include/openssl/ecdh.h - boringssl - Git at Google

 // Copyright 2002-2016 The OpenSSL Project Authors. All Rights Reserved.
 // Copyright (c) 2002, Oracle and/or its affiliates. All rights reserved.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //     https://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.

 #ifndef OPENSSL_HEADER_ECDH_H
 #define OPENSSL_HEADER_ECDH_H

 #include <openssl/base.h>   // IWYU pragma: export

 #include <openssl/ec_key.h>

 #if defined(__cplusplus)
 extern "C" {
 #endif


 // Elliptic curve Diffie-Hellman.


 // ECDH_compute_key calculates the shared key between `pub_key` and `priv_key`.
 // If `kdf` is not NULL, then it is called with the bytes of the shared key and
 // the parameter `out`. When `kdf` returns, the value of `*outlen` becomes the
 // return value. Otherwise, as many bytes of the shared key as will fit are
 // copied directly to, at most, `outlen` bytes at `out`. It returns the number
 // of bytes written to `out`, or -1 on error.
 OPENSSL_EXPORT int ECDH_compute_key(
     void *out, size_t outlen, const EC_POINT *pub_key, const EC_KEY *priv_key,
     void *(*kdf)(const void *in, size_t inlen, void *out, size_t *outlen));

 // ECDH_compute_key_fips calculates the shared key between `pub_key` and
 // `priv_key` and hashes it with the appropriate SHA function for `out_len`. The
 // only value values for `out_len` are thus 24 (SHA-224), 32 (SHA-256), 48
 // (SHA-384), and 64 (SHA-512). It returns one on success and zero on error.
 //
 // Note that the return value is different to `ECDH_compute_key`: it returns an
 // error flag (as is common for BoringSSL) rather than the number of bytes
 // written.
 //
 // This function allows the FIPS module to compute an ECDH and KDF within the
 // module boundary without taking an arbitrary function pointer for the KDF,
 // which isn't very FIPSy.
 OPENSSL_EXPORT int ECDH_compute_key_fips(uint8_t *out, size_t out_len,
                                          const EC_POINT *pub_key,
                                          const EC_KEY *priv_key);


 #if defined(__cplusplus)
 }  // extern C
 #endif

 #define ECDH_R_KDF_FAILED 100
 #define ECDH_R_NO_PRIVATE_VALUE 101
 #define ECDH_R_POINT_ARITHMETIC_FAILURE 102
 #define ECDH_R_UNKNOWN_DIGEST_LENGTH 103

 #endif  // OPENSSL_HEADER_ECDH_H
	// Copyright 2002-2016 The OpenSSL Project Authors. All Rights Reserved.
	// Copyright (c) 2002, Oracle and/or its affiliates. All rights reserved.
	//
	// Licensed under the Apache License, Version 2.0 (the "License");
	// you may not use this file except in compliance with the License.
	// You may obtain a copy of the License at
	//
	// https://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS,
	// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	// See the License for the specific language governing permissions and
	// limitations under the License.

	#ifndef OPENSSL_HEADER_ECDH_H
	#define OPENSSL_HEADER_ECDH_H

	#include <openssl/base.h> // IWYU pragma: export

	#include <openssl/ec_key.h>

	#if defined(__cplusplus)
	extern "C" {
	#endif


	// Elliptic curve Diffie-Hellman.


	// ECDH_compute_key calculates the shared key between `pub_key` and `priv_key`.
	// If `kdf` is not NULL, then it is called with the bytes of the shared key and
	// the parameter `out`. When `kdf` returns, the value of `*outlen` becomes the
	// return value. Otherwise, as many bytes of the shared key as will fit are
	// copied directly to, at most, `outlen` bytes at `out`. It returns the number
	// of bytes written to `out`, or -1 on error.
	OPENSSL_EXPORT int ECDH_compute_key(
	void out, size_t outlen, const EC_POINT pub_key, const EC_KEY *priv_key,
	void (kdf)(const void in, size_t inlen, void out, size_t *outlen));

	// ECDH_compute_key_fips calculates the shared key between `pub_key` and
	// `priv_key` and hashes it with the appropriate SHA function for `out_len`. The
	// only value values for `out_len` are thus 24 (SHA-224), 32 (SHA-256), 48
	// (SHA-384), and 64 (SHA-512). It returns one on success and zero on error.
	//
	// Note that the return value is different to `ECDH_compute_key`: it returns an
	// error flag (as is common for BoringSSL) rather than the number of bytes
	// written.
	//
	// This function allows the FIPS module to compute an ECDH and KDF within the
	// module boundary without taking an arbitrary function pointer for the KDF,
	// which isn't very FIPSy.
	OPENSSL_EXPORT int ECDH_compute_key_fips(uint8_t *out, size_t out_len,
	const EC_POINT *pub_key,
	const EC_KEY *priv_key);


	#if defined(__cplusplus)
	} // extern C
	#endif

	#define ECDH_R_KDF_FAILED 100
	#define ECDH_R_NO_PRIVATE_VALUE 101
	#define ECDH_R_POINT_ARITHMETIC_FAILURE 102
	#define ECDH_R_UNKNOWN_DIGEST_LENGTH 103

	#endif // OPENSSL_HEADER_ECDH_H