1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/security/nss/lib/util/secoidt.h Wed Dec 31 06:09:35 2014 +0100
1.3 @@ -0,0 +1,487 @@
1.4 +/* This Source Code Form is subject to the terms of the Mozilla Public
1.5 + * License, v. 2.0. If a copy of the MPL was not distributed with this
1.6 + * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
1.7 +
1.8 +#ifndef _SECOIDT_H_
1.9 +#define _SECOIDT_H_
1.10 +
1.11 +#include "utilrename.h"
1.12 +
1.13 +/*
1.14 + * secoidt.h - public data structures for ASN.1 OID functions
1.15 + */
1.16 +
1.17 +#include "secitem.h"
1.18 +
1.19 +typedef struct SECOidDataStr SECOidData;
1.20 +typedef struct SECAlgorithmIDStr SECAlgorithmID;
1.21 +
1.22 +/*
1.23 +** An X.500 algorithm identifier
1.24 +*/
1.25 +struct SECAlgorithmIDStr {
1.26 + SECItem algorithm;
1.27 + SECItem parameters;
1.28 +};
1.29 +
1.30 +/*
1.31 + * Misc object IDs - these numbers are for convenient handling.
1.32 + * They are mapped into real object IDs
1.33 + *
1.34 + * NOTE: the order of these entries must mach the array "oids" of SECOidData
1.35 + * in util/secoid.c.
1.36 + */
1.37 +typedef enum {
1.38 + SEC_OID_UNKNOWN = 0,
1.39 + SEC_OID_MD2 = 1,
1.40 + SEC_OID_MD4 = 2,
1.41 + SEC_OID_MD5 = 3,
1.42 + SEC_OID_SHA1 = 4,
1.43 + SEC_OID_RC2_CBC = 5,
1.44 + SEC_OID_RC4 = 6,
1.45 + SEC_OID_DES_EDE3_CBC = 7,
1.46 + SEC_OID_RC5_CBC_PAD = 8,
1.47 + SEC_OID_DES_ECB = 9,
1.48 + SEC_OID_DES_CBC = 10,
1.49 + SEC_OID_DES_OFB = 11,
1.50 + SEC_OID_DES_CFB = 12,
1.51 + SEC_OID_DES_MAC = 13,
1.52 + SEC_OID_DES_EDE = 14,
1.53 + SEC_OID_ISO_SHA_WITH_RSA_SIGNATURE = 15,
1.54 + SEC_OID_PKCS1_RSA_ENCRYPTION = 16,
1.55 + SEC_OID_PKCS1_MD2_WITH_RSA_ENCRYPTION = 17,
1.56 + SEC_OID_PKCS1_MD4_WITH_RSA_ENCRYPTION = 18,
1.57 + SEC_OID_PKCS1_MD5_WITH_RSA_ENCRYPTION = 19,
1.58 + SEC_OID_PKCS1_SHA1_WITH_RSA_ENCRYPTION = 20,
1.59 + SEC_OID_PKCS5_PBE_WITH_MD2_AND_DES_CBC = 21,
1.60 + SEC_OID_PKCS5_PBE_WITH_MD5_AND_DES_CBC = 22,
1.61 + SEC_OID_PKCS5_PBE_WITH_SHA1_AND_DES_CBC = 23,
1.62 + SEC_OID_PKCS7 = 24,
1.63 + SEC_OID_PKCS7_DATA = 25,
1.64 + SEC_OID_PKCS7_SIGNED_DATA = 26,
1.65 + SEC_OID_PKCS7_ENVELOPED_DATA = 27,
1.66 + SEC_OID_PKCS7_SIGNED_ENVELOPED_DATA = 28,
1.67 + SEC_OID_PKCS7_DIGESTED_DATA = 29,
1.68 + SEC_OID_PKCS7_ENCRYPTED_DATA = 30,
1.69 + SEC_OID_PKCS9_EMAIL_ADDRESS = 31,
1.70 + SEC_OID_PKCS9_UNSTRUCTURED_NAME = 32,
1.71 + SEC_OID_PKCS9_CONTENT_TYPE = 33,
1.72 + SEC_OID_PKCS9_MESSAGE_DIGEST = 34,
1.73 + SEC_OID_PKCS9_SIGNING_TIME = 35,
1.74 + SEC_OID_PKCS9_COUNTER_SIGNATURE = 36,
1.75 + SEC_OID_PKCS9_CHALLENGE_PASSWORD = 37,
1.76 + SEC_OID_PKCS9_UNSTRUCTURED_ADDRESS = 38,
1.77 + SEC_OID_PKCS9_EXTENDED_CERTIFICATE_ATTRIBUTES = 39,
1.78 + SEC_OID_PKCS9_SMIME_CAPABILITIES = 40,
1.79 + SEC_OID_AVA_COMMON_NAME = 41,
1.80 + SEC_OID_AVA_COUNTRY_NAME = 42,
1.81 + SEC_OID_AVA_LOCALITY = 43,
1.82 + SEC_OID_AVA_STATE_OR_PROVINCE = 44,
1.83 + SEC_OID_AVA_ORGANIZATION_NAME = 45,
1.84 + SEC_OID_AVA_ORGANIZATIONAL_UNIT_NAME = 46,
1.85 + SEC_OID_AVA_DN_QUALIFIER = 47,
1.86 + SEC_OID_AVA_DC = 48,
1.87 +
1.88 + SEC_OID_NS_TYPE_GIF = 49,
1.89 + SEC_OID_NS_TYPE_JPEG = 50,
1.90 + SEC_OID_NS_TYPE_URL = 51,
1.91 + SEC_OID_NS_TYPE_HTML = 52,
1.92 + SEC_OID_NS_TYPE_CERT_SEQUENCE = 53,
1.93 + SEC_OID_MISSI_KEA_DSS_OLD = 54,
1.94 + SEC_OID_MISSI_DSS_OLD = 55,
1.95 + SEC_OID_MISSI_KEA_DSS = 56,
1.96 + SEC_OID_MISSI_DSS = 57,
1.97 + SEC_OID_MISSI_KEA = 58,
1.98 + SEC_OID_MISSI_ALT_KEA = 59,
1.99 +
1.100 + /* Netscape private certificate extensions */
1.101 + SEC_OID_NS_CERT_EXT_NETSCAPE_OK = 60,
1.102 + SEC_OID_NS_CERT_EXT_ISSUER_LOGO = 61,
1.103 + SEC_OID_NS_CERT_EXT_SUBJECT_LOGO = 62,
1.104 + SEC_OID_NS_CERT_EXT_CERT_TYPE = 63,
1.105 + SEC_OID_NS_CERT_EXT_BASE_URL = 64,
1.106 + SEC_OID_NS_CERT_EXT_REVOCATION_URL = 65,
1.107 + SEC_OID_NS_CERT_EXT_CA_REVOCATION_URL = 66,
1.108 + SEC_OID_NS_CERT_EXT_CA_CRL_URL = 67,
1.109 + SEC_OID_NS_CERT_EXT_CA_CERT_URL = 68,
1.110 + SEC_OID_NS_CERT_EXT_CERT_RENEWAL_URL = 69,
1.111 + SEC_OID_NS_CERT_EXT_CA_POLICY_URL = 70,
1.112 + SEC_OID_NS_CERT_EXT_HOMEPAGE_URL = 71,
1.113 + SEC_OID_NS_CERT_EXT_ENTITY_LOGO = 72,
1.114 + SEC_OID_NS_CERT_EXT_USER_PICTURE = 73,
1.115 + SEC_OID_NS_CERT_EXT_SSL_SERVER_NAME = 74,
1.116 + SEC_OID_NS_CERT_EXT_COMMENT = 75,
1.117 + SEC_OID_NS_CERT_EXT_LOST_PASSWORD_URL = 76,
1.118 + SEC_OID_NS_CERT_EXT_CERT_RENEWAL_TIME = 77,
1.119 + SEC_OID_NS_KEY_USAGE_GOVT_APPROVED = 78,
1.120 +
1.121 + /* x.509 v3 Extensions */
1.122 + SEC_OID_X509_SUBJECT_DIRECTORY_ATTR = 79,
1.123 + SEC_OID_X509_SUBJECT_KEY_ID = 80,
1.124 + SEC_OID_X509_KEY_USAGE = 81,
1.125 + SEC_OID_X509_PRIVATE_KEY_USAGE_PERIOD = 82,
1.126 + SEC_OID_X509_SUBJECT_ALT_NAME = 83,
1.127 + SEC_OID_X509_ISSUER_ALT_NAME = 84,
1.128 + SEC_OID_X509_BASIC_CONSTRAINTS = 85,
1.129 + SEC_OID_X509_NAME_CONSTRAINTS = 86,
1.130 + SEC_OID_X509_CRL_DIST_POINTS = 87,
1.131 + SEC_OID_X509_CERTIFICATE_POLICIES = 88,
1.132 + SEC_OID_X509_POLICY_MAPPINGS = 89,
1.133 + SEC_OID_X509_POLICY_CONSTRAINTS = 90,
1.134 + SEC_OID_X509_AUTH_KEY_ID = 91,
1.135 + SEC_OID_X509_EXT_KEY_USAGE = 92,
1.136 + SEC_OID_X509_AUTH_INFO_ACCESS = 93,
1.137 +
1.138 + SEC_OID_X509_CRL_NUMBER = 94,
1.139 + SEC_OID_X509_REASON_CODE = 95,
1.140 + SEC_OID_X509_INVALID_DATE = 96,
1.141 + /* End of x.509 v3 Extensions */
1.142 +
1.143 + SEC_OID_X500_RSA_ENCRYPTION = 97,
1.144 +
1.145 + /* alg 1485 additions */
1.146 + SEC_OID_RFC1274_UID = 98,
1.147 + SEC_OID_RFC1274_MAIL = 99,
1.148 +
1.149 + /* PKCS 12 additions */
1.150 + SEC_OID_PKCS12 = 100,
1.151 + SEC_OID_PKCS12_MODE_IDS = 101,
1.152 + SEC_OID_PKCS12_ESPVK_IDS = 102,
1.153 + SEC_OID_PKCS12_BAG_IDS = 103,
1.154 + SEC_OID_PKCS12_CERT_BAG_IDS = 104,
1.155 + SEC_OID_PKCS12_OIDS = 105,
1.156 + SEC_OID_PKCS12_PBE_IDS = 106,
1.157 + SEC_OID_PKCS12_SIGNATURE_IDS = 107,
1.158 + SEC_OID_PKCS12_ENVELOPING_IDS = 108,
1.159 + /* SEC_OID_PKCS12_OFFLINE_TRANSPORT_MODE,
1.160 + SEC_OID_PKCS12_ONLINE_TRANSPORT_MODE, */
1.161 + SEC_OID_PKCS12_PKCS8_KEY_SHROUDING = 109,
1.162 + SEC_OID_PKCS12_KEY_BAG_ID = 110,
1.163 + SEC_OID_PKCS12_CERT_AND_CRL_BAG_ID = 111,
1.164 + SEC_OID_PKCS12_SECRET_BAG_ID = 112,
1.165 + SEC_OID_PKCS12_X509_CERT_CRL_BAG = 113,
1.166 + SEC_OID_PKCS12_SDSI_CERT_BAG = 114,
1.167 + SEC_OID_PKCS12_PBE_WITH_SHA1_AND_128_BIT_RC4 = 115,
1.168 + SEC_OID_PKCS12_PBE_WITH_SHA1_AND_40_BIT_RC4 = 116,
1.169 + SEC_OID_PKCS12_PBE_WITH_SHA1_AND_TRIPLE_DES_CBC = 117,
1.170 + SEC_OID_PKCS12_PBE_WITH_SHA1_AND_128_BIT_RC2_CBC = 118,
1.171 + SEC_OID_PKCS12_PBE_WITH_SHA1_AND_40_BIT_RC2_CBC = 119,
1.172 + SEC_OID_PKCS12_RSA_ENCRYPTION_WITH_128_BIT_RC4 = 120,
1.173 + SEC_OID_PKCS12_RSA_ENCRYPTION_WITH_40_BIT_RC4 = 121,
1.174 + SEC_OID_PKCS12_RSA_ENCRYPTION_WITH_TRIPLE_DES = 122,
1.175 + SEC_OID_PKCS12_RSA_SIGNATURE_WITH_SHA1_DIGEST = 123,
1.176 + /* end of PKCS 12 additions */
1.177 +
1.178 + /* DSA signatures */
1.179 + SEC_OID_ANSIX9_DSA_SIGNATURE = 124,
1.180 + SEC_OID_ANSIX9_DSA_SIGNATURE_WITH_SHA1_DIGEST = 125,
1.181 + SEC_OID_BOGUS_DSA_SIGNATURE_WITH_SHA1_DIGEST = 126,
1.182 +
1.183 + /* Verisign OIDs */
1.184 + SEC_OID_VERISIGN_USER_NOTICES = 127,
1.185 +
1.186 + /* PKIX OIDs */
1.187 + SEC_OID_PKIX_CPS_POINTER_QUALIFIER = 128,
1.188 + SEC_OID_PKIX_USER_NOTICE_QUALIFIER = 129,
1.189 + SEC_OID_PKIX_OCSP = 130,
1.190 + SEC_OID_PKIX_OCSP_BASIC_RESPONSE = 131,
1.191 + SEC_OID_PKIX_OCSP_NONCE = 132,
1.192 + SEC_OID_PKIX_OCSP_CRL = 133,
1.193 + SEC_OID_PKIX_OCSP_RESPONSE = 134,
1.194 + SEC_OID_PKIX_OCSP_NO_CHECK = 135,
1.195 + SEC_OID_PKIX_OCSP_ARCHIVE_CUTOFF = 136,
1.196 + SEC_OID_PKIX_OCSP_SERVICE_LOCATOR = 137,
1.197 + SEC_OID_PKIX_REGCTRL_REGTOKEN = 138,
1.198 + SEC_OID_PKIX_REGCTRL_AUTHENTICATOR = 139,
1.199 + SEC_OID_PKIX_REGCTRL_PKIPUBINFO = 140,
1.200 + SEC_OID_PKIX_REGCTRL_PKI_ARCH_OPTIONS = 141,
1.201 + SEC_OID_PKIX_REGCTRL_OLD_CERT_ID = 142,
1.202 + SEC_OID_PKIX_REGCTRL_PROTOCOL_ENC_KEY = 143,
1.203 + SEC_OID_PKIX_REGINFO_UTF8_PAIRS = 144,
1.204 + SEC_OID_PKIX_REGINFO_CERT_REQUEST = 145,
1.205 + SEC_OID_EXT_KEY_USAGE_SERVER_AUTH = 146,
1.206 + SEC_OID_EXT_KEY_USAGE_CLIENT_AUTH = 147,
1.207 + SEC_OID_EXT_KEY_USAGE_CODE_SIGN = 148,
1.208 + SEC_OID_EXT_KEY_USAGE_EMAIL_PROTECT = 149,
1.209 + SEC_OID_EXT_KEY_USAGE_TIME_STAMP = 150,
1.210 + SEC_OID_OCSP_RESPONDER = 151,
1.211 +
1.212 + /* Netscape Algorithm OIDs */
1.213 + SEC_OID_NETSCAPE_SMIME_KEA = 152,
1.214 +
1.215 + /* Skipjack OID -- ### mwelch temporary */
1.216 + SEC_OID_FORTEZZA_SKIPJACK = 153,
1.217 +
1.218 + /* PKCS 12 V2 oids */
1.219 + SEC_OID_PKCS12_V2_PBE_WITH_SHA1_AND_128_BIT_RC4 = 154,
1.220 + SEC_OID_PKCS12_V2_PBE_WITH_SHA1_AND_40_BIT_RC4 = 155,
1.221 + SEC_OID_PKCS12_V2_PBE_WITH_SHA1_AND_3KEY_TRIPLE_DES_CBC = 156,
1.222 + SEC_OID_PKCS12_V2_PBE_WITH_SHA1_AND_2KEY_TRIPLE_DES_CBC = 157,
1.223 + SEC_OID_PKCS12_V2_PBE_WITH_SHA1_AND_128_BIT_RC2_CBC = 158,
1.224 + SEC_OID_PKCS12_V2_PBE_WITH_SHA1_AND_40_BIT_RC2_CBC = 159,
1.225 + SEC_OID_PKCS12_SAFE_CONTENTS_ID = 160,
1.226 + SEC_OID_PKCS12_PKCS8_SHROUDED_KEY_BAG_ID = 161,
1.227 +
1.228 + SEC_OID_PKCS12_V1_KEY_BAG_ID = 162,
1.229 + SEC_OID_PKCS12_V1_PKCS8_SHROUDED_KEY_BAG_ID = 163,
1.230 + SEC_OID_PKCS12_V1_CERT_BAG_ID = 164,
1.231 + SEC_OID_PKCS12_V1_CRL_BAG_ID = 165,
1.232 + SEC_OID_PKCS12_V1_SECRET_BAG_ID = 166,
1.233 + SEC_OID_PKCS12_V1_SAFE_CONTENTS_BAG_ID = 167,
1.234 + SEC_OID_PKCS9_X509_CERT = 168,
1.235 + SEC_OID_PKCS9_SDSI_CERT = 169,
1.236 + SEC_OID_PKCS9_X509_CRL = 170,
1.237 + SEC_OID_PKCS9_FRIENDLY_NAME = 171,
1.238 + SEC_OID_PKCS9_LOCAL_KEY_ID = 172,
1.239 + SEC_OID_BOGUS_KEY_USAGE = 173,
1.240 +
1.241 + /*Diffe Helman OIDS */
1.242 + SEC_OID_X942_DIFFIE_HELMAN_KEY = 174,
1.243 +
1.244 + /* Netscape other name types */
1.245 + /* SEC_OID_NETSCAPE_NICKNAME is an otherName field of type IA5String
1.246 + * in the subjectAltName certificate extension. NSS dropped support
1.247 + * for SEC_OID_NETSCAPE_NICKNAME in NSS 3.13. */
1.248 + SEC_OID_NETSCAPE_NICKNAME = 175,
1.249 +
1.250 + /* Cert Server OIDS */
1.251 + SEC_OID_NETSCAPE_RECOVERY_REQUEST = 176,
1.252 +
1.253 + /* New PSM certificate management OIDs */
1.254 + SEC_OID_CERT_RENEWAL_LOCATOR = 177,
1.255 + SEC_OID_NS_CERT_EXT_SCOPE_OF_USE = 178,
1.256 +
1.257 + /* CMS (RFC2630) OIDs */
1.258 + SEC_OID_CMS_EPHEMERAL_STATIC_DIFFIE_HELLMAN = 179,
1.259 + SEC_OID_CMS_3DES_KEY_WRAP = 180,
1.260 + SEC_OID_CMS_RC2_KEY_WRAP = 181,
1.261 +
1.262 + /* SMIME attributes */
1.263 + SEC_OID_SMIME_ENCRYPTION_KEY_PREFERENCE = 182,
1.264 +
1.265 + /* AES OIDs */
1.266 + SEC_OID_AES_128_ECB = 183,
1.267 + SEC_OID_AES_128_CBC = 184,
1.268 + SEC_OID_AES_192_ECB = 185,
1.269 + SEC_OID_AES_192_CBC = 186,
1.270 + SEC_OID_AES_256_ECB = 187,
1.271 + SEC_OID_AES_256_CBC = 188,
1.272 +
1.273 + SEC_OID_SDN702_DSA_SIGNATURE = 189,
1.274 +
1.275 + SEC_OID_MS_SMIME_ENCRYPTION_KEY_PREFERENCE = 190,
1.276 +
1.277 + SEC_OID_SHA256 = 191,
1.278 + SEC_OID_SHA384 = 192,
1.279 + SEC_OID_SHA512 = 193,
1.280 +
1.281 + SEC_OID_PKCS1_SHA256_WITH_RSA_ENCRYPTION = 194,
1.282 + SEC_OID_PKCS1_SHA384_WITH_RSA_ENCRYPTION = 195,
1.283 + SEC_OID_PKCS1_SHA512_WITH_RSA_ENCRYPTION = 196,
1.284 +
1.285 + SEC_OID_AES_128_KEY_WRAP = 197,
1.286 + SEC_OID_AES_192_KEY_WRAP = 198,
1.287 + SEC_OID_AES_256_KEY_WRAP = 199,
1.288 +
1.289 + /* Elliptic Curve Cryptography (ECC) OIDs */
1.290 + SEC_OID_ANSIX962_EC_PUBLIC_KEY = 200,
1.291 + SEC_OID_ANSIX962_ECDSA_SHA1_SIGNATURE = 201,
1.292 +
1.293 +#define SEC_OID_ANSIX962_ECDSA_SIGNATURE_WITH_SHA1_DIGEST \
1.294 + SEC_OID_ANSIX962_ECDSA_SHA1_SIGNATURE
1.295 +
1.296 + /* ANSI X9.62 named elliptic curves (prime field) */
1.297 + SEC_OID_ANSIX962_EC_PRIME192V1 = 202,
1.298 + SEC_OID_ANSIX962_EC_PRIME192V2 = 203,
1.299 + SEC_OID_ANSIX962_EC_PRIME192V3 = 204,
1.300 + SEC_OID_ANSIX962_EC_PRIME239V1 = 205,
1.301 + SEC_OID_ANSIX962_EC_PRIME239V2 = 206,
1.302 + SEC_OID_ANSIX962_EC_PRIME239V3 = 207,
1.303 + SEC_OID_ANSIX962_EC_PRIME256V1 = 208,
1.304 +
1.305 + /* SECG named elliptic curves (prime field) */
1.306 + SEC_OID_SECG_EC_SECP112R1 = 209,
1.307 + SEC_OID_SECG_EC_SECP112R2 = 210,
1.308 + SEC_OID_SECG_EC_SECP128R1 = 211,
1.309 + SEC_OID_SECG_EC_SECP128R2 = 212,
1.310 + SEC_OID_SECG_EC_SECP160K1 = 213,
1.311 + SEC_OID_SECG_EC_SECP160R1 = 214,
1.312 + SEC_OID_SECG_EC_SECP160R2 = 215,
1.313 + SEC_OID_SECG_EC_SECP192K1 = 216,
1.314 + /* SEC_OID_SECG_EC_SECP192R1 is SEC_OID_ANSIX962_EC_PRIME192V1 */
1.315 + SEC_OID_SECG_EC_SECP224K1 = 217,
1.316 + SEC_OID_SECG_EC_SECP224R1 = 218,
1.317 + SEC_OID_SECG_EC_SECP256K1 = 219,
1.318 + /* SEC_OID_SECG_EC_SECP256R1 is SEC_OID_ANSIX962_EC_PRIME256V1 */
1.319 + SEC_OID_SECG_EC_SECP384R1 = 220,
1.320 + SEC_OID_SECG_EC_SECP521R1 = 221,
1.321 +
1.322 + /* ANSI X9.62 named elliptic curves (characteristic two field) */
1.323 + SEC_OID_ANSIX962_EC_C2PNB163V1 = 222,
1.324 + SEC_OID_ANSIX962_EC_C2PNB163V2 = 223,
1.325 + SEC_OID_ANSIX962_EC_C2PNB163V3 = 224,
1.326 + SEC_OID_ANSIX962_EC_C2PNB176V1 = 225,
1.327 + SEC_OID_ANSIX962_EC_C2TNB191V1 = 226,
1.328 + SEC_OID_ANSIX962_EC_C2TNB191V2 = 227,
1.329 + SEC_OID_ANSIX962_EC_C2TNB191V3 = 228,
1.330 + SEC_OID_ANSIX962_EC_C2ONB191V4 = 229,
1.331 + SEC_OID_ANSIX962_EC_C2ONB191V5 = 230,
1.332 + SEC_OID_ANSIX962_EC_C2PNB208W1 = 231,
1.333 + SEC_OID_ANSIX962_EC_C2TNB239V1 = 232,
1.334 + SEC_OID_ANSIX962_EC_C2TNB239V2 = 233,
1.335 + SEC_OID_ANSIX962_EC_C2TNB239V3 = 234,
1.336 + SEC_OID_ANSIX962_EC_C2ONB239V4 = 235,
1.337 + SEC_OID_ANSIX962_EC_C2ONB239V5 = 236,
1.338 + SEC_OID_ANSIX962_EC_C2PNB272W1 = 237,
1.339 + SEC_OID_ANSIX962_EC_C2PNB304W1 = 238,
1.340 + SEC_OID_ANSIX962_EC_C2TNB359V1 = 239,
1.341 + SEC_OID_ANSIX962_EC_C2PNB368W1 = 240,
1.342 + SEC_OID_ANSIX962_EC_C2TNB431R1 = 241,
1.343 +
1.344 + /* SECG named elliptic curves (characteristic two field) */
1.345 + SEC_OID_SECG_EC_SECT113R1 = 242,
1.346 + SEC_OID_SECG_EC_SECT113R2 = 243,
1.347 + SEC_OID_SECG_EC_SECT131R1 = 244,
1.348 + SEC_OID_SECG_EC_SECT131R2 = 245,
1.349 + SEC_OID_SECG_EC_SECT163K1 = 246,
1.350 + SEC_OID_SECG_EC_SECT163R1 = 247,
1.351 + SEC_OID_SECG_EC_SECT163R2 = 248,
1.352 + SEC_OID_SECG_EC_SECT193R1 = 249,
1.353 + SEC_OID_SECG_EC_SECT193R2 = 250,
1.354 + SEC_OID_SECG_EC_SECT233K1 = 251,
1.355 + SEC_OID_SECG_EC_SECT233R1 = 252,
1.356 + SEC_OID_SECG_EC_SECT239K1 = 253,
1.357 + SEC_OID_SECG_EC_SECT283K1 = 254,
1.358 + SEC_OID_SECG_EC_SECT283R1 = 255,
1.359 + SEC_OID_SECG_EC_SECT409K1 = 256,
1.360 + SEC_OID_SECG_EC_SECT409R1 = 257,
1.361 + SEC_OID_SECG_EC_SECT571K1 = 258,
1.362 + SEC_OID_SECG_EC_SECT571R1 = 259,
1.363 +
1.364 + SEC_OID_NETSCAPE_AOLSCREENNAME = 260,
1.365 +
1.366 + SEC_OID_AVA_SURNAME = 261,
1.367 + SEC_OID_AVA_SERIAL_NUMBER = 262,
1.368 + SEC_OID_AVA_STREET_ADDRESS = 263,
1.369 + SEC_OID_AVA_TITLE = 264,
1.370 + SEC_OID_AVA_POSTAL_ADDRESS = 265,
1.371 + SEC_OID_AVA_POSTAL_CODE = 266,
1.372 + SEC_OID_AVA_POST_OFFICE_BOX = 267,
1.373 + SEC_OID_AVA_GIVEN_NAME = 268,
1.374 + SEC_OID_AVA_INITIALS = 269,
1.375 + SEC_OID_AVA_GENERATION_QUALIFIER = 270,
1.376 + SEC_OID_AVA_HOUSE_IDENTIFIER = 271,
1.377 + SEC_OID_AVA_PSEUDONYM = 272,
1.378 +
1.379 + /* More OIDs */
1.380 + SEC_OID_PKIX_CA_ISSUERS = 273,
1.381 + SEC_OID_PKCS9_EXTENSION_REQUEST = 274,
1.382 +
1.383 + /* new EC Signature oids */
1.384 + SEC_OID_ANSIX962_ECDSA_SIGNATURE_RECOMMENDED_DIGEST = 275,
1.385 + SEC_OID_ANSIX962_ECDSA_SIGNATURE_SPECIFIED_DIGEST = 276,
1.386 + SEC_OID_ANSIX962_ECDSA_SHA224_SIGNATURE = 277,
1.387 + SEC_OID_ANSIX962_ECDSA_SHA256_SIGNATURE = 278,
1.388 + SEC_OID_ANSIX962_ECDSA_SHA384_SIGNATURE = 279,
1.389 + SEC_OID_ANSIX962_ECDSA_SHA512_SIGNATURE = 280,
1.390 +
1.391 + /* More id-ce and id-pe OIDs from RFC 3280 */
1.392 + SEC_OID_X509_HOLD_INSTRUCTION_CODE = 281,
1.393 + SEC_OID_X509_DELTA_CRL_INDICATOR = 282,
1.394 + SEC_OID_X509_ISSUING_DISTRIBUTION_POINT = 283,
1.395 + SEC_OID_X509_CERT_ISSUER = 284,
1.396 + SEC_OID_X509_FRESHEST_CRL = 285,
1.397 + SEC_OID_X509_INHIBIT_ANY_POLICY = 286,
1.398 + SEC_OID_X509_SUBJECT_INFO_ACCESS = 287,
1.399 +
1.400 + /* Camellia OIDs (RFC3657)*/
1.401 + SEC_OID_CAMELLIA_128_CBC = 288,
1.402 + SEC_OID_CAMELLIA_192_CBC = 289,
1.403 + SEC_OID_CAMELLIA_256_CBC = 290,
1.404 +
1.405 + /* PKCS 5 V2 OIDS */
1.406 + SEC_OID_PKCS5_PBKDF2 = 291,
1.407 + SEC_OID_PKCS5_PBES2 = 292,
1.408 + SEC_OID_PKCS5_PBMAC1 = 293,
1.409 + SEC_OID_HMAC_SHA1 = 294,
1.410 + SEC_OID_HMAC_SHA224 = 295,
1.411 + SEC_OID_HMAC_SHA256 = 296,
1.412 + SEC_OID_HMAC_SHA384 = 297,
1.413 + SEC_OID_HMAC_SHA512 = 298,
1.414 +
1.415 + SEC_OID_PKIX_TIMESTAMPING = 299,
1.416 + SEC_OID_PKIX_CA_REPOSITORY = 300,
1.417 +
1.418 + SEC_OID_ISO_SHA1_WITH_RSA_SIGNATURE = 301,
1.419 +
1.420 + SEC_OID_SEED_CBC = 302,
1.421 +
1.422 + SEC_OID_X509_ANY_POLICY = 303,
1.423 +
1.424 + SEC_OID_PKCS1_RSA_OAEP_ENCRYPTION = 304,
1.425 + SEC_OID_PKCS1_MGF1 = 305,
1.426 + SEC_OID_PKCS1_PSPECIFIED = 306,
1.427 + SEC_OID_PKCS1_RSA_PSS_SIGNATURE = 307,
1.428 + SEC_OID_PKCS1_SHA224_WITH_RSA_ENCRYPTION = 308,
1.429 +
1.430 + SEC_OID_SHA224 = 309,
1.431 +
1.432 + SEC_OID_EV_INCORPORATION_LOCALITY = 310,
1.433 + SEC_OID_EV_INCORPORATION_STATE = 311,
1.434 + SEC_OID_EV_INCORPORATION_COUNTRY = 312,
1.435 + SEC_OID_BUSINESS_CATEGORY = 313,
1.436 +
1.437 + SEC_OID_NIST_DSA_SIGNATURE_WITH_SHA224_DIGEST = 314,
1.438 + SEC_OID_NIST_DSA_SIGNATURE_WITH_SHA256_DIGEST = 315,
1.439 +
1.440 + /* Microsoft Trust List Signing
1.441 + * szOID_KP_CTL_USAGE_SIGNING
1.442 + * where KP stands for Key Purpose
1.443 + */
1.444 + SEC_OID_MS_EXT_KEY_USAGE_CTL_SIGNING = 316,
1.445 +
1.446 + /* The 'name' attribute type in X.520 */
1.447 + SEC_OID_AVA_NAME = 317,
1.448 +
1.449 + SEC_OID_TOTAL
1.450 +} SECOidTag;
1.451 +
1.452 +#define SEC_OID_SECG_EC_SECP192R1 SEC_OID_ANSIX962_EC_PRIME192V1
1.453 +#define SEC_OID_SECG_EC_SECP256R1 SEC_OID_ANSIX962_EC_PRIME256V1
1.454 +#define SEC_OID_PKCS12_KEY_USAGE SEC_OID_X509_KEY_USAGE
1.455 +
1.456 +/* fake OID for DSS sign/verify */
1.457 +#define SEC_OID_SHA SEC_OID_MISS_DSS
1.458 +
1.459 +typedef enum {
1.460 + INVALID_CERT_EXTENSION = 0,
1.461 + UNSUPPORTED_CERT_EXTENSION = 1,
1.462 + SUPPORTED_CERT_EXTENSION = 2
1.463 +} SECSupportExtenTag;
1.464 +
1.465 +struct SECOidDataStr {
1.466 + SECItem oid;
1.467 + SECOidTag offset;
1.468 + const char * desc;
1.469 + unsigned long mechanism;
1.470 + SECSupportExtenTag supportedExtension;
1.471 + /* only used for x.509 v3 extensions, so
1.472 + that we can print the names of those
1.473 + extensions that we don't even support */
1.474 +};
1.475 +
1.476 +/* New Opaque extended OID table API.
1.477 + * These are algorithm policy Flags, used with functions
1.478 + * NSS_SetAlgorithmPolicy & NSS_GetAlgorithmPolicy.
1.479 + */
1.480 +#define NSS_USE_ALG_IN_CERT_SIGNATURE 0x00000001 /* CRLs and OCSP, too */
1.481 +#define NSS_USE_ALG_IN_CMS_SIGNATURE 0x00000002 /* used in S/MIME */
1.482 +#define NSS_USE_ALG_RESERVED 0xfffffffc /* may be used in future */
1.483 +
1.484 +/* Code MUST NOT SET or CLEAR reserved bits, and must NOT depend on them
1.485 + * being all zeros or having any other known value. The reserved bits
1.486 + * must be ignored.
1.487 + */
1.488 +
1.489 +
1.490 +#endif /* _SECOIDT_H_ */
