Home | History | Annotate | Download | only in openssl 
      1 /* Copyright (c) 2014, Google Inc.
      2  *
      3  * Permission to use, copy, modify, and/or distribute this software for any
      4  * purpose with or without fee is hereby granted, provided that the above
      5  * copyright notice and this permission notice appear in all copies.
      6  *
      7  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
      8  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
      9  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
     10  * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
     11  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
     12  * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
     13  * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
     14 
     15 #ifndef OPENSSL_HEADER_PKCS7_H
     16 #define OPENSSL_HEADER_PKCS7_H
     17 
     18 #include <openssl/base.h>
     19 
     20 #include <openssl/stack.h>
     21 
     22 #if defined(__cplusplus)
     23 extern "C" {
     24 #endif
     25 
     26 
     27 /* PKCS#7.
     28  *
     29  * This library contains functions for extracting information from PKCS#7
     30  * structures (RFC 2315). */
     31 
     32 DECLARE_STACK_OF(CRYPTO_BUFFER)
     33 DECLARE_STACK_OF(X509)
     34 DECLARE_STACK_OF(X509_CRL)
     35 
     36 /* PKCS7_get_raw_certificates parses a PKCS#7, SignedData structure from |cbs|
     37  * and appends the included certificates to |out_certs|. It returns one on
     38  * success and zero on error. */
     39 OPENSSL_EXPORT int PKCS7_get_raw_certificates(
     40     STACK_OF(CRYPTO_BUFFER) *out_certs, CBS *cbs, CRYPTO_BUFFER_POOL *pool);
     41 
     42 /* PKCS7_get_certificates behaves like |PKCS7_get_raw_certificates| but parses
     43  * them into |X509| objects. */
     44 OPENSSL_EXPORT int PKCS7_get_certificates(STACK_OF(X509) *out_certs, CBS *cbs);
     45 
     46 /* PKCS7_bundle_certificates appends a PKCS#7, SignedData structure containing
     47  * |certs| to |out|. It returns one on success and zero on error. */
     48 OPENSSL_EXPORT int PKCS7_bundle_certificates(
     49     CBB *out, const STACK_OF(X509) *certs);
     50 
     51 /* PKCS7_get_CRLs parses a PKCS#7, SignedData structure from |cbs| and appends
     52  * the included CRLs to |out_crls|. It returns one on success and zero on
     53  * error. */
     54 OPENSSL_EXPORT int PKCS7_get_CRLs(STACK_OF(X509_CRL) *out_crls, CBS *cbs);
     55 
     56 /* PKCS7_bundle_CRLs appends a PKCS#7, SignedData structure containing
     57  * |crls| to |out|. It returns one on success and zero on error. */
     58 OPENSSL_EXPORT int PKCS7_bundle_CRLs(CBB *out, const STACK_OF(X509_CRL) *crls);
     59 
     60 /* PKCS7_get_PEM_certificates reads a PEM-encoded, PKCS#7, SignedData structure
     61  * from |pem_bio| and appends the included certificates to |out_certs|. It
     62  * returns one on success and zero on error. */
     63 OPENSSL_EXPORT int PKCS7_get_PEM_certificates(STACK_OF(X509) *out_certs,
     64                                               BIO *pem_bio);
     65 
     66 /* PKCS7_get_PEM_CRLs reads a PEM-encoded, PKCS#7, SignedData structure from
     67  * |pem_bio| and appends the included CRLs to |out_crls|. It returns one on
     68  * success and zero on error. */
     69 OPENSSL_EXPORT int PKCS7_get_PEM_CRLs(STACK_OF(X509_CRL) *out_crls,
     70                                       BIO *pem_bio);
     71 
     72 
     73 #if defined(__cplusplus)
     74 }  /* extern C */
     75 #endif
     76 
     77 #define PKCS7_R_BAD_PKCS7_VERSION 100
     78 #define PKCS7_R_NOT_PKCS7_SIGNED_DATA 101
     79 #define PKCS7_R_NO_CERTIFICATES_INCLUDED 102
     80 #define PKCS7_R_NO_CRLS_INCLUDED 103
     81 
     82 #endif  /* OPENSSL_HEADER_PKCS7_H */
     83