RSA BSAFE Cert-C

Certificate Components for C

Crypto-C 6.2.1 Developer's Guide
Search

CRL_FIELDS Reference

Allows viewing and updating of an opaque CRL_OBJ object via C_GetCRLFields() and C_SetCRLFields().

Samples:

crl.c, crlutil.c, and dcrl.c.

#include <crlapi.h> 

typedef struct CRL_FIELDS {

  UINT2           version;

  int             signatureAlgorithm;

  NAME_OBJ        issuerName;

  UINT4           lastUpdate;

  UINT4           nextUpdate;

  CRL_ENTRIES_OBJ crlEntries;

  EXTENSIONS_OBJ  crlExtensions;

  POINTER         reserved;
} CRL_FIELDS;

Data Fields

UINT2 version
 A UINT2 value that indicates the CRL version number. More...

int signatureAlgorithm
 An int value that indicates the algorithm used to sign the CRL. More...

NAME_OBJ issuerName
 A NAME_OBJ object that contains the CRL issuer's DN.

UINT4 lastUpdate
 A UINT4 value that indicates the time at which the CRL was last signed. More...

UINT4 nextUpdate
 A UINT4 value that indicates the time at which the next update of the CRL is expected, that is, the point at which the CRL expires. More...

CRL_ENTRIES_OBJ crlEntries
 A CRL_ENTRIES_OBJ object that contains the list of certificate serial numbers and their revocation times. More...

EXTENSIONS_OBJ crlExtensions
 An EXTENSIONS_OBJ object that contains X.509 v3 extensions for the CRL. More...

POINTER reserved
 Set this field to NULL_PTR.
Reserved for future use.

Field Documentation

CRL_ENTRIES_OBJ crlEntries
 

A CRL_ENTRIES_OBJ object that contains the list of certificate serial numbers and their revocation times. This is where all revocation entries are stored.

EXTENSIONS_OBJ crlExtensions
 

An EXTENSIONS_OBJ object that contains X.509 v3 extensions for the CRL. This field applies to CRLs of version CRL_VERSION_2 only. If the version is CRL_VERSION_1, then it should not contain any extension entries when C_SetCRLFields() is called.

UINT4 lastUpdate
 

A UINT4 value that indicates the time at which the CRL was last signed. The time is specified as the number of seconds since 12:00 A.M. GMT, January 1, 1970.

UINT4 nextUpdate
 

A UINT4 value that indicates the time at which the next update of the CRL is expected, that is, the point at which the CRL expires. The time is specified as the number of seconds since 12:00 A.M. GMT, January 1, 1970.

int signatureAlgorithm
 

An int value that indicates the algorithm used to sign the CRL. In the case of an unsigned CRL, use this algorithm to sign the CRL. Cert-C supports the following signature algorithms:





Signature Algorithm Description 


SA_MD2_WITH_RSA_ENCRYPTION  Signature operations with MD2 and the RSA public key algorithm 


SA_MD5_WITH_RSA_ENCRYPTION  Signature operations with MD5 and the RSA public key algorithm 


SA_SHA1_WITH_RSA_ENCRYPTION  Signature operations with SHA-1 and the RSA public key algorithm 


SA_OIW_SHA1_WITH_RSA_ENCRYPTION  Signature operations with SHA-1, OAEP masking according to OIW (OSI Implementers' Workshop) syntax, and the RSA public key algorithm 


SA_DSA_WITH_SHA1 Signature operations with SHA-1 and DSA 

     

  







  

    
      

        

           UINT2 version
      

    		
  





  

    
       
    
    



A UINT2 value that indicates the CRL version number. Cert-C recognizes the following two types:

 




CRL Version Number Description 


CRL_VERSION_1 1988 format (default.) 


CRL_VERSION_2 1995 format (supports crlExtensions) 

     

  







Copyright (c) 1999-2005 RSA Security Inc. All rights reserved.
067-001001-2720-001-000 - 2.7.2