Annotation of src/usr.bin/openssl/pkey.c, Revision 1.4
1.4 ! jsing 1: /* $OpenBSD: pkey.c,v 1.3 2014/08/28 14:25:48 jsing Exp $ */
1.1 jsing 2: /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3: * project 2006
4: */
5: /* ====================================================================
6: * Copyright (c) 2006 The OpenSSL Project. All rights reserved.
7: *
8: * Redistribution and use in source and binary forms, with or without
9: * modification, are permitted provided that the following conditions
10: * are met:
11: *
12: * 1. Redistributions of source code must retain the above copyright
13: * notice, this list of conditions and the following disclaimer.
14: *
15: * 2. Redistributions in binary form must reproduce the above copyright
16: * notice, this list of conditions and the following disclaimer in
17: * the documentation and/or other materials provided with the
18: * distribution.
19: *
20: * 3. All advertising materials mentioning features or use of this
21: * software must display the following acknowledgment:
22: * "This product includes software developed by the OpenSSL Project
23: * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24: *
25: * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26: * endorse or promote products derived from this software without
27: * prior written permission. For written permission, please contact
28: * licensing@OpenSSL.org.
29: *
30: * 5. Products derived from this software may not be called "OpenSSL"
31: * nor may "OpenSSL" appear in their names without prior written
32: * permission of the OpenSSL Project.
33: *
34: * 6. Redistributions of any form whatsoever must retain the following
35: * acknowledgment:
36: * "This product includes software developed by the OpenSSL Project
37: * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38: *
39: * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40: * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43: * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44: * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46: * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48: * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50: * OF THE POSSIBILITY OF SUCH DAMAGE.
51: * ====================================================================
52: *
53: * This product includes cryptographic software written by Eric Young
54: * (eay@cryptsoft.com). This product includes software written by Tim
55: * Hudson (tjh@cryptsoft.com).
56: *
57: */
58:
59: #include <stdio.h>
60: #include <string.h>
61:
62: #include "apps.h"
63:
64: #include <openssl/err.h>
65: #include <openssl/evp.h>
66: #include <openssl/pem.h>
67:
68: int
69: pkey_main(int argc, char **argv)
70: {
71: ENGINE *e = NULL;
72: char **args, *infile = NULL, *outfile = NULL;
73: char *passargin = NULL, *passargout = NULL;
74: BIO *in = NULL, *out = NULL;
75: const EVP_CIPHER *cipher = NULL;
76: int informat, outformat;
77: int pubin = 0, pubout = 0, pubtext = 0, text = 0, noout = 0;
78: EVP_PKEY *pkey = NULL;
79: char *passin = NULL, *passout = NULL;
80: int badarg = 0;
81: #ifndef OPENSSL_NO_ENGINE
82: char *engine = NULL;
83: #endif
84: int ret = 1;
85:
86: informat = FORMAT_PEM;
87: outformat = FORMAT_PEM;
88:
89: args = argv + 1;
90: while (!badarg && *args && *args[0] == '-') {
91: if (!strcmp(*args, "-inform")) {
92: if (args[1]) {
93: args++;
94: informat = str2fmt(*args);
95: } else
96: badarg = 1;
97: } else if (!strcmp(*args, "-outform")) {
98: if (args[1]) {
99: args++;
100: outformat = str2fmt(*args);
101: } else
102: badarg = 1;
103: } else if (!strcmp(*args, "-passin")) {
104: if (!args[1])
105: goto bad;
106: passargin = *(++args);
107: } else if (!strcmp(*args, "-passout")) {
108: if (!args[1])
109: goto bad;
110: passargout = *(++args);
111: }
112: #ifndef OPENSSL_NO_ENGINE
113: else if (strcmp(*args, "-engine") == 0) {
114: if (!args[1])
115: goto bad;
116: engine = *(++args);
117: }
118: #endif
119: else if (!strcmp(*args, "-in")) {
120: if (args[1]) {
121: args++;
122: infile = *args;
123: } else
124: badarg = 1;
125: } else if (!strcmp(*args, "-out")) {
126: if (args[1]) {
127: args++;
128: outfile = *args;
129: } else
130: badarg = 1;
131: } else if (strcmp(*args, "-pubin") == 0) {
132: pubin = 1;
133: pubout = 1;
134: pubtext = 1;
135: } else if (strcmp(*args, "-pubout") == 0)
136: pubout = 1;
137: else if (strcmp(*args, "-text_pub") == 0) {
138: pubtext = 1;
139: text = 1;
140: } else if (strcmp(*args, "-text") == 0)
141: text = 1;
142: else if (strcmp(*args, "-noout") == 0)
143: noout = 1;
144: else {
145: cipher = EVP_get_cipherbyname(*args + 1);
146: if (!cipher) {
147: BIO_printf(bio_err, "Unknown cipher %s\n",
148: *args + 1);
149: badarg = 1;
150: }
151: }
152: args++;
153: }
154:
155: if (badarg) {
156: bad:
157: BIO_printf(bio_err, "Usage pkey [options]\n");
158: BIO_printf(bio_err, "where options are\n");
159: BIO_printf(bio_err, "-in file input file\n");
160: BIO_printf(bio_err, "-inform X input format (DER or PEM)\n");
161: BIO_printf(bio_err, "-passin arg input file pass phrase source\n");
162: BIO_printf(bio_err, "-outform X output format (DER or PEM)\n");
163: BIO_printf(bio_err, "-out file output file\n");
164: BIO_printf(bio_err, "-passout arg output file pass phrase source\n");
165: #ifndef OPENSSL_NO_ENGINE
166: BIO_printf(bio_err, "-engine e use engine e, possibly a hardware device.\n");
167: #endif
168: return 1;
169: }
170: #ifndef OPENSSL_NO_ENGINE
171: e = setup_engine(bio_err, engine, 0);
172: #endif
173:
174: if (!app_passwd(bio_err, passargin, passargout, &passin, &passout)) {
175: BIO_printf(bio_err, "Error getting passwords\n");
176: goto end;
177: }
178: if (outfile) {
179: if (!(out = BIO_new_file(outfile, "wb"))) {
180: BIO_printf(bio_err,
181: "Can't open output file %s\n", outfile);
182: goto end;
183: }
184: } else {
185: out = BIO_new_fp(stdout, BIO_NOCLOSE);
186: }
187:
188: if (pubin)
189: pkey = load_pubkey(bio_err, infile, informat, 1,
190: passin, e, "Public Key");
191: else
192: pkey = load_key(bio_err, infile, informat, 1,
193: passin, e, "key");
194: if (!pkey)
195: goto end;
196:
197: if (!noout) {
198: if (outformat == FORMAT_PEM) {
199: if (pubout)
200: PEM_write_bio_PUBKEY(out, pkey);
201: else
202: PEM_write_bio_PrivateKey(out, pkey, cipher,
203: NULL, 0, NULL, passout);
204: } else if (outformat == FORMAT_ASN1) {
205: if (pubout)
206: i2d_PUBKEY_bio(out, pkey);
207: else
208: i2d_PrivateKey_bio(out, pkey);
209: } else {
210: BIO_printf(bio_err, "Bad format specified for key\n");
211: goto end;
212: }
213:
214: }
215: if (text) {
216: if (pubtext)
217: EVP_PKEY_print_public(out, pkey, 0, NULL);
218: else
219: EVP_PKEY_print_private(out, pkey, 0, NULL);
220: }
221: ret = 0;
222:
223: end:
224: EVP_PKEY_free(pkey);
225: BIO_free_all(out);
226: BIO_free(in);
227: free(passin);
228: free(passout);
229:
230: return ret;
231: }