2 * Copyright 1995-2020 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
11 * Low level APIs are deprecated for public use, but still ok for
14 #include "internal/deprecated.h"
17 #include "internal/cryptlib.h"
18 #include <openssl/buffer.h>
19 #include <openssl/asn1.h>
20 #include <openssl/evp.h>
21 #include <openssl/x509.h>
22 #include "crypto/x509.h"
23 #include <openssl/http.h>
24 #include <openssl/rsa.h>
25 #include <openssl/dsa.h>
26 #include <openssl/x509v3.h>
28 static void clean_id_ctx(EVP_MD_CTX
*ctx
)
30 EVP_PKEY_CTX
*pctx
= EVP_MD_CTX_pkey_ctx(ctx
);
32 EVP_PKEY_CTX_free(pctx
);
36 static EVP_MD_CTX
*make_id_ctx(EVP_PKEY
*r
, ASN1_OCTET_STRING
*id
)
38 EVP_MD_CTX
*ctx
= NULL
;
39 EVP_PKEY_CTX
*pctx
= NULL
;
41 if ((ctx
= EVP_MD_CTX_new()) == NULL
42 || (pctx
= EVP_PKEY_CTX_new(r
, NULL
)) == NULL
) {
43 X509err(0, ERR_R_MALLOC_FAILURE
);
49 if (EVP_PKEY_CTX_set1_id(pctx
, id
->data
, id
->length
) <= 0) {
50 X509err(0, ERR_R_MALLOC_FAILURE
);
56 EVP_MD_CTX_set_pkey_ctx(ctx
, pctx
);
60 EVP_PKEY_CTX_free(pctx
);
65 int X509_verify(X509
*a
, EVP_PKEY
*r
)
68 EVP_MD_CTX
*ctx
= NULL
;
69 ASN1_OCTET_STRING
*id
= NULL
;
71 if (X509_ALGOR_cmp(&a
->sig_alg
, &a
->cert_info
.signature
))
74 id
= a
->distinguishing_id
;
75 if ((ctx
= make_id_ctx(r
, id
)) != NULL
) {
76 rv
= ASN1_item_verify_ctx(ASN1_ITEM_rptr(X509_CINF
), &a
->sig_alg
,
77 &a
->signature
, &a
->cert_info
, ctx
);
83 int X509_REQ_verify(X509_REQ
*a
, EVP_PKEY
*r
)
86 EVP_MD_CTX
*ctx
= NULL
;
87 ASN1_OCTET_STRING
*id
= NULL
;
89 id
= a
->distinguishing_id
;
90 if ((ctx
= make_id_ctx(r
, id
)) != NULL
) {
91 rv
= ASN1_item_verify_ctx(ASN1_ITEM_rptr(X509_REQ_INFO
), &a
->sig_alg
,
92 a
->signature
, &a
->req_info
, ctx
);
98 int NETSCAPE_SPKI_verify(NETSCAPE_SPKI
*a
, EVP_PKEY
*r
)
100 return (ASN1_item_verify(ASN1_ITEM_rptr(NETSCAPE_SPKAC
),
101 &a
->sig_algor
, a
->signature
, a
->spkac
, r
));
104 int X509_sign(X509
*x
, EVP_PKEY
*pkey
, const EVP_MD
*md
)
106 x
->cert_info
.enc
.modified
= 1;
107 return (ASN1_item_sign(ASN1_ITEM_rptr(X509_CINF
), &x
->cert_info
.signature
,
108 &x
->sig_alg
, &x
->signature
, &x
->cert_info
, pkey
,
112 int X509_sign_ctx(X509
*x
, EVP_MD_CTX
*ctx
)
114 x
->cert_info
.enc
.modified
= 1;
115 return ASN1_item_sign_ctx(ASN1_ITEM_rptr(X509_CINF
),
116 &x
->cert_info
.signature
,
117 &x
->sig_alg
, &x
->signature
, &x
->cert_info
, ctx
);
120 #if !defined(OPENSSL_NO_SOCK)
121 static ASN1_VALUE
*simple_get_asn1(const char *url
, BIO
*bio
, BIO
*rbio
,
122 int timeout
, const ASN1_ITEM
*it
)
124 return OSSL_HTTP_get_asn1(url
, NULL
, NULL
/* no proxy used */, bio
,
125 rbio
, NULL
/* no callback for SSL/TLS */, NULL
,
126 NULL
/* headers */, 1024 /* maxline */,
127 0 /* max_resp_len */, timeout
,
128 NULL
/* expected_content_type */, it
);
131 X509
*X509_load_http(const char *url
, BIO
*bio
, BIO
*rbio
, int timeout
)
133 return (X509
*)simple_get_asn1(url
, bio
, rbio
, timeout
,
134 ASN1_ITEM_rptr(X509
));
138 int X509_REQ_sign(X509_REQ
*x
, EVP_PKEY
*pkey
, const EVP_MD
*md
)
140 return (ASN1_item_sign(ASN1_ITEM_rptr(X509_REQ_INFO
), &x
->sig_alg
, NULL
,
141 x
->signature
, &x
->req_info
, pkey
, md
));
144 int X509_REQ_sign_ctx(X509_REQ
*x
, EVP_MD_CTX
*ctx
)
146 return ASN1_item_sign_ctx(ASN1_ITEM_rptr(X509_REQ_INFO
),
147 &x
->sig_alg
, NULL
, x
->signature
, &x
->req_info
,
151 int X509_CRL_sign(X509_CRL
*x
, EVP_PKEY
*pkey
, const EVP_MD
*md
)
153 x
->crl
.enc
.modified
= 1;
154 return (ASN1_item_sign(ASN1_ITEM_rptr(X509_CRL_INFO
), &x
->crl
.sig_alg
,
155 &x
->sig_alg
, &x
->signature
, &x
->crl
, pkey
, md
));
158 int X509_CRL_sign_ctx(X509_CRL
*x
, EVP_MD_CTX
*ctx
)
160 x
->crl
.enc
.modified
= 1;
161 return ASN1_item_sign_ctx(ASN1_ITEM_rptr(X509_CRL_INFO
),
162 &x
->crl
.sig_alg
, &x
->sig_alg
, &x
->signature
,
166 #if !defined(OPENSSL_NO_SOCK)
167 X509_CRL
*X509_CRL_load_http(const char *url
, BIO
*bio
, BIO
*rbio
, int timeout
)
169 return (X509_CRL
*)simple_get_asn1(url
, bio
, rbio
, timeout
,
170 ASN1_ITEM_rptr(X509_CRL
));
174 int NETSCAPE_SPKI_sign(NETSCAPE_SPKI
*x
, EVP_PKEY
*pkey
, const EVP_MD
*md
)
176 return (ASN1_item_sign(ASN1_ITEM_rptr(NETSCAPE_SPKAC
), &x
->sig_algor
, NULL
,
177 x
->signature
, x
->spkac
, pkey
, md
));
180 #ifndef OPENSSL_NO_STDIO
181 X509
*d2i_X509_fp(FILE *fp
, X509
**x509
)
183 return ASN1_item_d2i_fp(ASN1_ITEM_rptr(X509
), fp
, x509
);
186 int i2d_X509_fp(FILE *fp
, const X509
*x509
)
188 return ASN1_item_i2d_fp(ASN1_ITEM_rptr(X509
), fp
, x509
);
192 X509
*d2i_X509_bio(BIO
*bp
, X509
**x509
)
194 return ASN1_item_d2i_bio(ASN1_ITEM_rptr(X509
), bp
, x509
);
197 int i2d_X509_bio(BIO
*bp
, const X509
*x509
)
199 return ASN1_item_i2d_bio(ASN1_ITEM_rptr(X509
), bp
, x509
);
202 #ifndef OPENSSL_NO_STDIO
203 X509_CRL
*d2i_X509_CRL_fp(FILE *fp
, X509_CRL
**crl
)
205 return ASN1_item_d2i_fp(ASN1_ITEM_rptr(X509_CRL
), fp
, crl
);
208 int i2d_X509_CRL_fp(FILE *fp
, const X509_CRL
*crl
)
210 return ASN1_item_i2d_fp(ASN1_ITEM_rptr(X509_CRL
), fp
, crl
);
214 X509_CRL
*d2i_X509_CRL_bio(BIO
*bp
, X509_CRL
**crl
)
216 return ASN1_item_d2i_bio(ASN1_ITEM_rptr(X509_CRL
), bp
, crl
);
219 int i2d_X509_CRL_bio(BIO
*bp
, const X509_CRL
*crl
)
221 return ASN1_item_i2d_bio(ASN1_ITEM_rptr(X509_CRL
), bp
, crl
);
224 #ifndef OPENSSL_NO_STDIO
225 PKCS7
*d2i_PKCS7_fp(FILE *fp
, PKCS7
**p7
)
227 return ASN1_item_d2i_fp(ASN1_ITEM_rptr(PKCS7
), fp
, p7
);
230 int i2d_PKCS7_fp(FILE *fp
, const PKCS7
*p7
)
232 return ASN1_item_i2d_fp(ASN1_ITEM_rptr(PKCS7
), fp
, p7
);
236 PKCS7
*d2i_PKCS7_bio(BIO
*bp
, PKCS7
**p7
)
238 return ASN1_item_d2i_bio(ASN1_ITEM_rptr(PKCS7
), bp
, p7
);
241 int i2d_PKCS7_bio(BIO
*bp
, const PKCS7
*p7
)
243 return ASN1_item_i2d_bio(ASN1_ITEM_rptr(PKCS7
), bp
, p7
);
246 #ifndef OPENSSL_NO_STDIO
247 X509_REQ
*d2i_X509_REQ_fp(FILE *fp
, X509_REQ
**req
)
249 return ASN1_item_d2i_fp(ASN1_ITEM_rptr(X509_REQ
), fp
, req
);
252 int i2d_X509_REQ_fp(FILE *fp
, const X509_REQ
*req
)
254 return ASN1_item_i2d_fp(ASN1_ITEM_rptr(X509_REQ
), fp
, req
);
258 X509_REQ
*d2i_X509_REQ_bio(BIO
*bp
, X509_REQ
**req
)
260 return ASN1_item_d2i_bio(ASN1_ITEM_rptr(X509_REQ
), bp
, req
);
263 int i2d_X509_REQ_bio(BIO
*bp
, const X509_REQ
*req
)
265 return ASN1_item_i2d_bio(ASN1_ITEM_rptr(X509_REQ
), bp
, req
);
268 #ifndef OPENSSL_NO_RSA
270 # ifndef OPENSSL_NO_STDIO
271 RSA
*d2i_RSAPrivateKey_fp(FILE *fp
, RSA
**rsa
)
273 return ASN1_item_d2i_fp(ASN1_ITEM_rptr(RSAPrivateKey
), fp
, rsa
);
276 int i2d_RSAPrivateKey_fp(FILE *fp
, const RSA
*rsa
)
278 return ASN1_item_i2d_fp(ASN1_ITEM_rptr(RSAPrivateKey
), fp
, rsa
);
281 RSA
*d2i_RSAPublicKey_fp(FILE *fp
, RSA
**rsa
)
283 return ASN1_item_d2i_fp(ASN1_ITEM_rptr(RSAPublicKey
), fp
, rsa
);
286 RSA
*d2i_RSA_PUBKEY_fp(FILE *fp
, RSA
**rsa
)
288 return ASN1_d2i_fp((void *(*)(void))
289 RSA_new
, (D2I_OF(void)) d2i_RSA_PUBKEY
, fp
,
293 int i2d_RSAPublicKey_fp(FILE *fp
, const RSA
*rsa
)
295 return ASN1_item_i2d_fp(ASN1_ITEM_rptr(RSAPublicKey
), fp
, rsa
);
298 int i2d_RSA_PUBKEY_fp(FILE *fp
, const RSA
*rsa
)
300 return ASN1_i2d_fp((I2D_OF(void))i2d_RSA_PUBKEY
, fp
, rsa
);
304 RSA
*d2i_RSAPrivateKey_bio(BIO
*bp
, RSA
**rsa
)
306 return ASN1_item_d2i_bio(ASN1_ITEM_rptr(RSAPrivateKey
), bp
, rsa
);
309 int i2d_RSAPrivateKey_bio(BIO
*bp
, const RSA
*rsa
)
311 return ASN1_item_i2d_bio(ASN1_ITEM_rptr(RSAPrivateKey
), bp
, rsa
);
314 RSA
*d2i_RSAPublicKey_bio(BIO
*bp
, RSA
**rsa
)
316 return ASN1_item_d2i_bio(ASN1_ITEM_rptr(RSAPublicKey
), bp
, rsa
);
319 RSA
*d2i_RSA_PUBKEY_bio(BIO
*bp
, RSA
**rsa
)
321 return ASN1_d2i_bio_of(RSA
, RSA_new
, d2i_RSA_PUBKEY
, bp
, rsa
);
324 int i2d_RSAPublicKey_bio(BIO
*bp
, const RSA
*rsa
)
326 return ASN1_item_i2d_bio(ASN1_ITEM_rptr(RSAPublicKey
), bp
, rsa
);
329 int i2d_RSA_PUBKEY_bio(BIO
*bp
, const RSA
*rsa
)
331 return ASN1_i2d_bio_of(RSA
, i2d_RSA_PUBKEY
, bp
, rsa
);
335 #ifndef OPENSSL_NO_DSA
336 # ifndef OPENSSL_NO_STDIO
337 DSA
*d2i_DSAPrivateKey_fp(FILE *fp
, DSA
**dsa
)
339 return ASN1_d2i_fp_of(DSA
, DSA_new
, d2i_DSAPrivateKey
, fp
, dsa
);
342 int i2d_DSAPrivateKey_fp(FILE *fp
, const DSA
*dsa
)
344 return ASN1_i2d_fp_of(DSA
, i2d_DSAPrivateKey
, fp
, dsa
);
347 DSA
*d2i_DSA_PUBKEY_fp(FILE *fp
, DSA
**dsa
)
349 return ASN1_d2i_fp_of(DSA
, DSA_new
, d2i_DSA_PUBKEY
, fp
, dsa
);
352 int i2d_DSA_PUBKEY_fp(FILE *fp
, const DSA
*dsa
)
354 return ASN1_i2d_fp_of(DSA
, i2d_DSA_PUBKEY
, fp
, dsa
);
358 DSA
*d2i_DSAPrivateKey_bio(BIO
*bp
, DSA
**dsa
)
360 return ASN1_d2i_bio_of(DSA
, DSA_new
, d2i_DSAPrivateKey
, bp
, dsa
);
363 int i2d_DSAPrivateKey_bio(BIO
*bp
, const DSA
*dsa
)
365 return ASN1_i2d_bio_of(DSA
, i2d_DSAPrivateKey
, bp
, dsa
);
368 DSA
*d2i_DSA_PUBKEY_bio(BIO
*bp
, DSA
**dsa
)
370 return ASN1_d2i_bio_of(DSA
, DSA_new
, d2i_DSA_PUBKEY
, bp
, dsa
);
373 int i2d_DSA_PUBKEY_bio(BIO
*bp
, const DSA
*dsa
)
375 return ASN1_i2d_bio_of(DSA
, i2d_DSA_PUBKEY
, bp
, dsa
);
380 #ifndef OPENSSL_NO_EC
381 # ifndef OPENSSL_NO_STDIO
382 EC_KEY
*d2i_EC_PUBKEY_fp(FILE *fp
, EC_KEY
**eckey
)
384 return ASN1_d2i_fp_of(EC_KEY
, EC_KEY_new
, d2i_EC_PUBKEY
, fp
, eckey
);
387 int i2d_EC_PUBKEY_fp(FILE *fp
, const EC_KEY
*eckey
)
389 return ASN1_i2d_fp_of(EC_KEY
, i2d_EC_PUBKEY
, fp
, eckey
);
392 EC_KEY
*d2i_ECPrivateKey_fp(FILE *fp
, EC_KEY
**eckey
)
394 return ASN1_d2i_fp_of(EC_KEY
, EC_KEY_new
, d2i_ECPrivateKey
, fp
, eckey
);
397 int i2d_ECPrivateKey_fp(FILE *fp
, const EC_KEY
*eckey
)
399 return ASN1_i2d_fp_of(EC_KEY
, i2d_ECPrivateKey
, fp
, eckey
);
402 EC_KEY
*d2i_EC_PUBKEY_bio(BIO
*bp
, EC_KEY
**eckey
)
404 return ASN1_d2i_bio_of(EC_KEY
, EC_KEY_new
, d2i_EC_PUBKEY
, bp
, eckey
);
407 int i2d_EC_PUBKEY_bio(BIO
*bp
, const EC_KEY
*ecdsa
)
409 return ASN1_i2d_bio_of(EC_KEY
, i2d_EC_PUBKEY
, bp
, ecdsa
);
412 EC_KEY
*d2i_ECPrivateKey_bio(BIO
*bp
, EC_KEY
**eckey
)
414 return ASN1_d2i_bio_of(EC_KEY
, EC_KEY_new
, d2i_ECPrivateKey
, bp
, eckey
);
417 int i2d_ECPrivateKey_bio(BIO
*bp
, const EC_KEY
*eckey
)
419 return ASN1_i2d_bio_of(EC_KEY
, i2d_ECPrivateKey
, bp
, eckey
);
423 int X509_pubkey_digest(const X509
*data
, const EVP_MD
*type
,
424 unsigned char *md
, unsigned int *len
)
426 ASN1_BIT_STRING
*key
;
427 key
= X509_get0_pubkey_bitstr(data
);
430 return EVP_Digest(key
->data
, key
->length
, md
, len
, type
, NULL
);
433 int X509_digest(const X509
*data
, const EVP_MD
*type
, unsigned char *md
,
436 if (type
== EVP_sha1() && (data
->ex_flags
& EXFLAG_SET
) != 0
437 && (data
->ex_flags
& EXFLAG_INVALID
) == 0) {
438 /* Asking for SHA1 and we already computed it. */
440 *len
= sizeof(data
->sha1_hash
);
441 memcpy(md
, data
->sha1_hash
, sizeof(data
->sha1_hash
));
444 return (ASN1_item_digest
445 (ASN1_ITEM_rptr(X509
), type
, (char *)data
, md
, len
));
448 /* calculate cert digest using the same hash algorithm as in its signature */
449 ASN1_OCTET_STRING
*X509_digest_sig(const X509
*cert
)
452 unsigned char hash
[EVP_MAX_MD_SIZE
];
454 const EVP_MD
*md
= NULL
;
455 ASN1_OCTET_STRING
*new = NULL
;
458 X509err(0, ERR_R_PASSED_NULL_PARAMETER
);
462 if (!OBJ_find_sigid_algs(X509_get_signature_nid(cert
), &md_NID
, NULL
)
463 || (md
= EVP_get_digestbynid(md_NID
)) == NULL
) {
464 CMPerr(0, X509_R_UNSUPPORTED_ALGORITHM
);
467 if (!X509_digest(cert
, md
, hash
, &len
)
468 || (new = ASN1_OCTET_STRING_new()) == NULL
)
470 if (!(ASN1_OCTET_STRING_set(new, hash
, len
))) {
471 ASN1_OCTET_STRING_free(new);
477 int X509_CRL_digest(const X509_CRL
*data
, const EVP_MD
*type
,
478 unsigned char *md
, unsigned int *len
)
480 if (type
== EVP_sha1() && (data
->flags
& EXFLAG_SET
) != 0
481 && (data
->flags
& EXFLAG_INVALID
) == 0) {
482 /* Asking for SHA1; always computed in CRL d2i. */
484 *len
= sizeof(data
->sha1_hash
);
485 memcpy(md
, data
->sha1_hash
, sizeof(data
->sha1_hash
));
488 return (ASN1_item_digest
489 (ASN1_ITEM_rptr(X509_CRL
), type
, (char *)data
, md
, len
));
492 int X509_REQ_digest(const X509_REQ
*data
, const EVP_MD
*type
,
493 unsigned char *md
, unsigned int *len
)
495 return (ASN1_item_digest
496 (ASN1_ITEM_rptr(X509_REQ
), type
, (char *)data
, md
, len
));
499 int X509_NAME_digest(const X509_NAME
*data
, const EVP_MD
*type
,
500 unsigned char *md
, unsigned int *len
)
502 return (ASN1_item_digest
503 (ASN1_ITEM_rptr(X509_NAME
), type
, (char *)data
, md
, len
));
506 int PKCS7_ISSUER_AND_SERIAL_digest(PKCS7_ISSUER_AND_SERIAL
*data
,
507 const EVP_MD
*type
, unsigned char *md
,
510 return (ASN1_item_digest(ASN1_ITEM_rptr(PKCS7_ISSUER_AND_SERIAL
), type
,
511 (char *)data
, md
, len
));
514 #ifndef OPENSSL_NO_STDIO
515 X509_SIG
*d2i_PKCS8_fp(FILE *fp
, X509_SIG
**p8
)
517 return ASN1_d2i_fp_of(X509_SIG
, X509_SIG_new
, d2i_X509_SIG
, fp
, p8
);
520 int i2d_PKCS8_fp(FILE *fp
, const X509_SIG
*p8
)
522 return ASN1_i2d_fp_of(X509_SIG
, i2d_X509_SIG
, fp
, p8
);
526 X509_SIG
*d2i_PKCS8_bio(BIO
*bp
, X509_SIG
**p8
)
528 return ASN1_d2i_bio_of(X509_SIG
, X509_SIG_new
, d2i_X509_SIG
, bp
, p8
);
531 int i2d_PKCS8_bio(BIO
*bp
, const X509_SIG
*p8
)
533 return ASN1_i2d_bio_of(X509_SIG
, i2d_X509_SIG
, bp
, p8
);
536 #ifndef OPENSSL_NO_STDIO
537 X509_PUBKEY
*d2i_X509_PUBKEY_fp(FILE *fp
, X509_PUBKEY
**xpk
)
539 return ASN1_d2i_fp_of(X509_PUBKEY
, X509_PUBKEY_new
, d2i_X509_PUBKEY
,
543 int i2d_X509_PUBKEY_fp(FILE *fp
, const X509_PUBKEY
*xpk
)
545 return ASN1_i2d_fp_of(X509_PUBKEY
, i2d_X509_PUBKEY
, fp
, xpk
);
549 X509_PUBKEY
*d2i_X509_PUBKEY_bio(BIO
*bp
, X509_PUBKEY
**xpk
)
551 return ASN1_d2i_bio_of(X509_PUBKEY
, X509_PUBKEY_new
, d2i_X509_PUBKEY
,
555 int i2d_X509_PUBKEY_bio(BIO
*bp
, const X509_PUBKEY
*xpk
)
557 return ASN1_i2d_bio_of(X509_PUBKEY
, i2d_X509_PUBKEY
, bp
, xpk
);
560 #ifndef OPENSSL_NO_STDIO
561 PKCS8_PRIV_KEY_INFO
*d2i_PKCS8_PRIV_KEY_INFO_fp(FILE *fp
,
562 PKCS8_PRIV_KEY_INFO
**p8inf
)
564 return ASN1_d2i_fp_of(PKCS8_PRIV_KEY_INFO
, PKCS8_PRIV_KEY_INFO_new
,
565 d2i_PKCS8_PRIV_KEY_INFO
, fp
, p8inf
);
568 int i2d_PKCS8_PRIV_KEY_INFO_fp(FILE *fp
, const PKCS8_PRIV_KEY_INFO
*p8inf
)
570 return ASN1_i2d_fp_of(PKCS8_PRIV_KEY_INFO
, i2d_PKCS8_PRIV_KEY_INFO
, fp
,
574 int i2d_PKCS8PrivateKeyInfo_fp(FILE *fp
, const EVP_PKEY
*key
)
576 PKCS8_PRIV_KEY_INFO
*p8inf
;
579 p8inf
= EVP_PKEY2PKCS8(key
);
582 ret
= i2d_PKCS8_PRIV_KEY_INFO_fp(fp
, p8inf
);
583 PKCS8_PRIV_KEY_INFO_free(p8inf
);
587 int i2d_PrivateKey_fp(FILE *fp
, const EVP_PKEY
*pkey
)
589 return ASN1_i2d_fp_of(EVP_PKEY
, i2d_PrivateKey
, fp
, pkey
);
592 EVP_PKEY
*d2i_PrivateKey_fp(FILE *fp
, EVP_PKEY
**a
)
594 return ASN1_d2i_fp_of(EVP_PKEY
, EVP_PKEY_new
, d2i_AutoPrivateKey
, fp
, a
);
597 int i2d_PUBKEY_fp(FILE *fp
, const EVP_PKEY
*pkey
)
599 return ASN1_i2d_fp_of(EVP_PKEY
, i2d_PUBKEY
, fp
, pkey
);
602 EVP_PKEY
*d2i_PUBKEY_fp(FILE *fp
, EVP_PKEY
**a
)
604 return ASN1_d2i_fp_of(EVP_PKEY
, EVP_PKEY_new
, d2i_PUBKEY
, fp
, a
);
609 PKCS8_PRIV_KEY_INFO
*d2i_PKCS8_PRIV_KEY_INFO_bio(BIO
*bp
,
610 PKCS8_PRIV_KEY_INFO
**p8inf
)
612 return ASN1_d2i_bio_of(PKCS8_PRIV_KEY_INFO
, PKCS8_PRIV_KEY_INFO_new
,
613 d2i_PKCS8_PRIV_KEY_INFO
, bp
, p8inf
);
616 int i2d_PKCS8_PRIV_KEY_INFO_bio(BIO
*bp
, const PKCS8_PRIV_KEY_INFO
*p8inf
)
618 return ASN1_i2d_bio_of(PKCS8_PRIV_KEY_INFO
, i2d_PKCS8_PRIV_KEY_INFO
, bp
,
622 int i2d_PKCS8PrivateKeyInfo_bio(BIO
*bp
, const EVP_PKEY
*key
)
624 PKCS8_PRIV_KEY_INFO
*p8inf
;
627 p8inf
= EVP_PKEY2PKCS8(key
);
630 ret
= i2d_PKCS8_PRIV_KEY_INFO_bio(bp
, p8inf
);
631 PKCS8_PRIV_KEY_INFO_free(p8inf
);
635 int i2d_PrivateKey_bio(BIO
*bp
, const EVP_PKEY
*pkey
)
637 return ASN1_i2d_bio_of(EVP_PKEY
, i2d_PrivateKey
, bp
, pkey
);
640 EVP_PKEY
*d2i_PrivateKey_bio(BIO
*bp
, EVP_PKEY
**a
)
642 return ASN1_d2i_bio_of(EVP_PKEY
, EVP_PKEY_new
, d2i_AutoPrivateKey
, bp
, a
);
645 int i2d_PUBKEY_bio(BIO
*bp
, const EVP_PKEY
*pkey
)
647 return ASN1_i2d_bio_of(EVP_PKEY
, i2d_PUBKEY
, bp
, pkey
);
650 EVP_PKEY
*d2i_PUBKEY_bio(BIO
*bp
, EVP_PKEY
**a
)
652 return ASN1_d2i_bio_of(EVP_PKEY
, EVP_PKEY_new
, d2i_PUBKEY
, bp
, a
);