| blob | 5efb337e2d703d2a808ff9a8486c5fd88a2c8eab |
1 /* gcrypt.h - GNU Cryptographic Library Interface -*- c -*-
2 * Copyright (C) 1998-2015 Free Software Foundation, Inc.
3 * Copyright (C) 2012-2015 g10 Code GmbH
4 *
5 * This file is part of Libgcrypt.
6 *
7 * Libgcrypt is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU Lesser General Public License as
9 * published by the Free Software Foundation; either version 2.1 of
10 * the License, or (at your option) any later version.
11 *
12 * Libgcrypt is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public
18 * License along with this program; if not, see <http://www.gnu.org/licenses/>.
19 */
34 /* This is required for error code compatibility. */
38 /* The version of this header should match the one of the library. It
39 should not be used by a program because gcry_check_version() should
40 return the same version. The purpose of this macro is to let
41 autoconf (using the AM_PATH_GCRYPT macro) check that this header
42 matches the installed library. */
45 /* The version number of this header. It may be used to handle minor
46 API incompatibilities. */
50 /* Wrappers for the libgpg-error library. */
56 /*GPG_ERR_INLINE*/ gcry_error_t
58 {
60 }
62 /* The user can define GPG_ERR_SOURCE_DEFAULT before including this
63 file to specify a default source for gpg_error. */
66 /*GPG_ERR_INLINE*/ gcry_error_t
68 {
70 }
72 /*GPG_ERR_INLINE*/ gcry_err_code_t
74 {
76 }
79 /*GPG_ERR_INLINE*/ gcry_err_source_t
81 {
83 }
85 /* Return a pointer to a string containing a description of the error
86 code in the error value ERR. */
89 /* Return a pointer to a string containing a description of the error
90 source in the error value ERR. */
93 /* Retrieve the error code for the system error ERR. This returns
94 GPG_ERR_UNKNOWN_ERRNO if the system error is not mapped (report
95 this). */
98 /* Retrieve the system error for the error code CODE. This returns 0
99 if CODE is not a system error code. */
102 /* Return an error value with the error source SOURCE and the system
103 error ERR. */
106 /* Return an error value with the system error ERR. */
110 /* NOTE: Since Libgcrypt 1.6 the thread callbacks are not anymore
111 used. However we keep it to allow for some source code
112 compatibility if used in the standard way. */
114 /* Constants defining the thread model to use. Used with the OPTION
115 field of the struct gcry_thread_cbs. */
121 }
123 /* The version number encoded in the OPTION field of the struct
124 gcry_thread_cbs. */
127 /* Wrapper for struct ath_ops. */
129 /* The OPTION field encodes the thread model and the version number
130 of this structure.
131 Bits 7 - 0 are used for the thread model
132 Bits 15 - 8 are used for the version number. */
134 }
137 /+TODO
138 #define GCRY_THREAD_OPTION_PTH_IMPL \
139 static struct gcry_thread_cbs gcry_threads_pth = { \
140 (GCRY_THREAD_OPTION_PTH | (GCRY_THREAD_OPTION_VERSION << 8))}
142 #define GCRY_THREAD_OPTION_PTHREAD_IMPL \
143 static struct gcry_thread_cbs gcry_threads_pthread = { \
144 (GCRY_THREAD_OPTION_PTHREAD | (GCRY_THREAD_OPTION_VERSION << 8))}
145 +/
148 /* A generic context object as used by some functions. */
152 /* The data objects used to hold multi precision integers. */
158 /*
159 #ifndef GCRYPT_NO_DEPRECATED
160 typedef struct gcry_mpi *GCRY_MPI _GCRY_GCC_ATTR_DEPRECATED;
161 typedef struct gcry_mpi *GcryMPI _GCRY_GCC_ATTR_DEPRECATED;
162 #endif
163 */
165 /* A structure used for scatter gather hashing. */
171 }
174 /* Check that the library fulfills the version requirement. */
177 /* Codes for function dispatchers. */
179 /* Codes used with the gcry_control function. */
182 /* Note: 1 .. 2 are not anymore used. */
222 /* Note: 43 is not anymore used. */
237 /* Note: 58 .. 62 are used internally. */
248 }
250 /* Perform various operations defined by CMD. */
254 /* S-expression management. */
256 /* The object to represent an S-expression as used with the public key
257 functions. */
261 /*
262 #ifndef GCRYPT_NO_DEPRECATED
263 typedef struct gcry_sexp *GCRY_SEXP _GCRY_GCC_ATTR_DEPRECATED;
264 typedef struct gcry_sexp *GcrySexp _GCRY_GCC_ATTR_DEPRECATED;
265 #endif
266 */
268 /* The possible values for the S-expression format. */
275 }
277 /* Create an new S-expression object from BUFFER of size LENGTH and
278 return it in RETSEXP. With AUTODETECT set to 0 the data in BUFFER
279 is expected to be in canonized format. */
284 /* Same as gcry_sexp_new but allows to pass a FREEFNC which has the
285 effect to transfer ownership of BUFFER to the created object. */
290 /* Scan BUFFER and return a new S-expression object in RETSEXP. This
291 function expects a printf like string in BUFFER. */
295 /* Same as gcry_sexp_sscan but expects a string in FORMAT and can thus
296 only be used for certain encodings. */
300 /* Like gcry_sexp_build, but uses an array instead of variable
301 function arguments. */
305 /* Release the S-expression object SEXP */
308 /* Calculate the length of an canonized S-expresion in BUFFER and
309 check for a valid encoding. */
313 /* Copies the S-expression object SEXP into BUFFER using the format
314 specified in MODE. */
316 usize maxlength);
318 /* Dumps the S-expression object A in a format suitable for debugging
319 to Libgcrypt's logging stream. */
328 /* Scan the S-expression for a sublist with a type (the car of the
329 list) matching the string TOKEN. If TOKLEN is not 0, the token is
330 assumed to be raw memory of this length. The function returns a
331 newly allocated S-expression consisting of the found sublist or
332 `null' when not found. */
335 /* Return the length of the LIST. For a valid S-expression this
336 should be at least 1. */
339 /* Create and return a new S-expression from the element with index
340 NUMBER in LIST. Note that the first element has the index 0. If
341 there is no such element, `null' is returned. */
344 /* Create and return a new S-expression from the first element in
345 LIST; this called the "type" and should always exist and be a
346 string. `null' is returned in case of a problem. */
349 /* Create and return a new list form all elements except for the first
350 one. Note, that this function may return an invalid S-expression
351 because it is not guaranteed, that the type exists and is a string.
352 However, for parsing a complex S-expression it might be useful for
353 intermediate lists. Returns `null' on error. */
359 /* This function is used to get data from a LIST. A pointer to the
360 actual data with index NUMBER is returned and the length of this
361 data will be stored to DATALEN. If there is no data at the given
362 index or the index represents another list, `null' is returned.
363 *Note:* The returned pointer is valid as long as LIST is not
364 modified or released. */
368 /* This function is used to get data from a LIST. A malloced buffer to the
369 data with index NUMBER is returned and the length of this
370 data will be stored to RLENGTH. If there is no data at the given
371 index or the index represents another list, `null' is returned. */
375 /* This function is used to get and convert data from a LIST. The
376 data is assumed to be a Nul terminated string. The caller must
377 release the returned value using `gcry_free'. If there is no data
378 at the given index, the index represents a list or the value can't
379 be converted to a string, `null' is returned. */
382 /* This function is used to get and convert data from a LIST. This
383 data is assumed to be an MPI stored in the format described by
384 MPIFMT and returned as a standard Libgcrypt MPI. The caller must
385 release this returned value using `gcry_mpi_release'. If there is
386 no data at the given index, the index represents a list or the
387 value can't be converted to an MPI, `null' is returned. */
390 /* Convenience fucntion to extract parameters from an S-expression
391 * using a list of single letter parameters. */
398 /*******************************************
399 * *
400 * Multi Precision Integer Functions *
401 * *
402 *******************************************/
404 /* Different formats of external big integer representation. */
414 }
416 /* Flags used for creating big integers. */
421 a way to store some bytes. This is
422 useful for encrypted big integers. */
429 }
432 /* Macros to return pre-defined MPI constants. */
433 /*
434 #define GCRYMPI_CONST_ONE (_gcry_mpi_get_const (1))
435 #define GCRYMPI_CONST_TWO (_gcry_mpi_get_const (2))
436 #define GCRYMPI_CONST_THREE (_gcry_mpi_get_const (3))
437 #define GCRYMPI_CONST_FOUR (_gcry_mpi_get_const (4))
438 #define GCRYMPI_CONST_EIGHT (_gcry_mpi_get_const (8))
439 */
447 /* Allocate a new big integer object, initialize it with 0 and
448 initially allocate memory for a number of at least NBITS. */
451 /* Same as gcry_mpi_new() but allocate in "secure" memory. */
454 /* Release the number A and free all associated resources. */
457 /* Create a new number with the same value as A. */
460 /* Store the big integer value U in W and release U. */
463 /* Store the big integer value U in W. */
466 /* Store the unsigned integer value U in W. */
469 /* Swap the values of A and B. */
472 /* Return 1 if A is negative; 0 if zero or positive. */
475 /* W = - U */
478 /* W = [W] */
481 /* Compare the big integer number U and V returning 0 for equality, a
482 positive value for U > V and a negative for U < V. */
485 /* Compare the big integer number U with the unsigned integer V
486 returning 0 for equality, a positive value for U > V and a negative
487 for U < V. */
490 /* Convert the external representation of an integer stored in BUFFER
491 with a length of BUFLEN into a newly create MPI returned in
492 RET_MPI. If NSCANNED is not null, it will receive the number of
493 bytes actually scanned after a successful operation. */
498 /* Convert the big integer A into the external representation
499 described by FORMAT and store it in the provided BUFFER which has
500 been allocated by the user with a size of BUFLEN bytes. NWRITTEN
501 receives the actual length of the external representation unless it
502 has been passed as null. */
508 /* Convert the big integer A int the external representation described
509 by FORMAT and store it in a newly allocated buffer which address
510 will be put into BUFFER. NWRITTEN receives the actual lengths of the
511 external representation. */
516 /* Dump the value of A in a format suitable for debugging to
517 Libgcrypt's logging stream. Note that one leading space but no
518 trailing space or linefeed will be printed. It is okay to pass
519 null for A. */
523 /* W = U + V. */
526 /* W = U + V. V is an unsigned integer. */
529 /* W = U + V mod M. */
532 /* W = U - V. */
535 /* W = U - V. V is an unsigned integer. */
538 /* W = U - V mod M */
541 /* W = U * V. */
544 /* W = U * V. V is an unsigned integer. */
547 /* W = U * V mod M. */
550 /* W = U * (2 ^ CNT). */
553 /* Q = DIVIDEND / DIVISOR, R = DIVIDEND % DIVISOR,
554 Q or R may be passed as null. ROUND should be negative or 0. */
558 /* R = DIVIDEND % DIVISOR */
561 /* W = B ^ E mod M. */
566 /* Set G to the greatest common divisor of A and B.
567 Return true if the G is 1. */
570 /* Set X to the multiplicative inverse of A mod M.
571 Return true if the value exists. */
574 /* Create a new point object. NBITS is usually 0. */
577 /* Release the object POINT. POINT may be null. */
580 /* Store the projective coordinates from POINT into X, Y, and Z. */
582 gcry_mpi_point_t point);
584 /* Store the projective coordinates from POINT into X, Y, and Z and
585 release POINT. */
587 gcry_mpi_point_t point);
589 /* Store the projective coordinates X, Y, and Z into POINT. */
593 /* Store the projective coordinates X, Y, and Z into POINT and release
594 X, Y, and Z. */
597 gcry_mpi_t z);
599 /* Allocate a new context for elliptic curve operations based on the
600 parameters given by KEYPARAM or using CURVENAME. */
604 /* Get a named MPI from an elliptic curve context. */
607 /* Get a named point from an elliptic curve context. */
611 /* Store a named MPI into an elliptic curve context. */
613 gcry_ctx_t ctx);
615 /* Store a named point into an elliptic curve context. */
617 gcry_ctx_t ctx);
619 /* Store the affine coordinates of POINT into X and Y. */
621 gcry_ctx_t ctx);
623 /* W = 2 * U. */
626 /* W = U + V. */
630 /* W = N * U. */
632 gcry_ctx_t ctx);
634 /* Return true if POINT is on the curve described by CTX. */
637 /* Return the number of bits required to represent A. */
640 /* Return true when bit number N (counting from 0) is set in A. */
643 /* Set bit number N in A. */
646 /* Clear bit number N in A. */
649 /* Set bit number N in A and clear all bits greater than N. */
652 /* Clear bit number N in A and all bits greater than N. */
655 /* Shift the value of A by N bits to the right and store the result in X. */
658 /* Shift the value of A by N bits to the left and store the result in X. */
661 /* Store NBITS of the value P points to in A and mark A as an opaque
662 value. On success A received the the ownership of the value P.
663 WARNING: Never use an opaque MPI for anything thing else than
664 gcry_mpi_release, gcry_mpi_get_opaque. */
667 /* Store NBITS of the value P points to in A and mark A as an opaque
668 value. The function takes a copy of the provided value P.
669 WARNING: Never use an opaque MPI for anything thing else than
670 gcry_mpi_release, gcry_mpi_get_opaque. */
674 /* Return a pointer to an opaque value stored in A and return its size
675 in NBITS. Note that the returned pointer is still owned by A and
676 that the function should never be used for an non-opaque MPI. */
679 /* Set the FLAG for the big integer A. Currently only the flag
680 GCRYMPI_FLAG_SECURE is allowed to convert A into an big intger
681 stored in "secure" memory. */
684 /* Clear FLAG for the big integer A. Note that this function is
685 currently useless as no flags are allowed. */
688 /* Return true if the FLAG is set for A. */
691 /* Private function - do not use. */
694 /* Unless the GCRYPT_NO_MPI_MACROS is used, provide a couple of
695 convenience macros for the big integer functions. */
696 /+
697 #ifndef GCRYPT_NO_MPI_MACROS
698 #define mpi_new(n) gcry_mpi_new( (n) )
699 #define mpi_secure_new( n ) gcry_mpi_snew( (n) )
700 #define mpi_release(a) \
701 do \
702 { \
703 gcry_mpi_release ((a)); \
704 (a) = null; \
705 } \
706 while (0)
708 #define mpi_copy( a ) gcry_mpi_copy( (a) )
709 #define mpi_snatch( w, u) gcry_mpi_snatch( (w), (u) )
710 #define mpi_set( w, u) gcry_mpi_set( (w), (u) )
711 #define mpi_set_ui( w, u) gcry_mpi_set_ui( (w), (u) )
712 #define mpi_abs( w ) gcry_mpi_abs( (w) )
713 #define mpi_neg( w, u) gcry_mpi_neg( (w), (u) )
714 #define mpi_cmp( u, v ) gcry_mpi_cmp( (u), (v) )
715 #define mpi_cmp_ui( u, v ) gcry_mpi_cmp_ui( (u), (v) )
716 #define mpi_is_neg( a ) gcry_mpi_is_neg ((a))
718 #define mpi_add_ui(w,u,v) gcry_mpi_add_ui((w),(u),(v))
719 #define mpi_add(w,u,v) gcry_mpi_add ((w),(u),(v))
720 #define mpi_addm(w,u,v,m) gcry_mpi_addm ((w),(u),(v),(m))
721 #define mpi_sub_ui(w,u,v) gcry_mpi_sub_ui ((w),(u),(v))
722 #define mpi_sub(w,u,v) gcry_mpi_sub ((w),(u),(v))
723 #define mpi_subm(w,u,v,m) gcry_mpi_subm ((w),(u),(v),(m))
724 #define mpi_mul_ui(w,u,v) gcry_mpi_mul_ui ((w),(u),(v))
725 #define mpi_mul_2exp(w,u,v) gcry_mpi_mul_2exp ((w),(u),(v))
726 #define mpi_mul(w,u,v) gcry_mpi_mul ((w),(u),(v))
727 #define mpi_mulm(w,u,v,m) gcry_mpi_mulm ((w),(u),(v),(m))
728 #define mpi_powm(w,b,e,m) gcry_mpi_powm ( (w), (b), (e), (m) )
729 #define mpi_tdiv(q,r,a,m) gcry_mpi_div ( (q), (r), (a), (m), 0)
730 #define mpi_fdiv(q,r,a,m) gcry_mpi_div ( (q), (r), (a), (m), -1)
731 #define mpi_mod(r,a,m) gcry_mpi_mod ((r), (a), (m))
732 #define mpi_gcd(g,a,b) gcry_mpi_gcd ( (g), (a), (b) )
733 #define mpi_invm(g,a,b) gcry_mpi_invm ( (g), (a), (b) )
735 #define mpi_point_new(n) gcry_mpi_point_new((n))
736 #define mpi_point_release(p) \
737 do \
738 { \
739 gcry_mpi_point_release ((p)); \
740 (p) = null; \
741 } \
742 while (0)
743 #define mpi_point_get(x,y,z,p) gcry_mpi_point_get((x),(y),(z),(p))
744 #define mpi_point_snatch_get(x,y,z,p) gcry_mpi_point_snatch_get((x),(y),(z),(p))
745 #define mpi_point_set(p,x,y,z) gcry_mpi_point_set((p),(x),(y),(z))
746 #define mpi_point_snatch_set(p,x,y,z) gcry_mpi_point_snatch_set((p),(x),(y),(z))
748 #define mpi_get_nbits(a) gcry_mpi_get_nbits ((a))
749 #define mpi_test_bit(a,b) gcry_mpi_test_bit ((a),(b))
750 #define mpi_set_bit(a,b) gcry_mpi_set_bit ((a),(b))
751 #define mpi_set_highbit(a,b) gcry_mpi_set_highbit ((a),(b))
752 #define mpi_clear_bit(a,b) gcry_mpi_clear_bit ((a),(b))
753 #define mpi_clear_highbit(a,b) gcry_mpi_clear_highbit ((a),(b))
754 #define mpi_rshift(a,b,c) gcry_mpi_rshift ((a),(b),(c))
755 #define mpi_lshift(a,b,c) gcry_mpi_lshift ((a),(b),(c))
757 #define mpi_set_opaque(a,b,c) gcry_mpi_set_opaque( (a), (b), (c) )
758 #define mpi_get_opaque(a,b) gcry_mpi_get_opaque( (a), (b) )
759 #endif /* GCRYPT_NO_MPI_MACROS */
760 +/
763 /************************************
764 * *
765 * Symmetric Cipher Functions *
766 * *
767 ************************************/
769 /* The data object used to hold a handle to an encryption object. */
773 /*
774 #ifndef GCRYPT_NO_DEPRECATED
775 typedef struct gcry_cipher_handle *GCRY_CIPHER_HD _GCRY_GCC_ATTR_DEPRECATED;
776 typedef struct gcry_cipher_handle *GcryCipherHd _GCRY_GCC_ATTR_DEPRECATED;
777 #endif
778 */
780 /* All symmetric encryption algorithms are identified by their IDs.
781 More IDs may be registered at runtime. */
796 /* Other cipher numbers are above 300 for OpenPGP reasons. */
812 }
814 /* The Rijndael algorithm is basically AES, so provide some macros. */
821 /* The supported encryption modes. Note that not all of them are
822 supported for each algorithm. */
835 }
837 /* Flags used with the open function. */
844 }
846 /* GCM works only with blocks of 128 bits */
849 /* CCM works only with blocks of 128 bits. */
852 /* Create a handle for algorithm ALGO to be used in MODE. FLAGS may
853 be given as an bitwise OR of the gcry_cipher_flags values. */
857 /* Close the cioher handle H and release all resource. */
860 /* Perform various operations on the cipher object H. */
862 usize buflen);
864 /* Retrieve various information about the cipher object H. */
868 /* Retrieve various information about the cipher algorithm ALGO. */
872 /* Map the cipher algorithm whose ID is contained in ALGORITHM to a
873 string representation of the algorithm name. For unknown algorithm
874 IDs this function returns "?". */
877 /* Map the algorithm name NAME to an cipher algorithm ID. Return 0 if
878 the algorithm name is not known. */
881 /* Given an ASN.1 object identifier in standard IETF dotted decimal
882 format in STRING, return the encryption mode associated with that
883 OID or 0 if not known or applicable. */
886 /* Encrypt the plaintext of size INLEN in IN using the cipher handle H
887 into the buffer OUT which has an allocated length of OUTSIZE. For
888 most algorithms it is possible to pass null for in and 0 for INLEN
889 and do a in-place decryption of the data provided in OUT. */
894 /* The counterpart to gcry_cipher_encrypt. */
899 /* Set KEY of length KEYLEN bytes for the cipher handle HD. */
904 /* Set initialization vector IV of length IVLEN for the cipher handle HD. */
908 /* Provide additional authentication data for AEAD modes/ciphers. */
910 usize abuflen);
912 /* Get authentication tag for AEAD modes/ciphers. */
914 usize taglen);
916 /* Check authentication tag for AEAD modes/ciphers. */
918 usize taglen);
920 /* Reset the handle to the state after open. */
921 auto gcry_cipher_reset (gcry_cipher_hd_t h) { return gcry_cipher_ctl(h, GCRYCTL_RESET, null, 0); }
923 /* Perform the OpenPGP sync operation if this is enabled for the
924 cipher handle H. */
925 auto gcry_cipher_sync (gcry_cipher_hd_t h) { return gcry_cipher_ctl(h, GCRYCTL_CFB_SYNC, null, 0); }
927 /* Enable or disable CTS in future calls to gcry_encrypt(). CBC mode only. */
928 auto gcry_cipher_cts (gcry_cipher_hd_t h, int on) { return gcry_cipher_ctl(h, GCRYCTL_SET_CBC_CTS, null, on); }
930 /* Set counter for CTR mode. (CTR,CTRLEN) must denote a buffer of
931 block size length, or (null,0) to set the CTR to the all-zero block. */
935 /* Retrieve the key length in bytes used with algorithm A. */
938 /* Retrieve the block length in bytes used with algorithm A. */
941 /* Return 0 if the algorithm A is available for use. */
942 auto gcry_cipher_test_algo (int a) { return gcry_cipher_algo_info(a, GCRYCTL_TEST_ALGO, null, null); }
945 /************************************
946 * *
947 * Asymmetric Cipher Functions *
948 * *
949 ************************************/
951 /* The algorithms and their IDs we support. */
963 }
965 /* Flags describing usage capabilities of a PK algorithm. */
972 }
974 /* Modes used with gcry_pubkey_get_sexp. */
978 }
980 /* Encrypt the DATA using the public key PKEY and store the result as
981 a newly created S-expression at RESULT. */
985 /* Decrypt the DATA using the private key SKEY and store the result as
986 a newly created S-expression at RESULT. */
990 /* Sign the DATA using the private key SKEY and store the result as
991 a newly created S-expression at RESULT. */
995 /* Check the signature SIGVAL on DATA using the public key PKEY. */
999 /* Check that private KEY is sane. */
1002 /* Generate a new key pair according to the parameters given in
1003 S_PARMS. The new key pair is returned in as an S-expression in
1004 R_KEY. */
1007 /* Catch all function for miscellaneous operations. */
1010 /* Retrieve information about the public key algorithm ALGO. */
1014 /* Map the public key algorithm whose ID is contained in ALGORITHM to
1015 a string representation of the algorithm name. For unknown
1016 algorithm IDs this functions returns "?". */
1019 /* Map the algorithm NAME to a public key algorithm Id. Return 0 if
1020 the algorithm name is not known. */
1023 /* Return what is commonly referred as the key length for the given
1024 public or private KEY. */
1027 /* Return the so called KEYGRIP which is the SHA-1 hash of the public
1028 key parameters expressed in a way depending on the algorithm. */
1031 /* Return the name of the curve matching KEY. */
1035 /* Return an S-expression with the parameters of the named ECC curve
1036 NAME. ALGO must be set to an ECC algorithm. */
1039 /* Return 0 if the public key algorithm A is available for use. */
1042 /* Return an S-expression representing the context CTX. */
1048 /************************************
1049 * *
1050 * Cryptograhic Hash Functions *
1051 * *
1052 ************************************/
1054 /* Algorithm IDs for the hash functions we know about. Not all of them
1055 are implemnted. */
1079 }
1081 /* Flags used with the open function. */
1087 }
1089 /* (Forward declaration.) */
1092 /* This object is used to hold a handle to a message digest object.
1093 This structure is private - only to be used by the public gcry_md_*
1094 macros. */
1096 /* Actual context. */
1099 /* Buffer management. */
1103 }
1106 /* Compatibility types, do not use them. */
1107 /*
1108 #ifndef GCRYPT_NO_DEPRECATED
1109 typedef struct gcry_md_handle *GCRY_MD_HD _GCRY_GCC_ATTR_DEPRECATED;
1110 typedef struct gcry_md_handle *GcryMDHd _GCRY_GCC_ATTR_DEPRECATED;
1111 #endif
1112 */
1114 /* Create a message digest object for algorithm ALGO. FLAGS may be
1115 given as an bitwise OR of the gcry_md_flags values. ALGO may be
1116 given as 0 if the algorithms to be used are later set using
1117 gcry_md_enable. */
1120 /* Release the message digest object HD. */
1123 /* Add the message digest algorithm ALGO to the digest object HD. */
1126 /* Create a new digest object as an exact copy of the object HD. */
1129 /* Reset the digest object HD to its initial state. */
1132 /* Perform various operations on the digest object HD. */
1136 /* Pass LENGTH bytes of data in BUFFER to the digest object HD so that
1137 it can update the digest values. This is the actual hash
1138 function. */
1141 /* Read out the final digest from HD return the digest value for
1142 algorithm ALGO. */
1145 /* Convenience function to calculate the hash from the data in BUFFER
1146 of size LENGTH using the algorithm ALGO avoiding the creating of a
1147 hash object. The hash is returned in the caller provided buffer
1148 DIGEST which must be large enough to hold the digest of the given
1149 algorithm. */
1153 /* Convenience function to hash multiple buffers. */
1157 /* Retrieve the algorithm used with HD. This does not work reliable
1158 if more than one algorithm is enabled in HD. */
1161 /* Retrieve the length in bytes of the digest yielded by algorithm
1162 ALGO. */
1165 /* Return true if the the algorithm ALGO is enabled in the digest
1166 object A. */
1169 /* Return true if the digest object A is allocated in "secure" memory. */
1172 /* Retrieve various information about the object H. */
1176 /* Retrieve various information about the algorithm ALGO. */
1180 /* Map the digest algorithm id ALGO to a string representation of the
1181 algorithm name. For unknown algorithms this function returns
1182 "?". */
1185 /* Map the algorithm NAME to a digest algorithm Id. Return 0 if
1186 the algorithm name is not known. */
1189 /* For use with the HMAC feature, the set MAC key to the KEY of
1190 KEYLEN bytes. */
1193 /* Start or stop debugging for digest handle HD; i.e. create a file
1194 named dbgmd-<n>.<suffix> while hashing. If SUFFIX is null,
1195 debugging stops and the file will be closed. */
1199 /* Update the hash(s) of H with the character C. This is a buffered
1200 version of the gcry_md_write function. */
1201 /+
1202 #define gcry_md_putc(h,c) \
1203 do { \
1204 gcry_md_hd_t h__ = (h); \
1205 if( (h__)->bufpos == (h__)->bufsize ) \
1206 gcry_md_write( (h__), null, 0 ); \
1207 (h__)->buf[(h__)->bufpos++] = (c) & 0xff; \
1208 } while(0)
1210 /* Finalize the digest calculation. This is not really needed because
1211 gcry_md_read() does this implicitly. */
1212 #define gcry_md_final(a) \
1213 gcry_md_ctl ((a), GCRYCTL_FINALIZE, null, 0)
1215 /* Return 0 if the algorithm A is available for use. */
1216 #define gcry_md_test_algo(a) \
1217 gcry_md_algo_info( (a), GCRYCTL_TEST_ALGO, null, null )
1219 /* Return an DER encoded ASN.1 OID for the algorithm A in buffer B. N
1220 must point to usize variable with the available size of buffer B.
1221 After return it will receive the actual size of the returned
1222 OID. */
1223 #define gcry_md_get_asnoid(a,b,n) \
1224 gcry_md_algo_info((a), GCRYCTL_GET_ASNOID, (b), (n))
1225 +/
1228 /**********************************************
1229 * *
1230 * Message Authentication Code Functions *
1231 * *
1232 **********************************************/
1234 /* The data object used to hold a handle to an encryption object. */
1238 /* Algorithm IDs for the hash functions we know about. Not all of them
1239 are implemented. */
1275 }
1277 /* Flags used with the open function. */
1281 }
1283 /* Create a MAC handle for algorithm ALGO. FLAGS may be given as an bitwise OR
1284 of the gcry_mac_flags values. CTX maybe null or gcry_ctx_t object to be
1285 associated with HANDLE. */
1289 /* Close the MAC handle H and release all resource. */
1292 /* Perform various operations on the MAC object H. */
1294 usize buflen);
1296 /* Retrieve various information about the MAC algorithm ALGO. */
1300 /* Set KEY of length KEYLEN bytes for the MAC handle HD. */
1302 usize keylen);
1304 /* Set initialization vector IV of length IVLEN for the MAC handle HD. */
1306 usize ivlen);
1308 /* Pass LENGTH bytes of data in BUFFER to the MAC object HD so that
1309 it can update the MAC values. */
1311 usize length);
1313 /* Read out the final authentication code from the MAC object HD to BUFFER. */
1316 /* Verify the final authentication code from the MAC object HD with BUFFER. */
1318 usize buflen);
1320 /* Retrieve the length in bytes of the MAC yielded by algorithm ALGO. */
1323 /* Retrieve the default key length in bytes used with algorithm A. */
1326 /* Map the MAC algorithm whose ID is contained in ALGORITHM to a
1327 string representation of the algorithm name. For unknown algorithm
1328 IDs this function returns "?". */
1331 /* Map the algorithm name NAME to an MAC algorithm ID. Return 0 if
1332 the algorithm name is not known. */
1335 /* Reset the handle to the state after open/setkey. */
1338 /* Return 0 if the algorithm A is available for use. */
1339 auto gcry_mac_test_algo (int a) { return gcry_mac_algo_info(a, GCRYCTL_TEST_ALGO, null, null); }
1342 /******************************
1343 * *
1344 * Key Derivation Functions *
1345 * *
1346 ******************************/
1348 /* Algorithm IDs for the KDFs. */
1358 }
1360 /* Derive a key from a passphrase. */
1370 /************************************
1371 * *
1372 * Random Generating Functions *
1373 * *
1374 ************************************/
1376 /* The type of the random number generator. */
1382 }
1384 /* The possible values for the random quality. The rule of thumb is
1385 to use STRONG for session keys and VERY_STRONG for key material.
1386 WEAK is usually an alias for STRONG and should not be used anymore
1387 (except with gcry_mpi_randomize); use gcry_create_nonce instead. */
1394 }
1396 /* Fill BUFFER with LENGTH bytes of random, using random numbers of
1397 quality LEVEL. */
1399 gcry_random_level level);
1401 /* Add the external random from BUFFER with LENGTH bytes into the
1402 pool. QUALITY should either be -1 for unknown or in the range of 0
1403 to 100 */
1407 /* If random numbers are used in an application, this macro should be
1408 called from time to time so that new stuff gets added to the
1409 internal pool of the RNG. */
1413 /* Return NBYTES of allocated random using a random numbers of quality
1414 LEVEL. */
1418 /* Return NBYTES of allocated random using a random numbers of quality
1419 LEVEL. The random numbers are created returned in "secure"
1420 memory. */
1425 /* Set the big integer W to a random value of NBITS using a random
1426 generator with quality LEVEL. Note that by using a level of
1427 GCRY_WEAK_RANDOM gcry_create_nonce is used internally. */
1432 /* Create an unpredicable nonce of LENGTH bytes in BUFFER. */
1439 /*******************************/
1440 /* */
1441 /* Prime Number Functions */
1442 /* */
1443 /*******************************/
1445 /* Mode values passed to a gcry_prime_check_func_t. */
1450 }
1452 /* The function should return 1 if the operation shall continue, 0 to
1453 reject the prime candidate. */
1456 /* Flags for gcry_prime_generate(): */
1458 /* Allocate prime numbers and factors in secure memory. */
1461 /* Make sure that at least one prime factor is of size
1462 `FACTOR_BITS'. */
1465 /* Generate a new prime number of PRIME_BITS bits and store it in
1466 PRIME. If FACTOR_BITS is non-zero, one of the prime factors of
1467 (prime - 1) / 2 must be FACTOR_BITS bits long. If FACTORS is
1468 non-zero, allocate a new, null-terminated array holding the prime
1469 factors and store it in FACTORS. FLAGS might be used to influence
1470 the prime number generation process. */
1475 gcry_prime_check_func_t cb_func,
1477 gcry_random_level_t random_level,
1480 /* Find a generator for PRIME where the factorization of (prime-1) is
1481 in the null terminated array FACTORS. Return the generator as a
1482 newly allocated MPI in R_G. If START_G is not null, use this as
1483 teh start for the search. */
1485 gcry_mpi_t prime,
1487 gcry_mpi_t start_g);
1490 /* Convenience function to release the FACTORS array. */
1494 /* Check wether the number X is prime. */
1499 /************************************
1500 * *
1501 * Miscellaneous Stuff *
1502 * *
1503 ************************************/
1505 /* Release the context object CTX. */
1508 /* Log data using Libgcrypt's own log interface. */
1517 /* Log levels used by the internal logging facility. */
1527 }
1529 /* Type for progress handlers. */
1532 /* Type for memory allocation handlers. */
1535 /* Type for secure memory check handlers. */
1538 /* Type for memory reallocation handlers. */
1541 /* Type for memory free handlers. */
1544 /* Type for out-of-memory handlers. */
1547 /* Type for fatal error handlers. */
1550 /* Type for logging handlers. */
1553 /* Certain operations can provide progress information. This function
1554 is used to register a handler for retrieving these information. */
1558 /* Register a custom memory allocation functions. */
1560 gcry_handler_alloc_t func_alloc,
1561 gcry_handler_alloc_t func_alloc_secure,
1562 gcry_handler_secure_check_t func_secure_check,
1563 gcry_handler_realloc_t func_realloc,
1564 gcry_handler_free_t func_free);
1566 /* Register a function used instead of the internal out of memory
1567 handler. */
1570 /* Register a function used instead of the internal fatal error
1571 handler. */
1574 /* Register a function used instead of the internal logging
1575 facility. */
1578 /* Reserved for future use. */
1581 /* Libgcrypt uses its own memory allocation. It is important to use
1582 gcry_free () to release memory allocated by libgcrypt. */
1597 /* Return true if A is allocated in "secure" memory. */
1600 /* Return true if Libgcrypt is in FIPS mode. */