openssl/doc/man3/EVP_PKEY_CTX_new.pod

=pod

=head1 NAME

EVP_PKEY_CTX_new, EVP_PKEY_CTX_new_id, EVP_PKEY_CTX_new_from_name,
EVP_PKEY_CTX_new_from_pkey, EVP_PKEY_CTX_dup, EVP_PKEY_CTX_free,
EVP_PKEY_CTX_is_a
- public key algorithm context functions

=head1 SYNOPSIS

 #include <openssl/evp.h>

 EVP_PKEY_CTX *EVP_PKEY_CTX_new(EVP_PKEY *pkey, ENGINE *e);
 EVP_PKEY_CTX *EVP_PKEY_CTX_new_id(int id, ENGINE *e);
 EVP_PKEY_CTX *EVP_PKEY_CTX_new_from_name(OSSL_LIB_CTX *libctx,
                                          const char *name,
                                          const char *propquery);
 EVP_PKEY_CTX *EVP_PKEY_CTX_new_from_pkey(OSSL_LIB_CTX *libctx,
                                          EVP_PKEY *pkey,
                                          const char *propquery);
 EVP_PKEY_CTX *EVP_PKEY_CTX_dup(const EVP_PKEY_CTX *ctx);
 void EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx);
 int EVP_PKEY_CTX_is_a(EVP_PKEY_CTX *ctx, const char *keytype);

=head1 DESCRIPTION

The EVP_PKEY_CTX_new() function allocates public key algorithm context using
the I<pkey> key type and ENGINE I<e>.

The EVP_PKEY_CTX_new_id() function allocates public key algorithm context
using the key type specified by I<id> and ENGINE I<e>.

The EVP_PKEY_CTX_new_from_name() function allocates a public key algorithm
context using the library context I<libctx> (see L<OSSL_LIB_CTX(3)>), the
key type specified by I<name> and the property query I<propquery>.  None
of the arguments are duplicated, so they  must remain unchanged for the
lifetime of the returned B<EVP_PKEY_CTX> or of any of its duplicates.  Read
further about the possible names in L</NOTES> below.

The EVP_PKEY_CTX_new_from_pkey() function allocates a public key algorithm
context using the library context I<libctx> (see L<OSSL_LIB_CTX(3)>) and the
algorithm specified by I<pkey> and the property query I<propquery>. None of the
arguments are duplicated, so they must remain unchanged for the lifetime of the
returned B<EVP_PKEY_CTX> or any of its duplicates.

EVP_PKEY_CTX_new_id() and EVP_PKEY_CTX_new_from_name() are normally
used when no B<EVP_PKEY> structure is associated with the operations,
for example during parameter generation or key generation for some
algorithms.

EVP_PKEY_CTX_dup() duplicates the context I<ctx>. It is not supported for a
keygen operation.

EVP_PKEY_CTX_free() frees up the context I<ctx>.
If I<ctx> is NULL, nothing is done.

EVP_PKEY_is_a() checks if the key type associated with I<ctx> is I<keytype>.

=head1 NOTES

=head2 On B<EVP_PKEY_CTX>

The B<EVP_PKEY_CTX> structure is an opaque public key algorithm context used
by the OpenSSL high-level public key API. Contexts B<MUST NOT> be shared between
threads: that is it is not permissible to use the same context simultaneously
in two threads.

=head2 On Key Types

We mention "key type" in this manual, which is the same
as "algorithm" in most cases, allowing either term to be used
interchangeably.  There are algorithms where the I<key type> and the
I<algorithm> of the operations that use the keys are not the same,
such as EC keys being used for ECDSA and ECDH operations.

Key types are given in two different manners:

=over 4

=item Legacy NID or EVP_PKEY type

This is the I<id> used with EVP_PKEY_CTX_new_id().

These are B<EVP_PKEY_RSA>, B<EVP_PKEY_RSA_PSS>, B<EVP_PKEY_DSA>,
B<EVP_PKEY_DH>, B<EVP_PKEY_EC>, B<EVP_PKEY_SM2>, B<EVP_PKEY_X25519>,
B<EVP_PKEY_X448>, and are used by legacy methods.

=item Name strings

This is the I<name> used with EVP_PKEY_CTX_new_from_name().

These are names like "RSA", "DSA", and what's available depends on what
providers are currently accessible.

The OpenSSL providers offer a set of key types available this way, please
see L<OSSL_PROVIDER-FIPS(7)> and L<OSSL_PROVIDER-default(7)> and related
documentation for more information.

=back

=head1 RETURN VALUES

EVP_PKEY_CTX_new(), EVP_PKEY_CTX_new_id() and EVP_PKEY_CTX_dup() return either
the newly allocated B<EVP_PKEY_CTX> structure or B<NULL> if an error occurred.

EVP_PKEY_CTX_free() does not return a value.

EVP_PKEY_CTX_is_a() returns 1 for true and 0 for false.

=head1 SEE ALSO

L<EVP_PKEY_new(3)>

=head1 HISTORY

The EVP_PKEY_CTX_new(), EVP_PKEY_CTX_new_id(), EVP_PKEY_CTX_dup() and
EVP_PKEY_CTX_free() functions were added in OpenSSL 1.0.0.

The EVP_PKEY_CTX_new_from_name() and EVP_PKEY_CTX_new_from_pkey() functions were
added in OpenSSL 3.0.

=head1 COPYRIGHT

Copyright 2006-2021 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the Apache License 2.0 (the "License").  You may not use
this file except in compliance with the License.  You can obtain a copy
in the file LICENSE in the source distribution or at
L<https://www.openssl.org/source/license.html>.

=cut
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00			`=pod`

			`=head1 NAME`

Add dsa signature alg to fips provider Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10615) 2020-01-12 09:32:12 +08:00			`EVP_PKEY_CTX_new, EVP_PKEY_CTX_new_id, EVP_PKEY_CTX_new_from_name,`
EVP: Implement EVP_PKEY_CTX_is_a() This does what was previously done by looking at pctx->pmeth->pkey_id, but handles both legacy and provider side contexts, and is supposed to become a replacement for the old way. Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/13913) 2021-02-10 23:55:19 +08:00			`EVP_PKEY_CTX_new_from_pkey, EVP_PKEY_CTX_dup, EVP_PKEY_CTX_free,`
			`EVP_PKEY_CTX_is_a`
Add EVP_PKEY_CTX_new_provided() This works as much as possible EVP_PKEY_CTX_new_id(), except it takes data that's relevant for providers, algorithm name and property query string instead of NID and engine. Additionally, if EVP_PKEY_CTX_new() or EVP_PKEY_CTX_new_id() was called, the algorithm name in the EVP_PKEY context will be set to the short name of the given NID (explicit or the one of the given EVP_PKEY), thereby giving an easier transition from legacy methods to provided methods. The intent is that operations will use this information to fetch provider methods implicitly as needed. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10184) 2019-10-15 19:08:17 +08:00			`- public key algorithm context functions`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
			`=head1 SYNOPSIS`

			`#include <openssl/evp.h>`

			`EVP_PKEY_CTX EVP_PKEY_CTX_new(EVP_PKEY pkey, ENGINE *e);`
			`EVP_PKEY_CTX EVP_PKEY_CTX_new_id(int id, ENGINE e);`
Rename OPENSSL_CTX prefix to OSSL_LIB_CTX Many of the new types introduced by OpenSSL 3.0 have an OSSL_ prefix, e.g., OSSL_CALLBACK, OSSL_PARAM, OSSL_ALGORITHM, OSSL_SERIALIZER. The OPENSSL_CTX type stands out a little by using a different prefix. For consistency reasons, this type is renamed to OSSL_LIB_CTX. Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/12621) 2020-10-15 17:55:50 +08:00			`EVP_PKEY_CTX EVP_PKEY_CTX_new_from_name(OSSL_LIB_CTX libctx,`
Add dsa signature alg to fips provider Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10615) 2020-01-12 09:32:12 +08:00			`const char *name,`
			`const char *propquery);`
Rename OPENSSL_CTX prefix to OSSL_LIB_CTX Many of the new types introduced by OpenSSL 3.0 have an OSSL_ prefix, e.g., OSSL_CALLBACK, OSSL_PARAM, OSSL_ALGORITHM, OSSL_SERIALIZER. The OPENSSL_CTX type stands out a little by using a different prefix. For consistency reasons, this type is renamed to OSSL_LIB_CTX. Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/12621) 2020-10-15 17:55:50 +08:00			`EVP_PKEY_CTX EVP_PKEY_CTX_new_from_pkey(OSSL_LIB_CTX libctx,`
Minor doc fix for EVP_PKEY_CTX_new_from_pkey Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/12021) 2020-06-03 12:28:06 +08:00			`EVP_PKEY *pkey,`
			`const char *propquery);`
constify _dup() and i2d_*() and related functions as far as possible, introducing DECLARE_ASN1_DUP_FUNCTION Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8029) 2019-01-16 04:51:25 +08:00			`EVP_PKEY_CTX EVP_PKEY_CTX_dup(const EVP_PKEY_CTX ctx);`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00			`void EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx);`
EVP: Implement EVP_PKEY_CTX_is_a() This does what was previously done by looking at pctx->pmeth->pkey_id, but handles both legacy and provider side contexts, and is supposed to become a replacement for the old way. Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/13913) 2021-02-10 23:55:19 +08:00			`int EVP_PKEY_CTX_is_a(EVP_PKEY_CTX ctx, const char keytype);`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
			`=head1 DESCRIPTION`

			`The EVP_PKEY_CTX_new() function allocates public key algorithm context using`
EVP: Adapt KEYEXCH, SIGNATURE and ASYM_CIPHER to handle key types better The adaptation is to handle the case when key types and operations that use these keys have different names. For example, EC keys can be used for ECDSA and ECDH. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10647) 2019-12-18 20:24:27 +08:00			`the I<pkey> key type and ENGINE I<e>.`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
			`The EVP_PKEY_CTX_new_id() function allocates public key algorithm context`
EVP: Adapt KEYEXCH, SIGNATURE and ASYM_CIPHER to handle key types better The adaptation is to handle the case when key types and operations that use these keys have different names. For example, EC keys can be used for ECDSA and ECDH. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10647) 2019-12-18 20:24:27 +08:00			`using the key type specified by I<id> and ENGINE I<e>.`
Add EVP_PKEY_CTX_new_provided() This works as much as possible EVP_PKEY_CTX_new_id(), except it takes data that's relevant for providers, algorithm name and property query string instead of NID and engine. Additionally, if EVP_PKEY_CTX_new() or EVP_PKEY_CTX_new_id() was called, the algorithm name in the EVP_PKEY context will be set to the short name of the given NID (explicit or the one of the given EVP_PKEY), thereby giving an easier transition from legacy methods to provided methods. The intent is that operations will use this information to fetch provider methods implicitly as needed. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10184) 2019-10-15 19:08:17 +08:00
Add dsa signature alg to fips provider Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10615) 2020-01-12 09:32:12 +08:00			`The EVP_PKEY_CTX_new_from_name() function allocates a public key algorithm`
Rename OPENSSL_CTX prefix to OSSL_LIB_CTX Many of the new types introduced by OpenSSL 3.0 have an OSSL_ prefix, e.g., OSSL_CALLBACK, OSSL_PARAM, OSSL_ALGORITHM, OSSL_SERIALIZER. The OPENSSL_CTX type stands out a little by using a different prefix. For consistency reasons, this type is renamed to OSSL_LIB_CTX. Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/12621) 2020-10-15 17:55:50 +08:00			`context using the library context I<libctx> (see L<OSSL_LIB_CTX(3)>), the`
EVP: Adapt KEYEXCH, SIGNATURE and ASYM_CIPHER to handle key types better The adaptation is to handle the case when key types and operations that use these keys have different names. For example, EC keys can be used for ECDSA and ECDH. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10647) 2019-12-18 20:24:27 +08:00			`key type specified by I<name> and the property query I<propquery>. None`
Change EVP_PKEY_CTX_new_provided() to take a library context too. With provided algorithms, the library context is ever present, so of course it should be specified alongside the algorithm name and property query string. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10308) 2019-11-01 23:56:31 +08:00			`of the arguments are duplicated, so they must remain unchanged for the`
DOC: Extend the description of EVP_PKEY_CTX_new_from_name() This adds text the should lead the user to documentation on different KEYMGMT implementations. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11220) 2020-03-06 21:55:49 +08:00			`lifetime of the returned B<EVP_PKEY_CTX> or of any of its duplicates. Read`
			`further about the possible names in L</NOTES> below.`
Add EVP_PKEY_CTX_new_provided() This works as much as possible EVP_PKEY_CTX_new_id(), except it takes data that's relevant for providers, algorithm name and property query string instead of NID and engine. Additionally, if EVP_PKEY_CTX_new() or EVP_PKEY_CTX_new_id() was called, the algorithm name in the EVP_PKEY context will be set to the short name of the given NID (explicit or the one of the given EVP_PKEY), thereby giving an easier transition from legacy methods to provided methods. The intent is that operations will use this information to fetch provider methods implicitly as needed. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10184) 2019-10-15 19:08:17 +08:00
Add dsa signature alg to fips provider Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10615) 2020-01-12 09:32:12 +08:00			`The EVP_PKEY_CTX_new_from_pkey() function allocates a public key algorithm`
Rename OPENSSL_CTX prefix to OSSL_LIB_CTX Many of the new types introduced by OpenSSL 3.0 have an OSSL_ prefix, e.g., OSSL_CALLBACK, OSSL_PARAM, OSSL_ALGORITHM, OSSL_SERIALIZER. The OPENSSL_CTX type stands out a little by using a different prefix. For consistency reasons, this type is renamed to OSSL_LIB_CTX. Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/12621) 2020-10-15 17:55:50 +08:00			`context using the library context I<libctx> (see L<OSSL_LIB_CTX(3)>) and the`
Modify EVP_PKEY_CTX_new_from_pkey() to add a propquery parameter The function EVP_PKEY_CTX_new_from_pkey() infers the name of the algorithm to fetch from the EVP_PKEY that has been supplied as an argument. But there was no way to specify properties to be used during that fetch. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10926) 2020-01-15 19:10:43 +08:00			`algorithm specified by I<pkey> and the property query I<propquery>. None of the`
			`arguments are duplicated, so they must remain unchanged for the lifetime of the`
			`returned B<EVP_PKEY_CTX> or any of its duplicates.`
Add dsa signature alg to fips provider Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10615) 2020-01-12 09:32:12 +08:00
			`EVP_PKEY_CTX_new_id() and EVP_PKEY_CTX_new_from_name() are normally`
Add EVP_PKEY_CTX_new_provided() This works as much as possible EVP_PKEY_CTX_new_id(), except it takes data that's relevant for providers, algorithm name and property query string instead of NID and engine. Additionally, if EVP_PKEY_CTX_new() or EVP_PKEY_CTX_new_id() was called, the algorithm name in the EVP_PKEY context will be set to the short name of the given NID (explicit or the one of the given EVP_PKEY), thereby giving an easier transition from legacy methods to provided methods. The intent is that operations will use this information to fetch provider methods implicitly as needed. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10184) 2019-10-15 19:08:17 +08:00			`used when no B<EVP_PKEY> structure is associated with the operations,`
			`for example during parameter generation or key generation for some`
			`algorithms.`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
Fix Segfault in EVP_PKEY_CTX_dup when the ctx has an undefined operation. Fixes #12438 Note: This worked in 1.1.1 so just returning an error is not valid. Reviewed-by: Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/13505) 2020-11-25 13:21:52 +08:00			`EVP_PKEY_CTX_dup() duplicates the context I<ctx>. It is not supported for a`
			`keygen operation.`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
doc/man3/EVP_PKEY_CTX_new.pod: change markup according to conventions Convention source is man-pages(7) Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10184) 2019-10-15 22:55:00 +08:00			`EVP_PKEY_CTX_free() frees up the context I<ctx>.`
			`If I<ctx> is NULL, nothing is done.`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
EVP: Implement EVP_PKEY_CTX_is_a() This does what was previously done by looking at pctx->pmeth->pkey_id, but handles both legacy and provider side contexts, and is supposed to become a replacement for the old way. Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/13913) 2021-02-10 23:55:19 +08:00			`EVP_PKEY_is_a() checks if the key type associated with I<ctx> is I<keytype>.`

Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00			`=head1 NOTES`

DOC: Extend the description of EVP_PKEY_CTX_new_from_name() This adds text the should lead the user to documentation on different KEYMGMT implementations. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11220) 2020-03-06 21:55:49 +08:00			`=head2 On B<EVP_PKEY_CTX>`
EVP: Adapt KEYEXCH, SIGNATURE and ASYM_CIPHER to handle key types better The adaptation is to handle the case when key types and operations that use these keys have different names. For example, EC keys can be used for ECDSA and ECDH. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10647) 2019-12-18 20:24:27 +08:00
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00			`The B<EVP_PKEY_CTX> structure is an opaque public key algorithm context used`
Fix typos and repeated words CLA: trivial Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> (Merged from https://github.com/openssl/openssl/pull/12320) 2020-06-30 03:13:07 +08:00			`by the OpenSSL high-level public key API. Contexts B<MUST NOT> be shared between`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00			`threads: that is it is not permissible to use the same context simultaneously`
			`in two threads.`

DOC: Extend the description of EVP_PKEY_CTX_new_from_name() This adds text the should lead the user to documentation on different KEYMGMT implementations. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11220) 2020-03-06 21:55:49 +08:00			`=head2 On Key Types`
EVP: Adapt KEYEXCH, SIGNATURE and ASYM_CIPHER to handle key types better The adaptation is to handle the case when key types and operations that use these keys have different names. For example, EC keys can be used for ECDSA and ECDH. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10647) 2019-12-18 20:24:27 +08:00
			`We mention "key type" in this manual, which is the same`
			`as "algorithm" in most cases, allowing either term to be used`
			`interchangeably. There are algorithms where the I<key type> and the`
			`I<algorithm> of the operations that use the keys are not the same,`
			`such as EC keys being used for ECDSA and ECDH operations.`

DOC: Extend the description of EVP_PKEY_CTX_new_from_name() This adds text the should lead the user to documentation on different KEYMGMT implementations. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11220) 2020-03-06 21:55:49 +08:00			`Key types are given in two different manners:`

			`=over 4`

			`=item Legacy NID or EVP_PKEY type`

			`This is the I<id> used with EVP_PKEY_CTX_new_id().`

			`These are B<EVP_PKEY_RSA>, B<EVP_PKEY_RSA_PSS>, B<EVP_PKEY_DSA>,`
			`B<EVP_PKEY_DH>, B<EVP_PKEY_EC>, B<EVP_PKEY_SM2>, B<EVP_PKEY_X25519>,`
			`B<EVP_PKEY_X448>, and are used by legacy methods.`

			`=item Name strings`

			`This is the I<name> used with EVP_PKEY_CTX_new_from_name().`

			`These are names like "RSA", "DSA", and what's available depends on what`
			`providers are currently accessible.`

			`The OpenSSL providers offer a set of key types available this way, please`
			`see L<OSSL_PROVIDER-FIPS(7)> and L<OSSL_PROVIDER-default(7)> and related`
			`documentation for more information.`

EVP: Adapt KEYEXCH, SIGNATURE and ASYM_CIPHER to handle key types better The adaptation is to handle the case when key types and operations that use these keys have different names. For example, EC keys can be used for ECDSA and ECDH. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10647) 2019-12-18 20:24:27 +08:00			`=back`

Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00			`=head1 RETURN VALUES`

Fix Segfault in EVP_PKEY_CTX_dup when the ctx has an undefined operation. Fixes #12438 Note: This worked in 1.1.1 so just returning an error is not valid. Reviewed-by: Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/13505) 2020-11-25 13:21:52 +08:00			`EVP_PKEY_CTX_new(), EVP_PKEY_CTX_new_id() and EVP_PKEY_CTX_dup() return either`
Fix some man page typos A few miscellaneous man page typos reported by Hal Murray on openssl-users. Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> (Merged from https://github.com/openssl/openssl/pull/12185) 2020-06-18 16:09:04 +08:00			`the newly allocated B<EVP_PKEY_CTX> structure or B<NULL> if an error occurred.`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
			`EVP_PKEY_CTX_free() does not return a value.`

EVP: Implement EVP_PKEY_CTX_is_a() This does what was previously done by looking at pctx->pmeth->pkey_id, but handles both legacy and provider side contexts, and is supposed to become a replacement for the old way. Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/13913) 2021-02-10 23:55:19 +08:00			`EVP_PKEY_CTX_is_a() returns 1 for true and 0 for false.`

Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00			`=head1 SEE ALSO`

Fix L<> content in manpages L<foo\|foo> is sub-optimal If the xref is the same as the title, which is what we do, then you only need L<foo>. This fixes all 1457 occurrences in 349 files. Approximately. (And pod used to need both.) Reviewed-by: Richard Levitte <levitte@openssl.org> 2015-08-18 03:21:33 +08:00			`L<EVP_PKEY_new(3)>`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
			`=head1 HISTORY`

Add dsa signature alg to fips provider Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/10615) 2020-01-12 09:32:12 +08:00			`The EVP_PKEY_CTX_new(), EVP_PKEY_CTX_new_id(), EVP_PKEY_CTX_dup() and`
			`EVP_PKEY_CTX_free() functions were added in OpenSSL 1.0.0.`

			`The EVP_PKEY_CTX_new_from_name() and EVP_PKEY_CTX_new_from_pkey() functions were`
			`added in OpenSSL 3.0.`
Add some EVP_PKEY_METHOD docs. 2006-07-08 18:45:08 +08:00
Add copyright to manpages Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-18 23:44:05 +08:00			`=head1 COPYRIGHT`

Update copyright year Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14512) 2021-03-11 21:27:36 +08:00			`Copyright 2006-2021 The OpenSSL Project Authors. All Rights Reserved.`
Add copyright to manpages Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-18 23:44:05 +08:00
Following the license change, modify the boilerplates in doc/man3/ [skip ci] Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/7829) 2018-12-06 21:04:44 +08:00			`Licensed under the Apache License 2.0 (the "License"). You may not use`
Add copyright to manpages Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-18 23:44:05 +08:00			`this file except in compliance with the License. You can obtain a copy`
			`in the file LICENSE in the source distribution or at`
			`L<https://www.openssl.org/source/license.html>.`

			`=cut`