hitls_cms_local.h

/*
 * This file is part of the openHiTLS project.
 *
 * openHiTLS is licensed under the Mulan PSL v2.
 * You can use this software according to the terms and conditions of the Mulan PSL v2.
 * You may obtain a copy of Mulan PSL v2 at:
 *
 *     http://license.coscl.org.cn/MulanPSL2
 *
 * THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,
 * EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,
 * MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.
 * See the Mulan PSL v2 for more details.
 */
 
#ifndef HITLS_CMS_LOCAL_H
#define HITLS_CMS_LOCAL_H
 
#include "hitls_build.h"
#ifdef HITLS_PKI_CMS
#include "hitls_x509_local.h"
#include "crypt_eal_md.h"
#include "hitls_cert_local.h"
#include "hitls_pki_crl.h"
 
#ifdef __cplusplus
extern "C" {
#endif /* __cplusplus */
 
#ifdef HITLS_PKI_CMS_SIGNEDDATA
 
#define HITLS_CMS_SIGNEDDATA_SIGNERINFO_V1    0x01  
#define HITLS_CMS_SIGNEDDATA_SIGNERINFO_V3    0x03  

typedef struct {
    int32_t id;     
    BSL_Buffer param; 
    CRYPT_EAL_MdCtx *mdCtx; 
} CMS_AlgId;

#define CMS_SignerInfos BslList

typedef struct {
    int32_t contentType;   
    BSL_Buffer content;   
} CMS_EncapContentInfo;
 
#define HITLS_CMS_FLAG_GEN               0x01
#define HITLS_CMS_FLAG_PARSE             0x02
#define HITLS_CMS_FLAG_NO_SIGNEDATTR     0x08

typedef struct _CMS_SignerInfo {
    int32_t version;                            
    BSL_ASN1_List *issuerName;
    BSL_Buffer certSerialNum;
    HITLS_X509_ExtSki subjectKeyId;
    CMS_AlgId digestAlg;                         
    HITLS_X509_Attrs *signedAttrs;               
    HITLS_X509_Asn1AlgId sigAlg;                 
    HITLS_X509_Attrs *unsignedAttrs;             
    BSL_Buffer sigValue;                         
    BSL_Buffer signData;      
    uint32_t flag;            
} CMS_SignerInfo;
 
#define HITLS_CMS_UNINIT                      0
#define HITLS_CMS_SIGN_INIT                   1
#define HITLS_CMS_VERIFY_INIT                 2
#define HITLS_CMS_SIGN_FINISHED               3
#define HITLS_CMS_VERIFY_FINISHED             4
typedef struct {
    int32_t version;                     
    HITLS_X509_List *digestAlg;                     
    CMS_EncapContentInfo encapCont; 
    HITLS_X509_List *certs;                         
    HITLS_X509_List *crls;                                 
    CMS_SignerInfos *signerInfos;                          
    uint32_t flag; // Used to mark signData parsing or generation, indicating resource release behavior.
    uint8_t *initData;
    bool detached;
    uint32_t state;  
    HITLS_PKI_LibCtx *libCtx;
    const char *attrName;
} CMS_SignedData;

typedef struct {
    int32_t contentType;   
    BSL_Buffer content;   
} CMS_ContentInfo;
 
typedef struct _HITLS_CMS {
    int32_t dataType;                     
    union {
        CMS_SignedData *signedData;
    } ctx;
} HITLS_CMS;

int32_t HITLS_CMS_ParseSignedData(HITLS_PKI_LibCtx *libCtx, const char *attrName, const BSL_Buffer *encode,
    HITLS_CMS **signedData);

CMS_SignerInfo *CMS_SignerInfoNew(uint32_t flag);
 
void CMS_AlgIdFree(void *algId);

int32_t HITLS_CMS_GenSignedDataBuff(int32_t format, HITLS_CMS *cms, BSL_Buffer *encode);

void HITLS_CMS_SignerInfoFree(void *signerInfo);

int32_t HITLS_CMS_AddMd(HITLS_X509_List *list, int32_t mdId);

int32_t HITLS_CMS_SignedDataCtrl(HITLS_CMS *cms, int32_t cmd, void *val, uint32_t valLen);

int32_t HITLS_CMS_AddCert(HITLS_X509_List **list, HITLS_X509_Cert *cert);

int32_t HITLS_CMS_AddCrl(HITLS_X509_List **list, HITLS_X509_Crl *crl);

int32_t HITLS_CMS_SignedDataInit(HITLS_CMS *cms, int32_t option, const BSL_Param *param);

int32_t HITLS_CMS_SignedDataUpdate(HITLS_CMS *cms, const BSL_Buffer *input);

int32_t HITLS_CMS_SignedDataFinal(HITLS_CMS *cms, const BSL_Param *param);
 
#endif
 
#ifdef HITLS_PKI_CMS_DATA
// parse PKCS7-Data
int32_t HITLS_CMS_ParseAsn1Data(BSL_Buffer *encode, BSL_Buffer *dataValue);
#endif
 
#ifdef HITLS_PKI_CMS_DIGESTINFO
 
// parse PKCS7-DigestInfo：only support hash.
int32_t HITLS_CMS_ParseDigestInfo(BSL_Buffer *encode, BslCid *cid, BSL_Buffer *digest);
 
// encode PKCS7-DigestInfo：only support hash.
int32_t HITLS_CMS_EncodeDigestInfoBuff(BslCid cid, BSL_Buffer *in, BSL_Buffer *encode);
 
#endif

int32_t HITLS_CMS_GenBuff(int32_t format, HITLS_CMS *cms, const BSL_Param *optionalParam, BSL_Buffer *encode);

int32_t HITLS_CMS_GenFile(int32_t format, HITLS_CMS *cms, const BSL_Param *optionalParam, const char *path);
 
#ifdef __cplusplus
}
#endif
 
#endif // HITLS_PKI_CMS
 
#endif // HITLS_CMS_LOCAL_H