1CTLOG_NEW(3ossl) OpenSSL CTLOG_NEW(3ossl)
2
6 CTLOG_new_ex, CTLOG_new, CTLOG_new_from_base64,
7 CTLOG_new_from_base64_ex, CTLOG_free, CTLOG_get0_name,
8 CTLOG_get0_log_id, CTLOG_get0_public_key - encapsulates information
9 about a Certificate Transparency log
10
12 #include <openssl/ct.h>
13 CTLOG *CTLOG_new_ex(EVP_PKEY *public_key, const char *name,
15 OSSL_LIB_CTX *libctx, const char *propq);
16 CTLOG *CTLOG_new(EVP_PKEY *public_key, const char *name);
17 int CTLOG_new_from_base64_ex(CTLOG **ct_log, const char *pkey_base64,
19 const char *name, OSSL_LIB_CTX *libctx,
20 const char *propq);
21 int CTLOG_new_from_base64(CTLOG ** ct_log,
22 const char *pkey_base64, const char *name);
23 void CTLOG_free(CTLOG *log);
24 const char *CTLOG_get0_name(const CTLOG *log);
25 void CTLOG_get0_log_id(const CTLOG *log, const uint8_t **log_id,
26 size_t *log_id_len);
27 EVP_PKEY *CTLOG_get0_public_key(const CTLOG *log);
28
30 CTLOG_new_ex() returns a new CTLOG that represents the Certificate
31 Transparency (CT) log with the given public key and associates it with
32 the library context libctx and property query string propq. A name must
33 also be provided that can be used to help users identify this log.
34 Ownership of the public key is transferred.
35 CTLOG_new() does the same thing as CTLOG_new_ex() but with the default
37 library context and the default property query string.
38 CTLOG_new_from_base64_ex() also creates a new CTLOG, but takes the
40 public key in base64-encoded DER form and sets the ct_log pointer to
41 point to the new CTLOG. The base64 will be decoded and the public key
42 parsed. The CTLOG will be associated with the given library context
43 libctx and property query string propq.
44 CTLOG_new_from_base64() does the same thing as
46 CTLOG_new_from_base64_ex() except that the default library context and
47 property query string are used.
48 Regardless of whether CTLOG_new() or CTLOG_new_from_base64() is used,
50 it is the caller's responsibility to pass the CTLOG to CTLOG_free()
51 once it is no longer needed. This will delete it and, if created by
52 CTLOG_new(), the EVP_PKEY that was passed to it.
53 CTLOG_get0_name() returns the name of the log, as provided when the
55 CTLOG was created. Ownership of the string remains with the CTLOG.
56 CTLOG_get0_log_id() sets *log_id to point to a string containing that
58 log's LogID (see RFC 6962). It sets *log_id_len to the length of that
59 LogID. For a v1 CT log, the LogID will be a SHA-256 hash (i.e. 32 bytes
60 long). Ownership of the string remains with the CTLOG.
61 CTLOG_get0_public_key() returns the public key of the CT log. Ownership
63 of the EVP_PKEY remains with the CTLOG.
64
66 CTLOG_new() will return NULL if an error occurs.
67 CTLOG_new_from_base64() will return 1 on success, 0 otherwise.
69
71 ct(7)
72
74 The functions CTLOG_new_ex() and CTLOG_new_from_base64_ex() were added
75 in OpenSSL 3.0. All other functions were added in OpenSSL 1.1.0.
76
78 Copyright 2016-2020 The OpenSSL Project Authors. All Rights Reserved.
79 Licensed under the Apache License 2.0 (the "License"). You may not use
81 this file except in compliance with the License. You can obtain a copy
82 in the file LICENSE in the source distribution or at
83 <https://www.openssl.org/source/license.html>.
843.1.1 2023-08-31 CTLOG_NEW(3ossl)