Add is_signature_valid method on CertificateRevocationList (#3849)

commit: 6c02ee85bcd68e1e4fc6770421699fbd07c9b3e9 [log] [tgz]
author: Vincent Pelletier <plr.vincent@gmail.com> Sat Aug 12 22:05:00 2017 +0900
committer: Paul Kehrer <paul.l.kehrer@gmail.com> Sat Aug 12 08:05:00 2017 -0500
tree: 5bfb5a0966cd3e00810b0161276e26aac8fdf3bb
parent: ca941bd00baa598cb83d91a4e88b4bbcec0fc265 [diff]
diff --git a/docs/development/test-vectors.rst b/docs/development/test-vectors.rst
index eb95a62..ec6a1d0 100644
--- a/docs/development/test-vectors.rst
+++ b/docs/development/test-vectors.rst

@@ -369,6 +369,11 @@
 * ``crl_ian_aia_aki.pem`` - Contains a CRL with ``IssuerAlternativeName``,
   ``AuthorityInformationAccess``, ``AuthorityKeyIdentifier`` and ``CRLNumber``
   extensions.
+* ``valid_signature.pem`` - Contains a CRL with the public key which was used
+  to generate it.
+* ``invalid_signature.pem`` - Contains a CRL with the last signature byte
+  incremented by 1 to produce an invalid signature, and the public key which
+  was used to generate it.
 
 Hashes
 ~~~~~~

diff --git a/docs/x509/reference.rst b/docs/x509/reference.rst
index 8b97611..47f7625 100644
--- a/docs/x509/reference.rst
+++ b/docs/x509/reference.rst

@@ -563,6 +563,12 @@
             over the network and used as part of a certificate verification
             process.
 
+    .. method:: is_signature_valid(public_key)
+
+        .. versionadded:: 2.1
+
+        Returns True if the CRL signature is correct for given public key,
+        False otherwise.
 
 X.509 Certificate Builder
 ~~~~~~~~~~~~~~~~~~~~~~~~~
commit	6c02ee85bcd68e1e4fc6770421699fbd07c9b3e9	[log] [tgz]
author	Vincent Pelletier <plr.vincent@gmail.com>	Sat Aug 12 22:05:00 2017 +0900
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	Sat Aug 12 08:05:00 2017 -0500
tree	5bfb5a0966cd3e00810b0161276e26aac8fdf3bb
parent	ca941bd00baa598cb83d91a4e88b4bbcec0fc265 [diff]