]>
git.ipfire.org Git - thirdparty/openssl.git/blob - crypto/evp/evp.h
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
59 #ifndef HEADER_ENVELOPE_H
60 #define HEADER_ENVELOPE_H
62 #ifdef OPENSSL_ALGORITHM_DEFINES
63 # include <openssl/opensslconf.h>
65 # define OPENSSL_ALGORITHM_DEFINES
66 # include <openssl/opensslconf.h>
67 # undef OPENSSL_ALGORITHM_DEFINES
70 #include <openssl/ossl_typ.h>
72 #include <openssl/symhacks.h>
74 #ifndef OPENSSL_NO_BIO
75 #include <openssl/bio.h>
79 #define EVP_RC2_KEY_SIZE 16
80 #define EVP_RC4_KEY_SIZE 16
81 #define EVP_BLOWFISH_KEY_SIZE 16
82 #define EVP_CAST5_KEY_SIZE 16
83 #define EVP_RC5_32_12_16_KEY_SIZE 16
85 #define EVP_MAX_MD_SIZE 64 /* longest known is SHA512 */
86 #define EVP_MAX_KEY_LENGTH 64
87 #define EVP_MAX_IV_LENGTH 16
88 #define EVP_MAX_BLOCK_LENGTH 32
90 #define PKCS5_SALT_LEN 8
91 /* Default PKCS#5 iteration count */
92 #define PKCS5_DEFAULT_ITER 2048
94 #include <openssl/objects.h>
96 #define EVP_PK_RSA 0x0001
97 #define EVP_PK_DSA 0x0002
98 #define EVP_PK_DH 0x0004
99 #define EVP_PK_EC 0x0008
100 #define EVP_PKT_SIGN 0x0010
101 #define EVP_PKT_ENC 0x0020
102 #define EVP_PKT_EXCH 0x0040
103 #define EVP_PKS_RSA 0x0100
104 #define EVP_PKS_DSA 0x0200
105 #define EVP_PKS_EC 0x0400
106 #define EVP_PKT_EXP 0x1000 /* <= 512 bit key */
108 #define EVP_PKEY_NONE NID_undef
109 #define EVP_PKEY_RSA NID_rsaEncryption
110 #define EVP_PKEY_RSA2 NID_rsa
111 #define EVP_PKEY_DSA NID_dsa
112 #define EVP_PKEY_DSA1 NID_dsa_2
113 #define EVP_PKEY_DSA2 NID_dsaWithSHA
114 #define EVP_PKEY_DSA3 NID_dsaWithSHA1
115 #define EVP_PKEY_DSA4 NID_dsaWithSHA1_2
116 #define EVP_PKEY_DH NID_dhKeyAgreement
117 #define EVP_PKEY_DHX NID_dhpublicnumber
118 #define EVP_PKEY_EC NID_X9_62_id_ecPublicKey
119 #define EVP_PKEY_HMAC NID_hmac
120 #define EVP_PKEY_CMAC NID_cmac
126 /* Type needs to be a bit field
127 * Sub-type needs to be for variations on the method, as in, can it do
128 * arbitrary encryption.... */
134 const EVP_PKEY_ASN1_METHOD
*ameth
;
138 #ifndef OPENSSL_NO_RSA
139 struct rsa_st
*rsa
; /* RSA */
141 #ifndef OPENSSL_NO_DSA
142 struct dsa_st
*dsa
; /* DSA */
144 #ifndef OPENSSL_NO_DH
145 struct dh_st
*dh
; /* DH */
147 #ifndef OPENSSL_NO_EC
148 struct ec_key_st
*ec
; /* ECC */
152 STACK_OF(X509_ATTRIBUTE
) *attributes
; /* [ 0 ] */
155 #define EVP_PKEY_MO_SIGN 0x0001
156 #define EVP_PKEY_MO_VERIFY 0x0002
157 #define EVP_PKEY_MO_ENCRYPT 0x0004
158 #define EVP_PKEY_MO_DECRYPT 0x0008
167 int (*init
)(EVP_MD_CTX
*ctx
);
168 int (*update
)(EVP_MD_CTX
*ctx
,const void *data
,size_t count
);
169 int (*final
)(EVP_MD_CTX
*ctx
,unsigned char *md
);
170 int (*copy
)(EVP_MD_CTX
*to
,const EVP_MD_CTX
*from
);
171 int (*cleanup
)(EVP_MD_CTX
*ctx
);
173 /* FIXME: prototype these some day */
174 int (*sign
)(int type
, const unsigned char *m
, unsigned int m_length
,
175 unsigned char *sigret
, unsigned int *siglen
, void *key
);
176 int (*verify
)(int type
, const unsigned char *m
, unsigned int m_length
,
177 const unsigned char *sigbuf
, unsigned int siglen
,
179 int required_pkey_type
[5]; /*EVP_PKEY_xxx */
181 int ctx_size
; /* how big does the ctx->md_data need to be */
182 /* control function */
183 int (*md_ctrl
)(EVP_MD_CTX
*ctx
, int cmd
, int p1
, void *p2
);
186 typedef int evp_sign_method(int type
,const unsigned char *m
,
187 unsigned int m_length
,unsigned char *sigret
,
188 unsigned int *siglen
, void *key
);
189 typedef int evp_verify_method(int type
,const unsigned char *m
,
190 unsigned int m_length
,const unsigned char *sigbuf
,
191 unsigned int siglen
, void *key
);
193 #define EVP_MD_FLAG_ONESHOT 0x0001 /* digest can only handle a single
196 #define EVP_MD_FLAG_PKEY_DIGEST 0x0002 /* digest is a "clone" digest used
197 * which is a copy of an existing
198 * one for a specific public key type.
201 /* Digest uses EVP_PKEY_METHOD for signing instead of MD specific signing */
203 #define EVP_MD_FLAG_PKEY_METHOD_SIGNATURE 0x0004
205 /* DigestAlgorithmIdentifier flags... */
207 #define EVP_MD_FLAG_DIGALGID_MASK 0x0018
209 /* NULL or absent parameter accepted. Use NULL */
211 #define EVP_MD_FLAG_DIGALGID_NULL 0x0000
213 /* NULL or absent parameter accepted. Use NULL for PKCS#1 otherwise absent */
215 #define EVP_MD_FLAG_DIGALGID_ABSENT 0x0008
217 /* Custom handling via ctrl */
219 #define EVP_MD_FLAG_DIGALGID_CUSTOM 0x0018
221 #define EVP_MD_FLAG_FIPS 0x0400 /* Note if suitable for use in FIPS mode */
225 #define EVP_MD_CTRL_DIGALGID 0x1
226 #define EVP_MD_CTRL_MICALG 0x2
228 /* Minimum Algorithm specific ctrl value */
230 #define EVP_MD_CTRL_ALG_CTRL 0x1000
232 #define EVP_PKEY_NULL_method NULL,NULL,{0,0,0,0}
234 #ifndef OPENSSL_NO_DSA
235 #define EVP_PKEY_DSA_method (evp_sign_method *)DSA_sign, \
236 (evp_verify_method *)DSA_verify, \
237 {EVP_PKEY_DSA,EVP_PKEY_DSA2,EVP_PKEY_DSA3, \
240 #define EVP_PKEY_DSA_method EVP_PKEY_NULL_method
243 #ifndef OPENSSL_NO_ECDSA
244 #define EVP_PKEY_ECDSA_method (evp_sign_method *)ECDSA_sign, \
245 (evp_verify_method *)ECDSA_verify, \
248 #define EVP_PKEY_ECDSA_method EVP_PKEY_NULL_method
251 #ifndef OPENSSL_NO_RSA
252 #define EVP_PKEY_RSA_method (evp_sign_method *)RSA_sign, \
253 (evp_verify_method *)RSA_verify, \
254 {EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0}
255 #define EVP_PKEY_RSA_ASN1_OCTET_STRING_method \
256 (evp_sign_method *)RSA_sign_ASN1_OCTET_STRING, \
257 (evp_verify_method *)RSA_verify_ASN1_OCTET_STRING, \
258 {EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0}
260 #define EVP_PKEY_RSA_method EVP_PKEY_NULL_method
261 #define EVP_PKEY_RSA_ASN1_OCTET_STRING_method EVP_PKEY_NULL_method
268 const EVP_MD
*digest
;
269 ENGINE
*engine
; /* functional reference if 'digest' is ENGINE-provided */
272 /* Public key context for sign/verify */
274 /* Update function: usually copied from EVP_MD */
275 int (*update
)(EVP_MD_CTX
*ctx
,const void *data
,size_t count
);
278 /* values for EVP_MD_CTX flags */
280 #define EVP_MD_CTX_FLAG_ONESHOT 0x0001 /* digest update will be called
282 #define EVP_MD_CTX_FLAG_CLEANED 0x0002 /* context has already been
284 #define EVP_MD_CTX_FLAG_REUSE 0x0004 /* Don't free up ctx->md_data
285 * in EVP_MD_CTX_cleanup */
286 /* FIPS and pad options are ignored in 1.0.0, definitions are here
287 * so we don't accidentally reuse the values for other purposes.
290 #define EVP_MD_CTX_FLAG_NON_FIPS_ALLOW 0x0008 /* Allow use of non FIPS digest
293 /* The following PAD options are also currently ignored in 1.0.0, digest
294 * parameters are handled through EVP_DigestSign*() and EVP_DigestVerify*()
297 #define EVP_MD_CTX_FLAG_PAD_MASK 0xF0 /* RSA mode to use */
298 #define EVP_MD_CTX_FLAG_PAD_PKCS1 0x00 /* PKCS#1 v1.5 mode */
299 #define EVP_MD_CTX_FLAG_PAD_X931 0x10 /* X9.31 mode */
300 #define EVP_MD_CTX_FLAG_PAD_PSS 0x20 /* PSS mode */
302 #define EVP_MD_CTX_FLAG_NO_INIT 0x0100 /* Don't initialize md_data */
308 int key_len
; /* Default value for variable length ciphers */
310 unsigned long flags
; /* Various flags */
311 int (*init
)(EVP_CIPHER_CTX
*ctx
, const unsigned char *key
,
312 const unsigned char *iv
, int enc
); /* init key */
313 int (*do_cipher
)(EVP_CIPHER_CTX
*ctx
, unsigned char *out
,
314 const unsigned char *in
, size_t inl
);/* encrypt/decrypt data */
315 int (*cleanup
)(EVP_CIPHER_CTX
*); /* cleanup ctx */
316 int ctx_size
; /* how big ctx->cipher_data needs to be */
317 int (*set_asn1_parameters
)(EVP_CIPHER_CTX
*, ASN1_TYPE
*); /* Populate a ASN1_TYPE with parameters */
318 int (*get_asn1_parameters
)(EVP_CIPHER_CTX
*, ASN1_TYPE
*); /* Get parameters from a ASN1_TYPE */
319 int (*ctrl
)(EVP_CIPHER_CTX
*, int type
, int arg
, void *ptr
); /* Miscellaneous operations */
320 void *app_data
; /* Application data */
323 /* Values for cipher flags */
325 /* Modes for ciphers */
327 #define EVP_CIPH_STREAM_CIPHER 0x0
328 #define EVP_CIPH_ECB_MODE 0x1
329 #define EVP_CIPH_CBC_MODE 0x2
330 #define EVP_CIPH_CFB_MODE 0x3
331 #define EVP_CIPH_OFB_MODE 0x4
332 #define EVP_CIPH_CTR_MODE 0x5
333 #define EVP_CIPH_GCM_MODE 0x6
334 #define EVP_CIPH_CCM_MODE 0x7
335 #define EVP_CIPH_XTS_MODE 0x10001
336 #define EVP_CIPH_WRAP_MODE 0x10002
337 #define EVP_CIPH_MODE 0xF0007
338 /* Set if variable length cipher */
339 #define EVP_CIPH_VARIABLE_LENGTH 0x8
340 /* Set if the iv handling should be done by the cipher itself */
341 #define EVP_CIPH_CUSTOM_IV 0x10
342 /* Set if the cipher's init() function should be called if key is NULL */
343 #define EVP_CIPH_ALWAYS_CALL_INIT 0x20
344 /* Call ctrl() to init cipher parameters */
345 #define EVP_CIPH_CTRL_INIT 0x40
346 /* Don't use standard key length function */
347 #define EVP_CIPH_CUSTOM_KEY_LENGTH 0x80
348 /* Don't use standard block padding */
349 #define EVP_CIPH_NO_PADDING 0x100
350 /* cipher handles random key generation */
351 #define EVP_CIPH_RAND_KEY 0x200
352 /* cipher has its own additional copying logic */
353 #define EVP_CIPH_CUSTOM_COPY 0x400
354 /* Allow use default ASN1 get/set iv */
355 #define EVP_CIPH_FLAG_DEFAULT_ASN1 0x1000
356 /* Buffer length in bits not bytes: CFB1 mode only */
357 #define EVP_CIPH_FLAG_LENGTH_BITS 0x2000
358 /* Note if suitable for use in FIPS mode */
359 #define EVP_CIPH_FLAG_FIPS 0x4000
360 /* Allow non FIPS cipher in FIPS mode */
361 #define EVP_CIPH_FLAG_NON_FIPS_ALLOW 0x8000
362 /* Cipher handles any and all padding logic as well
365 #define EVP_CIPH_FLAG_CUSTOM_CIPHER 0x100000
366 #define EVP_CIPH_FLAG_AEAD_CIPHER 0x200000
368 /* Cipher context flag to indicate we can handle
369 * wrap mode: if allowed in older applications it could
373 #define EVP_CIPHER_CTX_FLAG_WRAP_ALLOW 0x1
377 #define EVP_CTRL_INIT 0x0
378 #define EVP_CTRL_SET_KEY_LENGTH 0x1
379 #define EVP_CTRL_GET_RC2_KEY_BITS 0x2
380 #define EVP_CTRL_SET_RC2_KEY_BITS 0x3
381 #define EVP_CTRL_GET_RC5_ROUNDS 0x4
382 #define EVP_CTRL_SET_RC5_ROUNDS 0x5
383 #define EVP_CTRL_RAND_KEY 0x6
384 #define EVP_CTRL_PBE_PRF_NID 0x7
385 #define EVP_CTRL_COPY 0x8
386 #define EVP_CTRL_GCM_SET_IVLEN 0x9
387 #define EVP_CTRL_GCM_GET_TAG 0x10
388 #define EVP_CTRL_GCM_SET_TAG 0x11
389 #define EVP_CTRL_GCM_SET_IV_FIXED 0x12
390 #define EVP_CTRL_GCM_IV_GEN 0x13
391 #define EVP_CTRL_CCM_SET_IVLEN EVP_CTRL_GCM_SET_IVLEN
392 #define EVP_CTRL_CCM_GET_TAG EVP_CTRL_GCM_GET_TAG
393 #define EVP_CTRL_CCM_SET_TAG EVP_CTRL_GCM_SET_TAG
394 #define EVP_CTRL_CCM_SET_L 0x14
395 #define EVP_CTRL_CCM_SET_MSGLEN 0x15
396 /* AEAD cipher deduces payload length and returns number of bytes
397 * required to store MAC and eventual padding. Subsequent call to
398 * EVP_Cipher even appends/verifies MAC.
400 #define EVP_CTRL_AEAD_TLS1_AAD 0x16
401 /* Used by composite AEAD ciphers, no-op in GCM, CCM... */
402 #define EVP_CTRL_AEAD_SET_MAC_KEY 0x17
403 /* Set the GCM invocation field, decrypt only */
404 #define EVP_CTRL_GCM_SET_IV_INV 0x18
406 /* GCM TLS constants */
407 /* Length of fixed part of IV derived from PRF */
408 #define EVP_GCM_TLS_FIXED_IV_LEN 4
409 /* Length of explicit part of IV part of TLS records */
410 #define EVP_GCM_TLS_EXPLICIT_IV_LEN 8
411 /* Length of tag for TLS */
412 #define EVP_GCM_TLS_TAG_LEN 16
414 typedef struct evp_cipher_info_st
416 const EVP_CIPHER
*cipher
;
417 unsigned char iv
[EVP_MAX_IV_LENGTH
];
420 struct evp_cipher_ctx_st
422 const EVP_CIPHER
*cipher
;
423 ENGINE
*engine
; /* functional reference if 'cipher' is ENGINE-provided */
424 int encrypt
; /* encrypt or decrypt */
425 int buf_len
; /* number we have left */
427 unsigned char oiv
[EVP_MAX_IV_LENGTH
]; /* original iv */
428 unsigned char iv
[EVP_MAX_IV_LENGTH
]; /* working iv */
429 unsigned char buf
[EVP_MAX_BLOCK_LENGTH
];/* saved partial block */
430 int num
; /* used by cfb/ofb/ctr mode */
432 void *app_data
; /* application stuff */
433 int key_len
; /* May change for variable length cipher */
434 unsigned long flags
; /* Various flags */
435 void *cipher_data
; /* per EVP data */
438 unsigned char final
[EVP_MAX_BLOCK_LENGTH
];/* possible final block */
439 } /* EVP_CIPHER_CTX */;
441 typedef struct evp_Encode_Ctx_st
443 int num
; /* number saved in a partial encode/decode */
444 int length
; /* The length is either the output line length
445 * (in input bytes) or the shortest input line
446 * length that is ok. Once decoding begins,
447 * the length is adjusted up each time a longer
449 unsigned char enc_data
[80]; /* data to encode */
450 int line_num
; /* number read on current line */
454 /* Password based encryption function */
455 typedef int (EVP_PBE_KEYGEN
)(EVP_CIPHER_CTX
*ctx
, const char *pass
, int passlen
,
456 ASN1_TYPE
*param
, const EVP_CIPHER
*cipher
,
457 const EVP_MD
*md
, int en_de
);
459 #ifndef OPENSSL_NO_RSA
460 #define EVP_PKEY_assign_RSA(pkey,rsa) EVP_PKEY_assign((pkey),EVP_PKEY_RSA,\
464 #ifndef OPENSSL_NO_DSA
465 #define EVP_PKEY_assign_DSA(pkey,dsa) EVP_PKEY_assign((pkey),EVP_PKEY_DSA,\
469 #ifndef OPENSSL_NO_DH
470 #define EVP_PKEY_assign_DH(pkey,dh) EVP_PKEY_assign((pkey),EVP_PKEY_DH,\
474 #ifndef OPENSSL_NO_EC
475 #define EVP_PKEY_assign_EC_KEY(pkey,eckey) EVP_PKEY_assign((pkey),EVP_PKEY_EC,\
479 /* Add some extra combinations */
480 #define EVP_get_digestbynid(a) EVP_get_digestbyname(OBJ_nid2sn(a))
481 #define EVP_get_digestbyobj(a) EVP_get_digestbynid(OBJ_obj2nid(a))
482 #define EVP_get_cipherbynid(a) EVP_get_cipherbyname(OBJ_nid2sn(a))
483 #define EVP_get_cipherbyobj(a) EVP_get_cipherbynid(OBJ_obj2nid(a))
485 int EVP_MD_type(const EVP_MD
*md
);
486 #define EVP_MD_nid(e) EVP_MD_type(e)
487 #define EVP_MD_name(e) OBJ_nid2sn(EVP_MD_nid(e))
488 int EVP_MD_pkey_type(const EVP_MD
*md
);
489 int EVP_MD_size(const EVP_MD
*md
);
490 int EVP_MD_block_size(const EVP_MD
*md
);
491 unsigned long EVP_MD_flags(const EVP_MD
*md
);
493 const EVP_MD
*EVP_MD_CTX_md(const EVP_MD_CTX
*ctx
);
494 #define EVP_MD_CTX_size(e) EVP_MD_size(EVP_MD_CTX_md(e))
495 #define EVP_MD_CTX_block_size(e) EVP_MD_block_size(EVP_MD_CTX_md(e))
496 #define EVP_MD_CTX_type(e) EVP_MD_type(EVP_MD_CTX_md(e))
498 int EVP_CIPHER_nid(const EVP_CIPHER
*cipher
);
499 #define EVP_CIPHER_name(e) OBJ_nid2sn(EVP_CIPHER_nid(e))
500 int EVP_CIPHER_block_size(const EVP_CIPHER
*cipher
);
501 int EVP_CIPHER_key_length(const EVP_CIPHER
*cipher
);
502 int EVP_CIPHER_iv_length(const EVP_CIPHER
*cipher
);
503 unsigned long EVP_CIPHER_flags(const EVP_CIPHER
*cipher
);
504 #define EVP_CIPHER_mode(e) (EVP_CIPHER_flags(e) & EVP_CIPH_MODE)
506 const EVP_CIPHER
* EVP_CIPHER_CTX_cipher(const EVP_CIPHER_CTX
*ctx
);
507 int EVP_CIPHER_CTX_nid(const EVP_CIPHER_CTX
*ctx
);
508 int EVP_CIPHER_CTX_block_size(const EVP_CIPHER_CTX
*ctx
);
509 int EVP_CIPHER_CTX_key_length(const EVP_CIPHER_CTX
*ctx
);
510 int EVP_CIPHER_CTX_iv_length(const EVP_CIPHER_CTX
*ctx
);
511 int EVP_CIPHER_CTX_copy(EVP_CIPHER_CTX
*out
, const EVP_CIPHER_CTX
*in
);
512 void * EVP_CIPHER_CTX_get_app_data(const EVP_CIPHER_CTX
*ctx
);
513 void EVP_CIPHER_CTX_set_app_data(EVP_CIPHER_CTX
*ctx
, void *data
);
514 #define EVP_CIPHER_CTX_type(c) EVP_CIPHER_type(EVP_CIPHER_CTX_cipher(c))
515 unsigned long EVP_CIPHER_CTX_flags(const EVP_CIPHER_CTX
*ctx
);
516 #define EVP_CIPHER_CTX_mode(e) (EVP_CIPHER_CTX_flags(e) & EVP_CIPH_MODE)
518 #define EVP_ENCODE_LENGTH(l) (((l+2)/3*4)+(l/48+1)*2+80)
519 #define EVP_DECODE_LENGTH(l) ((l+3)/4*3+80)
521 #define EVP_SignInit_ex(a,b,c) EVP_DigestInit_ex(a,b,c)
522 #define EVP_SignInit(a,b) EVP_DigestInit(a,b)
523 #define EVP_SignUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
524 #define EVP_VerifyInit_ex(a,b,c) EVP_DigestInit_ex(a,b,c)
525 #define EVP_VerifyInit(a,b) EVP_DigestInit(a,b)
526 #define EVP_VerifyUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
527 #define EVP_OpenUpdate(a,b,c,d,e) EVP_DecryptUpdate(a,b,c,d,e)
528 #define EVP_SealUpdate(a,b,c,d,e) EVP_EncryptUpdate(a,b,c,d,e)
529 #define EVP_DigestSignUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
530 #define EVP_DigestVerifyUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
533 void BIO_set_md(BIO
*,const EVP_MD
*md
);
535 # define BIO_set_md(b,md) BIO_ctrl(b,BIO_C_SET_MD,0,(char *)md)
537 #define BIO_get_md(b,mdp) BIO_ctrl(b,BIO_C_GET_MD,0,(char *)mdp)
538 #define BIO_get_md_ctx(b,mdcp) BIO_ctrl(b,BIO_C_GET_MD_CTX,0,(char *)mdcp)
539 #define BIO_set_md_ctx(b,mdcp) BIO_ctrl(b,BIO_C_SET_MD_CTX,0,(char *)mdcp)
540 #define BIO_get_cipher_status(b) BIO_ctrl(b,BIO_C_GET_CIPHER_STATUS,0,NULL)
541 #define BIO_get_cipher_ctx(b,c_pp) BIO_ctrl(b,BIO_C_GET_CIPHER_CTX,0,(char *)c_pp)
543 int EVP_Cipher(EVP_CIPHER_CTX
*c
,
545 const unsigned char *in
,
548 #define EVP_add_cipher_alias(n,alias) \
549 OBJ_NAME_add((alias),OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS,(n))
550 #define EVP_add_digest_alias(n,alias) \
551 OBJ_NAME_add((alias),OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS,(n))
552 #define EVP_delete_cipher_alias(alias) \
553 OBJ_NAME_remove(alias,OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS);
554 #define EVP_delete_digest_alias(alias) \
555 OBJ_NAME_remove(alias,OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS);
557 void EVP_MD_CTX_init(EVP_MD_CTX
*ctx
);
558 int EVP_MD_CTX_cleanup(EVP_MD_CTX
*ctx
);
559 EVP_MD_CTX
*EVP_MD_CTX_create(void);
560 void EVP_MD_CTX_destroy(EVP_MD_CTX
*ctx
);
561 int EVP_MD_CTX_copy_ex(EVP_MD_CTX
*out
,const EVP_MD_CTX
*in
);
562 void EVP_MD_CTX_set_flags(EVP_MD_CTX
*ctx
, int flags
);
563 void EVP_MD_CTX_clear_flags(EVP_MD_CTX
*ctx
, int flags
);
564 int EVP_MD_CTX_test_flags(const EVP_MD_CTX
*ctx
,int flags
);
565 int EVP_DigestInit_ex(EVP_MD_CTX
*ctx
, const EVP_MD
*type
, ENGINE
*impl
);
566 int EVP_DigestUpdate(EVP_MD_CTX
*ctx
,const void *d
,
568 int EVP_DigestFinal_ex(EVP_MD_CTX
*ctx
,unsigned char *md
,unsigned int *s
);
569 int EVP_Digest(const void *data
, size_t count
,
570 unsigned char *md
, unsigned int *size
, const EVP_MD
*type
, ENGINE
*impl
);
572 int EVP_MD_CTX_copy(EVP_MD_CTX
*out
,const EVP_MD_CTX
*in
);
573 int EVP_DigestInit(EVP_MD_CTX
*ctx
, const EVP_MD
*type
);
574 int EVP_DigestFinal(EVP_MD_CTX
*ctx
,unsigned char *md
,unsigned int *s
);
576 int EVP_read_pw_string(char *buf
,int length
,const char *prompt
,int verify
);
577 int EVP_read_pw_string_min(char *buf
,int minlen
,int maxlen
,const char *prompt
,int verify
);
578 void EVP_set_pw_prompt(const char *prompt
);
579 char * EVP_get_pw_prompt(void);
581 int EVP_BytesToKey(const EVP_CIPHER
*type
,const EVP_MD
*md
,
582 const unsigned char *salt
, const unsigned char *data
,
583 int datal
, int count
, unsigned char *key
,unsigned char *iv
);
585 void EVP_CIPHER_CTX_set_flags(EVP_CIPHER_CTX
*ctx
, int flags
);
586 void EVP_CIPHER_CTX_clear_flags(EVP_CIPHER_CTX
*ctx
, int flags
);
587 int EVP_CIPHER_CTX_test_flags(const EVP_CIPHER_CTX
*ctx
,int flags
);
589 int EVP_EncryptInit(EVP_CIPHER_CTX
*ctx
,const EVP_CIPHER
*cipher
,
590 const unsigned char *key
, const unsigned char *iv
);
591 int EVP_EncryptInit_ex(EVP_CIPHER_CTX
*ctx
,const EVP_CIPHER
*cipher
, ENGINE
*impl
,
592 const unsigned char *key
, const unsigned char *iv
);
593 int EVP_EncryptUpdate(EVP_CIPHER_CTX
*ctx
, unsigned char *out
,
594 int *outl
, const unsigned char *in
, int inl
);
595 int EVP_EncryptFinal_ex(EVP_CIPHER_CTX
*ctx
, unsigned char *out
, int *outl
);
596 int EVP_EncryptFinal(EVP_CIPHER_CTX
*ctx
, unsigned char *out
, int *outl
);
598 int EVP_DecryptInit(EVP_CIPHER_CTX
*ctx
,const EVP_CIPHER
*cipher
,
599 const unsigned char *key
, const unsigned char *iv
);
600 int EVP_DecryptInit_ex(EVP_CIPHER_CTX
*ctx
,const EVP_CIPHER
*cipher
, ENGINE
*impl
,
601 const unsigned char *key
, const unsigned char *iv
);
602 int EVP_DecryptUpdate(EVP_CIPHER_CTX
*ctx
, unsigned char *out
,
603 int *outl
, const unsigned char *in
, int inl
);
604 int EVP_DecryptFinal(EVP_CIPHER_CTX
*ctx
, unsigned char *outm
, int *outl
);
605 int EVP_DecryptFinal_ex(EVP_CIPHER_CTX
*ctx
, unsigned char *outm
, int *outl
);
607 int EVP_CipherInit(EVP_CIPHER_CTX
*ctx
,const EVP_CIPHER
*cipher
,
608 const unsigned char *key
,const unsigned char *iv
,
610 int EVP_CipherInit_ex(EVP_CIPHER_CTX
*ctx
,const EVP_CIPHER
*cipher
, ENGINE
*impl
,
611 const unsigned char *key
,const unsigned char *iv
,
613 int EVP_CipherUpdate(EVP_CIPHER_CTX
*ctx
, unsigned char *out
,
614 int *outl
, const unsigned char *in
, int inl
);
615 int EVP_CipherFinal(EVP_CIPHER_CTX
*ctx
, unsigned char *outm
, int *outl
);
616 int EVP_CipherFinal_ex(EVP_CIPHER_CTX
*ctx
, unsigned char *outm
, int *outl
);
618 int EVP_SignFinal(EVP_MD_CTX
*ctx
,unsigned char *md
,unsigned int *s
,
621 int EVP_VerifyFinal(EVP_MD_CTX
*ctx
,const unsigned char *sigbuf
,
622 unsigned int siglen
,EVP_PKEY
*pkey
);
624 int EVP_DigestSignInit(EVP_MD_CTX
*ctx
, EVP_PKEY_CTX
**pctx
,
625 const EVP_MD
*type
, ENGINE
*e
, EVP_PKEY
*pkey
);
626 int EVP_DigestSignFinal(EVP_MD_CTX
*ctx
,
627 unsigned char *sigret
, size_t *siglen
);
629 int EVP_DigestVerifyInit(EVP_MD_CTX
*ctx
, EVP_PKEY_CTX
**pctx
,
630 const EVP_MD
*type
, ENGINE
*e
, EVP_PKEY
*pkey
);
631 int EVP_DigestVerifyFinal(EVP_MD_CTX
*ctx
,
632 unsigned char *sig
, size_t siglen
);
634 int EVP_OpenInit(EVP_CIPHER_CTX
*ctx
,const EVP_CIPHER
*type
,
635 const unsigned char *ek
, int ekl
, const unsigned char *iv
,
637 int EVP_OpenFinal(EVP_CIPHER_CTX
*ctx
, unsigned char *out
, int *outl
);
639 int EVP_SealInit(EVP_CIPHER_CTX
*ctx
, const EVP_CIPHER
*type
,
640 unsigned char **ek
, int *ekl
, unsigned char *iv
,
641 EVP_PKEY
**pubk
, int npubk
);
642 int EVP_SealFinal(EVP_CIPHER_CTX
*ctx
,unsigned char *out
,int *outl
);
644 void EVP_EncodeInit(EVP_ENCODE_CTX
*ctx
);
645 void EVP_EncodeUpdate(EVP_ENCODE_CTX
*ctx
,unsigned char *out
,int *outl
,
646 const unsigned char *in
,int inl
);
647 void EVP_EncodeFinal(EVP_ENCODE_CTX
*ctx
,unsigned char *out
,int *outl
);
648 int EVP_EncodeBlock(unsigned char *t
, const unsigned char *f
, int n
);
650 void EVP_DecodeInit(EVP_ENCODE_CTX
*ctx
);
651 int EVP_DecodeUpdate(EVP_ENCODE_CTX
*ctx
,unsigned char *out
,int *outl
,
652 const unsigned char *in
, int inl
);
653 int EVP_DecodeFinal(EVP_ENCODE_CTX
*ctx
, unsigned
654 char *out
, int *outl
);
655 int EVP_DecodeBlock(unsigned char *t
, const unsigned char *f
, int n
);
657 void EVP_CIPHER_CTX_init(EVP_CIPHER_CTX
*a
);
658 int EVP_CIPHER_CTX_cleanup(EVP_CIPHER_CTX
*a
);
659 EVP_CIPHER_CTX
*EVP_CIPHER_CTX_new(void);
660 void EVP_CIPHER_CTX_free(EVP_CIPHER_CTX
*a
);
661 int EVP_CIPHER_CTX_set_key_length(EVP_CIPHER_CTX
*x
, int keylen
);
662 int EVP_CIPHER_CTX_set_padding(EVP_CIPHER_CTX
*c
, int pad
);
663 int EVP_CIPHER_CTX_ctrl(EVP_CIPHER_CTX
*ctx
, int type
, int arg
, void *ptr
);
664 int EVP_CIPHER_CTX_rand_key(EVP_CIPHER_CTX
*ctx
, unsigned char *key
);
666 #ifndef OPENSSL_NO_BIO
667 BIO_METHOD
*BIO_f_md(void);
668 BIO_METHOD
*BIO_f_base64(void);
669 BIO_METHOD
*BIO_f_cipher(void);
670 BIO_METHOD
*BIO_f_reliable(void);
671 void BIO_set_cipher(BIO
*b
,const EVP_CIPHER
*c
,const unsigned char *k
,
672 const unsigned char *i
, int enc
);
675 const EVP_MD
*EVP_md_null(void);
676 #ifndef OPENSSL_NO_MD2
677 const EVP_MD
*EVP_md2(void);
679 #ifndef OPENSSL_NO_MD4
680 const EVP_MD
*EVP_md4(void);
682 #ifndef OPENSSL_NO_MD5
683 const EVP_MD
*EVP_md5(void);
685 #ifndef OPENSSL_NO_SHA
686 const EVP_MD
*EVP_sha(void);
687 const EVP_MD
*EVP_sha1(void);
688 const EVP_MD
*EVP_dss(void);
689 const EVP_MD
*EVP_dss1(void);
690 const EVP_MD
*EVP_ecdsa(void);
692 #ifndef OPENSSL_NO_SHA256
693 const EVP_MD
*EVP_sha224(void);
694 const EVP_MD
*EVP_sha256(void);
696 #ifndef OPENSSL_NO_SHA512
697 const EVP_MD
*EVP_sha384(void);
698 const EVP_MD
*EVP_sha512(void);
700 #ifndef OPENSSL_NO_MDC2
701 const EVP_MD
*EVP_mdc2(void);
703 #ifndef OPENSSL_NO_RIPEMD
704 const EVP_MD
*EVP_ripemd160(void);
706 #ifndef OPENSSL_NO_WHIRLPOOL
707 const EVP_MD
*EVP_whirlpool(void);
709 const EVP_CIPHER
*EVP_enc_null(void); /* does nothing :-) */
710 #ifndef OPENSSL_NO_DES
711 const EVP_CIPHER
*EVP_des_ecb(void);
712 const EVP_CIPHER
*EVP_des_ede(void);
713 const EVP_CIPHER
*EVP_des_ede3(void);
714 const EVP_CIPHER
*EVP_des_ede_ecb(void);
715 const EVP_CIPHER
*EVP_des_ede3_ecb(void);
716 const EVP_CIPHER
*EVP_des_cfb64(void);
717 # define EVP_des_cfb EVP_des_cfb64
718 const EVP_CIPHER
*EVP_des_cfb1(void);
719 const EVP_CIPHER
*EVP_des_cfb8(void);
720 const EVP_CIPHER
*EVP_des_ede_cfb64(void);
721 # define EVP_des_ede_cfb EVP_des_ede_cfb64
723 const EVP_CIPHER
*EVP_des_ede_cfb1(void);
724 const EVP_CIPHER
*EVP_des_ede_cfb8(void);
726 const EVP_CIPHER
*EVP_des_ede3_cfb64(void);
727 # define EVP_des_ede3_cfb EVP_des_ede3_cfb64
728 const EVP_CIPHER
*EVP_des_ede3_cfb1(void);
729 const EVP_CIPHER
*EVP_des_ede3_cfb8(void);
730 const EVP_CIPHER
*EVP_des_ofb(void);
731 const EVP_CIPHER
*EVP_des_ede_ofb(void);
732 const EVP_CIPHER
*EVP_des_ede3_ofb(void);
733 const EVP_CIPHER
*EVP_des_cbc(void);
734 const EVP_CIPHER
*EVP_des_ede_cbc(void);
735 const EVP_CIPHER
*EVP_des_ede3_cbc(void);
736 const EVP_CIPHER
*EVP_desx_cbc(void);
737 const EVP_CIPHER
*EVP_des_ede3_wrap(void);
738 /* This should now be supported through the dev_crypto ENGINE. But also, why are
739 * rc4 and md5 declarations made here inside a "NO_DES" precompiler branch? */
741 # ifdef OPENSSL_OPENBSD_DEV_CRYPTO
742 const EVP_CIPHER
*EVP_dev_crypto_des_ede3_cbc(void);
743 const EVP_CIPHER
*EVP_dev_crypto_rc4(void);
744 const EVP_MD
*EVP_dev_crypto_md5(void);
748 #ifndef OPENSSL_NO_RC4
749 const EVP_CIPHER
*EVP_rc4(void);
750 const EVP_CIPHER
*EVP_rc4_40(void);
751 #ifndef OPENSSL_NO_MD5
752 const EVP_CIPHER
*EVP_rc4_hmac_md5(void);
755 #ifndef OPENSSL_NO_IDEA
756 const EVP_CIPHER
*EVP_idea_ecb(void);
757 const EVP_CIPHER
*EVP_idea_cfb64(void);
758 # define EVP_idea_cfb EVP_idea_cfb64
759 const EVP_CIPHER
*EVP_idea_ofb(void);
760 const EVP_CIPHER
*EVP_idea_cbc(void);
762 #ifndef OPENSSL_NO_RC2
763 const EVP_CIPHER
*EVP_rc2_ecb(void);
764 const EVP_CIPHER
*EVP_rc2_cbc(void);
765 const EVP_CIPHER
*EVP_rc2_40_cbc(void);
766 const EVP_CIPHER
*EVP_rc2_64_cbc(void);
767 const EVP_CIPHER
*EVP_rc2_cfb64(void);
768 # define EVP_rc2_cfb EVP_rc2_cfb64
769 const EVP_CIPHER
*EVP_rc2_ofb(void);
771 #ifndef OPENSSL_NO_BF
772 const EVP_CIPHER
*EVP_bf_ecb(void);
773 const EVP_CIPHER
*EVP_bf_cbc(void);
774 const EVP_CIPHER
*EVP_bf_cfb64(void);
775 # define EVP_bf_cfb EVP_bf_cfb64
776 const EVP_CIPHER
*EVP_bf_ofb(void);
778 #ifndef OPENSSL_NO_CAST
779 const EVP_CIPHER
*EVP_cast5_ecb(void);
780 const EVP_CIPHER
*EVP_cast5_cbc(void);
781 const EVP_CIPHER
*EVP_cast5_cfb64(void);
782 # define EVP_cast5_cfb EVP_cast5_cfb64
783 const EVP_CIPHER
*EVP_cast5_ofb(void);
785 #ifndef OPENSSL_NO_RC5
786 const EVP_CIPHER
*EVP_rc5_32_12_16_cbc(void);
787 const EVP_CIPHER
*EVP_rc5_32_12_16_ecb(void);
788 const EVP_CIPHER
*EVP_rc5_32_12_16_cfb64(void);
789 # define EVP_rc5_32_12_16_cfb EVP_rc5_32_12_16_cfb64
790 const EVP_CIPHER
*EVP_rc5_32_12_16_ofb(void);
792 #ifndef OPENSSL_NO_AES
793 const EVP_CIPHER
*EVP_aes_128_ecb(void);
794 const EVP_CIPHER
*EVP_aes_128_cbc(void);
795 const EVP_CIPHER
*EVP_aes_128_cfb1(void);
796 const EVP_CIPHER
*EVP_aes_128_cfb8(void);
797 const EVP_CIPHER
*EVP_aes_128_cfb128(void);
798 # define EVP_aes_128_cfb EVP_aes_128_cfb128
799 const EVP_CIPHER
*EVP_aes_128_ofb(void);
800 const EVP_CIPHER
*EVP_aes_128_ctr(void);
801 const EVP_CIPHER
*EVP_aes_128_ccm(void);
802 const EVP_CIPHER
*EVP_aes_128_gcm(void);
803 const EVP_CIPHER
*EVP_aes_128_xts(void);
804 const EVP_CIPHER
*EVP_aes_128_wrap(void);
805 const EVP_CIPHER
*EVP_aes_192_ecb(void);
806 const EVP_CIPHER
*EVP_aes_192_cbc(void);
807 const EVP_CIPHER
*EVP_aes_192_cfb1(void);
808 const EVP_CIPHER
*EVP_aes_192_cfb8(void);
809 const EVP_CIPHER
*EVP_aes_192_cfb128(void);
810 # define EVP_aes_192_cfb EVP_aes_192_cfb128
811 const EVP_CIPHER
*EVP_aes_192_ofb(void);
812 const EVP_CIPHER
*EVP_aes_192_ctr(void);
813 const EVP_CIPHER
*EVP_aes_192_ccm(void);
814 const EVP_CIPHER
*EVP_aes_192_gcm(void);
815 const EVP_CIPHER
*EVP_aes_192_wrap(void);
816 const EVP_CIPHER
*EVP_aes_256_ecb(void);
817 const EVP_CIPHER
*EVP_aes_256_cbc(void);
818 const EVP_CIPHER
*EVP_aes_256_cfb1(void);
819 const EVP_CIPHER
*EVP_aes_256_cfb8(void);
820 const EVP_CIPHER
*EVP_aes_256_cfb128(void);
821 # define EVP_aes_256_cfb EVP_aes_256_cfb128
822 const EVP_CIPHER
*EVP_aes_256_ofb(void);
823 const EVP_CIPHER
*EVP_aes_256_ctr(void);
824 const EVP_CIPHER
*EVP_aes_256_ccm(void);
825 const EVP_CIPHER
*EVP_aes_256_gcm(void);
826 const EVP_CIPHER
*EVP_aes_256_xts(void);
827 const EVP_CIPHER
*EVP_aes_256_wrap(void);
828 # if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA1)
829 const EVP_CIPHER
*EVP_aes_128_cbc_hmac_sha1(void);
830 const EVP_CIPHER
*EVP_aes_256_cbc_hmac_sha1(void);
832 # ifndef OPENSSL_NO_SHA256
833 const EVP_CIPHER
*EVP_aes_128_cbc_hmac_sha256(void);
834 const EVP_CIPHER
*EVP_aes_256_cbc_hmac_sha256(void);
837 #ifndef OPENSSL_NO_CAMELLIA
838 const EVP_CIPHER
*EVP_camellia_128_ecb(void);
839 const EVP_CIPHER
*EVP_camellia_128_cbc(void);
840 const EVP_CIPHER
*EVP_camellia_128_cfb1(void);
841 const EVP_CIPHER
*EVP_camellia_128_cfb8(void);
842 const EVP_CIPHER
*EVP_camellia_128_cfb128(void);
843 # define EVP_camellia_128_cfb EVP_camellia_128_cfb128
844 const EVP_CIPHER
*EVP_camellia_128_ofb(void);
845 const EVP_CIPHER
*EVP_camellia_192_ecb(void);
846 const EVP_CIPHER
*EVP_camellia_192_cbc(void);
847 const EVP_CIPHER
*EVP_camellia_192_cfb1(void);
848 const EVP_CIPHER
*EVP_camellia_192_cfb8(void);
849 const EVP_CIPHER
*EVP_camellia_192_cfb128(void);
850 # define EVP_camellia_192_cfb EVP_camellia_192_cfb128
851 const EVP_CIPHER
*EVP_camellia_192_ofb(void);
852 const EVP_CIPHER
*EVP_camellia_256_ecb(void);
853 const EVP_CIPHER
*EVP_camellia_256_cbc(void);
854 const EVP_CIPHER
*EVP_camellia_256_cfb1(void);
855 const EVP_CIPHER
*EVP_camellia_256_cfb8(void);
856 const EVP_CIPHER
*EVP_camellia_256_cfb128(void);
857 # define EVP_camellia_256_cfb EVP_camellia_256_cfb128
858 const EVP_CIPHER
*EVP_camellia_256_ofb(void);
861 #ifndef OPENSSL_NO_SEED
862 const EVP_CIPHER
*EVP_seed_ecb(void);
863 const EVP_CIPHER
*EVP_seed_cbc(void);
864 const EVP_CIPHER
*EVP_seed_cfb128(void);
865 # define EVP_seed_cfb EVP_seed_cfb128
866 const EVP_CIPHER
*EVP_seed_ofb(void);
869 void OPENSSL_add_all_algorithms_noconf(void);
870 void OPENSSL_add_all_algorithms_conf(void);
872 #ifdef OPENSSL_LOAD_CONF
873 #define OpenSSL_add_all_algorithms() \
874 OPENSSL_add_all_algorithms_conf()
876 #define OpenSSL_add_all_algorithms() \
877 OPENSSL_add_all_algorithms_noconf()
880 void OpenSSL_add_all_ciphers(void);
881 void OpenSSL_add_all_digests(void);
882 #define SSLeay_add_all_algorithms() OpenSSL_add_all_algorithms()
883 #define SSLeay_add_all_ciphers() OpenSSL_add_all_ciphers()
884 #define SSLeay_add_all_digests() OpenSSL_add_all_digests()
886 int EVP_add_cipher(const EVP_CIPHER
*cipher
);
887 int EVP_add_digest(const EVP_MD
*digest
);
889 const EVP_CIPHER
*EVP_get_cipherbyname(const char *name
);
890 const EVP_MD
*EVP_get_digestbyname(const char *name
);
891 void EVP_cleanup(void);
893 void EVP_CIPHER_do_all(void (*fn
)(const EVP_CIPHER
*ciph
,
894 const char *from
, const char *to
, void *x
), void *arg
);
895 void EVP_CIPHER_do_all_sorted(void (*fn
)(const EVP_CIPHER
*ciph
,
896 const char *from
, const char *to
, void *x
), void *arg
);
898 void EVP_MD_do_all(void (*fn
)(const EVP_MD
*ciph
,
899 const char *from
, const char *to
, void *x
), void *arg
);
900 void EVP_MD_do_all_sorted(void (*fn
)(const EVP_MD
*ciph
,
901 const char *from
, const char *to
, void *x
), void *arg
);
903 int EVP_PKEY_decrypt_old(unsigned char *dec_key
,
904 const unsigned char *enc_key
,int enc_key_len
,
905 EVP_PKEY
*private_key
);
906 int EVP_PKEY_encrypt_old(unsigned char *enc_key
,
907 const unsigned char *key
,int key_len
,
909 int EVP_PKEY_type(int type
);
910 int EVP_PKEY_id(const EVP_PKEY
*pkey
);
911 int EVP_PKEY_base_id(const EVP_PKEY
*pkey
);
912 int EVP_PKEY_bits(EVP_PKEY
*pkey
);
913 int EVP_PKEY_size(EVP_PKEY
*pkey
);
914 int EVP_PKEY_set_type(EVP_PKEY
*pkey
,int type
);
915 int EVP_PKEY_set_type_str(EVP_PKEY
*pkey
, const char *str
, int len
);
916 int EVP_PKEY_assign(EVP_PKEY
*pkey
,int type
,void *key
);
917 void * EVP_PKEY_get0(EVP_PKEY
*pkey
);
919 #ifndef OPENSSL_NO_RSA
921 int EVP_PKEY_set1_RSA(EVP_PKEY
*pkey
,struct rsa_st
*key
);
922 struct rsa_st
*EVP_PKEY_get1_RSA(EVP_PKEY
*pkey
);
924 #ifndef OPENSSL_NO_DSA
926 int EVP_PKEY_set1_DSA(EVP_PKEY
*pkey
,struct dsa_st
*key
);
927 struct dsa_st
*EVP_PKEY_get1_DSA(EVP_PKEY
*pkey
);
929 #ifndef OPENSSL_NO_DH
931 int EVP_PKEY_set1_DH(EVP_PKEY
*pkey
,struct dh_st
*key
);
932 struct dh_st
*EVP_PKEY_get1_DH(EVP_PKEY
*pkey
);
934 #ifndef OPENSSL_NO_EC
936 int EVP_PKEY_set1_EC_KEY(EVP_PKEY
*pkey
,struct ec_key_st
*key
);
937 struct ec_key_st
*EVP_PKEY_get1_EC_KEY(EVP_PKEY
*pkey
);
940 EVP_PKEY
* EVP_PKEY_new(void);
941 void EVP_PKEY_free(EVP_PKEY
*pkey
);
943 EVP_PKEY
* d2i_PublicKey(int type
,EVP_PKEY
**a
, const unsigned char **pp
,
945 int i2d_PublicKey(EVP_PKEY
*a
, unsigned char **pp
);
947 EVP_PKEY
* d2i_PrivateKey(int type
,EVP_PKEY
**a
, const unsigned char **pp
,
949 EVP_PKEY
* d2i_AutoPrivateKey(EVP_PKEY
**a
, const unsigned char **pp
,
951 int i2d_PrivateKey(EVP_PKEY
*a
, unsigned char **pp
);
953 int EVP_PKEY_copy_parameters(EVP_PKEY
*to
, const EVP_PKEY
*from
);
954 int EVP_PKEY_missing_parameters(const EVP_PKEY
*pkey
);
955 int EVP_PKEY_save_parameters(EVP_PKEY
*pkey
,int mode
);
956 int EVP_PKEY_cmp_parameters(const EVP_PKEY
*a
, const EVP_PKEY
*b
);
958 int EVP_PKEY_cmp(const EVP_PKEY
*a
, const EVP_PKEY
*b
);
960 int EVP_PKEY_print_public(BIO
*out
, const EVP_PKEY
*pkey
,
961 int indent
, ASN1_PCTX
*pctx
);
962 int EVP_PKEY_print_private(BIO
*out
, const EVP_PKEY
*pkey
,
963 int indent
, ASN1_PCTX
*pctx
);
964 int EVP_PKEY_print_params(BIO
*out
, const EVP_PKEY
*pkey
,
965 int indent
, ASN1_PCTX
*pctx
);
967 int EVP_PKEY_get_default_digest_nid(EVP_PKEY
*pkey
, int *pnid
);
969 int EVP_CIPHER_type(const EVP_CIPHER
*ctx
);
972 int EVP_CIPHER_param_to_asn1(EVP_CIPHER_CTX
*c
, ASN1_TYPE
*type
);
973 int EVP_CIPHER_asn1_to_param(EVP_CIPHER_CTX
*c
, ASN1_TYPE
*type
);
975 /* These are used by EVP_CIPHER methods */
976 int EVP_CIPHER_set_asn1_iv(EVP_CIPHER_CTX
*c
,ASN1_TYPE
*type
);
977 int EVP_CIPHER_get_asn1_iv(EVP_CIPHER_CTX
*c
,ASN1_TYPE
*type
);
979 /* PKCS5 password based encryption */
980 int PKCS5_PBE_keyivgen(EVP_CIPHER_CTX
*ctx
, const char *pass
, int passlen
,
981 ASN1_TYPE
*param
, const EVP_CIPHER
*cipher
, const EVP_MD
*md
,
983 int PKCS5_PBKDF2_HMAC_SHA1(const char *pass
, int passlen
,
984 const unsigned char *salt
, int saltlen
, int iter
,
985 int keylen
, unsigned char *out
);
986 int PKCS5_PBKDF2_HMAC(const char *pass
, int passlen
,
987 const unsigned char *salt
, int saltlen
, int iter
,
988 const EVP_MD
*digest
,
989 int keylen
, unsigned char *out
);
990 int PKCS5_v2_PBE_keyivgen(EVP_CIPHER_CTX
*ctx
, const char *pass
, int passlen
,
991 ASN1_TYPE
*param
, const EVP_CIPHER
*cipher
, const EVP_MD
*md
,
994 void PKCS5_PBE_add(void);
996 int EVP_PBE_CipherInit (ASN1_OBJECT
*pbe_obj
, const char *pass
, int passlen
,
997 ASN1_TYPE
*param
, EVP_CIPHER_CTX
*ctx
, int en_de
);
1001 /* Can appear as the outermost AlgorithmIdentifier */
1002 #define EVP_PBE_TYPE_OUTER 0x0
1003 /* Is an PRF type OID */
1004 #define EVP_PBE_TYPE_PRF 0x1
1006 int EVP_PBE_alg_add_type(int pbe_type
, int pbe_nid
, int cipher_nid
, int md_nid
,
1007 EVP_PBE_KEYGEN
*keygen
);
1008 int EVP_PBE_alg_add(int nid
, const EVP_CIPHER
*cipher
, const EVP_MD
*md
,
1009 EVP_PBE_KEYGEN
*keygen
);
1010 int EVP_PBE_find(int type
, int pbe_nid
,
1011 int *pcnid
, int *pmnid
, EVP_PBE_KEYGEN
**pkeygen
);
1012 void EVP_PBE_cleanup(void);
1014 #define ASN1_PKEY_ALIAS 0x1
1015 #define ASN1_PKEY_DYNAMIC 0x2
1016 #define ASN1_PKEY_SIGPARAM_NULL 0x4
1018 #define ASN1_PKEY_CTRL_PKCS7_SIGN 0x1
1019 #define ASN1_PKEY_CTRL_PKCS7_ENCRYPT 0x2
1020 #define ASN1_PKEY_CTRL_DEFAULT_MD_NID 0x3
1021 #define ASN1_PKEY_CTRL_CMS_SIGN 0x5
1022 #define ASN1_PKEY_CTRL_CMS_ENVELOPE 0x7
1023 #define ASN1_PKEY_CTRL_CMS_RI_TYPE 0x8
1025 int EVP_PKEY_asn1_get_count(void);
1026 const EVP_PKEY_ASN1_METHOD
*EVP_PKEY_asn1_get0(int idx
);
1027 const EVP_PKEY_ASN1_METHOD
*EVP_PKEY_asn1_find(ENGINE
**pe
, int type
);
1028 const EVP_PKEY_ASN1_METHOD
*EVP_PKEY_asn1_find_str(ENGINE
**pe
,
1029 const char *str
, int len
);
1030 int EVP_PKEY_asn1_add0(const EVP_PKEY_ASN1_METHOD
*ameth
);
1031 int EVP_PKEY_asn1_add_alias(int to
, int from
);
1032 int EVP_PKEY_asn1_get0_info(int *ppkey_id
, int *pkey_base_id
, int *ppkey_flags
,
1033 const char **pinfo
, const char **ppem_str
,
1034 const EVP_PKEY_ASN1_METHOD
*ameth
);
1036 const EVP_PKEY_ASN1_METHOD
* EVP_PKEY_get0_asn1(EVP_PKEY
*pkey
);
1037 EVP_PKEY_ASN1_METHOD
* EVP_PKEY_asn1_new(int id
, int flags
,
1038 const char *pem_str
, const char *info
);
1039 void EVP_PKEY_asn1_copy(EVP_PKEY_ASN1_METHOD
*dst
,
1040 const EVP_PKEY_ASN1_METHOD
*src
);
1041 void EVP_PKEY_asn1_free(EVP_PKEY_ASN1_METHOD
*ameth
);
1042 void EVP_PKEY_asn1_set_public(EVP_PKEY_ASN1_METHOD
*ameth
,
1043 int (*pub_decode
)(EVP_PKEY
*pk
, X509_PUBKEY
*pub
),
1044 int (*pub_encode
)(X509_PUBKEY
*pub
, const EVP_PKEY
*pk
),
1045 int (*pub_cmp
)(const EVP_PKEY
*a
, const EVP_PKEY
*b
),
1046 int (*pub_print
)(BIO
*out
, const EVP_PKEY
*pkey
, int indent
,
1048 int (*pkey_size
)(const EVP_PKEY
*pk
),
1049 int (*pkey_bits
)(const EVP_PKEY
*pk
));
1050 void EVP_PKEY_asn1_set_private(EVP_PKEY_ASN1_METHOD
*ameth
,
1051 int (*priv_decode
)(EVP_PKEY
*pk
, PKCS8_PRIV_KEY_INFO
*p8inf
),
1052 int (*priv_encode
)(PKCS8_PRIV_KEY_INFO
*p8
, const EVP_PKEY
*pk
),
1053 int (*priv_print
)(BIO
*out
, const EVP_PKEY
*pkey
, int indent
,
1055 void EVP_PKEY_asn1_set_param(EVP_PKEY_ASN1_METHOD
*ameth
,
1056 int (*param_decode
)(EVP_PKEY
*pkey
,
1057 const unsigned char **pder
, int derlen
),
1058 int (*param_encode
)(const EVP_PKEY
*pkey
, unsigned char **pder
),
1059 int (*param_missing
)(const EVP_PKEY
*pk
),
1060 int (*param_copy
)(EVP_PKEY
*to
, const EVP_PKEY
*from
),
1061 int (*param_cmp
)(const EVP_PKEY
*a
, const EVP_PKEY
*b
),
1062 int (*param_print
)(BIO
*out
, const EVP_PKEY
*pkey
, int indent
,
1065 void EVP_PKEY_asn1_set_free(EVP_PKEY_ASN1_METHOD
*ameth
,
1066 void (*pkey_free
)(EVP_PKEY
*pkey
));
1067 void EVP_PKEY_asn1_set_ctrl(EVP_PKEY_ASN1_METHOD
*ameth
,
1068 int (*pkey_ctrl
)(EVP_PKEY
*pkey
, int op
,
1069 long arg1
, void *arg2
));
1072 #define EVP_PKEY_OP_UNDEFINED 0
1073 #define EVP_PKEY_OP_PARAMGEN (1<<1)
1074 #define EVP_PKEY_OP_KEYGEN (1<<2)
1075 #define EVP_PKEY_OP_SIGN (1<<3)
1076 #define EVP_PKEY_OP_VERIFY (1<<4)
1077 #define EVP_PKEY_OP_VERIFYRECOVER (1<<5)
1078 #define EVP_PKEY_OP_SIGNCTX (1<<6)
1079 #define EVP_PKEY_OP_VERIFYCTX (1<<7)
1080 #define EVP_PKEY_OP_ENCRYPT (1<<8)
1081 #define EVP_PKEY_OP_DECRYPT (1<<9)
1082 #define EVP_PKEY_OP_DERIVE (1<<10)
1084 #define EVP_PKEY_OP_TYPE_SIG \
1085 (EVP_PKEY_OP_SIGN | EVP_PKEY_OP_VERIFY | EVP_PKEY_OP_VERIFYRECOVER \
1086 | EVP_PKEY_OP_SIGNCTX | EVP_PKEY_OP_VERIFYCTX)
1088 #define EVP_PKEY_OP_TYPE_CRYPT \
1089 (EVP_PKEY_OP_ENCRYPT | EVP_PKEY_OP_DECRYPT)
1091 #define EVP_PKEY_OP_TYPE_NOGEN \
1092 (EVP_PKEY_OP_SIG | EVP_PKEY_OP_CRYPT | EVP_PKEY_OP_DERIVE)
1094 #define EVP_PKEY_OP_TYPE_GEN \
1095 (EVP_PKEY_OP_PARAMGEN | EVP_PKEY_OP_KEYGEN)
1097 #define EVP_PKEY_CTX_set_signature_md(ctx, md) \
1098 EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, \
1099 EVP_PKEY_CTRL_MD, 0, (void *)md)
1101 #define EVP_PKEY_CTX_get_signature_md(ctx, pmd) \
1102 EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, \
1103 EVP_PKEY_CTRL_GET_MD, 0, (void *)pmd)
1105 #define EVP_PKEY_CTRL_MD 1
1106 #define EVP_PKEY_CTRL_PEER_KEY 2
1108 #define EVP_PKEY_CTRL_PKCS7_ENCRYPT 3
1109 #define EVP_PKEY_CTRL_PKCS7_DECRYPT 4
1111 #define EVP_PKEY_CTRL_PKCS7_SIGN 5
1113 #define EVP_PKEY_CTRL_SET_MAC_KEY 6
1115 #define EVP_PKEY_CTRL_DIGESTINIT 7
1117 /* Used by GOST key encryption in TLS */
1118 #define EVP_PKEY_CTRL_SET_IV 8
1120 #define EVP_PKEY_CTRL_CMS_ENCRYPT 9
1121 #define EVP_PKEY_CTRL_CMS_DECRYPT 10
1122 #define EVP_PKEY_CTRL_CMS_SIGN 11
1124 #define EVP_PKEY_CTRL_CIPHER 12
1126 #define EVP_PKEY_CTRL_GET_MD 13
1128 #define EVP_PKEY_ALG_CTRL 0x1000
1131 #define EVP_PKEY_FLAG_AUTOARGLEN 2
1132 /* Method handles all operations: don't assume any digest related
1135 #define EVP_PKEY_FLAG_SIGCTX_CUSTOM 4
1137 const EVP_PKEY_METHOD
*EVP_PKEY_meth_find(int type
);
1138 EVP_PKEY_METHOD
* EVP_PKEY_meth_new(int id
, int flags
);
1139 void EVP_PKEY_meth_get0_info(int *ppkey_id
, int *pflags
,
1140 const EVP_PKEY_METHOD
*meth
);
1141 void EVP_PKEY_meth_copy(EVP_PKEY_METHOD
*dst
, const EVP_PKEY_METHOD
*src
);
1142 void EVP_PKEY_meth_free(EVP_PKEY_METHOD
*pmeth
);
1143 int EVP_PKEY_meth_add0(const EVP_PKEY_METHOD
*pmeth
);
1145 EVP_PKEY_CTX
*EVP_PKEY_CTX_new(EVP_PKEY
*pkey
, ENGINE
*e
);
1146 EVP_PKEY_CTX
*EVP_PKEY_CTX_new_id(int id
, ENGINE
*e
);
1147 EVP_PKEY_CTX
*EVP_PKEY_CTX_dup(EVP_PKEY_CTX
*ctx
);
1148 void EVP_PKEY_CTX_free(EVP_PKEY_CTX
*ctx
);
1150 int EVP_PKEY_CTX_ctrl(EVP_PKEY_CTX
*ctx
, int keytype
, int optype
,
1151 int cmd
, int p1
, void *p2
);
1152 int EVP_PKEY_CTX_ctrl_str(EVP_PKEY_CTX
*ctx
, const char *type
,
1155 int EVP_PKEY_CTX_get_operation(EVP_PKEY_CTX
*ctx
);
1156 void EVP_PKEY_CTX_set0_keygen_info(EVP_PKEY_CTX
*ctx
, int *dat
, int datlen
);
1158 EVP_PKEY
*EVP_PKEY_new_mac_key(int type
, ENGINE
*e
,
1159 const unsigned char *key
, int keylen
);
1161 void EVP_PKEY_CTX_set_data(EVP_PKEY_CTX
*ctx
, void *data
);
1162 void *EVP_PKEY_CTX_get_data(EVP_PKEY_CTX
*ctx
);
1163 EVP_PKEY
*EVP_PKEY_CTX_get0_pkey(EVP_PKEY_CTX
*ctx
);
1165 EVP_PKEY
*EVP_PKEY_CTX_get0_peerkey(EVP_PKEY_CTX
*ctx
);
1167 void EVP_PKEY_CTX_set_app_data(EVP_PKEY_CTX
*ctx
, void *data
);
1168 void *EVP_PKEY_CTX_get_app_data(EVP_PKEY_CTX
*ctx
);
1170 int EVP_PKEY_sign_init(EVP_PKEY_CTX
*ctx
);
1171 int EVP_PKEY_sign(EVP_PKEY_CTX
*ctx
,
1172 unsigned char *sig
, size_t *siglen
,
1173 const unsigned char *tbs
, size_t tbslen
);
1174 int EVP_PKEY_verify_init(EVP_PKEY_CTX
*ctx
);
1175 int EVP_PKEY_verify(EVP_PKEY_CTX
*ctx
,
1176 const unsigned char *sig
, size_t siglen
,
1177 const unsigned char *tbs
, size_t tbslen
);
1178 int EVP_PKEY_verify_recover_init(EVP_PKEY_CTX
*ctx
);
1179 int EVP_PKEY_verify_recover(EVP_PKEY_CTX
*ctx
,
1180 unsigned char *rout
, size_t *routlen
,
1181 const unsigned char *sig
, size_t siglen
);
1182 int EVP_PKEY_encrypt_init(EVP_PKEY_CTX
*ctx
);
1183 int EVP_PKEY_encrypt(EVP_PKEY_CTX
*ctx
,
1184 unsigned char *out
, size_t *outlen
,
1185 const unsigned char *in
, size_t inlen
);
1186 int EVP_PKEY_decrypt_init(EVP_PKEY_CTX
*ctx
);
1187 int EVP_PKEY_decrypt(EVP_PKEY_CTX
*ctx
,
1188 unsigned char *out
, size_t *outlen
,
1189 const unsigned char *in
, size_t inlen
);
1191 int EVP_PKEY_derive_init(EVP_PKEY_CTX
*ctx
);
1192 int EVP_PKEY_derive_set_peer(EVP_PKEY_CTX
*ctx
, EVP_PKEY
*peer
);
1193 int EVP_PKEY_derive(EVP_PKEY_CTX
*ctx
, unsigned char *key
, size_t *keylen
);
1195 typedef int EVP_PKEY_gen_cb(EVP_PKEY_CTX
*ctx
);
1197 int EVP_PKEY_paramgen_init(EVP_PKEY_CTX
*ctx
);
1198 int EVP_PKEY_paramgen(EVP_PKEY_CTX
*ctx
, EVP_PKEY
**ppkey
);
1199 int EVP_PKEY_keygen_init(EVP_PKEY_CTX
*ctx
);
1200 int EVP_PKEY_keygen(EVP_PKEY_CTX
*ctx
, EVP_PKEY
**ppkey
);
1202 void EVP_PKEY_CTX_set_cb(EVP_PKEY_CTX
*ctx
, EVP_PKEY_gen_cb
*cb
);
1203 EVP_PKEY_gen_cb
*EVP_PKEY_CTX_get_cb(EVP_PKEY_CTX
*ctx
);
1205 int EVP_PKEY_CTX_get_keygen_info(EVP_PKEY_CTX
*ctx
, int idx
);
1207 void EVP_PKEY_meth_set_init(EVP_PKEY_METHOD
*pmeth
,
1208 int (*init
)(EVP_PKEY_CTX
*ctx
));
1210 void EVP_PKEY_meth_set_copy(EVP_PKEY_METHOD
*pmeth
,
1211 int (*copy
)(EVP_PKEY_CTX
*dst
, EVP_PKEY_CTX
*src
));
1213 void EVP_PKEY_meth_set_cleanup(EVP_PKEY_METHOD
*pmeth
,
1214 void (*cleanup
)(EVP_PKEY_CTX
*ctx
));
1216 void EVP_PKEY_meth_set_paramgen(EVP_PKEY_METHOD
*pmeth
,
1217 int (*paramgen_init
)(EVP_PKEY_CTX
*ctx
),
1218 int (*paramgen
)(EVP_PKEY_CTX
*ctx
, EVP_PKEY
*pkey
));
1220 void EVP_PKEY_meth_set_keygen(EVP_PKEY_METHOD
*pmeth
,
1221 int (*keygen_init
)(EVP_PKEY_CTX
*ctx
),
1222 int (*keygen
)(EVP_PKEY_CTX
*ctx
, EVP_PKEY
*pkey
));
1224 void EVP_PKEY_meth_set_sign(EVP_PKEY_METHOD
*pmeth
,
1225 int (*sign_init
)(EVP_PKEY_CTX
*ctx
),
1226 int (*sign
)(EVP_PKEY_CTX
*ctx
, unsigned char *sig
, size_t *siglen
,
1227 const unsigned char *tbs
, size_t tbslen
));
1229 void EVP_PKEY_meth_set_verify(EVP_PKEY_METHOD
*pmeth
,
1230 int (*verify_init
)(EVP_PKEY_CTX
*ctx
),
1231 int (*verify
)(EVP_PKEY_CTX
*ctx
, const unsigned char *sig
, size_t siglen
,
1232 const unsigned char *tbs
, size_t tbslen
));
1234 void EVP_PKEY_meth_set_verify_recover(EVP_PKEY_METHOD
*pmeth
,
1235 int (*verify_recover_init
)(EVP_PKEY_CTX
*ctx
),
1236 int (*verify_recover
)(EVP_PKEY_CTX
*ctx
,
1237 unsigned char *sig
, size_t *siglen
,
1238 const unsigned char *tbs
, size_t tbslen
));
1240 void EVP_PKEY_meth_set_signctx(EVP_PKEY_METHOD
*pmeth
,
1241 int (*signctx_init
)(EVP_PKEY_CTX
*ctx
, EVP_MD_CTX
*mctx
),
1242 int (*signctx
)(EVP_PKEY_CTX
*ctx
, unsigned char *sig
, size_t *siglen
,
1245 void EVP_PKEY_meth_set_verifyctx(EVP_PKEY_METHOD
*pmeth
,
1246 int (*verifyctx_init
)(EVP_PKEY_CTX
*ctx
, EVP_MD_CTX
*mctx
),
1247 int (*verifyctx
)(EVP_PKEY_CTX
*ctx
, const unsigned char *sig
,int siglen
,
1250 void EVP_PKEY_meth_set_encrypt(EVP_PKEY_METHOD
*pmeth
,
1251 int (*encrypt_init
)(EVP_PKEY_CTX
*ctx
),
1252 int (*encryptfn
)(EVP_PKEY_CTX
*ctx
, unsigned char *out
, size_t *outlen
,
1253 const unsigned char *in
, size_t inlen
));
1255 void EVP_PKEY_meth_set_decrypt(EVP_PKEY_METHOD
*pmeth
,
1256 int (*decrypt_init
)(EVP_PKEY_CTX
*ctx
),
1257 int (*decrypt
)(EVP_PKEY_CTX
*ctx
, unsigned char *out
, size_t *outlen
,
1258 const unsigned char *in
, size_t inlen
));
1260 void EVP_PKEY_meth_set_derive(EVP_PKEY_METHOD
*pmeth
,
1261 int (*derive_init
)(EVP_PKEY_CTX
*ctx
),
1262 int (*derive
)(EVP_PKEY_CTX
*ctx
, unsigned char *key
, size_t *keylen
));
1264 void EVP_PKEY_meth_set_ctrl(EVP_PKEY_METHOD
*pmeth
,
1265 int (*ctrl
)(EVP_PKEY_CTX
*ctx
, int type
, int p1
, void *p2
),
1266 int (*ctrl_str
)(EVP_PKEY_CTX
*ctx
,
1267 const char *type
, const char *value
));
1269 /* Authenticated Encryption with Additional Data.
1271 * AEAD couples confidentiality and integrity in a single primtive. AEAD
1272 * algorithms take a key and then can seal and open individual messages. Each
1273 * message has a unique, per-message nonce and, optionally, additional data
1274 * which is authenticated but not included in the output. */
1277 typedef struct evp_aead_st EVP_AEAD
;
1279 #ifndef OPENSSL_NO_AES
1280 /* EVP_aes_128_gcm is AES-128 in Galois Counter Mode. */
1281 const EVP_AEAD
*EVP_aead_aes_128_gcm(void);
1282 /* EVP_aes_256_gcm is AES-256 in Galois Counter Mode. */
1283 const EVP_AEAD
*EVP_aead_aes_256_gcm(void);
1286 #if !defined(OPENSSL_NO_CHACHA) && !defined(OPENSSL_NO_POLY1305)
1287 /* EVP_aead_chacha20_poly1305 is ChaCha20 with a Poly1305 authenticator. */
1288 const EVP_AEAD
*EVP_aead_chacha20_poly1305(void);
1291 /* EVP_AEAD_key_length returns the length, in bytes, of the keys used by
1293 size_t EVP_AEAD_key_length(const EVP_AEAD
*aead
);
1295 /* EVP_AEAD_nonce_length returns the length, in bytes, of the per-message nonce
1297 size_t EVP_AEAD_nonce_length(const EVP_AEAD
*aead
);
1299 /* EVP_AEAD_max_overhead returns the maximum number of additional bytes added
1300 * by the act of sealing data with |aead|. */
1301 size_t EVP_AEAD_max_overhead(const EVP_AEAD
*aead
);
1303 /* EVP_AEAD_max_tag_len returns the maximum tag length when using |aead|. This
1304 * is the largest value that can be passed as |tag_len| to
1305 * |EVP_AEAD_CTX_init|. */
1306 size_t EVP_AEAD_max_tag_len(const EVP_AEAD
*aead
);
1308 /* An EVP_AEAD_CTX represents an AEAD algorithm configured with a specific key
1309 * and message-independent IV. */
1310 typedef struct evp_aead_ctx_st
{
1311 const EVP_AEAD
*aead
;
1312 /* aead_state is an opaque pointer to whatever state the AEAD needs to
1317 #define EVP_AEAD_DEFAULT_TAG_LENGTH 0
1319 /* EVP_AEAD_init initializes |ctx| for the given AEAD algorithm from |impl|.
1320 * The |impl| argument may be NULL to choose the default implementation.
1321 * Authentication tags may be truncated by passing a size as |tag_len|. A
1322 * |tag_len| of zero indicates the default tag length and this is defined as
1323 * EVP_AEAD_DEFAULT_TAG_LENGTH for readability.
1324 * Returns 1 on success. Otherwise returns 0 and pushes to the error stack. */
1325 int EVP_AEAD_CTX_init(EVP_AEAD_CTX
*ctx
, const EVP_AEAD
*aead
,
1326 const unsigned char *key
, size_t key_len
,
1327 size_t tag_len
, ENGINE
*impl
);
1329 /* EVP_AEAD_CTX_cleanup frees any data allocated by |ctx|. */
1330 void EVP_AEAD_CTX_cleanup(EVP_AEAD_CTX
*ctx
);
1332 /* EVP_AEAD_CTX_seal encrypts and authenticates |in_len| bytes from |in| and
1333 * authenticates |ad_len| bytes from |ad| and writes the result to |out|,
1334 * returning the number of bytes written, or -1 on error.
1336 * This function may be called (with the same EVP_AEAD_CTX) concurrently with
1337 * itself or EVP_AEAD_CTX_open.
1339 * At most |max_out_len| bytes are written to |out| and, in order to ensure
1340 * success, |max_out_len| should be |in_len| plus the result of
1341 * EVP_AEAD_overhead.
1343 * The length of |nonce|, |nonce_len|, must be equal to the result of
1344 * EVP_AEAD_nonce_length for this AEAD.
1346 * EVP_AEAD_CTX_seal never results in a partial output. If |max_out_len| is
1347 * insufficient, -1 will be returned.
1349 * If |in| and |out| alias then |out| must be <= |in|. */
1350 ssize_t
EVP_AEAD_CTX_seal(const EVP_AEAD_CTX
*ctx
,
1351 unsigned char *out
, size_t max_out_len
,
1352 const unsigned char *nonce
, size_t nonce_len
,
1353 const unsigned char *in
, size_t in_len
,
1354 const unsigned char *ad
, size_t ad_len
);
1356 /* EVP_AEAD_CTX_open authenticates |in_len| bytes from |in| and |ad_len| bytes
1357 * from |ad| and decrypts at most |in_len| bytes into |out|. It returns the
1358 * number of bytes written, or -1 on error.
1360 * This function may be called (with the same EVP_AEAD_CTX) concurrently with
1361 * itself or EVP_AEAD_CTX_seal.
1363 * At most |in_len| bytes are written to |out|. In order to ensure success,
1364 * |max_out_len| should be at least |in_len|.
1366 * The length of |nonce|, |nonce_len|, must be equal to the result of
1367 * EVP_AEAD_nonce_length for this AEAD.
1369 * EVP_AEAD_CTX_open never results in a partial output. If |max_out_len| is
1370 * insufficient, -1 will be returned.
1372 * If |in| and |out| alias then |out| must be <= |in|. */
1373 ssize_t
EVP_AEAD_CTX_open(const EVP_AEAD_CTX
*ctx
,
1374 unsigned char *out
, size_t max_out_len
,
1375 const unsigned char *nonce
, size_t nonce_len
,
1376 const unsigned char *in
, size_t in_len
,
1377 const unsigned char *ad
, size_t ad_len
);
1379 void EVP_add_alg_module(void);
1381 /* BEGIN ERROR CODES */
1382 /* The following lines are auto generated by the script mkerr.pl. Any changes
1383 * made after this point may be overwritten when the script is next run.
1385 void ERR_load_EVP_strings(void);
1387 /* Error codes for the EVP functions. */
1389 /* Function codes. */
1390 #define EVP_F_AEAD_AES_GCM_INIT 187
1391 #define EVP_F_AEAD_AES_GCM_OPEN 188
1392 #define EVP_F_AEAD_AES_GCM_SEAL 189
1393 #define EVP_F_AEAD_CHACHA20_POLY1305_INIT 192
1394 #define EVP_F_AEAD_CHACHA20_POLY1305_OPEN 193
1395 #define EVP_F_AEAD_CHACHA20_POLY1305_SEAL 194
1396 #define EVP_F_AEAD_CTX_OPEN 185
1397 #define EVP_F_AEAD_CTX_SEAL 186
1398 #define EVP_F_AESNI_INIT_KEY 165
1399 #define EVP_F_AESNI_XTS_CIPHER 176
1400 #define EVP_F_AES_INIT_KEY 133
1401 #define EVP_F_AES_T4_INIT_KEY 178
1402 #define EVP_F_AES_XTS 172
1403 #define EVP_F_AES_XTS_CIPHER 175
1404 #define EVP_F_ALG_MODULE_INIT 177
1405 #define EVP_F_CAMELLIA_INIT_KEY 159
1406 #define EVP_F_CMAC_INIT 173
1407 #define EVP_F_CMLL_T4_INIT_KEY 179
1408 #define EVP_F_D2I_PKEY 100
1409 #define EVP_F_DO_SIGVER_INIT 161
1410 #define EVP_F_DSAPKEY2PKCS8 134
1411 #define EVP_F_DSA_PKEY2PKCS8 135
1412 #define EVP_F_ECDSA_PKEY2PKCS8 129
1413 #define EVP_F_ECKEY_PKEY2PKCS8 132
1414 #define EVP_F_EVP_AEAD_CTX_INIT 180
1415 #define EVP_F_EVP_AEAD_CTX_OPEN 190
1416 #define EVP_F_EVP_AEAD_CTX_SEAL 191
1417 #define EVP_F_EVP_CIPHERINIT_EX 123
1418 #define EVP_F_EVP_CIPHER_CTX_COPY 163
1419 #define EVP_F_EVP_CIPHER_CTX_CTRL 124
1420 #define EVP_F_EVP_CIPHER_CTX_SET_KEY_LENGTH 122
1421 #define EVP_F_EVP_DECRYPTFINAL_EX 101
1422 #define EVP_F_EVP_DIGESTINIT_EX 128
1423 #define EVP_F_EVP_ENCRYPTFINAL_EX 127
1424 #define EVP_F_EVP_MD_CTX_COPY_EX 110
1425 #define EVP_F_EVP_MD_SIZE 162
1426 #define EVP_F_EVP_OPENINIT 102
1427 #define EVP_F_EVP_PBE_ALG_ADD 115
1428 #define EVP_F_EVP_PBE_ALG_ADD_TYPE 160
1429 #define EVP_F_EVP_PBE_CIPHERINIT 116
1430 #define EVP_F_EVP_PKCS82PKEY 111
1431 #define EVP_F_EVP_PKCS82PKEY_BROKEN 136
1432 #define EVP_F_EVP_PKEY2PKCS8_BROKEN 113
1433 #define EVP_F_EVP_PKEY_COPY_PARAMETERS 103
1434 #define EVP_F_EVP_PKEY_CTX_CTRL 137
1435 #define EVP_F_EVP_PKEY_CTX_CTRL_STR 150
1436 #define EVP_F_EVP_PKEY_CTX_DUP 156
1437 #define EVP_F_EVP_PKEY_DECRYPT 104
1438 #define EVP_F_EVP_PKEY_DECRYPT_INIT 138
1439 #define EVP_F_EVP_PKEY_DECRYPT_OLD 151
1440 #define EVP_F_EVP_PKEY_DERIVE 153
1441 #define EVP_F_EVP_PKEY_DERIVE_INIT 154
1442 #define EVP_F_EVP_PKEY_DERIVE_SET_PEER 155
1443 #define EVP_F_EVP_PKEY_ENCRYPT 105
1444 #define EVP_F_EVP_PKEY_ENCRYPT_INIT 139
1445 #define EVP_F_EVP_PKEY_ENCRYPT_OLD 152
1446 #define EVP_F_EVP_PKEY_GET1_DH 119
1447 #define EVP_F_EVP_PKEY_GET1_DSA 120
1448 #define EVP_F_EVP_PKEY_GET1_ECDSA 130
1449 #define EVP_F_EVP_PKEY_GET1_EC_KEY 131
1450 #define EVP_F_EVP_PKEY_GET1_RSA 121
1451 #define EVP_F_EVP_PKEY_KEYGEN 146
1452 #define EVP_F_EVP_PKEY_KEYGEN_INIT 147
1453 #define EVP_F_EVP_PKEY_NEW 106
1454 #define EVP_F_EVP_PKEY_PARAMGEN 148
1455 #define EVP_F_EVP_PKEY_PARAMGEN_INIT 149
1456 #define EVP_F_EVP_PKEY_SIGN 140
1457 #define EVP_F_EVP_PKEY_SIGN_INIT 141
1458 #define EVP_F_EVP_PKEY_VERIFY 142
1459 #define EVP_F_EVP_PKEY_VERIFY_INIT 143
1460 #define EVP_F_EVP_PKEY_VERIFY_RECOVER 144
1461 #define EVP_F_EVP_PKEY_VERIFY_RECOVER_INIT 145
1462 #define EVP_F_EVP_RIJNDAEL 126
1463 #define EVP_F_EVP_SIGNFINAL 107
1464 #define EVP_F_EVP_VERIFYFINAL 108
1465 #define EVP_F_FIPS_CIPHERINIT 166
1466 #define EVP_F_FIPS_CIPHER_CTX_COPY 170
1467 #define EVP_F_FIPS_CIPHER_CTX_CTRL 167
1468 #define EVP_F_FIPS_CIPHER_CTX_SET_KEY_LENGTH 171
1469 #define EVP_F_FIPS_DIGESTINIT 168
1470 #define EVP_F_FIPS_MD_CTX_COPY 169
1471 #define EVP_F_HMAC_INIT_EX 174
1472 #define EVP_F_INT_CTX_NEW 157
1473 #define EVP_F_PKCS5_PBE_KEYIVGEN 117
1474 #define EVP_F_PKCS5_V2_PBE_KEYIVGEN 118
1475 #define EVP_F_PKCS5_V2_PBKDF2_KEYIVGEN 164
1476 #define EVP_F_PKCS8_SET_BROKEN 112
1477 #define EVP_F_PKEY_SET_TYPE 158
1478 #define EVP_F_RC2_MAGIC_TO_METH 109
1479 #define EVP_F_RC5_CTRL 125
1482 #define EVP_R_AES_IV_SETUP_FAILED 162
1483 #define EVP_R_AES_KEY_SETUP_FAILED 143
1484 #define EVP_R_ASN1_LIB 140
1485 #define EVP_R_BAD_BLOCK_LENGTH 136
1486 #define EVP_R_BAD_DECRYPT 100
1487 #define EVP_R_BAD_KEY_LENGTH 137
1488 #define EVP_R_BN_DECODE_ERROR 112
1489 #define EVP_R_BN_PUBKEY_ERROR 113
1490 #define EVP_R_BUFFER_TOO_SMALL 155
1491 #define EVP_R_CAMELLIA_KEY_SETUP_FAILED 157
1492 #define EVP_R_CIPHER_PARAMETER_ERROR 122
1493 #define EVP_R_COMMAND_NOT_SUPPORTED 147
1494 #define EVP_R_CTRL_NOT_IMPLEMENTED 132
1495 #define EVP_R_CTRL_OPERATION_NOT_IMPLEMENTED 133
1496 #define EVP_R_DATA_NOT_MULTIPLE_OF_BLOCK_LENGTH 138
1497 #define EVP_R_DECODE_ERROR 114
1498 #define EVP_R_DIFFERENT_KEY_TYPES 101
1499 #define EVP_R_DIFFERENT_PARAMETERS 153
1500 #define EVP_R_DISABLED_FOR_FIPS 163
1501 #define EVP_R_ENCODE_ERROR 115
1502 #define EVP_R_ERROR_LOADING_SECTION 165
1503 #define EVP_R_ERROR_SETTING_FIPS_MODE 166
1504 #define EVP_R_EVP_PBE_CIPHERINIT_ERROR 119
1505 #define EVP_R_EXPECTING_AN_RSA_KEY 127
1506 #define EVP_R_EXPECTING_A_DH_KEY 128
1507 #define EVP_R_EXPECTING_A_DSA_KEY 129
1508 #define EVP_R_EXPECTING_A_ECDSA_KEY 141
1509 #define EVP_R_EXPECTING_A_EC_KEY 142
1510 #define EVP_R_FIPS_MODE_NOT_SUPPORTED 167
1511 #define EVP_R_INITIALIZATION_ERROR 134
1512 #define EVP_R_INPUT_NOT_INITIALIZED 111
1513 #define EVP_R_INVALID_DIGEST 152
1514 #define EVP_R_INVALID_FIPS_MODE 168
1515 #define EVP_R_INVALID_KEY_LENGTH 130
1516 #define EVP_R_INVALID_OPERATION 148
1517 #define EVP_R_IV_TOO_LARGE 102
1518 #define EVP_R_KEYGEN_FAILURE 120
1519 #define EVP_R_MESSAGE_DIGEST_IS_NULL 159
1520 #define EVP_R_METHOD_NOT_SUPPORTED 144
1521 #define EVP_R_MISSING_PARAMETERS 103
1522 #define EVP_R_NO_CIPHER_SET 131
1523 #define EVP_R_NO_DEFAULT_DIGEST 158
1524 #define EVP_R_NO_DIGEST_SET 139
1525 #define EVP_R_NO_DSA_PARAMETERS 116
1526 #define EVP_R_NO_KEY_SET 154
1527 #define EVP_R_NO_OPERATION_SET 149
1528 #define EVP_R_NO_SIGN_FUNCTION_CONFIGURED 104
1529 #define EVP_R_NO_VERIFY_FUNCTION_CONFIGURED 105
1530 #define EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE 150
1531 #define EVP_R_OPERATON_NOT_INITIALIZED 151
1532 #define EVP_R_OUTPUT_ALIASES_INPUT 172
1533 #define EVP_R_PKCS8_UNKNOWN_BROKEN_TYPE 117
1534 #define EVP_R_PRIVATE_KEY_DECODE_ERROR 145
1535 #define EVP_R_PRIVATE_KEY_ENCODE_ERROR 146
1536 #define EVP_R_PUBLIC_KEY_NOT_RSA 106
1537 #define EVP_R_TAG_TOO_LARGE 171
1538 #define EVP_R_TOO_LARGE 164
1539 #define EVP_R_UNKNOWN_CIPHER 160
1540 #define EVP_R_UNKNOWN_DIGEST 161
1541 #define EVP_R_UNKNOWN_OPTION 169
1542 #define EVP_R_UNKNOWN_PBE_ALGORITHM 121
1543 #define EVP_R_UNSUPORTED_NUMBER_OF_ROUNDS 135
1544 #define EVP_R_UNSUPPORTED_ALGORITHM 156
1545 #define EVP_R_UNSUPPORTED_CIPHER 107
1546 #define EVP_R_UNSUPPORTED_KEYLENGTH 123
1547 #define EVP_R_UNSUPPORTED_KEY_DERIVATION_FUNCTION 124
1548 #define EVP_R_UNSUPPORTED_KEY_SIZE 108
1549 #define EVP_R_UNSUPPORTED_PRF 125
1550 #define EVP_R_UNSUPPORTED_PRIVATE_KEY_ALGORITHM 118
1551 #define EVP_R_UNSUPPORTED_SALT_TYPE 126
1552 #define EVP_R_WRAP_MODE_NOT_ALLOWED 170
1553 #define EVP_R_WRONG_FINAL_BLOCK_LENGTH 109
1554 #define EVP_R_WRONG_PUBLIC_KEY_TYPE 110