	RSA BSAFE Cert-C	Certificate Components for C
		Crypto-C 6.2.1 Developer's Guide
		Search

EXTENDED_KEY_USAGE Reference

Represents the Extended Key Usage extension for X.509 v3 certificates.

This value indicates one or more purposes for which the public key in a certificate can be used. It can be used for these extended purposes in addition to, or in place of, the basic purposes indicated in the KEY_USAGE extension. Extended key purposes can be defined by any organization with a need to do so. The default criticality for this extension is NON_CRITICAL. A certificate can have multiple Extended Key Usage extensions at the same time. Use the this structure with C_AddExtensionValue() and C_GetExtensionValue().

Samples:: extnhlp.c.

#include <certext.h>

typedef struct EXTENDED_KEY_USAGE {

  ITEM keyUsagePurpose;
} EXTENDED_KEY_USAGE;

Data Fields
ITEM	keyUsagePurpose
	An `ITEM` structure whose data member points to the extended-key-usage OIDs that indicate the purposes of the key in the certificate. More...

Field Documentation

ITEM keyUsagePurpose

An ITEM structure whose data member points to the extended-key-usage OIDs that indicate the purposes of the key in the certificate. Cert-C defines the extended-key-usage OIDs listed in the following table:

PKIX Extended-Key-Usage OID Extended-Key-Usage OID Length

KP_SERVERAUTH KP_SERVERAUTH_LEN

KP_CLIENTAUTH KP_CLIENTAUTH_LEN

KP_CODESIGNING KP_CODESIGNING_LEN

KP_EMAILPROTECTION KP_EMAILPROTECTION_LEN

KP_IPSECENDSYSTEM KP_IPSECENDSYSTEM_LEN

KP_IPSECTUNNEL KP_IPSECTUNNEL_LEN

KP_IPSECUSER KP_IPSECUSER_LEN

KP_TIMESTAMPING KP_TIMESTAMPING_LEN

KP_OCSPSIGNING KP_OCSPSIGNING_LEN

EXTENDED_KEY_USAGE Reference

Data Fields

Field Documentation