1 |
|
|
/* $OpenBSD: genrsa.c,v 1.9 2017/01/20 08:57:12 deraadt Exp $ */ |
2 |
|
|
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
3 |
|
|
* All rights reserved. |
4 |
|
|
* |
5 |
|
|
* This package is an SSL implementation written |
6 |
|
|
* by Eric Young (eay@cryptsoft.com). |
7 |
|
|
* The implementation was written so as to conform with Netscapes SSL. |
8 |
|
|
* |
9 |
|
|
* This library is free for commercial and non-commercial use as long as |
10 |
|
|
* the following conditions are aheared to. The following conditions |
11 |
|
|
* apply to all code found in this distribution, be it the RC4, RSA, |
12 |
|
|
* lhash, DES, etc., code; not just the SSL code. The SSL documentation |
13 |
|
|
* included with this distribution is covered by the same copyright terms |
14 |
|
|
* except that the holder is Tim Hudson (tjh@cryptsoft.com). |
15 |
|
|
* |
16 |
|
|
* Copyright remains Eric Young's, and as such any Copyright notices in |
17 |
|
|
* the code are not to be removed. |
18 |
|
|
* If this package is used in a product, Eric Young should be given attribution |
19 |
|
|
* as the author of the parts of the library used. |
20 |
|
|
* This can be in the form of a textual message at program startup or |
21 |
|
|
* in documentation (online or textual) provided with the package. |
22 |
|
|
* |
23 |
|
|
* Redistribution and use in source and binary forms, with or without |
24 |
|
|
* modification, are permitted provided that the following conditions |
25 |
|
|
* are met: |
26 |
|
|
* 1. Redistributions of source code must retain the copyright |
27 |
|
|
* notice, this list of conditions and the following disclaimer. |
28 |
|
|
* 2. Redistributions in binary form must reproduce the above copyright |
29 |
|
|
* notice, this list of conditions and the following disclaimer in the |
30 |
|
|
* documentation and/or other materials provided with the distribution. |
31 |
|
|
* 3. All advertising materials mentioning features or use of this software |
32 |
|
|
* must display the following acknowledgement: |
33 |
|
|
* "This product includes cryptographic software written by |
34 |
|
|
* Eric Young (eay@cryptsoft.com)" |
35 |
|
|
* The word 'cryptographic' can be left out if the rouines from the library |
36 |
|
|
* being used are not cryptographic related :-). |
37 |
|
|
* 4. If you include any Windows specific code (or a derivative thereof) from |
38 |
|
|
* the apps directory (application code) you must include an acknowledgement: |
39 |
|
|
* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" |
40 |
|
|
* |
41 |
|
|
* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND |
42 |
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
43 |
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
44 |
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE |
45 |
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
46 |
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS |
47 |
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
48 |
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT |
49 |
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY |
50 |
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF |
51 |
|
|
* SUCH DAMAGE. |
52 |
|
|
* |
53 |
|
|
* The licence and distribution terms for any publically available version or |
54 |
|
|
* derivative of this code cannot be changed. i.e. this code cannot simply be |
55 |
|
|
* copied and put under another distribution licence |
56 |
|
|
* [including the GNU Public Licence.] |
57 |
|
|
*/ |
58 |
|
|
|
59 |
|
|
#include <openssl/opensslconf.h> |
60 |
|
|
|
61 |
|
|
/* Until the key-gen callbacks are modified to use newer prototypes, we allow |
62 |
|
|
* deprecated functions for openssl-internal code */ |
63 |
|
|
#ifdef OPENSSL_NO_DEPRECATED |
64 |
|
|
#undef OPENSSL_NO_DEPRECATED |
65 |
|
|
#endif |
66 |
|
|
|
67 |
|
|
|
68 |
|
|
#include <sys/types.h> |
69 |
|
|
#include <sys/stat.h> |
70 |
|
|
|
71 |
|
|
#include <stdio.h> |
72 |
|
|
#include <string.h> |
73 |
|
|
|
74 |
|
|
#include "apps.h" |
75 |
|
|
|
76 |
|
|
#include <openssl/bio.h> |
77 |
|
|
#include <openssl/bn.h> |
78 |
|
|
#include <openssl/err.h> |
79 |
|
|
#include <openssl/evp.h> |
80 |
|
|
#include <openssl/pem.h> |
81 |
|
|
#include <openssl/rsa.h> |
82 |
|
|
#include <openssl/x509.h> |
83 |
|
|
|
84 |
|
|
#define DEFBITS 2048 |
85 |
|
|
|
86 |
|
|
static int genrsa_cb(int p, int n, BN_GENCB * cb); |
87 |
|
|
|
88 |
|
|
int |
89 |
|
|
genrsa_main(int argc, char **argv) |
90 |
|
|
{ |
91 |
|
24 |
BN_GENCB cb; |
92 |
|
|
int ret = 1; |
93 |
|
12 |
int i, num = DEFBITS; |
94 |
|
|
long l; |
95 |
|
|
const EVP_CIPHER *enc = NULL; |
96 |
|
|
unsigned long f4 = RSA_F4; |
97 |
|
|
char *outfile = NULL; |
98 |
|
12 |
char *passargout = NULL, *passout = NULL; |
99 |
|
|
BIO *out = NULL; |
100 |
|
12 |
BIGNUM *bn = BN_new(); |
101 |
|
|
RSA *rsa = NULL; |
102 |
|
|
|
103 |
✓✗ |
12 |
if (single_execution) { |
104 |
✗✓ |
12 |
if (pledge("stdio cpath wpath rpath tty flock", NULL) == -1) { |
105 |
|
|
perror("pledge"); |
106 |
|
|
exit(1); |
107 |
|
|
} |
108 |
|
|
} |
109 |
|
|
|
110 |
✓✗ |
12 |
if (!bn) |
111 |
|
|
goto err; |
112 |
|
|
|
113 |
|
12 |
BN_GENCB_set(&cb, genrsa_cb, bio_err); |
114 |
|
|
|
115 |
✗✓ |
12 |
if ((out = BIO_new(BIO_s_file())) == NULL) { |
116 |
|
|
BIO_printf(bio_err, "unable to create BIO for output\n"); |
117 |
|
|
goto err; |
118 |
|
|
} |
119 |
|
12 |
argv++; |
120 |
|
12 |
argc--; |
121 |
|
32 |
for (;;) { |
122 |
✓✓ |
32 |
if (argc <= 0) |
123 |
|
|
break; |
124 |
✓✓ |
28 |
if (strcmp(*argv, "-out") == 0) { |
125 |
✓✗ |
8 |
if (--argc < 1) |
126 |
|
|
goto bad; |
127 |
|
8 |
outfile = *(++argv); |
128 |
✗✓ |
28 |
} else if (strcmp(*argv, "-3") == 0) |
129 |
|
|
f4 = 3; |
130 |
✓✗✓✓
|
40 |
else if (strcmp(*argv, "-F4") == 0 || strcmp(*argv, "-f4") == 0) |
131 |
|
4 |
f4 = RSA_F4; |
132 |
|
|
#ifndef OPENSSL_NO_DES |
133 |
✗✓ |
16 |
else if (strcmp(*argv, "-des") == 0) |
134 |
|
|
enc = EVP_des_cbc(); |
135 |
✗✓ |
16 |
else if (strcmp(*argv, "-des3") == 0) |
136 |
|
|
enc = EVP_des_ede3_cbc(); |
137 |
|
|
#endif |
138 |
|
|
#ifndef OPENSSL_NO_IDEA |
139 |
✗✓ |
16 |
else if (strcmp(*argv, "-idea") == 0) |
140 |
|
|
enc = EVP_idea_cbc(); |
141 |
|
|
#endif |
142 |
|
|
#ifndef OPENSSL_NO_AES |
143 |
✗✓ |
16 |
else if (strcmp(*argv, "-aes128") == 0) |
144 |
|
|
enc = EVP_aes_128_cbc(); |
145 |
✗✓ |
16 |
else if (strcmp(*argv, "-aes192") == 0) |
146 |
|
|
enc = EVP_aes_192_cbc(); |
147 |
✓✓ |
16 |
else if (strcmp(*argv, "-aes256") == 0) |
148 |
|
4 |
enc = EVP_aes_256_cbc(); |
149 |
|
|
#endif |
150 |
|
|
#ifndef OPENSSL_NO_CAMELLIA |
151 |
✗✓ |
12 |
else if (strcmp(*argv, "-camellia128") == 0) |
152 |
|
|
enc = EVP_camellia_128_cbc(); |
153 |
✗✓ |
12 |
else if (strcmp(*argv, "-camellia192") == 0) |
154 |
|
|
enc = EVP_camellia_192_cbc(); |
155 |
✗✓ |
12 |
else if (strcmp(*argv, "-camellia256") == 0) |
156 |
|
|
enc = EVP_camellia_256_cbc(); |
157 |
|
|
#endif |
158 |
✓✓ |
12 |
else if (strcmp(*argv, "-passout") == 0) { |
159 |
✓✗ |
4 |
if (--argc < 1) |
160 |
|
|
goto bad; |
161 |
|
4 |
passargout = *(++argv); |
162 |
|
|
} else |
163 |
|
|
break; |
164 |
|
20 |
argv++; |
165 |
|
20 |
argc--; |
166 |
|
|
} |
167 |
✓✓✓✓
|
20 |
if ((argc >= 1) && ((sscanf(*argv, "%d", &num) == 0) || (num < 0))) { |
168 |
|
|
bad: |
169 |
|
4 |
BIO_printf(bio_err, "usage: genrsa [args] [numbits]\n"); |
170 |
|
4 |
BIO_printf(bio_err, " -des encrypt the generated key with DES in cbc mode\n"); |
171 |
|
4 |
BIO_printf(bio_err, " -des3 encrypt the generated key with DES in ede cbc mode (168 bit key)\n"); |
172 |
|
|
#ifndef OPENSSL_NO_IDEA |
173 |
|
4 |
BIO_printf(bio_err, " -idea encrypt the generated key with IDEA in cbc mode\n"); |
174 |
|
|
#endif |
175 |
|
|
#ifndef OPENSSL_NO_AES |
176 |
|
4 |
BIO_printf(bio_err, " -aes128, -aes192, -aes256\n"); |
177 |
|
4 |
BIO_printf(bio_err, " encrypt PEM output with cbc aes\n"); |
178 |
|
|
#endif |
179 |
|
|
#ifndef OPENSSL_NO_CAMELLIA |
180 |
|
4 |
BIO_printf(bio_err, " -camellia128, -camellia192, -camellia256\n"); |
181 |
|
4 |
BIO_printf(bio_err, " encrypt PEM output with cbc camellia\n"); |
182 |
|
|
#endif |
183 |
|
4 |
BIO_printf(bio_err, " -out file output the key to 'file\n"); |
184 |
|
4 |
BIO_printf(bio_err, " -passout arg output file pass phrase source\n"); |
185 |
|
4 |
BIO_printf(bio_err, " -f4 use F4 (0x10001) for the E value\n"); |
186 |
|
4 |
BIO_printf(bio_err, " -3 use 3 for the E value\n"); |
187 |
|
4 |
goto err; |
188 |
|
|
} |
189 |
|
|
|
190 |
✗✓ |
8 |
if (!app_passwd(bio_err, NULL, passargout, NULL, &passout)) { |
191 |
|
|
BIO_printf(bio_err, "Error getting password\n"); |
192 |
|
|
goto err; |
193 |
|
|
} |
194 |
|
|
|
195 |
✗✓ |
8 |
if (outfile == NULL) { |
196 |
|
|
BIO_set_fp(out, stdout, BIO_NOCLOSE); |
197 |
|
|
} else { |
198 |
✗✓ |
8 |
if (BIO_write_filename(out, outfile) <= 0) { |
199 |
|
|
perror(outfile); |
200 |
|
|
goto err; |
201 |
|
|
} |
202 |
|
|
} |
203 |
|
|
|
204 |
|
16 |
BIO_printf(bio_err, "Generating RSA private key, %d bit long modulus\n", |
205 |
|
8 |
num); |
206 |
|
8 |
rsa = RSA_new(); |
207 |
✓✗ |
8 |
if (!rsa) |
208 |
|
|
goto err; |
209 |
|
|
|
210 |
✓✗✓✗
|
16 |
if (!BN_set_word(bn, f4) || !RSA_generate_key_ex(rsa, num, bn, &cb)) |
211 |
|
|
goto err; |
212 |
|
|
|
213 |
|
|
/* |
214 |
|
|
* We need to do the following for when the base number size is < |
215 |
|
|
* long, esp windows 3.1 :-(. |
216 |
|
|
*/ |
217 |
|
|
l = 0L; |
218 |
✓✓ |
32 |
for (i = 0; i < rsa->e->top; i++) { |
219 |
|
|
#ifndef _LP64 |
220 |
|
|
l <<= BN_BITS4; |
221 |
|
|
l <<= BN_BITS4; |
222 |
|
|
#endif |
223 |
|
8 |
l += rsa->e->d[i]; |
224 |
|
|
} |
225 |
|
8 |
BIO_printf(bio_err, "e is %ld (0x%lX)\n", l, l); |
226 |
|
|
{ |
227 |
|
8 |
PW_CB_DATA cb_data; |
228 |
|
8 |
cb_data.password = passout; |
229 |
|
8 |
cb_data.prompt_info = outfile; |
230 |
✗✓ |
8 |
if (!PEM_write_bio_RSAPrivateKey(out, rsa, enc, NULL, 0, |
231 |
|
|
password_callback, &cb_data)) |
232 |
|
|
goto err; |
233 |
✓✓✓ |
32 |
} |
234 |
|
|
|
235 |
|
8 |
ret = 0; |
236 |
|
|
err: |
237 |
✓✗ |
12 |
if (bn) |
238 |
|
12 |
BN_free(bn); |
239 |
✓✓ |
12 |
if (rsa) |
240 |
|
8 |
RSA_free(rsa); |
241 |
✓✗ |
12 |
if (out) |
242 |
|
12 |
BIO_free_all(out); |
243 |
|
12 |
free(passout); |
244 |
✓✓ |
12 |
if (ret != 0) |
245 |
|
4 |
ERR_print_errors(bio_err); |
246 |
|
|
|
247 |
|
12 |
return (ret); |
248 |
|
12 |
} |
249 |
|
|
|
250 |
|
|
static int |
251 |
|
|
genrsa_cb(int p, int n, BN_GENCB * cb) |
252 |
|
|
{ |
253 |
|
2014 |
char c = '*'; |
254 |
|
|
|
255 |
|
1007 |
if (p == 0) |
256 |
|
|
c = '.'; |
257 |
|
1007 |
if (p == 1) |
258 |
|
|
c = '+'; |
259 |
|
1007 |
if (p == 2) |
260 |
|
|
c = '*'; |
261 |
|
1007 |
if (p == 3) |
262 |
|
|
c = '\n'; |
263 |
|
1007 |
BIO_write(cb->arg, &c, 1); |
264 |
|
1007 |
(void) BIO_flush(cb->arg); |
265 |
|
1007 |
return 1; |
266 |
|
1007 |
} |