An implementation of the Diffie-Hellman key exchange protocol based on discrete logarithms in finite fields, the same basis that DSA is built on.
Accessor methods for the Diffie-Hellman parameters
DH#p |
The prime (an OpenSSL::BN) of the Diffie-Hellman parameters. |
DH#g |
The generator (an OpenSSL::BN) g of the Diffie-Hellman parameters. |
DH#pub_key |
The per-session public key (an OpenSSL::BN) matching the private key. This needs to be passed to DH#compute_key. |
DH#priv_key |
The per-session private key, an OpenSSL::BN. |
Example of a key exchange
dh1 = OpenSSL::PKey::DH.new(2048) der = dh1.public_key.to_der #you may send this publicly to the participating party dh2 = OpenSSL::PKey::DH.new(der) dh2.generate_key! #generate the per-session key pair symm_key1 = dh1.compute_key(dh2.pub_key) symm_key2 = dh2.compute_key(dh1.pub_key) puts symm_key1 == symm_key2 # => true
Constants
DEFAULT_1024 = new <<-_end_of_pem_\n-----BEGIN DH PARAMETERS-----\nMIGHAoGBAJ0lOVy0VIr/JebWn0zDwY2h+rqITFOpdNr6ugsgvkDXuucdcChhYExJ\nAV/ZD2AWPbrTqV76mGRgJg4EddgT1zG0jq3rnFdMj2XzkBYx3BVvfR0Arnby0RHR\nT4h7KZ/2zmjvV+eF8kBUHBJAojUlzxKj4QeO2x20FP9X5xmNUXeDAgEC\n-----END DH PARAMETERS-----\n_end_of_pem_
DEFAULT_2048 = new <<-_end_of_pem_\n-----BEGIN DH PARAMETERS-----\nMIIBCAKCAQEA7E6kBrYiyvmKAMzQ7i8WvwVk9Y/+f8S7sCTN712KkK3cqd1jhJDY\nJbrYeNV3kUIKhPxWHhObHKpD1R84UpL+s2b55+iMd6GmL7OYmNIT/FccKhTcveab\nVBmZT86BZKYyf45hUF9FOuUM9xPzuK3Vd8oJQvfYMCd7LPC0taAEljQLR4Edf8E6\nYoaOffgTf5qxiwkjnlVZQc3whgnEt9FpVMvQ9eknyeGB5KHfayAc3+hUAvI3/Cr3\n1bNveX5wInh5GDx1FGhKBZ+s1H+aedudCm7sCgRwv8lKWYGiHzObSma8A86KG+MD\n7Lo5JquQ3DlBodj3IDyPrxIv96lvRPFtAwIBAg==\n-----END DH PARAMETERS-----\n_end_of_pem_
Files
- ext/openssl/lib/openssl/pkey.rb
- ext/openssl/ossl_pkey.c