1/*
2 * Copyright (c) 2003-2006,2008,2010 Apple Inc. All Rights Reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
11 * file.
12 *
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
20 *
21 * @APPLE_LICENSE_HEADER_END@
22 *
23 * csrTemplates.h - ASN1 templates Cert Signing Requests (per PKCS10).
24 */
25
26#ifndef	_NSS_CSR_TEMPLATES_H_
27#define _NSS_CSR_TEMPLATES_H_
28
29#include <Security/X509Templates.h>
30#include <Security/keyTemplates.h>	/* for NSS_Attribute */
31
32#ifdef  __cplusplus
33extern "C" {
34#endif
35
36/*
37 * ASN class : CertificationRequestInfo
38 * C struct  : NSSCertRequestInfo
39 */
40typedef struct {
41	SecAsn1Item							version;
42    NSS_Name 							subject;
43    SecAsn1PubKeyInfo 	subjectPublicKeyInfo;
44	NSS_Attribute						**attributes;
45} NSSCertRequestInfo;
46
47extern const SecAsn1Template kSecAsn1CertRequestInfoTemplate[];
48
49/*
50 * ASN class : CertificationRequest
51 * C struct  : NSSCertRequest
52 */
53typedef struct {
54	NSSCertRequestInfo				reqInfo;
55    SecAsn1AlgId 	signatureAlgorithm;
56    SecAsn1Item 						signature;// BIT STRING, length in bits
57} NSSCertRequest;
58
59extern const SecAsn1Template kSecAsn1CertRequestTemplate[];
60
61/*
62 * This is what we use use to avoid unnecessary setup and teardown of
63 * a full NSSCertRequest when signing and verifying.
64 */
65typedef struct {
66	SecAsn1Item						certRequestBlob;	// encoded, ASN_ANY
67    SecAsn1AlgId 	signatureAlgorithm;
68    SecAsn1Item 						signature;// BIT STRING, length in bits
69} NSS_SignedCertRequest;
70
71extern const SecAsn1Template kSecAsn1SignedCertRequestTemplate[];
72
73#ifdef  __cplusplus
74}
75#endif
76
77#endif	/* _NSS_CSR_TEMPLATES_H_ */
78