23 	struct tlsv1_credentials *cred;  in tlsv1_cred_alloc()  local
24 	cred = os_zalloc(sizeof(*cred));  in tlsv1_cred_alloc()
25 	return cred;  in tlsv1_cred_alloc()
29 void tlsv1_cred_free(struct tlsv1_credentials *cred)  in tlsv1_cred_free()  argument
31 	if (cred == NULL)  in tlsv1_cred_free()
34 	x509_certificate_chain_free(cred->trusted_certs);  in tlsv1_cred_free()
35 	x509_certificate_chain_free(cred->cert);  in tlsv1_cred_free()
36 	crypto_private_key_free(cred->key);  in tlsv1_cred_free()
37 	os_free(cred->dh_p);  in tlsv1_cred_free()
38 	os_free(cred->dh_g);  in tlsv1_cred_free()
39 	os_free(cred->ocsp_stapling_response);  in tlsv1_cred_free()
40 	os_free(cred->ocsp_stapling_response_multi);  in tlsv1_cred_free()
41 	os_free(cred);  in tlsv1_cred_free()
194 int tlsv1_set_ca_cert(struct tlsv1_credentials *cred, const char *cert,  in tlsv1_set_ca_cert()  argument
213 		if (hexstr2bin(pos, cred->srv_cert_hash, 32) < 0) {  in tlsv1_set_ca_cert()
219 		cred->server_cert_only = 1;  in tlsv1_set_ca_cert()
220 		cred->ca_cert_verify = 0;  in tlsv1_set_ca_cert()
227 		cred->cert_probe = 1;  in tlsv1_set_ca_cert()
228 		cred->ca_cert_verify = 0;  in tlsv1_set_ca_cert()
233 	cred->ca_cert_verify = cert || cert_blob || path;  in tlsv1_set_ca_cert()
235 	if (tlsv1_set_cert_chain(&cred->trusted_certs, cert,  in tlsv1_set_ca_cert()
258 int tlsv1_set_cert(struct tlsv1_credentials *cred, const char *cert,  in tlsv1_set_cert()  argument
261 	return tlsv1_set_cert_chain(&cred->cert, cert,  in tlsv1_set_cert()
415 static int pkcs12_keybag(struct tlsv1_credentials *cred,  in pkcs12_keybag()  argument
423 static int pkcs12_pkcs8_keybag(struct tlsv1_credentials *cred,  in pkcs12_pkcs8_keybag()  argument
436 	crypto_private_key_free(cred->key);  in pkcs12_pkcs8_keybag()
437 	cred->key = key;  in pkcs12_pkcs8_keybag()
443 static int pkcs12_certbag(struct tlsv1_credentials *cred,  in pkcs12_certbag()  argument
497 	if (cred->cert) {  in pkcs12_certbag()
511 	return tlsv1_set_cert(cred, NULL, hdr.payload, hdr.length);  in pkcs12_certbag()
606 static int pkcs12_safebag(struct tlsv1_credentials *cred,  in pkcs12_safebag()  argument
667 		return pkcs12_keybag(cred, value, value_len);  in pkcs12_safebag()
669 		return pkcs12_pkcs8_keybag(cred, value, value_len, passwd);  in pkcs12_safebag()
671 		return pkcs12_certbag(cred, value, value_len);  in pkcs12_safebag()
678 static int pkcs12_safecontents(struct tlsv1_credentials *cred,  in pkcs12_safecontents()  argument
709 		if (pkcs12_safebag(cred, hdr.payload, hdr.length, passwd) < 0)  in pkcs12_safecontents()
718 static int pkcs12_parse_content_data(struct tlsv1_credentials *cred,  in pkcs12_parse_content_data()  argument
733 	return pkcs12_safecontents(cred, hdr.payload, hdr.length, passwd);  in pkcs12_parse_content_data()
737 static int pkcs12_parse_content_enc_data(struct tlsv1_credentials *cred,  in pkcs12_parse_content_enc_data()  argument
835 		res = pkcs12_safecontents(cred, data, data_len, passwd);  in pkcs12_parse_content_enc_data()
843 static int pkcs12_parse_content(struct tlsv1_credentials *cred,  in pkcs12_parse_content()  argument
873 		return pkcs12_parse_content_data(cred, pos, end, passwd);  in pkcs12_parse_content()
875 		return pkcs12_parse_content_enc_data(cred, pos, end, passwd);  in pkcs12_parse_content()
884 static int pkcs12_parse(struct tlsv1_credentials *cred,  in pkcs12_parse()  argument
993 		if (pkcs12_parse_content(cred, hdr.payload, hdr.length,  in pkcs12_parse()
1006 static int tlsv1_set_key(struct tlsv1_credentials *cred,  in tlsv1_set_key()  argument
1009 	cred->key = crypto_private_key_import(key, len, passwd);  in tlsv1_set_key()
1010 	if (cred->key == NULL)  in tlsv1_set_key()
1011 		cred->key = tlsv1_set_key_pem(key, len);  in tlsv1_set_key()
1012 	if (cred->key == NULL)  in tlsv1_set_key()
1013 		cred->key = tlsv1_set_key_enc_pem(key, len, passwd);  in tlsv1_set_key()
1015 	if (!cred->key)  in tlsv1_set_key()
1016 		pkcs12_parse(cred, key, len, passwd);  in tlsv1_set_key()
1018 	if (cred->key == NULL) {  in tlsv1_set_key()
1036 int tlsv1_set_private_key(struct tlsv1_credentials *cred,  in tlsv1_set_private_key()  argument
1042 	crypto_private_key_free(cred->key);  in tlsv1_set_private_key()
1043 	cred->key = NULL;  in tlsv1_set_private_key()
1046 		return tlsv1_set_key(cred, private_key_blob,  in tlsv1_set_private_key()
1062 		ret = tlsv1_set_key(cred, buf, len, private_key_passwd);  in tlsv1_set_private_key()
1071 static int tlsv1_set_dhparams_der(struct tlsv1_credentials *cred,  in tlsv1_set_dhparams_der()  argument
1105 	os_free(cred->dh_p);  in tlsv1_set_dhparams_der()
1106 	cred->dh_p = os_memdup(hdr.payload, hdr.length);  in tlsv1_set_dhparams_der()
1107 	if (cred->dh_p == NULL)  in tlsv1_set_dhparams_der()
1109 	cred->dh_p_len = hdr.length;  in tlsv1_set_dhparams_der()
1122 	os_free(cred->dh_g);  in tlsv1_set_dhparams_der()
1123 	cred->dh_g = os_memdup(hdr.payload, hdr.length);  in tlsv1_set_dhparams_der()
1124 	if (cred->dh_g == NULL)  in tlsv1_set_dhparams_der()
1126 	cred->dh_g_len = hdr.length;  in tlsv1_set_dhparams_der()
1136 static int tlsv1_set_dhparams_blob(struct tlsv1_credentials *cred,  in tlsv1_set_dhparams_blob()  argument
1147 		return tlsv1_set_dhparams_der(cred, buf, len);  in tlsv1_set_dhparams_blob()
1167 	if (tlsv1_set_dhparams_der(cred, der, der_len) < 0) {  in tlsv1_set_dhparams_blob()
1188 int tlsv1_set_dhparams(struct tlsv1_credentials *cred, const char *dh_file,  in tlsv1_set_dhparams()  argument
1192 		return tlsv1_set_dhparams_blob(cred, dh_blob, dh_blob_len);  in tlsv1_set_dhparams()
1206 		ret = tlsv1_set_dhparams_blob(cred, buf, len);  in tlsv1_set_dhparams()