Xuyi Wang / wolfSSL

Important changes to repositories hosted on mbed.com

Mbed hosted mercurial repositories are deprecated and are due to be permanently deleted in July 2026.

To keep a copy of this software download the repository Zip archive or clone locally using Mercurial.

It is also possible to export all your personal repositories from the account settings page.

Dependents:   OS

Diff: wolfssl/wolfcrypt/pkcs7.h

Revision:
17:ff9d1e86ad5f
Parent:
16:048e5e270a58
--- a/wolfssl/wolfcrypt/pkcs7.h	Tue Nov 19 14:32:16 2019 +0000
+++ /dev/null	Thu Jan 01 00:00:00 1970 +0000
@@ -1,190 +0,0 @@
-/* pkcs7.h
- *
- * Copyright (C) 2006-2017 wolfSSL Inc.
- *
- * This file is part of wolfSSL.
- *
- * wolfSSL is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- * wolfSSL is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with this program; if not, write to the Free Software
- * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
- */
-
-/*!
-    \file wolfssl/wolfcrypt/pkcs7.h
-*/
-
-#ifndef WOLF_CRYPT_PKCS7_H
-#define WOLF_CRYPT_PKCS7_H
-
-#include <wolfssl/wolfcrypt/types.h>
-
-#ifdef HAVE_PKCS7
-
-#ifndef NO_ASN
-    #include <wolfssl/wolfcrypt/asn.h>
-#endif
-#include <wolfssl/wolfcrypt/asn_public.h>
-#include <wolfssl/wolfcrypt/random.h>
-#ifndef NO_AES
-    #include <wolfssl/wolfcrypt/aes.h>
-#endif
-#ifndef NO_DES3
-    #include <wolfssl/wolfcrypt/des3.h>
-#endif
-
-#ifdef __cplusplus
-    extern "C" {
-#endif
-
-/* Max number of certificates that PKCS7 structure can parse */
-#ifndef MAX_PKCS7_CERTS
-#define MAX_PKCS7_CERTS 4
-#endif
-
-/* PKCS#7 content types, ref RFC 2315 (Section 14) */
-enum PKCS7_TYPES {
-    PKCS7_MSG                 = 650,   /* 1.2.840.113549.1.7   */
-    DATA                      = 651,   /* 1.2.840.113549.1.7.1 */
-    SIGNED_DATA               = 652,   /* 1.2.840.113549.1.7.2 */
-    ENVELOPED_DATA            = 653,   /* 1.2.840.113549.1.7.3 */
-    SIGNED_AND_ENVELOPED_DATA = 654,   /* 1.2.840.113549.1.7.4 */
-    DIGESTED_DATA             = 655,   /* 1.2.840.113549.1.7.5 */
-    ENCRYPTED_DATA            = 656    /* 1.2.840.113549.1.7.6 */
-};
-
-enum Pkcs7_Misc {
-    PKCS7_NONCE_SZ        = 16,
-    MAX_ENCRYPTED_KEY_SZ  = 512,    /* max enc. key size, RSA <= 4096 */
-    MAX_CONTENT_KEY_LEN   = 32,     /* highest current cipher is AES-256-CBC */
-    MAX_CONTENT_IV_SIZE   = 16,     /* highest current is AES128 */
-#ifndef NO_AES
-    MAX_CONTENT_BLOCK_LEN = AES_BLOCK_SIZE,
-#else
-    MAX_CONTENT_BLOCK_LEN = DES_BLOCK_SIZE,
-#endif
-    MAX_RECIP_SZ          = MAX_VERSION_SZ +
-                            MAX_SEQ_SZ + ASN_NAME_MAX + MAX_SN_SZ +
-                            MAX_SEQ_SZ + MAX_ALGO_SZ + 1 + MAX_ENCRYPTED_KEY_SZ
-};
-
-
-typedef struct PKCS7Attrib {
-    byte* oid;
-    word32 oidSz;
-    byte* value;
-    word32 valueSz;
-} PKCS7Attrib;
-
-
-typedef struct PKCS7DecodedAttrib {
-    struct PKCS7DecodedAttrib* next;
-    byte* oid;
-    word32 oidSz;
-    byte* value;
-    word32 valueSz;
-} PKCS7DecodedAttrib;
-
-
-/* Public Structure Warning:
- * Existing members must not be changed to maintain backwards compatibility! 
- */
-typedef struct PKCS7 {
-    WC_RNG* rng;
-    PKCS7Attrib* signedAttribs;
-    byte*  content;               /* inner content, not owner             */
-    byte*  singleCert;            /* recipient cert, DER, not owner       */
-    byte*  issuer;                /* issuer name of singleCert            */
-    byte*  privateKey;            /* private key, DER, not owner          */
-    void*  heap;                  /* heap hint for dynamic memory         */
-#ifdef ASN_BER_TO_DER
-    byte*  der;                   /* DER encoded version of message       */
-#endif
-    byte*  cert[MAX_PKCS7_CERTS];
-
-    /* Encrypted-data Content Type */
-    byte*        encryptionKey;         /* block cipher encryption key */
-    PKCS7Attrib* unprotectedAttribs;    /* optional */
-    PKCS7DecodedAttrib* decodedAttrib;  /* linked list of decoded attribs */
-
-    /* Enveloped-data optional ukm, not owner */
-    byte*  ukm;
-    word32 ukmSz;
-
-    word32 encryptionKeySz;       /* size of key buffer, bytes */
-    word32 unprotectedAttribsSz;
-    word32 contentSz;             /* content size                         */
-    word32 singleCertSz;          /* size of recipient cert buffer, bytes */
-    word32 issuerSz;              /* length of issuer name                */
-    word32 issuerSnSz;            /* length of serial number              */
-
-    word32 publicKeySz;
-    word32 publicKeyOID;          /* key OID (RSAk, ECDSAk, etc) */
-    word32 privateKeySz;          /* size of private key buffer, bytes    */
-    word32 signedAttribsSz;
-    int contentOID;               /* PKCS#7 content type OID sum          */
-    int hashOID;
-    int encryptOID;               /* key encryption algorithm OID         */
-    int keyWrapOID;               /* key wrap algorithm OID               */
-    int keyAgreeOID;              /* key agreement algorithm OID          */
-    int devId;                    /* device ID for HW based private key   */
-    byte issuerHash[KEYID_SIZE];  /* hash of all alt Names                */
-    byte issuerSn[MAX_SN_SZ];     /* singleCert's serial number           */
-    byte publicKey[MAX_RSA_INT_SZ + MAX_RSA_E_SZ]; /* MAX RSA key size (m + e)*/
-    word32 certSz[MAX_PKCS7_CERTS];
-    
-     /* flags - up to 16-bits */
-    word16 isDynamic:1;
-
-    /* !! NEW DATA MEMBERS MUST BE ADDED AT END !! */
-} PKCS7;
-
-
-WOLFSSL_API PKCS7* wc_PKCS7_New(void* heap, int devId);
-WOLFSSL_API int  wc_PKCS7_Init(PKCS7* pkcs7, void* heap, int devId);
-WOLFSSL_API int  wc_PKCS7_InitWithCert(PKCS7* pkcs7, byte* cert, word32 certSz);
-WOLFSSL_API void wc_PKCS7_Free(PKCS7* pkcs7);
-
-WOLFSSL_API int wc_PKCS7_GetAttributeValue(PKCS7* pkcs7, const byte* oid,
-        word32 oidSz, byte* out, word32* outSz);
-WOLFSSL_API int  wc_PKCS7_EncodeData(PKCS7* pkcs7, byte* output,
-                                       word32 outputSz);
-WOLFSSL_API int  wc_PKCS7_EncodeSignedData(PKCS7* pkcs7,
-                                       byte* output, word32 outputSz);
-WOLFSSL_API int  wc_PKCS7_VerifySignedData(PKCS7* pkcs7,
-                                       byte* pkiMsg, word32 pkiMsgSz);
-WOLFSSL_API int  wc_PKCS7_EncodeEnvelopedData(PKCS7* pkcs7,
-                                          byte* output, word32 outputSz);
-WOLFSSL_API int  wc_PKCS7_DecodeEnvelopedData(PKCS7* pkcs7, byte* pkiMsg,
-                                          word32 pkiMsgSz, byte* output,
-                                          word32 outputSz);
-
-WOLFSSL_API int wc_PKCS7_GetPadSize(word32 inputSz, word32 blockSz);
-WOLFSSL_API int wc_PKCS7_PadData(byte* in, word32 inSz, byte* out, word32 outSz,
-                                 word32 blockSz);
-
-#ifndef NO_PKCS7_ENCRYPTED_DATA
-WOLFSSL_API int  wc_PKCS7_EncodeEncryptedData(PKCS7* pkcs7,
-                                          byte* output, word32 outputSz);
-WOLFSSL_API int  wc_PKCS7_DecodeEncryptedData(PKCS7* pkcs7, byte* pkiMsg,
-                                          word32 pkiMsgSz, byte* output,
-                                          word32 outputSz);
-#endif /* NO_PKCS7_ENCRYPTED_DATA */
-
-#ifdef __cplusplus
-    } /* extern "C" */
-#endif
-
-#endif /* HAVE_PKCS7 */
-#endif /* WOLF_CRYPT_PKCS7_H */
-
-