|
#define | MBEDTLS_X509_ID_FLAG(id) ( 1 << ( (id) - 1 ) ) |
|
#define | MBEDTLS_X509_CRT_VERSION_1 0 |
|
#define | MBEDTLS_X509_CRT_VERSION_2 1 |
|
#define | MBEDTLS_X509_CRT_VERSION_3 2 |
|
#define | MBEDTLS_X509_RFC5280_MAX_SERIAL_LEN 32 |
|
#define | MBEDTLS_X509_RFC5280_UTC_TIME_LEN 15 |
|
#define | MBEDTLS_X509_MAX_FILE_PATH_LEN 512 |
|
#define | MBEDTLS_X509_MAX_VERIFY_CHAIN_SIZE ( MBEDTLS_X509_MAX_INTERMEDIATE_CA + 2 ) |
|
typedef struct mbedtls_x509_crt | mbedtls_x509_crt |
|
typedef struct mbedtls_x509_crt_profile | mbedtls_x509_crt_profile |
|
typedef struct mbedtls_x509write_cert | mbedtls_x509write_cert |
|
typedef void | mbedtls_x509_crt_restart_ctx |
|
const mbedtls_x509_crt_profile | mbedtls_x509_crt_profile_default |
|
const mbedtls_x509_crt_profile | mbedtls_x509_crt_profile_next |
|
const mbedtls_x509_crt_profile | mbedtls_x509_crt_profile_suiteb |
|
int | mbedtls_x509_crt_parse_der (mbedtls_x509_crt *chain, const unsigned char *buf, size_t buflen) |
| Parse a single DER formatted certificate and add it to the chained list.
|
|
int | mbedtls_x509_crt_parse (mbedtls_x509_crt *chain, const unsigned char *buf, size_t buflen) |
| Parse one DER-encoded or one or more concatenated PEM-encoded certificates and add them to the chained list.
|
|
int | mbedtls_x509_crt_info (char *buf, size_t size, const char *prefix, const mbedtls_x509_crt *crt) |
| Returns an informational string about the certificate.
|
|
int | mbedtls_x509_crt_verify_info (char *buf, size_t size, const char *prefix, uint32_t flags) |
| Returns an informational string about the verification status of a certificate.
|
|
int | mbedtls_x509_crt_verify (mbedtls_x509_crt *crt, mbedtls_x509_crt *trust_ca, mbedtls_x509_crl *ca_crl, const char *cn, uint32_t *flags, int(*f_vrfy)(void *, mbedtls_x509_crt *, int, uint32_t *), void *p_vrfy) |
| Verify the certificate signature.
|
|
int | mbedtls_x509_crt_verify_with_profile (mbedtls_x509_crt *crt, mbedtls_x509_crt *trust_ca, mbedtls_x509_crl *ca_crl, const mbedtls_x509_crt_profile *profile, const char *cn, uint32_t *flags, int(*f_vrfy)(void *, mbedtls_x509_crt *, int, uint32_t *), void *p_vrfy) |
| Verify the certificate signature according to profile.
|
|
int | mbedtls_x509_crt_verify_restartable (mbedtls_x509_crt *crt, mbedtls_x509_crt *trust_ca, mbedtls_x509_crl *ca_crl, const mbedtls_x509_crt_profile *profile, const char *cn, uint32_t *flags, int(*f_vrfy)(void *, mbedtls_x509_crt *, int, uint32_t *), void *p_vrfy, mbedtls_x509_crt_restart_ctx *rs_ctx) |
| Restartable version of mbedtls_crt_verify_with_profile()
|
|
int | mbedtls_x509_crt_check_key_usage (const mbedtls_x509_crt *crt, unsigned int usage) |
| Check usage of certificate against keyUsage extension.
|
|
int | mbedtls_x509_crt_check_extended_key_usage (const mbedtls_x509_crt *crt, const char *usage_oid, size_t usage_len) |
| Check usage of certificate against extendedKeyUsage.
|
|
void | mbedtls_x509_crt_init (mbedtls_x509_crt *crt) |
| Initialize a certificate (chain)
|
|
void | mbedtls_x509_crt_free (mbedtls_x509_crt *crt) |
| Unallocate all certificate data.
|
|
X.509 certificate parsing and writing.
Definition in file x509_crt.h.