lib/hx509/ca.c

68  * Allocate an to-be-signed certificate object that will be converted
69  * into an certificate.
119  * Set the absolute time when the certificate is valid from. If not
141  * Set the absolute time when the certificate is valid to.
145  * @param t time when the certificate will expire
166  * @param delta seconds to the certificate is going to expire.
208  * Initialize the to-be-signed certificate object from a template certifiate.
214  * @param cert template certificate.
286  * Make the to-be-signed certificate object a CA certificate. If the
310  * Make the to-be-signed certificate object a proxy certificate. If the
335  * Make the to-be-signed certificate object a windows domain controller certificate.
354  * Set the subject public key info (SPKI) in the to-be-signed certificate
356  * certificate.
360  * @param spki subject public key info to use for the to-be-signed certificate object.
380  * Set the serial number to use for to-be-signed certificate object.
385  * certificate object.
405  * An an extended key usage to the to-be-signed certificate object.
448  * Add CRL distribution point URI to the to-be-signed certificate
554  * certificate object.
584  * certificate object. The principal string is a UTF8 string.
588  * @param principal Kerberos principal to add to the certificate.
719  * certificate object. The principal string is a UTF8 string.
740  * certificate object. The jid is an UTF8 string.
761  * Add a Subject Alternative Name hostname to to-be-signed certificate
793  * to-be-signed certificate object.
820  * Set the subject name of a to-be-signed certificate object.
886  * Expand the the subject name in the to-be-signed certificate object
988 	hx509_cert *certificate)
1045      * Don't put restrictions on proxy certificate's subject name, it
1067 				   "Proxy certificate is not allowed "
1411     ret = hx509_cert_init(context, &c, certificate);
1426 			   const Certificate *certificate,
1432     ret = _hx509_find_extension_subject_key_id(certificate, &si);
1477 	ret = copy_Name(&certificate->tbsCertificate.subject, &name);
1498 	ret = der_copy_heim_integer(&certificate->tbsCertificate.serialNumber,
1514  * Sign a to-be-signed certificate object with a issuer certificate.
1517  * to-be-signed certificate object:
1522  * When done the to-be-signed certificate object should be freed with
1525  * When creating self-signed certificate use hx509_ca_sign_self() instead.
1529  * @param signer the CA certificate object to sign with (need private key).
1530  * @param certificate return cerificate, free with hx509_cert_free().
1541 	      hx509_cert *certificate)
1560 		  certificate);
1574  * @param certificate return cerificate, free with hx509_cert_free().
1585 		   hx509_cert *certificate)
1592 		   certificate);