[openssh.git] / ssh-keygen.c

/*
 * Author: Tatu Ylonen <ylo@cs.hut.fi>
 * Copyright (c) 1994 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
 *                    All rights reserved
 * Created: Mon Mar 27 02:26:40 1995 ylo
 * Identity and host key generation and maintenance.
 */

#include "includes.h"
RCSID("$Id$");

#include <openssl/evp.h>
#include <openssl/pem.h>
#include <openssl/rsa.h>
#include <openssl/dsa.h>

#include "ssh.h"
#include "xmalloc.h"
#include "fingerprint.h"
#include "key.h"
#include "rsa.h"
#include "dsa.h"
#include "authfile.h"
#include "uuencode.h"

/* Number of bits in the RSA/DSA key.  This value can be changed on the command line. */
int bits = 1024;

/*
 * Flag indicating that we just want to change the passphrase.  This can be
 * set on the command line.
 */
int change_passphrase = 0;

/*
 * Flag indicating that we just want to change the comment.  This can be set
 * on the command line.
 */
int change_comment = 0;

int quiet = 0;

/* Flag indicating that we just want to see the key fingerprint */
int print_fingerprint = 0;

/* The identity file name, given on the command line or entered by the user. */
char identity_file[1024];
int have_identity = 0;

/* This is set to the passphrase if given on the command line. */
char *identity_passphrase = NULL;

/* This is set to the new passphrase if given on the command line. */
char *identity_new_passphrase = NULL;

/* This is set to the new comment if given on the command line. */
char *identity_comment = NULL;

/* Dump public key file in format used by real and the original SSH 2 */
int convert_to_ssh2 = 0;
int convert_from_ssh2 = 0;
int print_public = 0;
int dsa_mode = 0;

/* argv0 */
#ifdef HAVE___PROGNAME
extern char *__progname;
#else /* HAVE___PROGNAME */
const char *__progname = "ssh-keygen";
#endif /* HAVE___PROGNAME */

char hostname[MAXHOSTNAMELEN];

void
ask_filename(struct passwd *pw, const char *prompt)
{
	char buf[1024];
	snprintf(identity_file, sizeof(identity_file), "%s/%s",
		 pw->pw_dir, SSH_CLIENT_IDENTITY);
	printf("%s (%s): ", prompt, identity_file);
	fflush(stdout);
	if (fgets(buf, sizeof(buf), stdin) == NULL)
		exit(1);
	if (strchr(buf, '\n'))
		*strchr(buf, '\n') = 0;
	if (strcmp(buf, "") != 0)
		strlcpy(identity_file, buf, sizeof(identity_file));
	have_identity = 1;
}

int
try_load_key(char *filename, Key *k)
{
	int success = 1;
	if (!load_private_key(filename, "", k, NULL)) {
		char *pass = read_passphrase("Enter passphrase: ", 1);
		if (!load_private_key(filename, pass, k, NULL)) {
			success = 0;
		}
		memset(pass, 0, strlen(pass));
		xfree(pass);
	}
	return success;
}

#define SSH_COM_MAGIC_BEGIN "---- BEGIN SSH2 PUBLIC KEY ----"
#define SSH_COM_MAGIC_END   "---- END SSH2 PUBLIC KEY ----"

void
do_convert_to_ssh2(struct passwd *pw)
{
	Key *k;
	int len;
	unsigned char *blob;
	struct stat st;

	if (!have_identity)
		ask_filename(pw, "Enter file in which the key is");
	if (stat(identity_file, &st) < 0) {
		perror(identity_file);
		exit(1);
	}
	k = key_new(KEY_DSA);
	if (!try_load_key(identity_file, k)) {
		fprintf(stderr, "load failed\n");
		exit(1);
	}
	dsa_make_key_blob(k, &blob, &len);
	fprintf(stdout, SSH_COM_MAGIC_BEGIN "\n");
	fprintf(stdout,
	    "Comment: \"%d-bit DSA, converted from openssh by %s@%s\"\n",
	    BN_num_bits(k->dsa->p),
	    pw->pw_name, hostname);
	dump_base64(stdout, blob, len);
	fprintf(stdout, SSH_COM_MAGIC_END "\n");
	key_free(k);
	xfree(blob);
	exit(0);
}

void
do_convert_from_ssh2(struct passwd *pw)
{
	Key *k;
	int blen;
	char line[1024], *p;
	char blob[8096];
	char encoded[8096];
	struct stat st;
	FILE *fp;

	if (!have_identity)
		ask_filename(pw, "Enter file in which the key is");
	if (stat(identity_file, &st) < 0) {
		perror(identity_file);
		exit(1);
	}
	fp = fopen(identity_file, "r");
	if (fp == NULL) {
		perror(identity_file);
		exit(1);
	}
	encoded[0] = '\0';
	while (fgets(line, sizeof(line), fp)) {
		if (strncmp(line, "----", 4) == 0 ||
		    strstr(line, ": ") != NULL) {
			fprintf(stderr, "ignore: %s", line);
			continue;
		}
		if (!(p = strchr(line, '\n'))) {
			fprintf(stderr, "input line too long.\n");
			exit(1);
		}
		*p = '\0';
		strlcat(encoded, line, sizeof(encoded));
	}
	blen = uudecode(encoded, (unsigned char *)blob, sizeof(blob));
	if (blen < 0) {
		fprintf(stderr, "uudecode failed.\n");
		exit(1);
	}
	k = dsa_key_from_blob(blob, blen);
	if (!key_write(k, stdout))
		fprintf(stderr, "key_write failed");
	key_free(k);
	fprintf(stdout, "\n");
	fclose(fp);
	exit(0);
}

void
do_print_public(struct passwd *pw)
{
	Key *k;
	int len;
	unsigned char *blob;
	struct stat st;

	if (!have_identity)
		ask_filename(pw, "Enter file in which the key is");
	if (stat(identity_file, &st) < 0) {
		perror(identity_file);
		exit(1);
	}
	k = key_new(KEY_DSA);
	if (!try_load_key(identity_file, k)) {
		fprintf(stderr, "load failed\n");
		exit(1);
	}
	dsa_make_key_blob(k, &blob, &len);
	if (!key_write(k, stdout))
		fprintf(stderr, "key_write failed");
	key_free(k);
	xfree(blob);
	fprintf(stdout, "\n");
	exit(0);
}

void
do_fingerprint(struct passwd *pw)
{
	FILE *f;
	BIGNUM *e, *n;
	Key *public;
	char *comment = NULL, *cp, *ep, line[16*1024];
	int i, skip = 0, num = 1, invalid = 1;
	unsigned int ignore;
	struct stat st;

	if (!have_identity)
		ask_filename(pw, "Enter file in which the key is");
	if (stat(identity_file, &st) < 0) {
		perror(identity_file);
		exit(1);
	}
	public = key_new(KEY_RSA);
	if (load_public_key(identity_file, public, &comment)) {
		printf("%d %s %s\n", BN_num_bits(public->rsa->n),
		    key_fingerprint(public), comment);
		key_free(public);
		exit(0);
	}
	key_free(public);

	/* XXX */
	f = fopen(identity_file, "r");
	if (f != NULL) {
		n = BN_new();
		e = BN_new();
		while (fgets(line, sizeof(line), f)) {
			i = strlen(line) - 1;
			if (line[i] != '\n') {
				error("line %d too long: %.40s...", num, line);
				skip = 1;
				continue;
			}
			num++;
			if (skip) {
				skip = 0;
				continue;
			}
			line[i] = '\0';

			/* Skip leading whitespace, empty and comment lines. */
			for (cp = line; *cp == ' ' || *cp == '\t'; cp++)
				;
			if (!*cp || *cp == '\n' || *cp == '#')
				continue ;
			i = strtol(cp, &ep, 10);
			if (i == 0 || ep == NULL || (*ep != ' ' && *ep != '\t')) {
				int quoted = 0;
				comment = cp;
				for (; *cp && (quoted || (*cp != ' ' && *cp != '\t')); cp++) {
					if (*cp == '\\' && cp[1] == '"')
						cp++;	/* Skip both */
					else if (*cp == '"')
						quoted = !quoted;
				}
				if (!*cp)
					continue;
				*cp++ = '\0';
			}
			ep = cp;
			if (auth_rsa_read_key(&cp, &ignore, e, n)) {
				invalid = 0;
				comment = *cp ? cp : comment;
				printf("%d %s %s\n", BN_num_bits(n),
				    fingerprint(e, n),
				    comment ? comment : "no comment");
			}
		}
		BN_free(e);
		BN_free(n);
		fclose(f);
	}
	if (invalid) {
		printf("%s is not a valid key file.\n", identity_file);
		exit(1);
	}
	exit(0);
}

/*
 * Perform changing a passphrase.  The argument is the passwd structure
 * for the current user.
 */
void
do_change_passphrase(struct passwd *pw)
{
	char *comment;
	char *old_passphrase, *passphrase1, *passphrase2;
	struct stat st;
	Key *private;
	Key *public;
	int type = dsa_mode ? KEY_DSA : KEY_RSA;

	if (!have_identity)
		ask_filename(pw, "Enter file in which the key is");
	if (stat(identity_file, &st) < 0) {
		perror(identity_file);
		exit(1);
	}

	if (type == KEY_RSA) {
		/* XXX this works currently only for RSA */
		public = key_new(type);
		if (!load_public_key(identity_file, public, NULL)) {
			printf("%s is not a valid key file.\n", identity_file);
			exit(1);
		}
		/* Clear the public key since we are just about to load the whole file. */
		key_free(public);
	}

	/* Try to load the file with empty passphrase. */
	private = key_new(type);
	if (!load_private_key(identity_file, "", private, &comment)) {
		if (identity_passphrase)
			old_passphrase = xstrdup(identity_passphrase);
		else
			old_passphrase = read_passphrase("Enter old passphrase: ", 1);
		if (!load_private_key(identity_file, old_passphrase, private, &comment)) {
			memset(old_passphrase, 0, strlen(old_passphrase));
			xfree(old_passphrase);
			printf("Bad passphrase.\n");
			exit(1);
		}
		memset(old_passphrase, 0, strlen(old_passphrase));
		xfree(old_passphrase);
	}
	printf("Key has comment '%s'\n", comment);

	/* Ask the new passphrase (twice). */
	if (identity_new_passphrase) {
		passphrase1 = xstrdup(identity_new_passphrase);
		passphrase2 = NULL;
	} else {
		passphrase1 =
			read_passphrase("Enter new passphrase (empty for no passphrase): ", 1);
		passphrase2 = read_passphrase("Enter same passphrase again: ", 1);

		/* Verify that they are the same. */
		if (strcmp(passphrase1, passphrase2) != 0) {
			memset(passphrase1, 0, strlen(passphrase1));
			memset(passphrase2, 0, strlen(passphrase2));
			xfree(passphrase1);
			xfree(passphrase2);
			printf("Pass phrases do not match.  Try again.\n");
			exit(1);
		}
		/* Destroy the other copy. */
		memset(passphrase2, 0, strlen(passphrase2));
		xfree(passphrase2);
	}

	/* Save the file using the new passphrase. */
	if (!save_private_key(identity_file, passphrase1, private, comment)) {
		printf("Saving the key failed: %s: %s.\n",
		       identity_file, strerror(errno));
		memset(passphrase1, 0, strlen(passphrase1));
		xfree(passphrase1);
		key_free(private);
		xfree(comment);
		exit(1);
	}
	/* Destroy the passphrase and the copy of the key in memory. */
	memset(passphrase1, 0, strlen(passphrase1));
	xfree(passphrase1);
	key_free(private);		 /* Destroys contents */
	xfree(comment);

	printf("Your identification has been saved with the new passphrase.\n");
	exit(0);
}

/*
 * Change the comment of a private key file.
 */
void
do_change_comment(struct passwd *pw)
{
	char new_comment[1024], *comment;
	Key *private;
	Key *public;
	char *passphrase;
	struct stat st;
	FILE *f;

	if (!have_identity)
		ask_filename(pw, "Enter file in which the key is");
	if (stat(identity_file, &st) < 0) {
		perror(identity_file);
		exit(1);
	}
	/*
	 * Try to load the public key from the file the verify that it is
	 * readable and of the proper format.
	 */
	public = key_new(KEY_RSA);
	if (!load_public_key(identity_file, public, NULL)) {
		printf("%s is not a valid key file.\n", identity_file);
		exit(1);
	}

	private = key_new(KEY_RSA);
	if (load_private_key(identity_file, "", private, &comment))
		passphrase = xstrdup("");
	else {
		if (identity_passphrase)
			passphrase = xstrdup(identity_passphrase);
		else if (identity_new_passphrase)
			passphrase = xstrdup(identity_new_passphrase);
		else
			passphrase = read_passphrase("Enter passphrase: ", 1);
		/* Try to load using the passphrase. */
		if (!load_private_key(identity_file, passphrase, private, &comment)) {
			memset(passphrase, 0, strlen(passphrase));
			xfree(passphrase);
			printf("Bad passphrase.\n");
			exit(1);
		}
	}
	printf("Key now has comment '%s'\n", comment);

	if (identity_comment) {
		strlcpy(new_comment, identity_comment, sizeof(new_comment));
	} else {
		printf("Enter new comment: ");
		fflush(stdout);
		if (!fgets(new_comment, sizeof(new_comment), stdin)) {
			memset(passphrase, 0, strlen(passphrase));
			key_free(private);
			exit(1);
		}
		if (strchr(new_comment, '\n'))
			*strchr(new_comment, '\n') = 0;
	}

	/* Save the file using the new passphrase. */
	if (!save_private_key(identity_file, passphrase, private, new_comment)) {
		printf("Saving the key failed: %s: %s.\n",
		       identity_file, strerror(errno));
		memset(passphrase, 0, strlen(passphrase));
		xfree(passphrase);
		key_free(private);
		xfree(comment);
		exit(1);
	}
	memset(passphrase, 0, strlen(passphrase));
	xfree(passphrase);
	key_free(private);

	strlcat(identity_file, ".pub", sizeof(identity_file));
	f = fopen(identity_file, "w");
	if (!f) {
		printf("Could not save your public key in %s\n", identity_file);
		exit(1);
	}
	if (!key_write(public, f))
		fprintf(stderr, "write key failed");
	key_free(public);
	fprintf(f, " %s\n", new_comment);
	fclose(f);

	xfree(comment);

	printf("The comment in your key file has been changed.\n");
	exit(0);
}

void
usage(void)
{
	printf("ssh-keygen version %s\n", SSH_VERSION);
	printf("Usage: %s [-b bits] [-p] [-c] [-l] [-x] [-X] [-y] [-f file] [-P pass] [-N new-pass] [-C comment]\n", __progname);
	exit(1);
}

/*
 * Main program for key management.
 */
int
main(int ac, char **av)
{
	char dotsshdir[16 * 1024], comment[1024], *passphrase1, *passphrase2;
	struct passwd *pw;
	int opt;
	struct stat st;
	FILE *f;
	Key *private;
	Key *public;
	extern int optind;
	extern char *optarg;

	OpenSSL_add_all_algorithms();

	/* we need this for the home * directory.  */
	pw = getpwuid(getuid());
	if (!pw) {
		printf("You don't exist, go away!\n");
		exit(1);
	}
	if (gethostname(hostname, sizeof(hostname)) < 0) {
		perror("gethostname");
		exit(1);
	}

	while ((opt = getopt(ac, av, "dqpclRxXyb:f:P:N:C:")) != EOF) {
		switch (opt) {
		case 'b':
			bits = atoi(optarg);
			if (bits < 512 || bits > 32768) {
				printf("Bits has bad value.\n");
				exit(1);
			}
			break;

		case 'l':
			print_fingerprint = 1;
			break;

		case 'p':
			change_passphrase = 1;
			break;

		case 'c':
			change_comment = 1;
			break;

		case 'f':
			strlcpy(identity_file, optarg, sizeof(identity_file));
			have_identity = 1;
			break;

		case 'P':
			identity_passphrase = optarg;
			break;

		case 'N':
			identity_new_passphrase = optarg;
			break;

		case 'C':
			identity_comment = optarg;
			break;

		case 'q':
			quiet = 1;
			break;

		case 'R':
			if (rsa_alive() == 0)
				exit(1);
			else
				exit(0);
			break;

		case 'x':
			convert_to_ssh2 = 1;
			break;

		case 'X':
			convert_from_ssh2 = 1;
			break;

		case 'y':
			print_public = 1;
			break;

		case 'd':
			dsa_mode = 1;
			break;

		case '?':
		default:
			usage();
		}
	}
	if (optind < ac) {
		printf("Too many arguments.\n");
		usage();
	}
	if (change_passphrase && change_comment) {
		printf("Can only have one of -p and -c.\n");
		usage();
	}
	/* check if RSA support is needed and exists */
	if (dsa_mode == 0 && rsa_alive() == 0) {
		fprintf(stderr,
			"%s: no RSA support in libssl and libcrypto.  See ssl(8).\n",
			__progname);
		exit(1);
	}
	if (print_fingerprint)
		do_fingerprint(pw);
	if (change_passphrase)
		do_change_passphrase(pw);
	if (change_comment)
		do_change_comment(pw);
	if (convert_to_ssh2)
		do_convert_to_ssh2(pw);
	if (convert_from_ssh2)
		do_convert_from_ssh2(pw);
	if (print_public)
		do_print_public(pw);

	arc4random_stir();

	if (dsa_mode != 0) {
		if (!quiet)
			printf("Generating DSA parameter and key.\n");
		public = private = dsa_generate_key(bits);
		if (private == NULL) {
			fprintf(stderr, "dsa_generate_keys failed");
			exit(1);
		}
	} else {
		if (quiet)
			rsa_set_verbose(0);
		/* Generate the rsa key pair. */
		public = key_new(KEY_RSA);
		private = key_new(KEY_RSA);
		rsa_generate_key(private->rsa, public->rsa, bits);
	}

	if (!have_identity)
		ask_filename(pw, "Enter file in which to save the key");

	/* Create ~/.ssh directory if it doesn\'t already exist. */
	snprintf(dotsshdir, sizeof dotsshdir, "%s/%s", pw->pw_dir, SSH_USER_DIR);
	if (strstr(identity_file, dotsshdir) != NULL &&
	    stat(dotsshdir, &st) < 0) {
		if (mkdir(dotsshdir, 0755) < 0)
			error("Could not create directory '%s'.", dotsshdir);
		else if (!quiet)
			printf("Created directory '%s'.\n", dotsshdir);
	}
	/* If the file already exists, ask the user to confirm. */
	if (stat(identity_file, &st) >= 0) {
		char yesno[3];
		printf("%s already exists.\n", identity_file);
		printf("Overwrite (y/n)? ");
		fflush(stdout);
		if (fgets(yesno, sizeof(yesno), stdin) == NULL)
			exit(1);
		if (yesno[0] != 'y' && yesno[0] != 'Y')
			exit(1);
	}
	/* Ask for a passphrase (twice). */
	if (identity_passphrase)
		passphrase1 = xstrdup(identity_passphrase);
	else if (identity_new_passphrase)
		passphrase1 = xstrdup(identity_new_passphrase);
	else {
passphrase_again:
		passphrase1 =
			read_passphrase("Enter passphrase (empty for no passphrase): ", 1);
		passphrase2 = read_passphrase("Enter same passphrase again: ", 1);
		if (strcmp(passphrase1, passphrase2) != 0) {
			/* The passphrases do not match.  Clear them and retry. */
			memset(passphrase1, 0, strlen(passphrase1));
			memset(passphrase2, 0, strlen(passphrase2));
			xfree(passphrase1);
			xfree(passphrase2);
			printf("Passphrases do not match.  Try again.\n");
			goto passphrase_again;
		}
		/* Clear the other copy of the passphrase. */
		memset(passphrase2, 0, strlen(passphrase2));
		xfree(passphrase2);
	}

	if (identity_comment) {
		strlcpy(comment, identity_comment, sizeof(comment));
	} else {
		/* Create default commend field for the passphrase. */
		snprintf(comment, sizeof comment, "%s@%s", pw->pw_name, hostname);
	}

	/* Save the key with the given passphrase and comment. */
	if (!save_private_key(identity_file, passphrase1, private, comment)) {
		printf("Saving the key failed: %s: %s.\n",
		    identity_file, strerror(errno));
		memset(passphrase1, 0, strlen(passphrase1));
		xfree(passphrase1);
		exit(1);
	}
	/* Clear the passphrase. */
	memset(passphrase1, 0, strlen(passphrase1));
	xfree(passphrase1);

	/* Clear the private key and the random number generator. */
	if (private != public) {
		key_free(private);
	}
	arc4random_stir();

	if (!quiet)
		printf("Your identification has been saved in %s.\n", identity_file);

	strlcat(identity_file, ".pub", sizeof(identity_file));
	f = fopen(identity_file, "w");
	if (!f) {
		printf("Could not save your public key in %s\n", identity_file);
		exit(1);
	}
	if (!key_write(public, f))
		fprintf(stderr, "write key failed");
	fprintf(f, " %s\n", comment);
	fclose(f);

	if (!quiet) {
		printf("Your public key has been saved in %s.\n",
		    identity_file);
		printf("The key fingerprint is:\n");
		printf("%s %s\n", key_fingerprint(public), comment);
	}

	key_free(public);
	exit(0);
}
Commit	Line	Data
8efc0c15	1	/*
5260325f	2	* Author: Tatu Ylonen <ylo@cs.hut.fi>
	3	* Copyright (c) 1994 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
	4	* All rights reserved
	5	* Created: Mon Mar 27 02:26:40 1995 ylo
	6	* Identity and host key generation and maintenance.
	7	*/
8efc0c15	8
	9	#include "includes.h"
	10	RCSID("$Id$");
	11
a306f2dd	12	#include <openssl/evp.h>
	13	#include <openssl/pem.h>
	14	#include <openssl/rsa.h>
	15	#include <openssl/dsa.h>
	16
8efc0c15	17	#include "ssh.h"
8efc0c15	18	#include "xmalloc.h"
f095fcc7	19	#include "fingerprint.h"
a306f2dd	20	#include "key.h"
	21	#include "rsa.h"
	22	#include "dsa.h"
	23	#include "authfile.h"
	24	#include "uuencode.h"
8efc0c15	25
a306f2dd	26	/* Number of bits in the RSA/DSA key. This value can be changed on the command line. */
8efc0c15	27	int bits = 1024;
8efc0c15	28
aa3378df	29	/*
	30	* Flag indicating that we just want to change the passphrase. This can be
	31	* set on the command line.
	32	*/
8efc0c15	33	int change_passphrase = 0;
8efc0c15	34
aa3378df	35	/*
	36	* Flag indicating that we just want to change the comment. This can be set
	37	* on the command line.
	38	*/
8efc0c15	39	int change_comment = 0;
	40
	41	int quiet = 0;
	42
f095fcc7	43	/* Flag indicating that we just want to see the key fingerprint */
	44	int print_fingerprint = 0;
	45
5ad13cd7	46	/* The identity file name, given on the command line or entered by the user. */
	47	char identity_file[1024];
	48	int have_identity = 0;
8efc0c15	49
	50	/* This is set to the passphrase if given on the command line. */
	51	char *identity_passphrase = NULL;
	52
	53	/* This is set to the new passphrase if given on the command line. */
	54	char *identity_new_passphrase = NULL;
	55
	56	/* This is set to the new comment if given on the command line. */
	57	char *identity_comment = NULL;
	58
a306f2dd	59	/* Dump public key file in format used by real and the original SSH 2 */
	60	int convert_to_ssh2 = 0;
	61	int convert_from_ssh2 = 0;
	62	int print_public = 0;
	63	int dsa_mode = 0;
	64
5ad13cd7	65	/* argv0 */
5260325f	66	#ifdef HAVE___PROGNAME
5ad13cd7	67	extern char *__progname;
5260325f	68	#else /* HAVE___PROGNAME */
	69	const char *__progname = "ssh-keygen";
	70	#endif /* HAVE___PROGNAME */
8efc0c15	71
a306f2dd	72	char hostname[MAXHOSTNAMELEN];
a306f2dd	73
5ad13cd7	74	void
5ad13cd7	75	ask_filename(struct passwd pw, const char prompt)
8efc0c15	76	{
5260325f	77	char buf[1024];
	78	snprintf(identity_file, sizeof(identity_file), "%s/%s",
	79	pw->pw_dir, SSH_CLIENT_IDENTITY);
	80	printf("%s (%s): ", prompt, identity_file);
	81	fflush(stdout);
	82	if (fgets(buf, sizeof(buf), stdin) == NULL)
	83	exit(1);
	84	if (strchr(buf, '\n'))
	85	*strchr(buf, '\n') = 0;
	86	if (strcmp(buf, "") != 0)
	87	strlcpy(identity_file, buf, sizeof(identity_file));
	88	have_identity = 1;
f095fcc7	89	}
8efc0c15	90
a306f2dd	91	int
	92	try_load_key(char filename, Key k)
	93	{
	94	int success = 1;
	95	if (!load_private_key(filename, "", k, NULL)) {
	96	char *pass = read_passphrase("Enter passphrase: ", 1);
	97	if (!load_private_key(filename, pass, k, NULL)) {
	98	success = 0;
	99	}
	100	memset(pass, 0, strlen(pass));
	101	xfree(pass);
	102	}
	103	return success;
	104	}
	105
	106	#define SSH_COM_MAGIC_BEGIN "---- BEGIN SSH2 PUBLIC KEY ----"
	107	#define SSH_COM_MAGIC_END "---- END SSH2 PUBLIC KEY ----"
	108
	109	void
	110	do_convert_to_ssh2(struct passwd *pw)
	111	{
	112	Key *k;
	113	int len;
	114	unsigned char *blob;
	115	struct stat st;
	116
	117	if (!have_identity)
	118	ask_filename(pw, "Enter file in which the key is");
	119	if (stat(identity_file, &st) < 0) {
	120	perror(identity_file);
	121	exit(1);
	122	}
	123	k = key_new(KEY_DSA);
	124	if (!try_load_key(identity_file, k)) {
	125	fprintf(stderr, "load failed\n");
	126	exit(1);
	127	}
	128	dsa_make_key_blob(k, &blob, &len);
	129	fprintf(stdout, SSH_COM_MAGIC_BEGIN "\n");
	130	fprintf(stdout,
	131	"Comment: \"%d-bit DSA, converted from openssh by %s@%s\"\n",
	132	BN_num_bits(k->dsa->p),
	133	pw->pw_name, hostname);
	134	dump_base64(stdout, blob, len);
	135	fprintf(stdout, SSH_COM_MAGIC_END "\n");
	136	key_free(k);
	137	xfree(blob);
	138	exit(0);
	139	}
	140
	141	void
	142	do_convert_from_ssh2(struct passwd *pw)
	143	{
	144	Key *k;
	145	int blen;
	146	char line[1024], *p;
	147	char blob[8096];
	148	char encoded[8096];
	149	struct stat st;
	150	FILE *fp;
	151
	152	if (!have_identity)
	153	ask_filename(pw, "Enter file in which the key is");
	154	if (stat(identity_file, &st) < 0) {
155	perror(identity_file);
156	exit(1);
157	}
158	fp = fopen(identity_file, "r");
159	if (fp == NULL) {
160	perror(identity_file);
161	exit(1);
162	}
163	encoded[0] = '\0';
164	while (fgets(line, sizeof(line), fp)) {
165	if (strncmp(line, "----", 4) == 0 \|\|
166	strstr(line, ": ") != NULL) {
167	fprintf(stderr, "ignore: %s", line);
168	continue;
169	}
170	if (!(p = strchr(line, '\n'))) {
171	fprintf(stderr, "input line too long.\n");
172	exit(1);
173	}
174	*p = '\0';
175	strlcat(encoded, line, sizeof(encoded));
176	}
177	blen = uudecode(encoded, (unsigned char *)blob, sizeof(blob));
178	if (blen < 0) {
179	fprintf(stderr, "uudecode failed.\n");
180	exit(1);
181	}
182	k = dsa_key_from_blob(blob, blen);
183	if (!key_write(k, stdout))
184	fprintf(stderr, "key_write failed");
185	key_free(k);
186	fprintf(stdout, "\n");
187	fclose(fp);
188	exit(0);
189	}
190
191	void
192	do_print_public(struct passwd *pw)
193	{
194	Key *k;
195	int len;
196	unsigned char *blob;
197	struct stat st;
198
199	if (!have_identity)
200	ask_filename(pw, "Enter file in which the key is");
201	if (stat(identity_file, &st) < 0) {
202	perror(identity_file);
203	exit(1);
204	}
205	k = key_new(KEY_DSA);
206	if (!try_load_key(identity_file, k)) {
207	fprintf(stderr, "load failed\n");
208	exit(1);
209	}
210	dsa_make_key_blob(k, &blob, &len);
211	if (!key_write(k, stdout))
212	fprintf(stderr, "key_write failed");
213	key_free(k);
214	xfree(blob);
215	fprintf(stdout, "\n");
216	exit(0);
217	}
218
f095fcc7	219	void
	220	do_fingerprint(struct passwd *pw)
	221	{
c8d54615	222	FILE *f;
c8d54615	223	BIGNUM e, n;
a306f2dd	224	Key *public;
c8d54615	225	char comment = NULL, cp, ep, line[161024];
c8d54615	226	int i, skip = 0, num = 1, invalid = 1;
610cd5c6	227	unsigned int ignore;
5260325f	228	struct stat st;
	229
	230	if (!have_identity)
	231	ask_filename(pw, "Enter file in which the key is");
	232	if (stat(identity_file, &st) < 0) {
	233	perror(identity_file);
	234	exit(1);
	235	}
a306f2dd	236	public = key_new(KEY_RSA);
	237	if (load_public_key(identity_file, public, &comment)) {
	238	printf("%d %s %s\n", BN_num_bits(public->rsa->n),
	239	key_fingerprint(public), comment);
	240	key_free(public);
c8d54615	241	exit(0);
c8d54615	242	}
a306f2dd	243	key_free(public);
c8d54615	244
a306f2dd	245	/* XXX */
c8d54615	246	f = fopen(identity_file, "r");
c8d54615	247	if (f != NULL) {
5260325f	248	n = BN_new();
5260325f	249	e = BN_new();
c8d54615	250	while (fgets(line, sizeof(line), f)) {
	251	i = strlen(line) - 1;
	252	if (line[i] != '\n') {
	253	error("line %d too long: %.40s...", num, line);
	254	skip = 1;
	255	continue;
	256	}
	257	num++;
	258	if (skip) {
	259	skip = 0;
	260	continue;
	261	}
	262	line[i] = '\0';
	263
	264	/* Skip leading whitespace, empty and comment lines. */
	265	for (cp = line; cp == ' ' \|\| cp == '\t'; cp++)
	266	;
	267	if (!cp \|\| cp == '\n' \|\| *cp == '#')
	268	continue ;
	269	i = strtol(cp, &ep, 10);
	270	if (i == 0 \|\| ep == NULL \|\| (ep != ' ' && ep != '\t')) {
	271	int quoted = 0;
	272	comment = cp;
	273	for (; cp && (quoted \|\| (cp != ' ' && *cp != '\t')); cp++) {
	274	if (*cp == '\\' && cp[1] == '"')
	275	cp++; /* Skip both */
	276	else if (*cp == '"')
	277	quoted = !quoted;
	278	}
	279	if (!*cp)
	280	continue;
	281	*cp++ = '\0';
	282	}
	283	ep = cp;
610cd5c6	284	if (auth_rsa_read_key(&cp, &ignore, e, n)) {
c8d54615	285	invalid = 0;
	286	comment = *cp ? cp : comment;
	287	printf("%d %s %s\n", BN_num_bits(n),
	288	fingerprint(e, n),
	289	comment ? comment : "no comment");
5260325f	290	}
5260325f	291	}
c8d54615	292	BN_free(e);
	293	BN_free(n);
	294	fclose(f);
	295	}
	296	if (invalid) {
	297	printf("%s is not a valid key file.\n", identity_file);
	298	exit(1);
5260325f	299	}
5260325f	300	exit(0);
f095fcc7	301	}
f095fcc7	302
5260325f	303	/*
	304	* Perform changing a passphrase. The argument is the passwd structure
	305	* for the current user.
	306	*/
f095fcc7	307	void
	308	do_change_passphrase(struct passwd *pw)
	309	{
5260325f	310	char *comment;
	311	char old_passphrase, passphrase1, *passphrase2;
	312	struct stat st;
a306f2dd	313	Key *private;
	314	Key *public;
	315	int type = dsa_mode ? KEY_DSA : KEY_RSA;
5260325f	316
	317	if (!have_identity)
	318	ask_filename(pw, "Enter file in which the key is");
5260325f	319	if (stat(identity_file, &st) < 0) {
	320	perror(identity_file);
	321	exit(1);
	322	}
a306f2dd	323
	324	if (type == KEY_RSA) {
	325	/* XXX this works currently only for RSA */
	326	public = key_new(type);
	327	if (!load_public_key(identity_file, public, NULL)) {
	328	printf("%s is not a valid key file.\n", identity_file);
	329	exit(1);
	330	}
	331	/* Clear the public key since we are just about to load the whole file. */
	332	key_free(public);
5260325f	333	}
5260325f	334
5260325f	335	/* Try to load the file with empty passphrase. */
a306f2dd	336	private = key_new(type);
a306f2dd	337	if (!load_private_key(identity_file, "", private, &comment)) {
5260325f	338	if (identity_passphrase)
	339	old_passphrase = xstrdup(identity_passphrase);
	340	else
	341	old_passphrase = read_passphrase("Enter old passphrase: ", 1);
a306f2dd	342	if (!load_private_key(identity_file, old_passphrase, private, &comment)) {
5260325f	343	memset(old_passphrase, 0, strlen(old_passphrase));
	344	xfree(old_passphrase);
	345	printf("Bad passphrase.\n");
	346	exit(1);
	347	}
5260325f	348	memset(old_passphrase, 0, strlen(old_passphrase));
	349	xfree(old_passphrase);
	350	}
	351	printf("Key has comment '%s'\n", comment);
	352
	353	/* Ask the new passphrase (twice). */
	354	if (identity_new_passphrase) {
	355	passphrase1 = xstrdup(identity_new_passphrase);
	356	passphrase2 = NULL;
	357	} else {
	358	passphrase1 =
	359	read_passphrase("Enter new passphrase (empty for no passphrase): ", 1);
	360	passphrase2 = read_passphrase("Enter same passphrase again: ", 1);
	361
	362	/* Verify that they are the same. */
	363	if (strcmp(passphrase1, passphrase2) != 0) {
	364	memset(passphrase1, 0, strlen(passphrase1));
	365	memset(passphrase2, 0, strlen(passphrase2));
	366	xfree(passphrase1);
	367	xfree(passphrase2);
	368	printf("Pass phrases do not match. Try again.\n");
	369	exit(1);
	370	}
	371	/* Destroy the other copy. */
	372	memset(passphrase2, 0, strlen(passphrase2));
	373	xfree(passphrase2);
8efc0c15	374	}
8efc0c15	375
5260325f	376	/* Save the file using the new passphrase. */
a306f2dd	377	if (!save_private_key(identity_file, passphrase1, private, comment)) {
5260325f	378	printf("Saving the key failed: %s: %s.\n",
	379	identity_file, strerror(errno));
	380	memset(passphrase1, 0, strlen(passphrase1));
	381	xfree(passphrase1);
a306f2dd	382	key_free(private);
5260325f	383	xfree(comment);
	384	exit(1);
	385	}
	386	/* Destroy the passphrase and the copy of the key in memory. */
	387	memset(passphrase1, 0, strlen(passphrase1));
	388	xfree(passphrase1);
a306f2dd	389	key_free(private); /* Destroys contents */
5260325f	390	xfree(comment);
	391
	392	printf("Your identification has been saved with the new passphrase.\n");
	393	exit(0);
	394	}
8efc0c15	395
5260325f	396	/*
	397	* Change the comment of a private key file.
	398	*/
8efc0c15	399	void
	400	do_change_comment(struct passwd *pw)
	401	{
5260325f	402	char new_comment[1024], *comment;
a306f2dd	403	Key *private;
a306f2dd	404	Key *public;
5260325f	405	char *passphrase;
	406	struct stat st;
	407	FILE *f;
5260325f	408
	409	if (!have_identity)
	410	ask_filename(pw, "Enter file in which the key is");
5260325f	411	if (stat(identity_file, &st) < 0) {
	412	perror(identity_file);
	413	exit(1);
	414	}
aa3378df	415	/*
	416	* Try to load the public key from the file the verify that it is
	417	* readable and of the proper format.
	418	*/
a306f2dd	419	public = key_new(KEY_RSA);
a306f2dd	420	if (!load_public_key(identity_file, public, NULL)) {
5260325f	421	printf("%s is not a valid key file.\n", identity_file);
5260325f	422	exit(1);
8efc0c15	423	}
aa3378df	424
a306f2dd	425	private = key_new(KEY_RSA);
a306f2dd	426	if (load_private_key(identity_file, "", private, &comment))
5260325f	427	passphrase = xstrdup("");
5260325f	428	else {
5260325f	429	if (identity_passphrase)
	430	passphrase = xstrdup(identity_passphrase);
	431	else if (identity_new_passphrase)
	432	passphrase = xstrdup(identity_new_passphrase);
	433	else
	434	passphrase = read_passphrase("Enter passphrase: ", 1);
	435	/* Try to load using the passphrase. */
a306f2dd	436	if (!load_private_key(identity_file, passphrase, private, &comment)) {
5260325f	437	memset(passphrase, 0, strlen(passphrase));
	438	xfree(passphrase);
	439	printf("Bad passphrase.\n");
	440	exit(1);
	441	}
	442	}
	443	printf("Key now has comment '%s'\n", comment);
	444
	445	if (identity_comment) {
	446	strlcpy(new_comment, identity_comment, sizeof(new_comment));
	447	} else {
	448	printf("Enter new comment: ");
	449	fflush(stdout);
	450	if (!fgets(new_comment, sizeof(new_comment), stdin)) {
	451	memset(passphrase, 0, strlen(passphrase));
a306f2dd	452	key_free(private);
5260325f	453	exit(1);
5260325f	454	}
5260325f	455	if (strchr(new_comment, '\n'))
	456	*strchr(new_comment, '\n') = 0;
	457	}
	458
	459	/* Save the file using the new passphrase. */
a306f2dd	460	if (!save_private_key(identity_file, passphrase, private, new_comment)) {
5260325f	461	printf("Saving the key failed: %s: %s.\n",
	462	identity_file, strerror(errno));
	463	memset(passphrase, 0, strlen(passphrase));
	464	xfree(passphrase);
a306f2dd	465	key_free(private);
5260325f	466	xfree(comment);
5260325f	467	exit(1);
8efc0c15	468	}
5260325f	469	memset(passphrase, 0, strlen(passphrase));
5260325f	470	xfree(passphrase);
a306f2dd	471	key_free(private);
5260325f	472
5260325f	473	strlcat(identity_file, ".pub", sizeof(identity_file));
	474	f = fopen(identity_file, "w");
	475	if (!f) {
	476	printf("Could not save your public key in %s\n", identity_file);
	477	exit(1);
	478	}
a306f2dd	479	if (!key_write(public, f))
	480	fprintf(stderr, "write key failed");
	481	key_free(public);
	482	fprintf(f, " %s\n", new_comment);
5260325f	483	fclose(f);
	484
	485	xfree(comment);
	486
	487	printf("The comment in your key file has been changed.\n");
	488	exit(0);
8efc0c15	489	}
8efc0c15	490
5ad13cd7	491	void
	492	usage(void)
	493	{
5260325f	494	printf("ssh-keygen version %s\n", SSH_VERSION);
a306f2dd	495	printf("Usage: %s [-b bits] [-p] [-c] [-l] [-x] [-X] [-y] [-f file] [-P pass] [-N new-pass] [-C comment]\n", __progname);
5260325f	496	exit(1);
5ad13cd7	497	}
5ad13cd7	498
5260325f	499	/*
	500	* Main program for key management.
	501	*/
8efc0c15	502	int
	503	main(int ac, char **av)
	504	{
5260325f	505	char dotsshdir[16 * 1024], comment[1024], passphrase1, passphrase2;
5260325f	506	struct passwd *pw;
5260325f	507	int opt;
	508	struct stat st;
	509	FILE *f;
a306f2dd	510	Key *private;
a306f2dd	511	Key *public;
5260325f	512	extern int optind;
	513	extern char *optarg;
	514
a306f2dd	515	OpenSSL_add_all_algorithms();
a306f2dd	516
aa3378df	517	/* we need this for the home * directory. */
5260325f	518	pw = getpwuid(getuid());
	519	if (!pw) {
	520	printf("You don't exist, go away!\n");
	521	exit(1);
	522	}
a306f2dd	523	if (gethostname(hostname, sizeof(hostname)) < 0) {
	524	perror("gethostname");
	525	exit(1);
	526	}
aa3378df	527
a306f2dd	528	while ((opt = getopt(ac, av, "dqpclRxXyb:f:P:N:C:")) != EOF) {
5260325f	529	switch (opt) {
	530	case 'b':
	531	bits = atoi(optarg);
	532	if (bits < 512 \|\| bits > 32768) {
	533	printf("Bits has bad value.\n");
	534	exit(1);
	535	}
	536	break;
	537
	538	case 'l':
	539	print_fingerprint = 1;
	540	break;
	541
	542	case 'p':
	543	change_passphrase = 1;
	544	break;
	545
	546	case 'c':
	547	change_comment = 1;
	548	break;
	549
	550	case 'f':
	551	strlcpy(identity_file, optarg, sizeof(identity_file));
	552	have_identity = 1;
	553	break;
	554
	555	case 'P':
	556	identity_passphrase = optarg;
	557	break;
	558
	559	case 'N':
	560	identity_new_passphrase = optarg;
	561	break;
	562
	563	case 'C':
	564	identity_comment = optarg;
	565	break;
	566
	567	case 'q':
	568	quiet = 1;
	569	break;
	570
a306f2dd	571	case 'R':
	572	if (rsa_alive() == 0)
	573	exit(1);
	574	else
	575	exit(0);
	576	break;
	577
	578	case 'x':
	579	convert_to_ssh2 = 1;
	580	break;
	581
	582	case 'X':
	583	convert_from_ssh2 = 1;
	584	break;
	585
	586	case 'y':
	587	print_public = 1;
	588	break;
	589
	590	case 'd':
	591	dsa_mode = 1;
	592	break;
	593
5260325f	594	case '?':
	595	default:
	596	usage();
	597	}
	598	}
	599	if (optind < ac) {
	600	printf("Too many arguments.\n");
	601	usage();
	602	}
	603	if (change_passphrase && change_comment) {
	604	printf("Can only have one of -p and -c.\n");
	605	usage();
	606	}
a306f2dd	607	/* check if RSA support is needed and exists */
	608	if (dsa_mode == 0 && rsa_alive() == 0) {
	609	fprintf(stderr,
	610	"%s: no RSA support in libssl and libcrypto. See ssl(8).\n",
	611	__progname);
	612	exit(1);
	613	}
5260325f	614	if (print_fingerprint)
5260325f	615	do_fingerprint(pw);
5260325f	616	if (change_passphrase)
5260325f	617	do_change_passphrase(pw);
5260325f	618	if (change_comment)
5260325f	619	do_change_comment(pw);
a306f2dd	620	if (convert_to_ssh2)
	621	do_convert_to_ssh2(pw);
	622	if (convert_from_ssh2)
	623	do_convert_from_ssh2(pw);
	624	if (print_public)
	625	do_print_public(pw);
5260325f	626
	627	arc4random_stir();
	628
a306f2dd	629	if (dsa_mode != 0) {
	630	if (!quiet)
	631	printf("Generating DSA parameter and key.\n");
	632	public = private = dsa_generate_key(bits);
	633	if (private == NULL) {
	634	fprintf(stderr, "dsa_generate_keys failed");
	635	exit(1);
	636	}
	637	} else {
	638	if (quiet)
	639	rsa_set_verbose(0);
	640	/* Generate the rsa key pair. */
	641	public = key_new(KEY_RSA);
	642	private = key_new(KEY_RSA);
	643	rsa_generate_key(private->rsa, public->rsa, bits);
	644	}
5260325f	645
	646	if (!have_identity)
	647	ask_filename(pw, "Enter file in which to save the key");
	648
	649	/* Create ~/.ssh directory if it doesn\'t already exist. */
	650	snprintf(dotsshdir, sizeof dotsshdir, "%s/%s", pw->pw_dir, SSH_USER_DIR);
	651	if (strstr(identity_file, dotsshdir) != NULL &&
	652	stat(dotsshdir, &st) < 0) {
	653	if (mkdir(dotsshdir, 0755) < 0)
	654	error("Could not create directory '%s'.", dotsshdir);
	655	else if (!quiet)
	656	printf("Created directory '%s'.\n", dotsshdir);
	657	}
	658	/* If the file already exists, ask the user to confirm. */
	659	if (stat(identity_file, &st) >= 0) {
	660	char yesno[3];
	661	printf("%s already exists.\n", identity_file);
	662	printf("Overwrite (y/n)? ");
	663	fflush(stdout);
	664	if (fgets(yesno, sizeof(yesno), stdin) == NULL)
	665	exit(1);
	666	if (yesno[0] != 'y' && yesno[0] != 'Y')
	667	exit(1);
	668	}
	669	/* Ask for a passphrase (twice). */
	670	if (identity_passphrase)
	671	passphrase1 = xstrdup(identity_passphrase);
	672	else if (identity_new_passphrase)
	673	passphrase1 = xstrdup(identity_new_passphrase);
	674	else {
	675	passphrase_again:
	676	passphrase1 =
	677	read_passphrase("Enter passphrase (empty for no passphrase): ", 1);
	678	passphrase2 = read_passphrase("Enter same passphrase again: ", 1);
	679	if (strcmp(passphrase1, passphrase2) != 0) {
	680	/* The passphrases do not match. Clear them and retry. */
	681	memset(passphrase1, 0, strlen(passphrase1));
	682	memset(passphrase2, 0, strlen(passphrase2));
	683	xfree(passphrase1);
	684	xfree(passphrase2);
	685	printf("Passphrases do not match. Try again.\n");
	686	goto passphrase_again;
	687	}
	688	/* Clear the other copy of the passphrase. */
	689	memset(passphrase2, 0, strlen(passphrase2));
	690	xfree(passphrase2);
	691	}
	692
5260325f	693	if (identity_comment) {
	694	strlcpy(comment, identity_comment, sizeof(comment));
	695	} else {
6ae2364d	696	/* Create default commend field for the passphrase. */
5260325f	697	snprintf(comment, sizeof comment, "%s@%s", pw->pw_name, hostname);
	698	}
	699
	700	/* Save the key with the given passphrase and comment. */
a306f2dd	701	if (!save_private_key(identity_file, passphrase1, private, comment)) {
5260325f	702	printf("Saving the key failed: %s: %s.\n",
a306f2dd	703	identity_file, strerror(errno));
5260325f	704	memset(passphrase1, 0, strlen(passphrase1));
	705	xfree(passphrase1);
	706	exit(1);
	707	}
	708	/* Clear the passphrase. */
	709	memset(passphrase1, 0, strlen(passphrase1));
	710	xfree(passphrase1);
	711
	712	/* Clear the private key and the random number generator. */
a306f2dd	713	if (private != public) {
	714	key_free(private);
	715	}
5260325f	716	arc4random_stir();
	717
	718	if (!quiet)
	719	printf("Your identification has been saved in %s.\n", identity_file);
	720
5260325f	721	strlcat(identity_file, ".pub", sizeof(identity_file));
	722	f = fopen(identity_file, "w");
	723	if (!f) {
	724	printf("Could not save your public key in %s\n", identity_file);
	725	exit(1);
	726	}
a306f2dd	727	if (!key_write(public, f))
	728	fprintf(stderr, "write key failed");
	729	fprintf(f, " %s\n", comment);
5260325f	730	fclose(f);
	731
	732	if (!quiet) {
a306f2dd	733	printf("Your public key has been saved in %s.\n",
a306f2dd	734	identity_file);
5260325f	735	printf("The key fingerprint is:\n");
a306f2dd	736	printf("%s %s\n", key_fingerprint(public), comment);
8efc0c15	737	}
a306f2dd	738
a306f2dd	739	key_free(public);
5260325f	740	exit(0);
8efc0c15	741	}