1 /* X.509 certificate parser internal definitions
3 * Copyright (C) 2012 Red Hat, Inc. All Rights Reserved.
4 * Written by David Howells (dhowells@redhat.com)
6 * This program is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU General Public Licence
8 * as published by the Free Software Foundation; either version
9 * 2 of the Licence, or (at your option) any later version.
12 #include <linux/time.h>
13 #include <crypto/public_key.h>
15 struct x509_certificate {
16 struct x509_certificate *next;
17 struct x509_certificate *signer; /* Certificate that signed this one */
18 struct public_key *pub; /* Public key details */
19 struct public_key_signature sig; /* Signature parameters */
20 char *issuer; /* Name of certificate issuer */
21 char *subject; /* Name of certificate subject */
22 char *fingerprint; /* Key fingerprint as hex */
23 char *authority; /* Authority key fingerprint as hex */
26 const void *tbs; /* Signed data */
27 unsigned tbs_size; /* Size of signed data */
28 unsigned raw_sig_size; /* Size of sigature */
29 const void *raw_sig; /* Signature data */
30 const void *raw_serial; /* Raw serial number in ASN.1 */
31 unsigned raw_serial_size;
32 unsigned raw_issuer_size;
33 const void *raw_issuer; /* Raw issuer name in ASN.1 */
34 const void *raw_subject; /* Raw subject name in ASN.1 */
35 unsigned raw_subject_size;
37 bool seen; /* Infinite recursion prevention */
45 extern void x509_free_certificate(struct x509_certificate *cert);
46 extern struct x509_certificate *x509_cert_parse(const void *data, size_t datalen);
51 extern int x509_get_sig_params(struct x509_certificate *cert);
52 extern int x509_check_signature(const struct public_key *pub,
53 struct x509_certificate *cert);