OpenBSD manual page server

Manual Page Search Parameters

D2I_PROXY_POLICY(3) Library Functions Manual D2I_PROXY_POLICY(3)

d2i_PROXY_POLICY, i2d_PROXY_POLICY, d2i_PROXY_CERT_INFO_EXTENSION, i2d_PROXY_CERT_INFO_EXTENSIONdecode and encode X.509 proxy certificate extensions

#include <openssl/x509v3.h>

PROXY_POLICY *
d2i_PROXY_POLICY(PROXY_POLICY **val_out, const unsigned char **der_in, long length);

int
i2d_PROXY_POLICY(PROXY_POLICY *val_in, unsigned char **der_out);

PROXY_CERT_INFO_EXTENSION *
d2i_PROXY_CERT_INFO_EXTENSION(PROXY_CERT_INFO_EXTENSION **val_out, const unsigned char **der_in, long length);

int
i2d_PROXY_CERT_INFO_EXTENSION(PROXY_CERT_INFO_EXTENSION *val_in, unsigned char **der_out);

These functions encode and decode X.509 extensions that decide whether a certificate is a proxy certificate, and which policies apply to it. For details about the semantics, examples, caveats, and bugs, see ASN1_item_d2i(3).

() and () decode and encode an ASN.1 ProxyPolicy structure defined in RFC 3820 section 3.8.

() and () decode and encode an ASN.1 ProxyCertInfo structure defined in RFC 3820 section 3.8.

d2i_PROXY_POLICY() and d2i_PROXY_CERT_INFO_EXTENSION() return a PROXY_POLICY or PROXY_CERT_INFO_EXTENSION object, respectively, or NULL if an error occurs.

i2d_PROXY_POLICY() and i2d_PROXY_CERT_INFO_EXTENSION() return the number of bytes successfully encoded or a negative value if an error occurs.

ASN1_item_d2i(3), PROXY_POLICY_new(3), X509_EXTENSION_new(3)

RFC 3820: Internet X.509 Public Key Infrastructure (PKI) Proxy Certificate Profile

These functions first appeared in OpenSSL 0.9.7g and have been available since OpenBSD 3.8.

March 22, 2018 OpenBSD-current