--- /dev/null
+/*-
+ * Copyright 2009 Colin Percival
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ * notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ * notice, this list of conditions and the following disclaimer in the
+ * documentation and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ */
+#include "scrypt_platform.h"
+
+#include <inttypes.h>
+#include <stdint.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+
+#include "readpass.h"
+#include "scryptenc.h"
+#include "warn.h"
+
+static void
+usage(void)
+{
+
+ fprintf(stderr,
+ "usage: scrypt {enc | dec} [...] infile [outfile]\n");
+ exit(1);
+}
+
+int
+main(int argc, char *argv[])
+{
+ FILE * infile = NULL;
+ FILE * outfile = stdout;
+ int dec = 0;
+ size_t maxmem = 0;
+ double maxmemfrac = 0.5;
+ double maxtime = 300.0;
+ char ch;
+ char * passwd;
+ int rc;
+
+#ifdef NEED_WARN_PROGNAME
+ warn_progname = "scrypt";
+#endif
+
+ /* We should have "enc" or "dec" first. */
+ if (argc < 2)
+ usage();
+ if (strcmp(argv[1], "enc") == 0) {
+ maxmem = 0;
+ maxmemfrac = 0.125;
+ maxtime = 5.0;
+ } else if (strcmp(argv[1], "dec") == 0) {
+ dec = 1;
+ } else
+ usage();
+ argc--;
+ argv++;
+
+ /* Parse arguments. */
+ while ((ch = getopt(argc, argv, "hm:M:t:")) != -1) {
+ switch (ch) {
+ case 'M':
+ maxmem = strtoumax(optarg, NULL, 0);
+ break;
+ case 'm':
+ maxmemfrac = strtod(optarg, NULL);
+ break;
+ case 't':
+ maxtime = strtod(optarg, NULL);
+ break;
+ default:
+ usage();
+ }
+ }
+ argc -= optind;
+ argv += optind;
+
+ /* We must have one or two parameters left. */
+ if ((argc < 1) || (argc > 2))
+ usage();
+
+ /* Open the input file. */
+ if ((infile = fopen(argv[0], "r")) == NULL) {
+ warn("Cannot open input file: %s", argv[0]);
+ exit(1);
+ }
+
+ /* If we have an output file, open it. */
+ if (argc > 1) {
+ if ((outfile = fopen(argv[1], "w")) == NULL) {
+ warn("Cannot open output file: %s", argv[1]);
+ exit(1);
+ }
+ }
+
+ /* Prompt for a password. */
+ if (tarsnap_readpass(&passwd, "Please enter passphrase",
+ dec ? NULL : "Please confirm passphrase", 1))
+ exit(1);
+
+ /* Encrypt or decrypt. */
+ if (dec)
+ rc = scryptdec_file(infile, outfile, (uint8_t *)passwd,
+ strlen(passwd), maxmem, maxmemfrac, maxtime);
+ else
+ rc = scryptenc_file(infile, outfile, (uint8_t *)passwd,
+ strlen(passwd), maxmem, maxmemfrac, maxtime);
+
+ /* Zero and free the password. */
+ memset(passwd, 0, strlen(passwd));
+ free(passwd);
+
+ /* If we failed, print the right error message and exit. */
+ if (rc != 0) {
+ switch (rc) {
+ case 1:
+ warn("Error determining amount of available memory");
+ break;
+ case 2:
+ warn("Error reading clocks");
+ break;
+ case 3:
+ warn("Error computing derived key");
+ break;
+ case 4:
+ warn("Error reading salt");
+ break;
+ case 5:
+ warn("OpenSSL error");
+ break;
+ case 6:
+ warn("Error allocating memory");
+ break;
+ case 7:
+ warnx("Input is not valid scrypt-encrypted block");
+ break;
+ case 8:
+ warnx("Unrecognized scrypt format version");
+ break;
+ case 9:
+ warnx("Decrypting file would require too much memory");
+ break;
+ case 10:
+ warnx("Decrypting file would take too much CPU time");
+ break;
+ case 11:
+ warnx("Passphrase is incorrect");
+ break;
+ case 12:
+ warn("Error writing file: %s",
+ (argc > 1) ? argv[1] : "standard output");
+ break;
+ case 13:
+ warn("Error reading file: %s", argv[0]);
+ break;
+ }
+ exit(1);
+ }
+
+ return (0);
+}
projects / blerg.git / blobdiff