OpenBSD manual page server

Manual Page Search Parameters

X509_GET0_SIGNATURE(3) Library Functions Manual X509_GET0_SIGNATURE(3)

X509_get0_signature, X509_REQ_get0_signature, X509_CRL_get0_signature, X509_get0_tbs_sigalg, X509_get_signature_type, X509_get_signature_nid, X509_REQ_get_signature_nid, X509_CRL_get_signature_nidsignature information

#include <openssl/x509.h>

X509_get0_signature(const ASN1_BIT_STRING **psig, const X509_ALGOR **palg, const X509 *x);

X509_REQ_get0_signature(const X509_REQ *req, const ASN1_BIT_STRING **psig, const X509_ALGOR **palg);

X509_CRL_get0_signature(const X509_CRL *crl, const ASN1_BIT_STRING **psig, const X509_ALGOR **palg);

const X509_ALGOR *
X509_get0_tbs_sigalg(const X509 *x);

X509_get_signature_type(const X509 *x);

X509_get_signature_nid(const X509 *x);

X509_REQ_get_signature_nid(const X509_REQ *req);

X509_CRL_get_signature_nid(const X509_CRL *crl);

(), (), and () set *psig to the signature and *palg to the signature algorithm of x, req, or crl, respectively. () returns the signature algorithm in the signed portion of x. The values returned are internal pointers that must not be freed by the caller.

() returns the base NID corresponding to the signature algorithm of x just like EVP_PKEY_base_id(3) does.

(), (), and () return the NID corresponding to the signature algorithm of x, req, or crl, respectively, just like EVP_PKEY_id(3) does.

These functions provide lower level access to the signature for cases where an application wishes to analyse or generate a signature in a form where X509_sign(3) is not appropriate, for example in a non-standard or unsupported format.

EVP_PKEY_base_id(3), OBJ_obj2nid(3), X509_ALGOR_new(3), X509_CRL_get0_by_serial(3), X509_CRL_new(3), X509_get_pubkey(3), X509_get_subject_name(3), X509_get_version(3), X509_new(3), X509_REQ_new(3), X509_sign(3), X509_signature_dump(3), X509_verify_cert(3)

X509_get_signature_type() first appeared in SSLeay 0.8.0 and has been available since OpenBSD 2.4.

X509_get0_signature() and X509_get_signature_nid() first appeared in OpenSSL 1.0.2. X509_REQ_get0_signature(), X509_CRL_get0_signature(), X509_get0_tbs_sigalg(), X509_REQ_get_signature_nid(), and X509_CRL_get_signature_nid() first appeared in OpenSSL 1.1.0. All these functions have been available since OpenBSD 6.3.

July 6, 2021 OpenBSD-current