src/usr.bin/ssh/ssh-keygen.c - diff

Return to ssh-keygen.c CVS log

Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/ssh-keygen.c between version 1.9 and 1.10

version 1.9, 1999/11/20 10:02:53

version 1.10, 1999/11/20 19:53:40

Line 44

/* Flag indicating that we just want to see the key fingerprint */

int print_fingerprint = 0;

/* This is set to the identity file name if given on the command line. */

/* The identity file name, given on the command line or entered by the user. */

char *identity_file = NULL;

char identity_file[1024];

int have_identity = 0;

/* This is set to the passphrase if given on the command line. */

char *identity_passphrase = NULL;

Line 56

Line 57

/* This is set to the new comment if given on the command line. */

char *identity_comment = NULL;

/* Perform changing a passphrase. The argument is the passwd structure

/* argv0 */

for the current user. */

extern char *__progname;

char *

void

get_filename(struct passwd *pw, const char *prompt)

ask_filename(struct passwd *pw, const char *prompt)

{

char buf[1024], default_file[1024];

char buf[1024];

snprintf(identity_file, sizeof(identity_file), "%s/%s",

/* Read key file name. */

pw->pw_dir, SSH_CLIENT_IDENTITY);

if (identity_file != NULL) {

printf("%s (%s): ", prompt, identity_file);

return xstrdup(identity_file);

fflush(stdout);

} else {

if (fgets(buf, sizeof(buf), stdin) == NULL)

snprintf(default_file, sizeof default_file, "%s/%s",

exit(1);

pw->pw_dir, SSH_CLIENT_IDENTITY);

if (strchr(buf, '\n'))

printf("%s (%s): ", prompt, default_file);

*strchr(buf, '\n') = 0;

fflush(stdout);

if (strcmp(buf, "") != 0)

if (fgets(buf, sizeof(buf), stdin) == NULL)

strlcpy(identity_file, buf, sizeof(identity_file));

exit(1);

have_identity = 1;

if (strchr(buf, '\n'))

*strchr(buf, '\n') = 0;

if (strcmp(buf, "") == 0)

return xstrdup(default_file);

}

return xstrdup(buf);

}

void

do_fingerprint(struct passwd *pw)

{

char *file, *comment;

char *comment;

RSA *public_key;

struct stat st;

file = get_filename(pw, "Enter file in which the key is");

if (!have_identity)

if (stat(file, &st) < 0)

ask_filename(pw, "Enter file in which the key is");

if (stat(identity_file, &st) < 0)

{

perror(file);

perror(identity_file);

exit(1);

}

public_key = RSA_new();

if (!load_public_key(file, public_key, &comment)) {

if (!load_public_key(identity_file, public_key, &comment)) {

char *cp, line[1024];

BIGNUM *e, *n;

int dummy, invalid = 0;

FILE *f = fopen(file, "r");

FILE *f = fopen(identity_file, "r");

n = BN_new();

e = BN_new();

if (f && fgets(line, sizeof(line), f)) {

Line 117

Line 113

invalid = 1;

}

if (invalid) {

printf("%s is not a valid key file.\n", file);

printf("%s is not a valid key file.\n", identity_file);

BN_free(e);

BN_free(n);

exit(1);

Line 131

Line 127

exit(0);

}

/* Perform changing a passphrase. The argument is the passwd structure

for the current user. */

void

do_change_passphrase(struct passwd *pw)

{

char *file, *comment;

char *comment;

char *old_passphrase, *passphrase1, *passphrase2;

struct stat st;

RSA *private_key;

file = get_filename(pw, "Enter file in which the key is");

if (!have_identity)

ask_filename(pw, "Enter file in which the key is");

/* Check if the file exists. */

if (stat(file, &st) < 0)

if (stat(identity_file, &st) < 0)

{

perror(file);

perror(identity_file);

exit(1);

}

/* Try to load the public key from the file the verify that it is

readable and of the proper format. */

public_key = RSA_new();

if (!load_public_key(file, public_key, NULL))

if (!load_public_key(identity_file, public_key, NULL))

{

printf("%s is not a valid key file.\n", file);

printf("%s is not a valid key file.\n", identity_file);

exit(1);

}

/* Clear the public key since we are just about to load the whole file. */

Line 161

Line 160

/* Try to load the file with empty passphrase. */

private_key = RSA_new();

if (!load_private_key(file, "", private_key, &comment)) {

if (!load_private_key(identity_file, "", private_key, &comment)) {

/* Read passphrase from the user. */

if (identity_passphrase)

old_passphrase = xstrdup(identity_passphrase);

else

old_passphrase = read_passphrase("Enter old passphrase: ", 1);

/* Try to load using the passphrase. */

if (!load_private_key(file, old_passphrase, private_key, &comment))

if (!load_private_key(identity_file, old_passphrase, private_key, &comment))

{

memset(old_passphrase, 0, strlen(old_passphrase));

xfree(old_passphrase);

Line 209

Line 208

}

/* Save the file using the new passphrase. */

if (!save_private_key(file, passphrase1, private_key, comment))

if (!save_private_key(identity_file, passphrase1, private_key, comment))

{

printf("Saving the key failed: %s: %s.\n",

file, strerror(errno));

identity_file, strerror(errno));

memset(passphrase1, 0, strlen(passphrase1));

xfree(passphrase1);

RSA_free(private_key);

Line 234

Line 233

void

do_change_comment(struct passwd *pw)

{

char new_comment[1024], *file, *comment;

char new_comment[1024], *comment;

RSA *private_key;

char *passphrase;

struct stat st;

FILE *f;

char *tmpbuf;

file = get_filename(pw, "Enter file in which the key is");

if (!have_identity)

ask_filename(pw, "Enter file in which the key is");

/* Check if the file exists. */

if (stat(file, &st) < 0)

if (stat(identity_file, &st) < 0)

{

perror(file);

perror(identity_file);

exit(1);

}

/* Try to load the public key from the file the verify that it is

readable and of the proper format. */

public_key = RSA_new();

if (!load_public_key(file, public_key, NULL))

if (!load_public_key(identity_file, public_key, NULL))

{

printf("%s is not a valid key file.\n", file);

printf("%s is not a valid key file.\n", identity_file);

exit(1);

}

private_key = RSA_new();

/* Try to load the file with empty passphrase. */

if (load_private_key(file, "", private_key, &comment))

if (load_private_key(identity_file, "", private_key, &comment))

passphrase = xstrdup("");

else

{

Line 273

else

passphrase = read_passphrase("Enter passphrase: ", 1);

/* Try to load using the passphrase. */

if (!load_private_key(file, passphrase, private_key, &comment))

if (!load_private_key(identity_file, passphrase, private_key, &comment))

{

memset(passphrase, 0, strlen(passphrase));

xfree(passphrase);

Line 304

}

/* Save the file using the new passphrase. */

if (!save_private_key(file, passphrase, private_key, new_comment))

if (!save_private_key(identity_file, passphrase, private_key, new_comment))

{

printf("Saving the key failed: %s: %s.\n",

file, strerror(errno));

identity_file, strerror(errno));

memset(passphrase, 0, strlen(passphrase));

xfree(passphrase);

RSA_free(private_key);

Line 322

/* Save the public key in text format in a file with the same name but

.pub appended. */

file = xrealloc(file, strlen(file) + 5);

strlcat(identity_file, ".pub", sizeof(identity_file));

strcat(file, ".pub");

f = fopen(identity_file, "w");

f = fopen(file, "w");

if (!f)

{

printf("Could not save your public key in %s\n", file);

printf("Could not save your public key in %s\n", identity_file);

exit(1);

}

fprintf(f, "%d ", BN_num_bits(public_key->n));

Line 345

Line 344

exit(0);

}

void

usage(void)

{

printf("ssh-keygen version %s\n", SSH_VERSION);

printf("Usage: %s [-b bits] [-p] [-c] [-f file] [-P pass] [-N new-pass] [-C comment]\n", __progname);

exit(1);

}

/* Main program for key management. */

int

Line 352

Line 359

{

char buf[16384], buf2[1024], *passphrase1, *passphrase2;

struct passwd *pw;

char *file, *tmpbuf;

char *tmpbuf;

int opt;

struct stat st;

FILE *f;

Line 411

Line 418

break;

case 'f':

identity_file = optarg;

strlcpy(identity_file, optarg, sizeof(identity_file));

have_identity = 1;

break;

case 'P':

Line 432

Line 440

case '?':

default:

printf("ssh-keygen version %s\n", SSH_VERSION);

usage();

printf("Usage: %s [-b bits] [-p] [-c] [-f file] [-P pass] [-N new-pass] [-C comment]\n", av[0]);

exit(1);

}

if (optind < ac)

{

printf("Too many arguments.\n");

exit(1);

usage();

}

if (change_passphrase && change_comment)

{

printf("Can only have one of -p and -c.\n");

exit(1);

usage();

}

if (print_fingerprint)

Line 471

Line 477

public_key = RSA_new();

rsa_generate_key(private_key, public_key, bits);

ask_file_again:

if (!have_identity)

ask_filename(pw, "Enter file in which to save the key");

file = get_filename(pw, "Enter file in which to save the key");

/* If the file aready exists, ask the user to confirm. */

if (stat(file, &st) >= 0)

if (stat(identity_file, &st) >= 0)

{

printf("%s already exists.\n", file);

printf("%s already exists.\n", identity_file);

printf("Overwrite (y/n)? ");

fflush(stdout);

if (fgets(buf2, sizeof(buf2), stdin) == NULL)

Line 531

Line 536

}

/* Save the key with the given passphrase and comment. */

if (!save_private_key(file, passphrase1, private_key, buf2))

if (!save_private_key(identity_file, passphrase1, private_key, buf2))

{

printf("Saving the key failed: %s: %s.\n",

file, strerror(errno));

identity_file, strerror(errno));

memset(passphrase1, 0, strlen(passphrase1));

xfree(passphrase1);

xfree(file);

exit(1);

goto ask_file_again;

}

/* Clear the passphrase. */

memset(passphrase1, 0, strlen(passphrase1));

Line 549

Line 553

arc4random_stir();

if (!quiet)

printf("Your identification has been saved in %s.\n", file);

printf("Your identification has been saved in %s.\n", identity_file);

/* Display the public key on the screen. */

if (!quiet) {

Line 565

Line 569

/* Save the public key in text format in a file with the same name but

.pub appended. */

strcat(file, ".pub");

strlcat(identity_file, ".pub", sizeof(identity_file));

f = fopen(file, "w");

f = fopen(identity_file, "w");

if (!f)

{

printf("Could not save your public key in %s\n", file);

printf("Could not save your public key in %s\n", identity_file);

exit(1);

}

fprintf(f, "%d ", BN_num_bits(public_key->n));

Line 582

Line 586

fclose(f);

if (!quiet)

printf("Your public key has been saved in %s\n", file);

printf("Your public key has been saved in %s\n", identity_file);

exit(0);

}