X509CertGetBinary (FUN) ¶ FUNCTION X509CertGetBinary : RTS_IEC_RESULT Get the certificate in a binary encoded format. Use the encoding parameter to set the needed format. InOut: Scope Name Type Comment Return X509CertGetBinary RTS_IEC_RESULT Result of the operation. Input hCert RTS_IEC_HANDLE Handle of the certificate of intrest. encoding RtsCertEncoding How to encode the certificate. pCert POINTER TO RtsByteString Buffer where to store the certificate. If the bytestring contains a NULL memory pointer the function will write the needed bufferlength to the pCert->ui32Length member.
X509CertGetContent (FUN) ¶ FUNCTION X509CertGetContent : RTS_IEC_RESULT Get some common content from the certificate. InOut: Scope Name Type Comment Return X509CertGetContent RTS_IEC_RESULT Result of the operation. Input hCert RTS_IEC_HANDLE Handle of the certificate of intrest. pCertContent POINTER TO RtsX509CertInfo Pointer where to store the information.
X509CertGetPublicKey (FUN) ¶ FUNCTION X509CertGetPublicKey : RTS_IEC_RESULT Get the PUBLIC key FROM the certificate. The format of this key is an implementation detail and has to match the expected format of the asymmetric functions of the CmpCrpyotItf. The key data is opaque for the user of the keys. If the keys are needed in a defined exchange format use the CryptoKeyExport function of the CmpCryptoItf. InOut: Scope Name Type Comment Return X509CertGetPublicKey RTS_IEC_RESULT Result of the operation. Input hCert RTS_IEC_HANDLE Handle of the certificate of intrest. pPublicKey POINTER TO RtsCryptoKey Pointer to the crypto key storing the public key.
X509CertGetThumbprint (FUN) ¶ FUNCTION X509CertGetThumbprint : RTS_IEC_RESULT Generate the certificate thumbprint. The thumbprint will be just the plain bytes of the hash. The thumprint can be used to identify certificates of the local store. The thumprint may not be globally unique. InOut: Scope Name Type Comment Return X509CertGetThumbprint RTS_IEC_RESULT Result of the operation. Input hCert RTS_IEC_HANDLE Handle of the certificate of intrest. hashAlgorithm POINTER TO RtsCryptoID The hashing algorithmen used to generate the thumbprint. pThumprint POINTER TO RtsByteString Buffer to store the thumbprint. If bytestring is NULL memory ia allocated.
X509CertStoreRemoveCert (FUN) ¶ FUNCTION X509CertStoreRemoveCert : RTS_IEC_RESULT Remove the certificate from the store. InOut: Scope Name Type Comment Return X509CertStoreRemoveCert RTS_IEC_RESULT Input hCertStore RTS_IEC_HANDLE Handle of to certificate store. hBackend RTS_IEC_HANDLE Handle to the back-end where to store the generated certificate. RTS_INVALID_HANDLE should be used if no back- end is specified. hCert RTS_IEC_HANDLE Handle of the certificate to remove. xRemovePrivateKey BOOL Select if the private key of the certificate should be deleted too. If the certificate is renewed the same private key the key shouldn’t be deleted.
X509CertStoreSearchGetFirst (FUN) ¶ FUNCTION X509CertStoreSearchGetFirst : RTS_IEC_HANDLE Search for the given certificate in the cert store. InOut: Scope Name Type Comment Return X509CertStoreSearchGetFirst RTS_IEC_HANDLE Handle to the first certificate matching the filter criteria. Input hCertStore RTS_IEC_HANDLE Handle of to certificate store. pFilters POINTER TO RtsX509CertFilter Pointer to array of filters to be applied. ui32NumOfFilters UDINT Number of applied filters. pResult POINTER TO RTS_IEC_RESULT
X509CertStoreSearchGetNext (FUN) ¶ FUNCTION X509CertStoreSearchGetNext : RTS_IEC_HANDLE Search for the given certificate in the cert store. InOut: Scope Name Type Comment Return X509CertStoreSearchGetNext RTS_IEC_HANDLE Handle to the next certificate matching the filter criteria. Input hCertStore RTS_IEC_HANDLE Handle of to certificate store. hCert RTS_IEC_HANDLE Handle of the last found certificate. pFilters POINTER TO RtsX509CertFilter Pointer to array of filters to be applied. ui32NumOfFilters UDINT Number of applied filters. pResult POINTER TO RTS_IEC_RESULT
X509CertStoreUnregister (FUN) ¶ FUNCTION X509CertStoreUnregister : RTS_IEC_RESULT Unregister the component from the certificate store. This disables certificate generation for that specific use case. InOut: Scope Name Type Comment Return X509CertStoreUnregister RTS_IEC_RESULT Input hCertStore RTS_IEC_HANDLE Handle of to certificate store hRegisteredComponent RTS_IEC_HANDLE Handle to the entry retrieved by X509CertStoreRegister
X509CertVerify (FUN) ¶ FUNCTION X509CertVerify : RTS_IEC_RESULT Verify the given certificate. This verify checks only if the certificate itself is trusted using the certificates in the store. The verify checks if the certificate was added to the untrusted certs list. No subjects, key usages or other fields are verified. This has to be done by the application using this function. If the verify should use CRL to verify the certificates set the setting VerifyUseCRL to 1. This is disabled by default. InOut: Scope Name Type Comment Return X509CertVerify RTS_IEC_RESULT Result of the verification. Refer to ERR_CERT_ … error codes Input hCertStore RTS_IEC_HANDLE Handle of to certificate store. hCert RTS_IEC_HANDLE Certificate to verify.
X509CertVerify2 (FUN) ¶ FUNCTION X509CertVerify2 : RTS_IEC_RESULT Verify the given certificate. THIS verify checks only IF the certificate itself is trusted using the certificates in the store. The verify checks if the certificate was added to the untrusted certs list. No subjects, key usages or other fields are verified. This has to be done by the application using this function. This is disabled by default. InOut: Scope Name Type Comment Return X509CertVerify2 RTS_IEC_RESULT Result of certificate validation. One of the ERR_CERT_ … error codes. Input hCertStore RTS_IEC_HANDLE Handle of to certificate store. hCert RTS_IEC_HANDLE Certificate to verify. validationTimestamp SYSTIME The time-stamp used to verify the certificate. Same timebase as UtcHighresGet. If 0 the current time will be used. verificationFlags RtsX509VerifyFlags Flags to configure the verification process. See RTSX509VERIFYFLAGS for details.