1=pod
2
3=head1 NAME
4
5OSSL_CRMF_MSG_get0_tmpl,
6OSSL_CRMF_CERTTEMPLATE_get0_publicKey,
7OSSL_CRMF_CERTTEMPLATE_get0_subject,
8OSSL_CRMF_CERTTEMPLATE_get0_issuer,
9OSSL_CRMF_CERTTEMPLATE_get0_serialNumber,
10OSSL_CRMF_CERTTEMPLATE_get0_extensions,
11OSSL_CRMF_CERTID_get0_serialNumber,
12OSSL_CRMF_CERTID_get0_issuer,
13OSSL_CRMF_ENCRYPTEDVALUE_get1_encCert,
14OSSL_CRMF_MSG_get_certReqId
15- functions reading from CRMF CertReqMsg structures
16
17=head1 SYNOPSIS
18
19 #include <openssl/crmf.h>
20
21 OSSL_CRMF_CERTTEMPLATE *OSSL_CRMF_MSG_get0_tmpl(const OSSL_CRMF_MSG *crm);
22 const X509_PUBKEY
23 *OSSL_CRMF_CERTTEMPLATE_get0_publicKey(const OSSL_CRMF_CERTTEMPLATE *tmpl);
24 const X509_NAME
25 *OSSL_CRMF_CERTTEMPLATE_get0_subject(const OSSL_CRMF_CERTTEMPLATE *tmpl);
26 const X509_NAME
27 *OSSL_CRMF_CERTTEMPLATE_get0_issuer(const OSSL_CRMF_CERTTEMPLATE *tmpl);
28 const ASN1_INTEGER
29 *OSSL_CRMF_CERTTEMPLATE_get0_serialNumber(const OSSL_CRMF_CERTTEMPLATE *tmpl);
30 X509_EXTENSIONS
31 *OSSL_CRMF_CERTTEMPLATE_get0_extensions(const OSSL_CRMF_CERTTEMPLATE *tmpl);
32
33 const ASN1_INTEGER
34 *OSSL_CRMF_CERTID_get0_serialNumber(const OSSL_CRMF_CERTID *cid);
35 const X509_NAME *OSSL_CRMF_CERTID_get0_issuer(const OSSL_CRMF_CERTID *cid);
36
37 X509
38 *OSSL_CRMF_ENCRYPTEDVALUE_get1_encCert(const OSSL_CRMF_ENCRYPTEDVALUE *ecert,
39                                        OSSL_LIB_CTX *libctx, const char *propq,
40                                        EVP_PKEY *pkey);
41
42 int OSSL_CRMF_MSG_get_certReqId(const OSSL_CRMF_MSG *crm);
43
44
45=head1 DESCRIPTION
46
47OSSL_CRMF_MSG_get0_tmpl() retrieves the certificate template of I<crm>.
48
49OSSL_CRMF_CERTTEMPLATE_get0_publicKey() retrieves the public key of the
50given certificate template I<tmpl>.
51
52OSSL_CRMF_CERTTEMPLATE_get0_subject() retrieves the subject name of the
53given certificate template I<tmpl>.
54
55OSSL_CRMF_CERTTEMPLATE_get0_issuer() retrieves the issuer name of the
56given certificate template I<tmpl>.
57
58OSSL_CRMF_CERTTEMPLATE_get0_serialNumber() retrieves the serialNumber of the
59given certificate template I<tmpl>.
60
61OSSL_CRMF_CERTTEMPLATE_get0_extensions() retrieves the X.509 extensions
62of the given certificate template I<tmpl>, or NULL if not present.
63
64OSSL_CRMF_CERTID_get0_serialNumber retrieves the serialNumber
65of the given CertId I<cid>.
66
67OSSL_CRMF_CERTID_get0_issuer retrieves the issuer name
68of the given CertId I<cid>, which must be of ASN.1 type GEN_DIRNAME.
69
70OSSL_CRMF_ENCRYPTEDVALUE_get1_encCert() decrypts the certificate in the given
71encryptedValue I<ecert>, using the private key I<pkey>, library context
72I<libctx> and property query string I<propq> (see L<OSSL_LIB_CTX(3)>).
73This is needed for the indirect POPO method as in RFC 4210 section 5.2.8.2.
74The function returns the decrypted certificate as a copy, leaving its ownership
75with the caller, who is responsible for freeing it.
76
77OSSL_CRMF_MSG_get_certReqId() retrieves the certReqId of I<crm>.
78
79=head1 RETURN VALUES
80
81OSSL_CRMF_MSG_get_certReqId() returns the certificate request ID as a
82nonnegative integer or -1 on error.
83
84All other functions return a pointer with the intended result or NULL on error.
85
86=head1 SEE ALSO
87
88RFC 4211
89
90=head1 HISTORY
91
92The OpenSSL CRMF support was added in OpenSSL 3.0.
93
94=head1 COPYRIGHT
95
96Copyright 2007-2021 The OpenSSL Project Authors. All Rights Reserved.
97
98Licensed under the Apache License 2.0 (the "License").  You may not use
99this file except in compliance with the License.  You can obtain a copy
100in the file LICENSE in the source distribution or at
101L<https://www.openssl.org/source/license.html>.
102
103=cut
104