| blob | 64db1bf904514028c3326bd65e1e7e33c0edc416 |
1 /*
2 * Copyright (C) 2003-2012 Free Software Foundation, Inc.
3 *
4 * Author: Nikos Mavrogiannopoulos
5 *
6 * This file is part of GnuTLS.
7 *
8 * The GnuTLS is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public License
10 * as published by the Free Software Foundation; either version 3 of
11 * the License, or (at your option) any later version.
12 *
13 * This library is distributed in the hope that it will be useful, but
14 * WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 * Lesser General Public License for more details.
17 *
18 * You should have received a copy of the GNU Lesser General Public License
19 * along with this program. If not, see <http://www.gnu.org/licenses/>
20 *
21 */
23 /* Functions that relate on PKCS12 Bag packet parsing.
24 */
26 #include <gnutls_int.h>
28 #include <gnutls_datum.h>
29 #include <gnutls_global.h>
30 #include <gnutls_errors.h>
31 #include <common.h>
34 /**
35 * gnutls_pkcs12_bag_init:
36 * @bag: The structure to be initialized
37 *
38 * This function will initialize a PKCS12 bag structure. PKCS12 Bags
39 * usually contain private keys, lists of X.509 Certificates and X.509
40 * Certificate revocation lists.
41 *
42 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a
43 * negative error value.
44 **/
45 int
47 {
51 {
53 }
55 }
59 {
63 {
69 }
71 }
74 /**
75 * gnutls_pkcs12_bag_deinit:
76 * @bag: The structure to be initialized
77 *
78 * This function will deinitialize a PKCS12 Bag structure.
79 **/
80 void
82 {
89 }
91 /**
92 * gnutls_pkcs12_bag_get_type:
93 * @bag: The bag
94 * @indx: The element of the bag to get the type
95 *
96 * This function will return the bag's type.
97 *
98 * Returns: One of the #gnutls_pkcs12_bag_type_t enumerations.
99 **/
100 gnutls_pkcs12_bag_type_t
102 {
104 {
107 }
112 }
114 /**
115 * gnutls_pkcs12_bag_get_count:
116 * @bag: The bag
117 *
118 * This function will return the number of the elements withing the bag.
119 *
120 * Returns: Number of elements in bag, or an negative error code on
121 * error.
122 **/
123 int
125 {
127 {
130 }
133 }
135 /**
136 * gnutls_pkcs12_bag_get_data:
137 * @bag: The bag
138 * @indx: The element of the bag to get the data from
139 * @data: where the bag's data will be. Should be treated as constant.
140 *
141 * This function will return the bag's data. The data is a constant
142 * that is stored into the bag. Should not be accessed after the bag
143 * is deleted.
144 *
145 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a
146 * negative error value.
147 **/
148 int
151 {
153 {
156 }
165 }
171 int
174 {
179 {
184 {
188 }
192 {
196 }
200 {
203 }
210 {
214 }
218 {
222 }
226 {
229 }
236 {
240 }
244 {
248 }
252 {
255 }
262 }
269 cleanup:
273 }
276 int
279 {
284 {
289 {
293 }
297 {
301 }
305 {
308 }
315 {
319 }
323 {
327 }
331 {
334 }
341 {
345 }
349 {
353 }
357 {
360 }
367 }
372 {
375 }
382 cleanup:
386 }
389 /**
390 * gnutls_pkcs12_bag_set_data:
391 * @bag: The bag
392 * @type: The data's type
393 * @data: the data to be copied.
394 *
395 * This function will insert the given data of the given type into
396 * the bag.
397 *
398 * Returns: the index of the added bag on success, or a negative
399 * value on error.
400 **/
401 int
403 gnutls_pkcs12_bag_type_t type,
405 {
408 {
411 }
414 {
416 /* bag is full */
418 }
421 {
422 /* A bag with a key or an encrypted bag, must have
423 * only one element.
424 */
429 {
432 }
433 }
435 ret =
440 {
443 }
450 }
452 /**
453 * gnutls_pkcs12_bag_set_crt:
454 * @bag: The bag
455 * @crt: the certificate to be copied.
456 *
457 * This function will insert the given certificate into the
458 * bag. This is just a wrapper over gnutls_pkcs12_bag_set_data().
459 *
460 * Returns: the index of the added bag on success, or a negative
461 * value on failure.
462 **/
463 int
465 {
467 gnutls_datum_t data;
470 {
473 }
477 {
480 }
487 }
489 /**
490 * gnutls_pkcs12_bag_set_crl:
491 * @bag: The bag
492 * @crl: the CRL to be copied.
493 *
494 * This function will insert the given CRL into the
495 * bag. This is just a wrapper over gnutls_pkcs12_bag_set_data().
496 *
497 * Returns: the index of the added bag on success, or a negative error code
498 * on failure.
499 **/
500 int
502 {
504 gnutls_datum_t data;
508 {
511 }
515 {
518 }
525 }
527 /**
528 * gnutls_pkcs12_bag_set_key_id:
529 * @bag: The bag
530 * @indx: The bag's element to add the id
531 * @id: the ID
532 *
533 * This function will add the given key ID, to the specified, by the
534 * index, bag element. The key ID will be encoded as a 'Local key
535 * identifier' bag attribute, which is usually used to distinguish
536 * the local private key and the certificate pair.
537 *
538 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a
539 * negative error value. or a negative error code on error.
540 **/
541 int
544 {
549 {
552 }
555 {
558 }
564 {
567 }
570 }
572 /**
573 * gnutls_pkcs12_bag_get_key_id:
574 * @bag: The bag
575 * @indx: The bag's element to add the id
576 * @id: where the ID will be copied (to be treated as const)
577 *
578 * This function will return the key ID, of the specified bag element.
579 * The key ID is usually used to distinguish the local private key and
580 * the certificate pair.
581 *
582 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a
583 * negative error value. or a negative error code on error.
584 **/
585 int
588 {
590 {
593 }
596 {
599 }
605 }
607 /**
608 * gnutls_pkcs12_bag_get_friendly_name:
609 * @bag: The bag
610 * @indx: The bag's element to add the id
611 * @name: will hold a pointer to the name (to be treated as const)
612 *
613 * This function will return the friendly name, of the specified bag
614 * element. The key ID is usually used to distinguish the local
615 * private key and the certificate pair.
616 *
617 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a
618 * negative error value. or a negative error code on error.
619 **/
620 int
623 {
625 {
628 }
631 {
634 }
639 }
642 /**
643 * gnutls_pkcs12_bag_set_friendly_name:
644 * @bag: The bag
645 * @indx: The bag's element to add the id
646 * @name: the name
647 *
648 * This function will add the given key friendly name, to the
649 * specified, by the index, bag element. The name will be encoded as
650 * a 'Friendly name' bag attribute, which is usually used to set a
651 * user name to the local private key and the certificate pair.
652 *
653 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a
654 * negative error value. or a negative error code on error.
655 **/
656 int
659 {
661 {
664 }
667 {
670 }
675 {
678 }
681 }
684 /**
685 * gnutls_pkcs12_bag_decrypt:
686 * @bag: The bag
687 * @pass: The password used for encryption, must be ASCII.
688 *
689 * This function will decrypt the given encrypted bag and return 0 on
690 * success.
691 *
692 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned,
693 * otherwise a negative error code is returned.
694 **/
695 int
697 {
699 gnutls_datum_t dec;
702 {
705 }
708 {
711 }
716 {
719 }
721 /* decryption succeeded. Now decode the SafeContents
722 * stuff, and parse it.
723 */
732 {
735 }
738 }
740 /**
741 * gnutls_pkcs12_bag_encrypt:
742 * @bag: The bag
743 * @pass: The password used for encryption, must be ASCII
744 * @flags: should be one of #gnutls_pkcs_encrypt_flags_t elements bitwise or'd
745 *
746 * This function will encrypt the given bag.
747 *
748 * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned,
749 * otherwise a negative error code is returned.
750 **/
751 int
754 {
759 schema_id id;
762 {
765 }
768 {
771 }
773 /* Encode the whole bag to a safe contents
774 * structure.
775 */
778 {
781 }
783 /* DER encode the SafeContents.
784 */
790 {
793 }
796 {
799 }
803 /* Now encrypt them.
804 */
810 {
813 }
815 /* encryption succeeded.
816 */
827 }