TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / df6a6eacedcc9f6af094a4a1e5eeb22e379e97b2 / . / library / x509_oid.h
blob: 8d5e1bbff1e038587c134af8fdfdd62f52d2a65e [file] [log] [blame]
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]1/**
Gilles Peskineb825dcf2025-05-07 19:41:09 +0200[diff] [blame]2 * \file x509_oid.h
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]3 *
4 * \brief Object Identifier (OID) database
5 */
6/*
7 * Copyright The Mbed TLS Contributors
8 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
9 */
Gilles Peskineb825dcf2025-05-07 19:41:09 +0200[diff] [blame]10#ifndef MBEDTLS_X509_OID_H
11#define MBEDTLS_X509_OID_H
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]12#include "mbedtls/private_access.h"
13
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]14#include "mbedtls/asn1.h"
15#include "mbedtls/pk.h"
Ben Taylor1030f802025-07-15 14:55:41 +0100[diff] [blame]16#if defined(MBEDTLS_PK_HAVE_PRIVATE_HEADER)
17#include <mbedtls/private/pk_private.h>
18#endif /* MBEDTLS_PK_HAVE_PRIVATE_HEADER */
Gilles Peskine32a11122025-04-09 21:51:46 +0200[diff] [blame]19#include "mbedtls/x509.h"
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]20
21#include <stddef.h>
22
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]23#include "mbedtls/md.h"
24
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]25/*
26 * Maximum number of OID components allowed
27 */
28#define MBEDTLS_OID_MAX_COMPONENTS 128
29
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]30#ifdef __cplusplus
31extern "C" {
32#endif
33
34/**
35 * \brief Base OID descriptor structure
36 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]37typedef struct {
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]38 const char *MBEDTLS_PRIVATE(asn1); /*!< OID ASN.1 representation */
39 size_t MBEDTLS_PRIVATE(asn1_len); /*!< length of asn1 */
40#if !defined(MBEDTLS_X509_REMOVE_INFO)
41 const char *MBEDTLS_PRIVATE(name); /*!< official name (e.g. from RFC) */
42 const char *MBEDTLS_PRIVATE(description); /*!< human friendly description */
43#endif
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]44} mbedtls_x509_oid_descriptor_t;
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]45
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]46#if defined(MBEDTLS_X509_CRT_PARSE_C) || defined(MBEDTLS_X509_CSR_PARSE_C)
47#define MBEDTLS_X509_OID_HAVE_GET_X509_EXT_TYPE
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]48/**
49 * \brief Translate an X.509 extension OID into local values
50 *
51 * \param oid OID to use
52 * \param ext_type place to store the extension type
53 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]54 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]55 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]56int mbedtls_x509_oid_get_x509_ext_type(const mbedtls_asn1_buf *oid, int *ext_type);
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]57#endif /* MBEDTLS_X509_OID_HAVE_GET_X509_EXT_TYPE */
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]58
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]59#if defined(MBEDTLS_X509_USE_C)
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]60/**
61 * \brief Translate an X.509 attribute type OID into the short name
62 * (e.g. the OID for an X520 Common Name into "CN")
63 *
64 * \param oid OID to use
65 * \param short_name place to store the string pointer
66 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]67 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]68 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]69int mbedtls_x509_oid_get_attr_short_name(const mbedtls_asn1_buf *oid, const char **short_name);
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]70#endif /* MBEDTLS_X509_USE_C */
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]71
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]72#if defined(MBEDTLS_X509_USE_C)
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]73/**
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]74 * \brief Translate SignatureAlgorithm OID into md_type and pk_type
75 *
76 * \param oid OID to use
77 * \param md_alg place to store message digest algorithm
78 * \param pk_alg place to store public key algorithm
79 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]80 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]81 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]82int mbedtls_x509_oid_get_sig_alg(const mbedtls_asn1_buf *oid,
83 mbedtls_md_type_t *md_alg, mbedtls_pk_type_t *pk_alg);
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]84
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]85#if !defined(MBEDTLS_X509_REMOVE_INFO)
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]86/**
87 * \brief Translate SignatureAlgorithm OID into description
88 *
89 * \param oid OID to use
90 * \param desc place to store string pointer
91 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]92 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]93 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]94int mbedtls_x509_oid_get_sig_alg_desc(const mbedtls_asn1_buf *oid, const char **desc);
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]95#endif /* !MBEDTLS_X509_REMOVE_INFO */
96#endif /* MBEDTLS_X509_USE_C */
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]97
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]98#if defined(MBEDTLS_X509_CRT_WRITE_C) || defined(MBEDTLS_X509_CSR_WRITE_C)
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]99/**
100 * \brief Translate md_type and pk_type into SignatureAlgorithm OID
101 *
102 * \param md_alg message digest algorithm
103 * \param pk_alg public key algorithm
104 * \param oid place to store ASN.1 OID string pointer
105 * \param olen length of the OID
106 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]107 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]108 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]109int mbedtls_x509_oid_get_oid_by_sig_alg(mbedtls_pk_type_t pk_alg, mbedtls_md_type_t md_alg,
110 const char **oid, size_t *olen);
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]111#endif /* MBEDTLS_X509_CRT_WRITE_C || MBEDTLS_X509_CSR_WRITE_C */
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]112
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]113#if (defined(MBEDTLS_X509_USE_C) && defined(MBEDTLS_X509_RSASSA_PSS_SUPPORT)) || \
114 defined(MBEDTLS_PKCS7_C)
115#define MBEDTLS_X509_OID_HAVE_GET_MD_ALG
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]116/**
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]117 * \brief Translate hash algorithm OID into md_type
118 *
119 * \param oid OID to use
120 * \param md_alg place to store message digest algorithm
121 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]122 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]123 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]124int mbedtls_x509_oid_get_md_alg(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_alg);
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]125#endif /* MBEDTLS_X509_OID_HAVE_GET_MD_ALG */
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]126
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]127#if defined(MBEDTLS_X509_CRT_PARSE_C) && !defined(MBEDTLS_X509_REMOVE_INFO)
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]128/**
129 * \brief Translate Extended Key Usage OID into description
130 *
131 * \param oid OID to use
132 * \param desc place to store string pointer
133 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]134 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]135 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]136int mbedtls_x509_oid_get_extended_key_usage(const mbedtls_asn1_buf *oid, const char **desc);
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]137
138/**
139 * \brief Translate certificate policies OID into description
140 *
141 * \param oid OID to use
142 * \param desc place to store string pointer
143 *
Gilles Peskine4c832212025-05-07 23:05:12 +0200[diff] [blame]144 * \return 0 if successful, or MBEDTLS_ERR_X509_UNKNOWN_OID
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]145 */
Gilles Peskine86e45ba2025-05-07 20:33:39 +0200[diff] [blame]146int mbedtls_x509_oid_get_certificate_policies(const mbedtls_asn1_buf *oid, const char **desc);
Gilles Peskine02ec5852025-05-12 20:52:07 +0200[diff] [blame]147#endif /* MBEDTLS_X509_CRT_PARSE_C && !MBEDTLS_X509_REMOVE_INFO */
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]148
Gilles Peskine47c85792025-05-07 14:35:04 +0200[diff] [blame]149#ifdef __cplusplus
150}
151#endif
152
Gilles Peskineb825dcf2025-05-07 19:41:09 +0200[diff] [blame]153#endif /* x509_oid.h */