1/* apps/openssl.c */
2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 * All rights reserved.
4 *
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
8 *
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to.  The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15 *
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
22 *
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
25 * are met:
26 * 1. Redistributions of source code must retain the copyright
27 *    notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 *    notice, this list of conditions and the following disclaimer in the
30 *    documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 *    must display the following acknowledgement:
33 *    "This product includes cryptographic software written by
34 *     Eric Young (eay@cryptsoft.com)"
35 *    The word 'cryptographic' can be left out if the rouines from the library
36 *    being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 *    the apps directory (application code) you must include an acknowledgement:
39 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40 *
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51 * SUCH DAMAGE.
52 *
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed.  i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
57 */
58/* ====================================================================
59 * Copyright (c) 1998-2006 The OpenSSL Project.  All rights reserved.
60 *
61 * Redistribution and use in source and binary forms, with or without
62 * modification, are permitted provided that the following conditions
63 * are met:
64 *
65 * 1. Redistributions of source code must retain the above copyright
66 *    notice, this list of conditions and the following disclaimer.
67 *
68 * 2. Redistributions in binary form must reproduce the above copyright
69 *    notice, this list of conditions and the following disclaimer in
70 *    the documentation and/or other materials provided with the
71 *    distribution.
72 *
73 * 3. All advertising materials mentioning features or use of this
74 *    software must display the following acknowledgment:
75 *    "This product includes software developed by the OpenSSL Project
76 *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
77 *
78 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
79 *    endorse or promote products derived from this software without
80 *    prior written permission. For written permission, please contact
81 *    openssl-core@openssl.org.
82 *
83 * 5. Products derived from this software may not be called "OpenSSL"
84 *    nor may "OpenSSL" appear in their names without prior written
85 *    permission of the OpenSSL Project.
86 *
87 * 6. Redistributions of any form whatsoever must retain the following
88 *    acknowledgment:
89 *    "This product includes software developed by the OpenSSL Project
90 *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
91 *
92 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
93 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
94 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
95 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
96 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
97 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
98 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
99 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
100 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
101 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
102 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
103 * OF THE POSSIBILITY OF SUCH DAMAGE.
104 * ====================================================================
105 *
106 * This product includes cryptographic software written by Eric Young
107 * (eay@cryptsoft.com).  This product includes software written by Tim
108 * Hudson (tjh@cryptsoft.com).
109 *
110 */
111
112
113#include <stdio.h>
114#include <string.h>
115#include <stdlib.h>
116#define OPENSSL_C /* tells apps.h to use complete apps_startup() */
117#include "apps.h"
118#include <openssl/bio.h>
119#include <openssl/crypto.h>
120#include <openssl/lhash.h>
121#include <openssl/conf.h>
122#include <openssl/x509.h>
123#include <openssl/pem.h>
124#include <openssl/ssl.h>
125#ifndef OPENSSL_NO_ENGINE
126#include <openssl/engine.h>
127#endif
128#define USE_SOCKETS /* needed for the _O_BINARY defs in the MS world */
129#include "progs.h"
130#include "s_apps.h"
131#include <openssl/err.h>
132
133/* The LHASH callbacks ("hash" & "cmp") have been replaced by functions with the
134 * base prototypes (we cast each variable inside the function to the required
135 * type of "FUNCTION*"). This removes the necessity for macro-generated wrapper
136 * functions. */
137
138static LHASH_OF(FUNCTION) *prog_init(void );
139static int do_cmd(LHASH_OF(FUNCTION) *prog,int argc,char *argv[]);
140static void list_pkey(BIO *out);
141static void list_cipher(BIO *out);
142static void list_md(BIO *out);
143char *default_config_file=NULL;
144
145/* Make sure there is only one when MONOLITH is defined */
146#ifdef MONOLITH
147CONF *config=NULL;
148BIO *bio_err=NULL;
149#endif
150
151
152static void lock_dbg_cb(int mode, int type, const char *file, int line)
153	{
154	static int modes[CRYPTO_NUM_LOCKS]; /* = {0, 0, ... } */
155	const char *errstr = NULL;
156	int rw;
157
158	rw = mode & (CRYPTO_READ|CRYPTO_WRITE);
159	if (!((rw == CRYPTO_READ) || (rw == CRYPTO_WRITE)))
160		{
161		errstr = "invalid mode";
162		goto err;
163		}
164
165	if (type < 0 || type >= CRYPTO_NUM_LOCKS)
166		{
167		errstr = "type out of bounds";
168		goto err;
169		}
170
171	if (mode & CRYPTO_LOCK)
172		{
173		if (modes[type])
174			{
175			errstr = "already locked";
176			/* must not happen in a single-threaded program
177			 * (would deadlock) */
178			goto err;
179			}
180
181		modes[type] = rw;
182		}
183	else if (mode & CRYPTO_UNLOCK)
184		{
185		if (!modes[type])
186			{
187			errstr = "not locked";
188			goto err;
189			}
190
191		if (modes[type] != rw)
192			{
193			errstr = (rw == CRYPTO_READ) ?
194				"CRYPTO_r_unlock on write lock" :
195				"CRYPTO_w_unlock on read lock";
196			}
197
198		modes[type] = 0;
199		}
200	else
201		{
202		errstr = "invalid mode";
203		goto err;
204		}
205
206 err:
207	if (errstr)
208		{
209		/* we cannot use bio_err here */
210		fprintf(stderr, "openssl (lock_dbg_cb): %s (mode=%d, type=%d) at %s:%d\n",
211			errstr, mode, type, file, line);
212		}
213	}
214
215
216int main(int Argc, char *Argv[])
217	{
218	ARGS arg;
219#define PROG_NAME_SIZE	39
220	char pname[PROG_NAME_SIZE+1];
221	FUNCTION f,*fp;
222	MS_STATIC const char *prompt;
223	MS_STATIC char buf[1024];
224	char *to_free=NULL;
225	int n,i,ret=0;
226	int argc;
227	char **argv,*p;
228	LHASH_OF(FUNCTION) *prog=NULL;
229	long errline;
230
231	arg.data=NULL;
232	arg.count=0;
233
234	if (bio_err == NULL)
235		if ((bio_err=BIO_new(BIO_s_file())) != NULL)
236			BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT);
237
238	if (getenv("OPENSSL_DEBUG_MEMORY") != NULL) /* if not defined, use compiled-in library defaults */
239		{
240		if (!(0 == strcmp(getenv("OPENSSL_DEBUG_MEMORY"), "off")))
241			{
242			CRYPTO_malloc_debug_init();
243			CRYPTO_set_mem_debug_options(V_CRYPTO_MDEBUG_ALL);
244			}
245		else
246			{
247			/* OPENSSL_DEBUG_MEMORY=off */
248			CRYPTO_set_mem_debug_functions(0, 0, 0, 0, 0);
249			}
250		}
251	CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON);
252
253#if 0
254	if (getenv("OPENSSL_DEBUG_LOCKING") != NULL)
255#endif
256		{
257		CRYPTO_set_locking_callback(lock_dbg_cb);
258		}
259
260	apps_startup();
261
262	/* Lets load up our environment a little */
263	p=getenv("OPENSSL_CONF");
264	if (p == NULL)
265		p=getenv("SSLEAY_CONF");
266	if (p == NULL)
267		p=to_free=make_config_name();
268
269	default_config_file=p;
270
271	config=NCONF_new(NULL);
272	i=NCONF_load(config,p,&errline);
273	if (i == 0)
274		{
275		if (ERR_GET_REASON(ERR_peek_last_error())
276		    == CONF_R_NO_SUCH_FILE)
277			{
278			BIO_printf(bio_err,
279				   "WARNING: can't open config file: %s\n",p);
280			ERR_clear_error();
281			NCONF_free(config);
282			config = NULL;
283			}
284		else
285			{
286			ERR_print_errors(bio_err);
287			NCONF_free(config);
288			exit(1);
289			}
290		}
291
292	prog=prog_init();
293
294	/* first check the program name */
295	program_name(Argv[0],pname,sizeof pname);
296
297	f.name=pname;
298	fp=lh_FUNCTION_retrieve(prog,&f);
299	if (fp != NULL)
300		{
301		Argv[0]=pname;
302		ret=fp->func(Argc,Argv);
303		goto end;
304		}
305
306	/* ok, now check that there are not arguments, if there are,
307	 * run with them, shifting the ssleay off the front */
308	if (Argc != 1)
309		{
310		Argc--;
311		Argv++;
312		ret=do_cmd(prog,Argc,Argv);
313		if (ret < 0) ret=0;
314		goto end;
315		}
316
317	/* ok, lets enter the old 'OpenSSL>' mode */
318
319	for (;;)
320		{
321		ret=0;
322		p=buf;
323		n=sizeof buf;
324		i=0;
325		for (;;)
326			{
327			p[0]='\0';
328			if (i++)
329				prompt=">";
330			else	prompt="OpenSSL> ";
331			fputs(prompt,stdout);
332			fflush(stdout);
333			if (!fgets(p,n,stdin))
334				goto end;
335			if (p[0] == '\0') goto end;
336			i=strlen(p);
337			if (i <= 1) break;
338			if (p[i-2] != '\\') break;
339			i-=2;
340			p+=i;
341			n-=i;
342			}
343		if (!chopup_args(&arg,buf,&argc,&argv)) break;
344
345		ret=do_cmd(prog,argc,argv);
346		if (ret < 0)
347			{
348			ret=0;
349			goto end;
350			}
351		if (ret != 0)
352			BIO_printf(bio_err,"error in %s\n",argv[0]);
353		(void)BIO_flush(bio_err);
354		}
355	BIO_printf(bio_err,"bad exit\n");
356	ret=1;
357end:
358	if (to_free)
359		OPENSSL_free(to_free);
360	if (config != NULL)
361		{
362		NCONF_free(config);
363		config=NULL;
364		}
365	if (prog != NULL) lh_FUNCTION_free(prog);
366	if (arg.data != NULL) OPENSSL_free(arg.data);
367
368	apps_shutdown();
369
370	CRYPTO_mem_leaks(bio_err);
371	if (bio_err != NULL)
372		{
373		BIO_free(bio_err);
374		bio_err=NULL;
375		}
376	OPENSSL_EXIT(ret);
377	}
378
379#define LIST_STANDARD_COMMANDS "list-standard-commands"
380#define LIST_MESSAGE_DIGEST_COMMANDS "list-message-digest-commands"
381#define LIST_MESSAGE_DIGEST_ALGORITHMS "list-message-digest-algorithms"
382#define LIST_CIPHER_COMMANDS "list-cipher-commands"
383#define LIST_CIPHER_ALGORITHMS "list-cipher-algorithms"
384#define LIST_PUBLIC_KEY_ALGORITHMS "list-public-key-algorithms"
385
386
387static int do_cmd(LHASH_OF(FUNCTION) *prog, int argc, char *argv[])
388	{
389	FUNCTION f,*fp;
390	int i,ret=1,tp,nl;
391
392	if ((argc <= 0) || (argv[0] == NULL))
393		{ ret=0; goto end; }
394	f.name=argv[0];
395	fp=lh_FUNCTION_retrieve(prog,&f);
396	if (fp == NULL)
397		{
398		if (EVP_get_digestbyname(argv[0]))
399			{
400			f.type = FUNC_TYPE_MD;
401			f.func = dgst_main;
402			fp = &f;
403			}
404		else if (EVP_get_cipherbyname(argv[0]))
405			{
406			f.type = FUNC_TYPE_CIPHER;
407			f.func = enc_main;
408			fp = &f;
409			}
410		}
411	if (fp != NULL)
412		{
413		ret=fp->func(argc,argv);
414		}
415	else if ((strncmp(argv[0],"no-",3)) == 0)
416		{
417		BIO *bio_stdout = BIO_new_fp(stdout,BIO_NOCLOSE);
418#ifdef OPENSSL_SYS_VMS
419		{
420		BIO *tmpbio = BIO_new(BIO_f_linebuffer());
421		bio_stdout = BIO_push(tmpbio, bio_stdout);
422		}
423#endif
424		f.name=argv[0]+3;
425		ret = (lh_FUNCTION_retrieve(prog,&f) != NULL);
426		if (!ret)
427			BIO_printf(bio_stdout, "%s\n", argv[0]);
428		else
429			BIO_printf(bio_stdout, "%s\n", argv[0]+3);
430		BIO_free_all(bio_stdout);
431		goto end;
432		}
433	else if ((strcmp(argv[0],"quit") == 0) ||
434		(strcmp(argv[0],"q") == 0) ||
435		(strcmp(argv[0],"exit") == 0) ||
436		(strcmp(argv[0],"bye") == 0))
437		{
438		ret= -1;
439		goto end;
440		}
441	else if ((strcmp(argv[0],LIST_STANDARD_COMMANDS) == 0) ||
442		(strcmp(argv[0],LIST_MESSAGE_DIGEST_COMMANDS) == 0) ||
443		(strcmp(argv[0],LIST_MESSAGE_DIGEST_ALGORITHMS) == 0) ||
444		(strcmp(argv[0],LIST_CIPHER_COMMANDS) == 0) ||
445		(strcmp(argv[0],LIST_CIPHER_ALGORITHMS) == 0) ||
446		(strcmp(argv[0],LIST_PUBLIC_KEY_ALGORITHMS) == 0))
447		{
448		int list_type;
449		BIO *bio_stdout;
450
451		if (strcmp(argv[0],LIST_STANDARD_COMMANDS) == 0)
452			list_type = FUNC_TYPE_GENERAL;
453		else if (strcmp(argv[0],LIST_MESSAGE_DIGEST_COMMANDS) == 0)
454			list_type = FUNC_TYPE_MD;
455		else if (strcmp(argv[0],LIST_MESSAGE_DIGEST_ALGORITHMS) == 0)
456			list_type = FUNC_TYPE_MD_ALG;
457		else if (strcmp(argv[0],LIST_PUBLIC_KEY_ALGORITHMS) == 0)
458			list_type = FUNC_TYPE_PKEY;
459		else if (strcmp(argv[0],LIST_CIPHER_ALGORITHMS) == 0)
460			list_type = FUNC_TYPE_CIPHER_ALG;
461		else /* strcmp(argv[0],LIST_CIPHER_COMMANDS) == 0 */
462			list_type = FUNC_TYPE_CIPHER;
463		bio_stdout = BIO_new_fp(stdout,BIO_NOCLOSE);
464#ifdef OPENSSL_SYS_VMS
465		{
466		BIO *tmpbio = BIO_new(BIO_f_linebuffer());
467		bio_stdout = BIO_push(tmpbio, bio_stdout);
468		}
469#endif
470
471		if (!load_config(bio_err, NULL))
472			goto end;
473
474		if (list_type == FUNC_TYPE_PKEY)
475			list_pkey(bio_stdout);
476		if (list_type == FUNC_TYPE_MD_ALG)
477			list_md(bio_stdout);
478		if (list_type == FUNC_TYPE_CIPHER_ALG)
479			list_cipher(bio_stdout);
480		else
481			{
482			for (fp=functions; fp->name != NULL; fp++)
483				if (fp->type == list_type)
484					BIO_printf(bio_stdout, "%s\n",
485								fp->name);
486			}
487		BIO_free_all(bio_stdout);
488		ret=0;
489		goto end;
490		}
491	else
492		{
493		BIO_printf(bio_err,"openssl:Error: '%s' is an invalid command.\n",
494			argv[0]);
495		BIO_printf(bio_err, "\nStandard commands");
496		i=0;
497		tp=0;
498		for (fp=functions; fp->name != NULL; fp++)
499			{
500			nl=0;
501#ifdef OPENSSL_NO_CAMELLIA
502			if (((i++) % 5) == 0)
503#else
504			if (((i++) % 4) == 0)
505#endif
506				{
507				BIO_printf(bio_err,"\n");
508				nl=1;
509				}
510			if (fp->type != tp)
511				{
512				tp=fp->type;
513				if (!nl) BIO_printf(bio_err,"\n");
514				if (tp == FUNC_TYPE_MD)
515					{
516					i=1;
517					BIO_printf(bio_err,
518						"\nMessage Digest commands (see the `dgst' command for more details)\n");
519					}
520				else if (tp == FUNC_TYPE_CIPHER)
521					{
522					i=1;
523					BIO_printf(bio_err,"\nCipher commands (see the `enc' command for more details)\n");
524					}
525				}
526#ifdef OPENSSL_NO_CAMELLIA
527			BIO_printf(bio_err,"%-15s",fp->name);
528#else
529			BIO_printf(bio_err,"%-18s",fp->name);
530#endif
531			}
532		BIO_printf(bio_err,"\n\n");
533		ret=0;
534		}
535end:
536	return(ret);
537	}
538
539static int SortFnByName(const void *_f1,const void *_f2)
540    {
541    const FUNCTION *f1=_f1;
542    const FUNCTION *f2=_f2;
543
544    if(f1->type != f2->type)
545	return f1->type-f2->type;
546    return strcmp(f1->name,f2->name);
547    }
548
549static void list_pkey(BIO *out)
550	{
551	int i;
552	for (i = 0; i < EVP_PKEY_asn1_get_count(); i++)
553		{
554		const EVP_PKEY_ASN1_METHOD *ameth;
555		int pkey_id, pkey_base_id, pkey_flags;
556		const char *pinfo, *pem_str;
557		ameth = EVP_PKEY_asn1_get0(i);
558		EVP_PKEY_asn1_get0_info(&pkey_id, &pkey_base_id, &pkey_flags,
559						&pinfo, &pem_str, ameth);
560		if (pkey_flags & ASN1_PKEY_ALIAS)
561			{
562			BIO_printf(out, "Name: %s\n",
563					OBJ_nid2ln(pkey_id));
564			BIO_printf(out, "\tType: Alias to %s\n",
565					OBJ_nid2ln(pkey_base_id));
566			}
567		else
568			{
569			BIO_printf(out, "Name: %s\n", pinfo);
570			BIO_printf(out, "\tType: %s Algorithm\n",
571				pkey_flags & ASN1_PKEY_DYNAMIC ?
572					"External" : "Builtin");
573			BIO_printf(out, "\tOID: %s\n", OBJ_nid2ln(pkey_id));
574			if (pem_str == NULL)
575				pem_str = "(none)";
576			BIO_printf(out, "\tPEM string: %s\n", pem_str);
577			}
578
579		}
580	}
581
582static void list_cipher_fn(const EVP_CIPHER *c,
583			const char *from, const char *to, void *arg)
584	{
585	if (c)
586		BIO_printf(arg, "%s\n", EVP_CIPHER_name(c));
587	else
588		{
589		if (!from)
590			from = "<undefined>";
591		if (!to)
592			to = "<undefined>";
593		BIO_printf(arg, "%s => %s\n", from, to);
594		}
595	}
596
597static void list_cipher(BIO *out)
598	{
599	EVP_CIPHER_do_all_sorted(list_cipher_fn, out);
600	}
601
602static void list_md_fn(const EVP_MD *m,
603			const char *from, const char *to, void *arg)
604	{
605	if (m)
606		BIO_printf(arg, "%s\n", EVP_MD_name(m));
607	else
608		{
609		if (!from)
610			from = "<undefined>";
611		if (!to)
612			to = "<undefined>";
613		BIO_printf(arg, "%s => %s\n", from, to);
614		}
615	}
616
617static void list_md(BIO *out)
618	{
619	EVP_MD_do_all_sorted(list_md_fn, out);
620	}
621
622static int MS_CALLBACK function_cmp(const FUNCTION *a, const FUNCTION *b)
623	{
624	return strncmp(a->name,b->name,8);
625	}
626static IMPLEMENT_LHASH_COMP_FN(function, FUNCTION)
627
628static unsigned long MS_CALLBACK function_hash(const FUNCTION *a)
629	{
630	return lh_strhash(a->name);
631	}
632static IMPLEMENT_LHASH_HASH_FN(function, FUNCTION)
633
634static LHASH_OF(FUNCTION) *prog_init(void)
635	{
636	LHASH_OF(FUNCTION) *ret;
637	FUNCTION *f;
638	size_t i;
639
640	/* Purely so it looks nice when the user hits ? */
641	for(i=0,f=functions ; f->name != NULL ; ++f,++i)
642	    ;
643	qsort(functions,i,sizeof *functions,SortFnByName);
644
645	if ((ret=lh_FUNCTION_new()) == NULL)
646		return(NULL);
647
648	for (f=functions; f->name != NULL; f++)
649		(void)lh_FUNCTION_insert(ret,f);
650	return(ret);
651	}
652
653