Start making ts opaque

Move the not yet exposed EssCertIDv2 struct internals to ts_local.h and move the ASN.1 function prototypes that we don't want to expose with them. Include ts_local.h where necessary or where it will be needed soon. ok jsing
author: tb <> 2022-07-24 08:16:47 +0000
committer: tb <> 2022-07-24 08:16:47 +0000
commit: c6dd71252b6c9201b8a8d7cf63bdace12547b030 (patch)
tree: d4b5a641a1e684361d921596482872ed4f79e586 /src/lib/libcrypto/ts/ts_local.h
parent: 180a8f0f93ad83bf01f8c87a002ea920ac0d0429 (diff)
download: openbsd-c6dd71252b6c9201b8a8d7cf63bdace12547b030.tar.gz
openbsd-c6dd71252b6c9201b8a8d7cf63bdace12547b030.tar.bz2
openbsd-c6dd71252b6c9201b8a8d7cf63bdace12547b030.zip
1 files changed, 110 insertions, 0 deletions
diff --git a/src/lib/libcrypto/ts/ts_local.h b/src/lib/libcrypto/ts/ts_local.h
new file mode 100644
index 0000000000..01d26de127
--- /dev/null
+++ b/src/lib/libcrypto/ts/ts_local.h
@@ -0,0 +1,110 @@
+/* $OpenBSD: ts_local.h,v 1.1 2022/07/24 08:16:47 tb Exp $ */
+/* Written by Zoltan Glozik (zglozik@opentsa.org) for the OpenSSL
+ * project 2002, 2003, 2004.
+ */
+/* ====================================================================
+ * Copyright (c) 2006 The OpenSSL Project.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ *
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in
+ *    the documentation and/or other materials provided with the
+ *    distribution.
+ *
+ * 3. All advertising materials mentioning features or use of this
+ *    software must display the following acknowledgment:
+ *    "This product includes software developed by the OpenSSL Project
+ *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
+ *
+ * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
+ *    endorse or promote products derived from this software without
+ *    prior written permission. For written permission, please contact
+ *    licensing@OpenSSL.org.
+ *
+ * 5. Products derived from this software may not be called "OpenSSL"
+ *    nor may "OpenSSL" appear in their names without prior written
+ *    permission of the OpenSSL Project.
+ *
+ * 6. Redistributions of any form whatsoever must retain the following
+ *    acknowledgment:
+ *    "This product includes software developed by the OpenSSL Project
+ *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
+ * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+ * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
+ * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+ * OF THE POSSIBILITY OF SUCH DAMAGE.
+ * ====================================================================
+ *
+ * This product includes cryptographic software written by Eric Young
+ * (eay@cryptsoft.com).  This product includes software written by Tim
+ * Hudson (tjh@cryptsoft.com).
+ *
+ */
+#ifndef HEADER_TS_LOCAL_H
+#define HEADER_TS_LOCAL_H
+__BEGIN_HIDDEN_DECLS
+/*
+ * ESSCertIDv2 ::=  SEQUENCE {
+ *     hashAlgorithm           AlgorithmIdentifier
+ *            DEFAULT {algorithm id-sha256},
+ *     certHash                 Hash,
+ *     issuerSerial             IssuerSerial OPTIONAL }
+ */
+struct ESS_cert_id_v2 {
+        X509_ALGOR *hash_alg;   /* Default SHA-256. */
+        ASN1_OCTET_STRING *hash;
+        ESS_ISSUER_SERIAL *issuer_serial;
+};
+/*
+ * SigningCertificateV2 ::=  SEQUENCE {
+ *     certs        SEQUENCE OF ESSCertIDv2,
+ *     policies     SEQUENCE OF PolicyInformation OPTIONAL }
+ */
+struct ESS_signing_cert_v2 {
+        STACK_OF(ESS_CERT_ID_V2) *cert_ids;
+        STACK_OF(POLICYINFO) *policy_info;
+};
+/*
+ * Public OpenSSL API that we do not currently want to expose.
+ */
+ESS_CERT_ID_V2 *ESS_CERT_ID_V2_new(void);
+void ESS_CERT_ID_V2_free(ESS_CERT_ID_V2 *a);
+int i2d_ESS_CERT_ID_V2(const ESS_CERT_ID_V2 *a, unsigned char **pp);
+ESS_CERT_ID_V2 *d2i_ESS_CERT_ID_V2(ESS_CERT_ID_V2 **a, const unsigned char **pp,
+    long length);
+ESS_CERT_ID_V2 *ESS_CERT_ID_V2_dup(ESS_CERT_ID_V2 *a);
+ESS_SIGNING_CERT_V2 *ESS_SIGNING_CERT_V2_new(void);
+void ESS_SIGNING_CERT_V2_free(ESS_SIGNING_CERT_V2 *a);
+int i2d_ESS_SIGNING_CERT_V2(const ESS_SIGNING_CERT_V2 *a,
+    unsigned char **pp);
+ESS_SIGNING_CERT_V2 *d2i_ESS_SIGNING_CERT_V2(ESS_SIGNING_CERT_V2 **a,
+    const unsigned char **pp, long length);
+ESS_SIGNING_CERT_V2 *ESS_SIGNING_CERT_V2_dup(ESS_SIGNING_CERT_V2 *a);
+__END_HIDDEN_DECLS
+#endif /* HEADER_TS_LOCAL_H */
author	tb <>	2022-07-24 08:16:47 +0000
committer	tb <>	2022-07-24 08:16:47 +0000
commit	c6dd71252b6c9201b8a8d7cf63bdace12547b030 (patch)
tree	d4b5a641a1e684361d921596482872ed4f79e586 /src/lib/libcrypto/ts/ts_local.h
parent	180a8f0f93ad83bf01f8c87a002ea920ac0d0429 (diff)
download	openbsd-c6dd71252b6c9201b8a8d7cf63bdace12547b030.tar.gz openbsd-c6dd71252b6c9201b8a8d7cf63bdace12547b030.tar.bz2 openbsd-c6dd71252b6c9201b8a8d7cf63bdace12547b030.zip

diff --git a/src/lib/libcrypto/ts/ts_local.h b/src/lib/libcrypto/ts/ts_local.h new file mode 100644 index 0000000000..01d26de127 --- /dev/null +++ b/src/lib/libcrypto/ts/ts_local.h
@@ -0,0 +1,110 @@
	1	/* $OpenBSD: ts_local.h,v 1.1 2022/07/24 08:16:47 tb Exp $ */
	2	/* Written by Zoltan Glozik (zglozik@opentsa.org) for the OpenSSL
	3	* project 2002, 2003, 2004.
	4	*/
	5	/* ====================================================================
	6	* Copyright (c) 2006 The OpenSSL Project. All rights reserved.
	7	*
	8	* Redistribution and use in source and binary forms, with or without
	9	* modification, are permitted provided that the following conditions
	10	* are met:
	11	*
	12	* 1. Redistributions of source code must retain the above copyright
	13	* notice, this list of conditions and the following disclaimer.
	14	*
	15	* 2. Redistributions in binary form must reproduce the above copyright
	16	* notice, this list of conditions and the following disclaimer in
	17	* the documentation and/or other materials provided with the
	18	* distribution.
	19	*
	20	* 3. All advertising materials mentioning features or use of this
	21	* software must display the following acknowledgment:
	22	* "This product includes software developed by the OpenSSL Project
	23	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
	24	*
	25	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
	26	* endorse or promote products derived from this software without
	27	* prior written permission. For written permission, please contact
	28	* licensing@OpenSSL.org.
	29	*
	30	* 5. Products derived from this software may not be called "OpenSSL"
	31	* nor may "OpenSSL" appear in their names without prior written
	32	* permission of the OpenSSL Project.
	33	*
	34	* 6. Redistributions of any form whatsoever must retain the following
	35	* acknowledgment:
	36	* "This product includes software developed by the OpenSSL Project
	37	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
	38	*
	39	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
	40	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	41	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
	42	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
	43	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
	44	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	45	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
	46	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	47	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
	48	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
	49	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
	50	* OF THE POSSIBILITY OF SUCH DAMAGE.
	51	* ====================================================================
	52	*
	53	* This product includes cryptographic software written by Eric Young
	54	* (eay@cryptsoft.com). This product includes software written by Tim
	55	* Hudson (tjh@cryptsoft.com).
	56	*
	57	*/
	58
	59	#ifndef HEADER_TS_LOCAL_H
	60	#define HEADER_TS_LOCAL_H
	61
	62	__BEGIN_HIDDEN_DECLS
	63
	64	/*
	65	* ESSCertIDv2 ::= SEQUENCE {
	66	* hashAlgorithm AlgorithmIdentifier
	67	* DEFAULT {algorithm id-sha256},
	68	* certHash Hash,
	69	* issuerSerial IssuerSerial OPTIONAL }
	70	*/
	71
	72	struct ESS_cert_id_v2 {
	73	X509_ALGOR hash_alg; / Default SHA-256. */
	74	ASN1_OCTET_STRING *hash;
	75	ESS_ISSUER_SERIAL *issuer_serial;
	76	};
	77
	78	/*
	79	* SigningCertificateV2 ::= SEQUENCE {
	80	* certs SEQUENCE OF ESSCertIDv2,
	81	* policies SEQUENCE OF PolicyInformation OPTIONAL }
	82	*/
	83
	84	struct ESS_signing_cert_v2 {
	85	STACK_OF(ESS_CERT_ID_V2) *cert_ids;
	86	STACK_OF(POLICYINFO) *policy_info;
	87	};
	88
	89	/*
	90	* Public OpenSSL API that we do not currently want to expose.
	91	*/
	92
	93	ESS_CERT_ID_V2 *ESS_CERT_ID_V2_new(void);
	94	void ESS_CERT_ID_V2_free(ESS_CERT_ID_V2 *a);
	95	int i2d_ESS_CERT_ID_V2(const ESS_CERT_ID_V2 a, unsigned char *pp);
	96	ESS_CERT_ID_V2 d2i_ESS_CERT_ID_V2(ESS_CERT_ID_V2 a, const unsigned char *pp,
	97	long length);
	98	ESS_CERT_ID_V2 ESS_CERT_ID_V2_dup(ESS_CERT_ID_V2 a);
	99
	100	ESS_SIGNING_CERT_V2 *ESS_SIGNING_CERT_V2_new(void);
	101	void ESS_SIGNING_CERT_V2_free(ESS_SIGNING_CERT_V2 *a);
	102	int i2d_ESS_SIGNING_CERT_V2(const ESS_SIGNING_CERT_V2 *a,
	103	unsigned char **pp);
	104	ESS_SIGNING_CERT_V2 d2i_ESS_SIGNING_CERT_V2(ESS_SIGNING_CERT_V2 *a,
	105	const unsigned char **pp, long length);
	106	ESS_SIGNING_CERT_V2 ESS_SIGNING_CERT_V2_dup(ESS_SIGNING_CERT_V2 a);
	107
	108	__END_HIDDEN_DECLS
	109
	110	#endif /* HEADER_TS_LOCAL_H */