And so it begins...

 Changes between 0.9.8g and 0.9.9  [xx XXX xxxx]

  *) Initial support for Cryptographic Message Syntax (aka CMS) based

     on RFC3850, RFC3851 and RFC3852. New cms directory and cms utility,

     support for data, signedData, compressedData types currently included,

     more to come. Scripts to check against RFC4134 examples draft and internal

     consistency.

     [Steve Henson]

  *) Zlib compression BIO. This is a filter BIO which compressed and

     uncompresses any data passed through it. Add options to enc utility

     to support it.

     [Steve Henson]

  *) Extend mk1mf to support importing of options and assembly language

     files from Configure script, currently only included in VC-WIN32.

     The assembly language rules can now optionally generate the source

	bn ec rsa dsa ecdsa dh ecdh dso engine \

	buffer bio stack lhash rand err \

	evp asn1 pem x509 x509v3 conf txt_db pkcs7 pkcs12 comp ocsp ui krb5 \

	store pqueue ts

	store cms pqueue ts 

# keep in mind that the above list is adjusted by ./Configure

# according to no-xxx arguments...

			do { CONF_modules_unload(1); destroy_ui_method(); \

			OBJ_cleanup(); EVP_cleanup(); ENGINE_cleanup(); \

			CRYPTO_cleanup_all_ex_data(); ERR_remove_state(0); \

			ERR_free_strings(); } while(0)

			ERR_free_strings(); COMP_zlib_cleanup();} while(0)

#  else

#    define apps_startup() \

			do { do_pipe_sig(); CRYPTO_malloc_init(); \

/* apps/cms.c */

/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL

 * project.

 */

/* ====================================================================

 * Copyright (c) 2008 The OpenSSL Project.  All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *

 * 1. Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer. 

 *

 * 2. Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in

 *    the documentation and/or other materials provided with the

 *    distribution.

 *

 * 3. All advertising materials mentioning features or use of this

 *    software must display the following acknowledgment:

 *    "This product includes software developed by the OpenSSL Project

 *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"

 *

 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to

 *    endorse or promote products derived from this software without

 *    prior written permission. For written permission, please contact

 *    licensing@OpenSSL.org.

 *

 * 5. Products derived from this software may not be called "OpenSSL"

 *    nor may "OpenSSL" appear in their names without prior written

 *    permission of the OpenSSL Project.

 *

 * 6. Redistributions of any form whatsoever must retain the following

 *    acknowledgment:

 *    "This product includes software developed by the OpenSSL Project

 *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"

 *

 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY

 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR

 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR

 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

 * OF THE POSSIBILITY OF SUCH DAMAGE.

 * ====================================================================

 */

/* CMS utility function */

#include <stdio.h>

#include <string.h>

#include "apps.h"

#ifndef OPENSSL_NO_CMS

#include <openssl/crypto.h>

#include <openssl/pem.h>

#include <openssl/err.h>

#include <openssl/x509_vfy.h>

#include <openssl/x509v3.h>

#include <openssl/cms.h>

#undef PROG

#define PROG cms_main

static int save_certs(char *signerfile, STACK_OF(X509) *signers);

static int smime_cb(int ok, X509_STORE_CTX *ctx);

#define SMIME_OP	0x10

#define SMIME_IP	0x20

#define SMIME_SIGNERS	0x40

#define SMIME_ENCRYPT		(1 | SMIME_OP)

#define SMIME_DECRYPT		(2 | SMIME_IP)

#define SMIME_SIGN		(3 | SMIME_OP | SMIME_SIGNERS)

#define SMIME_VERIFY		(4 | SMIME_IP)

#define SMIME_CMSOUT		(5 | SMIME_IP | SMIME_OP)

#define SMIME_RESIGN		(6 | SMIME_IP | SMIME_OP | SMIME_SIGNERS)

#define SMIME_DATAOUT		(7 | SMIME_IP)

#define SMIME_DATA_CREATE	(8 | SMIME_OP)

#define SMIME_DIGEST_VERIFY	(9 | SMIME_IP)

#define SMIME_DIGEST_CREATE	(10 | SMIME_OP)

#define SMIME_UNCOMPRESS	(11 | SMIME_IP)

#define SMIME_COMPRESS		(12 | SMIME_OP)

int MAIN(int, char **);

int MAIN(int argc, char **argv)

	{

	ENGINE *e = NULL;

	int operation = 0;

	int ret = 0;

	char **args;

	const char *inmode = "r", *outmode = "w";

	char *infile = NULL, *outfile = NULL;

	char *signerfile = NULL, *recipfile = NULL;

	STACK *sksigners = NULL, *skkeys = NULL;

	char *certfile = NULL, *keyfile = NULL, *contfile=NULL;

	const EVP_CIPHER *cipher = NULL;

	CMS_ContentInfo *cms = NULL;

	X509_STORE *store = NULL;

	X509 *cert = NULL, *recip = NULL, *signer = NULL;

	EVP_PKEY *key = NULL;

	STACK_OF(X509) *encerts = NULL, *other = NULL;

	BIO *in = NULL, *out = NULL, *indata = NULL;

	int badarg = 0;

	int flags = CMS_DETACHED;

	char *to = NULL, *from = NULL, *subject = NULL;

	char *CAfile = NULL, *CApath = NULL;

	char *passargin = NULL, *passin = NULL;

	char *inrand = NULL;

	int need_rand = 0;

	int indef = 0;

	const EVP_MD *sign_md = NULL;

	int informat = FORMAT_SMIME, outformat = FORMAT_SMIME;

        int keyform = FORMAT_PEM;

#ifndef OPENSSL_NO_ENGINE

	char *engine=NULL;

#endif

	X509_VERIFY_PARAM *vpm = NULL;

	args = argv + 1;

	ret = 1;

	apps_startup();

	if (bio_err == NULL)

		{

		if ((bio_err = BIO_new(BIO_s_file())) != NULL)

			BIO_set_fp(bio_err, stderr, BIO_NOCLOSE|BIO_FP_TEXT);

		}

	if (!load_config(bio_err, NULL))

		goto end;

	while (!badarg && *args && *args[0] == '-')

		{

		if (!strcmp (*args, "-encrypt"))

			operation = SMIME_ENCRYPT;

		else if (!strcmp (*args, "-decrypt"))

			operation = SMIME_DECRYPT;

		else if (!strcmp (*args, "-sign"))

			operation = SMIME_SIGN;

		else if (!strcmp (*args, "-resign"))

			operation = SMIME_RESIGN;

		else if (!strcmp (*args, "-verify"))

			operation = SMIME_VERIFY;

		else if (!strcmp (*args, "-cmsout"))

			operation = SMIME_CMSOUT;

		else if (!strcmp (*args, "-data_out"))

			operation = SMIME_DATAOUT;

		else if (!strcmp (*args, "-data_create"))

			operation = SMIME_DATA_CREATE;

		else if (!strcmp (*args, "-digest_verify"))

			operation = SMIME_DIGEST_VERIFY;

		else if (!strcmp (*args, "-digest_create"))

			operation = SMIME_DIGEST_CREATE;

		else if (!strcmp (*args, "-compress"))

			operation = SMIME_COMPRESS;

		else if (!strcmp (*args, "-uncompress"))

			operation = SMIME_UNCOMPRESS;

#ifndef OPENSSL_NO_DES

		else if (!strcmp (*args, "-des3")) 

				cipher = EVP_des_ede3_cbc();

		else if (!strcmp (*args, "-des")) 

				cipher = EVP_des_cbc();

#endif

#ifndef OPENSSL_NO_SEED

		else if (!strcmp (*args, "-seed")) 

				cipher = EVP_seed_cbc();

#endif

#ifndef OPENSSL_NO_RC2

		else if (!strcmp (*args, "-rc2-40")) 

				cipher = EVP_rc2_40_cbc();

		else if (!strcmp (*args, "-rc2-128")) 

				cipher = EVP_rc2_cbc();

		else if (!strcmp (*args, "-rc2-64")) 

				cipher = EVP_rc2_64_cbc();

#endif

#ifndef OPENSSL_NO_AES

		else if (!strcmp(*args,"-aes128"))

				cipher = EVP_aes_128_cbc();

		else if (!strcmp(*args,"-aes192"))

				cipher = EVP_aes_192_cbc();

		else if (!strcmp(*args,"-aes256"))

				cipher = EVP_aes_256_cbc();

#endif

#ifndef OPENSSL_NO_CAMELLIA

		else if (!strcmp(*args,"-camellia128"))

				cipher = EVP_camellia_128_cbc();

		else if (!strcmp(*args,"-camellia192"))

				cipher = EVP_camellia_192_cbc();

		else if (!strcmp(*args,"-camellia256"))

				cipher = EVP_camellia_256_cbc();

#endif

		else if (!strcmp (*args, "-text")) 

				flags |= CMS_TEXT;

		else if (!strcmp (*args, "-nointern")) 

				flags |= CMS_NOINTERN;

		else if (!strcmp (*args, "-noverify") 

			|| !strcmp (*args, "-no_signer_cert_verify")) 

				flags |= CMS_NO_SIGNER_CERT_VERIFY;

		else if (!strcmp (*args, "-nocerts")) 

				flags |= CMS_NOCERTS;

		else if (!strcmp (*args, "-noattr")) 

				flags |= CMS_NOATTR;

		else if (!strcmp (*args, "-nodetach")) 

				flags &= ~CMS_DETACHED;

		else if (!strcmp (*args, "-nosmimecap"))

				flags |= CMS_NOSMIMECAP;

		else if (!strcmp (*args, "-binary"))

				flags |= CMS_BINARY;

		else if (!strcmp (*args, "-keyid"))

				flags |= CMS_USE_KEYID;

		else if (!strcmp (*args, "-nosigs"))

				flags |= CMS_NOSIGS;

		else if (!strcmp (*args, "-no_content_verify"))

				flags |= CMS_NO_CONTENT_VERIFY;

		else if (!strcmp (*args, "-no_attr_verify"))

				flags |= CMS_NO_ATTR_VERIFY;

		else if (!strcmp (*args, "-stream"))

				indef = 1;

		else if (!strcmp (*args, "-indef"))

				indef = 1;

		else if (!strcmp (*args, "-noindef"))

				indef = 0;

		else if (!strcmp (*args, "-nooldmime"))

				flags |= CMS_NOOLDMIMETYPE;

		else if (!strcmp (*args, "-crlfeol"))

				flags |= CMS_CRLFEOL;

		else if (!strcmp(*args,"-rand"))

			{

			if (!args[1])

				goto argerr;

			args++;

			inrand = *args;

			need_rand = 1;

			}

#ifndef OPENSSL_NO_ENGINE

		else if (!strcmp(*args,"-engine"))

			{

			if (!args[1])

				goto argerr;

			engine = *++args;

			}

#endif

		else if (!strcmp(*args,"-passin"))

			{

			if (!args[1])

				goto argerr;

			passargin = *++args;

			}

		else if (!strcmp (*args, "-to"))

			{

			if (!args[1])

				goto argerr;

			to = *++args;

			}

		else if (!strcmp (*args, "-from"))

			{

			if (!args[1])

				goto argerr;

			from = *++args;

			}

		else if (!strcmp (*args, "-subject"))

			{

			if (!args[1])

				goto argerr;

			subject = *++args;

			}

		else if (!strcmp (*args, "-signer"))

			{

			if (!args[1])

				goto argerr;

			/* If previous -signer argument add signer to list */

			if (signerfile)

				{

				if (!sksigners)

					sksigners = sk_new_null();

				sk_push(sksigners, signerfile);

				if (!keyfile)

					keyfile = signerfile;

				if (!skkeys)

					skkeys = sk_new_null();

				sk_push(skkeys, keyfile);

				keyfile = NULL;

				}

			signerfile = *++args;

			}

		else if (!strcmp (*args, "-recip"))

			{

			if (!args[1])

				goto argerr;

			recipfile = *++args;

			}

		else if (!strcmp (*args, "-md"))

			{

			if (!args[1])

				goto argerr;

			sign_md = EVP_get_digestbyname(*++args);

			if (sign_md == NULL)

				{

				BIO_printf(bio_err, "Unknown digest %s\n",

							*args);

				goto argerr;

				}

			}

		else if (!strcmp (*args, "-inkey"))

			{

			if (!args[1])	

				goto argerr;

			/* If previous -inkey arument add signer to list */

			if (keyfile)

				{

				if (!signerfile)

					{

					BIO_puts(bio_err, "Illegal -inkey without -signer\n");

					goto argerr;

					}

				if (!sksigners)

					sksigners = sk_new_null();

				sk_push(sksigners, signerfile);

				signerfile = NULL;

				if (!skkeys)

					skkeys = sk_new_null();

				sk_push(skkeys, keyfile);

				}

			keyfile = *++args;

			}

		else if (!strcmp (*args, "-keyform"))

			{

			if (!args[1])

				goto argerr;

			keyform = str2fmt(*++args);

			}

		else if (!strcmp (*args, "-certfile"))

			{

			if (!args[1])

				goto argerr;

			certfile = *++args;

			}

		else if (!strcmp (*args, "-CAfile"))

			{

			if (!args[1])

				goto argerr;

			CAfile = *++args;

			}

		else if (!strcmp (*args, "-CApath"))

			{

			if (!args[1])

				goto argerr;

			CApath = *++args;

			}

		else if (!strcmp (*args, "-in"))

			{

			if (!args[1])

				goto argerr;

			infile = *++args;

			}

		else if (!strcmp (*args, "-inform"))

			{

			if (!args[1])

				goto argerr;

			informat = str2fmt(*++args);

			}

		else if (!strcmp (*args, "-outform"))

			{

			if (!args[1])

				goto argerr;

			outformat = str2fmt(*++args);

			}

		else if (!strcmp (*args, "-out"))

			{

			if (!args[1])

				goto argerr;

			outfile = *++args;

			}

		else if (!strcmp (*args, "-content"))

			{

			if (!args[1])

				goto argerr;

			contfile = *++args;

			}

		else if (args_verify(&args, NULL, &badarg, bio_err, &vpm))

			continue;

		else if ((cipher = EVP_get_cipherbyname(*args + 1)) == NULL)

			badarg = 1;

		args++;

		}

	if (!(operation & SMIME_SIGNERS) && (skkeys || sksigners))

		{

		BIO_puts(bio_err, "Multiple signers or keys not allowed\n");

		goto argerr;

		}

	if (operation & SMIME_SIGNERS)

		{

		/* Check to see if any final signer needs to be appended */

		if (keyfile && !signerfile)

			{

			BIO_puts(bio_err, "Illegal -inkey without -signer\n");

			goto argerr;

			}

		if (signerfile)

			{

			if (!sksigners)

				sksigners = sk_new_null();

			sk_push(sksigners, signerfile);

			if (!skkeys)

				skkeys = sk_new_null();

			if (!keyfile)

				keyfile = signerfile;

			sk_push(skkeys, keyfile);

			}

		if (!sksigners)

			{

			BIO_printf(bio_err, "No signer certificate specified\n");

			badarg = 1;

			}

		signerfile = NULL;

		keyfile = NULL;

		need_rand = 1;

		}

	else if (operation == SMIME_DECRYPT)

		{

		if (!recipfile && !keyfile)

			{

			BIO_printf(bio_err, "No recipient certificate or key specified\n");

			badarg = 1;

			}

		}

	else if (operation == SMIME_ENCRYPT)

		{

		if (!*args)

			{

			BIO_printf(bio_err, "No recipient(s) certificate(s) specified\n");

			badarg = 1;

			}

		need_rand = 1;

		}

	else if (!operation)

		badarg = 1;

	if (badarg)

		{

		argerr:

		BIO_printf (bio_err, "Usage smime [options] cert.pem ...\n");

		BIO_printf (bio_err, "where options are\n");

		BIO_printf (bio_err, "-encrypt       encrypt message\n");

		BIO_printf (bio_err, "-decrypt       decrypt encrypted message\n");

		BIO_printf (bio_err, "-sign          sign message\n");

		BIO_printf (bio_err, "-verify        verify signed message\n");

		BIO_printf (bio_err, "-cmsout        output CMS structure\n");

#ifndef OPENSSL_NO_DES

		BIO_printf (bio_err, "-des3          encrypt with triple DES\n");

		BIO_printf (bio_err, "-des           encrypt with DES\n");

#endif

#ifndef OPENSSL_NO_SEED

		BIO_printf (bio_err, "-seed          encrypt with SEED\n");

#endif

#ifndef OPENSSL_NO_RC2

		BIO_printf (bio_err, "-rc2-40        encrypt with RC2-40 (default)\n");

		BIO_printf (bio_err, "-rc2-64        encrypt with RC2-64\n");

		BIO_printf (bio_err, "-rc2-128       encrypt with RC2-128\n");

#endif

#ifndef OPENSSL_NO_AES

		BIO_printf (bio_err, "-aes128, -aes192, -aes256\n");

		BIO_printf (bio_err, "               encrypt PEM output with cbc aes\n");

#endif

#ifndef OPENSSL_NO_CAMELLIA

		BIO_printf (bio_err, "-camellia128, -camellia192, -camellia256\n");

		BIO_printf (bio_err, "               encrypt PEM output with cbc camellia\n");

#endif

		BIO_printf (bio_err, "-nointern      don't search certificates in message for signer\n");

		BIO_printf (bio_err, "-nosigs        don't verify message signature\n");

		BIO_printf (bio_err, "-noverify      don't verify signers certificate\n");

		BIO_printf (bio_err, "-nocerts       don't include signers certificate when signing\n");

		BIO_printf (bio_err, "-nodetach      use opaque signing\n");

		BIO_printf (bio_err, "-noattr        don't include any signed attributes\n");

		BIO_printf (bio_err, "-binary        don't translate message to text\n");

		BIO_printf (bio_err, "-certfile file other certificates file\n");

		BIO_printf (bio_err, "-signer file   signer certificate file\n");

		BIO_printf (bio_err, "-recip  file   recipient certificate file for decryption\n");

		BIO_printf (bio_err, "-skeyid        use subject key identifier\n");

		BIO_printf (bio_err, "-in file       input file\n");

		BIO_printf (bio_err, "-inform arg    input format SMIME (default), PEM or DER\n");

		BIO_printf (bio_err, "-inkey file    input private key (if not signer or recipient)\n");

		BIO_printf (bio_err, "-keyform arg   input private key format (PEM or ENGINE)\n");

		BIO_printf (bio_err, "-out file      output file\n");

		BIO_printf (bio_err, "-outform arg   output format SMIME (default), PEM or DER\n");

		BIO_printf (bio_err, "-content file  supply or override content for detached signature\n");

		BIO_printf (bio_err, "-to addr       to address\n");

		BIO_printf (bio_err, "-from ad       from address\n");

		BIO_printf (bio_err, "-subject s     subject\n");

		BIO_printf (bio_err, "-text          include or delete text MIME headers\n");

		BIO_printf (bio_err, "-CApath dir    trusted certificates directory\n");

		BIO_printf (bio_err, "-CAfile file   trusted certificates file\n");

		BIO_printf (bio_err, "-crl_check     check revocation status of signer's certificate using CRLs\n");

		BIO_printf (bio_err, "-crl_check_all check revocation status of signer's certificate chain using CRLs\n");

#ifndef OPENSSL_NO_ENGINE

		BIO_printf (bio_err, "-engine e      use engine e, possibly a hardware device.\n");

#endif

		BIO_printf (bio_err, "-passin arg    input file pass phrase source\n");

		BIO_printf(bio_err,  "-rand file%cfile%c...\n", LIST_SEPARATOR_CHAR, LIST_SEPARATOR_CHAR);

		BIO_printf(bio_err,  "               load the file (or the files in the directory) into\n");

		BIO_printf(bio_err,  "               the random number generator\n");

		BIO_printf (bio_err, "cert.pem       recipient certificate(s) for encryption\n");

		goto end;

		}

#ifndef OPENSSL_NO_ENGINE

        e = setup_engine(bio_err, engine, 0);

#endif

	if (!app_passwd(bio_err, passargin, NULL, &passin, NULL))

		{

		BIO_printf(bio_err, "Error getting password\n");

		goto end;

		}

	if (need_rand)

		{

		app_RAND_load_file(NULL, bio_err, (inrand != NULL));

		if (inrand != NULL)

			BIO_printf(bio_err,"%ld semi-random bytes loaded\n",

				app_RAND_load_files(inrand));

		}

	ret = 2;

	if (!(operation & SMIME_SIGNERS))

		flags &= ~CMS_DETACHED;

	if (operation & SMIME_OP)

		{

		if (outformat == FORMAT_ASN1)

			outmode = "wb";

		}

	else

		{

		if (flags & CMS_BINARY)

			outmode = "wb";

		}

	if (operation & SMIME_IP)

		{

		if (informat == FORMAT_ASN1)

			inmode = "rb";

		}

	else

		{

		if (flags & CMS_BINARY)

			inmode = "rb";

		}

	if (operation == SMIME_ENCRYPT)

		{

		if (!cipher)

			{

#ifndef OPENSSL_NO_RC2			

			cipher = EVP_rc2_40_cbc();

#else

			BIO_printf(bio_err, "No cipher selected\n");

			goto end;

#endif

			}

		encerts = sk_X509_new_null();

		while (*args)

			{

			if (!(cert = load_cert(bio_err,*args,FORMAT_PEM,

				NULL, e, "recipient certificate file")))

				{

#if 0				/* An appropriate message is already printed */

				BIO_printf(bio_err, "Can't read recipient certificate file %s\n", *args);

#endif

				goto end;

				}

			sk_X509_push(encerts, cert);

			cert = NULL;

			args++;

			}

		}

	if (certfile)

		{

		if (!(other = load_certs(bio_err,certfile,FORMAT_PEM, NULL,

			e, "certificate file")))

			{

			ERR_print_errors(bio_err);

			goto end;

			}

		}

	if (recipfile && (operation == SMIME_DECRYPT))

		{

		if (!(recip = load_cert(bio_err,recipfile,FORMAT_PEM,NULL,

			e, "recipient certificate file")))

			{

			ERR_print_errors(bio_err);

			goto end;

			}

		}

	if (operation == SMIME_DECRYPT)

		{

		if (!keyfile)

			keyfile = recipfile;

		}

	else if (operation == SMIME_SIGN)

		{

		if (!keyfile)

			keyfile = signerfile;

		}

	else keyfile = NULL;

	if (keyfile)

		{

		key = load_key(bio_err, keyfile, keyform, 0, passin, e,

			       "signing key file");

		if (!key)

			goto end;

		}

	if (infile)

		{

		if (!(in = BIO_new_file(infile, inmode)))

			{

			BIO_printf (bio_err,

				 "Can't open input file %s\n", infile);

			goto end;

			}

		}

	else

		in = BIO_new_fp(stdin, BIO_NOCLOSE);

	if (operation & SMIME_IP)

		{

		if (informat == FORMAT_SMIME)