1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/os/ossrv/ssl/tsrc/topenssl/src/dsa.c Fri Jun 15 03:10:57 2012 +0200
1.3 @@ -0,0 +1,338 @@
1.4 +/* apps/dsa.c */
1.5 +/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
1.6 + * All rights reserved.
1.7 + *
1.8 + * This package is an SSL implementation written
1.9 + * by Eric Young (eay@cryptsoft.com).
1.10 + * The implementation was written so as to conform with Netscapes SSL.
1.11 + *
1.12 + * This library is free for commercial and non-commercial use as long as
1.13 + * the following conditions are aheared to. The following conditions
1.14 + * apply to all code found in this distribution, be it the RC4, RSA,
1.15 + * lhash, DES, etc., code; not just the SSL code. The SSL documentation
1.16 + * included with this distribution is covered by the same copyright terms
1.17 + * except that the holder is Tim Hudson (tjh@cryptsoft.com).
1.18 + *
1.19 + * Copyright remains Eric Young's, and as such any Copyright notices in
1.20 + * the code are not to be removed.
1.21 + * If this package is used in a product, Eric Young should be given attribution
1.22 + * as the author of the parts of the library used.
1.23 + * This can be in the form of a textual message at program startup or
1.24 + * in documentation (online or textual) provided with the package.
1.25 + *
1.26 + * Redistribution and use in source and binary forms, with or without
1.27 + * modification, are permitted provided that the following conditions
1.28 + * are met:
1.29 + * 1. Redistributions of source code must retain the copyright
1.30 + * notice, this list of conditions and the following disclaimer.
1.31 + * 2. Redistributions in binary form must reproduce the above copyright
1.32 + * notice, this list of conditions and the following disclaimer in the
1.33 + * documentation and/or other materials provided with the distribution.
1.34 + * 3. All advertising materials mentioning features or use of this software
1.35 + * must display the following acknowledgement:
1.36 + * "This product includes cryptographic software written by
1.37 + * Eric Young (eay@cryptsoft.com)"
1.38 + * The word 'cryptographic' can be left out if the rouines from the library
1.39 + * being used are not cryptographic related :-).
1.40 + * 4. If you include any Windows specific code (or a derivative thereof) from
1.41 + * the apps directory (application code) you must include an acknowledgement:
1.42 + * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
1.43 + *
1.44 + * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
1.45 + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.46 + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1.47 + * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
1.48 + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1.49 + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1.50 + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.51 + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1.52 + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1.53 + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1.54 + * SUCH DAMAGE.
1.55 + *
1.56 + * The licence and distribution terms for any publically available version or
1.57 + * derivative of this code cannot be changed. i.e. this code cannot simply be
1.58 + * copied and put under another distribution licence
1.59 + * [including the GNU Public Licence.]
1.60 + */
1.61 +
1.62 +#include <openssl/opensslconf.h> /* for OPENSSL_NO_DSA */
1.63 +#ifndef OPENSSL_NO_DSA
1.64 +#include <stdio.h>
1.65 +#include <stdlib.h>
1.66 +#include <string.h>
1.67 +#include <time.h>
1.68 +#include "apps.h"
1.69 +#include <openssl/bio.h>
1.70 +#include <openssl/err.h>
1.71 +#include <openssl/dsa.h>
1.72 +#include <openssl/evp.h>
1.73 +#include <openssl/x509.h>
1.74 +#include <openssl/pem.h>
1.75 +#include <openssl/bn.h>
1.76 +
1.77 +#undef PROG
1.78 +#define PROG dsa_main
1.79 +
1.80 +/* -inform arg - input format - default PEM (one of DER, NET or PEM)
1.81 + * -outform arg - output format - default PEM
1.82 + * -in arg - input file - default stdin
1.83 + * -out arg - output file - default stdout
1.84 + * -des - encrypt output if PEM format with DES in cbc mode
1.85 + * -des3 - encrypt output if PEM format
1.86 + * -idea - encrypt output if PEM format
1.87 + * -aes128 - encrypt output if PEM format
1.88 + * -aes192 - encrypt output if PEM format
1.89 + * -aes256 - encrypt output if PEM format
1.90 + * -text - print a text version
1.91 + * -modulus - print the DSA public key
1.92 + */
1.93 +
1.94 +
1.95 +int MAIN(int, char **);
1.96 +
1.97 +int MAIN(int argc, char **argv)
1.98 + {
1.99 +#ifndef OPENSSL_NO_ENGINE
1.100 + ENGINE *e = NULL;
1.101 +#endif
1.102 + int ret=1;
1.103 + DSA *dsa=NULL;
1.104 + int i,badops=0;
1.105 + const EVP_CIPHER *enc=NULL;
1.106 + BIO *in=NULL,*out=NULL;
1.107 + int informat,outformat,text=0,noout=0;
1.108 + int pubin = 0, pubout = 0;
1.109 + char *infile,*outfile,*prog;
1.110 +#ifndef OPENSSL_NO_ENGINE
1.111 + char *engine;
1.112 +#endif
1.113 + char *passargin = NULL, *passargout = NULL;
1.114 + char *passin = NULL, *passout = NULL;
1.115 + int modulus=0;
1.116 +
1.117 + apps_startup();
1.118 +
1.119 + if (bio_err == NULL)
1.120 + if ((bio_err=BIO_new(BIO_s_file())) != NULL)
1.121 + BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT);
1.122 +
1.123 +
1.124 + if (!load_config(bio_err, NULL))
1.125 + goto end;
1.126 +
1.127 +#ifndef OPENSSL_NO_ENGINE
1.128 + engine=NULL;
1.129 +#endif
1.130 + infile=NULL;
1.131 + outfile=NULL;
1.132 + informat=FORMAT_PEM;
1.133 + outformat=FORMAT_PEM;
1.134 +
1.135 + prog=argv[0];
1.136 + argc--;
1.137 + argv++;
1.138 + while (argc >= 1)
1.139 + {
1.140 + if (strcmp(*argv,"-inform") == 0)
1.141 + {
1.142 + if (--argc < 1) goto bad;
1.143 + informat=str2fmt(*(++argv));
1.144 + }
1.145 + else if (strcmp(*argv,"-outform") == 0)
1.146 + {
1.147 + if (--argc < 1) goto bad;
1.148 + outformat=str2fmt(*(++argv));
1.149 + }
1.150 + else if (strcmp(*argv,"-in") == 0)
1.151 + {
1.152 + if (--argc < 1) goto bad;
1.153 + infile= *(++argv);
1.154 + }
1.155 + else if (strcmp(*argv,"-out") == 0)
1.156 + {
1.157 + if (--argc < 1) goto bad;
1.158 + outfile= *(++argv);
1.159 + }
1.160 + else if (strcmp(*argv,"-passin") == 0)
1.161 + {
1.162 + if (--argc < 1) goto bad;
1.163 + passargin= *(++argv);
1.164 + }
1.165 + else if (strcmp(*argv,"-passout") == 0)
1.166 + {
1.167 + if (--argc < 1) goto bad;
1.168 + passargout= *(++argv);
1.169 + }
1.170 +#ifndef OPENSSL_NO_ENGINE
1.171 + else if (strcmp(*argv,"-engine") == 0)
1.172 + {
1.173 + if (--argc < 1) goto bad;
1.174 + engine= *(++argv);
1.175 + }
1.176 +#endif
1.177 + else if (strcmp(*argv,"-noout") == 0)
1.178 + noout=1;
1.179 + else if (strcmp(*argv,"-text") == 0)
1.180 + text=1;
1.181 + else if (strcmp(*argv,"-modulus") == 0)
1.182 + modulus=1;
1.183 + else if (strcmp(*argv,"-pubin") == 0)
1.184 + pubin=1;
1.185 + else if (strcmp(*argv,"-pubout") == 0)
1.186 + pubout=1;
1.187 + else if ((enc=EVP_get_cipherbyname(&(argv[0][1]))) == NULL)
1.188 + {
1.189 + BIO_printf(bio_err,"unknown option %s\n",*argv);
1.190 + badops=1;
1.191 + break;
1.192 + }
1.193 + argc--;
1.194 + argv++;
1.195 + }
1.196 +
1.197 + if (badops)
1.198 + {
1.199 +bad:
1.200 + BIO_printf(bio_err,"%s [options] <infile >outfile\n",prog);
1.201 + BIO_printf(bio_err,"where options are\n");
1.202 + BIO_printf(bio_err," -inform arg input format - DER or PEM\n");
1.203 + BIO_printf(bio_err," -outform arg output format - DER or PEM\n");
1.204 + BIO_printf(bio_err," -in arg input file\n");
1.205 + BIO_printf(bio_err," -passin arg input file pass phrase source\n");
1.206 + BIO_printf(bio_err," -out arg output file\n");
1.207 + BIO_printf(bio_err," -passout arg output file pass phrase source\n");
1.208 +#ifndef OPENSSL_NO_ENGINE
1.209 + BIO_printf(bio_err," -engine e use engine e, possibly a hardware device.\n");
1.210 +#endif
1.211 + BIO_printf(bio_err," -des encrypt PEM output with cbc des\n");
1.212 + BIO_printf(bio_err," -des3 encrypt PEM output with ede cbc des using 168 bit key\n");
1.213 +#ifndef OPENSSL_NO_IDEA
1.214 + BIO_printf(bio_err," -idea encrypt PEM output with cbc idea\n");
1.215 +#endif
1.216 +#ifndef OPENSSL_NO_AES
1.217 + BIO_printf(bio_err," -aes128, -aes192, -aes256\n");
1.218 + BIO_printf(bio_err," encrypt PEM output with cbc aes\n");
1.219 +#endif
1.220 + BIO_printf(bio_err," -text print the key in text\n");
1.221 + BIO_printf(bio_err," -noout don't print key out\n");
1.222 + BIO_printf(bio_err," -modulus print the DSA public value\n");
1.223 + goto end;
1.224 + }
1.225 +
1.226 + ERR_load_crypto_strings();
1.227 +
1.228 +#ifndef OPENSSL_NO_ENGINE
1.229 + e = setup_engine(bio_err, engine, 0);
1.230 +#endif
1.231 +
1.232 + if(!app_passwd(bio_err, passargin, passargout, &passin, &passout)) {
1.233 + BIO_printf(bio_err, "Error getting passwords\n");
1.234 + goto end;
1.235 + }
1.236 +
1.237 + in=BIO_new(BIO_s_file());
1.238 + out=BIO_new(BIO_s_file());
1.239 + if ((in == NULL) || (out == NULL))
1.240 + {
1.241 + ERR_print_errors(bio_err);
1.242 + goto end;
1.243 + }
1.244 +
1.245 + if (infile == NULL)
1.246 + BIO_set_fp(in,stdin,BIO_NOCLOSE);
1.247 +
1.248 + else
1.249 + {
1.250 + if (BIO_read_filename(in,infile) <= 0)
1.251 + {
1.252 + perror(infile);
1.253 + goto end;
1.254 + }
1.255 + }
1.256 +
1.257 + BIO_printf(bio_err,"read DSA key\n");
1.258 + if (informat == FORMAT_ASN1) {
1.259 + if(pubin) dsa=d2i_DSA_PUBKEY_bio(in,NULL);
1.260 + else dsa=d2i_DSAPrivateKey_bio(in,NULL);
1.261 + } else if (informat == FORMAT_PEM) {
1.262 + if(pubin) dsa=PEM_read_bio_DSA_PUBKEY(in,NULL, NULL, NULL);
1.263 + else dsa=PEM_read_bio_DSAPrivateKey(in,NULL,NULL,passin);
1.264 + } else
1.265 + {
1.266 + BIO_printf(bio_err,"bad input format specified for key\n");
1.267 + goto end;
1.268 + }
1.269 + if (dsa == NULL)
1.270 + {
1.271 + BIO_printf(bio_err,"unable to load Key\n");
1.272 + ERR_print_errors(bio_err);
1.273 + goto end;
1.274 + }
1.275 +
1.276 + if (outfile == NULL)
1.277 + {
1.278 + BIO_set_fp(out,stdout,BIO_NOCLOSE);
1.279 +
1.280 +#ifdef OPENSSL_SYS_VMS
1.281 + {
1.282 + BIO *tmpbio = BIO_new(BIO_f_linebuffer());
1.283 + out = BIO_push(tmpbio, out);
1.284 + }
1.285 +#endif
1.286 + }
1.287 + else
1.288 + {
1.289 + if (BIO_write_filename(out,outfile) <= 0)
1.290 + {
1.291 + perror(outfile);
1.292 + goto end;
1.293 + }
1.294 + }
1.295 +
1.296 + if (text)
1.297 + if (!DSA_print(out,dsa,0))
1.298 + {
1.299 + perror(outfile);
1.300 + ERR_print_errors(bio_err);
1.301 + goto end;
1.302 + }
1.303 +
1.304 + if (modulus)
1.305 + {
1.306 + fprintf(stdout,"Public Key=");
1.307 + BN_print(out,dsa->pub_key);
1.308 + fprintf(stdout,"\n");
1.309 + }
1.310 +
1.311 + if (noout) goto end;
1.312 + BIO_printf(bio_err,"writing DSA key\n");
1.313 + if (outformat == FORMAT_ASN1) {
1.314 + if(pubin || pubout) i=i2d_DSA_PUBKEY_bio(out,dsa);
1.315 + else i=i2d_DSAPrivateKey_bio(out,dsa);
1.316 + } else if (outformat == FORMAT_PEM) {
1.317 + if(pubin || pubout)
1.318 + i=PEM_write_bio_DSA_PUBKEY(out,dsa);
1.319 + else i=PEM_write_bio_DSAPrivateKey(out,dsa,enc,
1.320 + NULL,0,NULL, passout);
1.321 + } else {
1.322 + BIO_printf(bio_err,"bad output format specified for outfile\n");
1.323 + goto end;
1.324 + }
1.325 + if (!i)
1.326 + {
1.327 + BIO_printf(bio_err,"unable to write private key\n");
1.328 + ERR_print_errors(bio_err);
1.329 + }
1.330 + else
1.331 + ret=0;
1.332 +end:
1.333 + if(in != NULL) BIO_free(in);
1.334 + if(out != NULL) BIO_free_all(out);
1.335 + if(dsa != NULL) DSA_free(dsa);
1.336 + if(passin) OPENSSL_free(passin);
1.337 + if(passout) OPENSSL_free(passout);
1.338 + apps_shutdown();
1.339 + OPENSSL_EXIT(ret);
1.340 + }
1.341 +#endif