tor-browser

The Tor Browser
git clone https://git.dasho.dev/tor-browser.git
Log | Files | Refs | README | LICENSE

p12t.h (4570B)

      1 /* This Source Code Form is subject to the terms of the Mozilla Public
      2 * License, v. 2.0. If a copy of the MPL was not distributed with this
      3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
      4 
      5 #ifndef _P12T_H_
      6 #define _P12T_H_
      7 
      8 #include "secoid.h"
      9 #include "keythi.h"
     10 #include "pkcs11.h"
     11 #include "secpkcs7.h"
     12 #include "secdig.h" /* for SGNDigestInfo */
     13 #include "pkcs12t.h"
     14 
     15 #define SEC_PKCS12_VERSION 3
     16 
     17 /* structure declarations */
     18 typedef struct sec_PKCS12PFXItemStr sec_PKCS12PFXItem;
     19 typedef struct sec_PKCS12MacDataStr sec_PKCS12MacData;
     20 typedef struct sec_PKCS12AuthenticatedSafeStr sec_PKCS12AuthenticatedSafe;
     21 typedef struct sec_PKCS12SafeContentsStr sec_PKCS12SafeContents;
     22 typedef struct sec_PKCS12SafeBagStr sec_PKCS12SafeBag;
     23 typedef struct sec_PKCS12PKCS8ShroudedKeyBagStr sec_PKCS12PKCS8ShroudedKeyBag;
     24 typedef struct sec_PKCS12CertBagStr sec_PKCS12CertBag;
     25 typedef struct sec_PKCS12CRLBagStr sec_PKCS12CRLBag;
     26 typedef struct sec_PKCS12SecretBag sec_PKCS12SecretBag;
     27 typedef struct sec_PKCS12AttributeStr sec_PKCS12Attribute;
     28 
     29 struct sec_PKCS12CertBagStr {
     30    /* what type of cert is stored? */
     31    SECItem bagID;
     32 
     33    /* certificate information */
     34    union {
     35        SECItem x509Cert;
     36        SECItem SDSICert;
     37    } value;
     38 };
     39 
     40 struct sec_PKCS12CRLBagStr {
     41    /* what type of cert is stored? */
     42    SECItem bagID;
     43 
     44    /* certificate information */
     45    union {
     46        SECItem x509CRL;
     47    } value;
     48 };
     49 
     50 struct sec_PKCS12SecretBag {
     51    /* what type of secret? */
     52    SECItem secretType;
     53 
     54    /* secret information.  ssshhhh be vewy vewy quiet. */
     55    SECItem secretContent;
     56 };
     57 
     58 struct sec_PKCS12AttributeStr {
     59    SECItem attrType;
     60    SECItem **attrValue;
     61 };
     62 
     63 struct sec_PKCS12SafeBagStr {
     64 
     65    /* What type of bag are we using? */
     66    SECItem safeBagType;
     67 
     68    /* Dependent upon the type of bag being used. */
     69    union {
     70        SECKEYPrivateKeyInfo *pkcs8KeyBag;
     71        SECKEYEncryptedPrivateKeyInfo *pkcs8ShroudedKeyBag;
     72        sec_PKCS12CertBag *certBag;
     73        sec_PKCS12CRLBag *crlBag;
     74        sec_PKCS12SecretBag *secretBag;
     75        sec_PKCS12SafeContents *safeContents;
     76        SECItem *unknownBag;
     77    } safeBagContent;
     78 
     79    sec_PKCS12Attribute **attribs;
     80 
     81    /* used locally */
     82    SECOidData *bagTypeTag;
     83    PLArenaPool *arena;
     84    unsigned int nAttribs;
     85 
     86    /* used for validation/importing */
     87    PRBool problem, noInstall, validated, hasKey, unused, installed;
     88    int error;
     89 
     90    PRBool swapUnicodeBytes;
     91    PK11SlotInfo *slot;
     92    SECItem *pwitem;
     93    PRBool oldBagType;
     94    SECPKCS12TargetTokenCAs tokenCAs;
     95 };
     96 
     97 struct sec_PKCS12SafeContentsStr {
     98    sec_PKCS12SafeBag **safeBags;
     99    SECItem **encodedSafeBags;
    100 
    101    /* used locally */
    102    PLArenaPool *arena;
    103    unsigned int bagCount;
    104 };
    105 
    106 struct sec_PKCS12MacDataStr {
    107    SGNDigestInfo safeMac;
    108    SECItem macSalt;
    109    SECItem iter;
    110 };
    111 
    112 struct sec_PKCS12PFXItemStr {
    113 
    114    SECItem version;
    115 
    116    /* Content type will either be Data (password integrity mode)
    117     * or signedData (public-key integrity mode)
    118     */
    119    SEC_PKCS7ContentInfo *authSafe;
    120    SECItem encodedAuthSafe;
    121 
    122    /* Only present in password integrity mode */
    123    sec_PKCS12MacData macData;
    124    SECItem encodedMacData;
    125 };
    126 
    127 struct sec_PKCS12AuthenticatedSafeStr {
    128    /* Content type will either be encryptedData (password privacy mode)
    129     * or envelopedData (public-key privacy mode)
    130     */
    131    SEC_PKCS7ContentInfo **safes;
    132    SECItem **encodedSafes;
    133 
    134    /* used locally */
    135    unsigned int safeCount;
    136    SECItem dummySafe;
    137 };
    138 
    139 extern const SEC_ASN1Template sec_PKCS12PFXItemTemplate[];
    140 extern const SEC_ASN1Template sec_PKCS12MacDataTemplate[];
    141 extern const SEC_ASN1Template sec_PKCS12AuthenticatedSafeTemplate[];
    142 extern const SEC_ASN1Template sec_PKCS12SafeContentsTemplate[];
    143 extern const SEC_ASN1Template sec_PKCS12SafeContentsDecodeTemplate[];
    144 extern const SEC_ASN1Template sec_PKCS12NestedSafeContentsDecodeTemplate[];
    145 extern const SEC_ASN1Template sec_PKCS12CertBagTemplate[];
    146 extern const SEC_ASN1Template sec_PKCS12CRLBagTemplate[];
    147 extern const SEC_ASN1Template sec_PKCS12SecretBagTemplate[];
    148 extern const SEC_ASN1Template sec_PKCS12PointerToCertBagTemplate[];
    149 extern const SEC_ASN1Template sec_PKCS12PointerToCRLBagTemplate[];
    150 extern const SEC_ASN1Template sec_PKCS12PointerToSecretBagTemplate[];
    151 extern const SEC_ASN1Template sec_PKCS12PointerToSafeContentsTemplate[];
    152 extern const SEC_ASN1Template sec_PKCS12AttributeTemplate[];
    153 extern const SEC_ASN1Template sec_PKCS12PointerToContentInfoTemplate[];
    154 extern const SEC_ASN1Template sec_PKCS12SafeBagTemplate[];
    155 
    156 #endif