1e1051a39Sopenharmony_ci/* 2e1051a39Sopenharmony_ci * Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved. 3e1051a39Sopenharmony_ci * 4e1051a39Sopenharmony_ci * Licensed under the Apache License 2.0 (the "License"). You may not use 5e1051a39Sopenharmony_ci * this file except in compliance with the License. You can obtain a copy 6e1051a39Sopenharmony_ci * in the file LICENSE in the source distribution or at 7e1051a39Sopenharmony_ci * https://www.openssl.org/source/license.html 8e1051a39Sopenharmony_ci */ 9e1051a39Sopenharmony_ci 10e1051a39Sopenharmony_ci#include <string.h> 11e1051a39Sopenharmony_ci 12e1051a39Sopenharmony_ci#include "apps.h" 13e1051a39Sopenharmony_ci#include "progs.h" 14e1051a39Sopenharmony_ci#include <openssl/bio.h> 15e1051a39Sopenharmony_ci#include <openssl/err.h> 16e1051a39Sopenharmony_ci#include <openssl/evp.h> 17e1051a39Sopenharmony_ci#include <openssl/kdf.h> 18e1051a39Sopenharmony_ci#include <openssl/params.h> 19e1051a39Sopenharmony_ci 20e1051a39Sopenharmony_citypedef enum OPTION_choice { 21e1051a39Sopenharmony_ci OPT_COMMON, 22e1051a39Sopenharmony_ci OPT_KDFOPT, OPT_BIN, OPT_KEYLEN, OPT_OUT, 23e1051a39Sopenharmony_ci OPT_CIPHER, OPT_DIGEST, OPT_MAC, 24e1051a39Sopenharmony_ci OPT_PROV_ENUM 25e1051a39Sopenharmony_ci} OPTION_CHOICE; 26e1051a39Sopenharmony_ci 27e1051a39Sopenharmony_ciconst OPTIONS kdf_options[] = { 28e1051a39Sopenharmony_ci {OPT_HELP_STR, 1, '-', "Usage: %s [options] kdf_name\n"}, 29e1051a39Sopenharmony_ci 30e1051a39Sopenharmony_ci OPT_SECTION("General"), 31e1051a39Sopenharmony_ci {"help", OPT_HELP, '-', "Display this summary"}, 32e1051a39Sopenharmony_ci {"kdfopt", OPT_KDFOPT, 's', "KDF algorithm control parameters in n:v form"}, 33e1051a39Sopenharmony_ci {"cipher", OPT_CIPHER, 's', "Cipher"}, 34e1051a39Sopenharmony_ci {"digest", OPT_DIGEST, 's', "Digest"}, 35e1051a39Sopenharmony_ci {"mac", OPT_MAC, 's', "MAC"}, 36e1051a39Sopenharmony_ci {OPT_MORE_STR, 1, '-', "See 'Supported Controls' in the EVP_KDF_ docs\n"}, 37e1051a39Sopenharmony_ci {"keylen", OPT_KEYLEN, 's', "The size of the output derived key"}, 38e1051a39Sopenharmony_ci 39e1051a39Sopenharmony_ci OPT_SECTION("Output"), 40e1051a39Sopenharmony_ci {"out", OPT_OUT, '>', "Output to filename rather than stdout"}, 41e1051a39Sopenharmony_ci {"binary", OPT_BIN, '-', 42e1051a39Sopenharmony_ci "Output in binary format (default is hexadecimal)"}, 43e1051a39Sopenharmony_ci 44e1051a39Sopenharmony_ci OPT_PROV_OPTIONS, 45e1051a39Sopenharmony_ci 46e1051a39Sopenharmony_ci OPT_PARAMETERS(), 47e1051a39Sopenharmony_ci {"kdf_name", 0, 0, "Name of the KDF algorithm"}, 48e1051a39Sopenharmony_ci {NULL} 49e1051a39Sopenharmony_ci}; 50e1051a39Sopenharmony_ci 51e1051a39Sopenharmony_cistatic char *alloc_kdf_algorithm_name(STACK_OF(OPENSSL_STRING) **optp, 52e1051a39Sopenharmony_ci const char *name, const char *arg) 53e1051a39Sopenharmony_ci{ 54e1051a39Sopenharmony_ci size_t len = strlen(name) + strlen(arg) + 2; 55e1051a39Sopenharmony_ci char *res; 56e1051a39Sopenharmony_ci 57e1051a39Sopenharmony_ci if (*optp == NULL) 58e1051a39Sopenharmony_ci *optp = sk_OPENSSL_STRING_new_null(); 59e1051a39Sopenharmony_ci if (*optp == NULL) 60e1051a39Sopenharmony_ci return NULL; 61e1051a39Sopenharmony_ci 62e1051a39Sopenharmony_ci res = app_malloc(len, "algorithm name"); 63e1051a39Sopenharmony_ci BIO_snprintf(res, len, "%s:%s", name, arg); 64e1051a39Sopenharmony_ci if (sk_OPENSSL_STRING_push(*optp, res)) 65e1051a39Sopenharmony_ci return res; 66e1051a39Sopenharmony_ci OPENSSL_free(res); 67e1051a39Sopenharmony_ci return NULL; 68e1051a39Sopenharmony_ci} 69e1051a39Sopenharmony_ci 70e1051a39Sopenharmony_ciint kdf_main(int argc, char **argv) 71e1051a39Sopenharmony_ci{ 72e1051a39Sopenharmony_ci int ret = 1, out_bin = 0; 73e1051a39Sopenharmony_ci OPTION_CHOICE o; 74e1051a39Sopenharmony_ci STACK_OF(OPENSSL_STRING) *opts = NULL; 75e1051a39Sopenharmony_ci char *prog, *hexout = NULL; 76e1051a39Sopenharmony_ci const char *outfile = NULL; 77e1051a39Sopenharmony_ci unsigned char *dkm_bytes = NULL; 78e1051a39Sopenharmony_ci size_t dkm_len = 0; 79e1051a39Sopenharmony_ci BIO *out = NULL; 80e1051a39Sopenharmony_ci EVP_KDF *kdf = NULL; 81e1051a39Sopenharmony_ci EVP_KDF_CTX *ctx = NULL; 82e1051a39Sopenharmony_ci char *digest = NULL, *cipher = NULL, *mac = NULL; 83e1051a39Sopenharmony_ci 84e1051a39Sopenharmony_ci prog = opt_init(argc, argv, kdf_options); 85e1051a39Sopenharmony_ci while ((o = opt_next()) != OPT_EOF) { 86e1051a39Sopenharmony_ci switch (o) { 87e1051a39Sopenharmony_ci default: 88e1051a39Sopenharmony_ciopthelp: 89e1051a39Sopenharmony_ci BIO_printf(bio_err, "%s: Use -help for summary.\n", prog); 90e1051a39Sopenharmony_ci goto err; 91e1051a39Sopenharmony_ci case OPT_HELP: 92e1051a39Sopenharmony_ci opt_help(kdf_options); 93e1051a39Sopenharmony_ci ret = 0; 94e1051a39Sopenharmony_ci goto err; 95e1051a39Sopenharmony_ci case OPT_BIN: 96e1051a39Sopenharmony_ci out_bin = 1; 97e1051a39Sopenharmony_ci break; 98e1051a39Sopenharmony_ci case OPT_KEYLEN: 99e1051a39Sopenharmony_ci dkm_len = (size_t)atoi(opt_arg()); 100e1051a39Sopenharmony_ci break; 101e1051a39Sopenharmony_ci case OPT_OUT: 102e1051a39Sopenharmony_ci outfile = opt_arg(); 103e1051a39Sopenharmony_ci break; 104e1051a39Sopenharmony_ci case OPT_KDFOPT: 105e1051a39Sopenharmony_ci if (opts == NULL) 106e1051a39Sopenharmony_ci opts = sk_OPENSSL_STRING_new_null(); 107e1051a39Sopenharmony_ci if (opts == NULL || !sk_OPENSSL_STRING_push(opts, opt_arg())) 108e1051a39Sopenharmony_ci goto opthelp; 109e1051a39Sopenharmony_ci break; 110e1051a39Sopenharmony_ci case OPT_CIPHER: 111e1051a39Sopenharmony_ci OPENSSL_free(cipher); 112e1051a39Sopenharmony_ci cipher = alloc_kdf_algorithm_name(&opts, "cipher", opt_arg()); 113e1051a39Sopenharmony_ci if (cipher == NULL) 114e1051a39Sopenharmony_ci goto opthelp; 115e1051a39Sopenharmony_ci break; 116e1051a39Sopenharmony_ci case OPT_DIGEST: 117e1051a39Sopenharmony_ci OPENSSL_free(digest); 118e1051a39Sopenharmony_ci digest = alloc_kdf_algorithm_name(&opts, "digest", opt_arg()); 119e1051a39Sopenharmony_ci if (digest == NULL) 120e1051a39Sopenharmony_ci goto opthelp; 121e1051a39Sopenharmony_ci break; 122e1051a39Sopenharmony_ci case OPT_MAC: 123e1051a39Sopenharmony_ci OPENSSL_free(mac); 124e1051a39Sopenharmony_ci mac = alloc_kdf_algorithm_name(&opts, "mac", opt_arg()); 125e1051a39Sopenharmony_ci if (mac == NULL) 126e1051a39Sopenharmony_ci goto opthelp; 127e1051a39Sopenharmony_ci break; 128e1051a39Sopenharmony_ci case OPT_PROV_CASES: 129e1051a39Sopenharmony_ci if (!opt_provider(o)) 130e1051a39Sopenharmony_ci goto err; 131e1051a39Sopenharmony_ci break; 132e1051a39Sopenharmony_ci } 133e1051a39Sopenharmony_ci } 134e1051a39Sopenharmony_ci 135e1051a39Sopenharmony_ci /* One argument, the KDF name. */ 136e1051a39Sopenharmony_ci argc = opt_num_rest(); 137e1051a39Sopenharmony_ci argv = opt_rest(); 138e1051a39Sopenharmony_ci if (argc != 1) 139e1051a39Sopenharmony_ci goto opthelp; 140e1051a39Sopenharmony_ci 141e1051a39Sopenharmony_ci if ((kdf = EVP_KDF_fetch(app_get0_libctx(), argv[0], 142e1051a39Sopenharmony_ci app_get0_propq())) == NULL) { 143e1051a39Sopenharmony_ci BIO_printf(bio_err, "Invalid KDF name %s\n", argv[0]); 144e1051a39Sopenharmony_ci goto opthelp; 145e1051a39Sopenharmony_ci } 146e1051a39Sopenharmony_ci 147e1051a39Sopenharmony_ci ctx = EVP_KDF_CTX_new(kdf); 148e1051a39Sopenharmony_ci if (ctx == NULL) 149e1051a39Sopenharmony_ci goto err; 150e1051a39Sopenharmony_ci 151e1051a39Sopenharmony_ci if (opts != NULL) { 152e1051a39Sopenharmony_ci int ok = 1; 153e1051a39Sopenharmony_ci OSSL_PARAM *params = 154e1051a39Sopenharmony_ci app_params_new_from_opts(opts, EVP_KDF_settable_ctx_params(kdf)); 155e1051a39Sopenharmony_ci 156e1051a39Sopenharmony_ci if (params == NULL) 157e1051a39Sopenharmony_ci goto err; 158e1051a39Sopenharmony_ci 159e1051a39Sopenharmony_ci if (!EVP_KDF_CTX_set_params(ctx, params)) { 160e1051a39Sopenharmony_ci BIO_printf(bio_err, "KDF parameter error\n"); 161e1051a39Sopenharmony_ci ERR_print_errors(bio_err); 162e1051a39Sopenharmony_ci ok = 0; 163e1051a39Sopenharmony_ci } 164e1051a39Sopenharmony_ci app_params_free(params); 165e1051a39Sopenharmony_ci if (!ok) 166e1051a39Sopenharmony_ci goto err; 167e1051a39Sopenharmony_ci } 168e1051a39Sopenharmony_ci 169e1051a39Sopenharmony_ci out = bio_open_default(outfile, 'w', out_bin ? FORMAT_BINARY : FORMAT_TEXT); 170e1051a39Sopenharmony_ci if (out == NULL) 171e1051a39Sopenharmony_ci goto err; 172e1051a39Sopenharmony_ci 173e1051a39Sopenharmony_ci if (dkm_len <= 0) { 174e1051a39Sopenharmony_ci BIO_printf(bio_err, "Invalid derived key length.\n"); 175e1051a39Sopenharmony_ci goto err; 176e1051a39Sopenharmony_ci } 177e1051a39Sopenharmony_ci dkm_bytes = app_malloc(dkm_len, "out buffer"); 178e1051a39Sopenharmony_ci if (dkm_bytes == NULL) 179e1051a39Sopenharmony_ci goto err; 180e1051a39Sopenharmony_ci 181e1051a39Sopenharmony_ci if (!EVP_KDF_derive(ctx, dkm_bytes, dkm_len, NULL)) { 182e1051a39Sopenharmony_ci BIO_printf(bio_err, "EVP_KDF_derive failed\n"); 183e1051a39Sopenharmony_ci goto err; 184e1051a39Sopenharmony_ci } 185e1051a39Sopenharmony_ci 186e1051a39Sopenharmony_ci if (out_bin) { 187e1051a39Sopenharmony_ci BIO_write(out, dkm_bytes, dkm_len); 188e1051a39Sopenharmony_ci } else { 189e1051a39Sopenharmony_ci hexout = OPENSSL_buf2hexstr(dkm_bytes, dkm_len); 190e1051a39Sopenharmony_ci if (hexout == NULL) { 191e1051a39Sopenharmony_ci BIO_printf(bio_err, "Memory allocation failure\n"); 192e1051a39Sopenharmony_ci goto err; 193e1051a39Sopenharmony_ci } 194e1051a39Sopenharmony_ci BIO_printf(out, "%s\n\n", hexout); 195e1051a39Sopenharmony_ci } 196e1051a39Sopenharmony_ci 197e1051a39Sopenharmony_ci ret = 0; 198e1051a39Sopenharmony_cierr: 199e1051a39Sopenharmony_ci if (ret != 0) 200e1051a39Sopenharmony_ci ERR_print_errors(bio_err); 201e1051a39Sopenharmony_ci OPENSSL_clear_free(dkm_bytes, dkm_len); 202e1051a39Sopenharmony_ci sk_OPENSSL_STRING_free(opts); 203e1051a39Sopenharmony_ci EVP_KDF_free(kdf); 204e1051a39Sopenharmony_ci EVP_KDF_CTX_free(ctx); 205e1051a39Sopenharmony_ci BIO_free(out); 206e1051a39Sopenharmony_ci OPENSSL_free(hexout); 207e1051a39Sopenharmony_ci OPENSSL_free(cipher); 208e1051a39Sopenharmony_ci OPENSSL_free(digest); 209e1051a39Sopenharmony_ci OPENSSL_free(mac); 210e1051a39Sopenharmony_ci return ret; 211e1051a39Sopenharmony_ci} 212