3 The DSA publickey algorithm.
5 Copyright (C) 2002, 2013, 2014 Niels Möller
7 This file is part of GNU Nettle.
9 GNU Nettle is free software: you can redistribute it and/or
10 modify it under the terms of either:
12 * the GNU Lesser General Public License as published by the Free
13 Software Foundation; either version 3 of the License, or (at your
14 option) any later version.
18 * the GNU General Public License as published by the Free
19 Software Foundation; either version 2 of the License, or (at your
20 option) any later version.
22 or both in parallel, as here.
24 GNU Nettle is distributed in the hope that it will be useful,
25 but WITHOUT ANY WARRANTY; without even the implied warranty of
26 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
27 General Public License for more details.
29 You should have received copies of the GNU General Public License and
30 the GNU Lesser General Public License along with this program. If
31 not, see http://www.gnu.org/licenses/.
34 #ifndef NETTLE_DSA_H_INCLUDED
35 #define NETTLE_DSA_H_INCLUDED
37 #include "nettle-types.h"
45 #define dsa_params_init nettle_dsa_params_init
46 #define dsa_params_clear nettle_dsa_params_clear
47 #define dsa_signature_init nettle_dsa_signature_init
48 #define dsa_signature_clear nettle_dsa_signature_clear
49 #define dsa_sign nettle_dsa_sign
50 #define dsa_verify nettle_dsa_verify
51 #define dsa_generate_params nettle_dsa_generate_params
52 #define dsa_generate_keypair nettle_dsa_generate_keypair
53 #define dsa_signature_from_sexp nettle_dsa_signature_from_sexp
54 #define dsa_keypair_to_sexp nettle_dsa_keypair_to_sexp
55 #define dsa_keypair_from_sexp_alist nettle_dsa_keypair_from_sexp_alist
56 #define dsa_sha1_keypair_from_sexp nettle_dsa_sha1_keypair_from_sexp
57 #define dsa_sha256_keypair_from_sexp nettle_dsa_sha256_keypair_from_sexp
58 #define dsa_params_from_der_iterator nettle_dsa_params_from_der_iterator
59 #define dsa_public_key_from_der_iterator nettle_dsa_public_key_from_der_iterator
60 #define dsa_openssl_private_key_from_der_iterator nettle_dsa_openssl_private_key_from_der_iterator
61 #define dsa_openssl_private_key_from_der nettle_openssl_provate_key_from_der
62 #define _dsa_hash _nettle_dsa_hash
64 /* For FIPS approved parameters */
65 #define DSA_SHA1_MIN_P_BITS 512
66 #define DSA_SHA1_Q_OCTETS 20
67 #define DSA_SHA1_Q_BITS 160
69 #define DSA_SHA256_MIN_P_BITS 1024
70 #define DSA_SHA256_Q_OCTETS 32
71 #define DSA_SHA256_Q_BITS 256
86 dsa_params_init (struct dsa_params *params);
89 dsa_params_clear (struct dsa_params *params);
97 /* Calls mpz_init to initialize bignum storage. */
99 dsa_signature_init(struct dsa_signature *signature);
101 /* Calls mpz_clear to deallocate bignum storage. */
103 dsa_signature_clear(struct dsa_signature *signature);
106 dsa_sign(const struct dsa_params *params,
108 void *random_ctx, nettle_random_func *random,
110 const uint8_t *digest,
111 struct dsa_signature *signature);
114 dsa_verify(const struct dsa_params *params,
117 const uint8_t *digest,
118 const struct dsa_signature *signature);
124 dsa_generate_params(struct dsa_params *params,
125 void *random_ctx, nettle_random_func *random,
126 void *progress_ctx, nettle_progress_func *progress,
127 unsigned p_bits, unsigned q_bits);
130 dsa_generate_keypair (const struct dsa_params *params,
131 mpz_t pub, mpz_t key,
132 void *random_ctx, nettle_random_func *random);
134 /* Keys in sexp form. */
136 struct nettle_buffer;
138 /* Generates a public-key expression if PRIV is NULL .*/
140 dsa_keypair_to_sexp(struct nettle_buffer *buffer,
141 const char *algorithm_name, /* NULL means "dsa" */
142 const struct dsa_params *params,
146 struct sexp_iterator;
149 dsa_signature_from_sexp(struct dsa_signature *rs,
150 struct sexp_iterator *i,
154 dsa_keypair_from_sexp_alist(struct dsa_params *params,
159 struct sexp_iterator *i);
161 /* If PRIV is NULL, expect a public-key expression. If PUB is NULL,
162 * expect a private key expression and ignore the parts not needed for
164 /* Keys must be initialized before calling this function, as usual. */
166 dsa_sha1_keypair_from_sexp(struct dsa_params *params,
170 size_t length, const uint8_t *expr);
173 dsa_sha256_keypair_from_sexp(struct dsa_params *params,
177 size_t length, const uint8_t *expr);
179 /* Keys in X.509 andd OpenSSL format. */
180 struct asn1_der_iterator;
183 dsa_params_from_der_iterator(struct dsa_params *params,
184 unsigned max_bits, unsigned q_bits,
185 struct asn1_der_iterator *i);
188 dsa_public_key_from_der_iterator(const struct dsa_params *params,
190 struct asn1_der_iterator *i);
193 dsa_openssl_private_key_from_der_iterator(struct dsa_params *params,
197 struct asn1_der_iterator *i);
200 dsa_openssl_private_key_from_der(struct dsa_params *params,
204 size_t length, const uint8_t *data);
207 /* Internal functions. */
209 _dsa_hash (mpz_t h, unsigned bit_size,
210 size_t length, const uint8_t *digest);
216 #endif /* NETTLE_DSA_H_INCLUDED */