1/* 2 * Copyright (c) 2003-2006,2008,2010 Apple Inc. All Rights Reserved. 3 * 4 * @APPLE_LICENSE_HEADER_START@ 5 * 6 * This file contains Original Code and/or Modifications of Original Code 7 * as defined in and that are subject to the Apple Public Source License 8 * Version 2.0 (the 'License'). You may not use this file except in 9 * compliance with the License. Please obtain a copy of the License at 10 * http://www.opensource.apple.com/apsl/ and read it before using this 11 * file. 12 * 13 * The Original Code and all software distributed under the License are 14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER 15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, 16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, 17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. 18 * Please see the License for the specific language governing rights and 19 * limitations under the License. 20 * 21 * @APPLE_LICENSE_HEADER_END@ 22 * 23 * csrTemplates.h - ASN1 templates Cert Signing Requests (per PKCS10). 24 */ 25 26#ifndef _NSS_CSR_TEMPLATES_H_ 27#define _NSS_CSR_TEMPLATES_H_ 28 29#include <Security/X509Templates.h> 30#include <Security/keyTemplates.h> /* for NSS_Attribute */ 31 32#ifdef __cplusplus 33extern "C" { 34#endif 35 36/* 37 * ASN class : CertificationRequestInfo 38 * C struct : NSSCertRequestInfo 39 */ 40typedef struct { 41 SecAsn1Item version; 42 NSS_Name subject; 43 SecAsn1PubKeyInfo subjectPublicKeyInfo; 44 NSS_Attribute **attributes; 45} NSSCertRequestInfo; 46 47extern const SecAsn1Template kSecAsn1CertRequestInfoTemplate[]; 48 49/* 50 * ASN class : CertificationRequest 51 * C struct : NSSCertRequest 52 */ 53typedef struct { 54 NSSCertRequestInfo reqInfo; 55 SecAsn1AlgId signatureAlgorithm; 56 SecAsn1Item signature;// BIT STRING, length in bits 57} NSSCertRequest; 58 59extern const SecAsn1Template kSecAsn1CertRequestTemplate[]; 60 61/* 62 * This is what we use use to avoid unnecessary setup and teardown of 63 * a full NSSCertRequest when signing and verifying. 64 */ 65typedef struct { 66 SecAsn1Item certRequestBlob; // encoded, ASN_ANY 67 SecAsn1AlgId signatureAlgorithm; 68 SecAsn1Item signature;// BIT STRING, length in bits 69} NSS_SignedCertRequest; 70 71extern const SecAsn1Template kSecAsn1SignedCertRequestTemplate[]; 72 73#ifdef __cplusplus 74} 75#endif 76 77#endif /* _NSS_CSR_TEMPLATES_H_ */ 78