首頁 探索 說明
登入
piros
/
tor
3
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: c13a81f7f9
分支列表 標籤列表
tor
/
src
/
lib
/
tls
/
x509.h

x509.h 2.4 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. /* Copyright (c) 2003, Roger Dingledine
    2. 

  2.  * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.
    3. 

  3.  * Copyright (c) 2007-2018, The Tor Project, Inc. */
    4. 

  4. /* See LICENSE for licensing information */
    5. 

  5. 

  6. #ifndef TOR_X509_H
    7. 

  7. #define TOR_X509_H
    8. 

  8. 

  9. /**
    10. 

  10.  * \file x509.h
    11. 

  11.  * \brief Headers for tortls.c
    12. 

  12.  **/
    13. 

  13. 

  14. #include "lib/crypt_ops/crypto_rsa.h"
    15. 

  15. #include "lib/testsupport/testsupport.h"
    16. 

  16. 

  17. /* Opaque structure to hold an X509 certificate. */
    18. 

  18. typedef struct tor_x509_cert_t tor_x509_cert_t;
    19. 

  19. 

  20. #ifdef ENABLE_NSS
    21. 

  21. typedef struct CERTCertificateStr tor_x509_cert_impl_t;
    22. 

  22. #elif defined(ENABLE_OPENSSL)
    23. 

  23. typedef struct x509_st tor_x509_cert_impl_t;
    24. 

  24. #endif
    25. 

  25. 

  26. #ifdef TOR_X509_PRIVATE
    27. 

  27. /** Structure that we use for a single certificate. */
    28. 

  28. struct tor_x509_cert_t {
    29. 

  29.   tor_x509_cert_impl_t *cert;
    30. 

  30. #ifdef ENABLE_OPENSSL
    31. 

  31.   uint8_t *encoded;
    32. 

  32.   size_t encoded_len;
    33. 

  33. #endif
    34. 

  34.   unsigned pkey_digests_set : 1;
    35. 

  35.   common_digests_t cert_digests;
    36. 

  36.   common_digests_t pkey_digests;
    37. 

  37. };
    38. 

  38. #endif
    39. 

  39. 

  40. void tor_tls_pick_certificate_lifetime(time_t now,
    41. 

  41.                                        unsigned cert_lifetime,
    42. 

  42.                                        time_t *start_time_out,
    43. 

  43.                                        time_t *end_time_out);
    44. 

  44. 

  45. #ifdef TOR_UNIT_TESTS
    46. 

  46. tor_x509_cert_t *tor_x509_cert_replace_expiration(
    47. 

  47.                                                const tor_x509_cert_t *inp,
    48. 

  48.                                                time_t new_expiration_time,
    49. 

  49.                                                crypto_pk_t *signing_key);
    50. 

  50. #endif
    51. 

  51. 

  52. tor_x509_cert_t *tor_x509_cert_dup(const tor_x509_cert_t *cert);
    53. 

  53. 

  54. void tor_x509_cert_free_(tor_x509_cert_t *cert);
    55. 

  55. #define tor_x509_cert_free(c) \
    56. 

  56.   FREE_AND_NULL(tor_x509_cert_t, tor_x509_cert_free_, (c))
    57. 

  57. tor_x509_cert_t *tor_x509_cert_decode(const uint8_t *certificate,
    58. 

  58.                             size_t certificate_len);
    59. 

  59. void tor_x509_cert_get_der(const tor_x509_cert_t *cert,
    60. 

  60.                       const uint8_t **encoded_out, size_t *size_out);
    61. 

  61. 

  62. const common_digests_t *tor_x509_cert_get_id_digests(
    63. 

  63.                       const tor_x509_cert_t *cert);
    64. 

  64. const common_digests_t *tor_x509_cert_get_cert_digests(
    65. 

  65.                       const tor_x509_cert_t *cert);
    66. 

  66. 

  67. crypto_pk_t *tor_tls_cert_get_key(tor_x509_cert_t *cert);
    68. 

  68. 

  69. int tor_tls_cert_is_valid(int severity,
    70. 

  70.                           const tor_x509_cert_t *cert,
    71. 

  71.                           const tor_x509_cert_t *signing_cert,
    72. 

  72.                           time_t now,
    73. 

  73.                           int check_rsa_1024);
    74. 

  74. 

  75. #endif
    76.