Dave, The Page:
http://www.openssl.org/docs/crypto/pem.html Actually, the code is not equal I've reported here. In fact, I will create a project only for this callback problem. The password problem was copy-paste error. I'm sorry about it. I'm going to take the the error code, then I reply here. Anyway, from DOS prompt I can check and get private key. The original code generates the key pair and save the private Key. Then, get the key again to save the public key. Without password and encryption, it works. :) -----Mensagem original----- De: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] Em nome de Dave Thompson Enviada em: segunda-feira, 29 de outubro de 2012 19:25 Para: openssl-users@openssl.org Assunto: RE: PEM_read_PrivateKey > From: owner-openssl-us...@openssl.org On Behalf Of Leonardo Laface de Almeida > Sent: Monday, 29 October, 2012 16:20 > The problem I've got is quite simple. The callback I pass > throught this > function is not called. <snip> > Someone could please help me figure out why? I've wrote as > OpenSSL page > tells. Am I doing something wrong? Is thera a best way for > doing this? > What page is that? Your posted code is quite unlike any OpenSSL example (or actual) code I've seen. <snip> > EVP_PKEY *pkey; > BIO *bio; > There's no reason (this) bio variable should be global, and pkey maybe not. > typedef struct pw_cb_data > { > const void *password; > const char *prompt_info; > } PW_CB_DATA; > > static int rsa_cb(char *buf, int size, int rwflag, void *u) > { > int len; > PW_CB_DATA *cb_data = (PW_CB_DATA *)u; > > //Programm doesn't enter here!! > len = strlen((char *)cb_data->password); > > if (len <= 0) > return 0; > > /* if too long, truncate */ > if (len > size) > len = size; > > memcpy(buf, cb_data->password, len); > > return len; > } > Using a callback to set a caller-supplied C-style string is a waste of time. You can _read*PrivateKey(,,NULL,password). > int main() > { > PW_CB_DATA cb_data; > int ret = 1; > > (...) > memcpy(&kprPath[0],"path_to_Kpr",pathlen); > kprPath[pathlen] = '\0'; > > memcpy(&kprPath[0],"Kpr_password",passlen); > kprPath[passlen] = '\0'; > > if (ret) > bio = BIO_new(BIO_s_file()); > > if (bio == NULL) > ret = 0; > > if (ret && !BIO_read_filename(bio,&kprPath[0])) > ret = 0; > The code above set kprPath to "Kpr_password" which I doubt is the correct filename. > cb_data.password = &passwd[0]; > cb_data.prompt_info = &kprPath[0]; > It might be the correct "prompt", but your callback doesn't use the .prompt_info . It does use .password, and your code doesn't set .password to anything valid at all. > if (ret) > > pkey=PEM_read_bio_PrivateKey(bio,NULL,(pem_password_cb *)rsa_cb, > &cb_data); > > if (pkey != NULL) > ret = 0; > If pretty much any OpenSSL routine returns an error indicateion, and here read*PrivateKey == NULL is an error indication, you should look at the error queue: http://www.openssl.org/support/faq.html#PROG6 I bet you'll see that you didn't give it the correct filename. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
