commit 52be08c299ffd42ee06f29200ea9b752b44f9ea8
author Paul Bakker <p.j.bakker@polarssl.org> Mon Sep 09 12:37:54 2013 +0200
committer Paul Bakker <p.j.bakker@polarssl.org> Mon Sep 09 12:38:45 2013 +0200
tree e5886a14a19603924dbe9ecd1262c4f2056eb694
parent cd358036847b50c39f1689c9f44a17f74ac9e17e

Added support for writing Key Usage and NS Cert Type extensions

library/x509write.c

diff --git a/library/x509write.c b/library/x509write.c
index 818a83a..c57e56a 100644
--- a/library/x509write.c
+++ b/library/x509write.c
@@ -389,6 +389,47 @@
                                    0, buf + sizeof(buf) - len, len );
 }
 
+int x509write_crt_set_key_usage( x509write_cert *ctx, unsigned char key_usage )
+{
+    unsigned char buf[4];
+    unsigned char *c;
+    int ret;
+
+    c = buf + 4;
+
+    if( ( ret = asn1_write_bitstring( &c, buf, &key_usage, 7 ) ) != 4 )
+        return( ret );
+
+    ret = x509write_crt_set_extension( ctx, OID_KEY_USAGE,
+                                       OID_SIZE( OID_KEY_USAGE ),
+                                       1, buf, 4 );
+    if( ret != 0 )
+        return( ret );
+
+    return( 0 );
+}
+
+int x509write_crt_set_ns_cert_type( x509write_cert *ctx,
+                                    unsigned char ns_cert_type )
+{
+    unsigned char buf[4];
+    unsigned char *c;
+    int ret;
+
+    c = buf + 4;
+
+    if( ( ret = asn1_write_bitstring( &c, buf, &ns_cert_type, 8 ) ) != 4 )
+        return( ret );
+
+    ret = x509write_crt_set_extension( ctx, OID_NS_CERT_TYPE,
+                                       OID_SIZE( OID_NS_CERT_TYPE ),
+                                       0, buf, 4 );
+    if( ret != 0 )
+        return( ret );
+
+    return( 0 );
+}
+
 int x509write_pubkey_der( rsa_context *rsa, unsigned char *buf, size_t size )
 {
     int ret;