2
0

engine.h 40 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842
  1. /* openssl/engine.h */
  2. /* Written by Geoff Thorpe (geoff@geoffthorpe.net) for the OpenSSL
  3. * project 2000.
  4. */
  5. /* ====================================================================
  6. * Copyright (c) 1999-2004 The OpenSSL Project. All rights reserved.
  7. *
  8. * Redistribution and use in source and binary forms, with or without
  9. * modification, are permitted provided that the following conditions
  10. * are met:
  11. *
  12. * 1. Redistributions of source code must retain the above copyright
  13. * notice, this list of conditions and the following disclaimer.
  14. *
  15. * 2. Redistributions in binary form must reproduce the above copyright
  16. * notice, this list of conditions and the following disclaimer in
  17. * the documentation and/or other materials provided with the
  18. * distribution.
  19. *
  20. * 3. All advertising materials mentioning features or use of this
  21. * software must display the following acknowledgment:
  22. * "This product includes software developed by the OpenSSL Project
  23. * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
  24. *
  25. * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  26. * endorse or promote products derived from this software without
  27. * prior written permission. For written permission, please contact
  28. * licensing@OpenSSL.org.
  29. *
  30. * 5. Products derived from this software may not be called "OpenSSL"
  31. * nor may "OpenSSL" appear in their names without prior written
  32. * permission of the OpenSSL Project.
  33. *
  34. * 6. Redistributions of any form whatsoever must retain the following
  35. * acknowledgment:
  36. * "This product includes software developed by the OpenSSL Project
  37. * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
  38. *
  39. * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  40. * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  41. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  42. * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
  43. * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  44. * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  45. * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  46. * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  47. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  48. * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  49. * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  50. * OF THE POSSIBILITY OF SUCH DAMAGE.
  51. * ====================================================================
  52. *
  53. * This product includes cryptographic software written by Eric Young
  54. * (eay@cryptsoft.com). This product includes software written by Tim
  55. * Hudson (tjh@cryptsoft.com).
  56. *
  57. */
  58. /* ====================================================================
  59. * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED.
  60. * ECDH support in OpenSSL originally developed by
  61. * SUN MICROSYSTEMS, INC., and contributed to the OpenSSL project.
  62. */
  63. #ifndef HEADER_ENGINE_H
  64. #define HEADER_ENGINE_H
  65. #include <openssl/opensslconf.h>
  66. #ifdef OPENSSL_NO_ENGINE
  67. #error ENGINE is disabled.
  68. #endif
  69. #ifndef OPENSSL_NO_DEPRECATED
  70. #include <openssl/bn.h>
  71. #ifndef OPENSSL_NO_RSA
  72. #include <openssl/rsa.h>
  73. #endif
  74. #ifndef OPENSSL_NO_DSA
  75. #include <openssl/dsa.h>
  76. #endif
  77. #ifndef OPENSSL_NO_DH
  78. #include <openssl/dh.h>
  79. #endif
  80. #ifndef OPENSSL_NO_ECDH
  81. #include <openssl/ecdh.h>
  82. #endif
  83. #ifndef OPENSSL_NO_ECDSA
  84. #include <openssl/ecdsa.h>
  85. #endif
  86. #include <openssl/rand.h>
  87. #include <openssl/ui.h>
  88. #include <openssl/err.h>
  89. #endif
  90. #include <openssl/ossl_typ.h>
  91. #include <openssl/symhacks.h>
  92. #include <openssl/x509.h>
  93. #ifdef __cplusplus
  94. extern "C" {
  95. #endif
  96. /* These flags are used to control combinations of algorithm (methods)
  97. * by bitwise "OR"ing. */
  98. #define ENGINE_METHOD_RSA (unsigned int)0x0001
  99. #define ENGINE_METHOD_DSA (unsigned int)0x0002
  100. #define ENGINE_METHOD_DH (unsigned int)0x0004
  101. #define ENGINE_METHOD_RAND (unsigned int)0x0008
  102. #define ENGINE_METHOD_ECDH (unsigned int)0x0010
  103. #define ENGINE_METHOD_ECDSA (unsigned int)0x0020
  104. #define ENGINE_METHOD_CIPHERS (unsigned int)0x0040
  105. #define ENGINE_METHOD_DIGESTS (unsigned int)0x0080
  106. #define ENGINE_METHOD_STORE (unsigned int)0x0100
  107. #define ENGINE_METHOD_PKEY_METHS (unsigned int)0x0200
  108. #define ENGINE_METHOD_PKEY_ASN1_METHS (unsigned int)0x0400
  109. /* Obvious all-or-nothing cases. */
  110. #define ENGINE_METHOD_ALL (unsigned int)0xFFFF
  111. #define ENGINE_METHOD_NONE (unsigned int)0x0000
  112. /* This(ese) flag(s) controls behaviour of the ENGINE_TABLE mechanism used
  113. * internally to control registration of ENGINE implementations, and can be set
  114. * by ENGINE_set_table_flags(). The "NOINIT" flag prevents attempts to
  115. * initialise registered ENGINEs if they are not already initialised. */
  116. #define ENGINE_TABLE_FLAG_NOINIT (unsigned int)0x0001
  117. /* ENGINE flags that can be set by ENGINE_set_flags(). */
  118. /* #define ENGINE_FLAGS_MALLOCED 0x0001 */ /* Not used */
  119. /* This flag is for ENGINEs that wish to handle the various 'CMD'-related
  120. * control commands on their own. Without this flag, ENGINE_ctrl() handles these
  121. * control commands on behalf of the ENGINE using their "cmd_defns" data. */
  122. #define ENGINE_FLAGS_MANUAL_CMD_CTRL (int)0x0002
  123. /* This flag is for ENGINEs who return new duplicate structures when found via
  124. * "ENGINE_by_id()". When an ENGINE must store state (eg. if ENGINE_ctrl()
  125. * commands are called in sequence as part of some stateful process like
  126. * key-generation setup and execution), it can set this flag - then each attempt
  127. * to obtain the ENGINE will result in it being copied into a new structure.
  128. * Normally, ENGINEs don't declare this flag so ENGINE_by_id() just increments
  129. * the existing ENGINE's structural reference count. */
  130. #define ENGINE_FLAGS_BY_ID_COPY (int)0x0004
  131. /* This flag if for an ENGINE that does not want its methods registered as
  132. * part of ENGINE_register_all_complete() for example if the methods are
  133. * not usable as default methods.
  134. */
  135. #define ENGINE_FLAGS_NO_REGISTER_ALL (int)0x0008
  136. /* ENGINEs can support their own command types, and these flags are used in
  137. * ENGINE_CTRL_GET_CMD_FLAGS to indicate to the caller what kind of input each
  138. * command expects. Currently only numeric and string input is supported. If a
  139. * control command supports none of the _NUMERIC, _STRING, or _NO_INPUT options,
  140. * then it is regarded as an "internal" control command - and not for use in
  141. * config setting situations. As such, they're not available to the
  142. * ENGINE_ctrl_cmd_string() function, only raw ENGINE_ctrl() access. Changes to
  143. * this list of 'command types' should be reflected carefully in
  144. * ENGINE_cmd_is_executable() and ENGINE_ctrl_cmd_string(). */
  145. /* accepts a 'long' input value (3rd parameter to ENGINE_ctrl) */
  146. #define ENGINE_CMD_FLAG_NUMERIC (unsigned int)0x0001
  147. /* accepts string input (cast from 'void*' to 'const char *', 4th parameter to
  148. * ENGINE_ctrl) */
  149. #define ENGINE_CMD_FLAG_STRING (unsigned int)0x0002
  150. /* Indicates that the control command takes *no* input. Ie. the control command
  151. * is unparameterised. */
  152. #define ENGINE_CMD_FLAG_NO_INPUT (unsigned int)0x0004
  153. /* Indicates that the control command is internal. This control command won't
  154. * be shown in any output, and is only usable through the ENGINE_ctrl_cmd()
  155. * function. */
  156. #define ENGINE_CMD_FLAG_INTERNAL (unsigned int)0x0008
  157. /* NB: These 3 control commands are deprecated and should not be used. ENGINEs
  158. * relying on these commands should compile conditional support for
  159. * compatibility (eg. if these symbols are defined) but should also migrate the
  160. * same functionality to their own ENGINE-specific control functions that can be
  161. * "discovered" by calling applications. The fact these control commands
  162. * wouldn't be "executable" (ie. usable by text-based config) doesn't change the
  163. * fact that application code can find and use them without requiring per-ENGINE
  164. * hacking. */
  165. /* These flags are used to tell the ctrl function what should be done.
  166. * All command numbers are shared between all engines, even if some don't
  167. * make sense to some engines. In such a case, they do nothing but return
  168. * the error ENGINE_R_CTRL_COMMAND_NOT_IMPLEMENTED. */
  169. #define ENGINE_CTRL_SET_LOGSTREAM 1
  170. #define ENGINE_CTRL_SET_PASSWORD_CALLBACK 2
  171. #define ENGINE_CTRL_HUP 3 /* Close and reinitialise any
  172. handles/connections etc. */
  173. #define ENGINE_CTRL_SET_USER_INTERFACE 4 /* Alternative to callback */
  174. #define ENGINE_CTRL_SET_CALLBACK_DATA 5 /* User-specific data, used
  175. when calling the password
  176. callback and the user
  177. interface */
  178. #define ENGINE_CTRL_LOAD_CONFIGURATION 6 /* Load a configuration, given
  179. a string that represents a
  180. file name or so */
  181. #define ENGINE_CTRL_LOAD_SECTION 7 /* Load data from a given
  182. section in the already loaded
  183. configuration */
  184. /* These control commands allow an application to deal with an arbitrary engine
  185. * in a dynamic way. Warn: Negative return values indicate errors FOR THESE
  186. * COMMANDS because zero is used to indicate 'end-of-list'. Other commands,
  187. * including ENGINE-specific command types, return zero for an error.
  188. *
  189. * An ENGINE can choose to implement these ctrl functions, and can internally
  190. * manage things however it chooses - it does so by setting the
  191. * ENGINE_FLAGS_MANUAL_CMD_CTRL flag (using ENGINE_set_flags()). Otherwise the
  192. * ENGINE_ctrl() code handles this on the ENGINE's behalf using the cmd_defns
  193. * data (set using ENGINE_set_cmd_defns()). This means an ENGINE's ctrl()
  194. * handler need only implement its own commands - the above "meta" commands will
  195. * be taken care of. */
  196. /* Returns non-zero if the supplied ENGINE has a ctrl() handler. If "not", then
  197. * all the remaining control commands will return failure, so it is worth
  198. * checking this first if the caller is trying to "discover" the engine's
  199. * capabilities and doesn't want errors generated unnecessarily. */
  200. #define ENGINE_CTRL_HAS_CTRL_FUNCTION 10
  201. /* Returns a positive command number for the first command supported by the
  202. * engine. Returns zero if no ctrl commands are supported. */
  203. #define ENGINE_CTRL_GET_FIRST_CMD_TYPE 11
  204. /* The 'long' argument specifies a command implemented by the engine, and the
  205. * return value is the next command supported, or zero if there are no more. */
  206. #define ENGINE_CTRL_GET_NEXT_CMD_TYPE 12
  207. /* The 'void*' argument is a command name (cast from 'const char *'), and the
  208. * return value is the command that corresponds to it. */
  209. #define ENGINE_CTRL_GET_CMD_FROM_NAME 13
  210. /* The next two allow a command to be converted into its corresponding string
  211. * form. In each case, the 'long' argument supplies the command. In the NAME_LEN
  212. * case, the return value is the length of the command name (not counting a
  213. * trailing EOL). In the NAME case, the 'void*' argument must be a string buffer
  214. * large enough, and it will be populated with the name of the command (WITH a
  215. * trailing EOL). */
  216. #define ENGINE_CTRL_GET_NAME_LEN_FROM_CMD 14
  217. #define ENGINE_CTRL_GET_NAME_FROM_CMD 15
  218. /* The next two are similar but give a "short description" of a command. */
  219. #define ENGINE_CTRL_GET_DESC_LEN_FROM_CMD 16
  220. #define ENGINE_CTRL_GET_DESC_FROM_CMD 17
  221. /* With this command, the return value is the OR'd combination of
  222. * ENGINE_CMD_FLAG_*** values that indicate what kind of input a given
  223. * engine-specific ctrl command expects. */
  224. #define ENGINE_CTRL_GET_CMD_FLAGS 18
  225. /* ENGINE implementations should start the numbering of their own control
  226. * commands from this value. (ie. ENGINE_CMD_BASE, ENGINE_CMD_BASE + 1, etc). */
  227. #define ENGINE_CMD_BASE 200
  228. /* NB: These 2 nCipher "chil" control commands are deprecated, and their
  229. * functionality is now available through ENGINE-specific control commands
  230. * (exposed through the above-mentioned 'CMD'-handling). Code using these 2
  231. * commands should be migrated to the more general command handling before these
  232. * are removed. */
  233. /* Flags specific to the nCipher "chil" engine */
  234. #define ENGINE_CTRL_CHIL_SET_FORKCHECK 100
  235. /* Depending on the value of the (long)i argument, this sets or
  236. * unsets the SimpleForkCheck flag in the CHIL API to enable or
  237. * disable checking and workarounds for applications that fork().
  238. */
  239. #define ENGINE_CTRL_CHIL_NO_LOCKING 101
  240. /* This prevents the initialisation function from providing mutex
  241. * callbacks to the nCipher library. */
  242. /* If an ENGINE supports its own specific control commands and wishes the
  243. * framework to handle the above 'ENGINE_CMD_***'-manipulation commands on its
  244. * behalf, it should supply a null-terminated array of ENGINE_CMD_DEFN entries
  245. * to ENGINE_set_cmd_defns(). It should also implement a ctrl() handler that
  246. * supports the stated commands (ie. the "cmd_num" entries as described by the
  247. * array). NB: The array must be ordered in increasing order of cmd_num.
  248. * "null-terminated" means that the last ENGINE_CMD_DEFN element has cmd_num set
  249. * to zero and/or cmd_name set to NULL. */
  250. typedef struct ENGINE_CMD_DEFN_st
  251. {
  252. unsigned int cmd_num; /* The command number */
  253. const char *cmd_name; /* The command name itself */
  254. const char *cmd_desc; /* A short description of the command */
  255. unsigned int cmd_flags; /* The input the command expects */
  256. } ENGINE_CMD_DEFN;
  257. /* Generic function pointer */
  258. typedef int (*ENGINE_GEN_FUNC_PTR)(void);
  259. /* Generic function pointer taking no arguments */
  260. typedef int (*ENGINE_GEN_INT_FUNC_PTR)(ENGINE *);
  261. /* Specific control function pointer */
  262. typedef int (*ENGINE_CTRL_FUNC_PTR)(ENGINE *, int, long, void *, void (*f)(void));
  263. /* Generic load_key function pointer */
  264. typedef EVP_PKEY * (*ENGINE_LOAD_KEY_PTR)(ENGINE *, const char *,
  265. UI_METHOD *ui_method, void *callback_data);
  266. typedef int (*ENGINE_SSL_CLIENT_CERT_PTR)(ENGINE *, SSL *ssl,
  267. STACK_OF(X509_NAME) *ca_dn, X509 **pcert, EVP_PKEY **pkey,
  268. STACK_OF(X509) **pother, UI_METHOD *ui_method, void *callback_data);
  269. /* These callback types are for an ENGINE's handler for cipher and digest logic.
  270. * These handlers have these prototypes;
  271. * int foo(ENGINE *e, const EVP_CIPHER **cipher, const int **nids, int nid);
  272. * int foo(ENGINE *e, const EVP_MD **digest, const int **nids, int nid);
  273. * Looking at how to implement these handlers in the case of cipher support, if
  274. * the framework wants the EVP_CIPHER for 'nid', it will call;
  275. * foo(e, &p_evp_cipher, NULL, nid); (return zero for failure)
  276. * If the framework wants a list of supported 'nid's, it will call;
  277. * foo(e, NULL, &p_nids, 0); (returns number of 'nids' or -1 for error)
  278. */
  279. /* Returns to a pointer to the array of supported cipher 'nid's. If the second
  280. * parameter is non-NULL it is set to the size of the returned array. */
  281. typedef int (*ENGINE_CIPHERS_PTR)(ENGINE *, const EVP_CIPHER **, const int **, int);
  282. typedef int (*ENGINE_DIGESTS_PTR)(ENGINE *, const EVP_MD **, const int **, int);
  283. typedef int (*ENGINE_PKEY_METHS_PTR)(ENGINE *, EVP_PKEY_METHOD **, const int **, int);
  284. typedef int (*ENGINE_PKEY_ASN1_METHS_PTR)(ENGINE *, EVP_PKEY_ASN1_METHOD **, const int **, int);
  285. /* STRUCTURE functions ... all of these functions deal with pointers to ENGINE
  286. * structures where the pointers have a "structural reference". This means that
  287. * their reference is to allowed access to the structure but it does not imply
  288. * that the structure is functional. To simply increment or decrement the
  289. * structural reference count, use ENGINE_by_id and ENGINE_free. NB: This is not
  290. * required when iterating using ENGINE_get_next as it will automatically
  291. * decrement the structural reference count of the "current" ENGINE and
  292. * increment the structural reference count of the ENGINE it returns (unless it
  293. * is NULL). */
  294. /* Get the first/last "ENGINE" type available. */
  295. ENGINE *ENGINE_get_first(void);
  296. ENGINE *ENGINE_get_last(void);
  297. /* Iterate to the next/previous "ENGINE" type (NULL = end of the list). */
  298. ENGINE *ENGINE_get_next(ENGINE *e);
  299. ENGINE *ENGINE_get_prev(ENGINE *e);
  300. /* Add another "ENGINE" type into the array. */
  301. int ENGINE_add(ENGINE *e);
  302. /* Remove an existing "ENGINE" type from the array. */
  303. int ENGINE_remove(ENGINE *e);
  304. /* Retrieve an engine from the list by its unique "id" value. */
  305. ENGINE *ENGINE_by_id(const char *id);
  306. /* Add all the built-in engines. */
  307. void ENGINE_load_openssl(void);
  308. void ENGINE_load_dynamic(void);
  309. #ifndef OPENSSL_NO_STATIC_ENGINE
  310. void ENGINE_load_4758cca(void);
  311. void ENGINE_load_aep(void);
  312. void ENGINE_load_atalla(void);
  313. void ENGINE_load_chil(void);
  314. void ENGINE_load_cswift(void);
  315. void ENGINE_load_nuron(void);
  316. void ENGINE_load_sureware(void);
  317. void ENGINE_load_ubsec(void);
  318. void ENGINE_load_padlock(void);
  319. void ENGINE_load_capi(void);
  320. #ifndef OPENSSL_NO_GMP
  321. void ENGINE_load_gmp(void);
  322. #endif
  323. #ifndef OPENSSL_NO_GOST
  324. void ENGINE_load_gost(void);
  325. #endif
  326. #endif
  327. void ENGINE_load_cryptodev(void);
  328. void ENGINE_load_rsax(void);
  329. void ENGINE_load_rdrand(void);
  330. void ENGINE_load_builtin_engines(void);
  331. /* Get and set global flags (ENGINE_TABLE_FLAG_***) for the implementation
  332. * "registry" handling. */
  333. unsigned int ENGINE_get_table_flags(void);
  334. void ENGINE_set_table_flags(unsigned int flags);
  335. /* Manage registration of ENGINEs per "table". For each type, there are 3
  336. * functions;
  337. * ENGINE_register_***(e) - registers the implementation from 'e' (if it has one)
  338. * ENGINE_unregister_***(e) - unregister the implementation from 'e'
  339. * ENGINE_register_all_***() - call ENGINE_register_***() for each 'e' in the list
  340. * Cleanup is automatically registered from each table when required, so
  341. * ENGINE_cleanup() will reverse any "register" operations. */
  342. int ENGINE_register_RSA(ENGINE *e);
  343. void ENGINE_unregister_RSA(ENGINE *e);
  344. void ENGINE_register_all_RSA(void);
  345. int ENGINE_register_DSA(ENGINE *e);
  346. void ENGINE_unregister_DSA(ENGINE *e);
  347. void ENGINE_register_all_DSA(void);
  348. int ENGINE_register_ECDH(ENGINE *e);
  349. void ENGINE_unregister_ECDH(ENGINE *e);
  350. void ENGINE_register_all_ECDH(void);
  351. int ENGINE_register_ECDSA(ENGINE *e);
  352. void ENGINE_unregister_ECDSA(ENGINE *e);
  353. void ENGINE_register_all_ECDSA(void);
  354. int ENGINE_register_DH(ENGINE *e);
  355. void ENGINE_unregister_DH(ENGINE *e);
  356. void ENGINE_register_all_DH(void);
  357. int ENGINE_register_RAND(ENGINE *e);
  358. void ENGINE_unregister_RAND(ENGINE *e);
  359. void ENGINE_register_all_RAND(void);
  360. int ENGINE_register_STORE(ENGINE *e);
  361. void ENGINE_unregister_STORE(ENGINE *e);
  362. void ENGINE_register_all_STORE(void);
  363. int ENGINE_register_ciphers(ENGINE *e);
  364. void ENGINE_unregister_ciphers(ENGINE *e);
  365. void ENGINE_register_all_ciphers(void);
  366. int ENGINE_register_digests(ENGINE *e);
  367. void ENGINE_unregister_digests(ENGINE *e);
  368. void ENGINE_register_all_digests(void);
  369. int ENGINE_register_pkey_meths(ENGINE *e);
  370. void ENGINE_unregister_pkey_meths(ENGINE *e);
  371. void ENGINE_register_all_pkey_meths(void);
  372. int ENGINE_register_pkey_asn1_meths(ENGINE *e);
  373. void ENGINE_unregister_pkey_asn1_meths(ENGINE *e);
  374. void ENGINE_register_all_pkey_asn1_meths(void);
  375. /* These functions register all support from the above categories. Note, use of
  376. * these functions can result in static linkage of code your application may not
  377. * need. If you only need a subset of functionality, consider using more
  378. * selective initialisation. */
  379. int ENGINE_register_complete(ENGINE *e);
  380. int ENGINE_register_all_complete(void);
  381. /* Send parametrised control commands to the engine. The possibilities to send
  382. * down an integer, a pointer to data or a function pointer are provided. Any of
  383. * the parameters may or may not be NULL, depending on the command number. In
  384. * actuality, this function only requires a structural (rather than functional)
  385. * reference to an engine, but many control commands may require the engine be
  386. * functional. The caller should be aware of trying commands that require an
  387. * operational ENGINE, and only use functional references in such situations. */
  388. int ENGINE_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void));
  389. /* This function tests if an ENGINE-specific command is usable as a "setting".
  390. * Eg. in an application's config file that gets processed through
  391. * ENGINE_ctrl_cmd_string(). If this returns zero, it is not available to
  392. * ENGINE_ctrl_cmd_string(), only ENGINE_ctrl(). */
  393. int ENGINE_cmd_is_executable(ENGINE *e, int cmd);
  394. /* This function works like ENGINE_ctrl() with the exception of taking a
  395. * command name instead of a command number, and can handle optional commands.
  396. * See the comment on ENGINE_ctrl_cmd_string() for an explanation on how to
  397. * use the cmd_name and cmd_optional. */
  398. int ENGINE_ctrl_cmd(ENGINE *e, const char *cmd_name,
  399. long i, void *p, void (*f)(void), int cmd_optional);
  400. /* This function passes a command-name and argument to an ENGINE. The cmd_name
  401. * is converted to a command number and the control command is called using
  402. * 'arg' as an argument (unless the ENGINE doesn't support such a command, in
  403. * which case no control command is called). The command is checked for input
  404. * flags, and if necessary the argument will be converted to a numeric value. If
  405. * cmd_optional is non-zero, then if the ENGINE doesn't support the given
  406. * cmd_name the return value will be success anyway. This function is intended
  407. * for applications to use so that users (or config files) can supply
  408. * engine-specific config data to the ENGINE at run-time to control behaviour of
  409. * specific engines. As such, it shouldn't be used for calling ENGINE_ctrl()
  410. * functions that return data, deal with binary data, or that are otherwise
  411. * supposed to be used directly through ENGINE_ctrl() in application code. Any
  412. * "return" data from an ENGINE_ctrl() operation in this function will be lost -
  413. * the return value is interpreted as failure if the return value is zero,
  414. * success otherwise, and this function returns a boolean value as a result. In
  415. * other words, vendors of 'ENGINE'-enabled devices should write ENGINE
  416. * implementations with parameterisations that work in this scheme, so that
  417. * compliant ENGINE-based applications can work consistently with the same
  418. * configuration for the same ENGINE-enabled devices, across applications. */
  419. int ENGINE_ctrl_cmd_string(ENGINE *e, const char *cmd_name, const char *arg,
  420. int cmd_optional);
  421. /* These functions are useful for manufacturing new ENGINE structures. They
  422. * don't address reference counting at all - one uses them to populate an ENGINE
  423. * structure with personalised implementations of things prior to using it
  424. * directly or adding it to the builtin ENGINE list in OpenSSL. These are also
  425. * here so that the ENGINE structure doesn't have to be exposed and break binary
  426. * compatibility! */
  427. ENGINE *ENGINE_new(void);
  428. int ENGINE_free(ENGINE *e);
  429. int ENGINE_up_ref(ENGINE *e);
  430. int ENGINE_set_id(ENGINE *e, const char *id);
  431. int ENGINE_set_name(ENGINE *e, const char *name);
  432. int ENGINE_set_RSA(ENGINE *e, const RSA_METHOD *rsa_meth);
  433. int ENGINE_set_DSA(ENGINE *e, const DSA_METHOD *dsa_meth);
  434. int ENGINE_set_ECDH(ENGINE *e, const ECDH_METHOD *ecdh_meth);
  435. int ENGINE_set_ECDSA(ENGINE *e, const ECDSA_METHOD *ecdsa_meth);
  436. int ENGINE_set_DH(ENGINE *e, const DH_METHOD *dh_meth);
  437. int ENGINE_set_RAND(ENGINE *e, const RAND_METHOD *rand_meth);
  438. int ENGINE_set_STORE(ENGINE *e, const STORE_METHOD *store_meth);
  439. int ENGINE_set_destroy_function(ENGINE *e, ENGINE_GEN_INT_FUNC_PTR destroy_f);
  440. int ENGINE_set_init_function(ENGINE *e, ENGINE_GEN_INT_FUNC_PTR init_f);
  441. int ENGINE_set_finish_function(ENGINE *e, ENGINE_GEN_INT_FUNC_PTR finish_f);
  442. int ENGINE_set_ctrl_function(ENGINE *e, ENGINE_CTRL_FUNC_PTR ctrl_f);
  443. int ENGINE_set_load_privkey_function(ENGINE *e, ENGINE_LOAD_KEY_PTR loadpriv_f);
  444. int ENGINE_set_load_pubkey_function(ENGINE *e, ENGINE_LOAD_KEY_PTR loadpub_f);
  445. int ENGINE_set_load_ssl_client_cert_function(ENGINE *e,
  446. ENGINE_SSL_CLIENT_CERT_PTR loadssl_f);
  447. int ENGINE_set_ciphers(ENGINE *e, ENGINE_CIPHERS_PTR f);
  448. int ENGINE_set_digests(ENGINE *e, ENGINE_DIGESTS_PTR f);
  449. int ENGINE_set_pkey_meths(ENGINE *e, ENGINE_PKEY_METHS_PTR f);
  450. int ENGINE_set_pkey_asn1_meths(ENGINE *e, ENGINE_PKEY_ASN1_METHS_PTR f);
  451. int ENGINE_set_flags(ENGINE *e, int flags);
  452. int ENGINE_set_cmd_defns(ENGINE *e, const ENGINE_CMD_DEFN *defns);
  453. /* These functions allow control over any per-structure ENGINE data. */
  454. int ENGINE_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func,
  455. CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func);
  456. int ENGINE_set_ex_data(ENGINE *e, int idx, void *arg);
  457. void *ENGINE_get_ex_data(const ENGINE *e, int idx);
  458. /* This function cleans up anything that needs it. Eg. the ENGINE_add() function
  459. * automatically ensures the list cleanup function is registered to be called
  460. * from ENGINE_cleanup(). Similarly, all ENGINE_register_*** functions ensure
  461. * ENGINE_cleanup() will clean up after them. */
  462. void ENGINE_cleanup(void);
  463. /* These return values from within the ENGINE structure. These can be useful
  464. * with functional references as well as structural references - it depends
  465. * which you obtained. Using the result for functional purposes if you only
  466. * obtained a structural reference may be problematic! */
  467. const char *ENGINE_get_id(const ENGINE *e);
  468. const char *ENGINE_get_name(const ENGINE *e);
  469. const RSA_METHOD *ENGINE_get_RSA(const ENGINE *e);
  470. const DSA_METHOD *ENGINE_get_DSA(const ENGINE *e);
  471. const ECDH_METHOD *ENGINE_get_ECDH(const ENGINE *e);
  472. const ECDSA_METHOD *ENGINE_get_ECDSA(const ENGINE *e);
  473. const DH_METHOD *ENGINE_get_DH(const ENGINE *e);
  474. const RAND_METHOD *ENGINE_get_RAND(const ENGINE *e);
  475. const STORE_METHOD *ENGINE_get_STORE(const ENGINE *e);
  476. ENGINE_GEN_INT_FUNC_PTR ENGINE_get_destroy_function(const ENGINE *e);
  477. ENGINE_GEN_INT_FUNC_PTR ENGINE_get_init_function(const ENGINE *e);
  478. ENGINE_GEN_INT_FUNC_PTR ENGINE_get_finish_function(const ENGINE *e);
  479. ENGINE_CTRL_FUNC_PTR ENGINE_get_ctrl_function(const ENGINE *e);
  480. ENGINE_LOAD_KEY_PTR ENGINE_get_load_privkey_function(const ENGINE *e);
  481. ENGINE_LOAD_KEY_PTR ENGINE_get_load_pubkey_function(const ENGINE *e);
  482. ENGINE_SSL_CLIENT_CERT_PTR ENGINE_get_ssl_client_cert_function(const ENGINE *e);
  483. ENGINE_CIPHERS_PTR ENGINE_get_ciphers(const ENGINE *e);
  484. ENGINE_DIGESTS_PTR ENGINE_get_digests(const ENGINE *e);
  485. ENGINE_PKEY_METHS_PTR ENGINE_get_pkey_meths(const ENGINE *e);
  486. ENGINE_PKEY_ASN1_METHS_PTR ENGINE_get_pkey_asn1_meths(const ENGINE *e);
  487. const EVP_CIPHER *ENGINE_get_cipher(ENGINE *e, int nid);
  488. const EVP_MD *ENGINE_get_digest(ENGINE *e, int nid);
  489. const EVP_PKEY_METHOD *ENGINE_get_pkey_meth(ENGINE *e, int nid);
  490. const EVP_PKEY_ASN1_METHOD *ENGINE_get_pkey_asn1_meth(ENGINE *e, int nid);
  491. const EVP_PKEY_ASN1_METHOD *ENGINE_get_pkey_asn1_meth_str(ENGINE *e,
  492. const char *str, int len);
  493. const EVP_PKEY_ASN1_METHOD *ENGINE_pkey_asn1_find_str(ENGINE **pe,
  494. const char *str, int len);
  495. const ENGINE_CMD_DEFN *ENGINE_get_cmd_defns(const ENGINE *e);
  496. int ENGINE_get_flags(const ENGINE *e);
  497. /* FUNCTIONAL functions. These functions deal with ENGINE structures
  498. * that have (or will) be initialised for use. Broadly speaking, the
  499. * structural functions are useful for iterating the list of available
  500. * engine types, creating new engine types, and other "list" operations.
  501. * These functions actually deal with ENGINEs that are to be used. As
  502. * such these functions can fail (if applicable) when particular
  503. * engines are unavailable - eg. if a hardware accelerator is not
  504. * attached or not functioning correctly. Each ENGINE has 2 reference
  505. * counts; structural and functional. Every time a functional reference
  506. * is obtained or released, a corresponding structural reference is
  507. * automatically obtained or released too. */
  508. /* Initialise a engine type for use (or up its reference count if it's
  509. * already in use). This will fail if the engine is not currently
  510. * operational and cannot initialise. */
  511. int ENGINE_init(ENGINE *e);
  512. /* Free a functional reference to a engine type. This does not require
  513. * a corresponding call to ENGINE_free as it also releases a structural
  514. * reference. */
  515. int ENGINE_finish(ENGINE *e);
  516. /* The following functions handle keys that are stored in some secondary
  517. * location, handled by the engine. The storage may be on a card or
  518. * whatever. */
  519. EVP_PKEY *ENGINE_load_private_key(ENGINE *e, const char *key_id,
  520. UI_METHOD *ui_method, void *callback_data);
  521. EVP_PKEY *ENGINE_load_public_key(ENGINE *e, const char *key_id,
  522. UI_METHOD *ui_method, void *callback_data);
  523. int ENGINE_load_ssl_client_cert(ENGINE *e, SSL *s,
  524. STACK_OF(X509_NAME) *ca_dn, X509 **pcert, EVP_PKEY **ppkey,
  525. STACK_OF(X509) **pother,
  526. UI_METHOD *ui_method, void *callback_data);
  527. /* This returns a pointer for the current ENGINE structure that
  528. * is (by default) performing any RSA operations. The value returned
  529. * is an incremented reference, so it should be free'd (ENGINE_finish)
  530. * before it is discarded. */
  531. ENGINE *ENGINE_get_default_RSA(void);
  532. /* Same for the other "methods" */
  533. ENGINE *ENGINE_get_default_DSA(void);
  534. ENGINE *ENGINE_get_default_ECDH(void);
  535. ENGINE *ENGINE_get_default_ECDSA(void);
  536. ENGINE *ENGINE_get_default_DH(void);
  537. ENGINE *ENGINE_get_default_RAND(void);
  538. /* These functions can be used to get a functional reference to perform
  539. * ciphering or digesting corresponding to "nid". */
  540. ENGINE *ENGINE_get_cipher_engine(int nid);
  541. ENGINE *ENGINE_get_digest_engine(int nid);
  542. ENGINE *ENGINE_get_pkey_meth_engine(int nid);
  543. ENGINE *ENGINE_get_pkey_asn1_meth_engine(int nid);
  544. /* This sets a new default ENGINE structure for performing RSA
  545. * operations. If the result is non-zero (success) then the ENGINE
  546. * structure will have had its reference count up'd so the caller
  547. * should still free their own reference 'e'. */
  548. int ENGINE_set_default_RSA(ENGINE *e);
  549. int ENGINE_set_default_string(ENGINE *e, const char *def_list);
  550. /* Same for the other "methods" */
  551. int ENGINE_set_default_DSA(ENGINE *e);
  552. int ENGINE_set_default_ECDH(ENGINE *e);
  553. int ENGINE_set_default_ECDSA(ENGINE *e);
  554. int ENGINE_set_default_DH(ENGINE *e);
  555. int ENGINE_set_default_RAND(ENGINE *e);
  556. int ENGINE_set_default_ciphers(ENGINE *e);
  557. int ENGINE_set_default_digests(ENGINE *e);
  558. int ENGINE_set_default_pkey_meths(ENGINE *e);
  559. int ENGINE_set_default_pkey_asn1_meths(ENGINE *e);
  560. /* The combination "set" - the flags are bitwise "OR"d from the
  561. * ENGINE_METHOD_*** defines above. As with the "ENGINE_register_complete()"
  562. * function, this function can result in unnecessary static linkage. If your
  563. * application requires only specific functionality, consider using more
  564. * selective functions. */
  565. int ENGINE_set_default(ENGINE *e, unsigned int flags);
  566. void ENGINE_add_conf_module(void);
  567. /* Deprecated functions ... */
  568. /* int ENGINE_clear_defaults(void); */
  569. /**************************/
  570. /* DYNAMIC ENGINE SUPPORT */
  571. /**************************/
  572. /* Binary/behaviour compatibility levels */
  573. #define OSSL_DYNAMIC_VERSION (unsigned long)0x00020000
  574. /* Binary versions older than this are too old for us (whether we're a loader or
  575. * a loadee) */
  576. #define OSSL_DYNAMIC_OLDEST (unsigned long)0x00020000
  577. /* When compiling an ENGINE entirely as an external shared library, loadable by
  578. * the "dynamic" ENGINE, these types are needed. The 'dynamic_fns' structure
  579. * type provides the calling application's (or library's) error functionality
  580. * and memory management function pointers to the loaded library. These should
  581. * be used/set in the loaded library code so that the loading application's
  582. * 'state' will be used/changed in all operations. The 'static_state' pointer
  583. * allows the loaded library to know if it shares the same static data as the
  584. * calling application (or library), and thus whether these callbacks need to be
  585. * set or not. */
  586. typedef void *(*dyn_MEM_malloc_cb)(size_t);
  587. typedef void *(*dyn_MEM_realloc_cb)(void *, size_t);
  588. typedef void (*dyn_MEM_free_cb)(void *);
  589. typedef struct st_dynamic_MEM_fns {
  590. dyn_MEM_malloc_cb malloc_cb;
  591. dyn_MEM_realloc_cb realloc_cb;
  592. dyn_MEM_free_cb free_cb;
  593. } dynamic_MEM_fns;
  594. /* FIXME: Perhaps the memory and locking code (crypto.h) should declare and use
  595. * these types so we (and any other dependant code) can simplify a bit?? */
  596. typedef void (*dyn_lock_locking_cb)(int,int,const char *,int);
  597. typedef int (*dyn_lock_add_lock_cb)(int*,int,int,const char *,int);
  598. typedef struct CRYPTO_dynlock_value *(*dyn_dynlock_create_cb)(
  599. const char *,int);
  600. typedef void (*dyn_dynlock_lock_cb)(int,struct CRYPTO_dynlock_value *,
  601. const char *,int);
  602. typedef void (*dyn_dynlock_destroy_cb)(struct CRYPTO_dynlock_value *,
  603. const char *,int);
  604. typedef struct st_dynamic_LOCK_fns {
  605. dyn_lock_locking_cb lock_locking_cb;
  606. dyn_lock_add_lock_cb lock_add_lock_cb;
  607. dyn_dynlock_create_cb dynlock_create_cb;
  608. dyn_dynlock_lock_cb dynlock_lock_cb;
  609. dyn_dynlock_destroy_cb dynlock_destroy_cb;
  610. } dynamic_LOCK_fns;
  611. /* The top-level structure */
  612. typedef struct st_dynamic_fns {
  613. void *static_state;
  614. const ERR_FNS *err_fns;
  615. const CRYPTO_EX_DATA_IMPL *ex_data_fns;
  616. dynamic_MEM_fns mem_fns;
  617. dynamic_LOCK_fns lock_fns;
  618. } dynamic_fns;
  619. /* The version checking function should be of this prototype. NB: The
  620. * ossl_version value passed in is the OSSL_DYNAMIC_VERSION of the loading code.
  621. * If this function returns zero, it indicates a (potential) version
  622. * incompatibility and the loaded library doesn't believe it can proceed.
  623. * Otherwise, the returned value is the (latest) version supported by the
  624. * loading library. The loader may still decide that the loaded code's version
  625. * is unsatisfactory and could veto the load. The function is expected to
  626. * be implemented with the symbol name "v_check", and a default implementation
  627. * can be fully instantiated with IMPLEMENT_DYNAMIC_CHECK_FN(). */
  628. typedef unsigned long (*dynamic_v_check_fn)(unsigned long ossl_version);
  629. #define IMPLEMENT_DYNAMIC_CHECK_FN() \
  630. OPENSSL_EXPORT unsigned long v_check(unsigned long v); \
  631. OPENSSL_EXPORT unsigned long v_check(unsigned long v) { \
  632. if(v >= OSSL_DYNAMIC_OLDEST) return OSSL_DYNAMIC_VERSION; \
  633. return 0; }
  634. /* This function is passed the ENGINE structure to initialise with its own
  635. * function and command settings. It should not adjust the structural or
  636. * functional reference counts. If this function returns zero, (a) the load will
  637. * be aborted, (b) the previous ENGINE state will be memcpy'd back onto the
  638. * structure, and (c) the shared library will be unloaded. So implementations
  639. * should do their own internal cleanup in failure circumstances otherwise they
  640. * could leak. The 'id' parameter, if non-NULL, represents the ENGINE id that
  641. * the loader is looking for. If this is NULL, the shared library can choose to
  642. * return failure or to initialise a 'default' ENGINE. If non-NULL, the shared
  643. * library must initialise only an ENGINE matching the passed 'id'. The function
  644. * is expected to be implemented with the symbol name "bind_engine". A standard
  645. * implementation can be instantiated with IMPLEMENT_DYNAMIC_BIND_FN(fn) where
  646. * the parameter 'fn' is a callback function that populates the ENGINE structure
  647. * and returns an int value (zero for failure). 'fn' should have prototype;
  648. * [static] int fn(ENGINE *e, const char *id); */
  649. typedef int (*dynamic_bind_engine)(ENGINE *e, const char *id,
  650. const dynamic_fns *fns);
  651. #define IMPLEMENT_DYNAMIC_BIND_FN(fn) \
  652. OPENSSL_EXPORT \
  653. int bind_engine(ENGINE *e, const char *id, const dynamic_fns *fns); \
  654. OPENSSL_EXPORT \
  655. int bind_engine(ENGINE *e, const char *id, const dynamic_fns *fns) { \
  656. if(ENGINE_get_static_state() == fns->static_state) goto skip_cbs; \
  657. if(!CRYPTO_set_mem_functions(fns->mem_fns.malloc_cb, \
  658. fns->mem_fns.realloc_cb, fns->mem_fns.free_cb)) \
  659. return 0; \
  660. CRYPTO_set_locking_callback(fns->lock_fns.lock_locking_cb); \
  661. CRYPTO_set_add_lock_callback(fns->lock_fns.lock_add_lock_cb); \
  662. CRYPTO_set_dynlock_create_callback(fns->lock_fns.dynlock_create_cb); \
  663. CRYPTO_set_dynlock_lock_callback(fns->lock_fns.dynlock_lock_cb); \
  664. CRYPTO_set_dynlock_destroy_callback(fns->lock_fns.dynlock_destroy_cb); \
  665. if(!CRYPTO_set_ex_data_implementation(fns->ex_data_fns)) \
  666. return 0; \
  667. if(!ERR_set_implementation(fns->err_fns)) return 0; \
  668. skip_cbs: \
  669. if(!fn(e,id)) return 0; \
  670. return 1; }
  671. /* If the loading application (or library) and the loaded ENGINE library share
  672. * the same static data (eg. they're both dynamically linked to the same
  673. * libcrypto.so) we need a way to avoid trying to set system callbacks - this
  674. * would fail, and for the same reason that it's unnecessary to try. If the
  675. * loaded ENGINE has (or gets from through the loader) its own copy of the
  676. * libcrypto static data, we will need to set the callbacks. The easiest way to
  677. * detect this is to have a function that returns a pointer to some static data
  678. * and let the loading application and loaded ENGINE compare their respective
  679. * values. */
  680. void *ENGINE_get_static_state(void);
  681. #if defined(__OpenBSD__) || defined(__FreeBSD__)
  682. void ENGINE_setup_bsd_cryptodev(void);
  683. #endif
  684. /* BEGIN ERROR CODES */
  685. /* The following lines are auto generated by the script mkerr.pl. Any changes
  686. * made after this point may be overwritten when the script is next run.
  687. */
  688. void ERR_load_ENGINE_strings(void);
  689. /* Error codes for the ENGINE functions. */
  690. /* Function codes. */
  691. #define ENGINE_F_DYNAMIC_CTRL 180
  692. #define ENGINE_F_DYNAMIC_GET_DATA_CTX 181
  693. #define ENGINE_F_DYNAMIC_LOAD 182
  694. #define ENGINE_F_DYNAMIC_SET_DATA_CTX 183
  695. #define ENGINE_F_ENGINE_ADD 105
  696. #define ENGINE_F_ENGINE_BY_ID 106
  697. #define ENGINE_F_ENGINE_CMD_IS_EXECUTABLE 170
  698. #define ENGINE_F_ENGINE_CTRL 142
  699. #define ENGINE_F_ENGINE_CTRL_CMD 178
  700. #define ENGINE_F_ENGINE_CTRL_CMD_STRING 171
  701. #define ENGINE_F_ENGINE_FINISH 107
  702. #define ENGINE_F_ENGINE_FREE_UTIL 108
  703. #define ENGINE_F_ENGINE_GET_CIPHER 185
  704. #define ENGINE_F_ENGINE_GET_DEFAULT_TYPE 177
  705. #define ENGINE_F_ENGINE_GET_DIGEST 186
  706. #define ENGINE_F_ENGINE_GET_NEXT 115
  707. #define ENGINE_F_ENGINE_GET_PKEY_ASN1_METH 193
  708. #define ENGINE_F_ENGINE_GET_PKEY_METH 192
  709. #define ENGINE_F_ENGINE_GET_PREV 116
  710. #define ENGINE_F_ENGINE_INIT 119
  711. #define ENGINE_F_ENGINE_LIST_ADD 120
  712. #define ENGINE_F_ENGINE_LIST_REMOVE 121
  713. #define ENGINE_F_ENGINE_LOAD_PRIVATE_KEY 150
  714. #define ENGINE_F_ENGINE_LOAD_PUBLIC_KEY 151
  715. #define ENGINE_F_ENGINE_LOAD_SSL_CLIENT_CERT 194
  716. #define ENGINE_F_ENGINE_NEW 122
  717. #define ENGINE_F_ENGINE_REMOVE 123
  718. #define ENGINE_F_ENGINE_SET_DEFAULT_STRING 189
  719. #define ENGINE_F_ENGINE_SET_DEFAULT_TYPE 126
  720. #define ENGINE_F_ENGINE_SET_ID 129
  721. #define ENGINE_F_ENGINE_SET_NAME 130
  722. #define ENGINE_F_ENGINE_TABLE_REGISTER 184
  723. #define ENGINE_F_ENGINE_UNLOAD_KEY 152
  724. #define ENGINE_F_ENGINE_UNLOCKED_FINISH 191
  725. #define ENGINE_F_ENGINE_UP_REF 190
  726. #define ENGINE_F_INT_CTRL_HELPER 172
  727. #define ENGINE_F_INT_ENGINE_CONFIGURE 188
  728. #define ENGINE_F_INT_ENGINE_MODULE_INIT 187
  729. #define ENGINE_F_LOG_MESSAGE 141
  730. /* Reason codes. */
  731. #define ENGINE_R_ALREADY_LOADED 100
  732. #define ENGINE_R_ARGUMENT_IS_NOT_A_NUMBER 133
  733. #define ENGINE_R_CMD_NOT_EXECUTABLE 134
  734. #define ENGINE_R_COMMAND_TAKES_INPUT 135
  735. #define ENGINE_R_COMMAND_TAKES_NO_INPUT 136
  736. #define ENGINE_R_CONFLICTING_ENGINE_ID 103
  737. #define ENGINE_R_CTRL_COMMAND_NOT_IMPLEMENTED 119
  738. #define ENGINE_R_DH_NOT_IMPLEMENTED 139
  739. #define ENGINE_R_DSA_NOT_IMPLEMENTED 140
  740. #define ENGINE_R_DSO_FAILURE 104
  741. #define ENGINE_R_DSO_NOT_FOUND 132
  742. #define ENGINE_R_ENGINES_SECTION_ERROR 148
  743. #define ENGINE_R_ENGINE_CONFIGURATION_ERROR 102
  744. #define ENGINE_R_ENGINE_IS_NOT_IN_LIST 105
  745. #define ENGINE_R_ENGINE_SECTION_ERROR 149
  746. #define ENGINE_R_FAILED_LOADING_PRIVATE_KEY 128
  747. #define ENGINE_R_FAILED_LOADING_PUBLIC_KEY 129
  748. #define ENGINE_R_FINISH_FAILED 106
  749. #define ENGINE_R_GET_HANDLE_FAILED 107
  750. #define ENGINE_R_ID_OR_NAME_MISSING 108
  751. #define ENGINE_R_INIT_FAILED 109
  752. #define ENGINE_R_INTERNAL_LIST_ERROR 110
  753. #define ENGINE_R_INVALID_ARGUMENT 143
  754. #define ENGINE_R_INVALID_CMD_NAME 137
  755. #define ENGINE_R_INVALID_CMD_NUMBER 138
  756. #define ENGINE_R_INVALID_INIT_VALUE 151
  757. #define ENGINE_R_INVALID_STRING 150
  758. #define ENGINE_R_NOT_INITIALISED 117
  759. #define ENGINE_R_NOT_LOADED 112
  760. #define ENGINE_R_NO_CONTROL_FUNCTION 120
  761. #define ENGINE_R_NO_INDEX 144
  762. #define ENGINE_R_NO_LOAD_FUNCTION 125
  763. #define ENGINE_R_NO_REFERENCE 130
  764. #define ENGINE_R_NO_SUCH_ENGINE 116
  765. #define ENGINE_R_NO_UNLOAD_FUNCTION 126
  766. #define ENGINE_R_PROVIDE_PARAMETERS 113
  767. #define ENGINE_R_RSA_NOT_IMPLEMENTED 141
  768. #define ENGINE_R_UNIMPLEMENTED_CIPHER 146
  769. #define ENGINE_R_UNIMPLEMENTED_DIGEST 147
  770. #define ENGINE_R_UNIMPLEMENTED_PUBLIC_KEY_METHOD 101
  771. #define ENGINE_R_VERSION_INCOMPATIBILITY 145
  772. #ifdef __cplusplus
  773. }
  774. #endif
  775. #endif