NAME

catcert - certificate interface

DESCRIPTION

The catcert interface contains functions that set and retrieve certificates used by sessions, as well as functions that parse certificates and extract information from them.

The capabilities of the parsing functions are limited when compared with a complete certificate parsing library. The results of the parsing functions are mainly intended to be used for information purposes.

FUNCTION OVERVIEW

catcert_free
Free a certificate structure.

catcert_getcert
Get the local certificate.

catcert_getpeercert
Get the peer's certificate, which was retrieved during a successful SSL or DASP negotiation.

catcert_issuername
Extract the issuer's name from a certificate.

catcert_issuername_boks
As for catcert_issuername but the result will be in Keon 4.x format. This function is provided mainly for compatibility reasons.

catcert_setdb
Register a database and function to use as a certificate cache.

catcert_parse
Parse a certificate, placing the result in a more easily accessible data structure.

catcert_publickey
Extract the subject's public key from a certificate.

catcert_serialnumber
Retrieve a certificate's serial number as a hex coded string.

catcert_setcafile
Point to a file that contains all the necessary CA certificates. The file is valid in a global scope.

catcert_setchecktype
Set the type kind of authentication to be performed. This varies depending on whether DASP or SSL is being used.

catcert_subjectname
Extract the subject name from a certificate.

catcert_validity
Get a certificate's validity as a string.

catcert_version
Get a certificate's version as a string.

SEE ALSO

cat

catcert_free, catcert_getcert, catcert_getpeercert, catcert_issuername, catcert_issuername_boks, catcert_parse, catcert_setcafile, catcert_setchecktype, catcert_setdb, catcert_subjectname