sess_id.c 8.1 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320
  1. /* apps/sess_id.c */
  2. /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
  3. * All rights reserved.
  4. *
  5. * This package is an SSL implementation written
  6. * by Eric Young (eay@cryptsoft.com).
  7. * The implementation was written so as to conform with Netscapes SSL.
  8. *
  9. * This library is free for commercial and non-commercial use as long as
  10. * the following conditions are aheared to. The following conditions
  11. * apply to all code found in this distribution, be it the RC4, RSA,
  12. * lhash, DES, etc., code; not just the SSL code. The SSL documentation
  13. * included with this distribution is covered by the same copyright terms
  14. * except that the holder is Tim Hudson (tjh@cryptsoft.com).
  15. *
  16. * Copyright remains Eric Young's, and as such any Copyright notices in
  17. * the code are not to be removed.
  18. * If this package is used in a product, Eric Young should be given attribution
  19. * as the author of the parts of the library used.
  20. * This can be in the form of a textual message at program startup or
  21. * in documentation (online or textual) provided with the package.
  22. *
  23. * Redistribution and use in source and binary forms, with or without
  24. * modification, are permitted provided that the following conditions
  25. * are met:
  26. * 1. Redistributions of source code must retain the copyright
  27. * notice, this list of conditions and the following disclaimer.
  28. * 2. Redistributions in binary form must reproduce the above copyright
  29. * notice, this list of conditions and the following disclaimer in the
  30. * documentation and/or other materials provided with the distribution.
  31. * 3. All advertising materials mentioning features or use of this software
  32. * must display the following acknowledgement:
  33. * "This product includes cryptographic software written by
  34. * Eric Young (eay@cryptsoft.com)"
  35. * The word 'cryptographic' can be left out if the rouines from the library
  36. * being used are not cryptographic related :-).
  37. * 4. If you include any Windows specific code (or a derivative thereof) from
  38. * the apps directory (application code) you must include an acknowledgement:
  39. * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
  40. *
  41. * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
  42. * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  43. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  44. * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  45. * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  46. * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  47. * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  48. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  49. * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  50. * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  51. * SUCH DAMAGE.
  52. *
  53. * The licence and distribution terms for any publically available version or
  54. * derivative of this code cannot be changed. i.e. this code cannot simply be
  55. * copied and put under another distribution licence
  56. * [including the GNU Public Licence.]
  57. */
  58. #include <stdio.h>
  59. #include <stdlib.h>
  60. #include <string.h>
  61. #include "apps.h"
  62. #include <openssl/bio.h>
  63. #include <openssl/err.h>
  64. #include <openssl/x509.h>
  65. #include <openssl/pem.h>
  66. #include <openssl/ssl.h>
  67. #undef PROG
  68. #define PROG sess_id_main
  69. static const char *sess_id_usage[]={
  70. "usage: sess_id args\n",
  71. "\n",
  72. " -inform arg - input format - default PEM (DER or PEM)\n",
  73. " -outform arg - output format - default PEM\n",
  74. " -in arg - input file - default stdin\n",
  75. " -out arg - output file - default stdout\n",
  76. " -text - print ssl session id details\n",
  77. " -cert - output certificate \n",
  78. " -noout - no CRL output\n",
  79. " -context arg - set the session ID context\n",
  80. NULL
  81. };
  82. static SSL_SESSION *load_sess_id(char *file, int format);
  83. int MAIN(int, char **);
  84. int MAIN(int argc, char **argv)
  85. {
  86. SSL_SESSION *x=NULL;
  87. int ret=1,i,num,badops=0;
  88. BIO *out=NULL;
  89. int informat,outformat;
  90. char *infile=NULL,*outfile=NULL,*context=NULL;
  91. int cert=0,noout=0,text=0;
  92. const char **pp;
  93. apps_startup();
  94. if (bio_err == NULL)
  95. if ((bio_err=BIO_new(BIO_s_file())) != NULL)
  96. BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT);
  97. informat=FORMAT_PEM;
  98. outformat=FORMAT_PEM;
  99. argc--;
  100. argv++;
  101. num=0;
  102. while (argc >= 1)
  103. {
  104. if (strcmp(*argv,"-inform") == 0)
  105. {
  106. if (--argc < 1) goto bad;
  107. informat=str2fmt(*(++argv));
  108. }
  109. else if (strcmp(*argv,"-outform") == 0)
  110. {
  111. if (--argc < 1) goto bad;
  112. outformat=str2fmt(*(++argv));
  113. }
  114. else if (strcmp(*argv,"-in") == 0)
  115. {
  116. if (--argc < 1) goto bad;
  117. infile= *(++argv);
  118. }
  119. else if (strcmp(*argv,"-out") == 0)
  120. {
  121. if (--argc < 1) goto bad;
  122. outfile= *(++argv);
  123. }
  124. else if (strcmp(*argv,"-text") == 0)
  125. text= ++num;
  126. else if (strcmp(*argv,"-cert") == 0)
  127. cert= ++num;
  128. else if (strcmp(*argv,"-noout") == 0)
  129. noout= ++num;
  130. else if (strcmp(*argv,"-context") == 0)
  131. {
  132. if(--argc < 1) goto bad;
  133. context=*++argv;
  134. }
  135. else
  136. {
  137. BIO_printf(bio_err,"unknown option %s\n",*argv);
  138. badops=1;
  139. break;
  140. }
  141. argc--;
  142. argv++;
  143. }
  144. if (badops)
  145. {
  146. bad:
  147. for (pp=sess_id_usage; (*pp != NULL); pp++)
  148. BIO_printf(bio_err,"%s",*pp);
  149. goto end;
  150. }
  151. ERR_load_crypto_strings();
  152. x=load_sess_id(infile,informat);
  153. if (x == NULL) { goto end; }
  154. if(context)
  155. {
  156. x->sid_ctx_length=strlen(context);
  157. if(x->sid_ctx_length > SSL_MAX_SID_CTX_LENGTH)
  158. {
  159. BIO_printf(bio_err,"Context too long\n");
  160. goto end;
  161. }
  162. memcpy(x->sid_ctx,context,x->sid_ctx_length);
  163. }
  164. #ifdef undef
  165. /* just testing for memory leaks :-) */
  166. {
  167. SSL_SESSION *s;
  168. char buf[1024*10],*p;
  169. int i;
  170. s=SSL_SESSION_new();
  171. p= &buf;
  172. i=i2d_SSL_SESSION(x,&p);
  173. p= &buf;
  174. d2i_SSL_SESSION(&s,&p,(long)i);
  175. p= &buf;
  176. d2i_SSL_SESSION(&s,&p,(long)i);
  177. p= &buf;
  178. d2i_SSL_SESSION(&s,&p,(long)i);
  179. SSL_SESSION_free(s);
  180. }
  181. #endif
  182. if (!noout || text)
  183. {
  184. out=BIO_new(BIO_s_file());
  185. if (out == NULL)
  186. {
  187. ERR_print_errors(bio_err);
  188. goto end;
  189. }
  190. if (outfile == NULL)
  191. {
  192. BIO_set_fp(out,stdout,BIO_NOCLOSE);
  193. #ifdef OPENSSL_SYS_VMS
  194. {
  195. BIO *tmpbio = BIO_new(BIO_f_linebuffer());
  196. out = BIO_push(tmpbio, out);
  197. }
  198. #endif
  199. }
  200. else
  201. {
  202. if (BIO_write_filename(out,outfile) <= 0)
  203. {
  204. perror(outfile);
  205. goto end;
  206. }
  207. }
  208. }
  209. if (text)
  210. {
  211. SSL_SESSION_print(out,x);
  212. if (cert)
  213. {
  214. if (x->peer == NULL)
  215. BIO_puts(out,"No certificate present\n");
  216. else
  217. X509_print(out,x->peer);
  218. }
  219. }
  220. if (!noout && !cert)
  221. {
  222. if (outformat == FORMAT_ASN1)
  223. i=i2d_SSL_SESSION_bio(out,x);
  224. else if (outformat == FORMAT_PEM)
  225. i=PEM_write_bio_SSL_SESSION(out,x);
  226. else {
  227. BIO_printf(bio_err,"bad output format specified for outfile\n");
  228. goto end;
  229. }
  230. if (!i) {
  231. BIO_printf(bio_err,"unable to write SSL_SESSION\n");
  232. goto end;
  233. }
  234. }
  235. else if (!noout && (x->peer != NULL)) /* just print the certificate */
  236. {
  237. if (outformat == FORMAT_ASN1)
  238. i=(int)i2d_X509_bio(out,x->peer);
  239. else if (outformat == FORMAT_PEM)
  240. i=PEM_write_bio_X509(out,x->peer);
  241. else {
  242. BIO_printf(bio_err,"bad output format specified for outfile\n");
  243. goto end;
  244. }
  245. if (!i) {
  246. BIO_printf(bio_err,"unable to write X509\n");
  247. goto end;
  248. }
  249. }
  250. ret=0;
  251. end:
  252. if (out != NULL) BIO_free_all(out);
  253. if (x != NULL) SSL_SESSION_free(x);
  254. apps_shutdown();
  255. OPENSSL_EXIT(ret);
  256. }
  257. static SSL_SESSION *load_sess_id(char *infile, int format)
  258. {
  259. SSL_SESSION *x=NULL;
  260. BIO *in=NULL;
  261. in=BIO_new(BIO_s_file());
  262. if (in == NULL)
  263. {
  264. ERR_print_errors(bio_err);
  265. goto end;
  266. }
  267. if (infile == NULL)
  268. BIO_set_fp(in,stdin,BIO_NOCLOSE);
  269. else
  270. {
  271. if (BIO_read_filename(in,infile) <= 0)
  272. {
  273. perror(infile);
  274. goto end;
  275. }
  276. }
  277. if (format == FORMAT_ASN1)
  278. x=d2i_SSL_SESSION_bio(in,NULL);
  279. else if (format == FORMAT_PEM)
  280. x=PEM_read_bio_SSL_SESSION(in,NULL,NULL,NULL);
  281. else {
  282. BIO_printf(bio_err,"bad input format specified for input crl\n");
  283. goto end;
  284. }
  285. if (x == NULL)
  286. {
  287. BIO_printf(bio_err,"unable to load SSL_SESSION\n");
  288. ERR_print_errors(bio_err);
  289. goto end;
  290. }
  291. end:
  292. if (in != NULL) BIO_free(in);
  293. return(x);
  294. }