mbedtls_x509_crt Struct Reference
[X.509 module]

#include <x509_crt.h>

Collaboration diagram for mbedtls_x509_crt:
Collaboration graph
[legend]

Data Fields

mbedtls_x509_buf raw
mbedtls_x509_buf tbs
int version
mbedtls_x509_buf serial
mbedtls_x509_buf sig_oid
mbedtls_x509_buf issuer_raw
mbedtls_x509_buf subject_raw
mbedtls_x509_name issuer
mbedtls_x509_name subject
mbedtls_x509_time valid_from
mbedtls_x509_time valid_to
mbedtls_pk_context pk
mbedtls_x509_buf issuer_id
mbedtls_x509_buf subject_id
mbedtls_x509_buf v3_ext
mbedtls_x509_sequence subject_alt_names
int ext_types
int ca_istrue
int max_pathlen
unsigned int key_usage
mbedtls_x509_sequence ext_key_usage
unsigned char ns_cert_type
mbedtls_x509_buf sig
mbedtls_md_type_t sig_md
mbedtls_pk_type_t sig_pk
void * sig_opts
struct mbedtls_x509_crtnext

Detailed Description

Container for an X.509 certificate. The certificate may be chained.

Definition at line 80 of file x509_crt.h.


Field Documentation

Optional Basic Constraint extension value: 1 if this certificate belongs to a CA, 0 otherwise.

Definition at line 106 of file x509_crt.h.

Optional list of extended key usage OIDs.

Definition at line 111 of file x509_crt.h.

Bit string containing detected and parsed extensions

Definition at line 105 of file x509_crt.h.

The parsed issuer data (named information object).

Definition at line 92 of file x509_crt.h.

Optional X.509 v2/v3 issuer unique identifier.

Definition at line 100 of file x509_crt.h.

The raw issuer data (DER). Used for quick comparison.

Definition at line 89 of file x509_crt.h.

Optional key usage extension value: See the values in x509.h

Definition at line 109 of file x509_crt.h.

Optional Basic Constraint extension value: The maximum path length to the root certificate. Path length is 1 higher than RFC 5280 'meaning', so 1+

Definition at line 107 of file x509_crt.h.

Next certificate in the CA-chain.

Definition at line 120 of file x509_crt.h.

Optional Netscape certificate type extension value: See the values in x509.h

Definition at line 113 of file x509_crt.h.

Container for the public key context.

Definition at line 98 of file x509_crt.h.

The raw certificate data (DER).

Definition at line 82 of file x509_crt.h.

Unique id for certificate issued by a specific CA.

Definition at line 86 of file x509_crt.h.

Signature: hash of the tbs part signed with the private key.

Definition at line 115 of file x509_crt.h.

Internal representation of the MD algorithm of the signature algorithm, e.g. MBEDTLS_MD_SHA256

Definition at line 116 of file x509_crt.h.

Signature algorithm, e.g. sha1RSA

Definition at line 87 of file x509_crt.h.

Signature options to be passed to mbedtls_pk_verify_ext(), e.g. for RSASSA-PSS

Definition at line 118 of file x509_crt.h.

Internal representation of the Public Key algorithm of the signature algorithm, e.g. MBEDTLS_PK_RSA

Definition at line 117 of file x509_crt.h.

The parsed subject data (named information object).

Definition at line 93 of file x509_crt.h.

Optional list of Subject Alternative Names (Only dNSName supported).

Definition at line 103 of file x509_crt.h.

Optional X.509 v2/v3 subject unique identifier.

Definition at line 101 of file x509_crt.h.

The raw subject data (DER). Used for quick comparison.

Definition at line 90 of file x509_crt.h.

The raw certificate body (DER). The part that is To Be Signed.

Definition at line 83 of file x509_crt.h.

Optional X.509 v3 extensions.

Definition at line 102 of file x509_crt.h.

Start time of certificate validity.

Definition at line 95 of file x509_crt.h.

End time of certificate validity.

Definition at line 96 of file x509_crt.h.

The X.509 version. (1=v1, 2=v2, 3=v3)

Definition at line 85 of file x509_crt.h.


The documentation for this struct was generated from the following file:

Generated on 10 Aug 2020 for mbed TLS v2.7.16 by  doxygen 1.6.1