Página Principal Explorar Ajuda
Iniciar Sessão
cpp
/
squilu
mirror de https://github.com/mingodad/squilu.git
2
0
Fork 0
Ficheiros Problemas 0 Wiki
Árvore: c19d36f4fd
Ramos Etiquetas
squilu
/
myaxtls
/
crypto_misc.h

crypto_misc.h 6.4 KB
Histórico Em bruto

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178 
  1. /*
    2. 

  2.  * Copyright (c) 2007-2015, Cameron Rich
    3. 

  3.  * 
    4. 

  4.  * All rights reserved.
    5. 

  5.  *
    6. 

  6.  * Redistribution and use in source and binary forms, with or without
    7. 

  7.  * modification, are permitted provided that the following conditions are met:
    8. 

  8.  *
    9. 

  9.  * * Redistributions of source code must retain the above copyright notice,
    10. 

  10.  *   this list of conditions and the following disclaimer.
    11. 

  11.  * * Redistributions in binary form must reproduce the above copyright notice,
    12. 

  12.  *   this list of conditions and the following disclaimer in the documentation
    13. 

  13.  *   and/or other materials provided with the distribution.
    14. 

  14.  * * Neither the name of the axTLS project nor the names of its contributors
    15. 

  15.  *   may be used to endorse or promote products derived from this software
    16. 

  16.  *   without specific prior written permission.
    17. 

  17.  *
    18. 

  18.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
    19. 

  19.  * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
    20. 

  20.  * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
    21. 

  21.  * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
    22. 

  22.  * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
    23. 

  23.  * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
    24. 

  24.  * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
    25. 

  25.  * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
    26. 

  26.  * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
    27. 

  27.  * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
    28. 

  28.  * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    29. 

  29. */
    30. 

  30. 

  31. /**
    32. 

  32.  * @file crypto_misc.h
    33. 

  33.  */
    34. 

  34. 

  35. #ifndef HEADER_CRYPTO_MISC_H
    36. 

  36. #define HEADER_CRYPTO_MISC_H
    37. 

  37. 

  38. #ifdef __cplusplus
    39. 

  39. extern "C" {
    40. 

  40. #endif
    41. 

  41. 

  42. #include "crypto.h"
    43. 

  43. #include "bigint.h"
    44. 

  44. 

  45. /**************************************************************************
    46. 

  46.  * X509 declarations
    47. 

  47.  **************************************************************************/
    48. 

  48. #define X509_OK                             0
    49. 

  49. #define X509_NOT_OK                         -1
    50. 

  50. #define X509_VFY_ERROR_NO_TRUSTED_CERT      -2
    51. 

  51. #define X509_VFY_ERROR_BAD_SIGNATURE        -3
    52. 

  52. #define X509_VFY_ERROR_NOT_YET_VALID        -4
    53. 

  53. #define X509_VFY_ERROR_EXPIRED              -5
    54. 

  54. #define X509_VFY_ERROR_SELF_SIGNED          -6
    55. 

  55. #define X509_VFY_ERROR_INVALID_CHAIN        -7
    56. 

  56. #define X509_VFY_ERROR_UNSUPPORTED_DIGEST   -8
    57. 

  57. #define X509_INVALID_PRIV_KEY               -9
    58. 

  58. #define X509_MAX_CERTS                      -10
    59. 

  59. 

  60. /*
    61. 

  61.  * The Distinguished Name
    62. 

  62.  */
    63. 

  63. #define X509_NUM_DN_TYPES                   3
    64. 

  64. #define X509_COMMON_NAME                    0
    65. 

  65. #define X509_ORGANIZATION                   1
    66. 

  66. #define X509_ORGANIZATIONAL_UNIT            2
    67. 

  67. 

  68. struct _x509_ctx
    69. 

  69. {
    70. 

  70.     char *ca_cert_dn[X509_NUM_DN_TYPES];
    71. 

  71.     char *cert_dn[X509_NUM_DN_TYPES];
    72. 

  72.     char **subject_alt_dnsnames;
    73. 

  73.     time_t not_before;
    74. 

  74.     time_t not_after;
    75. 

  75.     uint8_t *signature;
    76. 

  76.     uint16_t sig_len;
    77. 

  77.     uint8_t sig_type;
    78. 

  78.     RSA_CTX *rsa_ctx;
    79. 

  79.     bigint *digest;
    80. 

  80.     struct _x509_ctx *next;
    81. 

  81. };
    82. 

  82. 

  83. typedef struct _x509_ctx X509_CTX;
    84. 

  84. 

  85. #ifdef CONFIG_SSL_CERT_VERIFICATION
    86. 

  86. typedef struct
    87. 

  87. {
    88. 

  88.     //X509_CTX *cert[CONFIG_X509_MAX_CA_CERTS];
    89. 

  89.     X509_CTX **cert;
    90. 

  90. } CA_CERT_CTX;
    91. 

  91. #endif
    92. 

  92. 

  93. int x509_new(const uint8_t *cert, int *len, X509_CTX **ctx);
    94. 

  94. void x509_free(X509_CTX *x509_ctx);
    95. 

  95. #ifdef CONFIG_SSL_CERT_VERIFICATION
    96. 

  96. int x509_verify(const CA_CERT_CTX *ca_cert_ctx, const X509_CTX *cert);
    97. 

  97. #endif
    98. 

  98. #ifdef CONFIG_SSL_FULL_MODE
    99. 

  99. void x509_print(const X509_CTX *cert, CA_CERT_CTX *ca_cert_ctx);
    100. 

  100. const char * x509_display_error(int error);
    101. 

  101. #endif
    102. 

  102. 

  103. /**************************************************************************
    104. 

  104.  * ASN1 declarations
    105. 

  105.  **************************************************************************/
    106. 

  106. #define ASN1_INTEGER            0x02
    107. 

  107. #define ASN1_BIT_STRING         0x03
    108. 

  108. #define ASN1_OCTET_STRING       0x04
    109. 

  109. #define ASN1_NULL               0x05
    110. 

  110. #define ASN1_PRINTABLE_STR2     0x0C
    111. 

  111. #define ASN1_OID                0x06
    112. 

  112. #define ASN1_PRINTABLE_STR2     0x0C
    113. 

  113. #define ASN1_PRINTABLE_STR      0x13
    114. 

  114. #define ASN1_TELETEX_STR        0x14
    115. 

  115. #define ASN1_IA5_STR            0x16
    116. 

  116. #define ASN1_UTC_TIME           0x17
    117. 

  117. #define ASN1_GENERALIZED_TIME   0x18
    118. 

  118. #define ASN1_UNICODE_STR        0x1e
    119. 

  119. #define ASN1_SEQUENCE           0x30
    120. 

  120. #define ASN1_CONTEXT_DNSNAME	0x82
    121. 

  121. #define ASN1_SET                0x31
    122. 

  122. #define ASN1_V3_DATA			0xa3
    123. 

  123. #define ASN1_IMPLICIT_TAG       0x80
    124. 

  124. #define ASN1_CONTEXT_DNSNAME	0x82
    125. 

  125. #define ASN1_EXPLICIT_TAG       0xa0
    126. 

  126. #define ASN1_V3_DATA			0xa3
    127. 

  127. 

  128. #define SIG_TYPE_MD2            0x02
    129. 

  129. #define SIG_TYPE_MD5            0x04
    130. 

  130. #define SIG_TYPE_SHA1           0x05
    131. 

  131. #define SIG_TYPE_SHA256         0x0b
    132. 

  132. #define SIG_TYPE_SHA384         0x0c
    133. 

  133. #define SIG_TYPE_SHA512         0x0d
    134. 

  134. 

  135. uint32_t get_asn1_length(const uint8_t *buf, int *offset);
    136. 

  136. int asn1_get_private_key(const uint8_t *buf, int len, RSA_CTX **rsa_ctx);
    137. 

  137. int asn1_next_obj(const uint8_t *buf, int *offset, int obj_type);
    138. 

  138. int asn1_skip_obj(const uint8_t *buf, int *offset, int obj_type);
    139. 

  139. int asn1_get_int(const uint8_t *buf, int *offset, uint8_t **object);
    140. 

  140. int asn1_version(const uint8_t *cert, int *offset, X509_CTX *x509_ctx);
    141. 

  141. int asn1_validity(const uint8_t *cert, int *offset, X509_CTX *x509_ctx);
    142. 

  142. int asn1_name(const uint8_t *cert, int *offset, char *dn[]);
    143. 

  143. int asn1_public_key(const uint8_t *cert, int *offset, X509_CTX *x509_ctx);
    144. 

  144. #ifdef CONFIG_SSL_CERT_VERIFICATION
    145. 

  145. int asn1_signature(const uint8_t *cert, int *offset, X509_CTX *x509_ctx);
    146. 

  146. int asn1_find_subjectaltname(const uint8_t* cert, int offset);
    147. 

  147. int asn1_compare_dn(char * const dn1[], char * const dn2[]);
    148. 

  148. #endif /* CONFIG_SSL_CERT_VERIFICATION */
    149. 

  149. int asn1_signature_type(const uint8_t *cert,
    150. 

  150.                                 int *offset, X509_CTX *x509_ctx);
    151. 

  151. 

  152. /**************************************************************************
    153. 

  153.  * MISC declarations
    154. 

  154.  **************************************************************************/
    155. 

  155. #define SALT_SIZE               8
    156. 

  156. 

  157. extern const char * const unsupported_str;
    158. 

  158. 

  159. typedef void (*crypt_func)(void *, const uint8_t *, uint8_t *, int);
    160. 

  160. typedef void (*hmac_func)(const uint8_t *msg, int length, const uint8_t *key,
    161. 

  161.         int key_len, uint8_t *digest);
    162. 

  162. 

  163. int get_file(const char *filename, uint8_t **buf);
    164. 

  164. 

  165. #if defined(CONFIG_SSL_FULL_MODE) || defined(WIN32) || defined(CONFIG_DEBUG)
    166. 

  166. EXP_FUNC void STDCALL print_blob(const char *format, const uint8_t *data, int size, ...);
    167. 

  167. #else
    168. 

  168.     #define print_blob(...)
    169. 

  169. #endif
    170. 

  170. 

  171. EXP_FUNC int STDCALL base64_decode(const char *in,  int len,
    172. 

  172.                     uint8_t *out, int *outlen);
    173. 

  173. 

  174. #ifdef __cplusplus
    175. 

  175. }
    176. 

  176. #endif
    177. 

  177. 

  178. #endif
    179.