tor-auto/doxygen/x509_8h_source.html

 /* Copyright (c) 2003, Roger Dingledine

  * Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson.

  * Copyright (c) 2007-2021, The Tor Project, Inc. */

 /* See LICENSE for licensing information */


 #ifndef TOR_X509_H

 #define TOR_X509_H


 /**

  * \file x509.h

  * \brief Headers for tortls.c

  **/


 #include "lib/crypt_ops/crypto_rsa.h"

 #include "lib/testsupport/testsupport.h"


 /* Opaque structure to hold an X509 certificate. */

 typedef struct tor_x509_cert_t tor_x509_cert_t;


 #ifdef ENABLE_NSS

 typedef struct CERTCertificateStr tor_x509_cert_impl_t;

 #elif defined(ENABLE_OPENSSL)

 typedef struct x509_st tor_x509_cert_impl_t;

 #endif


 #ifdef TOR_X509_PRIVATE

 /** Structure that we use for a single certificate. */

 struct tor_x509_cert_t {

   tor_x509_cert_impl_t *cert;

 #ifdef ENABLE_OPENSSL

   uint8_t *encoded;

   size_t encoded_len;

 #endif

   unsigned pkey_digests_set : 1;

   common_digests_t cert_digests;

   common_digests_t pkey_digests;

 };

 #endif /* defined(TOR_X509_PRIVATE) */


 void tor_tls_pick_certificate_lifetime(time_t now,

                                        unsigned cert_lifetime,

                                        time_t *start_time_out,

                                        time_t *end_time_out);


 #ifdef TOR_UNIT_TESTS

 tor_x509_cert_t *tor_x509_cert_replace_expiration(

                                                const tor_x509_cert_t *inp,

                                                time_t new_expiration_time,

                                                crypto_pk_t *signing_key);

 #endif /* defined(TOR_UNIT_TESTS) */


 tor_x509_cert_t *tor_x509_cert_dup(const tor_x509_cert_t *cert);


 void tor_x509_cert_free_(tor_x509_cert_t *cert);

 #define tor_x509_cert_free(c) \

   FREE_AND_NULL(tor_x509_cert_t, tor_x509_cert_free_, (c))

 tor_x509_cert_t *tor_x509_cert_decode(const uint8_t *certificate,

                             size_t certificate_len);

 void tor_x509_cert_get_der(const tor_x509_cert_t *cert,

                       const uint8_t **encoded_out, size_t *size_out);


 const common_digests_t *tor_x509_cert_get_id_digests(

                       const tor_x509_cert_t *cert);

 const common_digests_t *tor_x509_cert_get_cert_digests(

                       const tor_x509_cert_t *cert);


 crypto_pk_t *tor_tls_cert_get_key(tor_x509_cert_t *cert);


 int tor_tls_cert_is_valid(int severity,

                           const tor_x509_cert_t *cert,

                           const tor_x509_cert_t *signing_cert,

                           time_t now,

                           int check_rsa_1024);


 #endif /* !defined(TOR_X509_H) */

crypto_rsa.h
Headers for crypto_rsa.c.

common_digests_t
Definition: crypto_digest.h:87

crypto_pk_t
Definition: crypto_rsa_nss.c:37

testsupport.h
Macros to implement mocking and selective exposure for the test code.

tor_x509_cert_dup
tor_x509_cert_t * tor_x509_cert_dup(const tor_x509_cert_t *cert)
Definition: x509.c:139

tor_tls_cert_get_key
crypto_pk_t * tor_tls_cert_get_key(tor_x509_cert_t *cert)
Definition: x509_nss.c:285

tor_x509_cert_get_cert_digests
const common_digests_t * tor_x509_cert_get_cert_digests(const tor_x509_cert_t *cert)
Definition: x509.c:69

tor_tls_cert_is_valid
int tor_tls_cert_is_valid(int severity, const tor_x509_cert_t *cert, const tor_x509_cert_t *signing_cert, time_t now, int check_rsa_1024)
Definition: x509_nss.c:302

tor_x509_cert_get_der
void tor_x509_cert_get_der(const tor_x509_cert_t *cert, const uint8_t **encoded_out, size_t *size_out)
Definition: x509_nss.c:216

tor_x509_cert_decode
tor_x509_cert_t * tor_x509_cert_decode(const uint8_t *certificate, size_t certificate_len)
Definition: x509_nss.c:269

tor_x509_cert_get_id_digests
const common_digests_t * tor_x509_cert_get_id_digests(const tor_x509_cert_t *cert)
Definition: x509.c:59

tor_x509_cert_free_
void tor_x509_cert_free_(tor_x509_cert_t *cert)
Definition: x509.c:76