iPXE
Functions
certmgmt.c File Reference

Certificate management. More...

#include <stdio.h>
#include <errno.h>
#include <ipxe/x509.h>
#include <ipxe/sha1.h>
#include <ipxe/base16.h>
#include <usr/certmgmt.h>

Go to the source code of this file.

Functions

 FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)
 
void certstat (struct x509_certificate *cert)
 Display status of a certificate. More...
 

Detailed Description

Certificate management.

Definition in file certmgmt.c.

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL  )

◆ certstat()

void certstat ( struct x509_certificate cert)

Display status of a certificate.

Parameters
certX.509 certificate

Definition at line 44 of file certmgmt.c.

44  {
46  uint8_t fingerprint[ digest->digestsize ];
47  char buf[ base16_encoded_len ( sizeof ( fingerprint ) ) + 1 /* NUL */ ];
48 
49  /* Generate fingerprint */
50  x509_fingerprint ( cert, digest, fingerprint );
51  base16_encode ( fingerprint, sizeof ( fingerprint ),
52  buf, sizeof ( buf ) );
53 
54  /* Print certificate status */
55  printf ( "%s : %s", x509_name ( cert ), buf );
56  if ( cert->flags & X509_FL_PERMANENT )
57  printf ( " [PERMANENT]" );
58  if ( cert->flags & X509_FL_EXPLICIT )
59  printf ( " [EXPLICIT]" );
60  if ( x509_is_valid ( cert ) )
61  printf ( " [VALIDATED]" );
62  printf ( "\n" );
63 }
int printf(const char *fmt,...)
Write a formatted string to the console.
Definition: vsprintf.c:464
struct md4_digest digest
Digest of data already processed.
Definition: md4.h:12
unsigned int flags
Flags.
Definition: x509.h:193
static size_t base16_encoded_len(size_t raw_len)
Calculate length of base16-encoded data.
Definition: base16.h:21
static int x509_is_valid(struct x509_certificate *cert)
Check if X.509 certificate is valid.
Definition: x509.h:391
unsigned char uint8_t
Definition: stdint.h:10
void x509_fingerprint(struct x509_certificate *cert, struct digest_algorithm *digest, void *fingerprint)
Calculate X.509 certificate fingerprint.
Definition: x509.c:1228
Certificate was added at build time.
Definition: x509.h:224
const char * x509_name(struct x509_certificate *cert)
Get X.509 certificate display name.
Definition: x509.c:131
A message digest algorithm.
Definition: crypto.h:16
Certificate was added explicitly at run time.
Definition: x509.h:226
struct digest_algorithm sha1_algorithm
SHA-1 algorithm.
Definition: sha1.c:258

References base16_encoded_len(), digest, x509_certificate::flags, printf(), sha1_algorithm, x509_fingerprint(), X509_FL_EXPLICIT, X509_FL_PERMANENT, x509_is_valid(), and x509_name().