diff options
| author | Michael Brown | 2012-03-20 00:04:05 +0100 |
|---|---|---|
| committer | Michael Brown | 2012-03-20 00:14:17 +0100 |
| commit | 8583c323a25fd65fb6e7fe47e3e8b69d23acb2d3 (patch) | |
| tree | 9422d344ede255df558bb522615f8c11a0e5fcd8 /src/include | |
| parent | [tls] Parse X.509 validity times into seconds since the Epoch (diff) | |
| download | ipxe-8583c323a25fd65fb6e7fe47e3e8b69d23acb2d3.tar.gz ipxe-8583c323a25fd65fb6e7fe47e3e8b69d23acb2d3.tar.xz ipxe-8583c323a25fd65fb6e7fe47e3e8b69d23acb2d3.zip | |
[tls] Check certificate validity period against current date and time
Signed-off-by: Michael Brown <mcb30@ipxe.org>
Diffstat (limited to 'src/include')
| -rw-r--r-- | src/include/ipxe/x509.h | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/src/include/ipxe/x509.h b/src/include/ipxe/x509.h index f290a76e3..925e23f7d 100644 --- a/src/include/ipxe/x509.h +++ b/src/include/ipxe/x509.h @@ -204,17 +204,19 @@ struct x509_root { extern int x509_parse ( struct x509_certificate *cert, const void *data, size_t len ); -extern int x509_validate ( struct x509_certificate *cert, - struct x509_certificate *issuer ); +extern int x509_validate_issuer ( struct x509_certificate *cert, + struct x509_certificate *issuer ); extern void x509_fingerprint ( struct x509_certificate *cert, struct digest_algorithm *digest, void *fingerprint ); extern int x509_validate_root ( struct x509_certificate *cert, struct x509_root *root ); +extern int x509_validate_time ( struct x509_certificate *cert, time_t time ); extern int x509_validate_chain ( int ( * parse_next ) ( struct x509_certificate *cert, void *context ), - void *context, struct x509_root *root, + void *context, time_t time, + struct x509_root *root, struct x509_certificate *first ); #endif /* _IPXE_X509_H */ |