зеркало из https://github.com/mozilla/gecko-dev.git
220 строки
6.8 KiB
C
220 строки
6.8 KiB
C
/* -*- Mode: C; tab-width: 8 -*-*/
|
|
/* ***** BEGIN LICENSE BLOCK *****
|
|
* Version: MPL 1.1/GPL 2.0/LGPL 2.1
|
|
*
|
|
* The contents of this file are subject to the Mozilla Public License Version
|
|
* 1.1 (the "License"); you may not use this file except in compliance with
|
|
* the License. You may obtain a copy of the License at
|
|
* http://www.mozilla.org/MPL/
|
|
*
|
|
* Software distributed under the License is distributed on an "AS IS" basis,
|
|
* WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
|
|
* for the specific language governing rights and limitations under the
|
|
* License.
|
|
*
|
|
* The Original Code is the Netscape security libraries.
|
|
*
|
|
* The Initial Developer of the Original Code is
|
|
* Netscape Communications Corporation.
|
|
* Portions created by the Initial Developer are Copyright (C) 1994-2000
|
|
* the Initial Developer. All Rights Reserved.
|
|
*
|
|
* Contributor(s):
|
|
*
|
|
* Alternatively, the contents of this file may be used under the terms of
|
|
* either the GNU General Public License Version 2 or later (the "GPL"), or
|
|
* the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
|
|
* in which case the provisions of the GPL or the LGPL are applicable instead
|
|
* of those above. If you wish to allow use of your version of this file only
|
|
* under the terms of either the GPL or the LGPL, and not to allow others to
|
|
* use your version of this file under the terms of the MPL, indicate your
|
|
* decision by deleting the provisions above and replace them with the notice
|
|
* and other provisions required by the GPL or the LGPL. If you do not delete
|
|
* the provisions above, a recipient may use your version of this file under
|
|
* the terms of any one of the MPL, the GPL or the LGPL.
|
|
*
|
|
* ***** END LICENSE BLOCK ***** */
|
|
|
|
|
|
#ifndef _CRMFIT_H_
|
|
#define _CRMFIT_H_
|
|
|
|
struct CRMFCertReqMessagesStr {
|
|
CRMFCertReqMsg **messages;
|
|
PRArenaPool *poolp;
|
|
};
|
|
|
|
struct CRMFCertExtensionStr {
|
|
SECItem id;
|
|
SECItem critical;
|
|
SECItem value;
|
|
};
|
|
|
|
|
|
struct CRMFOptionalValidityStr {
|
|
SECItem notBefore;
|
|
SECItem notAfter;
|
|
};
|
|
|
|
struct CRMFCertTemplateStr {
|
|
SECItem version;
|
|
SECItem serialNumber;
|
|
SECAlgorithmID *signingAlg;
|
|
CERTName *issuer;
|
|
CRMFOptionalValidity *validity;
|
|
CERTName *subject;
|
|
CERTSubjectPublicKeyInfo *publicKey;
|
|
SECItem issuerUID;
|
|
SECItem subjectUID;
|
|
CRMFCertExtension **extensions;
|
|
int numExtensions;
|
|
};
|
|
|
|
struct CRMFCertIDStr {
|
|
SECItem issuer; /* General Name */
|
|
SECItem serialNumber; /*INTEGER*/
|
|
};
|
|
|
|
struct CRMFEncryptedValueStr {
|
|
SECAlgorithmID *intendedAlg;
|
|
SECAlgorithmID *symmAlg;
|
|
SECItem encSymmKey; /*BIT STRING */
|
|
SECAlgorithmID *keyAlg;
|
|
SECItem valueHint; /*OCTET STRING */
|
|
SECItem encValue; /*BIT STRING */
|
|
};
|
|
|
|
/*
|
|
* The field derValue will contain the actual der
|
|
* to include in the encoding or that was read in
|
|
* from a der blob.
|
|
*/
|
|
struct CRMFEncryptedKeyStr {
|
|
union {
|
|
SEC_PKCS7ContentInfo *envelopedData;
|
|
CRMFEncryptedValue encryptedValue;
|
|
} value;
|
|
CRMFEncryptedKeyChoice encKeyChoice;
|
|
SECItem derValue;
|
|
};
|
|
|
|
/* ASN1 must only have one of the following 3 options. */
|
|
struct CRMFPKIArchiveOptionsStr {
|
|
union {
|
|
CRMFEncryptedKey encryptedKey;
|
|
SECItem keyGenParameters;
|
|
SECItem archiveRemGenPrivKey; /* BOOLEAN */
|
|
} option;
|
|
CRMFPKIArchiveOptionsType archOption;
|
|
};
|
|
|
|
struct CRMFPKIPublicationInfoStr {
|
|
SECItem action; /* Possible values */
|
|
/* dontPublish (0), pleasePublish (1) */
|
|
CRMFSinglePubInfo **pubInfos;
|
|
};
|
|
|
|
struct CRMFControlStr {
|
|
SECOidTag tag;
|
|
SECItem derTag;
|
|
SECItem derValue;
|
|
/* These will be C structures used to represent the various
|
|
* options. Values that can't be stored as der right away.
|
|
* After creating these structures, we'll place their der
|
|
* encoding in derValue so the encoder knows how to get to
|
|
* it.
|
|
*/
|
|
union {
|
|
CRMFCertID oldCertId;
|
|
CRMFPKIArchiveOptions archiveOptions;
|
|
CRMFPKIPublicationInfo pubInfo;
|
|
CRMFProtocolEncrKey protEncrKey;
|
|
} value;
|
|
};
|
|
|
|
struct CRMFCertRequestStr {
|
|
SECItem certReqId;
|
|
CRMFCertTemplate certTemplate;
|
|
CRMFControl **controls;
|
|
/* The following members are used by the internal implementation, but
|
|
* are not part of the encoding.
|
|
*/
|
|
PRArenaPool *poolp;
|
|
PRUint32 requestID; /* This is the value that will be encoded into
|
|
* the certReqId field.
|
|
*/
|
|
};
|
|
|
|
struct CRMFAttributeStr {
|
|
SECItem derTag;
|
|
SECItem derValue;
|
|
};
|
|
|
|
struct CRMFCertReqMsgStr {
|
|
CRMFCertRequest *certReq;
|
|
CRMFProofOfPossession *pop;
|
|
CRMFAttribute **regInfo;
|
|
SECItem derPOP;
|
|
/* This arena will be used for allocating memory when decoding.
|
|
*/
|
|
PRArenaPool *poolp;
|
|
PRBool isDecoded;
|
|
};
|
|
|
|
struct CRMFPOPOSigningKeyInputStr {
|
|
/* ASN1 must have only one of the next 2 options */
|
|
union {
|
|
SECItem sender; /*General Name*/
|
|
CRMFPKMACValue *publicKeyMAC;
|
|
}authInfo;
|
|
CERTSubjectPublicKeyInfo publicKey;
|
|
};
|
|
|
|
struct CRMFPOPOSigningKeyStr {
|
|
SECItem derInput; /*If in the future we support
|
|
*POPOSigningKeyInput, this will
|
|
*a C structure representation
|
|
*instead.
|
|
*/
|
|
SECAlgorithmID *algorithmIdentifier;
|
|
SECItem signature; /* This is a BIT STRING. Remember */
|
|
}; /* that when interpreting. */
|
|
|
|
/* ASN1 must only choose one of these members */
|
|
struct CRMFPOPOPrivKeyStr {
|
|
union {
|
|
SECItem thisMessage; /* BIT STRING */
|
|
SECItem subsequentMessage; /*INTEGER*/
|
|
SECItem dhMAC; /*BIT STRING*/
|
|
} message;
|
|
CRMFPOPOPrivKeyChoice messageChoice;
|
|
};
|
|
|
|
/* ASN1 must only have one of these options. */
|
|
struct CRMFProofOfPossessionStr {
|
|
union {
|
|
SECItem raVerified;
|
|
CRMFPOPOSigningKey signature;
|
|
CRMFPOPOPrivKey keyEncipherment;
|
|
CRMFPOPOPrivKey keyAgreement;
|
|
} popChoice;
|
|
CRMFPOPChoice popUsed; /*Not part of encoding*/
|
|
};
|
|
|
|
struct CRMFPKMACValueStr {
|
|
SECAlgorithmID algID;
|
|
SECItem value; /*BIT STRING*/
|
|
};
|
|
|
|
struct CRMFSinglePubInfoStr {
|
|
SECItem pubMethod; /* Possible Values:
|
|
* dontCare (0)
|
|
* x500 (1)
|
|
* web (2)
|
|
* ldap (3)
|
|
*/
|
|
CERTGeneralName *pubLocation; /* General Name */
|
|
};
|
|
|
|
#endif /* _CRMFIT_H_ */
|