[thirdparty/openssl.git] / include / openssl / crmf.h.in

/*-
 * {- join("\n * ", @autowarntext) -}
 *
 * Copyright 2007-2020 The OpenSSL Project Authors. All Rights Reserved.
 * Copyright Nokia 2007-2019
 * Copyright Siemens AG 2015-2019
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 *
 * CRMF (RFC 4211) implementation by M. Peylo, M. Viljanen, and D. von Oheimb.
 */

{-
use OpenSSL::stackhash qw(generate_stack_macros);
-}

#ifndef OPENSSL_CRMF_H
# define OPENSSL_CRMF_H

# include <openssl/opensslconf.h>

# ifndef OPENSSL_NO_CRMF
#  include <openssl/opensslv.h>
#  include <openssl/safestack.h>
#  include <openssl/crmferr.h>
#  include <openssl/x509v3.h> /* for GENERAL_NAME etc. */

/* explicit #includes not strictly needed since implied by the above: */
#  include <openssl/types.h>
#  include <openssl/x509.h>

#  ifdef __cplusplus
extern "C" {
#  endif

#  define OSSL_CRMF_POPOPRIVKEY_THISMESSAGE          0
#  define OSSL_CRMF_POPOPRIVKEY_SUBSEQUENTMESSAGE    1
#  define OSSL_CRMF_POPOPRIVKEY_DHMAC                2
#  define OSSL_CRMF_POPOPRIVKEY_AGREEMAC             3
#  define OSSL_CRMF_POPOPRIVKEY_ENCRYPTEDKEY         4

#  define OSSL_CRMF_SUBSEQUENTMESSAGE_ENCRCERT       0
#  define OSSL_CRMF_SUBSEQUENTMESSAGE_CHALLENGERESP  1

typedef struct ossl_crmf_encryptedvalue_st OSSL_CRMF_ENCRYPTEDVALUE;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_ENCRYPTEDVALUE)
typedef struct ossl_crmf_msg_st OSSL_CRMF_MSG;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_MSG)
DECLARE_ASN1_DUP_FUNCTION(OSSL_CRMF_MSG)
{-
    generate_stack_macros("OSSL_CRMF_MSG");
-}
typedef struct ossl_crmf_attributetypeandvalue_st OSSL_CRMF_ATTRIBUTETYPEANDVALUE;
typedef struct ossl_crmf_pbmparameter_st OSSL_CRMF_PBMPARAMETER;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_PBMPARAMETER)
typedef struct ossl_crmf_poposigningkey_st OSSL_CRMF_POPOSIGNINGKEY;
typedef struct ossl_crmf_certrequest_st OSSL_CRMF_CERTREQUEST;
typedef struct ossl_crmf_certid_st OSSL_CRMF_CERTID;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_CERTID)
DECLARE_ASN1_DUP_FUNCTION(OSSL_CRMF_CERTID)
{-
    generate_stack_macros("OSSL_CRMF_CERTID");
-}

typedef struct ossl_crmf_pkipublicationinfo_st OSSL_CRMF_PKIPUBLICATIONINFO;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_PKIPUBLICATIONINFO)
typedef struct ossl_crmf_singlepubinfo_st OSSL_CRMF_SINGLEPUBINFO;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_SINGLEPUBINFO)
typedef struct ossl_crmf_certtemplate_st OSSL_CRMF_CERTTEMPLATE;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_CERTTEMPLATE)
typedef STACK_OF(OSSL_CRMF_MSG) OSSL_CRMF_MSGS;
DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_MSGS)

typedef struct ossl_crmf_optionalvalidity_st OSSL_CRMF_OPTIONALVALIDITY;

/* crmf_pbm.c */
OSSL_CRMF_PBMPARAMETER *OSSL_CRMF_pbmp_new(OSSL_LIB_CTX *libctx, size_t slen,
                                           int owfnid, size_t itercnt,
                                           int macnid);
int OSSL_CRMF_pbm_new(OSSL_LIB_CTX *libctx, const char *propq,
                      const OSSL_CRMF_PBMPARAMETER *pbmp,
                      const unsigned char *msg, size_t msglen,
                      const unsigned char *sec, size_t seclen,
                      unsigned char **mac, size_t *maclen);

/* crmf_lib.c */
int OSSL_CRMF_MSG_set1_regCtrl_regToken(OSSL_CRMF_MSG *msg,
                                        const ASN1_UTF8STRING *tok);
ASN1_UTF8STRING
*OSSL_CRMF_MSG_get0_regCtrl_regToken(const OSSL_CRMF_MSG *msg);
int OSSL_CRMF_MSG_set1_regCtrl_authenticator(OSSL_CRMF_MSG *msg,
                                             const ASN1_UTF8STRING *auth);
ASN1_UTF8STRING
*OSSL_CRMF_MSG_get0_regCtrl_authenticator(const OSSL_CRMF_MSG *msg);
int
OSSL_CRMF_MSG_PKIPublicationInfo_push0_SinglePubInfo(OSSL_CRMF_PKIPUBLICATIONINFO *pi,
                                                     OSSL_CRMF_SINGLEPUBINFO *spi);
#  define OSSL_CRMF_PUB_METHOD_DONTCARE 0
#  define OSSL_CRMF_PUB_METHOD_X500     1
#  define OSSL_CRMF_PUB_METHOD_WEB      2
#  define OSSL_CRMF_PUB_METHOD_LDAP     3
int OSSL_CRMF_MSG_set0_SinglePubInfo(OSSL_CRMF_SINGLEPUBINFO *spi,
                                     int method, GENERAL_NAME *nm);
#  define OSSL_CRMF_PUB_ACTION_DONTPUBLISH   0
#  define OSSL_CRMF_PUB_ACTION_PLEASEPUBLISH 1
int OSSL_CRMF_MSG_set_PKIPublicationInfo_action(OSSL_CRMF_PKIPUBLICATIONINFO *pi,
                                                int action);
int OSSL_CRMF_MSG_set1_regCtrl_pkiPublicationInfo(OSSL_CRMF_MSG *msg,
                                                  const OSSL_CRMF_PKIPUBLICATIONINFO *pi);
OSSL_CRMF_PKIPUBLICATIONINFO
*OSSL_CRMF_MSG_get0_regCtrl_pkiPublicationInfo(const OSSL_CRMF_MSG *msg);
int OSSL_CRMF_MSG_set1_regCtrl_protocolEncrKey(OSSL_CRMF_MSG *msg,
                                               const X509_PUBKEY *pubkey);
X509_PUBKEY
*OSSL_CRMF_MSG_get0_regCtrl_protocolEncrKey(const OSSL_CRMF_MSG *msg);
int OSSL_CRMF_MSG_set1_regCtrl_oldCertID(OSSL_CRMF_MSG *msg,
                                         const OSSL_CRMF_CERTID *cid);
OSSL_CRMF_CERTID
*OSSL_CRMF_MSG_get0_regCtrl_oldCertID(const OSSL_CRMF_MSG *msg);
OSSL_CRMF_CERTID *OSSL_CRMF_CERTID_gen(const X509_NAME *issuer,
                                       const ASN1_INTEGER *serial);

int OSSL_CRMF_MSG_set1_regInfo_utf8Pairs(OSSL_CRMF_MSG *msg,
                                         const ASN1_UTF8STRING *utf8pairs);
ASN1_UTF8STRING
*OSSL_CRMF_MSG_get0_regInfo_utf8Pairs(const OSSL_CRMF_MSG *msg);
int OSSL_CRMF_MSG_set1_regInfo_certReq(OSSL_CRMF_MSG *msg,
                                       const OSSL_CRMF_CERTREQUEST *cr);
OSSL_CRMF_CERTREQUEST
*OSSL_CRMF_MSG_get0_regInfo_certReq(const OSSL_CRMF_MSG *msg);

int OSSL_CRMF_MSG_set0_validity(OSSL_CRMF_MSG *crm,
                                ASN1_TIME *notBefore, ASN1_TIME *notAfter);
int OSSL_CRMF_MSG_set_certReqId(OSSL_CRMF_MSG *crm, int rid);
int OSSL_CRMF_MSG_get_certReqId(const OSSL_CRMF_MSG *crm);
int OSSL_CRMF_MSG_set0_extensions(OSSL_CRMF_MSG *crm, X509_EXTENSIONS *exts);

int OSSL_CRMF_MSG_push0_extension(OSSL_CRMF_MSG *crm, X509_EXTENSION *ext);
#  define OSSL_CRMF_POPO_NONE       -1
#  define OSSL_CRMF_POPO_RAVERIFIED 0
#  define OSSL_CRMF_POPO_SIGNATURE  1
#  define OSSL_CRMF_POPO_KEYENC     2
#  define OSSL_CRMF_POPO_KEYAGREE   3
int OSSL_CRMF_MSG_create_popo(int meth, OSSL_CRMF_MSG *crm,
                              EVP_PKEY *pkey, const EVP_MD *digest,
                              OSSL_LIB_CTX *libctx, const char *propq);
int OSSL_CRMF_MSGS_verify_popo(const OSSL_CRMF_MSGS *reqs,
                               int rid, int acceptRAVerified,
                               OSSL_LIB_CTX *libctx, const char *propq);
OSSL_CRMF_CERTTEMPLATE *OSSL_CRMF_MSG_get0_tmpl(const OSSL_CRMF_MSG *crm);
ASN1_INTEGER
*OSSL_CRMF_CERTTEMPLATE_get0_serialNumber(const OSSL_CRMF_CERTTEMPLATE *tmpl);
const X509_NAME
*OSSL_CRMF_CERTTEMPLATE_get0_subject(const OSSL_CRMF_CERTTEMPLATE *tmpl);
const X509_NAME
*OSSL_CRMF_CERTTEMPLATE_get0_issuer(const OSSL_CRMF_CERTTEMPLATE *tmpl);
X509_EXTENSIONS
*OSSL_CRMF_CERTTEMPLATE_get0_extensions(const OSSL_CRMF_CERTTEMPLATE *tmpl);
const X509_NAME
*OSSL_CRMF_CERTID_get0_issuer(const OSSL_CRMF_CERTID *cid);
ASN1_INTEGER *OSSL_CRMF_CERTID_get0_serialNumber(const OSSL_CRMF_CERTID *cid);
int OSSL_CRMF_CERTTEMPLATE_fill(OSSL_CRMF_CERTTEMPLATE *tmpl,
                                EVP_PKEY *pubkey,
                                const X509_NAME *subject,
                                const X509_NAME *issuer,
                                const ASN1_INTEGER *serial);
X509
*OSSL_CRMF_ENCRYPTEDVALUE_get1_encCert(const OSSL_CRMF_ENCRYPTEDVALUE *ecert,
                                       OSSL_LIB_CTX *libctx, const char *propq,
                                       EVP_PKEY *pkey);

#  ifdef __cplusplus
}
#  endif
# endif /* !defined(OPENSSL_NO_CRMF) */
#endif /* !defined(OPENSSL_CRMF_H) */
Commit	Line	Data
a61b7f2f	1	/*-
98c35dc4 MC	2	* {- join("\n * ", @autowarntext) -}
98c35dc4 MC	3	*
33388b44	4	* Copyright 2007-2020 The OpenSSL Project Authors. All Rights Reserved.
8869ad4a AK	5	* Copyright Nokia 2007-2019
8869ad4a AK	6	* Copyright Siemens AG 2015-2019
2a3b52ea	7	*
ce9b9964	8	* Licensed under the Apache License 2.0 (the "License"). You may not use
2a3b52ea DO	9	* this file except in compliance with the License. You can obtain a copy
	10	* in the file LICENSE in the source distribution or at
	11	* https://www.openssl.org/source/license.html
	12	*
a61b7f2f	13	* CRMF (RFC 4211) implementation by M. Peylo, M. Viljanen, and D. von Oheimb.
2a3b52ea DO	14	*/
2a3b52ea DO	15
98c35dc4 MC	16	{-
	17	use OpenSSL::stackhash qw(generate_stack_macros);
	18	-}
	19
ae4186b0 DMSP	20	#ifndef OPENSSL_CRMF_H
ae4186b0 DMSP	21	# define OPENSSL_CRMF_H
2a3b52ea DO	22
	23	# include <openssl/opensslconf.h>
	24
538f38db	25	# ifndef OPENSSL_NO_CRMF
2a3b52ea DO	26	# include <openssl/opensslv.h>
	27	# include <openssl/safestack.h>
	28	# include <openssl/crmferr.h>
	29	# include <openssl/x509v3.h> /* for GENERAL_NAME etc. */
	30
	31	/* explicit #includes not strictly needed since implied by the above: */
50cd4768	32	# include <openssl/types.h>
2a3b52ea DO	33	# include <openssl/x509.h>
2a3b52ea DO	34
235595c4	35	# ifdef __cplusplus
2a3b52ea DO	36	extern "C" {
	37	# endif
	38
	39	# define OSSL_CRMF_POPOPRIVKEY_THISMESSAGE 0
	40	# define OSSL_CRMF_POPOPRIVKEY_SUBSEQUENTMESSAGE 1
	41	# define OSSL_CRMF_POPOPRIVKEY_DHMAC 2
	42	# define OSSL_CRMF_POPOPRIVKEY_AGREEMAC 3
	43	# define OSSL_CRMF_POPOPRIVKEY_ENCRYPTEDKEY 4
	44
	45	# define OSSL_CRMF_SUBSEQUENTMESSAGE_ENCRCERT 0
	46	# define OSSL_CRMF_SUBSEQUENTMESSAGE_CHALLENGERESP 1
	47
7960dbec	48	typedef struct ossl_crmf_encryptedvalue_st OSSL_CRMF_ENCRYPTEDVALUE;
2a3b52ea	49	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_ENCRYPTEDVALUE)
7960dbec	50	typedef struct ossl_crmf_msg_st OSSL_CRMF_MSG;
2a3b52ea	51	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_MSG)
299e0f1e	52	DECLARE_ASN1_DUP_FUNCTION(OSSL_CRMF_MSG)
98c35dc4 MC	53	{-
	54	generate_stack_macros("OSSL_CRMF_MSG");
	55	-}
7960dbec DDO	56	typedef struct ossl_crmf_attributetypeandvalue_st OSSL_CRMF_ATTRIBUTETYPEANDVALUE;
7960dbec DDO	57	typedef struct ossl_crmf_pbmparameter_st OSSL_CRMF_PBMPARAMETER;
2a3b52ea	58	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_PBMPARAMETER)
7960dbec DDO	59	typedef struct ossl_crmf_poposigningkey_st OSSL_CRMF_POPOSIGNINGKEY;
	60	typedef struct ossl_crmf_certrequest_st OSSL_CRMF_CERTREQUEST;
	61	typedef struct ossl_crmf_certid_st OSSL_CRMF_CERTID;
2a3b52ea	62	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_CERTID)
6e15b81c	63	DECLARE_ASN1_DUP_FUNCTION(OSSL_CRMF_CERTID)
98c35dc4 MC	64	{-
	65	generate_stack_macros("OSSL_CRMF_CERTID");
	66	-}
2a3b52ea	67
7960dbec	68	typedef struct ossl_crmf_pkipublicationinfo_st OSSL_CRMF_PKIPUBLICATIONINFO;
2a3b52ea	69	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_PKIPUBLICATIONINFO)
7960dbec	70	typedef struct ossl_crmf_singlepubinfo_st OSSL_CRMF_SINGLEPUBINFO;
2a3b52ea	71	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_SINGLEPUBINFO)
7960dbec	72	typedef struct ossl_crmf_certtemplate_st OSSL_CRMF_CERTTEMPLATE;
2a3b52ea DO	73	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_CERTTEMPLATE)
	74	typedef STACK_OF(OSSL_CRMF_MSG) OSSL_CRMF_MSGS;
	75	DECLARE_ASN1_FUNCTIONS(OSSL_CRMF_MSGS)
	76
7960dbec	77	typedef struct ossl_crmf_optionalvalidity_st OSSL_CRMF_OPTIONALVALIDITY;
2a3b52ea DO	78
2a3b52ea DO	79	/* crmf_pbm.c */
b4250010	80	OSSL_CRMF_PBMPARAMETER OSSL_CRMF_pbmp_new(OSSL_LIB_CTX libctx, size_t slen,
97e00da9 DDO	81	int owfnid, size_t itercnt,
97e00da9 DDO	82	int macnid);
b4250010	83	int OSSL_CRMF_pbm_new(OSSL_LIB_CTX libctx, const char propq,
6d1f50b5	84	const OSSL_CRMF_PBMPARAMETER *pbmp,
2a3b52ea DO	85	const unsigned char *msg, size_t msglen,
2a3b52ea DO	86	const unsigned char *sec, size_t seclen,
a61b7f2f	87	unsigned char *mac, size_t maclen);
2a3b52ea DO	88
	89	/* crmf_lib.c */
	90	int OSSL_CRMF_MSG_set1_regCtrl_regToken(OSSL_CRMF_MSG *msg,
	91	const ASN1_UTF8STRING *tok);
7df56ada DDO	92	ASN1_UTF8STRING
7df56ada DDO	93	OSSL_CRMF_MSG_get0_regCtrl_regToken(const OSSL_CRMF_MSG msg);
2a3b52ea DO	94	int OSSL_CRMF_MSG_set1_regCtrl_authenticator(OSSL_CRMF_MSG *msg,
2a3b52ea DO	95	const ASN1_UTF8STRING *auth);
7df56ada DDO	96	ASN1_UTF8STRING
7df56ada DDO	97	OSSL_CRMF_MSG_get0_regCtrl_authenticator(const OSSL_CRMF_MSG msg);
235595c4 DDO	98	int
	99	OSSL_CRMF_MSG_PKIPublicationInfo_push0_SinglePubInfo(OSSL_CRMF_PKIPUBLICATIONINFO *pi,
	100	OSSL_CRMF_SINGLEPUBINFO *spi);
2a3b52ea DO	101	# define OSSL_CRMF_PUB_METHOD_DONTCARE 0
	102	# define OSSL_CRMF_PUB_METHOD_X500 1
	103	# define OSSL_CRMF_PUB_METHOD_WEB 2
	104	# define OSSL_CRMF_PUB_METHOD_LDAP 3
	105	int OSSL_CRMF_MSG_set0_SinglePubInfo(OSSL_CRMF_SINGLEPUBINFO *spi,
	106	int method, GENERAL_NAME *nm);
	107	# define OSSL_CRMF_PUB_ACTION_DONTPUBLISH 0
	108	# define OSSL_CRMF_PUB_ACTION_PLEASEPUBLISH 1
235595c4 DDO	109	int OSSL_CRMF_MSG_set_PKIPublicationInfo_action(OSSL_CRMF_PKIPUBLICATIONINFO *pi,
235595c4 DDO	110	int action);
2a3b52ea	111	int OSSL_CRMF_MSG_set1_regCtrl_pkiPublicationInfo(OSSL_CRMF_MSG *msg,
235595c4	112	const OSSL_CRMF_PKIPUBLICATIONINFO *pi);
7df56ada DDO	113	OSSL_CRMF_PKIPUBLICATIONINFO
7df56ada DDO	114	OSSL_CRMF_MSG_get0_regCtrl_pkiPublicationInfo(const OSSL_CRMF_MSG msg);
2a3b52ea DO	115	int OSSL_CRMF_MSG_set1_regCtrl_protocolEncrKey(OSSL_CRMF_MSG *msg,
2a3b52ea DO	116	const X509_PUBKEY *pubkey);
7df56ada DDO	117	X509_PUBKEY
7df56ada DDO	118	OSSL_CRMF_MSG_get0_regCtrl_protocolEncrKey(const OSSL_CRMF_MSG msg);
2a3b52ea DO	119	int OSSL_CRMF_MSG_set1_regCtrl_oldCertID(OSSL_CRMF_MSG *msg,
2a3b52ea DO	120	const OSSL_CRMF_CERTID *cid);
7df56ada DDO	121	OSSL_CRMF_CERTID
7df56ada DDO	122	OSSL_CRMF_MSG_get0_regCtrl_oldCertID(const OSSL_CRMF_MSG msg);
2a3b52ea DO	123	OSSL_CRMF_CERTID OSSL_CRMF_CERTID_gen(const X509_NAME issuer,
	124	const ASN1_INTEGER *serial);
	125
	126	int OSSL_CRMF_MSG_set1_regInfo_utf8Pairs(OSSL_CRMF_MSG *msg,
	127	const ASN1_UTF8STRING *utf8pairs);
7df56ada DDO	128	ASN1_UTF8STRING
7df56ada DDO	129	OSSL_CRMF_MSG_get0_regInfo_utf8Pairs(const OSSL_CRMF_MSG msg);
2a3b52ea DO	130	int OSSL_CRMF_MSG_set1_regInfo_certReq(OSSL_CRMF_MSG *msg,
2a3b52ea DO	131	const OSSL_CRMF_CERTREQUEST *cr);
7df56ada DDO	132	OSSL_CRMF_CERTREQUEST
7df56ada DDO	133	OSSL_CRMF_MSG_get0_regInfo_certReq(const OSSL_CRMF_MSG msg);
2a3b52ea	134
11baa470 DDO	135	int OSSL_CRMF_MSG_set0_validity(OSSL_CRMF_MSG *crm,
11baa470 DDO	136	ASN1_TIME notBefore, ASN1_TIME notAfter);
2a3b52ea	137	int OSSL_CRMF_MSG_set_certReqId(OSSL_CRMF_MSG *crm, int rid);
62dcd2aa	138	int OSSL_CRMF_MSG_get_certReqId(const OSSL_CRMF_MSG *crm);
2a3b52ea DO	139	int OSSL_CRMF_MSG_set0_extensions(OSSL_CRMF_MSG crm, X509_EXTENSIONS exts);
2a3b52ea DO	140
7960dbec	141	int OSSL_CRMF_MSG_push0_extension(OSSL_CRMF_MSG crm, X509_EXTENSION ext);
235595c4	142	# define OSSL_CRMF_POPO_NONE -1
2a3b52ea DO	143	# define OSSL_CRMF_POPO_RAVERIFIED 0
	144	# define OSSL_CRMF_POPO_SIGNATURE 1
	145	# define OSSL_CRMF_POPO_KEYENC 2
	146	# define OSSL_CRMF_POPO_KEYAGREE 3
6d1f50b5 DDO	147	int OSSL_CRMF_MSG_create_popo(int meth, OSSL_CRMF_MSG *crm,
6d1f50b5 DDO	148	EVP_PKEY pkey, const EVP_MD digest,
b4250010	149	OSSL_LIB_CTX libctx, const char propq);
2a3b52ea	150	int OSSL_CRMF_MSGS_verify_popo(const OSSL_CRMF_MSGS *reqs,
6d1f50b5	151	int rid, int acceptRAVerified,
b4250010	152	OSSL_LIB_CTX libctx, const char propq);
2a3b52ea	153	OSSL_CRMF_CERTTEMPLATE OSSL_CRMF_MSG_get0_tmpl(const OSSL_CRMF_MSG crm);
62dcd2aa DDO	154	ASN1_INTEGER
62dcd2aa DDO	155	OSSL_CRMF_CERTTEMPLATE_get0_serialNumber(const OSSL_CRMF_CERTTEMPLATE tmpl);
8cc86b81	156	const X509_NAME
7df56ada DDO	157	OSSL_CRMF_CERTTEMPLATE_get0_subject(const OSSL_CRMF_CERTTEMPLATE tmpl);
7df56ada DDO	158	const X509_NAME
62dcd2aa	159	OSSL_CRMF_CERTTEMPLATE_get0_issuer(const OSSL_CRMF_CERTTEMPLATE tmpl);
7df56ada DDO	160	X509_EXTENSIONS
7df56ada DDO	161	OSSL_CRMF_CERTTEMPLATE_get0_extensions(const OSSL_CRMF_CERTTEMPLATE tmpl);
8cc86b81 DDO	162	const X509_NAME
8cc86b81 DDO	163	OSSL_CRMF_CERTID_get0_issuer(const OSSL_CRMF_CERTID cid);
7960dbec	164	ASN1_INTEGER OSSL_CRMF_CERTID_get0_serialNumber(const OSSL_CRMF_CERTID cid);
2a3b52ea	165	int OSSL_CRMF_CERTTEMPLATE_fill(OSSL_CRMF_CERTTEMPLATE *tmpl,
a61b7f2f	166	EVP_PKEY *pubkey,
2a3b52ea DO	167	const X509_NAME *subject,
	168	const X509_NAME *issuer,
	169	const ASN1_INTEGER *serial);
62dcd2aa DDO	170	X509
62dcd2aa DDO	171	OSSL_CRMF_ENCRYPTEDVALUE_get1_encCert(const OSSL_CRMF_ENCRYPTEDVALUE ecert,
b4250010	172	OSSL_LIB_CTX libctx, const char propq,
62dcd2aa	173	EVP_PKEY *pkey);
2a3b52ea DO	174
	175	# ifdef __cplusplus
	176	}
	177	# endif
62dcd2aa DDO	178	# endif /* !defined(OPENSSL_NO_CRMF) */
62dcd2aa DDO	179	#endif /* !defined(OPENSSL_CRMF_H) */