[thirdparty/openssl.git] / doc / man3 / EVP_PKEY_get_default_digest_nid.pod

=pod

=head1 NAME

EVP_PKEY_get_default_digest_nid, EVP_PKEY_get_default_digest_name
- get default signature digest

=head1 SYNOPSIS

 #include <openssl/evp.h>

 int EVP_PKEY_get_default_digest_name(EVP_PKEY *pkey,
                                      char *mdname, size_t mdname_sz)
 int EVP_PKEY_get_default_digest_nid(EVP_PKEY *pkey, int *pnid);

=head1 DESCRIPTION

EVP_PKEY_get_default_digest_name() fills in the default message digest
name for the public key signature operations associated with key
I<pkey> into I<mdname>, up to at most I<mdname_sz> bytes including the
ending NUL byte.  The name could be C<"UNDEF">, signifying that no digest
should be used.

EVP_PKEY_get_default_digest_nid() sets I<pnid> to the default message
digest NID for the public key signature operations associated with key
I<pkey>.  Note that some signature algorithms (i.e. Ed25519 and Ed448)
do not use a digest during signing.  In this case I<pnid> will be set
to NID_undef.  This function is only reliable for legacy keys, which
are keys with a B<EVP_PKEY_ASN1_METHOD>; these keys have typically
been loaded from engines, or created with L<EVP_PKEY_assign_RSA(3)> or
similar.

=head1 NOTES

For all current standard OpenSSL public key algorithms SHA256 is returned.

=head1 RETURN VALUES

EVP_PKEY_get_default_digest_name() and EVP_PKEY_get_default_digest_nid()
both return 1 if the message digest is advisory (that is other digests
can be used) and 2 if it is mandatory (other digests can not be used).
They return 0 or a negative value for failure.  In particular a return
value of -2 indicates the operation is not supported by the public key
algorithm.

=head1 SEE ALSO

L<EVP_PKEY_CTX_new(3)>,
L<EVP_PKEY_sign(3)>,
L<EVP_PKEY_supports_digest_nid(3)>,
L<EVP_PKEY_verify(3)>,
L<EVP_PKEY_verify_recover(3)>,

=head1 HISTORY

This function was added in OpenSSL 1.0.0.

=head1 COPYRIGHT

Copyright 2006-2020 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the Apache License 2.0 (the "License").  You may not use
this file except in compliance with the License.  You can obtain a copy
in the file LICENSE in the source distribution or at
L<https://www.openssl.org/source/license.html>.

=cut
Commit	Line	Data
7441052b DSH	1	=pod
	2
	3	=head1 NAME
	4
ead0d234 RL	5	EVP_PKEY_get_default_digest_nid, EVP_PKEY_get_default_digest_name
ead0d234 RL	6	- get default signature digest
7441052b DSH	7
	8	=head1 SYNOPSIS
	9
	10	#include <openssl/evp.h>
ead0d234 RL	11
	12	int EVP_PKEY_get_default_digest_name(EVP_PKEY *pkey,
	13	char *mdname, size_t mdname_sz)
7441052b DSH	14	int EVP_PKEY_get_default_digest_nid(EVP_PKEY pkey, int pnid);
	15
	16	=head1 DESCRIPTION
	17
ead0d234 RL	18	EVP_PKEY_get_default_digest_name() fills in the default message digest
	19	name for the public key signature operations associated with key
	20	I<pkey> into I<mdname>, up to at most I<mdname_sz> bytes including the
3b924da0 RL	21	ending NUL byte. The name could be C<"UNDEF">, signifying that no digest
3b924da0 RL	22	should be used.
ead0d234 RL	23
	24	EVP_PKEY_get_default_digest_nid() sets I<pnid> to the default message
	25	digest NID for the public key signature operations associated with key
	26	I<pkey>. Note that some signature algorithms (i.e. Ed25519 and Ed448)
	27	do not use a digest during signing. In this case I<pnid> will be set
	28	to NID_undef. This function is only reliable for legacy keys, which
	29	are keys with a B<EVP_PKEY_ASN1_METHOD>; these keys have typically
	30	been loaded from engines, or created with L<EVP_PKEY_assign_RSA(3)> or
	31	similar.
7441052b DSH	32
	33	=head1 NOTES
	34
ecbb2fca	35	For all current standard OpenSSL public key algorithms SHA256 is returned.
7441052b DSH	36
	37	=head1 RETURN VALUES
	38
ead0d234 RL	39	EVP_PKEY_get_default_digest_name() and EVP_PKEY_get_default_digest_nid()
	40	both return 1 if the message digest is advisory (that is other digests
	41	can be used) and 2 if it is mandatory (other digests can not be used).
	42	They return 0 or a negative value for failure. In particular a return
	43	value of -2 indicates the operation is not supported by the public key
	44	algorithm.
7441052b DSH	45
	46	=head1 SEE ALSO
	47
9b86974e RS	48	L<EVP_PKEY_CTX_new(3)>,
9b86974e RS	49	L<EVP_PKEY_sign(3)>,
ecbb2fca	50	L<EVP_PKEY_supports_digest_nid(3)>,
9b86974e RS	51	L<EVP_PKEY_verify(3)>,
9b86974e RS	52	L<EVP_PKEY_verify_recover(3)>,
7441052b DSH	53
	54	=head1 HISTORY
	55
fc5ecadd	56	This function was added in OpenSSL 1.0.0.
7441052b	57
e2f92610 RS	58	=head1 COPYRIGHT
e2f92610 RS	59
33388b44	60	Copyright 2006-2020 The OpenSSL Project Authors. All Rights Reserved.
e2f92610	61
4746f25a	62	Licensed under the Apache License 2.0 (the "License"). You may not use
e2f92610 RS	63	this file except in compliance with the License. You can obtain a copy
	64	in the file LICENSE in the source distribution or at
	65	L<https://www.openssl.org/source/license.html>.
	66
	67	=cut