|
| #define | MBEDTLS_X509_ID_FLAG(id) ( 1 << ( (id) - 1 ) ) |
| |
| #define | MBEDTLS_X509_CRT_VERSION_1 0 |
| |
| #define | MBEDTLS_X509_CRT_VERSION_2 1 |
| |
| #define | MBEDTLS_X509_CRT_VERSION_3 2 |
| |
| #define | MBEDTLS_X509_RFC5280_MAX_SERIAL_LEN 32 |
| |
| #define | MBEDTLS_X509_RFC5280_UTC_TIME_LEN 15 |
| |
| #define | MBEDTLS_X509_MAX_FILE_PATH_LEN 512 |
| |
| #define | MBEDTLS_X509_MAX_VERIFY_CHAIN_SIZE ( MBEDTLS_X509_MAX_INTERMEDIATE_CA + 2 ) |
| |
| typedef struct mbedtls_x509_crt | mbedtls_x509_crt |
| |
| typedef struct mbedtls_x509_crt_profile | mbedtls_x509_crt_profile |
| |
| typedef struct mbedtls_x509write_cert | mbedtls_x509write_cert |
| |
| typedef void | mbedtls_x509_crt_restart_ctx |
| |
| const mbedtls_x509_crt_profile | mbedtls_x509_crt_profile_default |
| |
| const mbedtls_x509_crt_profile | mbedtls_x509_crt_profile_next |
| |
| const mbedtls_x509_crt_profile | mbedtls_x509_crt_profile_suiteb |
| |
| int | mbedtls_x509_crt_parse_der (mbedtls_x509_crt *chain, const unsigned char *buf, size_t buflen) |
| | Parse a single DER formatted certificate and add it to the chained list.
|
| |
| int | mbedtls_x509_crt_parse (mbedtls_x509_crt *chain, const unsigned char *buf, size_t buflen) |
| | Parse one DER-encoded or one or more concatenated PEM-encoded certificates and add them to the chained list.
|
| |
| int | mbedtls_x509_crt_info (char *buf, size_t size, const char *prefix, const mbedtls_x509_crt *crt) |
| | Returns an informational string about the certificate.
|
| |
| int | mbedtls_x509_crt_verify_info (char *buf, size_t size, const char *prefix, uint32_t flags) |
| | Returns an informational string about the verification status of a certificate.
|
| |
| int | mbedtls_x509_crt_verify (mbedtls_x509_crt *crt, mbedtls_x509_crt *trust_ca, mbedtls_x509_crl *ca_crl, const char *cn, uint32_t *flags, int(*f_vrfy)(void *, mbedtls_x509_crt *, int, uint32_t *), void *p_vrfy) |
| | Verify the certificate signature.
|
| |
| int | mbedtls_x509_crt_verify_with_profile (mbedtls_x509_crt *crt, mbedtls_x509_crt *trust_ca, mbedtls_x509_crl *ca_crl, const mbedtls_x509_crt_profile *profile, const char *cn, uint32_t *flags, int(*f_vrfy)(void *, mbedtls_x509_crt *, int, uint32_t *), void *p_vrfy) |
| | Verify the certificate signature according to profile.
|
| |
| int | mbedtls_x509_crt_verify_restartable (mbedtls_x509_crt *crt, mbedtls_x509_crt *trust_ca, mbedtls_x509_crl *ca_crl, const mbedtls_x509_crt_profile *profile, const char *cn, uint32_t *flags, int(*f_vrfy)(void *, mbedtls_x509_crt *, int, uint32_t *), void *p_vrfy, mbedtls_x509_crt_restart_ctx *rs_ctx) |
| | Restartable version of mbedtls_crt_verify_with_profile()
|
| |
| int | mbedtls_x509_crt_check_key_usage (const mbedtls_x509_crt *crt, unsigned int usage) |
| | Check usage of certificate against keyUsage extension.
|
| |
| int | mbedtls_x509_crt_check_extended_key_usage (const mbedtls_x509_crt *crt, const char *usage_oid, size_t usage_len) |
| | Check usage of certificate against extendedKeyUsage.
|
| |
| void | mbedtls_x509_crt_init (mbedtls_x509_crt *crt) |
| | Initialize a certificate (chain)
|
| |
| void | mbedtls_x509_crt_free (mbedtls_x509_crt *crt) |
| | Unallocate all certificate data.
|
| |
X.509 certificate parsing and writing.
Definition in file x509_crt.h.
