Annotation of src/usr.bin/openssl/pkey.c, Revision 1.2
1.2 ! jsing 1: /* $OpenBSD: pkey.c,v 1.1 2014/08/26 17:47:25 jsing Exp $ */
1.1 jsing 2: /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3: * project 2006
4: */
5: /* ====================================================================
6: * Copyright (c) 2006 The OpenSSL Project. All rights reserved.
7: *
8: * Redistribution and use in source and binary forms, with or without
9: * modification, are permitted provided that the following conditions
10: * are met:
11: *
12: * 1. Redistributions of source code must retain the above copyright
13: * notice, this list of conditions and the following disclaimer.
14: *
15: * 2. Redistributions in binary form must reproduce the above copyright
16: * notice, this list of conditions and the following disclaimer in
17: * the documentation and/or other materials provided with the
18: * distribution.
19: *
20: * 3. All advertising materials mentioning features or use of this
21: * software must display the following acknowledgment:
22: * "This product includes software developed by the OpenSSL Project
23: * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24: *
25: * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26: * endorse or promote products derived from this software without
27: * prior written permission. For written permission, please contact
28: * licensing@OpenSSL.org.
29: *
30: * 5. Products derived from this software may not be called "OpenSSL"
31: * nor may "OpenSSL" appear in their names without prior written
32: * permission of the OpenSSL Project.
33: *
34: * 6. Redistributions of any form whatsoever must retain the following
35: * acknowledgment:
36: * "This product includes software developed by the OpenSSL Project
37: * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38: *
39: * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40: * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43: * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44: * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46: * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48: * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50: * OF THE POSSIBILITY OF SUCH DAMAGE.
51: * ====================================================================
52: *
53: * This product includes cryptographic software written by Eric Young
54: * (eay@cryptsoft.com). This product includes software written by Tim
55: * Hudson (tjh@cryptsoft.com).
56: *
57: */
58:
59: #include <stdio.h>
60: #include <string.h>
61:
62: #include "apps.h"
63:
64: #include <openssl/err.h>
65: #include <openssl/evp.h>
66: #include <openssl/pem.h>
67:
68: int pkey_main(int, char **);
69:
70: int
71: pkey_main(int argc, char **argv)
72: {
73: ENGINE *e = NULL;
74: char **args, *infile = NULL, *outfile = NULL;
75: char *passargin = NULL, *passargout = NULL;
76: BIO *in = NULL, *out = NULL;
77: const EVP_CIPHER *cipher = NULL;
78: int informat, outformat;
79: int pubin = 0, pubout = 0, pubtext = 0, text = 0, noout = 0;
80: EVP_PKEY *pkey = NULL;
81: char *passin = NULL, *passout = NULL;
82: int badarg = 0;
83: #ifndef OPENSSL_NO_ENGINE
84: char *engine = NULL;
85: #endif
86: int ret = 1;
87:
88: informat = FORMAT_PEM;
89: outformat = FORMAT_PEM;
90:
91: OpenSSL_add_all_algorithms();
92: args = argv + 1;
93: while (!badarg && *args && *args[0] == '-') {
94: if (!strcmp(*args, "-inform")) {
95: if (args[1]) {
96: args++;
97: informat = str2fmt(*args);
98: } else
99: badarg = 1;
100: } else if (!strcmp(*args, "-outform")) {
101: if (args[1]) {
102: args++;
103: outformat = str2fmt(*args);
104: } else
105: badarg = 1;
106: } else if (!strcmp(*args, "-passin")) {
107: if (!args[1])
108: goto bad;
109: passargin = *(++args);
110: } else if (!strcmp(*args, "-passout")) {
111: if (!args[1])
112: goto bad;
113: passargout = *(++args);
114: }
115: #ifndef OPENSSL_NO_ENGINE
116: else if (strcmp(*args, "-engine") == 0) {
117: if (!args[1])
118: goto bad;
119: engine = *(++args);
120: }
121: #endif
122: else if (!strcmp(*args, "-in")) {
123: if (args[1]) {
124: args++;
125: infile = *args;
126: } else
127: badarg = 1;
128: } else if (!strcmp(*args, "-out")) {
129: if (args[1]) {
130: args++;
131: outfile = *args;
132: } else
133: badarg = 1;
134: } else if (strcmp(*args, "-pubin") == 0) {
135: pubin = 1;
136: pubout = 1;
137: pubtext = 1;
138: } else if (strcmp(*args, "-pubout") == 0)
139: pubout = 1;
140: else if (strcmp(*args, "-text_pub") == 0) {
141: pubtext = 1;
142: text = 1;
143: } else if (strcmp(*args, "-text") == 0)
144: text = 1;
145: else if (strcmp(*args, "-noout") == 0)
146: noout = 1;
147: else {
148: cipher = EVP_get_cipherbyname(*args + 1);
149: if (!cipher) {
150: BIO_printf(bio_err, "Unknown cipher %s\n",
151: *args + 1);
152: badarg = 1;
153: }
154: }
155: args++;
156: }
157:
158: if (badarg) {
159: bad:
160: BIO_printf(bio_err, "Usage pkey [options]\n");
161: BIO_printf(bio_err, "where options are\n");
162: BIO_printf(bio_err, "-in file input file\n");
163: BIO_printf(bio_err, "-inform X input format (DER or PEM)\n");
164: BIO_printf(bio_err, "-passin arg input file pass phrase source\n");
165: BIO_printf(bio_err, "-outform X output format (DER or PEM)\n");
166: BIO_printf(bio_err, "-out file output file\n");
167: BIO_printf(bio_err, "-passout arg output file pass phrase source\n");
168: #ifndef OPENSSL_NO_ENGINE
169: BIO_printf(bio_err, "-engine e use engine e, possibly a hardware device.\n");
170: #endif
171: return 1;
172: }
173: #ifndef OPENSSL_NO_ENGINE
174: e = setup_engine(bio_err, engine, 0);
175: #endif
176:
177: if (!app_passwd(bio_err, passargin, passargout, &passin, &passout)) {
178: BIO_printf(bio_err, "Error getting passwords\n");
179: goto end;
180: }
181: if (outfile) {
182: if (!(out = BIO_new_file(outfile, "wb"))) {
183: BIO_printf(bio_err,
184: "Can't open output file %s\n", outfile);
185: goto end;
186: }
187: } else {
188: out = BIO_new_fp(stdout, BIO_NOCLOSE);
189: }
190:
191: if (pubin)
192: pkey = load_pubkey(bio_err, infile, informat, 1,
193: passin, e, "Public Key");
194: else
195: pkey = load_key(bio_err, infile, informat, 1,
196: passin, e, "key");
197: if (!pkey)
198: goto end;
199:
200: if (!noout) {
201: if (outformat == FORMAT_PEM) {
202: if (pubout)
203: PEM_write_bio_PUBKEY(out, pkey);
204: else
205: PEM_write_bio_PrivateKey(out, pkey, cipher,
206: NULL, 0, NULL, passout);
207: } else if (outformat == FORMAT_ASN1) {
208: if (pubout)
209: i2d_PUBKEY_bio(out, pkey);
210: else
211: i2d_PrivateKey_bio(out, pkey);
212: } else {
213: BIO_printf(bio_err, "Bad format specified for key\n");
214: goto end;
215: }
216:
217: }
218: if (text) {
219: if (pubtext)
220: EVP_PKEY_print_public(out, pkey, 0, NULL);
221: else
222: EVP_PKEY_print_private(out, pkey, 0, NULL);
223: }
224: ret = 0;
225:
226: end:
227: EVP_PKEY_free(pkey);
228: BIO_free_all(out);
229: BIO_free(in);
230: free(passin);
231: free(passout);
232:
233: return ret;
234: }