|
Eneboo - Documentación para desarrolladores
|
src/libdigidoc/openssl/crypto/dh/dh.h
Ir a la documentación de este archivo.
00001 /* crypto/dh/dh.h */ 00002 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 00003 * All rights reserved. 00004 * 00005 * This package is an SSL implementation written 00006 * by Eric Young (eay@cryptsoft.com). 00007 * The implementation was written so as to conform with Netscapes SSL. 00008 * 00009 * This library is free for commercial and non-commercial use as long as 00010 * the following conditions are aheared to. The following conditions 00011 * apply to all code found in this distribution, be it the RC4, RSA, 00012 * lhash, DES, etc., code; not just the SSL code. The SSL documentation 00013 * included with this distribution is covered by the same copyright terms 00014 * except that the holder is Tim Hudson (tjh@cryptsoft.com). 00015 * 00016 * Copyright remains Eric Young's, and as such any Copyright notices in 00017 * the code are not to be removed. 00018 * If this package is used in a product, Eric Young should be given attribution 00019 * as the author of the parts of the library used. 00020 * This can be in the form of a textual message at program startup or 00021 * in documentation (online or textual) provided with the package. 00022 * 00023 * Redistribution and use in source and binary forms, with or without 00024 * modification, are permitted provided that the following conditions 00025 * are met: 00026 * 1. Redistributions of source code must retain the copyright 00027 * notice, this list of conditions and the following disclaimer. 00028 * 2. Redistributions in binary form must reproduce the above copyright 00029 * notice, this list of conditions and the following disclaimer in the 00030 * documentation and/or other materials provided with the distribution. 00031 * 3. All advertising materials mentioning features or use of this software 00032 * must display the following acknowledgement: 00033 * "This product includes cryptographic software written by 00034 * Eric Young (eay@cryptsoft.com)" 00035 * The word 'cryptographic' can be left out if the rouines from the library 00036 * being used are not cryptographic related :-). 00037 * 4. If you include any Windows specific code (or a derivative thereof) from 00038 * the apps directory (application code) you must include an acknowledgement: 00039 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 00040 * 00041 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 00042 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 00043 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 00044 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 00045 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 00046 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 00047 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 00048 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 00049 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 00050 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 00051 * SUCH DAMAGE. 00052 * 00053 * The licence and distribution terms for any publically available version or 00054 * derivative of this code cannot be changed. i.e. this code cannot simply be 00055 * copied and put under another distribution licence 00056 * [including the GNU Public Licence.] 00057 */ 00058 00059 #ifndef HEADER_DH_H 00060 #define HEADER_DH_H 00061 00062 #include <openssl/e_os2.h> 00063 00064 #ifdef OPENSSL_NO_DH 00065 #error DH is disabled. 00066 #endif 00067 00068 #ifndef OPENSSL_NO_BIO 00069 #include <openssl/bio.h> 00070 #endif 00071 #include <openssl/ossl_typ.h> 00072 #ifndef OPENSSL_NO_DEPRECATED 00073 #include <openssl/bn.h> 00074 #endif 00075 00076 #ifndef OPENSSL_DH_MAX_MODULUS_BITS 00077 # define OPENSSL_DH_MAX_MODULUS_BITS 10000 00078 #endif 00079 00080 #define OPENSSL_DH_FIPS_MIN_MODULUS_BITS 1024 00081 00082 #define DH_FLAG_CACHE_MONT_P 0x01 00083 #define DH_FLAG_NO_EXP_CONSTTIME 0x02 /* new with 0.9.7h; the built-in DH 00084 * implementation now uses constant time 00085 * modular exponentiation for secret exponents 00086 * by default. This flag causes the 00087 * faster variable sliding window method to 00088 * be used for all exponents. 00089 */ 00090 00091 #ifdef __cplusplus 00092 extern "C" { 00093 #endif 00094 00095 /* Already defined in ossl_typ.h */ 00096 /* typedef struct dh_st DH; */ 00097 /* typedef struct dh_method DH_METHOD; */ 00098 00099 struct dh_method 00100 { 00101 const char *name; 00102 /* Methods here */ 00103 int (*generate_key)(DH *dh); 00104 int (*compute_key)(unsigned char *key,const BIGNUM *pub_key,DH *dh); 00105 int (*bn_mod_exp)(const DH *dh, BIGNUM *r, const BIGNUM *a, 00106 const BIGNUM *p, const BIGNUM *m, BN_CTX *ctx, 00107 BN_MONT_CTX *m_ctx); /* Can be null */ 00108 00109 int (*init)(DH *dh); 00110 int (*finish)(DH *dh); 00111 int flags; 00112 char *app_data; 00113 /* If this is non-NULL, it will be used to generate parameters */ 00114 int (*generate_params)(DH *dh, int prime_len, int generator, BN_GENCB *cb); 00115 }; 00116 00117 struct dh_st 00118 { 00119 /* This first argument is used to pick up errors when 00120 * a DH is passed instead of a EVP_PKEY */ 00121 int pad; 00122 int version; 00123 BIGNUM *p; 00124 BIGNUM *g; 00125 long length; /* optional */ 00126 BIGNUM *pub_key; /* g^x */ 00127 BIGNUM *priv_key; /* x */ 00128 00129 int flags; 00130 BN_MONT_CTX *method_mont_p; 00131 /* Place holders if we want to do X9.42 DH */ 00132 BIGNUM *q; 00133 BIGNUM *j; 00134 unsigned char *seed; 00135 int seedlen; 00136 BIGNUM *counter; 00137 00138 int references; 00139 CRYPTO_EX_DATA ex_data; 00140 const DH_METHOD *meth; 00141 ENGINE *engine; 00142 }; 00143 00144 #define DH_GENERATOR_2 2 00145 /* #define DH_GENERATOR_3 3 */ 00146 #define DH_GENERATOR_5 5 00147 00148 /* DH_check error codes */ 00149 #define DH_CHECK_P_NOT_PRIME 0x01 00150 #define DH_CHECK_P_NOT_SAFE_PRIME 0x02 00151 #define DH_UNABLE_TO_CHECK_GENERATOR 0x04 00152 #define DH_NOT_SUITABLE_GENERATOR 0x08 00153 00154 /* DH_check_pub_key error codes */ 00155 #define DH_CHECK_PUBKEY_TOO_SMALL 0x01 00156 #define DH_CHECK_PUBKEY_TOO_LARGE 0x02 00157 00158 /* primes p where (p-1)/2 is prime too are called "safe"; we define 00159 this for backward compatibility: */ 00160 #define DH_CHECK_P_NOT_STRONG_PRIME DH_CHECK_P_NOT_SAFE_PRIME 00161 00162 #define DHparams_dup(x) ASN1_dup_of_const(DH,i2d_DHparams,d2i_DHparams,x) 00163 #define d2i_DHparams_fp(fp,x) (DH *)ASN1_d2i_fp((char *(*)())DH_new, \ 00164 (char *(*)())d2i_DHparams,(fp),(unsigned char **)(x)) 00165 #define i2d_DHparams_fp(fp,x) ASN1_i2d_fp(i2d_DHparams,(fp), \ 00166 (unsigned char *)(x)) 00167 #define d2i_DHparams_bio(bp,x) ASN1_d2i_bio_of(DH,DH_new,d2i_DHparams,bp,x) 00168 #define i2d_DHparams_bio(bp,x) ASN1_i2d_bio_of_const(DH,i2d_DHparams,bp,x) 00169 00170 const DH_METHOD *DH_OpenSSL(void); 00171 00172 #ifdef OPENSSL_FIPS 00173 DH * FIPS_dh_new(void); 00174 void FIPS_dh_free(DH *dh); 00175 #endif 00176 00177 void DH_set_default_method(const DH_METHOD *meth); 00178 const DH_METHOD *DH_get_default_method(void); 00179 int DH_set_method(DH *dh, const DH_METHOD *meth); 00180 DH *DH_new_method(ENGINE *engine); 00181 00182 DH * DH_new(void); 00183 void DH_free(DH *dh); 00184 int DH_up_ref(DH *dh); 00185 int DH_size(const DH *dh); 00186 int DH_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, 00187 CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func); 00188 int DH_set_ex_data(DH *d, int idx, void *arg); 00189 void *DH_get_ex_data(DH *d, int idx); 00190 00191 /* Deprecated version */ 00192 #ifndef OPENSSL_NO_DEPRECATED 00193 DH * DH_generate_parameters(int prime_len,int generator, 00194 void (*callback)(int,int,void *),void *cb_arg); 00195 #endif /* !defined(OPENSSL_NO_DEPRECATED) */ 00196 00197 /* New version */ 00198 int DH_generate_parameters_ex(DH *dh, int prime_len,int generator, BN_GENCB *cb); 00199 00200 int DH_check(const DH *dh,int *codes); 00201 int DH_check_pub_key(const DH *dh,const BIGNUM *pub_key, int *codes); 00202 int DH_generate_key(DH *dh); 00203 int DH_compute_key(unsigned char *key,const BIGNUM *pub_key,DH *dh); 00204 DH * d2i_DHparams(DH **a,const unsigned char **pp, long length); 00205 int i2d_DHparams(const DH *a,unsigned char **pp); 00206 #ifndef OPENSSL_NO_FP_API 00207 int DHparams_print_fp(FILE *fp, const DH *x); 00208 #endif 00209 #ifndef OPENSSL_NO_BIO 00210 int DHparams_print(BIO *bp, const DH *x); 00211 #else 00212 int DHparams_print(char *bp, const DH *x); 00213 #endif 00214 00215 /* BEGIN ERROR CODES */ 00216 /* The following lines are auto generated by the script mkerr.pl. Any changes 00217 * made after this point may be overwritten when the script is next run. 00218 */ 00219 void ERR_load_DH_strings(void); 00220 00221 /* Error codes for the DH functions. */ 00222 00223 /* Function codes. */ 00224 #define DH_F_COMPUTE_KEY 102 00225 #define DH_F_DHPARAMS_PRINT 100 00226 #define DH_F_DHPARAMS_PRINT_FP 101 00227 #define DH_F_DH_BUILTIN_GENPARAMS 106 00228 #define DH_F_DH_COMPUTE_KEY 107 00229 #define DH_F_DH_GENERATE_KEY 108 00230 #define DH_F_DH_GENERATE_PARAMETERS 109 00231 #define DH_F_DH_NEW_METHOD 105 00232 #define DH_F_GENERATE_KEY 103 00233 #define DH_F_GENERATE_PARAMETERS 104 00234 00235 /* Reason codes. */ 00236 #define DH_R_BAD_GENERATOR 101 00237 #define DH_R_INVALID_PUBKEY 102 00238 #define DH_R_KEY_SIZE_TOO_SMALL 104 00239 #define DH_R_MODULUS_TOO_LARGE 103 00240 #define DH_R_NO_PRIVATE_VALUE 100 00241 00242 #ifdef __cplusplus 00243 } 00244 #endif 00245 #endif
