2 * $Id: smkeys.h 1074 2008-06-04 00:08:43Z hubert@u.washington.edu $
4 * ========================================================================
5 * Copyright 2013-2022 Eduardo Chappa
6 * Copyright 2008 University of Washington
8 * Licensed under the Apache License, Version 2.0 (the "License");
9 * you may not use this file except in compliance with the License.
10 * You may obtain a copy of the License at
12 * http://www.apache.org/licenses/LICENSE-2.0
14 * ========================================================================
18 #ifndef PITH_SMKEYS_INCLUDED
19 #define PITH_SMKEYS_INCLUDED
22 #include "../pith/state.h"
23 #include "../pith/send.h"
25 #include <openssl/objects.h>
26 #include <openssl/evp.h>
27 #include <openssl/x509.h>
28 #include <openssl/pkcs7.h>
29 #include <openssl/pem.h>
30 #include <openssl/err.h>
31 #include <openssl/bio.h>
32 #include <openssl/safestack.h>
33 #include <openssl/conf.h>
34 #include <openssl/x509v3.h>
37 #define X509_get0_notBefore(x) ((x) && (x)->cert_info \
38 ? (x)->cert_info->validity->notBefore \
40 #define X509_get0_notAfter(x) ((x) && (x)->cert_info \
41 ? (x)->cert_info->validity->notAfter \
43 #define X509_getm_notBefore(x) ((x) && (x)->cert_info \
44 ? (x)->cert_info->validity->notBefore \
46 #define X509_getm_notAfter(x) ((x) && (x)->cert_info \
47 ? (x)->cert_info->validity->notAfter \
49 #define X509_REQ_get0_pubkey(x) (X509_REQ_get_pubkey((x)))
51 #include <openssl/rsa.h>
52 #include <openssl/bn.h>
53 #endif /* OPENSSL_1_1_0 */
55 #define EMAILADDRLEADER "emailAddress="
56 #define CACERTSTORELEADER "cacert="
57 #define MASTERNAME "MasterPassword"
59 typedef struct personal_cert
{
62 char *name
; /* name of key */
63 char *cname
; /* name of cert */
65 struct personal_cert
*next
;
68 /* flags that tell us where to look for certificates/keys */
69 #define SM_NORMALCERT 0x1 /* look in normal user defined directory */
70 #define SM_BACKUPCERT 0x2 /* look in backup directory */
72 /* exported prototypes */
73 int add_certs_in_dir(X509_LOOKUP
*lookup
, char *path
, char *ext
, CertList
**cdata
);
74 X509_STORE
*get_ca_store(void);
75 void free_x509_store(X509_STORE
**);
76 PERSONAL_CERT
*get_personal_certs(char *d
);
77 X509
*get_cert_for(char *email
, WhichCerts ctype
, int tolower
);
78 void save_cert_for(char *email
, X509
*cert
, WhichCerts ctype
);
79 char **get_x509_subject_email(X509
*x
);
80 EVP_PKEY
*load_key(PERSONAL_CERT
*pc
, char *pass
, int flag
);
81 CertList
*mem_to_certlist(char *contents
, WhichCerts ctype
);
82 void add_to_end_of_certlist(CertList
**cl
, char *name
, X509
*cert
);
83 void free_certlist(CertList
**cl
);
84 PERSONAL_CERT
*mem_to_personal_certs(char *contents
);
85 void free_personal_certs(PERSONAL_CERT
**pc
);
86 void get_fingerprint(X509
*cert
, const EVP_MD
*type
, char *buf
, size_t maxLen
, char *s
);
87 int certlist_to_file(char *filename
, CertList
*certlist
);
88 int load_cert_for_key(char *pathdir
, EVP_PKEY
*pkey
, char **certfile
, X509
**pcert
);
89 char *smime_get_date(const ASN1_TIME
*tm
);
90 void resort_certificates(CertList
**data
, WhichCerts ctype
);
91 int setup_certs_backup_by_type(WhichCerts ctype
);
92 char *smime_get_cn(X509
*);
93 CertList
*smime_X509_to_cert_info(X509
*, char *);
94 PERSONAL_CERT
*ALPINE_self_signed_certificate(char *, int, char *, char *);
96 #endif /* PITH_SMKEYS_INCLUDED */