CRYPT-DSAGEN(2) CRYPT-DSAGEN(2) NAME crypt: dsagen, eggen, rsagen, rsafill, rsaencrypt, rsadecrypt - specific public key systems SYNOPSIS include "ipints.m"; ipints := load IPints IPints->PATH; IPint: import ipints; include "crypt.m"; crypt := load Crypt Crypt->PATH; dsagen: fn(oldpk: ref PK.DSA): ref SK.DSA; eggen: fn(nlen: int, nrep: int): ref SK.Elgamal; rsagen: fn(nlen: int, elen: int, nrep: int): ref SK.RSA; rsafill: fn(n: ref IPint, ek: ref IPint, dk: ref IPint, p: ref IPint, q: ref IPint): ref SK.RSA; rsaencrypt: fn(k: ref PK.RSA, m: ref IPint): ref IPint; rsadecrypt: fn(k: ref SK.RSA, m: ref IPint): ref IPint; DESCRIPTION Crypt-gensk(2) describes a set of functions that generate public/private key pairs given an algorithm name and a key length. Some key types allow further parameters for key generation or support further operations. Dsagen generates a DSA public/private key pair, represented by the pick adt SK.DSA, and compatible with the containing type SK. If the parameter oldpk is not nil, dsagen takes the new key's modulus and group order from the existing key; otherwise it generates a new pair of primes. Eggen generates a new El-Gamal key pair, represented by the pick adt SK.Elgamal. Nlen is the length of the modulus; nrep is the number of repetitions of the Miller-Rabin pri- mality test (0 gives the default, currently 18). Rsagen generates an RSA public/private key pair, represented by the pick adt SK.RSA, and compatible with the containing type SK. Nlen gives the length of the key modulus in bits; elen gives the exponent length in bits; and nrep is as above. The RSA private key representation used by Inferno includes some extra values to speed computation. Rsagen provides those values but keys imported from other systems might not. Given the essential set of RSA private key parameters for a given key, represented as IPints, rsafill returns a suitable Page 1 Plan 9 (printed 12/22/24) CRYPT-DSAGEN(2) CRYPT-DSAGEN(2) SK.RSA for that key, including the extra values. The public key of type PK.RSA can be extracted from a given private key value sk by referencing the field sk.pk. Rsaencrypt encrypts a message m, represented by an IPint, using the public key pk. Rsadecrypt decrypts m using private key sk. The result is again returned as an IPint. SEE ALSO crypt-gensk(2), crypt-sha1(2), security-auth(2), security- oldauth(2) Page 2 Plan 9 (printed 12/22/24)