​

C2xSecCertificateCreate

​

Function Syntax

long C2xSecCertificateCreate(long originalCertificateHandle, dword validityInSeconds);
long C2xSecCertificateCreate(long originalCertificateHandle, dword validityInSeconds, long signerCertificateHandle);

​

Description

​

Parameters

• originalCertificateHandle: Handle of a certificate which is used as a template. The new certificate inherits all properties of the original certificate except the key pair and those properties specified by the other parameters below.
• validityInSeconds: The new certificate is at least valid for the specified seconds past the current CANoe DE product simulation time. The validity period of the new certificate starts at midnight of the current simulation day.
• signerCertificateHandle: Handle to a certificate to be used as certificate signer. If this parameter is omitted, the original certificate’s signer is used. If the original certificate is a Root (self signed) certificate this parameter has no meaning. To use a certificate as signer the matching private key must be known and the signer certificate’s protocol version must match that of the one to be signed.

​

Return Values

• 0: Failure
• ≠0: Handle of the new certificate

​

Example

long itsCertHdl;
long pcaCertHdl;
long newPcaCertHdl;
long newItsCertHdl;

itsCertHdl = C2xSecCertificateGetHandle("its"); // get original its certificate
pcaCertHdl = C2xSecCertificateGetHandle("pca"); // get original pca certificate

// create new pca certificate based on the original pca certificate
// validity is at least 24 hours from current simulation time
// share the same root with the original pca
newPcaCertHdl = C2xSecCertificateCreate(pcaCertHdl, 60*60*24);

// create new its certificate based on the original its certificate
// validity is at least 1 hour from current simulation time
// use the new pca certificate as signer of the new its certificate
newItsCertHdl = C2xSecCertificateCreate(itsCertHdl, 60*60, newPcaCertHdl);