Implement Diffie-Hellman computations in crypto backends. (#149)

Not all backends feature the low level API needed to compute a Diffie-Hellman secret, but some of them directly implement Diffie-Hellman support with opaque private data. The later approach is now generalized and backends are responsible for all Diffie Hellman computations. As a side effect, procedures/macros _libssh2_bn_rand and _libssh2_bn_mod_exp are no longer needed outside the backends.
2025-11-20 02:42:09 +03:00 · 2016-11-27 19:39:00 +01:00
parent 5abceec571
commit f7daf3185a
10 changed files with 215 additions and 96 deletions
--- a/src/kex.c
+++ b/src/kex.c
@@ -98,44 +98,6 @@
            }                                                              \
    }

-/*
- * Generic Diffie-Hellman computation support.
- *
- * DH context should be a _libssh2_bn *.
- */
-
-#ifndef libssh2_dh_key_pair
-static void libssh2_dh_init(_libssh2_dh_ctx *dhctx)
-{
-    *dhctx = _libssh2_bn_init();                    /* Random from client */
-}
-
-static int libssh2_dh_key_pair(_libssh2_dh_ctx *dhctx, _libssh2_bn *public,
-                               _libssh2_bn *g, _libssh2_bn *p, int group_order,
-                               _libssh2_bn_ctx *bnctx)
-{
-    /* Generate x and e */
-    _libssh2_bn_rand(*dhctx, group_order * 8 - 1, 0, -1);
-    _libssh2_bn_mod_exp(public, g, *dhctx, p, bnctx);
-    return 0;
-}
-
-static int libssh2_dh_secret(_libssh2_dh_ctx *dhctx, _libssh2_bn *secret,
-                             _libssh2_bn *f, _libssh2_bn *p,
-                             _libssh2_bn_ctx * bnctx)
-{
-    /* Compute the shared secret */
-    _libssh2_bn_mod_exp(secret, f, *dhctx, p, bnctx);
-    return 0;
-}
-
-static void libssh2_dh_dtor(_libssh2_dh_ctx *dhctx)
-{
-    _libssh2_bn_free(*dhctx);
-    *dhctx = NULL;
-}
-#endif
-

 /*
 * diffie_hellman_sha1