summaryrefslogtreecommitdiff
path: root/lib/tls-sig.h
blob: a445088ddcfc9c398373839c1346d59945fdfec9 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63

/*
 * Copyright (C) 2000-2012 Free Software Foundation, Inc.
 *
 * Author: Nikos Mavrogiannopoulos
 *
 * This file is part of GnuTLS.
 *
 * The GnuTLS is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public License
 * as published by the Free Software Foundation; either version 2.1 of
 * the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this program.  If not, see <https://www.gnu.org/licenses/>
 *
 */

#ifndef GNUTLS_LIB_TLS_SIG_H
# define GNUTLS_LIB_TLS_SIG_H

# include <gnutls/abstract.h>

/* While this is currently equal to the length of RSA/SHA512
 * signature, it should also be sufficient for DSS signature and any
 * other RSA signatures including one with the old MD5/SHA1-combined
 * format.
 */
# define MAX_SIG_SIZE (19 + MAX_HASH_SIZE)

int _gnutls_check_key_usage_for_sig(gnutls_session_t session,
				    unsigned key_usage, unsigned our_cert);

int _gnutls_handshake_sign_crt_vrfy(gnutls_session_t session,
				    gnutls_pcert_st * cert,
				    gnutls_privkey_t pkey,
				    gnutls_datum_t * signature);

int _gnutls_handshake_sign_data(gnutls_session_t session,
				gnutls_pcert_st * cert,
				gnutls_privkey_t pkey,
				gnutls_datum_t * params,
				gnutls_datum_t * signature,
				gnutls_sign_algorithm_t * algo);

int _gnutls_handshake_verify_crt_vrfy(gnutls_session_t session,
				      unsigned verify_flags,
				      gnutls_pcert_st * cert,
				      gnutls_datum_t * signature,
				      gnutls_sign_algorithm_t);

int _gnutls_handshake_verify_data(gnutls_session_t session,
				  unsigned verify_flags,
				  gnutls_pcert_st * cert,
				  const gnutls_datum_t * params,
				  gnutls_datum_t * signature,
				  gnutls_sign_algorithm_t algo);

#endif				/* GNUTLS_LIB_TLS_SIG_H */
View Lorry Controller Status