]>
git.ipfire.org Git - thirdparty/openssl.git/blob - apps/ciphers.c
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
62 #ifdef OPENSSL_NO_STDIO
66 #include <openssl/err.h>
67 #include <openssl/ssl.h>
70 #define PROG ciphers_main
72 static const char *ciphers_usage
[]={
73 "usage: ciphers args\n",
74 " -v - verbose mode, a textual listing of the SSL/TLS ciphers in OpenSSL\n",
75 " -V - even more verbose\n",
76 " -ssl2 - SSL2 mode\n",
77 " -ssl3 - SSL3 mode\n",
78 " -tls1 - TLS1 mode\n",
82 int MAIN(int, char **);
84 int MAIN(int argc
, char **argv
)
87 int verbose
=0,Verbose
=0;
88 int use_supported
= 0;
89 #ifndef OPENSSL_NO_SSL_TRACE
98 const SSL_METHOD
*meth
=NULL
;
99 STACK_OF(SSL_CIPHER
) *sk
=NULL
;
103 #if !defined(OPENSSL_NO_SSL2) && !defined(OPENSSL_NO_SSL3)
104 meth
=SSLv23_server_method();
105 #elif !defined(OPENSSL_NO_SSL3)
106 meth
=SSLv3_server_method();
107 #elif !defined(OPENSSL_NO_SSL2)
108 meth
=SSLv2_server_method();
114 bio_err
=BIO_new_fp(stderr
,BIO_NOCLOSE
);
115 STDout
=BIO_new_fp(stdout
,BIO_NOCLOSE
);
116 #ifdef OPENSSL_SYS_VMS
118 BIO
*tmpbio
= BIO_new(BIO_f_linebuffer());
119 STDout
= BIO_push(tmpbio
, STDout
);
122 if (!load_config(bio_err
, NULL
))
129 if (strcmp(*argv
,"-v") == 0)
131 else if (strcmp(*argv
,"-V") == 0)
133 else if (strcmp(*argv
,"-s") == 0)
135 #ifndef OPENSSL_NO_SSL_TRACE
136 else if (strcmp(*argv
,"-stdname") == 0)
139 #ifndef OPENSSL_NO_SSL2
140 else if (strcmp(*argv
,"-ssl2") == 0)
141 meth
=SSLv2_client_method();
143 #ifndef OPENSSL_NO_SSL3
144 else if (strcmp(*argv
,"-ssl3") == 0)
145 meth
=SSLv3_client_method();
147 #ifndef OPENSSL_NO_TLS1
148 else if (strcmp(*argv
,"-tls1") == 0)
149 meth
=TLSv1_client_method();
151 else if ((strncmp(*argv
,"-h",2) == 0) ||
152 (strcmp(*argv
,"-?") == 0))
167 for (pp
=ciphers_usage
; (*pp
!= NULL
); pp
++)
168 BIO_printf(bio_err
,"%s",*pp
);
172 OpenSSL_add_ssl_algorithms();
174 ctx
=SSL_CTX_new(meth
);
175 if (ctx
== NULL
) goto err
;
176 if (ciphers
!= NULL
) {
177 if(!SSL_CTX_set_cipher_list(ctx
,ciphers
)) {
178 BIO_printf(bio_err
, "Error in cipher list\n");
183 if (ssl
== NULL
) goto err
;
186 sk
=SSL_get1_supported_ciphers(ssl
);
188 sk
=SSL_get_ciphers(ssl
);
192 for (i
=0; i
<sk_SSL_CIPHER_num(sk
); i
++)
194 SSL_CIPHER
*c
= sk_SSL_CIPHER_value(sk
,i
);
195 p
= SSL_CIPHER_get_name(c
);
196 if (p
== NULL
) break;
197 if (i
!= 0) BIO_printf(STDout
,":");
198 BIO_printf(STDout
,"%s",p
);
200 BIO_printf(STDout
,"\n");
205 for (i
=0; i
<sk_SSL_CIPHER_num(sk
); i
++)
209 c
= sk_SSL_CIPHER_value(sk
,i
);
213 unsigned long id
= SSL_CIPHER_get_id(c
);
214 int id0
= (int)(id
>> 24);
215 int id1
= (int)((id
>> 16) & 0xffL
);
216 int id2
= (int)((id
>> 8) & 0xffL
);
217 int id3
= (int)(id
& 0xffL
);
219 if ((id
& 0xff000000L
) == 0x02000000L
)
220 BIO_printf(STDout
, " 0x%02X,0x%02X,0x%02X - ", id1
, id2
, id3
); /* SSL2 cipher */
221 else if ((id
& 0xff000000L
) == 0x03000000L
)
222 BIO_printf(STDout
, " 0x%02X,0x%02X - ", id2
, id3
); /* SSL3 cipher */
224 BIO_printf(STDout
, "0x%02X,0x%02X,0x%02X,0x%02X - ", id0
, id1
, id2
, id3
); /* whatever */
226 #ifndef OPENSSL_NO_SSL_TRACE
229 const char *nm
= SSL_CIPHER_standard_name(c
);
232 BIO_printf(STDout
, "%s - ", nm
);
235 BIO_puts(STDout
,SSL_CIPHER_description(c
,buf
,sizeof buf
));
243 SSL_load_error_strings();
244 ERR_print_errors(bio_err
);
247 if (use_supported
&& sk
)
248 sk_SSL_CIPHER_free(sk
);
249 if (ctx
!= NULL
) SSL_CTX_free(ctx
);
250 if (ssl
!= NULL
) SSL_free(ssl
);
251 if (STDout
!= NULL
) BIO_free_all(STDout
);