[thirdparty/openssl.git] / apps / kdf.c

/*
 * Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <string.h>

#include "apps.h"
#include "progs.h"
#include <openssl/bio.h>
#include <openssl/err.h>
#include <openssl/evp.h>
#include <openssl/kdf.h>
#include <openssl/params.h>

typedef enum OPTION_choice {
    OPT_COMMON,
    OPT_KDFOPT, OPT_BIN, OPT_KEYLEN, OPT_OUT,
    OPT_CIPHER, OPT_DIGEST, OPT_MAC,
    OPT_PROV_ENUM
} OPTION_CHOICE;

const OPTIONS kdf_options[] = {
    {OPT_HELP_STR, 1, '-', "Usage: %s [options] kdf_name\n"},

    OPT_SECTION("General"),
    {"help", OPT_HELP, '-', "Display this summary"},
    {"kdfopt", OPT_KDFOPT, 's', "KDF algorithm control parameters in n:v form"},
    {"cipher", OPT_CIPHER, 's', "Cipher"},
    {"digest", OPT_DIGEST, 's', "Digest"},
    {"mac", OPT_MAC, 's', "MAC"},
    {OPT_MORE_STR, 1, '-', "See 'Supported Controls' in the EVP_KDF_ docs\n"},
    {"keylen", OPT_KEYLEN, 's', "The size of the output derived key"},

    OPT_SECTION("Output"),
    {"out", OPT_OUT, '>', "Output to filename rather than stdout"},
    {"binary", OPT_BIN, '-',
        "Output in binary format (default is hexadecimal)"},

    OPT_PROV_OPTIONS,

    OPT_PARAMETERS(),
    {"kdf_name", 0, 0, "Name of the KDF algorithm"},
    {NULL}
};

static char *alloc_kdf_algorithm_name(STACK_OF(OPENSSL_STRING) **optp,
                                      const char *name, const char *arg)
{
    size_t len = strlen(name) + strlen(arg) + 2;
    char *res;

    if (*optp == NULL)
        *optp = sk_OPENSSL_STRING_new_null();
    if (*optp == NULL)
        return NULL;

    res = app_malloc(len, "algorithm name");
    BIO_snprintf(res, len, "%s:%s", name, arg);
    if (sk_OPENSSL_STRING_push(*optp, res))
        return res;
    OPENSSL_free(res);
    return NULL;
}

int kdf_main(int argc, char **argv)
{
    int ret = 1, out_bin = 0;
    OPTION_CHOICE o;
    STACK_OF(OPENSSL_STRING) *opts = NULL;
    char *prog, *hexout = NULL;
    const char *outfile = NULL;
    unsigned char *dkm_bytes = NULL;
    size_t dkm_len = 0;
    BIO *out = NULL;
    EVP_KDF *kdf = NULL;
    EVP_KDF_CTX *ctx = NULL;
    char *digest = NULL, *cipher = NULL, *mac = NULL;

    prog = opt_init(argc, argv, kdf_options);
    while ((o = opt_next()) != OPT_EOF) {
        switch (o) {
        default:
opthelp:
            BIO_printf(bio_err, "%s: Use -help for summary.\n", prog);
            goto err;
        case OPT_HELP:
            opt_help(kdf_options);
            ret = 0;
            goto err;
        case OPT_BIN:
            out_bin = 1;
            break;
        case OPT_KEYLEN:
            dkm_len = (size_t)atoi(opt_arg());
            break;
        case OPT_OUT:
            outfile = opt_arg();
            break;
        case OPT_KDFOPT:
            if (opts == NULL)
                opts = sk_OPENSSL_STRING_new_null();
            if (opts == NULL || !sk_OPENSSL_STRING_push(opts, opt_arg()))
                goto opthelp;
            break;
        case OPT_CIPHER:
            OPENSSL_free(cipher);
            cipher = alloc_kdf_algorithm_name(&opts, "cipher", opt_arg());
            if (cipher == NULL)
                goto opthelp;
            break;
        case OPT_DIGEST:
            OPENSSL_free(digest);
            digest = alloc_kdf_algorithm_name(&opts, "digest", opt_arg());
            if (digest == NULL)
                goto opthelp;
            break;
        case OPT_MAC:
            OPENSSL_free(mac);
            mac = alloc_kdf_algorithm_name(&opts, "mac", opt_arg());
            if (mac == NULL)
                goto opthelp;
            break;
        case OPT_PROV_CASES:
            if (!opt_provider(o))
                goto err;
            break;
        }
    }

    /* One argument, the KDF name. */
    argc = opt_num_rest();
    argv = opt_rest();
    if (argc != 1)
        goto opthelp;

    if ((kdf = EVP_KDF_fetch(app_get0_libctx(), argv[0],
                             app_get0_propq())) == NULL) {
        BIO_printf(bio_err, "Invalid KDF name %s\n", argv[0]);
        goto opthelp;
    }

    ctx = EVP_KDF_CTX_new(kdf);
    if (ctx == NULL)
        goto err;

    if (opts != NULL) {
        int ok = 1;
        OSSL_PARAM *params =
            app_params_new_from_opts(opts, EVP_KDF_settable_ctx_params(kdf));

        if (params == NULL)
            goto err;

        if (!EVP_KDF_CTX_set_params(ctx, params)) {
            BIO_printf(bio_err, "KDF parameter error\n");
            ERR_print_errors(bio_err);
            ok = 0;
        }
        app_params_free(params);
        if (!ok)
            goto err;
    }

    out = bio_open_default(outfile, 'w', out_bin ? FORMAT_BINARY : FORMAT_TEXT);
    if (out == NULL)
        goto err;

    if (dkm_len <= 0) {
        BIO_printf(bio_err, "Invalid derived key length.\n");
        goto err;
    }
    dkm_bytes = app_malloc(dkm_len, "out buffer");
    if (dkm_bytes == NULL)
        goto err;

    if (!EVP_KDF_derive(ctx, dkm_bytes, dkm_len, NULL)) {
        BIO_printf(bio_err, "EVP_KDF_derive failed\n");
        goto err;
    }

    if (out_bin) {
        BIO_write(out, dkm_bytes, dkm_len);
    } else {
        hexout = OPENSSL_buf2hexstr(dkm_bytes, dkm_len);
        if (hexout == NULL) {
            BIO_printf(bio_err, "Memory allocation failure\n");
            goto err;
        }
        BIO_printf(out, "%s\n\n", hexout);
    }

    ret = 0;
err:
    if (ret != 0)
        ERR_print_errors(bio_err);
    OPENSSL_clear_free(dkm_bytes, dkm_len);
    sk_OPENSSL_STRING_free(opts);
    EVP_KDF_free(kdf);
    EVP_KDF_CTX_free(ctx);
    BIO_free(out);
    OPENSSL_free(hexout);
    OPENSSL_free(cipher);
    OPENSSL_free(digest);
    OPENSSL_free(mac);
    return ret;
}
Commit	Line	Data
c54492ec	1	/*
8020d79b	2	* Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.
c54492ec	3	*
a6ed19dc	4	* Licensed under the Apache License 2.0 (the "License"). You may not use
c54492ec SL	5	* this file except in compliance with the License. You can obtain a copy
	6	* in the file LICENSE in the source distribution or at
	7	* https://www.openssl.org/source/license.html
	8	*/
	9
	10	#include <string.h>
	11
	12	#include "apps.h"
	13	#include "progs.h"
	14	#include <openssl/bio.h>
	15	#include <openssl/err.h>
	16	#include <openssl/evp.h>
	17	#include <openssl/kdf.h>
55accfd2	18	#include <openssl/params.h>
c54492ec SL	19
c54492ec SL	20	typedef enum OPTION_choice {
b0f96018	21	OPT_COMMON,
6bd4e3f2	22	OPT_KDFOPT, OPT_BIN, OPT_KEYLEN, OPT_OUT,
a1230dea	23	OPT_CIPHER, OPT_DIGEST, OPT_MAC,
6bd4e3f2	24	OPT_PROV_ENUM
c54492ec SL	25	} OPTION_CHOICE;
	26
	27	const OPTIONS kdf_options[] = {
	28	{OPT_HELP_STR, 1, '-', "Usage: %s [options] kdf_name\n"},
5388f986 RS	29
5388f986 RS	30	OPT_SECTION("General"),
c54492ec	31	{"help", OPT_HELP, '-', "Display this summary"},
92de469f	32	{"kdfopt", OPT_KDFOPT, 's', "KDF algorithm control parameters in n:v form"},
a1230dea P	33	{"cipher", OPT_CIPHER, 's', "Cipher"},
	34	{"digest", OPT_DIGEST, 's', "Digest"},
	35	{"mac", OPT_MAC, 's', "MAC"},
92de469f	36	{OPT_MORE_STR, 1, '-', "See 'Supported Controls' in the EVP_KDF_ docs\n"},
c54492ec	37	{"keylen", OPT_KEYLEN, 's', "The size of the output derived key"},
5388f986 RS	38
5388f986 RS	39	OPT_SECTION("Output"),
c54492ec	40	{"out", OPT_OUT, '>', "Output to filename rather than stdout"},
92de469f RS	41	{"binary", OPT_BIN, '-',
	42	"Output in binary format (default is hexadecimal)"},
	43
6bd4e3f2 P	44	OPT_PROV_OPTIONS,
6bd4e3f2 P	45
92de469f RS	46	OPT_PARAMETERS(),
92de469f RS	47	{"kdf_name", 0, 0, "Name of the KDF algorithm"},
c54492ec SL	48	{NULL}
	49	};
	50
a1230dea P	51	static char alloc_kdf_algorithm_name(STACK_OF(OPENSSL_STRING) *optp,
	52	const char name, const char arg)
	53	{
	54	size_t len = strlen(name) + strlen(arg) + 2;
b0f6402b	55	char *res;
a1230dea P	56
	57	if (*optp == NULL)
	58	*optp = sk_OPENSSL_STRING_new_null();
	59	if (*optp == NULL)
	60	return NULL;
	61
b0f6402b	62	res = app_malloc(len, "algorithm name");
a1230dea P	63	BIO_snprintf(res, len, "%s:%s", name, arg);
	64	if (sk_OPENSSL_STRING_push(*optp, res))
	65	return res;
	66	OPENSSL_free(res);
	67	return NULL;
	68	}
	69
c54492ec SL	70	int kdf_main(int argc, char **argv)
c54492ec SL	71	{
55accfd2	72	int ret = 1, out_bin = 0;
c54492ec SL	73	OPTION_CHOICE o;
	74	STACK_OF(OPENSSL_STRING) *opts = NULL;
	75	char prog, hexout = NULL;
	76	const char *outfile = NULL;
	77	unsigned char *dkm_bytes = NULL;
	78	size_t dkm_len = 0;
	79	BIO *out = NULL;
55accfd2	80	EVP_KDF *kdf = NULL;
c54492ec	81	EVP_KDF_CTX *ctx = NULL;
a1230dea	82	char digest = NULL, cipher = NULL, *mac = NULL;
c54492ec SL	83
	84	prog = opt_init(argc, argv, kdf_options);
	85	while ((o = opt_next()) != OPT_EOF) {
	86	switch (o) {
	87	default:
	88	opthelp:
	89	BIO_printf(bio_err, "%s: Use -help for summary.\n", prog);
	90	goto err;
	91	case OPT_HELP:
	92	opt_help(kdf_options);
	93	ret = 0;
	94	goto err;
	95	case OPT_BIN:
	96	out_bin = 1;
	97	break;
	98	case OPT_KEYLEN:
	99	dkm_len = (size_t)atoi(opt_arg());
	100	break;
	101	case OPT_OUT:
	102	outfile = opt_arg();
	103	break;
	104	case OPT_KDFOPT:
	105	if (opts == NULL)
	106	opts = sk_OPENSSL_STRING_new_null();
	107	if (opts == NULL \|\| !sk_OPENSSL_STRING_push(opts, opt_arg()))
	108	goto opthelp;
	109	break;
a1230dea P	110	case OPT_CIPHER:
	111	OPENSSL_free(cipher);
	112	cipher = alloc_kdf_algorithm_name(&opts, "cipher", opt_arg());
	113	if (cipher == NULL)
	114	goto opthelp;
	115	break;
	116	case OPT_DIGEST:
	117	OPENSSL_free(digest);
	118	digest = alloc_kdf_algorithm_name(&opts, "digest", opt_arg());
	119	if (digest == NULL)
	120	goto opthelp;
	121	break;
	122	case OPT_MAC:
	123	OPENSSL_free(mac);
	124	mac = alloc_kdf_algorithm_name(&opts, "mac", opt_arg());
	125	if (mac == NULL)
	126	goto opthelp;
	127	break;
6bd4e3f2 P	128	case OPT_PROV_CASES:
	129	if (!opt_provider(o))
	130	goto err;
	131	break;
c54492ec SL	132	}
c54492ec SL	133	}
021410ea RS	134
021410ea RS	135	/* One argument, the KDF name. */
c54492ec SL	136	argc = opt_num_rest();
c54492ec SL	137	argv = opt_rest();
021410ea	138	if (argc != 1)
c54492ec	139	goto opthelp;
c54492ec	140
f64851c5 P	141	if ((kdf = EVP_KDF_fetch(app_get0_libctx(), argv[0],
f64851c5 P	142	app_get0_propq())) == NULL) {
c54492ec SL	143	BIO_printf(bio_err, "Invalid KDF name %s\n", argv[0]);
	144	goto opthelp;
	145	}
	146
660c5344	147	ctx = EVP_KDF_CTX_new(kdf);
c54492ec SL	148	if (ctx == NULL)
	149	goto err;
	150
	151	if (opts != NULL) {
55accfd2 P	152	int ok = 1;
55accfd2 P	153	OSSL_PARAM *params =
41f7ecf3	154	app_params_new_from_opts(opts, EVP_KDF_settable_ctx_params(kdf));
55accfd2 P	155
	156	if (params == NULL)
	157	goto err;
	158
660c5344	159	if (!EVP_KDF_CTX_set_params(ctx, params)) {
55accfd2 P	160	BIO_printf(bio_err, "KDF parameter error\n");
	161	ERR_print_errors(bio_err);
	162	ok = 0;
c54492ec	163	}
55accfd2 P	164	app_params_free(params);
	165	if (!ok)
	166	goto err;
c54492ec SL	167	}
	168
	169	out = bio_open_default(outfile, 'w', out_bin ? FORMAT_BINARY : FORMAT_TEXT);
	170	if (out == NULL)
	171	goto err;
	172
	173	if (dkm_len <= 0) {
	174	BIO_printf(bio_err, "Invalid derived key length.\n");
	175	goto err;
	176	}
	177	dkm_bytes = app_malloc(dkm_len, "out buffer");
	178	if (dkm_bytes == NULL)
	179	goto err;
	180
bb0ab821	181	if (!EVP_KDF_derive(ctx, dkm_bytes, dkm_len, NULL)) {
c54492ec SL	182	BIO_printf(bio_err, "EVP_KDF_derive failed\n");
	183	goto err;
	184	}
	185
	186	if (out_bin) {
	187	BIO_write(out, dkm_bytes, dkm_len);
	188	} else {
	189	hexout = OPENSSL_buf2hexstr(dkm_bytes, dkm_len);
17197a2f MC	190	if (hexout == NULL) {
	191	BIO_printf(bio_err, "Memory allocation failure\n");
	192	goto err;
	193	}
c54492ec SL	194	BIO_printf(out, "%s\n\n", hexout);
	195	}
	196
	197	ret = 0;
	198	err:
	199	if (ret != 0)
	200	ERR_print_errors(bio_err);
	201	OPENSSL_clear_free(dkm_bytes, dkm_len);
	202	sk_OPENSSL_STRING_free(opts);
55accfd2	203	EVP_KDF_free(kdf);
660c5344	204	EVP_KDF_CTX_free(ctx);
c54492ec SL	205	BIO_free(out);
c54492ec SL	206	OPENSSL_free(hexout);
a1230dea P	207	OPENSSL_free(cipher);
	208	OPENSSL_free(digest);
	209	OPENSSL_free(mac);
c54492ec SL	210	return ret;
c54492ec SL	211	}