1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/security/nss/lib/pki/pkistore.h Wed Dec 31 06:09:35 2014 +0100
1.3 @@ -0,0 +1,168 @@
1.4 +/* This Source Code Form is subject to the terms of the Mozilla Public
1.5 + * License, v. 2.0. If a copy of the MPL was not distributed with this
1.6 + * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
1.7 +
1.8 +#ifndef PKISTORE_H
1.9 +#define PKISTORE_H
1.10 +
1.11 +#ifndef NSSPKIT_H
1.12 +#include "nsspkit.h"
1.13 +#endif /* NSSPKIT_H */
1.14 +
1.15 +#ifndef BASE_H
1.16 +#include "base.h"
1.17 +#endif /* BASE_H */
1.18 +
1.19 +PR_BEGIN_EXTERN_C
1.20 +
1.21 +/*
1.22 + * PKI Stores
1.23 + *
1.24 + * This is a set of routines for managing local stores of PKI objects.
1.25 + * Currently, the only application is in crypto contexts, where the
1.26 + * certificate store is used. In the future, methods should be added
1.27 + * here for storing local references to keys.
1.28 + */
1.29 +
1.30 +/*
1.31 + * nssCertificateStore
1.32 + *
1.33 + * Manages local store of certificate, trust, and S/MIME profile objects.
1.34 + * Within a crypto context, mappings of cert to trust and cert to S/MIME
1.35 + * profile are always 1-1. Therefore, it is reasonable to store all objects
1.36 + * in a single collection, indexed by the certificate.
1.37 + */
1.38 +
1.39 +NSS_EXTERN nssCertificateStore *
1.40 +nssCertificateStore_Create
1.41 +(
1.42 + NSSArena *arenaOpt
1.43 +);
1.44 +
1.45 +NSS_EXTERN PRStatus
1.46 +nssCertificateStore_Destroy
1.47 +(
1.48 + nssCertificateStore *store
1.49 +);
1.50 +
1.51 +/* Atomic Find cert in store, or add this cert to the store.
1.52 +** Ref counts properly maintained.
1.53 +*/
1.54 +NSS_EXTERN NSSCertificate *
1.55 +nssCertificateStore_FindOrAdd
1.56 +(
1.57 + nssCertificateStore *store,
1.58 + NSSCertificate *c
1.59 +);
1.60 +
1.61 +NSS_EXTERN void
1.62 +nssCertificateStore_RemoveCertLOCKED
1.63 +(
1.64 + nssCertificateStore *store,
1.65 + NSSCertificate *cert
1.66 +);
1.67 +
1.68 +struct nssCertificateStoreTraceStr {
1.69 + nssCertificateStore* store;
1.70 + PZLock* lock;
1.71 + PRBool locked;
1.72 + PRBool unlocked;
1.73 +};
1.74 +
1.75 +typedef struct nssCertificateStoreTraceStr nssCertificateStoreTrace;
1.76 +
1.77 +NSS_EXTERN void
1.78 +nssCertificateStore_Lock (
1.79 + nssCertificateStore *store, nssCertificateStoreTrace* out
1.80 +);
1.81 +
1.82 +NSS_EXTERN void
1.83 +nssCertificateStore_Unlock (
1.84 + nssCertificateStore *store, const nssCertificateStoreTrace* in,
1.85 + nssCertificateStoreTrace* out
1.86 +);
1.87 +
1.88 +NSS_EXTERN NSSCertificate **
1.89 +nssCertificateStore_FindCertificatesBySubject
1.90 +(
1.91 + nssCertificateStore *store,
1.92 + NSSDER *subject,
1.93 + NSSCertificate *rvOpt[],
1.94 + PRUint32 maximumOpt,
1.95 + NSSArena *arenaOpt
1.96 +);
1.97 +
1.98 +NSS_EXTERN NSSCertificate **
1.99 +nssCertificateStore_FindCertificatesByNickname
1.100 +(
1.101 + nssCertificateStore *store,
1.102 + const NSSUTF8 *nickname,
1.103 + NSSCertificate *rvOpt[],
1.104 + PRUint32 maximumOpt,
1.105 + NSSArena *arenaOpt
1.106 +);
1.107 +
1.108 +NSS_EXTERN NSSCertificate **
1.109 +nssCertificateStore_FindCertificatesByEmail
1.110 +(
1.111 + nssCertificateStore *store,
1.112 + NSSASCII7 *email,
1.113 + NSSCertificate *rvOpt[],
1.114 + PRUint32 maximumOpt,
1.115 + NSSArena *arenaOpt
1.116 +);
1.117 +
1.118 +NSS_EXTERN NSSCertificate *
1.119 +nssCertificateStore_FindCertificateByIssuerAndSerialNumber
1.120 +(
1.121 + nssCertificateStore *store,
1.122 + NSSDER *issuer,
1.123 + NSSDER *serial
1.124 +);
1.125 +
1.126 +NSS_EXTERN NSSCertificate *
1.127 +nssCertificateStore_FindCertificateByEncodedCertificate
1.128 +(
1.129 + nssCertificateStore *store,
1.130 + NSSDER *encoding
1.131 +);
1.132 +
1.133 +NSS_EXTERN PRStatus
1.134 +nssCertificateStore_AddTrust
1.135 +(
1.136 + nssCertificateStore *store,
1.137 + NSSTrust *trust
1.138 +);
1.139 +
1.140 +NSS_EXTERN NSSTrust *
1.141 +nssCertificateStore_FindTrustForCertificate
1.142 +(
1.143 + nssCertificateStore *store,
1.144 + NSSCertificate *cert
1.145 +);
1.146 +
1.147 +NSS_EXTERN PRStatus
1.148 +nssCertificateStore_AddSMIMEProfile
1.149 +(
1.150 + nssCertificateStore *store,
1.151 + nssSMIMEProfile *profile
1.152 +);
1.153 +
1.154 +NSS_EXTERN nssSMIMEProfile *
1.155 +nssCertificateStore_FindSMIMEProfileForCertificate
1.156 +(
1.157 + nssCertificateStore *store,
1.158 + NSSCertificate *cert
1.159 +);
1.160 +
1.161 +NSS_EXTERN void
1.162 +nssCertificateStore_DumpStoreInfo
1.163 +(
1.164 + nssCertificateStore *store,
1.165 + void (* cert_dump_iter)(const void *, void *, void *),
1.166 + void *arg
1.167 +);
1.168 +
1.169 +PR_END_EXTERN_C
1.170 +
1.171 +#endif /* PKISTORE_H */
