add tbsCertList and signature interfaces to CRLs

commit: 6abe2bb4eefb224867683152bb204176b68399c9 [log] [tgz]
author: Erik Trauschke <erik.trauschke@gmail.com> Thu Nov 19 10:27:01 2015 -0800
committer: Erik Trauschke <erik.trauschke@gmail.com> Thu Nov 19 10:27:01 2015 -0800
tree: d3a6306d27479ef3deaf1af9dbaec1cd68028134
parent: a06e0cf66906a723682731af53e295179d5c9f4d [diff] [blame]
diff --git a/docs/x509/reference.rst b/docs/x509/reference.rst
index 10ba9ec..35c00e6 100644
--- a/docs/x509/reference.rst
+++ b/docs/x509/reference.rst

@@ -504,6 +504,26 @@
 
         The extensions encoded in the CRL.
 
+    .. attribute:: signature
+
+        .. versionadded:: 1.2
+
+        :type: bytes
+
+        The bytes of the CRL's signature.
+
+    .. attribute:: tbs_certlist_bytes
+
+        .. versionadded:: 1.2
+
+        :type: bytes
+
+        The DER encoded bytes payload (as defined by :rfc:`5280`) that is hashed
+        and then signed by the private key of the CRL's issuer. This data may be
+        used to validate a signature, but use extreme caution as CRL validation
+        is a complex problem that involves much more than just signature checks.
+
+
 X.509 Certificate Builder
 ~~~~~~~~~~~~~~~~~~~~~~~~~
commit	6abe2bb4eefb224867683152bb204176b68399c9	[log] [tgz]
author	Erik Trauschke <erik.trauschke@gmail.com>	Thu Nov 19 10:27:01 2015 -0800
committer	Erik Trauschke <erik.trauschke@gmail.com>	Thu Nov 19 10:27:01 2015 -0800
tree	d3a6306d27479ef3deaf1af9dbaec1cd68028134
parent	a06e0cf66906a723682731af53e295179d5c9f4d [diff] [blame]