openssl/doc/man3/X509_NAME_get_index_by_NID.pod

=pod

=head1 NAME

X509_NAME_get_index_by_NID, X509_NAME_get_index_by_OBJ, X509_NAME_get_entry,
X509_NAME_entry_count, X509_NAME_get_text_by_NID, X509_NAME_get_text_by_OBJ -
X509_NAME lookup and enumeration functions

=head1 SYNOPSIS

 #include <openssl/x509.h>

 int X509_NAME_get_index_by_NID(X509_NAME *name, int nid, int lastpos);
 int X509_NAME_get_index_by_OBJ(X509_NAME *name, const ASN1_OBJECT *obj, int lastpos);

 int X509_NAME_entry_count(const X509_NAME *name);
 X509_NAME_ENTRY *X509_NAME_get_entry(const X509_NAME *name, int loc);

 int X509_NAME_get_text_by_NID(X509_NAME *name, int nid, char *buf, int len);
 int X509_NAME_get_text_by_OBJ(X509_NAME *name, const ASN1_OBJECT *obj, char *buf, int len);

=head1 DESCRIPTION

These functions allow an B<X509_NAME> structure to be examined. The
B<X509_NAME> structure is the same as the B<Name> type defined in
RFC2459 (and elsewhere) and used for example in certificate subject
and issuer names.

X509_NAME_get_index_by_NID() and X509_NAME_get_index_by_OBJ() retrieve
the next index matching B<nid> or B<obj> after B<lastpos>. B<lastpos>
should initially be set to -1. If there are no more entries -1 is returned.
If B<nid> is invalid (doesn't correspond to a valid OID) then -2 is returned.

X509_NAME_entry_count() returns the total number of entries in B<name>.

X509_NAME_get_entry() retrieves the B<X509_NAME_ENTRY> from B<name>
corresponding to index B<loc>. Acceptable values for B<loc> run from
0 to (X509_NAME_entry_count(name) - 1). The value returned is an
internal pointer which must not be freed.

X509_NAME_get_text_by_NID(), X509_NAME_get_text_by_OBJ() retrieve
the "text" from the first entry in B<name> which matches B<nid> or
B<obj>, if no such entry exists -1 is returned. At most B<len> bytes
will be written and the text written to B<buf> will be null
terminated. The length of the output string written is returned
excluding the terminating null. If B<buf> is <NULL> then the amount
of space needed in B<buf> (excluding the final null) is returned.

=head1 NOTES

X509_NAME_get_text_by_NID() and X509_NAME_get_text_by_OBJ() are
legacy functions which have various limitations which make them
of minimal use in practice. They can only find the first matching
entry and will copy the contents of the field verbatim: this can
be highly confusing if the target is a multicharacter string type
like a BMPString or a UTF8String.

For a more general solution X509_NAME_get_index_by_NID() or
X509_NAME_get_index_by_OBJ() should be used followed by
X509_NAME_get_entry() on any matching indices and then the
various B<X509_NAME_ENTRY> utility functions on the result.

The list of all relevant B<NID_*> and B<OBJ_* codes> can be found in
the source code header files E<lt>openssl/obj_mac.hE<gt> and/or
E<lt>openssl/objects.hE<gt>.

Applications which could pass invalid NIDs to X509_NAME_get_index_by_NID()
should check for the return value of -2. Alternatively the NID validity
can be determined first by checking OBJ_nid2obj(nid) is not NULL.

=head1 EXAMPLES

Process all entries:

 int i;
 X509_NAME_ENTRY *e;

 for (i = 0; i < X509_NAME_entry_count(nm); i++)
        {
        e = X509_NAME_get_entry(nm, i);
        /* Do something with e */
        }

Process all commonName entries:

 int lastpos = -1;
 X509_NAME_ENTRY *e;

 for (;;)
        {
        lastpos = X509_NAME_get_index_by_NID(nm, NID_commonName, lastpos);
        if (lastpos == -1)
                break;
        e = X509_NAME_get_entry(nm, lastpos);
        /* Do something with e */
        }

=head1 RETURN VALUES

X509_NAME_get_index_by_NID() and X509_NAME_get_index_by_OBJ()
return the index of the next matching entry or -1 if not found.
X509_NAME_get_index_by_NID() can also return -2 if the supplied
NID is invalid.

X509_NAME_entry_count() returns the total number of entries.

X509_NAME_get_entry() returns an B<X509_NAME> pointer to the
requested entry or B<NULL> if the index is invalid.

=head1 SEE ALSO

L<ERR_get_error(3)>, L<d2i_X509_NAME(3)>

=head1 COPYRIGHT

Copyright 2002-2016 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the OpenSSL license (the "License").  You may not use
this file except in compliance with the License.  You can obtain a copy
in the file LICENSE in the source distribution or at
L<https://www.openssl.org/source/license.html>.

=cut
Update docs. 2002-10-10 01:05:05 +08:00			`=pod`

Put NAME in right place, fix typo 2002-11-13 09:20:43 +08:00			`=head1 NAME`

Update docs. 2002-10-10 01:05:05 +08:00			`X509_NAME_get_index_by_NID, X509_NAME_get_index_by_OBJ, X509_NAME_get_entry,`
			`X509_NAME_entry_count, X509_NAME_get_text_by_NID, X509_NAME_get_text_by_OBJ -`
			`X509_NAME lookup and enumeration functions`

			`=head1 SYNOPSIS`

Add includes in synopsis. Submitted by: Mike Frysinger <vapier@gentoo.org> 2006-05-14 19:28:00 +08:00			`#include <openssl/x509.h>`
Update docs. 2002-10-10 01:05:05 +08:00
RT4593: Add space after comma (doc nits) Update find-doc-nits to find errors in SYNOPSIS (the most common place where they were missing). Reviewed-by: Matt Caswell <matt@openssl.org> 2016-07-19 21:27:53 +08:00			`int X509_NAME_get_index_by_NID(X509_NAME *name, int nid, int lastpos);`
Constify some ASN1_OBJECT *obj input parameters Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-08-01 01:38:09 +08:00			`int X509_NAME_get_index_by_OBJ(X509_NAME name, const ASN1_OBJECT obj, int lastpos);`
Update docs. 2002-10-10 01:05:05 +08:00
Constify input parameters of methods : - X509_NAME_entry_count, X509_ATTRIBUTE_count - X509_NAME_add_entry_by_OBJ, X509_NAME_ENTRY_create_by_OBJ, X509_NAME_ENTRY_set_object Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/1300) 2016-07-08 06:10:29 +08:00			`int X509_NAME_entry_count(const X509_NAME *name);`
Constify a bit X509_NAME_get_entry Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-08-20 01:44:10 +08:00			`X509_NAME_ENTRY X509_NAME_get_entry(const X509_NAME name, int loc);`
Add includes in synopsis. Submitted by: Mike Frysinger <vapier@gentoo.org> 2006-05-14 19:28:00 +08:00
RT4593: Add space after comma (doc nits) Update find-doc-nits to find errors in SYNOPSIS (the most common place where they were missing). Reviewed-by: Matt Caswell <matt@openssl.org> 2016-07-19 21:27:53 +08:00			`int X509_NAME_get_text_by_NID(X509_NAME name, int nid, char buf, int len);`
Constify some ASN1_OBJECT *obj input parameters Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-08-01 01:38:09 +08:00			`int X509_NAME_get_text_by_OBJ(X509_NAME name, const ASN1_OBJECT obj, char *buf, int len);`
Update docs. 2002-10-10 01:05:05 +08:00
			`=head1 DESCRIPTION`

			`These functions allow an B<X509_NAME> structure to be examined. The`
			`B<X509_NAME> structure is the same as the B<Name> type defined in`
			`RFC2459 (and elsewhere) and used for example in certificate subject`
			`and issuer names.`

			`X509_NAME_get_index_by_NID() and X509_NAME_get_index_by_OBJ() retrieve`
			`the next index matching B<nid> or B<obj> after B<lastpos>. B<lastpos>`
			`should initially be set to -1. If there are no more entries -1 is returned.`
document -2 return value Reviewed-by: Rich Salz <rsalz@openssl.org> 2015-07-06 21:17:49 +08:00			`If B<nid> is invalid (doesn't correspond to a valid OID) then -2 is returned.`
Update docs. 2002-10-10 01:05:05 +08:00
			`X509_NAME_entry_count() returns the total number of entries in B<name>.`

			`X509_NAME_get_entry() retrieves the B<X509_NAME_ENTRY> from B<name>`
			`corresponding to index B<loc>. Acceptable values for B<loc> run from`
			`0 to (X509_NAME_entry_count(name) - 1). The value returned is an`
			`internal pointer which must not be freed.`

			`X509_NAME_get_text_by_NID(), X509_NAME_get_text_by_OBJ() retrieve`
			`the "text" from the first entry in B<name> which matches B<nid> or`
			`B<obj>, if no such entry exists -1 is returned. At most B<len> bytes`
			`will be written and the text written to B<buf> will be null`
			`terminated. The length of the output string written is returned`
			`excluding the terminating null. If B<buf> is <NULL> then the amount`
Fix nits in pod files. Add doc-nit-check to help find future issues. Make podchecker be almost clean. Remove trailing whitespace. Tab expansion Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-20 20:11:46 +08:00			`of space needed in B<buf> (excluding the final null) is returned.`
Update docs. 2002-10-10 01:05:05 +08:00
			`=head1 NOTES`

			`X509_NAME_get_text_by_NID() and X509_NAME_get_text_by_OBJ() are`
			`legacy functions which have various limitations which make them`
			`of minimal use in practice. They can only find the first matching`
			`entry and will copy the contents of the field verbatim: this can`
RT3802: Fixes typos in doc/crypto/ Signed-off-by: Rich Salz <rsalz@akamai.com> Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-04-14 02:05:13 +08:00			`be highly confusing if the target is a multicharacter string type`
Update docs. 2002-10-10 01:05:05 +08:00			`like a BMPString or a UTF8String.`

			`For a more general solution X509_NAME_get_index_by_NID() or`
			`X509_NAME_get_index_by_OBJ() should be used followed by`
			`X509_NAME_get_entry() on any matching indices and then the`
			`various B<X509_NAME_ENTRY> utility functions on the result.`

Updates to X509_NAME_get_index_by_NID.pod submitted by user Bernardh via the wiki Minor changes made by Matt Caswell Reviewed-by: Dr. Stephen Henson <steve@openssl.org> 2014-09-12 13:00:26 +08:00			`The list of all relevant B<NID_> and B<OBJ_ codes> can be found in`
			`the source code header files E<lt>openssl/obj_mac.hE<gt> and/or`
			`E<lt>openssl/objects.hE<gt>.`

document -2 return value Reviewed-by: Rich Salz <rsalz@openssl.org> 2015-07-06 21:17:49 +08:00			`Applications which could pass invalid NIDs to X509_NAME_get_index_by_NID()`
			`should check for the return value of -2. Alternatively the NID validity`
			`can be determined first by checking OBJ_nid2obj(nid) is not NULL.`

Update docs. 2002-10-10 01:05:05 +08:00			`=head1 EXAMPLES`

			`Process all entries:`

			`int i;`
			`X509_NAME_ENTRY *e;`

			`for (i = 0; i < X509_NAME_entry_count(nm); i++)`
Fix nits in pod files. Add doc-nit-check to help find future issues. Make podchecker be almost clean. Remove trailing whitespace. Tab expansion Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-20 20:11:46 +08:00			`{`
			`e = X509_NAME_get_entry(nm, i);`
			`/* Do something with e */`
			`}`
Update docs. 2002-10-10 01:05:05 +08:00
			`Process all commonName entries:`

Use consistent variable names in example In the X509_NAME_get_index_by_NID.pod example, the initialized variable is called "loc", but the one used in the for loop is called "lastpos". Make the names match. CLA: trivial Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/1949) 2016-11-18 16:47:50 +08:00			`int lastpos = -1;`
Update docs. 2002-10-10 01:05:05 +08:00			`X509_NAME_ENTRY *e;`

			`for (;;)`
Fix nits in pod files. Add doc-nit-check to help find future issues. Make podchecker be almost clean. Remove trailing whitespace. Tab expansion Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-20 20:11:46 +08:00			`{`
			`lastpos = X509_NAME_get_index_by_NID(nm, NID_commonName, lastpos);`
			`if (lastpos == -1)`
			`break;`
			`e = X509_NAME_get_entry(nm, lastpos);`
			`/* Do something with e */`
			`}`
Update docs. 2002-10-10 01:05:05 +08:00
			`=head1 RETURN VALUES`

			`X509_NAME_get_index_by_NID() and X509_NAME_get_index_by_OBJ()`
			`return the index of the next matching entry or -1 if not found.`
document -2 return value Reviewed-by: Rich Salz <rsalz@openssl.org> 2015-07-06 21:17:49 +08:00			`X509_NAME_get_index_by_NID() can also return -2 if the supplied`
			`NID is invalid.`
Update docs. 2002-10-10 01:05:05 +08:00
			`X509_NAME_entry_count() returns the total number of entries.`

			`X509_NAME_get_entry() returns an B<X509_NAME> pointer to the`
			`requested entry or B<NULL> if the index is invalid.`

			`=head1 SEE ALSO`

Fix L<> content in manpages L<foo\|foo> is sub-optimal If the xref is the same as the title, which is what we do, then you only need L<foo>. This fixes all 1457 occurrences in 349 files. Approximately. (And pod used to need both.) Reviewed-by: Richard Levitte <levitte@openssl.org> 2015-08-18 03:21:33 +08:00			`L<ERR_get_error(3)>, L<d2i_X509_NAME(3)>`
Update docs. 2002-10-10 01:05:05 +08:00
Add copyright to manpages Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-18 23:44:05 +08:00			`=head1 COPYRIGHT`

			`Copyright 2002-2016 The OpenSSL Project Authors. All Rights Reserved.`

			`Licensed under the OpenSSL license (the "License"). You may not use`
			`this file except in compliance with the License. You can obtain a copy`
			`in the file LICENSE in the source distribution or at`
			`L<https://www.openssl.org/source/license.html>.`

			`=cut`