linux-imx

/* Extract X.509 certificate in DER form from PKCS#11 or PEM.

 *

 * Copyright © 2014-2015 Red Hat, Inc. All Rights Reserved.

 * Copyright © 2015      Intel Corporation.

 *

 * Authors: David Howells <dhowells@redhat.com>

 *          David Woodhouse <dwmw2@infradead.org>

 *

 * This program is free software; you can redistribute it and/or

 * modify it under the terms of the GNU Lesser General Public License

 * as published by the Free Software Foundation; either version 2.1

 * of the licence, or (at your option) any later version.

 */

#define _GNU_SOURCE

#include <stdio.h>

#include <stdlib.h>

#include <stdint.h>

#include <stdbool.h>

#include <string.h>

#include <err.h>

#include <openssl/bio.h>

#include <openssl/pem.h>

#include <openssl/err.h>

#include <openssl/engine.h>

​

#define PKEY_ID_PKCS7 2

​

static __attribute__((noreturn))

void format(void)

{

    fprintf(stderr,

        "Usage: scripts/extract-cert <source> <dest>\n");

    exit(2);

}

​

static void display_openssl_errors(int l)

{

    const char *file;

    char buf[120];

    int e, line;

​

    if (ERR_peek_error() == 0)

        return;

    fprintf(stderr, "At main.c:%d:\n", l);

​

    while ((e = ERR_get_error_line(&file, &line))) {

        ERR_error_string(e, buf);

        fprintf(stderr, "- SSL %s: %s:%d\n", buf, file, line);

    }

}

​

static void drain_openssl_errors(void)

{

    const char *file;

    int line;

​

    if (ERR_peek_error() == 0)

        return;

    while (ERR_get_error_line(&file, &line)) {}

}

​

#define ERR(cond, fmt, ...)             \

    do {                        \