1 /* Copyright (c) 2015, Google Inc.
2  *
3  * Permission to use, copy, modify, and/or distribute this software for any
4  * purpose with or without fee is hereby granted, provided that the above
5  * copyright notice and this permission notice appear in all copies.
6  *
7  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
8  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
9  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
10  * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
11  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
12  * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
13  * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
14 
15 #include <openssl/bio.h>
16 #include <openssl/bn.h>
17 #include <openssl/err.h>
18 #include <openssl/pem.h>
19 #include <openssl/rsa.h>
20 
21 #include "internal.h"
22 
23 
24 static const struct argument kArguments[] = {
25     {
26      "-nprimes", kOptionalArgument,
27      "The number of primes to generate (default: 2)",
28     },
29     {
30      "-bits", kOptionalArgument,
31      "The number of bits in the modulus (default: 2048)",
32     },
33     {
34      "", kOptionalArgument, "",
35     },
36 };
37 
GenerateRSAKey(const std::vector<std::string> & args)38 bool GenerateRSAKey(const std::vector<std::string> &args) {
39   std::map<std::string, std::string> args_map;
40 
41   if (!ParseKeyValueArguments(&args_map, args, kArguments)) {
42     PrintUsage(kArguments);
43     return false;
44   }
45 
46   unsigned bits, nprimes = 0;
47   if (!GetUnsigned(&bits, "-bits", 2048, args_map) ||
48       !GetUnsigned(&nprimes, "-nprimes", 2, args_map)) {
49     PrintUsage(kArguments);
50     return false;
51   }
52 
53   bssl::UniquePtr<RSA> rsa(RSA_new());
54   bssl::UniquePtr<BIGNUM> e(BN_new());
55   bssl::UniquePtr<BIO> bio(BIO_new_fp(stdout, BIO_NOCLOSE));
56 
57   if (!BN_set_word(e.get(), RSA_F4) ||
58       !RSA_generate_multi_prime_key(rsa.get(), bits, nprimes, e.get(), NULL) ||
59       !PEM_write_bio_RSAPrivateKey(bio.get(), rsa.get(), NULL /* cipher */,
60                                    NULL /* key */, 0 /* key len */,
61                                    NULL /* password callback */,
62                                    NULL /* callback arg */)) {
63     ERR_print_errors_fp(stderr);
64     return false;
65   }
66 
67   return true;
68 }
69