | 0x07);
        pub->public_key->flags |= ASN1_STRING_FLAG_BITS_LEFT;
    }
    return 1;
}

int X509_PUBKEY_get0_param(ASN1_OBJECT **ppkalg,
                           const unsigned char **pk, int *ppklen,
                           X509_ALGOR **pa, X509_PUBKEY *pub)
{
    if (ppkalg)
        *ppkalg = pub->algor->algorithm;
    if (pk) {
        *pk = pub->public_key->data;
        *ppklen = pub->public_key->length;
    }
    if (pa)
        *pa = pub->algor;
    return 1;
}
Commit	Line	Data
58964a49	1	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
d02b48c6 RE	2	* All rights reserved.
	3	*
	4	* This package is an SSL implementation written
	5	* by Eric Young (eay@cryptsoft.com).
	6	* The implementation was written so as to conform with Netscapes SSL.
0f113f3e	7	*
d02b48c6 RE	8	* This library is free for commercial and non-commercial use as long as
	9	* the following conditions are aheared to. The following conditions
	10	* apply to all code found in this distribution, be it the RC4, RSA,
	11	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
	12	* included with this distribution is covered by the same copyright terms
	13	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
0f113f3e	14	*
d02b48c6 RE	15	* Copyright remains Eric Young's, and as such any Copyright notices in
	16	* the code are not to be removed.
	17	* If this package is used in a product, Eric Young should be given attribution
	18	* as the author of the parts of the library used.
	19	* This can be in the form of a textual message at program startup or
	20	* in documentation (online or textual) provided with the package.
0f113f3e	21	*
d02b48c6 RE	22	* Redistribution and use in source and binary forms, with or without
	23	* modification, are permitted provided that the following conditions
	24	* are met:
	25	* 1. Redistributions of source code must retain the copyright
	26	* notice, this list of conditions and the following disclaimer.
	27	* 2. Redistributions in binary form must reproduce the above copyright
	28	* notice, this list of conditions and the following disclaimer in the
	29	* documentation and/or other materials provided with the distribution.
	30	* 3. All advertising materials mentioning features or use of this software
	31	* must display the following acknowledgement:
	32	* "This product includes cryptographic software written by
	33	* Eric Young (eay@cryptsoft.com)"
	34	* The word 'cryptographic' can be left out if the rouines from the library
	35	* being used are not cryptographic related :-).
0f113f3e	36	* 4. If you include any Windows specific code (or a derivative thereof) from
d02b48c6 RE	37	* the apps directory (application code) you must include an acknowledgement:
d02b48c6 RE	38	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
0f113f3e	39	*
d02b48c6 RE	40	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
	41	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	42	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
	43	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
	44	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
	45	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
	46	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
	48	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
	49	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
	50	* SUCH DAMAGE.
0f113f3e	51	*
d02b48c6 RE	52	* The licence and distribution terms for any publically available version or
	53	* derivative of this code cannot be changed. i.e. this code cannot simply be
	54	* copied and put under another distribution licence
	55	* [including the GNU Public Licence.]
	56	*/
	57
	58	#include <stdio.h>
b39fc560	59	#include "internal/cryptlib.h"
9d6b1ce6	60	#include <openssl/asn1t.h>
f0e8ae72	61	#include <openssl/x509.h>
5fe736e5	62	#include "internal/asn1_int.h"
3aeb9348	63	#include "internal/evp_int.h"
3c27208f RS	64	#include <openssl/rsa.h>
3c27208f RS	65	#include <openssl/dsa.h>
d02b48c6	66
9d6b1ce6	67	/* Minor tweak to operation: free up EVP_PKEY */
24484759	68	static int pubkey_cb(int operation, ASN1_VALUE *pval, const ASN1_ITEM it,
0f113f3e MC	69	void *exarg)
0f113f3e MC	70	{
03273d61 AG	71	if (operation == ASN1_OP_NEW_POST) {
	72	X509_PUBKEY pubkey = (X509_PUBKEY )*pval;
	73	pubkey->lock = CRYPTO_THREAD_lock_new();
	74	if (pubkey->lock == NULL)
	75	return 0;
	76	}
0f113f3e MC	77	if (operation == ASN1_OP_FREE_POST) {
0f113f3e MC	78	X509_PUBKEY pubkey = (X509_PUBKEY )*pval;
03273d61	79	CRYPTO_THREAD_lock_free(pubkey->lock);
0f113f3e MC	80	EVP_PKEY_free(pubkey->pkey);
	81	}
	82	return 1;
	83	}
d02b48c6	84
9d6b1ce6	85	ASN1_SEQUENCE_cb(X509_PUBKEY, pubkey_cb) = {
0f113f3e MC	86	ASN1_SIMPLE(X509_PUBKEY, algor, X509_ALGOR),
0f113f3e MC	87	ASN1_SIMPLE(X509_PUBKEY, public_key, ASN1_BIT_STRING)
d339187b	88	} ASN1_SEQUENCE_END_cb(X509_PUBKEY, X509_PUBKEY)
d02b48c6	89
9d6b1ce6	90	IMPLEMENT_ASN1_FUNCTIONS(X509_PUBKEY)
d02b48c6	91
6b691a5c	92	int X509_PUBKEY_set(X509_PUBKEY *x, EVP_PKEY pkey)
0f113f3e MC	93	{
	94	X509_PUBKEY *pk = NULL;
	95
	96	if (x == NULL)
	97	return (0);
	98
	99	if ((pk = X509_PUBKEY_new()) == NULL)
	100	goto error;
	101
	102	if (pkey->ameth) {
	103	if (pkey->ameth->pub_encode) {
	104	if (!pkey->ameth->pub_encode(pk, pkey)) {
	105	X509err(X509_F_X509_PUBKEY_SET,
	106	X509_R_PUBLIC_KEY_ENCODE_ERROR);
	107	goto error;
	108	}
	109	} else {
	110	X509err(X509_F_X509_PUBKEY_SET, X509_R_METHOD_NOT_SUPPORTED);
	111	goto error;
	112	}
	113	} else {
	114	X509err(X509_F_X509_PUBKEY_SET, X509_R_UNSUPPORTED_ALGORITHM);
	115	goto error;
	116	}
	117
222561fe	118	X509_PUBKEY_free(*x);
0f113f3e	119	*x = pk;
0f113f3e	120	return 1;
222561fe	121
0f113f3e	122	error:
222561fe	123	X509_PUBKEY_free(pk);
0f113f3e MC	124	return 0;
0f113f3e MC	125	}
d02b48c6	126
c01ff880	127	EVP_PKEY X509_PUBKEY_get0(X509_PUBKEY key)
0f113f3e MC	128	{
	129	EVP_PKEY *ret = NULL;
	130
	131	if (key == NULL)
	132	goto error;
	133
c01ff880	134	if (key->pkey != NULL)
0f113f3e	135	return key->pkey;
0f113f3e MC	136
	137	if (key->public_key == NULL)
	138	goto error;
	139
	140	if ((ret = EVP_PKEY_new()) == NULL) {
c01ff880	141	X509err(X509_F_X509_PUBKEY_GET0, ERR_R_MALLOC_FAILURE);
0f113f3e MC	142	goto error;
	143	}
	144
	145	if (!EVP_PKEY_set_type(ret, OBJ_obj2nid(key->algor->algorithm))) {
c01ff880	146	X509err(X509_F_X509_PUBKEY_GET0, X509_R_UNSUPPORTED_ALGORITHM);
0f113f3e MC	147	goto error;
	148	}
	149
	150	if (ret->ameth->pub_decode) {
	151	if (!ret->ameth->pub_decode(ret, key)) {
c01ff880	152	X509err(X509_F_X509_PUBKEY_GET0, X509_R_PUBLIC_KEY_DECODE_ERROR);
0f113f3e MC	153	goto error;
	154	}
	155	} else {
c01ff880	156	X509err(X509_F_X509_PUBKEY_GET0, X509_R_METHOD_NOT_SUPPORTED);
0f113f3e MC	157	goto error;
	158	}
	159
	160	/* Check to see if another thread set key->pkey first */
03273d61	161	CRYPTO_THREAD_write_lock(key->lock);
0f113f3e	162	if (key->pkey) {
03273d61	163	CRYPTO_THREAD_unlock(key->lock);
0f113f3e MC	164	EVP_PKEY_free(ret);
	165	ret = key->pkey;
	166	} else {
	167	key->pkey = ret;
03273d61	168	CRYPTO_THREAD_unlock(key->lock);
0f113f3e	169	}
0f113f3e MC	170
	171	return ret;
	172
	173	error:
c5ba2d99	174	EVP_PKEY_free(ret);
0f113f3e MC	175	return (NULL);
	176	}
	177
c01ff880 DSH	178	EVP_PKEY X509_PUBKEY_get(X509_PUBKEY key)
	179	{
	180	EVP_PKEY *ret = X509_PUBKEY_get0(key);
	181	if (ret != NULL)
	182	EVP_PKEY_up_ref(ret);
	183	return ret;
	184	}
	185
0f113f3e MC	186	/*
	187	* Now two pseudo ASN1 routines that take an EVP_PKEY structure and encode or
	188	* decode as X509_PUBKEY
52664f50 DSH	189	*/
52664f50 DSH	190
0f113f3e MC	191	EVP_PKEY d2i_PUBKEY(EVP_PKEY a, const unsigned char *pp, long length)
	192	{
	193	X509_PUBKEY *xpk;
	194	EVP_PKEY *pktmp;
a46c9789 KR	195	const unsigned char *q;
	196	q = *pp;
	197	xpk = d2i_X509_PUBKEY(NULL, &q, length);
0f113f3e MC	198	if (!xpk)
	199	return NULL;
	200	pktmp = X509_PUBKEY_get(xpk);
	201	X509_PUBKEY_free(xpk);
	202	if (!pktmp)
	203	return NULL;
a46c9789	204	*pp = q;
0f113f3e MC	205	if (a) {
	206	EVP_PKEY_free(*a);
	207	*a = pktmp;
	208	}
	209	return pktmp;
	210	}
52664f50 DSH	211
52664f50 DSH	212	int i2d_PUBKEY(EVP_PKEY a, unsigned char *pp)
0f113f3e MC	213	{
	214	X509_PUBKEY *xpk = NULL;
	215	int ret;
	216	if (!a)
	217	return 0;
	218	if (!X509_PUBKEY_set(&xpk, a))
	219	return 0;
	220	ret = i2d_X509_PUBKEY(xpk, pp);
	221	X509_PUBKEY_free(xpk);
	222	return ret;
	223	}
	224
	225	/*
	226	* The following are equivalents but which return RSA and DSA keys
52664f50	227	*/
cf1b7d96	228	#ifndef OPENSSL_NO_RSA
0f113f3e MC	229	RSA d2i_RSA_PUBKEY(RSA a, const unsigned char *pp, long length)
	230	{
	231	EVP_PKEY *pkey;
	232	RSA *key;
	233	const unsigned char *q;
	234	q = *pp;
	235	pkey = d2i_PUBKEY(NULL, &q, length);
	236	if (!pkey)
	237	return NULL;
	238	key = EVP_PKEY_get1_RSA(pkey);
	239	EVP_PKEY_free(pkey);
	240	if (!key)
	241	return NULL;
	242	*pp = q;
	243	if (a) {
	244	RSA_free(*a);
	245	*a = key;
	246	}
	247	return key;
	248	}
52664f50 DSH	249
52664f50 DSH	250	int i2d_RSA_PUBKEY(RSA a, unsigned char *pp)
0f113f3e MC	251	{
	252	EVP_PKEY *pktmp;
	253	int ret;
	254	if (!a)
	255	return 0;
	256	pktmp = EVP_PKEY_new();
90945fa3	257	if (pktmp == NULL) {
0f113f3e MC	258	ASN1err(ASN1_F_I2D_RSA_PUBKEY, ERR_R_MALLOC_FAILURE);
	259	return 0;
	260	}
	261	EVP_PKEY_set1_RSA(pktmp, a);
	262	ret = i2d_PUBKEY(pktmp, pp);
	263	EVP_PKEY_free(pktmp);
	264	return ret;
	265	}
12aefe78	266	#endif
52664f50	267
cf1b7d96	268	#ifndef OPENSSL_NO_DSA
0f113f3e MC	269	DSA d2i_DSA_PUBKEY(DSA a, const unsigned char *pp, long length)
	270	{
	271	EVP_PKEY *pkey;
	272	DSA *key;
	273	const unsigned char *q;
	274	q = *pp;
	275	pkey = d2i_PUBKEY(NULL, &q, length);
	276	if (!pkey)
	277	return NULL;
	278	key = EVP_PKEY_get1_DSA(pkey);
	279	EVP_PKEY_free(pkey);
	280	if (!key)
	281	return NULL;
	282	*pp = q;
	283	if (a) {
	284	DSA_free(*a);
	285	*a = key;
	286	}
	287	return key;
	288	}
52664f50 DSH	289
52664f50 DSH	290	int i2d_DSA_PUBKEY(DSA a, unsigned char *pp)
0f113f3e MC	291	{
	292	EVP_PKEY *pktmp;
	293	int ret;
	294	if (!a)
	295	return 0;
	296	pktmp = EVP_PKEY_new();
90945fa3	297	if (pktmp == NULL) {
0f113f3e MC	298	ASN1err(ASN1_F_I2D_DSA_PUBKEY, ERR_R_MALLOC_FAILURE);
	299	return 0;
	300	}
	301	EVP_PKEY_set1_DSA(pktmp, a);
	302	ret = i2d_PUBKEY(pktmp, pp);
	303	EVP_PKEY_free(pktmp);
	304	return ret;
	305	}
4d94ae00 BM	306	#endif
4d94ae00 BM	307
14a7cfb3	308	#ifndef OPENSSL_NO_EC
6343829a	309	EC_KEY d2i_EC_PUBKEY(EC_KEY a, const unsigned char *pp, long length)
0f113f3e MC	310	{
	311	EVP_PKEY *pkey;
	312	EC_KEY *key;
	313	const unsigned char *q;
	314	q = *pp;
	315	pkey = d2i_PUBKEY(NULL, &q, length);
	316	if (!pkey)
	317	return (NULL);
	318	key = EVP_PKEY_get1_EC_KEY(pkey);
	319	EVP_PKEY_free(pkey);
	320	if (!key)
	321	return (NULL);
	322	*pp = q;
	323	if (a) {
	324	EC_KEY_free(*a);
	325	*a = key;
	326	}
	327	return (key);
	328	}
4d94ae00	329
14a7cfb3	330	int i2d_EC_PUBKEY(EC_KEY a, unsigned char *pp)
0f113f3e MC	331	{
	332	EVP_PKEY *pktmp;
	333	int ret;
	334	if (!a)
	335	return (0);
	336	if ((pktmp = EVP_PKEY_new()) == NULL) {
	337	ASN1err(ASN1_F_I2D_EC_PUBKEY, ERR_R_MALLOC_FAILURE);
	338	return (0);
	339	}
	340	EVP_PKEY_set1_EC_KEY(pktmp, a);
	341	ret = i2d_PUBKEY(pktmp, pp);
	342	EVP_PKEY_free(pktmp);
	343	return (ret);
	344	}
12aefe78	345	#endif
448be743 DSH	346
448be743 DSH	347	int X509_PUBKEY_set0_param(X509_PUBKEY pub, ASN1_OBJECT aobj,
0f113f3e MC	348	int ptype, void *pval,
	349	unsigned char *penc, int penclen)
	350	{
	351	if (!X509_ALGOR_set0(pub->algor, aobj, ptype, pval))
	352	return 0;
	353	if (penc) {
b548a1f1	354	OPENSSL_free(pub->public_key->data);
0f113f3e MC	355	pub->public_key->data = penc;
	356	pub->public_key->length = penclen;
	357	/* Set number of unused bits to zero */
	358	pub->public_key->flags &= ~(ASN1_STRING_FLAG_BITS_LEFT \| 0x07);
	359	pub->public_key->flags \|= ASN1_STRING_FLAG_BITS_LEFT;
	360	}
	361	return 1;
	362	}
448be743 DSH	363
448be743 DSH	364	int X509_PUBKEY_get0_param(ASN1_OBJECT **ppkalg,
0f113f3e MC	365	const unsigned char *pk, int ppklen,
	366	X509_ALGOR *pa, X509_PUBKEY pub)
	367	{
	368	if (ppkalg)
	369	*ppkalg = pub->algor->algorithm;
	370	if (pk) {
	371	*pk = pub->public_key->data;
	372	*ppklen = pub->public_key->length;
	373	}
	374	if (pa)
	375	*pa = pub->algor;
	376	return 1;
	377	}