Apache2
 All Data Structures Namespaces Files Functions Variables Typedefs Enumerations Enumerator Macros Groups Pages
ssl_ct_sct.h
Go to the documentation of this file.
1 /* Licensed to the Apache Software Foundation (ASF) under one or more
2  * contributor license agreements. See the NOTICE file distributed with
3  * this work for additional information regarding copyright ownership.
4  * The ASF licenses this file to You under the Apache License, Version 2.0
5  * (the "License"); you may not use this file except in compliance with
6  * the License. You may obtain a copy of the License at
7  *
8  * http://www.apache.org/licenses/LICENSE-2.0
9  *
10  * Unless required by applicable law or agreed to in writing, software
11  * distributed under the License is distributed on an "AS IS" BASIS,
12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13  * See the License for the specific language governing permissions and
14  * limitations under the License.
15  */
16 
17 #ifndef SSL_CT_SCT_H
18 #define SSL_CT_SCT_H
19 
20 #include "apr_pools.h"
21 #include "apr_tables.h"
22 
23 #include "httpd.h"
24 #include "mod_ssl.h"
25 
26 #include "ssl_ct_log_config.h"
27 
28 #define LOG_ID_SIZE 32
29 
30 typedef struct cert_chain {
31  apr_pool_t *p;
32  apr_array_header_t *cert_arr; /* array of X509 * */
33  X509 *leaf;
34 } cert_chain;
35 
36 typedef struct {
37  unsigned char version;
38  unsigned char logid[LOG_ID_SIZE];
39  apr_uint64_t timestamp;
40  apr_time_t time;
41  char timestr[APR_RFC822_DATE_LEN];
42  const unsigned char *extensions;
43  apr_uint16_t extlen;
44  unsigned char hash_alg;
45  unsigned char sig_alg;
46  apr_uint16_t siglen;
47  const unsigned char *sig;
48  const unsigned char *signed_data;
49  apr_size_t signed_data_len;
50 } sct_fields_t;
51 
52 apr_status_t sct_parse(const char *source,
53  server_rec *s, const unsigned char *sct,
54  apr_size_t len, cert_chain *cc,
55  sct_fields_t *fields);
56 
57 void sct_release(sct_fields_t *sctf);
58 
59 apr_status_t sct_verify_signature(conn_rec *c, sct_fields_t *sctf,
60  apr_array_header_t *log_config);
61 
62 apr_status_t sct_verify_timestamp(conn_rec *c, sct_fields_t *sctf);
63 
64 #endif /* SSL_CT_SCT_H */
sct_fields_t::extlen
apr_uint16_t extlen
Definition: ssl_ct_sct.h:43
apr_size_t
size_t apr_size_t
Definition: apr.h:393
LOG_ID_SIZE
#define LOG_ID_SIZE
Definition: ssl_ct_sct.h:28
sct_verify_signature
apr_status_t sct_verify_signature(conn_rec *c, sct_fields_t *sctf, apr_array_header_t *log_config)
cert_chain
struct cert_chain cert_chain
apr_array_header_t
Definition: apr_tables.h:62
sct_fields_t::timestamp
apr_uint64_t timestamp
Definition: ssl_ct_sct.h:39
sct_fields_t::siglen
apr_uint16_t siglen
Definition: ssl_ct_sct.h:46
sct_fields_t
Definition: ssl_ct_sct.h:36
sct_fields_t::time
apr_time_t time
Definition: ssl_ct_sct.h:40
sct_release
void sct_release(sct_fields_t *sctf)
conn_rec
Structure to store things which are per connection.
Definition: httpd.h:1183
sct_fields_t::signed_data
const unsigned char * signed_data
Definition: ssl_ct_sct.h:48
apr_uint16_t
unsigned short apr_uint16_t
Definition: apr.h:344
apr_time_t
apr_int64_t apr_time_t
Definition: apr_time.h:45
apr_pools.h
APR memory allocation.
cert_chain::p
apr_pool_t * p
Definition: ssl_ct_sct.h:31
httpd.h
HTTP Daemon routines.
apr_uint64_t
uint64_t apr_uint64_t
Definition: apr.h:386
server_rec
A structure to store information for each virtual server.
Definition: httpd.h:1370
APR_RFC822_DATE_LEN
#define APR_RFC822_DATE_LEN
Definition: apr_time.h:186
apr_tables.h
APR Table library.
sct_verify_timestamp
apr_status_t sct_verify_timestamp(conn_rec *c, sct_fields_t *sctf)
sct_fields_t::signed_data_len
apr_size_t signed_data_len
Definition: ssl_ct_sct.h:49
cert_chain
Definition: ssl_ct_sct.h:30
ssl_ct_log_config.h
sct_fields_t::hash_alg
unsigned char hash_alg
Definition: ssl_ct_sct.h:44
mod_ssl.h
SSL extension module for Apache.
cert_chain::cert_arr
apr_array_header_t * cert_arr
Definition: ssl_ct_sct.h:32
sct_fields_t::version
unsigned char version
Definition: ssl_ct_sct.h:37
sct_parse
apr_status_t sct_parse(const char *source, server_rec *s, const unsigned char *sct, apr_size_t len, cert_chain *cc, sct_fields_t *fields)
apr_pool_t
struct apr_pool_t apr_pool_t
Definition: apr_pools.h:60
apr_status_t
int apr_status_t
Definition: apr_errno.h:44
sct_fields_t::sig_alg
unsigned char sig_alg
Definition: ssl_ct_sct.h:45
sct_fields_t::sig
const unsigned char * sig
Definition: ssl_ct_sct.h:47
sct_fields_t::extensions
const unsigned char * extensions
Definition: ssl_ct_sct.h:42
cert_chain::leaf
X509 * leaf
Definition: ssl_ct_sct.h:33