20432eae41
that can automatically determine the type of a DER encoded "traditional" format private key and change some of the d2i functions to use it instead of requiring the application to work out the key type.
739 lines
24 KiB
C
739 lines
24 KiB
C
/* crypto/evp/evp.h */
|
|
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
|
|
* All rights reserved.
|
|
*
|
|
* This package is an SSL implementation written
|
|
* by Eric Young (eay@cryptsoft.com).
|
|
* The implementation was written so as to conform with Netscapes SSL.
|
|
*
|
|
* This library is free for commercial and non-commercial use as long as
|
|
* the following conditions are aheared to. The following conditions
|
|
* apply to all code found in this distribution, be it the RC4, RSA,
|
|
* lhash, DES, etc., code; not just the SSL code. The SSL documentation
|
|
* included with this distribution is covered by the same copyright terms
|
|
* except that the holder is Tim Hudson (tjh@cryptsoft.com).
|
|
*
|
|
* Copyright remains Eric Young's, and as such any Copyright notices in
|
|
* the code are not to be removed.
|
|
* If this package is used in a product, Eric Young should be given attribution
|
|
* as the author of the parts of the library used.
|
|
* This can be in the form of a textual message at program startup or
|
|
* in documentation (online or textual) provided with the package.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
* 1. Redistributions of source code must retain the copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
* 3. All advertising materials mentioning features or use of this software
|
|
* must display the following acknowledgement:
|
|
* "This product includes cryptographic software written by
|
|
* Eric Young (eay@cryptsoft.com)"
|
|
* The word 'cryptographic' can be left out if the rouines from the library
|
|
* being used are not cryptographic related :-).
|
|
* 4. If you include any Windows specific code (or a derivative thereof) from
|
|
* the apps directory (application code) you must include an acknowledgement:
|
|
* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
* SUCH DAMAGE.
|
|
*
|
|
* The licence and distribution terms for any publically available version or
|
|
* derivative of this code cannot be changed. i.e. this code cannot simply be
|
|
* copied and put under another distribution licence
|
|
* [including the GNU Public Licence.]
|
|
*/
|
|
|
|
#ifndef HEADER_ENVELOPE_H
|
|
#define HEADER_ENVELOPE_H
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
#ifndef NO_MD2
|
|
#include <openssl/md2.h>
|
|
#endif
|
|
#ifndef NO_MD5
|
|
#include <openssl/md5.h>
|
|
#endif
|
|
#ifndef NO_SHA
|
|
#include <openssl/sha.h>
|
|
#endif
|
|
#ifndef NO_RIPEMD
|
|
#include <openssl/ripemd.h>
|
|
#endif
|
|
#ifndef NO_DES
|
|
#include <openssl/des.h>
|
|
#endif
|
|
#ifndef NO_RC4
|
|
#include <openssl/rc4.h>
|
|
#endif
|
|
#ifndef NO_RC2
|
|
#include <openssl/rc2.h>
|
|
#endif
|
|
#ifndef NO_RC5
|
|
#include <openssl/rc5.h>
|
|
#endif
|
|
#ifndef NO_BF
|
|
#include <openssl/blowfish.h>
|
|
#endif
|
|
#ifndef NO_CAST
|
|
#include <openssl/cast.h>
|
|
#endif
|
|
#ifndef NO_IDEA
|
|
#include <openssl/idea.h>
|
|
#endif
|
|
#ifndef NO_MDC2
|
|
#include <openssl/mdc2.h>
|
|
#endif
|
|
|
|
#define EVP_RC2_KEY_SIZE 16
|
|
#define EVP_RC4_KEY_SIZE 16
|
|
#define EVP_BLOWFISH_KEY_SIZE 16
|
|
#define EVP_CAST5_KEY_SIZE 16
|
|
#define EVP_RC5_32_12_16_KEY_SIZE 16
|
|
#define EVP_MAX_MD_SIZE (16+20) /* The SSLv3 md5+sha1 type */
|
|
#define EVP_MAX_KEY_LENGTH 24
|
|
#define EVP_MAX_IV_LENGTH 8
|
|
|
|
#define PKCS5_SALT_LEN 8
|
|
/* Default PKCS#5 iteration count */
|
|
#define PKCS5_DEFAULT_ITER 2048
|
|
|
|
#ifndef NO_RSA
|
|
#include <openssl/rsa.h>
|
|
#endif
|
|
|
|
#ifndef NO_DSA
|
|
#include <openssl/dsa.h>
|
|
#endif
|
|
|
|
#ifndef NO_DH
|
|
#include <openssl/dh.h>
|
|
#endif
|
|
|
|
#include <openssl/objects.h>
|
|
|
|
#define EVP_PK_RSA 0x0001
|
|
#define EVP_PK_DSA 0x0002
|
|
#define EVP_PK_DH 0x0004
|
|
#define EVP_PKT_SIGN 0x0010
|
|
#define EVP_PKT_ENC 0x0020
|
|
#define EVP_PKT_EXCH 0x0040
|
|
#define EVP_PKS_RSA 0x0100
|
|
#define EVP_PKS_DSA 0x0200
|
|
#define EVP_PKT_EXP 0x1000 /* <= 512 bit key */
|
|
|
|
#define EVP_PKEY_NONE NID_undef
|
|
#define EVP_PKEY_RSA NID_rsaEncryption
|
|
#define EVP_PKEY_RSA2 NID_rsa
|
|
#define EVP_PKEY_DSA NID_dsa
|
|
#define EVP_PKEY_DSA1 NID_dsa_2
|
|
#define EVP_PKEY_DSA2 NID_dsaWithSHA
|
|
#define EVP_PKEY_DSA3 NID_dsaWithSHA1
|
|
#define EVP_PKEY_DSA4 NID_dsaWithSHA1_2
|
|
#define EVP_PKEY_DH NID_dhKeyAgreement
|
|
|
|
/* Type needs to be a bit field
|
|
* Sub-type needs to be for variations on the method, as in, can it do
|
|
* arbitary encryption.... */
|
|
typedef struct evp_pkey_st
|
|
{
|
|
int type;
|
|
int save_type;
|
|
int references;
|
|
union {
|
|
char *ptr;
|
|
#ifndef NO_RSA
|
|
struct rsa_st *rsa; /* RSA */
|
|
#endif
|
|
#ifndef NO_DSA
|
|
struct dsa_st *dsa; /* DSA */
|
|
#endif
|
|
#ifndef NO_DH
|
|
struct dh_st *dh; /* DH */
|
|
#endif
|
|
} pkey;
|
|
int save_parameters;
|
|
STACK /*X509_ATTRIBUTE*/ *attributes; /* [ 0 ] */
|
|
} EVP_PKEY;
|
|
|
|
#define EVP_PKEY_MO_SIGN 0x0001
|
|
#define EVP_PKEY_MO_VERIFY 0x0002
|
|
#define EVP_PKEY_MO_ENCRYPT 0x0004
|
|
#define EVP_PKEY_MO_DECRYPT 0x0008
|
|
|
|
#if 0
|
|
/* This structure is required to tie the message digest and signing together.
|
|
* The lookup can be done by md/pkey_method, oid, oid/pkey_method, or
|
|
* oid, md and pkey.
|
|
* This is required because for various smart-card perform the digest and
|
|
* signing/verification on-board. To handle this case, the specific
|
|
* EVP_MD and EVP_PKEY_METHODs need to be closely associated.
|
|
* When a PKEY is created, it will have a EVP_PKEY_METHOD associated with it.
|
|
* This can either be software or a token to provide the required low level
|
|
* routines.
|
|
*/
|
|
typedef struct evp_pkey_md_st
|
|
{
|
|
int oid;
|
|
EVP_MD *md;
|
|
EVP_PKEY_METHOD *pkey;
|
|
} EVP_PKEY_MD;
|
|
|
|
#define EVP_rsa_md2() \
|
|
EVP_PKEY_MD_add(NID_md2WithRSAEncryption,\
|
|
EVP_rsa_pkcs1(),EVP_md2())
|
|
#define EVP_rsa_md5() \
|
|
EVP_PKEY_MD_add(NID_md5WithRSAEncryption,\
|
|
EVP_rsa_pkcs1(),EVP_md5())
|
|
#define EVP_rsa_sha0() \
|
|
EVP_PKEY_MD_add(NID_shaWithRSAEncryption,\
|
|
EVP_rsa_pkcs1(),EVP_sha())
|
|
#define EVP_rsa_sha1() \
|
|
EVP_PKEY_MD_add(NID_sha1WithRSAEncryption,\
|
|
EVP_rsa_pkcs1(),EVP_sha1())
|
|
#define EVP_rsa_ripemd160() \
|
|
EVP_PKEY_MD_add(NID_ripemd160WithRSA,\
|
|
EVP_rsa_pkcs1(),EVP_ripemd160())
|
|
#define EVP_rsa_mdc2() \
|
|
EVP_PKEY_MD_add(NID_mdc2WithRSA,\
|
|
EVP_rsa_octet_string(),EVP_mdc2())
|
|
#define EVP_dsa_sha() \
|
|
EVP_PKEY_MD_add(NID_dsaWithSHA,\
|
|
EVP_dsa(),EVP_mdc2())
|
|
#define EVP_dsa_sha1() \
|
|
EVP_PKEY_MD_add(NID_dsaWithSHA1,\
|
|
EVP_dsa(),EVP_sha1())
|
|
|
|
typedef struct evp_pkey_method_st
|
|
{
|
|
char *name;
|
|
int flags;
|
|
int type; /* RSA, DSA, an SSLeay specific constant */
|
|
int oid; /* For the pub-key type */
|
|
int encrypt_oid; /* pub/priv key encryption */
|
|
|
|
int (*sign)();
|
|
int (*verify)();
|
|
struct {
|
|
int
|
|
int (*set)(); /* get and/or set the underlying type */
|
|
int (*get)();
|
|
int (*encrypt)();
|
|
int (*decrypt)();
|
|
int (*i2d)();
|
|
int (*d2i)();
|
|
int (*dup)();
|
|
} pub,priv;
|
|
int (*set_asn1_parameters)();
|
|
int (*get_asn1_parameters)();
|
|
} EVP_PKEY_METHOD;
|
|
#endif
|
|
|
|
#ifndef EVP_MD
|
|
typedef struct env_md_st
|
|
{
|
|
int type;
|
|
int pkey_type;
|
|
int md_size;
|
|
void (*init)();
|
|
void (*update)();
|
|
void (*final)();
|
|
|
|
int (*sign)();
|
|
int (*verify)();
|
|
int required_pkey_type[5]; /*EVP_PKEY_xxx */
|
|
int block_size;
|
|
int ctx_size; /* how big does the ctx need to be */
|
|
} EVP_MD;
|
|
|
|
|
|
|
|
#define EVP_PKEY_NULL_method NULL,NULL,{0,0,0,0}
|
|
|
|
#ifndef NO_DSA
|
|
#define EVP_PKEY_DSA_method DSA_sign,DSA_verify, \
|
|
{EVP_PKEY_DSA,EVP_PKEY_DSA2,EVP_PKEY_DSA3, \
|
|
EVP_PKEY_DSA4,0}
|
|
#else
|
|
#define EVP_PKEY_DSA_method EVP_PKEY_NULL_method
|
|
#endif
|
|
|
|
#ifndef NO_RSA
|
|
#define EVP_PKEY_RSA_method RSA_sign,RSA_verify, \
|
|
{EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0}
|
|
#define EVP_PKEY_RSA_ASN1_OCTET_STRING_method \
|
|
RSA_sign_ASN1_OCTET_STRING, \
|
|
RSA_verify_ASN1_OCTET_STRING, \
|
|
{EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0}
|
|
#else
|
|
#define EVP_PKEY_RSA_method EVP_PKEY_NULL_method
|
|
#define EVP_PKEY_RSA_ASN1_OCTET_STRING_method EVP_PKEY_NULL_method
|
|
#endif
|
|
|
|
#endif /* !EVP_MD */
|
|
|
|
typedef struct env_md_ctx_st
|
|
{
|
|
const EVP_MD *digest;
|
|
union {
|
|
unsigned char base[4];
|
|
#ifndef NO_MD2
|
|
MD2_CTX md2;
|
|
#endif
|
|
#ifndef NO_MD5
|
|
MD5_CTX md5;
|
|
#endif
|
|
#ifndef NO_RIPEMD
|
|
RIPEMD160_CTX ripemd160;
|
|
#endif
|
|
#ifndef NO_SHA
|
|
SHA_CTX sha;
|
|
#endif
|
|
#ifndef NO_MDC2
|
|
MDC2_CTX mdc2;
|
|
#endif
|
|
} md;
|
|
} EVP_MD_CTX;
|
|
|
|
typedef struct evp_cipher_st
|
|
{
|
|
int nid;
|
|
int block_size;
|
|
int key_len;
|
|
int iv_len;
|
|
void (*init)(); /* init for encryption */
|
|
void (*do_cipher)(); /* encrypt data */
|
|
void (*cleanup)(); /* used by cipher method */
|
|
int ctx_size; /* how big the ctx needs to be */
|
|
/* int set_asn1_parameters(EVP_CIPHER_CTX,ASN1_TYPE *); */
|
|
int (*set_asn1_parameters)(); /* Populate a ASN1_TYPE with parameters */
|
|
/* int get_asn1_parameters(EVP_CIPHER_CTX,ASN1_TYPE *); */
|
|
int (*get_asn1_parameters)(); /* Get parameters from a ASN1_TYPE */
|
|
} EVP_CIPHER;
|
|
|
|
typedef struct evp_cipher_info_st
|
|
{
|
|
const EVP_CIPHER *cipher;
|
|
unsigned char iv[EVP_MAX_IV_LENGTH];
|
|
} EVP_CIPHER_INFO;
|
|
|
|
typedef struct evp_cipher_ctx_st
|
|
{
|
|
const EVP_CIPHER *cipher;
|
|
int encrypt; /* encrypt or decrypt */
|
|
int buf_len; /* number we have left */
|
|
|
|
unsigned char oiv[EVP_MAX_IV_LENGTH]; /* original iv */
|
|
unsigned char iv[EVP_MAX_IV_LENGTH]; /* working iv */
|
|
unsigned char buf[EVP_MAX_IV_LENGTH]; /* saved partial block */
|
|
int num; /* used by cfb/ofb mode */
|
|
|
|
char *app_data; /* aplication stuff */
|
|
union {
|
|
#ifndef NO_RC4
|
|
struct
|
|
{
|
|
unsigned char key[EVP_RC4_KEY_SIZE];
|
|
RC4_KEY ks; /* working key */
|
|
} rc4;
|
|
#endif
|
|
#ifndef NO_DES
|
|
des_key_schedule des_ks;/* key schedule */
|
|
struct
|
|
{
|
|
des_key_schedule ks;/* key schedule */
|
|
des_cblock inw;
|
|
des_cblock outw;
|
|
} desx_cbc;
|
|
struct
|
|
{
|
|
des_key_schedule ks1;/* key schedule */
|
|
des_key_schedule ks2;/* key schedule (for ede) */
|
|
des_key_schedule ks3;/* key schedule (for ede3) */
|
|
} des_ede;
|
|
#endif
|
|
#ifndef NO_IDEA
|
|
IDEA_KEY_SCHEDULE idea_ks;/* key schedule */
|
|
#endif
|
|
#ifndef NO_RC2
|
|
RC2_KEY rc2_ks;/* key schedule */
|
|
#endif
|
|
#ifndef NO_RC5
|
|
RC5_32_KEY rc5_ks;/* key schedule */
|
|
#endif
|
|
#ifndef NO_BF
|
|
BF_KEY bf_ks;/* key schedule */
|
|
#endif
|
|
#ifndef NO_CAST
|
|
CAST_KEY cast_ks;/* key schedule */
|
|
#endif
|
|
} c;
|
|
} EVP_CIPHER_CTX;
|
|
|
|
typedef struct evp_Encode_Ctx_st
|
|
{
|
|
int num; /* number saved in a partial encode/decode */
|
|
int length; /* The length is either the output line length
|
|
* (in input bytes) or the shortest input line
|
|
* length that is ok. Once decoding begins,
|
|
* the length is adjusted up each time a longer
|
|
* line is decoded */
|
|
unsigned char enc_data[80]; /* data to encode */
|
|
int line_num; /* number read on current line */
|
|
int expect_nl;
|
|
} EVP_ENCODE_CTX;
|
|
|
|
/* Password based encryption function */
|
|
typedef int (EVP_PBE_KEYGEN)(EVP_CIPHER_CTX *ctx, const char *pass, int passlen,
|
|
ASN1_TYPE *param, EVP_CIPHER *cipher,
|
|
EVP_MD *md, int en_de);
|
|
|
|
#define EVP_PKEY_assign_RSA(pkey,rsa) EVP_PKEY_assign((pkey),EVP_PKEY_RSA,\
|
|
(char *)(rsa))
|
|
#define EVP_PKEY_assign_DSA(pkey,dsa) EVP_PKEY_assign((pkey),EVP_PKEY_DSA,\
|
|
(char *)(dsa))
|
|
#define EVP_PKEY_assign_DH(pkey,dh) EVP_PKEY_assign((pkey),EVP_PKEY_DH,\
|
|
(char *)(dh))
|
|
|
|
/* Add some extra combinations */
|
|
#define EVP_get_digestbynid(a) EVP_get_digestbyname(OBJ_nid2sn(a))
|
|
#define EVP_get_digestbyobj(a) EVP_get_digestbynid(OBJ_obj2nid(a))
|
|
#define EVP_get_cipherbynid(a) EVP_get_cipherbyname(OBJ_nid2sn(a))
|
|
#define EVP_get_cipherbyobj(a) EVP_get_cipherbynid(OBJ_obj2nid(a))
|
|
|
|
#define EVP_MD_type(e) ((e)->type)
|
|
#define EVP_MD_pkey_type(e) ((e)->pkey_type)
|
|
#define EVP_MD_size(e) ((e)->md_size)
|
|
#define EVP_MD_block_size(e) ((e)->block_size)
|
|
|
|
#define EVP_MD_CTX_size(e) EVP_MD_size((e)->digest)
|
|
#define EVP_MD_CTX_block_size(e) EVP_MD_block_size((e)->digest)
|
|
#define EVP_MD_CTX_type(e) ((e)->digest)
|
|
|
|
#define EVP_CIPHER_nid(e) ((e)->nid)
|
|
#define EVP_CIPHER_block_size(e) ((e)->block_size)
|
|
#define EVP_CIPHER_key_length(e) ((e)->key_len)
|
|
#define EVP_CIPHER_iv_length(e) ((e)->iv_len)
|
|
|
|
#define EVP_CIPHER_CTX_cipher(e) ((e)->cipher)
|
|
#define EVP_CIPHER_CTX_nid(e) ((e)->cipher->nid)
|
|
#define EVP_CIPHER_CTX_block_size(e) ((e)->cipher->block_size)
|
|
#define EVP_CIPHER_CTX_key_length(e) ((e)->cipher->key_len)
|
|
#define EVP_CIPHER_CTX_iv_length(e) ((e)->cipher->iv_len)
|
|
#define EVP_CIPHER_CTX_get_app_data(e) ((e)->app_data)
|
|
#define EVP_CIPHER_CTX_set_app_data(e,d) ((e)->app_data=(char *)(d))
|
|
#define EVP_CIPHER_CTX_type(c) EVP_CIPHER_type(EVP_CIPHER_CTX_cipher(c))
|
|
|
|
#define EVP_ENCODE_LENGTH(l) (((l+2)/3*4)+(l/48+1)*2+80)
|
|
#define EVP_DECODE_LENGTH(l) ((l+3)/4*3+80)
|
|
|
|
#define EVP_SignInit(a,b) EVP_DigestInit(a,b)
|
|
#define EVP_SignUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
|
|
#define EVP_VerifyInit(a,b) EVP_DigestInit(a,b)
|
|
#define EVP_VerifyUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
|
|
#define EVP_OpenUpdate(a,b,c,d,e) EVP_DecryptUpdate(a,b,c,d,e)
|
|
#define EVP_SealUpdate(a,b,c,d,e) EVP_EncryptUpdate(a,b,c,d,e)
|
|
|
|
#ifdef CONST_STRICT
|
|
void BIO_set_md(BIO *,const EVP_MD *md);
|
|
#else
|
|
# define BIO_set_md(b,md) BIO_ctrl(b,BIO_C_SET_MD,0,(char *)md)
|
|
#endif
|
|
#define BIO_get_md(b,mdp) BIO_ctrl(b,BIO_C_GET_MD,0,(char *)mdp)
|
|
#define BIO_get_md_ctx(b,mdcp) BIO_ctrl(b,BIO_C_GET_MD_CTX,0,(char *)mdcp)
|
|
#define BIO_get_cipher_status(b) BIO_ctrl(b,BIO_C_GET_CIPHER_STATUS,0,NULL)
|
|
#define BIO_get_cipher_ctx(b,c_pp) BIO_ctrl(b,BIO_C_GET_CIPHER_CTX,0,(char *)c_pp)
|
|
|
|
#define EVP_Cipher(c,o,i,l) (c)->cipher->do_cipher((c),(o),(i),(l))
|
|
|
|
#define EVP_add_cipher_alias(n,alias) \
|
|
OBJ_NAME_add((alias),OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS,(n))
|
|
#define EVP_add_digest_alias(n,alias) \
|
|
OBJ_NAME_add((alias),OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS,(n))
|
|
#define EVP_delete_cipher_alias(alias) \
|
|
OBJ_NAME_remove(alias,OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS);
|
|
#define EVP_delete_digest_alias(alias) \
|
|
OBJ_NAME_remove(alias,OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS);
|
|
|
|
|
|
int EVP_MD_CTX_copy(EVP_MD_CTX *out,EVP_MD_CTX *in);
|
|
void EVP_DigestInit(EVP_MD_CTX *ctx, const EVP_MD *type);
|
|
void EVP_DigestUpdate(EVP_MD_CTX *ctx,const void *d,
|
|
unsigned int cnt);
|
|
void EVP_DigestFinal(EVP_MD_CTX *ctx,unsigned char *md,unsigned int *s);
|
|
|
|
int EVP_read_pw_string(char *buf,int length,const char *prompt,int verify);
|
|
void EVP_set_pw_prompt(char *prompt);
|
|
char * EVP_get_pw_prompt(void);
|
|
|
|
int EVP_BytesToKey(const EVP_CIPHER *type,EVP_MD *md,unsigned char *salt,
|
|
unsigned char *data, int datal, int count,
|
|
unsigned char *key,unsigned char *iv);
|
|
|
|
void EVP_EncryptInit(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *type,
|
|
unsigned char *key, unsigned char *iv);
|
|
void EVP_EncryptUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out,
|
|
int *outl, unsigned char *in, int inl);
|
|
void EVP_EncryptFinal(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl);
|
|
|
|
void EVP_DecryptInit(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *type,
|
|
unsigned char *key, unsigned char *iv);
|
|
void EVP_DecryptUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out,
|
|
int *outl, unsigned char *in, int inl);
|
|
int EVP_DecryptFinal(EVP_CIPHER_CTX *ctx, unsigned char *outm, int *outl);
|
|
|
|
void EVP_CipherInit(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *type,
|
|
unsigned char *key,unsigned char *iv,int enc);
|
|
void EVP_CipherUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out,
|
|
int *outl, unsigned char *in, int inl);
|
|
int EVP_CipherFinal(EVP_CIPHER_CTX *ctx, unsigned char *outm, int *outl);
|
|
|
|
int EVP_SignFinal(EVP_MD_CTX *ctx,unsigned char *md,unsigned int *s,
|
|
EVP_PKEY *pkey);
|
|
|
|
int EVP_VerifyFinal(EVP_MD_CTX *ctx,unsigned char *sigbuf,
|
|
unsigned int siglen,EVP_PKEY *pkey);
|
|
|
|
int EVP_OpenInit(EVP_CIPHER_CTX *ctx,EVP_CIPHER *type,unsigned char *ek,
|
|
int ekl,unsigned char *iv,EVP_PKEY *priv);
|
|
int EVP_OpenFinal(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl);
|
|
|
|
int EVP_SealInit(EVP_CIPHER_CTX *ctx, EVP_CIPHER *type, unsigned char **ek,
|
|
int *ekl, unsigned char *iv,EVP_PKEY **pubk, int npubk);
|
|
void EVP_SealFinal(EVP_CIPHER_CTX *ctx,unsigned char *out,int *outl);
|
|
|
|
void EVP_EncodeInit(EVP_ENCODE_CTX *ctx);
|
|
void EVP_EncodeUpdate(EVP_ENCODE_CTX *ctx,unsigned char *out,
|
|
int *outl,unsigned char *in,int inl);
|
|
void EVP_EncodeFinal(EVP_ENCODE_CTX *ctx,unsigned char *out,int *outl);
|
|
int EVP_EncodeBlock(unsigned char *t, const unsigned char *f, int n);
|
|
|
|
void EVP_DecodeInit(EVP_ENCODE_CTX *ctx);
|
|
int EVP_DecodeUpdate(EVP_ENCODE_CTX *ctx,unsigned char *out,int *outl,
|
|
unsigned char *in, int inl);
|
|
int EVP_DecodeFinal(EVP_ENCODE_CTX *ctx, unsigned
|
|
char *out, int *outl);
|
|
int EVP_DecodeBlock(unsigned char *t, const unsigned char *f, int n);
|
|
|
|
void ERR_load_EVP_strings(void );
|
|
|
|
void EVP_CIPHER_CTX_init(EVP_CIPHER_CTX *a);
|
|
void EVP_CIPHER_CTX_cleanup(EVP_CIPHER_CTX *a);
|
|
|
|
#ifdef HEADER_BIO_H
|
|
BIO_METHOD *BIO_f_md(void);
|
|
BIO_METHOD *BIO_f_base64(void);
|
|
BIO_METHOD *BIO_f_cipher(void);
|
|
BIO_METHOD *BIO_f_reliable(void);
|
|
void BIO_set_cipher(BIO *b,const EVP_CIPHER *c,unsigned char *k,
|
|
unsigned char *i, int enc);
|
|
#endif
|
|
|
|
EVP_MD *EVP_md_null(void);
|
|
EVP_MD *EVP_md2(void);
|
|
EVP_MD *EVP_md5(void);
|
|
EVP_MD *EVP_sha(void);
|
|
EVP_MD *EVP_sha1(void);
|
|
EVP_MD *EVP_dss(void);
|
|
EVP_MD *EVP_dss1(void);
|
|
EVP_MD *EVP_mdc2(void);
|
|
EVP_MD *EVP_ripemd160(void);
|
|
|
|
EVP_CIPHER *EVP_enc_null(void); /* does nothing :-) */
|
|
EVP_CIPHER *EVP_des_ecb(void);
|
|
EVP_CIPHER *EVP_des_ede(void);
|
|
EVP_CIPHER *EVP_des_ede3(void);
|
|
EVP_CIPHER *EVP_des_cfb(void);
|
|
EVP_CIPHER *EVP_des_ede_cfb(void);
|
|
EVP_CIPHER *EVP_des_ede3_cfb(void);
|
|
EVP_CIPHER *EVP_des_ofb(void);
|
|
EVP_CIPHER *EVP_des_ede_ofb(void);
|
|
EVP_CIPHER *EVP_des_ede3_ofb(void);
|
|
EVP_CIPHER *EVP_des_cbc(void);
|
|
EVP_CIPHER *EVP_des_ede_cbc(void);
|
|
EVP_CIPHER *EVP_des_ede3_cbc(void);
|
|
EVP_CIPHER *EVP_desx_cbc(void);
|
|
EVP_CIPHER *EVP_rc4(void);
|
|
EVP_CIPHER *EVP_rc4_40(void);
|
|
EVP_CIPHER *EVP_idea_ecb(void);
|
|
EVP_CIPHER *EVP_idea_cfb(void);
|
|
EVP_CIPHER *EVP_idea_ofb(void);
|
|
EVP_CIPHER *EVP_idea_cbc(void);
|
|
EVP_CIPHER *EVP_rc2_ecb(void);
|
|
EVP_CIPHER *EVP_rc2_cbc(void);
|
|
EVP_CIPHER *EVP_rc2_40_cbc(void);
|
|
EVP_CIPHER *EVP_rc2_64_cbc(void);
|
|
EVP_CIPHER *EVP_rc2_cfb(void);
|
|
EVP_CIPHER *EVP_rc2_ofb(void);
|
|
EVP_CIPHER *EVP_bf_ecb(void);
|
|
EVP_CIPHER *EVP_bf_cbc(void);
|
|
EVP_CIPHER *EVP_bf_cfb(void);
|
|
EVP_CIPHER *EVP_bf_ofb(void);
|
|
EVP_CIPHER *EVP_cast5_ecb(void);
|
|
EVP_CIPHER *EVP_cast5_cbc(void);
|
|
EVP_CIPHER *EVP_cast5_cfb(void);
|
|
EVP_CIPHER *EVP_cast5_ofb(void);
|
|
EVP_CIPHER *EVP_rc5_32_12_16_cbc(void);
|
|
EVP_CIPHER *EVP_rc5_32_12_16_ecb(void);
|
|
EVP_CIPHER *EVP_rc5_32_12_16_cfb(void);
|
|
EVP_CIPHER *EVP_rc5_32_12_16_ofb(void);
|
|
|
|
void SSLeay_add_all_algorithms(void);
|
|
void SSLeay_add_all_ciphers(void);
|
|
void SSLeay_add_all_digests(void);
|
|
|
|
int EVP_add_cipher(EVP_CIPHER *cipher);
|
|
int EVP_add_digest(EVP_MD *digest);
|
|
|
|
const EVP_CIPHER *EVP_get_cipherbyname(const char *name);
|
|
const EVP_MD *EVP_get_digestbyname(const char *name);
|
|
void EVP_cleanup(void);
|
|
|
|
int EVP_PKEY_decrypt(unsigned char *dec_key,unsigned char *enc_key,
|
|
int enc_key_len,EVP_PKEY *private_key);
|
|
int EVP_PKEY_encrypt(unsigned char *enc_key,
|
|
unsigned char *key,int key_len,EVP_PKEY *pub_key);
|
|
int EVP_PKEY_type(int type);
|
|
int EVP_PKEY_bits(EVP_PKEY *pkey);
|
|
int EVP_PKEY_size(EVP_PKEY *pkey);
|
|
int EVP_PKEY_assign(EVP_PKEY *pkey,int type,char *key);
|
|
#ifndef NO_RSA
|
|
int EVP_PKEY_rset_RSA(EVP_PKEY *pkey,RSA *key);
|
|
RSA * EVP_PKEY_rget_RSA(EVP_PKEY *pkey);
|
|
#endif
|
|
#ifndef NO_DSA
|
|
int EVP_PKEY_rset_DSA(EVP_PKEY *pkey,DSA *key);
|
|
DSA * EVP_PKEY_rget_DSA(EVP_PKEY *pkey);
|
|
#endif
|
|
#ifndef NO_DH
|
|
int EVP_PKEY_rset_DH(EVP_PKEY *pkey,DH *key);
|
|
DH * EVP_PKEY_rget_DH(EVP_PKEY *pkey);
|
|
#endif
|
|
EVP_PKEY * EVP_PKEY_new(void);
|
|
void EVP_PKEY_free(EVP_PKEY *pkey);
|
|
EVP_PKEY * d2i_PublicKey(int type,EVP_PKEY **a, unsigned char **pp,
|
|
long length);
|
|
int i2d_PublicKey(EVP_PKEY *a, unsigned char **pp);
|
|
|
|
EVP_PKEY * d2i_PrivateKey(int type,EVP_PKEY **a, unsigned char **pp,
|
|
long length);
|
|
EVP_PKEY * d2i_AutoPrivateKey(EVP_PKEY **a, unsigned char **pp,
|
|
long length);
|
|
int i2d_PrivateKey(EVP_PKEY *a, unsigned char **pp);
|
|
|
|
int EVP_PKEY_copy_parameters(EVP_PKEY *to,EVP_PKEY *from);
|
|
int EVP_PKEY_missing_parameters(EVP_PKEY *pkey);
|
|
int EVP_PKEY_save_parameters(EVP_PKEY *pkey,int mode);
|
|
int EVP_PKEY_cmp_parameters(EVP_PKEY *a,EVP_PKEY *b);
|
|
|
|
int EVP_CIPHER_type(const EVP_CIPHER *ctx);
|
|
|
|
/* calls methods */
|
|
int EVP_CIPHER_param_to_asn1(EVP_CIPHER_CTX *c, ASN1_TYPE *type);
|
|
int EVP_CIPHER_asn1_to_param(EVP_CIPHER_CTX *c, ASN1_TYPE *type);
|
|
|
|
/* These are used by EVP_CIPHER methods */
|
|
int EVP_CIPHER_set_asn1_iv(EVP_CIPHER_CTX *c,ASN1_TYPE *type);
|
|
int EVP_CIPHER_get_asn1_iv(EVP_CIPHER_CTX *c,ASN1_TYPE *type);
|
|
|
|
/* PKCS5 password based encryption */
|
|
int PKCS5_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen,
|
|
ASN1_TYPE *param, EVP_CIPHER *cipher, EVP_MD *md,
|
|
int en_de);
|
|
int PKCS5_PBKDF2_HMAC_SHA1(const char *pass, int passlen,
|
|
unsigned char *salt, int saltlen, int iter,
|
|
int keylen, unsigned char *out);
|
|
int PKCS5_v2_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen,
|
|
ASN1_TYPE *param, EVP_CIPHER *cipher, EVP_MD *md,
|
|
int en_de);
|
|
|
|
void PKCS5_PBE_add(void);
|
|
|
|
int EVP_PBE_CipherInit (ASN1_OBJECT *pbe_obj, const char *pass, int passlen,
|
|
ASN1_TYPE *param, EVP_CIPHER_CTX *ctx, int en_de);
|
|
int EVP_PBE_alg_add(int nid, EVP_CIPHER *cipher, EVP_MD *md,
|
|
EVP_PBE_KEYGEN *keygen);
|
|
void EVP_PBE_cleanup(void);
|
|
|
|
/* BEGIN ERROR CODES */
|
|
/* The following lines are auto generated by the script mkerr.pl. Any changes
|
|
* made after this point may be overwritten when the script is next run.
|
|
*/
|
|
|
|
/* Error codes for the EVP functions. */
|
|
|
|
/* Function codes. */
|
|
#define EVP_F_D2I_PKEY 100
|
|
#define EVP_F_EVP_DECRYPTFINAL 101
|
|
#define EVP_F_EVP_MD_CTX_COPY 110
|
|
#define EVP_F_EVP_OPENINIT 102
|
|
#define EVP_F_EVP_PBE_ALG_ADD 115
|
|
#define EVP_F_EVP_PBE_CIPHERINIT 116
|
|
#define EVP_F_EVP_PKCS82PKEY 111
|
|
#define EVP_F_EVP_PKCS8_SET_BROKEN 112
|
|
#define EVP_F_EVP_PKEY2PKCS8 113
|
|
#define EVP_F_EVP_PKEY_COPY_PARAMETERS 103
|
|
#define EVP_F_EVP_PKEY_DECRYPT 104
|
|
#define EVP_F_EVP_PKEY_ENCRYPT 105
|
|
#define EVP_F_EVP_PKEY_NEW 106
|
|
#define EVP_F_EVP_PKEY_RGET_DH 119
|
|
#define EVP_F_EVP_PKEY_RGET_DSA 120
|
|
#define EVP_F_EVP_PKEY_RGET_RSA 121
|
|
#define EVP_F_EVP_SIGNFINAL 107
|
|
#define EVP_F_EVP_VERIFYFINAL 108
|
|
#define EVP_F_PKCS5_PBE_KEYIVGEN 117
|
|
#define EVP_F_PKCS5_V2_PBE_KEYIVGEN 118
|
|
#define EVP_F_RC2_MAGIC_TO_METH 109
|
|
|
|
/* Reason codes. */
|
|
#define EVP_R_BAD_DECRYPT 100
|
|
#define EVP_R_BN_DECODE_ERROR 112
|
|
#define EVP_R_BN_PUBKEY_ERROR 113
|
|
#define EVP_R_CIPHER_PARAMETER_ERROR 122
|
|
#define EVP_R_DECODE_ERROR 114
|
|
#define EVP_R_DIFFERENT_KEY_TYPES 101
|
|
#define EVP_R_ENCODE_ERROR 115
|
|
#define EVP_R_EVP_PBE_CIPHERINIT_ERROR 119
|
|
#define EVP_R_EXPECTING_AN_RSA_KEY 127
|
|
#define EVP_R_EXPECTING_A_DH_KEY 128
|
|
#define EVP_R_EXPECTING_A_DSA_KEY 129
|
|
#define EVP_R_INPUT_NOT_INITIALIZED 111
|
|
#define EVP_R_IV_TOO_LARGE 102
|
|
#define EVP_R_KEYGEN_FAILURE 120
|
|
#define EVP_R_MISSING_PARMATERS 103
|
|
#define EVP_R_NO_DSA_PARAMETERS 116
|
|
#define EVP_R_NO_SIGN_FUNCTION_CONFIGURED 104
|
|
#define EVP_R_NO_VERIFY_FUNCTION_CONFIGURED 105
|
|
#define EVP_R_PKCS8_UNKNOWN_BROKEN_TYPE 117
|
|
#define EVP_R_PUBLIC_KEY_NOT_RSA 106
|
|
#define EVP_R_UNKNOWN_PBE_ALGORITHM 121
|
|
#define EVP_R_UNSUPPORTED_CIPHER 107
|
|
#define EVP_R_UNSUPPORTED_KEYLENGTH 123
|
|
#define EVP_R_UNSUPPORTED_KEY_DERIVATION_FUNCTION 124
|
|
#define EVP_R_UNSUPPORTED_KEY_SIZE 108
|
|
#define EVP_R_UNSUPPORTED_PRF 125
|
|
#define EVP_R_UNSUPPORTED_PRIVATE_KEY_ALGORITHM 118
|
|
#define EVP_R_UNSUPPORTED_SALT_TYPE 126
|
|
#define EVP_R_WRONG_FINAL_BLOCK_LENGTH 109
|
|
#define EVP_R_WRONG_PUBLIC_KEY_TYPE 110
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
#endif
|
|
|