sess_id.c revision 109998
155714Skris/* apps/sess_id.c */ 255714Skris/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 355714Skris * All rights reserved. 455714Skris * 555714Skris * This package is an SSL implementation written 655714Skris * by Eric Young (eay@cryptsoft.com). 755714Skris * The implementation was written so as to conform with Netscapes SSL. 855714Skris * 955714Skris * This library is free for commercial and non-commercial use as long as 1055714Skris * the following conditions are aheared to. The following conditions 1155714Skris * apply to all code found in this distribution, be it the RC4, RSA, 1255714Skris * lhash, DES, etc., code; not just the SSL code. The SSL documentation 1355714Skris * included with this distribution is covered by the same copyright terms 1455714Skris * except that the holder is Tim Hudson (tjh@cryptsoft.com). 1555714Skris * 1655714Skris * Copyright remains Eric Young's, and as such any Copyright notices in 1755714Skris * the code are not to be removed. 1855714Skris * If this package is used in a product, Eric Young should be given attribution 1955714Skris * as the author of the parts of the library used. 2055714Skris * This can be in the form of a textual message at program startup or 2155714Skris * in documentation (online or textual) provided with the package. 2255714Skris * 2355714Skris * Redistribution and use in source and binary forms, with or without 2455714Skris * modification, are permitted provided that the following conditions 2555714Skris * are met: 2655714Skris * 1. Redistributions of source code must retain the copyright 2755714Skris * notice, this list of conditions and the following disclaimer. 2855714Skris * 2. Redistributions in binary form must reproduce the above copyright 2955714Skris * notice, this list of conditions and the following disclaimer in the 3055714Skris * documentation and/or other materials provided with the distribution. 3155714Skris * 3. All advertising materials mentioning features or use of this software 3255714Skris * must display the following acknowledgement: 3355714Skris * "This product includes cryptographic software written by 3455714Skris * Eric Young (eay@cryptsoft.com)" 3555714Skris * The word 'cryptographic' can be left out if the rouines from the library 3655714Skris * being used are not cryptographic related :-). 3755714Skris * 4. If you include any Windows specific code (or a derivative thereof) from 3855714Skris * the apps directory (application code) you must include an acknowledgement: 3955714Skris * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 4055714Skris * 4155714Skris * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 4255714Skris * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 4355714Skris * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 4455714Skris * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 4555714Skris * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 4655714Skris * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 4755714Skris * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 4855714Skris * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 4955714Skris * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 5055714Skris * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 5155714Skris * SUCH DAMAGE. 5255714Skris * 5355714Skris * The licence and distribution terms for any publically available version or 5455714Skris * derivative of this code cannot be changed. i.e. this code cannot simply be 5555714Skris * copied and put under another distribution licence 5655714Skris * [including the GNU Public Licence.] 5755714Skris */ 5855714Skris 5955714Skris#include <stdio.h> 6055714Skris#include <stdlib.h> 6155714Skris#include <string.h> 6255714Skris#include "apps.h" 6355714Skris#include <openssl/bio.h> 6455714Skris#include <openssl/err.h> 6555714Skris#include <openssl/x509.h> 6655714Skris#include <openssl/pem.h> 6755714Skris#include <openssl/ssl.h> 6855714Skris 6955714Skris#undef PROG 7055714Skris#define PROG sess_id_main 7155714Skris 7255714Skrisstatic char *sess_id_usage[]={ 7355714Skris"usage: sess_id args\n", 7455714Skris"\n", 7559191Skris" -inform arg - input format - default PEM (DER or PEM)\n", 7655714Skris" -outform arg - output format - default PEM\n", 7755714Skris" -in arg - input file - default stdin\n", 7855714Skris" -out arg - output file - default stdout\n", 7955714Skris" -text - print ssl session id details\n", 8055714Skris" -cert - output certificate \n", 8155714Skris" -noout - no CRL output\n", 8255714Skris" -context arg - set the session ID context\n", 8355714SkrisNULL 8455714Skris}; 8555714Skris 8655714Skrisstatic SSL_SESSION *load_sess_id(char *file, int format); 8759191Skris 8859191Skrisint MAIN(int, char **); 8959191Skris 9055714Skrisint MAIN(int argc, char **argv) 9155714Skris { 9255714Skris SSL_SESSION *x=NULL; 9355714Skris int ret=1,i,num,badops=0; 9455714Skris BIO *out=NULL; 9555714Skris int informat,outformat; 9655714Skris char *infile=NULL,*outfile=NULL,*context=NULL; 9755714Skris int cert=0,noout=0,text=0; 9855714Skris char **pp; 9955714Skris 10055714Skris apps_startup(); 10155714Skris 10255714Skris if (bio_err == NULL) 10355714Skris if ((bio_err=BIO_new(BIO_s_file())) != NULL) 10455714Skris BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT); 10555714Skris 10655714Skris informat=FORMAT_PEM; 10755714Skris outformat=FORMAT_PEM; 10855714Skris 10955714Skris argc--; 11055714Skris argv++; 11155714Skris num=0; 11255714Skris while (argc >= 1) 11355714Skris { 11455714Skris if (strcmp(*argv,"-inform") == 0) 11555714Skris { 11655714Skris if (--argc < 1) goto bad; 11755714Skris informat=str2fmt(*(++argv)); 11855714Skris } 11955714Skris else if (strcmp(*argv,"-outform") == 0) 12055714Skris { 12155714Skris if (--argc < 1) goto bad; 12255714Skris outformat=str2fmt(*(++argv)); 12355714Skris } 12455714Skris else if (strcmp(*argv,"-in") == 0) 12555714Skris { 12655714Skris if (--argc < 1) goto bad; 12755714Skris infile= *(++argv); 12855714Skris } 12955714Skris else if (strcmp(*argv,"-out") == 0) 13055714Skris { 13155714Skris if (--argc < 1) goto bad; 13255714Skris outfile= *(++argv); 13355714Skris } 13455714Skris else if (strcmp(*argv,"-text") == 0) 13555714Skris text= ++num; 13655714Skris else if (strcmp(*argv,"-cert") == 0) 13755714Skris cert= ++num; 13855714Skris else if (strcmp(*argv,"-noout") == 0) 13955714Skris noout= ++num; 14055714Skris else if (strcmp(*argv,"-context") == 0) 14155714Skris { 14255714Skris if(--argc < 1) goto bad; 14355714Skris context=*++argv; 14455714Skris } 14555714Skris else 14655714Skris { 14755714Skris BIO_printf(bio_err,"unknown option %s\n",*argv); 14855714Skris badops=1; 14955714Skris break; 15055714Skris } 15155714Skris argc--; 15255714Skris argv++; 15355714Skris } 15455714Skris 15555714Skris if (badops) 15655714Skris { 15755714Skrisbad: 15855714Skris for (pp=sess_id_usage; (*pp != NULL); pp++) 159109998Smarkm BIO_printf(bio_err,"%s",*pp); 16055714Skris goto end; 16155714Skris } 16255714Skris 16355714Skris ERR_load_crypto_strings(); 16455714Skris x=load_sess_id(infile,informat); 16555714Skris if (x == NULL) { goto end; } 16655714Skris 16755714Skris if(context) 16855714Skris { 16955714Skris x->sid_ctx_length=strlen(context); 17055714Skris if(x->sid_ctx_length > SSL_MAX_SID_CTX_LENGTH) 17155714Skris { 17255714Skris BIO_printf(bio_err,"Context too long\n"); 17355714Skris goto end; 17455714Skris } 17555714Skris memcpy(x->sid_ctx,context,x->sid_ctx_length); 17655714Skris } 17755714Skris 17855714Skris#ifdef undef 17955714Skris /* just testing for memory leaks :-) */ 18055714Skris { 18155714Skris SSL_SESSION *s; 18255714Skris char buf[1024*10],*p; 18355714Skris int i; 18455714Skris 18555714Skris s=SSL_SESSION_new(); 18655714Skris 18755714Skris p= &buf; 18855714Skris i=i2d_SSL_SESSION(x,&p); 18955714Skris p= &buf; 19055714Skris d2i_SSL_SESSION(&s,&p,(long)i); 19155714Skris p= &buf; 19255714Skris d2i_SSL_SESSION(&s,&p,(long)i); 19355714Skris p= &buf; 19455714Skris d2i_SSL_SESSION(&s,&p,(long)i); 19555714Skris SSL_SESSION_free(s); 19655714Skris } 19755714Skris#endif 19855714Skris 19955714Skris if (!noout || text) 20055714Skris { 20155714Skris out=BIO_new(BIO_s_file()); 20255714Skris if (out == NULL) 20355714Skris { 20455714Skris ERR_print_errors(bio_err); 20555714Skris goto end; 20655714Skris } 20755714Skris 20855714Skris if (outfile == NULL) 20968651Skris { 21055714Skris BIO_set_fp(out,stdout,BIO_NOCLOSE); 211109998Smarkm#ifdef OPENSSL_SYS_VMS 21268651Skris { 21368651Skris BIO *tmpbio = BIO_new(BIO_f_linebuffer()); 21468651Skris out = BIO_push(tmpbio, out); 21568651Skris } 21668651Skris#endif 21768651Skris } 21855714Skris else 21955714Skris { 22055714Skris if (BIO_write_filename(out,outfile) <= 0) 22155714Skris { 22255714Skris perror(outfile); 22355714Skris goto end; 22455714Skris } 22555714Skris } 22655714Skris } 22755714Skris 22855714Skris if (text) 22955714Skris { 23055714Skris SSL_SESSION_print(out,x); 23155714Skris 23255714Skris if (cert) 23355714Skris { 23455714Skris if (x->peer == NULL) 23555714Skris BIO_puts(out,"No certificate present\n"); 23655714Skris else 23755714Skris X509_print(out,x->peer); 23855714Skris } 23955714Skris } 24055714Skris 24155714Skris if (!noout && !cert) 24255714Skris { 24355714Skris if (outformat == FORMAT_ASN1) 24455714Skris i=(int)i2d_SSL_SESSION_bio(out,x); 24555714Skris else if (outformat == FORMAT_PEM) 24655714Skris i=PEM_write_bio_SSL_SESSION(out,x); 24755714Skris else { 24855714Skris BIO_printf(bio_err,"bad output format specified for outfile\n"); 24955714Skris goto end; 25055714Skris } 25155714Skris if (!i) { 25255714Skris BIO_printf(bio_err,"unable to write SSL_SESSION\n"); 25355714Skris goto end; 25455714Skris } 25555714Skris } 25655714Skris else if (!noout && (x->peer != NULL)) /* just print the certificate */ 25755714Skris { 25855714Skris if (outformat == FORMAT_ASN1) 25955714Skris i=(int)i2d_X509_bio(out,x->peer); 26055714Skris else if (outformat == FORMAT_PEM) 26155714Skris i=PEM_write_bio_X509(out,x->peer); 26255714Skris else { 26355714Skris BIO_printf(bio_err,"bad output format specified for outfile\n"); 26455714Skris goto end; 26555714Skris } 26655714Skris if (!i) { 26755714Skris BIO_printf(bio_err,"unable to write X509\n"); 26855714Skris goto end; 26955714Skris } 27055714Skris } 27155714Skris ret=0; 27255714Skrisend: 27368651Skris if (out != NULL) BIO_free_all(out); 27455714Skris if (x != NULL) SSL_SESSION_free(x); 275109998Smarkm apps_shutdown(); 276109998Smarkm OPENSSL_EXIT(ret); 27755714Skris } 27855714Skris 27955714Skrisstatic SSL_SESSION *load_sess_id(char *infile, int format) 28055714Skris { 28155714Skris SSL_SESSION *x=NULL; 28255714Skris BIO *in=NULL; 28355714Skris 28455714Skris in=BIO_new(BIO_s_file()); 28555714Skris if (in == NULL) 28655714Skris { 28755714Skris ERR_print_errors(bio_err); 28855714Skris goto end; 28955714Skris } 29055714Skris 29155714Skris if (infile == NULL) 29255714Skris BIO_set_fp(in,stdin,BIO_NOCLOSE); 29355714Skris else 29455714Skris { 29555714Skris if (BIO_read_filename(in,infile) <= 0) 29655714Skris { 29755714Skris perror(infile); 29855714Skris goto end; 29955714Skris } 30055714Skris } 30155714Skris if (format == FORMAT_ASN1) 30255714Skris x=d2i_SSL_SESSION_bio(in,NULL); 30355714Skris else if (format == FORMAT_PEM) 30455714Skris x=PEM_read_bio_SSL_SESSION(in,NULL,NULL,NULL); 30555714Skris else { 30655714Skris BIO_printf(bio_err,"bad input format specified for input crl\n"); 30755714Skris goto end; 30855714Skris } 30955714Skris if (x == NULL) 31055714Skris { 31155714Skris BIO_printf(bio_err,"unable to load SSL_SESSION\n"); 31255714Skris ERR_print_errors(bio_err); 31355714Skris goto end; 31455714Skris } 31555714Skris 31655714Skrisend: 31755714Skris if (in != NULL) BIO_free(in); 31855714Skris return(x); 31955714Skris } 32055714Skris 321