]> git.ipfire.org Git - thirdparty/openssl.git/blob - include/openssl/evp.h
projects / thirdparty / openssl.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
RT3998: Allow scrypt to be disabled
[thirdparty/openssl.git] / include / openssl / evp.h
1 /* crypto/evp/evp.h */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 * All rights reserved.
4 *
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
8 *
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15 *
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
22 *
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
25 * are met:
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40 *
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51 * SUCH DAMAGE.
52 *
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
57 */
58
59 #ifndef HEADER_ENVELOPE_H
60 # define HEADER_ENVELOPE_H
61
62 # ifdef OPENSSL_ALGORITHM_DEFINES
63 # include <openssl/opensslconf.h>
64 # else
65 # define OPENSSL_ALGORITHM_DEFINES
66 # include <openssl/opensslconf.h>
67 # undef OPENSSL_ALGORITHM_DEFINES
68 # endif
69
70 # include <openssl/ossl_typ.h>
71
72 # include <openssl/symhacks.h>
73
74 # include <openssl/bio.h>
75
76 # define EVP_MAX_MD_SIZE 64/* longest known is SHA512 */
77 # define EVP_MAX_KEY_LENGTH 64
78 # define EVP_MAX_IV_LENGTH 16
79 # define EVP_MAX_BLOCK_LENGTH 32
80
81 # define PKCS5_SALT_LEN 8
82 /* Default PKCS#5 iteration count */
83 # define PKCS5_DEFAULT_ITER 2048
84
85 # include <openssl/objects.h>
86
87 # define EVP_PK_RSA 0x0001
88 # define EVP_PK_DSA 0x0002
89 # define EVP_PK_DH 0x0004
90 # define EVP_PK_EC 0x0008
91 # define EVP_PKT_SIGN 0x0010
92 # define EVP_PKT_ENC 0x0020
93 # define EVP_PKT_EXCH 0x0040
94 # define EVP_PKS_RSA 0x0100
95 # define EVP_PKS_DSA 0x0200
96 # define EVP_PKS_EC 0x0400
97
98 # define EVP_PKEY_NONE NID_undef
99 # define EVP_PKEY_RSA NID_rsaEncryption
100 # define EVP_PKEY_RSA2 NID_rsa
101 # define EVP_PKEY_DSA NID_dsa
102 # define EVP_PKEY_DSA1 NID_dsa_2
103 # define EVP_PKEY_DSA2 NID_dsaWithSHA
104 # define EVP_PKEY_DSA3 NID_dsaWithSHA1
105 # define EVP_PKEY_DSA4 NID_dsaWithSHA1_2
106 # define EVP_PKEY_DH NID_dhKeyAgreement
107 # define EVP_PKEY_DHX NID_dhpublicnumber
108 # define EVP_PKEY_EC NID_X9_62_id_ecPublicKey
109 # define EVP_PKEY_HMAC NID_hmac
110 # define EVP_PKEY_CMAC NID_cmac
111
112 #ifdef __cplusplus
113 extern "C" {
114 #endif
115
116 /*
117 * Type needs to be a bit field Sub-type needs to be for variations on the
118 * method, as in, can it do arbitrary encryption....
119 */
120 struct evp_pkey_st {
121 int type;
122 int save_type;
123 int references;
124 const EVP_PKEY_ASN1_METHOD *ameth;
125 ENGINE *engine;
126 union {
127 char *ptr;
128 # ifndef OPENSSL_NO_RSA
129 struct rsa_st *rsa; /* RSA */
130 # endif
131 # ifndef OPENSSL_NO_DSA
132 struct dsa_st *dsa; /* DSA */
133 # endif
134 # ifndef OPENSSL_NO_DH
135 struct dh_st *dh; /* DH */
136 # endif
137 # ifndef OPENSSL_NO_EC
138 struct ec_key_st *ec; /* ECC */
139 # endif
140 } pkey;
141 int save_parameters;
142 STACK_OF(X509_ATTRIBUTE) *attributes; /* [ 0 ] */
143 } /* EVP_PKEY */ ;
144
145 # define EVP_PKEY_MO_SIGN 0x0001
146 # define EVP_PKEY_MO_VERIFY 0x0002
147 # define EVP_PKEY_MO_ENCRYPT 0x0004
148 # define EVP_PKEY_MO_DECRYPT 0x0008
149
150 # ifndef EVP_MD
151 struct env_md_st {
152 int type;
153 int pkey_type;
154 int md_size;
155 unsigned long flags;
156 int (*init) (EVP_MD_CTX *ctx);
157 int (*update) (EVP_MD_CTX *ctx, const void *data, size_t count);
158 int (*final) (EVP_MD_CTX *ctx, unsigned char *md);
159 int (*copy) (EVP_MD_CTX *to, const EVP_MD_CTX *from);
160 int (*cleanup) (EVP_MD_CTX *ctx);
161 /* FIXME: prototype these some day */
162 int (*sign) (int type, const unsigned char *m, unsigned int m_length,
163 unsigned char *sigret, unsigned int *siglen, void *key);
164 int (*verify) (int type, const unsigned char *m, unsigned int m_length,
165 const unsigned char *sigbuf, unsigned int siglen,
166 void *key);
167 int required_pkey_type[5]; /* EVP_PKEY_xxx */
168 int block_size;
169 int ctx_size; /* how big does the ctx->md_data need to be */
170 /* control function */
171 int (*md_ctrl) (EVP_MD_CTX *ctx, int cmd, int p1, void *p2);
172 } /* EVP_MD */ ;
173
174 typedef int evp_sign_method(int type, const unsigned char *m,
175 unsigned int m_length, unsigned char *sigret,
176 unsigned int *siglen, void *key);
177 typedef int evp_verify_method(int type, const unsigned char *m,
178 unsigned int m_length,
179 const unsigned char *sigbuf,
180 unsigned int siglen, void *key);
181
182 /* digest can only handle a single block */
183 # define EVP_MD_FLAG_ONESHOT 0x0001
184
185 /*
186 * digest is a "clone" digest used
187 * which is a copy of an existing
188 * one for a specific public key type.
189 * EVP_dss1() etc
190 */
191 # define EVP_MD_FLAG_PKEY_DIGEST 0x0002
192
193 /* Digest uses EVP_PKEY_METHOD for signing instead of MD specific signing */
194
195 # define EVP_MD_FLAG_PKEY_METHOD_SIGNATURE 0x0004
196
197 /* DigestAlgorithmIdentifier flags... */
198
199 # define EVP_MD_FLAG_DIGALGID_MASK 0x0018
200
201 /* NULL or absent parameter accepted. Use NULL */
202
203 # define EVP_MD_FLAG_DIGALGID_NULL 0x0000
204
205 /* NULL or absent parameter accepted. Use NULL for PKCS#1 otherwise absent */
206
207 # define EVP_MD_FLAG_DIGALGID_ABSENT 0x0008
208
209 /* Custom handling via ctrl */
210
211 # define EVP_MD_FLAG_DIGALGID_CUSTOM 0x0018
212
213 /* Note if suitable for use in FIPS mode */
214 # define EVP_MD_FLAG_FIPS 0x0400
215
216 /* Digest ctrls */
217
218 # define EVP_MD_CTRL_DIGALGID 0x1
219 # define EVP_MD_CTRL_MICALG 0x2
220
221 /* Minimum Algorithm specific ctrl value */
222
223 # define EVP_MD_CTRL_ALG_CTRL 0x1000
224
225 # define EVP_PKEY_NULL_method NULL,NULL,{0,0,0,0}
226
227 # ifndef OPENSSL_NO_DSA
228 # define EVP_PKEY_DSA_method (evp_sign_method *)DSA_sign, \
229 (evp_verify_method *)DSA_verify, \
230 {EVP_PKEY_DSA,EVP_PKEY_DSA2,EVP_PKEY_DSA3, \
231 EVP_PKEY_DSA4,0}
232 # else
233 # define EVP_PKEY_DSA_method EVP_PKEY_NULL_method
234 # endif
235
236 # ifndef OPENSSL_NO_EC
237 # define EVP_PKEY_ECDSA_method (evp_sign_method *)ECDSA_sign, \
238 (evp_verify_method *)ECDSA_verify, \
239 {EVP_PKEY_EC,0,0,0}
240 # else
241 # define EVP_PKEY_ECDSA_method EVP_PKEY_NULL_method
242 # endif
243
244 # ifndef OPENSSL_NO_RSA
245 # define EVP_PKEY_RSA_method (evp_sign_method *)RSA_sign, \
246 (evp_verify_method *)RSA_verify, \
247 {EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0}
248 # define EVP_PKEY_RSA_ASN1_OCTET_STRING_method \
249 (evp_sign_method *)RSA_sign_ASN1_OCTET_STRING, \
250 (evp_verify_method *)RSA_verify_ASN1_OCTET_STRING, \
251 {EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0}
252 # else
253 # define EVP_PKEY_RSA_method EVP_PKEY_NULL_method
254 # define EVP_PKEY_RSA_ASN1_OCTET_STRING_method EVP_PKEY_NULL_method
255 # endif
256
257 # endif /* !EVP_MD */
258
259 struct env_md_ctx_st {
260 const EVP_MD *digest;
261 ENGINE *engine; /* functional reference if 'digest' is
262 * ENGINE-provided */
263 unsigned long flags;
264 void *md_data;
265 /* Public key context for sign/verify */
266 EVP_PKEY_CTX *pctx;
267 /* Update function: usually copied from EVP_MD */
268 int (*update) (EVP_MD_CTX *ctx, const void *data, size_t count);
269 } /* EVP_MD_CTX */ ;
270
271 /* values for EVP_MD_CTX flags */
272
273 # define EVP_MD_CTX_FLAG_ONESHOT 0x0001/* digest update will be
274 * called once only */
275 # define EVP_MD_CTX_FLAG_CLEANED 0x0002/* context has already been
276 * cleaned */
277 # define EVP_MD_CTX_FLAG_REUSE 0x0004/* Don't free up ctx->md_data
278 * in EVP_MD_CTX_cleanup */
279 /*
280 * FIPS and pad options are ignored in 1.0.0, definitions are here so we
281 * don't accidentally reuse the values for other purposes.
282 */
283
284 # define EVP_MD_CTX_FLAG_NON_FIPS_ALLOW 0x0008/* Allow use of non FIPS
285 * digest in FIPS mode */
286
287 /*
288 * The following PAD options are also currently ignored in 1.0.0, digest
289 * parameters are handled through EVP_DigestSign*() and EVP_DigestVerify*()
290 * instead.
291 */
292 # define EVP_MD_CTX_FLAG_PAD_MASK 0xF0/* RSA mode to use */
293 # define EVP_MD_CTX_FLAG_PAD_PKCS1 0x00/* PKCS#1 v1.5 mode */
294 # define EVP_MD_CTX_FLAG_PAD_X931 0x10/* X9.31 mode */
295 # define EVP_MD_CTX_FLAG_PAD_PSS 0x20/* PSS mode */
296
297 # define EVP_MD_CTX_FLAG_NO_INIT 0x0100/* Don't initialize md_data */
298 /*
299 * Some functions such as EVP_DigestSign only finalise copies of internal
300 * contexts so additional data can be included after the finalisation call.
301 * This is inefficient if this functionality is not required: it is disabled
302 * if the following flag is set.
303 */
304 # define EVP_MD_CTX_FLAG_FINALISE 0x0200
305
306 struct evp_cipher_st {
307 int nid;
308 int block_size;
309 /* Default value for variable length ciphers */
310 int key_len;
311 int iv_len;
312 /* Various flags */
313 unsigned long flags;
314 /* init key */
315 int (*init) (EVP_CIPHER_CTX *ctx, const unsigned char *key,
316 const unsigned char *iv, int enc);
317 /* encrypt/decrypt data */
318 int (*do_cipher) (EVP_CIPHER_CTX *ctx, unsigned char *out,
319 const unsigned char *in, size_t inl);
320 /* cleanup ctx */
321 int (*cleanup) (EVP_CIPHER_CTX *);
322 /* how big ctx->cipher_data needs to be */
323 int ctx_size;
324 /* Populate a ASN1_TYPE with parameters */
325 int (*set_asn1_parameters) (EVP_CIPHER_CTX *, ASN1_TYPE *);
326 /* Get parameters from a ASN1_TYPE */
327 int (*get_asn1_parameters) (EVP_CIPHER_CTX *, ASN1_TYPE *);
328 /* Miscellaneous operations */
329 int (*ctrl) (EVP_CIPHER_CTX *, int type, int arg, void *ptr);
330 /* Application data */
331 void *app_data;
332 } /* EVP_CIPHER */ ;
333
334 /* Values for cipher flags */
335
336 /* Modes for ciphers */
337
338 # define EVP_CIPH_STREAM_CIPHER 0x0
339 # define EVP_CIPH_ECB_MODE 0x1
340 # define EVP_CIPH_CBC_MODE 0x2
341 # define EVP_CIPH_CFB_MODE 0x3
342 # define EVP_CIPH_OFB_MODE 0x4
343 # define EVP_CIPH_CTR_MODE 0x5
344 # define EVP_CIPH_GCM_MODE 0x6
345 # define EVP_CIPH_CCM_MODE 0x7
346 # define EVP_CIPH_XTS_MODE 0x10001
347 # define EVP_CIPH_WRAP_MODE 0x10002
348 # define EVP_CIPH_OCB_MODE 0x10003
349 # define EVP_CIPH_MODE 0xF0007
350 /* Set if variable length cipher */
351 # define EVP_CIPH_VARIABLE_LENGTH 0x8
352 /* Set if the iv handling should be done by the cipher itself */
353 # define EVP_CIPH_CUSTOM_IV 0x10
354 /* Set if the cipher's init() function should be called if key is NULL */
355 # define EVP_CIPH_ALWAYS_CALL_INIT 0x20
356 /* Call ctrl() to init cipher parameters */
357 # define EVP_CIPH_CTRL_INIT 0x40
358 /* Don't use standard key length function */
359 # define EVP_CIPH_CUSTOM_KEY_LENGTH 0x80
360 /* Don't use standard block padding */
361 # define EVP_CIPH_NO_PADDING 0x100
362 /* cipher handles random key generation */
363 # define EVP_CIPH_RAND_KEY 0x200
364 /* cipher has its own additional copying logic */
365 # define EVP_CIPH_CUSTOM_COPY 0x400
366 /* Allow use default ASN1 get/set iv */
367 # define EVP_CIPH_FLAG_DEFAULT_ASN1 0x1000
368 /* Buffer length in bits not bytes: CFB1 mode only */
369 # define EVP_CIPH_FLAG_LENGTH_BITS 0x2000
370 /* Note if suitable for use in FIPS mode */
371 # define EVP_CIPH_FLAG_FIPS 0x4000
372 /* Allow non FIPS cipher in FIPS mode */
373 # define EVP_CIPH_FLAG_NON_FIPS_ALLOW 0x8000
374 /*
375 * Cipher handles any and all padding logic as well as finalisation.
376 */
377 # define EVP_CIPH_FLAG_CUSTOM_CIPHER 0x100000
378 # define EVP_CIPH_FLAG_AEAD_CIPHER 0x200000
379 # define EVP_CIPH_FLAG_TLS1_1_MULTIBLOCK 0x400000
380
381 /*
382 * Cipher context flag to indicate we can handle wrap mode: if allowed in
383 * older applications it could overflow buffers.
384 */
385
386 # define EVP_CIPHER_CTX_FLAG_WRAP_ALLOW 0x1
387
388 /* ctrl() values */
389
390 # define EVP_CTRL_INIT 0x0
391 # define EVP_CTRL_SET_KEY_LENGTH 0x1
392 # define EVP_CTRL_GET_RC2_KEY_BITS 0x2
393 # define EVP_CTRL_SET_RC2_KEY_BITS 0x3
394 # define EVP_CTRL_GET_RC5_ROUNDS 0x4
395 # define EVP_CTRL_SET_RC5_ROUNDS 0x5
396 # define EVP_CTRL_RAND_KEY 0x6
397 # define EVP_CTRL_PBE_PRF_NID 0x7
398 # define EVP_CTRL_COPY 0x8
399 # define EVP_CTRL_AEAD_SET_IVLEN 0x9
400 # define EVP_CTRL_AEAD_GET_TAG 0x10
401 # define EVP_CTRL_AEAD_SET_TAG 0x11
402 # define EVP_CTRL_AEAD_SET_IV_FIXED 0x12
403 # define EVP_CTRL_GCM_SET_IVLEN EVP_CTRL_AEAD_SET_IVLEN
404 # define EVP_CTRL_GCM_GET_TAG EVP_CTRL_AEAD_GET_TAG
405 # define EVP_CTRL_GCM_SET_TAG EVP_CTRL_AEAD_SET_TAG
406 # define EVP_CTRL_GCM_SET_IV_FIXED EVP_CTRL_AEAD_SET_IV_FIXED
407 # define EVP_CTRL_GCM_IV_GEN 0x13
408 # define EVP_CTRL_CCM_SET_IVLEN EVP_CTRL_AEAD_SET_IVLEN
409 # define EVP_CTRL_CCM_GET_TAG EVP_CTRL_AEAD_GET_TAG
410 # define EVP_CTRL_CCM_SET_TAG EVP_CTRL_AEAD_SET_TAG
411 # define EVP_CTRL_CCM_SET_IV_FIXED EVP_CTRL_AEAD_SET_IV_FIXED
412 # define EVP_CTRL_CCM_SET_L 0x14
413 # define EVP_CTRL_CCM_SET_MSGLEN 0x15
414 /*
415 * AEAD cipher deduces payload length and returns number of bytes required to
416 * store MAC and eventual padding. Subsequent call to EVP_Cipher even
417 * appends/verifies MAC.
418 */
419 # define EVP_CTRL_AEAD_TLS1_AAD 0x16
420 /* Used by composite AEAD ciphers, no-op in GCM, CCM... */
421 # define EVP_CTRL_AEAD_SET_MAC_KEY 0x17
422 /* Set the GCM invocation field, decrypt only */
423 # define EVP_CTRL_GCM_SET_IV_INV 0x18
424
425 # define EVP_CTRL_TLS1_1_MULTIBLOCK_AAD 0x19
426 # define EVP_CTRL_TLS1_1_MULTIBLOCK_ENCRYPT 0x1a
427 # define EVP_CTRL_TLS1_1_MULTIBLOCK_DECRYPT 0x1b
428 # define EVP_CTRL_TLS1_1_MULTIBLOCK_MAX_BUFSIZE 0x1c
429
430 /* RFC 5246 defines additional data to be 13 bytes in length */
431 # define EVP_AEAD_TLS1_AAD_LEN 13
432
433 typedef struct {
434 unsigned char *out;
435 const unsigned char *inp;
436 size_t len;
437 unsigned int interleave;
438 } EVP_CTRL_TLS1_1_MULTIBLOCK_PARAM;
439
440 /* GCM TLS constants */
441 /* Length of fixed part of IV derived from PRF */
442 # define EVP_GCM_TLS_FIXED_IV_LEN 4
443 /* Length of explicit part of IV part of TLS records */
444 # define EVP_GCM_TLS_EXPLICIT_IV_LEN 8
445 /* Length of tag for TLS */
446 # define EVP_GCM_TLS_TAG_LEN 16
447
448 /* CCM TLS constants */
449 /* Length of fixed part of IV derived from PRF */
450 # define EVP_CCM_TLS_FIXED_IV_LEN 4
451 /* Length of explicit part of IV part of TLS records */
452 # define EVP_CCM_TLS_EXPLICIT_IV_LEN 8
453
454 typedef struct evp_cipher_info_st {
455 const EVP_CIPHER *cipher;
456 unsigned char iv[EVP_MAX_IV_LENGTH];
457 } EVP_CIPHER_INFO;
458
459 struct evp_cipher_ctx_st {
460 const EVP_CIPHER *cipher;
461 ENGINE *engine; /* functional reference if 'cipher' is
462 * ENGINE-provided */
463 int encrypt; /* encrypt or decrypt */
464 int buf_len; /* number we have left */
465 unsigned char oiv[EVP_MAX_IV_LENGTH]; /* original iv */
466 unsigned char iv[EVP_MAX_IV_LENGTH]; /* working iv */
467 unsigned char buf[EVP_MAX_BLOCK_LENGTH]; /* saved partial block */
468 int num; /* used by cfb/ofb/ctr mode */
469 void *app_data; /* application stuff */
470 int key_len; /* May change for variable length cipher */
471 unsigned long flags; /* Various flags */
472 void *cipher_data; /* per EVP data */
473 int final_used;
474 int block_mask;
475 unsigned char final[EVP_MAX_BLOCK_LENGTH]; /* possible final block */
476 } /* EVP_CIPHER_CTX */ ;
477
478 typedef struct evp_Encode_Ctx_st {
479 /* number saved in a partial encode/decode */
480 int num;
481 /*
482 * The length is either the output line length (in input bytes) or the
483 * shortest input line length that is ok. Once decoding begins, the
484 * length is adjusted up each time a longer line is decoded
485 */
486 int length;
487 /* data to encode */
488 unsigned char enc_data[80];
489 /* number read on current line */
490 int line_num;
491 int expect_nl;
492 } EVP_ENCODE_CTX;
493
494 /* Password based encryption function */
495 typedef int (EVP_PBE_KEYGEN) (EVP_CIPHER_CTX *ctx, const char *pass,
496 int passlen, ASN1_TYPE *param,
497 const EVP_CIPHER *cipher, const EVP_MD *md,
498 int en_de);
499
500 # ifndef OPENSSL_NO_RSA
501 # define EVP_PKEY_assign_RSA(pkey,rsa) EVP_PKEY_assign((pkey),EVP_PKEY_RSA,\
502 (char *)(rsa))
503 # endif
504
505 # ifndef OPENSSL_NO_DSA
506 # define EVP_PKEY_assign_DSA(pkey,dsa) EVP_PKEY_assign((pkey),EVP_PKEY_DSA,\
507 (char *)(dsa))
508 # endif
509
510 # ifndef OPENSSL_NO_DH
511 # define EVP_PKEY_assign_DH(pkey,dh) EVP_PKEY_assign((pkey),EVP_PKEY_DH,\
512 (char *)(dh))
513 # endif
514
515 # ifndef OPENSSL_NO_EC
516 # define EVP_PKEY_assign_EC_KEY(pkey,eckey) EVP_PKEY_assign((pkey),EVP_PKEY_EC,\
517 (char *)(eckey))
518 # endif
519
520 /* Add some extra combinations */
521 # define EVP_get_digestbynid(a) EVP_get_digestbyname(OBJ_nid2sn(a))
522 # define EVP_get_digestbyobj(a) EVP_get_digestbynid(OBJ_obj2nid(a))
523 # define EVP_get_cipherbynid(a) EVP_get_cipherbyname(OBJ_nid2sn(a))
524 # define EVP_get_cipherbyobj(a) EVP_get_cipherbynid(OBJ_obj2nid(a))
525
526 /* Macros to reduce FIPS dependencies: do NOT use in applications */
527 # define M_EVP_MD_size(e) ((e)->md_size)
528 # define M_EVP_MD_block_size(e) ((e)->block_size)
529 # define M_EVP_MD_CTX_set_flags(ctx,flgs) ((ctx)->flags|=(flgs))
530 # define M_EVP_MD_CTX_clear_flags(ctx,flgs) ((ctx)->flags&=~(flgs))
531 # define M_EVP_MD_CTX_test_flags(ctx,flgs) ((ctx)->flags&(flgs))
532 # define M_EVP_MD_type(e) ((e)->type)
533 # define M_EVP_MD_CTX_type(e) M_EVP_MD_type(M_EVP_MD_CTX_md(e))
534 # define M_EVP_MD_CTX_md(e) ((e)->digest)
535
536 # define M_EVP_CIPHER_nid(e) ((e)->nid)
537 # define M_EVP_CIPHER_CTX_iv_length(e) ((e)->cipher->iv_len)
538 # define M_EVP_CIPHER_CTX_flags(e) ((e)->cipher->flags)
539 # define M_EVP_CIPHER_CTX_block_size(e) ((e)->cipher->block_size)
540 # define M_EVP_CIPHER_CTX_cipher(e) ((e)->cipher)
541 # define M_EVP_CIPHER_CTX_mode(e) (M_EVP_CIPHER_CTX_flags(e) & EVP_CIPH_MODE)
542
543 # define M_EVP_CIPHER_CTX_set_flags(ctx,flgs) ((ctx)->flags|=(flgs))
544
545 # define M_EVP_EncryptInit(ctx,ciph,key,iv) \
546 (EVP_CipherInit(ctx,ciph,key,iv,1))
547 # define M_EVP_EncryptInit_ex(ctx,ciph,impl,key,iv) \
548 (EVP_CipherInit_ex(ctx,ciph,impl,key,iv,1))
549 # define M_EVP_DecryptInit(ctx,ciph,key,iv) \
550 (EVP_CipherInit(ctx,ciph,key,iv,0))
551 # define M_EVP_DecryptInit_ex(ctx,ciph,impl,key,iv) \
552 (EVP_CipherInit_ex(ctx,ciph,impl,key,iv,0))
553
554 int EVP_MD_type(const EVP_MD *md);
555 # define EVP_MD_nid(e) EVP_MD_type(e)
556 # define EVP_MD_name(e) OBJ_nid2sn(EVP_MD_nid(e))
557 int EVP_MD_pkey_type(const EVP_MD *md);
558 int EVP_MD_size(const EVP_MD *md);
559 int EVP_MD_block_size(const EVP_MD *md);
560 unsigned long EVP_MD_flags(const EVP_MD *md);
561
562 const EVP_MD *EVP_MD_CTX_md(const EVP_MD_CTX *ctx);
563 # define EVP_MD_CTX_size(e) EVP_MD_size(EVP_MD_CTX_md(e))
564 # define EVP_MD_CTX_block_size(e) EVP_MD_block_size(EVP_MD_CTX_md(e))
565 # define EVP_MD_CTX_type(e) EVP_MD_type(EVP_MD_CTX_md(e))
566
567 int EVP_CIPHER_nid(const EVP_CIPHER *cipher);
568 # define EVP_CIPHER_name(e) OBJ_nid2sn(EVP_CIPHER_nid(e))
569 int EVP_CIPHER_block_size(const EVP_CIPHER *cipher);
570 int EVP_CIPHER_key_length(const EVP_CIPHER *cipher);
571 int EVP_CIPHER_iv_length(const EVP_CIPHER *cipher);
572 unsigned long EVP_CIPHER_flags(const EVP_CIPHER *cipher);
573 # define EVP_CIPHER_mode(e) (EVP_CIPHER_flags(e) & EVP_CIPH_MODE)
574
575 const EVP_CIPHER *EVP_CIPHER_CTX_cipher(const EVP_CIPHER_CTX *ctx);
576 int EVP_CIPHER_CTX_nid(const EVP_CIPHER_CTX *ctx);
577 int EVP_CIPHER_CTX_block_size(const EVP_CIPHER_CTX *ctx);
578 int EVP_CIPHER_CTX_key_length(const EVP_CIPHER_CTX *ctx);
579 int EVP_CIPHER_CTX_iv_length(const EVP_CIPHER_CTX *ctx);
580 int EVP_CIPHER_CTX_copy(EVP_CIPHER_CTX *out, const EVP_CIPHER_CTX *in);
581 void *EVP_CIPHER_CTX_get_app_data(const EVP_CIPHER_CTX *ctx);
582 void EVP_CIPHER_CTX_set_app_data(EVP_CIPHER_CTX *ctx, void *data);
583 # define EVP_CIPHER_CTX_type(c) EVP_CIPHER_type(EVP_CIPHER_CTX_cipher(c))
584 unsigned long EVP_CIPHER_CTX_flags(const EVP_CIPHER_CTX *ctx);
585 # define EVP_CIPHER_CTX_mode(e) (EVP_CIPHER_CTX_flags(e) & EVP_CIPH_MODE)
586
587 # define EVP_ENCODE_LENGTH(l) (((l+2)/3*4)+(l/48+1)*2+80)
588 # define EVP_DECODE_LENGTH(l) ((l+3)/4*3+80)
589
590 # define EVP_SignInit_ex(a,b,c) EVP_DigestInit_ex(a,b,c)
591 # define EVP_SignInit(a,b) EVP_DigestInit(a,b)
592 # define EVP_SignUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
593 # define EVP_VerifyInit_ex(a,b,c) EVP_DigestInit_ex(a,b,c)
594 # define EVP_VerifyInit(a,b) EVP_DigestInit(a,b)
595 # define EVP_VerifyUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
596 # define EVP_OpenUpdate(a,b,c,d,e) EVP_DecryptUpdate(a,b,c,d,e)
597 # define EVP_SealUpdate(a,b,c,d,e) EVP_EncryptUpdate(a,b,c,d,e)
598 # define EVP_DigestSignUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
599 # define EVP_DigestVerifyUpdate(a,b,c) EVP_DigestUpdate(a,b,c)
600
601 # ifdef CONST_STRICT
602 void BIO_set_md(BIO *, const EVP_MD *md);
603 # else
604 # define BIO_set_md(b,md) BIO_ctrl(b,BIO_C_SET_MD,0,(char *)md)
605 # endif
606 # define BIO_get_md(b,mdp) BIO_ctrl(b,BIO_C_GET_MD,0,(char *)mdp)
607 # define BIO_get_md_ctx(b,mdcp) BIO_ctrl(b,BIO_C_GET_MD_CTX,0,(char *)mdcp)
608 # define BIO_set_md_ctx(b,mdcp) BIO_ctrl(b,BIO_C_SET_MD_CTX,0,(char *)mdcp)
609 # define BIO_get_cipher_status(b) BIO_ctrl(b,BIO_C_GET_CIPHER_STATUS,0,NULL)
610 # define BIO_get_cipher_ctx(b,c_pp) BIO_ctrl(b,BIO_C_GET_CIPHER_CTX,0,(char *)c_pp)
611
612 /*__owur*/ int EVP_Cipher(EVP_CIPHER_CTX *c,
613 unsigned char *out,
614 const unsigned char *in, unsigned int inl);
615
616 # define EVP_add_cipher_alias(n,alias) \
617 OBJ_NAME_add((alias),OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS,(n))
618 # define EVP_add_digest_alias(n,alias) \
619 OBJ_NAME_add((alias),OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS,(n))
620 # define EVP_delete_cipher_alias(alias) \
621 OBJ_NAME_remove(alias,OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS);
622 # define EVP_delete_digest_alias(alias) \
623 OBJ_NAME_remove(alias,OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS);
624
625 void EVP_MD_CTX_init(EVP_MD_CTX *ctx);
626 int EVP_MD_CTX_cleanup(EVP_MD_CTX *ctx);
627 EVP_MD_CTX *EVP_MD_CTX_create(void);
628 void EVP_MD_CTX_destroy(EVP_MD_CTX *ctx);
629 /*__owur*/ int EVP_MD_CTX_copy_ex(EVP_MD_CTX *out, const EVP_MD_CTX *in);
630 void EVP_MD_CTX_set_flags(EVP_MD_CTX *ctx, int flags);
631 void EVP_MD_CTX_clear_flags(EVP_MD_CTX *ctx, int flags);
632 int EVP_MD_CTX_test_flags(const EVP_MD_CTX *ctx, int flags);
633 /*__owur*/ int EVP_DigestInit_ex(EVP_MD_CTX *ctx, const EVP_MD *type,
634 ENGINE *impl);
635 /*__owur*/ int EVP_DigestUpdate(EVP_MD_CTX *ctx, const void *d,
636 size_t cnt);
637 /*__owur*/ int EVP_DigestFinal_ex(EVP_MD_CTX *ctx, unsigned char *md,
638 unsigned int *s);
639 /*__owur*/ int EVP_Digest(const void *data, size_t count,
640 unsigned char *md, unsigned int *size,
641 const EVP_MD *type, ENGINE *impl);
642
643 /*__owur*/ int EVP_MD_CTX_copy(EVP_MD_CTX *out, const EVP_MD_CTX *in);
644 /*__owur*/ int EVP_DigestInit(EVP_MD_CTX *ctx, const EVP_MD *type);
645 __owur int EVP_DigestFinal(EVP_MD_CTX *ctx, unsigned char *md,
646 unsigned int *s);
647
648 int EVP_read_pw_string(char *buf, int length, const char *prompt, int verify);
649 int EVP_read_pw_string_min(char *buf, int minlen, int maxlen,
650 const char *prompt, int verify);
651 void EVP_set_pw_prompt(const char *prompt);
652 char *EVP_get_pw_prompt(void);
653
654 __owur int EVP_BytesToKey(const EVP_CIPHER *type, const EVP_MD *md,
655 const unsigned char *salt,
656 const unsigned char *data, int datal, int count,
657 unsigned char *key, unsigned char *iv);
658
659 void EVP_CIPHER_CTX_set_flags(EVP_CIPHER_CTX *ctx, int flags);
660 void EVP_CIPHER_CTX_clear_flags(EVP_CIPHER_CTX *ctx, int flags);
661 int EVP_CIPHER_CTX_test_flags(const EVP_CIPHER_CTX *ctx, int flags);
662
663 __owur int EVP_EncryptInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *cipher,
664 const unsigned char *key, const unsigned char *iv);
665 /*__owur*/ int EVP_EncryptInit_ex(EVP_CIPHER_CTX *ctx,
666 const EVP_CIPHER *cipher, ENGINE *impl,
667 const unsigned char *key,
668 const unsigned char *iv);
669 /*__owur*/ int EVP_EncryptUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out,
670 int *outl, const unsigned char *in, int inl);
671 /*__owur*/ int EVP_EncryptFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *out,
672 int *outl);
673 /*__owur*/ int EVP_EncryptFinal(EVP_CIPHER_CTX *ctx, unsigned char *out,
674 int *outl);
675
676 __owur int EVP_DecryptInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *cipher,
677 const unsigned char *key, const unsigned char *iv);
678 /*__owur*/ int EVP_DecryptInit_ex(EVP_CIPHER_CTX *ctx,
679 const EVP_CIPHER *cipher, ENGINE *impl,
680 const unsigned char *key,
681 const unsigned char *iv);
682 /*__owur*/ int EVP_DecryptUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out,
683 int *outl, const unsigned char *in, int inl);
684 __owur int EVP_DecryptFinal(EVP_CIPHER_CTX *ctx, unsigned char *outm,
685 int *outl);
686 /*__owur*/ int EVP_DecryptFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *outm,
687 int *outl);
688
689 __owur int EVP_CipherInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *cipher,
690 const unsigned char *key, const unsigned char *iv,
691 int enc);
692 /*__owur*/ int EVP_CipherInit_ex(EVP_CIPHER_CTX *ctx,
693 const EVP_CIPHER *cipher, ENGINE *impl,
694 const unsigned char *key,
695 const unsigned char *iv, int enc);
696 __owur int EVP_CipherUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out,
697 int *outl, const unsigned char *in, int inl);
698 __owur int EVP_CipherFinal(EVP_CIPHER_CTX *ctx, unsigned char *outm,
699 int *outl);
700 __owur int EVP_CipherFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *outm,
701 int *outl);
702
703 __owur int EVP_SignFinal(EVP_MD_CTX *ctx, unsigned char *md, unsigned int *s,
704 EVP_PKEY *pkey);
705
706 __owur int EVP_VerifyFinal(EVP_MD_CTX *ctx, const unsigned char *sigbuf,
707 unsigned int siglen, EVP_PKEY *pkey);
708
709 /*__owur*/ int EVP_DigestSignInit(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx,
710 const EVP_MD *type, ENGINE *e,
711 EVP_PKEY *pkey);
712 __owur int EVP_DigestSignFinal(EVP_MD_CTX *ctx, unsigned char *sigret,
713 size_t *siglen);
714
715 __owur int EVP_DigestVerifyInit(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx,
716 const EVP_MD *type, ENGINE *e,
717 EVP_PKEY *pkey);
718 __owur int EVP_DigestVerifyFinal(EVP_MD_CTX *ctx, const unsigned char *sig,
719 size_t siglen);
720
721 __owur int EVP_OpenInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *type,
722 const unsigned char *ek, int ekl,
723 const unsigned char *iv, EVP_PKEY *priv);
724 __owur int EVP_OpenFinal(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl);
725
726 __owur int EVP_SealInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *type,
727 unsigned char **ek, int *ekl, unsigned char *iv,
728 EVP_PKEY **pubk, int npubk);
729 __owur int EVP_SealFinal(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl);
730
731 void EVP_EncodeInit(EVP_ENCODE_CTX *ctx);
732 void EVP_EncodeUpdate(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl,
733 const unsigned char *in, int inl);
734 void EVP_EncodeFinal(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl);
735 int EVP_EncodeBlock(unsigned char *t, const unsigned char *f, int n);
736
737 void EVP_DecodeInit(EVP_ENCODE_CTX *ctx);
738 int EVP_DecodeUpdate(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl,
739 const unsigned char *in, int inl);
740 int EVP_DecodeFinal(EVP_ENCODE_CTX *ctx, unsigned
741 char *out, int *outl);
742 int EVP_DecodeBlock(unsigned char *t, const unsigned char *f, int n);
743
744 void EVP_CIPHER_CTX_init(EVP_CIPHER_CTX *a);
745 int EVP_CIPHER_CTX_cleanup(EVP_CIPHER_CTX *a);
746 EVP_CIPHER_CTX *EVP_CIPHER_CTX_new(void);
747 void EVP_CIPHER_CTX_free(EVP_CIPHER_CTX *a);
748 int EVP_CIPHER_CTX_set_key_length(EVP_CIPHER_CTX *x, int keylen);
749 int EVP_CIPHER_CTX_set_padding(EVP_CIPHER_CTX *c, int pad);
750 int EVP_CIPHER_CTX_ctrl(EVP_CIPHER_CTX *ctx, int type, int arg, void *ptr);
751 int EVP_CIPHER_CTX_rand_key(EVP_CIPHER_CTX *ctx, unsigned char *key);
752
753 BIO_METHOD *BIO_f_md(void);
754 BIO_METHOD *BIO_f_base64(void);
755 BIO_METHOD *BIO_f_cipher(void);
756 BIO_METHOD *BIO_f_reliable(void);
757 __owur int BIO_set_cipher(BIO *b, const EVP_CIPHER *c, const unsigned char *k,
758 const unsigned char *i, int enc);
759
760 const EVP_MD *EVP_md_null(void);
761 # ifndef OPENSSL_NO_MD2
762 const EVP_MD *EVP_md2(void);
763 # endif
764 # ifndef OPENSSL_NO_MD4
765 const EVP_MD *EVP_md4(void);
766 # endif
767 # ifndef OPENSSL_NO_MD5
768 const EVP_MD *EVP_md5(void);
769 # endif
770 const EVP_MD *EVP_sha1(void);
771 const EVP_MD *EVP_dss1(void);
772 const EVP_MD *EVP_ecdsa(void);
773 const EVP_MD *EVP_sha224(void);
774 const EVP_MD *EVP_sha256(void);
775 const EVP_MD *EVP_sha384(void);
776 const EVP_MD *EVP_sha512(void);
777 # ifndef OPENSSL_NO_MDC2
778 const EVP_MD *EVP_mdc2(void);
779 # endif
780 # ifndef OPENSSL_NO_RMD160
781 const EVP_MD *EVP_ripemd160(void);
782 # endif
783 # ifndef OPENSSL_NO_WHIRLPOOL
784 const EVP_MD *EVP_whirlpool(void);
785 # endif
786 const EVP_CIPHER *EVP_enc_null(void); /* does nothing :-) */
787 # ifndef OPENSSL_NO_DES
788 const EVP_CIPHER *EVP_des_ecb(void);
789 const EVP_CIPHER *EVP_des_ede(void);
790 const EVP_CIPHER *EVP_des_ede3(void);
791 const EVP_CIPHER *EVP_des_ede_ecb(void);
792 const EVP_CIPHER *EVP_des_ede3_ecb(void);
793 const EVP_CIPHER *EVP_des_cfb64(void);
794 # define EVP_des_cfb EVP_des_cfb64
795 const EVP_CIPHER *EVP_des_cfb1(void);
796 const EVP_CIPHER *EVP_des_cfb8(void);
797 const EVP_CIPHER *EVP_des_ede_cfb64(void);
798 # define EVP_des_ede_cfb EVP_des_ede_cfb64
799 const EVP_CIPHER *EVP_des_ede3_cfb64(void);
800 # define EVP_des_ede3_cfb EVP_des_ede3_cfb64
801 const EVP_CIPHER *EVP_des_ede3_cfb1(void);
802 const EVP_CIPHER *EVP_des_ede3_cfb8(void);
803 const EVP_CIPHER *EVP_des_ofb(void);
804 const EVP_CIPHER *EVP_des_ede_ofb(void);
805 const EVP_CIPHER *EVP_des_ede3_ofb(void);
806 const EVP_CIPHER *EVP_des_cbc(void);
807 const EVP_CIPHER *EVP_des_ede_cbc(void);
808 const EVP_CIPHER *EVP_des_ede3_cbc(void);
809 const EVP_CIPHER *EVP_desx_cbc(void);
810 const EVP_CIPHER *EVP_des_ede3_wrap(void);
811 /*
812 * This should now be supported through the dev_crypto ENGINE. But also, why
813 * are rc4 and md5 declarations made here inside a "NO_DES" precompiler
814 * branch?
815 */
816 # endif
817 # ifndef OPENSSL_NO_RC4
818 const EVP_CIPHER *EVP_rc4(void);
819 const EVP_CIPHER *EVP_rc4_40(void);
820 # ifndef OPENSSL_NO_MD5
821 const EVP_CIPHER *EVP_rc4_hmac_md5(void);
822 # endif
823 # endif
824 # ifndef OPENSSL_NO_IDEA
825 const EVP_CIPHER *EVP_idea_ecb(void);
826 const EVP_CIPHER *EVP_idea_cfb64(void);
827 # define EVP_idea_cfb EVP_idea_cfb64
828 const EVP_CIPHER *EVP_idea_ofb(void);
829 const EVP_CIPHER *EVP_idea_cbc(void);
830 # endif
831 # ifndef OPENSSL_NO_RC2
832 const EVP_CIPHER *EVP_rc2_ecb(void);
833 const EVP_CIPHER *EVP_rc2_cbc(void);
834 const EVP_CIPHER *EVP_rc2_40_cbc(void);
835 const EVP_CIPHER *EVP_rc2_64_cbc(void);
836 const EVP_CIPHER *EVP_rc2_cfb64(void);
837 # define EVP_rc2_cfb EVP_rc2_cfb64
838 const EVP_CIPHER *EVP_rc2_ofb(void);
839 # endif
840 # ifndef OPENSSL_NO_BF
841 const EVP_CIPHER *EVP_bf_ecb(void);
842 const EVP_CIPHER *EVP_bf_cbc(void);
843 const EVP_CIPHER *EVP_bf_cfb64(void);
844 # define EVP_bf_cfb EVP_bf_cfb64
845 const EVP_CIPHER *EVP_bf_ofb(void);
846 # endif
847 # ifndef OPENSSL_NO_CAST
848 const EVP_CIPHER *EVP_cast5_ecb(void);
849 const EVP_CIPHER *EVP_cast5_cbc(void);
850 const EVP_CIPHER *EVP_cast5_cfb64(void);
851 # define EVP_cast5_cfb EVP_cast5_cfb64
852 const EVP_CIPHER *EVP_cast5_ofb(void);
853 # endif
854 # ifndef OPENSSL_NO_RC5
855 const EVP_CIPHER *EVP_rc5_32_12_16_cbc(void);
856 const EVP_CIPHER *EVP_rc5_32_12_16_ecb(void);
857 const EVP_CIPHER *EVP_rc5_32_12_16_cfb64(void);
858 # define EVP_rc5_32_12_16_cfb EVP_rc5_32_12_16_cfb64
859 const EVP_CIPHER *EVP_rc5_32_12_16_ofb(void);
860 # endif
861 # ifndef OPENSSL_NO_AES
862 const EVP_CIPHER *EVP_aes_128_ecb(void);
863 const EVP_CIPHER *EVP_aes_128_cbc(void);
864 const EVP_CIPHER *EVP_aes_128_cfb1(void);
865 const EVP_CIPHER *EVP_aes_128_cfb8(void);
866 const EVP_CIPHER *EVP_aes_128_cfb128(void);
867 # define EVP_aes_128_cfb EVP_aes_128_cfb128
868 const EVP_CIPHER *EVP_aes_128_ofb(void);
869 const EVP_CIPHER *EVP_aes_128_ctr(void);
870 const EVP_CIPHER *EVP_aes_128_ccm(void);
871 const EVP_CIPHER *EVP_aes_128_gcm(void);
872 const EVP_CIPHER *EVP_aes_128_xts(void);
873 const EVP_CIPHER *EVP_aes_128_wrap(void);
874 const EVP_CIPHER *EVP_aes_128_wrap_pad(void);
875 # ifndef OPENSSL_NO_OCB
876 const EVP_CIPHER *EVP_aes_128_ocb(void);
877 # endif
878 const EVP_CIPHER *EVP_aes_192_ecb(void);
879 const EVP_CIPHER *EVP_aes_192_cbc(void);
880 const EVP_CIPHER *EVP_aes_192_cfb1(void);
881 const EVP_CIPHER *EVP_aes_192_cfb8(void);
882 const EVP_CIPHER *EVP_aes_192_cfb128(void);
883 # define EVP_aes_192_cfb EVP_aes_192_cfb128
884 const EVP_CIPHER *EVP_aes_192_ofb(void);
885 const EVP_CIPHER *EVP_aes_192_ctr(void);
886 const EVP_CIPHER *EVP_aes_192_ccm(void);
887 const EVP_CIPHER *EVP_aes_192_gcm(void);
888 const EVP_CIPHER *EVP_aes_192_wrap(void);
889 const EVP_CIPHER *EVP_aes_192_wrap_pad(void);
890 # ifndef OPENSSL_NO_OCB
891 const EVP_CIPHER *EVP_aes_192_ocb(void);
892 # endif
893 const EVP_CIPHER *EVP_aes_256_ecb(void);
894 const EVP_CIPHER *EVP_aes_256_cbc(void);
895 const EVP_CIPHER *EVP_aes_256_cfb1(void);
896 const EVP_CIPHER *EVP_aes_256_cfb8(void);
897 const EVP_CIPHER *EVP_aes_256_cfb128(void);
898 # define EVP_aes_256_cfb EVP_aes_256_cfb128
899 const EVP_CIPHER *EVP_aes_256_ofb(void);
900 const EVP_CIPHER *EVP_aes_256_ctr(void);
901 const EVP_CIPHER *EVP_aes_256_ccm(void);
902 const EVP_CIPHER *EVP_aes_256_gcm(void);
903 const EVP_CIPHER *EVP_aes_256_xts(void);
904 const EVP_CIPHER *EVP_aes_256_wrap(void);
905 const EVP_CIPHER *EVP_aes_256_wrap_pad(void);
906 # ifndef OPENSSL_NO_OCB
907 const EVP_CIPHER *EVP_aes_256_ocb(void);
908 # endif
909 const EVP_CIPHER *EVP_aes_128_cbc_hmac_sha1(void);
910 const EVP_CIPHER *EVP_aes_256_cbc_hmac_sha1(void);
911 const EVP_CIPHER *EVP_aes_128_cbc_hmac_sha256(void);
912 const EVP_CIPHER *EVP_aes_256_cbc_hmac_sha256(void);
913 # endif
914 # ifndef OPENSSL_NO_CAMELLIA
915 const EVP_CIPHER *EVP_camellia_128_ecb(void);
916 const EVP_CIPHER *EVP_camellia_128_cbc(void);
917 const EVP_CIPHER *EVP_camellia_128_cfb1(void);
918 const EVP_CIPHER *EVP_camellia_128_cfb8(void);
919 const EVP_CIPHER *EVP_camellia_128_cfb128(void);
920 # define EVP_camellia_128_cfb EVP_camellia_128_cfb128
921 const EVP_CIPHER *EVP_camellia_128_ofb(void);
922 const EVP_CIPHER *EVP_camellia_128_ctr(void);
923 const EVP_CIPHER *EVP_camellia_192_ecb(void);
924 const EVP_CIPHER *EVP_camellia_192_cbc(void);
925 const EVP_CIPHER *EVP_camellia_192_cfb1(void);
926 const EVP_CIPHER *EVP_camellia_192_cfb8(void);
927 const EVP_CIPHER *EVP_camellia_192_cfb128(void);
928 # define EVP_camellia_192_cfb EVP_camellia_192_cfb128
929 const EVP_CIPHER *EVP_camellia_192_ofb(void);
930 const EVP_CIPHER *EVP_camellia_192_ctr(void);
931 const EVP_CIPHER *EVP_camellia_256_ecb(void);
932 const EVP_CIPHER *EVP_camellia_256_cbc(void);
933 const EVP_CIPHER *EVP_camellia_256_cfb1(void);
934 const EVP_CIPHER *EVP_camellia_256_cfb8(void);
935 const EVP_CIPHER *EVP_camellia_256_cfb128(void);
936 # define EVP_camellia_256_cfb EVP_camellia_256_cfb128
937 const EVP_CIPHER *EVP_camellia_256_ofb(void);
938 const EVP_CIPHER *EVP_camellia_256_ctr(void);
939 # endif
940
941 # ifndef OPENSSL_NO_SEED
942 const EVP_CIPHER *EVP_seed_ecb(void);
943 const EVP_CIPHER *EVP_seed_cbc(void);
944 const EVP_CIPHER *EVP_seed_cfb128(void);
945 # define EVP_seed_cfb EVP_seed_cfb128
946 const EVP_CIPHER *EVP_seed_ofb(void);
947 # endif
948
949 void OPENSSL_add_all_algorithms_noconf(void);
950 void OPENSSL_add_all_algorithms_conf(void);
951
952 # ifdef OPENSSL_LOAD_CONF
953 # define OpenSSL_add_all_algorithms() \
954 OPENSSL_add_all_algorithms_conf()
955 # else
956 # define OpenSSL_add_all_algorithms() \
957 OPENSSL_add_all_algorithms_noconf()
958 # endif
959
960 void OpenSSL_add_all_ciphers(void);
961 void OpenSSL_add_all_digests(void);
962 # define SSLeay_add_all_algorithms() OpenSSL_add_all_algorithms()
963 # define SSLeay_add_all_ciphers() OpenSSL_add_all_ciphers()
964 # define SSLeay_add_all_digests() OpenSSL_add_all_digests()
965
966 int EVP_add_cipher(const EVP_CIPHER *cipher);
967 int EVP_add_digest(const EVP_MD *digest);
968
969 const EVP_CIPHER *EVP_get_cipherbyname(const char *name);
970 const EVP_MD *EVP_get_digestbyname(const char *name);
971 void EVP_cleanup(void);
972
973 void EVP_CIPHER_do_all(void (*fn) (const EVP_CIPHER *ciph,
974 const char *from, const char *to, void *x),
975 void *arg);
976 void EVP_CIPHER_do_all_sorted(void (*fn)
977 (const EVP_CIPHER *ciph, const char *from,
978 const char *to, void *x), void *arg);
979
980 void EVP_MD_do_all(void (*fn) (const EVP_MD *ciph,
981 const char *from, const char *to, void *x),
982 void *arg);
983 void EVP_MD_do_all_sorted(void (*fn)
984 (const EVP_MD *ciph, const char *from,
985 const char *to, void *x), void *arg);
986
987 int EVP_PKEY_decrypt_old(unsigned char *dec_key,
988 const unsigned char *enc_key, int enc_key_len,
989 EVP_PKEY *private_key);
990 int EVP_PKEY_encrypt_old(unsigned char *enc_key,
991 const unsigned char *key, int key_len,
992 EVP_PKEY *pub_key);
993 int EVP_PKEY_type(int type);
994 int EVP_PKEY_id(const EVP_PKEY *pkey);
995 int EVP_PKEY_base_id(const EVP_PKEY *pkey);
996 int EVP_PKEY_bits(EVP_PKEY *pkey);
997 int EVP_PKEY_security_bits(const EVP_PKEY *pkey);
998 int EVP_PKEY_size(EVP_PKEY *pkey);
999 int EVP_PKEY_set_type(EVP_PKEY *pkey, int type);
1000 int EVP_PKEY_set_type_str(EVP_PKEY *pkey, const char *str, int len);
1001 int EVP_PKEY_assign(EVP_PKEY *pkey, int type, void *key);
1002 void *EVP_PKEY_get0(EVP_PKEY *pkey);
1003
1004 # ifndef OPENSSL_NO_RSA
1005 struct rsa_st;
1006 int EVP_PKEY_set1_RSA(EVP_PKEY *pkey, struct rsa_st *key);
1007 struct rsa_st *EVP_PKEY_get1_RSA(EVP_PKEY *pkey);
1008 # endif
1009 # ifndef OPENSSL_NO_DSA
1010 struct dsa_st;
1011 int EVP_PKEY_set1_DSA(EVP_PKEY *pkey, struct dsa_st *key);
1012 struct dsa_st *EVP_PKEY_get1_DSA(EVP_PKEY *pkey);
1013 # endif
1014 # ifndef OPENSSL_NO_DH
1015 struct dh_st;
1016 int EVP_PKEY_set1_DH(EVP_PKEY *pkey, struct dh_st *key);
1017 struct dh_st *EVP_PKEY_get1_DH(EVP_PKEY *pkey);
1018 # endif
1019 # ifndef OPENSSL_NO_EC
1020 struct ec_key_st;
1021 int EVP_PKEY_set1_EC_KEY(EVP_PKEY *pkey, struct ec_key_st *key);
1022 struct ec_key_st *EVP_PKEY_get1_EC_KEY(EVP_PKEY *pkey);
1023 # endif
1024
1025 EVP_PKEY *EVP_PKEY_new(void);
1026 void EVP_PKEY_free(EVP_PKEY *pkey);
1027
1028 EVP_PKEY *d2i_PublicKey(int type, EVP_PKEY **a, const unsigned char **pp,
1029 long length);
1030 int i2d_PublicKey(EVP_PKEY *a, unsigned char **pp);
1031
1032 EVP_PKEY *d2i_PrivateKey(int type, EVP_PKEY **a, const unsigned char **pp,
1033 long length);
1034 EVP_PKEY *d2i_AutoPrivateKey(EVP_PKEY **a, const unsigned char **pp,
1035 long length);
1036 int i2d_PrivateKey(EVP_PKEY *a, unsigned char **pp);
1037
1038 int EVP_PKEY_copy_parameters(EVP_PKEY *to, const EVP_PKEY *from);
1039 int EVP_PKEY_missing_parameters(const EVP_PKEY *pkey);
1040 int EVP_PKEY_save_parameters(EVP_PKEY *pkey, int mode);
1041 int EVP_PKEY_cmp_parameters(const EVP_PKEY *a, const EVP_PKEY *b);
1042
1043 int EVP_PKEY_cmp(const EVP_PKEY *a, const EVP_PKEY *b);
1044
1045 int EVP_PKEY_print_public(BIO *out, const EVP_PKEY *pkey,
1046 int indent, ASN1_PCTX *pctx);
1047 int EVP_PKEY_print_private(BIO *out, const EVP_PKEY *pkey,
1048 int indent, ASN1_PCTX *pctx);
1049 int EVP_PKEY_print_params(BIO *out, const EVP_PKEY *pkey,
1050 int indent, ASN1_PCTX *pctx);
1051
1052 int EVP_PKEY_get_default_digest_nid(EVP_PKEY *pkey, int *pnid);
1053
1054 int EVP_CIPHER_type(const EVP_CIPHER *ctx);
1055
1056 /* calls methods */
1057 int EVP_CIPHER_param_to_asn1(EVP_CIPHER_CTX *c, ASN1_TYPE *type);
1058 int EVP_CIPHER_asn1_to_param(EVP_CIPHER_CTX *c, ASN1_TYPE *type);
1059
1060 /* These are used by EVP_CIPHER methods */
1061 int EVP_CIPHER_set_asn1_iv(EVP_CIPHER_CTX *c, ASN1_TYPE *type);
1062 int EVP_CIPHER_get_asn1_iv(EVP_CIPHER_CTX *c, ASN1_TYPE *type);
1063
1064 /* PKCS5 password based encryption */
1065 int PKCS5_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen,
1066 ASN1_TYPE *param, const EVP_CIPHER *cipher,
1067 const EVP_MD *md, int en_de);
1068 int PKCS5_PBKDF2_HMAC_SHA1(const char *pass, int passlen,
1069 const unsigned char *salt, int saltlen, int iter,
1070 int keylen, unsigned char *out);
1071 int PKCS5_PBKDF2_HMAC(const char *pass, int passlen,
1072 const unsigned char *salt, int saltlen, int iter,
1073 const EVP_MD *digest, int keylen, unsigned char *out);
1074 int PKCS5_v2_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen,
1075 ASN1_TYPE *param, const EVP_CIPHER *cipher,
1076 const EVP_MD *md, int en_de);
1077
1078 #ifndef OPENSSL_NO_SCRYPT
1079 int EVP_PBE_scrypt(const char *pass, size_t passlen,
1080 const unsigned char *salt, size_t saltlen,
1081 uint64_t N, uint64_t r, uint64_t p, uint64_t maxmem,
1082 unsigned char *key, size_t keylen);
1083
1084 int PKCS5_v2_scrypt_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass,
1085 int passlen, ASN1_TYPE *param,
1086 const EVP_CIPHER *c, const EVP_MD *md, int en_de);
1087 #endif
1088
1089 void PKCS5_PBE_add(void);
1090
1091 int EVP_PBE_CipherInit(ASN1_OBJECT *pbe_obj, const char *pass, int passlen,
1092 ASN1_TYPE *param, EVP_CIPHER_CTX *ctx, int en_de);
1093
1094 /* PBE type */
1095
1096 /* Can appear as the outermost AlgorithmIdentifier */
1097 # define EVP_PBE_TYPE_OUTER 0x0
1098 /* Is an PRF type OID */
1099 # define EVP_PBE_TYPE_PRF 0x1
1100 /* Is a PKCS#5 v2.0 KDF */
1101 # define EVP_PBE_TYPE_KDF 0x2
1102
1103 int EVP_PBE_alg_add_type(int pbe_type, int pbe_nid, int cipher_nid,
1104 int md_nid, EVP_PBE_KEYGEN *keygen);
1105 int EVP_PBE_alg_add(int nid, const EVP_CIPHER *cipher, const EVP_MD *md,
1106 EVP_PBE_KEYGEN *keygen);
1107 int EVP_PBE_find(int type, int pbe_nid, int *pcnid, int *pmnid,
1108 EVP_PBE_KEYGEN **pkeygen);
1109 void EVP_PBE_cleanup(void);
1110 int EVP_PBE_get(int *ptype, int *ppbe_nid, size_t num);
1111
1112 # define ASN1_PKEY_ALIAS 0x1
1113 # define ASN1_PKEY_DYNAMIC 0x2
1114 # define ASN1_PKEY_SIGPARAM_NULL 0x4
1115
1116 # define ASN1_PKEY_CTRL_PKCS7_SIGN 0x1
1117 # define ASN1_PKEY_CTRL_PKCS7_ENCRYPT 0x2
1118 # define ASN1_PKEY_CTRL_DEFAULT_MD_NID 0x3
1119 # define ASN1_PKEY_CTRL_CMS_SIGN 0x5
1120 # define ASN1_PKEY_CTRL_CMS_ENVELOPE 0x7
1121 # define ASN1_PKEY_CTRL_CMS_RI_TYPE 0x8
1122
1123 int EVP_PKEY_asn1_get_count(void);
1124 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_get0(int idx);
1125 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_find(ENGINE **pe, int type);
1126 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_find_str(ENGINE **pe,
1127 const char *str, int len);
1128 int EVP_PKEY_asn1_add0(const EVP_PKEY_ASN1_METHOD *ameth);
1129 int EVP_PKEY_asn1_add_alias(int to, int from);
1130 int EVP_PKEY_asn1_get0_info(int *ppkey_id, int *pkey_base_id,
1131 int *ppkey_flags, const char **pinfo,
1132 const char **ppem_str,
1133 const EVP_PKEY_ASN1_METHOD *ameth);
1134
1135 const EVP_PKEY_ASN1_METHOD *EVP_PKEY_get0_asn1(EVP_PKEY *pkey);
1136 EVP_PKEY_ASN1_METHOD *EVP_PKEY_asn1_new(int id, int flags,
1137 const char *pem_str,
1138 const char *info);
1139 void EVP_PKEY_asn1_copy(EVP_PKEY_ASN1_METHOD *dst,
1140 const EVP_PKEY_ASN1_METHOD *src);
1141 void EVP_PKEY_asn1_free(EVP_PKEY_ASN1_METHOD *ameth);
1142 void EVP_PKEY_asn1_set_public(EVP_PKEY_ASN1_METHOD *ameth,
1143 int (*pub_decode) (EVP_PKEY *pk,
1144 X509_PUBKEY *pub),
1145 int (*pub_encode) (X509_PUBKEY *pub,
1146 const EVP_PKEY *pk),
1147 int (*pub_cmp) (const EVP_PKEY *a,
1148 const EVP_PKEY *b),
1149 int (*pub_print) (BIO *out,
1150 const EVP_PKEY *pkey,
1151 int indent, ASN1_PCTX *pctx),
1152 int (*pkey_size) (const EVP_PKEY *pk),
1153 int (*pkey_bits) (const EVP_PKEY *pk));
1154 void EVP_PKEY_asn1_set_private(EVP_PKEY_ASN1_METHOD *ameth,
1155 int (*priv_decode) (EVP_PKEY *pk,
1156 PKCS8_PRIV_KEY_INFO
1157 *p8inf),
1158 int (*priv_encode) (PKCS8_PRIV_KEY_INFO *p8,
1159 const EVP_PKEY *pk),
1160 int (*priv_print) (BIO *out,
1161 const EVP_PKEY *pkey,
1162 int indent,
1163 ASN1_PCTX *pctx));
1164 void EVP_PKEY_asn1_set_param(EVP_PKEY_ASN1_METHOD *ameth,
1165 int (*param_decode) (EVP_PKEY *pkey,
1166 const unsigned char **pder,
1167 int derlen),
1168 int (*param_encode) (const EVP_PKEY *pkey,
1169 unsigned char **pder),
1170 int (*param_missing) (const EVP_PKEY *pk),
1171 int (*param_copy) (EVP_PKEY *to,
1172 const EVP_PKEY *from),
1173 int (*param_cmp) (const EVP_PKEY *a,
1174 const EVP_PKEY *b),
1175 int (*param_print) (BIO *out,
1176 const EVP_PKEY *pkey,
1177 int indent,
1178 ASN1_PCTX *pctx));
1179
1180 void EVP_PKEY_asn1_set_free(EVP_PKEY_ASN1_METHOD *ameth,
1181 void (*pkey_free) (EVP_PKEY *pkey));
1182 void EVP_PKEY_asn1_set_ctrl(EVP_PKEY_ASN1_METHOD *ameth,
1183 int (*pkey_ctrl) (EVP_PKEY *pkey, int op,
1184 long arg1, void *arg2));
1185 void EVP_PKEY_asn1_set_item(EVP_PKEY_ASN1_METHOD *ameth,
1186 int (*item_verify) (EVP_MD_CTX *ctx,
1187 const ASN1_ITEM *it,
1188 void *asn,
1189 X509_ALGOR *a,
1190 ASN1_BIT_STRING *sig,
1191 EVP_PKEY *pkey),
1192 int (*item_sign) (EVP_MD_CTX *ctx,
1193 const ASN1_ITEM *it,
1194 void *asn,
1195 X509_ALGOR *alg1,
1196 X509_ALGOR *alg2,
1197 ASN1_BIT_STRING *sig));
1198
1199 void EVP_PKEY_asn1_set_security_bits(EVP_PKEY_ASN1_METHOD *ameth,
1200 int (*pkey_security_bits) (const EVP_PKEY
1201 *pk));
1202
1203 # define EVP_PKEY_OP_UNDEFINED 0
1204 # define EVP_PKEY_OP_PARAMGEN (1<<1)
1205 # define EVP_PKEY_OP_KEYGEN (1<<2)
1206 # define EVP_PKEY_OP_SIGN (1<<3)
1207 # define EVP_PKEY_OP_VERIFY (1<<4)
1208 # define EVP_PKEY_OP_VERIFYRECOVER (1<<5)
1209 # define EVP_PKEY_OP_SIGNCTX (1<<6)
1210 # define EVP_PKEY_OP_VERIFYCTX (1<<7)
1211 # define EVP_PKEY_OP_ENCRYPT (1<<8)
1212 # define EVP_PKEY_OP_DECRYPT (1<<9)
1213 # define EVP_PKEY_OP_DERIVE (1<<10)
1214
1215 # define EVP_PKEY_OP_TYPE_SIG \
1216 (EVP_PKEY_OP_SIGN | EVP_PKEY_OP_VERIFY | EVP_PKEY_OP_VERIFYRECOVER \
1217 | EVP_PKEY_OP_SIGNCTX | EVP_PKEY_OP_VERIFYCTX)
1218
1219 # define EVP_PKEY_OP_TYPE_CRYPT \
1220 (EVP_PKEY_OP_ENCRYPT | EVP_PKEY_OP_DECRYPT)
1221
1222 # define EVP_PKEY_OP_TYPE_NOGEN \
1223 (EVP_PKEY_OP_TYPE_SIG | EVP_PKEY_OP_TYPE_CRYPT | EVP_PKEY_OP_DERIVE)
1224
1225 # define EVP_PKEY_OP_TYPE_GEN \
1226 (EVP_PKEY_OP_PARAMGEN | EVP_PKEY_OP_KEYGEN)
1227
1228 # define EVP_PKEY_CTX_set_signature_md(ctx, md) \
1229 EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, \
1230 EVP_PKEY_CTRL_MD, 0, (void *)md)
1231
1232 # define EVP_PKEY_CTX_get_signature_md(ctx, pmd) \
1233 EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, \
1234 EVP_PKEY_CTRL_GET_MD, 0, (void *)pmd)
1235
1236 # define EVP_PKEY_CTX_set_mac_key(ctx, key, len) \
1237 EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_KEYGEN, \
1238 EVP_PKEY_CTRL_SET_MAC_KEY, len, (void *)key)
1239
1240 # define EVP_PKEY_CTRL_MD 1
1241 # define EVP_PKEY_CTRL_PEER_KEY 2
1242
1243 # define EVP_PKEY_CTRL_PKCS7_ENCRYPT 3
1244 # define EVP_PKEY_CTRL_PKCS7_DECRYPT 4
1245
1246 # define EVP_PKEY_CTRL_PKCS7_SIGN 5
1247
1248 # define EVP_PKEY_CTRL_SET_MAC_KEY 6
1249
1250 # define EVP_PKEY_CTRL_DIGESTINIT 7
1251
1252 /* Used by GOST key encryption in TLS */
1253 # define EVP_PKEY_CTRL_SET_IV 8
1254
1255 # define EVP_PKEY_CTRL_CMS_ENCRYPT 9
1256 # define EVP_PKEY_CTRL_CMS_DECRYPT 10
1257 # define EVP_PKEY_CTRL_CMS_SIGN 11
1258
1259 # define EVP_PKEY_CTRL_CIPHER 12
1260
1261 # define EVP_PKEY_CTRL_GET_MD 13
1262
1263 # define EVP_PKEY_ALG_CTRL 0x1000
1264
1265 # define EVP_PKEY_FLAG_AUTOARGLEN 2
1266 /*
1267 * Method handles all operations: don't assume any digest related defaults.
1268 */
1269 # define EVP_PKEY_FLAG_SIGCTX_CUSTOM 4
1270
1271 const EVP_PKEY_METHOD *EVP_PKEY_meth_find(int type);
1272 EVP_PKEY_METHOD *EVP_PKEY_meth_new(int id, int flags);
1273 void EVP_PKEY_meth_get0_info(int *ppkey_id, int *pflags,
1274 const EVP_PKEY_METHOD *meth);
1275 void EVP_PKEY_meth_copy(EVP_PKEY_METHOD *dst, const EVP_PKEY_METHOD *src);
1276 void EVP_PKEY_meth_free(EVP_PKEY_METHOD *pmeth);
1277 int EVP_PKEY_meth_add0(const EVP_PKEY_METHOD *pmeth);
1278
1279 EVP_PKEY_CTX *EVP_PKEY_CTX_new(EVP_PKEY *pkey, ENGINE *e);
1280 EVP_PKEY_CTX *EVP_PKEY_CTX_new_id(int id, ENGINE *e);
1281 EVP_PKEY_CTX *EVP_PKEY_CTX_dup(EVP_PKEY_CTX *ctx);
1282 void EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx);
1283
1284 int EVP_PKEY_CTX_ctrl(EVP_PKEY_CTX *ctx, int keytype, int optype,
1285 int cmd, int p1, void *p2);
1286 int EVP_PKEY_CTX_ctrl_str(EVP_PKEY_CTX *ctx, const char *type,
1287 const char *value);
1288
1289 int EVP_PKEY_CTX_get_operation(EVP_PKEY_CTX *ctx);
1290 void EVP_PKEY_CTX_set0_keygen_info(EVP_PKEY_CTX *ctx, int *dat, int datlen);
1291
1292 EVP_PKEY *EVP_PKEY_new_mac_key(int type, ENGINE *e,
1293 const unsigned char *key, int keylen);
1294
1295 void EVP_PKEY_CTX_set_data(EVP_PKEY_CTX *ctx, void *data);
1296 void *EVP_PKEY_CTX_get_data(EVP_PKEY_CTX *ctx);
1297 EVP_PKEY *EVP_PKEY_CTX_get0_pkey(EVP_PKEY_CTX *ctx);
1298
1299 EVP_PKEY *EVP_PKEY_CTX_get0_peerkey(EVP_PKEY_CTX *ctx);
1300
1301 void EVP_PKEY_CTX_set_app_data(EVP_PKEY_CTX *ctx, void *data);
1302 void *EVP_PKEY_CTX_get_app_data(EVP_PKEY_CTX *ctx);
1303
1304 int EVP_PKEY_sign_init(EVP_PKEY_CTX *ctx);
1305 int EVP_PKEY_sign(EVP_PKEY_CTX *ctx,
1306 unsigned char *sig, size_t *siglen,
1307 const unsigned char *tbs, size_t tbslen);
1308 int EVP_PKEY_verify_init(EVP_PKEY_CTX *ctx);
1309 int EVP_PKEY_verify(EVP_PKEY_CTX *ctx,
1310 const unsigned char *sig, size_t siglen,
1311 const unsigned char *tbs, size_t tbslen);
1312 int EVP_PKEY_verify_recover_init(EVP_PKEY_CTX *ctx);
1313 int EVP_PKEY_verify_recover(EVP_PKEY_CTX *ctx,
1314 unsigned char *rout, size_t *routlen,
1315 const unsigned char *sig, size_t siglen);
1316 int EVP_PKEY_encrypt_init(EVP_PKEY_CTX *ctx);
1317 int EVP_PKEY_encrypt(EVP_PKEY_CTX *ctx,
1318 unsigned char *out, size_t *outlen,
1319 const unsigned char *in, size_t inlen);
1320 int EVP_PKEY_decrypt_init(EVP_PKEY_CTX *ctx);
1321 int EVP_PKEY_decrypt(EVP_PKEY_CTX *ctx,
1322 unsigned char *out, size_t *outlen,
1323 const unsigned char *in, size_t inlen);
1324
1325 int EVP_PKEY_derive_init(EVP_PKEY_CTX *ctx);
1326 int EVP_PKEY_derive_set_peer(EVP_PKEY_CTX *ctx, EVP_PKEY *peer);
1327 int EVP_PKEY_derive(EVP_PKEY_CTX *ctx, unsigned char *key, size_t *keylen);
1328
1329 typedef int EVP_PKEY_gen_cb (EVP_PKEY_CTX *ctx);
1330
1331 int EVP_PKEY_paramgen_init(EVP_PKEY_CTX *ctx);
1332 int EVP_PKEY_paramgen(EVP_PKEY_CTX *ctx, EVP_PKEY **ppkey);
1333 int EVP_PKEY_keygen_init(EVP_PKEY_CTX *ctx);
1334 int EVP_PKEY_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY **ppkey);
1335
1336 void EVP_PKEY_CTX_set_cb(EVP_PKEY_CTX *ctx, EVP_PKEY_gen_cb *cb);
1337 EVP_PKEY_gen_cb *EVP_PKEY_CTX_get_cb(EVP_PKEY_CTX *ctx);
1338
1339 int EVP_PKEY_CTX_get_keygen_info(EVP_PKEY_CTX *ctx, int idx);
1340
1341 void EVP_PKEY_meth_set_init(EVP_PKEY_METHOD *pmeth,
1342 int (*init) (EVP_PKEY_CTX *ctx));
1343
1344 void EVP_PKEY_meth_set_copy(EVP_PKEY_METHOD *pmeth,
1345 int (*copy) (EVP_PKEY_CTX *dst,
1346 EVP_PKEY_CTX *src));
1347
1348 void EVP_PKEY_meth_set_cleanup(EVP_PKEY_METHOD *pmeth,
1349 void (*cleanup) (EVP_PKEY_CTX *ctx));
1350
1351 void EVP_PKEY_meth_set_paramgen(EVP_PKEY_METHOD *pmeth,
1352 int (*paramgen_init) (EVP_PKEY_CTX *ctx),
1353 int (*paramgen) (EVP_PKEY_CTX *ctx,
1354 EVP_PKEY *pkey));
1355
1356 void EVP_PKEY_meth_set_keygen(EVP_PKEY_METHOD *pmeth,
1357 int (*keygen_init) (EVP_PKEY_CTX *ctx),
1358 int (*keygen) (EVP_PKEY_CTX *ctx,
1359 EVP_PKEY *pkey));
1360
1361 void EVP_PKEY_meth_set_sign(EVP_PKEY_METHOD *pmeth,
1362 int (*sign_init) (EVP_PKEY_CTX *ctx),
1363 int (*sign) (EVP_PKEY_CTX *ctx,
1364 unsigned char *sig, size_t *siglen,
1365 const unsigned char *tbs,
1366 size_t tbslen));
1367
1368 void EVP_PKEY_meth_set_verify(EVP_PKEY_METHOD *pmeth,
1369 int (*verify_init) (EVP_PKEY_CTX *ctx),
1370 int (*verify) (EVP_PKEY_CTX *ctx,
1371 const unsigned char *sig,
1372 size_t siglen,
1373 const unsigned char *tbs,
1374 size_t tbslen));
1375
1376 void EVP_PKEY_meth_set_verify_recover(EVP_PKEY_METHOD *pmeth,
1377 int (*verify_recover_init) (EVP_PKEY_CTX
1378 *ctx),
1379 int (*verify_recover) (EVP_PKEY_CTX
1380 *ctx,
1381 unsigned char
1382 *sig,
1383 size_t *siglen,
1384 const unsigned
1385 char *tbs,
1386 size_t tbslen));
1387
1388 void EVP_PKEY_meth_set_signctx(EVP_PKEY_METHOD *pmeth,
1389 int (*signctx_init) (EVP_PKEY_CTX *ctx,
1390 EVP_MD_CTX *mctx),
1391 int (*signctx) (EVP_PKEY_CTX *ctx,
1392 unsigned char *sig,
1393 size_t *siglen,
1394 EVP_MD_CTX *mctx));
1395
1396 void EVP_PKEY_meth_set_verifyctx(EVP_PKEY_METHOD *pmeth,
1397 int (*verifyctx_init) (EVP_PKEY_CTX *ctx,
1398 EVP_MD_CTX *mctx),
1399 int (*verifyctx) (EVP_PKEY_CTX *ctx,
1400 const unsigned char *sig,
1401 int siglen,
1402 EVP_MD_CTX *mctx));
1403
1404 void EVP_PKEY_meth_set_encrypt(EVP_PKEY_METHOD *pmeth,
1405 int (*encrypt_init) (EVP_PKEY_CTX *ctx),
1406 int (*encryptfn) (EVP_PKEY_CTX *ctx,
1407 unsigned char *out,
1408 size_t *outlen,
1409 const unsigned char *in,
1410 size_t inlen));
1411
1412 void EVP_PKEY_meth_set_decrypt(EVP_PKEY_METHOD *pmeth,
1413 int (*decrypt_init) (EVP_PKEY_CTX *ctx),
1414 int (*decrypt) (EVP_PKEY_CTX *ctx,
1415 unsigned char *out,
1416 size_t *outlen,
1417 const unsigned char *in,
1418 size_t inlen));
1419
1420 void EVP_PKEY_meth_set_derive(EVP_PKEY_METHOD *pmeth,
1421 int (*derive_init) (EVP_PKEY_CTX *ctx),
1422 int (*derive) (EVP_PKEY_CTX *ctx,
1423 unsigned char *key,
1424 size_t *keylen));
1425
1426 void EVP_PKEY_meth_set_ctrl(EVP_PKEY_METHOD *pmeth,
1427 int (*ctrl) (EVP_PKEY_CTX *ctx, int type, int p1,
1428 void *p2),
1429 int (*ctrl_str) (EVP_PKEY_CTX *ctx,
1430 const char *type,
1431 const char *value));
1432
1433 void EVP_add_alg_module(void);
1434
1435 /* BEGIN ERROR CODES */
1436 /*
1437 * The following lines are auto generated by the script mkerr.pl. Any changes
1438 * made after this point may be overwritten when the script is next run.
1439 */
1440 void ERR_load_EVP_strings(void);
1441
1442 /* Error codes for the EVP functions. */
1443
1444 /* Function codes. */
1445 # define EVP_F_AESNI_INIT_KEY 165
1446 # define EVP_F_AESNI_XTS_CIPHER 176
1447 # define EVP_F_AES_INIT_KEY 133
1448 # define EVP_F_AES_T4_INIT_KEY 178
1449 # define EVP_F_AES_XTS 172
1450 # define EVP_F_AES_XTS_CIPHER 175
1451 # define EVP_F_ALG_MODULE_INIT 177
1452 # define EVP_F_CAMELLIA_INIT_KEY 159
1453 # define EVP_F_CMAC_INIT 173
1454 # define EVP_F_CMLL_T4_INIT_KEY 179
1455 # define EVP_F_D2I_PKEY 100
1456 # define EVP_F_DO_SIGVER_INIT 161
1457 # define EVP_F_DSAPKEY2PKCS8 134
1458 # define EVP_F_DSA_PKEY2PKCS8 135
1459 # define EVP_F_ECDSA_PKEY2PKCS8 129
1460 # define EVP_F_ECKEY_PKEY2PKCS8 132
1461 # define EVP_F_EVP_CIPHERINIT_EX 123
1462 # define EVP_F_EVP_CIPHER_CTX_COPY 163
1463 # define EVP_F_EVP_CIPHER_CTX_CTRL 124
1464 # define EVP_F_EVP_CIPHER_CTX_SET_KEY_LENGTH 122
1465 # define EVP_F_EVP_DECRYPTFINAL_EX 101
1466 # define EVP_F_EVP_DIGESTINIT_EX 128
1467 # define EVP_F_EVP_ENCRYPTFINAL_EX 127
1468 # define EVP_F_EVP_MD_CTX_COPY_EX 110
1469 # define EVP_F_EVP_MD_SIZE 162
1470 # define EVP_F_EVP_OPENINIT 102
1471 # define EVP_F_EVP_PBE_ALG_ADD 115
1472 # define EVP_F_EVP_PBE_ALG_ADD_TYPE 160
1473 # define EVP_F_EVP_PBE_CIPHERINIT 116
1474 # define EVP_F_EVP_PBE_SCRYPT 181
1475 # define EVP_F_EVP_PKCS82PKEY 111
1476 # define EVP_F_EVP_PKCS82PKEY_BROKEN 136
1477 # define EVP_F_EVP_PKEY2PKCS8_BROKEN 113
1478 # define EVP_F_EVP_PKEY_COPY_PARAMETERS 103
1479 # define EVP_F_EVP_PKEY_CTX_CTRL 137
1480 # define EVP_F_EVP_PKEY_CTX_CTRL_STR 150
1481 # define EVP_F_EVP_PKEY_CTX_DUP 156
1482 # define EVP_F_EVP_PKEY_DECRYPT 104
1483 # define EVP_F_EVP_PKEY_DECRYPT_INIT 138
1484 # define EVP_F_EVP_PKEY_DECRYPT_OLD 151
1485 # define EVP_F_EVP_PKEY_DERIVE 153
1486 # define EVP_F_EVP_PKEY_DERIVE_INIT 154
1487 # define EVP_F_EVP_PKEY_DERIVE_SET_PEER 155
1488 # define EVP_F_EVP_PKEY_ENCRYPT 105
1489 # define EVP_F_EVP_PKEY_ENCRYPT_INIT 139
1490 # define EVP_F_EVP_PKEY_ENCRYPT_OLD 152
1491 # define EVP_F_EVP_PKEY_GET1_DH 119
1492 # define EVP_F_EVP_PKEY_GET1_DSA 120
1493 # define EVP_F_EVP_PKEY_GET1_ECDSA 130
1494 # define EVP_F_EVP_PKEY_GET1_EC_KEY 131
1495 # define EVP_F_EVP_PKEY_GET1_RSA 121
1496 # define EVP_F_EVP_PKEY_KEYGEN 146
1497 # define EVP_F_EVP_PKEY_KEYGEN_INIT 147
1498 # define EVP_F_EVP_PKEY_NEW 106
1499 # define EVP_F_EVP_PKEY_PARAMGEN 148
1500 # define EVP_F_EVP_PKEY_PARAMGEN_INIT 149
1501 # define EVP_F_EVP_PKEY_SIGN 140
1502 # define EVP_F_EVP_PKEY_SIGN_INIT 141
1503 # define EVP_F_EVP_PKEY_VERIFY 142
1504 # define EVP_F_EVP_PKEY_VERIFY_INIT 143
1505 # define EVP_F_EVP_PKEY_VERIFY_RECOVER 144
1506 # define EVP_F_EVP_PKEY_VERIFY_RECOVER_INIT 145
1507 # define EVP_F_EVP_RIJNDAEL 126
1508 # define EVP_F_EVP_SIGNFINAL 107
1509 # define EVP_F_EVP_VERIFYFINAL 108
1510 # define EVP_F_FIPS_CIPHERINIT 166
1511 # define EVP_F_FIPS_CIPHER_CTX_COPY 170
1512 # define EVP_F_FIPS_CIPHER_CTX_CTRL 167
1513 # define EVP_F_FIPS_CIPHER_CTX_SET_KEY_LENGTH 171
1514 # define EVP_F_FIPS_DIGESTINIT 168
1515 # define EVP_F_FIPS_MD_CTX_COPY 169
1516 # define EVP_F_HMAC_INIT_EX 174
1517 # define EVP_F_INT_CTX_NEW 157
1518 # define EVP_F_PKCS5_PBE_KEYIVGEN 117
1519 # define EVP_F_PKCS5_V2_PBE_KEYIVGEN 118
1520 # define EVP_F_PKCS5_V2_PBKDF2_KEYIVGEN 164
1521 # define EVP_F_PKCS5_V2_SCRYPT_KEYIVGEN 180
1522 # define EVP_F_PKCS8_SET_BROKEN 112
1523 # define EVP_F_PKEY_SET_TYPE 158
1524 # define EVP_F_RC2_MAGIC_TO_METH 109
1525 # define EVP_F_RC5_CTRL 125
1526
1527 /* Reason codes. */
1528 # define EVP_R_AES_IV_SETUP_FAILED 162
1529 # define EVP_R_AES_KEY_SETUP_FAILED 143
1530 # define EVP_R_ASN1_LIB 140
1531 # define EVP_R_BAD_BLOCK_LENGTH 136
1532 # define EVP_R_BAD_DECRYPT 100
1533 # define EVP_R_BAD_KEY_LENGTH 137
1534 # define EVP_R_BN_DECODE_ERROR 112
1535 # define EVP_R_BN_PUBKEY_ERROR 113
1536 # define EVP_R_BUFFER_TOO_SMALL 155
1537 # define EVP_R_CAMELLIA_KEY_SETUP_FAILED 157
1538 # define EVP_R_CIPHER_PARAMETER_ERROR 122
1539 # define EVP_R_COMMAND_NOT_SUPPORTED 147
1540 # define EVP_R_CTRL_NOT_IMPLEMENTED 132
1541 # define EVP_R_CTRL_OPERATION_NOT_IMPLEMENTED 133
1542 # define EVP_R_DATA_NOT_MULTIPLE_OF_BLOCK_LENGTH 138
1543 # define EVP_R_DECODE_ERROR 114
1544 # define EVP_R_DIFFERENT_KEY_TYPES 101
1545 # define EVP_R_DIFFERENT_PARAMETERS 153
1546 # define EVP_R_DISABLED_FOR_FIPS 163
1547 # define EVP_R_ENCODE_ERROR 115
1548 # define EVP_R_ERROR_LOADING_SECTION 165
1549 # define EVP_R_ERROR_SETTING_FIPS_MODE 166
1550 # define EVP_R_EVP_PBE_CIPHERINIT_ERROR 119
1551 # define EVP_R_EXPECTING_AN_RSA_KEY 127
1552 # define EVP_R_EXPECTING_A_DH_KEY 128
1553 # define EVP_R_EXPECTING_A_DSA_KEY 129
1554 # define EVP_R_EXPECTING_A_ECDSA_KEY 141
1555 # define EVP_R_EXPECTING_A_EC_KEY 142
1556 # define EVP_R_FIPS_MODE_NOT_SUPPORTED 167
1557 # define EVP_R_ILLEGAL_SCRYPT_PARAMETERS 171
1558 # define EVP_R_INITIALIZATION_ERROR 134
1559 # define EVP_R_INPUT_NOT_INITIALIZED 111
1560 # define EVP_R_INVALID_DIGEST 152
1561 # define EVP_R_INVALID_FIPS_MODE 168
1562 # define EVP_R_INVALID_KEY_LENGTH 130
1563 # define EVP_R_INVALID_OPERATION 148
1564 # define EVP_R_IV_TOO_LARGE 102
1565 # define EVP_R_KEYGEN_FAILURE 120
1566 # define EVP_R_MEMORY_LIMIT_EXCEEDED 172
1567 # define EVP_R_MESSAGE_DIGEST_IS_NULL 159
1568 # define EVP_R_METHOD_NOT_SUPPORTED 144
1569 # define EVP_R_MISSING_PARAMETERS 103
1570 # define EVP_R_NO_CIPHER_SET 131
1571 # define EVP_R_NO_DEFAULT_DIGEST 158
1572 # define EVP_R_NO_DIGEST_SET 139
1573 # define EVP_R_NO_DSA_PARAMETERS 116
1574 # define EVP_R_NO_KEY_SET 154
1575 # define EVP_R_NO_OPERATION_SET 149
1576 # define EVP_R_NO_SIGN_FUNCTION_CONFIGURED 104
1577 # define EVP_R_NO_VERIFY_FUNCTION_CONFIGURED 105
1578 # define EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE 150
1579 # define EVP_R_OPERATON_NOT_INITIALIZED 151
1580 # define EVP_R_PKCS8_UNKNOWN_BROKEN_TYPE 117
1581 # define EVP_R_PRIVATE_KEY_DECODE_ERROR 145
1582 # define EVP_R_PRIVATE_KEY_ENCODE_ERROR 146
1583 # define EVP_R_PUBLIC_KEY_NOT_RSA 106
1584 # define EVP_R_TOO_LARGE 164
1585 # define EVP_R_UNKNOWN_CIPHER 160
1586 # define EVP_R_UNKNOWN_DIGEST 161
1587 # define EVP_R_UNKNOWN_OPTION 169
1588 # define EVP_R_UNKNOWN_PBE_ALGORITHM 121
1589 # define EVP_R_UNSUPORTED_NUMBER_OF_ROUNDS 135
1590 # define EVP_R_UNSUPPORTED_ALGORITHM 156
1591 # define EVP_R_UNSUPPORTED_CIPHER 107
1592 # define EVP_R_UNSUPPORTED_KEYLENGTH 123
1593 # define EVP_R_UNSUPPORTED_KEY_DERIVATION_FUNCTION 124
1594 # define EVP_R_UNSUPPORTED_KEY_SIZE 108
1595 # define EVP_R_UNSUPPORTED_PRF 125
1596 # define EVP_R_UNSUPPORTED_PRIVATE_KEY_ALGORITHM 118
1597 # define EVP_R_UNSUPPORTED_SALT_TYPE 126
1598 # define EVP_R_WRAP_MODE_NOT_ALLOWED 170
1599 # define EVP_R_WRONG_FINAL_BLOCK_LENGTH 109
1600 # define EVP_R_WRONG_PUBLIC_KEY_TYPE 110
1601
1602 #ifdef __cplusplus
1603 }
1604 #endif
1605 #endif
A mirror of the official openssl repository