Symaptic: os/ossrv/ssl/libcrypto/src/crypto/pkcs12/pkcs12.h@260cb5ec6c19 (annotated)

sl@0	1	/* pkcs12.h */
sl@0	2	/* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL
sl@0	3	* project 1999.
sl@0	4	*/
sl@0	5	/* ====================================================================
sl@0	6	* Copyright (c) 1999 The OpenSSL Project. All rights reserved.
sl@0	7	*
sl@0	8	* Redistribution and use in source and binary forms, with or without
sl@0	9	* modification, are permitted provided that the following conditions
sl@0	10	* are met:
sl@0	11	*
sl@0	12	* 1. Redistributions of source code must retain the above copyright
sl@0	13	* notice, this list of conditions and the following disclaimer.
sl@0	14	*
sl@0	15	* 2. Redistributions in binary form must reproduce the above copyright
sl@0	16	* notice, this list of conditions and the following disclaimer in
sl@0	17	* the documentation and/or other materials provided with the
sl@0	18	* distribution.
sl@0	19	*
sl@0	20	* 3. All advertising materials mentioning features or use of this
sl@0	21	* software must display the following acknowledgment:
sl@0	22	* "This product includes software developed by the OpenSSL Project
sl@0	23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
sl@0	24	*
sl@0	25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
sl@0	26	* endorse or promote products derived from this software without
sl@0	27	* prior written permission. For written permission, please contact
sl@0	28	* licensing@OpenSSL.org.
sl@0	29	*
sl@0	30	* 5. Products derived from this software may not be called "OpenSSL"
sl@0	31	* nor may "OpenSSL" appear in their names without prior written
sl@0	32	* permission of the OpenSSL Project.
sl@0	33	*
sl@0	34	* 6. Redistributions of any form whatsoever must retain the following
sl@0	35	* acknowledgment:
sl@0	36	* "This product includes software developed by the OpenSSL Project
sl@0	37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
sl@0	38	*
sl@0	39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
sl@0	40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
sl@0	41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
sl@0	42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
sl@0	43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
sl@0	44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
sl@0	45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
sl@0	46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
sl@0	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
sl@0	48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
sl@0	49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
sl@0	50	* OF THE POSSIBILITY OF SUCH DAMAGE.
sl@0	51	* ====================================================================
sl@0	52	*
sl@0	53	* This product includes cryptographic software written by Eric Young
sl@0	54	* (eay@cryptsoft.com). This product includes software written by Tim
sl@0	55	* Hudson (tjh@cryptsoft.com).
sl@0	56	*
sl@0	57	*/
sl@0	58	/*
sl@0	59	© Portions copyright (c) 2006 Nokia Corporation. All rights reserved.
sl@0	60	*/
sl@0	61
sl@0	62	#ifndef HEADER_PKCS12_H
sl@0	63	#define HEADER_PKCS12_H
sl@0	64
sl@0	65	#if (defined(__SYMBIAN32__) && !defined(SYMBIAN))
sl@0	66	#define SYMBIAN
sl@0	67	#endif
sl@0	68
sl@0	69	#ifdef SYMBIAN
sl@0	70	#include <e32def.h>
sl@0	71	#endif
sl@0	72	#include <openssl/bio.h>
sl@0	73	#include <openssl/x509.h>
sl@0	74
sl@0	75	#ifdef __cplusplus
sl@0	76	extern "C" {
sl@0	77	#endif
sl@0	78
sl@0	79	#define PKCS12_KEY_ID 1
sl@0	80	#define PKCS12_IV_ID 2
sl@0	81	#define PKCS12_MAC_ID 3
sl@0	82
sl@0	83	/* Default iteration count */
sl@0	84	#ifndef PKCS12_DEFAULT_ITER
sl@0	85	#define PKCS12_DEFAULT_ITER PKCS5_DEFAULT_ITER
sl@0	86	#endif
sl@0	87
sl@0	88	#define PKCS12_MAC_KEY_LENGTH 20
sl@0	89
sl@0	90	#define PKCS12_SALT_LEN 8
sl@0	91
sl@0	92	/* Uncomment out next line for unicode password and names, otherwise ASCII */
sl@0	93
sl@0	94	/#define PBE_UNICODE/
sl@0	95
sl@0	96	#ifdef PBE_UNICODE
sl@0	97	#define PKCS12_key_gen PKCS12_key_gen_uni
sl@0	98	#define PKCS12_add_friendlyname PKCS12_add_friendlyname_uni
sl@0	99	#else
sl@0	100	#define PKCS12_key_gen PKCS12_key_gen_asc
sl@0	101	#define PKCS12_add_friendlyname PKCS12_add_friendlyname_asc
sl@0	102	#endif
sl@0	103
sl@0	104	/* MS key usage constants */
sl@0	105
sl@0	106	#define KEY_EX 0x10
sl@0	107	#define KEY_SIG 0x80
sl@0	108
sl@0	109	typedef struct {
sl@0	110	X509_SIG *dinfo;
sl@0	111	ASN1_OCTET_STRING *salt;
sl@0	112	ASN1_INTEGER iter; / defaults to 1 */
sl@0	113	} PKCS12_MAC_DATA;
sl@0	114
sl@0	115	typedef struct {
sl@0	116	ASN1_INTEGER *version;
sl@0	117	PKCS12_MAC_DATA *mac;
sl@0	118	PKCS7 *authsafes;
sl@0	119	} PKCS12;
sl@0	120
sl@0	121	PREDECLARE_STACK_OF(PKCS12_SAFEBAG)
sl@0	122
sl@0	123	typedef struct {
sl@0	124	ASN1_OBJECT *type;
sl@0	125	union {
sl@0	126	struct pkcs12_bag_st bag; / secret, crl and certbag */
sl@0	127	struct pkcs8_priv_key_info_st keybag; / keybag */
sl@0	128	X509_SIG shkeybag; / shrouded key bag */
sl@0	129	STACK_OF(PKCS12_SAFEBAG) *safes;
sl@0	130	ASN1_TYPE *other;
sl@0	131	}value;
sl@0	132	STACK_OF(X509_ATTRIBUTE) *attrib;
sl@0	133	} PKCS12_SAFEBAG;
sl@0	134
sl@0	135	DECLARE_STACK_OF(PKCS12_SAFEBAG)
sl@0	136	DECLARE_ASN1_SET_OF(PKCS12_SAFEBAG)
sl@0	137	DECLARE_PKCS12_STACK_OF(PKCS12_SAFEBAG)
sl@0	138
sl@0	139	typedef struct pkcs12_bag_st {
sl@0	140	ASN1_OBJECT *type;
sl@0	141	union {
sl@0	142	ASN1_OCTET_STRING *x509cert;
sl@0	143	ASN1_OCTET_STRING *x509crl;
sl@0	144	ASN1_OCTET_STRING *octet;
sl@0	145	ASN1_IA5STRING *sdsicert;
sl@0	146	ASN1_TYPE other; / Secret or other bag */
sl@0	147	}value;
sl@0	148	} PKCS12_BAGS;
sl@0	149
sl@0	150	#define PKCS12_ERROR 0
sl@0	151	#define PKCS12_OK 1
sl@0	152
sl@0	153	/* Compatibility macros */
sl@0	154
sl@0	155	#define M_PKCS12_x5092certbag PKCS12_x5092certbag
sl@0	156	#define M_PKCS12_x509crl2certbag PKCS12_x509crl2certbag
sl@0	157
sl@0	158	#define M_PKCS12_certbag2x509 PKCS12_certbag2x509
sl@0	159	#define M_PKCS12_certbag2x509crl PKCS12_certbag2x509crl
sl@0	160
sl@0	161	#define M_PKCS12_unpack_p7data PKCS12_unpack_p7data
sl@0	162	#define M_PKCS12_pack_authsafes PKCS12_pack_authsafes
sl@0	163	#define M_PKCS12_unpack_authsafes PKCS12_unpack_authsafes
sl@0	164	#define M_PKCS12_unpack_p7encdata PKCS12_unpack_p7encdata
sl@0	165
sl@0	166	#define M_PKCS12_decrypt_skey PKCS12_decrypt_skey
sl@0	167	#define M_PKCS8_decrypt PKCS8_decrypt
sl@0	168
sl@0	169	#define M_PKCS12_bag_type(bg) OBJ_obj2nid((bg)->type)
sl@0	170	#define M_PKCS12_cert_bag_type(bg) OBJ_obj2nid((bg)->value.bag->type)
sl@0	171	#define M_PKCS12_crl_bag_type M_PKCS12_cert_bag_type
sl@0	172
sl@0	173	#define PKCS12_get_attr(bag, attr_nid) \
sl@0	174	PKCS12_get_attr_gen(bag->attrib, attr_nid)
sl@0	175
sl@0	176	#define PKCS8_get_attr(p8, attr_nid) \
sl@0	177	PKCS12_get_attr_gen(p8->attributes, attr_nid)
sl@0	178
sl@0	179	#define PKCS12_mac_present(p12) ((p12)->mac ? 1 : 0)
sl@0	180
sl@0	181
sl@0	182	IMPORT_C PKCS12_SAFEBAG PKCS12_x5092certbag(X509 x509);
sl@0	183	IMPORT_C PKCS12_SAFEBAG PKCS12_x509crl2certbag(X509_CRL crl);
sl@0	184	IMPORT_C X509 PKCS12_certbag2x509(PKCS12_SAFEBAG bag);
sl@0	185	IMPORT_C X509_CRL PKCS12_certbag2x509crl(PKCS12_SAFEBAG bag);
sl@0	186
sl@0	187	IMPORT_C PKCS12_SAFEBAG PKCS12_item_pack_safebag(void obj, const ASN1_ITEM *it, int nid1,
sl@0	188	int nid2);
sl@0	189	IMPORT_C PKCS12_SAFEBAG PKCS12_MAKE_KEYBAG(PKCS8_PRIV_KEY_INFO p8);
sl@0	190	IMPORT_C PKCS8_PRIV_KEY_INFO PKCS8_decrypt(X509_SIG p8, const char *pass, int passlen);
sl@0	191	IMPORT_C PKCS8_PRIV_KEY_INFO PKCS12_decrypt_skey(PKCS12_SAFEBAG bag, const char *pass,
sl@0	192	int passlen);
sl@0	193	IMPORT_C X509_SIG PKCS8_encrypt(int pbe_nid, const EVP_CIPHER cipher,
sl@0	194	const char *pass, int passlen,
sl@0	195	unsigned char *salt, int saltlen, int iter,
sl@0	196	PKCS8_PRIV_KEY_INFO *p8);
sl@0	197	IMPORT_C PKCS12_SAFEBAG PKCS12_MAKE_SHKEYBAG(int pbe_nid, const char pass,
sl@0	198	int passlen, unsigned char *salt,
sl@0	199	int saltlen, int iter,
sl@0	200	PKCS8_PRIV_KEY_INFO *p8);
sl@0	201	IMPORT_C PKCS7 PKCS12_pack_p7data(STACK_OF(PKCS12_SAFEBAG) sk);
sl@0	202	IMPORT_C STACK_OF(PKCS12_SAFEBAG) PKCS12_unpack_p7data(PKCS7 p7);
sl@0	203	IMPORT_C PKCS7 PKCS12_pack_p7encdata(int pbe_nid, const char pass, int passlen,
sl@0	204	unsigned char *salt, int saltlen, int iter,
sl@0	205	STACK_OF(PKCS12_SAFEBAG) *bags);
sl@0	206	IMPORT_C STACK_OF(PKCS12_SAFEBAG) PKCS12_unpack_p7encdata(PKCS7 p7, const char *pass, int passlen);
sl@0	207
sl@0	208	IMPORT_C int PKCS12_pack_authsafes(PKCS12 p12, STACK_OF(PKCS7) safes);
sl@0	209	IMPORT_C STACK_OF(PKCS7) PKCS12_unpack_authsafes(PKCS12 p12);
sl@0	210
sl@0	211	IMPORT_C int PKCS12_add_localkeyid(PKCS12_SAFEBAG bag, unsigned char name, int namelen);
sl@0	212	IMPORT_C int PKCS12_add_friendlyname_asc(PKCS12_SAFEBAG bag, const char name,
sl@0	213	int namelen);
sl@0	214	IMPORT_C int PKCS12_add_CSPName_asc(PKCS12_SAFEBAG bag, const char name,
sl@0	215	int namelen);
sl@0	216	IMPORT_C int PKCS12_add_friendlyname_uni(PKCS12_SAFEBAG bag, const unsigned char name,
sl@0	217	int namelen);
sl@0	218	IMPORT_C int PKCS8_add_keyusage(PKCS8_PRIV_KEY_INFO *p8, int usage);
sl@0	219	IMPORT_C ASN1_TYPE PKCS12_get_attr_gen(STACK_OF(X509_ATTRIBUTE) attrs, int attr_nid);
sl@0	220	IMPORT_C char PKCS12_get_friendlyname(PKCS12_SAFEBAG bag);
sl@0	221	IMPORT_C unsigned char PKCS12_pbe_crypt(X509_ALGOR algor, const char *pass,
sl@0	222	int passlen, unsigned char *in, int inlen,
sl@0	223	unsigned char *data, int datalen, int en_de);
sl@0	224	IMPORT_C void * PKCS12_item_decrypt_d2i(X509_ALGOR algor, const ASN1_ITEM it,
sl@0	225	const char pass, int passlen, ASN1_OCTET_STRING oct, int zbuf);
sl@0	226	IMPORT_C ASN1_OCTET_STRING PKCS12_item_i2d_encrypt(X509_ALGOR algor, const ASN1_ITEM *it,
sl@0	227	const char *pass, int passlen,
sl@0	228	void *obj, int zbuf);
sl@0	229	IMPORT_C PKCS12 *PKCS12_init(int mode);
sl@0	230	IMPORT_C int PKCS12_key_gen_asc(const char pass, int passlen, unsigned char salt,
sl@0	231	int saltlen, int id, int iter, int n,
sl@0	232	unsigned char out, const EVP_MD md_type);
sl@0	233	IMPORT_C int PKCS12_key_gen_uni(unsigned char pass, int passlen, unsigned char salt, int saltlen, int id, int iter, int n, unsigned char out, const EVP_MD md_type);
sl@0	234	IMPORT_C int PKCS12_PBE_keyivgen(EVP_CIPHER_CTX ctx, const char pass, int passlen,
sl@0	235	ASN1_TYPE param, const EVP_CIPHER cipher, const EVP_MD *md_type,
sl@0	236	int en_de);
sl@0	237	IMPORT_C int PKCS12_gen_mac(PKCS12 p12, const char pass, int passlen,
sl@0	238	unsigned char mac, unsigned int maclen);
sl@0	239	IMPORT_C int PKCS12_verify_mac(PKCS12 p12, const char pass, int passlen);
sl@0	240	IMPORT_C int PKCS12_set_mac(PKCS12 p12, const char pass, int passlen,
sl@0	241	unsigned char *salt, int saltlen, int iter,
sl@0	242	const EVP_MD *md_type);
sl@0	243	IMPORT_C int PKCS12_setup_mac(PKCS12 p12, int iter, unsigned char salt,
sl@0	244	int saltlen, const EVP_MD *md_type);
sl@0	245	IMPORT_C unsigned char asc2uni(const char asc, int asclen, unsigned char *uni, int unilen);
sl@0	246	IMPORT_C char uni2asc(unsigned char uni, int unilen);
sl@0	247
sl@0	248	DECLARE_ASN1_FUNCTIONS(PKCS12)
sl@0	249	DECLARE_ASN1_FUNCTIONS(PKCS12_MAC_DATA)
sl@0	250	DECLARE_ASN1_FUNCTIONS(PKCS12_SAFEBAG)
sl@0	251	DECLARE_ASN1_FUNCTIONS(PKCS12_BAGS)
sl@0	252
sl@0	253	DECLARE_ASN1_ITEM(PKCS12_SAFEBAGS)
sl@0	254	DECLARE_ASN1_ITEM(PKCS12_AUTHSAFES)
sl@0	255
sl@0	256	IMPORT_C void PKCS12_PBE_add(void);
sl@0	257	IMPORT_C int PKCS12_parse(PKCS12 p12, const char pass, EVP_PKEY pkey, X509 cert,
sl@0	258	STACK_OF(X509) **ca);
sl@0	259	IMPORT_C PKCS12 PKCS12_create(char pass, char name, EVP_PKEY pkey, X509 *cert,
sl@0	260	STACK_OF(X509) *ca, int nid_key, int nid_cert, int iter,
sl@0	261	int mac_iter, int keytype);
sl@0	262
sl@0	263	IMPORT_C PKCS12_SAFEBAG PKCS12_add_cert(STACK_OF(PKCS12_SAFEBAG) pbags, X509 cert);
sl@0	264	IMPORT_C PKCS12_SAFEBAG PKCS12_add_key(STACK_OF(PKCS12_SAFEBAG) pbags, EVP_PKEY key,
sl@0	265	int key_usage, int iter,
sl@0	266	int key_nid, char *pass);
sl@0	267	IMPORT_C int PKCS12_add_safe(STACK_OF(PKCS7) *psafes, STACK_OF(PKCS12_SAFEBAG) bags,
sl@0	268	int safe_nid, int iter, char *pass);
sl@0	269	IMPORT_C PKCS12 PKCS12_add_safes(STACK_OF(PKCS7) safes, int p7_nid);
sl@0	270
sl@0	271	IMPORT_C int i2d_PKCS12_bio(BIO bp, PKCS12 p12);
sl@0	272	IMPORT_C int i2d_PKCS12_fp(FILE fp, PKCS12 p12);
sl@0	273	IMPORT_C PKCS12 d2i_PKCS12_bio(BIO bp, PKCS12 **p12);
sl@0	274	IMPORT_C PKCS12 d2i_PKCS12_fp(FILE fp, PKCS12 **p12);
sl@0	275	IMPORT_C int PKCS12_newpass(PKCS12 p12, char oldpass, char *newpass);
sl@0	276
sl@0	277	/* BEGIN ERROR CODES */
sl@0	278	/* The following lines are auto generated by the script mkerr.pl. Any changes
sl@0	279	* made after this point may be overwritten when the script is next run.
sl@0	280	*/
sl@0	281	IMPORT_C void ERR_load_PKCS12_strings(void);
sl@0	282
sl@0	283	/* Error codes for the PKCS12 functions. */
sl@0	284
sl@0	285	/* Function codes. */
sl@0	286	#define PKCS12_F_PARSE_BAG 129
sl@0	287	#define PKCS12_F_PARSE_BAGS 103
sl@0	288	#define PKCS12_F_PKCS12_ADD_FRIENDLYNAME 100
sl@0	289	#define PKCS12_F_PKCS12_ADD_FRIENDLYNAME_ASC 127
sl@0	290	#define PKCS12_F_PKCS12_ADD_FRIENDLYNAME_UNI 102
sl@0	291	#define PKCS12_F_PKCS12_ADD_LOCALKEYID 104
sl@0	292	#define PKCS12_F_PKCS12_CREATE 105
sl@0	293	#define PKCS12_F_PKCS12_GEN_MAC 107
sl@0	294	#define PKCS12_F_PKCS12_INIT 109
sl@0	295	#define PKCS12_F_PKCS12_ITEM_DECRYPT_D2I 106
sl@0	296	#define PKCS12_F_PKCS12_ITEM_I2D_ENCRYPT 108
sl@0	297	#define PKCS12_F_PKCS12_ITEM_PACK_SAFEBAG 117
sl@0	298	#define PKCS12_F_PKCS12_KEY_GEN_ASC 110
sl@0	299	#define PKCS12_F_PKCS12_KEY_GEN_UNI 111
sl@0	300	#define PKCS12_F_PKCS12_MAKE_KEYBAG 112
sl@0	301	#define PKCS12_F_PKCS12_MAKE_SHKEYBAG 113
sl@0	302	#define PKCS12_F_PKCS12_NEWPASS 128
sl@0	303	#define PKCS12_F_PKCS12_PACK_P7DATA 114
sl@0	304	#define PKCS12_F_PKCS12_PACK_P7ENCDATA 115
sl@0	305	#define PKCS12_F_PKCS12_PARSE 118
sl@0	306	#define PKCS12_F_PKCS12_PBE_CRYPT 119
sl@0	307	#define PKCS12_F_PKCS12_PBE_KEYIVGEN 120
sl@0	308	#define PKCS12_F_PKCS12_SETUP_MAC 122
sl@0	309	#define PKCS12_F_PKCS12_SET_MAC 123
sl@0	310	#define PKCS12_F_PKCS12_UNPACK_AUTHSAFES 130
sl@0	311	#define PKCS12_F_PKCS12_UNPACK_P7DATA 131
sl@0	312	#define PKCS12_F_PKCS12_VERIFY_MAC 126
sl@0	313	#define PKCS12_F_PKCS8_ADD_KEYUSAGE 124
sl@0	314	#define PKCS12_F_PKCS8_ENCRYPT 125
sl@0	315
sl@0	316	/* Reason codes. */
sl@0	317	#define PKCS12_R_CANT_PACK_STRUCTURE 100
sl@0	318	#define PKCS12_R_CONTENT_TYPE_NOT_DATA 121
sl@0	319	#define PKCS12_R_DECODE_ERROR 101
sl@0	320	#define PKCS12_R_ENCODE_ERROR 102
sl@0	321	#define PKCS12_R_ENCRYPT_ERROR 103
sl@0	322	#define PKCS12_R_ERROR_SETTING_ENCRYPTED_DATA_TYPE 120
sl@0	323	#define PKCS12_R_INVALID_NULL_ARGUMENT 104
sl@0	324	#define PKCS12_R_INVALID_NULL_PKCS12_POINTER 105
sl@0	325	#define PKCS12_R_IV_GEN_ERROR 106
sl@0	326	#define PKCS12_R_KEY_GEN_ERROR 107
sl@0	327	#define PKCS12_R_MAC_ABSENT 108
sl@0	328	#define PKCS12_R_MAC_GENERATION_ERROR 109
sl@0	329	#define PKCS12_R_MAC_SETUP_ERROR 110
sl@0	330	#define PKCS12_R_MAC_STRING_SET_ERROR 111
sl@0	331	#define PKCS12_R_MAC_VERIFY_ERROR 112
sl@0	332	#define PKCS12_R_MAC_VERIFY_FAILURE 113
sl@0	333	#define PKCS12_R_PARSE_ERROR 114
sl@0	334	#define PKCS12_R_PKCS12_ALGOR_CIPHERINIT_ERROR 115
sl@0	335	#define PKCS12_R_PKCS12_CIPHERFINAL_ERROR 116
sl@0	336	#define PKCS12_R_PKCS12_PBE_CRYPT_ERROR 117
sl@0	337	#define PKCS12_R_UNKNOWN_DIGEST_ALGORITHM 118
sl@0	338	#define PKCS12_R_UNSUPPORTED_PKCS12_MODE 119
sl@0	339
sl@0	340	#ifdef __cplusplus
sl@0	341	}
sl@0	342	#endif
sl@0	343	#endif

author	sl
	Tue, 10 Jun 2014 14:32:02 +0200
changeset 1	260cb5ec6c19
permissions	-rw-r--r--