EVP_PKEY_keygen_deterministic is an operation defined for a KEM (Key Encapsulation Mechanism). For the KEM specified in ctx, the function performs deterministic keygen based on the value specified in seed of length seed_len bytes.

If out_pkey and seed are set to NULL it is assumed that the caller is doing a size check and the function will write the size of the required seed in seed_len and return successfully.

EVP_PKEY_keygen_deterministic performs a deterministic key generation operation using the values from ctx, and the given seed. If *out_pkey is non-NULL, it overwrites *out_pkey with the resulting key. Otherwise, it sets *out_pkey to a newly-allocated EVP_PKEY containing the result. It returns one on success or zero on error.

EVP_PKEY_encapsulate_deterministic is an operation defined for a KEM (Key Encapsulation Mechanism). The function performs the same encapsulation operations as EVP_PKEY_encapsulate, however, rather than generating a random for the shared_secret, the value is derived from the provided seed of seed_len.

If ciphertext, shared_secret, and seed are NULL it is assumed that the caller is doing a size check: the function will write the size of the ciphertext, shared secret, and required seed in ciphertext_len, shared_secret_len, seed_len and return successfully.

If ciphertext, shared_secret, and seed are not NULL it is assumed that the caller is performing the actual operation. The function will check additionally if the lengths of the output buffers, ciphertext_len, shared_secret_len, and seed are large enough for the KEM.

Note that decapsulation is performed using the regular API, as a seed is not required.

It returns one on success or zero on error.