dhm.h File Reference

This function derives and exports the shared secret (G^Y)^X mod P.

Parameters:

ctx	The DHM context.
output	The destination buffer.
output_size	The size of the destination buffer. Must be at least the size of ctx->len.
olen	On exit, holds the actual number of Bytes written.
f_rng	The RNG function, for blinding purposes.
p_rng	The RNG parameter.

Returns:

0 on success, or an MBEDTLS_ERR_DHM_XXX error code on failure.

Note:

If non-NULL, f_rng is used to blind the input as a countermeasure against timing attacks. Blinding is used only if our secret value X is re-used and omitted otherwise. Therefore, we recommend always passing a non-NULL f_rng argument.

Definition at line 379 of file dhm.c.

This function frees and clears the components of a DHM key.

Parameters:

ctx	The DHM context to free and clear.

Definition at line 432 of file dhm.c.

This function initializes the DHM context.

Parameters:

ctx	The DHM context to initialize.

Definition at line 125 of file dhm.c.

This function sets up and writes the ServerKeyExchange parameters.

Parameters:

ctx	The DHM context.
x_size	The private value size in Bytes.
olen	The number of characters written.
output	The destination buffer.
f_rng	The RNG function.
p_rng	The RNG parameter.

Note:

The destination buffer must be large enough to hold the reduced binary presentation of the modulus, the generator and the public key, each wrapped with a 2-byte length field. It is the responsibility of the caller to ensure that enough space is available. Refer to mbedtls_mpi_size to computing the byte-size of an MPI.

This function assumes that ctx->P and ctx->G have already been properly set. For that, use mbedtls_dhm_set_group() below in conjunction with mbedtls_mpi_read_binary() and mbedtls_mpi_read_string().

Returns:

0 on success, or an MBEDTLS_ERR_DHM_XXX error code on failure.

Definition at line 155 of file dhm.c.

This function creates its own private value X and exports G^X.

Parameters:

ctx	The DHM context.
x_size	The private value size in Bytes.
output	The destination buffer.
olen	The length of the destination buffer. Must be at least equal to ctx->len (the size of P).
f_rng	The RNG function.
p_rng	The RNG parameter.

Note:

The destination buffer will always be fully written so as to contain a big-endian presentation of G^X mod P. If it is larger than ctx->len, it will accordingly be padded with zero-bytes in the beginning.

Returns:

0 on success, or an MBEDTLS_ERR_DHM_XXX error code on failure.

Definition at line 267 of file dhm.c.

This function parses the ServerKeyExchange parameters.

Parameters:

ctx	The DHM context.
p	On input, *p must be the start of the input buffer. On output, *p is updated to point to the end of the data that has been read. On success, this is the first byte past the end of the ServerKeyExchange parameters. On error, this is the point at which an error has been detected, which is usually not useful except to debug failures.
end	The end of the input buffer.

Returns:

0 on success, or an MBEDTLS_ERR_DHM_XXX error code on failure.

Definition at line 133 of file dhm.c.

This function imports the public value G^Y of the peer.

Parameters:

ctx	The DHM context.
input	The input buffer.
ilen	The size of the input buffer.

Returns:

0 on success, or an MBEDTLS_ERR_DHM_XXX error code on failure.

Definition at line 250 of file dhm.c.

The DMH checkup routine.

Returns:

0 on success, or 1 on failure.

Definition at line 631 of file dhm.c.

Set prime modulus and generator.

Parameters:

ctx	The DHM context.
P	The MPI holding DHM prime modulus.
G	The MPI holding DHM generator.

Note:

This function can be used to set P, G in preparation for mbedtls_dhm_make_params.

Returns:

0 if successful, or an MBEDTLS_ERR_DHM_XXX error code on failure.

Definition at line 228 of file dhm.c.