mbedtls_x509_crt Struct Reference
Container for an X.509 certificate.
#include <x509_crt.h>
Public Member Functions | |
int | MBEDTLS_PRIVATE (own_buffer) |
Indicates if raw is owned by the structure or not. | |
int | MBEDTLS_PRIVATE (ext_types) |
Bit string containing detected and parsed extensions. | |
int | MBEDTLS_PRIVATE (ca_istrue) |
Optional Basic Constraint extension value: 1 if this certificate belongs to a CA, 0 otherwise. | |
int | MBEDTLS_PRIVATE (max_pathlen) |
Optional Basic Constraint extension value: The maximum path length to the root certificate. | |
unsigned int | MBEDTLS_PRIVATE (key_usage) |
Optional key usage extension value: See the values in x509.h. | |
unsigned char | MBEDTLS_PRIVATE (ns_cert_type) |
Optional Netscape certificate type extension value: See the values in x509.h. | |
mbedtls_x509_buf | MBEDTLS_PRIVATE (sig) |
Signature: hash of the tbs part signed with the private key. | |
mbedtls_md_type_t | MBEDTLS_PRIVATE (sig_md) |
Internal representation of the MD algorithm of the signature algorithm, e.g. | |
mbedtls_pk_type_t | MBEDTLS_PRIVATE (sig_pk) |
Internal representation of the Public Key algorithm of the signature algorithm, e.g. | |
void * | MBEDTLS_PRIVATE (sig_opts) |
Signature options to be passed to mbedtls_pk_verify_ext(), e.g. | |
Data Fields | |
mbedtls_x509_buf | raw |
The raw certificate data (DER). | |
mbedtls_x509_buf | tbs |
The raw certificate body (DER). | |
int | version |
The X.509 version. | |
mbedtls_x509_buf | serial |
Unique id for certificate issued by a specific CA. | |
mbedtls_x509_buf | sig_oid |
Signature algorithm, e.g. | |
mbedtls_x509_buf | issuer_raw |
The raw issuer data (DER). | |
mbedtls_x509_buf | subject_raw |
The raw subject data (DER). | |
mbedtls_x509_name | issuer |
The parsed issuer data (named information object). | |
mbedtls_x509_name | subject |
The parsed subject data (named information object). | |
mbedtls_x509_time | valid_from |
Start time of certificate validity. | |
mbedtls_x509_time | valid_to |
End time of certificate validity. | |
mbedtls_x509_buf | pk_raw |
mbedtls_pk_context | pk |
Container for the public key context. | |
mbedtls_x509_buf | issuer_id |
Optional X.509 v2/v3 issuer unique identifier. | |
mbedtls_x509_buf | subject_id |
Optional X.509 v2/v3 subject unique identifier. | |
mbedtls_x509_buf | v3_ext |
Optional X.509 v3 extensions. | |
mbedtls_x509_sequence | subject_alt_names |
Optional list of raw entries of Subject Alternative Names extension (currently only dNSName and OtherName are listed). | |
mbedtls_x509_sequence | certificate_policies |
Optional list of certificate policies (Only anyPolicy is printed and enforced, however the rest of the policies are still listed). | |
mbedtls_x509_sequence | ext_key_usage |
Optional list of extended key usage OIDs. | |
struct mbedtls_x509_crt * | next |
Next certificate in the linked list that constitutes the CA chain. | |
Container for an X.509 certificate.
The certificate may be chained.
Some fields of this structure are publicly readable. Do not modify them except via Mbed TLS library functions: the effect of modifying those fields or the data that those fields points to is unspecified.