PreviousNext

pkc_lookup_key_in_trustlist(3sec)

Searches a trust list for the specified key

Synopsis

#include <pkc_certs.h>

unsigned32 pkc_lookup_key_in_trustlist(

pkc_trust_list_t * _trustlist,

const pkc_trusted_key_t ** key,

unsigned long key_id);

Parameters

Input

trust_list
Specifies the trust list to search.

key_id
Specifies ID of key to return.

Output

key
The returned key.

Description

pkc_lookup_key_in_trustlist(3sec) searches the specified trust list for the specified key. In the returned key, the caller will find the following fields.

This routine is a C++ interface. C++ must be used to perform direct certificate manipulation.

See also the contents of the asn.h and x509.h header files, which define some of the basic types used by the low-level certificate manipulation routines.

Fields from the Certificate

· start_date
A utc_t

· end_date
A utc_t

· ca_usages
A pkc_ca_key_usage_t

· user_usages
A pkc_key_usage_t

· policies
A pkc_key_policies_t

· constraints
A pkc_constraints_t

Flags:

· trusted ( A char)
Expresses whether this entry is trusted (a priori).

· certified (A char)
Expresses whether this key is certified by another entry.

· certified_by (x500name)
Name of the CA that certified this key.

· serial_number (asn_integer)
Serial number of certifying certificate .

The following fields are copied from the certifying key entry:

· certified_start_date (utc_t)

· certified._end_date (utc_t)

· certified_usages (pkc_ca_key_usage_t)

· certified_policies (pkc_key_policies_t)

· certified_constraints (pkc_constraints_t)

· revoked (char)
Non-zero if the certifying certificate has been revoked.

· revocation_date (utc_t)
Date from which certifier revocation is effective.

· key_id (unsigned long)
An ID identifying this key entry.

· ca_key_id (unsigned long)
The ID of the key that certified this one. 0 means direct trust.

· old_key_id (unsigned long)
Temporary storage for use while copying

· old_ca_key_id (unsigned long)

Return Values

pkc_s_success
Operation successfully completed.

Errors

Refer to the OSF DCE Problem Determination Guide for complete descriptions of all error messages.

Related Information

Functions:
pkc_add_trusted_key(3sec)
pkc_check_cert_against_trustlist(3sec)
pkc_lookup_keys_in_trustlist(3sec)
pkc_revoke_certificate(3sec)
pkc_revoke_certificates(3sec)

Classes:
pkc_ca_key_usage.class(3sec)
pkc_constraints.class(3sec)
pkc_generic_key_usage.class(3sec)
pkc_key_policies.class(3sec)
pkc_key_policy.class(3sec)
pkc_key_usage.class(3sec)
pkc_name_subord_constraint.class(3sec)
pkc_name_subord_constraints.class(3sec)
pkc_name_subtree_constraint.class(3sec)
pkc_name_subtree_constraints.class(3sec)
pkc_pending_revocation.class(3sec)
pkc_revocation.class(3sec)
pkc_revocation_list.class(3sec)
pkc_trust_list.class(3sec)
pkc_trust_list_element.class(3sec)
pkc_trusted_key.class(3sec)