PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates The error code POLARSSL_ERR_X509_PASSWORD_MISMATCH is now properly returned in case of an encryption failure in the padding. The POLARSSL_ERR_X509_PASSWORD_REQUIRED error code is only returned for PEM formatted private keys as for DER formatted ones it is impossible to distinguish if a DER blob is PKCS#8 encrypted or not. (cherry picked from commit 1fd4321ba2016dfaff2b48c11f731fc9ccbd7ccf) Conflicts: include/polarssl/error.h scripts/generate_errors.pl

commit: 28144decefe530d9c28e09c7dbd5e3c8e3152615 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Mon Jun 24 19:28:55 2013 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Jun 25 15:06:52 2013 +0200
tree: e216e08067c5a59d57f24ac42524e599339a946c
parent: b0c19a4b3d965bd89b5ee840eb2c0a4ae12199c6 [diff] [blame]
diff --git a/include/polarssl/x509.h b/include/polarssl/x509.h
index df382ea..8baee15 100644
--- a/include/polarssl/x509.h
+++ b/include/polarssl/x509.h

@@ -67,6 +67,8 @@
 #define POLARSSL_ERR_X509_INVALID_INPUT                    -0x2A00  /**< Input invalid. */
 #define POLARSSL_ERR_X509_MALLOC_FAILED                    -0x2A80  /**< Allocation of memory failed. */
 #define POLARSSL_ERR_X509_FILE_IO_ERROR                    -0x2B00  /**< Read/write of file failed. */
+#define POLARSSL_ERR_X509_PASSWORD_REQUIRED                -0x2B80  /**< Private key password can't be empty. */
+#define POLARSSL_ERR_X509_PASSWORD_MISMATCH                -0x2C00  /**< Given private key password does not allow for correct decryption. */
 /* \} name */
 
 /**
commit	28144decefe530d9c28e09c7dbd5e3c8e3152615	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Mon Jun 24 19:28:55 2013 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Jun 25 15:06:52 2013 +0200
tree	e216e08067c5a59d57f24ac42524e599339a946c
parent	b0c19a4b3d965bd89b5ee840eb2c0a4ae12199c6 [diff] [blame]