Module trust_anchor_util

Utilities for efficiently embedding trust anchors in programs.

Functions

cert_der_as_trust_anchor

Interprets the given DER-encoded certificate as a TrustAnchor. The certificate is not validated. In particular, there is no check that the certificate is self-signed or even that the certificate has the cA basic constraint.

generate_code_for_trust_anchors

Generates code for hard-coding the given trust anchors into a program. This is designed to be used in a build script. name is the name of the public static variable that will contain the TrustAnchor array.