2019-06-28 16:50:56 +08:00
|
|
|
=pod
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
EVP: add missing common functionality
This adds the missing functions that should be common for all
fetchable EVP sub-APIs:
EVP_KEYMGMT_is_a(), EVP_KEYMGMT_do_all_provided(), EVP_KEYEXCH_is_a(),
EVP_KEYEXCH_do_all_provided(), EVP_KDF_is_a(), EVP_MD_is_a(),
EVP_SIGNATURE_do_all_provided(), EVP_SIGNATURE_is_a().
This also renames EVP_MD_do_all_ex(), EVP_CIPHER_do_all_ex(),
EVP_KDF_do_all_ex(), EVP_MAC_do_all_ex() to change '_ex'
to '_provided'.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/9979)
2019-09-23 16:33:26 +08:00
|
|
|
EVP_KEYEXCH_fetch, EVP_KEYEXCH_free, EVP_KEYEXCH_up_ref, EVP_KEYEXCH_provider,
|
2019-09-23 17:16:21 +08:00
|
|
|
EVP_KEYEXCH_is_a, EVP_KEYEXCH_do_all_provided,
|
2020-08-12 09:59:43 +08:00
|
|
|
EVP_KEYEXCH_number, EVP_KEYEXCH_names_do_all,
|
EVP: Add EVP_<TYPE>_description()
The following operation types are covered:
EVP_MD, EVP_CIPHER, EVP_MAC, EVP_RAND, EVP_KEYMGMT, EVP_SIGNATURE,
EVP_ASYM_CIPHER, EVP_KEM, EVP_KEYEXCH, EVP_KDF. Also EVP_PKEY.
For EVP_MD and EVP_CIPHER, OBJ_nid2ln() is used as a fallback for
legacy implementations.
For EVP_PKEY, the info field of the EVP_PKEY_ASN1_METHOD is used as a
fallback for legacy implementations.
Fixes #14514
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14656)
2021-03-16 21:23:54 +08:00
|
|
|
EVP_KEYEXCH_description,
|
2020-08-12 09:59:43 +08:00
|
|
|
EVP_KEYEXCH_gettable_ctx_params, EVP_KEYEXCH_settable_ctx_params
|
2019-06-28 16:50:56 +08:00
|
|
|
- Functions to manage EVP_KEYEXCH algorithm objects
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
#include <openssl/evp.h>
|
|
|
|
|
2020-10-15 17:55:50 +08:00
|
|
|
EVP_KEYEXCH *EVP_KEYEXCH_fetch(OSSL_LIB_CTX *ctx, const char *algorithm,
|
2019-07-18 18:24:55 +08:00
|
|
|
const char *properties);
|
2019-06-28 16:50:56 +08:00
|
|
|
void EVP_KEYEXCH_free(EVP_KEYEXCH *exchange);
|
|
|
|
int EVP_KEYEXCH_up_ref(EVP_KEYEXCH *exchange);
|
2019-07-07 16:56:46 +08:00
|
|
|
OSSL_PROVIDER *EVP_KEYEXCH_provider(const EVP_KEYEXCH *exchange);
|
EVP: add missing common functionality
This adds the missing functions that should be common for all
fetchable EVP sub-APIs:
EVP_KEYMGMT_is_a(), EVP_KEYMGMT_do_all_provided(), EVP_KEYEXCH_is_a(),
EVP_KEYEXCH_do_all_provided(), EVP_KDF_is_a(), EVP_MD_is_a(),
EVP_SIGNATURE_do_all_provided(), EVP_SIGNATURE_is_a().
This also renames EVP_MD_do_all_ex(), EVP_CIPHER_do_all_ex(),
EVP_KDF_do_all_ex(), EVP_MAC_do_all_ex() to change '_ex'
to '_provided'.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/9979)
2019-09-23 16:33:26 +08:00
|
|
|
int EVP_KEYEXCH_is_a(const EVP_KEYEXCH *exchange, const char *name);
|
2019-09-23 17:16:21 +08:00
|
|
|
int EVP_KEYEXCH_number(const EVP_KEYEXCH *exchange);
|
2020-10-15 17:55:50 +08:00
|
|
|
void EVP_KEYEXCH_do_all_provided(OSSL_LIB_CTX *libctx,
|
EVP: add missing common functionality
This adds the missing functions that should be common for all
fetchable EVP sub-APIs:
EVP_KEYMGMT_is_a(), EVP_KEYMGMT_do_all_provided(), EVP_KEYEXCH_is_a(),
EVP_KEYEXCH_do_all_provided(), EVP_KDF_is_a(), EVP_MD_is_a(),
EVP_SIGNATURE_do_all_provided(), EVP_SIGNATURE_is_a().
This also renames EVP_MD_do_all_ex(), EVP_CIPHER_do_all_ex(),
EVP_KDF_do_all_ex(), EVP_MAC_do_all_ex() to change '_ex'
to '_provided'.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/9979)
2019-09-23 16:33:26 +08:00
|
|
|
void (*fn)(EVP_KEYEXCH *exchange, void *arg),
|
|
|
|
void *arg);
|
2021-02-20 01:03:43 +08:00
|
|
|
int EVP_KEYEXCH_names_do_all(const EVP_KEYEXCH *exchange,
|
|
|
|
void (*fn)(const char *name, void *data),
|
|
|
|
void *data);
|
EVP: Add EVP_<TYPE>_description()
The following operation types are covered:
EVP_MD, EVP_CIPHER, EVP_MAC, EVP_RAND, EVP_KEYMGMT, EVP_SIGNATURE,
EVP_ASYM_CIPHER, EVP_KEM, EVP_KEYEXCH, EVP_KDF. Also EVP_PKEY.
For EVP_MD and EVP_CIPHER, OBJ_nid2ln() is used as a fallback for
legacy implementations.
For EVP_PKEY, the info field of the EVP_PKEY_ASN1_METHOD is used as a
fallback for legacy implementations.
Fixes #14514
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14656)
2021-03-16 21:23:54 +08:00
|
|
|
const char *EVP_KEYEXCH_description(const EVP_KEYEXCH *keyexch);
|
2020-08-12 09:59:43 +08:00
|
|
|
const OSSL_PARAM *EVP_KEYEXCH_gettable_ctx_params(const EVP_KEYEXCH *keyexch);
|
|
|
|
const OSSL_PARAM *EVP_KEYEXCH_settable_ctx_params(const EVP_KEYEXCH *keyexch);
|
2019-06-28 16:50:56 +08:00
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
2019-07-18 18:24:55 +08:00
|
|
|
EVP_KEYEXCH_fetch() fetches the key exchange implementation for the given
|
2019-09-23 16:17:19 +08:00
|
|
|
I<algorithm> from any provider offering it, within the criteria given
|
|
|
|
by the I<properties>.
|
2021-03-26 01:02:25 +08:00
|
|
|
See L<crypto(7)/ALGORITHM FETCHING> for further information.
|
2019-07-18 18:24:55 +08:00
|
|
|
|
|
|
|
The returned value must eventually be freed with EVP_KEYEXCH_free().
|
|
|
|
|
2019-06-28 16:50:56 +08:00
|
|
|
EVP_KEYEXCH_free() decrements the reference count for the B<EVP_KEYEXCH>
|
|
|
|
structure. Typically this structure will have been obtained from an earlier call
|
2019-07-18 18:24:55 +08:00
|
|
|
to EVP_KEYEXCH_fetch(). If the reference count drops to 0 then the
|
2019-06-28 16:50:56 +08:00
|
|
|
structure is freed.
|
|
|
|
|
|
|
|
EVP_KEYEXCH_up_ref() increments the reference count for an B<EVP_KEYEXCH>
|
|
|
|
structure.
|
|
|
|
|
2019-07-07 16:56:46 +08:00
|
|
|
EVP_KEYEXCH_provider() returns the provider that I<exchange> was fetched from.
|
|
|
|
|
EVP: add missing common functionality
This adds the missing functions that should be common for all
fetchable EVP sub-APIs:
EVP_KEYMGMT_is_a(), EVP_KEYMGMT_do_all_provided(), EVP_KEYEXCH_is_a(),
EVP_KEYEXCH_do_all_provided(), EVP_KDF_is_a(), EVP_MD_is_a(),
EVP_SIGNATURE_do_all_provided(), EVP_SIGNATURE_is_a().
This also renames EVP_MD_do_all_ex(), EVP_CIPHER_do_all_ex(),
EVP_KDF_do_all_ex(), EVP_MAC_do_all_ex() to change '_ex'
to '_provided'.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/9979)
2019-09-23 16:33:26 +08:00
|
|
|
EVP_KEYEXCH_is_a() checks if I<exchange> is an implementation of an
|
|
|
|
algorithm that's identifiable with I<name>.
|
|
|
|
|
2019-09-23 17:16:21 +08:00
|
|
|
EVP_KEYEXCH_number() returns the internal dynamic number assigned to
|
|
|
|
the I<exchange>.
|
|
|
|
|
2019-09-23 16:56:13 +08:00
|
|
|
EVP_KEYEXCH_names_do_all() traverses all names for the I<exchange>, and
|
|
|
|
calls I<fn> with each name and I<data>.
|
|
|
|
|
EVP: Add EVP_<TYPE>_description()
The following operation types are covered:
EVP_MD, EVP_CIPHER, EVP_MAC, EVP_RAND, EVP_KEYMGMT, EVP_SIGNATURE,
EVP_ASYM_CIPHER, EVP_KEM, EVP_KEYEXCH, EVP_KDF. Also EVP_PKEY.
For EVP_MD and EVP_CIPHER, OBJ_nid2ln() is used as a fallback for
legacy implementations.
For EVP_PKEY, the info field of the EVP_PKEY_ASN1_METHOD is used as a
fallback for legacy implementations.
Fixes #14514
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14656)
2021-03-16 21:23:54 +08:00
|
|
|
EVP_KEYEXCH_description() returns a description of the I<keyexch>, meant for
|
|
|
|
display and human consumption. The description is at the discretion of the
|
|
|
|
I<keyexch> implementation.
|
|
|
|
|
EVP: add missing common functionality
This adds the missing functions that should be common for all
fetchable EVP sub-APIs:
EVP_KEYMGMT_is_a(), EVP_KEYMGMT_do_all_provided(), EVP_KEYEXCH_is_a(),
EVP_KEYEXCH_do_all_provided(), EVP_KDF_is_a(), EVP_MD_is_a(),
EVP_SIGNATURE_do_all_provided(), EVP_SIGNATURE_is_a().
This also renames EVP_MD_do_all_ex(), EVP_CIPHER_do_all_ex(),
EVP_KDF_do_all_ex(), EVP_MAC_do_all_ex() to change '_ex'
to '_provided'.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/9979)
2019-09-23 16:33:26 +08:00
|
|
|
EVP_KEYEXCH_do_all_provided() traverses all key exchange implementations by
|
|
|
|
all activated providers in the library context I<libctx>, and for each
|
|
|
|
of the implementations, calls I<fn> with the implementation method and
|
|
|
|
I<data> as arguments.
|
|
|
|
|
2020-08-12 09:59:43 +08:00
|
|
|
EVP_KEYEXCH_gettable_ctx_params() and EVP_KEYEXCH_settable_ctx_params() return
|
|
|
|
a constant B<OSSL_PARAM> array that describes the names and types of key
|
|
|
|
parameters that can be retrieved or set by a key exchange algorithm using
|
|
|
|
L<EVP_PKEY_CTX_get_params(3)> and L<EVP_PKEY_CTX_set_params(3)>.
|
|
|
|
|
2019-06-28 16:50:56 +08:00
|
|
|
=head1 RETURN VALUES
|
|
|
|
|
2019-07-18 18:24:55 +08:00
|
|
|
EVP_KEYEXCH_fetch() returns a pointer to a B<EVP_KEYEXCH> for success
|
2019-09-23 16:17:19 +08:00
|
|
|
or NULL for failure.
|
2019-07-18 18:24:55 +08:00
|
|
|
|
2019-06-28 16:50:56 +08:00
|
|
|
EVP_KEYEXCH_up_ref() returns 1 for success or 0 otherwise.
|
|
|
|
|
2021-02-20 01:03:43 +08:00
|
|
|
EVP_KEYEXCH_names_do_all() returns 1 if the callback was called for all
|
|
|
|
names. A return value of 0 means that the callback was not called for any names.
|
|
|
|
|
EVP: add missing common functionality
This adds the missing functions that should be common for all
fetchable EVP sub-APIs:
EVP_KEYMGMT_is_a(), EVP_KEYMGMT_do_all_provided(), EVP_KEYEXCH_is_a(),
EVP_KEYEXCH_do_all_provided(), EVP_KDF_is_a(), EVP_MD_is_a(),
EVP_SIGNATURE_do_all_provided(), EVP_SIGNATURE_is_a().
This also renames EVP_MD_do_all_ex(), EVP_CIPHER_do_all_ex(),
EVP_KDF_do_all_ex(), EVP_MAC_do_all_ex() to change '_ex'
to '_provided'.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/9979)
2019-09-23 16:33:26 +08:00
|
|
|
EVP_KEYEXCH_is_a() returns 1 of I<exchange> was identifiable,
|
|
|
|
otherwise 0.
|
|
|
|
|
2019-09-23 17:16:21 +08:00
|
|
|
EVP_KEYEXCH_number() returns an integer.
|
|
|
|
|
2020-08-12 09:59:43 +08:00
|
|
|
EVP_KEYEXCH_gettable_ctx_params() and EVP_KEYEXCH_settable_ctx_params() return
|
|
|
|
a constant B<OSSL_PARAM> array or NULL on error.
|
|
|
|
|
2019-06-28 16:50:56 +08:00
|
|
|
=head1 SEE ALSO
|
|
|
|
|
2021-03-26 01:02:25 +08:00
|
|
|
L<crypto(7)/ALGORITHM FETCHING>, L<OSSL_PROVIDER(3)>
|
2019-06-28 16:50:56 +08:00
|
|
|
|
|
|
|
=head1 HISTORY
|
|
|
|
|
|
|
|
The functions described here were added in OpenSSL 3.0.
|
|
|
|
|
|
|
|
=head1 COPYRIGHT
|
|
|
|
|
2021-03-11 21:27:36 +08:00
|
|
|
Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.
|
2019-06-28 16:50:56 +08:00
|
|
|
|
|
|
|
Licensed under the Apache License 2.0 (the "License"). You may not use
|
|
|
|
this file except in compliance with the License. You can obtain a copy
|
|
|
|
in the file LICENSE in the source distribution or at
|
|
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
|
|
|
|
=cut
|