2001-11-06 18:34:19 +00:00
|
|
|
|
/*
|
2002-04-05 10:44:51 +00:00
|
|
|
|
* pkcs15.h: OpenSC PKCS#15 header file
|
2001-11-01 15:43:20 +00:00
|
|
|
|
*
|
2002-04-05 14:46:44 +00:00
|
|
|
|
* Copyright (C) 2001, 2002 Juha Yrj<EFBFBD>l<EFBFBD> <juha.yrjola@iki.fi>
|
2001-11-01 15:43:20 +00:00
|
|
|
|
*
|
2001-11-06 18:34:19 +00:00
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
|
|
*
|
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
2001-11-01 15:43:20 +00:00
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
2001-11-06 18:34:19 +00:00
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
|
* Lesser General Public License for more details.
|
2001-11-01 15:43:20 +00:00
|
|
|
|
*
|
2001-11-06 18:34:19 +00:00
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
|
|
* License along with this library; if not, write to the Free Software
|
|
|
|
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
2001-11-01 15:43:20 +00:00
|
|
|
|
*/
|
|
|
|
|
|
|
2001-12-30 21:17:34 +00:00
|
|
|
|
#ifndef _OPENSC_PKCS15_H
|
|
|
|
|
|
#define _OPENSC_PKCS15_H
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
2001-12-08 15:27:40 +00:00
|
|
|
|
#ifdef __cplusplus
|
|
|
|
|
|
extern "C" {
|
|
|
|
|
|
#endif
|
|
|
|
|
|
|
2002-04-19 14:23:31 +00:00
|
|
|
|
#include <opensc/opensc.h>
|
|
|
|
|
|
|
2001-12-11 14:52:17 +00:00
|
|
|
|
#define SC_PKCS15_CACHE_DIR ".eid"
|
|
|
|
|
|
|
2001-11-01 15:43:20 +00:00
|
|
|
|
#define SC_PKCS15_PIN_MAGIC 0x31415926
|
|
|
|
|
|
#define SC_PKCS15_MAX_PINS 2
|
|
|
|
|
|
#define SC_PKCS15_MAX_PRKEYS 2
|
2002-03-08 19:47:26 +00:00
|
|
|
|
#define SC_PKCS15_MAX_PUBKEYS 2
|
2001-11-01 15:43:20 +00:00
|
|
|
|
#define SC_PKCS15_MAX_LABEL_SIZE 32
|
|
|
|
|
|
#define SC_PKCS15_MAX_ID_SIZE 16
|
2002-01-13 23:56:13 +00:00
|
|
|
|
#define SC_PKCS15_MAX_DFS 4
|
2001-12-16 18:46:32 +00:00
|
|
|
|
#define SC_PKCS15_MAX_CERTS 4 /* Total certificates */
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_id {
|
|
|
|
|
|
u8 value[SC_PKCS15_MAX_ID_SIZE];
|
2001-12-30 21:17:34 +00:00
|
|
|
|
size_t len;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
};
|
2002-04-04 09:20:19 +00:00
|
|
|
|
typedef struct sc_pkcs15_id sc_pkcs15_id_t;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
2002-01-24 16:02:54 +00:00
|
|
|
|
#define SC_PKCS15_CO_FLAG_PRIVATE 0x00000001
|
|
|
|
|
|
#define SC_PKCS15_CO_FLAG_MODIFIABLE 0x00000002
|
2002-01-13 23:56:13 +00:00
|
|
|
|
#define SC_PKCS15_CO_FLAG_OBJECT_SEEN 0x80000000 /* for PKCS #11 module */
|
|
|
|
|
|
|
2002-01-24 16:02:54 +00:00
|
|
|
|
#define SC_PKCS15_PIN_FLAG_CASE_SENSITIVE 0x0001
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_LOCAL 0x0002
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_CHANGE_DISABLED 0x0004
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_UNBLOCK_DISABLED 0x0008
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_INITIALIZED 0x0010
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_NEEDS_PADDING 0x0020
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_UNBLOCKING_PIN 0x0040
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_SO_PIN 0x0080
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_DISABLE_ALLOW 0x0100
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_INTEGRITY_PROTECTED 0x0200
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_CONFIDENTIALITY_PROTECTED 0x0400
|
|
|
|
|
|
#define SC_PKCS15_PIN_FLAG_EXCHANGE_REF_DATA 0x0800
|
|
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_PIN_TYPE_BCD 0
|
|
|
|
|
|
#define SC_PKCS15_PIN_TYPE_ASCII_NUMERIC 1
|
|
|
|
|
|
#define SC_PKCS15_PIN_TYPE_UTF8 2
|
2003-04-11 10:30:25 +00:00
|
|
|
|
#define SC_PKCS15_PIN_TYPE_HALFNIBBLE_BCD 3
|
|
|
|
|
|
#define SC_PKCS15_PIN_TYPE_ISO9564_1 4
|
2002-01-24 16:02:54 +00:00
|
|
|
|
|
2001-11-01 15:43:20 +00:00
|
|
|
|
struct sc_pkcs15_pin_info {
|
|
|
|
|
|
struct sc_pkcs15_id auth_id;
|
2001-12-21 23:34:47 +00:00
|
|
|
|
int reference;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
int flags, type;
|
2003-02-20 23:19:01 +00:00
|
|
|
|
int min_length, stored_length, max_length;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
u8 pad_char;
|
|
|
|
|
|
struct sc_path path;
|
|
|
|
|
|
int tries_left;
|
|
|
|
|
|
|
|
|
|
|
|
unsigned int magic;
|
|
|
|
|
|
};
|
2002-04-04 09:20:19 +00:00
|
|
|
|
typedef struct sc_pkcs15_pin_info sc_pkcs15_pin_info;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_COMPUTE_CHECKSUM 0x01
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_COMPUTE_SIGNATURE 0x02
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_VERIFY_CHECKSUM 0x04
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_VERIFY_SIGNATURE 0x08
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_ENCIPHER 0x10
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_DECIPHER 0x20
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_HASH 0x40
|
|
|
|
|
|
#define SC_PKCS15_ALGO_OP_GENERATE_KEY 0x80
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_algorithm_info {
|
|
|
|
|
|
int reference;
|
|
|
|
|
|
int algorithm, supported_operations;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2002-04-15 13:42:10 +00:00
|
|
|
|
/* A large integer, big endian notation */
|
|
|
|
|
|
struct sc_pkcs15_bignum {
|
|
|
|
|
|
u8 * data;
|
|
|
|
|
|
size_t len;
|
|
|
|
|
|
};
|
|
|
|
|
|
typedef struct sc_pkcs15_bignum sc_pkcs15_bignum_t;
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_der {
|
|
|
|
|
|
u8 * value;
|
|
|
|
|
|
size_t len;
|
|
|
|
|
|
};
|
|
|
|
|
|
typedef struct sc_pkcs15_der sc_pkcs15_der_t;
|
|
|
|
|
|
|
2002-03-03 00:32:28 +00:00
|
|
|
|
struct sc_pkcs15_pubkey_rsa {
|
2002-04-15 13:42:10 +00:00
|
|
|
|
sc_pkcs15_bignum_t modulus;
|
|
|
|
|
|
sc_pkcs15_bignum_t exponent;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_prkey_rsa {
|
|
|
|
|
|
/* public components */
|
|
|
|
|
|
sc_pkcs15_bignum_t modulus;
|
|
|
|
|
|
sc_pkcs15_bignum_t exponent;
|
|
|
|
|
|
|
|
|
|
|
|
/* private components */
|
|
|
|
|
|
sc_pkcs15_bignum_t d;
|
|
|
|
|
|
sc_pkcs15_bignum_t p;
|
|
|
|
|
|
sc_pkcs15_bignum_t q;
|
|
|
|
|
|
|
|
|
|
|
|
/* optional CRT elements */
|
|
|
|
|
|
sc_pkcs15_bignum_t iqmp;
|
|
|
|
|
|
sc_pkcs15_bignum_t dmp1;
|
|
|
|
|
|
sc_pkcs15_bignum_t dmq1;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_pubkey_dsa {
|
|
|
|
|
|
sc_pkcs15_bignum_t pub;
|
|
|
|
|
|
sc_pkcs15_bignum_t p;
|
|
|
|
|
|
sc_pkcs15_bignum_t q;
|
|
|
|
|
|
sc_pkcs15_bignum_t g;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_prkey_dsa {
|
|
|
|
|
|
/* public components */
|
|
|
|
|
|
sc_pkcs15_bignum_t pub;
|
|
|
|
|
|
sc_pkcs15_bignum_t p;
|
|
|
|
|
|
sc_pkcs15_bignum_t q;
|
|
|
|
|
|
sc_pkcs15_bignum_t g;
|
|
|
|
|
|
|
|
|
|
|
|
/* private key */
|
|
|
|
|
|
sc_pkcs15_bignum_t priv;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_pubkey {
|
|
|
|
|
|
int algorithm;
|
2002-04-17 18:33:27 +00:00
|
|
|
|
|
|
|
|
|
|
/* Decoded key */
|
2002-04-15 13:42:10 +00:00
|
|
|
|
union {
|
|
|
|
|
|
struct sc_pkcs15_pubkey_rsa rsa;
|
|
|
|
|
|
struct sc_pkcs15_pubkey_dsa dsa;
|
|
|
|
|
|
} u;
|
2002-04-17 18:33:27 +00:00
|
|
|
|
|
|
|
|
|
|
/* DER encoded raw key */
|
|
|
|
|
|
sc_pkcs15_der_t data;
|
2002-04-15 13:42:10 +00:00
|
|
|
|
};
|
|
|
|
|
|
typedef struct sc_pkcs15_pubkey sc_pkcs15_pubkey_t;
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_prkey {
|
|
|
|
|
|
int algorithm;
|
|
|
|
|
|
union {
|
|
|
|
|
|
struct sc_pkcs15_prkey_rsa rsa;
|
|
|
|
|
|
struct sc_pkcs15_prkey_dsa dsa;
|
|
|
|
|
|
} u;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
};
|
2002-04-15 13:42:10 +00:00
|
|
|
|
typedef struct sc_pkcs15_prkey sc_pkcs15_prkey_t;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
2002-04-17 09:00:52 +00:00
|
|
|
|
/* Enveloped objects can be used to provide additional
|
|
|
|
|
|
* protection to non-native private keys */
|
|
|
|
|
|
struct sc_pkcs15_enveloped_data {
|
|
|
|
|
|
/* recipient info */
|
|
|
|
|
|
sc_pkcs15_id_t id; /* key ID */
|
|
|
|
|
|
struct sc_algorithm_id ke_alg; /* key-encryption algo */
|
|
|
|
|
|
u8 *key; /* encrypted key */
|
|
|
|
|
|
size_t key_len;
|
|
|
|
|
|
struct sc_algorithm_id ce_alg; /* content-encryption algo */
|
|
|
|
|
|
u8 *content; /* encrypted content */
|
|
|
|
|
|
size_t content_len;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2001-11-01 15:43:20 +00:00
|
|
|
|
struct sc_pkcs15_cert {
|
|
|
|
|
|
int version;
|
2002-03-15 10:10:33 +00:00
|
|
|
|
u8 *serial;
|
|
|
|
|
|
size_t serial_len;
|
2002-03-15 15:19:34 +00:00
|
|
|
|
u8 *issuer;
|
|
|
|
|
|
size_t issuer_len;
|
2002-03-20 13:08:09 +00:00
|
|
|
|
u8 *subject;
|
|
|
|
|
|
size_t subject_len;
|
2002-04-21 18:54:10 +00:00
|
|
|
|
u8 *crl;
|
|
|
|
|
|
size_t crl_len;
|
2002-01-24 16:02:54 +00:00
|
|
|
|
|
2002-04-17 18:33:27 +00:00
|
|
|
|
struct sc_pkcs15_pubkey key;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
u8 *data; /* DER encoded raw cert */
|
2002-03-15 10:10:33 +00:00
|
|
|
|
size_t data_len;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
};
|
2002-04-04 09:20:19 +00:00
|
|
|
|
typedef struct sc_pkcs15_cert sc_pkcs15_cert_t;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_cert_info {
|
2002-03-03 00:32:28 +00:00
|
|
|
|
struct sc_pkcs15_id id; /* correlates to private key id */
|
2001-11-01 15:43:20 +00:00
|
|
|
|
int authority; /* boolean */
|
|
|
|
|
|
/* identifiers [2] SEQUENCE OF CredentialIdentifier{{KeyIdentifiers}} */
|
|
|
|
|
|
struct sc_path path;
|
|
|
|
|
|
};
|
2002-04-04 09:20:19 +00:00
|
|
|
|
typedef struct sc_pkcs15_cert_info sc_pkcs15_cert_info_t;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
2002-12-18 10:17:01 +00:00
|
|
|
|
struct sc_pkcs15_data {
|
|
|
|
|
|
u8 *data; /* DER encoded raw data object */
|
|
|
|
|
|
size_t data_len;
|
|
|
|
|
|
};
|
|
|
|
|
|
typedef struct sc_pkcs15_data sc_pkcs15_data_t;
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_data_info {
|
2002-12-19 14:26:54 +00:00
|
|
|
|
/* FIXME: there is no pkcs15 ID in DataType */
|
|
|
|
|
|
struct sc_pkcs15_id id;
|
|
|
|
|
|
|
|
|
|
|
|
/* Identify the application:
|
|
|
|
|
|
* either or both may be set */
|
|
|
|
|
|
char app_label[SC_PKCS15_MAX_LABEL_SIZE];
|
|
|
|
|
|
struct sc_object_id app_oid;
|
|
|
|
|
|
|
2002-12-18 10:17:01 +00:00
|
|
|
|
struct sc_path path;
|
|
|
|
|
|
};
|
|
|
|
|
|
typedef struct sc_pkcs15_data_info sc_pkcs15_data_info_t;
|
|
|
|
|
|
|
2001-11-26 16:14:22 +00:00
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_ENCRYPT 0x01
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_DECRYPT 0x02
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_SIGN 0x04
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_SIGNRECOVER 0x08
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_WRAP 0x10
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_UNWRAP 0x20
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_VERIFY 0x40
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_VERIFYRECOVER 0x80
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_DERIVE 0x100
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_USAGE_NONREPUDIATION 0x200
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_ACCESS_SENSITIVE 0x01
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_ACCESS_EXTRACTABLE 0x02
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_ACCESS_ALWAYSSENSITIVE 0x04
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_ACCESS_NEVEREXTRACTABLE 0x08
|
|
|
|
|
|
#define SC_PKCS15_PRKEY_ACCESS_LOCAL 0x10
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_prkey_info {
|
|
|
|
|
|
struct sc_pkcs15_id id; /* correlates to public certificate id */
|
2002-01-20 21:20:09 +00:00
|
|
|
|
unsigned int usage, access_flags;
|
|
|
|
|
|
int native, key_reference;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
int modulus_length;
|
2002-01-20 21:20:09 +00:00
|
|
|
|
|
|
|
|
|
|
struct sc_path path;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
};
|
2002-04-04 09:20:19 +00:00
|
|
|
|
typedef struct sc_pkcs15_prkey_info sc_pkcs15_prkey_info;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
2002-03-03 00:32:28 +00:00
|
|
|
|
struct sc_pkcs15_pubkey_info {
|
|
|
|
|
|
struct sc_pkcs15_id id; /* correlates to private key id */
|
|
|
|
|
|
unsigned int usage, access_flags;
|
|
|
|
|
|
int native, key_reference;
|
|
|
|
|
|
int modulus_length;
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_path path;
|
|
|
|
|
|
};
|
2002-04-04 09:20:19 +00:00
|
|
|
|
typedef struct sc_pkcs15_pubkey_info sc_pkcs15_pubkey_info;
|
2002-03-03 00:32:28 +00:00
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_TYPE_CLASS_MASK 0xF00
|
|
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_TYPE_PRKEY 0x100
|
|
|
|
|
|
#define SC_PKCS15_TYPE_PRKEY_RSA 0x101
|
2002-03-15 12:48:06 +00:00
|
|
|
|
#define SC_PKCS15_TYPE_PRKEY_DSA 0x102
|
2002-03-03 00:32:28 +00:00
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_TYPE_PUBKEY 0x200
|
|
|
|
|
|
#define SC_PKCS15_TYPE_PUBKEY_RSA 0x201
|
2002-03-15 12:48:06 +00:00
|
|
|
|
#define SC_PKCS15_TYPE_PUBKEY_DSA 0x202
|
2002-03-03 00:32:28 +00:00
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_TYPE_CERT 0x400
|
|
|
|
|
|
#define SC_PKCS15_TYPE_CERT_X509 0x401
|
2002-01-24 16:02:54 +00:00
|
|
|
|
#define SC_PKCS15_TYPE_CERT_SPKI 0x402
|
2002-03-03 00:32:28 +00:00
|
|
|
|
|
2002-01-24 16:02:54 +00:00
|
|
|
|
#define SC_PKCS15_TYPE_DATA_OBJECT 0x500
|
2002-03-03 00:32:28 +00:00
|
|
|
|
#define SC_PKCS15_TYPE_AUTH 0x600
|
|
|
|
|
|
#define SC_PKCS15_TYPE_AUTH_PIN 0x601
|
2002-01-24 16:02:54 +00:00
|
|
|
|
|
2002-01-16 23:59:18 +00:00
|
|
|
|
struct sc_pkcs15_object {
|
|
|
|
|
|
int type;
|
2002-03-03 00:32:28 +00:00
|
|
|
|
/* CommonObjectAttributes */
|
|
|
|
|
|
char label[SC_PKCS15_MAX_LABEL_SIZE]; /* zero terminated */
|
|
|
|
|
|
int flags;
|
|
|
|
|
|
struct sc_pkcs15_id auth_id;
|
|
|
|
|
|
|
|
|
|
|
|
int user_consent;
|
|
|
|
|
|
|
|
|
|
|
|
/* Object type specific data */
|
2002-01-16 23:59:18 +00:00
|
|
|
|
void *data;
|
2002-03-03 00:32:28 +00:00
|
|
|
|
|
2002-04-19 09:22:44 +00:00
|
|
|
|
struct sc_pkcs15_df *df; /* can be NULL, if object is 'floating' */
|
|
|
|
|
|
struct sc_pkcs15_object *next, *prev; /* used only internally */
|
2002-12-10 13:27:17 +00:00
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_der der;
|
2002-01-16 23:59:18 +00:00
|
|
|
|
};
|
2002-04-04 09:20:19 +00:00
|
|
|
|
typedef struct sc_pkcs15_object sc_pkcs15_object_t;
|
2002-01-16 23:59:18 +00:00
|
|
|
|
|
2002-04-19 09:22:44 +00:00
|
|
|
|
/* PKCS #15 DF types */
|
2002-01-16 23:59:18 +00:00
|
|
|
|
#define SC_PKCS15_PRKDF 0
|
|
|
|
|
|
#define SC_PKCS15_PUKDF 1
|
|
|
|
|
|
#define SC_PKCS15_PUKDF_TRUSTED 2
|
|
|
|
|
|
#define SC_PKCS15_SKDF 3
|
|
|
|
|
|
#define SC_PKCS15_CDF 4
|
|
|
|
|
|
#define SC_PKCS15_CDF_TRUSTED 5
|
|
|
|
|
|
#define SC_PKCS15_CDF_USEFUL 6
|
|
|
|
|
|
#define SC_PKCS15_DODF 7
|
|
|
|
|
|
#define SC_PKCS15_AODF 8
|
|
|
|
|
|
#define SC_PKCS15_DF_TYPE_COUNT 9
|
2002-01-13 23:56:13 +00:00
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_df {
|
2002-04-19 09:22:44 +00:00
|
|
|
|
struct sc_file *file;
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_path path;
|
|
|
|
|
|
int record_length, type;
|
2002-03-03 00:32:28 +00:00
|
|
|
|
int enumerated;
|
2002-04-19 09:22:44 +00:00
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_df *next, *prev;
|
2002-01-13 23:56:13 +00:00
|
|
|
|
};
|
|
|
|
|
|
|
2002-01-24 16:24:24 +00:00
|
|
|
|
#define SC_PKCS15_CARD_MAGIC 0x10203040
|
|
|
|
|
|
|
2002-04-19 09:22:44 +00:00
|
|
|
|
typedef struct sc_pkcs15_card {
|
|
|
|
|
|
sc_card_t *card;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
char *label;
|
|
|
|
|
|
/* fields from TokenInfo: */
|
|
|
|
|
|
int version;
|
|
|
|
|
|
char *serial_number, *manufacturer_id;
|
2002-01-13 23:56:13 +00:00
|
|
|
|
unsigned long flags;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
struct sc_pkcs15_algorithm_info alg_info[1];
|
2001-11-17 14:55:41 +00:00
|
|
|
|
|
2002-04-19 09:22:44 +00:00
|
|
|
|
sc_file_t *file_app;
|
|
|
|
|
|
sc_file_t *file_tokeninfo, *file_odf;
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_df *df_list;
|
|
|
|
|
|
struct sc_pkcs15_object *obj_list;
|
|
|
|
|
|
int record_lengths[SC_PKCS15_DF_TYPE_COUNT];
|
|
|
|
|
|
|
|
|
|
|
|
struct sc_pkcs15_card_opts {
|
|
|
|
|
|
int use_cache;
|
|
|
|
|
|
} opts;
|
2001-12-22 20:43:09 +00:00
|
|
|
|
|
2002-01-24 16:24:24 +00:00
|
|
|
|
unsigned int magic;
|
2002-04-19 09:22:44 +00:00
|
|
|
|
} sc_pkcs15_card_t;
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
|
|
|
|
|
#define SC_PKCS15_CARD_FLAG_READONLY 0x01
|
|
|
|
|
|
#define SC_PKCS15_CARD_FLAG_LOGIN_REQUIRED 0x02
|
|
|
|
|
|
#define SC_PKCS15_CARD_FLAG_PRN_GENERATION 0x04
|
|
|
|
|
|
#define SC_PKCS15_CARD_FLAG_EID_COMPLIANT 0x08
|
|
|
|
|
|
|
2002-01-10 12:33:56 +00:00
|
|
|
|
/* sc_pkcs15_bind: Binds a card object to a PKCS #15 card object
|
2002-03-03 00:32:28 +00:00
|
|
|
|
* and initializes a new PKCS #15 card object. Will return
|
2002-01-10 12:33:56 +00:00
|
|
|
|
* SC_ERROR_PKCS15_APP_NOT_FOUND, if the card hasn't got a
|
|
|
|
|
|
* valid PKCS #15 file structure. */
|
2001-12-21 23:34:47 +00:00
|
|
|
|
int sc_pkcs15_bind(struct sc_card *card,
|
2001-11-01 15:43:20 +00:00
|
|
|
|
struct sc_pkcs15_card **pkcs15_card);
|
2002-04-19 14:23:31 +00:00
|
|
|
|
/* sc_pkcs15_unbind: Releases a PKCS #15 card object, and frees any
|
2002-01-10 12:33:56 +00:00
|
|
|
|
* memory allocations done on the card object. */
|
2001-12-21 23:34:47 +00:00
|
|
|
|
int sc_pkcs15_unbind(struct sc_pkcs15_card *card);
|
2001-11-20 22:21:58 +00:00
|
|
|
|
|
2002-03-03 00:32:28 +00:00
|
|
|
|
int sc_pkcs15_get_objects(struct sc_pkcs15_card *card, int type,
|
|
|
|
|
|
struct sc_pkcs15_object **ret, int ret_count);
|
|
|
|
|
|
int sc_pkcs15_get_objects_cond(struct sc_pkcs15_card *card, int type,
|
|
|
|
|
|
int (* func)(struct sc_pkcs15_object *, void *),
|
|
|
|
|
|
void *func_arg,
|
|
|
|
|
|
struct sc_pkcs15_object **ret, int ret_count);
|
|
|
|
|
|
|
2002-08-21 10:22:48 +00:00
|
|
|
|
struct sc_pkcs15_card * sc_pkcs15_card_new(void);
|
2002-01-16 23:59:18 +00:00
|
|
|
|
void sc_pkcs15_card_free(struct sc_pkcs15_card *p15card);
|
|
|
|
|
|
|
2002-04-19 14:23:31 +00:00
|
|
|
|
void sc_pkcs15_print_card(const struct sc_pkcs15_card *card);
|
|
|
|
|
|
|
2001-11-20 22:21:58 +00:00
|
|
|
|
int sc_pkcs15_decipher(struct sc_pkcs15_card *p15card,
|
2002-03-08 05:59:57 +00:00
|
|
|
|
const struct sc_pkcs15_object *prkey_obj,
|
2002-04-23 08:17:06 +00:00
|
|
|
|
unsigned long flags,
|
2002-01-20 21:20:09 +00:00
|
|
|
|
const u8 *in, size_t inlen, u8 *out, size_t outlen);
|
2001-11-21 21:19:58 +00:00
|
|
|
|
|
|
|
|
|
|
int sc_pkcs15_compute_signature(struct sc_pkcs15_card *p15card,
|
2002-03-08 05:59:57 +00:00
|
|
|
|
const struct sc_pkcs15_object *prkey_obj,
|
|
|
|
|
|
unsigned long alg_flags, const u8 *in,
|
|
|
|
|
|
size_t inlen, u8 *out, size_t outlen);
|
2001-11-20 22:21:58 +00:00
|
|
|
|
|
2002-03-08 19:47:26 +00:00
|
|
|
|
int sc_pkcs15_read_pubkey(struct sc_pkcs15_card *card,
|
2002-04-17 18:33:27 +00:00
|
|
|
|
const struct sc_pkcs15_object *obj,
|
|
|
|
|
|
struct sc_pkcs15_pubkey **out);
|
2002-04-17 09:00:52 +00:00
|
|
|
|
int sc_pkcs15_decode_pubkey_rsa(struct sc_context *ctx,
|
2002-04-17 18:33:27 +00:00
|
|
|
|
struct sc_pkcs15_pubkey_rsa *pubkey,
|
|
|
|
|
|
const u8 *, size_t);
|
2002-04-15 13:42:10 +00:00
|
|
|
|
int sc_pkcs15_encode_pubkey_rsa(struct sc_context *,
|
|
|
|
|
|
struct sc_pkcs15_pubkey_rsa *, u8 **, size_t *);
|
2002-04-17 18:33:27 +00:00
|
|
|
|
int sc_pkcs15_decode_pubkey_dsa(struct sc_context *ctx,
|
|
|
|
|
|
struct sc_pkcs15_pubkey_dsa *pubkey,
|
|
|
|
|
|
const u8 *, size_t);
|
|
|
|
|
|
int sc_pkcs15_encode_pubkey_dsa(struct sc_context *,
|
|
|
|
|
|
struct sc_pkcs15_pubkey_dsa *, u8 **, size_t *);
|
|
|
|
|
|
int sc_pkcs15_decode_pubkey(struct sc_context *,
|
|
|
|
|
|
struct sc_pkcs15_pubkey *, const u8 *, size_t);
|
2002-04-15 13:42:10 +00:00
|
|
|
|
int sc_pkcs15_encode_pubkey(struct sc_context *,
|
|
|
|
|
|
struct sc_pkcs15_pubkey *, u8 **, size_t *);
|
2002-04-17 18:33:27 +00:00
|
|
|
|
void sc_pkcs15_erase_pubkey(struct sc_pkcs15_pubkey *pubkey);
|
|
|
|
|
|
void sc_pkcs15_free_pubkey(struct sc_pkcs15_pubkey *pubkey);
|
2002-04-18 10:59:35 +00:00
|
|
|
|
|
|
|
|
|
|
int sc_pkcs15_read_prkey(struct sc_pkcs15_card *card,
|
|
|
|
|
|
const struct sc_pkcs15_object *obj,
|
|
|
|
|
|
const char *passphrase,
|
|
|
|
|
|
struct sc_pkcs15_prkey **out);
|
2002-04-17 20:45:15 +00:00
|
|
|
|
int sc_pkcs15_decode_prkey(struct sc_context *,
|
|
|
|
|
|
struct sc_pkcs15_prkey *,
|
|
|
|
|
|
const u8 *, size_t);
|
|
|
|
|
|
int sc_pkcs15_encode_prkey(struct sc_context *,
|
|
|
|
|
|
struct sc_pkcs15_prkey *,
|
|
|
|
|
|
u8 **, size_t *);
|
2002-04-18 10:59:35 +00:00
|
|
|
|
void sc_pkcs15_erase_prkey(struct sc_pkcs15_prkey *prkey);
|
|
|
|
|
|
void sc_pkcs15_free_prkey(struct sc_pkcs15_prkey *prkey);
|
2002-03-08 19:47:26 +00:00
|
|
|
|
|
2002-12-18 10:17:01 +00:00
|
|
|
|
int sc_pkcs15_read_data_object(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
const struct sc_pkcs15_data_info *info,
|
|
|
|
|
|
struct sc_pkcs15_data **data_object_out);
|
|
|
|
|
|
int sc_pkcs15_find_data_object_by_id(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
const struct sc_pkcs15_id *id,
|
|
|
|
|
|
struct sc_pkcs15_object **out);
|
|
|
|
|
|
void sc_pkcs15_free_data_object(struct sc_pkcs15_data *data_object);
|
|
|
|
|
|
|
2001-11-01 15:43:20 +00:00
|
|
|
|
int sc_pkcs15_read_certificate(struct sc_pkcs15_card *card,
|
|
|
|
|
|
const struct sc_pkcs15_cert_info *info,
|
|
|
|
|
|
struct sc_pkcs15_cert **cert);
|
|
|
|
|
|
void sc_pkcs15_free_certificate(struct sc_pkcs15_cert *cert);
|
2001-11-21 21:19:58 +00:00
|
|
|
|
int sc_pkcs15_find_cert_by_id(struct sc_pkcs15_card *card,
|
|
|
|
|
|
const struct sc_pkcs15_id *id,
|
2002-03-03 00:32:28 +00:00
|
|
|
|
struct sc_pkcs15_object **out);
|
2002-01-10 12:33:56 +00:00
|
|
|
|
/* sc_pkcs15_create_cdf: Creates a new certificate DF on a card pointed
|
|
|
|
|
|
* by <card>. Information about the file, such as the file ID, is read
|
|
|
|
|
|
* from <file>. <certs> has to be NULL-terminated. */
|
|
|
|
|
|
int sc_pkcs15_create_cdf(struct sc_pkcs15_card *card,
|
|
|
|
|
|
struct sc_file *file,
|
|
|
|
|
|
const struct sc_pkcs15_cert_info **certs);
|
2002-01-17 11:44:27 +00:00
|
|
|
|
int sc_pkcs15_create(struct sc_pkcs15_card *p15card, struct sc_card *card);
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
2001-11-20 22:21:58 +00:00
|
|
|
|
int sc_pkcs15_find_prkey_by_id(struct sc_pkcs15_card *card,
|
|
|
|
|
|
const struct sc_pkcs15_id *id,
|
2002-03-03 00:32:28 +00:00
|
|
|
|
struct sc_pkcs15_object **out);
|
2002-04-18 10:59:35 +00:00
|
|
|
|
int sc_pkcs15_find_pubkey_by_id(struct sc_pkcs15_card *card,
|
|
|
|
|
|
const struct sc_pkcs15_id *id,
|
|
|
|
|
|
struct sc_pkcs15_object **out);
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
|
|
|
|
|
int sc_pkcs15_verify_pin(struct sc_pkcs15_card *card,
|
|
|
|
|
|
struct sc_pkcs15_pin_info *pin,
|
2002-03-03 00:32:28 +00:00
|
|
|
|
const u8 *pincode, size_t pinlen);
|
2001-11-01 15:43:20 +00:00
|
|
|
|
int sc_pkcs15_change_pin(struct sc_pkcs15_card *card,
|
|
|
|
|
|
struct sc_pkcs15_pin_info *pin,
|
2002-03-03 00:32:28 +00:00
|
|
|
|
const u8 *oldpincode, size_t oldpinlen,
|
|
|
|
|
|
const u8 *newpincode, size_t newpinlen);
|
2001-11-20 22:21:58 +00:00
|
|
|
|
int sc_pkcs15_find_pin_by_auth_id(struct sc_pkcs15_card *card,
|
|
|
|
|
|
const struct sc_pkcs15_id *id,
|
2002-03-03 00:32:28 +00:00
|
|
|
|
struct sc_pkcs15_object **out);
|
2002-04-08 15:45:28 +00:00
|
|
|
|
int sc_pkcs15_find_so_pin(struct sc_pkcs15_card *card,
|
|
|
|
|
|
struct sc_pkcs15_object **out);
|
2001-11-01 15:43:20 +00:00
|
|
|
|
|
2002-02-21 18:53:23 +00:00
|
|
|
|
int sc_pkcs15_encode_dir(struct sc_context *ctx,
|
|
|
|
|
|
struct sc_pkcs15_card *card,
|
|
|
|
|
|
u8 **buf, size_t *buflen);
|
|
|
|
|
|
int sc_pkcs15_encode_tokeninfo(struct sc_context *ctx,
|
|
|
|
|
|
struct sc_pkcs15_card *card,
|
|
|
|
|
|
u8 **buf, size_t *buflen);
|
|
|
|
|
|
int sc_pkcs15_encode_odf(struct sc_context *ctx,
|
|
|
|
|
|
struct sc_pkcs15_card *card,
|
|
|
|
|
|
u8 **buf, size_t *buflen);
|
2002-01-17 23:47:03 +00:00
|
|
|
|
int sc_pkcs15_encode_df(struct sc_context *ctx,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_df *df,
|
2002-01-16 23:59:18 +00:00
|
|
|
|
u8 **buf, size_t *bufsize);
|
2002-01-17 23:47:03 +00:00
|
|
|
|
int sc_pkcs15_encode_cdf_entry(struct sc_context *ctx,
|
|
|
|
|
|
const struct sc_pkcs15_object *obj, u8 **buf,
|
|
|
|
|
|
size_t *bufsize);
|
|
|
|
|
|
int sc_pkcs15_encode_prkdf_entry(struct sc_context *ctx,
|
|
|
|
|
|
const struct sc_pkcs15_object *obj, u8 **buf,
|
|
|
|
|
|
size_t *bufsize);
|
2002-03-03 00:32:28 +00:00
|
|
|
|
int sc_pkcs15_encode_pukdf_entry(struct sc_context *ctx,
|
|
|
|
|
|
const struct sc_pkcs15_object *obj, u8 **buf,
|
|
|
|
|
|
size_t *bufsize);
|
2002-12-18 10:17:01 +00:00
|
|
|
|
int sc_pkcs15_encode_dodf_entry(struct sc_context *ctx,
|
|
|
|
|
|
const struct sc_pkcs15_object *obj, u8 **buf,
|
|
|
|
|
|
size_t *bufsize);
|
2002-01-17 23:47:03 +00:00
|
|
|
|
int sc_pkcs15_encode_aodf_entry(struct sc_context *ctx,
|
|
|
|
|
|
const struct sc_pkcs15_object *obj, u8 **buf,
|
|
|
|
|
|
size_t *bufsize);
|
2002-01-16 23:59:18 +00:00
|
|
|
|
|
2002-01-24 16:02:54 +00:00
|
|
|
|
int sc_pkcs15_parse_df(struct sc_pkcs15_card *p15card,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
struct sc_pkcs15_df *df);
|
2002-01-24 16:02:54 +00:00
|
|
|
|
int sc_pkcs15_read_df(struct sc_pkcs15_card *p15card,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
struct sc_pkcs15_df *df);
|
2002-01-24 16:02:54 +00:00
|
|
|
|
int sc_pkcs15_decode_cdf_entry(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_object *obj,
|
|
|
|
|
|
const u8 **buf, size_t *bufsize);
|
2002-12-18 10:17:01 +00:00
|
|
|
|
int sc_pkcs15_decode_dodf_entry(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_object *obj,
|
|
|
|
|
|
const u8 **buf, size_t *bufsize);
|
2002-01-24 16:02:54 +00:00
|
|
|
|
int sc_pkcs15_decode_aodf_entry(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_object *obj,
|
|
|
|
|
|
const u8 **buf, size_t *bufsize);
|
|
|
|
|
|
int sc_pkcs15_decode_prkdf_entry(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_object *obj,
|
|
|
|
|
|
const u8 **buf, size_t *bufsize);
|
2002-03-07 12:33:42 +00:00
|
|
|
|
int sc_pkcs15_decode_pukdf_entry(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_object *obj,
|
|
|
|
|
|
const u8 **buf, size_t *bufsize);
|
2002-01-24 16:02:54 +00:00
|
|
|
|
|
2002-04-17 09:00:52 +00:00
|
|
|
|
int sc_pkcs15_decode_enveloped_data(struct sc_context *ctx,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
struct sc_pkcs15_enveloped_data *result,
|
|
|
|
|
|
const u8 *buf, size_t buflen);
|
2002-04-17 09:00:52 +00:00
|
|
|
|
int sc_pkcs15_encode_enveloped_data(struct sc_context *ctx,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
struct sc_pkcs15_enveloped_data *data,
|
|
|
|
|
|
u8 **buf, size_t *buflen);
|
|
|
|
|
|
|
|
|
|
|
|
int sc_pkcs15_add_object(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_object *obj);
|
|
|
|
|
|
void sc_pkcs15_remove_object(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_object *obj);
|
|
|
|
|
|
int sc_pkcs15_add_df(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
int type, const sc_path_t *path,
|
|
|
|
|
|
const struct sc_file *file);
|
|
|
|
|
|
void sc_pkcs15_remove_df(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
struct sc_pkcs15_df *df);
|
|
|
|
|
|
|
|
|
|
|
|
/* File content wrapping */
|
2002-04-17 09:00:52 +00:00
|
|
|
|
int sc_pkcs15_wrap_data(struct sc_context *ctx,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
const char *passphrase,
|
|
|
|
|
|
const u8 *in, size_t in_len,
|
|
|
|
|
|
u8 **out, size_t *out_len);
|
2002-04-17 09:00:52 +00:00
|
|
|
|
int sc_pkcs15_unwrap_data(struct sc_context *ctx,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
const char *passphrase,
|
|
|
|
|
|
const u8 *in, size_t in_len,
|
|
|
|
|
|
u8 **out, size_t *out_len);
|
2002-04-17 09:00:52 +00:00
|
|
|
|
|
|
|
|
|
|
/* Generic file i/o */
|
|
|
|
|
|
int sc_pkcs15_read_file(struct sc_pkcs15_card *p15card,
|
2002-04-19 09:22:44 +00:00
|
|
|
|
const struct sc_path *path,
|
|
|
|
|
|
u8 **buf, size_t *buflen,
|
|
|
|
|
|
struct sc_file **file_out);
|
2002-04-17 09:00:52 +00:00
|
|
|
|
|
2002-01-24 16:02:54 +00:00
|
|
|
|
/* Caching functions */
|
|
|
|
|
|
int sc_pkcs15_read_cached_file(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
const struct sc_path *path,
|
|
|
|
|
|
u8 **buf, size_t *bufsize);
|
|
|
|
|
|
int sc_pkcs15_cache_file(struct sc_pkcs15_card *p15card,
|
|
|
|
|
|
const struct sc_path *path,
|
|
|
|
|
|
const u8 *buf, size_t bufsize);
|
2002-04-19 09:22:44 +00:00
|
|
|
|
|
|
|
|
|
|
/* PKCS #15 ID handling functions */
|
|
|
|
|
|
int sc_pkcs15_compare_id(const struct sc_pkcs15_id *id1,
|
|
|
|
|
|
const struct sc_pkcs15_id *id2);
|
|
|
|
|
|
void sc_pkcs15_print_id(const struct sc_pkcs15_id *id);
|
|
|
|
|
|
void sc_pkcs15_format_id(const char *id_in, struct sc_pkcs15_id *id_out);
|
|
|
|
|
|
int sc_pkcs15_hex_string_to_id(const char *in, struct sc_pkcs15_id *out);
|
|
|
|
|
|
|
2001-12-08 15:27:40 +00:00
|
|
|
|
#ifdef __cplusplus
|
|
|
|
|
|
}
|
|
|
|
|
|
#endif
|
|
|
|
|
|
|
2001-11-01 15:43:20 +00:00
|
|
|
|
#endif
|
