new manual page X509_REQ_add_extensions(3)

documenting six functions for extensions in certification requests
author: schwarze <> 2021-10-27 14:54:07 +0000
committer: schwarze <> 2021-10-27 14:54:07 +0000
commit: d384065832e8b720d1cbe4eac3eae438c8308cc1 (patch)
tree: 3924d44a77b3f007dc99eaa2e9d6445dc7cb337b /src/lib/libcrypto/man/X509_REQ_add_extensions.3
parent: c38681fc92419b629f9b8e957e2ea0ced5305ac3 (diff)
download: openbsd-d384065832e8b720d1cbe4eac3eae438c8308cc1.tar.gz
openbsd-d384065832e8b720d1cbe4eac3eae438c8308cc1.tar.bz2
openbsd-d384065832e8b720d1cbe4eac3eae438c8308cc1.zip
1 files changed, 141 insertions, 0 deletions
diff --git a/src/lib/libcrypto/man/X509_REQ_add_extensions.3 b/src/lib/libcrypto/man/X509_REQ_add_extensions.3
new file mode 100644
index 0000000000..8610edf8ca
--- /dev/null
+++ b/src/lib/libcrypto/man/X509_REQ_add_extensions.3
@@ -0,0 +1,141 @@
+.\" $OpenBSD: X509_REQ_add_extensions.3,v 1.1 2021/10/27 14:54:07 schwarze Exp $
+.\"
+.\" Copyright (c) 2021 Ingo Schwarze <schwarze@openbsd.org>
+.\"
+.\" Permission to use, copy, modify, and distribute this software for any
+.\" purpose with or without fee is hereby granted, provided that the above
+.\" copyright notice and this permission notice appear in all copies.
+.\"
+.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+.\"
+.Dd $Mdocdate: October 27 2021 $
+.Dt X509_REQ_ADD_EXTENSIONS 3
+.Os
+.Sh NAME
+.Nm X509_REQ_add_extensions ,
+.Nm X509_REQ_add_extensions_nid ,
+.Nm X509_REQ_get_extensions ,
+.Nm X509_REQ_set_extension_nids ,
+.Nm X509_REQ_get_extension_nids ,
+.Nm X509_REQ_extension_nid
+.Nd extensions in certification requests
+.Sh SYNOPSIS
+.In openssl/x509.h
+.Ft int
+.Fo X509_REQ_add_extensions
+.Fa "X509_REQ *req"
+.Fa "STACK_OF(X509_EXTENSION) *extensions"
+.Fc
+.Ft int
+.Fo X509_REQ_add_extensions_nid
+.Fa "X509_REQ *req"
+.Fa "STACK_OF(X509_EXTENSION) *extensions"
+.Fa "int nid"
+.Fc
+.Ft STACK_OF(X509_EXTENSION) *
+.Fn X509_REQ_get_extensions "X509_REQ *req"
+.Ft void
+.Fn X509_REQ_set_extension_nids "int *nids"
+.Ft int *
+.Fn X509_REQ_get_extension_nids void
+.Ft int
+.Fn X509_REQ_extension_nid "int nid"
+.Sh DESCRIPTION
+.Fn X509_REQ_add_extensions
+encodes the array of
+.Fa extensions
+using
+.Xr i2d_X509_EXTENSIONS 3
+and adds a new X.501 Attribute object of the type
+.Dv NID_ext_req
+to
+.Fa req
+using the equivalent of
+.Xr X509_ATTRIBUTE_create_by_NID 3
+with a
+.Fa type
+of
+.Dv V_ASN1_SEQUENCE .
+.Pp
+.Fn X509_REQ_add_extensions_nid
+is identical except that the specified
+.Fa nid
+is used as the X.501 Attribute type instead of
+.Dv NID_ext_req .
+.Pp
+.Fn X509_REQ_get_extensions
+retrieves the first value of the first X.501 Attribute of appropriate type.
+By default, the attribute types
+.Dv NID_ext_req
+and
+.Dv NID_ms_ext_req
+are considered appropriate.
+.Pp
+.Fn X509_REQ_set_extension_nids
+replaces the list of attribute types that
+.Fn X509_REQ_get_extensions
+considers appropriate for storing extensions.
+The
+.Fa nids
+argument is interpreted as a pointer to the first element
+of a variable-sized array of
+.Vt int .
+The last element of the array has to be
+.Dv NID_undef .
+The array needs to remain valid until
+.Fn X509_REQ_set_extension_nids
+is called again with a different argument.
+.Pp
+.Fn X509_REQ_extension_nid
+checks whether
+.Fn X509_REQ_get_extensions
+regards the
+.Fa nid
+argument as a type appropriate for storing extensions.
+.Sh RETURN VALUES
+.Fn X509_REQ_add_extensions
+and
+.Fn X509_REQ_add_extensions_nid
+returns 1 for success or 0 for failure.
+.Pp
+.Fn X509_REQ_get_extensions
+returns a newly allocated array of ASN.1
+.Vt Extension
+objects or
+.Dv NULL
+if
+.Fa req
+is
+.Dv NULL ,
+does not contain
+.Vt CertificationRequestInfo ,
+contains no attribute of an appropriate type,
+or if decoding or memory allocation fails.
+.Pp
+.Fn X509_REQ_get_extension_nids
+returns the pointer installed with
+.Fn X509_REQ_set_extension_nids
+or a pointer to a static array
+.Brq Dv NID_ext_req , NID_ms_ext_req , NID_undef
+by default.
+.Pp
+.Fn X509_REQ_extension_nid
+returns 1 if
+.Fa nid
+is considered appropriate or 0 otherwise.
+.Sh SEE ALSO
+.Xr d2i_X509_EXTENSION 3 ,
+.Xr STACK_OF 3 ,
+.Xr X509_EXTENSION_new 3 ,
+.Xr X509_REQ_new 3 ,
+.Xr X509V3_extensions_print 3
+.Sh HISTORY
+These functions first appeared in OpenSSL 0.9.5
+and have been available since
+.Ox 2.7 .
author	schwarze <>	2021-10-27 14:54:07 +0000
committer	schwarze <>	2021-10-27 14:54:07 +0000
commit	d384065832e8b720d1cbe4eac3eae438c8308cc1 (patch)
tree	3924d44a77b3f007dc99eaa2e9d6445dc7cb337b /src/lib/libcrypto/man/X509_REQ_add_extensions.3
parent	c38681fc92419b629f9b8e957e2ea0ced5305ac3 (diff)
download	openbsd-d384065832e8b720d1cbe4eac3eae438c8308cc1.tar.gz openbsd-d384065832e8b720d1cbe4eac3eae438c8308cc1.tar.bz2 openbsd-d384065832e8b720d1cbe4eac3eae438c8308cc1.zip

diff --git a/src/lib/libcrypto/man/X509_REQ_add_extensions.3 b/src/lib/libcrypto/man/X509_REQ_add_extensions.3 new file mode 100644 index 0000000000..8610edf8ca --- /dev/null +++ b/src/lib/libcrypto/man/X509_REQ_add_extensions.3
@@ -0,0 +1,141 @@
	1	.\" $OpenBSD: X509_REQ_add_extensions.3,v 1.1 2021/10/27 14:54:07 schwarze Exp $
	2	.\"
	3	.\" Copyright (c) 2021 Ingo Schwarze <schwarze@openbsd.org>
	4	.\"
	5	.\" Permission to use, copy, modify, and distribute this software for any
	6	.\" purpose with or without fee is hereby granted, provided that the above
	7	.\" copyright notice and this permission notice appear in all copies.
	8	.\"
	9	.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
	10	.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
	11	.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
	12	.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
	13	.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
	14	.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
	15	.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
	16	.\"
	17	.Dd $Mdocdate: October 27 2021 $
	18	.Dt X509_REQ_ADD_EXTENSIONS 3
	19	.Os
	20	.Sh NAME
	21	.Nm X509_REQ_add_extensions ,
	22	.Nm X509_REQ_add_extensions_nid ,
	23	.Nm X509_REQ_get_extensions ,
	24	.Nm X509_REQ_set_extension_nids ,
	25	.Nm X509_REQ_get_extension_nids ,
	26	.Nm X509_REQ_extension_nid
	27	.Nd extensions in certification requests
	28	.Sh SYNOPSIS
	29	.In openssl/x509.h
	30	.Ft int
	31	.Fo X509_REQ_add_extensions
	32	.Fa "X509_REQ *req"
	33	.Fa "STACK_OF(X509_EXTENSION) *extensions"
	34	.Fc
	35	.Ft int
	36	.Fo X509_REQ_add_extensions_nid
	37	.Fa "X509_REQ *req"
	38	.Fa "STACK_OF(X509_EXTENSION) *extensions"
	39	.Fa "int nid"
	40	.Fc
	41	.Ft STACK_OF(X509_EXTENSION) *
	42	.Fn X509_REQ_get_extensions "X509_REQ *req"
	43	.Ft void
	44	.Fn X509_REQ_set_extension_nids "int *nids"
	45	.Ft int *
	46	.Fn X509_REQ_get_extension_nids void
	47	.Ft int
	48	.Fn X509_REQ_extension_nid "int nid"
	49	.Sh DESCRIPTION
	50	.Fn X509_REQ_add_extensions
	51	encodes the array of
	52	.Fa extensions
	53	using
	54	.Xr i2d_X509_EXTENSIONS 3
	55	and adds a new X.501 Attribute object of the type
	56	.Dv NID_ext_req
	57	to
	58	.Fa req
	59	using the equivalent of
	60	.Xr X509_ATTRIBUTE_create_by_NID 3
	61	with a
	62	.Fa type
	63	of
	64	.Dv V_ASN1_SEQUENCE .
	65	.Pp
	66	.Fn X509_REQ_add_extensions_nid
	67	is identical except that the specified
	68	.Fa nid
	69	is used as the X.501 Attribute type instead of
	70	.Dv NID_ext_req .
	71	.Pp
	72	.Fn X509_REQ_get_extensions
	73	retrieves the first value of the first X.501 Attribute of appropriate type.
	74	By default, the attribute types
	75	.Dv NID_ext_req
	76	and
	77	.Dv NID_ms_ext_req
	78	are considered appropriate.
	79	.Pp
	80	.Fn X509_REQ_set_extension_nids
	81	replaces the list of attribute types that
	82	.Fn X509_REQ_get_extensions
	83	considers appropriate for storing extensions.
	84	The
	85	.Fa nids
	86	argument is interpreted as a pointer to the first element
	87	of a variable-sized array of
	88	.Vt int .
	89	The last element of the array has to be
	90	.Dv NID_undef .
	91	The array needs to remain valid until
	92	.Fn X509_REQ_set_extension_nids
	93	is called again with a different argument.
	94	.Pp
	95	.Fn X509_REQ_extension_nid
	96	checks whether
	97	.Fn X509_REQ_get_extensions
	98	regards the
	99	.Fa nid
	100	argument as a type appropriate for storing extensions.
	101	.Sh RETURN VALUES
	102	.Fn X509_REQ_add_extensions
	103	and
	104	.Fn X509_REQ_add_extensions_nid
	105	returns 1 for success or 0 for failure.
	106	.Pp
	107	.Fn X509_REQ_get_extensions
	108	returns a newly allocated array of ASN.1
	109	.Vt Extension
	110	objects or
	111	.Dv NULL
	112	if
	113	.Fa req
	114	is
	115	.Dv NULL ,
	116	does not contain
	117	.Vt CertificationRequestInfo ,
	118	contains no attribute of an appropriate type,
	119	or if decoding or memory allocation fails.
	120	.Pp
	121	.Fn X509_REQ_get_extension_nids
	122	returns the pointer installed with
	123	.Fn X509_REQ_set_extension_nids
	124	or a pointer to a static array
	125	.Brq Dv NID_ext_req , NID_ms_ext_req , NID_undef
	126	by default.
	127	.Pp
	128	.Fn X509_REQ_extension_nid
	129	returns 1 if
	130	.Fa nid
	131	is considered appropriate or 0 otherwise.
	132	.Sh SEE ALSO
	133	.Xr d2i_X509_EXTENSION 3 ,
	134	.Xr STACK_OF 3 ,
	135	.Xr X509_EXTENSION_new 3 ,
	136	.Xr X509_REQ_new 3 ,
	137	.Xr X509V3_extensions_print 3
	138	.Sh HISTORY
	139	These functions first appeared in OpenSSL 0.9.5
	140	and have been available since
	141	.Ox 2.7 .