TP_CertGroupPrune
CSSM_CERTGROUP_PTR CSSMTPI TP_CertGroupPrune
(CSSM_TP_HANDLE TPHandle,
CSSM_CL_HANDLE CLHandle,
const CSSM_DL_DB_LIST_PTR DBList,
CSSM_CERTGROUP_PTR OrderedCertGroup)
This function removes any locally issued anchor certificates from a constructed certificate group. The resulting certificate group can be exported to external entities.
- TPHandle input)
The handle that describes the add-in trust policy module used to perform this function.
- CLHandle (input)
The handle that describes the add-in certificate library module used to perform this function.
- DBList (input)
A list of certificate databases containing certificates that contain anchor certificates restricted to have local scope. These certificates are candidates for removal from the subject certificate group.
- OrderedCertGroup (input)
A group of semantically related certificates. (for example, the result of CSSM_TP_CertGroupConstruct)
A CSSM_CERTGROUP_PTR return value contains a pointer to a certificate group without local anchor certificates. When NULL is returned an error has occurred. This function can also return errors specific to CL and DL modules.
- CSSM_INVALID_TP_HANDLE
Invalid handle.
- CSSM_INVALID_CL_HANDLE
Invalid handle.
- CSSM_INVALID_DL_HANDLE
Invalid handle.
- CSSM_INVALID_DB_HANDLE
Invalid handle.
- CSSM_TP_INVALID_CERTIFICATE
Invalid certificate.
- CSSM_TP_INVALID_CERT_GROUP
Invalid CertGroup construction.
- CSSM_MEMORY_ERROR
Internal memory error.
- CSSM_FUNCTION_NOT_IMPLEMENTED
Function not implemented.
TP_CertGroupConstruct, TP_CertVerify
Contents | Next section | Index |