PKCS12_decrypt_skey.3ossl - Man Page

PKCS12 shrouded keyBag decrypt functions

Synopsis

 #include <openssl/pkcs12.h>

 PKCS8_PRIV_KEY_INFO *PKCS12_decrypt_skey(const PKCS12_SAFEBAG *bag,
                                          const char *pass, int passlen);
 PKCS8_PRIV_KEY_INFO *PKCS12_decrypt_skey_ex(const PKCS12_SAFEBAG *bag,
                                             const char *pass, int passlen,
                                             OSSL_LIB_CTX *ctx,
                                             const char *propq);

Description

PKCS12_decrypt_skey() Decrypt the PKCS#8 shrouded keybag contained within bag using the supplied password pass of length passlen.

PKCS12_decrypt_skey_ex() is similar to the above but allows for a library contex ctx and property query propq to be used to select algorithm implementations.

Return Values

Both functions will return the decrypted key or NULL if an error occurred.

Conforming to

IETF RFC 7292 (<https://tools.ietf.org/html/rfc7292>)

See Also

PKCS8_decrypt_ex(3), PKCS8_encrypt_ex(3), PKCS12_add_key_ex(3), PKCS12_SAFEBAG_create_pkcs8_encrypt_ex(3)

History

PKCS12_decrypt_skey_ex() was added in OpenSSL 3.0.

Referenced By

migration_guide.7ossl(7).

The man page PKCS12_decrypt_skey_ex.3ossl(3) is an alias of PKCS12_decrypt_skey.3ossl(3).

2022-09-12 3.0.5 OpenSSL