new X25519(3) manual page;

from Dr. Stephen Henson <steve@openssl.org>, OpenSSL commit d218f3c3
author: schwarze <> 2017-04-10 17:45:06 +0000
committer: schwarze <> 2017-04-10 17:45:06 +0000
commit: c163c62659b97e5b32b33c12c507cc2d25f2fa30 (patch)
tree: cd5b8b17586a959f9683f184663517be18dd13d9
parent: 8bea6e7211234af80b7a52972d3c14596a38c767 (diff)
download: openbsd-c163c62659b97e5b32b33c12c507cc2d25f2fa30.tar.gz
openbsd-c163c62659b97e5b32b33c12c507cc2d25f2fa30.tar.bz2
openbsd-c163c62659b97e5b32b33c12c507cc2d25f2fa30.zip
5 files changed, 113 insertions, 10 deletions
diff --git a/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3 b/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3
index d08ce022b0..72c0e36d5e 100644
--- a/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3
+++ b/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: EVP_PKEY_CTX_new.3,v 1.4 2016/11/27 15:22:00 schwarze Exp $
+.\"     $OpenBSD: EVP_PKEY_CTX_new.3,v 1.5 2017/04/10 17:45:06 schwarze Exp $
 .\"     OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
 .\"
 .\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
@@ -48,7 +48,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: November 27 2016 $
+.Dd $Mdocdate: April 10 2017 $
 .Dt EVP_PKEY_CTX_NEW 3
 .Os
 .Sh NAME
@@ -123,7 +123,8 @@ structure or
 .Dv NULL
 if an error occurred.
 .Sh SEE ALSO
-.Xr EVP_PKEY_new 3
+.Xr EVP_PKEY_new 3 ,
+.Xr X25519 3
 .Sh HISTORY
 These functions were first added to OpenSSL 1.0.0.
 .Sh CAVEATS
diff --git a/src/lib/libcrypto/man/EVP_PKEY_derive.3 b/src/lib/libcrypto/man/EVP_PKEY_derive.3
index 1e40fdb57f..b8c4c4d610 100644
--- a/src/lib/libcrypto/man/EVP_PKEY_derive.3
+++ b/src/lib/libcrypto/man/EVP_PKEY_derive.3
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: EVP_PKEY_derive.3,v 1.4 2016/11/27 15:27:19 schwarze Exp $
+.\"     $OpenBSD: EVP_PKEY_derive.3,v 1.5 2017/04/10 17:45:06 schwarze Exp $
 .\"     OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
 .\"
 .\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
@@ -48,7 +48,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: November 27 2016 $
+.Dd $Mdocdate: April 10 2017 $
 .Dt EVP_PKEY_DERIVE 3
 .Os
 .Sh NAME
@@ -165,6 +165,7 @@ if (EVP_PKEY_derive(ctx, skey, &skeylen) <= 0)
 .Xr EVP_PKEY_encrypt 3 ,
 .Xr EVP_PKEY_sign 3 ,
 .Xr EVP_PKEY_verify 3 ,
-.Xr EVP_PKEY_verify_recover 3
+.Xr EVP_PKEY_verify_recover 3 ,
+.Xr X25519 3
 .Sh HISTORY
 These functions were first added to OpenSSL 1.0.0.
diff --git a/src/lib/libcrypto/man/EVP_PKEY_keygen.3 b/src/lib/libcrypto/man/EVP_PKEY_keygen.3
index ba26bb684d..c393c3ad2c 100644
--- a/src/lib/libcrypto/man/EVP_PKEY_keygen.3
+++ b/src/lib/libcrypto/man/EVP_PKEY_keygen.3
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: EVP_PKEY_keygen.3,v 1.4 2016/11/27 15:23:29 schwarze Exp $
+.\"     $OpenBSD: EVP_PKEY_keygen.3,v 1.5 2017/04/10 17:45:06 schwarze Exp $
 .\"     OpenSSL 99d63d466 Oct 26 13:56:48 2016 -0400
 .\"
 .\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
@@ -48,7 +48,7 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: November 27 2016 $
+.Dd $Mdocdate: April 10 2017 $
 .Dt EVP_PKEY_KEYGEN 3
 .Os
 .Sh NAME
@@ -280,6 +280,7 @@ genpkey_cb(EVP_PKEY_CTX *ctx)
 .Xr EVP_PKEY_encrypt 3 ,
 .Xr EVP_PKEY_sign 3 ,
 .Xr EVP_PKEY_verify 3 ,
-.Xr EVP_PKEY_verify_recover 3
+.Xr EVP_PKEY_verify_recover 3 ,
+.Xr X25519 3
 .Sh HISTORY
 These functions were first added to OpenSSL 1.0.0.
diff --git a/src/lib/libcrypto/man/Makefile b/src/lib/libcrypto/man/Makefile
index eec7ad39b0..164f7e24b1 100644
--- a/src/lib/libcrypto/man/Makefile
+++ b/src/lib/libcrypto/man/Makefile
@@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.119 2017/03/26 00:06:10 schwarze Exp $
+# $OpenBSD: Makefile,v 1.120 2017/04/10 17:45:06 schwarze Exp $
 .include <bsd.own.mk>
@@ -197,6 +197,7 @@ MAN=	\
        UI_create_method.3 \
        UI_get_string_type.3 \
        UI_new.3 \
+        X25519.3 \
        X509V3_get_d2i.3 \
        X509_ALGOR_dup.3 \
        X509_ATTRIBUTE_new.3 \
diff --git a/src/lib/libcrypto/man/X25519.3 b/src/lib/libcrypto/man/X25519.3
new file mode 100644
index 0000000000..3d8ccb8fcd
--- /dev/null
+++ b/src/lib/libcrypto/man/X25519.3
@@ -0,0 +1,99 @@
+.\"     $OpenBSD: X25519.3,v 1.1 2017/04/10 17:45:06 schwarze Exp $
+.\"     OpenSSL X25519.pod 69687aa8 Mar 28 23:57:28 2017 +0200
+.\"
+.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
+.\" Copyright (c) 2017 The OpenSSL Project.  All rights reserved.
+.\"
+.\" Redistribution and use in source and binary forms, with or without
+.\" modification, are permitted provided that the following conditions
+.\" are met:
+.\"
+.\" 1. Redistributions of source code must retain the above copyright
+.\"    notice, this list of conditions and the following disclaimer.
+.\"
+.\" 2. Redistributions in binary form must reproduce the above copyright
+.\"    notice, this list of conditions and the following disclaimer in
+.\"    the documentation and/or other materials provided with the
+.\"    distribution.
+.\"
+.\" 3. All advertising materials mentioning features or use of this
+.\"    software must display the following acknowledgment:
+.\"    "This product includes software developed by the OpenSSL Project
+.\"    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
+.\"
+.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
+.\"    endorse or promote products derived from this software without
+.\"    prior written permission. For written permission, please contact
+.\"    openssl-core@openssl.org.
+.\"
+.\" 5. Products derived from this software may not be called "OpenSSL"
+.\"    nor may "OpenSSL" appear in their names without prior written
+.\"    permission of the OpenSSL Project.
+.\"
+.\" 6. Redistributions of any form whatsoever must retain the following
+.\"    acknowledgment:
+.\"    "This product includes software developed by the OpenSSL Project
+.\"    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
+.\"
+.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
+.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+.\" PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
+.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+.\" OF THE POSSIBILITY OF SUCH DAMAGE.
+.\"
+.Dd $Mdocdate: April 10 2017 $
+.Dt X25519 3
+.Os
+.Sh NAME
+.Nm X25519
+.Nd EVP_PKEY X25519 support
+.Sh DESCRIPTION
+The
+.Nm
+.Vt EVP_PKEY
+implementation supports key generation and key derivation using X25519.
+It has associated private and public key formats compatible with
+draft-ietf-curdle-pkix-03.
+.Pp
+No additional parameters can be set during key generation.
+.Pp
+The peer public key must be set using
+.Xr EVP_PKEY_derive_set_peer 3
+when performing key derivation.
+.Pp
+A context for the
+.Nm
+algorithm can be obtained by calling:
+.Pp
+.Dl EVP_PKEY_CTX *pctx = EVP_PKEY_CTX_new_id(NID_X25519, NULL);
+.Sh EXAMPLES
+Generate an
+.Nm
+private key and write it to standard output in PEM format:
+.Bd -literal
+#include <openssl/evp.h>
+#include <openssl/pem.h>
+EVP_PKEY *pkey = NULL;
+EVP_PKEY_CTX *pctx = EVP_PKEY_CTX_new_id(NID_X25519, NULL);
+EVP_PKEY_keygen_init(pctx);
+EVP_PKEY_keygen(pctx, &pkey);
+EVP_PKEY_CTX_free(pctx);
+PEM_write_PrivateKey(stdout, pkey, NULL, NULL, 0, NULL, NULL);
+.Ed
+.Pp
+The key derivation example in
+.Xr EVP_PKEY_derive 3
+can be used with
+.Nm .
+.Sh SEE ALSO
+.Xr EVP_PKEY_CTX_new 3 ,
+.Xr EVP_PKEY_derive 3 ,
+.Xr EVP_PKEY_keygen 3
author	schwarze <>	2017-04-10 17:45:06 +0000
committer	schwarze <>	2017-04-10 17:45:06 +0000
commit	c163c62659b97e5b32b33c12c507cc2d25f2fa30 (patch)
tree	cd5b8b17586a959f9683f184663517be18dd13d9
parent	8bea6e7211234af80b7a52972d3c14596a38c767 (diff)
download	openbsd-c163c62659b97e5b32b33c12c507cc2d25f2fa30.tar.gz openbsd-c163c62659b97e5b32b33c12c507cc2d25f2fa30.tar.bz2 openbsd-c163c62659b97e5b32b33c12c507cc2d25f2fa30.zip

diff --git a/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3 b/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3 index d08ce022b0..72c0e36d5e 100644 --- a/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3 +++ b/src/lib/libcrypto/man/EVP_PKEY_CTX_new.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: EVP_PKEY_CTX_new.3,v 1.4 2016/11/27 15:22:00 schwarze Exp $	1	.\" $OpenBSD: EVP_PKEY_CTX_new.3,v 1.5 2017/04/10 17:45:06 schwarze Exp $
2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400	2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
3	.\"	3	.\"
4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.	4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
@@ -48,7 +48,7 @@
48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50	.\"	50	.\"
51	.Dd $Mdocdate: November 27 2016 $	51	.Dd $Mdocdate: April 10 2017 $
52	.Dt EVP_PKEY_CTX_NEW 3	52	.Dt EVP_PKEY_CTX_NEW 3
53	.Os	53	.Os
54	.Sh NAME	54	.Sh NAME
@@ -123,7 +123,8 @@ structure or
123	.Dv NULL	123	.Dv NULL
124	if an error occurred.	124	if an error occurred.
125	.Sh SEE ALSO	125	.Sh SEE ALSO
126	.Xr EVP_PKEY_new 3	126	.Xr EVP_PKEY_new 3 ,
		127	.Xr X25519 3
127	.Sh HISTORY	128	.Sh HISTORY
128	These functions were first added to OpenSSL 1.0.0.	129	These functions were first added to OpenSSL 1.0.0.
129	.Sh CAVEATS	130	.Sh CAVEATS


diff --git a/src/lib/libcrypto/man/EVP_PKEY_derive.3 b/src/lib/libcrypto/man/EVP_PKEY_derive.3 index 1e40fdb57f..b8c4c4d610 100644 --- a/src/lib/libcrypto/man/EVP_PKEY_derive.3 +++ b/src/lib/libcrypto/man/EVP_PKEY_derive.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: EVP_PKEY_derive.3,v 1.4 2016/11/27 15:27:19 schwarze Exp $	1	.\" $OpenBSD: EVP_PKEY_derive.3,v 1.5 2017/04/10 17:45:06 schwarze Exp $
2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400	2	.\" OpenSSL 99d63d46 Oct 26 13:56:48 2016 -0400
3	.\"	3	.\"
4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.	4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
@@ -48,7 +48,7 @@
48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50	.\"	50	.\"
51	.Dd $Mdocdate: November 27 2016 $	51	.Dd $Mdocdate: April 10 2017 $
52	.Dt EVP_PKEY_DERIVE 3	52	.Dt EVP_PKEY_DERIVE 3
53	.Os	53	.Os
54	.Sh NAME	54	.Sh NAME
@@ -165,6 +165,7 @@ if (EVP_PKEY_derive(ctx, skey, &skeylen) <= 0)
165	.Xr EVP_PKEY_encrypt 3 ,	165	.Xr EVP_PKEY_encrypt 3 ,
166	.Xr EVP_PKEY_sign 3 ,	166	.Xr EVP_PKEY_sign 3 ,
167	.Xr EVP_PKEY_verify 3 ,	167	.Xr EVP_PKEY_verify 3 ,
168	.Xr EVP_PKEY_verify_recover 3	168	.Xr EVP_PKEY_verify_recover 3 ,
		169	.Xr X25519 3
169	.Sh HISTORY	170	.Sh HISTORY
170	These functions were first added to OpenSSL 1.0.0.	171	These functions were first added to OpenSSL 1.0.0.


diff --git a/src/lib/libcrypto/man/EVP_PKEY_keygen.3 b/src/lib/libcrypto/man/EVP_PKEY_keygen.3 index ba26bb684d..c393c3ad2c 100644 --- a/src/lib/libcrypto/man/EVP_PKEY_keygen.3 +++ b/src/lib/libcrypto/man/EVP_PKEY_keygen.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: EVP_PKEY_keygen.3,v 1.4 2016/11/27 15:23:29 schwarze Exp $	1	.\" $OpenBSD: EVP_PKEY_keygen.3,v 1.5 2017/04/10 17:45:06 schwarze Exp $
2	.\" OpenSSL 99d63d466 Oct 26 13:56:48 2016 -0400	2	.\" OpenSSL 99d63d466 Oct 26 13:56:48 2016 -0400
3	.\"	3	.\"
4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.	4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
@@ -48,7 +48,7 @@
48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50	.\"	50	.\"
51	.Dd $Mdocdate: November 27 2016 $	51	.Dd $Mdocdate: April 10 2017 $
52	.Dt EVP_PKEY_KEYGEN 3	52	.Dt EVP_PKEY_KEYGEN 3
53	.Os	53	.Os
54	.Sh NAME	54	.Sh NAME
@@ -280,6 +280,7 @@ genpkey_cb(EVP_PKEY_CTX *ctx)
280	.Xr EVP_PKEY_encrypt 3 ,	280	.Xr EVP_PKEY_encrypt 3 ,
281	.Xr EVP_PKEY_sign 3 ,	281	.Xr EVP_PKEY_sign 3 ,
282	.Xr EVP_PKEY_verify 3 ,	282	.Xr EVP_PKEY_verify 3 ,
283	.Xr EVP_PKEY_verify_recover 3	283	.Xr EVP_PKEY_verify_recover 3 ,
		284	.Xr X25519 3
284	.Sh HISTORY	285	.Sh HISTORY
285	These functions were first added to OpenSSL 1.0.0.	286	These functions were first added to OpenSSL 1.0.0.


diff --git a/src/lib/libcrypto/man/Makefile b/src/lib/libcrypto/man/Makefile index eec7ad39b0..164f7e24b1 100644 --- a/src/lib/libcrypto/man/Makefile +++ b/src/lib/libcrypto/man/Makefile
@@ -1,4 +1,4 @@
1	# $OpenBSD: Makefile,v 1.119 2017/03/26 00:06:10 schwarze Exp $	1	# $OpenBSD: Makefile,v 1.120 2017/04/10 17:45:06 schwarze Exp $
2		2
3	.include <bsd.own.mk>	3	.include <bsd.own.mk>
4		4
@@ -197,6 +197,7 @@ MAN= \
197	UI_create_method.3 \	197	UI_create_method.3 \
198	UI_get_string_type.3 \	198	UI_get_string_type.3 \
199	UI_new.3 \	199	UI_new.3 \
		200	X25519.3 \
200	X509V3_get_d2i.3 \	201	X509V3_get_d2i.3 \
201	X509_ALGOR_dup.3 \	202	X509_ALGOR_dup.3 \
202	X509_ATTRIBUTE_new.3 \	203	X509_ATTRIBUTE_new.3 \


diff --git a/src/lib/libcrypto/man/X25519.3 b/src/lib/libcrypto/man/X25519.3 new file mode 100644 index 0000000000..3d8ccb8fcd --- /dev/null +++ b/src/lib/libcrypto/man/X25519.3
@@ -0,0 +1,99 @@
		1	.\" $OpenBSD: X25519.3,v 1.1 2017/04/10 17:45:06 schwarze Exp $
		2	.\" OpenSSL X25519.pod 69687aa8 Mar 28 23:57:28 2017 +0200
		3	.\"
		4	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>.
		5	.\" Copyright (c) 2017 The OpenSSL Project. All rights reserved.
		6	.\"
		7	.\" Redistribution and use in source and binary forms, with or without
		8	.\" modification, are permitted provided that the following conditions
		9	.\" are met:
		10	.\"
		11	.\" 1. Redistributions of source code must retain the above copyright
		12	.\" notice, this list of conditions and the following disclaimer.
		13	.\"
		14	.\" 2. Redistributions in binary form must reproduce the above copyright
		15	.\" notice, this list of conditions and the following disclaimer in
		16	.\" the documentation and/or other materials provided with the
		17	.\" distribution.
		18	.\"
		19	.\" 3. All advertising materials mentioning features or use of this
		20	.\" software must display the following acknowledgment:
		21	.\" "This product includes software developed by the OpenSSL Project
		22	.\" for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
		23	.\"
		24	.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
		25	.\" endorse or promote products derived from this software without
		26	.\" prior written permission. For written permission, please contact
		27	.\" openssl-core@openssl.org.
		28	.\"
		29	.\" 5. Products derived from this software may not be called "OpenSSL"
		30	.\" nor may "OpenSSL" appear in their names without prior written
		31	.\" permission of the OpenSSL Project.
		32	.\"
		33	.\" 6. Redistributions of any form whatsoever must retain the following
		34	.\" acknowledgment:
		35	.\" "This product includes software developed by the OpenSSL Project
		36	.\" for use in the OpenSSL Toolkit (http://www.openssl.org/)"
		37	.\"
		38	.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
		39	.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
		40	.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
		41	.\" PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
		42	.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
		43	.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
		44	.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
		45	.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
		46	.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
		47	.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
		48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
		49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
		50	.\"
		51	.Dd $Mdocdate: April 10 2017 $
		52	.Dt X25519 3
		53	.Os
		54	.Sh NAME
		55	.Nm X25519
		56	.Nd EVP_PKEY X25519 support
		57	.Sh DESCRIPTION
		58	The
		59	.Nm
		60	.Vt EVP_PKEY
		61	implementation supports key generation and key derivation using X25519.
		62	It has associated private and public key formats compatible with
		63	draft-ietf-curdle-pkix-03.
		64	.Pp
		65	No additional parameters can be set during key generation.
		66	.Pp
		67	The peer public key must be set using
		68	.Xr EVP_PKEY_derive_set_peer 3
		69	when performing key derivation.
		70	.Pp
		71	A context for the
		72	.Nm
		73	algorithm can be obtained by calling:
		74	.Pp
		75	.Dl EVP_PKEY_CTX *pctx = EVP_PKEY_CTX_new_id(NID_X25519, NULL);
		76	.Sh EXAMPLES
		77	Generate an
		78	.Nm
		79	private key and write it to standard output in PEM format:
		80	.Bd -literal
		81	#include <openssl/evp.h>
		82	#include <openssl/pem.h>
		83
		84	EVP_PKEY *pkey = NULL;
		85	EVP_PKEY_CTX *pctx = EVP_PKEY_CTX_new_id(NID_X25519, NULL);
		86	EVP_PKEY_keygen_init(pctx);
		87	EVP_PKEY_keygen(pctx, &pkey);
		88	EVP_PKEY_CTX_free(pctx);
		89	PEM_write_PrivateKey(stdout, pkey, NULL, NULL, 0, NULL, NULL);
		90	.Ed
		91	.Pp
		92	The key derivation example in
		93	.Xr EVP_PKEY_derive 3
		94	can be used with
		95	.Nm .
		96	.Sh SEE ALSO
		97	.Xr EVP_PKEY_CTX_new 3 ,
		98	.Xr EVP_PKEY_derive 3 ,
		99	.Xr EVP_PKEY_keygen 3