Add DH_set_length. OpenSSH uses this function. Change-Id: I73c4c1647f61824f771022606f95bff7f6d3d77a Update-Note: Set HAVE_DH_SET_LENGTH in OpenSSH. Bug: 325 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/40365 Reviewed-by: Adam Langley <agl@google.com>

commit: 0064c290d139b928e93a83900efe1367bc18dd03 [log] [tgz]
author: David Benjamin <davidben@google.com> Mon Mar 23 18:50:47 2020 -0400
committer: Adam Langley <agl@google.com> Mon Mar 23 23:30:01 2020 +0000
tree: 08422a96d057c5d8e785fbd0698ad8b1afabf515
parent: dea1d44988981783b9ca47905257934324a23fad [diff] [blame]
diff --git a/include/openssl/dh.h b/include/openssl/dh.h
index 7e10303..d6bfd21 100644
--- a/include/openssl/dh.h
+++ b/include/openssl/dh.h

@@ -108,6 +108,11 @@
 // |p| and |g| must either be specified or already configured on |dh|.
 OPENSSL_EXPORT int DH_set0_pqg(DH *dh, BIGNUM *p, BIGNUM *q, BIGNUM *g);
 
+// DH_set_length sets the number of bits to use for the secret exponent when
+// calling |DH_generate_key| on |dh| and returns one. If unset,
+// |DH_generate_key| will use the bit length of p.
+OPENSSL_EXPORT int DH_set_length(DH *dh, unsigned priv_length);
+
 
 // Standard parameters.
commit	0064c290d139b928e93a83900efe1367bc18dd03	[log] [tgz]
author	David Benjamin <davidben@google.com>	Mon Mar 23 18:50:47 2020 -0400
committer	Adam Langley <agl@google.com>	Mon Mar 23 23:30:01 2020 +0000
tree	08422a96d057c5d8e785fbd0698ad8b1afabf515
parent	dea1d44988981783b9ca47905257934324a23fad [diff] [blame]