xref: /dragonfly/crypto/libressl/include/openssl/pkcs7.h (revision 961e30ea7dc61d1112b778ea4981eac68129fb86)
1 /* $OpenBSD: pkcs7.h,v 1.19 2022/07/12 14:42:50 kn Exp $ */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3  * All rights reserved.
4  *
5  * This package is an SSL implementation written
6  * by Eric Young (eay@cryptsoft.com).
7  * The implementation was written so as to conform with Netscapes SSL.
8  *
9  * This library is free for commercial and non-commercial use as long as
10  * the following conditions are aheared to.  The following conditions
11  * apply to all code found in this distribution, be it the RC4, RSA,
12  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
13  * included with this distribution is covered by the same copyright terms
14  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15  *
16  * Copyright remains Eric Young's, and as such any Copyright notices in
17  * the code are not to be removed.
18  * If this package is used in a product, Eric Young should be given attribution
19  * as the author of the parts of the library used.
20  * This can be in the form of a textual message at program startup or
21  * in documentation (online or textual) provided with the package.
22  *
23  * Redistribution and use in source and binary forms, with or without
24  * modification, are permitted provided that the following conditions
25  * are met:
26  * 1. Redistributions of source code must retain the copyright
27  *    notice, this list of conditions and the following disclaimer.
28  * 2. Redistributions in binary form must reproduce the above copyright
29  *    notice, this list of conditions and the following disclaimer in the
30  *    documentation and/or other materials provided with the distribution.
31  * 3. All advertising materials mentioning features or use of this software
32  *    must display the following acknowledgement:
33  *    "This product includes cryptographic software written by
34  *     Eric Young (eay@cryptsoft.com)"
35  *    The word 'cryptographic' can be left out if the rouines from the library
36  *    being used are not cryptographic related :-).
37  * 4. If you include any Windows specific code (or a derivative thereof) from
38  *    the apps directory (application code) you must include an acknowledgement:
39  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40  *
41  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51  * SUCH DAMAGE.
52  *
53  * The licence and distribution terms for any publically available version or
54  * derivative of this code cannot be changed.  i.e. this code cannot simply be
55  * copied and put under another distribution licence
56  * [including the GNU Public Licence.]
57  */
58 
59 #ifndef HEADER_PKCS7_H
60 #define HEADER_PKCS7_H
61 
62 #include <openssl/opensslconf.h>
63 
64 #include <openssl/asn1.h>
65 #include <openssl/bio.h>
66 #include <openssl/ossl_typ.h>
67 
68 #ifdef  __cplusplus
69 extern "C" {
70 #endif
71 
72 #if defined(_WIN32) && defined(__WINCRYPT_H__)
73 #ifndef LIBRESSL_INTERNAL
74 #ifdef _MSC_VER
75 #pragma message("Warning, overriding WinCrypt defines")
76 #else
77 #warning overriding WinCrypt defines
78 #endif
79 #endif
80 #undef PKCS7_ISSUER_AND_SERIAL
81 #undef PKCS7_SIGNER_INFO
82 #endif
83 
84 /*
85 Encryption_ID                 DES-CBC
86 Digest_ID           MD5
87 Digest_Encryption_ID          rsaEncryption
88 Key_Encryption_ID   rsaEncryption
89 */
90 
91 typedef struct pkcs7_issuer_and_serial_st {
92           X509_NAME *issuer;
93           ASN1_INTEGER *serial;
94 } PKCS7_ISSUER_AND_SERIAL;
95 
96 typedef struct pkcs7_signer_info_st {
97           ASN1_INTEGER                            *version; /* version 1 */
98           PKCS7_ISSUER_AND_SERIAL                 *issuer_and_serial;
99           X509_ALGOR                              *digest_alg;
100           STACK_OF(X509_ATTRIBUTE)      *auth_attr;         /* [ 0 ] */
101           X509_ALGOR                              *digest_enc_alg;
102           ASN1_OCTET_STRING             *enc_digest;
103           STACK_OF(X509_ATTRIBUTE)      *unauth_attr;       /* [ 1 ] */
104 
105           /* The private key to sign with */
106           EVP_PKEY                      *pkey;
107 } PKCS7_SIGNER_INFO;
108 
109 DECLARE_STACK_OF(PKCS7_SIGNER_INFO)
110 
111 typedef struct pkcs7_recip_info_st {
112           ASN1_INTEGER                            *version; /* version 0 */
113           PKCS7_ISSUER_AND_SERIAL                 *issuer_and_serial;
114           X509_ALGOR                              *key_enc_algor;
115           ASN1_OCTET_STRING             *enc_key;
116           X509                                    *cert; /* get the pub-key from this */
117 } PKCS7_RECIP_INFO;
118 
119 DECLARE_STACK_OF(PKCS7_RECIP_INFO)
120 
121 typedef struct pkcs7_signed_st {
122           ASN1_INTEGER                            *version; /* version 1 */
123           STACK_OF(X509_ALGOR)                    *md_algs; /* md used */
124           STACK_OF(X509)                          *cert;              /* [ 0 ] */
125           STACK_OF(X509_CRL)            *crl;               /* [ 1 ] */
126           STACK_OF(PKCS7_SIGNER_INFO)   *signer_info;
127 
128           struct pkcs7_st                         *contents;
129 } PKCS7_SIGNED;
130 /* The above structure is very very similar to PKCS7_SIGN_ENVELOPE.
131  * How about merging the two */
132 
133 typedef struct pkcs7_enc_content_st {
134           ASN1_OBJECT                             *content_type;
135           X509_ALGOR                              *algorithm;
136           ASN1_OCTET_STRING             *enc_data;          /* [ 0 ] */
137           const EVP_CIPHER              *cipher;
138 } PKCS7_ENC_CONTENT;
139 
140 typedef struct pkcs7_enveloped_st {
141           ASN1_INTEGER                            *version; /* version 0 */
142           STACK_OF(PKCS7_RECIP_INFO)    *recipientinfo;
143           PKCS7_ENC_CONTENT             *enc_data;
144 } PKCS7_ENVELOPE;
145 
146 typedef struct pkcs7_signedandenveloped_st {
147           ASN1_INTEGER                            *version; /* version 1 */
148           STACK_OF(X509_ALGOR)                    *md_algs; /* md used */
149           STACK_OF(X509)                          *cert;              /* [ 0 ] */
150           STACK_OF(X509_CRL)            *crl;               /* [ 1 ] */
151           STACK_OF(PKCS7_SIGNER_INFO)   *signer_info;
152 
153           PKCS7_ENC_CONTENT             *enc_data;
154           STACK_OF(PKCS7_RECIP_INFO)    *recipientinfo;
155 } PKCS7_SIGN_ENVELOPE;
156 
157 typedef struct pkcs7_digest_st {
158           ASN1_INTEGER                            *version; /* version 0 */
159           X509_ALGOR                              *md;                /* md used */
160           struct pkcs7_st               *contents;
161           ASN1_OCTET_STRING             *digest;
162 } PKCS7_DIGEST;
163 
164 typedef struct pkcs7_encrypted_st {
165           ASN1_INTEGER                            *version; /* version 0 */
166           PKCS7_ENC_CONTENT             *enc_data;
167 } PKCS7_ENCRYPT;
168 
169 typedef struct pkcs7_st {
170           /* The following is non NULL if it contains ASN1 encoding of
171            * this structure */
172           unsigned char *asn1;
173           long length;
174 
175 #define PKCS7_S_HEADER        0
176 #define PKCS7_S_BODY          1
177 #define PKCS7_S_TAIL          2
178           int state; /* used during processing */
179 
180           int detached;
181 
182           ASN1_OBJECT *type;
183           /* content as defined by the type */
184           /* all encryption/message digests are applied to the 'contents',
185            * leaving out the 'type' field. */
186           union     {
187                     char *ptr;
188 
189                     /* NID_pkcs7_data */
190                     ASN1_OCTET_STRING *data;
191 
192                     /* NID_pkcs7_signed */
193                     PKCS7_SIGNED *sign;
194 
195                     /* NID_pkcs7_enveloped */
196                     PKCS7_ENVELOPE *enveloped;
197 
198                     /* NID_pkcs7_signedAndEnveloped */
199                     PKCS7_SIGN_ENVELOPE *signed_and_enveloped;
200 
201                     /* NID_pkcs7_digest */
202                     PKCS7_DIGEST *digest;
203 
204                     /* NID_pkcs7_encrypted */
205                     PKCS7_ENCRYPT *encrypted;
206 
207                     /* Anything else */
208                     ASN1_TYPE *other;
209           } d;
210 } PKCS7;
211 
212 DECLARE_STACK_OF(PKCS7)
213 DECLARE_PKCS12_STACK_OF(PKCS7)
214 
215 #define PKCS7_OP_SET_DETACHED_SIGNATURE 1
216 #define PKCS7_OP_GET_DETACHED_SIGNATURE 2
217 
218 #define PKCS7_get_signed_attributes(si) ((si)->auth_attr)
219 #define PKCS7_get_attributes(si)        ((si)->unauth_attr)
220 
221 #define PKCS7_type_is_signed(a) (OBJ_obj2nid((a)->type) == NID_pkcs7_signed)
222 #define PKCS7_type_is_encrypted(a) (OBJ_obj2nid((a)->type) == NID_pkcs7_encrypted)
223 #define PKCS7_type_is_enveloped(a) (OBJ_obj2nid((a)->type) == NID_pkcs7_enveloped)
224 #define PKCS7_type_is_signedAndEnveloped(a) \
225                     (OBJ_obj2nid((a)->type) == NID_pkcs7_signedAndEnveloped)
226 #define PKCS7_type_is_data(a)   (OBJ_obj2nid((a)->type) == NID_pkcs7_data)
227 #define PKCS7_type_is_digest(a)   (OBJ_obj2nid((a)->type) == NID_pkcs7_digest)
228 #define PKCS7_type_is_encrypted(a) \
229                     (OBJ_obj2nid((a)->type) == NID_pkcs7_encrypted)
230 
231 #define PKCS7_type_is_digest(a)   (OBJ_obj2nid((a)->type) == NID_pkcs7_digest)
232 
233 #define PKCS7_set_detached(p,v) \
234                     PKCS7_ctrl(p,PKCS7_OP_SET_DETACHED_SIGNATURE,v,NULL)
235 #define PKCS7_get_detached(p) \
236                     PKCS7_ctrl(p,PKCS7_OP_GET_DETACHED_SIGNATURE,0,NULL)
237 
238 #define PKCS7_is_detached(p7) (PKCS7_type_is_signed(p7) && PKCS7_get_detached(p7))
239 
240 /* S/MIME related flags */
241 
242 #define PKCS7_TEXT            0x1
243 #define PKCS7_NOCERTS                   0x2
244 #define PKCS7_NOSIGS                    0x4
245 #define PKCS7_NOCHAIN                   0x8
246 #define PKCS7_NOINTERN                  0x10
247 #define PKCS7_NOVERIFY                  0x20
248 #define PKCS7_DETACHED                  0x40
249 #define PKCS7_BINARY                    0x80
250 #define PKCS7_NOATTR                    0x100
251 #define   PKCS7_NOSMIMECAP    0x200
252 #define PKCS7_NOOLDMIMETYPE   0x400
253 #define PKCS7_CRLFEOL                   0x800
254 #define PKCS7_STREAM                    0x1000
255 #define PKCS7_NOCRL           0x2000
256 #define PKCS7_PARTIAL                   0x4000
257 #define PKCS7_REUSE_DIGEST    0x8000
258 
259 /* Flags: for compatibility with older code */
260 
261 #define SMIME_TEXT  PKCS7_TEXT
262 #define SMIME_NOCERTS         PKCS7_NOCERTS
263 #define SMIME_NOSIGS          PKCS7_NOSIGS
264 #define SMIME_NOCHAIN         PKCS7_NOCHAIN
265 #define SMIME_NOINTERN        PKCS7_NOINTERN
266 #define SMIME_NOVERIFY        PKCS7_NOVERIFY
267 #define SMIME_DETACHED        PKCS7_DETACHED
268 #define SMIME_BINARY          PKCS7_BINARY
269 #define SMIME_NOATTR          PKCS7_NOATTR
270 
271 PKCS7_ISSUER_AND_SERIAL *PKCS7_ISSUER_AND_SERIAL_new(void);
272 void PKCS7_ISSUER_AND_SERIAL_free(PKCS7_ISSUER_AND_SERIAL *a);
273 PKCS7_ISSUER_AND_SERIAL *d2i_PKCS7_ISSUER_AND_SERIAL(PKCS7_ISSUER_AND_SERIAL **a, const unsigned char **in, long len);
274 int i2d_PKCS7_ISSUER_AND_SERIAL(PKCS7_ISSUER_AND_SERIAL *a, unsigned char **out);
275 extern const ASN1_ITEM PKCS7_ISSUER_AND_SERIAL_it;
276 
277 int PKCS7_ISSUER_AND_SERIAL_digest(PKCS7_ISSUER_AND_SERIAL *data,
278     const EVP_MD *type, unsigned char *md, unsigned int *len);
279 PKCS7 *d2i_PKCS7_fp(FILE *fp, PKCS7 **p7);
280 int i2d_PKCS7_fp(FILE *fp, PKCS7 *p7);
281 PKCS7 *PKCS7_dup(PKCS7 *p7);
282 PKCS7 *d2i_PKCS7_bio(BIO *bp, PKCS7 **p7);
283 int i2d_PKCS7_bio(BIO *bp, PKCS7 *p7);
284 int i2d_PKCS7_bio_stream(BIO *out, PKCS7 *p7, BIO *in, int flags);
285 int PEM_write_bio_PKCS7_stream(BIO *out, PKCS7 *p7, BIO *in, int flags);
286 
287 PKCS7_SIGNER_INFO *PKCS7_SIGNER_INFO_new(void);
288 void PKCS7_SIGNER_INFO_free(PKCS7_SIGNER_INFO *a);
289 PKCS7_SIGNER_INFO *d2i_PKCS7_SIGNER_INFO(PKCS7_SIGNER_INFO **a, const unsigned char **in, long len);
290 int i2d_PKCS7_SIGNER_INFO(PKCS7_SIGNER_INFO *a, unsigned char **out);
291 extern const ASN1_ITEM PKCS7_SIGNER_INFO_it;
292 PKCS7_RECIP_INFO *PKCS7_RECIP_INFO_new(void);
293 void PKCS7_RECIP_INFO_free(PKCS7_RECIP_INFO *a);
294 PKCS7_RECIP_INFO *d2i_PKCS7_RECIP_INFO(PKCS7_RECIP_INFO **a, const unsigned char **in, long len);
295 int i2d_PKCS7_RECIP_INFO(PKCS7_RECIP_INFO *a, unsigned char **out);
296 extern const ASN1_ITEM PKCS7_RECIP_INFO_it;
297 PKCS7_SIGNED *PKCS7_SIGNED_new(void);
298 void PKCS7_SIGNED_free(PKCS7_SIGNED *a);
299 PKCS7_SIGNED *d2i_PKCS7_SIGNED(PKCS7_SIGNED **a, const unsigned char **in, long len);
300 int i2d_PKCS7_SIGNED(PKCS7_SIGNED *a, unsigned char **out);
301 extern const ASN1_ITEM PKCS7_SIGNED_it;
302 PKCS7_ENC_CONTENT *PKCS7_ENC_CONTENT_new(void);
303 void PKCS7_ENC_CONTENT_free(PKCS7_ENC_CONTENT *a);
304 PKCS7_ENC_CONTENT *d2i_PKCS7_ENC_CONTENT(PKCS7_ENC_CONTENT **a, const unsigned char **in, long len);
305 int i2d_PKCS7_ENC_CONTENT(PKCS7_ENC_CONTENT *a, unsigned char **out);
306 extern const ASN1_ITEM PKCS7_ENC_CONTENT_it;
307 PKCS7_ENVELOPE *PKCS7_ENVELOPE_new(void);
308 void PKCS7_ENVELOPE_free(PKCS7_ENVELOPE *a);
309 PKCS7_ENVELOPE *d2i_PKCS7_ENVELOPE(PKCS7_ENVELOPE **a, const unsigned char **in, long len);
310 int i2d_PKCS7_ENVELOPE(PKCS7_ENVELOPE *a, unsigned char **out);
311 extern const ASN1_ITEM PKCS7_ENVELOPE_it;
312 PKCS7_SIGN_ENVELOPE *PKCS7_SIGN_ENVELOPE_new(void);
313 void PKCS7_SIGN_ENVELOPE_free(PKCS7_SIGN_ENVELOPE *a);
314 PKCS7_SIGN_ENVELOPE *d2i_PKCS7_SIGN_ENVELOPE(PKCS7_SIGN_ENVELOPE **a, const unsigned char **in, long len);
315 int i2d_PKCS7_SIGN_ENVELOPE(PKCS7_SIGN_ENVELOPE *a, unsigned char **out);
316 extern const ASN1_ITEM PKCS7_SIGN_ENVELOPE_it;
317 PKCS7_DIGEST *PKCS7_DIGEST_new(void);
318 void PKCS7_DIGEST_free(PKCS7_DIGEST *a);
319 PKCS7_DIGEST *d2i_PKCS7_DIGEST(PKCS7_DIGEST **a, const unsigned char **in, long len);
320 int i2d_PKCS7_DIGEST(PKCS7_DIGEST *a, unsigned char **out);
321 extern const ASN1_ITEM PKCS7_DIGEST_it;
322 PKCS7_ENCRYPT *PKCS7_ENCRYPT_new(void);
323 void PKCS7_ENCRYPT_free(PKCS7_ENCRYPT *a);
324 PKCS7_ENCRYPT *d2i_PKCS7_ENCRYPT(PKCS7_ENCRYPT **a, const unsigned char **in, long len);
325 int i2d_PKCS7_ENCRYPT(PKCS7_ENCRYPT *a, unsigned char **out);
326 extern const ASN1_ITEM PKCS7_ENCRYPT_it;
327 PKCS7 *PKCS7_new(void);
328 void PKCS7_free(PKCS7 *a);
329 PKCS7 *d2i_PKCS7(PKCS7 **a, const unsigned char **in, long len);
330 int i2d_PKCS7(PKCS7 *a, unsigned char **out);
331 extern const ASN1_ITEM PKCS7_it;
332 
333 extern const ASN1_ITEM PKCS7_ATTR_SIGN_it;
334 extern const ASN1_ITEM PKCS7_ATTR_VERIFY_it;
335 
336 int i2d_PKCS7_NDEF(PKCS7 *a, unsigned char **out);
337 int PKCS7_print_ctx(BIO *out, PKCS7 *x, int indent, const ASN1_PCTX *pctx);
338 
339 long PKCS7_ctrl(PKCS7 *p7, int cmd, long larg, char *parg);
340 
341 int PKCS7_set_type(PKCS7 *p7, int type);
342 int PKCS7_set0_type_other(PKCS7 *p7, int type, ASN1_TYPE *other);
343 int PKCS7_set_content(PKCS7 *p7, PKCS7 *p7_data);
344 int PKCS7_SIGNER_INFO_set(PKCS7_SIGNER_INFO *p7i, X509 *x509, EVP_PKEY *pkey,
345     const EVP_MD *dgst);
346 int PKCS7_SIGNER_INFO_sign(PKCS7_SIGNER_INFO *si);
347 int PKCS7_add_signer(PKCS7 *p7, PKCS7_SIGNER_INFO *p7i);
348 int PKCS7_add_certificate(PKCS7 *p7, X509 *x509);
349 int PKCS7_add_crl(PKCS7 *p7, X509_CRL *x509);
350 int PKCS7_content_new(PKCS7 *p7, int nid);
351 int PKCS7_dataVerify(X509_STORE *cert_store, X509_STORE_CTX *ctx,
352     BIO *bio, PKCS7 *p7, PKCS7_SIGNER_INFO *si);
353 int PKCS7_signatureVerify(BIO *bio, PKCS7 *p7, PKCS7_SIGNER_INFO *si,
354     X509 *x509);
355 
356 BIO *PKCS7_dataInit(PKCS7 *p7, BIO *bio);
357 int PKCS7_dataFinal(PKCS7 *p7, BIO *bio);
358 BIO *PKCS7_dataDecode(PKCS7 *p7, EVP_PKEY *pkey, BIO *in_bio, X509 *pcert);
359 
360 
361 PKCS7_SIGNER_INFO *PKCS7_add_signature(PKCS7 *p7, X509 *x509,
362     EVP_PKEY *pkey, const EVP_MD *dgst);
363 X509 *PKCS7_cert_from_signer_info(PKCS7 *p7, PKCS7_SIGNER_INFO *si);
364 int PKCS7_set_digest(PKCS7 *p7, const EVP_MD *md);
365 STACK_OF(PKCS7_SIGNER_INFO) *PKCS7_get_signer_info(PKCS7 *p7);
366 
367 PKCS7_RECIP_INFO *PKCS7_add_recipient(PKCS7 *p7, X509 *x509);
368 void PKCS7_SIGNER_INFO_get0_algs(PKCS7_SIGNER_INFO *si, EVP_PKEY **pk,
369     X509_ALGOR **pdig, X509_ALGOR **psig);
370 void PKCS7_RECIP_INFO_get0_alg(PKCS7_RECIP_INFO *ri, X509_ALGOR **penc);
371 int PKCS7_add_recipient_info(PKCS7 *p7, PKCS7_RECIP_INFO *ri);
372 int PKCS7_RECIP_INFO_set(PKCS7_RECIP_INFO *p7i, X509 *x509);
373 int PKCS7_set_cipher(PKCS7 *p7, const EVP_CIPHER *cipher);
374 int PKCS7_stream(unsigned char ***boundary, PKCS7 *p7);
375 
376 PKCS7_ISSUER_AND_SERIAL *PKCS7_get_issuer_and_serial(PKCS7 *p7, int idx);
377 ASN1_OCTET_STRING *PKCS7_digest_from_attributes(STACK_OF(X509_ATTRIBUTE) *sk);
378 int PKCS7_add_signed_attribute(PKCS7_SIGNER_INFO *p7si, int nid, int type,
379     void *data);
380 int PKCS7_add_attribute (PKCS7_SIGNER_INFO *p7si, int nid, int atrtype,
381     void *value);
382 ASN1_TYPE *PKCS7_get_attribute(PKCS7_SIGNER_INFO *si, int nid);
383 ASN1_TYPE *PKCS7_get_signed_attribute(PKCS7_SIGNER_INFO *si, int nid);
384 int PKCS7_set_signed_attributes(PKCS7_SIGNER_INFO *p7si,
385     STACK_OF(X509_ATTRIBUTE) *sk);
386 int PKCS7_set_attributes(PKCS7_SIGNER_INFO *p7si, STACK_OF(X509_ATTRIBUTE) *sk);
387 
388 
389 PKCS7 *PKCS7_sign(X509 *signcert, EVP_PKEY *pkey, STACK_OF(X509) *certs,
390     BIO *data, int flags);
391 
392 PKCS7_SIGNER_INFO *PKCS7_sign_add_signer(PKCS7 *p7,
393     X509 *signcert, EVP_PKEY *pkey, const EVP_MD *md,
394     int flags);
395 
396 int PKCS7_final(PKCS7 *p7, BIO *data, int flags);
397 int PKCS7_verify(PKCS7 *p7, STACK_OF(X509) *certs, X509_STORE *store,
398     BIO *indata, BIO *out, int flags);
399 STACK_OF(X509) *PKCS7_get0_signers(PKCS7 *p7, STACK_OF(X509) *certs, int flags);
400 PKCS7 *PKCS7_encrypt(STACK_OF(X509) *certs, BIO *in, const EVP_CIPHER *cipher,
401     int flags);
402 int PKCS7_decrypt(PKCS7 *p7, EVP_PKEY *pkey, X509 *cert, BIO *data, int flags);
403 
404 int PKCS7_add_attrib_smimecap(PKCS7_SIGNER_INFO *si,
405     STACK_OF(X509_ALGOR) *cap);
406 STACK_OF(X509_ALGOR) *PKCS7_get_smimecap(PKCS7_SIGNER_INFO *si);
407 int PKCS7_simple_smimecap(STACK_OF(X509_ALGOR) *sk, int nid, int arg);
408 
409 int PKCS7_add_attrib_content_type(PKCS7_SIGNER_INFO *si, ASN1_OBJECT *coid);
410 int PKCS7_add0_attrib_signing_time(PKCS7_SIGNER_INFO *si, ASN1_TIME *t);
411 int PKCS7_add1_attrib_digest(PKCS7_SIGNER_INFO *si,
412     const unsigned char *md, int mdlen);
413 
414 int SMIME_write_PKCS7(BIO *bio, PKCS7 *p7, BIO *data, int flags);
415 PKCS7 *SMIME_read_PKCS7(BIO *bio, BIO **bcont);
416 
417 BIO *BIO_new_PKCS7(BIO *out, PKCS7 *p7);
418 
419 
420 void ERR_load_PKCS7_strings(void);
421 
422 /* Error codes for the PKCS7 functions. */
423 
424 /* Function codes. */
425 #define PKCS7_F_B64_READ_PKCS7                                         120
426 #define PKCS7_F_B64_WRITE_PKCS7                                        121
427 #define PKCS7_F_DO_PKCS7_SIGNED_ATTRIB                       136
428 #define PKCS7_F_I2D_PKCS7_BIO_STREAM                         140
429 #define PKCS7_F_PKCS7_ADD0_ATTRIB_SIGNING_TIME               135
430 #define PKCS7_F_PKCS7_ADD_ATTRIB_SMIMECAP                    118
431 #define PKCS7_F_PKCS7_ADD_CERTIFICATE                        100
432 #define PKCS7_F_PKCS7_ADD_CRL                                101
433 #define PKCS7_F_PKCS7_ADD_RECIPIENT_INFO                     102
434 #define PKCS7_F_PKCS7_ADD_SIGNATURE                          131
435 #define PKCS7_F_PKCS7_ADD_SIGNER                             103
436 #define PKCS7_F_PKCS7_BIO_ADD_DIGEST                         125
437 #define PKCS7_F_PKCS7_COPY_EXISTING_DIGEST                   138
438 #define PKCS7_F_PKCS7_CTRL                                   104
439 #define PKCS7_F_PKCS7_DATADECODE                             112
440 #define PKCS7_F_PKCS7_DATAFINAL                                        128
441 #define PKCS7_F_PKCS7_DATAINIT                                         105
442 #define PKCS7_F_PKCS7_DATASIGN                                         106
443 #define PKCS7_F_PKCS7_DATAVERIFY                             107
444 #define PKCS7_F_PKCS7_DECRYPT                                114
445 #define PKCS7_F_PKCS7_DECRYPT_RINFO                          133
446 #define PKCS7_F_PKCS7_ENCODE_RINFO                           132
447 #define PKCS7_F_PKCS7_ENCRYPT                                115
448 #define PKCS7_F_PKCS7_FINAL                                  134
449 #define PKCS7_F_PKCS7_FIND_DIGEST                            127
450 #define PKCS7_F_PKCS7_GET0_SIGNERS                           124
451 #define PKCS7_F_PKCS7_RECIP_INFO_SET                         130
452 #define PKCS7_F_PKCS7_SET_CIPHER                             108
453 #define PKCS7_F_PKCS7_SET_CONTENT                            109
454 #define PKCS7_F_PKCS7_SET_DIGEST                             126
455 #define PKCS7_F_PKCS7_SET_TYPE                                         110
456 #define PKCS7_F_PKCS7_SIGN                                   116
457 #define PKCS7_F_PKCS7_SIGNATUREVERIFY                        113
458 #define PKCS7_F_PKCS7_SIGNER_INFO_SET                        129
459 #define PKCS7_F_PKCS7_SIGNER_INFO_SIGN                       139
460 #define PKCS7_F_PKCS7_SIGN_ADD_SIGNER                        137
461 #define PKCS7_F_PKCS7_SIMPLE_SMIMECAP                        119
462 #define PKCS7_F_PKCS7_VERIFY                                 117
463 #define PKCS7_F_SMIME_READ_PKCS7                             122
464 #define PKCS7_F_SMIME_TEXT                                   123
465 
466 /* Reason codes. */
467 #define PKCS7_R_CERTIFICATE_VERIFY_ERROR                     117
468 #define PKCS7_R_CIPHER_HAS_NO_OBJECT_IDENTIFIER              144
469 #define PKCS7_R_CIPHER_NOT_INITIALIZED                       116
470 #define PKCS7_R_CONTENT_AND_DATA_PRESENT                     118
471 #define PKCS7_R_CTRL_ERROR                                   152
472 #define PKCS7_R_DECODE_ERROR                                 130
473 #define PKCS7_R_DECRYPTED_KEY_IS_WRONG_LENGTH                100
474 #define PKCS7_R_DECRYPT_ERROR                                119
475 #define PKCS7_R_DIGEST_FAILURE                                         101
476 #define PKCS7_R_ENCRYPTION_CTRL_FAILURE                      149
477 #define PKCS7_R_ENCRYPTION_NOT_SUPPORTED_FOR_THIS_KEY_TYPE 150
478 #define PKCS7_R_ERROR_ADDING_RECIPIENT                       120
479 #define PKCS7_R_ERROR_SETTING_CIPHER                         121
480 #define PKCS7_R_INVALID_MIME_TYPE                            131
481 #define PKCS7_R_INVALID_NULL_POINTER                         143
482 #define PKCS7_R_MIME_NO_CONTENT_TYPE                         132
483 #define PKCS7_R_MIME_PARSE_ERROR                             133
484 #define PKCS7_R_MIME_SIG_PARSE_ERROR                         134
485 #define PKCS7_R_MISSING_CERIPEND_INFO                        103
486 #define PKCS7_R_NO_CONTENT                                   122
487 #define PKCS7_R_NO_CONTENT_TYPE                                        135
488 #define PKCS7_R_NO_DEFAULT_DIGEST                            151
489 #define PKCS7_R_NO_MATCHING_DIGEST_TYPE_FOUND                154
490 #define PKCS7_R_NO_MULTIPART_BODY_FAILURE                    136
491 #define PKCS7_R_NO_MULTIPART_BOUNDARY                        137
492 #define PKCS7_R_NO_RECIPIENT_MATCHES_CERTIFICATE   115
493 #define PKCS7_R_NO_RECIPIENT_MATCHES_KEY                     146
494 #define PKCS7_R_NO_SIGNATURES_ON_DATA                        123
495 #define PKCS7_R_NO_SIGNERS                                   142
496 #define PKCS7_R_NO_SIG_CONTENT_TYPE                          138
497 #define PKCS7_R_OPERATION_NOT_SUPPORTED_ON_THIS_TYPE         104
498 #define PKCS7_R_PKCS7_ADD_SIGNATURE_ERROR                    124
499 #define PKCS7_R_PKCS7_ADD_SIGNER_ERROR                       153
500 #define PKCS7_R_PKCS7_DATAFINAL                                        126
501 #define PKCS7_R_PKCS7_DATAFINAL_ERROR                        125
502 #define PKCS7_R_PKCS7_DATASIGN                                         145
503 #define PKCS7_R_PKCS7_PARSE_ERROR                            139
504 #define PKCS7_R_PKCS7_SIG_PARSE_ERROR                        140
505 #define PKCS7_R_PRIVATE_KEY_DOES_NOT_MATCH_CERTIFICATE       127
506 #define PKCS7_R_SIGNATURE_FAILURE                            105
507 #define PKCS7_R_SIGNER_CERTIFICATE_NOT_FOUND                 128
508 #define PKCS7_R_SIGNING_CTRL_FAILURE                         147
509 #define PKCS7_R_SIGNING_NOT_SUPPORTED_FOR_THIS_KEY_TYPE      148
510 #define PKCS7_R_SIG_INVALID_MIME_TYPE                        141
511 #define PKCS7_R_SMIME_TEXT_ERROR                             129
512 #define PKCS7_R_UNABLE_TO_FIND_CERTIFICATE                   106
513 #define PKCS7_R_UNABLE_TO_FIND_MEM_BIO                       107
514 #define PKCS7_R_UNABLE_TO_FIND_MESSAGE_DIGEST                108
515 #define PKCS7_R_UNKNOWN_DIGEST_TYPE                          109
516 #define PKCS7_R_UNKNOWN_OPERATION                            110
517 #define PKCS7_R_UNSUPPORTED_CIPHER_TYPE                      111
518 #define PKCS7_R_UNSUPPORTED_CONTENT_TYPE                     112
519 #define PKCS7_R_WRONG_CONTENT_TYPE                           113
520 #define PKCS7_R_WRONG_PKCS7_TYPE                             114
521 
522 #ifdef  __cplusplus
523 }
524 #endif
525 #endif
526