mbedtls_x509_csr_info: Add parsing code for v3 csr extensions

Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2023-01-12 12:58:02 +01:00 · 2023-01-12 12:58:02 +01:00 · cbaf3167dd
commit cbaf3167dd
parent 2d9e359275
4 changed files with 69 additions and 9 deletions
--- a/include/mbedtls/x509.h
+++ b/include/mbedtls/x509.h
@ -379,6 +379,14 @@ int x509_get_key_usage(unsigned char **p,
 int x509_get_subject_alt_name(unsigned char **p,
                              const unsigned char *end,
                              mbedtls_x509_sequence *subject_alt_name);
+int x509_info_subject_alt_name(char **buf, size_t *size,
+                               const mbedtls_x509_sequence
+                               *subject_alt_name,
+                               const char *prefix);
+int x509_info_cert_type(char **buf, size_t *size,
+                        unsigned char ns_cert_type);
+int x509_info_key_usage(char **buf, size_t *size,
+                        unsigned int key_usage);

 #define MBEDTLS_X509_SAFE_SNPRINTF                          \
    do {                                                    \
--- a/include/mbedtls/x509_csr.h
+++ b/include/mbedtls/x509_csr.h
@ -62,6 +62,8 @@ typedef struct mbedtls_x509_csr {
    unsigned char ns_cert_type; /**< Optional Netscape certificate type extension value: See the values in x509.h */
    mbedtls_x509_sequence subject_alt_names;    /**< Optional list of raw entries of Subject Alternative Names extension (currently only dNSName and OtherName are listed). */

+    int MBEDTLS_PRIVATE(ext_types);              /**< Bit string containing detected and parsed extensions */
+
    mbedtls_x509_buf sig_oid;
    mbedtls_x509_buf MBEDTLS_PRIVATE(sig);
    mbedtls_md_type_t MBEDTLS_PRIVATE(sig_md);       /**< Internal representation of the MD algorithm of the signature algorithm, e.g. MBEDTLS_MD_SHA256 */