|
1 /* apps/ciphers.c */ |
|
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
|
3 * All rights reserved. |
|
4 * |
|
5 * This package is an SSL implementation written |
|
6 * by Eric Young (eay@cryptsoft.com). |
|
7 * The implementation was written so as to conform with Netscapes SSL. |
|
8 * |
|
9 * This library is free for commercial and non-commercial use as long as |
|
10 * the following conditions are aheared to. The following conditions |
|
11 * apply to all code found in this distribution, be it the RC4, RSA, |
|
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation |
|
13 * included with this distribution is covered by the same copyright terms |
|
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com). |
|
15 * |
|
16 * Copyright remains Eric Young's, and as such any Copyright notices in |
|
17 * the code are not to be removed. |
|
18 * If this package is used in a product, Eric Young should be given attribution |
|
19 * as the author of the parts of the library used. |
|
20 * This can be in the form of a textual message at program startup or |
|
21 * in documentation (online or textual) provided with the package. |
|
22 * |
|
23 * Redistribution and use in source and binary forms, with or without |
|
24 * modification, are permitted provided that the following conditions |
|
25 * are met: |
|
26 * 1. Redistributions of source code must retain the copyright |
|
27 * notice, this list of conditions and the following disclaimer. |
|
28 * 2. Redistributions in binary form must reproduce the above copyright |
|
29 * notice, this list of conditions and the following disclaimer in the |
|
30 * documentation and/or other materials provided with the distribution. |
|
31 * 3. All advertising materials mentioning features or use of this software |
|
32 * must display the following acknowledgement: |
|
33 * "This product includes cryptographic software written by |
|
34 * Eric Young (eay@cryptsoft.com)" |
|
35 * The word 'cryptographic' can be left out if the rouines from the library |
|
36 * being used are not cryptographic related :-). |
|
37 * 4. If you include any Windows specific code (or a derivative thereof) from |
|
38 * the apps directory (application code) you must include an acknowledgement: |
|
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" |
|
40 * |
|
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND |
|
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
|
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
|
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE |
|
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
|
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS |
|
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
|
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT |
|
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY |
|
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF |
|
51 * SUCH DAMAGE. |
|
52 * |
|
53 * The licence and distribution terms for any publically available version or |
|
54 * derivative of this code cannot be changed. i.e. this code cannot simply be |
|
55 * copied and put under another distribution licence |
|
56 * [including the GNU Public Licence.] |
|
57 */ |
|
58 |
|
59 #include <stdio.h> |
|
60 #include <stdlib.h> |
|
61 #include <string.h> |
|
62 #ifdef OPENSSL_NO_STDIO |
|
63 #define APPS_WIN16 |
|
64 #endif |
|
65 #include "apps.h" |
|
66 #include <openssl/err.h> |
|
67 #include <openssl/ssl.h> |
|
68 |
|
69 #undef PROG |
|
70 #define PROG ciphers_main |
|
71 |
|
72 static const char *ciphers_usage[]={ |
|
73 "usage: ciphers args\n", |
|
74 " -v - verbose mode, a textual listing of the ciphers in SSLeay\n", |
|
75 " -ssl2 - SSL2 mode\n", |
|
76 " -ssl3 - SSL3 mode\n", |
|
77 " -tls1 - TLS1 mode\n", |
|
78 NULL |
|
79 }; |
|
80 |
|
81 int MAIN(int, char **); |
|
82 |
|
83 int MAIN(int argc, char **argv) |
|
84 { |
|
85 int ret=1,i; |
|
86 int verbose=0; |
|
87 const char **pp; |
|
88 const char *p; |
|
89 int badops=0; |
|
90 SSL_CTX *ctx=NULL; |
|
91 SSL *ssl=NULL; |
|
92 char *ciphers=NULL; |
|
93 SSL_METHOD *meth=NULL; |
|
94 STACK_OF(SSL_CIPHER) *sk; |
|
95 char buf[512]; |
|
96 BIO *STDout=NULL; |
|
97 |
|
98 #if !defined(OPENSSL_NO_SSL2) && !defined(OPENSSL_NO_SSL3) |
|
99 meth=SSLv23_server_method(); |
|
100 #elif !defined(OPENSSL_NO_SSL3) |
|
101 meth=SSLv3_server_method(); |
|
102 #elif !defined(OPENSSL_NO_SSL2) |
|
103 meth=SSLv2_server_method(); |
|
104 #endif |
|
105 |
|
106 apps_startup(); |
|
107 |
|
108 if (bio_err == NULL) |
|
109 bio_err=BIO_new_fp(stderr,BIO_NOCLOSE); |
|
110 STDout=BIO_new_fp(stdout,BIO_NOCLOSE); |
|
111 |
|
112 #ifdef OPENSSL_SYS_VMS |
|
113 { |
|
114 BIO *tmpbio = BIO_new(BIO_f_linebuffer()); |
|
115 STDout = BIO_push(tmpbio, STDout); |
|
116 } |
|
117 #endif |
|
118 |
|
119 argc--; |
|
120 argv++; |
|
121 while (argc >= 1) |
|
122 { |
|
123 if (strcmp(*argv,"-v") == 0) |
|
124 verbose=1; |
|
125 #ifndef OPENSSL_NO_SSL2 |
|
126 else if (strcmp(*argv,"-ssl2") == 0) |
|
127 meth=SSLv2_client_method(); |
|
128 #endif |
|
129 #ifndef OPENSSL_NO_SSL3 |
|
130 else if (strcmp(*argv,"-ssl3") == 0) |
|
131 meth=SSLv3_client_method(); |
|
132 #endif |
|
133 #ifndef OPENSSL_NO_TLS1 |
|
134 else if (strcmp(*argv,"-tls1") == 0) |
|
135 meth=TLSv1_client_method(); |
|
136 #endif |
|
137 else if ((strncmp(*argv,"-h",2) == 0) || |
|
138 (strcmp(*argv,"-?") == 0)) |
|
139 { |
|
140 badops=1; |
|
141 break; |
|
142 } |
|
143 else |
|
144 { |
|
145 ciphers= *argv; |
|
146 } |
|
147 argc--; |
|
148 argv++; |
|
149 } |
|
150 |
|
151 if (badops) |
|
152 { |
|
153 for (pp=ciphers_usage; (*pp != NULL); pp++) |
|
154 BIO_printf(bio_err,"%s",*pp); |
|
155 goto end; |
|
156 } |
|
157 |
|
158 OpenSSL_add_ssl_algorithms(); |
|
159 |
|
160 ctx=SSL_CTX_new(meth); |
|
161 if (ctx == NULL) goto err; |
|
162 if (ciphers != NULL) { |
|
163 if(!SSL_CTX_set_cipher_list(ctx,ciphers)) { |
|
164 BIO_printf(bio_err, "Error in cipher list\n"); |
|
165 goto err; |
|
166 } |
|
167 } |
|
168 ssl=SSL_new(ctx); |
|
169 if (ssl == NULL) goto err; |
|
170 |
|
171 |
|
172 if (!verbose) |
|
173 { |
|
174 for (i=0; ; i++) |
|
175 { |
|
176 p=SSL_get_cipher_list(ssl,i); |
|
177 if (p == NULL) break; |
|
178 if (i != 0) BIO_printf(STDout,":"); |
|
179 BIO_printf(STDout,"%s",p); |
|
180 } |
|
181 BIO_printf(STDout,"\n"); |
|
182 } |
|
183 else |
|
184 { |
|
185 sk=SSL_get_ciphers(ssl); |
|
186 |
|
187 for (i=0; i<sk_SSL_CIPHER_num(sk); i++) |
|
188 { |
|
189 BIO_puts(STDout,SSL_CIPHER_description( |
|
190 sk_SSL_CIPHER_value(sk,i), |
|
191 buf,sizeof buf)); |
|
192 } |
|
193 } |
|
194 |
|
195 ret=0; |
|
196 if (0) |
|
197 { |
|
198 err: |
|
199 SSL_load_error_strings(); |
|
200 ERR_print_errors(bio_err); |
|
201 } |
|
202 end: |
|
203 if (ctx != NULL) SSL_CTX_free(ctx); |
|
204 if (ssl != NULL) SSL_free(ssl); |
|
205 if (STDout != NULL) BIO_free_all(STDout); |
|
206 apps_shutdown(); |
|
207 OPENSSL_EXIT(ret); |
|
208 } |
|
209 |