nRF5 SDK for Thread and Zigbee v1.0.0
Choose documentation:
mbedtls_x509_crt Struct Reference

#include <x509_crt.h>

Data Fields

mbedtls_x509_buf raw
 
mbedtls_x509_buf tbs
 
int version
 
mbedtls_x509_buf serial
 
mbedtls_x509_buf sig_oid
 
mbedtls_x509_buf issuer_raw
 
mbedtls_x509_buf subject_raw
 
mbedtls_x509_name issuer
 
mbedtls_x509_name subject
 
mbedtls_x509_time valid_from
 
mbedtls_x509_time valid_to
 
mbedtls_pk_context pk
 
mbedtls_x509_buf issuer_id
 
mbedtls_x509_buf subject_id
 
mbedtls_x509_buf v3_ext
 
mbedtls_x509_sequence subject_alt_names
 
int ext_types
 
int ca_istrue
 
int max_pathlen
 
unsigned int key_usage
 
mbedtls_x509_sequence ext_key_usage
 
unsigned char ns_cert_type
 
mbedtls_x509_buf sig
 
mbedtls_md_type_t sig_md
 
mbedtls_pk_type_t sig_pk
 
void * sig_opts
 
struct mbedtls_x509_crtnext
 

Detailed Description

Container for an X.509 certificate. The certificate may be chained.

Field Documentation

int mbedtls_x509_crt::ca_istrue

Optional Basic Constraint extension value: 1 if this certificate belongs to a CA, 0 otherwise.

mbedtls_x509_sequence mbedtls_x509_crt::ext_key_usage

Optional list of extended key usage OIDs.

int mbedtls_x509_crt::ext_types

Bit string containing detected and parsed extensions

mbedtls_x509_name mbedtls_x509_crt::issuer

The parsed issuer data (named information object).

mbedtls_x509_buf mbedtls_x509_crt::issuer_id

Optional X.509 v2/v3 issuer unique identifier.

mbedtls_x509_buf mbedtls_x509_crt::issuer_raw

The raw issuer data (DER). Used for quick comparison.

unsigned int mbedtls_x509_crt::key_usage

Optional key usage extension value: See the values in x509.h

int mbedtls_x509_crt::max_pathlen

Optional Basic Constraint extension value: The maximum path length to the root certificate. Path length is 1 higher than RFC 5280 'meaning', so 1+

struct mbedtls_x509_crt* mbedtls_x509_crt::next

Next certificate in the CA-chain.

unsigned char mbedtls_x509_crt::ns_cert_type

Optional Netscape certificate type extension value: See the values in x509.h

mbedtls_pk_context mbedtls_x509_crt::pk

Container for the public key context.

mbedtls_x509_buf mbedtls_x509_crt::raw

The raw certificate data (DER).

mbedtls_x509_buf mbedtls_x509_crt::serial

Unique id for certificate issued by a specific CA.

mbedtls_x509_buf mbedtls_x509_crt::sig

Signature: hash of the tbs part signed with the private key.

mbedtls_md_type_t mbedtls_x509_crt::sig_md

Internal representation of the MD algorithm of the signature algorithm, e.g. MBEDTLS_MD_SHA256

mbedtls_x509_buf mbedtls_x509_crt::sig_oid

Signature algorithm, e.g. sha1RSA

void* mbedtls_x509_crt::sig_opts

Signature options to be passed to mbedtls_pk_verify_ext(), e.g. for RSASSA-PSS

mbedtls_pk_type_t mbedtls_x509_crt::sig_pk

Internal representation of the Public Key algorithm of the signature algorithm, e.g. MBEDTLS_PK_RSA

mbedtls_x509_name mbedtls_x509_crt::subject

The parsed subject data (named information object).

mbedtls_x509_sequence mbedtls_x509_crt::subject_alt_names

Optional list of Subject Alternative Names (Only dNSName supported).

mbedtls_x509_buf mbedtls_x509_crt::subject_id

Optional X.509 v2/v3 subject unique identifier.

mbedtls_x509_buf mbedtls_x509_crt::subject_raw

The raw subject data (DER). Used for quick comparison.

mbedtls_x509_buf mbedtls_x509_crt::tbs

The raw certificate body (DER). The part that is To Be Signed.

mbedtls_x509_buf mbedtls_x509_crt::v3_ext

Optional X.509 v3 extensions.

mbedtls_x509_time mbedtls_x509_crt::valid_from

Start time of certificate validity.

mbedtls_x509_time mbedtls_x509_crt::valid_to

End time of certificate validity.

int mbedtls_x509_crt::version

The X.509 version. (1=v1, 2=v2, 3=v3)


The documentation for this struct was generated from the following file: