hitls_cert_type.h

/*
 * This file is part of the openHiTLS project.
 *
 * openHiTLS is licensed under the Mulan PSL v2.
 * You can use this software according to the terms and conditions of the Mulan PSL v2.
 * You may obtain a copy of Mulan PSL v2 at:
 *
 *     http://license.coscl.org.cn/MulanPSL2
 *
 * THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,
 * EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,
 * MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.
 * See the Mulan PSL v2 for more details.
 */

 
#ifndef HITLS_CERT_TYPE_H
#define HITLS_CERT_TYPE_H
 
#include <stdint.h>
#include "bsl_obj.h"
#include "bsl_types.h"
 
#ifdef __cplusplus
extern "C" {
#endif

typedef void HITLS_CERT_X509;

typedef void HITLS_CERT_CRL;

typedef void HITLS_CERT_Key;

typedef void HITLS_CERT_Store;

typedef void HITLS_CERT_StoreCtx;

typedef struct BslList HITLS_TrustedCAList;

typedef struct BslList HITLS_CERT_Chain;

typedef struct BslList HITLS_CERT_CRLList;

typedef enum {
    CERT_STORE_CTRL_SET_VERIFY_DEPTH = 0,   
    CERT_STORE_CTRL_ADD_CERT_LIST,          
    CERT_STORE_CTRL_GET_VERIFY_DEPTH,       
    CERT_STORE_CTRL_ADD_CRL_LIST,           
    CERT_STORE_CTRL_CLEAR_CRL_LIST,         
    CERT_STORE_CTRL_ADD_CA_PATH,            
    CERT_STORE_CTRL_SET_VERIFY_FLAGS,       
    CERT_STORE_CTRL_GET_VERIFY_FLAGS,       
    CERT_STORE_CTRL_SET_DEFAULT_PATH,       
 
    CERT_CTRL_GET_ENCODE_LEN = 200,         
    CERT_CTRL_GET_PUB_KEY,                  
    CERT_CTRL_GET_SIGN_ALGO,                
    CERT_CTRL_GET_ENCODE_SUBJECT_DN,        
    CERT_CTRL_IS_SELF_SIGNED,               
 
    CERT_KEY_CTRL_GET_SIGN_LEN = 400,       
    CERT_KEY_CTRL_GET_TYPE,                 
    CERT_KEY_CTRL_GET_CURVE_NAME,           
    CERT_KEY_CTRL_GET_POINT_FORMAT,         
    CERT_KEY_CTRL_GET_SECBITS,              
    CERT_KEY_CTRL_IS_KEYENC_USAGE,          
    CERT_KEY_CTRL_IS_DIGITAL_SIGN_USAGE,    
    CERT_KEY_CTRL_IS_KEY_CERT_SIGN_USAGE,   
    CERT_KEY_CTRL_IS_KEY_AGREEMENT_USAGE,   
    CERT_KEY_CTRL_GET_PARAM_ID,             
    CERT_KEY_CTRL_IS_DATA_ENC_USAGE,        
    CERT_KEY_CTRL_IS_NON_REPUDIATION_USAGE, 
    CERT_KEY_CTRL_GET_PSS_MD,               
 
    CERT_CTRL_BUTT,
} HITLS_CERT_CtrlCmd;
 
typedef enum {
    HITLS_BUILD_CHAIN_FLAG_NO_ROOT = 0x2,
    HITLS_BUILD_CHAIN_FLAG_CHECK = 0x4,
    HITLS_BUILD_CHAIN_FLAG_IGNORE_ERROR = 0x8,
} HITLS_BUILD_CHAIN_FLAG;

typedef enum {
    TLS_PARSE_TYPE_FILE,   
    TLS_PARSE_TYPE_BUFF,   
    TLS_PARSE_TYPE_BUTT,
} HITLS_ParseType;

typedef enum {
    TLS_PARSE_FORMAT_PEM = BSL_FORMAT_PEM,        
    TLS_PARSE_FORMAT_ASN1 = BSL_FORMAT_ASN1,       
    TLS_PARSE_FORMAT_PFX_COM = BSL_FORMAT_PFX_COM,    
    TLS_PARSE_FORMAT_PKCS12 = BSL_FORMAT_PKCS12,     
    TLS_PARSE_FORMAT_BUTT = BSL_FORMAT_UNKNOWN,
} HITLS_ParseFormat;

typedef enum {
    TLS_CERT_STORE_TYPE_DEFAULT,   
    TLS_CERT_STORE_TYPE_VERIFY,    
    TLS_CERT_STORE_TYPE_CHAIN,     
    TLS_CERT_STORE_TYPE_BUTT,
} HITLS_CERT_StoreType;

typedef enum {
    TLS_CERT_KEY_TYPE_UNKNOWN = BSL_CID_UNKNOWN,
    TLS_CERT_KEY_TYPE_RSA = BSL_CID_RSA,
    TLS_CERT_KEY_TYPE_RSA_PSS = BSL_CID_RSASSAPSS,
    TLS_CERT_KEY_TYPE_DSA = BSL_CID_DSA,
    TLS_CERT_KEY_TYPE_ECDSA = BSL_CID_ECDSA,
    TLS_CERT_KEY_TYPE_ED25519 = BSL_CID_ED25519,
    TLS_CERT_KEY_TYPE_SM2 = BSL_CID_SM2DSA
} HITLS_CERT_KeyType;

typedef enum {
    /* Reservation algorithm. */
    CERT_SIG_SCHEME_RSA_PKCS1_SHA1 = 0x0201,
    CERT_SIG_SCHEME_DSA_SHA1 = 0X0202,
    CERT_SIG_SCHEME_ECDSA_SHA1 = 0x0203,
    CERT_SIG_SCHEME_ECDSA_SHA224 = 0x0303,
    /* RSASSA-PKCS1-v1_5 algorithms */
    CERT_SIG_SCHEME_RSA_PKCS1_SHA224 = 0x0301,
    CERT_SIG_SCHEME_RSA_PKCS1_SHA256 = 0x0401,
    CERT_SIG_SCHEME_RSA_PKCS1_SHA384 = 0x0501,
    CERT_SIG_SCHEME_RSA_PKCS1_SHA512 = 0x0601,
    /* DSA algorithms */
    CERT_SIG_SCHEME_DSA_SHA224 = 0x0302,
    CERT_SIG_SCHEME_DSA_SHA256 = 0X0402, 
    CERT_SIG_SCHEME_DSA_SHA384 = 0X0502, 
    CERT_SIG_SCHEME_DSA_SHA512 = 0X0602, 
    /* ECDSA algorithms */
    CERT_SIG_SCHEME_ECDSA_SECP256R1_SHA256 = 0x0403,
    CERT_SIG_SCHEME_ECDSA_SECP384R1_SHA384 = 0x0503,
    CERT_SIG_SCHEME_ECDSA_SECP521R1_SHA512 = 0x0603,
    /* GM sig algorithms */
    CERT_SIG_SCHEME_SM2_SM3 = 0x0708,
    /* RSASSA-PSS algorithms with public key OID rsaEncryption */
    CERT_SIG_SCHEME_RSA_PSS_RSAE_SHA256 = 0x0804,
    CERT_SIG_SCHEME_RSA_PSS_RSAE_SHA384 = 0x0805,
    CERT_SIG_SCHEME_RSA_PSS_RSAE_SHA512 = 0x0806,
    /* EdDSA algorithms */
    CERT_SIG_SCHEME_ED25519 = 0x0807,
    CERT_SIG_SCHEME_ED448 = 0x0808,
    /* RSASSA-PSS algorithms with public key OID RSASSA-PSS */
    CERT_SIG_SCHEME_RSA_PSS_PSS_SHA256 = 0x0809,
    CERT_SIG_SCHEME_RSA_PSS_PSS_SHA384 = 0x080a,
    CERT_SIG_SCHEME_RSA_PSS_PSS_SHA512 = 0x080b,
    CERT_SIG_SCHEME_UNKNOWN = 0xffff
} HITLS_SignHashAlgo;

typedef enum {
    HITLS_TRUSTED_CA_PRE_AGREED = 0, 
    HITLS_TRUSTED_CA_KEY_SHA1 = 1,   
    HITLS_TRUSTED_CA_X509_NAME = 2,  
    HITLS_TRUSTED_CA_CERT_SHA1 = 3,  
    HITLS_TRUSTED_CA_UNKNOWN = 255
} HITLS_TrustedCAType;

typedef struct HitlsTrustedCANode {
    HITLS_TrustedCAType caType; 
    uint8_t *data;              
    uint32_t dataSize;          
} HITLS_TrustedCANode;
 
#ifdef __cplusplus
}
#endif
 
#endif /* HITLS_CERT_TYPE_H */