diff options
| author | Michael Brown | 2012-05-14 15:09:52 +0200 |
|---|---|---|
| committer | Michael Brown | 2012-05-14 19:09:40 +0200 |
| commit | e01af7367dfb14a76767c7bfb8763e5a705822c1 (patch) | |
| tree | 7098c9f16b61b319593f9d4eaabc6977302fa53b /src/crypto | |
| parent | [crypto] Generalise x509_parse_bit_string() to asn1_bit_string() (diff) | |
| download | ipxe-e01af7367dfb14a76767c7bfb8763e5a705822c1.tar.gz ipxe-e01af7367dfb14a76767c7bfb8763e5a705822c1.tar.xz ipxe-e01af7367dfb14a76767c7bfb8763e5a705822c1.zip | |
[crypto] Parse OCSPSigning key purpose, if present
Signed-off-by: Michael Brown <mcb30@ipxe.org>
Diffstat (limited to 'src/crypto')
| -rw-r--r-- | src/crypto/x509.c | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/src/crypto/x509.c b/src/crypto/x509.c index dc8745dc..a8660934 100644 --- a/src/crypto/x509.c +++ b/src/crypto/x509.c @@ -518,6 +518,9 @@ static int x509_parse_key_usage ( struct x509_certificate *cert, /** "id-kp-codeSigning" object identifier */ static uint8_t oid_code_signing[] = { ASN1_OID_CODESIGNING }; +/** "id-kp-OCSPSigning" object identifier */ +static uint8_t oid_ocsp_signing[] = { ASN1_OID_OCSPSIGNING }; + /** Supported key purposes */ static struct x509_key_purpose x509_key_purposes[] = { { @@ -525,6 +528,11 @@ static struct x509_key_purpose x509_key_purposes[] = { .bits = X509_CODE_SIGNING, .oid = ASN1_OID_CURSOR ( oid_code_signing ), }, + { + .name = "ocspSigning", + .bits = X509_OCSP_SIGNING, + .oid = ASN1_OID_CURSOR ( oid_ocsp_signing ), + }, }; /** |