X-Git-Url: http://git.ipfire.org/?a=blobdiff_plain;f=doc%2Fman3%2FEVP_PKEY_CTX_ctrl.pod;h=039073cacf823b96e2f9c7bb2757b045702005a5;hb=7165593ce5a07a6860d4d408ad640ee707172936;hp=ded779feb09c3b045d0f662c9f856be6febfdab3;hpb=b03ec3b5d62ee26bf8437556b9040d4141d5bdd8;p=thirdparty%2Fopenssl.git diff --git a/doc/man3/EVP_PKEY_CTX_ctrl.pod b/doc/man3/EVP_PKEY_CTX_ctrl.pod index ded779feb0..039073cacf 100644 --- a/doc/man3/EVP_PKEY_CTX_ctrl.pod +++ b/doc/man3/EVP_PKEY_CTX_ctrl.pod @@ -41,6 +41,8 @@ EVP_PKEY_CTX_set_dh_paramgen_prime_len, EVP_PKEY_CTX_set_dh_paramgen_subprime_len, EVP_PKEY_CTX_set_dh_paramgen_generator, EVP_PKEY_CTX_set_dh_paramgen_type, +EVP_PKEY_CTX_set_dh_paramgen_gindex, +EVP_PKEY_CTX_set_dh_paramgen_seed, EVP_PKEY_CTX_set_dh_rfc5114, EVP_PKEY_CTX_set_dhx_rfc5114, EVP_PKEY_CTX_set_dh_pad, @@ -144,6 +146,10 @@ EVP_PKEY_CTX_set1_id, EVP_PKEY_CTX_get1_id, EVP_PKEY_CTX_get1_id_len int EVP_PKEY_CTX_set_dh_nid(EVP_PKEY_CTX *ctx, int nid); int EVP_PKEY_CTX_set_dh_rfc5114(EVP_PKEY_CTX *ctx, int rfc5114); int EVP_PKEY_CTX_set_dhx_rfc5114(EVP_PKEY_CTX *ctx, int rfc5114); + int EVP_PKEY_CTX_set_dh_paramgen_gindex(EVP_PKEY_CTX *ctx, int gindex); + int EVP_PKEY_CTX_set_dh_paramgen_seed(EVP_PKEY_CTX *ctx, + const unsigned char *seed, + size_t seedlen); int EVP_PKEY_CTX_set_dh_kdf_type(EVP_PKEY_CTX *ctx, int kdf); int EVP_PKEY_CTX_get_dh_kdf_type(EVP_PKEY_CTX *ctx); int EVP_PKEY_CTX_set0_dh_kdf_oid(EVP_PKEY_CTX *ctx, ASN1_OBJECT *oid); @@ -462,22 +468,39 @@ parameter generation. The supported parameters are: =over 4 -=item B +=item B + +Use a named group. If only the safe prime parameter I

is set this can be +used to select a ffdhe safe prime group of the correct size. + +=item B -Uses a generator g (PKCS#3 format). +FIPS186-4 FFC parameter generator. =item B FIPS186-2 FFC parameter generator (X9.42 DH). -=item B +=item B -FIPS186-4 FFC parameter generator. +Uses a safe prime generator g (PKCS#3 format). =back The default is B. +The EVP_PKEY_CTX_set_dh_paramgen_gindex() method sets the I used by +the generator G. The default value is -1 which uses unverifiable g, otherwise +a positive value uses verifiable g. This value must be saved if key validation +of g is required, since it is not part of a persisted key. + +The EVP_PKEY_CTX_set_dh_paramgen_seed() method sets the I to use for +generation rather than using a randomly generated value for the seed. This is +useful for testing purposes only and can fail if the seed does not produce +primes for both p & q on its first iteration. This value must be saved if +key validation of p, q, and verifiable g are required, since it is not part of +a persisted key. + The EVP_PKEY_CTX_set_dh_pad() function sets the DH padding mode. If I is 1 the shared secret is padded with zeros up to the size of the DH prime I

.