| Bertrand SIMONNET | e6cd738 | 2015-07-01 15:39:44 -0700 | [diff] [blame] | 1 | #ifndef HEADER_CURL_X509ASN1_H |
| 2 | #define HEADER_CURL_X509ASN1_H |
| 3 | |
| 4 | /*************************************************************************** |
| 5 | * _ _ ____ _ |
| 6 | * Project ___| | | | _ \| | |
| 7 | * / __| | | | |_) | | |
| 8 | * | (__| |_| | _ <| |___ |
| 9 | * \___|\___/|_| \_\_____| |
| 10 | * |
| 11 | * Copyright (C) 1998 - 2015, Daniel Stenberg, <daniel@haxx.se>, et al. |
| 12 | * |
| 13 | * This software is licensed as described in the file COPYING, which |
| 14 | * you should have received as part of this distribution. The terms |
| 15 | * are also available at http://curl.haxx.se/docs/copyright.html. |
| 16 | * |
| 17 | * You may opt to use, copy, modify, merge, publish, distribute and/or sell |
| 18 | * copies of the Software, and permit persons to whom the Software is |
| 19 | * furnished to do so, under the terms of the COPYING file. |
| 20 | * |
| 21 | * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY |
| 22 | * KIND, either express or implied. |
| 23 | * |
| 24 | ***************************************************************************/ |
| 25 | |
| 26 | #include "curl_setup.h" |
| 27 | |
| 28 | #if defined(USE_GSKIT) || defined(USE_NSS) || defined(USE_GNUTLS) || \ |
| 29 | defined(USE_CYASSL) |
| 30 | |
| 31 | #include "urldata.h" |
| 32 | |
| 33 | /* |
| 34 | * Constants. |
| 35 | */ |
| 36 | |
| 37 | /* ASN.1 classes. */ |
| 38 | #define CURL_ASN1_UNIVERSAL 0 |
| 39 | #define CURL_ASN1_APPLICATION 1 |
| 40 | #define CURL_ASN1_CONTEXT_SPECIFIC 2 |
| 41 | #define CURL_ASN1_PRIVATE 3 |
| 42 | |
| 43 | /* ASN.1 types. */ |
| 44 | #define CURL_ASN1_BOOLEAN 1 |
| 45 | #define CURL_ASN1_INTEGER 2 |
| 46 | #define CURL_ASN1_BIT_STRING 3 |
| 47 | #define CURL_ASN1_OCTET_STRING 4 |
| 48 | #define CURL_ASN1_NULL 5 |
| 49 | #define CURL_ASN1_OBJECT_IDENTIFIER 6 |
| 50 | #define CURL_ASN1_OBJECT_DESCRIPTOR 7 |
| 51 | #define CURL_ASN1_INSTANCE_OF 8 |
| 52 | #define CURL_ASN1_REAL 9 |
| 53 | #define CURL_ASN1_ENUMERATED 10 |
| 54 | #define CURL_ASN1_EMBEDDED 11 |
| 55 | #define CURL_ASN1_UTF8_STRING 12 |
| 56 | #define CURL_ASN1_RELATIVE_OID 13 |
| 57 | #define CURL_ASN1_SEQUENCE 16 |
| 58 | #define CURL_ASN1_SET 17 |
| 59 | #define CURL_ASN1_NUMERIC_STRING 18 |
| 60 | #define CURL_ASN1_PRINTABLE_STRING 19 |
| 61 | #define CURL_ASN1_TELETEX_STRING 20 |
| 62 | #define CURL_ASN1_VIDEOTEX_STRING 21 |
| 63 | #define CURL_ASN1_IA5_STRING 22 |
| 64 | #define CURL_ASN1_UTC_TIME 23 |
| 65 | #define CURL_ASN1_GENERALIZED_TIME 24 |
| 66 | #define CURL_ASN1_GRAPHIC_STRING 25 |
| 67 | #define CURL_ASN1_VISIBLE_STRING 26 |
| 68 | #define CURL_ASN1_GENERAL_STRING 27 |
| 69 | #define CURL_ASN1_UNIVERSAL_STRING 28 |
| 70 | #define CURL_ASN1_CHARACTER_STRING 29 |
| 71 | #define CURL_ASN1_BMP_STRING 30 |
| 72 | |
| 73 | |
| 74 | /* |
| 75 | * Types. |
| 76 | */ |
| 77 | |
| 78 | /* ASN.1 parsed element. */ |
| 79 | typedef struct { |
| 80 | const char * header; /* Pointer to header byte. */ |
| 81 | const char * beg; /* Pointer to element data. */ |
| 82 | const char * end; /* Pointer to 1st byte after element. */ |
| 83 | unsigned char class; /* ASN.1 element class. */ |
| 84 | unsigned char tag; /* ASN.1 element tag. */ |
| 85 | bool constructed; /* Element is constructed. */ |
| 86 | } curl_asn1Element; |
| 87 | |
| 88 | |
| 89 | /* ASN.1 OID table entry. */ |
| 90 | typedef struct { |
| 91 | const char * numoid; /* Dotted-numeric OID. */ |
| 92 | const char * textoid; /* OID name. */ |
| 93 | } curl_OID; |
| 94 | |
| 95 | |
| 96 | /* X509 certificate: RFC 5280. */ |
| 97 | typedef struct { |
| 98 | curl_asn1Element certificate; |
| 99 | curl_asn1Element version; |
| 100 | curl_asn1Element serialNumber; |
| 101 | curl_asn1Element signatureAlgorithm; |
| 102 | curl_asn1Element signature; |
| 103 | curl_asn1Element issuer; |
| 104 | curl_asn1Element notBefore; |
| 105 | curl_asn1Element notAfter; |
| 106 | curl_asn1Element subject; |
| 107 | curl_asn1Element subjectPublicKeyInfo; |
| 108 | curl_asn1Element subjectPublicKeyAlgorithm; |
| 109 | curl_asn1Element subjectPublicKey; |
| 110 | curl_asn1Element issuerUniqueID; |
| 111 | curl_asn1Element subjectUniqueID; |
| 112 | curl_asn1Element extensions; |
| 113 | } curl_X509certificate; |
| 114 | |
| 115 | |
| 116 | /* |
| 117 | * Prototypes. |
| 118 | */ |
| 119 | |
| 120 | const char * Curl_getASN1Element(curl_asn1Element * elem, |
| 121 | const char * beg, const char * end); |
| 122 | const char * Curl_ASN1tostr(curl_asn1Element * elem, int type); |
| 123 | const char * Curl_DNtostr(curl_asn1Element * dn); |
| 124 | void Curl_parseX509(curl_X509certificate * cert, |
| 125 | const char * beg, const char * end); |
| 126 | CURLcode Curl_extract_certinfo(struct connectdata * conn, int certnum, |
| 127 | const char * beg, const char * end); |
| 128 | CURLcode Curl_verifyhost(struct connectdata * conn, |
| 129 | const char * beg, const char * end); |
| 130 | |
| 131 | #endif /* USE_GSKIT or USE_NSS or USE_GNUTLS or USE_CYASSL */ |
| 132 | #endif /* HEADER_CURL_X509ASN1_H */ |