1c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org/* crypto/pkcs7/sign.c */ 2c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 3c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * All rights reserved. 4c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 5c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * This package is an SSL implementation written 6c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * by Eric Young (eay@cryptsoft.com). 7c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * The implementation was written so as to conform with Netscapes SSL. 8c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 9c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * This library is free for commercial and non-commercial use as long as 10c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * the following conditions are aheared to. The following conditions 11c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * apply to all code found in this distribution, be it the RC4, RSA, 12c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * lhash, DES, etc., code; not just the SSL code. The SSL documentation 13c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * included with this distribution is covered by the same copyright terms 14c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * except that the holder is Tim Hudson (tjh@cryptsoft.com). 15c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 16c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * Copyright remains Eric Young's, and as such any Copyright notices in 17c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * the code are not to be removed. 18c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * If this package is used in a product, Eric Young should be given attribution 19c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * as the author of the parts of the library used. 20c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * This can be in the form of a textual message at program startup or 21c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * in documentation (online or textual) provided with the package. 22c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 23c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * Redistribution and use in source and binary forms, with or without 24c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * modification, are permitted provided that the following conditions 25c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * are met: 26c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 1. Redistributions of source code must retain the copyright 27c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * notice, this list of conditions and the following disclaimer. 28c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 2. Redistributions in binary form must reproduce the above copyright 29c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * notice, this list of conditions and the following disclaimer in the 30c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * documentation and/or other materials provided with the distribution. 31c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 3. All advertising materials mentioning features or use of this software 32c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * must display the following acknowledgement: 33c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * "This product includes cryptographic software written by 34c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * Eric Young (eay@cryptsoft.com)" 35c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * The word 'cryptographic' can be left out if the rouines from the library 36c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * being used are not cryptographic related :-). 37c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 4. If you include any Windows specific code (or a derivative thereof) from 38c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * the apps directory (application code) you must include an acknowledgement: 39c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 40c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 41c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 42c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 43c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 44c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 45c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 46c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 47c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 48c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 49c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 50c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 51c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * SUCH DAMAGE. 52c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * 53c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * The licence and distribution terms for any publically available version or 54c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * derivative of this code cannot be changed. i.e. this code cannot simply be 55c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * copied and put under another distribution licence 56c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org * [including the GNU Public Licence.] 57c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org */ 58c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#include <stdio.h> 59c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#include <string.h> 60c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#include <openssl/bio.h> 61c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#include <openssl/x509.h> 62c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#include <openssl/pem.h> 63c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#include <openssl/err.h> 64c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 65c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgint main(argc,argv) 66c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgint argc; 67c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgchar *argv[]; 68c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org { 69c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org X509 *x509; 70c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org EVP_PKEY *pkey; 71c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7 *p7; 72c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7_SIGNER_INFO *si; 73c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org BIO *in; 74c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org BIO *data,*p7bio; 75c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org char buf[1024*4]; 76c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org int i; 77c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org int nodetach=0; 78c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 79c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#ifndef OPENSSL_NO_MD2 80c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org EVP_add_digest(EVP_md2()); 81c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#endif 82c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#ifndef OPENSSL_NO_MD5 83c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org EVP_add_digest(EVP_md5()); 84c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#endif 85c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#ifndef OPENSSL_NO_SHA1 86c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org EVP_add_digest(EVP_sha1()); 87c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#endif 88c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#ifndef OPENSSL_NO_MDC2 89c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org EVP_add_digest(EVP_mdc2()); 90c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org#endif 91c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 92c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org data=BIO_new(BIO_s_file()); 93c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgagain: 94c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if (argc > 1) 95c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org { 96c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if (strcmp(argv[1],"-nd") == 0) 97c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org { 98c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org nodetach=1; 99c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org argv++; argc--; 100c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org goto again; 101c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org } 102c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if (!BIO_read_filename(data,argv[1])) 103c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org goto err; 104c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org } 105c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org else 106c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org BIO_set_fp(data,stdin,BIO_NOCLOSE); 107c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 108c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if ((in=BIO_new_file("server.pem","r")) == NULL) goto err; 109c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if ((x509=PEM_read_bio_X509(in,NULL,NULL,NULL)) == NULL) goto err; 110c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org BIO_reset(in); 111c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if ((pkey=PEM_read_bio_PrivateKey(in,NULL,NULL,NULL)) == NULL) goto err; 112c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org BIO_free(in); 113c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 114c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org p7=PKCS7_new(); 115c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7_set_type(p7,NID_pkcs7_signed); 116c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 117c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org si=PKCS7_add_signature(p7,x509,pkey,EVP_sha1()); 118c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if (si == NULL) goto err; 119c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 120c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org /* If you do this then you get signing time automatically added */ 121c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7_add_signed_attribute(si, NID_pkcs9_contentType, V_ASN1_OBJECT, 122c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org OBJ_nid2obj(NID_pkcs7_data)); 123c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 124c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org /* we may want to add more */ 125c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7_add_certificate(p7,x509); 126c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 127c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org /* Set the content of the signed to 'data' */ 128c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7_content_new(p7,NID_pkcs7_data); 129c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 130c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if (!nodetach) 131c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7_set_detached(p7,1); 132c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 133c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if ((p7bio=PKCS7_dataInit(p7,NULL)) == NULL) goto err; 134c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 135c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org for (;;) 136c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org { 137c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org i=BIO_read(data,buf,sizeof(buf)); 138c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if (i <= 0) break; 139c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org BIO_write(p7bio,buf,i); 140c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org } 141c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 142c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org if (!PKCS7_dataFinal(p7,p7bio)) goto err; 143c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org BIO_free(p7bio); 144c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 145c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PEM_write_PKCS7(stdout,p7); 146c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org PKCS7_free(p7); 147c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 148c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org exit(0); 149c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.orgerr: 150c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org ERR_load_crypto_strings(); 151c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org ERR_print_errors_fp(stderr); 152c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org exit(1); 153c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org } 154c9490d33b98b7affb729b5f1db13cb0a348471aagl@chromium.org 155