5 EVP_PKEY_missing_parameters, EVP_PKEY_copy_parameters, EVP_PKEY_parameters_eq,
6 EVP_PKEY_cmp_parameters, EVP_PKEY_eq,
7 EVP_PKEY_cmp - public key parameter and comparison functions
11 #include <openssl/evp.h>
13 int EVP_PKEY_missing_parameters(const EVP_PKEY *pkey);
14 int EVP_PKEY_copy_parameters(EVP_PKEY *to, const EVP_PKEY *from);
16 int EVP_PKEY_parameters_eq(const EVP_PKEY *a, const EVP_PKEY *b);
17 int EVP_PKEY_eq(const EVP_PKEY *a, const EVP_PKEY *b);
19 The following functions have been deprecated since OpenSSL 3.0, and can be
20 hidden entirely by defining B<OPENSSL_API_COMPAT> with a suitable version value,
21 see L<openssl_user_macros(7)>:
23 int EVP_PKEY_cmp_parameters(const EVP_PKEY *a, const EVP_PKEY *b);
24 int EVP_PKEY_cmp(const EVP_PKEY *a, const EVP_PKEY *b);
28 The function EVP_PKEY_missing_parameters() returns 1 if the public key
29 parameters of B<pkey> are missing and 0 if they are present or the algorithm
30 doesn't use parameters.
32 The function EVP_PKEY_copy_parameters() copies the parameters from key
33 B<from> to key B<to>. An error is returned if the parameters are missing in
34 B<from> or present in both B<from> and B<to> and mismatch. If the parameters
35 in B<from> and B<to> are both present and match this function has no effect.
37 The function EVP_PKEY_parameters_eq() checks the parameters of keys
38 B<a> and B<b> for equality.
40 The function EVP_PKEY_eq() checks the keys B<a> and B<b> for equality,
41 including their parameters if they are available.
45 The main purpose of the functions EVP_PKEY_missing_parameters() and
46 EVP_PKEY_copy_parameters() is to handle public keys in certificates where the
47 parameters are sometimes omitted from a public key if they are inherited from
48 the CA that signed it.
50 The deprecated functions EVP_PKEY_cmp() and EVP_PKEY_cmp_parameters() differ in
51 their return values compared to other _cmp() functions. They are aliases for
52 EVP_PKEY_eq() and EVP_PKEY_parameters_eq().
54 The function EVP_PKEY_cmp() previously only checked the key parameters
55 (if there are any) and the public key, assuming that there always was
56 a public key and that private key equality could be derived from that.
57 Because it's no longer assumed that the private key in an L<EVP_PKEY(3)> is
58 always accompanied by a public key, the comparison can not rely on public
61 Instead, EVP_PKEY_eq() (and therefore also EVP_PKEY_cmp()) now compares:
67 the key parameters (if there are any)
71 the public keys or the private keys of the two B<EVP_PKEY>s, depending on
72 what they both contain.
78 Exactly what is compared is ultimately at the discretion of the provider
79 that holds the key, as they will compare what makes sense to them that fits
80 the selector bits they are passed.
86 The function EVP_PKEY_missing_parameters() returns 1 if the public key
87 parameters of B<pkey> are missing and 0 if they are present or the algorithm
88 doesn't use parameters.
90 These functions EVP_PKEY_copy_parameters() returns 1 for success and 0 for
93 The functions EVP_PKEY_cmp_parameters(), EVP_PKEY_parameters_eq(),
94 EVP_PKEY_cmp() and EVP_PKEY_eq() return 1 if their
95 inputs match, 0 if they don't match, -1 if the key types are different and
96 -2 if the operation is not supported.
100 L<EVP_PKEY_CTX_new(3)>,
101 L<EVP_PKEY_keygen(3)>
105 The EVP_PKEY_cmp() and EVP_PKEY_cmp_parameters() functions were deprecated in
108 The EVP_PKEY_eq() and EVP_PKEY_parameters_eq() were added in OpenSSL 3.0 to
109 replace EVP_PKEY_cmp() and EVP_PKEY_cmp_parameters().
113 Copyright 2006-2021 The OpenSSL Project Authors. All Rights Reserved.
115 Licensed under the Apache License 2.0 (the "License"). You may not use
116 this file except in compliance with the License. You can obtain a copy
117 in the file LICENSE in the source distribution or at
118 L<https://www.openssl.org/source/license.html>.
projects / openssl.git / blob