pkc_lookup_key_in_trustlist(3sec) — Subroutines
NAME
pkc_lookup_key_in_trustlist — Searches a trust list for the specified key
Synopsis
unsigned32 pkc_lookup_key_in_trustlist(
pkc_trust_list_t ∗ trust_list,
const pkc_trusted_key_t ∗∗ key,
unsigned long key_id);
Parameters
Input
trust_listSpecifies the trust list to search.
key_idSpecifies ID of key to return.
Output
keyThe returned key.
Description
pkc_lookup_key_in_trustlist(3sec) searches the specified trust list for the specified key. In the returned key, the caller will find the following fields.
This routine is a C++ interface. C++ must be used to perform direct certificate manipulation.
See also the contents of the asn.h and x509.h header files, which define some of the basic types used by the low-level certificate manipulation routines.
Fields from the Certificate
•start_date
A utc_t
•end_date
A utc_t
•ca_usages
A pkc_ca_key_usage_t
•user_usages
A pkc_key_usage_t
•policies
A pkc_key_policies_t
•constraints
A pkc_constraints_t
Flags:
•trusted ( A char)
Expresses whether this entry is trusted (a priori).
•certified (A char)
Expresses whether this key is certified by another entry.
•certified_by (x500name)
Name of the CA that certified this key.
•serial_number (asn_integer)
Serial number of certifying certificate .
The following fields are copied from the certifying key entry:
•certified_start_date (utc_t)
•certified_end_date (utc_t)
•certified_usages (pkc_ca_key_usage_t)
•certified_policies (pkc_key_policies_t)
•certified_constraints (pkc_constraints_t)
•revoked (char)
Non-zero if the certifying certificate has been revoked.
•revocation_date (utc_t)
Date from which certifier revocation is effective.
•key_id (unsigned long)
An ID identifying this key entry.
•ca_key_id (unsigned long)
The ID of the key that certified this one. 0 means direct trust.
•old_key_id (unsigned long)
Temporary storage for use while copying
•old_ca_key_id (unsigned long)
Return Values
pkc_s_success
Operation successfully completed.
Errors
Refer to the OSF DCE Problem Determination Guide for complete descriptions of all error messages.
Related Information
Functions: pkc_add_trusted_key(3sec), pkc_check_cert_against_trustlist(3sec), pkc_lookup_keys_in_trustlist(3sec), pkc_revoke_certificate(3sec), pkc_revoke_certificates(3sec). Classes: pkc_ca_key_usage.class(3sec), pkc_constraints.class(3sec), pkc_generic_key_usage.class(3sec), pkc_key_policies.class(3sec), pkc_key_policy.class(3sec), pkc_key_usage.class(3sec), pkc_name_subord_constraint.class(3sec), pkc_name_subord_constraints.class(3sec), pkc_name_subtree_constraint.class(3sec), pkc_name_subtree_constraints.class(3sec), pkc_pending_revocation.class(3sec), pkc_revocation.class(3sec), pkc_revocation_list.class(3sec), pkc_trust_list.class(3sec), pkc_trust_list_element.class(3sec), pkc_trusted_key.class(3sec).