Add functionality to help making self-signed certificate.

 Changes between 0.9.7a and 0.9.8  [xx XXX xxxx]

  *) Add functionality to check the public key of a certificate request

     against a given private.  This is useful to check that a certificate

     request can be signed by that key (self-signing).

     [Richard Levitte]

  *) Make it possible to have multiple active certificates with the same

     subject in the CA index file.  This is done only if the keyword

     'unique_subject' is set to 'no' in the main CA section (default

int EVP_PKEY_save_parameters(EVP_PKEY *pkey,int mode);

int EVP_PKEY_cmp_parameters(EVP_PKEY *a,EVP_PKEY *b);

int EVP_PKEY_cmp(EVP_PKEY *a,EVP_PKEY *b);

int EVP_CIPHER_type(const EVP_CIPHER *ctx);

/* calls methods */

	return(-1);

	}

int EVP_PKEY_cmp(EVP_PKEY *a, EVP_PKEY *b)

	{

	if (a->type != b->type)

		return -1;

	switch (a->type)

		{

#ifndef OPENSSL_NO_RSA

	case EVP_PKEY_RSA:

		if (BN_cmp(b->pkey.rsa->n,a->pkey.rsa->n) != 0

			|| BN_cmp(b->pkey.rsa->e,a->pkey.rsa->e) != 0)

			return 0;

		break;

#endif

#ifndef OPENSSL_NO_DSA

	case EVP_PKEY_DSA:

		if (BN_cmp(b->pkey.dsa->pub_key,a->pkey.dsa->pub_key) != 0)

			return 0;

		break;

#endif

#ifndef OPENSSL_NO_EC

	case EVP_PKEY_EC:

		{

		int  r = EC_POINT_cmp(b->pkey.eckey->group, 

			b->pkey.eckey->pub_key,a->pkey.eckey->pub_key,NULL);

		if (r != 0)

			{

			if (r == 1)

				return 0;

			else

				return -2;

			}

		}

 		break;

#endif

#ifndef OPENSSL_NO_DH

	case EVP_PKEY_DH:

		return -2;

#endif

	default:

		return -2;

		}

	return 1;

	}

EVP_PKEY *EVP_PKEY_new(void)

	{

	EVP_PKEY *ret;

int X509_REVOKED_set_serialNumber(X509_REVOKED *x, ASN1_INTEGER *serial);

int X509_REVOKED_set_revocationDate(X509_REVOKED *r, ASN1_TIME *tm);

int		X509_REQ_check_private_key(X509_REQ *x509,EVP_PKEY *pkey);

int		X509_check_private_key(X509 *x509,EVP_PKEY *pkey);

int		X509_issuer_and_serial_cmp(const X509 *a, const X509 *b);

#define X509_F_X509_PRINT_FP				 118

#define X509_F_X509_PUBKEY_GET				 119

#define X509_F_X509_PUBKEY_SET				 120

#define X509_F_X509_REQ_CHECK_PRIVATE_KEY		 144

#define X509_F_X509_REQ_PRINT				 121

#define X509_F_X509_REQ_PRINT_FP			 122

#define X509_F_X509_REQ_TO_X509				 123

	int ok=0;

	xk=X509_get_pubkey(x);

	if (xk->type != k->type)

	switch (EVP_PKEY_cmp(xk, k))

		{

	    X509err(X509_F_X509_CHECK_PRIVATE_KEY,X509_R_KEY_TYPE_MISMATCH);

	    goto err;

	    }

	switch (k->type)

		{

#ifndef OPENSSL_NO_RSA

	case EVP_PKEY_RSA:

		if (BN_cmp(xk->pkey.rsa->n,k->pkey.rsa->n) != 0

		    || BN_cmp(xk->pkey.rsa->e,k->pkey.rsa->e) != 0)

		    {

		    X509err(X509_F_X509_CHECK_PRIVATE_KEY,X509_R_KEY_VALUES_MISMATCH);

		    goto err;

		    }

	case 1:

		ok=1;

		break;

#endif

#ifndef OPENSSL_NO_DSA

	case EVP_PKEY_DSA:

		if (BN_cmp(xk->pkey.dsa->pub_key,k->pkey.dsa->pub_key) != 0)

		    {

	case 0:

		X509err(X509_F_X509_CHECK_PRIVATE_KEY,X509_R_KEY_VALUES_MISMATCH);

		    goto err;

		    }

		break;

#endif

	case -1:

		X509err(X509_F_X509_CHECK_PRIVATE_KEY,X509_R_KEY_TYPE_MISMATCH);

		break;

	case -2:

#ifndef OPENSSL_NO_EC

	case EVP_PKEY_EC:

		{

		int  r = EC_POINT_cmp(xk->pkey.eckey->group, 

			xk->pkey.eckey->pub_key,k->pkey.eckey->pub_key,NULL);

		if (r != 0)

		if (k->type == EVP_PKEY_EC)

			{

			if (r == 1)

				X509err(X509_F_X509_CHECK_PRIVATE_KEY, X509_R_KEY_VALUES_MISMATCH);

			else

			X509err(X509_F_X509_CHECK_PRIVATE_KEY, ERR_R_EC_LIB);

			goto err;

			}

		}

			break;

			}

#endif

#ifndef OPENSSL_NO_DH

	case EVP_PKEY_DH:

		if (k->type == EVP_PKEY_DH)

			{

			/* No idea */

			X509err(X509_F_X509_CHECK_PRIVATE_KEY,X509_R_CANT_CHECK_DH_KEY);

		goto err;

			break;

			}

#endif

	default:

	        X509err(X509_F_X509_CHECK_PRIVATE_KEY,X509_R_UNKNOWN_KEY_TYPE);

		goto err;

		}

	ok=1;

err:

	EVP_PKEY_free(xk);

	return(ok);

	}