1/* crypto/evp/evp.h */ 2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 3 * All rights reserved. 4 * 5 * This package is an SSL implementation written 6 * by Eric Young (eay@cryptsoft.com). 7 * The implementation was written so as to conform with Netscapes SSL. 8 * 9 * This library is free for commercial and non-commercial use as long as 10 * the following conditions are aheared to. The following conditions 11 * apply to all code found in this distribution, be it the RC4, RSA, 12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation 13 * included with this distribution is covered by the same copyright terms 14 * except that the holder is Tim Hudson (tjh@cryptsoft.com). 15 * 16 * Copyright remains Eric Young's, and as such any Copyright notices in 17 * the code are not to be removed. 18 * If this package is used in a product, Eric Young should be given attribution 19 * as the author of the parts of the library used. 20 * This can be in the form of a textual message at program startup or 21 * in documentation (online or textual) provided with the package. 22 * 23 * Redistribution and use in source and binary forms, with or without 24 * modification, are permitted provided that the following conditions 25 * are met: 26 * 1. Redistributions of source code must retain the copyright 27 * notice, this list of conditions and the following disclaimer. 28 * 2. Redistributions in binary form must reproduce the above copyright 29 * notice, this list of conditions and the following disclaimer in the 30 * documentation and/or other materials provided with the distribution. 31 * 3. All advertising materials mentioning features or use of this software 32 * must display the following acknowledgement: 33 * "This product includes cryptographic software written by 34 * Eric Young (eay@cryptsoft.com)" 35 * The word 'cryptographic' can be left out if the rouines from the library 36 * being used are not cryptographic related :-). 37 * 4. If you include any Windows specific code (or a derivative thereof) from 38 * the apps directory (application code) you must include an acknowledgement: 39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" 40 * 41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND 42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 51 * SUCH DAMAGE. 52 * 53 * The licence and distribution terms for any publically available version or 54 * derivative of this code cannot be changed. i.e. this code cannot simply be 55 * copied and put under another distribution licence 56 * [including the GNU Public Licence.] 57 */ 58 59#ifndef HEADER_ENVELOPE_H 60#define HEADER_ENVELOPE_H 61 62#ifdef OPENSSL_ALGORITHM_DEFINES 63# include <openssl/opensslconf.h> 64#else 65# define OPENSSL_ALGORITHM_DEFINES 66# include <openssl/opensslconf.h> 67# undef OPENSSL_ALGORITHM_DEFINES 68#endif 69 70#include <openssl/ossl_typ.h> 71 72#include <openssl/symhacks.h> 73 74#ifndef OPENSSL_NO_BIO 75#include <openssl/bio.h> 76#endif 77#ifndef OPENSSL_NO_MD2 78#include <openssl/md2.h> 79#endif 80#ifndef OPENSSL_NO_MD4 81#include <openssl/md4.h> 82#endif 83#ifndef OPENSSL_NO_MD5 84#include <openssl/md5.h> 85#endif 86#ifndef OPENSSL_NO_SHA 87#include <openssl/sha.h> 88#endif 89#ifndef OPENSSL_NO_RIPEMD 90#include <openssl/ripemd.h> 91#endif 92#ifndef OPENSSL_NO_DES 93#include <openssl/des.h> 94#endif 95#ifndef OPENSSL_NO_RC4 96#include <openssl/rc4.h> 97#endif 98#ifndef OPENSSL_NO_RC2 99#include <openssl/rc2.h> 100#endif 101#ifndef OPENSSL_NO_BF 102#include <openssl/blowfish.h> 103#endif 104#ifndef OPENSSL_NO_CAST 105#include <openssl/cast.h> 106#endif 107#ifndef OPENSSL_NO_AES 108#include <openssl/aes.h> 109#endif 110 111/* 112#define EVP_RC2_KEY_SIZE 16 113#define EVP_RC4_KEY_SIZE 16 114#define EVP_BLOWFISH_KEY_SIZE 16 115#define EVP_CAST5_KEY_SIZE 16 116#define EVP_RC5_32_12_16_KEY_SIZE 16 117*/ 118#define EVP_MAX_MD_SIZE (16+20) /* The SSLv3 md5+sha1 type */ 119#define EVP_MAX_KEY_LENGTH 32 120#define EVP_MAX_IV_LENGTH 16 121#define EVP_MAX_BLOCK_LENGTH 32 122 123#define PKCS5_SALT_LEN 8 124/* Default PKCS#5 iteration count */ 125#define PKCS5_DEFAULT_ITER 2048 126 127#ifndef OPENSSL_NO_RSA 128#include <openssl/rsa.h> 129#endif 130 131#ifndef OPENSSL_NO_DSA 132#include <openssl/dsa.h> 133#endif 134 135#ifndef OPENSSL_NO_DH 136#include <openssl/dh.h> 137#endif 138 139#include <openssl/objects.h> 140 141#define EVP_PK_RSA 0x0001 142#define EVP_PK_DSA 0x0002 143#define EVP_PK_DH 0x0004 144#define EVP_PKT_SIGN 0x0010 145#define EVP_PKT_ENC 0x0020 146#define EVP_PKT_EXCH 0x0040 147#define EVP_PKS_RSA 0x0100 148#define EVP_PKS_DSA 0x0200 149#define EVP_PKT_EXP 0x1000 /* <= 512 bit key */ 150 151#define EVP_PKEY_NONE NID_undef 152#define EVP_PKEY_RSA NID_rsaEncryption 153#define EVP_PKEY_RSA2 NID_rsa 154#define EVP_PKEY_DSA NID_dsa 155#define EVP_PKEY_DSA1 NID_dsa_2 156#define EVP_PKEY_DSA2 NID_dsaWithSHA 157#define EVP_PKEY_DSA3 NID_dsaWithSHA1 158#define EVP_PKEY_DSA4 NID_dsaWithSHA1_2 159#define EVP_PKEY_DH NID_dhKeyAgreement 160 161#ifdef __cplusplus 162extern "C" { 163#endif 164 165/* Type needs to be a bit field 166 * Sub-type needs to be for variations on the method, as in, can it do 167 * arbitrary encryption.... */ 168struct evp_pkey_st 169 { 170 int type; 171 int save_type; 172 int references; 173 union { 174 char *ptr; 175#ifndef OPENSSL_NO_RSA 176 struct rsa_st *rsa; /* RSA */ 177#endif 178#ifndef OPENSSL_NO_DSA 179 struct dsa_st *dsa; /* DSA */ 180#endif 181#ifndef OPENSSL_NO_DH 182 struct dh_st *dh; /* DH */ 183#endif 184 } pkey; 185 int save_parameters; 186 STACK_OF(X509_ATTRIBUTE) *attributes; /* [ 0 ] */ 187 } /* EVP_PKEY */; 188 189#define EVP_PKEY_MO_SIGN 0x0001 190#define EVP_PKEY_MO_VERIFY 0x0002 191#define EVP_PKEY_MO_ENCRYPT 0x0004 192#define EVP_PKEY_MO_DECRYPT 0x0008 193 194#if 0 195/* This structure is required to tie the message digest and signing together. 196 * The lookup can be done by md/pkey_method, oid, oid/pkey_method, or 197 * oid, md and pkey. 198 * This is required because for various smart-card perform the digest and 199 * signing/verification on-board. To handle this case, the specific 200 * EVP_MD and EVP_PKEY_METHODs need to be closely associated. 201 * When a PKEY is created, it will have a EVP_PKEY_METHOD associated with it. 202 * This can either be software or a token to provide the required low level 203 * routines. 204 */ 205typedef struct evp_pkey_md_st 206 { 207 int oid; 208 EVP_MD *md; 209 EVP_PKEY_METHOD *pkey; 210 } EVP_PKEY_MD; 211 212#define EVP_rsa_md2() \ 213 EVP_PKEY_MD_add(NID_md2WithRSAEncryption,\ 214 EVP_rsa_pkcs1(),EVP_md2()) 215#define EVP_rsa_md5() \ 216 EVP_PKEY_MD_add(NID_md5WithRSAEncryption,\ 217 EVP_rsa_pkcs1(),EVP_md5()) 218#define EVP_rsa_sha0() \ 219 EVP_PKEY_MD_add(NID_shaWithRSAEncryption,\ 220 EVP_rsa_pkcs1(),EVP_sha()) 221#define EVP_rsa_sha1() \ 222 EVP_PKEY_MD_add(NID_sha1WithRSAEncryption,\ 223 EVP_rsa_pkcs1(),EVP_sha1()) 224#define EVP_rsa_ripemd160() \ 225 EVP_PKEY_MD_add(NID_ripemd160WithRSA,\ 226 EVP_rsa_pkcs1(),EVP_ripemd160()) 227#define EVP_rsa_mdc2() \ 228 EVP_PKEY_MD_add(NID_mdc2WithRSA,\ 229 EVP_rsa_octet_string(),EVP_mdc2()) 230#define EVP_dsa_sha() \ 231 EVP_PKEY_MD_add(NID_dsaWithSHA,\ 232 EVP_dsa(),EVP_sha()) 233#define EVP_dsa_sha1() \ 234 EVP_PKEY_MD_add(NID_dsaWithSHA1,\ 235 EVP_dsa(),EVP_sha1()) 236 237typedef struct evp_pkey_method_st 238 { 239 char *name; 240 int flags; 241 int type; /* RSA, DSA, an SSLeay specific constant */ 242 int oid; /* For the pub-key type */ 243 int encrypt_oid; /* pub/priv key encryption */ 244 245 int (*sign)(); 246 int (*verify)(); 247 struct { 248 int (*set)(); /* get and/or set the underlying type */ 249 int (*get)(); 250 int (*encrypt)(); 251 int (*decrypt)(); 252 int (*i2d)(); 253 int (*d2i)(); 254 int (*dup)(); 255 } pub,priv; 256 int (*set_asn1_parameters)(); 257 int (*get_asn1_parameters)(); 258 } EVP_PKEY_METHOD; 259#endif 260 261#ifndef EVP_MD 262struct env_md_st 263 { 264 int type; 265 int pkey_type; 266 int md_size; 267 unsigned long flags; 268 int (*init)(EVP_MD_CTX *ctx); 269 int (*update)(EVP_MD_CTX *ctx,const void *data,unsigned long count); 270 int (*final)(EVP_MD_CTX *ctx,unsigned char *md); 271 int (*copy)(EVP_MD_CTX *to,const EVP_MD_CTX *from); 272 int (*cleanup)(EVP_MD_CTX *ctx); 273 274 /* FIXME: prototype these some day */ 275 int (*sign)(); 276 int (*verify)(); 277 int required_pkey_type[5]; /*EVP_PKEY_xxx */ 278 int block_size; 279 int ctx_size; /* how big does the ctx->md_data need to be */ 280 } /* EVP_MD */; 281 282#define EVP_MD_FLAG_ONESHOT 0x0001 /* digest can only handle a single 283 * block */ 284 285#define EVP_PKEY_NULL_method NULL,NULL,{0,0,0,0} 286 287#ifndef OPENSSL_NO_DSA 288#define EVP_PKEY_DSA_method DSA_sign,DSA_verify, \ 289 {EVP_PKEY_DSA,EVP_PKEY_DSA2,EVP_PKEY_DSA3, \ 290 EVP_PKEY_DSA4,0} 291#else 292#define EVP_PKEY_DSA_method EVP_PKEY_NULL_method 293#endif 294 295#ifndef OPENSSL_NO_RSA 296#define EVP_PKEY_RSA_method RSA_sign,RSA_verify, \ 297 {EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0} 298#define EVP_PKEY_RSA_ASN1_OCTET_STRING_method \ 299 RSA_sign_ASN1_OCTET_STRING, \ 300 RSA_verify_ASN1_OCTET_STRING, \ 301 {EVP_PKEY_RSA,EVP_PKEY_RSA2,0,0} 302#else 303#define EVP_PKEY_RSA_method EVP_PKEY_NULL_method 304#define EVP_PKEY_RSA_ASN1_OCTET_STRING_method EVP_PKEY_NULL_method 305#endif 306 307#endif /* !EVP_MD */ 308 309struct env_md_ctx_st 310 { 311 const EVP_MD *digest; 312 ENGINE *engine; /* functional reference if 'digest' is ENGINE-provided */ 313 unsigned long flags; 314 void *md_data; 315 } /* EVP_MD_CTX */; 316 317/* values for EVP_MD_CTX flags */ 318 319#define EVP_MD_CTX_FLAG_ONESHOT 0x0001 /* digest update will be called 320 * once only */ 321#define EVP_MD_CTX_FLAG_CLEANED 0x0002 /* context has already been 322 * cleaned */ 323 324struct evp_cipher_st 325 { 326 int nid; 327 int block_size; 328 int key_len; /* Default value for variable length ciphers */ 329 int iv_len; 330 unsigned long flags; /* Various flags */ 331 int (*init)(EVP_CIPHER_CTX *ctx, const unsigned char *key, 332 const unsigned char *iv, int enc); /* init key */ 333 int (*do_cipher)(EVP_CIPHER_CTX *ctx, unsigned char *out, 334 const unsigned char *in, unsigned int inl);/* encrypt/decrypt data */ 335 int (*cleanup)(EVP_CIPHER_CTX *); /* cleanup ctx */ 336 int ctx_size; /* how big ctx->cipher_data needs to be */ 337 int (*set_asn1_parameters)(EVP_CIPHER_CTX *, ASN1_TYPE *); /* Populate a ASN1_TYPE with parameters */ 338 int (*get_asn1_parameters)(EVP_CIPHER_CTX *, ASN1_TYPE *); /* Get parameters from a ASN1_TYPE */ 339 int (*ctrl)(EVP_CIPHER_CTX *, int type, int arg, void *ptr); /* Miscellaneous operations */ 340 void *app_data; /* Application data */ 341 } /* EVP_CIPHER */; 342 343/* Values for cipher flags */ 344 345/* Modes for ciphers */ 346 347#define EVP_CIPH_STREAM_CIPHER 0x0 348#define EVP_CIPH_ECB_MODE 0x1 349#define EVP_CIPH_CBC_MODE 0x2 350#define EVP_CIPH_CFB_MODE 0x3 351#define EVP_CIPH_OFB_MODE 0x4 352#define EVP_CIPH_MODE 0x7 353/* Set if variable length cipher */ 354#define EVP_CIPH_VARIABLE_LENGTH 0x8 355/* Set if the iv handling should be done by the cipher itself */ 356#define EVP_CIPH_CUSTOM_IV 0x10 357/* Set if the cipher's init() function should be called if key is NULL */ 358#define EVP_CIPH_ALWAYS_CALL_INIT 0x20 359/* Call ctrl() to init cipher parameters */ 360#define EVP_CIPH_CTRL_INIT 0x40 361/* Don't use standard key length function */ 362#define EVP_CIPH_CUSTOM_KEY_LENGTH 0x80 363/* Don't use standard block padding */ 364#define EVP_CIPH_NO_PADDING 0x100 365 366/* ctrl() values */ 367 368#define EVP_CTRL_INIT 0x0 369#define EVP_CTRL_SET_KEY_LENGTH 0x1 370#define EVP_CTRL_GET_RC2_KEY_BITS 0x2 371#define EVP_CTRL_SET_RC2_KEY_BITS 0x3 372#define EVP_CTRL_GET_RC5_ROUNDS 0x4 373#define EVP_CTRL_SET_RC5_ROUNDS 0x5 374 375typedef struct evp_cipher_info_st 376 { 377 const EVP_CIPHER *cipher; 378 unsigned char iv[EVP_MAX_IV_LENGTH]; 379 } EVP_CIPHER_INFO; 380 381struct evp_cipher_ctx_st 382 { 383 const EVP_CIPHER *cipher; 384 ENGINE *engine; /* functional reference if 'cipher' is ENGINE-provided */ 385 int encrypt; /* encrypt or decrypt */ 386 int buf_len; /* number we have left */ 387 388 unsigned char oiv[EVP_MAX_IV_LENGTH]; /* original iv */ 389 unsigned char iv[EVP_MAX_IV_LENGTH]; /* working iv */ 390 unsigned char buf[EVP_MAX_BLOCK_LENGTH];/* saved partial block */ 391 int num; /* used by cfb/ofb mode */ 392 393 void *app_data; /* application stuff */ 394 int key_len; /* May change for variable length cipher */ 395 unsigned long flags; /* Various flags */ 396 void *cipher_data; /* per EVP data */ 397 int final_used; 398 int block_mask; 399 unsigned char final[EVP_MAX_BLOCK_LENGTH];/* possible final block */ 400 } /* EVP_CIPHER_CTX */; 401 402typedef struct evp_Encode_Ctx_st 403 { 404 int num; /* number saved in a partial encode/decode */ 405 int length; /* The length is either the output line length 406 * (in input bytes) or the shortest input line 407 * length that is ok. Once decoding begins, 408 * the length is adjusted up each time a longer 409 * line is decoded */ 410 unsigned char enc_data[80]; /* data to encode */ 411 int line_num; /* number read on current line */ 412 int expect_nl; 413 } EVP_ENCODE_CTX; 414 415/* Password based encryption function */ 416typedef int (EVP_PBE_KEYGEN)(EVP_CIPHER_CTX *ctx, const char *pass, int passlen, 417 ASN1_TYPE *param, const EVP_CIPHER *cipher, 418 const EVP_MD *md, int en_de); 419 420#ifndef OPENSSL_NO_RSA 421#define EVP_PKEY_assign_RSA(pkey,rsa) EVP_PKEY_assign((pkey),EVP_PKEY_RSA,\ 422 (char *)(rsa)) 423#endif 424 425#ifndef OPENSSL_NO_DSA 426#define EVP_PKEY_assign_DSA(pkey,dsa) EVP_PKEY_assign((pkey),EVP_PKEY_DSA,\ 427 (char *)(dsa)) 428#endif 429 430#ifndef OPENSSL_NO_DH 431#define EVP_PKEY_assign_DH(pkey,dh) EVP_PKEY_assign((pkey),EVP_PKEY_DH,\ 432 (char *)(dh)) 433#endif 434 435/* Add some extra combinations */ 436#define EVP_get_digestbynid(a) EVP_get_digestbyname(OBJ_nid2sn(a)) 437#define EVP_get_digestbyobj(a) EVP_get_digestbynid(OBJ_obj2nid(a)) 438#define EVP_get_cipherbynid(a) EVP_get_cipherbyname(OBJ_nid2sn(a)) 439#define EVP_get_cipherbyobj(a) EVP_get_cipherbynid(OBJ_obj2nid(a)) 440 441#define EVP_MD_type(e) ((e)->type) 442#define EVP_MD_nid(e) EVP_MD_type(e) 443#define EVP_MD_name(e) OBJ_nid2sn(EVP_MD_nid(e)) 444#define EVP_MD_pkey_type(e) ((e)->pkey_type) 445#define EVP_MD_size(e) ((e)->md_size) 446#define EVP_MD_block_size(e) ((e)->block_size) 447 448#define EVP_MD_CTX_md(e) ((e)->digest) 449#define EVP_MD_CTX_size(e) EVP_MD_size((e)->digest) 450#define EVP_MD_CTX_block_size(e) EVP_MD_block_size((e)->digest) 451#define EVP_MD_CTX_type(e) EVP_MD_type((e)->digest) 452 453#define EVP_CIPHER_nid(e) ((e)->nid) 454#define EVP_CIPHER_name(e) OBJ_nid2sn(EVP_CIPHER_nid(e)) 455#define EVP_CIPHER_block_size(e) ((e)->block_size) 456#define EVP_CIPHER_key_length(e) ((e)->key_len) 457#define EVP_CIPHER_iv_length(e) ((e)->iv_len) 458#define EVP_CIPHER_flags(e) ((e)->flags) 459#define EVP_CIPHER_mode(e) (((e)->flags) & EVP_CIPH_MODE) 460 461#define EVP_CIPHER_CTX_cipher(e) ((e)->cipher) 462#define EVP_CIPHER_CTX_nid(e) ((e)->cipher->nid) 463#define EVP_CIPHER_CTX_block_size(e) ((e)->cipher->block_size) 464#define EVP_CIPHER_CTX_key_length(e) ((e)->key_len) 465#define EVP_CIPHER_CTX_iv_length(e) ((e)->cipher->iv_len) 466#define EVP_CIPHER_CTX_get_app_data(e) ((e)->app_data) 467#define EVP_CIPHER_CTX_set_app_data(e,d) ((e)->app_data=(char *)(d)) 468#define EVP_CIPHER_CTX_type(c) EVP_CIPHER_type(EVP_CIPHER_CTX_cipher(c)) 469#define EVP_CIPHER_CTX_flags(e) ((e)->cipher->flags) 470#define EVP_CIPHER_CTX_mode(e) ((e)->cipher->flags & EVP_CIPH_MODE) 471 472#define EVP_ENCODE_LENGTH(l) (((l+2)/3*4)+(l/48+1)*2+80) 473#define EVP_DECODE_LENGTH(l) ((l+3)/4*3+80) 474 475#define EVP_SignInit_ex(a,b,c) EVP_DigestInit_ex(a,b,c) 476#define EVP_SignInit(a,b) EVP_DigestInit(a,b) 477#define EVP_SignUpdate(a,b,c) EVP_DigestUpdate(a,b,c) 478#define EVP_VerifyInit_ex(a,b,c) EVP_DigestInit_ex(a,b,c) 479#define EVP_VerifyInit(a,b) EVP_DigestInit(a,b) 480#define EVP_VerifyUpdate(a,b,c) EVP_DigestUpdate(a,b,c) 481#define EVP_OpenUpdate(a,b,c,d,e) EVP_DecryptUpdate(a,b,c,d,e) 482#define EVP_SealUpdate(a,b,c,d,e) EVP_EncryptUpdate(a,b,c,d,e) 483 484#ifdef CONST_STRICT 485void BIO_set_md(BIO *,const EVP_MD *md); 486#else 487# define BIO_set_md(b,md) BIO_ctrl(b,BIO_C_SET_MD,0,(char *)md) 488#endif 489#define BIO_get_md(b,mdp) BIO_ctrl(b,BIO_C_GET_MD,0,(char *)mdp) 490#define BIO_get_md_ctx(b,mdcp) BIO_ctrl(b,BIO_C_GET_MD_CTX,0,(char *)mdcp) 491#define BIO_get_cipher_status(b) BIO_ctrl(b,BIO_C_GET_CIPHER_STATUS,0,NULL) 492#define BIO_get_cipher_ctx(b,c_pp) BIO_ctrl(b,BIO_C_GET_CIPHER_CTX,0,(char *)c_pp) 493 494#define EVP_Cipher(c,o,i,l) (c)->cipher->do_cipher((c),(o),(i),(l)) 495 496#define EVP_add_cipher_alias(n,alias) \ 497 OBJ_NAME_add((alias),OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS,(n)) 498#define EVP_add_digest_alias(n,alias) \ 499 OBJ_NAME_add((alias),OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS,(n)) 500#define EVP_delete_cipher_alias(alias) \ 501 OBJ_NAME_remove(alias,OBJ_NAME_TYPE_CIPHER_METH|OBJ_NAME_ALIAS); 502#define EVP_delete_digest_alias(alias) \ 503 OBJ_NAME_remove(alias,OBJ_NAME_TYPE_MD_METH|OBJ_NAME_ALIAS); 504 505void EVP_MD_CTX_init(EVP_MD_CTX *ctx); 506int EVP_MD_CTX_cleanup(EVP_MD_CTX *ctx); 507EVP_MD_CTX *EVP_MD_CTX_create(void); 508void EVP_MD_CTX_destroy(EVP_MD_CTX *ctx); 509int EVP_MD_CTX_copy_ex(EVP_MD_CTX *out,const EVP_MD_CTX *in); 510#define EVP_MD_CTX_set_flags(ctx,flgs) ((ctx)->flags|=(flgs)) 511#define EVP_MD_CTX_clear_flags(ctx,flgs) ((ctx)->flags&=~(flgs)) 512#define EVP_MD_CTX_test_flags(ctx,flgs) ((ctx)->flags&(flgs)) 513int EVP_DigestInit_ex(EVP_MD_CTX *ctx, const EVP_MD *type, ENGINE *impl); 514int EVP_DigestUpdate(EVP_MD_CTX *ctx,const void *d, 515 unsigned int cnt); 516int EVP_DigestFinal_ex(EVP_MD_CTX *ctx,unsigned char *md,unsigned int *s); 517int EVP_Digest(void *data, unsigned int count, 518 unsigned char *md, unsigned int *size, const EVP_MD *type, ENGINE *impl); 519 520int EVP_MD_CTX_copy(EVP_MD_CTX *out,const EVP_MD_CTX *in); 521int EVP_DigestInit(EVP_MD_CTX *ctx, const EVP_MD *type); 522int EVP_DigestFinal(EVP_MD_CTX *ctx,unsigned char *md,unsigned int *s); 523 524int EVP_read_pw_string(char *buf,int length,const char *prompt,int verify); 525void EVP_set_pw_prompt(char *prompt); 526char * EVP_get_pw_prompt(void); 527 528int EVP_BytesToKey(const EVP_CIPHER *type,const EVP_MD *md, 529 const unsigned char *salt, const unsigned char *data, 530 int datal, int count, unsigned char *key,unsigned char *iv); 531 532int EVP_EncryptInit(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *cipher, 533 const unsigned char *key, const unsigned char *iv); 534int EVP_EncryptInit_ex(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *cipher, ENGINE *impl, 535 const unsigned char *key, const unsigned char *iv); 536int EVP_EncryptUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out, 537 int *outl, const unsigned char *in, int inl); 538int EVP_EncryptFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl); 539int EVP_EncryptFinal(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl); 540 541int EVP_DecryptInit(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *cipher, 542 const unsigned char *key, const unsigned char *iv); 543int EVP_DecryptInit_ex(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *cipher, ENGINE *impl, 544 const unsigned char *key, const unsigned char *iv); 545int EVP_DecryptUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out, 546 int *outl, const unsigned char *in, int inl); 547int EVP_DecryptFinal(EVP_CIPHER_CTX *ctx, unsigned char *outm, int *outl); 548int EVP_DecryptFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *outm, int *outl); 549 550int EVP_CipherInit(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *cipher, 551 const unsigned char *key,const unsigned char *iv, 552 int enc); 553int EVP_CipherInit_ex(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *cipher, ENGINE *impl, 554 const unsigned char *key,const unsigned char *iv, 555 int enc); 556int EVP_CipherUpdate(EVP_CIPHER_CTX *ctx, unsigned char *out, 557 int *outl, const unsigned char *in, int inl); 558int EVP_CipherFinal(EVP_CIPHER_CTX *ctx, unsigned char *outm, int *outl); 559int EVP_CipherFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *outm, int *outl); 560 561int EVP_SignFinal(EVP_MD_CTX *ctx,unsigned char *md,unsigned int *s, 562 EVP_PKEY *pkey); 563 564int EVP_VerifyFinal(EVP_MD_CTX *ctx,unsigned char *sigbuf, 565 unsigned int siglen,EVP_PKEY *pkey); 566 567int EVP_OpenInit(EVP_CIPHER_CTX *ctx,const EVP_CIPHER *type,unsigned char *ek, 568 int ekl,unsigned char *iv,EVP_PKEY *priv); 569int EVP_OpenFinal(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl); 570 571int EVP_SealInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *type, unsigned char **ek, 572 int *ekl, unsigned char *iv,EVP_PKEY **pubk, int npubk); 573int EVP_SealFinal(EVP_CIPHER_CTX *ctx,unsigned char *out,int *outl); 574 575void EVP_EncodeInit(EVP_ENCODE_CTX *ctx); 576void EVP_EncodeUpdate(EVP_ENCODE_CTX *ctx,unsigned char *out, 577 int *outl,unsigned char *in,int inl); 578void EVP_EncodeFinal(EVP_ENCODE_CTX *ctx,unsigned char *out,int *outl); 579int EVP_EncodeBlock(unsigned char *t, const unsigned char *f, int n); 580 581void EVP_DecodeInit(EVP_ENCODE_CTX *ctx); 582int EVP_DecodeUpdate(EVP_ENCODE_CTX *ctx,unsigned char *out,int *outl, 583 unsigned char *in, int inl); 584int EVP_DecodeFinal(EVP_ENCODE_CTX *ctx, unsigned 585 char *out, int *outl); 586int EVP_DecodeBlock(unsigned char *t, const unsigned char *f, int n); 587 588void EVP_CIPHER_CTX_init(EVP_CIPHER_CTX *a); 589int EVP_CIPHER_CTX_cleanup(EVP_CIPHER_CTX *a); 590int EVP_CIPHER_CTX_set_key_length(EVP_CIPHER_CTX *x, int keylen); 591int EVP_CIPHER_CTX_set_padding(EVP_CIPHER_CTX *c, int pad); 592int EVP_CIPHER_CTX_ctrl(EVP_CIPHER_CTX *ctx, int type, int arg, void *ptr); 593 594#ifndef OPENSSL_NO_BIO 595BIO_METHOD *BIO_f_md(void); 596BIO_METHOD *BIO_f_base64(void); 597BIO_METHOD *BIO_f_cipher(void); 598BIO_METHOD *BIO_f_reliable(void); 599void BIO_set_cipher(BIO *b,const EVP_CIPHER *c,unsigned char *k, 600 unsigned char *i, int enc); 601#endif 602 603const EVP_MD *EVP_md_null(void); 604#ifndef OPENSSL_NO_MD2 605const EVP_MD *EVP_md2(void); 606#endif 607#ifndef OPENSSL_NO_MD4 608const EVP_MD *EVP_md4(void); 609#endif 610#ifndef OPENSSL_NO_MD5 611const EVP_MD *EVP_md5(void); 612#endif 613#ifndef OPENSSL_NO_SHA 614const EVP_MD *EVP_sha(void); 615const EVP_MD *EVP_sha1(void); 616const EVP_MD *EVP_dss(void); 617const EVP_MD *EVP_dss1(void); 618#endif 619#ifndef OPENSSL_NO_RIPEMD 620const EVP_MD *EVP_ripemd160(void); 621#endif 622const EVP_CIPHER *EVP_enc_null(void); /* does nothing :-) */ 623#ifndef OPENSSL_NO_DES 624const EVP_CIPHER *EVP_des_ecb(void); 625const EVP_CIPHER *EVP_des_ede(void); 626const EVP_CIPHER *EVP_des_ede3(void); 627const EVP_CIPHER *EVP_des_ede_ecb(void); 628const EVP_CIPHER *EVP_des_ede3_ecb(void); 629const EVP_CIPHER *EVP_des_cfb(void); 630const EVP_CIPHER *EVP_des_ede_cfb(void); 631const EVP_CIPHER *EVP_des_ede3_cfb(void); 632const EVP_CIPHER *EVP_des_ofb(void); 633const EVP_CIPHER *EVP_des_ede_ofb(void); 634const EVP_CIPHER *EVP_des_ede3_ofb(void); 635const EVP_CIPHER *EVP_des_cbc(void); 636const EVP_CIPHER *EVP_des_ede_cbc(void); 637const EVP_CIPHER *EVP_des_ede3_cbc(void); 638const EVP_CIPHER *EVP_desx_cbc(void); 639/* This should now be supported through the dev_crypto ENGINE. But also, why are 640 * rc4 and md5 declarations made here inside a "NO_DES" precompiler branch? */ 641#if 0 642# ifdef OPENSSL_OPENBSD_DEV_CRYPTO 643const EVP_CIPHER *EVP_dev_crypto_des_ede3_cbc(void); 644const EVP_CIPHER *EVP_dev_crypto_rc4(void); 645const EVP_MD *EVP_dev_crypto_md5(void); 646# endif 647#endif 648#endif 649#ifndef OPENSSL_NO_RC4 650const EVP_CIPHER *EVP_rc4(void); 651const EVP_CIPHER *EVP_rc4_40(void); 652#endif 653#ifndef OPENSSL_NO_RC2 654const EVP_CIPHER *EVP_rc2_ecb(void); 655const EVP_CIPHER *EVP_rc2_cbc(void); 656const EVP_CIPHER *EVP_rc2_40_cbc(void); 657const EVP_CIPHER *EVP_rc2_64_cbc(void); 658const EVP_CIPHER *EVP_rc2_cfb(void); 659const EVP_CIPHER *EVP_rc2_ofb(void); 660#endif 661#ifndef OPENSSL_NO_BF 662const EVP_CIPHER *EVP_bf_ecb(void); 663const EVP_CIPHER *EVP_bf_cbc(void); 664const EVP_CIPHER *EVP_bf_cfb(void); 665const EVP_CIPHER *EVP_bf_ofb(void); 666#endif 667#ifndef OPENSSL_NO_CAST 668const EVP_CIPHER *EVP_cast5_ecb(void); 669const EVP_CIPHER *EVP_cast5_cbc(void); 670const EVP_CIPHER *EVP_cast5_cfb(void); 671const EVP_CIPHER *EVP_cast5_ofb(void); 672#endif 673#ifndef OPENSSL_NO_AES 674const EVP_CIPHER *EVP_aes_128_ecb(void); 675const EVP_CIPHER *EVP_aes_128_cbc(void); 676const EVP_CIPHER *EVP_aes_128_cfb(void); 677const EVP_CIPHER *EVP_aes_128_ofb(void); 678#if 0 679const EVP_CIPHER *EVP_aes_128_ctr(void); 680#endif 681const EVP_CIPHER *EVP_aes_192_ecb(void); 682const EVP_CIPHER *EVP_aes_192_cbc(void); 683const EVP_CIPHER *EVP_aes_192_cfb(void); 684const EVP_CIPHER *EVP_aes_192_ofb(void); 685#if 0 686const EVP_CIPHER *EVP_aes_192_ctr(void); 687#endif 688const EVP_CIPHER *EVP_aes_256_ecb(void); 689const EVP_CIPHER *EVP_aes_256_cbc(void); 690const EVP_CIPHER *EVP_aes_256_cfb(void); 691const EVP_CIPHER *EVP_aes_256_ofb(void); 692#if 0 693const EVP_CIPHER *EVP_aes_256_ctr(void); 694#endif 695#endif 696 697void OPENSSL_add_all_algorithms_noconf(void); 698void OPENSSL_add_all_algorithms_conf(void); 699 700#ifdef OPENSSL_LOAD_CONF 701#define OpenSSL_add_all_algorithms() \ 702 OPENSSL_add_all_algorithms_conf() 703#else 704#define OpenSSL_add_all_algorithms() \ 705 OPENSSL_add_all_algorithms_noconf() 706#endif 707 708void OpenSSL_add_all_ciphers(void); 709void OpenSSL_add_all_digests(void); 710#define SSLeay_add_all_algorithms() OpenSSL_add_all_algorithms() 711#define SSLeay_add_all_ciphers() OpenSSL_add_all_ciphers() 712#define SSLeay_add_all_digests() OpenSSL_add_all_digests() 713 714int EVP_add_cipher(const EVP_CIPHER *cipher); 715int EVP_add_digest(const EVP_MD *digest); 716 717const EVP_CIPHER *EVP_get_cipherbyname(const char *name); 718const EVP_MD *EVP_get_digestbyname(const char *name); 719void EVP_cleanup(void); 720 721int EVP_PKEY_decrypt(unsigned char *dec_key,unsigned char *enc_key, 722 int enc_key_len,EVP_PKEY *private_key); 723int EVP_PKEY_encrypt(unsigned char *enc_key, 724 unsigned char *key,int key_len,EVP_PKEY *pub_key); 725int EVP_PKEY_type(int type); 726int EVP_PKEY_bits(EVP_PKEY *pkey); 727int EVP_PKEY_size(EVP_PKEY *pkey); 728int EVP_PKEY_assign(EVP_PKEY *pkey,int type,char *key); 729 730#ifndef OPENSSL_NO_RSA 731struct rsa_st; 732int EVP_PKEY_set1_RSA(EVP_PKEY *pkey,struct rsa_st *key); 733struct rsa_st *EVP_PKEY_get1_RSA(EVP_PKEY *pkey); 734#endif 735#ifndef OPENSSL_NO_DSA 736struct dsa_st; 737int EVP_PKEY_set1_DSA(EVP_PKEY *pkey,struct dsa_st *key); 738struct dsa_st *EVP_PKEY_get1_DSA(EVP_PKEY *pkey); 739#endif 740#ifndef OPENSSL_NO_DH 741struct dh_st; 742int EVP_PKEY_set1_DH(EVP_PKEY *pkey,struct dh_st *key); 743struct dh_st *EVP_PKEY_get1_DH(EVP_PKEY *pkey); 744#endif 745 746 747EVP_PKEY * EVP_PKEY_new(void); 748void EVP_PKEY_free(EVP_PKEY *pkey); 749EVP_PKEY * d2i_PublicKey(int type,EVP_PKEY **a, unsigned char **pp, 750 long length); 751int i2d_PublicKey(EVP_PKEY *a, unsigned char **pp); 752 753EVP_PKEY * d2i_PrivateKey(int type,EVP_PKEY **a, unsigned char **pp, 754 long length); 755EVP_PKEY * d2i_AutoPrivateKey(EVP_PKEY **a, unsigned char **pp, 756 long length); 757int i2d_PrivateKey(EVP_PKEY *a, unsigned char **pp); 758 759int EVP_PKEY_copy_parameters(EVP_PKEY *to,EVP_PKEY *from); 760int EVP_PKEY_missing_parameters(EVP_PKEY *pkey); 761int EVP_PKEY_save_parameters(EVP_PKEY *pkey,int mode); 762int EVP_PKEY_cmp_parameters(EVP_PKEY *a,EVP_PKEY *b); 763 764int EVP_CIPHER_type(const EVP_CIPHER *ctx); 765 766/* calls methods */ 767int EVP_CIPHER_param_to_asn1(EVP_CIPHER_CTX *c, ASN1_TYPE *type); 768int EVP_CIPHER_asn1_to_param(EVP_CIPHER_CTX *c, ASN1_TYPE *type); 769 770/* These are used by EVP_CIPHER methods */ 771int EVP_CIPHER_set_asn1_iv(EVP_CIPHER_CTX *c,ASN1_TYPE *type); 772int EVP_CIPHER_get_asn1_iv(EVP_CIPHER_CTX *c,ASN1_TYPE *type); 773 774/* PKCS5 password based encryption */ 775int PKCS5_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen, 776 ASN1_TYPE *param, const EVP_CIPHER *cipher, const EVP_MD *md, 777 int en_de); 778int PKCS5_PBKDF2_HMAC_SHA1(const char *pass, int passlen, 779 unsigned char *salt, int saltlen, int iter, 780 int keylen, unsigned char *out); 781int PKCS5_v2_PBE_keyivgen(EVP_CIPHER_CTX *ctx, const char *pass, int passlen, 782 ASN1_TYPE *param, const EVP_CIPHER *cipher, const EVP_MD *md, 783 int en_de); 784 785void PKCS5_PBE_add(void); 786 787int EVP_PBE_CipherInit (ASN1_OBJECT *pbe_obj, const char *pass, int passlen, 788 ASN1_TYPE *param, EVP_CIPHER_CTX *ctx, int en_de); 789int EVP_PBE_alg_add(int nid, const EVP_CIPHER *cipher, const EVP_MD *md, 790 EVP_PBE_KEYGEN *keygen); 791void EVP_PBE_cleanup(void); 792 793/* BEGIN ERROR CODES */ 794/* The following lines are auto generated by the script mkerr.pl. Any changes 795 * made after this point may be overwritten when the script is next run. 796 */ 797void ERR_load_EVP_strings(void); 798 799/* Error codes for the EVP functions. */ 800 801/* Function codes. */ 802#define EVP_F_D2I_PKEY 100 803#define EVP_F_EVP_CIPHERINIT 123 804#define EVP_F_EVP_CIPHER_CTX_CTRL 124 805#define EVP_F_EVP_CIPHER_CTX_SET_KEY_LENGTH 122 806#define EVP_F_EVP_DECRYPTFINAL 101 807#define EVP_F_EVP_DIGESTINIT 128 808#define EVP_F_EVP_ENCRYPTFINAL 127 809#define EVP_F_EVP_MD_CTX_COPY 110 810#define EVP_F_EVP_OPENINIT 102 811#define EVP_F_EVP_PBE_ALG_ADD 115 812#define EVP_F_EVP_PBE_CIPHERINIT 116 813#define EVP_F_EVP_PKCS82PKEY 111 814#define EVP_F_EVP_PKCS8_SET_BROKEN 112 815#define EVP_F_EVP_PKEY2PKCS8 113 816#define EVP_F_EVP_PKEY_COPY_PARAMETERS 103 817#define EVP_F_EVP_PKEY_DECRYPT 104 818#define EVP_F_EVP_PKEY_ENCRYPT 105 819#define EVP_F_EVP_PKEY_GET1_DH 119 820#define EVP_F_EVP_PKEY_GET1_DSA 120 821#define EVP_F_EVP_PKEY_GET1_RSA 121 822#define EVP_F_EVP_PKEY_NEW 106 823#define EVP_F_EVP_RIJNDAEL 126 824#define EVP_F_EVP_SIGNFINAL 107 825#define EVP_F_EVP_VERIFYFINAL 108 826#define EVP_F_PKCS5_PBE_KEYIVGEN 117 827#define EVP_F_PKCS5_V2_PBE_KEYIVGEN 118 828#define EVP_F_RC2_MAGIC_TO_METH 109 829#define EVP_F_RC5_CTRL 125 830 831/* Reason codes. */ 832#define EVP_R_BAD_BLOCK_LENGTH 136 833#define EVP_R_BAD_DECRYPT 100 834#define EVP_R_BAD_KEY_LENGTH 137 835#define EVP_R_BN_DECODE_ERROR 112 836#define EVP_R_BN_PUBKEY_ERROR 113 837#define EVP_R_CIPHER_PARAMETER_ERROR 122 838#define EVP_R_CTRL_NOT_IMPLEMENTED 132 839#define EVP_R_CTRL_OPERATION_NOT_IMPLEMENTED 133 840#define EVP_R_DATA_NOT_MULTIPLE_OF_BLOCK_LENGTH 138 841#define EVP_R_DECODE_ERROR 114 842#define EVP_R_DIFFERENT_KEY_TYPES 101 843#define EVP_R_ENCODE_ERROR 115 844#define EVP_R_EVP_PBE_CIPHERINIT_ERROR 119 845#define EVP_R_EXPECTING_AN_RSA_KEY 127 846#define EVP_R_EXPECTING_A_DH_KEY 128 847#define EVP_R_EXPECTING_A_DSA_KEY 129 848#define EVP_R_INITIALIZATION_ERROR 134 849#define EVP_R_INPUT_NOT_INITIALIZED 111 850#define EVP_R_INVALID_KEY_LENGTH 130 851#define EVP_R_IV_TOO_LARGE 102 852#define EVP_R_KEYGEN_FAILURE 120 853#define EVP_R_MISSING_PARAMETERS 103 854#define EVP_R_NO_CIPHER_SET 131 855#define EVP_R_NO_DIGEST_SET 139 856#define EVP_R_NO_DSA_PARAMETERS 116 857#define EVP_R_NO_SIGN_FUNCTION_CONFIGURED 104 858#define EVP_R_NO_VERIFY_FUNCTION_CONFIGURED 105 859#define EVP_R_PKCS8_UNKNOWN_BROKEN_TYPE 117 860#define EVP_R_PUBLIC_KEY_NOT_RSA 106 861#define EVP_R_UNKNOWN_PBE_ALGORITHM 121 862#define EVP_R_UNSUPORTED_NUMBER_OF_ROUNDS 135 863#define EVP_R_UNSUPPORTED_CIPHER 107 864#define EVP_R_UNSUPPORTED_KEYLENGTH 123 865#define EVP_R_UNSUPPORTED_KEY_DERIVATION_FUNCTION 124 866#define EVP_R_UNSUPPORTED_KEY_SIZE 108 867#define EVP_R_UNSUPPORTED_PRF 125 868#define EVP_R_UNSUPPORTED_PRIVATE_KEY_ALGORITHM 118 869#define EVP_R_UNSUPPORTED_SALT_TYPE 126 870#define EVP_R_WRONG_FINAL_BLOCK_LENGTH 109 871#define EVP_R_WRONG_PUBLIC_KEY_TYPE 110 872 873#ifdef __cplusplus 874} 875#endif 876#endif 877