Главная Обзор Помощь
Вход
HSD
/
putty
зеркало из https://git.tartarus.org/simon/putty.git
Следить 1
В избранное 0
Ответвить 0
Файлы
Дерево: 11192e2e33
Ветки Метки
putty
/
cmdgen.c

cmdgen.c 48 KB
История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363 
  1. /*
    2. 

  2.  * cmdgen.c - command-line form of PuTTYgen
    3. 

  3.  */
    4. 

  4. 

  5. #include <stdio.h>
    6. 

  6. #include <stdlib.h>
    7. 

  7. #include <ctype.h>
    8. 

  8. #include <limits.h>
    9. 

  9. #include <assert.h>
    10. 

  10. #include <time.h>
    11. 

  11. #include <errno.h>
    12. 

  12. #include <string.h>
    13. 

  13. 

  14. #include "putty.h"
    15. 

  15. #include "ssh.h"
    16. 

  16. #include "sshkeygen.h"
    17. 

  17. #include "mpint.h"
    18. 

  18. 

  19. static FILE *progress_fp = NULL;
    20. 

  20. static bool linear_progress_phase;
    21. 

  21. static unsigned last_progress_col;
    22. 

  22. 

  23. static ProgressPhase cmdgen_progress_add_linear(
    24. 

  24.     ProgressReceiver *prog, double c)
    25. 

  25. {
    26. 

  26.     ProgressPhase ph = { .n = 0 };
    27. 

  27.     return ph;
    28. 

  28. }
    29. 

  29. 

  30. static ProgressPhase cmdgen_progress_add_probabilistic(
    31. 

  31.     ProgressReceiver *prog, double c, double p)
    32. 

  32. {
    33. 

  33.     ProgressPhase ph = { .n = 1 };
    34. 

  34.     return ph;
    35. 

  35. }
    36. 

  36. 

  37. static void cmdgen_progress_start_phase(ProgressReceiver *prog,
    38. 

  38.                                         ProgressPhase p)
    39. 

  39. {
    40. 

  40.     linear_progress_phase = (p.n == 0);
    41. 

  41.     last_progress_col = 0;
    42. 

  42. }
    43. 

  43. static void cmdgen_progress_report(ProgressReceiver *prog, double p)
    44. 

  44. {
    45. 

  45.     unsigned new_col = p * 64 + 0.5;
    46. 

  46.     for (; last_progress_col < new_col; last_progress_col++)
    47. 

  47.         fputc('+', progress_fp);
    48. 

  48. }
    49. 

  49. static void cmdgen_progress_report_attempt(ProgressReceiver *prog)
    50. 

  50. {
    51. 

  51.     if (progress_fp) {
    52. 

  52.         fputc('+', progress_fp);
    53. 

  53.         fflush(progress_fp);
    54. 

  54.     }
    55. 

  55. }
    56. 

  56. static void cmdgen_progress_report_phase_complete(ProgressReceiver *prog)
    57. 

  57. {
    58. 

  58.     if (linear_progress_phase)
    59. 

  59.         cmdgen_progress_report(prog, 1.0);
    60. 

  60.     if (progress_fp) {
    61. 

  61.         fputc('\n', progress_fp);
    62. 

  62.         fflush(progress_fp);
    63. 

  63.     }
    64. 

  64. }
    65. 

  65. 

  66. static const ProgressReceiverVtable cmdgen_progress_vt = {
    67. 

  67.     .add_linear = cmdgen_progress_add_linear,
    68. 

  68.     .add_probabilistic = cmdgen_progress_add_probabilistic,
    69. 

  69.     .ready = null_progress_ready,
    70. 

  70.     .start_phase = cmdgen_progress_start_phase,
    71. 

  71.     .report = cmdgen_progress_report,
    72. 

  72.     .report_attempt = cmdgen_progress_report_attempt,
    73. 

  73.     .report_phase_complete = cmdgen_progress_report_phase_complete,
    74. 

  74. };
    75. 

  75. 

  76. static ProgressReceiver cmdgen_progress = { .vt = &cmdgen_progress_vt };
    77. 

  77. 

  78. /*
    79. 

  79.  * Stubs to let everything else link sensibly.
    80. 

  80.  */
    81. 

  81. char *x_get_default(const char *key)
    82. 

  82. {
    83. 

  83.     return NULL;
    84. 

  84. }
    85. 

  85. void sk_cleanup(void)
    86. 

  86. {
    87. 

  87. }
    88. 

  88. 

  89. void showversion(void)
    90. 

  90. {
    91. 

  91.     char *buildinfo_text = buildinfo("\n");
    92. 

  92.     printf("puttygen: %s\n%s\n", ver, buildinfo_text);
    93. 

  93.     sfree(buildinfo_text);
    94. 

  94. }
    95. 

  95. 

  96. void usage(bool standalone)
    97. 

  97. {
    98. 

  98.     fprintf(standalone ? stderr : stdout,
    99. 

  99.             "Usage: puttygen ( keyfile | -t type [ -b bits ] )\n"
    100. 

  100.             "                [ -C comment ] [ -P ] [ -q ]\n"
    101. 

  101.             "                [ -o output-keyfile ] [ -O type | -l | -L"
    102. 

  102.             " | -p ]\n");
    103. 

  103.     if (standalone)
    104. 

  104.         fprintf(stderr,
    105. 

  105.                 "Use \"puttygen --help\" for more detail.\n");
    106. 

  106. }
    107. 

  107. 

  108. void help(void)
    109. 

  109. {
    110. 

  110.     /*
    111. 

  111.      * Help message is an extended version of the usage message. So
    112. 

  112.      * start with that, plus a version heading.
    113. 

  113.      */
    114. 

  114.     printf("PuTTYgen: key generator and converter for the PuTTY tools\n"
    115. 

  115.            "%s\n", ver);
    116. 

  116.     usage(false);
    117. 

  117.     printf("  -t    specify key type when generating:\n"
    118. 

  118.            "           eddsa, ecdsa, rsa, dsa, rsa1   use with -b\n"
    119. 

  119.            "           ed25519, ed448                 special cases of eddsa\n"
    120. 

  120.            "  -b    specify number of bits when generating key\n"
    121. 

  121.            "  -C    change or specify key comment\n"
    122. 

  122.            "  -P    change key passphrase\n"
    123. 

  123.            "  -q    quiet: do not display progress bar\n"
    124. 

  124.            "  -O    specify output type:\n"
    125. 

  125.            "           private             output PuTTY private key format\n"
    126. 

  126.            "           private-openssh     export OpenSSH private key\n"
    127. 

  127.            "           private-openssh-new export OpenSSH private key "
    128. 

  128.                                              "(force new format)\n"
    129. 

  129.            "           private-sshcom      export ssh.com private key\n"
    130. 

  130.            "           public              RFC 4716 / ssh.com public key\n"
    131. 

  131.            "           public-openssh      OpenSSH public key\n"
    132. 

  132.            "           fingerprint         output the key fingerprint\n"
    133. 

  133.            "           text                output the key components as "
    134. 

  134.            "'name=0x####'\n"
    135. 

  135.            "  -o    specify output file\n"
    136. 

  136.            "  -l    equivalent to `-O fingerprint'\n"
    137. 

  137.            "  -L    equivalent to `-O public-openssh'\n"
    138. 

  138.            "  -p    equivalent to `-O public'\n"
    139. 

  139.            "  --dump   equivalent to `-O text'\n"
    140. 

  140.            "  --reencrypt          load a key and save it with fresh "
    141. 

  141.            "encryption\n"
    142. 

  142.            "  --old-passphrase file\n"
    143. 

  143.            "        specify file containing old key passphrase\n"
    144. 

  144.            "  --new-passphrase file\n"
    145. 

  145.            "        specify file containing new key passphrase\n"
    146. 

  146.            "  --random-device device\n"
    147. 

  147.            "        specify device to read entropy from (e.g. /dev/urandom)\n"
    148. 

  148.            "  --primes <type>      select prime-generation method:\n"
    149. 

  149.            "        probable       conventional probabilistic prime finding\n"
    150. 

  150.            "        proven         numbers that have been proven to be prime\n"
    151. 

  151.            "        proven-even    also try harder for an even distribution\n"
    152. 

  152.            "  --strong-rsa         use \"strong\" primes as RSA key factors\n"
    153. 

  153.            "  --ppk-param <key>=<value>[,<key>=<value>,...]\n"
    154. 

  154.            "        specify parameters when writing PuTTY private key file "
    155. 

  155.            "format:\n"
    156. 

  156.            "            version       PPK format version (min 2, max 3, "
    157. 

  157.            "default 3)\n"
    158. 

  158.            "            kdf           key derivation function (argon2id, "
    159. 

  159.            "argon2i, argon2d)\n"
    160. 

  160.            "            memory        Kbyte of memory to use in passphrase "
    161. 

  161.            "hash\n"
    162. 

  162.            "                             (default 8192)\n"
    163. 

  163.            "            time          approx milliseconds to hash for "
    164. 

  164.            "(default 100)\n"
    165. 

  165.            "            passes        number of hash passes to run "
    166. 

  166.            "(alternative to 'time')\n"
    167. 

  167.            "            parallelism   number of parallelisable threads in the "
    168. 

  168.            "hash function\n"
    169. 

  169.            "                             (default 1)\n"
    170. 

  170.            );
    171. 

  171. }
    172. 

  172. 

  173. static bool move(char *from, char *to)
    174. 

  174. {
    175. 

  175.     int ret;
    176. 

  176. 

  177.     ret = rename(from, to);
    178. 

  178.     if (ret) {
    179. 

  179.         /*
    180. 

  180.          * This OS may require us to remove the original file first.
    181. 

  181.          */
    182. 

  182.         remove(to);
    183. 

  183.         ret = rename(from, to);
    184. 

  184.     }
    185. 

  185.     if (ret) {
    186. 

  186.         perror("puttygen: cannot move new file on to old one");
    187. 

  187.         return false;
    188. 

  188.     }
    189. 

  189.     return true;
    190. 

  190. }
    191. 

  191. 

  192. static char *readpassphrase(const char *filename)
    193. 

  193. {
    194. 

  194.     FILE *fp;
    195. 

  195.     char *line;
    196. 

  196. 

  197.     fp = fopen(filename, "r");
    198. 

  198.     if (!fp) {
    199. 

  199.         fprintf(stderr, "puttygen: cannot open %s: %s\n",
    200. 

  200.                 filename, strerror(errno));
    201. 

  201.         return NULL;
    202. 

  202.     }
    203. 

  203.     line = fgetline(fp);
    204. 

  204.     if (line)
    205. 

  205.         line[strcspn(line, "\r\n")] = '\0';
    206. 

  206.     else if (ferror(fp))
    207. 

  207.         fprintf(stderr, "puttygen: error reading from %s: %s\n",
    208. 

  208.                 filename, strerror(errno));
    209. 

  209.     else        /* empty file */
    210. 

  210.         line = dupstr("");
    211. 

  211.     fclose(fp);
    212. 

  212.     return line;
    213. 

  213. }
    214. 

  214. 

  215. #define DEFAULT_RSADSA_BITS 2048
    216. 

  216. 

  217. /* For Unix in particular, but harmless if this main() is reused elsewhere */
    218. 

  218. const bool buildinfo_gtk_relevant = false;
    219. 

  219. 

  220. int main(int argc, char **argv)
    221. 

  221. {
    222. 

  222.     char *infile = NULL;
    223. 

  223.     Filename *infilename = NULL, *outfilename = NULL;
    224. 

  224.     LoadedFile *infile_lf = NULL;
    225. 

  225.     BinarySource *infile_bs = NULL;
    226. 

  226.     enum { NOKEYGEN, RSA1, RSA2, DSA, ECDSA, EDDSA } keytype = NOKEYGEN;
    227. 

  227.     char *outfile = NULL, *outfiletmp = NULL;
    228. 

  228.     enum { PRIVATE, PUBLIC, PUBLICO, FP, OPENSSH_AUTO,
    229. 

  229.            OPENSSH_NEW, SSHCOM, TEXT } outtype = PRIVATE;
    230. 

  230.     int bits = -1;
    231. 

  231.     const char *comment = NULL;
    232. 

  232.     char *origcomment = NULL;
    233. 

  233.     bool change_passphrase = false, reencrypt = false;
    234. 

  234.     bool errs = false, nogo = false;
    235. 

  235.     int intype = SSH_KEYTYPE_UNOPENABLE;
    236. 

  236.     int sshver = 0;
    237. 

  237.     ssh2_userkey *ssh2key = NULL;
    238. 

  238.     RSAKey *ssh1key = NULL;
    239. 

  239.     strbuf *ssh2blob = NULL;
    240. 

  240.     char *ssh2alg = NULL;
    241. 

  241.     char *old_passphrase = NULL, *new_passphrase = NULL;
    242. 

  242.     bool load_encrypted;
    243. 

  243.     const char *random_device = NULL;
    244. 

  244.     int exit_status = 0;
    245. 

  245.     const PrimeGenerationPolicy *primegen = &primegen_probabilistic;
    246. 

  246.     bool strong_rsa = false;
    247. 

  247.     ppk_save_parameters params = ppk_save_default_parameters;
    248. 

  248.     FingerprintType fptype = SSH_FPTYPE_DEFAULT;
    249. 

  249. 

  250.     if (is_interactive())
    251. 

  251.         progress_fp = stderr;
    252. 

  252. 

  253.     #define RETURN(status) do { exit_status = (status); goto out; } while (0)
    254. 

  254. 

  255.     /* ------------------------------------------------------------------
    256. 

  256.      * Parse the command line to figure out what we've been asked to do.
    257. 

  257.      */
    258. 

  258. 

  259.     /*
    260. 

  260.      * If run with no arguments at all, print the usage message and
    261. 

  261.      * return success.
    262. 

  262.      */
    263. 

  263.     if (argc <= 1) {
    264. 

  264.         usage(true);
    265. 

  265.         RETURN(0);
    266. 

  266.     }
    267. 

  267. 

  268.     /*
    269. 

  269.      * Parse command line arguments.
    270. 

  270.      */
    271. 

  271.     while (--argc) {
    272. 

  272.         char *p = *++argv;
    273. 

  273.         if (p[0] == '-' && p[1]) {
    274. 

  274.             /*
    275. 

  275.              * An option.
    276. 

  276.              */
    277. 

  277.             while (p && *++p) {
    278. 

  278.                 char c = *p;
    279. 

  279.                 switch (c) {
    280. 

  280.                   case '-': {
    281. 

  281.                     /*
    282. 

  282.                      * Long option.
    283. 

  283.                      */
    284. 

  284.                     char *opt, *val;
    285. 

  285.                     opt = p++;     /* opt will have _one_ leading - */
    286. 

  286.                     while (*p && *p != '=')
    287. 

  287.                         p++;               /* find end of option */
    288. 

  288.                     if (*p == '=') {
    289. 

  289.                       *p++ = '\0';
    290. 

  290.                       val = p;
    291. 

  291.                     } else
    292. 

  292.                         val = NULL;
    293. 

  293. 

  294.                     if (!strcmp(opt, "-help")) {
    295. 

  295.                       if (val) {
    296. 

  296.                         errs = true;
    297. 

  297.                         fprintf(stderr, "puttygen: option `-%s'"
    298. 

  298.                                 " expects no argument\n", opt);
    299. 

  299.                       } else {
    300. 

  300.                         help();
    301. 

  301.                         nogo = true;
    302. 

  302.                       }
    303. 

  303.                     } else if (!strcmp(opt, "-version")) {
    304. 

  304.                       if (val) {
    305. 

  305.                         errs = true;
    306. 

  306.                         fprintf(stderr, "puttygen: option `-%s'"
    307. 

  307.                                 " expects no argument\n", opt);
    308. 

  308.                       } else {
    309. 

  309.                         showversion();
    310. 

  310.                         nogo = true;
    311. 

  311.                       }
    312. 

  312.                     } else if (!strcmp(opt, "-pgpfp")) {
    313. 

  313.                       if (val) {
    314. 

  314.                         errs = true;
    315. 

  315.                         fprintf(stderr, "puttygen: option `-%s'"
    316. 

  316.                                 " expects no argument\n", opt);
    317. 

  317.                       } else {
    318. 

  318.                         /* support --pgpfp for consistency */
    319. 

  319.                         pgp_fingerprints();
    320. 

  320.                         nogo = true;
    321. 

  321.                       }
    322. 

  322.                     } else if (!strcmp(opt, "-old-passphrase")) {
    323. 

  323.                       if (!val && argc > 1)
    324. 

  324.                           --argc, val = *++argv;
    325. 

  325.                       if (!val) {
    326. 

  326.                         errs = true;
    327. 

  327.                         fprintf(stderr, "puttygen: option `-%s'"
    328. 

  328.                                 " expects an argument\n", opt);
    329. 

  329.                       } else {
    330. 

  330.                         old_passphrase = readpassphrase(val);
    331. 

  331.                         if (!old_passphrase)
    332. 

  332.                             errs = true;
    333. 

  333.                       }
    334. 

  334.                     } else if (!strcmp(opt, "-new-passphrase")) {
    335. 

  335.                       if (!val && argc > 1)
    336. 

  336.                           --argc, val = *++argv;
    337. 

  337.                       if (!val) {
    338. 

  338.                         errs = true;
    339. 

  339.                         fprintf(stderr, "puttygen: option `-%s'"
    340. 

  340.                                 " expects an argument\n", opt);
    341. 

  341.                       } else {
    342. 

  342.                         new_passphrase = readpassphrase(val);
    343. 

  343.                         if (!new_passphrase)
    344. 

  344.                             errs = true;
    345. 

  345.                       }
    346. 

  346.                     } else if (!strcmp(opt, "-random-device")) {
    347. 

  347.                       if (!val && argc > 1)
    348. 

  348.                           --argc, val = *++argv;
    349. 

  349.                       if (!val) {
    350. 

  350.                         errs = true;
    351. 

  351.                         fprintf(stderr, "puttygen: option `-%s'"
    352. 

  352.                                 " expects an argument\n", opt);
    353. 

  353.                       } else {
    354. 

  354.                         random_device = val;
    355. 

  355.                       }
    356. 

  356.                     } else if (!strcmp(opt, "-dump")) {
    357. 

  357.                         outtype = TEXT;
    358. 

  358.                     } else if (!strcmp(opt, "-primes")) {
    359. 

  359.                         if (!val && argc > 1)
    360. 

  360.                             --argc, val = *++argv;
    361. 

  361.                         if (!val) {
    362. 

  362.                             errs = true;
    363. 

  363.                             fprintf(stderr, "puttygen: option `-%s'"
    364. 

  364.                                     " expects an argument\n", opt);
    365. 

  365.                         } else if (!strcmp(val, "probable") ||
    366. 

  366.                                    !strcmp(val, "probabilistic")) {
    367. 

  367.                             primegen = &primegen_probabilistic;
    368. 

  368.                         } else if (!strcmp(val, "provable") ||
    369. 

  369.                                    !strcmp(val, "proven") ||
    370. 

  370.                                    !strcmp(val, "simple") ||
    371. 

  371.                                    !strcmp(val, "maurer-simple")) {
    372. 

  372.                             primegen = &primegen_provable_maurer_simple;
    373. 

  373.                         } else if (!strcmp(val, "provable-even") ||
    374. 

  374.                                    !strcmp(val, "proven-even") ||
    375. 

  375.                                    !strcmp(val, "even") ||
    376. 

  376.                                    !strcmp(val, "complex") ||
    377. 

  377.                                    !strcmp(val, "maurer-complex")) {
    378. 

  378.                             primegen = &primegen_provable_maurer_complex;
    379. 

  379.                         } else {
    380. 

  380.                             errs = true;
    381. 

  381.                             fprintf(stderr, "puttygen: unrecognised prime-"
    382. 

  382.                                     "generation mode `%s'\n", val);
    383. 

  383.                         }
    384. 

  384.                     } else if (!strcmp(opt, "-strong-rsa")) {
    385. 

  385.                         strong_rsa = true;
    386. 

  386.                     } else if (!strcmp(opt, "-reencrypt")) {
    387. 

  387.                         reencrypt = true;
    388. 

  388.                     } else if (!strcmp(opt, "-ppk-param") ||
    389. 

  389.                                !strcmp(opt, "-ppk-params")) {
    390. 

  390.                         if (!val && argc > 1)
    391. 

  391.                             --argc, val = *++argv;
    392. 

  392.                         if (!val) {
    393. 

  393.                             errs = true;
    394. 

  394.                             fprintf(stderr, "puttygen: option `-%s'"
    395. 

  395.                                     " expects an argument\n", opt);
    396. 

  396.                         } else {
    397. 

  397.                             char *nextval;
    398. 

  398.                             for (; val; val = nextval) {
    399. 

  399.                                 nextval = strchr(val, ',');
    400. 

  400.                                 if (nextval)
    401. 

  401.                                     *nextval++ = '\0';
    402. 

  402. 

  403.                                 char *optvalue = strchr(val, '=');
    404. 

  404.                                 if (!optvalue) {
    405. 

  405.                                     errs = true;
    406. 

  406.                                     fprintf(stderr, "puttygen: PPK parameter "
    407. 

  407.                                             "'%s' expected a value\n", val);
    408. 

  408.                                     continue;
    409. 

  409.                                 }
    410. 

  410.                                 *optvalue++ = '\0';
    411. 

  411. 

  412.                                 /* Non-numeric options */
    413. 

  413.                                 if (!strcmp(val, "kdf")) {
    414. 

  414.                                     if (!strcmp(optvalue, "Argon2id") ||
    415. 

  415.                                         !strcmp(optvalue, "argon2id")) {
    416. 

  416.                                         params.argon2_flavour = Argon2id;
    417. 

  417.                                     } else if (!strcmp(optvalue, "Argon2i") ||
    418. 

  418.                                                !strcmp(optvalue, "argon2i")) {
    419. 

  419.                                         params.argon2_flavour = Argon2i;
    420. 

  420.                                     } else if (!strcmp(optvalue, "Argon2d") ||
    421. 

  421.                                                !strcmp(optvalue, "argon2d")) {
    422. 

  422.                                         params.argon2_flavour = Argon2d;
    423. 

  423.                                     } else {
    424. 

  424.                                         errs = true;
    425. 

  425.                                         fprintf(stderr, "puttygen: unrecognise"
    426. 

  426.                                                 "d kdf '%s'\n", optvalue);
    427. 

  427.                                     }
    428. 

  428.                                     continue;
    429. 

  429.                                 }
    430. 

  430. 

  431.                                 char *end;
    432. 

  432.                                 unsigned long n = strtoul(optvalue, &end, 0);
    433. 

  433.                                 if (!*optvalue || *end) {
    434. 

  434.                                     errs = true;
    435. 

  435.                                     fprintf(stderr, "puttygen: value '%s' for "
    436. 

  436.                                             "PPK parameter '%s': expected a "
    437. 

  437.                                             "number\n", optvalue, val);
    438. 

  438.                                     continue;
    439. 

  439.                                 }
    440. 

  440. 

  441.                                 if (!strcmp(val, "version")) {
    442. 

  442.                                     params.fmt_version = n;
    443. 

  443.                                 } else if (!strcmp(val, "memory") ||
    444. 

  444.                                            !strcmp(val, "mem")) {
    445. 

  445.                                     params.argon2_mem = n;
    446. 

  446.                                 } else if (!strcmp(val, "time")) {
    447. 

  447.                                     params.argon2_passes_auto = true;
    448. 

  448.                                     params.argon2_milliseconds = n;
    449. 

  449.                                 } else if (!strcmp(val, "passes")) {
    450. 

  450.                                     params.argon2_passes_auto = false;
    451. 

  451.                                     params.argon2_passes = n;
    452. 

  452.                                 } else if (!strcmp(val, "parallelism") ||
    453. 

  453.                                            !strcmp(val, "parallel")) {
    454. 

  454.                                     params.argon2_parallelism = n;
    455. 

  455.                                 } else {
    456. 

  456.                                     errs = true;
    457. 

  457.                                     fprintf(stderr, "puttygen: unrecognised "
    458. 

  458.                                             "PPK parameter '%s'\n", val);
    459. 

  459.                                     continue;
    460. 

  460.                                 }
    461. 

  461.                             }
    462. 

  462.                         }
    463. 

  463.                     } else {
    464. 

  464.                       errs = true;
    465. 

  465.                       fprintf(stderr,
    466. 

  466.                               "puttygen: no such option `-%s'\n", opt);
    467. 

  467.                     }
    468. 

  468.                     p = NULL;
    469. 

  469.                     break;
    470. 

  470.                   }
    471. 

  471.                   case 'h':
    472. 

  472.                   case 'V':
    473. 

  473.                   case 'P':
    474. 

  474.                   case 'l':
    475. 

  475.                   case 'L':
    476. 

  476.                   case 'p':
    477. 

  477.                   case 'q':
    478. 

  478.                     /*
    479. 

  479.                      * Option requiring no parameter.
    480. 

  480.                      */
    481. 

  481.                     switch (c) {
    482. 

  482.                       case 'h':
    483. 

  483.                         help();
    484. 

  484.                         nogo = true;
    485. 

  485.                         break;
    486. 

  486.                       case 'V':
    487. 

  487.                         showversion();
    488. 

  488.                         nogo = true;
    489. 

  489.                         break;
    490. 

  490.                       case 'P':
    491. 

  491.                         change_passphrase = true;
    492. 

  492.                         break;
    493. 

  493.                       case 'l':
    494. 

  494.                         outtype = FP;
    495. 

  495.                         break;
    496. 

  496.                       case 'L':
    497. 

  497.                         outtype = PUBLICO;
    498. 

  498.                         break;
    499. 

  499.                       case 'p':
    500. 

  500.                         outtype = PUBLIC;
    501. 

  501.                         break;
    502. 

  502.                       case 'q':
    503. 

  503.                         progress_fp = NULL;
    504. 

  504.                         break;
    505. 

  505.                     }
    506. 

  506.                     break;
    507. 

  507.                   case 't':
    508. 

  508.                   case 'b':
    509. 

  509.                   case 'C':
    510. 

  510.                   case 'O':
    511. 

  511.                   case 'o':
    512. 

  512.                   case 'E':
    513. 

  513.                     /*
    514. 

  514.                      * Option requiring parameter.
    515. 

  515.                      */
    516. 

  516.                     p++;
    517. 

  517.                     if (!*p && argc > 1)
    518. 

  518.                         --argc, p = *++argv;
    519. 

  519.                     else if (!*p) {
    520. 

  520.                         fprintf(stderr, "puttygen: option `-%c' expects a"
    521. 

  521.                                 " parameter\n", c);
    522. 

  522.                         errs = true;
    523. 

  523.                     }
    524. 

  524.                     /*
    525. 

  525.                      * Now c is the option and p is the parameter.
    526. 

  526.                      */
    527. 

  527.                     switch (c) {
    528. 

  528.                       case 't':
    529. 

  529.                         if (!strcmp(p, "rsa") || !strcmp(p, "rsa2"))
    530. 

  530.                             keytype = RSA2, sshver = 2;
    531. 

  531.                         else if (!strcmp(p, "rsa1"))
    532. 

  532.                             keytype = RSA1, sshver = 1;
    533. 

  533.                         else if (!strcmp(p, "dsa") || !strcmp(p, "dss"))
    534. 

  534.                             keytype = DSA, sshver = 2;
    535. 

  535.                         else if (!strcmp(p, "ecdsa"))
    536. 

  536.                             keytype = ECDSA, sshver = 2;
    537. 

  537.                         else if (!strcmp(p, "eddsa"))
    538. 

  538.                             keytype = EDDSA, sshver = 2;
    539. 

  539.                         else if (!strcmp(p, "ed25519"))
    540. 

  540.                             keytype = EDDSA, bits = 255, sshver = 2;
    541. 

  541.                         else if (!strcmp(p, "ed448"))
    542. 

  542.                             keytype = EDDSA, bits = 448, sshver = 2;
    543. 

  543.                         else {
    544. 

  544.                             fprintf(stderr,
    545. 

  545.                                     "puttygen: unknown key type `%s'\n", p);
    546. 

  546.                             errs = true;
    547. 

  547.                         }
    548. 

  548.                         break;
    549. 

  549.                       case 'b':
    550. 

  550.                         bits = atoi(p);
    551. 

  551.                         break;
    552. 

  552.                       case 'C':
    553. 

  553.                         comment = p;
    554. 

  554.                         break;
    555. 

  555.                       case 'O':
    556. 

  556.                         if (!strcmp(p, "public"))
    557. 

  557.                             outtype = PUBLIC;
    558. 

  558.                         else if (!strcmp(p, "public-openssh"))
    559. 

  559.                             outtype = PUBLICO;
    560. 

  560.                         else if (!strcmp(p, "private"))
    561. 

  561.                             outtype = PRIVATE;
    562. 

  562.                         else if (!strcmp(p, "fingerprint"))
    563. 

  563.                             outtype = FP;
    564. 

  564.                         else if (!strcmp(p, "private-openssh"))
    565. 

  565.                             outtype = OPENSSH_AUTO, sshver = 2;
    566. 

  566.                         else if (!strcmp(p, "private-openssh-new"))
    567. 

  567.                             outtype = OPENSSH_NEW, sshver = 2;
    568. 

  568.                         else if (!strcmp(p, "private-sshcom"))
    569. 

  569.                             outtype = SSHCOM, sshver = 2;
    570. 

  570.                         else if (!strcmp(p, "text"))
    571. 

  571.                             outtype = TEXT;
    572. 

  572.                         else {
    573. 

  573.                             fprintf(stderr,
    574. 

  574.                                     "puttygen: unknown output type `%s'\n", p);
    575. 

  575.                             errs = true;
    576. 

  576.                         }
    577. 

  577.                         break;
    578. 

  578.                       case 'o':
    579. 

  579.                         outfile = p;
    580. 

  580.                         break;
    581. 

  581.                       case 'E':
    582. 

  582.                         if (!strcmp(p, "md5"))
    583. 

  583.                             fptype = SSH_FPTYPE_MD5;
    584. 

  584.                         else if (!strcmp(p, "sha256"))
    585. 

  585.                             fptype = SSH_FPTYPE_SHA256;
    586. 

  586.                         else {
    587. 

  587.                             fprintf(stderr, "puttygen: unknown fingerprint "
    588. 

  588.                                     "type `%s'\n", p);
    589. 

  589.                             errs = true;
    590. 

  590.                         }
    591. 

  591.                         break;
    592. 

  592.                     }
    593. 

  593.                     p = NULL;          /* prevent continued processing */
    594. 

  594.                     break;
    595. 

  595.                   default:
    596. 

  596.                     /*
    597. 

  597.                      * Unrecognised option.
    598. 

  598.                      */
    599. 

  599.                     errs = true;
    600. 

  600.                     fprintf(stderr, "puttygen: no such option `-%c'\n", c);
    601. 

  601.                     break;
    602. 

  602.                 }
    603. 

  603.             }
    604. 

  604.         } else {
    605. 

  605.             /*
    606. 

  606.              * A non-option argument.
    607. 

  607.              */
    608. 

  608.             if (!infile)
    609. 

  609.                 infile = p;
    610. 

  610.             else {
    611. 

  611.                 errs = true;
    612. 

  612.                 fprintf(stderr, "puttygen: cannot handle more than one"
    613. 

  613.                         " input file\n");
    614. 

  614.             }
    615. 

  615.         }
    616. 

  616.     }
    617. 

  617. 

  618.     if (bits == -1) {
    619. 

  619.         /*
    620. 

  620.          * No explicit key size was specified. Default varies
    621. 

  621.          * depending on key type.
    622. 

  622.          */
    623. 

  623.         switch (keytype) {
    624. 

  624.           case ECDSA:
    625. 

  625.             bits = 384;
    626. 

  626.             break;
    627. 

  627.           case EDDSA:
    628. 

  628.             bits = 255;
    629. 

  629.             break;
    630. 

  630.           default:
    631. 

  631.             bits = DEFAULT_RSADSA_BITS;
    632. 

  632.             break;
    633. 

  633.         }
    634. 

  634.     }
    635. 

  635. 

  636.     if (keytype == ECDSA || keytype == EDDSA) {
    637. 

  637.         const char *name = (keytype == ECDSA ? "ECDSA" : "EdDSA");
    638. 

  638.         const int *valid_lengths = (keytype == ECDSA ? ec_nist_curve_lengths :
    639. 

  639.                                     ec_ed_curve_lengths);
    640. 

  640.         size_t n_lengths = (keytype == ECDSA ? n_ec_nist_curve_lengths :
    641. 

  641.                             n_ec_ed_curve_lengths);
    642. 

  642.         bool (*alg_and_curve_by_bits)(int, const struct ec_curve **,
    643. 

  643.                                       const ssh_keyalg **) =
    644. 

  644.             (keytype == ECDSA ? ec_nist_alg_and_curve_by_bits :
    645. 

  645.              ec_ed_alg_and_curve_by_bits);
    646. 

  646. 

  647.         const struct ec_curve *curve;
    648. 

  648.         const ssh_keyalg *alg;
    649. 

  649. 

  650.         if (!alg_and_curve_by_bits(bits, &curve, &alg)) {
    651. 

  651.             fprintf(stderr, "puttygen: invalid bits for %s, choose", name);
    652. 

  652.             for (size_t i = 0; i < n_lengths; i++)
    653. 

  653.                 fprintf(stderr, "%s%d", (i == 0 ? " " :
    654. 

  654.                                          i == n_lengths-1 ? " or " : ", "),
    655. 

  655.                         valid_lengths[i]);
    656. 

  656.             fputc('\n', stderr);
    657. 

  657.             errs = true;
    658. 

  658.         }
    659. 

  659.     }
    660. 

  660. 

  661.     if (keytype == RSA2 || keytype == RSA1 || keytype == DSA) {
    662. 

  662.         if (bits < 256) {
    663. 

  663.             fprintf(stderr, "puttygen: cannot generate %s keys shorter than"
    664. 

  664.                     " 256 bits\n", (keytype == DSA ? "DSA" : "RSA"));
    665. 

  665.             errs = true;
    666. 

  666.         } else if (bits < DEFAULT_RSADSA_BITS) {
    667. 

  667.             fprintf(stderr, "puttygen: warning: %s keys shorter than"
    668. 

  668.                     " %d bits are probably not secure\n",
    669. 

  669.                     (keytype == DSA ? "DSA" : "RSA"), DEFAULT_RSADSA_BITS);
    670. 

  670.             /* but this is just a warning, so proceed anyway */
    671. 

  671.         }
    672. 

  672.     }
    673. 

  673. 

  674.     if (errs)
    675. 

  675.         RETURN(1);
    676. 

  676. 

  677.     if (nogo)
    678. 

  678.         RETURN(0);
    679. 

  679. 

  680.     /*
    681. 

  681.      * If run with at least one argument _but_ not the required
    682. 

  682.      * ones, print the usage message and return failure.
    683. 

  683.      */
    684. 

  684.     if (!infile && keytype == NOKEYGEN) {
    685. 

  685.         usage(true);
    686. 

  686.         RETURN(1);
    687. 

  687.     }
    688. 

  688. 

  689.     /* ------------------------------------------------------------------
    690. 

  690.      * Figure out further details of exactly what we're going to do.
    691. 

  691.      */
    692. 

  692. 

  693.     /*
    694. 

  694.      * Bomb out if we've been asked to both load and generate a
    695. 

  695.      * key.
    696. 

  696.      */
    697. 

  697.     if (keytype != NOKEYGEN && infile) {
    698. 

  698.         fprintf(stderr, "puttygen: cannot both load and generate a key\n");
    699. 

  699.         RETURN(1);
    700. 

  700.     }
    701. 

  701. 

  702.     /*
    703. 

  703.      * We must save the private part when generating a new key.
    704. 

  704.      */
    705. 

  705.     if (keytype != NOKEYGEN &&
    706. 

  706.         (outtype != PRIVATE && outtype != OPENSSH_AUTO &&
    707. 

  707.          outtype != OPENSSH_NEW && outtype != SSHCOM && outtype != TEXT)) {
    708. 

  708.         fprintf(stderr, "puttygen: this would generate a new key but "
    709. 

  709.                 "discard the private part\n");
    710. 

  710.         RETURN(1);
    711. 

  711.     }
    712. 

  712. 

  713.     /*
    714. 

  714.      * Analyse the type of the input file, in case this affects our
    715. 

  715.      * course of action.
    716. 

  716.      */
    717. 

  717.     if (infile) {
    718. 

  718.         const char *load_error;
    719. 

  719. 

  720.         infilename = filename_from_str(infile);
    721. 

  721.         if (!strcmp(infile, "-"))
    722. 

  722.             infile_lf = lf_load_keyfile_fp(stdin, &load_error);
    723. 

  723.         else
    724. 

  724.             infile_lf = lf_load_keyfile(infilename, &load_error);
    725. 

  725. 

  726.         if (!infile_lf) {
    727. 

  727.             fprintf(stderr, "puttygen: unable to load file `%s': %s\n",
    728. 

  728.                     infile, load_error);
    729. 

  729.             RETURN(1);
    730. 

  730.         }
    731. 

  731. 

  732.         infile_bs = BinarySource_UPCAST(infile_lf);
    733. 

  733.         intype = key_type_s(infile_bs);
    734. 

  734.         BinarySource_REWIND(infile_bs);
    735. 

  735. 

  736.         switch (intype) {
    737. 

  737.           case SSH_KEYTYPE_UNOPENABLE:
    738. 

  738.           case SSH_KEYTYPE_UNKNOWN:
    739. 

  739.             fprintf(stderr, "puttygen: unable to load file `%s': %s\n",
    740. 

  740.                     infile, key_type_to_str(intype));
    741. 

  741.             RETURN(1);
    742. 

  742. 

  743.           case SSH_KEYTYPE_SSH1:
    744. 

  744.           case SSH_KEYTYPE_SSH1_PUBLIC:
    745. 

  745.             if (sshver == 2) {
    746. 

  746.                 fprintf(stderr, "puttygen: conversion from SSH-1 to SSH-2 keys"
    747. 

  747.                         " not supported\n");
    748. 

  748.                 RETURN(1);
    749. 

  749.             }
    750. 

  750.             sshver = 1;
    751. 

  751.             break;
    752. 

  752. 

  753.           case SSH_KEYTYPE_SSH2:
    754. 

  754.           case SSH_KEYTYPE_SSH2_PUBLIC_RFC4716:
    755. 

  755.           case SSH_KEYTYPE_SSH2_PUBLIC_OPENSSH:
    756. 

  756.           case SSH_KEYTYPE_OPENSSH_PEM:
    757. 

  757.           case SSH_KEYTYPE_OPENSSH_NEW:
    758. 

  758.           case SSH_KEYTYPE_SSHCOM:
    759. 

  759.             if (sshver == 1) {
    760. 

  760.                 fprintf(stderr, "puttygen: conversion from SSH-2 to SSH-1 keys"
    761. 

  761.                         " not supported\n");
    762. 

  762.                 RETURN(1);
    763. 

  763.             }
    764. 

  764.             sshver = 2;
    765. 

  765.             break;
    766. 

  766. 

  767.           case SSH_KEYTYPE_OPENSSH_AUTO:
    768. 

  768.           default:
    769. 

  769.             unreachable("Should never see these types on an input file");
    770. 

  770.         }
    771. 

  771.     }
    772. 

  772. 

  773.     /*
    774. 

  774.      * Determine the default output file, if none is provided.
    775. 

  775.      *
    776. 

  776.      * This will usually be equal to stdout, except that if the
    777. 

  777.      * input and output file formats are the same then the default
    778. 

  778.      * output is to overwrite the input.
    779. 

  779.      *
    780. 

  780.      * Also in this code, we bomb out if the input and output file
    781. 

  781.      * formats are the same and no other action is performed.
    782. 

  782.      */
    783. 

  783.     if ((intype == SSH_KEYTYPE_SSH1 && outtype == PRIVATE) ||
    784. 

  784.         (intype == SSH_KEYTYPE_SSH2 && outtype == PRIVATE) ||
    785. 

  785.         (intype == SSH_KEYTYPE_OPENSSH_PEM && outtype == OPENSSH_AUTO) ||
    786. 

  786.         (intype == SSH_KEYTYPE_OPENSSH_NEW && outtype == OPENSSH_NEW) ||
    787. 

  787.         (intype == SSH_KEYTYPE_SSHCOM && outtype == SSHCOM)) {
    788. 

  788.         if (!outfile) {
    789. 

  789.             outfile = infile;
    790. 

  790.             outfiletmp = dupcat(outfile, ".tmp");
    791. 

  791.         }
    792. 

  792. 

  793.         if (!change_passphrase && !comment && !reencrypt) {
    794. 

  794.             fprintf(stderr, "puttygen: this command would perform no useful"
    795. 

  795.                     " action\n");
    796. 

  796.             RETURN(1);
    797. 

  797.         }
    798. 

  798.     } else {
    799. 

  799.         if (!outfile) {
    800. 

  800.             /*
    801. 

  801.              * Bomb out rather than automatically choosing to write
    802. 

  802.              * a private key file to stdout.
    803. 

  803.              */
    804. 

  804.             if (outtype == PRIVATE || outtype == OPENSSH_AUTO ||
    805. 

  805.                 outtype == OPENSSH_NEW || outtype == SSHCOM) {
    806. 

  806.                 fprintf(stderr, "puttygen: need to specify an output file\n");
    807. 

  807.                 RETURN(1);
    808. 

  808.             }
    809. 

  809.         }
    810. 

  810.     }
    811. 

  811. 

  812.     /*
    813. 

  813.      * Figure out whether we need to load the encrypted part of the
    814. 

  814.      * key. This will be the case if (a) we need to write out
    815. 

  815.      * a private key format, (b) the entire input key file is
    816. 

  816.      * encrypted, or (c) we're outputting TEXT, in which case we
    817. 

  817.      * want all of the input file including private material if it
    818. 

  818.      * exists.
    819. 

  819.      */
    820. 

  820.     bool intype_entirely_encrypted =
    821. 

  821.         intype == SSH_KEYTYPE_OPENSSH_PEM ||
    822. 

  822.         intype == SSH_KEYTYPE_OPENSSH_NEW ||
    823. 

  823.         intype == SSH_KEYTYPE_SSHCOM;
    824. 

  824.     bool intype_has_private =
    825. 

  825.         !(intype == SSH_KEYTYPE_SSH1_PUBLIC ||
    826. 

  826.           intype == SSH_KEYTYPE_SSH2_PUBLIC_RFC4716 ||
    827. 

  827.           intype == SSH_KEYTYPE_SSH2_PUBLIC_OPENSSH);
    828. 

  828.     bool outtype_has_private =
    829. 

  829.         outtype == PRIVATE || outtype == OPENSSH_AUTO ||
    830. 

  830.         outtype == OPENSSH_NEW || outtype == SSHCOM;
    831. 

  831.     if (outtype_has_private || intype_entirely_encrypted ||
    832. 

  832.         (outtype == TEXT && intype_has_private))
    833. 

  833.         load_encrypted = true;
    834. 

  834.     else
    835. 

  835.         load_encrypted = false;
    836. 

  836. 

  837.     if (load_encrypted && !intype_has_private) {
    838. 

  838.         fprintf(stderr, "puttygen: cannot perform this action on a "
    839. 

  839.                 "public-key-only input file\n");
    840. 

  840.         RETURN(1);
    841. 

  841.     }
    842. 

  842. 

  843.     /* ------------------------------------------------------------------
    844. 

  844.      * Now we're ready to actually do some stuff.
    845. 

  845.      */
    846. 

  846. 

  847.     /*
    848. 

  848.      * Either load or generate a key.
    849. 

  849.      */
    850. 

  850.     if (keytype != NOKEYGEN) {
    851. 

  851.         char *entropy;
    852. 

  852.         char default_comment[80];
    853. 

  853.         struct tm tm;
    854. 

  854. 

  855.         tm = ltime();
    856. 

  856.         if (keytype == DSA)
    857. 

  857.             strftime(default_comment, 30, "dsa-key-%Y%m%d", &tm);
    858. 

  858.         else if (keytype == ECDSA)
    859. 

  859.             strftime(default_comment, 30, "ecdsa-key-%Y%m%d", &tm);
    860. 

  860.         else if (keytype == EDDSA && bits == 255)
    861. 

  861.             strftime(default_comment, 30, "ed25519-key-%Y%m%d", &tm);
    862. 

  862.         else if (keytype == EDDSA)
    863. 

  863.             strftime(default_comment, 30, "eddsa-key-%Y%m%d", &tm);
    864. 

  864.         else
    865. 

  865.             strftime(default_comment, 30, "rsa-key-%Y%m%d", &tm);
    866. 

  866. 

  867.         entropy = get_random_data(bits / 8, random_device);
    868. 

  868.         if (!entropy) {
    869. 

  869.             fprintf(stderr, "puttygen: failed to collect entropy, "
    870. 

  870.                     "could not generate key\n");
    871. 

  871.             RETURN(1);
    872. 

  872.         }
    873. 

  873.         random_setup_special();
    874. 

  874.         random_reseed(make_ptrlen(entropy, bits / 8));
    875. 

  875.         smemclr(entropy, bits/8);
    876. 

  876.         sfree(entropy);
    877. 

  877. 

  878.         PrimeGenerationContext *pgc = primegen_new_context(primegen);
    879. 

  879. 

  880.         if (keytype == DSA) {
    881. 

  881.             struct dss_key *dsskey = snew(struct dss_key);
    882. 

  882.             dsa_generate(dsskey, bits, pgc, &cmdgen_progress);
    883. 

  883.             ssh2key = snew(ssh2_userkey);
    884. 

  884.             ssh2key->key = &dsskey->sshk;
    885. 

  885.             ssh1key = NULL;
    886. 

  886.         } else if (keytype == ECDSA) {
    887. 

  887.             struct ecdsa_key *ek = snew(struct ecdsa_key);
    888. 

  888.             ecdsa_generate(ek, bits);
    889. 

  889.             ssh2key = snew(ssh2_userkey);
    890. 

  890.             ssh2key->key = &ek->sshk;
    891. 

  891.             ssh1key = NULL;
    892. 

  892.         } else if (keytype == EDDSA) {
    893. 

  893.             struct eddsa_key *ek = snew(struct eddsa_key);
    894. 

  894.             eddsa_generate(ek, bits);
    895. 

  895.             ssh2key = snew(ssh2_userkey);
    896. 

  896.             ssh2key->key = &ek->sshk;
    897. 

  897.             ssh1key = NULL;
    898. 

  898.         } else {
    899. 

  899.             RSAKey *rsakey = snew(RSAKey);
    900. 

  900.             rsa_generate(rsakey, bits, strong_rsa, pgc, &cmdgen_progress);
    901. 

  901.             rsakey->comment = NULL;
    902. 

  902.             if (keytype == RSA1) {
    903. 

  903.                 ssh1key = rsakey;
    904. 

  904.             } else {
    905. 

  905.                 ssh2key = snew(ssh2_userkey);
    906. 

  906.                 ssh2key->key = &rsakey->sshk;
    907. 

  907.             }
    908. 

  908.         }
    909. 

  909. 

  910.         primegen_free_context(pgc);
    911. 

  911. 

  912.         if (ssh2key)
    913. 

  913.             ssh2key->comment = dupstr(default_comment);
    914. 

  914.         if (ssh1key)
    915. 

  915.             ssh1key->comment = dupstr(default_comment);
    916. 

  916. 

  917.     } else {
    918. 

  918.         const char *error = NULL;
    919. 

  919.         bool encrypted;
    920. 

  920. 

  921.         assert(infile != NULL);
    922. 

  922. 

  923.         sfree(origcomment);
    924. 

  924.         origcomment = NULL;
    925. 

  925. 

  926.         /*
    927. 

  927.          * Find out whether the input key is encrypted.
    928. 

  928.          */
    929. 

  929.         if (intype == SSH_KEYTYPE_SSH1)
    930. 

  930.             encrypted = rsa1_encrypted_s(infile_bs, &origcomment);
    931. 

  931.         else if (intype == SSH_KEYTYPE_SSH2)
    932. 

  932.             encrypted = ppk_encrypted_s(infile_bs, &origcomment);
    933. 

  933.         else
    934. 

  934.             encrypted = import_encrypted_s(infilename, infile_bs,
    935. 

  935.                                            intype, &origcomment);
    936. 

  936.         BinarySource_REWIND(infile_bs);
    937. 

  937. 

  938.         /*
    939. 

  939.          * If so, ask for a passphrase.
    940. 

  940.          */
    941. 

  941.         if (encrypted && load_encrypted) {
    942. 

  942.             if (!old_passphrase) {
    943. 

  943.                 prompts_t *p = new_prompts();
    944. 

  944.                 int ret;
    945. 

  945.                 p->to_server = false;
    946. 

  946.                 p->from_server = false;
    947. 

  947.                 p->name = dupstr("SSH key passphrase");
    948. 

  948.                 add_prompt(p, dupstr("Enter passphrase to load key: "), false);
    949. 

  949.                 ret = console_get_userpass_input(p);
    950. 

  950.                 assert(ret >= 0);
    951. 

  951.                 if (!ret) {
    952. 

  952.                     free_prompts(p);
    953. 

  953.                     perror("puttygen: unable to read passphrase");
    954. 

  954.                     RETURN(1);
    955. 

  955.                 } else {
    956. 

  956.                     old_passphrase = prompt_get_result(p->prompts[0]);
    957. 

  957.                     free_prompts(p);
    958. 

  958.                 }
    959. 

  959.             }
    960. 

  960.         } else {
    961. 

  961.             old_passphrase = NULL;
    962. 

  962.         }
    963. 

  963. 

  964.         switch (intype) {
    965. 

  965.             int ret;
    966. 

  966. 

  967.           case SSH_KEYTYPE_SSH1:
    968. 

  968.           case SSH_KEYTYPE_SSH1_PUBLIC:
    969. 

  969.             ssh1key = snew(RSAKey);
    970. 

  970.             memset(ssh1key, 0, sizeof(RSAKey));
    971. 

  971.             if (!load_encrypted) {
    972. 

  972.                 strbuf *blob;
    973. 

  973.                 BinarySource src[1];
    974. 

  974. 

  975.                 sfree(origcomment);
    976. 

  976.                 origcomment = NULL;
    977. 

  977. 

  978.                 blob = strbuf_new();
    979. 

  979. 

  980.                 ret = rsa1_loadpub_s(infile_bs, BinarySink_UPCAST(blob),
    981. 

  981.                                      &origcomment, &error);
    982. 

  982.                 BinarySource_BARE_INIT(src, blob->u, blob->len);
    983. 

  983.                 get_rsa_ssh1_pub(src, ssh1key, RSA_SSH1_EXPONENT_FIRST);
    984. 

  984.                 strbuf_free(blob);
    985. 

  985. 

  986.                 ssh1key->comment = dupstr(origcomment);
    987. 

  987.                 ssh1key->private_exponent = NULL;
    988. 

  988.                 ssh1key->p = NULL;
    989. 

  989.                 ssh1key->q = NULL;
    990. 

  990.                 ssh1key->iqmp = NULL;
    991. 

  991.             } else {
    992. 

  992.                 ret = rsa1_load_s(infile_bs, ssh1key, old_passphrase, &error);
    993. 

  993.             }
    994. 

  994.             BinarySource_REWIND(infile_bs);
    995. 

  995.             if (ret > 0)
    996. 

  996.                 error = NULL;
    997. 

  997.             else if (!error)
    998. 

  998.                 error = "unknown error";
    999. 

  999.             break;
    1000. 

  1000. 

  1001.           case SSH_KEYTYPE_SSH2:
    1002. 

  1002.           case SSH_KEYTYPE_SSH2_PUBLIC_RFC4716:
    1003. 

  1003.           case SSH_KEYTYPE_SSH2_PUBLIC_OPENSSH:
    1004. 

  1004.             if (!load_encrypted) {
    1005. 

  1005.                 sfree(origcomment);
    1006. 

  1006.                 origcomment = NULL;
    1007. 

  1007.                 ssh2blob = strbuf_new();
    1008. 

  1008.                 if (ppk_loadpub_s(infile_bs, &ssh2alg,
    1009. 

  1009.                                   BinarySink_UPCAST(ssh2blob),
    1010. 

  1010.                                   &origcomment, &error)) {
    1011. 

  1011.                     const ssh_keyalg *alg = find_pubkey_alg(ssh2alg);
    1012. 

  1012.                     if (alg)
    1013. 

  1013.                         bits = ssh_key_public_bits(
    1014. 

  1014.                             alg, ptrlen_from_strbuf(ssh2blob));
    1015. 

  1015.                     else
    1016. 

  1016.                         bits = -1;
    1017. 

  1017.                 } else {
    1018. 

  1018.                     strbuf_free(ssh2blob);
    1019. 

  1019.                     ssh2blob = NULL;
    1020. 

  1020.                 }
    1021. 

  1021.                 sfree(ssh2alg);
    1022. 

  1022.             } else {
    1023. 

  1023.                 ssh2key = ppk_load_s(infile_bs, old_passphrase, &error);
    1024. 

  1024.             }
    1025. 

  1025.             BinarySource_REWIND(infile_bs);
    1026. 

  1026.             if ((ssh2key && ssh2key != SSH2_WRONG_PASSPHRASE) || ssh2blob)
    1027. 

  1027.                 error = NULL;
    1028. 

  1028.             else if (!error) {
    1029. 

  1029.                 if (ssh2key == SSH2_WRONG_PASSPHRASE)
    1030. 

  1030.                     error = "wrong passphrase";
    1031. 

  1031.                 else
    1032. 

  1032.                     error = "unknown error";
    1033. 

  1033.             }
    1034. 

  1034.             break;
    1035. 

  1035. 

  1036.           case SSH_KEYTYPE_OPENSSH_PEM:
    1037. 

  1037.           case SSH_KEYTYPE_OPENSSH_NEW:
    1038. 

  1038.           case SSH_KEYTYPE_SSHCOM:
    1039. 

  1039.             ssh2key = import_ssh2_s(infile_bs, intype, old_passphrase, &error);
    1040. 

  1040.             if (ssh2key) {
    1041. 

  1041.                 if (ssh2key != SSH2_WRONG_PASSPHRASE)
    1042. 

  1042.                     error = NULL;
    1043. 

  1043.                 else
    1044. 

  1044.                     error = "wrong passphrase";
    1045. 

  1045.             } else if (!error)
    1046. 

  1046.                 error = "unknown error";
    1047. 

  1047.             break;
    1048. 

  1048. 

  1049.           default:
    1050. 

  1050.             unreachable("bad input key type");
    1051. 

  1051.         }
    1052. 

  1052. 

  1053.         if (error) {
    1054. 

  1054.             fprintf(stderr, "puttygen: error loading `%s': %s\n",
    1055. 

  1055.                     infile, error);
    1056. 

  1056.             RETURN(1);
    1057. 

  1057.         }
    1058. 

  1058.     }
    1059. 

  1059. 

  1060.     /*
    1061. 

  1061.      * Change the comment if asked to.
    1062. 

  1062.      */
    1063. 

  1063.     if (comment) {
    1064. 

  1064.         if (sshver == 1) {
    1065. 

  1065.             assert(ssh1key);
    1066. 

  1066.             sfree(ssh1key->comment);
    1067. 

  1067.             ssh1key->comment = dupstr(comment);
    1068. 

  1068.         } else {
    1069. 

  1069.             assert(ssh2key);
    1070. 

  1070.             sfree(ssh2key->comment);
    1071. 

  1071.             ssh2key->comment = dupstr(comment);
    1072. 

  1072.         }
    1073. 

  1073.     }
    1074. 

  1074. 

  1075.     /*
    1076. 

  1076.      * Unless we're changing the passphrase, the old one (if any) is a
    1077. 

  1077.      * reasonable default.
    1078. 

  1078.      */
    1079. 

  1079.     if (!change_passphrase && old_passphrase && !new_passphrase)
    1080. 

  1080.         new_passphrase = dupstr(old_passphrase);
    1081. 

  1081. 

  1082.     /*
    1083. 

  1083.      * Prompt for a new passphrase if we have been asked to, or if
    1084. 

  1084.      * we have just generated a key.
    1085. 

  1085.      *
    1086. 

  1086.      * In the latter case, an exception is if we're producing text
    1087. 

  1087.      * output, because that output format doesn't support encryption
    1088. 

  1088.      * in any case.
    1089. 

  1089.      */
    1090. 

  1090.     if (!new_passphrase && (change_passphrase ||
    1091. 

  1091.                             (keytype != NOKEYGEN && outtype != TEXT))) {
    1092. 

  1092.         prompts_t *p = new_prompts();
    1093. 

  1093.         int ret;
    1094. 

  1094. 

  1095.         p->to_server = false;
    1096. 

  1096.         p->from_server = false;
    1097. 

  1097.         p->name = dupstr("New SSH key passphrase");
    1098. 

  1098.         add_prompt(p, dupstr("Enter passphrase to save key: "), false);
    1099. 

  1099.         add_prompt(p, dupstr("Re-enter passphrase to verify: "), false);
    1100. 

  1100.         ret = console_get_userpass_input(p);
    1101. 

  1101.         assert(ret >= 0);
    1102. 

  1102.         if (!ret) {
    1103. 

  1103.             free_prompts(p);
    1104. 

  1104.             perror("puttygen: unable to read new passphrase");
    1105. 

  1105.             RETURN(1);
    1106. 

  1106.         } else {
    1107. 

  1107.             if (strcmp(prompt_get_result_ref(p->prompts[0]),
    1108. 

  1108.                        prompt_get_result_ref(p->prompts[1]))) {
    1109. 

  1109.                 free_prompts(p);
    1110. 

  1110.                 fprintf(stderr, "puttygen: passphrases do not match\n");
    1111. 

  1111.                 RETURN(1);
    1112. 

  1112.             }
    1113. 

  1113.             new_passphrase = prompt_get_result(p->prompts[0]);
    1114. 

  1114.             free_prompts(p);
    1115. 

  1115.         }
    1116. 

  1116.     }
    1117. 

  1117.     if (new_passphrase && !*new_passphrase) {
    1118. 

  1118.         sfree(new_passphrase);
    1119. 

  1119.         new_passphrase = NULL;
    1120. 

  1120.     }
    1121. 

  1121. 

  1122.     /*
    1123. 

  1123.      * Write output.
    1124. 

  1124.      *
    1125. 

  1125.      * (In the case where outfile and outfiletmp are both NULL,
    1126. 

  1126.      * there is no semantic reason to initialise outfilename at
    1127. 

  1127.      * all; but we have to write _something_ to it or some compiler
    1128. 

  1128.      * will probably complain that it might be used uninitialised.)
    1129. 

  1129.      */
    1130. 

  1130.     if (outfiletmp)
    1131. 

  1131.         outfilename = filename_from_str(outfiletmp);
    1132. 

  1132.     else
    1133. 

  1133.         outfilename = filename_from_str(outfile ? outfile : "");
    1134. 

  1134. 

  1135.     switch (outtype) {
    1136. 

  1136.         bool ret;
    1137. 

  1137.         int real_outtype;
    1138. 

  1138. 

  1139.       case PRIVATE:
    1140. 

  1140.         random_ref(); /* we'll need a few random bytes in the save file */
    1141. 

  1141.         if (sshver == 1) {
    1142. 

  1142.             assert(ssh1key);
    1143. 

  1143.             ret = rsa1_save_f(outfilename, ssh1key, new_passphrase);
    1144. 

  1144.             if (!ret) {
    1145. 

  1145.                 fprintf(stderr, "puttygen: unable to save SSH-1 private key\n");
    1146. 

  1146.                 RETURN(1);
    1147. 

  1147.             }
    1148. 

  1148.         } else {
    1149. 

  1149.             assert(ssh2key);
    1150. 

  1150.             ret = ppk_save_f(outfilename, ssh2key, new_passphrase, &params);
    1151. 

  1151.             if (!ret) {
    1152. 

  1152.                 fprintf(stderr, "puttygen: unable to save SSH-2 private key\n");
    1153. 

  1153.                 RETURN(1);
    1154. 

  1154.             }
    1155. 

  1155.         }
    1156. 

  1156.         if (outfiletmp) {
    1157. 

  1157.             if (!move(outfiletmp, outfile))
    1158. 

  1158.                 RETURN(1);              /* rename failed */
    1159. 

  1159.         }
    1160. 

  1160.         break;
    1161. 

  1161. 

  1162.       case PUBLIC:
    1163. 

  1163.       case PUBLICO: {
    1164. 

  1164.         FILE *fp;
    1165. 

  1165. 

  1166.         if (outfile) {
    1167. 

  1167.           fp = f_open(outfilename, "w", false);
    1168. 

  1168.           if (!fp) {
    1169. 

  1169.             fprintf(stderr, "unable to open output file\n");
    1170. 

  1170.             exit(1);
    1171. 

  1171.           }
    1172. 

  1172.         } else {
    1173. 

  1173.           fp = stdout;
    1174. 

  1174.         }
    1175. 

  1175. 

  1176.         if (sshver == 1) {
    1177. 

  1177.           ssh1_write_pubkey(fp, ssh1key);
    1178. 

  1178.         } else {
    1179. 

  1179.           if (!ssh2blob) {
    1180. 

  1180.             assert(ssh2key);
    1181. 

  1181.             ssh2blob = strbuf_new();
    1182. 

  1182.             ssh_key_public_blob(ssh2key->key, BinarySink_UPCAST(ssh2blob));
    1183. 

  1183.           }
    1184. 

  1184. 

  1185.           ssh2_write_pubkey(fp, ssh2key ? ssh2key->comment : origcomment,
    1186. 

  1186.                             ssh2blob->s, ssh2blob->len,
    1187. 

  1187.                             (outtype == PUBLIC ?
    1188. 

  1188.                              SSH_KEYTYPE_SSH2_PUBLIC_RFC4716 :
    1189. 

  1189.                              SSH_KEYTYPE_SSH2_PUBLIC_OPENSSH));
    1190. 

  1190.         }
    1191. 

  1191. 

  1192.         if (outfile)
    1193. 

  1193.             fclose(fp);
    1194. 

  1194. 

  1195.         break;
    1196. 

  1196.       }
    1197. 

  1197. 

  1198.       case FP: {
    1199. 

  1199.         FILE *fp;
    1200. 

  1200.         char *fingerprint;
    1201. 

  1201. 

  1202.         if (sshver == 1) {
    1203. 

  1203.           assert(ssh1key);
    1204. 

  1204.           fingerprint = rsa_ssh1_fingerprint(ssh1key);
    1205. 

  1205.         } else {
    1206. 

  1206.           if (ssh2key) {
    1207. 

  1207.             fingerprint = ssh2_fingerprint(ssh2key->key, fptype);
    1208. 

  1208.           } else {
    1209. 

  1209.             assert(ssh2blob);
    1210. 

  1210.             fingerprint = ssh2_fingerprint_blob(
    1211. 

  1211.                 ptrlen_from_strbuf(ssh2blob), fptype);
    1212. 

  1212.           }
    1213. 

  1213.         }
    1214. 

  1214. 

  1215.         if (outfile) {
    1216. 

  1216.           fp = f_open(outfilename, "w", false);
    1217. 

  1217.           if (!fp) {
    1218. 

  1218.             fprintf(stderr, "unable to open output file\n");
    1219. 

  1219.             exit(1);
    1220. 

  1220.           }
    1221. 

  1221.         } else {
    1222. 

  1222.           fp = stdout;
    1223. 

  1223.         }
    1224. 

  1224.         fprintf(fp, "%s\n", fingerprint);
    1225. 

  1225.         if (outfile)
    1226. 

  1226.             fclose(fp);
    1227. 

  1227. 

  1228.         sfree(fingerprint);
    1229. 

  1229.         break;
    1230. 

  1230.       }
    1231. 

  1231. 

  1232.       case OPENSSH_AUTO:
    1233. 

  1233.       case OPENSSH_NEW:
    1234. 

  1234.       case SSHCOM:
    1235. 

  1235.         assert(sshver == 2);
    1236. 

  1236.         assert(ssh2key);
    1237. 

  1237.         random_ref(); /* both foreign key types require randomness,
    1238. 

  1238.                        * for IV or padding */
    1239. 

  1239.         switch (outtype) {
    1240. 

  1240.           case OPENSSH_AUTO:
    1241. 

  1241.             real_outtype = SSH_KEYTYPE_OPENSSH_AUTO;
    1242. 

  1242.             break;
    1243. 

  1243.           case OPENSSH_NEW:
    1244. 

  1244.             real_outtype = SSH_KEYTYPE_OPENSSH_NEW;
    1245. 

  1245.             break;
    1246. 

  1246.           case SSHCOM:
    1247. 

  1247.             real_outtype = SSH_KEYTYPE_SSHCOM;
    1248. 

  1248.             break;
    1249. 

  1249.           default:
    1250. 

  1250.             unreachable("control flow goof");
    1251. 

  1251.         }
    1252. 

  1252.         ret = export_ssh2(outfilename, real_outtype, ssh2key, new_passphrase);
    1253. 

  1253.         if (!ret) {
    1254. 

  1254.             fprintf(stderr, "puttygen: unable to export key\n");
    1255. 

  1255.             RETURN(1);
    1256. 

  1256.         }
    1257. 

  1257.         if (outfiletmp) {
    1258. 

  1258.             if (!move(outfiletmp, outfile))
    1259. 

  1259.                 RETURN(1);              /* rename failed */
    1260. 

  1260.         }
    1261. 

  1261.         break;
    1262. 

  1262. 

  1263.       case TEXT: {
    1264. 

  1264.         key_components *kc;
    1265. 

  1265.         if (sshver == 1) {
    1266. 

  1266.             assert(ssh1key);
    1267. 

  1267.             kc = rsa_components(ssh1key);
    1268. 

  1268.         } else {
    1269. 

  1269.             if (ssh2key) {
    1270. 

  1270.                 kc = ssh_key_components(ssh2key->key);
    1271. 

  1271.             } else {
    1272. 

  1272.                 assert(ssh2blob);
    1273. 

  1273. 

  1274.                 BinarySource src[1];
    1275. 

  1275.                 BinarySource_BARE_INIT_PL(src, ptrlen_from_strbuf(ssh2blob));
    1276. 

  1276.                 ptrlen algname = get_string(src);
    1277. 

  1277.                 const ssh_keyalg *alg = find_pubkey_alg_len(algname);
    1278. 

  1278.                 if (!alg) {
    1279. 

  1279.                     fprintf(stderr, "puttygen: cannot extract key components "
    1280. 

  1280.                             "from public key of unknown type '%.*s'\n",
    1281. 

  1281.                             PTRLEN_PRINTF(algname));
    1282. 

  1282.                     RETURN(1);
    1283. 

  1283.                 }
    1284. 

  1284.                 ssh_key *sk = ssh_key_new_pub(
    1285. 

  1285.                     alg, ptrlen_from_strbuf(ssh2blob));
    1286. 

  1286.                 if (!sk) {
    1287. 

  1287.                     fprintf(stderr, "puttygen: unable to decode public key\n");
    1288. 

  1288.                     RETURN(1);
    1289. 

  1289.                 }
    1290. 

  1290.                 kc = ssh_key_components(sk);
    1291. 

  1291.                 ssh_key_free(sk);
    1292. 

  1292.             }
    1293. 

  1293.         }
    1294. 

  1294. 

  1295.         FILE *fp;
    1296. 

  1296.         if (outfile) {
    1297. 

  1297.             fp = f_open(outfilename, "w", false);
    1298. 

  1298.             if (!fp) {
    1299. 

  1299.                 fprintf(stderr, "unable to open output file\n");
    1300. 

  1300.                 exit(1);
    1301. 

  1301.             }
    1302. 

  1302.         } else {
    1303. 

  1303.             fp = stdout;
    1304. 

  1304.         }
    1305. 

  1305. 

  1306.         for (size_t i = 0; i < kc->ncomponents; i++) {
    1307. 

  1307.             if (kc->components[i].is_mp_int) {
    1308. 

  1308.                 char *hex = mp_get_hex(kc->components[i].mp);
    1309. 

  1309.                 fprintf(fp, "%s=0x%s\n", kc->components[i].name, hex);
    1310. 

  1310.                 smemclr(hex, strlen(hex));
    1311. 

  1311.                 sfree(hex);
    1312. 

  1312.             } else {
    1313. 

  1313.                 fprintf(fp, "%s=\"", kc->components[i].name);
    1314. 

  1314.                 write_c_string_literal(fp, ptrlen_from_asciz(
    1315. 

  1315.                                            kc->components[i].text));
    1316. 

  1316.                 fputs("\"\n", fp);
    1317. 

  1317.             }
    1318. 

  1318.         }
    1319. 

  1319. 

  1320.         if (outfile)
    1321. 

  1321.             fclose(fp);
    1322. 

  1322.         key_components_free(kc);
    1323. 

  1323.         break;
    1324. 

  1324.       }
    1325. 

  1325.     }
    1326. 

  1326. 

  1327.   out:
    1328. 

  1328. 

  1329.     #undef RETURN
    1330. 

  1330. 

  1331.     if (old_passphrase) {
    1332. 

  1332.         smemclr(old_passphrase, strlen(old_passphrase));
    1333. 

  1333.         sfree(old_passphrase);
    1334. 

  1334.     }
    1335. 

  1335.     if (new_passphrase) {
    1336. 

  1336.         smemclr(new_passphrase, strlen(new_passphrase));
    1337. 

  1337.         sfree(new_passphrase);
    1338. 

  1338.     }
    1339. 

  1339. 

  1340.     if (ssh1key) {
    1341. 

  1341.         freersakey(ssh1key);
    1342. 

  1342.         sfree(ssh1key);
    1343. 

  1343.     }
    1344. 

  1344.     if (ssh2key && ssh2key != SSH2_WRONG_PASSPHRASE) {
    1345. 

  1345.         sfree(ssh2key->comment);
    1346. 

  1346.         if (ssh2key->key)
    1347. 

  1347.             ssh_key_free(ssh2key->key);
    1348. 

  1348.         sfree(ssh2key);
    1349. 

  1349.     }
    1350. 

  1350.     if (ssh2blob)
    1351. 

  1351.         strbuf_free(ssh2blob);
    1352. 

  1352.     sfree(origcomment);
    1353. 

  1353.     if (infilename)
    1354. 

  1354.         filename_free(infilename);
    1355. 

  1355.     if (infile_lf)
    1356. 

  1356.         lf_free(infile_lf);
    1357. 

  1357.     if (outfilename)
    1358. 

  1358.         filename_free(outfilename);
    1359. 

  1359.     sfree(outfiletmp);
    1360. 

  1360. 

  1361.     return exit_status;
    1362. 

  1362. }
    1363. 

  1363.