mbed TLS v3.1.0
|
#include <x509_crt.h>
Container for an X.509 certificate. The certificate may be chained.
Some fields of this structure are publicly readable. Do not modify them except via Mbed TLS library functions: the effect of modifying those fields or the data that those fields points to is unspecified.
Definition at line 53 of file x509_crt.h.
mbedtls_x509_sequence mbedtls_x509_crt::certificate_policies |
Optional list of certificate policies (Only anyPolicy is printed and enforced, however the rest of the policies are still listed).
Definition at line 81 of file x509_crt.h.
mbedtls_x509_sequence mbedtls_x509_crt::ext_key_usage |
Optional list of extended key usage OIDs.
Definition at line 89 of file x509_crt.h.
mbedtls_x509_name mbedtls_x509_crt::issuer |
The parsed issuer data (named information object).
Definition at line 67 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::issuer_id |
Optional X.509 v2/v3 issuer unique identifier.
Definition at line 76 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::issuer_raw |
The raw issuer data (DER). Used for quick comparison.
Definition at line 64 of file x509_crt.h.
struct mbedtls_x509_crt* mbedtls_x509_crt::next |
Next certificate in the linked list that constitutes the CA chain. NULL
indicates the end of the list. Do not modify this field directly.
Definition at line 101 of file x509_crt.h.
mbedtls_pk_context mbedtls_x509_crt::pk |
Container for the public key context.
Definition at line 74 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::pk_raw |
Definition at line 73 of file x509_crt.h.
int mbedtls_x509_crt::private_ca_istrue |
Optional Basic Constraint extension value: 1 if this certificate belongs to a CA, 0 otherwise.
Definition at line 84 of file x509_crt.h.
int mbedtls_x509_crt::private_ext_types |
Bit string containing detected and parsed extensions
Definition at line 83 of file x509_crt.h.
unsigned int mbedtls_x509_crt::private_key_usage |
Optional key usage extension value: See the values in x509.h
Definition at line 87 of file x509_crt.h.
int mbedtls_x509_crt::private_max_pathlen |
Optional Basic Constraint extension value: The maximum path length to the root certificate. Path length is 1 higher than RFC 5280 'meaning', so 1+
Definition at line 85 of file x509_crt.h.
unsigned char mbedtls_x509_crt::private_ns_cert_type |
Optional Netscape certificate type extension value: See the values in x509.h
Definition at line 91 of file x509_crt.h.
int mbedtls_x509_crt::private_own_buffer |
Indicates if raw
is owned by the structure or not.
Definition at line 55 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::private_sig |
Signature: hash of the tbs part signed with the private key.
Definition at line 93 of file x509_crt.h.
mbedtls_md_type_t mbedtls_x509_crt::private_sig_md |
Internal representation of the MD algorithm of the signature algorithm, e.g. MBEDTLS_MD_SHA256
Definition at line 94 of file x509_crt.h.
void* mbedtls_x509_crt::private_sig_opts |
Signature options to be passed to mbedtls_pk_verify_ext(), e.g. for RSASSA-PSS
Definition at line 96 of file x509_crt.h.
mbedtls_pk_type_t mbedtls_x509_crt::private_sig_pk |
Internal representation of the Public Key algorithm of the signature algorithm, e.g. MBEDTLS_PK_RSA
Definition at line 95 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::raw |
The raw certificate data (DER).
Definition at line 57 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::serial |
Unique id for certificate issued by a specific CA.
Definition at line 61 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::sig_oid |
Signature algorithm, e.g. sha1RSA
Definition at line 62 of file x509_crt.h.
mbedtls_x509_name mbedtls_x509_crt::subject |
The parsed subject data (named information object).
Definition at line 68 of file x509_crt.h.
mbedtls_x509_sequence mbedtls_x509_crt::subject_alt_names |
Optional list of raw entries of Subject Alternative Names extension (currently only dNSName and OtherName are listed).
Definition at line 79 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::subject_id |
Optional X.509 v2/v3 subject unique identifier.
Definition at line 77 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::subject_raw |
The raw subject data (DER). Used for quick comparison.
Definition at line 65 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::tbs |
The raw certificate body (DER). The part that is To Be Signed.
Definition at line 58 of file x509_crt.h.
mbedtls_x509_buf mbedtls_x509_crt::v3_ext |
Optional X.509 v3 extensions.
Definition at line 78 of file x509_crt.h.
mbedtls_x509_time mbedtls_x509_crt::valid_from |
Start time of certificate validity.
Definition at line 70 of file x509_crt.h.
mbedtls_x509_time mbedtls_x509_crt::valid_to |
End time of certificate validity.
Definition at line 71 of file x509_crt.h.
int mbedtls_x509_crt::version |
The X.509 version. (1=v1, 2=v2, 3=v3)
Definition at line 60 of file x509_crt.h.