PKCS12_parse - parse a PKCS#12 structure
int PKCS12_parse(PKCS12 *p12, const char *pass, EVP_PKEY **pkey, X509 **cert,
parses a PKCS12 structure.
is the PKCS12
structure to parse. pass
passphrase to use. If successful the private key will be written to
, the corresponding certificate to *cert
and any additional
certificates to *ca
The parameters pkey
cannot be NULL
be <NULL> in which case additional certificates will be discarded.
can also be a valid STACK in which case additional certificates are
appended to *ca
. If *ca
a new STACK will be
attributes (if present) on each
certificate will be stored in the alias
The parameter pass
is interpreted as a string in the UTF-8 encoding. If
it is not valid UTF-8, then it is assumed to be ISO8859-1 instead.
In particular, this means that passwords in the locale character set (or code
page on Windows) must potentially be converted to UTF-8 before use. This may
include passwords from local text files, or input from the terminal or command
line. Refer to the documentation of UI_OpenSSL(3)
, for example.
returns 1 for success and zero if an error occurred.
The error can be obtained from ERR_get_error(3)
Only a single private key and corresponding certificate is returned by this
function. More complex PKCS#12 files with multiple private keys will only
return the first match.
attributes are currently stored
in certificates. Other attributes are discarded.
Attributes currently cannot be stored in the private key EVP_PKEY
Copyright 2002-2016 The OpenSSL Project Authors. All Rights Reserved.
Licensed under the OpenSSL license (the "License"). You may not use
this file except in compliance with the License. You can obtain a copy in the
file LICENSE in the source distribution or at