NAME

       PKCS12_decrypt_skey, PKCS12_decrypt_skey_ex - PKCS12 shrouded keyBag decrypt functions

SYNOPSIS

        #include <openssl/pkcs12.h>

        PKCS8_PRIV_KEY_INFO *PKCS12_decrypt_skey(const PKCS12_SAFEBAG *bag,
                                                 const char *pass, int passlen);
        PKCS8_PRIV_KEY_INFO *PKCS12_decrypt_skey_ex(const PKCS12_SAFEBAG *bag,
                                                    const char *pass, int passlen,
                                                    OSSL_LIB_CTX *ctx,
                                                    const char *propq);

DESCRIPTION

       PKCS12_decrypt_skey() Decrypt the PKCS#8 shrouded keybag contained within bag using the supplied password
       pass of length passlen.

       PKCS12_decrypt_skey_ex() is similar to the above but allows for a library context ctx and property query
       propq to be used to select algorithm implementations.

RETURN VALUES

       Both functions will return the decrypted key or NULL if an error occurred.

CONFORMING TO

       IETF RFC 7292 (<https://tools.ietf.org/html/rfc7292>)

SEE ALSO

       PKCS8_decrypt_ex(3), PKCS8_encrypt_ex(3), PKCS12_add_key_ex(3), PKCS12_SAFEBAG_create_pkcs8_encrypt_ex(3)

HISTORY

       PKCS12_decrypt_skey_ex() was added in OpenSSL 3.0.

COPYRIGHT

       Copyright 2021-2023 The OpenSSL Project Authors. All Rights Reserved.

       Licensed under the Apache License 2.0 (the "License").  You may not use this file except in compliance
       with the License.  You can obtain a copy in the file LICENSE in the source distribution or at
       <https://www.openssl.org/source/license.html>.

3.0.13                                             2025-09-18                          PKCS12_DECRYPT_SKEY(3SSL)