1/* apps/rsa.c */
2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 * All rights reserved.
| 1/*
2 * Copyright 1995-2016 The OpenSSL Project Authors. All Rights Reserved.
|
4 *
| 3 *
|
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
8 *
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15 *
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
22 *
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
25 * are met:
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40 *
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51 * SUCH DAMAGE.
52 *
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
| 4 * Licensed under the OpenSSL license (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
|
57 */
58
59#include <openssl/opensslconf.h>
| 8 */
9
10#include <openssl/opensslconf.h>
|
60#ifndef OPENSSL_NO_RSA
| 11#ifdef OPENSSL_NO_RSA
12NON_EMPTY_TRANSLATION_UNIT
13#else
14
|
61# include <stdio.h>
62# include <stdlib.h>
63# include <string.h>
64# include <time.h>
65# include "apps.h"
66# include <openssl/bio.h>
67# include <openssl/err.h>
68# include <openssl/rsa.h>
69# include <openssl/evp.h>
70# include <openssl/x509.h>
71# include <openssl/pem.h>
72# include <openssl/bn.h>
73
| 15# include <stdio.h>
16# include <stdlib.h>
17# include <string.h>
18# include <time.h>
19# include "apps.h"
20# include <openssl/bio.h>
21# include <openssl/err.h>
22# include <openssl/rsa.h>
23# include <openssl/evp.h>
24# include <openssl/x509.h>
25# include <openssl/pem.h>
26# include <openssl/bn.h>
27
|
74# undef PROG
75# define PROG rsa_main
| 28typedef enum OPTION_choice {
29 OPT_ERR = -1, OPT_EOF = 0, OPT_HELP,
30 OPT_INFORM, OPT_OUTFORM, OPT_ENGINE, OPT_IN, OPT_OUT,
31 OPT_PUBIN, OPT_PUBOUT, OPT_PASSOUT, OPT_PASSIN,
32 OPT_RSAPUBKEY_IN, OPT_RSAPUBKEY_OUT,
33 /* Do not change the order here; see case statements below */
34 OPT_PVK_NONE, OPT_PVK_WEAK, OPT_PVK_STRONG,
35 OPT_NOOUT, OPT_TEXT, OPT_MODULUS, OPT_CHECK, OPT_CIPHER
36} OPTION_CHOICE;
|
76
| 37
|
77/*-
78 * -inform arg - input format - default PEM (one of DER, NET or PEM)
79 * -outform arg - output format - default PEM
80 * -in arg - input file - default stdin
81 * -out arg - output file - default stdout
82 * -des - encrypt output if PEM format with DES in cbc mode
83 * -des3 - encrypt output if PEM format
84 * -idea - encrypt output if PEM format
85 * -seed - encrypt output if PEM format
86 * -aes128 - encrypt output if PEM format
87 * -aes192 - encrypt output if PEM format
88 * -aes256 - encrypt output if PEM format
89 * -camellia128 - encrypt output if PEM format
90 * -camellia192 - encrypt output if PEM format
91 * -camellia256 - encrypt output if PEM format
92 * -text - print a text version
93 * -modulus - print the RSA key modulus
94 * -check - verify key consistency
95 * -pubin - Expect a public key in input file.
96 * -pubout - Output a public key.
97 */
| 38OPTIONS rsa_options[] = {
39 {"help", OPT_HELP, '-', "Display this summary"},
40 {"inform", OPT_INFORM, 'f', "Input format, one of DER NET PEM"},
41 {"outform", OPT_OUTFORM, 'f', "Output format, one of DER NET PEM PVK"},
42 {"in", OPT_IN, 's', "Input file"},
43 {"out", OPT_OUT, '>', "Output file"},
44 {"pubin", OPT_PUBIN, '-', "Expect a public key in input file"},
45 {"pubout", OPT_PUBOUT, '-', "Output a public key"},
46 {"passout", OPT_PASSOUT, 's', "Output file pass phrase source"},
47 {"passin", OPT_PASSIN, 's', "Input file pass phrase source"},
48 {"RSAPublicKey_in", OPT_RSAPUBKEY_IN, '-', "Input is an RSAPublicKey"},
49 {"RSAPublicKey_out", OPT_RSAPUBKEY_OUT, '-', "Output is an RSAPublicKey"},
50 {"noout", OPT_NOOUT, '-', "Don't print key out"},
51 {"text", OPT_TEXT, '-', "Print the key in text"},
52 {"modulus", OPT_MODULUS, '-', "Print the RSA key modulus"},
53 {"check", OPT_CHECK, '-', "Verify key consistency"},
54 {"", OPT_CIPHER, '-', "Any supported cipher"},
55# if !defined(OPENSSL_NO_DSA) && !defined(OPENSSL_NO_RC4)
56 {"pvk-strong", OPT_PVK_STRONG, '-', "Enable 'Strong' PVK encoding level (default)"},
57 {"pvk-weak", OPT_PVK_WEAK, '-', "Enable 'Weak' PVK encoding level"},
58 {"pvk-none", OPT_PVK_NONE, '-', "Don't enforce PVK encoding"},
59# endif
60# ifndef OPENSSL_NO_ENGINE
61 {"engine", OPT_ENGINE, 's', "Use engine, possibly a hardware device"},
62# endif
63 {NULL}
64};
|
98
| 65
|
99int MAIN(int, char **);
100
101int MAIN(int argc, char **argv)
| 66int rsa_main(int argc, char **argv)
|
102{
103 ENGINE *e = NULL;
| 67{
68 ENGINE *e = NULL;
|
104 int ret = 1;
| 69 BIO *out = NULL;
|
105 RSA *rsa = NULL;
| 70 RSA *rsa = NULL;
|
106 int i, badops = 0, sgckey = 0;
| |
107 const EVP_CIPHER *enc = NULL;
| 71 const EVP_CIPHER *enc = NULL;
|
108 BIO *out = NULL;
109 int informat, outformat, text = 0, check = 0, noout = 0;
110 int pubin = 0, pubout = 0;
111 char *infile, *outfile, *prog;
112 char *passargin = NULL, *passargout = NULL;
113 char *passin = NULL, *passout = NULL;
114 char *engine = NULL;
115 int modulus = 0;
116
| 72 char *infile = NULL, *outfile = NULL, *prog;
73 char *passin = NULL, *passout = NULL, *passinarg = NULL, *passoutarg = NULL;
74 int i, private = 0;
75 int informat = FORMAT_PEM, outformat = FORMAT_PEM, text = 0, check = 0;
76 int noout = 0, modulus = 0, pubin = 0, pubout = 0, ret = 1;
77# if !defined(OPENSSL_NO_DSA) && !defined(OPENSSL_NO_RC4)
|
117 int pvk_encr = 2;
| 78 int pvk_encr = 2;
|
118
119 apps_startup();
120
121 if (bio_err == NULL)
122 if ((bio_err = BIO_new(BIO_s_file())) != NULL)
123 BIO_set_fp(bio_err, stderr, BIO_NOCLOSE | BIO_FP_TEXT);
124
125 if (!load_config(bio_err, NULL))
126 goto end;
127
128 infile = NULL;
129 outfile = NULL;
130 informat = FORMAT_PEM;
131 outformat = FORMAT_PEM;
132
133 prog = argv[0];
134 argc--;
135 argv++;
136 while (argc >= 1) {
137 if (strcmp(*argv, "-inform") == 0) {
138 if (--argc < 1)
139 goto bad;
140 informat = str2fmt(*(++argv));
141 } else if (strcmp(*argv, "-outform") == 0) {
142 if (--argc < 1)
143 goto bad;
144 outformat = str2fmt(*(++argv));
145 } else if (strcmp(*argv, "-in") == 0) {
146 if (--argc < 1)
147 goto bad;
148 infile = *(++argv);
149 } else if (strcmp(*argv, "-out") == 0) {
150 if (--argc < 1)
151 goto bad;
152 outfile = *(++argv);
153 } else if (strcmp(*argv, "-passin") == 0) {
154 if (--argc < 1)
155 goto bad;
156 passargin = *(++argv);
157 } else if (strcmp(*argv, "-passout") == 0) {
158 if (--argc < 1)
159 goto bad;
160 passargout = *(++argv);
161 }
162# ifndef OPENSSL_NO_ENGINE
163 else if (strcmp(*argv, "-engine") == 0) {
164 if (--argc < 1)
165 goto bad;
166 engine = *(++argv);
167 }
| |
168# endif
| 79# endif
|
169 else if (strcmp(*argv, "-sgckey") == 0)
170 sgckey = 1;
171 else if (strcmp(*argv, "-pubin") == 0)
| 80 OPTION_CHOICE o;
81
82 prog = opt_init(argc, argv, rsa_options);
83 while ((o = opt_next()) != OPT_EOF) {
84 switch (o) {
85 case OPT_EOF:
86 case OPT_ERR:
87 opthelp:
88 BIO_printf(bio_err, "%s: Use -help for summary.\n", prog);
89 goto end;
90 case OPT_HELP:
91 opt_help(rsa_options);
92 ret = 0;
93 goto end;
94 case OPT_INFORM:
95 if (!opt_format(opt_arg(), OPT_FMT_ANY, &informat))
96 goto opthelp;
97 break;
98 case OPT_IN:
99 infile = opt_arg();
100 break;
101 case OPT_OUTFORM:
102 if (!opt_format(opt_arg(), OPT_FMT_ANY, &outformat))
103 goto opthelp;
104 break;
105 case OPT_OUT:
106 outfile = opt_arg();
107 break;
108 case OPT_PASSIN:
109 passinarg = opt_arg();
110 break;
111 case OPT_PASSOUT:
112 passoutarg = opt_arg();
113 break;
114 case OPT_ENGINE:
115 e = setup_engine(opt_arg(), 0);
116 break;
117 case OPT_PUBIN:
|
172 pubin = 1;
| 118 pubin = 1;
|
173 else if (strcmp(*argv, "-pubout") == 0)
| 119 break;
120 case OPT_PUBOUT:
|
174 pubout = 1;
| 121 pubout = 1;
|
175 else if (strcmp(*argv, "-RSAPublicKey_in") == 0)
| 122 break;
123 case OPT_RSAPUBKEY_IN:
|
176 pubin = 2;
| 124 pubin = 2;
|
177 else if (strcmp(*argv, "-RSAPublicKey_out") == 0)
| 125 break;
126 case OPT_RSAPUBKEY_OUT:
|
178 pubout = 2;
| 127 pubout = 2;
|
179 else if (strcmp(*argv, "-pvk-strong") == 0)
180 pvk_encr = 2;
181 else if (strcmp(*argv, "-pvk-weak") == 0)
182 pvk_encr = 1;
183 else if (strcmp(*argv, "-pvk-none") == 0)
184 pvk_encr = 0;
185 else if (strcmp(*argv, "-noout") == 0)
| 128 break;
129 case OPT_PVK_STRONG: /* pvk_encr:= 2 */
130 case OPT_PVK_WEAK: /* pvk_encr:= 1 */
131 case OPT_PVK_NONE: /* pvk_encr:= 0 */
132# if !defined(OPENSSL_NO_DSA) && !defined(OPENSSL_NO_RC4)
133 pvk_encr = (o - OPT_PVK_NONE);
134# endif
135 break;
136 case OPT_NOOUT:
|
186 noout = 1;
| 137 noout = 1;
|
187 else if (strcmp(*argv, "-text") == 0)
| 138 break;
139 case OPT_TEXT:
|
188 text = 1;
| 140 text = 1;
|
189 else if (strcmp(*argv, "-modulus") == 0)
| 141 break;
142 case OPT_MODULUS:
|
190 modulus = 1;
| 143 modulus = 1;
|
191 else if (strcmp(*argv, "-check") == 0)
| 144 break;
145 case OPT_CHECK:
|
192 check = 1;
| 146 check = 1;
|
193 else if ((enc = EVP_get_cipherbyname(&(argv[0][1]))) == NULL) {
194 BIO_printf(bio_err, "unknown option %s\n", *argv);
195 badops = 1;
| |
196 break;
| 147 break;
|
| 148 case OPT_CIPHER:
149 if (!opt_cipher(opt_unknown(), &enc))
150 goto opthelp;
151 break;
|
197 }
| 152 }
|
198 argc--;
199 argv++;
| |
200 }
| 153 }
|
| 154 argc = opt_num_rest();
155 if (argc != 0)
156 goto opthelp;
|
201
| 157
|
202 if (badops) {
203 bad:
204 BIO_printf(bio_err, "%s [options] <infile >outfile\n", prog);
205 BIO_printf(bio_err, "where options are\n");
206 BIO_printf(bio_err,
207 " -inform arg input format - one of DER NET PEM\n");
208 BIO_printf(bio_err,
209 " -outform arg output format - one of DER NET PEM\n");
210 BIO_printf(bio_err, " -in arg input file\n");
211 BIO_printf(bio_err, " -sgckey Use IIS SGC key format\n");
212 BIO_printf(bio_err,
213 " -passin arg input file pass phrase source\n");
214 BIO_printf(bio_err, " -out arg output file\n");
215 BIO_printf(bio_err,
216 " -passout arg output file pass phrase source\n");
217 BIO_printf(bio_err,
218 " -des encrypt PEM output with cbc des\n");
219 BIO_printf(bio_err,
220 " -des3 encrypt PEM output with ede cbc des using 168 bit key\n");
221# ifndef OPENSSL_NO_IDEA
222 BIO_printf(bio_err,
223 " -idea encrypt PEM output with cbc idea\n");
224# endif
225# ifndef OPENSSL_NO_SEED
226 BIO_printf(bio_err,
227 " -seed encrypt PEM output with cbc seed\n");
228# endif
229# ifndef OPENSSL_NO_AES
230 BIO_printf(bio_err, " -aes128, -aes192, -aes256\n");
231 BIO_printf(bio_err,
232 " encrypt PEM output with cbc aes\n");
233# endif
234# ifndef OPENSSL_NO_CAMELLIA
235 BIO_printf(bio_err, " -camellia128, -camellia192, -camellia256\n");
236 BIO_printf(bio_err,
237 " encrypt PEM output with cbc camellia\n");
238# endif
239 BIO_printf(bio_err, " -text print the key in text\n");
240 BIO_printf(bio_err, " -noout don't print key out\n");
241 BIO_printf(bio_err, " -modulus print the RSA key modulus\n");
242 BIO_printf(bio_err, " -check verify key consistency\n");
243 BIO_printf(bio_err,
244 " -pubin expect a public key in input file\n");
245 BIO_printf(bio_err, " -pubout output a public key\n");
246# ifndef OPENSSL_NO_ENGINE
247 BIO_printf(bio_err,
248 " -engine e use engine e, possibly a hardware device.\n");
249# endif
250 goto end;
251 }
| 158 private = (text && !pubin) || (!pubout && !noout) ? 1 : 0;
|
252
| 159
|
253 ERR_load_crypto_strings();
254
255 e = setup_engine(bio_err, engine, 0);
256
257 if (!app_passwd(bio_err, passargin, passargout, &passin, &passout)) {
| 160 if (!app_passwd(passinarg, passoutarg, &passin, &passout)) {
|
258 BIO_printf(bio_err, "Error getting passwords\n");
259 goto end;
260 }
| 161 BIO_printf(bio_err, "Error getting passwords\n");
162 goto end;
163 }
|
261
| |
262 if (check && pubin) {
263 BIO_printf(bio_err, "Only private keys can be checked\n");
264 goto end;
265 }
266
| 164 if (check && pubin) {
165 BIO_printf(bio_err, "Only private keys can be checked\n");
166 goto end;
167 }
168
|
267 out = BIO_new(BIO_s_file());
268
| |
269 {
270 EVP_PKEY *pkey;
271
272 if (pubin) {
273 int tmpformat = -1;
274 if (pubin == 2) {
275 if (informat == FORMAT_PEM)
276 tmpformat = FORMAT_PEMRSA;
277 else if (informat == FORMAT_ASN1)
278 tmpformat = FORMAT_ASN1RSA;
| 169 {
170 EVP_PKEY *pkey;
171
172 if (pubin) {
173 int tmpformat = -1;
174 if (pubin == 2) {
175 if (informat == FORMAT_PEM)
176 tmpformat = FORMAT_PEMRSA;
177 else if (informat == FORMAT_ASN1)
178 tmpformat = FORMAT_ASN1RSA;
|
279 } else if (informat == FORMAT_NETSCAPE && sgckey)
280 tmpformat = FORMAT_IISSGC;
281 else
| 179 } else
|
282 tmpformat = informat;
283
| 180 tmpformat = informat;
181
|
284 pkey = load_pubkey(bio_err, infile, tmpformat, 1,
285 passin, e, "Public Key");
| 182 pkey = load_pubkey(infile, tmpformat, 1, passin, e, "Public Key");
|
286 } else
| 183 } else
|
287 pkey = load_key(bio_err, infile,
288 (informat == FORMAT_NETSCAPE && sgckey ?
289 FORMAT_IISSGC : informat), 1,
290 passin, e, "Private Key");
| 184 pkey = load_key(infile, informat, 1, passin, e, "Private Key");
|
291
292 if (pkey != NULL)
293 rsa = EVP_PKEY_get1_RSA(pkey);
294 EVP_PKEY_free(pkey);
295 }
296
297 if (rsa == NULL) {
298 ERR_print_errors(bio_err);
299 goto end;
300 }
301
| 185
186 if (pkey != NULL)
187 rsa = EVP_PKEY_get1_RSA(pkey);
188 EVP_PKEY_free(pkey);
189 }
190
191 if (rsa == NULL) {
192 ERR_print_errors(bio_err);
193 goto end;
194 }
195
|
302 if (outfile == NULL) {
303 BIO_set_fp(out, stdout, BIO_NOCLOSE);
304# ifdef OPENSSL_SYS_VMS
305 {
306 BIO *tmpbio = BIO_new(BIO_f_linebuffer());
307 out = BIO_push(tmpbio, out);
308 }
309# endif
310 } else {
311 if (BIO_write_filename(out, outfile) <= 0) {
312 perror(outfile);
313 goto end;
314 }
315 }
| 196 out = bio_open_owner(outfile, outformat, private);
197 if (out == NULL)
198 goto end;
|
316
| 199
|
317 if (text)
| 200 if (text) {
201 assert(pubin || private);
|
318 if (!RSA_print(out, rsa, 0)) {
319 perror(outfile);
320 ERR_print_errors(bio_err);
321 goto end;
322 }
| 202 if (!RSA_print(out, rsa, 0)) {
203 perror(outfile);
204 ERR_print_errors(bio_err);
205 goto end;
206 }
|
| 207 }
|
323
324 if (modulus) {
| 208
209 if (modulus) {
|
| 210 const BIGNUM *n;
211 RSA_get0_key(rsa, &n, NULL, NULL);
|
325 BIO_printf(out, "Modulus=");
| 212 BIO_printf(out, "Modulus=");
|
326 BN_print(out, rsa->n);
| 213 BN_print(out, n);
|
327 BIO_printf(out, "\n");
328 }
329
330 if (check) {
| 214 BIO_printf(out, "\n");
215 }
216
217 if (check) {
|
331 int r = RSA_check_key(rsa);
| 218 int r = RSA_check_key_ex(rsa, NULL);
|
332
333 if (r == 1)
334 BIO_printf(out, "RSA key ok\n");
335 else if (r == 0) {
336 unsigned long err;
337
338 while ((err = ERR_peek_error()) != 0 &&
339 ERR_GET_LIB(err) == ERR_LIB_RSA &&
| 219
220 if (r == 1)
221 BIO_printf(out, "RSA key ok\n");
222 else if (r == 0) {
223 unsigned long err;
224
225 while ((err = ERR_peek_error()) != 0 &&
226 ERR_GET_LIB(err) == ERR_LIB_RSA &&
|
340 ERR_GET_FUNC(err) == RSA_F_RSA_CHECK_KEY &&
| 227 ERR_GET_FUNC(err) == RSA_F_RSA_CHECK_KEY_EX &&
|
341 ERR_GET_REASON(err) != ERR_R_MALLOC_FAILURE) {
342 BIO_printf(out, "RSA key error: %s\n",
343 ERR_reason_error_string(err));
344 ERR_get_error(); /* remove e from error stack */
345 }
| 228 ERR_GET_REASON(err) != ERR_R_MALLOC_FAILURE) {
229 BIO_printf(out, "RSA key error: %s\n",
230 ERR_reason_error_string(err));
231 ERR_get_error(); /* remove e from error stack */
232 }
|
346 }
347
348 if (r == -1 || ERR_peek_error() != 0) { /* should happen only if r ==
349 * -1 */
| 233 } else if (r == -1) {
|
350 ERR_print_errors(bio_err);
351 goto end;
352 }
353 }
354
355 if (noout) {
356 ret = 0;
357 goto end;
358 }
359 BIO_printf(bio_err, "writing RSA key\n");
360 if (outformat == FORMAT_ASN1) {
361 if (pubout || pubin) {
362 if (pubout == 2)
363 i = i2d_RSAPublicKey_bio(out, rsa);
364 else
365 i = i2d_RSA_PUBKEY_bio(out, rsa);
| 234 ERR_print_errors(bio_err);
235 goto end;
236 }
237 }
238
239 if (noout) {
240 ret = 0;
241 goto end;
242 }
243 BIO_printf(bio_err, "writing RSA key\n");
244 if (outformat == FORMAT_ASN1) {
245 if (pubout || pubin) {
246 if (pubout == 2)
247 i = i2d_RSAPublicKey_bio(out, rsa);
248 else
249 i = i2d_RSA_PUBKEY_bio(out, rsa);
|
366 } else
| 250 } else {
251 assert(private);
|
367 i = i2d_RSAPrivateKey_bio(out, rsa);
| 252 i = i2d_RSAPrivateKey_bio(out, rsa);
|
368 }
369# ifndef OPENSSL_NO_RC4
370 else if (outformat == FORMAT_NETSCAPE) {
371 unsigned char *p, *pp;
372 int size;
373
374 i = 1;
375 size = i2d_RSA_NET(rsa, NULL, NULL, sgckey);
376 if ((p = (unsigned char *)OPENSSL_malloc(size)) == NULL) {
377 BIO_printf(bio_err, "Memory allocation failure\n");
378 goto end;
| |
379 }
| 253 }
|
380 pp = p;
381 i2d_RSA_NET(rsa, &p, NULL, sgckey);
382 BIO_write(out, (char *)pp, size);
383 OPENSSL_free(pp);
| |
384 }
| 254 }
|
385# endif
| |
386 else if (outformat == FORMAT_PEM) {
387 if (pubout || pubin) {
388 if (pubout == 2)
389 i = PEM_write_bio_RSAPublicKey(out, rsa);
390 else
391 i = PEM_write_bio_RSA_PUBKEY(out, rsa);
| 255 else if (outformat == FORMAT_PEM) {
256 if (pubout || pubin) {
257 if (pubout == 2)
258 i = PEM_write_bio_RSAPublicKey(out, rsa);
259 else
260 i = PEM_write_bio_RSA_PUBKEY(out, rsa);
|
392 } else
| 261 } else {
262 assert(private);
|
393 i = PEM_write_bio_RSAPrivateKey(out, rsa,
394 enc, NULL, 0, NULL, passout);
| 263 i = PEM_write_bio_RSAPrivateKey(out, rsa,
264 enc, NULL, 0, NULL, passout);
|
395# if !defined(OPENSSL_NO_DSA) && !defined(OPENSSL_NO_RC4)
| 265 }
266# ifndef OPENSSL_NO_DSA
|
396 } else if (outformat == FORMAT_MSBLOB || outformat == FORMAT_PVK) {
397 EVP_PKEY *pk;
398 pk = EVP_PKEY_new();
399 EVP_PKEY_set1_RSA(pk, rsa);
| 267 } else if (outformat == FORMAT_MSBLOB || outformat == FORMAT_PVK) {
268 EVP_PKEY *pk;
269 pk = EVP_PKEY_new();
270 EVP_PKEY_set1_RSA(pk, rsa);
|
400 if (outformat == FORMAT_PVK)
| 271 if (outformat == FORMAT_PVK) {
272 if (pubin) {
273 BIO_printf(bio_err, "PVK form impossible with public key input\n");
274 EVP_PKEY_free(pk);
275 goto end;
276 }
277 assert(private);
278# ifdef OPENSSL_NO_RC4
279 BIO_printf(bio_err, "PVK format not supported\n");
280 EVP_PKEY_free(pk);
281 goto end;
282# else
|
401 i = i2b_PVK_bio(out, pk, pvk_encr, 0, passout);
| 283 i = i2b_PVK_bio(out, pk, pvk_encr, 0, passout);
|
402 else if (pubin || pubout)
| 284# endif
285 } else if (pubin || pubout) {
|
403 i = i2b_PublicKey_bio(out, pk);
| 286 i = i2b_PublicKey_bio(out, pk);
|
404 else
| 287 } else {
288 assert(private);
|
405 i = i2b_PrivateKey_bio(out, pk);
| 289 i = i2b_PrivateKey_bio(out, pk);
|
| 290 }
|
406 EVP_PKEY_free(pk);
407# endif
408 } else {
409 BIO_printf(bio_err, "bad output format specified for outfile\n");
410 goto end;
411 }
412 if (i <= 0) {
413 BIO_printf(bio_err, "unable to write key\n");
414 ERR_print_errors(bio_err);
415 } else
416 ret = 0;
417 end:
418 release_engine(e);
| 291 EVP_PKEY_free(pk);
292# endif
293 } else {
294 BIO_printf(bio_err, "bad output format specified for outfile\n");
295 goto end;
296 }
297 if (i <= 0) {
298 BIO_printf(bio_err, "unable to write key\n");
299 ERR_print_errors(bio_err);
300 } else
301 ret = 0;
302 end:
303 release_engine(e);
|
419 if (out != NULL)
420 BIO_free_all(out);
421 if (rsa != NULL)
422 RSA_free(rsa);
423 if (passin)
424 OPENSSL_free(passin);
425 if (passout)
426 OPENSSL_free(passout);
427 apps_shutdown();
428 OPENSSL_EXIT(ret);
| 304 BIO_free_all(out);
305 RSA_free(rsa);
306 OPENSSL_free(passin);
307 OPENSSL_free(passout);
308 return (ret);
|
429}
| 309}
|
430#else /* !OPENSSL_NO_RSA */
431
432# if PEDANTIC
433static void *dummy = &dummy;
434# endif
435
| |
436#endif
| 310#endif
|