2 * Copyright 2019 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
10 /* internal ESS related stuff */
12 ESS_SIGNING_CERT *ESS_SIGNING_CERT_get(PKCS7_SIGNER_INFO *si);
13 int ESS_SIGNING_CERT_add(PKCS7_SIGNER_INFO *si, ESS_SIGNING_CERT *sc);
15 ESS_SIGNING_CERT_V2 *ESS_SIGNING_CERT_V2_get(PKCS7_SIGNER_INFO *si);
16 int ESS_SIGNING_CERT_V2_add(PKCS7_SIGNER_INFO *si, ESS_SIGNING_CERT_V2 *sc);
19 * IssuerSerial ::= SEQUENCE {
20 * issuer GeneralNames,
21 * serialNumber CertificateSerialNumber
25 struct ESS_issuer_serial {
26 STACK_OF(GENERAL_NAME) *issuer;
31 * ESSCertID ::= SEQUENCE {
33 * issuerSerial IssuerSerial OPTIONAL
38 ASN1_OCTET_STRING *hash; /* Always SHA-1 digest. */
39 ESS_ISSUER_SERIAL *issuer_serial;
43 * SigningCertificate ::= SEQUENCE {
44 * certs SEQUENCE OF ESSCertID,
45 * policies SEQUENCE OF PolicyInformation OPTIONAL
49 struct ESS_signing_cert {
50 STACK_OF(ESS_CERT_ID) *cert_ids;
51 STACK_OF(POLICYINFO) *policy_info;
55 * ESSCertIDv2 ::= SEQUENCE {
56 * hashAlgorithm AlgorithmIdentifier DEFAULT id-sha256,
58 * issuerSerial IssuerSerial OPTIONAL
62 struct ESS_cert_id_v2_st {
63 X509_ALGOR *hash_alg; /* Default: SHA-256 */
64 ASN1_OCTET_STRING *hash;
65 ESS_ISSUER_SERIAL *issuer_serial;
69 * SigningCertificateV2 ::= SEQUENCE {
70 * certs SEQUENCE OF ESSCertIDv2,
71 * policies SEQUENCE OF PolicyInformation OPTIONAL
75 struct ESS_signing_cert_v2_st {
76 STACK_OF(ESS_CERT_ID_V2) *cert_ids;
77 STACK_OF(POLICYINFO) *policy_info;