[thirdparty/openssl.git] / doc / crypto / rsa.pod

=pod

=head1 NAME

rsa - RSA public key cryptosystem

=head1 SYNOPSIS

 #include <openssl/rsa.h>
 #include <openssl/engine.h>

 RSA * RSA_new(void);
 void RSA_free(RSA *rsa);

 int RSA_public_encrypt(int flen, unsigned char *from,
    unsigned char *to, RSA *rsa, int padding);
 int RSA_private_decrypt(int flen, unsigned char *from,
    unsigned char *to, RSA *rsa, int padding);
 int RSA_private_encrypt(int flen, unsigned char *from,
    unsigned char *to, RSA *rsa,int padding);
 int RSA_public_decrypt(int flen, unsigned char *from, 
    unsigned char *to, RSA *rsa,int padding);

 int RSA_sign(int type, unsigned char *m, unsigned int m_len,
    unsigned char *sigret, unsigned int *siglen, RSA *rsa);
 int RSA_verify(int type, unsigned char *m, unsigned int m_len,
    unsigned char *sigbuf, unsigned int siglen, RSA *rsa);

 RSA *RSA_generate_key(int num, unsigned long e,
    void (*callback)(int,int,void *), void *cb_arg);

 int RSA_check_key(RSA *rsa);

 int RSA_blinding_on(RSA *rsa, BN_CTX *ctx);
 void RSA_blinding_off(RSA *rsa);

 void RSA_set_default_method(const RSA_METHOD *meth);
 const RSA_METHOD *RSA_get_default_method(void);
 int RSA_set_method(RSA *rsa, const RSA_METHOD *meth);
 const RSA_METHOD *RSA_get_method(const RSA *rsa);
 RSA_METHOD *RSA_PKCS1_OpenSSL(void);
 RSA_METHOD *RSA_null_method(void);
 int RSA_flags(const RSA *rsa);
 RSA *RSA_new_method(ENGINE *engine);

 int RSA_print(BIO *bp, RSA *x, int offset);
 int RSA_print_fp(FILE *fp, RSA *x, int offset);

 int RSA_sign_ASN1_OCTET_STRING(int dummy, unsigned char *m,
    unsigned int m_len, unsigned char *sigret, unsigned int *siglen,
    RSA *rsa);
 int RSA_verify_ASN1_OCTET_STRING(int dummy, unsigned char *m,
    unsigned int m_len, unsigned char *sigbuf, unsigned int siglen,
    RSA *rsa);

=head1 DESCRIPTION

These functions implement RSA public key encryption and signatures
as defined in PKCS #1 v2.0 [RFC 2437].

The B<RSA> structure consists of several BIGNUM components. It can
contain public as well as private RSA keys:

 struct
        {
        BIGNUM *n;		// public modulus
        BIGNUM *e;		// public exponent
        BIGNUM *d;		// private exponent
        BIGNUM *p;		// secret prime factor
        BIGNUM *q;		// secret prime factor
        BIGNUM *dmp1;		// d mod (p-1)
        BIGNUM *dmq1;		// d mod (q-1)
        BIGNUM *iqmp;		// q^-1 mod p
	// ...
        };
 RSA

In public keys, the private exponent and the related secret values are
B<NULL>.

B<p>, B<q>, B<dmp1>, B<dmq1> and B<iqmp> may be B<NULL> in private
keys, but the RSA operations are much faster when these values are
available.

Note that RSA keys may use non-standard B<RSA_METHOD> implementations,
either directly or by the use of B<ENGINE> modules. In some cases (eg. an
ENGINE providing support for hardware-embedded keys), these BIGNUM values
will not be used by the implementation or may be used for alternative data
storage. For this reason, applications should generally avoid using RSA
structure elements directly and instead use API functions to query or
modify keys.

=head1 CONFORMING TO

SSL, PKCS #1 v2.0

=head1 PATENTS

RSA was covered by a US patent which expired in September 2000.

=head1 SEE ALSO

L<rsa(1)>, L<bn(3)>, L<dsa(3)>, L<dh(3)>,
L<rand(3)>, L<engine(3)>, L<RSA_new(3)>,
L<RSA_public_encrypt(3)>,
L<RSA_sign(3)>, L<RSA_size(3)>,
L<RSA_generate_key(3)>,
L<RSA_check_key(3)>,
L<RSA_blinding_on(3)>,
L<RSA_set_method(3)>, L<RSA_print(3)>,
L<RSA_get_ex_new_index(3)>,
L<RSA_private_encrypt(3)>,
L<RSA_sign_ASN1_OCTET_STRING(3)>,
L<RSA_padding_add_PKCS1_type_1(3)> 

=cut
Commit	Line	Data
2186cd8e UM	1	=pod
	2
	3	=head1 NAME
	4
	5	rsa - RSA public key cryptosystem
	6
	7	=head1 SYNOPSIS
	8
	9	#include <openssl/rsa.h>
5270e702	10	#include <openssl/engine.h>
2186cd8e UM	11
2186cd8e UM	12	RSA * RSA_new(void);
2186cd8e UM	13	void RSA_free(RSA *rsa);
	14
	15	int RSA_public_encrypt(int flen, unsigned char *from,
	16	unsigned char to, RSA rsa, int padding);
2186cd8e UM	17	int RSA_private_decrypt(int flen, unsigned char *from,
2186cd8e UM	18	unsigned char to, RSA rsa, int padding);
ac120e20 GT	19	int RSA_private_encrypt(int flen, unsigned char *from,
	20	unsigned char to, RSA rsa,int padding);
	21	int RSA_public_decrypt(int flen, unsigned char *from,
	22	unsigned char to, RSA rsa,int padding);
2186cd8e UM	23
	24	int RSA_sign(int type, unsigned char *m, unsigned int m_len,
	25	unsigned char sigret, unsigned int siglen, RSA *rsa);
2186cd8e UM	26	int RSA_verify(int type, unsigned char *m, unsigned int m_len,
	27	unsigned char sigbuf, unsigned int siglen, RSA rsa);
	28
2186cd8e UM	29	RSA *RSA_generate_key(int num, unsigned long e,
	30	void (callback)(int,int,void ), void *cb_arg);
	31
	32	int RSA_check_key(RSA *rsa);
	33
	34	int RSA_blinding_on(RSA rsa, BN_CTX ctx);
2186cd8e UM	35	void RSA_blinding_off(RSA *rsa);
2186cd8e UM	36
ac120e20 GT	37	void RSA_set_default_method(const RSA_METHOD *meth);
	38	const RSA_METHOD *RSA_get_default_method(void);
	39	int RSA_set_method(RSA rsa, const RSA_METHOD meth);
	40	const RSA_METHOD RSA_get_method(const RSA rsa);
a528d4f0	41	RSA_METHOD *RSA_PKCS1_OpenSSL(void);
2186cd8e	42	RSA_METHOD *RSA_null_method(void);
ac120e20	43	int RSA_flags(const RSA *rsa);
5270e702	44	RSA RSA_new_method(ENGINE engine);
2186cd8e UM	45
2186cd8e UM	46	int RSA_print(BIO bp, RSA x, int offset);
2186cd8e UM	47	int RSA_print_fp(FILE fp, RSA x, int offset);
2186cd8e UM	48
2186cd8e UM	49	int RSA_sign_ASN1_OCTET_STRING(int dummy, unsigned char *m,
	50	unsigned int m_len, unsigned char sigret, unsigned int siglen,
	51	RSA *rsa);
2186cd8e UM	52	int RSA_verify_ASN1_OCTET_STRING(int dummy, unsigned char *m,
	53	unsigned int m_len, unsigned char *sigbuf, unsigned int siglen,
	54	RSA *rsa);
	55
2186cd8e UM	56	=head1 DESCRIPTION
	57
	58	These functions implement RSA public key encryption and signatures
	59	as defined in PKCS #1 v2.0 [RFC 2437].
	60
	61	The B<RSA> structure consists of several BIGNUM components. It can
	62	contain public as well as private RSA keys:
	63
	64	struct
	65	{
	66	BIGNUM *n; // public modulus
	67	BIGNUM *e; // public exponent
	68	BIGNUM *d; // private exponent
	69	BIGNUM *p; // secret prime factor
	70	BIGNUM *q; // secret prime factor
	71	BIGNUM *dmp1; // d mod (p-1)
	72	BIGNUM *dmq1; // d mod (q-1)
	73	BIGNUM *iqmp; // q^-1 mod p
	74	// ...
	75	};
	76	RSA
	77
	78	In public keys, the private exponent and the related secret values are
	79	B<NULL>.
	80
e4947bfe UM	81	B<p>, B<q>, B<dmp1>, B<dmq1> and B<iqmp> may be B<NULL> in private
	82	keys, but the RSA operations are much faster when these values are
	83	available.
2186cd8e	84
ac120e20 GT	85	Note that RSA keys may use non-standard B<RSA_METHOD> implementations,
	86	either directly or by the use of B<ENGINE> modules. In some cases (eg. an
	87	ENGINE providing support for hardware-embedded keys), these BIGNUM values
	88	will not be used by the implementation or may be used for alternative data
	89	storage. For this reason, applications should generally avoid using RSA
	90	structure elements directly and instead use API functions to query or
	91	modify keys.
	92
38e33cef UM	93	=head1 CONFORMING TO
	94
	95	SSL, PKCS #1 v2.0
	96
2186cd8e UM	97	=head1 PATENTS
2186cd8e UM	98
89681b18	99	RSA was covered by a US patent which expired in September 2000.
2186cd8e UM	100
	101	=head1 SEE ALSO
	102
9b86974e RS	103	L<rsa(1)>, L<bn(3)>, L<dsa(3)>, L<dh(3)>,
	104	L<rand(3)>, L<engine(3)>, L<RSA_new(3)>,
	105	L<RSA_public_encrypt(3)>,
	106	L<RSA_sign(3)>, L<RSA_size(3)>,
	107	L<RSA_generate_key(3)>,
	108	L<RSA_check_key(3)>,
	109	L<RSA_blinding_on(3)>,
	110	L<RSA_set_method(3)>, L<RSA_print(3)>,
	111	L<RSA_get_ex_new_index(3)>,
	112	L<RSA_private_encrypt(3)>,
	113	L<RSA_sign_ASN1_OCTET_STRING(3)>,
	114	L<RSA_padding_add_PKCS1_type_1(3)>
2186cd8e UM	115
2186cd8e UM	116	=cut