58 #ifndef HEADER_X509V3_H
59 #define HEADER_X509V3_H
61 #include <openssl/bio.h>
62 #include <openssl/x509.h>
63 #include <openssl/conf.h>
75 typedef void * (*X509V3_EXT_NEW)(void);
76 typedef void (*X509V3_EXT_FREE)(
void *);
77 typedef void * (*X509V3_EXT_D2I)(
void *,
const unsigned char ** , long);
78 typedef int (*X509V3_EXT_I2D)(
void *,
unsigned char **);
81 typedef char * (*X509V3_EXT_I2S)(
struct v3_ext_method *method,
void *ext);
83 typedef int (*X509V3_EXT_I2R)(
struct v3_ext_method *method,
void *ext,
BIO *out,
int indent);
94 X509V3_EXT_NEW ext_new;
95 X509V3_EXT_FREE ext_free;
115 char * (*get_string)(
void *db,
char *section,
char *value);
116 STACK_OF(
CONF_VALUE) * (*get_section)(
void *db,
char *section);
117 void (*free_string)(
void *db,
char * string);
118 void (*free_section)(
void *db, STACK_OF(
CONF_VALUE) *section);
139 #define X509V3_EXT_DYNAMIC 0x1
140 #define X509V3_EXT_CTX_DEP 0x2
141 #define X509V3_EXT_MULTILINE 0x4
168 #define GEN_OTHERNAME 0
172 #define GEN_DIRNAME 4
173 #define GEN_EDIPARTY 5
220 GENERAL_NAMES *fullname;
228 GENERAL_NAMES *CRLissuer;
238 GENERAL_NAMES *issuer;
333 #define X509V3_conf_err(val) ERR_add_error_data(6, "section:", val->section, \
334 ",name:", val->name, ",value:", val->value);
336 #define X509V3_set_ctx_test(ctx) \
337 X509V3_set_ctx(ctx, NULL, NULL, NULL, NULL, CTX_TEST)
338 #define X509V3_set_ctx_nodb(ctx) (ctx)->db = NULL;
340 #define EXT_BITSTRING(nid, table) { nid, 0, ASN1_ITEM_ref(ASN1_BIT_STRING), \
343 (X509V3_EXT_I2V)i2v_ASN1_BIT_STRING, \
344 (X509V3_EXT_V2I)v2i_ASN1_BIT_STRING, \
348 #define EXT_IA5STRING(nid) { nid, 0, ASN1_ITEM_ref(ASN1_IA5STRING), \
350 (X509V3_EXT_I2S)i2s_ASN1_IA5STRING, \
351 (X509V3_EXT_S2I)s2i_ASN1_IA5STRING, \
355 #define EXT_END { -1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}
360 #define EXFLAG_BCONS 0x1
361 #define EXFLAG_KUSAGE 0x2
362 #define EXFLAG_XKUSAGE 0x4
363 #define EXFLAG_NSCERT 0x8
365 #define EXFLAG_CA 0x10
366 #define EXFLAG_SS 0x20
367 #define EXFLAG_V1 0x40
368 #define EXFLAG_INVALID 0x80
369 #define EXFLAG_SET 0x100
370 #define EXFLAG_CRITICAL 0x200
371 #define EXFLAG_PROXY 0x400
373 #define EXFLAG_INVALID_POLICY 0x400
375 #define KU_DIGITAL_SIGNATURE 0x0080
376 #define KU_NON_REPUDIATION 0x0040
377 #define KU_KEY_ENCIPHERMENT 0x0020
378 #define KU_DATA_ENCIPHERMENT 0x0010
379 #define KU_KEY_AGREEMENT 0x0008
380 #define KU_KEY_CERT_SIGN 0x0004
381 #define KU_CRL_SIGN 0x0002
382 #define KU_ENCIPHER_ONLY 0x0001
383 #define KU_DECIPHER_ONLY 0x8000
385 #define NS_SSL_CLIENT 0x80
386 #define NS_SSL_SERVER 0x40
387 #define NS_SMIME 0x20
388 #define NS_OBJSIGN 0x10
389 #define NS_SSL_CA 0x04
390 #define NS_SMIME_CA 0x02
391 #define NS_OBJSIGN_CA 0x01
392 #define NS_ANY_CA (NS_SSL_CA|NS_SMIME_CA|NS_OBJSIGN_CA)
394 #define XKU_SSL_SERVER 0x1
395 #define XKU_SSL_CLIENT 0x2
396 #define XKU_SMIME 0x4
397 #define XKU_CODE_SIGN 0x8
399 #define XKU_OCSP_SIGN 0x20
400 #define XKU_TIMESTAMP 0x40
401 #define XKU_DVCS 0x80
403 #define X509_PURPOSE_DYNAMIC 0x1
404 #define X509_PURPOSE_DYNAMIC_NAME 0x2
417 #define X509_PURPOSE_SSL_CLIENT 1
418 #define X509_PURPOSE_SSL_SERVER 2
419 #define X509_PURPOSE_NS_SSL_SERVER 3
420 #define X509_PURPOSE_SMIME_SIGN 4
421 #define X509_PURPOSE_SMIME_ENCRYPT 5
422 #define X509_PURPOSE_CRL_SIGN 6
423 #define X509_PURPOSE_ANY 7
424 #define X509_PURPOSE_OCSP_HELPER 8
426 #define X509_PURPOSE_MIN 1
427 #define X509_PURPOSE_MAX 8
431 #define X509V3_EXT_UNKNOWN_MASK (0xfL << 16)
433 #define X509V3_EXT_DEFAULT 0
435 #define X509V3_EXT_ERROR_UNKNOWN (1L << 16)
437 #define X509V3_EXT_PARSE_UNKNOWN (2L << 16)
439 #define X509V3_EXT_DUMP_UNKNOWN (3L << 16)
443 #define X509V3_ADD_OP_MASK 0xfL
444 #define X509V3_ADD_DEFAULT 0L
445 #define X509V3_ADD_APPEND 1L
446 #define X509V3_ADD_REPLACE 2L
447 #define X509V3_ADD_REPLACE_EXISTING 3L
448 #define X509V3_ADD_KEEP_EXISTING 4L
449 #define X509V3_ADD_DELETE 5L
450 #define X509V3_ADD_SILENT 0x10
456 DECLARE_ASN1_FUNCTIONS(
SXNET)
457 DECLARE_ASN1_FUNCTIONS(
SXNETID)
459 int SXNET_add_id_asc(
SXNET **psx,
char *zone,
char *user,
int userlen);
460 int SXNET_add_id_ulong(
SXNET **psx,
unsigned long lzone,
char *user,
int userlen);
461 int SXNET_add_id_INTEGER(
SXNET **psx,
ASN1_INTEGER *izone,
char *user,
int userlen);
483 DECLARE_ASN1_FUNCTIONS(GENERAL_NAMES)
496 DECLARE_ASN1_FUNCTIONS(EXTENDED_KEY_USAGE)
499 DECLARE_ASN1_FUNCTIONS(CERTIFICATEPOLICIES)
505 DECLARE_ASN1_FUNCTIONS(CRL_DIST_POINTS)
510 DECLARE_ASN1_FUNCTIONS(AUTHORITY_INFO_ACCESS)
514 DECLARE_ASN1_ITEM(POLICY_MAPPINGS)
545 int X509V3_add_value_bool_nf(
char *name,
int asn1_bool,
547 int X509V3_get_value_bool(
CONF_VALUE *value,
int *asn1_bool);
553 char * X509V3_get_string(
X509V3_CTX *ctx,
char *name,
char *section);
555 void X509V3_string_free(
X509V3_CTX *ctx,
char *str);
560 int X509V3_add_value(
const char *name,
const char *value,
562 int X509V3_add_value_uchar(
const char *name,
const unsigned char *value,
564 int X509V3_add_value_bool(
const char *name,
int asn1_bool,
566 int X509V3_add_value_int(
const char *name,
ASN1_INTEGER *aint,
574 int X509V3_EXT_add_alias(
int nid_to,
int nid_from);
575 void X509V3_EXT_cleanup(
void);
579 int X509V3_add_standard_extensions(
void);
585 X509_EXTENSION *X509V3_EXT_i2d(
int ext_nid,
int crit,
void *ext_struc);
588 char *hex_to_string(
unsigned char *buffer,
long len);
589 unsigned char *string_to_hex(
char *str,
long *len);
590 int name_cmp(
const char *name,
const char *cmp);
594 int X509V3_EXT_print(
BIO *out,
X509_EXTENSION *ext,
unsigned long flag,
int indent);
595 int X509V3_EXT_print_fp(FILE *out,
X509_EXTENSION *ext,
int flag,
int indent);
599 int X509_check_ca(
X509 *x);
600 int X509_check_purpose(
X509 *x,
int id,
int ca);
602 int X509_PURPOSE_set(
int *p,
int purpose);
603 int X509_check_issued(
X509 *issuer,
X509 *subject);
604 int X509_PURPOSE_get_count(
void);
606 int X509_PURPOSE_get_by_sname(
char *sname);
607 int X509_PURPOSE_get_by_id(
int id);
608 int X509_PURPOSE_add(
int id,
int trust,
int flags,
610 char *name,
char *sname,
void *arg);
614 void X509_PURPOSE_cleanup(
void);
619 void X509_email_free(
STACK *sk);
623 int a2i_ipadd(
unsigned char *ipout,
const char *ipasc);
625 unsigned long chtype);
629 #ifndef OPENSSL_NO_RFC3779
635 #define ASIdOrRange_id 0
636 #define ASIdOrRange_range 1
649 #define ASIdentifierChoice_inherit 0
650 #define ASIdentifierChoice_asIdsOrRanges 1
656 ASIdOrRanges *asIdsOrRanges;
664 DECLARE_ASN1_FUNCTIONS(
ASRange)
674 #define IPAddressOrRange_addressPrefix 0
675 #define IPAddressOrRange_addressRange 1
688 #define IPAddressChoice_inherit 0
689 #define IPAddressChoice_addressesOrRanges 1
695 IPAddressOrRanges *addressesOrRanges;
715 #define V3_ASID_ASNUM 0
716 #define V3_ASID_RDI 1
724 #define IANA_AFI_IPV4 1
725 #define IANA_AFI_IPV6 2
735 int v3_addr_add_inherit(IPAddrBlocks *addr,
736 const unsigned afi,
const unsigned *safi);
737 int v3_addr_add_prefix(IPAddrBlocks *addr,
738 const unsigned afi,
const unsigned *safi,
739 unsigned char *a,
const int prefixlen);
740 int v3_addr_add_range(IPAddrBlocks *addr,
741 const unsigned afi,
const unsigned *safi,
742 unsigned char *min,
unsigned char *max);
745 unsigned char *min,
unsigned char *max,
752 int v3_addr_is_canonical(IPAddrBlocks *addr);
754 int v3_addr_canonize(IPAddrBlocks *addr);
760 int v3_addr_inherits(IPAddrBlocks *addr);
762 int v3_addr_subset(IPAddrBlocks *a, IPAddrBlocks *b);
769 int v3_asid_validate_resource_set(
STACK_OF(
X509) *chain,
771 int allow_inheritance);
772 int v3_addr_validate_resource_set(
STACK_OF(
X509) *chain,
774 int allow_inheritance);
782 void ERR_load_X509V3_strings(
void);
787 #define X509V3_F_ASIDENTIFIERCHOICE_CANONIZE 156
788 #define X509V3_F_ASIDENTIFIERCHOICE_IS_CANONICAL 157
789 #define X509V3_F_COPY_EMAIL 122
790 #define X509V3_F_COPY_ISSUER 123
791 #define X509V3_F_DO_DIRNAME 144
792 #define X509V3_F_DO_EXT_CONF 124
793 #define X509V3_F_DO_EXT_I2D 135
794 #define X509V3_F_DO_EXT_NCONF 151
795 #define X509V3_F_DO_I2V_NAME_CONSTRAINTS 148
796 #define X509V3_F_HEX_TO_STRING 111
797 #define X509V3_F_I2S_ASN1_ENUMERATED 121
798 #define X509V3_F_I2S_ASN1_IA5STRING 149
799 #define X509V3_F_I2S_ASN1_INTEGER 120
800 #define X509V3_F_I2V_AUTHORITY_INFO_ACCESS 138
801 #define X509V3_F_NOTICE_SECTION 132
802 #define X509V3_F_NREF_NOS 133
803 #define X509V3_F_POLICY_SECTION 131
804 #define X509V3_F_PROCESS_PCI_VALUE 150
805 #define X509V3_F_R2I_CERTPOL 130
806 #define X509V3_F_R2I_PCI 155
807 #define X509V3_F_S2I_ASN1_IA5STRING 100
808 #define X509V3_F_S2I_ASN1_INTEGER 108
809 #define X509V3_F_S2I_ASN1_OCTET_STRING 112
810 #define X509V3_F_S2I_ASN1_SKEY_ID 114
811 #define X509V3_F_S2I_SKEY_ID 115
812 #define X509V3_F_STRING_TO_HEX 113
813 #define X509V3_F_SXNET_ADD_ID_ASC 125
814 #define X509V3_F_SXNET_ADD_ID_INTEGER 126
815 #define X509V3_F_SXNET_ADD_ID_ULONG 127
816 #define X509V3_F_SXNET_GET_ID_ASC 128
817 #define X509V3_F_SXNET_GET_ID_ULONG 129
818 #define X509V3_F_V2I_ASIDENTIFIERS 158
819 #define X509V3_F_V2I_ASN1_BIT_STRING 101
820 #define X509V3_F_V2I_AUTHORITY_INFO_ACCESS 139
821 #define X509V3_F_V2I_AUTHORITY_KEYID 119
822 #define X509V3_F_V2I_BASIC_CONSTRAINTS 102
823 #define X509V3_F_V2I_CRLD 134
824 #define X509V3_F_V2I_EXTENDED_KEY_USAGE 103
825 #define X509V3_F_V2I_GENERAL_NAMES 118
826 #define X509V3_F_V2I_GENERAL_NAME_EX 117
827 #define X509V3_F_V2I_IPADDRBLOCKS 159
828 #define X509V3_F_V2I_ISSUER_ALT 153
829 #define X509V3_F_V2I_NAME_CONSTRAINTS 147
830 #define X509V3_F_V2I_POLICY_CONSTRAINTS 146
831 #define X509V3_F_V2I_POLICY_MAPPINGS 145
832 #define X509V3_F_V2I_SUBJECT_ALT 154
833 #define X509V3_F_V3_ADDR_VALIDATE_PATH_INTERNAL 160
834 #define X509V3_F_V3_GENERIC_EXTENSION 116
835 #define X509V3_F_X509V3_ADD1_I2D 140
836 #define X509V3_F_X509V3_ADD_VALUE 105
837 #define X509V3_F_X509V3_EXT_ADD 104
838 #define X509V3_F_X509V3_EXT_ADD_ALIAS 106
839 #define X509V3_F_X509V3_EXT_CONF 107
840 #define X509V3_F_X509V3_EXT_I2D 136
841 #define X509V3_F_X509V3_EXT_NCONF 152
842 #define X509V3_F_X509V3_GET_SECTION 142
843 #define X509V3_F_X509V3_GET_STRING 143
844 #define X509V3_F_X509V3_GET_VALUE_BOOL 110
845 #define X509V3_F_X509V3_PARSE_LIST 109
846 #define X509V3_F_X509_PURPOSE_ADD 137
847 #define X509V3_F_X509_PURPOSE_SET 141
850 #define X509V3_R_BAD_IP_ADDRESS 118
851 #define X509V3_R_BAD_OBJECT 119
852 #define X509V3_R_BN_DEC2BN_ERROR 100
853 #define X509V3_R_BN_TO_ASN1_INTEGER_ERROR 101
854 #define X509V3_R_DIRNAME_ERROR 149
855 #define X509V3_R_DUPLICATE_ZONE_ID 133
856 #define X509V3_R_ERROR_CONVERTING_ZONE 131
857 #define X509V3_R_ERROR_CREATING_EXTENSION 144
858 #define X509V3_R_ERROR_IN_EXTENSION 128
859 #define X509V3_R_EXPECTED_A_SECTION_NAME 137
860 #define X509V3_R_EXTENSION_EXISTS 145
861 #define X509V3_R_EXTENSION_NAME_ERROR 115
862 #define X509V3_R_EXTENSION_NOT_FOUND 102
863 #define X509V3_R_EXTENSION_SETTING_NOT_SUPPORTED 103
864 #define X509V3_R_EXTENSION_VALUE_ERROR 116
865 #define X509V3_R_ILLEGAL_EMPTY_EXTENSION 151
866 #define X509V3_R_ILLEGAL_HEX_DIGIT 113
867 #define X509V3_R_INCORRECT_POLICY_SYNTAX_TAG 152
868 #define X509V3_R_INVALID_ASNUMBER 160
869 #define X509V3_R_INVALID_ASRANGE 161
870 #define X509V3_R_INVALID_BOOLEAN_STRING 104
871 #define X509V3_R_INVALID_EXTENSION_STRING 105
872 #define X509V3_R_INVALID_INHERITANCE 162
873 #define X509V3_R_INVALID_IPADDRESS 163
874 #define X509V3_R_INVALID_NAME 106
875 #define X509V3_R_INVALID_NULL_ARGUMENT 107
876 #define X509V3_R_INVALID_NULL_NAME 108
877 #define X509V3_R_INVALID_NULL_VALUE 109
878 #define X509V3_R_INVALID_NUMBER 140
879 #define X509V3_R_INVALID_NUMBERS 141
880 #define X509V3_R_INVALID_OBJECT_IDENTIFIER 110
881 #define X509V3_R_INVALID_OPTION 138
882 #define X509V3_R_INVALID_POLICY_IDENTIFIER 134
883 #define X509V3_R_INVALID_PROXY_POLICY_SETTING 153
884 #define X509V3_R_INVALID_PURPOSE 146
885 #define X509V3_R_INVALID_SAFI 164
886 #define X509V3_R_INVALID_SECTION 135
887 #define X509V3_R_INVALID_SYNTAX 143
888 #define X509V3_R_ISSUER_DECODE_ERROR 126
889 #define X509V3_R_MISSING_VALUE 124
890 #define X509V3_R_NEED_ORGANIZATION_AND_NUMBERS 142
891 #define X509V3_R_NO_CONFIG_DATABASE 136
892 #define X509V3_R_NO_ISSUER_CERTIFICATE 121
893 #define X509V3_R_NO_ISSUER_DETAILS 127
894 #define X509V3_R_NO_POLICY_IDENTIFIER 139
895 #define X509V3_R_NO_PROXY_CERT_POLICY_LANGUAGE_DEFINED 154
896 #define X509V3_R_NO_PUBLIC_KEY 114
897 #define X509V3_R_NO_SUBJECT_DETAILS 125
898 #define X509V3_R_ODD_NUMBER_OF_DIGITS 112
899 #define X509V3_R_OPERATION_NOT_DEFINED 148
900 #define X509V3_R_OTHERNAME_ERROR 147
901 #define X509V3_R_POLICY_LANGUAGE_ALREADTY_DEFINED 155
902 #define X509V3_R_POLICY_PATH_LENGTH 156
903 #define X509V3_R_POLICY_PATH_LENGTH_ALREADTY_DEFINED 157
904 #define X509V3_R_POLICY_SYNTAX_NOT_CURRENTLY_SUPPORTED 158
905 #define X509V3_R_POLICY_WHEN_PROXY_LANGUAGE_REQUIRES_NO_POLICY 159
906 #define X509V3_R_SECTION_NOT_FOUND 150
907 #define X509V3_R_UNABLE_TO_GET_ISSUER_DETAILS 122
908 #define X509V3_R_UNABLE_TO_GET_ISSUER_KEYID 123
909 #define X509V3_R_UNKNOWN_BIT_STRING_ARGUMENT 111
910 #define X509V3_R_UNKNOWN_EXTENSION 129
911 #define X509V3_R_UNKNOWN_EXTENSION_NAME 130
912 #define X509V3_R_UNKNOWN_OPTION 120
913 #define X509V3_R_UNSUPPORTED_OPTION 117
914 #define X509V3_R_USER_TOO_LONG 132
STACK_OF(X509_NAME)
Definition: ssl_cert.c:554
Definition: pcy_int.h:148
Definition: x509_vfy.h:230