diff options
| author | Paul Kehrer <paul.l.kehrer@gmail.com> | 2015-11-19 14:59:06 -0600 |
|---|---|---|
| committer | Paul Kehrer <paul.l.kehrer@gmail.com> | 2015-11-19 14:59:06 -0600 |
| commit | cc1962d9ece2496548032074499e2aed475b5271 (patch) | |
| tree | 5fe5150bfc4313b610a416491f259fd3aca80d7c /docs | |
| parent | a06e0cf66906a723682731af53e295179d5c9f4d (diff) | |
| parent | 569aa6a847cf6f533d41240d574c8f56512d2324 (diff) | |
| download | cryptography-cc1962d9ece2496548032074499e2aed475b5271.tar.gz cryptography-cc1962d9ece2496548032074499e2aed475b5271.tar.bz2 cryptography-cc1962d9ece2496548032074499e2aed475b5271.zip | |
Merge pull request #2489 from etrauschke/crl_verify
add tbsCertList and signature interfaces to CRLs
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/x509/reference.rst | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/docs/x509/reference.rst b/docs/x509/reference.rst index 10ba9ec3..35c00e61 100644 --- a/docs/x509/reference.rst +++ b/docs/x509/reference.rst @@ -504,6 +504,26 @@ X.509 CRL (Certificate Revocation List) Object The extensions encoded in the CRL. + .. attribute:: signature + + .. versionadded:: 1.2 + + :type: bytes + + The bytes of the CRL's signature. + + .. attribute:: tbs_certlist_bytes + + .. versionadded:: 1.2 + + :type: bytes + + The DER encoded bytes payload (as defined by :rfc:`5280`) that is hashed + and then signed by the private key of the CRL's issuer. This data may be + used to validate a signature, but use extreme caution as CRL validation + is a complex problem that involves much more than just signature checks. + + X.509 Certificate Builder ~~~~~~~~~~~~~~~~~~~~~~~~~ |