libcrypto/man/PKCS12_add_cert.3

         $NetBSD: PKCS12_add_cert.3,v 1.5 2024/09/08 13:08:28 christos Exp $

 -*- mode: troff; coding: utf-8 -*-
 Automatically generated by Pod::Man 5.01 (Pod::Simple 3.43)

 Standard preamble:
 ========================================================================
..
..

..
 \*(C` and \*(C' are quotes in nroff, nothing in troff, for use with C<>.
. ds C` ""
. ds C' ""
'br\}
. ds C`
. ds C'
'br\}

 Escape single quotes in literal strings from groff's Unicode transform.

 If the F register is >0, we'll generate index entries on stderr for
 titles (.TH), headers (.SH), subsections (.SS), items (.Ip), and index
 entries marked with X<> in POD. Of course, you'll have to process the
 output yourself in some meaningful fashion.

 Avoid warning from groff about undefined register 'F'.
..
.nr rF 0
. if \nF \{\
. de IX
. tm Index:\\$1\t\\n%\t"\\$2"
..
. if !\nF==2 \{\
. nr % 0
. nr F 2
. \}
. \}
.\}
.rr rF
 ========================================================================

 Title "PKCS12_add_cert 3"  PKCS12_add_cert 3 2024-09-03 3.0.15 OpenSSL
 For nroff, turn off justification. Always turn off hyphenation; it makes
 way too many mistakes in technical documents.
 NAME
PKCS12_add_cert, PKCS12_add_key, PKCS12_add_key_ex,
PKCS12_add_secret - Add an object to a set of PKCS#12 safeBags
 SYNOPSIS
 Header "SYNOPSIS" .Vb 1
 #include <openssl/pkcs12.h>
\&
 PKCS12_SAFEBAG *PKCS12_add_cert(STACK_OF(PKCS12_SAFEBAG) **pbags, X509 *cert);
 PKCS12_SAFEBAG *PKCS12_add_key(STACK_OF(PKCS12_SAFEBAG) **pbags,
  EVP_PKEY *key, int key_usage, int iter,
  int key_nid, const char *pass);
 PKCS12_SAFEBAG *PKCS12_add_key_ex(STACK_OF(PKCS12_SAFEBAG) **pbags,
  EVP_PKEY *key, int key_usage, int iter,
  int key_nid, const char *pass,
  OSSL_LIB_CTX *ctx, const char *propq);
\&
 PKCS12_SAFEBAG *PKCS12_add_secret(STACK_OF(PKCS12_SAFEBAG) **pbags,
  int nid_type, const unsigned char *value, int len);
.Ve
 DESCRIPTION
 Header "DESCRIPTION" These functions create a new PKCS12_SAFEBAG and add it to the set of safeBags
in pbags.

\fBPKCS12_add_cert() creates a PKCS#12 certBag containing the supplied
certificate and adds this to the set of PKCS#12 safeBags.

\fBPKCS12_add_key() creates a PKCS#12 keyBag (unencrypted) or a pkcs8shroudedKeyBag
(encrypted) containing the supplied EVP_PKEY and adds this to the set of PKCS#12
safeBags. If key_nid is not -1 then the key is encrypted with the supplied
algorithm, using pass as the passphrase and iter as the iteration count. If
\fIiter is zero then a default value for iteration count of 2048 is used.

\fBPKCS12_add_key_ex() is identical to PKCS12_add_key() but allows for a library
context ctx and property query propq to be used to select algorithm
implementations.

\fBPKCS12_add_secret() creates a PKCS#12 secretBag with an OID corresponding to
the supplied nid_type containing the supplied value as an ASN1 octet string.
This is then added to the set of PKCS#12 safeBags.
 NOTES
 Header "NOTES" If a certificate contains an alias or a keyid then this will be
used for the corresponding friendlyName or localKeyID in the
PKCS12 structure.

\fBPKCS12_add_key() makes assumptions regarding the encoding of the given pass
phrase.
See passphrase-encoding\|(7) for more information.
 "RETURN VALUES"
 Header "RETURN VALUES" A valid PKCS12_SAFEBAG structure or NULL if an error occurred.
 "CONFORMING TO"
 Header "CONFORMING TO" IETF RFC 7292 (<https://tools.ietf.org/html/rfc7292>)
 "SEE ALSO"
 Header "SEE ALSO" \fBPKCS12_create\|(3)
 HISTORY
 Header "HISTORY" \fBPKCS12_add_secret() and PKCS12_add_key_ex() were added in OpenSSL 3.0.
 COPYRIGHT
 Header "COPYRIGHT" Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the Apache License 2.0 (the "License"). You may not use
this file except in compliance with the License. You can obtain a copy
in the file LICENSE in the source distribution or at
<https://www.openssl.org/source/license.html>.