iPXE
Functions
certmgmt.h File Reference

Certificate management. More...

#include <ipxe/x509.h>

Go to the source code of this file.

Functions

 FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)
 
void certstat (struct x509_certificate *cert)
 Display status of a certificate. More...
 

Detailed Description

Certificate management.

Definition in file certmgmt.h.

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL  )

◆ certstat()

void certstat ( struct x509_certificate cert)

Display status of a certificate.

Parameters
certX.509 certificate

Definition at line 44 of file certmgmt.c.

44  {
46  uint8_t fingerprint[ digest->digestsize ];
47  char buf[ base16_encoded_len ( sizeof ( fingerprint ) ) + 1 /* NUL */ ];
48 
49  /* Generate fingerprint */
50  x509_fingerprint ( cert, digest, fingerprint );
51  base16_encode ( fingerprint, sizeof ( fingerprint ),
52  buf, sizeof ( buf ) );
53 
54  /* Print certificate status */
55  printf ( "%s : %s", x509_name ( cert ), buf );
56  if ( cert->flags & X509_FL_PERMANENT )
57  printf ( " [PERMANENT]" );
58  if ( cert->flags & X509_FL_EXPLICIT )
59  printf ( " [EXPLICIT]" );
60  if ( x509_is_valid ( cert, NULL ) )
61  printf ( " [VALIDATED]" );
62  printf ( "\n" );
63 }
int printf(const char *fmt,...)
Write a formatted string to the console.
Definition: vsprintf.c:464
int x509_is_valid(struct x509_certificate *cert, struct x509_root *root)
Check if X.509 certificate is valid.
Definition: x509.c:1318
unsigned int flags
Flags.
Definition: x509.h:215
static size_t base16_encoded_len(size_t raw_len)
Calculate length of base16-encoded data.
Definition: base16.h:24
static void struct digest_algorithm * digest
HMAC-MD5 digest.
Definition: crypto.h:308
unsigned char uint8_t
Definition: stdint.h:10
void x509_fingerprint(struct x509_certificate *cert, struct digest_algorithm *digest, void *fingerprint)
Calculate X.509 certificate fingerprint.
Definition: x509.c:1242
Certificate was added at build time.
Definition: x509.h:246
const char * x509_name(struct x509_certificate *cert)
Get X.509 certificate display name.
Definition: x509.c:145
size_t digestsize
Digest size.
Definition: crypto.h:25
A message digest algorithm.
Definition: crypto.h:17
#define NULL
NULL pointer (VOID *)
Definition: Base.h:321
Certificate was added explicitly at run time.
Definition: x509.h:248
struct digest_algorithm sha1_algorithm
SHA-1 algorithm.
Definition: sha1.c:257

References base16_encoded_len(), digest, digest_algorithm::digestsize, x509_certificate::flags, NULL, printf(), sha1_algorithm, x509_fingerprint(), X509_FL_EXPLICIT, X509_FL_PERMANENT, x509_is_valid(), and x509_name().