dsa_ameth.c revision 325337
1/* 2 * Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL project 3 * 2006. 4 */ 5/* ==================================================================== 6 * Copyright (c) 2006 The OpenSSL Project. All rights reserved. 7 * 8 * Redistribution and use in source and binary forms, with or without 9 * modification, are permitted provided that the following conditions 10 * are met: 11 * 12 * 1. Redistributions of source code must retain the above copyright 13 * notice, this list of conditions and the following disclaimer. 14 * 15 * 2. Redistributions in binary form must reproduce the above copyright 16 * notice, this list of conditions and the following disclaimer in 17 * the documentation and/or other materials provided with the 18 * distribution. 19 * 20 * 3. All advertising materials mentioning features or use of this 21 * software must display the following acknowledgment: 22 * "This product includes software developed by the OpenSSL Project 23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" 24 * 25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to 26 * endorse or promote products derived from this software without 27 * prior written permission. For written permission, please contact 28 * licensing@OpenSSL.org. 29 * 30 * 5. Products derived from this software may not be called "OpenSSL" 31 * nor may "OpenSSL" appear in their names without prior written 32 * permission of the OpenSSL Project. 33 * 34 * 6. Redistributions of any form whatsoever must retain the following 35 * acknowledgment: 36 * "This product includes software developed by the OpenSSL Project 37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" 38 * 39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY 40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR 43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, 44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED 50 * OF THE POSSIBILITY OF SUCH DAMAGE. 51 * ==================================================================== 52 * 53 * This product includes cryptographic software written by Eric Young 54 * (eay@cryptsoft.com). This product includes software written by Tim 55 * Hudson (tjh@cryptsoft.com). 56 * 57 */ 58 59#include <stdio.h> 60#include "cryptlib.h" 61#include <openssl/x509.h> 62#include <openssl/asn1.h> 63#include <openssl/dsa.h> 64#include <openssl/bn.h> 65#ifndef OPENSSL_NO_CMS 66# include <openssl/cms.h> 67#endif 68#include "asn1_locl.h" 69 70static int dsa_pub_decode(EVP_PKEY *pkey, X509_PUBKEY *pubkey) 71{ 72 const unsigned char *p, *pm; 73 int pklen, pmlen; 74 int ptype; 75 void *pval; 76 ASN1_STRING *pstr; 77 X509_ALGOR *palg; 78 ASN1_INTEGER *public_key = NULL; 79 80 DSA *dsa = NULL; 81 82 if (!X509_PUBKEY_get0_param(NULL, &p, &pklen, &palg, pubkey)) 83 return 0; 84 X509_ALGOR_get0(NULL, &ptype, &pval, palg); 85 86 if (ptype == V_ASN1_SEQUENCE) { 87 pstr = pval; 88 pm = pstr->data; 89 pmlen = pstr->length; 90 91 if (!(dsa = d2i_DSAparams(NULL, &pm, pmlen))) { 92 DSAerr(DSA_F_DSA_PUB_DECODE, DSA_R_DECODE_ERROR); 93 goto err; 94 } 95 96 } else if ((ptype == V_ASN1_NULL) || (ptype == V_ASN1_UNDEF)) { 97 if (!(dsa = DSA_new())) { 98 DSAerr(DSA_F_DSA_PUB_DECODE, ERR_R_MALLOC_FAILURE); 99 goto err; 100 } 101 } else { 102 DSAerr(DSA_F_DSA_PUB_DECODE, DSA_R_PARAMETER_ENCODING_ERROR); 103 goto err; 104 } 105 106 if (!(public_key = d2i_ASN1_INTEGER(NULL, &p, pklen))) { 107 DSAerr(DSA_F_DSA_PUB_DECODE, DSA_R_DECODE_ERROR); 108 goto err; 109 } 110 111 if (!(dsa->pub_key = ASN1_INTEGER_to_BN(public_key, NULL))) { 112 DSAerr(DSA_F_DSA_PUB_DECODE, DSA_R_BN_DECODE_ERROR); 113 goto err; 114 } 115 116 ASN1_INTEGER_free(public_key); 117 EVP_PKEY_assign_DSA(pkey, dsa); 118 return 1; 119 120 err: 121 if (public_key) 122 ASN1_INTEGER_free(public_key); 123 if (dsa) 124 DSA_free(dsa); 125 return 0; 126 127} 128 129static int dsa_pub_encode(X509_PUBKEY *pk, const EVP_PKEY *pkey) 130{ 131 DSA *dsa; 132 int ptype; 133 unsigned char *penc = NULL; 134 int penclen; 135 ASN1_STRING *str = NULL; 136 137 dsa = pkey->pkey.dsa; 138 if (pkey->save_parameters && dsa->p && dsa->q && dsa->g) { 139 str = ASN1_STRING_new(); 140 if (!str) { 141 DSAerr(DSA_F_DSA_PUB_ENCODE, ERR_R_MALLOC_FAILURE); 142 goto err; 143 } 144 str->length = i2d_DSAparams(dsa, &str->data); 145 if (str->length <= 0) { 146 DSAerr(DSA_F_DSA_PUB_ENCODE, ERR_R_MALLOC_FAILURE); 147 goto err; 148 } 149 ptype = V_ASN1_SEQUENCE; 150 } else 151 ptype = V_ASN1_UNDEF; 152 153 dsa->write_params = 0; 154 155 penclen = i2d_DSAPublicKey(dsa, &penc); 156 157 if (penclen <= 0) { 158 DSAerr(DSA_F_DSA_PUB_ENCODE, ERR_R_MALLOC_FAILURE); 159 goto err; 160 } 161 162 if (X509_PUBKEY_set0_param(pk, OBJ_nid2obj(EVP_PKEY_DSA), 163 ptype, str, penc, penclen)) 164 return 1; 165 166 err: 167 if (penc) 168 OPENSSL_free(penc); 169 if (str) 170 ASN1_STRING_free(str); 171 172 return 0; 173} 174 175/* 176 * In PKCS#8 DSA: you just get a private key integer and parameters in the 177 * AlgorithmIdentifier the pubkey must be recalculated. 178 */ 179 180static int dsa_priv_decode(EVP_PKEY *pkey, PKCS8_PRIV_KEY_INFO *p8) 181{ 182 const unsigned char *p, *pm; 183 int pklen, pmlen; 184 int ptype; 185 void *pval; 186 ASN1_STRING *pstr; 187 X509_ALGOR *palg; 188 ASN1_INTEGER *privkey = NULL; 189 BN_CTX *ctx = NULL; 190 191 STACK_OF(ASN1_TYPE) *ndsa = NULL; 192 DSA *dsa = NULL; 193 194 int ret = 0; 195 196 if (!PKCS8_pkey_get0(NULL, &p, &pklen, &palg, p8)) 197 return 0; 198 X509_ALGOR_get0(NULL, &ptype, &pval, palg); 199 200 /* Check for broken DSA PKCS#8, UGH! */ 201 if (*p == (V_ASN1_SEQUENCE | V_ASN1_CONSTRUCTED)) { 202 ASN1_TYPE *t1, *t2; 203 if (!(ndsa = d2i_ASN1_SEQUENCE_ANY(NULL, &p, pklen))) 204 goto decerr; 205 if (sk_ASN1_TYPE_num(ndsa) != 2) 206 goto decerr; 207 /*- 208 * Handle Two broken types: 209 * SEQUENCE {parameters, priv_key} 210 * SEQUENCE {pub_key, priv_key} 211 */ 212 213 t1 = sk_ASN1_TYPE_value(ndsa, 0); 214 t2 = sk_ASN1_TYPE_value(ndsa, 1); 215 if (t1->type == V_ASN1_SEQUENCE) { 216 p8->broken = PKCS8_EMBEDDED_PARAM; 217 pval = t1->value.ptr; 218 } else if (ptype == V_ASN1_SEQUENCE) 219 p8->broken = PKCS8_NS_DB; 220 else 221 goto decerr; 222 223 if (t2->type != V_ASN1_INTEGER) 224 goto decerr; 225 226 privkey = t2->value.integer; 227 } else { 228 const unsigned char *q = p; 229 if (!(privkey = d2i_ASN1_INTEGER(NULL, &p, pklen))) 230 goto decerr; 231 if (privkey->type == V_ASN1_NEG_INTEGER) { 232 p8->broken = PKCS8_NEG_PRIVKEY; 233 ASN1_STRING_clear_free(privkey); 234 if (!(privkey = d2i_ASN1_UINTEGER(NULL, &q, pklen))) 235 goto decerr; 236 } 237 if (ptype != V_ASN1_SEQUENCE) 238 goto decerr; 239 } 240 241 pstr = pval; 242 pm = pstr->data; 243 pmlen = pstr->length; 244 if (!(dsa = d2i_DSAparams(NULL, &pm, pmlen))) 245 goto decerr; 246 /* We have parameters now set private key */ 247 if (!(dsa->priv_key = ASN1_INTEGER_to_BN(privkey, NULL))) { 248 DSAerr(DSA_F_DSA_PRIV_DECODE, DSA_R_BN_ERROR); 249 goto dsaerr; 250 } 251 /* Calculate public key */ 252 if (!(dsa->pub_key = BN_new())) { 253 DSAerr(DSA_F_DSA_PRIV_DECODE, ERR_R_MALLOC_FAILURE); 254 goto dsaerr; 255 } 256 if (!(ctx = BN_CTX_new())) { 257 DSAerr(DSA_F_DSA_PRIV_DECODE, ERR_R_MALLOC_FAILURE); 258 goto dsaerr; 259 } 260 261 BN_set_flags(dsa->priv_key, BN_FLG_CONSTTIME); 262 if (!BN_mod_exp(dsa->pub_key, dsa->g, dsa->priv_key, dsa->p, ctx)) { 263 DSAerr(DSA_F_DSA_PRIV_DECODE, DSA_R_BN_ERROR); 264 goto dsaerr; 265 } 266 267 EVP_PKEY_assign_DSA(pkey, dsa); 268 269 ret = 1; 270 goto done; 271 272 decerr: 273 DSAerr(DSA_F_DSA_PRIV_DECODE, DSA_R_DECODE_ERROR); 274 dsaerr: 275 DSA_free(dsa); 276 done: 277 BN_CTX_free(ctx); 278 if (ndsa) 279 sk_ASN1_TYPE_pop_free(ndsa, ASN1_TYPE_free); 280 else 281 ASN1_STRING_clear_free(privkey); 282 return ret; 283} 284 285static int dsa_priv_encode(PKCS8_PRIV_KEY_INFO *p8, const EVP_PKEY *pkey) 286{ 287 ASN1_STRING *params = NULL; 288 ASN1_INTEGER *prkey = NULL; 289 unsigned char *dp = NULL; 290 int dplen; 291 292 if (!pkey->pkey.dsa || !pkey->pkey.dsa->priv_key) { 293 DSAerr(DSA_F_DSA_PRIV_ENCODE, DSA_R_MISSING_PARAMETERS); 294 goto err; 295 } 296 297 params = ASN1_STRING_new(); 298 299 if (!params) { 300 DSAerr(DSA_F_DSA_PRIV_ENCODE, ERR_R_MALLOC_FAILURE); 301 goto err; 302 } 303 304 params->length = i2d_DSAparams(pkey->pkey.dsa, ¶ms->data); 305 if (params->length <= 0) { 306 DSAerr(DSA_F_DSA_PRIV_ENCODE, ERR_R_MALLOC_FAILURE); 307 goto err; 308 } 309 params->type = V_ASN1_SEQUENCE; 310 311 /* Get private key into integer */ 312 prkey = BN_to_ASN1_INTEGER(pkey->pkey.dsa->priv_key, NULL); 313 314 if (!prkey) { 315 DSAerr(DSA_F_DSA_PRIV_ENCODE, DSA_R_BN_ERROR); 316 goto err; 317 } 318 319 dplen = i2d_ASN1_INTEGER(prkey, &dp); 320 321 ASN1_STRING_clear_free(prkey); 322 prkey = NULL; 323 324 if (!PKCS8_pkey_set0(p8, OBJ_nid2obj(NID_dsa), 0, 325 V_ASN1_SEQUENCE, params, dp, dplen)) 326 goto err; 327 328 return 1; 329 330 err: 331 if (dp != NULL) 332 OPENSSL_free(dp); 333 if (params != NULL) 334 ASN1_STRING_free(params); 335 if (prkey != NULL) 336 ASN1_STRING_clear_free(prkey); 337 return 0; 338} 339 340static int int_dsa_size(const EVP_PKEY *pkey) 341{ 342 return (DSA_size(pkey->pkey.dsa)); 343} 344 345static int dsa_bits(const EVP_PKEY *pkey) 346{ 347 return BN_num_bits(pkey->pkey.dsa->p); 348} 349 350static int dsa_missing_parameters(const EVP_PKEY *pkey) 351{ 352 DSA *dsa; 353 dsa = pkey->pkey.dsa; 354 if (dsa == NULL || dsa->p == NULL || dsa->q == NULL || dsa->g == NULL) 355 return 1; 356 return 0; 357} 358 359static int dsa_copy_parameters(EVP_PKEY *to, const EVP_PKEY *from) 360{ 361 BIGNUM *a; 362 363 if ((a = BN_dup(from->pkey.dsa->p)) == NULL) 364 return 0; 365 if (to->pkey.dsa->p != NULL) 366 BN_free(to->pkey.dsa->p); 367 to->pkey.dsa->p = a; 368 369 if ((a = BN_dup(from->pkey.dsa->q)) == NULL) 370 return 0; 371 if (to->pkey.dsa->q != NULL) 372 BN_free(to->pkey.dsa->q); 373 to->pkey.dsa->q = a; 374 375 if ((a = BN_dup(from->pkey.dsa->g)) == NULL) 376 return 0; 377 if (to->pkey.dsa->g != NULL) 378 BN_free(to->pkey.dsa->g); 379 to->pkey.dsa->g = a; 380 return 1; 381} 382 383static int dsa_cmp_parameters(const EVP_PKEY *a, const EVP_PKEY *b) 384{ 385 if (BN_cmp(a->pkey.dsa->p, b->pkey.dsa->p) || 386 BN_cmp(a->pkey.dsa->q, b->pkey.dsa->q) || 387 BN_cmp(a->pkey.dsa->g, b->pkey.dsa->g)) 388 return 0; 389 else 390 return 1; 391} 392 393static int dsa_pub_cmp(const EVP_PKEY *a, const EVP_PKEY *b) 394{ 395 if (BN_cmp(b->pkey.dsa->pub_key, a->pkey.dsa->pub_key) != 0) 396 return 0; 397 else 398 return 1; 399} 400 401static void int_dsa_free(EVP_PKEY *pkey) 402{ 403 DSA_free(pkey->pkey.dsa); 404} 405 406static void update_buflen(const BIGNUM *b, size_t *pbuflen) 407{ 408 size_t i; 409 if (!b) 410 return; 411 if (*pbuflen < (i = (size_t)BN_num_bytes(b))) 412 *pbuflen = i; 413} 414 415static int do_dsa_print(BIO *bp, const DSA *x, int off, int ptype) 416{ 417 unsigned char *m = NULL; 418 int ret = 0; 419 size_t buf_len = 0; 420 const char *ktype = NULL; 421 422 const BIGNUM *priv_key, *pub_key; 423 424 if (ptype == 2) 425 priv_key = x->priv_key; 426 else 427 priv_key = NULL; 428 429 if (ptype > 0) 430 pub_key = x->pub_key; 431 else 432 pub_key = NULL; 433 434 if (ptype == 2) 435 ktype = "Private-Key"; 436 else if (ptype == 1) 437 ktype = "Public-Key"; 438 else 439 ktype = "DSA-Parameters"; 440 441 update_buflen(x->p, &buf_len); 442 update_buflen(x->q, &buf_len); 443 update_buflen(x->g, &buf_len); 444 update_buflen(priv_key, &buf_len); 445 update_buflen(pub_key, &buf_len); 446 447 m = (unsigned char *)OPENSSL_malloc(buf_len + 10); 448 if (m == NULL) { 449 DSAerr(DSA_F_DO_DSA_PRINT, ERR_R_MALLOC_FAILURE); 450 goto err; 451 } 452 453 if (priv_key) { 454 if (!BIO_indent(bp, off, 128)) 455 goto err; 456 if (BIO_printf(bp, "%s: (%d bit)\n", ktype, BN_num_bits(x->p)) 457 <= 0) 458 goto err; 459 } 460 461 if (!ASN1_bn_print(bp, "priv:", priv_key, m, off)) 462 goto err; 463 if (!ASN1_bn_print(bp, "pub: ", pub_key, m, off)) 464 goto err; 465 if (!ASN1_bn_print(bp, "P: ", x->p, m, off)) 466 goto err; 467 if (!ASN1_bn_print(bp, "Q: ", x->q, m, off)) 468 goto err; 469 if (!ASN1_bn_print(bp, "G: ", x->g, m, off)) 470 goto err; 471 ret = 1; 472 err: 473 if (m != NULL) 474 OPENSSL_free(m); 475 return (ret); 476} 477 478static int dsa_param_decode(EVP_PKEY *pkey, 479 const unsigned char **pder, int derlen) 480{ 481 DSA *dsa; 482 if (!(dsa = d2i_DSAparams(NULL, pder, derlen))) { 483 DSAerr(DSA_F_DSA_PARAM_DECODE, ERR_R_DSA_LIB); 484 return 0; 485 } 486 EVP_PKEY_assign_DSA(pkey, dsa); 487 return 1; 488} 489 490static int dsa_param_encode(const EVP_PKEY *pkey, unsigned char **pder) 491{ 492 return i2d_DSAparams(pkey->pkey.dsa, pder); 493} 494 495static int dsa_param_print(BIO *bp, const EVP_PKEY *pkey, int indent, 496 ASN1_PCTX *ctx) 497{ 498 return do_dsa_print(bp, pkey->pkey.dsa, indent, 0); 499} 500 501static int dsa_pub_print(BIO *bp, const EVP_PKEY *pkey, int indent, 502 ASN1_PCTX *ctx) 503{ 504 return do_dsa_print(bp, pkey->pkey.dsa, indent, 1); 505} 506 507static int dsa_priv_print(BIO *bp, const EVP_PKEY *pkey, int indent, 508 ASN1_PCTX *ctx) 509{ 510 return do_dsa_print(bp, pkey->pkey.dsa, indent, 2); 511} 512 513static int old_dsa_priv_decode(EVP_PKEY *pkey, 514 const unsigned char **pder, int derlen) 515{ 516 DSA *dsa; 517 if (!(dsa = d2i_DSAPrivateKey(NULL, pder, derlen))) { 518 DSAerr(DSA_F_OLD_DSA_PRIV_DECODE, ERR_R_DSA_LIB); 519 return 0; 520 } 521 EVP_PKEY_assign_DSA(pkey, dsa); 522 return 1; 523} 524 525static int old_dsa_priv_encode(const EVP_PKEY *pkey, unsigned char **pder) 526{ 527 return i2d_DSAPrivateKey(pkey->pkey.dsa, pder); 528} 529 530static int dsa_sig_print(BIO *bp, const X509_ALGOR *sigalg, 531 const ASN1_STRING *sig, int indent, ASN1_PCTX *pctx) 532{ 533 DSA_SIG *dsa_sig; 534 const unsigned char *p; 535 if (!sig) { 536 if (BIO_puts(bp, "\n") <= 0) 537 return 0; 538 else 539 return 1; 540 } 541 p = sig->data; 542 dsa_sig = d2i_DSA_SIG(NULL, &p, sig->length); 543 if (dsa_sig) { 544 int rv = 0; 545 size_t buf_len = 0; 546 unsigned char *m = NULL; 547 update_buflen(dsa_sig->r, &buf_len); 548 update_buflen(dsa_sig->s, &buf_len); 549 m = OPENSSL_malloc(buf_len + 10); 550 if (m == NULL) { 551 DSAerr(DSA_F_DSA_SIG_PRINT, ERR_R_MALLOC_FAILURE); 552 goto err; 553 } 554 555 if (BIO_write(bp, "\n", 1) != 1) 556 goto err; 557 558 if (!ASN1_bn_print(bp, "r: ", dsa_sig->r, m, indent)) 559 goto err; 560 if (!ASN1_bn_print(bp, "s: ", dsa_sig->s, m, indent)) 561 goto err; 562 rv = 1; 563 err: 564 if (m) 565 OPENSSL_free(m); 566 DSA_SIG_free(dsa_sig); 567 return rv; 568 } 569 return X509_signature_dump(bp, sig, indent); 570} 571 572static int dsa_pkey_ctrl(EVP_PKEY *pkey, int op, long arg1, void *arg2) 573{ 574 switch (op) { 575 case ASN1_PKEY_CTRL_PKCS7_SIGN: 576 if (arg1 == 0) { 577 int snid, hnid; 578 X509_ALGOR *alg1, *alg2; 579 PKCS7_SIGNER_INFO_get0_algs(arg2, NULL, &alg1, &alg2); 580 if (alg1 == NULL || alg1->algorithm == NULL) 581 return -1; 582 hnid = OBJ_obj2nid(alg1->algorithm); 583 if (hnid == NID_undef) 584 return -1; 585 if (!OBJ_find_sigid_by_algs(&snid, hnid, EVP_PKEY_id(pkey))) 586 return -1; 587 X509_ALGOR_set0(alg2, OBJ_nid2obj(snid), V_ASN1_UNDEF, 0); 588 } 589 return 1; 590#ifndef OPENSSL_NO_CMS 591 case ASN1_PKEY_CTRL_CMS_SIGN: 592 if (arg1 == 0) { 593 int snid, hnid; 594 X509_ALGOR *alg1, *alg2; 595 CMS_SignerInfo_get0_algs(arg2, NULL, NULL, &alg1, &alg2); 596 if (alg1 == NULL || alg1->algorithm == NULL) 597 return -1; 598 hnid = OBJ_obj2nid(alg1->algorithm); 599 if (hnid == NID_undef) 600 return -1; 601 if (!OBJ_find_sigid_by_algs(&snid, hnid, EVP_PKEY_id(pkey))) 602 return -1; 603 X509_ALGOR_set0(alg2, OBJ_nid2obj(snid), V_ASN1_UNDEF, 0); 604 } 605 return 1; 606 607 case ASN1_PKEY_CTRL_CMS_RI_TYPE: 608 *(int *)arg2 = CMS_RECIPINFO_NONE; 609 return 1; 610#endif 611 612 case ASN1_PKEY_CTRL_DEFAULT_MD_NID: 613 *(int *)arg2 = NID_sha256; 614 return 2; 615 616 default: 617 return -2; 618 619 } 620 621} 622 623/* NB these are sorted in pkey_id order, lowest first */ 624 625const EVP_PKEY_ASN1_METHOD dsa_asn1_meths[] = { 626 627 { 628 EVP_PKEY_DSA2, 629 EVP_PKEY_DSA, 630 ASN1_PKEY_ALIAS}, 631 632 { 633 EVP_PKEY_DSA1, 634 EVP_PKEY_DSA, 635 ASN1_PKEY_ALIAS}, 636 637 { 638 EVP_PKEY_DSA4, 639 EVP_PKEY_DSA, 640 ASN1_PKEY_ALIAS}, 641 642 { 643 EVP_PKEY_DSA3, 644 EVP_PKEY_DSA, 645 ASN1_PKEY_ALIAS}, 646 647 { 648 EVP_PKEY_DSA, 649 EVP_PKEY_DSA, 650 0, 651 652 "DSA", 653 "OpenSSL DSA method", 654 655 dsa_pub_decode, 656 dsa_pub_encode, 657 dsa_pub_cmp, 658 dsa_pub_print, 659 660 dsa_priv_decode, 661 dsa_priv_encode, 662 dsa_priv_print, 663 664 int_dsa_size, 665 dsa_bits, 666 667 dsa_param_decode, 668 dsa_param_encode, 669 dsa_missing_parameters, 670 dsa_copy_parameters, 671 dsa_cmp_parameters, 672 dsa_param_print, 673 dsa_sig_print, 674 675 int_dsa_free, 676 dsa_pkey_ctrl, 677 old_dsa_priv_decode, 678 old_dsa_priv_encode} 679}; 680