]> git.ipfire.org Git - thirdparty/openssl.git/blob - apps/pkey.c
projects / thirdparty / openssl.git / blob
? search:


3597be0ee6afd83c4a2ce5cda71698c4bd364f6b
[thirdparty/openssl.git] / apps / pkey.c
1 /*
2 * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project
3 * 2006
4 */
5 /* ====================================================================
6 * Copyright (c) 2006 The OpenSSL Project. All rights reserved.
7 *
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
10 * are met:
11 *
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
14 *
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in
17 * the documentation and/or other materials provided with the
18 * distribution.
19 *
20 * 3. All advertising materials mentioning features or use of this
21 * software must display the following acknowledgment:
22 * "This product includes software developed by the OpenSSL Project
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24 *
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 * endorse or promote products derived from this software without
27 * prior written permission. For written permission, please contact
28 * licensing@OpenSSL.org.
29 *
30 * 5. Products derived from this software may not be called "OpenSSL"
31 * nor may "OpenSSL" appear in their names without prior written
32 * permission of the OpenSSL Project.
33 *
34 * 6. Redistributions of any form whatsoever must retain the following
35 * acknowledgment:
36 * "This product includes software developed by the OpenSSL Project
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38 *
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 * OF THE POSSIBILITY OF SUCH DAMAGE.
51 * ====================================================================
52 *
53 * This product includes cryptographic software written by Eric Young
54 * (eay@cryptsoft.com). This product includes software written by Tim
55 * Hudson (tjh@cryptsoft.com).
56 *
57 */
58 #include <stdio.h>
59 #include <string.h>
60 #include "apps.h"
61 #include <openssl/pem.h>
62 #include <openssl/err.h>
63 #include <openssl/evp.h>
64
65 typedef enum OPTION_choice {
66 OPT_ERR = -1, OPT_EOF = 0, OPT_HELP,
67 OPT_INFORM, OPT_OUTFORM, OPT_PASSIN, OPT_PASSOUT, OPT_ENGINE,
68 OPT_IN, OPT_OUT, OPT_PUBIN, OPT_PUBOUT, OPT_TEXT_PUB,
69 OPT_TEXT, OPT_NOOUT, OPT_MD
70 } OPTION_CHOICE;
71
72 OPTIONS pkey_options[] = {
73 {"help", OPT_HELP, '-', "Display this summary"},
74 {"inform", OPT_INFORM, 'F', "Input format (DER or PEM)"},
75 {"outform", OPT_OUTFORM, 'F', "Output format (DER or PEM)"},
76 {"passin", OPT_PASSIN, 's', "Input file pass phrase source"},
77 {"passout", OPT_PASSOUT, 's', "Output file pass phrase source"},
78 {"in", OPT_IN, '<', "Input file"},
79 {"out", OPT_OUT, '>', "Output file"},
80 {"pubin", OPT_PUBIN, '-',
81 "Read public key from input (default is private key)"},
82 {"pubout", OPT_PUBOUT, '-', "Output public key, not private"},
83 {"text_pub", OPT_TEXT_PUB, '-', "Only output public key components"},
84 {"text", OPT_TEXT, '-', "Output in plaintext as well"},
85 {"noout", OPT_NOOUT, '-', "Don't output the key"},
86 {"", OPT_MD, '-', "Any supported cipher"},
87 #ifndef OPENSSL_NO_ENGINE
88 {"engine", OPT_ENGINE, 's', "Use engine, possibly a hardware device"},
89 #endif
90 {NULL}
91 };
92
93 int pkey_main(int argc, char **argv)
94 {
95 BIO *in = NULL, *out = NULL;
96 ENGINE *e = NULL;
97 EVP_PKEY *pkey = NULL;
98 const EVP_CIPHER *cipher = NULL;
99 char *infile = NULL, *outfile = NULL, *passin = NULL, *passout = NULL;
100 char *passinarg = NULL, *passoutarg = NULL, *prog, *engine = NULL;
101 OPTION_CHOICE o;
102 int informat = FORMAT_PEM, outformat = FORMAT_PEM;
103 int pubin = 0, pubout = 0, pubtext = 0, text = 0, noout = 0, ret = 1;
104
105 prog = opt_init(argc, argv, pkey_options);
106 while ((o = opt_next()) != OPT_EOF) {
107 switch (o) {
108 case OPT_EOF:
109 case OPT_ERR:
110 opthelp:
111 BIO_printf(bio_err, "%s: Use -help for summary.\n", prog);
112 goto end;
113 case OPT_HELP:
114 opt_help(pkey_options);
115 ret = 0;
116 goto end;
117 case OPT_INFORM:
118 if (!opt_format(opt_arg(), OPT_FMT_PEMDER, &informat))
119 goto opthelp;
120 break;
121 case OPT_OUTFORM:
122 if (!opt_format(opt_arg(), OPT_FMT_PEMDER, &outformat))
123 goto opthelp;
124 break;
125 case OPT_PASSIN:
126 passinarg = opt_arg();
127 break;
128 case OPT_PASSOUT:
129 passoutarg = opt_arg();
130 break;
131 case OPT_ENGINE:
132 engine = opt_arg();
133 break;
134 case OPT_IN:
135 infile = opt_arg();
136 break;
137 case OPT_OUT:
138 outfile = opt_arg();
139 break;
140 case OPT_PUBIN:
141 pubin = pubout = pubtext = 1;
142 break;
143 case OPT_PUBOUT:
144 pubout = 1;
145 break;
146 case OPT_TEXT_PUB:
147 pubtext = text = 1;
148 break;
149 case OPT_TEXT:
150 text = 1;
151 break;
152 case OPT_NOOUT:
153 noout = 1;
154 break;
155 case OPT_MD:
156 if (!opt_cipher(opt_unknown(), &cipher))
157 goto opthelp;
158 }
159 }
160 argc = opt_num_rest();
161 argv = opt_rest();
162
163 #ifndef OPENSSL_NO_ENGINE
164 e = setup_engine(engine, 0);
165 #endif
166
167 if (!app_passwd(passinarg, passoutarg, &passin, &passout)) {
168 BIO_printf(bio_err, "Error getting passwords\n");
169 goto end;
170 }
171
172 out = bio_open_default(outfile, "wb");
173 if (out == NULL)
174 goto end;
175
176 if (pubin)
177 pkey = load_pubkey(infile, informat, 1, passin, e, "Public Key");
178 else
179 pkey = load_key(infile, informat, 1, passin, e, "key");
180 if (!pkey)
181 goto end;
182
183 if (!noout) {
184 if (outformat == FORMAT_PEM) {
185 if (pubout)
186 PEM_write_bio_PUBKEY(out, pkey);
187 else
188 PEM_write_bio_PrivateKey(out, pkey, cipher,
189 NULL, 0, NULL, passout);
190 } else if (outformat == FORMAT_ASN1) {
191 if (pubout)
192 i2d_PUBKEY_bio(out, pkey);
193 else
194 i2d_PrivateKey_bio(out, pkey);
195 } else {
196 BIO_printf(bio_err, "Bad format specified for key\n");
197 goto end;
198 }
199
200 }
201
202 if (text) {
203 if (pubtext)
204 EVP_PKEY_print_public(out, pkey, 0, NULL);
205 else
206 EVP_PKEY_print_private(out, pkey, 0, NULL);
207 }
208
209 ret = 0;
210
211 end:
212 EVP_PKEY_free(pkey);
213 BIO_free_all(out);
214 BIO_free(in);
215 if (passin)
216 OPENSSL_free(passin);
217 if (passout)
218 OPENSSL_free(passout);
219
220 return ret;
221 }
A mirror of the official openssl repository