Back to index

lightning-sunbird  0.9+nobinonly
Classes | Defines | Typedefs | Enumerations | Functions | Variables
certt.h File Reference
#include "prclist.h"
#include "pkcs11t.h"
#include "seccomon.h"
#include "secmodt.h"
#include "secoidt.h"
#include "plarena.h"
#include "prcvar.h"
#include "nssilock.h"
#include "prio.h"
#include "prmon.h"
#include "secasn1t.h"
This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Classes

struct  CERTAVAStr
struct  CERTRDNStr
struct  CERTNameStr
struct  CERTValidityStr
struct  CERTCertKeyStr
struct  CERTSignedDataStr
struct  CERTSubjectPublicKeyInfoStr
struct  CERTPublicKeyAndChallengeStr
struct  CERTCertTrustStr
struct  CERTCertExtensionStr
struct  CERTSubjectNodeStr
struct  CERTSubjectListStr
struct  CERTCertificateStr
struct  CERTDERCertsStr
struct  CERTAttributeStr
struct  CERTCertificateRequestStr
struct  CERTCertificateListStr
struct  CERTCertListNodeStr
struct  CERTCertListStr
struct  CERTCrlEntryStr
struct  CERTCrlStr
struct  CERTCrlKeyStr
struct  CERTSignedCrlStr
struct  CERTCrlHeadNodeStr
struct  CERTCrlNodeStr
struct  CERTDistNamesStr
struct  CERTCertNicknamesStr
struct  CERTIssuerAndSNStr
struct  CERTBasicConstraintsStr
struct  OtherNameStr
struct  CERTGeneralNameStr
struct  CERTGeneralNameListStr
struct  CERTNameConstraintStr
struct  CERTNameConstraintsStr
struct  CERTPrivKeyUsagePeriodStr
struct  CERTAuthKeyIDStr
struct  CRLDistributionPointStr
struct  CERTCrlDistributionPointsStr
struct  CERTVerifyLogNodeStr
struct  CERTVerifyLogStr
struct  CERTOKDomainNameStr
struct  CERTStatusConfigStr
struct  CERTAuthInfoAccessStr
struct  CERTPolicyQualifier
struct  CERTPolicyInfo
struct  CERTCertificatePolicies
struct  CERTNoticeReference
struct  CERTUserNotice
struct  CERTOidSequence
union  CERTCertificateStr.options
struct  CERTCertificateStr.options.bits
union  CERTGeneralNameStr.name
union  CRLDistributionPointStr.distPoint

Defines

#define SEC_GET_TRUST_FLAGS(trust, type)
#define SEC_CERTIFICATE_VERSION_1   0 /* default created */
#define SEC_CERTIFICATE_VERSION_2   1 /* v2 */
#define SEC_CERTIFICATE_VERSION_3   2 /* v3 extensions */
#define SEC_CRL_VERSION_1   0 /* default */
#define SEC_CRL_VERSION_2   1 /* v2 extensions */
#define SEC_CERT_CLASS_CA   1
#define SEC_CERT_CLASS_SERVER   2
#define SEC_CERT_CLASS_USER   3
#define SEC_CERT_CLASS_EMAIL   4
#define SEC_CERTIFICATE_REQUEST_VERSION   0 /* what we *create* */
#define CERT_LIST_HEAD(l)   ((CERTCertListNode *)PR_LIST_HEAD(&l->list))
#define CERT_LIST_NEXT(n)   ((CERTCertListNode *)n->links.next)
#define CERT_LIST_END(n, l)   (((void *)n) == ((void *)&l->list))
#define CERT_LIST_EMPTY(l)   CERT_LIST_END(CERT_LIST_HEAD(l), l)
#define NS_CERT_TYPE_SSL_CLIENT   (0x80) /* bit 0 */
#define NS_CERT_TYPE_SSL_SERVER   (0x40) /* bit 1 */
#define NS_CERT_TYPE_EMAIL   (0x20) /* bit 2 */
#define NS_CERT_TYPE_OBJECT_SIGNING   (0x10) /* bit 3 */
#define NS_CERT_TYPE_RESERVED   (0x08) /* bit 4 */
#define NS_CERT_TYPE_SSL_CA   (0x04) /* bit 5 */
#define NS_CERT_TYPE_EMAIL_CA   (0x02) /* bit 6 */
#define NS_CERT_TYPE_OBJECT_SIGNING_CA   (0x01) /* bit 7 */
#define EXT_KEY_USAGE_TIME_STAMP   (0x8000)
#define EXT_KEY_USAGE_STATUS_RESPONDER   (0x4000)
#define NS_CERT_TYPE_APP
#define NS_CERT_TYPE_CA
#define certificateUsageCheckAllUsages   (0x0000)
#define certificateUsageSSLClient   (0x0001)
#define certificateUsageSSLServer   (0x0002)
#define certificateUsageSSLServerWithStepUp   (0x0004)
#define certificateUsageSSLCA   (0x0008)
#define certificateUsageEmailSigner   (0x0010)
#define certificateUsageEmailRecipient   (0x0020)
#define certificateUsageObjectSigner   (0x0040)
#define certificateUsageUserCertImport   (0x0080)
#define certificateUsageVerifyCA   (0x0100)
#define certificateUsageProtectedObjectSigner   (0x0200)
#define certificateUsageStatusResponder   (0x0400)
#define certificateUsageAnyCA   (0x0800)
#define certificateUsageHighest   certificateUsageAnyCA
#define SEC_CERT_NICKNAMES_ALL   1
#define SEC_CERT_NICKNAMES_USER   2
#define SEC_CERT_NICKNAMES_SERVER   3
#define SEC_CERT_NICKNAMES_CA   4
#define KU_DIGITAL_SIGNATURE   (0x80) /* bit 0 */
#define KU_NON_REPUDIATION   (0x40) /* bit 1 */
#define KU_KEY_ENCIPHERMENT   (0x20) /* bit 2 */
#define KU_DATA_ENCIPHERMENT   (0x10) /* bit 3 */
#define KU_KEY_AGREEMENT   (0x08) /* bit 4 */
#define KU_KEY_CERT_SIGN   (0x04) /* bit 5 */
#define KU_CRL_SIGN   (0x02) /* bit 6 */
#define KU_ALL
#define KU_KEY_AGREEMENT_OR_ENCIPHERMENT   (0x4000)
#define KU_NS_GOVT_APPROVED   (0x8000) /*don't make part of KU_ALL!*/
#define CERT_UNLIMITED_PATH_CONSTRAINT   -2
#define CERT_MAX_CERT_CHAIN   20
#define CERT_MAX_SERIAL_NUMBER_BYTES   20 /* from RFC 3280 */
#define CERT_MAX_DN_BYTES   4096 /* arbitrary */
#define RF_UNUSED   (0x80) /* bit 0 */
#define RF_KEY_COMPROMISE   (0x40) /* bit 1 */
#define RF_CA_COMPROMISE   (0x20) /* bit 2 */
#define RF_AFFILIATION_CHANGED   (0x10) /* bit 3 */
#define RF_SUPERSEDED   (0x08) /* bit 4 */
#define RF_CESSATION_OF_OPERATION   (0x04) /* bit 5 */
#define RF_CERTIFICATE_HOLD   (0x02) /* bit 6 */

Typedefs

typedef struct CERTAVAStr
typedef struct CERTAttributeStr
typedef struct CERTAuthInfoAccessStr
typedef struct CERTAuthKeyIDStr
typedef struct CERTBasicConstraintsStr
typedef struct NSSTrustDomainStr
typedef struct CERTCertExtensionStr
typedef struct CERTCertKeyStr
typedef struct CERTCertListStr
typedef struct CERTCertListNodeStr
typedef struct CERTCertNicknamesStr
typedef struct CERTCertTrustStr
typedef struct CERTCertificateStr
typedef struct CERTCertificateListStr
typedef struct CERTCertificateRequestStr
typedef struct CERTCrlStr
typedef struct CERTCrlDistributionPointsStr
typedef struct CERTCrlEntryStr
typedef struct CERTCrlHeadNodeStr
typedef struct CERTCrlKeyStr
typedef struct CERTCrlNodeStr
typedef struct CERTDERCertsStr
typedef struct CERTDistNamesStr
typedef struct CERTGeneralNameStr
typedef struct CERTGeneralNameListStr
typedef struct CERTIssuerAndSNStr
typedef struct CERTNameStr
typedef struct CERTNameConstraintStr
typedef struct CERTNameConstraintsStr
typedef struct CERTOKDomainNameStr
typedef struct CERTPrivKeyUsagePeriodStr
typedef struct CERTPublicKeyAndChallengeStr
typedef struct CERTRDNStr
typedef struct CERTSignedCrlStr
typedef struct CERTSignedDataStr
typedef struct CERTStatusConfigStr
typedef struct CERTSubjectListStr
typedef struct CERTSubjectNodeStr
typedef struct CERTSubjectPublicKeyInfoStr
typedef struct CERTValidityStr
typedef struct CERTVerifyLogStr
typedef struct CERTVerifyLogNodeStr
typedef struct CRLDistributionPointStr
typedef unsigned long CERTCrlNumber
typedef enum SECTrustTypeEnum SECTrustType
typedef enum SECCertUsageEnum SECCertUsage
typedef PRInt64 SECCertificateUsage
typedef enum CERTCertOwnerEnum CERTCertOwner
typedef enum
SECCertTimeValidityEnum 
SECCertTimeValidity
typedef enum
CERTCompareValidityStatusEnum 
CERTCompareValidityStatus
typedef enum
CERTGeneralNameTypeEnum 
CERTGeneralNameType
typedef struct OtherNameStr OtherName
typedef enum
DistributionPointTypesEnum 
DistributionPointTypes
typedef CERTCertificate * cert
typedef CERTCertificate int64 time
typedef CERTCertificate int64
void
pwArg
typedef char *(* CERTDBNameFunc )(void *arg, int dbVersion)
typedef enum CERTPackageTypeEnum CERTPackageType

Enumerations

enum  SECTrustTypeEnum {
  trustSSL = 0, trustEmail = 1, trustObjectSigning = 2, trustTypeNone = 3,
  trustSSL = 0, trustEmail = 1, trustObjectSigning = 2, trustTypeNone = 3
}
enum  SECCertUsageEnum {
  certUsageSSLClient = 0, certUsageSSLServer = 1, certUsageSSLServerWithStepUp = 2, certUsageSSLCA = 3,
  certUsageEmailSigner = 4, certUsageEmailRecipient = 5, certUsageObjectSigner = 6, certUsageUserCertImport = 7,
  certUsageVerifyCA = 8, certUsageProtectedObjectSigner = 9, certUsageStatusResponder = 10, certUsageAnyCA = 11,
  certUsageSSLClient = 0, certUsageSSLServer = 1, certUsageSSLServerWithStepUp = 2, certUsageSSLCA = 3,
  certUsageEmailSigner = 4, certUsageEmailRecipient = 5, certUsageObjectSigner = 6, certUsageUserCertImport = 7,
  certUsageVerifyCA = 8, certUsageProtectedObjectSigner = 9, certUsageStatusResponder = 10, certUsageAnyCA = 11
}
enum  CERTCertOwnerEnum {
  certOwnerUser = 0, certOwnerPeer = 1, certOwnerCA = 2, certOwnerUser = 0,
  certOwnerPeer = 1, certOwnerCA = 2
}
enum  SECCertTimeValidityEnum {
  secCertTimeValid = 0, secCertTimeExpired = 1, secCertTimeNotValidYet = 2, secCertTimeUndetermined = 3,
  secCertTimeValid = 0, secCertTimeExpired = 1, secCertTimeNotValidYet = 2, secCertTimeUndetermined = 3
}
enum  CERTCompareValidityStatusEnum {
  certValidityUndetermined = 0, certValidityChooseB = 1, certValidityEqual = 2, certValidityChooseA = 3,
  certValidityUndetermined = 0, certValidityChooseB = 1, certValidityEqual = 2, certValidityChooseA = 3
}
enum  CERTGeneralNameTypeEnum {
  certOtherName = 1, certRFC822Name = 2, certDNSName = 3, certX400Address = 4,
  certDirectoryName = 5, certEDIPartyName = 6, certURI = 7, certIPAddress = 8,
  certRegisterID = 9, certOtherName = 1, certRFC822Name = 2, certDNSName = 3,
  certX400Address = 4, certDirectoryName = 5, certEDIPartyName = 6, certURI = 7,
  certIPAddress = 8, certRegisterID = 9
}
enum  DistributionPointTypesEnum { generalName = 1, relativeDistinguishedName = 2, generalName = 1, relativeDistinguishedName = 2 }
enum  CERTPackageTypeEnum {
  certPackageNone = 0, certPackageCert = 1, certPackagePKCS7 = 2, certPackageNSCertSeq = 3,
  certPackageNSCertWrap = 4, certPackageNone = 0, certPackageCert = 1, certPackagePKCS7 = 2,
  certPackageNSCertSeq = 3, certPackageNSCertWrap = 4
}

Functions

typedef SECStatus (PR_CALLBACK *CERTStatusChecker)(CERTCertDBHandle *handle

Variables

SEC_BEGIN_PROTOS const
SEC_ASN1Template 
CERT_CertificateRequestTemplate []
const SEC_ASN1Template CERT_CertificateTemplate []
const SEC_ASN1Template SEC_SignedCertificateTemplate []
const SEC_ASN1Template CERT_CertExtensionTemplate []
const SEC_ASN1Template CERT_SequenceOfCertExtensionTemplate []
const SEC_ASN1Template SECKEY_PublicKeyTemplate []
const SEC_ASN1Template CERT_SubjectPublicKeyInfoTemplate []
const SEC_ASN1Template CERT_TimeChoiceTemplate []
const SEC_ASN1Template CERT_ValidityTemplate []
const SEC_ASN1Template CERT_PublicKeyAndChallengeTemplate []
const SEC_ASN1Template SEC_CertSequenceTemplate []
const SEC_ASN1Template CERT_IssuerAndSNTemplate []
const SEC_ASN1Template CERT_NameTemplate []
const SEC_ASN1Template CERT_SetOfSignedCrlTemplate []
const SEC_ASN1Template CERT_RDNTemplate []
const SEC_ASN1Template CERT_SignedDataTemplate []
const SEC_ASN1Template CERT_CrlTemplate []
const SEC_ASN1Template CERT_SignedCrlTemplate []
const SEC_ASN1Template CERT_AttributeTemplate []
const SEC_ASN1Template CERT_SetOfAttributeTemplate []

Class Documentation

struct CERTAVAStr

Definition at line 110 of file certt.h.

Class Members
SECItem type
SECItem value
struct CERTRDNStr

Definition at line 118 of file certt.h.

Class Members
CERTAVA ** avas
struct CERTNameStr

Definition at line 125 of file certt.h.

Class Members
PRArenaPool * arena
CERTRDN ** rdns
struct CERTValidityStr

Definition at line 133 of file certt.h.

Class Members
PRArenaPool * arena
SECItem notAfter
SECItem notBefore
struct CERTCertKeyStr

Definition at line 142 of file certt.h.

Class Members
SECItem derIssuer
SECItem serialNumber
struct CERTSignedDataStr

Definition at line 151 of file certt.h.

Class Members
SECItem data
SECItem signature
SECAlgorithmID signatureAlgorithm
struct CERTSubjectPublicKeyInfoStr

Definition at line 160 of file certt.h.

Class Members
SECAlgorithmID algorithm
PRArenaPool * arena
SECItem subjectPublicKey
struct CERTPublicKeyAndChallengeStr

Definition at line 166 of file certt.h.

Class Members
SECItem challenge
SECItem spki
struct CERTCertTrustStr

Definition at line 171 of file certt.h.

Class Members
unsigned int emailFlags
unsigned int objectSigningFlags
unsigned int sslFlags
struct CERTCertExtensionStr

Definition at line 195 of file certt.h.

Class Members
SECItem critical
SECItem id
SECItem value
struct CERTSubjectNodeStr

Definition at line 201 of file certt.h.

Collaboration diagram for CERTSubjectNodeStr:
Class Members
SECItem certKey
SECItem keyID
struct CERTSubjectNodeStr * next
struct CERTSubjectNodeStr * prev
struct CERTSubjectListStr

Definition at line 208 of file certt.h.

Collaboration diagram for CERTSubjectListStr:
Class Members
PRArenaPool * arena
char * emailAddr
void * entry
CERTSubjectNode * head
int ncerts
CERTSubjectNode * tail
struct CERTCertificateStr

Definition at line 220 of file certt.h.

Collaboration diagram for CERTCertificateStr:
Class Members
PRArenaPool * arena
CERTAuthKeyID * authKeyID
SECItem certKey
CERTCertDBHandle * dbhandle
char * dbnickname
SECItem derCert
SECItem derIssuer
SECItem derPublicKey
SECItem derSubject
CERTOKDomainName * domainOK
char * emailAddr
CERTCertExtension ** extensions
PRBool isperm
PRBool isRoot
CERTName issuer
SECItem issuerID
char * issuerName
PRBool istemp
PRBool keepSession
PRBool keyIDGenerated
unsigned int keyUsage
PRBool keyUsagePresent
char * nickname
PRUint32 nsCertType
struct NSSCertificateStr * nssCertificate
union CERTCertificateStr options
union CERTCertificateStr options
PRBool ownSlot
CK_OBJECT_HANDLE pkcs11ID
unsigned int rawKeyUsage
int referenceCount
SECItem serialNumber
int series
SECAlgorithmID signature
CERTSignedData signatureWrap
PK11SlotInfo * slot
CERTName subject
SECItem subjectID
SECItem subjectKeyID
CERTSubjectList * subjectList
char * subjectName
CERTSubjectPublicKeyInfo subjectPublicKeyInfo
PRBool timeOK
CERTCertTrust * trust
CERTValidity validity
SECItem version
struct CERTDERCertsStr

Definition at line 329 of file certt.h.

Collaboration diagram for CERTDERCertsStr:
Class Members
PRArenaPool * arena
int numcerts
SECItem * rawCerts
struct CERTAttributeStr

Definition at line 340 of file certt.h.

Class Members
SECItem attrType
SECItem ** attrValue
struct CERTCertificateRequestStr

Definition at line 348 of file certt.h.

Class Members
PRArenaPool * arena
CERTAttribute ** attributes
CERTName subject
CERTSubjectPublicKeyInfo subjectPublicKeyInfo
SECItem version
struct CERTCertificateListStr

Definition at line 361 of file certt.h.

Collaboration diagram for CERTCertificateListStr:
Class Members
PRArenaPool * arena
SECItem * certs
int len
struct CERTCertListNodeStr

Definition at line 367 of file certt.h.

Class Members
void * appData
CERTCertificate * cert
PRCList links
struct CERTCertListStr

Definition at line 373 of file certt.h.

Class Members
PRArenaPool * arena
PRCList list
struct CERTCrlEntryStr

Definition at line 383 of file certt.h.

Class Members
CERTCertExtension ** extensions
SECItem revocationDate
SECItem serialNumber
struct CERTCrlStr

Definition at line 389 of file certt.h.

Class Members
PRArenaPool * arena
SECItem derName
CERTCrlEntry ** entries
CERTCertExtension ** extensions
SECItem lastUpdate
CERTName name
SECItem nextUpdate
SECAlgorithmID signatureAlg
SECItem version
struct CERTCrlKeyStr

Definition at line 402 of file certt.h.

Class Members
SECItem derName
SECItem dummy
struct CERTSignedCrlStr

Definition at line 410 of file certt.h.

Collaboration diagram for CERTSignedCrlStr:
Class Members
PRArenaPool * arena
CERTCrl crl
CERTCertDBHandle * dbhandle
SECItem * derCrl
PRBool isperm
PRBool istemp
void * opaque
CK_OBJECT_HANDLE pkcs11ID
int referenceCount
void * reserved1
PRBool reserved2
CERTSignedData signatureWrap
PK11SlotInfo * slot
char * url
struct CERTCrlHeadNodeStr

Definition at line 428 of file certt.h.

Class Members
PRArenaPool * arena
CERTCertDBHandle * dbhandle
CERTCrlNode * first
CERTCrlNode * last
struct CERTCrlNodeStr

Definition at line 436 of file certt.h.

Collaboration diagram for CERTCrlNodeStr:
Class Members
CERTSignedCrl * crl
CERTCrlNode * next
int type
struct CERTDistNamesStr

Definition at line 446 of file certt.h.

Collaboration diagram for CERTDistNamesStr:
Class Members
PRArenaPool * arena
void * head
SECItem * names
int nnames
struct CERTCertNicknamesStr

Definition at line 553 of file certt.h.

Collaboration diagram for CERTCertNicknamesStr:
Class Members
PRArenaPool * arena
void * head
char ** nicknames
int numnicknames
int totallen
int what
struct CERTIssuerAndSNStr

Definition at line 562 of file certt.h.

Class Members
SECItem derIssuer
CERTName issuer
SECItem serialNumber
struct CERTBasicConstraintsStr

Definition at line 606 of file certt.h.

Collaboration diagram for CERTBasicConstraintsStr:
Class Members
PRBool isCA
int pathLenConstraint
struct OtherNameStr

Definition at line 644 of file certt.h.

Class Members
SECItem name
SECItem oid
struct CERTGeneralNameStr

Definition at line 651 of file certt.h.

Class Members
SECItem derDirectoryName
PRCList l
union CERTGeneralNameStr name
union CERTGeneralNameStr name
CERTGeneralNameType type
struct CERTGeneralNameListStr

Definition at line 663 of file certt.h.

Collaboration diagram for CERTGeneralNameListStr:
Class Members
PRArenaPool * arena
int len
PZLock * lock
CERTGeneralName * name
int refCount
struct CERTNameConstraintStr

Definition at line 671 of file certt.h.

Class Members
SECItem DERName
PRCList l
SECItem max
SECItem min
CERTGeneralName name
struct CERTNameConstraintsStr

Definition at line 680 of file certt.h.

Class Members
SECItem ** DERExcluded
SECItem ** DERPermited
CERTNameConstraint * excluded
CERTNameConstraint * permited
struct CERTPrivKeyUsagePeriodStr

Definition at line 689 of file certt.h.

Class Members
PRArenaPool * arena
SECItem notAfter
SECItem notBefore
struct CERTAuthKeyIDStr

Definition at line 698 of file certt.h.

Class Members
CERTGeneralName * authCertIssuer
SECItem authCertSerialNumber
SECItem ** DERAuthCertIssuer
SECItem keyID
struct CRLDistributionPointStr

Definition at line 719 of file certt.h.

Class Members
SECItem bitsmap
CERTGeneralName * crlIssuer
SECItem ** derCrlIssuer
SECItem derDistPoint
SECItem ** derFullName
SECItem derRelativeName
union CRLDistributionPointStr distPoint
union CRLDistributionPointStr distPoint
DistributionPointTypes distPointType
SECItem reasons
struct CERTCrlDistributionPointsStr

Definition at line 736 of file certt.h.

Class Members
CRLDistributionPoint ** distPoints
struct CERTVerifyLogNodeStr

Definition at line 745 of file certt.h.

Collaboration diagram for CERTVerifyLogNodeStr:
Class Members
void * arg
CERTCertificate * cert
unsigned int depth
long error
struct CERTVerifyLogNodeStr * next
struct CERTVerifyLogNodeStr * prev
struct CERTVerifyLogStr

Definition at line 755 of file certt.h.

Collaboration diagram for CERTVerifyLogStr:
Class Members
PRArenaPool * arena
unsigned int count
struct CERTVerifyLogNodeStr * head
struct CERTVerifyLogNodeStr * tail
struct CERTOKDomainNameStr

Definition at line 763 of file certt.h.

Class Members
char name
CERTOKDomainName * next
struct CERTStatusConfigStr

Definition at line 776 of file certt.h.

Class Members
CERTStatusChecker statusChecker
void * statusContext
CERTStatusDestroy statusDestroy
struct CERTAuthInfoAccessStr

Definition at line 782 of file certt.h.

Class Members
SECItem derLocation
CERTGeneralName * location
SECItem method
struct CERTPolicyQualifier

Definition at line 807 of file certt.h.

Class Members
SECOidTag oid
SECItem qualifierID
SECItem qualifierValue
struct CERTPolicyInfo

Definition at line 813 of file certt.h.

Collaboration diagram for CERTPolicyInfo:
Class Members
SECOidTag oid
SECItem policyID
CERTPolicyQualifier ** policyQualifiers
struct CERTCertificatePolicies

Definition at line 819 of file certt.h.

Collaboration diagram for CERTCertificatePolicies:
Class Members
PRArenaPool * arena
CERTPolicyInfo ** policyInfos
struct CERTNoticeReference

Definition at line 824 of file certt.h.

Class Members
SECItem ** noticeNumbers
SECItem organization
struct CERTUserNotice

Definition at line 829 of file certt.h.

Collaboration diagram for CERTUserNotice:
Class Members
PRArenaPool * arena
SECItem derNoticeReference
SECItem displayText
CERTNoticeReference noticeReference
struct CERTOidSequence

Definition at line 836 of file certt.h.

Class Members
PRArenaPool * arena
SECItem ** oids
union CERTCertificateStr.options

Definition at line 300 of file certt.h.

Class Members
void * apointer
options bits
struct CERTCertificateStr.options.bits

Definition at line 302 of file certt.h.

Class Members
unsigned int hasUnsupportedCriticalExt:1
union CERTGeneralNameStr.name

Definition at line 653 of file certt.h.

Class Members
CERTName directoryName
SECItem other
OtherName OthName
union CRLDistributionPointStr.distPoint

Definition at line 721 of file certt.h.

Class Members
CERTGeneralName * fullName
CERTRDN relativeName

Define Documentation

Definition at line 381 of file certt.h.

#define CERT_LIST_END (   n,
  l 
)    (((void *)n) == ((void *)&l->list))

Definition at line 380 of file certt.h.

#define CERT_LIST_HEAD (   l)    ((CERTCertListNode *)PR_LIST_HEAD(&l->list))

Definition at line 378 of file certt.h.

#define CERT_LIST_NEXT (   n)    ((CERTCertListNode *)n->links.next)

Definition at line 379 of file certt.h.

Definition at line 615 of file certt.h.

#define CERT_MAX_DN_BYTES   4096 /* arbitrary */

Definition at line 618 of file certt.h.

#define CERT_MAX_SERIAL_NUMBER_BYTES   20 /* from RFC 3280 */

Definition at line 617 of file certt.h.

Definition at line 604 of file certt.h.

#define certificateUsageAnyCA   (0x0800)

Definition at line 504 of file certt.h.

Definition at line 492 of file certt.h.

Definition at line 498 of file certt.h.

Definition at line 497 of file certt.h.

Definition at line 506 of file certt.h.

Definition at line 499 of file certt.h.

Definition at line 502 of file certt.h.

#define certificateUsageSSLCA   (0x0008)

Definition at line 496 of file certt.h.

Definition at line 493 of file certt.h.

Definition at line 494 of file certt.h.

Definition at line 495 of file certt.h.

Definition at line 503 of file certt.h.

Definition at line 500 of file certt.h.

Definition at line 501 of file certt.h.

Definition at line 464 of file certt.h.

Definition at line 463 of file certt.h.

Value:
(KU_DIGITAL_SIGNATURE | \
                                    KU_NON_REPUDIATION | \
                                    KU_KEY_ENCIPHERMENT | \
                                    KU_DATA_ENCIPHERMENT | \
                                    KU_KEY_AGREEMENT | \
                                    KU_KEY_CERT_SIGN | \
                                    KU_CRL_SIGN)

Definition at line 577 of file certt.h.

#define KU_CRL_SIGN   (0x02) /* bit 6 */

Definition at line 576 of file certt.h.

#define KU_DATA_ENCIPHERMENT   (0x10) /* bit 3 */

Definition at line 573 of file certt.h.

#define KU_DIGITAL_SIGNATURE   (0x80) /* bit 0 */

Definition at line 570 of file certt.h.

#define KU_KEY_AGREEMENT   (0x08) /* bit 4 */

Definition at line 574 of file certt.h.

Definition at line 589 of file certt.h.

#define KU_KEY_CERT_SIGN   (0x04) /* bit 5 */

Definition at line 575 of file certt.h.

#define KU_KEY_ENCIPHERMENT   (0x20) /* bit 2 */

Definition at line 572 of file certt.h.

#define KU_NON_REPUDIATION   (0x40) /* bit 1 */

Definition at line 571 of file certt.h.

#define KU_NS_GOVT_APPROVED   (0x8000) /*don't make part of KU_ALL!*/

Definition at line 594 of file certt.h.

Value:
( NS_CERT_TYPE_SSL_CLIENT | \
                       NS_CERT_TYPE_SSL_SERVER | \
                       NS_CERT_TYPE_EMAIL | \
                       NS_CERT_TYPE_OBJECT_SIGNING )

Definition at line 466 of file certt.h.

Value:
( NS_CERT_TYPE_SSL_CA | \
                      NS_CERT_TYPE_EMAIL_CA | \
                      NS_CERT_TYPE_OBJECT_SIGNING_CA | \
                      EXT_KEY_USAGE_STATUS_RESPONDER )

Definition at line 471 of file certt.h.

#define NS_CERT_TYPE_EMAIL   (0x20) /* bit 2 */

Definition at line 456 of file certt.h.

#define NS_CERT_TYPE_EMAIL_CA   (0x02) /* bit 6 */

Definition at line 460 of file certt.h.

#define NS_CERT_TYPE_OBJECT_SIGNING   (0x10) /* bit 3 */

Definition at line 457 of file certt.h.

#define NS_CERT_TYPE_OBJECT_SIGNING_CA   (0x01) /* bit 7 */

Definition at line 461 of file certt.h.

#define NS_CERT_TYPE_RESERVED   (0x08) /* bit 4 */

Definition at line 458 of file certt.h.

#define NS_CERT_TYPE_SSL_CA   (0x04) /* bit 5 */

Definition at line 459 of file certt.h.

#define NS_CERT_TYPE_SSL_CLIENT   (0x80) /* bit 0 */

Definition at line 454 of file certt.h.

#define NS_CERT_TYPE_SSL_SERVER   (0x40) /* bit 1 */

Definition at line 455 of file certt.h.

#define RF_AFFILIATION_CHANGED   (0x10) /* bit 3 */

Definition at line 624 of file certt.h.

#define RF_CA_COMPROMISE   (0x20) /* bit 2 */

Definition at line 623 of file certt.h.

#define RF_CERTIFICATE_HOLD   (0x02) /* bit 6 */

Definition at line 627 of file certt.h.

#define RF_CESSATION_OF_OPERATION   (0x04) /* bit 5 */

Definition at line 626 of file certt.h.

#define RF_KEY_COMPROMISE   (0x40) /* bit 1 */

Definition at line 622 of file certt.h.

#define RF_SUPERSEDED   (0x08) /* bit 4 */

Definition at line 625 of file certt.h.

#define RF_UNUSED   (0x80) /* bit 0 */

Definition at line 621 of file certt.h.

Definition at line 324 of file certt.h.

Definition at line 327 of file certt.h.

Definition at line 325 of file certt.h.

Definition at line 326 of file certt.h.

Definition at line 548 of file certt.h.

Definition at line 551 of file certt.h.

Definition at line 550 of file certt.h.

Definition at line 549 of file certt.h.

#define SEC_CERTIFICATE_REQUEST_VERSION   0 /* what we *create* */

Definition at line 355 of file certt.h.

#define SEC_CERTIFICATE_VERSION_1   0 /* default created */

Definition at line 314 of file certt.h.

Definition at line 315 of file certt.h.

Definition at line 316 of file certt.h.

#define SEC_CRL_VERSION_1   0 /* default */

Definition at line 318 of file certt.h.

Definition at line 319 of file certt.h.

#define SEC_GET_TRUST_FLAGS (   trust,
  type 
)
Value:
(((type)==trustSSL)?((trust)->sslFlags): \
        (((type)==trustEmail)?((trust)->emailFlags): \
         (((type)==trustObjectSigning)?((trust)->objectSigningFlags):0)))

Definition at line 187 of file certt.h.


Typedef Documentation

typedef CERTCertificate* cert

Definition at line 770 of file certt.h.

typedef struct CERTAttributeStr

Definition at line 61 of file certt.h.

typedef struct CERTAuthInfoAccessStr

Definition at line 62 of file certt.h.

typedef struct CERTAuthKeyIDStr

Definition at line 63 of file certt.h.

typedef struct CERTAVAStr

Definition at line 60 of file certt.h.

typedef struct CERTBasicConstraintsStr

Definition at line 64 of file certt.h.

typedef struct CERTCertExtensionStr

Definition at line 66 of file certt.h.

typedef struct CERTCertificateListStr

Definition at line 73 of file certt.h.

typedef struct CERTCertificateRequestStr

Definition at line 74 of file certt.h.

typedef struct CERTCertificateStr

Definition at line 72 of file certt.h.

typedef struct CERTCertKeyStr

Definition at line 67 of file certt.h.

typedef struct CERTCertListNodeStr

Definition at line 69 of file certt.h.

typedef struct CERTCertListStr

Definition at line 68 of file certt.h.

typedef struct CERTCertNicknamesStr

Definition at line 70 of file certt.h.

typedef struct CERTCertTrustStr

Definition at line 71 of file certt.h.

Definition at line 76 of file certt.h.

typedef struct CERTCrlEntryStr

Definition at line 77 of file certt.h.

typedef struct CERTCrlHeadNodeStr

Definition at line 78 of file certt.h.

typedef struct CERTCrlKeyStr

Definition at line 79 of file certt.h.

typedef struct CERTCrlNodeStr

Definition at line 80 of file certt.h.

typedef unsigned long CERTCrlNumber

Definition at line 105 of file certt.h.

typedef struct CERTCrlStr

Definition at line 75 of file certt.h.

typedef char*(* CERTDBNameFunc)(void *arg, int dbVersion)

Definition at line 791 of file certt.h.

typedef struct CERTDERCertsStr

Definition at line 81 of file certt.h.

typedef struct CERTDistNamesStr

Definition at line 82 of file certt.h.

typedef struct CERTGeneralNameListStr

Definition at line 84 of file certt.h.

typedef struct CERTGeneralNameStr

Definition at line 83 of file certt.h.

typedef struct CERTIssuerAndSNStr

Definition at line 85 of file certt.h.

typedef struct CERTNameConstraintsStr

Definition at line 88 of file certt.h.

typedef struct CERTNameConstraintStr

Definition at line 87 of file certt.h.

typedef struct CERTNameStr

Definition at line 86 of file certt.h.

typedef struct CERTOKDomainNameStr

Definition at line 89 of file certt.h.

typedef struct CERTPrivKeyUsagePeriodStr

Definition at line 90 of file certt.h.

Definition at line 91 of file certt.h.

typedef struct CERTRDNStr

Definition at line 92 of file certt.h.

typedef struct CERTSignedCrlStr

Definition at line 93 of file certt.h.

typedef struct CERTSignedDataStr

Definition at line 94 of file certt.h.

typedef struct CERTStatusConfigStr

Definition at line 95 of file certt.h.

typedef struct CERTSubjectListStr

Definition at line 96 of file certt.h.

typedef struct CERTSubjectNodeStr

Definition at line 97 of file certt.h.

Definition at line 98 of file certt.h.

typedef struct CERTValidityStr

Definition at line 99 of file certt.h.

typedef struct CERTVerifyLogNodeStr

Definition at line 101 of file certt.h.

typedef struct CERTVerifyLogStr

Definition at line 100 of file certt.h.

typedef struct CRLDistributionPointStr

Definition at line 102 of file certt.h.

typedef struct NSSTrustDomainStr

Definition at line 65 of file certt.h.

typedef struct OtherNameStr OtherName
typedef CERTCertificate int64 void* pwArg

Definition at line 770 of file certt.h.

Definition at line 490 of file certt.h.

typedef CERTCertificate int64 time

Definition at line 770 of file certt.h.


Enumeration Type Documentation

Enumerator:
certOwnerUser 
certOwnerPeer 
certOwnerCA 
certOwnerUser 
certOwnerPeer 
certOwnerCA 

Definition at line 511 of file certt.h.

Enumerator:
certValidityUndetermined 
certValidityChooseB 
certValidityEqual 
certValidityChooseA 
certValidityUndetermined 
certValidityChooseB 
certValidityEqual 
certValidityChooseA 

Definition at line 534 of file certt.h.

{
    certValidityUndetermined = 0, /* the function is unable to select one cert 
                                     over another */
    certValidityChooseB = 1,      /* cert B should be preferred */
    certValidityEqual = 2,        /* both certs have the same validity period */
    certValidityChooseA = 3       /* cert A should be preferred */
} CERTCompareValidityStatus;
Enumerator:
certOtherName 
certRFC822Name 
certDNSName 
certX400Address 
certDirectoryName 
certEDIPartyName 
certURI 
certIPAddress 
certRegisterID 
certOtherName 
certRFC822Name 
certDNSName 
certX400Address 
certDirectoryName 
certEDIPartyName 
certURI 
certIPAddress 
certRegisterID 

Definition at line 631 of file certt.h.

Enumerator:
certPackageNone 
certPackageCert 
certPackagePKCS7 
certPackageNSCertSeq 
certPackageNSCertWrap 
certPackageNone 
certPackageCert 
certPackagePKCS7 
certPackageNSCertSeq 
certPackageNSCertWrap 

Definition at line 796 of file certt.h.

Enumerator:
generalName 
relativeDistinguishedName 
generalName 
relativeDistinguishedName 

Definition at line 714 of file certt.h.

                                        {
    generalName = 1,               /* only support this for now */
    relativeDistinguishedName = 2
} DistributionPointTypes;
Enumerator:
secCertTimeValid 
secCertTimeExpired 
secCertTimeNotValidYet 
secCertTimeUndetermined 
secCertTimeValid 
secCertTimeExpired 
secCertTimeNotValidYet 
secCertTimeUndetermined 

Definition at line 520 of file certt.h.

                                     {
    secCertTimeValid = 0,
    secCertTimeExpired = 1,
    secCertTimeNotValidYet = 2,
    secCertTimeUndetermined = 3 /* validity could not be decoded from the
                                   cert, most likely because it was NULL */
} SECCertTimeValidity;
Enumerator:
certUsageSSLClient 
certUsageSSLServer 
certUsageSSLServerWithStepUp 
certUsageSSLCA 
certUsageEmailSigner 
certUsageEmailRecipient 
certUsageObjectSigner 
certUsageUserCertImport 
certUsageVerifyCA 
certUsageProtectedObjectSigner 
certUsageStatusResponder 
certUsageAnyCA 
certUsageSSLClient 
certUsageSSLServer 
certUsageSSLServerWithStepUp 
certUsageSSLCA 
certUsageEmailSigner 
certUsageEmailRecipient 
certUsageObjectSigner 
certUsageUserCertImport 
certUsageVerifyCA 
certUsageProtectedObjectSigner 
certUsageStatusResponder 
certUsageAnyCA 

Definition at line 475 of file certt.h.

Enumerator:
trustSSL 
trustEmail 
trustObjectSigning 
trustTypeNone 
trustSSL 
trustEmail 
trustObjectSigning 
trustTypeNone 

Definition at line 180 of file certt.h.


Function Documentation

typedef SECStatus ( PR_CALLBACK CERTStatusChecker)

Variable Documentation

Definition at line 45 of file certreq.c.

Definition at line 76 of file certdb.c.

Definition at line 58 of file certreq.c.

Definition at line 92 of file certdb.c.

Definition at line 166 of file crl.c.

Definition at line 83 of file crl.c.

Definition at line 329 of file secname.c.

Definition at line 63 of file seckey.c.

Definition at line 57 of file secname.c.

Definition at line 88 of file certdb.c.

Definition at line 54 of file certreq.c.

Definition at line 266 of file crl.c.

Definition at line 234 of file crl.c.

Definition at line 364 of file secsign.c.

Definition at line 52 of file seckey.c.

Definition at line 46 of file sectime.c.

Definition at line 55 of file sectime.c.

Definition at line 92 of file certread.c.

Definition at line 135 of file certdb.c.