1 /* Copyright (c) 2014, Google Inc. 2 * 3 * Permission to use, copy, modify, and/or distribute this software for any 4 * purpose with or without fee is hereby granted, provided that the above 5 * copyright notice and this permission notice appear in all copies. 6 * 7 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 8 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 9 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY 10 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 11 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION 12 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN 13 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ 14 15 #ifndef OPENSSL_HEADER_PKCS7_H 16 #define OPENSSL_HEADER_PKCS7_H 17 18 #include <openssl/base.h> 19 20 #include <openssl/stack.h> 21 22 #if defined(__cplusplus) 23 extern "C" { 24 #endif 25 26 27 /* PKCS#7. 28 * 29 * This library contains functions for extracting information from PKCS#7 30 * structures (RFC 2315). */ 31 32 DECLARE_STACK_OF(CRYPTO_BUFFER) 33 DECLARE_STACK_OF(X509) 34 DECLARE_STACK_OF(X509_CRL) 35 36 /* PKCS7_get_raw_certificates parses a PKCS#7, SignedData structure from |cbs| 37 * and appends the included certificates to |out_certs|. It returns one on 38 * success and zero on error. */ 39 OPENSSL_EXPORT int PKCS7_get_raw_certificates( 40 STACK_OF(CRYPTO_BUFFER) *out_certs, CBS *cbs, CRYPTO_BUFFER_POOL *pool); 41 42 /* PKCS7_get_certificates behaves like |PKCS7_get_raw_certificates| but parses 43 * them into |X509| objects. */ 44 OPENSSL_EXPORT int PKCS7_get_certificates(STACK_OF(X509) *out_certs, CBS *cbs); 45 46 /* PKCS7_bundle_certificates appends a PKCS#7, SignedData structure containing 47 * |certs| to |out|. It returns one on success and zero on error. */ 48 OPENSSL_EXPORT int PKCS7_bundle_certificates( 49 CBB *out, const STACK_OF(X509) *certs); 50 51 /* PKCS7_get_CRLs parses a PKCS#7, SignedData structure from |cbs| and appends 52 * the included CRLs to |out_crls|. It returns one on success and zero on 53 * error. */ 54 OPENSSL_EXPORT int PKCS7_get_CRLs(STACK_OF(X509_CRL) *out_crls, CBS *cbs); 55 56 /* PKCS7_bundle_CRLs appends a PKCS#7, SignedData structure containing 57 * |crls| to |out|. It returns one on success and zero on error. */ 58 OPENSSL_EXPORT int PKCS7_bundle_CRLs(CBB *out, const STACK_OF(X509_CRL) *crls); 59 60 /* PKCS7_get_PEM_certificates reads a PEM-encoded, PKCS#7, SignedData structure 61 * from |pem_bio| and appends the included certificates to |out_certs|. It 62 * returns one on success and zero on error. */ 63 OPENSSL_EXPORT int PKCS7_get_PEM_certificates(STACK_OF(X509) *out_certs, 64 BIO *pem_bio); 65 66 /* PKCS7_get_PEM_CRLs reads a PEM-encoded, PKCS#7, SignedData structure from 67 * |pem_bio| and appends the included CRLs to |out_crls|. It returns one on 68 * success and zero on error. */ 69 OPENSSL_EXPORT int PKCS7_get_PEM_CRLs(STACK_OF(X509_CRL) *out_crls, 70 BIO *pem_bio); 71 72 73 #if defined(__cplusplus) 74 } /* extern C */ 75 #endif 76 77 #define PKCS7_R_BAD_PKCS7_VERSION 100 78 #define PKCS7_R_NOT_PKCS7_SIGNED_DATA 101 79 #define PKCS7_R_NO_CERTIFICATES_INCLUDED 102 80 #define PKCS7_R_NO_CRLS_INCLUDED 103 81 82 #endif /* OPENSSL_HEADER_PKCS7_H */ 83