32 #define TRACE_LEVEL CRYPTO_TRACE_LEVEL
43 #if (X509_SUPPORT == ENABLED)
159 const uint8_t
X509_AD_OCSP[8] = {0x2B, 0x06, 0x01, 0x05, 0x05, 0x07, 0x30, 0x02};
184 #if (X509_RSA_SUPPORT == ENABLED && RSA_SUPPORT == ENABLED)
191 #if (X509_RSA_PSS_SUPPORT == ENABLED && RSA_SUPPORT == ENABLED)
198 #if (X509_DSA_SUPPORT == ENABLED && DSA_SUPPORT == ENABLED)
205 #if (X509_ECDSA_SUPPORT == ENABLED && ECDSA_SUPPORT == ENABLED)
212 #if (X509_SM2_SUPPORT == ENABLED && SM2_SUPPORT == ENABLED)
219 #if (X509_ED25519_SUPPORT == ENABLED && ED25519_SUPPORT == ENABLED)
226 #if (X509_ED448_SUPPORT == ENABLED && ED448_SUPPORT == ENABLED)
259 #if (X509_MD5_SUPPORT == ENABLED && MD5_SUPPORT == ENABLED)
266 #if (X509_SHA1_SUPPORT == ENABLED && SHA1_SUPPORT == ENABLED)
273 #if (X509_SHA224_SUPPORT == ENABLED && SHA224_SUPPORT == ENABLED)
280 #if (X509_SHA256_SUPPORT == ENABLED && SHA256_SUPPORT == ENABLED)
287 #if (X509_SHA384_SUPPORT == ENABLED && SHA384_SUPPORT == ENABLED)
294 #if (X509_SHA512_SUPPORT == ENABLED && SHA512_SUPPORT == ENABLED)
301 #if (X509_SHA3_224_SUPPORT == ENABLED && SHA3_224_SUPPORT == ENABLED)
308 #if (X509_SHA3_256_SUPPORT == ENABLED && SHA3_256_SUPPORT == ENABLED)
315 #if (X509_SHA3_384_SUPPORT == ENABLED && SHA3_384_SUPPORT == ENABLED)
322 #if (X509_SHA3_512_SUPPORT == ENABLED && SHA3_512_SUPPORT == ENABLED)
329 #if (X509_SM3_SUPPORT == ENABLED && SM3_SUPPORT == ENABLED)
391 #if (X509_RSA_SUPPORT == ENABLED && RSA_SUPPORT == ENABLED)
392 #if (X509_MD5_SUPPORT == ENABLED && MD5_SUPPORT == ENABLED)
402 #if (X509_SHA1_SUPPORT == ENABLED && SHA1_SUPPORT == ENABLED)
412 #if (X509_SHA224_SUPPORT == ENABLED && SHA224_SUPPORT == ENABLED)
422 #if (X509_SHA256_SUPPORT == ENABLED && SHA256_SUPPORT == ENABLED)
432 #if (X509_SHA384_SUPPORT == ENABLED && SHA384_SUPPORT == ENABLED)
442 #if (X509_SHA512_SUPPORT == ENABLED && SHA512_SUPPORT == ENABLED)
452 #if (X509_SHA3_224_SUPPORT == ENABLED && SHA3_224_SUPPORT == ENABLED)
462 #if (X509_SHA3_256_SUPPORT == ENABLED && SHA3_256_SUPPORT == ENABLED)
472 #if (X509_SHA3_384_SUPPORT == ENABLED && SHA3_384_SUPPORT == ENABLED)
482 #if (X509_SHA3_512_SUPPORT == ENABLED && SHA3_512_SUPPORT == ENABLED)
493 #if (X509_RSA_PSS_SUPPORT == ENABLED && RSA_SUPPORT == ENABLED)
502 #if (X509_SHA1_SUPPORT == ENABLED && SHA1_SUPPORT == ENABLED)
512 #if (X509_SHA224_SUPPORT == ENABLED && SHA224_SUPPORT == ENABLED)
522 #if (X509_SHA256_SUPPORT == ENABLED && SHA256_SUPPORT == ENABLED)
532 #if (X509_SHA384_SUPPORT == ENABLED && SHA384_SUPPORT == ENABLED)
542 #if (X509_SHA512_SUPPORT == ENABLED && SHA512_SUPPORT == ENABLED)
552 #if (X509_SHA3_224_SUPPORT == ENABLED && SHA3_224_SUPPORT == ENABLED)
562 #if (X509_SHA3_256_SUPPORT == ENABLED && SHA3_256_SUPPORT == ENABLED)
572 #if (X509_SHA3_384_SUPPORT == ENABLED && SHA3_384_SUPPORT == ENABLED)
582 #if (X509_SHA3_512_SUPPORT == ENABLED && SHA3_512_SUPPORT == ENABLED)
600 #if (X509_DSA_SUPPORT == ENABLED && DSA_SUPPORT == ENABLED)
601 #if (X509_SHA1_SUPPORT == ENABLED && SHA1_SUPPORT == ENABLED)
611 #if (X509_SHA224_SUPPORT == ENABLED && SHA224_SUPPORT == ENABLED)
621 #if (X509_SHA256_SUPPORT == ENABLED && SHA256_SUPPORT == ENABLED)
631 #if (X509_SHA384_SUPPORT == ENABLED && SHA384_SUPPORT == ENABLED)
641 #if (X509_SHA512_SUPPORT == ENABLED && SHA512_SUPPORT == ENABLED)
651 #if (X509_SHA3_224_SUPPORT == ENABLED && SHA3_224_SUPPORT == ENABLED)
661 #if (X509_SHA3_256_SUPPORT == ENABLED && SHA3_256_SUPPORT == ENABLED)
671 #if (X509_SHA3_384_SUPPORT == ENABLED && SHA3_384_SUPPORT == ENABLED)
681 #if (X509_SHA3_512_SUPPORT == ENABLED && SHA3_512_SUPPORT == ENABLED)
692 #if (X509_ECDSA_SUPPORT == ENABLED && ECDSA_SUPPORT == ENABLED)
693 #if (X509_SHA1_SUPPORT == ENABLED && SHA1_SUPPORT == ENABLED)
703 #if (X509_SHA224_SUPPORT == ENABLED && SHA224_SUPPORT == ENABLED)
713 #if (X509_SHA256_SUPPORT == ENABLED && SHA256_SUPPORT == ENABLED)
723 #if (X509_SHA384_SUPPORT == ENABLED && SHA384_SUPPORT == ENABLED)
733 #if (X509_SHA512_SUPPORT == ENABLED && SHA512_SUPPORT == ENABLED)
743 #if (X509_SHA3_224_SUPPORT == ENABLED && SHA3_224_SUPPORT == ENABLED)
753 #if (X509_SHA3_256_SUPPORT == ENABLED && SHA3_256_SUPPORT == ENABLED)
763 #if (X509_SHA3_384_SUPPORT == ENABLED && SHA3_384_SUPPORT == ENABLED)
773 #if (X509_SHA3_512_SUPPORT == ENABLED && SHA3_512_SUPPORT == ENABLED)
784 #if (X509_SM2_SUPPORT == ENABLED && SM2_SUPPORT == ENABLED && \
785 X509_SM3_SUPPORT == ENABLED && SM3_SUPPORT == ENABLED)
794 #if (X509_ED25519_SUPPORT == ENABLED && ED25519_SUPPORT == ENABLED)
803 #if (X509_ED448_SUPPORT == ENABLED && ED448_SUPPORT == ENABLED)
838 #if (RSA_SUPPORT == ENABLED)
850 #if (DSA_SUPPORT == ENABLED)
857 #if (EC_SUPPORT == ENABLED)
864 #if (X25519_SUPPORT == ENABLED)
871 #if (ED25519_SUPPORT == ENABLED)
878 #if (X448_SUPPORT == ENABLED)
885 #if (ED448_SUPPORT == ENABLED)
917 #if (X509_ECDSA_SUPPORT == ENABLED && ECDSA_SUPPORT == ENABLED)
923 #if (X509_SECP112R1_SUPPORT == ENABLED)
930 #if (X509_SECP112R2_SUPPORT == ENABLED)
937 #if (X509_SECP128R1_SUPPORT == ENABLED)
944 #if (X509_SECP128R2_SUPPORT == ENABLED)
951 #if (X509_SECP160K1_SUPPORT == ENABLED)
958 #if (X509_SECP160R1_SUPPORT == ENABLED)
965 #if (X509_SECP160R2_SUPPORT == ENABLED)
972 #if (X509_SECP192K1_SUPPORT == ENABLED)
979 #if (X509_SECP192R1_SUPPORT == ENABLED)
986 #if (X509_SECP224K1_SUPPORT == ENABLED)
993 #if (X509_SECP224R1_SUPPORT == ENABLED)
1000 #if (X509_SECP256K1_SUPPORT == ENABLED)
1007 #if (X509_SECP256R1_SUPPORT == ENABLED)
1014 #if (X509_SECP384R1_SUPPORT == ENABLED)
1021 #if (X509_SECP521R1_SUPPORT == ENABLED)
1028 #if (X509_BRAINPOOLP160R1_SUPPORT == ENABLED)
1035 #if (X509_BRAINPOOLP192R1_SUPPORT == ENABLED)
1042 #if (X509_BRAINPOOLP224R1_SUPPORT == ENABLED)
1049 #if (X509_BRAINPOOLP256R1_SUPPORT == ENABLED)
1056 #if (X509_BRAINPOOLP320R1_SUPPORT == ENABLED)
1063 #if (X509_BRAINPOOLP384R1_SUPPORT == ENABLED)
1070 #if (X509_BRAINPOOLP512R1_SUPPORT == ENABLED)
1077 #if (X509_SM2_SUPPORT == ENABLED)
1084 #if (X509_ED25519_SUPPORT == ENABLED)
1091 #if (X509_ED448_SUPPORT == ENABLED)
ASN.1 (Abstract Syntax Notation One)
General definitions for cryptographic algorithms.
const uint8_t DSA_WITH_SHA3_384_OID[9]
const uint8_t DSA_WITH_SHA3_256_OID[9]
const uint8_t DSA_WITH_SHA3_224_OID[9]
const uint8_t DSA_WITH_SHA384_OID[9]
const uint8_t DSA_WITH_SHA512_OID[9]
const uint8_t DSA_WITH_SHA1_OID[7]
const uint8_t DSA_WITH_SHA3_512_OID[9]
const uint8_t DSA_WITH_SHA224_OID[9]
const uint8_t DSA_WITH_SHA256_OID[9]
const uint8_t EC_PUBLIC_KEY_OID[7]
const uint8_t SECP521R1_OID[5]
const uint8_t SECP160R1_OID[5]
const uint8_t ED25519_OID[3]
const EcCurveInfo * ecGetCurveInfo(const uint8_t *oid, size_t length)
Get the elliptic curve that matches the specified OID.
const uint8_t SECP160R2_OID[5]
const uint8_t SECP192K1_OID[5]
const uint8_t SECP192R1_OID[8]
const uint8_t BRAINPOOLP192R1_OID[9]
const uint8_t BRAINPOOLP320R1_OID[9]
const uint8_t BRAINPOOLP224R1_OID[9]
const uint8_t BRAINPOOLP512R1_OID[9]
const uint8_t BRAINPOOLP256R1_OID[9]
const uint8_t X448_OID[3]
const uint8_t SECP112R2_OID[5]
const uint8_t BRAINPOOLP160R1_OID[9]
const uint8_t SECP128R1_OID[5]
const uint8_t X25519_OID[3]
const uint8_t SECP256R1_OID[8]
const uint8_t ED448_OID[3]
const uint8_t SECP112R1_OID[5]
const uint8_t SECP384R1_OID[5]
const uint8_t SECP224K1_OID[5]
const uint8_t SECP160K1_OID[5]
const uint8_t BRAINPOOLP384R1_OID[9]
const uint8_t SECP128R2_OID[5]
const uint8_t SECP224R1_OID[5]
const uint8_t SECP256K1_OID[5]
const uint8_t ECDSA_WITH_SHA224_OID[8]
const uint8_t ECDSA_WITH_SHA3_224_OID[9]
const uint8_t ECDSA_WITH_SHA3_512_OID[9]
const uint8_t ECDSA_WITH_SHA256_OID[8]
const uint8_t ECDSA_WITH_SHA3_256_OID[9]
const uint8_t ECDSA_WITH_SHA384_OID[8]
const uint8_t ECDSA_WITH_SHA512_OID[8]
const uint8_t ECDSA_WITH_SHA1_OID[7]
const uint8_t ECDSA_WITH_SHA3_384_OID[9]
@ ERROR_UNSUPPORTED_SIGNATURE_ALGO
Collection of hash algorithms.
int_t oidComp(const uint8_t *oid1, size_t oidLen1, const uint8_t *oid2, size_t oidLen2)
Compare object identifiers.
const uint8_t RSA_ENCRYPTION_OID[9]
const uint8_t RSASSA_PKCS1_V1_5_WITH_SHA3_384_OID[9]
const uint8_t SHA384_WITH_RSA_ENCRYPTION_OID[9]
const uint8_t SHA256_WITH_RSA_ENCRYPTION_OID[9]
const uint8_t RSASSA_PKCS1_V1_5_WITH_SHA3_224_OID[9]
const uint8_t SHA1_WITH_RSA_ENCRYPTION_OID[9]
const uint8_t RSASSA_PKCS1_V1_5_WITH_SHA3_512_OID[9]
const uint8_t RSASSA_PKCS1_V1_5_WITH_SHA3_256_OID[9]
const uint8_t RSASSA_PSS_OID[9]
const uint8_t SHA224_WITH_RSA_ENCRYPTION_OID[9]
const uint8_t SHA512_WITH_RSA_ENCRYPTION_OID[9]
const uint8_t MD5_WITH_RSA_ENCRYPTION_OID[9]
const uint8_t SHA1_OID[5]
const uint8_t SHA224_OID[9]
const uint8_t SHA256_OID[9]
const uint8_t SHA384_OID[9]
const uint8_t SHA3_224_OID[9]
#define SHA3_224_HASH_ALGO
const uint8_t SHA3_256_OID[9]
#define SHA3_256_HASH_ALGO
const uint8_t SHA3_384_OID[9]
#define SHA3_384_HASH_ALGO
const uint8_t SHA3_512_OID[9]
#define SHA3_512_HASH_ALGO
const uint8_t SHA512_OID[9]
const uint8_t SM2_WITH_SM3_OID[8]
Elliptic curve parameters.
Common interface for hash algorithms.
Signature algorithm identifier.
X509RsaPssParameters rsaPssParams
const uint8_t X509_SUBJECT_KEY_ID_OID[3]
error_t x509GetSignHashAlgo(const X509SignAlgoId *signAlgoId, X509SignatureAlgo *signAlgo, const HashAlgo **hashAlgo)
Get the signature and hash algorithms that match the specified identifier.
const uint8_t X509_LOCALITY_NAME_OID[3]
const uint8_t X509_CERTIFICATE_ISSUER_OID[3]
const uint8_t X509_NAME_CONSTRAINTS_OID[3]
const uint8_t X509_PKIX_OCSP_NO_CHECK_OID[9]
const uint8_t X509_KP_CODE_SIGNING_OID[8]
const uint8_t X509_NS_CERT_TYPE_OID[9]
const uint8_t X509_STATE_OR_PROVINCE_NAME_OID[]
const uint8_t X509_COMMON_NAME_OID[3]
const uint8_t X509_ISSUER_ALT_NAME_OID[3]
const uint8_t X509_COUNTRY_NAME_OID[3]
const uint8_t X509_BASIC_CONSTRAINTS_OID[3]
const uint8_t X509_SERIAL_NUMBER_OID[3]
const uint8_t X509_SUBJECT_DIR_ATTR_OID[3]
const uint8_t X509_SUBJECT_ALT_NAME_OID[3]
const uint8_t X509_ORGANIZATIONAL_UNIT_NAME_OID[3]
const uint8_t X509_KP_EMAIL_PROTECTION_OID[8]
const uint8_t X509_ANY_EXT_KEY_USAGE_OID[4]
const uint8_t X509_KP_IPSEC_TUNNEL_OID[8]
const uint8_t X509_INITIALS_OID[3]
const uint8_t X509_GIVEN_NAME_OID[3]
const EcCurveInfo * x509GetCurveInfo(const uint8_t *oid, size_t length)
Get the elliptic curve that matches the specified OID.
const uint8_t X509_KP_SSH_CLIENT_OID[8]
const uint8_t X509_DN_QUALIFIER_OID[3]
const uint8_t X509_DELTA_CRL_INDICATOR_OID[3]
const uint8_t X509_KP_CLIENT_AUTH_OID[8]
const uint8_t X509_AD_CA_ISSUERS[8]
const uint8_t X509_KP_SSH_SERVER_OID[8]
const uint8_t X509_EXTENSION_REQUEST_OID[9]
const uint8_t X509_INVALIDITY_DATE_OID[3]
const uint8_t X509_KP_IPSEC_IKE_OID[8]
const uint8_t X509_EXTENDED_KEY_USAGE_OID[3]
const uint8_t X509_SURNAME_OID[3]
const uint8_t X509_POLICY_MAPPINGS_OID[3]
const uint8_t X509_ISSUING_DISTR_POINT_OID[3]
const uint8_t X509_KP_IPSEC_END_SYSTEM_OID[8]
const uint8_t X509_DOMAIN_COMPONENT_OID[10]
bool_t x509IsSignAlgoSupported(X509SignatureAlgo signAlgo)
Check whether a given signature algorithm is supported.
const uint8_t X509_KEY_USAGE_OID[3]
const uint8_t X509_CRL_NUMBER_OID[3]
const uint8_t X509_KP_IPSEC_USER_OID[8]
const uint8_t X509_ORGANIZATION_NAME_OID[3]
const uint8_t X509_AD_OCSP[8]
const uint8_t X509_CHALLENGE_PASSWORD_OID[9]
const uint8_t X509_PSEUDONYM_OID[3]
const uint8_t X509_KP_DOC_SIGNING_OID[8]
const uint8_t X509_INHIBIT_ANY_POLICY_OID[3]
const uint8_t X509_KP_OCSP_SIGNING_OID[8]
const uint8_t X509_CRL_DISTR_POINTS_OID[3]
const uint8_t X509_EMAIL_ADDRESS_OID[9]
const uint8_t X509_POLICY_CONSTRAINTS_OID[3]
X509KeyType x509GetPublicKeyType(const uint8_t *oid, size_t length)
Get the public key type that matches the specified OID.
const uint8_t X509_AUTH_INFO_ACCESS_OID[8]
const uint8_t X509_REASON_CODE_OID[3]
const uint8_t X509_AUTHORITY_KEY_ID_OID[3]
const uint8_t X509_KP_SERVER_AUTH_OID[8]
const uint8_t X509_FRESHEST_CRL_OID[3]
const uint8_t X509_CERTIFICATE_POLICIES_OID[3]
const uint8_t X509_KP_TIME_STAMPING_OID[8]
bool_t x509IsCurveSupported(const uint8_t *oid, size_t length)
Check whether a given elliptic curve is supported.
const uint8_t X509_NAME_OID[3]
const uint8_t X509_GENERATION_QUALIFIER_OID[3]
bool_t x509IsHashAlgoSupported(X509HashAlgo hashAlgo)
Check whether a given hash algorithm is supported.
const uint8_t X509_TITLE_OID[3]
X.509 common definitions.
X509HashAlgo
Hash algorithms.
@ X509_HASH_ALGO_SHA3_256
@ X509_HASH_ALGO_SHA3_512
@ X509_HASH_ALGO_SHA3_384
@ X509_HASH_ALGO_SHA3_224
X509SignatureAlgo
Signature algorithms.
X509KeyType
Public Key types.