20DISABLE_GCC_WARNING(
"-Wstrict-prototypes")
24ENABLE_GCC_WARNING(
"-Wstrict-prototypes")
26static
int dh_initialized = 0;
27static SECKEYDHParams tls_dh_param, circuit_dh_param;
30static
unsigned char dh_generator_data[1];
33crypto_dh_init_nss(
void)
40 sizeof(tls_dh_prime_data),
44 sizeof(circuit_dh_prime_data),
49 tls_dh_param.prime.data = tls_dh_prime_data;
51 tls_dh_param.base.data = dh_generator_data;
52 tls_dh_param.base.len = 1;
54 circuit_dh_param.prime.data = circuit_dh_prime_data;
56 circuit_dh_param.base.data = dh_generator_data;
57 circuit_dh_param.base.len = 1;
63crypto_dh_free_all_nss(
void)
70 SECKEYPrivateKey *seckey;
71 SECKEYPublicKey *pubkey;
88 r->seckey = SECKEY_CopyPrivateKey(dh->seckey);
90 r->pubkey = SECKEY_CopyPublicKey(dh->pubkey);
106 if (dh->dh_type == DH_TYPE_TLS)
109 p = &circuit_dh_param;
111 dh->seckey = SECKEY_CreateDHPrivateKey(p, &dh->pubkey, NULL);
112 if (!dh->seckey || !dh->pubkey)
119 size_t pubkey_out_len)
128 const SECItem *item = &dh->pubkey->u.dh.publicValue;
130 if (item->len > pubkey_out_len)
134 memset(pubkey_out, 0, pubkey_out_len);
135 memcpy(pubkey_out + pubkey_out_len - item->len,
148 SECKEY_DestroyPrivateKey(dh->seckey);
150 SECKEY_DestroyPublicKey(dh->pubkey);
156 const char *pubkey,
size_t pubkey_len,
157 unsigned char *secret_out,
158 size_t secret_bytes_out)
163 if (!dh->pubkey || !dh->seckey)
168 SECKEYPublicKey peer_key;
169 memset(&peer_key, 0,
sizeof(peer_key));
170 peer_key.keyType = dhKey;
171 peer_key.pkcs11ID = CK_INVALID_HANDLE;
173 if (dh->dh_type == DH_TYPE_TLS)
174 peer_key.u.dh.prime.data = tls_dh_prime_data;
176 peer_key.u.dh.prime.data = circuit_dh_prime_data;
178 peer_key.u.dh.base.data = dh_generator_data;
179 peer_key.u.dh.base.len = 1;
180 peer_key.u.dh.publicValue.data = (
unsigned char *)pubkey;
181 peer_key.u.dh.publicValue.len = (int) pubkey_len;
183 PK11SymKey *sym = PK11_PubDerive(dh->seckey, &peer_key,
184 PR_FALSE, NULL, NULL, CKM_DH_PKCS_DERIVE,
185 CKM_GENERIC_SECRET_KEY_GEN ,
186 CKA_DERIVE, 0, NULL);
188 crypto_nss_log_errors(severity,
"deriving a DH shared secret");
192 SECStatus s = PK11_ExtractKeyValue(sym);
193 if (s != SECSuccess) {
194 crypto_nss_log_errors(severity,
"extracting a DH shared secret");
195 PK11_FreeSymKey(sym);
199 SECItem *result = PK11_GetKeyData(sym);
201 if (BUG(result->len > secret_bytes_out)) {
202 PK11_FreeSymKey(sym);
206 ssize_t len = result->len;
207 memcpy(secret_out, result->data, len);
208 PK11_FreeSymKey(sym);
int base16_decode(char *dest, size_t destlen, const char *src, size_t srclen)
const char OAKLEY_PRIME_2[]
const char TLS_DH_PRIME[]
const unsigned DH_GENERATOR
int crypto_dh_generate_public(crypto_dh_t *dh)
void crypto_dh_free_(crypto_dh_t *dh)
crypto_dh_t * crypto_dh_new(int dh_type)
int crypto_dh_get_bytes(crypto_dh_t *dh)
ssize_t crypto_dh_handshake(int severity, crypto_dh_t *dh, const char *pubkey, size_t pubkey_len, unsigned char *secret_out, size_t secret_bytes_out)
int crypto_dh_get_public(crypto_dh_t *dh, char *pubkey_out, size_t pubkey_out_len)
crypto_dh_t * crypto_dh_dup(const crypto_dh_t *dh)
Headers for crypto_nss_mgt.c.
Headers for util_malloc.c.
Macros to manage assertions, fatal and non-fatal.