| Chung-yih Wang | eec1182 | 2009-07-02 00:22:04 +0800 | [diff] [blame] | 1 | /* |
| 2 | ** |
| 3 | ** Copyright 2009, The Android Open Source Project |
| 4 | ** |
| 5 | ** Licensed under the Apache License, Version 2.0 (the "License"); |
| 6 | ** you may not use this file except in compliance with the License. |
| 7 | ** You may obtain a copy of the License at |
| 8 | ** |
| 9 | ** http://www.apache.org/licenses/LICENSE-2.0 |
| 10 | ** |
| 11 | ** Unless required by applicable law or agreed to in writing, software |
| 12 | ** distributed under the License is distributed on an "AS IS" BASIS, |
| 13 | ** WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 14 | ** See the License for the specific language governing permissions and |
| 15 | ** limitations under the License. |
| 16 | */ |
| 17 | |
| 18 | #ifndef __CERT_H__ |
| 19 | #define __CERT_H__ |
| 20 | |
| 21 | #define ANDROID_KEYSTORE "Android Keystore" |
| 22 | #define KEYGEN_STORE_SIZE 5 |
| 23 | #define KEYLENGTH_MEDIUM 1024 |
| 24 | #define KEYLENGTH_MAXIMUM 2048 |
| 25 | #define MAX_CERT_NAME_LEN 128 |
| 26 | #define MAX_PEM_LENGTH 4096 |
| 27 | #define REPLY_MAX MAX_PEM_LENGTH |
| 28 | |
| 29 | |
| 30 | #define STR(token) #token |
| 31 | #define ERR_INVALID_KEY_LENGTH 1 |
| 32 | #define ERR_CONSTRUCT_NEW_DATA 2 |
| 33 | #define ERR_RSA_KEYGEN 3 |
| 34 | #define ERR_X509_PROCESS 4 |
| 35 | #define ERR_BIO_READ 5 |
| 36 | #define ERR_MAXIMUM 6 |
| 37 | |
| 38 | typedef struct { |
| 39 | EVP_PKEY *pkey; |
| 40 | unsigned char *public_key; |
| 41 | int key_len; |
| 42 | } PKEY_STORE; |
| 43 | |
| Chung-yih Wang | c9c119e | 2009-07-16 19:54:33 +0800 | [diff] [blame^] | 44 | typedef struct { |
| 45 | PKCS12 *p12; |
| 46 | EVP_PKEY *pkey; |
| 47 | X509 *cert; |
| 48 | STACK_OF(X509) *certs; |
| 49 | } PKCS12_KEYSTORE; |
| 50 | |
| Chung-yih Wang | eec1182 | 2009-07-02 00:22:04 +0800 | [diff] [blame] | 51 | #define PKEY_STORE_free(x) { \ |
| 52 | if(x.pkey) EVP_PKEY_free(x.pkey); \ |
| 53 | if(x.public_key) free(x.public_key); \ |
| 54 | } |
| 55 | |
| 56 | #define nelem(x) (sizeof (x) / sizeof *(x)) |
| 57 | |
| 58 | int gen_csr(int bits, const char *organizations, char reply[REPLY_MAX]); |
| Chung-yih Wang | c9c119e | 2009-07-16 19:54:33 +0800 | [diff] [blame^] | 59 | PKCS12_KEYSTORE *get_pkcs12_keystore_handle(const char *buf, int bufLen, |
| 60 | const char *passwd); |
| 61 | int get_pkcs12_certificate(PKCS12_KEYSTORE *p12store, char *buf, int size); |
| 62 | int get_pkcs12_private_key(PKCS12_KEYSTORE *p12store, char *buf, int size); |
| 63 | int pop_pkcs12_certs_stack(PKCS12_KEYSTORE *p12store, char *buf, int size); |
| 64 | void free_pkcs12_keystore(PKCS12_KEYSTORE *p12store); |
| Chung-yih Wang | eec1182 | 2009-07-02 00:22:04 +0800 | [diff] [blame] | 65 | int is_pkcs12(const char *buf, int bufLen); |
| Chung-yih Wang | c9c119e | 2009-07-16 19:54:33 +0800 | [diff] [blame^] | 66 | X509 *parse_cert(const char *buf, int bufLen); |
| Chung-yih Wang | eec1182 | 2009-07-02 00:22:04 +0800 | [diff] [blame] | 67 | int get_cert_name(X509 *cert, char *buf, int size); |
| 68 | int get_issuer_name(X509 *cert, char *buf, int size); |
| 69 | int is_ca_cert(X509 *cert); |
| 70 | int get_private_key_pem(X509 *cert, char *buf, int size); |
| 71 | |
| 72 | #endif |