File Manager

003 File Manager

Current Path: /usr/src/crypto/heimdal/doc/doxyout/hx509/man/man3

usr / src / crypto / heimdal / doc / doxyout / hx509 / man / man3 /

📁 ..
📄 hx509.3(956 B)
📄 hx509_bitstring_print.3(23 B)
📄 hx509_ca.3(14.64 KB)
📄 hx509_ca_sign.3(20 B)
📄 hx509_ca_sign_self.3(20 B)
📄 hx509_ca_tbs_add_crl_dp_uri.3(20 B)
📄 hx509_ca_tbs_add_eku.3(20 B)
📄 hx509_ca_tbs_add_san_hostname.3(20 B)
📄 hx509_ca_tbs_add_san_jid.3(20 B)
📄 hx509_ca_tbs_add_san_ms_upn.3(20 B)
📄 hx509_ca_tbs_add_san_otherName.3(20 B)
📄 hx509_ca_tbs_add_san_pkinit.3(20 B)
📄 hx509_ca_tbs_add_san_rfc822name.3(20 B)
📄 hx509_ca_tbs_free.3(20 B)
📄 hx509_ca_tbs_init.3(20 B)
📄 hx509_ca_tbs_set_ca.3(20 B)
📄 hx509_ca_tbs_set_domaincontroller.3(20 B)
📄 hx509_ca_tbs_set_notAfter.3(20 B)
📄 hx509_ca_tbs_set_notAfter_lifetime.3(20 B)
📄 hx509_ca_tbs_set_notBefore.3(20 B)
📄 hx509_ca_tbs_set_proxy.3(20 B)
📄 hx509_ca_tbs_set_serialnumber.3(20 B)
📄 hx509_ca_tbs_set_spki.3(20 B)
📄 hx509_ca_tbs_set_subject.3(20 B)
📄 hx509_ca_tbs_set_template.3(20 B)
📄 hx509_ca_tbs_set_unique.3(20 B)
📄 hx509_ca_tbs_subject_expand.3(20 B)
📄 hx509_ca_tbs_template_units.3(20 B)
📄 hx509_cert.3(17.12 KB)
📄 hx509_cert_binary.3(22 B)
📄 hx509_cert_check_eku.3(22 B)
📄 hx509_cert_cmp.3(22 B)
📄 hx509_cert_find_subjectAltName_otherName.3(22 B)
📄 hx509_cert_free.3(22 B)
📄 hx509_cert_get_SPKI.3(22 B)
📄 hx509_cert_get_SPKI_AlgorithmIdentifier.3(22 B)
📄 hx509_cert_get_attribute.3(22 B)
📄 hx509_cert_get_base_subject.3(22 B)
📄 hx509_cert_get_friendly_name.3(22 B)
📄 hx509_cert_get_issuer.3(22 B)
📄 hx509_cert_get_issuer_unique_id.3(22 B)
📄 hx509_cert_get_notAfter.3(22 B)
📄 hx509_cert_get_notBefore.3(22 B)
📄 hx509_cert_get_serialnumber.3(22 B)
📄 hx509_cert_get_subject.3(22 B)
📄 hx509_cert_get_subject_unique_id.3(22 B)
📄 hx509_cert_init.3(22 B)
📄 hx509_cert_init_data.3(22 B)
📄 hx509_cert_keyusage_print.3(23 B)
📄 hx509_cert_ref.3(22 B)
📄 hx509_cert_set_friendly_name.3(22 B)
📄 hx509_certs_add.3(24 B)
📄 hx509_certs_append.3(24 B)
📄 hx509_certs_end_seq.3(24 B)
📄 hx509_certs_filter.3(24 B)
📄 hx509_certs_find.3(24 B)
📄 hx509_certs_free.3(24 B)
📄 hx509_certs_info.3(24 B)
📄 hx509_certs_init.3(24 B)
📄 hx509_certs_iter_f.3(24 B)
📄 hx509_certs_merge.3(24 B)
📄 hx509_certs_next_cert.3(24 B)
📄 hx509_certs_start_seq.3(24 B)
📄 hx509_certs_store.3(24 B)
📄 hx509_ci_print_names.3(24 B)
📄 hx509_clear_error_string.3(23 B)
📄 hx509_cms.3(7.94 KB)
📄 hx509_cms_create_signed_1.3(21 B)
📄 hx509_cms_envelope_1.3(21 B)
📄 hx509_cms_unenvelope.3(21 B)
📄 hx509_cms_unwrap_ContentInfo.3(21 B)
📄 hx509_cms_verify_signed.3(21 B)
📄 hx509_cms_wrap_ContentInfo.3(21 B)
📄 hx509_context_free.3(17 B)
📄 hx509_context_init.3(17 B)
📄 hx509_context_set_missing_revoke.3(24 B)
📄 hx509_crl_add_revoked_certs.3(24 B)
📄 hx509_crl_alloc.3(24 B)
📄 hx509_crl_free.3(24 B)
📄 hx509_crl_lifetime.3(24 B)
📄 hx509_crl_sign.3(24 B)
📄 hx509_crypto.3(1.01 KB)
📄 hx509_env.3(3.01 KB)
📄 hx509_env_add.3(21 B)
📄 hx509_env_add_binding.3(21 B)
📄 hx509_env_find.3(21 B)
📄 hx509_env_find_binding.3(21 B)
📄 hx509_env_free.3(21 B)
📄 hx509_env_lfind.3(21 B)
📄 hx509_err.3(23 B)
📄 hx509_error.3(2.93 KB)
📄 hx509_free_error_string.3(23 B)
📄 hx509_free_octet_string_list.3(22 B)
📄 hx509_general_name_unparse.3(22 B)
📄 hx509_get_error_string.3(23 B)
📄 hx509_get_one_cert.3(24 B)
📄 hx509_keyset.3(10.06 KB)
📄 hx509_lock.3(240 B)
📄 hx509_misc.3(753 B)
📄 hx509_name.3(4.93 KB)
📄 hx509_name_binary.3(22 B)
📄 hx509_name_cmp.3(22 B)
📄 hx509_name_copy.3(22 B)
📄 hx509_name_expand.3(22 B)
📄 hx509_name_free.3(22 B)
📄 hx509_name_is_null_p.3(22 B)
📄 hx509_name_to_Name.3(22 B)
📄 hx509_name_to_string.3(22 B)
📄 hx509_ocsp_request.3(24 B)
📄 hx509_ocsp_verify.3(24 B)
📄 hx509_oid_print.3(23 B)
📄 hx509_oid_sprint.3(23 B)
📄 hx509_parse_name.3(22 B)
📄 hx509_peer.3(2.54 KB)
📄 hx509_peer_info_add_cms_alg.3(22 B)
📄 hx509_peer_info_alloc.3(22 B)
📄 hx509_peer_info_free.3(22 B)
📄 hx509_peer_info_set_cert.3(22 B)
📄 hx509_peer_info_set_cms_algs.3(22 B)
📄 hx509_print.3(4.82 KB)
📄 hx509_print_cert.3(22 B)
📄 hx509_print_stdout.3(23 B)
📄 hx509_query.3(143 B)
📄 hx509_query_alloc.3(22 B)
📄 hx509_query_free.3(22 B)
📄 hx509_query_match_cmp_func.3(22 B)
📄 hx509_query_match_eku.3(22 B)
📄 hx509_query_match_friendly_name.3(22 B)
📄 hx509_query_match_issuer_serial.3(22 B)
📄 hx509_query_match_option.3(22 B)
📄 hx509_query_statistic_file.3(22 B)
📄 hx509_query_unparse_stats.3(22 B)
📄 hx509_revoke.3(4.24 KB)
📄 hx509_revoke_add_crl.3(24 B)
📄 hx509_revoke_add_ocsp.3(24 B)
📄 hx509_revoke_free.3(24 B)
📄 hx509_revoke_init.3(24 B)
📄 hx509_revoke_ocsp_print.3(24 B)
📄 hx509_revoke_verify.3(24 B)
📄 hx509_set_error_string.3(23 B)
📄 hx509_set_error_stringv.3(23 B)
📄 hx509_unparse_der_name.3(22 B)
📄 hx509_validate_cert.3(23 B)
📄 hx509_validate_ctx_add_flags.3(23 B)
📄 hx509_validate_ctx_free.3(23 B)
📄 hx509_validate_ctx_init.3(23 B)
📄 hx509_validate_ctx_set_print.3(23 B)
📄 hx509_verify.3(8.35 KB)
📄 hx509_verify_attach_anchors.3(24 B)
📄 hx509_verify_attach_revoke.3(24 B)
📄 hx509_verify_ctx_f_allow_default_trustanchors.3(22 B)
📄 hx509_verify_destroy_ctx.3(24 B)
📄 hx509_verify_hostname.3(22 B)
📄 hx509_verify_init_ctx.3(24 B)
📄 hx509_verify_path.3(24 B)
📄 hx509_verify_set_max_depth.3(24 B)
📄 hx509_verify_set_proxy_certificate.3(24 B)
📄 hx509_verify_set_strict_rfc3280_verification.3(24 B)
📄 hx509_verify_set_time.3(24 B)
📄 hx509_verify_signature.3(24 B)
📄 hx509_xfree.3(22 B)
📄 page_ca.3(192 B)
📄 page_cert.3(642 B)
📄 page_cms.3(635 B)
📄 page_env.3(210 B)
📄 page_error.3(214 B)
📄 page_keyset.3(852 B)
📄 page_lock.3(234 B)
📄 page_name.3(1.02 KB)
📄 page_peer.3(350 B)
📄 page_print.3(210 B)
📄 page_revoke.3(746 B)

Editing: hx509_ca.3

.TH "hx509 CA functions" 3 "11 Jan 2012" "Version 1.5.2" "Heimdalx509library" \" -*- nroff -*-
.ad l
.nh
.SH NAME
hx509 CA functions \- 
.SS "Functions"

.in +1c
.ti -1c
.RI "int \fBhx509_ca_tbs_init\fP (hx509_context context, hx509_ca_tbs *tbs)"
.br
.ti -1c
.RI "void \fBhx509_ca_tbs_free\fP (hx509_ca_tbs *tbs)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_notBefore\fP (hx509_context context, hx509_ca_tbs tbs, time_t t)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_notAfter\fP (hx509_context context, hx509_ca_tbs tbs, time_t t)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_notAfter_lifetime\fP (hx509_context context, hx509_ca_tbs tbs, time_t delta)"
.br
.ti -1c
.RI "struct units * \fBhx509_ca_tbs_template_units\fP (void)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_template\fP (hx509_context context, hx509_ca_tbs tbs, int flags, hx509_cert cert)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_ca\fP (hx509_context context, hx509_ca_tbs tbs, int pathLenConstraint)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_proxy\fP (hx509_context context, hx509_ca_tbs tbs, int pathLenConstraint)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_domaincontroller\fP (hx509_context context, hx509_ca_tbs tbs)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_spki\fP (hx509_context context, hx509_ca_tbs tbs, const SubjectPublicKeyInfo *spki)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_serialnumber\fP (hx509_context context, hx509_ca_tbs tbs, const heim_integer *serialNumber)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_eku\fP (hx509_context context, hx509_ca_tbs tbs, const heim_oid *oid)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_crl_dp_uri\fP (hx509_context context, hx509_ca_tbs tbs, const char *uri, hx509_name issuername)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_san_otherName\fP (hx509_context context, hx509_ca_tbs tbs, const heim_oid *oid, const heim_octet_string *os)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_san_pkinit\fP (hx509_context context, hx509_ca_tbs tbs, const char *principal)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_san_ms_upn\fP (hx509_context context, hx509_ca_tbs tbs, const char *principal)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_san_jid\fP (hx509_context context, hx509_ca_tbs tbs, const char *jid)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_san_hostname\fP (hx509_context context, hx509_ca_tbs tbs, const char *dnsname)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_add_san_rfc822name\fP (hx509_context context, hx509_ca_tbs tbs, const char *rfc822Name)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_subject\fP (hx509_context context, hx509_ca_tbs tbs, hx509_name subject)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_set_unique\fP (hx509_context context, hx509_ca_tbs tbs, const heim_bit_string *subjectUniqueID, const heim_bit_string *issuerUniqueID)"
.br
.ti -1c
.RI "int \fBhx509_ca_tbs_subject_expand\fP (hx509_context context, hx509_ca_tbs tbs, hx509_env env)"
.br
.ti -1c
.RI "int \fBhx509_ca_sign\fP (hx509_context context, hx509_ca_tbs tbs, hx509_cert signer, hx509_cert *certificate)"
.br
.ti -1c
.RI "int \fBhx509_ca_sign_self\fP (hx509_context context, hx509_ca_tbs tbs, hx509_private_key signer, hx509_cert *certificate)"
.br
.in -1c
.SH "Detailed Description"
.PP 
See the \fBHx509 CA functions\fP for description and examples. 
.SH "Function Documentation"
.PP 
.SS "int hx509_ca_sign (hx509_context context, hx509_ca_tbs tbs, hx509_cert signer, hx509_cert * certificate)"
.PP
Sign a to-be-signed certificate object with a issuer certificate.
.PP
The caller needs to at least have called the following functions on the to-be-signed certificate object:
.IP "\(bu" 2
\fBhx509_ca_tbs_init()\fP
.IP "\(bu" 2
\fBhx509_ca_tbs_set_subject()\fP
.IP "\(bu" 2
\fBhx509_ca_tbs_set_spki()\fP
.PP
.PP
When done the to-be-signed certificate object should be freed with \fBhx509_ca_tbs_free()\fP.
.PP
When creating self-signed certificate use \fBhx509_ca_sign_self()\fP instead.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIsigner\fP the CA certificate object to sign with (need private key). 
.br
\fIcertificate\fP return cerificate, free with \fBhx509_cert_free()\fP.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_sign_self (hx509_context context, hx509_ca_tbs tbs, hx509_private_key signer, hx509_cert * certificate)"
.PP
Work just like \fBhx509_ca_sign()\fP but signs it-self.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIsigner\fP private key to sign with. 
.br
\fIcertificate\fP return cerificate, free with \fBhx509_cert_free()\fP.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_add_crl_dp_uri (hx509_context context, hx509_ca_tbs tbs, const char * uri, hx509_name issuername)"
.PP
Add CRL distribution point URI to the to-be-signed certificate object.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIuri\fP uri to the CRL. 
.br
\fIissuername\fP name of the issuer.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.PP
issuername not supported 
.SS "int hx509_ca_tbs_add_eku (hx509_context context, hx509_ca_tbs tbs, const heim_oid * oid)"
.PP
An an extended key usage to the to-be-signed certificate object. Duplicates will detected and not added.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIoid\fP extended key usage to add.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_add_san_hostname (hx509_context context, hx509_ca_tbs tbs, const char * dnsname)"
.PP
Add a Subject Alternative Name hostname to to-be-signed certificate object. A domain match starts with ., an exact match does not.
.PP
Example of a an domain match: .domain.se matches the hostname host.domain.se.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIdnsname\fP a hostame.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_add_san_jid (hx509_context context, hx509_ca_tbs tbs, const char * jid)"
.PP
Add a Jabber/XMPP jid Subject Alternative Name to the to-be-signed certificate object. The jid is an UTF8 string.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIjid\fP string of an a jabber id in UTF8.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_add_san_ms_upn (hx509_context context, hx509_ca_tbs tbs, const char * principal)"
.PP
Add Microsoft UPN Subject Alternative Name to the to-be-signed certificate object. The principal string is a UTF8 string.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIprincipal\fP Microsoft UPN string.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_add_san_otherName (hx509_context context, hx509_ca_tbs tbs, const heim_oid * oid, const heim_octet_string * os)"
.PP
Add Subject Alternative Name otherName to the to-be-signed certificate object.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIoid\fP the oid of the OtherName. 
.br
\fIos\fP data in the other name.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_add_san_pkinit (hx509_context context, hx509_ca_tbs tbs, const char * principal)"
.PP
Add Kerberos Subject Alternative Name to the to-be-signed certificate object. The principal string is a UTF8 string.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIprincipal\fP Kerberos principal to add to the certificate.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_add_san_rfc822name (hx509_context context, hx509_ca_tbs tbs, const char * rfc822Name)"
.PP
Add a Subject Alternative Name rfc822 (email address) to to-be-signed certificate object.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIrfc822Name\fP a string to a email address.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "void hx509_ca_tbs_free (hx509_ca_tbs * tbs)"
.PP
Free an To Be Signed object.
.PP
\fBParameters:\fP
.RS 4
\fItbs\fP object to free. 
.RE
.PP

.SS "int hx509_ca_tbs_init (hx509_context context, hx509_ca_tbs * tbs)"
.PP
Allocate an to-be-signed certificate object that will be converted into an certificate.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP returned to-be-signed certicate object, free with \fBhx509_ca_tbs_free()\fP.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_ca (hx509_context context, hx509_ca_tbs tbs, int pathLenConstraint)"
.PP
Make the to-be-signed certificate object a CA certificate. If the pathLenConstraint is negative path length constraint is used.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIpathLenConstraint\fP path length constraint, negative, no constraint.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_domaincontroller (hx509_context context, hx509_ca_tbs tbs)"
.PP
Make the to-be-signed certificate object a windows domain controller certificate.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_notAfter (hx509_context context, hx509_ca_tbs tbs, time_t t)"
.PP
Set the absolute time when the certificate is valid to.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIt\fP time when the certificate will expire
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_notAfter_lifetime (hx509_context context, hx509_ca_tbs tbs, time_t delta)"
.PP
Set the relative time when the certificiate is going to expire.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIdelta\fP seconds to the certificate is going to expire.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_notBefore (hx509_context context, hx509_ca_tbs tbs, time_t t)"
.PP
Set the absolute time when the certificate is valid from. If not set the current time will be used.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIt\fP time the certificated will start to be valid
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_proxy (hx509_context context, hx509_ca_tbs tbs, int pathLenConstraint)"
.PP
Make the to-be-signed certificate object a proxy certificate. If the pathLenConstraint is negative path length constraint is used.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIpathLenConstraint\fP path length constraint, negative, no constraint.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_serialnumber (hx509_context context, hx509_ca_tbs tbs, const heim_integer * serialNumber)"
.PP
Set the serial number to use for to-be-signed certificate object.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIserialNumber\fP serial number to use for the to-be-signed certificate object.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_spki (hx509_context context, hx509_ca_tbs tbs, const SubjectPublicKeyInfo * spki)"
.PP
Set the subject public key info (SPKI) in the to-be-signed certificate object. SPKI is the public key and key related parameters in the certificate.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIspki\fP subject public key info to use for the to-be-signed certificate object.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_subject (hx509_context context, hx509_ca_tbs tbs, hx509_name subject)"
.PP
Set the subject name of a to-be-signed certificate object.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIsubject\fP the name to set a subject.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_template (hx509_context context, hx509_ca_tbs tbs, int flags, hx509_cert cert)"
.PP
Initialize the to-be-signed certificate object from a template certifiate.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIflags\fP bit field selecting what to copy from the template certifiate. 
.br
\fIcert\fP template certificate.
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_set_unique (hx509_context context, hx509_ca_tbs tbs, const heim_bit_string * subjectUniqueID, const heim_bit_string * issuerUniqueID)"
.PP
Set the issuerUniqueID and subjectUniqueID
.PP
These are only supposed to be used considered with version 2 certificates, replaced by the two extensions SubjectKeyIdentifier and IssuerKeyIdentifier. This function is to allow application using legacy protocol to issue them.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIissuerUniqueID\fP to be set 
.br
\fIsubjectUniqueID\fP to be set
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "int hx509_ca_tbs_subject_expand (hx509_context context, hx509_ca_tbs tbs, hx509_env env)"
.PP
Expand the the subject name in the to-be-signed certificate object using \fBhx509_name_expand()\fP.
.PP
\fBParameters:\fP
.RS 4
\fIcontext\fP A hx509 context. 
.br
\fItbs\fP object to be signed. 
.br
\fIenv\fP enviroment variable to expand variables in the subject name, see hx509_env_init().
.RE
.PP
\fBReturns:\fP
.RS 4
An hx509 error code, see \fBhx509_get_error_string()\fP. 
.RE
.PP

.SS "struct units* hx509_ca_tbs_template_units (void)\fC [read]\fP"
.PP
Make of template units, use to build flags argument to \fBhx509_ca_tbs_set_template()\fP with parse_units().
.PP
\fBReturns:\fP
.RS 4
an units structure. 
.RE
.PP

003 File Manager

Editing: hx509_ca.3

Upload File

Create Folder