Changes

745 bytes added ,  21:27, 16 September 2019
no edit summary
Line 177: Line 177:  
| 0x0
 
| 0x0
 
| 0x4
 
| 0x4
| CaCertificateId
+
| [[#CaCertificateId]]
 
|-
 
|-
 
| 0x4
 
| 0x4
Line 226: Line 226:  
= VerifyOption =
 
= VerifyOption =
 
This is the "nn::ssl::sf::VerifyOption" enum.
 
This is the "nn::ssl::sf::VerifyOption" enum.
 +
 +
= CertStore =
 +
This is the CertStore title, which contains the following files in RomFS:
 +
* "/ssl_CaFingerprints.bdf"
 +
* "/ssl_Crl.bdf"
 +
* "/ssl_TrustedCerts.bdf"
 +
 +
On old system-versions, this only contains "/ssl_TrustedCerts.tcf", which seems to have the same format described below.
 +
 +
These have the following structure:
 +
 +
{| class="wikitable" border="1"
 +
|-
 +
! Offset
 +
! Size
 +
! Description
 +
|-
 +
| 0x0 || 0x4 || Magic "sslT"
 +
|-
 +
| 0x4 || 0x4 || Total entries
 +
|-
 +
| 0x8 || 0x10*{total entries} || Array entries
 +
|}
 +
 +
Array entry structure:
 +
{| class="wikitable" border="1"
 +
|-
 +
! Offset
 +
! Size
 +
! Description
 +
|-
 +
| 0x0
 +
| 0x4
 +
| ID
 +
|-
 +
| 0x4
 +
| 0x4
 +
| ?
 +
|-
 +
| 0x8
 +
| 0x8
 +
| Data size
 +
|-
 +
| 0x10
 +
| 0x8
 +
| Data offset
 +
|}
 +
 +
Data offset is relative to absolute offset 0x8.
    
= Client cert+privk =
 
= Client cert+privk =