sl@0: /* apps/apps.h */ sl@0: /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) sl@0: * All rights reserved. sl@0: * sl@0: * This package is an SSL implementation written sl@0: * by Eric Young (eay@cryptsoft.com). sl@0: * The implementation was written so as to conform with Netscapes SSL. sl@0: * sl@0: * This library is free for commercial and non-commercial use as long as sl@0: * the following conditions are aheared to. The following conditions sl@0: * apply to all code found in this distribution, be it the RC4, RSA, sl@0: * lhash, DES, etc., code; not just the SSL code. The SSL documentation sl@0: * included with this distribution is covered by the same copyright terms sl@0: * except that the holder is Tim Hudson (tjh@cryptsoft.com). sl@0: * sl@0: * Copyright remains Eric Young's, and as such any Copyright notices in sl@0: * the code are not to be removed. sl@0: * If this package is used in a product, Eric Young should be given attribution sl@0: * as the author of the parts of the library used. sl@0: * This can be in the form of a textual message at program startup or sl@0: * in documentation (online or textual) provided with the package. sl@0: * sl@0: * Redistribution and use in source and binary forms, with or without sl@0: * modification, are permitted provided that the following conditions sl@0: * are met: sl@0: * 1. Redistributions of source code must retain the copyright sl@0: * notice, this list of conditions and the following disclaimer. sl@0: * 2. Redistributions in binary form must reproduce the above copyright sl@0: * notice, this list of conditions and the following disclaimer in the sl@0: * documentation and/or other materials provided with the distribution. sl@0: * 3. All advertising materials mentioning features or use of this software sl@0: * must display the following acknowledgement: sl@0: * "This product includes cryptographic software written by sl@0: * Eric Young (eay@cryptsoft.com)" sl@0: * The word 'cryptographic' can be left out if the rouines from the library sl@0: * being used are not cryptographic related :-). sl@0: * 4. If you include any Windows specific code (or a derivative thereof) from sl@0: * the apps directory (application code) you must include an acknowledgement: sl@0: * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" sl@0: * sl@0: * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND sl@0: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE sl@0: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE sl@0: * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE sl@0: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL sl@0: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS sl@0: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) sl@0: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT sl@0: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY sl@0: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF sl@0: * SUCH DAMAGE. sl@0: * sl@0: * The licence and distribution terms for any publically available version or sl@0: * derivative of this code cannot be changed. i.e. this code cannot simply be sl@0: * copied and put under another distribution licence sl@0: * [including the GNU Public Licence.] sl@0: */ sl@0: /* ==================================================================== sl@0: * Copyright (c) 1998-2001 The OpenSSL Project. All rights reserved. sl@0: * sl@0: * Redistribution and use in source and binary forms, with or without sl@0: * modification, are permitted provided that the following conditions sl@0: * are met: sl@0: * sl@0: * 1. Redistributions of source code must retain the above copyright sl@0: * notice, this list of conditions and the following disclaimer. sl@0: * sl@0: * 2. Redistributions in binary form must reproduce the above copyright sl@0: * notice, this list of conditions and the following disclaimer in sl@0: * the documentation and/or other materials provided with the sl@0: * distribution. sl@0: * sl@0: * 3. All advertising materials mentioning features or use of this sl@0: * software must display the following acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" sl@0: * sl@0: * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to sl@0: * endorse or promote products derived from this software without sl@0: * prior written permission. For written permission, please contact sl@0: * openssl-core@openssl.org. sl@0: * sl@0: * 5. Products derived from this software may not be called "OpenSSL" sl@0: * nor may "OpenSSL" appear in their names without prior written sl@0: * permission of the OpenSSL Project. sl@0: * sl@0: * 6. Redistributions of any form whatsoever must retain the following sl@0: * acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit (http://www.openssl.org/)" sl@0: * sl@0: * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY sl@0: * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE sl@0: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR sl@0: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR sl@0: * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, sl@0: * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT sl@0: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; sl@0: * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) sl@0: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, sl@0: * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) sl@0: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED sl@0: * OF THE POSSIBILITY OF SUCH DAMAGE. sl@0: * ==================================================================== sl@0: * sl@0: * This product includes cryptographic software written by Eric Young sl@0: * (eay@cryptsoft.com). This product includes software written by Tim sl@0: * Hudson (tjh@cryptsoft.com). sl@0: * sl@0: */ sl@0: sl@0: #ifndef HEADER_APPS_H sl@0: #define HEADER_APPS_H sl@0: #ifndef SYMBIAN sl@0: #include "../e_os.h" sl@0: #else sl@0: #include "e_os.h" sl@0: #endif sl@0: sl@0: sl@0: #include sl@0: #include sl@0: #include sl@0: #include sl@0: #include sl@0: #ifndef OPENSSL_NO_ENGINE sl@0: #include sl@0: #endif sl@0: #include sl@0: sl@0: int app_RAND_load_file(const char *file, BIO *bio_e, int dont_warn); sl@0: int app_RAND_write_file(const char *file, BIO *bio_e); sl@0: /* When `file' is NULL, use defaults. sl@0: * `bio_e' is for error messages. */ sl@0: void app_RAND_allow_write_file(void); sl@0: long app_RAND_load_files(char *file); /* `file' is a list of files to read, sl@0: * separated by LIST_SEPARATOR_CHAR sl@0: * (see e_os.h). The string is sl@0: * destroyed! */ sl@0: sl@0: #ifdef OPENSSL_SYS_WIN32 sl@0: #define rename(from,to) WIN32_rename((from),(to)) sl@0: int WIN32_rename(const char *oldname,const char *newname); sl@0: #endif sl@0: sl@0: #ifndef MONOLITH sl@0: sl@0: #define MAIN(a,v) main(a,v) sl@0: sl@0: #ifndef NON_MAIN sl@0: CONF *config=NULL; sl@0: BIO *bio_err=NULL; sl@0: #else sl@0: extern CONF *config; sl@0: extern BIO *bio_err; sl@0: #endif sl@0: sl@0: #else sl@0: sl@0: #define MAIN(a,v) PROG(a,v) sl@0: extern CONF *config; sl@0: extern char *default_config_file; sl@0: extern BIO *bio_err; sl@0: sl@0: #endif sl@0: sl@0: #ifndef SYMBIAN sl@0: #ifndef OPENSSL_SYS_NETWARE sl@0: #include sl@0: #endif sl@0: #endif sl@0: sl@0: #ifndef SYMBIAN sl@0: #ifdef SIGPIPE sl@0: #define do_pipe_sig() signal(SIGPIPE,SIG_IGN) sl@0: #else sl@0: #define do_pipe_sig() sl@0: #endif sl@0: #else sl@0: #define do_pipe_sig() sl@0: #endif sl@0: #if defined(MONOLITH) && !defined(OPENSSL_C) sl@0: # define apps_startup() \ sl@0: do_pipe_sig() sl@0: # define apps_shutdown() sl@0: #else sl@0: # ifndef OPENSSL_NO_ENGINE sl@0: # if defined(OPENSSL_SYS_MSDOS) || defined(OPENSSL_SYS_WIN16) || \ sl@0: defined(OPENSSL_SYS_WIN32) sl@0: # ifdef _O_BINARY sl@0: # define apps_startup() \ sl@0: do { _fmode=_O_BINARY; do_pipe_sig(); CRYPTO_malloc_init(); \ sl@0: ERR_load_crypto_strings(); OpenSSL_add_all_algorithms(); \ sl@0: ENGINE_load_builtin_engines(); setup_ui_method(); } while(0) sl@0: # else sl@0: # define apps_startup() \ sl@0: do { _fmode=O_BINARY; do_pipe_sig(); CRYPTO_malloc_init(); \ sl@0: ERR_load_crypto_strings(); OpenSSL_add_all_algorithms(); \ sl@0: ENGINE_load_builtin_engines(); setup_ui_method(); } while(0) sl@0: # endif sl@0: # else sl@0: # define apps_startup() \ sl@0: do { do_pipe_sig(); OpenSSL_add_all_algorithms(); \ sl@0: ERR_load_crypto_strings(); ENGINE_load_builtin_engines(); \ sl@0: setup_ui_method(); } while(0) sl@0: # endif sl@0: # define apps_shutdown() \ sl@0: do { CONF_modules_unload(1); destroy_ui_method(); \ sl@0: EVP_cleanup(); ENGINE_cleanup(); \ sl@0: CRYPTO_cleanup_all_ex_data(); ERR_remove_state(0); \ sl@0: ERR_free_strings(); } while(0) sl@0: # else sl@0: # if defined(OPENSSL_SYS_MSDOS) || defined(OPENSSL_SYS_WIN16) || \ sl@0: defined(OPENSSL_SYS_WIN32) sl@0: # ifdef _O_BINARY sl@0: # define apps_startup() \ sl@0: do { _fmode=_O_BINARY; do_pipe_sig(); CRYPTO_malloc_init(); \ sl@0: ERR_load_crypto_strings(); OpenSSL_add_all_algorithms(); \ sl@0: setup_ui_method(); } while(0) sl@0: # else sl@0: # define apps_startup() \ sl@0: do { _fmode=O_BINARY; do_pipe_sig(); CRYPTO_malloc_init(); \ sl@0: ERR_load_crypto_strings(); OpenSSL_add_all_algorithms(); \ sl@0: setup_ui_method(); } while(0) sl@0: # endif sl@0: # else sl@0: # define apps_startup() \ sl@0: do { do_pipe_sig(); OpenSSL_add_all_algorithms(); \ sl@0: ERR_load_crypto_strings(); \ sl@0: setup_ui_method(); } while(0) sl@0: # endif sl@0: # define apps_shutdown() \ sl@0: do { CONF_modules_unload(1); destroy_ui_method(); \ sl@0: EVP_cleanup(); \ sl@0: CRYPTO_cleanup_all_ex_data(); ERR_remove_state(0); \ sl@0: ERR_free_strings(); } while(0) sl@0: # endif sl@0: #endif sl@0: sl@0: typedef struct args_st sl@0: { sl@0: char **data; sl@0: int count; sl@0: } ARGS; sl@0: sl@0: #define PW_MIN_LENGTH 4 sl@0: typedef struct pw_cb_data sl@0: { sl@0: const void *password; sl@0: const char *prompt_info; sl@0: } PW_CB_DATA; sl@0: sl@0: int password_callback(char *buf, int bufsiz, int verify, sl@0: PW_CB_DATA *cb_data); sl@0: sl@0: int setup_ui_method(void); sl@0: void destroy_ui_method(void); sl@0: sl@0: int should_retry(int i); sl@0: int args_from_file(char *file, int *argc, char **argv[]); sl@0: int str2fmt(char *s); sl@0: void program_name(char *in,char *out,int size); sl@0: int chopup_args(ARGS *arg,char *buf, int *argc, char **argv[]); sl@0: #ifdef HEADER_X509_H sl@0: int dump_cert_text(BIO *out, X509 *x); sl@0: void print_name(BIO *out, const char *title, X509_NAME *nm, unsigned long lflags); sl@0: #endif sl@0: int set_cert_ex(unsigned long *flags, const char *arg); sl@0: int set_name_ex(unsigned long *flags, const char *arg); sl@0: int set_ext_copy(int *copy_type, const char *arg); sl@0: int copy_extensions(X509 *x, X509_REQ *req, int copy_type); sl@0: int app_passwd(BIO *err, char *arg1, char *arg2, char **pass1, char **pass2); sl@0: int add_oid_section(BIO *err, CONF *conf); sl@0: X509 *load_cert(BIO *err, const char *file, int format, sl@0: const char *pass, ENGINE *e, const char *cert_descrip); sl@0: EVP_PKEY *load_key(BIO *err, const char *file, int format, int maybe_stdin, sl@0: const char *pass, ENGINE *e, const char *key_descrip); sl@0: EVP_PKEY *load_pubkey(BIO *err, const char *file, int format, int maybe_stdin, sl@0: const char *pass, ENGINE *e, const char *key_descrip); sl@0: STACK_OF(X509) *load_certs(BIO *err, const char *file, int format, sl@0: const char *pass, ENGINE *e, const char *cert_descrip); sl@0: X509_STORE *setup_verify(BIO *bp, char *CAfile, char *CApath); sl@0: #ifndef OPENSSL_NO_ENGINE sl@0: ENGINE *setup_engine(BIO *err, const char *engine, int debug); sl@0: #endif sl@0: sl@0: int load_config(BIO *err, CONF *cnf); sl@0: char *make_config_name(void); sl@0: sl@0: /* Functions defined in ca.c and also used in ocsp.c */ sl@0: int unpack_revinfo(ASN1_TIME **prevtm, int *preason, ASN1_OBJECT **phold, sl@0: ASN1_GENERALIZEDTIME **pinvtm, const char *str); sl@0: sl@0: #define DB_type 0 sl@0: #define DB_exp_date 1 sl@0: #define DB_rev_date 2 sl@0: #define DB_serial 3 /* index - unique */ sl@0: #define DB_file 4 sl@0: #define DB_name 5 /* index - unique when active and not disabled */ sl@0: #define DB_NUMBER 6 sl@0: sl@0: #define DB_TYPE_REV 'R' sl@0: #define DB_TYPE_EXP 'E' sl@0: #define DB_TYPE_VAL 'V' sl@0: sl@0: typedef struct db_attr_st sl@0: { sl@0: int unique_subject; sl@0: } DB_ATTR; sl@0: typedef struct ca_db_st sl@0: { sl@0: DB_ATTR attributes; sl@0: TXT_DB *db; sl@0: } CA_DB; sl@0: sl@0: BIGNUM *load_serial(char *serialfile, int create, ASN1_INTEGER **retai); sl@0: int save_serial(char *serialfile, char *suffix, BIGNUM *serial, ASN1_INTEGER **retai); sl@0: int rotate_serial(char *serialfile, char *new_suffix, char *old_suffix); sl@0: int rand_serial(BIGNUM *b, ASN1_INTEGER *ai); sl@0: CA_DB *load_index(char *dbfile, DB_ATTR *dbattr); sl@0: int index_index(CA_DB *db); sl@0: int save_index(const char *dbfile, const char *suffix, CA_DB *db); sl@0: int rotate_index(const char *dbfile, const char *new_suffix, const char *old_suffix); sl@0: void free_index(CA_DB *db); sl@0: int index_name_cmp(const char **a, const char **b); sl@0: int parse_yesno(const char *str, int def); sl@0: sl@0: X509_NAME *parse_name(char *str, long chtype, int multirdn); sl@0: int args_verify(char ***pargs, int *pargc, sl@0: int *badarg, BIO *err, X509_VERIFY_PARAM **pm); sl@0: void policies_print(BIO *out, X509_STORE_CTX *ctx); sl@0: sl@0: #define FORMAT_UNDEF 0 sl@0: #define FORMAT_ASN1 1 sl@0: #define FORMAT_TEXT 2 sl@0: #define FORMAT_PEM 3 sl@0: #define FORMAT_NETSCAPE 4 sl@0: #define FORMAT_PKCS12 5 sl@0: #define FORMAT_SMIME 6 sl@0: #define FORMAT_ENGINE 7 sl@0: #define FORMAT_IISSGC 8 /* XXX this stupid macro helps us to avoid sl@0: * adding yet another param to load_*key() */ sl@0: sl@0: #define EXT_COPY_NONE 0 sl@0: #define EXT_COPY_ADD 1 sl@0: #define EXT_COPY_ALL 2 sl@0: sl@0: #define NETSCAPE_CERT_HDR "certificate" sl@0: sl@0: #define APP_PASS_LEN 1024 sl@0: sl@0: #define SERIAL_RAND_BITS 64 sl@0: sl@0: #endif