add X509_CRL_sign_ctx function

[openssl.git] / crypto / x509 / x509.h
diff --git a/crypto/x509/x509.h b/crypto/x509/x509.h

index 62e01b1ff5e554ecc692d24dc751b28d34be872c..9376ab0d7c083382e1c305a63172261494bb6351 100644 (file)
--- a/crypto/x509/x509.h
+++ b/crypto/x509/x509.h
@@ -116,6 +116,7 @@ extern "C" {
  /* Under Win32 these are defined in wincrypt.h */
  #undef X509_NAME
  #undef X509_CERT_PAIR
+#undef X509_EXTENSIONS
  #endif
  
  #define X509_FILETYPE_PEM      1
@@ -584,6 +585,7 @@ struct pkcs8_priv_key_info_st
  #define PKCS8_NO_OCTET         1
  #define PKCS8_EMBEDDED_PARAM   2
  #define PKCS8_NS_DB            3
+#define PKCS8_NEG_PRIVKEY      4
          ASN1_INTEGER *version;
          X509_ALGOR *pkeyalg;
          ASN1_TYPE *pkey; /* Should be OCTET STRING but some are broken */
@@ -654,11 +656,15 @@ int NETSCAPE_SPKI_set_pubkey(NETSCAPE_SPKI *x, EVP_PKEY *pkey);
  
  int NETSCAPE_SPKI_print(BIO *out, NETSCAPE_SPKI *spki);
  
+int X509_signature_dump(BIO *bp,const ASN1_STRING *sig, int indent);
  int X509_signature_print(BIO *bp,X509_ALGOR *alg, ASN1_STRING *sig);
  
  int X509_sign(X509 *x, EVP_PKEY *pkey, const EVP_MD *md);
+int X509_sign_ctx(X509 *x, EVP_MD_CTX *ctx);
  int X509_REQ_sign(X509_REQ *x, EVP_PKEY *pkey, const EVP_MD *md);
+int X509_REQ_sign_ctx(X509_REQ *x, EVP_MD_CTX *ctx);
  int X509_CRL_sign(X509_CRL *x, EVP_PKEY *pkey, const EVP_MD *md);
+int X509_CRL_sign_ctx(X509_CRL *x, EVP_MD_CTX *ctx);
  int NETSCAPE_SPKI_sign(NETSCAPE_SPKI *x, EVP_PKEY *pkey, const EVP_MD *md);
  
  int X509_pubkey_digest(const X509 *data,const EVP_MD *type,
@@ -760,6 +766,7 @@ X509_ALGOR *X509_ALGOR_dup(X509_ALGOR *xn);
  int X509_ALGOR_set0(X509_ALGOR *alg, ASN1_OBJECT *aobj, int ptype, void *pval);
  void X509_ALGOR_get0(ASN1_OBJECT **paobj, int *pptype, void **ppval,
                                                 X509_ALGOR *algor);
+void X509_ALGOR_set_md(X509_ALGOR *alg, const EVP_MD *md);
  
  X509_NAME *X509_NAME_dup(X509_NAME *xn);
  X509_NAME_ENTRY *X509_NAME_ENTRY_dup(X509_NAME_ENTRY *ne);
@@ -893,6 +900,9 @@ int ASN1_item_verify(const ASN1_ITEM *it, X509_ALGOR *algor1,
  int ASN1_item_sign(const ASN1_ITEM *it, X509_ALGOR *algor1, X509_ALGOR *algor2,
         ASN1_BIT_STRING *signature,
         void *data, EVP_PKEY *pkey, const EVP_MD *type);
+int ASN1_item_sign_ctx(const ASN1_ITEM *it,
+               X509_ALGOR *algor1, X509_ALGOR *algor2,
+               ASN1_BIT_STRING *signature, void *asn, EVP_MD_CTX *ctx);
  #endif
  
  int            X509_set_version(X509 *x,long version);
@@ -960,9 +970,15 @@ unsigned long      X509_issuer_name_hash(X509 *a);
  int            X509_subject_name_cmp(const X509 *a, const X509 *b);
  unsigned long  X509_subject_name_hash(X509 *x);
  
+#ifndef OPENSSL_NO_MD5
+unsigned long  X509_issuer_name_hash_old(X509 *a);
+unsigned long  X509_subject_name_hash_old(X509 *x);
+#endif
+
  int            X509_cmp(const X509 *a, const X509 *b);
  int            X509_NAME_cmp(const X509_NAME *a, const X509_NAME *b);
  unsigned long  X509_NAME_hash(X509_NAME *x);
+unsigned long  X509_NAME_hash_old(X509_NAME *x);
  
  int            X509_CRL_cmp(const X509_CRL *a, const X509_CRL *b);
  int            X509_CRL_match(const X509_CRL *a, const X509_CRL *b);
@@ -1152,6 +1168,9 @@ X509_ALGOR *PKCS5_pbe2_set_iv(const EVP_CIPHER *cipher, int iter,
                                  unsigned char *salt, int saltlen,
                                  unsigned char *aiv, int prf_nid);
  
+X509_ALGOR *PKCS5_pbkdf2_set(int iter, unsigned char *salt, int saltlen,
+                               int prf_nid, int keylen);
+
  /* PKCS#8 utilities */
  
  DECLARE_ASN1_FUNCTIONS(PKCS8_PRIV_KEY_INFO)