hopenssl-2.2: FFI Bindings to OpenSSL's EVP Digest Interface

Maintainersimons@cryp.to
Stabilityprovisional
Portabilityportable
Safe HaskellNone
LanguageHaskell98

OpenSSL.EVP.Digest

Contents

Description

Low-level bindings to OpenSSL's EVP interface. Most users do not need this code. Check out OpenSSL.Digest for a more comfortable interface.

Synopsis

Digest Algorithms

data Algorithm Source #

An opaque handle into OpenSSL's collection of message digest algorithms. Use digestByName to look up any of the available algorithms by name. For the sake of convenience, Algorithm is an instance of IsString so that the compiler can transparently map String literals to algorithms via fromString if the XOverloadedStrings extension is enabled.

>>> fromString "sha256" == digestByName "sha256"
True

digestByName :: String -> Algorithm Source #

Look up a digest algorithm engine by name. Algorithms usually offered by OpenSSL are "md2", "md5", "sha1", "mdc2", "ripemd160", "blake2b512", "blake2s256", "sha224", "sha256", "sha384", and "sha512", but the exact set may vary between platforms. Throws UnknownAlgorithm if the requested algorithm is not known.

digestByName' :: String -> Maybe Algorithm Source #

Variant of digestByName that signals failure by evaluating to Nothing rather than failing.

>>> digestByName' "sha256" == Just (digestByName "sha256")
True
>>> digestByName' "Guess what?" :: Maybe Algorithm
Nothing

digestSize :: Algorithm -> Int Source #

Return the size of the digest in bytes that the given algorithm will produce.

>>> digestSize (digestByName "sha256")
32

maxDigestSize :: Int Source #

The largest possible digest size of any of the algorithms supported by this library will generate. So if you want to store a digest without bothering to retrieve the appropriate size with digestSize first, allocate a buffer of that size.

digestBlockSize :: Algorithm -> Int Source #

Return the block size the the given algorithm operates with.

>>> digestBlockSize (digestByName "sha256")
64

data UnknownAlgorithm Source #

A custom exception type which is thrown by digestByName in case the requested digest algorithm is not available in the OpenSSL system library.

Digest Contexts

data Context Source #

A context for digest computations. Use newContext and freeContext to allocate/deallocate this type.

newContext :: IO Context Source #

Allocate and initialize an Context for use in a digest computation on the heap. Release its underlying memory after use with freeContext.

freeContext :: Context -> IO () Source #

Release all resources associated with a digest computation.

resetDigest :: Context -> IO () Source #

Free all resources associated with this Context, but don't destroy the context itself so that it can be re-used for a new digest computation.

Digest Computations

initDigest :: Algorithm -> Context -> IO () Source #

Configure the given digest context to use the given message digest algorithm. Throws an exception to signal failure, i.e. because the system is out of memory.

updateDigest :: Context -> Ptr a -> CSize -> IO () Source #

Hash the given block of memory and update the digest state accordingly. This function can be called many times. Then use finalizeDigest to retrieve the actual hash value.

finalizeDigest :: Context -> Ptr Word8 -> IO () Source #

Finalize the digest calculation and return the result in the Word8 array passed as an argument. Naturally, that array is expected to be large enough to contain the digest. digestSize or maxDigestSize are your friends. This function does not clean up the digest context; this has to be done with an explicit call to freeContext (or resetContext, if you want to re-use it). However, it does invalidate the digest state so that no further calls of digestUpdate can be made without re-initializing the context first.