sess_id.c revision 59191
155714Skris/* apps/sess_id.c */ 255714Skris/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 355714Skris * All rights reserved. 455714Skris * 555714Skris * This package is an SSL implementation written 655714Skris * by Eric Young (eay@cryptsoft.com). 755714Skris * The implementation was written so as to conform with Netscapes SSL. 855714Skris * 955714Skris * This library is free for commercial and non-commercial use as long as 1055714Skris * the following conditions are aheared to. The following conditions 1155714Skris * apply to all code found in this distribution, be it the RC4, RSA, 1255714Skris * lhash, DES, etc., code; not just the SSL code. The SSL documentation 1355714Skris * included with this distribution is covered by the same copyright terms 1455714Skris * except that the holder is Tim Hudson (tjh@cryptsoft.com). 1555714Skris * 1655714Skris * Copyright remains Eric Young's, and as such any Copyright notices in 1755714Skris * the code are not to be removed. 1855714Skris * If this package is used in a product, Eric Young should be given attribution 1955714Skris * as the author of the parts of the library used. 2055714Skris * This can be in the form of a textual message at program startup or 2155714Skris * in documentation (online or textual) provided with the package. 2255714Skris * 2355714Skris * Redistribution and use in source and binary forms, with or without 2455714Skris * modification, are permitted provided that the following conditions 2555714Skris * are met: 2655714Skris * 1. Redistributions of source code must retain the copyright 2755714Skris * notice, this list of conditions and the following disclaimer. 2855714Skris * 2. Redistributions in binary form must reproduce the above copyright 2955714Skris * notice, this list of conditions and the following disclaimer in the 3055714Skris * documentation and/or other materials provided with the distribution. 3155714Skris * 3. All advertising materials mentioning features or use of this software 3255714Skris * must display the following acknowledgement: 3355714Skris * "This product includes cryptographic software written by 3455714Skris * Eric Young (eay@cryptsoft.com)" 3555714Skris * The word 'cryptographic' can be left out if the rouines from the library 3655714Skris * being used are not cryptographic related :-). 3755714Skris * 4. If you include any Windows specific code (or a derivative thereof) from 3855714Skris * the apps directory (application code) you must include an acknowledgement: 3955714Skris * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 4055714Skris * 4155714Skris * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 4255714Skris * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 4355714Skris * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 4455714Skris * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 4555714Skris * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 4655714Skris * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 4755714Skris * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 4855714Skris * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 4955714Skris * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 5055714Skris * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 5155714Skris * SUCH DAMAGE. 5255714Skris * 5355714Skris * The licence and distribution terms for any publically available version or 5455714Skris * derivative of this code cannot be changed. i.e. this code cannot simply be 5555714Skris * copied and put under another distribution licence 5655714Skris * [including the GNU Public Licence.] 5755714Skris */ 5855714Skris 5955714Skris#include <stdio.h> 6055714Skris#include <stdlib.h> 6155714Skris#include <string.h> 6255714Skris#include "apps.h" 6355714Skris#include <openssl/bio.h> 6455714Skris#include <openssl/err.h> 6555714Skris#include <openssl/x509.h> 6655714Skris#include <openssl/pem.h> 6755714Skris#include <openssl/ssl.h> 6855714Skris 6955714Skris#undef PROG 7055714Skris#define PROG sess_id_main 7155714Skris 7255714Skrisstatic char *sess_id_usage[]={ 7355714Skris"usage: sess_id args\n", 7455714Skris"\n", 7559191Skris" -inform arg - input format - default PEM (DER or PEM)\n", 7655714Skris" -outform arg - output format - default PEM\n", 7755714Skris" -in arg - input file - default stdin\n", 7855714Skris" -out arg - output file - default stdout\n", 7955714Skris" -text - print ssl session id details\n", 8055714Skris" -cert - output certificate \n", 8155714Skris" -noout - no CRL output\n", 8255714Skris" -context arg - set the session ID context\n", 8355714SkrisNULL 8455714Skris}; 8555714Skris 8655714Skrisstatic SSL_SESSION *load_sess_id(char *file, int format); 8759191Skris 8859191Skrisint MAIN(int, char **); 8959191Skris 9055714Skrisint MAIN(int argc, char **argv) 9155714Skris { 9255714Skris SSL_SESSION *x=NULL; 9355714Skris int ret=1,i,num,badops=0; 9455714Skris BIO *out=NULL; 9555714Skris int informat,outformat; 9655714Skris char *infile=NULL,*outfile=NULL,*context=NULL; 9755714Skris int cert=0,noout=0,text=0; 9855714Skris char **pp; 9955714Skris 10055714Skris apps_startup(); 10155714Skris 10255714Skris if (bio_err == NULL) 10355714Skris if ((bio_err=BIO_new(BIO_s_file())) != NULL) 10455714Skris BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT); 10555714Skris 10655714Skris informat=FORMAT_PEM; 10755714Skris outformat=FORMAT_PEM; 10855714Skris 10955714Skris argc--; 11055714Skris argv++; 11155714Skris num=0; 11255714Skris while (argc >= 1) 11355714Skris { 11455714Skris if (strcmp(*argv,"-inform") == 0) 11555714Skris { 11655714Skris if (--argc < 1) goto bad; 11755714Skris informat=str2fmt(*(++argv)); 11855714Skris } 11955714Skris else if (strcmp(*argv,"-outform") == 0) 12055714Skris { 12155714Skris if (--argc < 1) goto bad; 12255714Skris outformat=str2fmt(*(++argv)); 12355714Skris } 12455714Skris else if (strcmp(*argv,"-in") == 0) 12555714Skris { 12655714Skris if (--argc < 1) goto bad; 12755714Skris infile= *(++argv); 12855714Skris } 12955714Skris else if (strcmp(*argv,"-out") == 0) 13055714Skris { 13155714Skris if (--argc < 1) goto bad; 13255714Skris outfile= *(++argv); 13355714Skris } 13455714Skris else if (strcmp(*argv,"-text") == 0) 13555714Skris text= ++num; 13655714Skris else if (strcmp(*argv,"-cert") == 0) 13755714Skris cert= ++num; 13855714Skris else if (strcmp(*argv,"-noout") == 0) 13955714Skris noout= ++num; 14055714Skris else if (strcmp(*argv,"-context") == 0) 14155714Skris { 14255714Skris if(--argc < 1) goto bad; 14355714Skris context=*++argv; 14455714Skris } 14555714Skris else 14655714Skris { 14755714Skris BIO_printf(bio_err,"unknown option %s\n",*argv); 14855714Skris badops=1; 14955714Skris break; 15055714Skris } 15155714Skris argc--; 15255714Skris argv++; 15355714Skris } 15455714Skris 15555714Skris if (badops) 15655714Skris { 15755714Skrisbad: 15855714Skris for (pp=sess_id_usage; (*pp != NULL); pp++) 15955714Skris BIO_printf(bio_err,*pp); 16055714Skris goto end; 16155714Skris } 16255714Skris 16355714Skris ERR_load_crypto_strings(); 16455714Skris x=load_sess_id(infile,informat); 16555714Skris if (x == NULL) { goto end; } 16655714Skris 16755714Skris if(context) 16855714Skris { 16955714Skris x->sid_ctx_length=strlen(context); 17055714Skris if(x->sid_ctx_length > SSL_MAX_SID_CTX_LENGTH) 17155714Skris { 17255714Skris BIO_printf(bio_err,"Context too long\n"); 17355714Skris goto end; 17455714Skris } 17555714Skris memcpy(x->sid_ctx,context,x->sid_ctx_length); 17655714Skris } 17755714Skris 17855714Skris#ifdef undef 17955714Skris /* just testing for memory leaks :-) */ 18055714Skris { 18155714Skris SSL_SESSION *s; 18255714Skris char buf[1024*10],*p; 18355714Skris int i; 18455714Skris 18555714Skris s=SSL_SESSION_new(); 18655714Skris 18755714Skris p= &buf; 18855714Skris i=i2d_SSL_SESSION(x,&p); 18955714Skris p= &buf; 19055714Skris d2i_SSL_SESSION(&s,&p,(long)i); 19155714Skris p= &buf; 19255714Skris d2i_SSL_SESSION(&s,&p,(long)i); 19355714Skris p= &buf; 19455714Skris d2i_SSL_SESSION(&s,&p,(long)i); 19555714Skris SSL_SESSION_free(s); 19655714Skris } 19755714Skris#endif 19855714Skris 19955714Skris if (!noout || text) 20055714Skris { 20155714Skris out=BIO_new(BIO_s_file()); 20255714Skris if (out == NULL) 20355714Skris { 20455714Skris ERR_print_errors(bio_err); 20555714Skris goto end; 20655714Skris } 20755714Skris 20855714Skris if (outfile == NULL) 20955714Skris BIO_set_fp(out,stdout,BIO_NOCLOSE); 21055714Skris else 21155714Skris { 21255714Skris if (BIO_write_filename(out,outfile) <= 0) 21355714Skris { 21455714Skris perror(outfile); 21555714Skris goto end; 21655714Skris } 21755714Skris } 21855714Skris } 21955714Skris 22055714Skris if (text) 22155714Skris { 22255714Skris SSL_SESSION_print(out,x); 22355714Skris 22455714Skris if (cert) 22555714Skris { 22655714Skris if (x->peer == NULL) 22755714Skris BIO_puts(out,"No certificate present\n"); 22855714Skris else 22955714Skris X509_print(out,x->peer); 23055714Skris } 23155714Skris } 23255714Skris 23355714Skris if (!noout && !cert) 23455714Skris { 23555714Skris if (outformat == FORMAT_ASN1) 23655714Skris i=(int)i2d_SSL_SESSION_bio(out,x); 23755714Skris else if (outformat == FORMAT_PEM) 23855714Skris i=PEM_write_bio_SSL_SESSION(out,x); 23955714Skris else { 24055714Skris BIO_printf(bio_err,"bad output format specified for outfile\n"); 24155714Skris goto end; 24255714Skris } 24355714Skris if (!i) { 24455714Skris BIO_printf(bio_err,"unable to write SSL_SESSION\n"); 24555714Skris goto end; 24655714Skris } 24755714Skris } 24855714Skris else if (!noout && (x->peer != NULL)) /* just print the certificate */ 24955714Skris { 25055714Skris if (outformat == FORMAT_ASN1) 25155714Skris i=(int)i2d_X509_bio(out,x->peer); 25255714Skris else if (outformat == FORMAT_PEM) 25355714Skris i=PEM_write_bio_X509(out,x->peer); 25455714Skris else { 25555714Skris BIO_printf(bio_err,"bad output format specified for outfile\n"); 25655714Skris goto end; 25755714Skris } 25855714Skris if (!i) { 25955714Skris BIO_printf(bio_err,"unable to write X509\n"); 26055714Skris goto end; 26155714Skris } 26255714Skris } 26355714Skris ret=0; 26455714Skrisend: 26555714Skris if (out != NULL) BIO_free(out); 26655714Skris if (x != NULL) SSL_SESSION_free(x); 26755714Skris EXIT(ret); 26855714Skris } 26955714Skris 27055714Skrisstatic SSL_SESSION *load_sess_id(char *infile, int format) 27155714Skris { 27255714Skris SSL_SESSION *x=NULL; 27355714Skris BIO *in=NULL; 27455714Skris 27555714Skris in=BIO_new(BIO_s_file()); 27655714Skris if (in == NULL) 27755714Skris { 27855714Skris ERR_print_errors(bio_err); 27955714Skris goto end; 28055714Skris } 28155714Skris 28255714Skris if (infile == NULL) 28355714Skris BIO_set_fp(in,stdin,BIO_NOCLOSE); 28455714Skris else 28555714Skris { 28655714Skris if (BIO_read_filename(in,infile) <= 0) 28755714Skris { 28855714Skris perror(infile); 28955714Skris goto end; 29055714Skris } 29155714Skris } 29255714Skris if (format == FORMAT_ASN1) 29355714Skris x=d2i_SSL_SESSION_bio(in,NULL); 29455714Skris else if (format == FORMAT_PEM) 29555714Skris x=PEM_read_bio_SSL_SESSION(in,NULL,NULL,NULL); 29655714Skris else { 29755714Skris BIO_printf(bio_err,"bad input format specified for input crl\n"); 29855714Skris goto end; 29955714Skris } 30055714Skris if (x == NULL) 30155714Skris { 30255714Skris BIO_printf(bio_err,"unable to load SSL_SESSION\n"); 30355714Skris ERR_print_errors(bio_err); 30455714Skris goto end; 30555714Skris } 30655714Skris 30755714Skrisend: 30855714Skris if (in != NULL) BIO_free(in); 30955714Skris return(x); 31055714Skris } 31155714Skris 312