<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/>
<meta http-equiv="X-UA-Compatible" content="IE=9"/>
<meta name="generator" content="Doxygen 1.8.5"/>
<title>PolarSSL v1.3.8: ecdh.c Source File</title>
<link href="tabs.css" rel="stylesheet" type="text/css"/>
<script type="text/javascript" src="jquery.js"></script>
<script type="text/javascript" src="dynsections.js"></script>
<link href="doxygen.css" rel="stylesheet" type="text/css" />
</head>
<body>
<div id="top"><!-- do not remove this div, it is closed by doxygen! -->
<div id="titlearea">
<table cellspacing="0" cellpadding="0">
<tbody>
<tr style="height: 56px;">
<td style="padding-left: 0.5em;">
<div id="projectname">PolarSSL v1.3.8
</div>
</td>
</tr>
</tbody>
</table>
</div>
<!-- end header part -->
<!-- Generated by Doxygen 1.8.5 -->
<div id="navrow1" class="tabs">
<ul class="tablist">
<li><a href="index.html"><span>Main Page</span></a></li>
<li><a href="modules.html"><span>Modules</span></a></li>
<li><a href="annotated.html"><span>Data Structures</span></a></li>
<li class="current"><a href="files.html"><span>Files</span></a></li>
</ul>
</div>
<div id="navrow2" class="tabs2">
<ul class="tablist">
<li><a href="files.html"><span>File List</span></a></li>
<li><a href="globals.html"><span>Globals</span></a></li>
</ul>
</div>
<div id="nav-path" class="navpath">
<ul>
<li class="navelem"><a class="el" href="dir_4478130ea462cc4195c75f9e6ba20061.html">library</a></li> </ul>
</div>
</div><!-- top -->
<div class="header">
<div class="headertitle">
<div class="title">ecdh.c</div> </div>
</div><!--header-->
<div class="contents">
<a href="ecdh_8c.html">Go to the documentation of this file.</a><div class="fragment"><div class="line"><a name="l00001"></a><span class="lineno"> 1</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00002"></a><span class="lineno"> 2</span> <span class="comment"> * Elliptic curve Diffie-Hellman</span></div>
<div class="line"><a name="l00003"></a><span class="lineno"> 3</span> <span class="comment"> *</span></div>
<div class="line"><a name="l00004"></a><span class="lineno"> 4</span> <span class="comment"> * Copyright (C) 2006-2014, Brainspark B.V.</span></div>
<div class="line"><a name="l00005"></a><span class="lineno"> 5</span> <span class="comment"> *</span></div>
<div class="line"><a name="l00006"></a><span class="lineno"> 6</span> <span class="comment"> * This file is part of PolarSSL (http://www.polarssl.org)</span></div>
<div class="line"><a name="l00007"></a><span class="lineno"> 7</span> <span class="comment"> * Lead Maintainer: Paul Bakker <polarssl_maintainer at polarssl.org></span></div>
<div class="line"><a name="l00008"></a><span class="lineno"> 8</span> <span class="comment"> *</span></div>
<div class="line"><a name="l00009"></a><span class="lineno"> 9</span> <span class="comment"> * All rights reserved.</span></div>
<div class="line"><a name="l00010"></a><span class="lineno"> 10</span> <span class="comment"> *</span></div>
<div class="line"><a name="l00011"></a><span class="lineno"> 11</span> <span class="comment"> * This program is free software; you can redistribute it and/or modify</span></div>
<div class="line"><a name="l00012"></a><span class="lineno"> 12</span> <span class="comment"> * it under the terms of the GNU General Public License as published by</span></div>
<div class="line"><a name="l00013"></a><span class="lineno"> 13</span> <span class="comment"> * the Free Software Foundation; either version 2 of the License, or</span></div>
<div class="line"><a name="l00014"></a><span class="lineno"> 14</span> <span class="comment"> * (at your option) any later version.</span></div>
<div class="line"><a name="l00015"></a><span class="lineno"> 15</span> <span class="comment"> *</span></div>
<div class="line"><a name="l00016"></a><span class="lineno"> 16</span> <span class="comment"> * This program is distributed in the hope that it will be useful,</span></div>
<div class="line"><a name="l00017"></a><span class="lineno"> 17</span> <span class="comment"> * but WITHOUT ANY WARRANTY; without even the implied warranty of</span></div>
<div class="line"><a name="l00018"></a><span class="lineno"> 18</span> <span class="comment"> * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the</span></div>
<div class="line"><a name="l00019"></a><span class="lineno"> 19</span> <span class="comment"> * GNU General Public License for more details.</span></div>
<div class="line"><a name="l00020"></a><span class="lineno"> 20</span> <span class="comment"> *</span></div>
<div class="line"><a name="l00021"></a><span class="lineno"> 21</span> <span class="comment"> * You should have received a copy of the GNU General Public License along</span></div>
<div class="line"><a name="l00022"></a><span class="lineno"> 22</span> <span class="comment"> * with this program; if not, write to the Free Software Foundation, Inc.,</span></div>
<div class="line"><a name="l00023"></a><span class="lineno"> 23</span> <span class="comment"> * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.</span></div>
<div class="line"><a name="l00024"></a><span class="lineno"> 24</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00025"></a><span class="lineno"> 25</span> </div>
<div class="line"><a name="l00026"></a><span class="lineno"> 26</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00027"></a><span class="lineno"> 27</span> <span class="comment"> * References:</span></div>
<div class="line"><a name="l00028"></a><span class="lineno"> 28</span> <span class="comment"> *</span></div>
<div class="line"><a name="l00029"></a><span class="lineno"> 29</span> <span class="comment"> * SEC1 http://www.secg.org/index.php?action=secg,docs_secg</span></div>
<div class="line"><a name="l00030"></a><span class="lineno"> 30</span> <span class="comment"> * RFC 4492</span></div>
<div class="line"><a name="l00031"></a><span class="lineno"> 31</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00032"></a><span class="lineno"> 32</span> </div>
<div class="line"><a name="l00033"></a><span class="lineno"> 33</span> <span class="preprocessor">#if !defined(POLARSSL_CONFIG_FILE)</span></div>
<div class="line"><a name="l00034"></a><span class="lineno"> 34</span> <span class="preprocessor"></span><span class="preprocessor">#include "<a class="code" href="config_8h.html">polarssl/config.h</a>"</span></div>
<div class="line"><a name="l00035"></a><span class="lineno"> 35</span> <span class="preprocessor">#else</span></div>
<div class="line"><a name="l00036"></a><span class="lineno"> 36</span> <span class="preprocessor"></span><span class="preprocessor">#include POLARSSL_CONFIG_FILE</span></div>
<div class="line"><a name="l00037"></a><span class="lineno"> 37</span> <span class="preprocessor"></span><span class="preprocessor">#endif</span></div>
<div class="line"><a name="l00038"></a><span class="lineno"> 38</span> <span class="preprocessor"></span></div>
<div class="line"><a name="l00039"></a><span class="lineno"> 39</span> <span class="preprocessor">#if defined(POLARSSL_ECDH_C)</span></div>
<div class="line"><a name="l00040"></a><span class="lineno"> 40</span> <span class="preprocessor"></span></div>
<div class="line"><a name="l00041"></a><span class="lineno"> 41</span> <span class="preprocessor">#include "<a class="code" href="ecdh_8h.html">polarssl/ecdh.h</a>"</span></div>
<div class="line"><a name="l00042"></a><span class="lineno"> 42</span> </div>
<div class="line"><a name="l00043"></a><span class="lineno"> 43</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00044"></a><span class="lineno"> 44</span> <span class="comment"> * Generate public key: simple wrapper around ecp_gen_keypair</span></div>
<div class="line"><a name="l00045"></a><span class="lineno"> 45</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00046"></a><span class="lineno"> 46</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#a9d54a86910330450fb99cea9845c53c9">ecdh_gen_public</a>( <a class="code" href="structecp__group.html">ecp_group</a> *grp, <a class="code" href="structmpi.html">mpi</a> *d, <a class="code" href="structecp__point.html">ecp_point</a> *Q,</div>
<div class="line"><a name="l00047"></a><span class="lineno"> 47</span>  <span class="keywordtype">int</span> (*f_rng)(<span class="keywordtype">void</span> *, <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *, <span class="keywordtype">size_t</span>),</div>
<div class="line"><a name="l00048"></a><span class="lineno"> 48</span>  <span class="keywordtype">void</span> *p_rng )</div>
<div class="line"><a name="l00049"></a><span class="lineno"> 49</span> {</div>
<div class="line"><a name="l00050"></a><span class="lineno"> 50</span>  <span class="keywordflow">return</span> <a class="code" href="ecp_8h.html#aaf7e6813178463e3ebb15b0719d1d30a">ecp_gen_keypair</a>( grp, d, Q, f_rng, p_rng );</div>
<div class="line"><a name="l00051"></a><span class="lineno"> 51</span> }</div>
<div class="line"><a name="l00052"></a><span class="lineno"> 52</span> </div>
<div class="line"><a name="l00053"></a><span class="lineno"> 53</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00054"></a><span class="lineno"> 54</span> <span class="comment"> * Compute shared secret (SEC1 3.3.1)</span></div>
<div class="line"><a name="l00055"></a><span class="lineno"> 55</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00056"></a><span class="lineno"> 56</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#af4a8cc9a1009e4307afe4088d769a6bd">ecdh_compute_shared</a>( <a class="code" href="structecp__group.html">ecp_group</a> *grp, <a class="code" href="structmpi.html">mpi</a> *z,</div>
<div class="line"><a name="l00057"></a><span class="lineno"> 57</span>  <span class="keyword">const</span> <a class="code" href="structecp__point.html">ecp_point</a> *Q, <span class="keyword">const</span> <a class="code" href="structmpi.html">mpi</a> *d,</div>
<div class="line"><a name="l00058"></a><span class="lineno"> 58</span>  <span class="keywordtype">int</span> (*f_rng)(<span class="keywordtype">void</span> *, <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *, <span class="keywordtype">size_t</span>),</div>
<div class="line"><a name="l00059"></a><span class="lineno"> 59</span>  <span class="keywordtype">void</span> *p_rng )</div>
<div class="line"><a name="l00060"></a><span class="lineno"> 60</span> {</div>
<div class="line"><a name="l00061"></a><span class="lineno"> 61</span>  <span class="keywordtype">int</span> ret;</div>
<div class="line"><a name="l00062"></a><span class="lineno"> 62</span>  <a class="code" href="structecp__point.html">ecp_point</a> P;</div>
<div class="line"><a name="l00063"></a><span class="lineno"> 63</span> </div>
<div class="line"><a name="l00064"></a><span class="lineno"> 64</span>  <a class="code" href="ecp_8h.html#a870fd59435f6519b4027050afe24fc7c">ecp_point_init</a>( &P );</div>
<div class="line"><a name="l00065"></a><span class="lineno"> 65</span> </div>
<div class="line"><a name="l00066"></a><span class="lineno"> 66</span>  <span class="comment">/*</span></div>
<div class="line"><a name="l00067"></a><span class="lineno"> 67</span> <span class="comment"> * Make sure Q is a valid pubkey before using it</span></div>
<div class="line"><a name="l00068"></a><span class="lineno"> 68</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00069"></a><span class="lineno"> 69</span>  <a class="code" href="bignum_8h.html#a024b186dd3608bcbcfc9dd36212a18ec">MPI_CHK</a>( <a class="code" href="ecp_8h.html#a2b89dc1f1a90c6bd42fd1f927c2c6a13">ecp_check_pubkey</a>( grp, Q ) );</div>
<div class="line"><a name="l00070"></a><span class="lineno"> 70</span> </div>
<div class="line"><a name="l00071"></a><span class="lineno"> 71</span>  <a class="code" href="bignum_8h.html#a024b186dd3608bcbcfc9dd36212a18ec">MPI_CHK</a>( <a class="code" href="ecp_8h.html#a337b0e41153f458872f7f73bad93711c">ecp_mul</a>( grp, &P, d, Q, f_rng, p_rng ) );</div>
<div class="line"><a name="l00072"></a><span class="lineno"> 72</span> </div>
<div class="line"><a name="l00073"></a><span class="lineno"> 73</span>  <span class="keywordflow">if</span>( <a class="code" href="ecp_8h.html#ab091c21f839189f606dfad0ef924af35">ecp_is_zero</a>( &P ) )</div>
<div class="line"><a name="l00074"></a><span class="lineno"> 74</span>  {</div>
<div class="line"><a name="l00075"></a><span class="lineno"> 75</span>  ret = <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a>;</div>
<div class="line"><a name="l00076"></a><span class="lineno"> 76</span>  <span class="keywordflow">goto</span> cleanup;</div>
<div class="line"><a name="l00077"></a><span class="lineno"> 77</span>  }</div>
<div class="line"><a name="l00078"></a><span class="lineno"> 78</span> </div>
<div class="line"><a name="l00079"></a><span class="lineno"> 79</span>  <a class="code" href="bignum_8h.html#a024b186dd3608bcbcfc9dd36212a18ec">MPI_CHK</a>( <a class="code" href="bignum_8h.html#a6fbcce39a9d92d9e2a560f8aa6a810f4">mpi_copy</a>( z, &P.<a class="code" href="structecp__point.html#ad22ad099567064b38af5a1f2f58f0acc">X</a> ) );</div>
<div class="line"><a name="l00080"></a><span class="lineno"> 80</span> </div>
<div class="line"><a name="l00081"></a><span class="lineno"> 81</span> cleanup:</div>
<div class="line"><a name="l00082"></a><span class="lineno"> 82</span>  <a class="code" href="ecp_8h.html#a6a949f9b9194bbf02dc83d3aa0c61567">ecp_point_free</a>( &P );</div>
<div class="line"><a name="l00083"></a><span class="lineno"> 83</span> </div>
<div class="line"><a name="l00084"></a><span class="lineno"> 84</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00085"></a><span class="lineno"> 85</span> }</div>
<div class="line"><a name="l00086"></a><span class="lineno"> 86</span> </div>
<div class="line"><a name="l00087"></a><span class="lineno"> 87</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00088"></a><span class="lineno"> 88</span> <span class="comment"> * Initialize context</span></div>
<div class="line"><a name="l00089"></a><span class="lineno"> 89</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00090"></a><span class="lineno"> 90</span> <span class="keywordtype">void</span> <a class="code" href="ecdh_8h.html#a80d76b7ea7bd03f987045790528fa9fe">ecdh_init</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx )</div>
<div class="line"><a name="l00091"></a><span class="lineno"> 91</span> {</div>
<div class="line"><a name="l00092"></a><span class="lineno"> 92</span>  memset( ctx, 0, <span class="keyword">sizeof</span>( <a class="code" href="structecdh__context.html">ecdh_context</a> ) );</div>
<div class="line"><a name="l00093"></a><span class="lineno"> 93</span> }</div>
<div class="line"><a name="l00094"></a><span class="lineno"> 94</span> </div>
<div class="line"><a name="l00095"></a><span class="lineno"> 95</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00096"></a><span class="lineno"> 96</span> <span class="comment"> * Free context</span></div>
<div class="line"><a name="l00097"></a><span class="lineno"> 97</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00098"></a><span class="lineno"> 98</span> <span class="keywordtype">void</span> <a class="code" href="ecdh_8h.html#ac58b9cd610b9bf65274d917c89756a5b">ecdh_free</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx )</div>
<div class="line"><a name="l00099"></a><span class="lineno"> 99</span> {</div>
<div class="line"><a name="l00100"></a><span class="lineno"> 100</span>  <span class="keywordflow">if</span>( ctx == NULL )</div>
<div class="line"><a name="l00101"></a><span class="lineno"> 101</span>  <span class="keywordflow">return</span>;</div>
<div class="line"><a name="l00102"></a><span class="lineno"> 102</span> </div>
<div class="line"><a name="l00103"></a><span class="lineno"> 103</span>  <a class="code" href="ecp_8h.html#acbb816c782b4d903a0f0fac9b9d7e748">ecp_group_free</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a> );</div>
<div class="line"><a name="l00104"></a><span class="lineno"> 104</span>  <a class="code" href="ecp_8h.html#a6a949f9b9194bbf02dc83d3aa0c61567">ecp_point_free</a>( &ctx-><a class="code" href="structecdh__context.html#a7909411787ad822b05dcc93d55d237cf">Q</a> );</div>
<div class="line"><a name="l00105"></a><span class="lineno"> 105</span>  <a class="code" href="ecp_8h.html#a6a949f9b9194bbf02dc83d3aa0c61567">ecp_point_free</a>( &ctx-><a class="code" href="structecdh__context.html#ae74dbf3df7dd7503b5ebaa7a73dbbfeb">Qp</a> );</div>
<div class="line"><a name="l00106"></a><span class="lineno"> 106</span>  <a class="code" href="ecp_8h.html#a6a949f9b9194bbf02dc83d3aa0c61567">ecp_point_free</a>( &ctx-><a class="code" href="structecdh__context.html#abad2ff46bf513d9a81cf0da1cd2492d3">Vi</a> );</div>
<div class="line"><a name="l00107"></a><span class="lineno"> 107</span>  <a class="code" href="ecp_8h.html#a6a949f9b9194bbf02dc83d3aa0c61567">ecp_point_free</a>( &ctx-><a class="code" href="structecdh__context.html#aaa7c985bae9a31b20c1fd667010a3719">Vf</a> );</div>
<div class="line"><a name="l00108"></a><span class="lineno"> 108</span>  <a class="code" href="bignum_8h.html#ae1f6507671587755e46bbf0afcae6a8c">mpi_free</a>( &ctx-><a class="code" href="structecdh__context.html#a267e859b37b63b0aa28d9b98aeb89aa9">d</a> );</div>
<div class="line"><a name="l00109"></a><span class="lineno"> 109</span>  <a class="code" href="bignum_8h.html#ae1f6507671587755e46bbf0afcae6a8c">mpi_free</a>( &ctx-><a class="code" href="structecdh__context.html#ac969f132f7e7be95e6272071e2d92847">z</a> );</div>
<div class="line"><a name="l00110"></a><span class="lineno"> 110</span>  <a class="code" href="bignum_8h.html#ae1f6507671587755e46bbf0afcae6a8c">mpi_free</a>( &ctx-><a class="code" href="structecdh__context.html#ad8c268fa490819a67a8f5eec9df4f569">_d</a> );</div>
<div class="line"><a name="l00111"></a><span class="lineno"> 111</span> }</div>
<div class="line"><a name="l00112"></a><span class="lineno"> 112</span> </div>
<div class="line"><a name="l00113"></a><span class="lineno"> 113</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00114"></a><span class="lineno"> 114</span> <span class="comment"> * Setup and write the ServerKeyExhange parameters (RFC 4492)</span></div>
<div class="line"><a name="l00115"></a><span class="lineno"> 115</span> <span class="comment"> * struct {</span></div>
<div class="line"><a name="l00116"></a><span class="lineno"> 116</span> <span class="comment"> * ECParameters curve_params;</span></div>
<div class="line"><a name="l00117"></a><span class="lineno"> 117</span> <span class="comment"> * ECPoint public;</span></div>
<div class="line"><a name="l00118"></a><span class="lineno"> 118</span> <span class="comment"> * } ServerECDHParams;</span></div>
<div class="line"><a name="l00119"></a><span class="lineno"> 119</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00120"></a><span class="lineno"> 120</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#a0fb5133b05e53e0f5d576cfe5dce2d20">ecdh_make_params</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx, <span class="keywordtype">size_t</span> *olen,</div>
<div class="line"><a name="l00121"></a><span class="lineno"> 121</span>  <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *buf, <span class="keywordtype">size_t</span> blen,</div>
<div class="line"><a name="l00122"></a><span class="lineno"> 122</span>  <span class="keywordtype">int</span> (*f_rng)(<span class="keywordtype">void</span> *, <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *, <span class="keywordtype">size_t</span>),</div>
<div class="line"><a name="l00123"></a><span class="lineno"> 123</span>  <span class="keywordtype">void</span> *p_rng )</div>
<div class="line"><a name="l00124"></a><span class="lineno"> 124</span> {</div>
<div class="line"><a name="l00125"></a><span class="lineno"> 125</span>  <span class="keywordtype">int</span> ret;</div>
<div class="line"><a name="l00126"></a><span class="lineno"> 126</span>  <span class="keywordtype">size_t</span> grp_len, pt_len;</div>
<div class="line"><a name="l00127"></a><span class="lineno"> 127</span> </div>
<div class="line"><a name="l00128"></a><span class="lineno"> 128</span>  <span class="keywordflow">if</span>( ctx == NULL || ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>.<a class="code" href="structecp__group.html#a3a813481e3d2548e372bab92c50f4d48">pbits</a> == 0 )</div>
<div class="line"><a name="l00129"></a><span class="lineno"> 129</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a> );</div>
<div class="line"><a name="l00130"></a><span class="lineno"> 130</span> </div>
<div class="line"><a name="l00131"></a><span class="lineno"> 131</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecdh_8h.html#a9d54a86910330450fb99cea9845c53c9">ecdh_gen_public</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &ctx-><a class="code" href="structecdh__context.html#a267e859b37b63b0aa28d9b98aeb89aa9">d</a>, &ctx-><a class="code" href="structecdh__context.html#a7909411787ad822b05dcc93d55d237cf">Q</a>, f_rng, p_rng ) )</div>
<div class="line"><a name="l00132"></a><span class="lineno"> 132</span>  != 0 )</div>
<div class="line"><a name="l00133"></a><span class="lineno"> 133</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00134"></a><span class="lineno"> 134</span> </div>
<div class="line"><a name="l00135"></a><span class="lineno"> 135</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecp_8h.html#aadadbb4be3812ecf219cfd650b78c875">ecp_tls_write_group</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &grp_len, buf, blen ) )</div>
<div class="line"><a name="l00136"></a><span class="lineno"> 136</span>  != 0 )</div>
<div class="line"><a name="l00137"></a><span class="lineno"> 137</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00138"></a><span class="lineno"> 138</span> </div>
<div class="line"><a name="l00139"></a><span class="lineno"> 139</span>  buf += grp_len;</div>
<div class="line"><a name="l00140"></a><span class="lineno"> 140</span>  blen -= grp_len;</div>
<div class="line"><a name="l00141"></a><span class="lineno"> 141</span> </div>
<div class="line"><a name="l00142"></a><span class="lineno"> 142</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecp_8h.html#ae0cee19b8786ac1b74b9af1cbdd3c1ac">ecp_tls_write_point</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &ctx-><a class="code" href="structecdh__context.html#a7909411787ad822b05dcc93d55d237cf">Q</a>, ctx-><a class="code" href="structecdh__context.html#a3a321f6f85a382bbf8f6415c462414d2">point_format</a>,</div>
<div class="line"><a name="l00143"></a><span class="lineno"> 143</span>  &pt_len, buf, blen ) ) != 0 )</div>
<div class="line"><a name="l00144"></a><span class="lineno"> 144</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00145"></a><span class="lineno"> 145</span> </div>
<div class="line"><a name="l00146"></a><span class="lineno"> 146</span>  *olen = grp_len + pt_len;</div>
<div class="line"><a name="l00147"></a><span class="lineno"> 147</span>  <span class="keywordflow">return</span>( 0 );</div>
<div class="line"><a name="l00148"></a><span class="lineno"> 148</span> }</div>
<div class="line"><a name="l00149"></a><span class="lineno"> 149</span> </div>
<div class="line"><a name="l00150"></a><span class="lineno"> 150</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00151"></a><span class="lineno"> 151</span> <span class="comment"> * Read the ServerKeyExhange parameters (RFC 4492)</span></div>
<div class="line"><a name="l00152"></a><span class="lineno"> 152</span> <span class="comment"> * struct {</span></div>
<div class="line"><a name="l00153"></a><span class="lineno"> 153</span> <span class="comment"> * ECParameters curve_params;</span></div>
<div class="line"><a name="l00154"></a><span class="lineno"> 154</span> <span class="comment"> * ECPoint public;</span></div>
<div class="line"><a name="l00155"></a><span class="lineno"> 155</span> <span class="comment"> * } ServerECDHParams;</span></div>
<div class="line"><a name="l00156"></a><span class="lineno"> 156</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00157"></a><span class="lineno"> 157</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#ab0412adb0eb89eab15c6da4f1e99a75d">ecdh_read_params</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx,</div>
<div class="line"><a name="l00158"></a><span class="lineno"> 158</span>  <span class="keyword">const</span> <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> **buf, <span class="keyword">const</span> <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *end )</div>
<div class="line"><a name="l00159"></a><span class="lineno"> 159</span> {</div>
<div class="line"><a name="l00160"></a><span class="lineno"> 160</span>  <span class="keywordtype">int</span> ret;</div>
<div class="line"><a name="l00161"></a><span class="lineno"> 161</span> </div>
<div class="line"><a name="l00162"></a><span class="lineno"> 162</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecp_8h.html#a272a7ee626eea52fa8095a92606d8630">ecp_tls_read_group</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, buf, end - *buf ) ) != 0 )</div>
<div class="line"><a name="l00163"></a><span class="lineno"> 163</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00164"></a><span class="lineno"> 164</span> </div>
<div class="line"><a name="l00165"></a><span class="lineno"> 165</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecp_8h.html#a6673012c82015c0b1908bb02d5360a96">ecp_tls_read_point</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &ctx-><a class="code" href="structecdh__context.html#ae74dbf3df7dd7503b5ebaa7a73dbbfeb">Qp</a>, buf, end - *buf ) )</div>
<div class="line"><a name="l00166"></a><span class="lineno"> 166</span>  != 0 )</div>
<div class="line"><a name="l00167"></a><span class="lineno"> 167</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00168"></a><span class="lineno"> 168</span> </div>
<div class="line"><a name="l00169"></a><span class="lineno"> 169</span>  <span class="keywordflow">return</span>( 0 );</div>
<div class="line"><a name="l00170"></a><span class="lineno"> 170</span> }</div>
<div class="line"><a name="l00171"></a><span class="lineno"> 171</span> </div>
<div class="line"><a name="l00172"></a><span class="lineno"> 172</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00173"></a><span class="lineno"> 173</span> <span class="comment"> * Get parameters from a keypair</span></div>
<div class="line"><a name="l00174"></a><span class="lineno"> 174</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00175"></a><span class="lineno"> 175</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#ab610fdc63f2d5085cfe6b2ab024e96fb">ecdh_get_params</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx, <span class="keyword">const</span> <a class="code" href="structecp__keypair.html">ecp_keypair</a> *key,</div>
<div class="line"><a name="l00176"></a><span class="lineno"> 176</span>  <a class="code" href="ecdh_8h.html#a4afa1322ebd6c0b06f5143bbae929541">ecdh_side</a> side )</div>
<div class="line"><a name="l00177"></a><span class="lineno"> 177</span> {</div>
<div class="line"><a name="l00178"></a><span class="lineno"> 178</span>  <span class="keywordtype">int</span> ret;</div>
<div class="line"><a name="l00179"></a><span class="lineno"> 179</span> </div>
<div class="line"><a name="l00180"></a><span class="lineno"> 180</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecp_8h.html#aae1ffdfabe7a58a7d9a1fee29a792051">ecp_group_copy</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &key-><a class="code" href="structecp__keypair.html#af83ab21de379598f79adade4c3cd376f">grp</a> ) ) != 0 )</div>
<div class="line"><a name="l00181"></a><span class="lineno"> 181</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00182"></a><span class="lineno"> 182</span> </div>
<div class="line"><a name="l00183"></a><span class="lineno"> 183</span>  <span class="comment">/* If it's not our key, just import the public part as Qp */</span></div>
<div class="line"><a name="l00184"></a><span class="lineno"> 184</span>  <span class="keywordflow">if</span>( side == <a class="code" href="ecdh_8h.html#a4afa1322ebd6c0b06f5143bbae929541a862cefa3ef046471b16b39376cb98e39">POLARSSL_ECDH_THEIRS</a> )</div>
<div class="line"><a name="l00185"></a><span class="lineno"> 185</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a4d192c7a9b2f415c40a9ec2dc955ea13">ecp_copy</a>( &ctx-><a class="code" href="structecdh__context.html#ae74dbf3df7dd7503b5ebaa7a73dbbfeb">Qp</a>, &key-><a class="code" href="structecp__keypair.html#a3a2bd5744991a7b0fbc76c3649a1e8a1">Q</a> ) );</div>
<div class="line"><a name="l00186"></a><span class="lineno"> 186</span> </div>
<div class="line"><a name="l00187"></a><span class="lineno"> 187</span>  <span class="comment">/* Our key: import public (as Q) and private parts */</span></div>
<div class="line"><a name="l00188"></a><span class="lineno"> 188</span>  <span class="keywordflow">if</span>( side != <a class="code" href="ecdh_8h.html#a4afa1322ebd6c0b06f5143bbae929541a4f39c37b7d803309ca21379b6f523c2b">POLARSSL_ECDH_OURS</a> )</div>
<div class="line"><a name="l00189"></a><span class="lineno"> 189</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a> );</div>
<div class="line"><a name="l00190"></a><span class="lineno"> 190</span> </div>
<div class="line"><a name="l00191"></a><span class="lineno"> 191</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecp_8h.html#a4d192c7a9b2f415c40a9ec2dc955ea13">ecp_copy</a>( &ctx-><a class="code" href="structecdh__context.html#a7909411787ad822b05dcc93d55d237cf">Q</a>, &key-><a class="code" href="structecp__keypair.html#a3a2bd5744991a7b0fbc76c3649a1e8a1">Q</a> ) ) != 0 ||</div>
<div class="line"><a name="l00192"></a><span class="lineno"> 192</span>  ( ret = <a class="code" href="bignum_8h.html#a6fbcce39a9d92d9e2a560f8aa6a810f4">mpi_copy</a>( &ctx-><a class="code" href="structecdh__context.html#a267e859b37b63b0aa28d9b98aeb89aa9">d</a>, &key-><a class="code" href="structecp__keypair.html#a8531547899526b4e8e6b2427c09e0177">d</a> ) ) != 0 )</div>
<div class="line"><a name="l00193"></a><span class="lineno"> 193</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00194"></a><span class="lineno"> 194</span> </div>
<div class="line"><a name="l00195"></a><span class="lineno"> 195</span>  <span class="keywordflow">return</span>( 0 );</div>
<div class="line"><a name="l00196"></a><span class="lineno"> 196</span> }</div>
<div class="line"><a name="l00197"></a><span class="lineno"> 197</span> </div>
<div class="line"><a name="l00198"></a><span class="lineno"> 198</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00199"></a><span class="lineno"> 199</span> <span class="comment"> * Setup and export the client public value</span></div>
<div class="line"><a name="l00200"></a><span class="lineno"> 200</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00201"></a><span class="lineno"> 201</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#ae91b8624edc6f81fbdef9137cf1fd703">ecdh_make_public</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx, <span class="keywordtype">size_t</span> *olen,</div>
<div class="line"><a name="l00202"></a><span class="lineno"> 202</span>  <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *buf, <span class="keywordtype">size_t</span> blen,</div>
<div class="line"><a name="l00203"></a><span class="lineno"> 203</span>  <span class="keywordtype">int</span> (*f_rng)(<span class="keywordtype">void</span> *, <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *, <span class="keywordtype">size_t</span>),</div>
<div class="line"><a name="l00204"></a><span class="lineno"> 204</span>  <span class="keywordtype">void</span> *p_rng )</div>
<div class="line"><a name="l00205"></a><span class="lineno"> 205</span> {</div>
<div class="line"><a name="l00206"></a><span class="lineno"> 206</span>  <span class="keywordtype">int</span> ret;</div>
<div class="line"><a name="l00207"></a><span class="lineno"> 207</span> </div>
<div class="line"><a name="l00208"></a><span class="lineno"> 208</span>  <span class="keywordflow">if</span>( ctx == NULL || ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>.<a class="code" href="structecp__group.html#a3a813481e3d2548e372bab92c50f4d48">pbits</a> == 0 )</div>
<div class="line"><a name="l00209"></a><span class="lineno"> 209</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a> );</div>
<div class="line"><a name="l00210"></a><span class="lineno"> 210</span> </div>
<div class="line"><a name="l00211"></a><span class="lineno"> 211</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecdh_8h.html#a9d54a86910330450fb99cea9845c53c9">ecdh_gen_public</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &ctx-><a class="code" href="structecdh__context.html#a267e859b37b63b0aa28d9b98aeb89aa9">d</a>, &ctx-><a class="code" href="structecdh__context.html#a7909411787ad822b05dcc93d55d237cf">Q</a>, f_rng, p_rng ) )</div>
<div class="line"><a name="l00212"></a><span class="lineno"> 212</span>  != 0 )</div>
<div class="line"><a name="l00213"></a><span class="lineno"> 213</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00214"></a><span class="lineno"> 214</span> </div>
<div class="line"><a name="l00215"></a><span class="lineno"> 215</span>  <span class="keywordflow">return</span> <a class="code" href="ecp_8h.html#ae0cee19b8786ac1b74b9af1cbdd3c1ac">ecp_tls_write_point</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &ctx-><a class="code" href="structecdh__context.html#a7909411787ad822b05dcc93d55d237cf">Q</a>, ctx-><a class="code" href="structecdh__context.html#a3a321f6f85a382bbf8f6415c462414d2">point_format</a>,</div>
<div class="line"><a name="l00216"></a><span class="lineno"> 216</span>  olen, buf, blen );</div>
<div class="line"><a name="l00217"></a><span class="lineno"> 217</span> }</div>
<div class="line"><a name="l00218"></a><span class="lineno"> 218</span> </div>
<div class="line"><a name="l00219"></a><span class="lineno"> 219</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00220"></a><span class="lineno"> 220</span> <span class="comment"> * Parse and import the client's public value</span></div>
<div class="line"><a name="l00221"></a><span class="lineno"> 221</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00222"></a><span class="lineno"> 222</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#ac630688764d91d5e462cf46af7cafa3a">ecdh_read_public</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx,</div>
<div class="line"><a name="l00223"></a><span class="lineno"> 223</span>  <span class="keyword">const</span> <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *buf, <span class="keywordtype">size_t</span> blen )</div>
<div class="line"><a name="l00224"></a><span class="lineno"> 224</span> {</div>
<div class="line"><a name="l00225"></a><span class="lineno"> 225</span>  <span class="keywordtype">int</span> ret;</div>
<div class="line"><a name="l00226"></a><span class="lineno"> 226</span>  <span class="keyword">const</span> <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *p = buf;</div>
<div class="line"><a name="l00227"></a><span class="lineno"> 227</span> </div>
<div class="line"><a name="l00228"></a><span class="lineno"> 228</span>  <span class="keywordflow">if</span>( ctx == NULL )</div>
<div class="line"><a name="l00229"></a><span class="lineno"> 229</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a> );</div>
<div class="line"><a name="l00230"></a><span class="lineno"> 230</span> </div>
<div class="line"><a name="l00231"></a><span class="lineno"> 231</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecp_8h.html#a6673012c82015c0b1908bb02d5360a96">ecp_tls_read_point</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &ctx-><a class="code" href="structecdh__context.html#ae74dbf3df7dd7503b5ebaa7a73dbbfeb">Qp</a>, &p, blen ) ) != 0 )</div>
<div class="line"><a name="l00232"></a><span class="lineno"> 232</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00233"></a><span class="lineno"> 233</span> </div>
<div class="line"><a name="l00234"></a><span class="lineno"> 234</span>  <span class="keywordflow">if</span>( (<span class="keywordtype">size_t</span>)( p - buf ) != blen )</div>
<div class="line"><a name="l00235"></a><span class="lineno"> 235</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a> );</div>
<div class="line"><a name="l00236"></a><span class="lineno"> 236</span> </div>
<div class="line"><a name="l00237"></a><span class="lineno"> 237</span>  <span class="keywordflow">return</span>( 0 );</div>
<div class="line"><a name="l00238"></a><span class="lineno"> 238</span> }</div>
<div class="line"><a name="l00239"></a><span class="lineno"> 239</span> </div>
<div class="line"><a name="l00240"></a><span class="lineno"> 240</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00241"></a><span class="lineno"> 241</span> <span class="comment"> * Derive and export the shared secret</span></div>
<div class="line"><a name="l00242"></a><span class="lineno"> 242</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00243"></a><span class="lineno"> 243</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#a51fead5ce830e844d27165630e0205ce">ecdh_calc_secret</a>( <a class="code" href="structecdh__context.html">ecdh_context</a> *ctx, <span class="keywordtype">size_t</span> *olen,</div>
<div class="line"><a name="l00244"></a><span class="lineno"> 244</span>  <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *buf, <span class="keywordtype">size_t</span> blen,</div>
<div class="line"><a name="l00245"></a><span class="lineno"> 245</span>  <span class="keywordtype">int</span> (*f_rng)(<span class="keywordtype">void</span> *, <span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *, <span class="keywordtype">size_t</span>),</div>
<div class="line"><a name="l00246"></a><span class="lineno"> 246</span>  <span class="keywordtype">void</span> *p_rng )</div>
<div class="line"><a name="l00247"></a><span class="lineno"> 247</span> {</div>
<div class="line"><a name="l00248"></a><span class="lineno"> 248</span>  <span class="keywordtype">int</span> ret;</div>
<div class="line"><a name="l00249"></a><span class="lineno"> 249</span> </div>
<div class="line"><a name="l00250"></a><span class="lineno"> 250</span>  <span class="keywordflow">if</span>( ctx == NULL )</div>
<div class="line"><a name="l00251"></a><span class="lineno"> 251</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a> );</div>
<div class="line"><a name="l00252"></a><span class="lineno"> 252</span> </div>
<div class="line"><a name="l00253"></a><span class="lineno"> 253</span>  <span class="keywordflow">if</span>( ( ret = <a class="code" href="ecdh_8h.html#af4a8cc9a1009e4307afe4088d769a6bd">ecdh_compute_shared</a>( &ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>, &ctx-><a class="code" href="structecdh__context.html#ac969f132f7e7be95e6272071e2d92847">z</a>, &ctx-><a class="code" href="structecdh__context.html#ae74dbf3df7dd7503b5ebaa7a73dbbfeb">Qp</a>, &ctx-><a class="code" href="structecdh__context.html#a267e859b37b63b0aa28d9b98aeb89aa9">d</a>,</div>
<div class="line"><a name="l00254"></a><span class="lineno"> 254</span>  f_rng, p_rng ) ) != 0 )</div>
<div class="line"><a name="l00255"></a><span class="lineno"> 255</span>  {</div>
<div class="line"><a name="l00256"></a><span class="lineno"> 256</span>  <span class="keywordflow">return</span>( ret );</div>
<div class="line"><a name="l00257"></a><span class="lineno"> 257</span>  }</div>
<div class="line"><a name="l00258"></a><span class="lineno"> 258</span> </div>
<div class="line"><a name="l00259"></a><span class="lineno"> 259</span>  <span class="keywordflow">if</span>( <a class="code" href="bignum_8h.html#a8aa3a3d3aac9e49879ea8cd308859d23">mpi_size</a>( &ctx-><a class="code" href="structecdh__context.html#ac969f132f7e7be95e6272071e2d92847">z</a> ) > blen )</div>
<div class="line"><a name="l00260"></a><span class="lineno"> 260</span>  <span class="keywordflow">return</span>( <a class="code" href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a> );</div>
<div class="line"><a name="l00261"></a><span class="lineno"> 261</span> </div>
<div class="line"><a name="l00262"></a><span class="lineno"> 262</span>  *olen = ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>.<a class="code" href="structecp__group.html#a3a813481e3d2548e372bab92c50f4d48">pbits</a> / 8 + ( ( ctx-><a class="code" href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">grp</a>.<a class="code" href="structecp__group.html#a3a813481e3d2548e372bab92c50f4d48">pbits</a> % 8 ) != 0 );</div>
<div class="line"><a name="l00263"></a><span class="lineno"> 263</span>  <span class="keywordflow">return</span> <a class="code" href="bignum_8h.html#a5d464b4312859ce4969d114eb5e02741">mpi_write_binary</a>( &ctx-><a class="code" href="structecdh__context.html#ac969f132f7e7be95e6272071e2d92847">z</a>, buf, *olen );</div>
<div class="line"><a name="l00264"></a><span class="lineno"> 264</span> }</div>
<div class="line"><a name="l00265"></a><span class="lineno"> 265</span> </div>
<div class="line"><a name="l00266"></a><span class="lineno"> 266</span> </div>
<div class="line"><a name="l00267"></a><span class="lineno"> 267</span> <span class="preprocessor">#if defined(POLARSSL_SELF_TEST)</span></div>
<div class="line"><a name="l00268"></a><span class="lineno"> 268</span> <span class="preprocessor"></span></div>
<div class="line"><a name="l00269"></a><span class="lineno"> 269</span> <span class="comment">/*</span></div>
<div class="line"><a name="l00270"></a><span class="lineno"> 270</span> <span class="comment"> * Checkup routine</span></div>
<div class="line"><a name="l00271"></a><span class="lineno"> 271</span> <span class="comment"> */</span></div>
<div class="line"><a name="l00272"></a><span class="lineno"> 272</span> <span class="keywordtype">int</span> <a class="code" href="ecdh_8h.html#acdb6b5b461eee93ac484d0323c8f86e0">ecdh_self_test</a>( <span class="keywordtype">int</span> verbose )</div>
<div class="line"><a name="l00273"></a><span class="lineno"> 273</span> {</div>
<div class="line"><a name="l00274"></a><span class="lineno"> 274</span>  ((void) verbose );</div>
<div class="line"><a name="l00275"></a><span class="lineno"> 275</span>  <span class="keywordflow">return</span>( 0 );</div>
<div class="line"><a name="l00276"></a><span class="lineno"> 276</span> }</div>
<div class="line"><a name="l00277"></a><span class="lineno"> 277</span> </div>
<div class="line"><a name="l00278"></a><span class="lineno"> 278</span> <span class="preprocessor">#endif </span><span class="comment">/* POLARSSL_SELF_TEST */</span><span class="preprocessor"></span></div>
<div class="line"><a name="l00279"></a><span class="lineno"> 279</span> <span class="preprocessor"></span></div>
<div class="line"><a name="l00280"></a><span class="lineno"> 280</span> <span class="preprocessor">#endif </span><span class="comment">/* POLARSSL_ECDH_C */</span><span class="preprocessor"></span></div>
<div class="ttc" id="ecdh_8h_html_a0fb5133b05e53e0f5d576cfe5dce2d20"><div class="ttname"><a href="ecdh_8h.html#a0fb5133b05e53e0f5d576cfe5dce2d20">ecdh_make_params</a></div><div class="ttdeci">int ecdh_make_params(ecdh_context *ctx, size_t *olen, unsigned char *buf, size_t blen, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng)</div><div class="ttdoc">Generate a public key and a TLS ServerKeyExchange payload. </div></div>
<div class="ttc" id="structecp__group_html_a3a813481e3d2548e372bab92c50f4d48"><div class="ttname"><a href="structecp__group.html#a3a813481e3d2548e372bab92c50f4d48">ecp_group::pbits</a></div><div class="ttdeci">size_t pbits</div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00144">ecp.h:144</a></div></div>
<div class="ttc" id="ecdh_8h_html_ae91b8624edc6f81fbdef9137cf1fd703"><div class="ttname"><a href="ecdh_8h.html#ae91b8624edc6f81fbdef9137cf1fd703">ecdh_make_public</a></div><div class="ttdeci">int ecdh_make_public(ecdh_context *ctx, size_t *olen, unsigned char *buf, size_t blen, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng)</div><div class="ttdoc">Generate a public key and a TLS ClientKeyExchange payload. </div></div>
<div class="ttc" id="ecp_8h_html_a59e5b00eddc35acbb507340379c4d056"><div class="ttname"><a href="ecp_8h.html#a59e5b00eddc35acbb507340379c4d056">POLARSSL_ERR_ECP_BAD_INPUT_DATA</a></div><div class="ttdeci">#define POLARSSL_ERR_ECP_BAD_INPUT_DATA</div><div class="ttdoc">Bad input parameters to function. </div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00035">ecp.h:35</a></div></div>
<div class="ttc" id="ecp_8h_html_aae1ffdfabe7a58a7d9a1fee29a792051"><div class="ttname"><a href="ecp_8h.html#aae1ffdfabe7a58a7d9a1fee29a792051">ecp_group_copy</a></div><div class="ttdeci">int ecp_group_copy(ecp_group *dst, const ecp_group *src)</div><div class="ttdoc">Copy the contents of a group object. </div></div>
<div class="ttc" id="ecdh_8h_html_a51fead5ce830e844d27165630e0205ce"><div class="ttname"><a href="ecdh_8h.html#a51fead5ce830e844d27165630e0205ce">ecdh_calc_secret</a></div><div class="ttdeci">int ecdh_calc_secret(ecdh_context *ctx, size_t *olen, unsigned char *buf, size_t blen, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng)</div><div class="ttdoc">Derive and export the shared secret. </div></div>
<div class="ttc" id="ecdh_8h_html_ac630688764d91d5e462cf46af7cafa3a"><div class="ttname"><a href="ecdh_8h.html#ac630688764d91d5e462cf46af7cafa3a">ecdh_read_public</a></div><div class="ttdeci">int ecdh_read_public(ecdh_context *ctx, const unsigned char *buf, size_t blen)</div><div class="ttdoc">Parse and process a TLS ClientKeyExchange payload. </div></div>
<div class="ttc" id="structecdh__context_html_aaa7c985bae9a31b20c1fd667010a3719"><div class="ttname"><a href="structecdh__context.html#aaa7c985bae9a31b20c1fd667010a3719">ecdh_context::Vf</a></div><div class="ttdeci">ecp_point Vf</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00057">ecdh.h:57</a></div></div>
<div class="ttc" id="structecp__keypair_html_af83ab21de379598f79adade4c3cd376f"><div class="ttname"><a href="structecp__keypair.html#af83ab21de379598f79adade4c3cd376f">ecp_keypair::grp</a></div><div class="ttdeci">ecp_group grp</div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00165">ecp.h:165</a></div></div>
<div class="ttc" id="ecdh_8h_html_af4a8cc9a1009e4307afe4088d769a6bd"><div class="ttname"><a href="ecdh_8h.html#af4a8cc9a1009e4307afe4088d769a6bd">ecdh_compute_shared</a></div><div class="ttdeci">int ecdh_compute_shared(ecp_group *grp, mpi *z, const ecp_point *Q, const mpi *d, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng)</div><div class="ttdoc">Compute shared secret Raw function that only does the core computation. </div></div>
<div class="ttc" id="ecdh_8h_html_a9d54a86910330450fb99cea9845c53c9"><div class="ttname"><a href="ecdh_8h.html#a9d54a86910330450fb99cea9845c53c9">ecdh_gen_public</a></div><div class="ttdeci">int ecdh_gen_public(ecp_group *grp, mpi *d, ecp_point *Q, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng)</div><div class="ttdoc">Generate a public key. </div></div>
<div class="ttc" id="structecdh__context_html_ad8c268fa490819a67a8f5eec9df4f569"><div class="ttname"><a href="structecdh__context.html#ad8c268fa490819a67a8f5eec9df4f569">ecdh_context::_d</a></div><div class="ttdeci">mpi _d</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00058">ecdh.h:58</a></div></div>
<div class="ttc" id="structecp__group_html"><div class="ttname"><a href="structecp__group.html">ecp_group</a></div><div class="ttdoc">ECP group structure. </div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00136">ecp.h:136</a></div></div>
<div class="ttc" id="config_8h_html"><div class="ttname"><a href="config_8h.html">config.h</a></div><div class="ttdoc">Configuration options (set of defines) </div></div>
<div class="ttc" id="ecdh_8h_html_ab610fdc63f2d5085cfe6b2ab024e96fb"><div class="ttname"><a href="ecdh_8h.html#ab610fdc63f2d5085cfe6b2ab024e96fb">ecdh_get_params</a></div><div class="ttdeci">int ecdh_get_params(ecdh_context *ctx, const ecp_keypair *key, ecdh_side side)</div><div class="ttdoc">Setup an ECDH context from an EC key. </div></div>
<div class="ttc" id="structecp__keypair_html"><div class="ttname"><a href="structecp__keypair.html">ecp_keypair</a></div><div class="ttdoc">ECP key pair structure. </div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00163">ecp.h:163</a></div></div>
<div class="ttc" id="structecp__keypair_html_a8531547899526b4e8e6b2427c09e0177"><div class="ttname"><a href="structecp__keypair.html#a8531547899526b4e8e6b2427c09e0177">ecp_keypair::d</a></div><div class="ttdeci">mpi d</div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00166">ecp.h:166</a></div></div>
<div class="ttc" id="structmpi_html"><div class="ttname"><a href="structmpi.html">mpi</a></div><div class="ttdoc">MPI structure. </div><div class="ttdef"><b>Definition:</b> <a href="bignum_8h_source.html#l00182">bignum.h:182</a></div></div>
<div class="ttc" id="ecp_8h_html_a337b0e41153f458872f7f73bad93711c"><div class="ttname"><a href="ecp_8h.html#a337b0e41153f458872f7f73bad93711c">ecp_mul</a></div><div class="ttdeci">int ecp_mul(ecp_group *grp, ecp_point *R, const mpi *m, const ecp_point *P, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng)</div><div class="ttdoc">Multiplication by an integer: R = m * P (Not thread-safe to use same group in multiple threads) ...</div></div>
<div class="ttc" id="structecdh__context_html_a267e859b37b63b0aa28d9b98aeb89aa9"><div class="ttname"><a href="structecdh__context.html#a267e859b37b63b0aa28d9b98aeb89aa9">ecdh_context::d</a></div><div class="ttdeci">mpi d</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00051">ecdh.h:51</a></div></div>
<div class="ttc" id="structecp__point_html_ad22ad099567064b38af5a1f2f58f0acc"><div class="ttname"><a href="structecp__point.html#ad22ad099567064b38af5a1f2f58f0acc">ecp_point::X</a></div><div class="ttdeci">mpi X</div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00106">ecp.h:106</a></div></div>
<div class="ttc" id="structecdh__context_html_ae74dbf3df7dd7503b5ebaa7a73dbbfeb"><div class="ttname"><a href="structecdh__context.html#ae74dbf3df7dd7503b5ebaa7a73dbbfeb">ecdh_context::Qp</a></div><div class="ttdeci">ecp_point Qp</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00053">ecdh.h:53</a></div></div>
<div class="ttc" id="ecdh_8h_html_a4afa1322ebd6c0b06f5143bbae929541a862cefa3ef046471b16b39376cb98e39"><div class="ttname"><a href="ecdh_8h.html#a4afa1322ebd6c0b06f5143bbae929541a862cefa3ef046471b16b39376cb98e39">POLARSSL_ECDH_THEIRS</a></div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00042">ecdh.h:42</a></div></div>
<div class="ttc" id="structecp__point_html"><div class="ttname"><a href="structecp__point.html">ecp_point</a></div><div class="ttdoc">ECP point structure (jacobian coordinates) </div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00104">ecp.h:104</a></div></div>
<div class="ttc" id="structecdh__context_html_a3a321f6f85a382bbf8f6415c462414d2"><div class="ttname"><a href="structecdh__context.html#a3a321f6f85a382bbf8f6415c462414d2">ecdh_context::point_format</a></div><div class="ttdeci">int point_format</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00055">ecdh.h:55</a></div></div>
<div class="ttc" id="ecp_8h_html_ab091c21f839189f606dfad0ef924af35"><div class="ttname"><a href="ecp_8h.html#ab091c21f839189f606dfad0ef924af35">ecp_is_zero</a></div><div class="ttdeci">int ecp_is_zero(ecp_point *pt)</div><div class="ttdoc">Tell if a point is zero. </div></div>
<div class="ttc" id="ecp_8h_html_a870fd59435f6519b4027050afe24fc7c"><div class="ttname"><a href="ecp_8h.html#a870fd59435f6519b4027050afe24fc7c">ecp_point_init</a></div><div class="ttdeci">void ecp_point_init(ecp_point *pt)</div><div class="ttdoc">Initialize a point (as zero) </div></div>
<div class="ttc" id="bignum_8h_html_ae1f6507671587755e46bbf0afcae6a8c"><div class="ttname"><a href="bignum_8h.html#ae1f6507671587755e46bbf0afcae6a8c">mpi_free</a></div><div class="ttdeci">void mpi_free(mpi *X)</div><div class="ttdoc">Unallocate one MPI. </div></div>
<div class="ttc" id="ecp_8h_html_acbb816c782b4d903a0f0fac9b9d7e748"><div class="ttname"><a href="ecp_8h.html#acbb816c782b4d903a0f0fac9b9d7e748">ecp_group_free</a></div><div class="ttdeci">void ecp_group_free(ecp_group *grp)</div><div class="ttdoc">Free the components of an ECP group. </div></div>
<div class="ttc" id="ecdh_8h_html_a4afa1322ebd6c0b06f5143bbae929541"><div class="ttname"><a href="ecdh_8h.html#a4afa1322ebd6c0b06f5143bbae929541">ecdh_side</a></div><div class="ttdeci">ecdh_side</div><div class="ttdoc">When importing from an EC key, select if it is our key or the peer&#39;s key. </div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00039">ecdh.h:39</a></div></div>
<div class="ttc" id="ecp_8h_html_ae0cee19b8786ac1b74b9af1cbdd3c1ac"><div class="ttname"><a href="ecp_8h.html#ae0cee19b8786ac1b74b9af1cbdd3c1ac">ecp_tls_write_point</a></div><div class="ttdeci">int ecp_tls_write_point(const ecp_group *grp, const ecp_point *pt, int format, size_t *olen, unsigned char *buf, size_t blen)</div><div class="ttdoc">Export a point as a TLS ECPoint record. </div></div>
<div class="ttc" id="structecdh__context_html_ac969f132f7e7be95e6272071e2d92847"><div class="ttname"><a href="structecdh__context.html#ac969f132f7e7be95e6272071e2d92847">ecdh_context::z</a></div><div class="ttdeci">mpi z</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00054">ecdh.h:54</a></div></div>
<div class="ttc" id="ecp_8h_html_aaf7e6813178463e3ebb15b0719d1d30a"><div class="ttname"><a href="ecp_8h.html#aaf7e6813178463e3ebb15b0719d1d30a">ecp_gen_keypair</a></div><div class="ttdeci">int ecp_gen_keypair(ecp_group *grp, mpi *d, ecp_point *Q, int(*f_rng)(void *, unsigned char *, size_t), void *p_rng)</div><div class="ttdoc">Generate a keypair. </div></div>
<div class="ttc" id="ecdh_8h_html_ab0412adb0eb89eab15c6da4f1e99a75d"><div class="ttname"><a href="ecdh_8h.html#ab0412adb0eb89eab15c6da4f1e99a75d">ecdh_read_params</a></div><div class="ttdeci">int ecdh_read_params(ecdh_context *ctx, const unsigned char **buf, const unsigned char *end)</div><div class="ttdoc">Parse and procress a TLS ServerKeyExhange payload. </div></div>
<div class="ttc" id="ecdh_8h_html"><div class="ttname"><a href="ecdh_8h.html">ecdh.h</a></div><div class="ttdoc">Elliptic curve Diffie-Hellman. </div></div>
<div class="ttc" id="structecdh__context_html"><div class="ttname"><a href="structecdh__context.html">ecdh_context</a></div><div class="ttdoc">ECDH context structure. </div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00048">ecdh.h:48</a></div></div>
<div class="ttc" id="ecp_8h_html_a4d192c7a9b2f415c40a9ec2dc955ea13"><div class="ttname"><a href="ecp_8h.html#a4d192c7a9b2f415c40a9ec2dc955ea13">ecp_copy</a></div><div class="ttdeci">int ecp_copy(ecp_point *P, const ecp_point *Q)</div><div class="ttdoc">Copy the contents of point Q into P. </div></div>
<div class="ttc" id="ecp_8h_html_aadadbb4be3812ecf219cfd650b78c875"><div class="ttname"><a href="ecp_8h.html#aadadbb4be3812ecf219cfd650b78c875">ecp_tls_write_group</a></div><div class="ttdeci">int ecp_tls_write_group(const ecp_group *grp, size_t *olen, unsigned char *buf, size_t blen)</div><div class="ttdoc">Write the TLS ECParameters record for a group. </div></div>
<div class="ttc" id="bignum_8h_html_a8aa3a3d3aac9e49879ea8cd308859d23"><div class="ttname"><a href="bignum_8h.html#a8aa3a3d3aac9e49879ea8cd308859d23">mpi_size</a></div><div class="ttdeci">size_t mpi_size(const mpi *X)</div><div class="ttdoc">Return the total size in bytes. </div></div>
<div class="ttc" id="bignum_8h_html_a6fbcce39a9d92d9e2a560f8aa6a810f4"><div class="ttname"><a href="bignum_8h.html#a6fbcce39a9d92d9e2a560f8aa6a810f4">mpi_copy</a></div><div class="ttdeci">int mpi_copy(mpi *X, const mpi *Y)</div><div class="ttdoc">Copy the contents of Y into X. </div></div>
<div class="ttc" id="bignum_8h_html_a5d464b4312859ce4969d114eb5e02741"><div class="ttname"><a href="bignum_8h.html#a5d464b4312859ce4969d114eb5e02741">mpi_write_binary</a></div><div class="ttdeci">int mpi_write_binary(const mpi *X, unsigned char *buf, size_t buflen)</div><div class="ttdoc">Export X into unsigned binary data, big endian. </div></div>
<div class="ttc" id="ecp_8h_html_a272a7ee626eea52fa8095a92606d8630"><div class="ttname"><a href="ecp_8h.html#a272a7ee626eea52fa8095a92606d8630">ecp_tls_read_group</a></div><div class="ttdeci">int ecp_tls_read_group(ecp_group *grp, const unsigned char **buf, size_t len)</div><div class="ttdoc">Set a group from a TLS ECParameters record. </div></div>
<div class="ttc" id="structecp__keypair_html_a3a2bd5744991a7b0fbc76c3649a1e8a1"><div class="ttname"><a href="structecp__keypair.html#a3a2bd5744991a7b0fbc76c3649a1e8a1">ecp_keypair::Q</a></div><div class="ttdeci">ecp_point Q</div><div class="ttdef"><b>Definition:</b> <a href="ecp_8h_source.html#l00167">ecp.h:167</a></div></div>
<div class="ttc" id="ecdh_8h_html_a80d76b7ea7bd03f987045790528fa9fe"><div class="ttname"><a href="ecdh_8h.html#a80d76b7ea7bd03f987045790528fa9fe">ecdh_init</a></div><div class="ttdeci">void ecdh_init(ecdh_context *ctx)</div><div class="ttdoc">Initialize context. </div></div>
<div class="ttc" id="ecdh_8h_html_a4afa1322ebd6c0b06f5143bbae929541a4f39c37b7d803309ca21379b6f523c2b"><div class="ttname"><a href="ecdh_8h.html#a4afa1322ebd6c0b06f5143bbae929541a4f39c37b7d803309ca21379b6f523c2b">POLARSSL_ECDH_OURS</a></div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00041">ecdh.h:41</a></div></div>
<div class="ttc" id="ecp_8h_html_a2b89dc1f1a90c6bd42fd1f927c2c6a13"><div class="ttname"><a href="ecp_8h.html#a2b89dc1f1a90c6bd42fd1f927c2c6a13">ecp_check_pubkey</a></div><div class="ttdeci">int ecp_check_pubkey(const ecp_group *grp, const ecp_point *pt)</div><div class="ttdoc">Check that a point is a valid public key on this curve. </div></div>
<div class="ttc" id="structecdh__context_html_abad2ff46bf513d9a81cf0da1cd2492d3"><div class="ttname"><a href="structecdh__context.html#abad2ff46bf513d9a81cf0da1cd2492d3">ecdh_context::Vi</a></div><div class="ttdeci">ecp_point Vi</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00056">ecdh.h:56</a></div></div>
<div class="ttc" id="ecdh_8h_html_acdb6b5b461eee93ac484d0323c8f86e0"><div class="ttname"><a href="ecdh_8h.html#acdb6b5b461eee93ac484d0323c8f86e0">ecdh_self_test</a></div><div class="ttdeci">int ecdh_self_test(int verbose)</div><div class="ttdoc">Checkup routine. </div></div>
<div class="ttc" id="ecdh_8h_html_ac58b9cd610b9bf65274d917c89756a5b"><div class="ttname"><a href="ecdh_8h.html#ac58b9cd610b9bf65274d917c89756a5b">ecdh_free</a></div><div class="ttdeci">void ecdh_free(ecdh_context *ctx)</div><div class="ttdoc">Free context. </div></div>
<div class="ttc" id="ecp_8h_html_a6673012c82015c0b1908bb02d5360a96"><div class="ttname"><a href="ecp_8h.html#a6673012c82015c0b1908bb02d5360a96">ecp_tls_read_point</a></div><div class="ttdeci">int ecp_tls_read_point(const ecp_group *grp, ecp_point *pt, const unsigned char **buf, size_t len)</div><div class="ttdoc">Import a point from a TLS ECPoint record. </div></div>
<div class="ttc" id="structecdh__context_html_a88b34483e99977b9672252a89db3711e"><div class="ttname"><a href="structecdh__context.html#a88b34483e99977b9672252a89db3711e">ecdh_context::grp</a></div><div class="ttdeci">ecp_group grp</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00050">ecdh.h:50</a></div></div>
<div class="ttc" id="structecdh__context_html_a7909411787ad822b05dcc93d55d237cf"><div class="ttname"><a href="structecdh__context.html#a7909411787ad822b05dcc93d55d237cf">ecdh_context::Q</a></div><div class="ttdeci">ecp_point Q</div><div class="ttdef"><b>Definition:</b> <a href="ecdh_8h_source.html#l00052">ecdh.h:52</a></div></div>
<div class="ttc" id="bignum_8h_html_a024b186dd3608bcbcfc9dd36212a18ec"><div class="ttname"><a href="bignum_8h.html#a024b186dd3608bcbcfc9dd36212a18ec">MPI_CHK</a></div><div class="ttdeci">#define MPI_CHK(f)</div><div class="ttdef"><b>Definition:</b> <a href="bignum_8h_source.html#l00065">bignum.h:65</a></div></div>
<div class="ttc" id="ecp_8h_html_a6a949f9b9194bbf02dc83d3aa0c61567"><div class="ttname"><a href="ecp_8h.html#a6a949f9b9194bbf02dc83d3aa0c61567">ecp_point_free</a></div><div class="ttdeci">void ecp_point_free(ecp_point *pt)</div><div class="ttdoc">Free the components of a point. </div></div>
</div><!-- fragment --></div><!-- contents -->
<!-- start footer part -->
<hr class="footer"/><address class="footer"><small>
Generated on Thu Jul 31 2014 11:35:51 for PolarSSL v1.3.8 by  <a href="http://www.doxygen.org/index.html">
<img class="footer" src="doxygen.png" alt="doxygen"/>
</a> 1.8.5
</small></address>
</body>
</html>
