X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/80e2389990082500d76eb566d4946be3e786c3ef..d8f41ccd20de16f8ebe2ccc84d47bf1cb2b26bbb:/Security/libsecurity_ssl/lib/sslCrypto.h diff --git a/Security/libsecurity_ssl/lib/sslCrypto.h b/Security/libsecurity_ssl/lib/sslCrypto.h new file mode 100644 index 00000000..f5a4c1b2 --- /dev/null +++ b/Security/libsecurity_ssl/lib/sslCrypto.h @@ -0,0 +1,83 @@ +/* + * Copyright (c) 2006-2008,2010-2012,2014 Apple Inc. All Rights Reserved. + * + * @APPLE_LICENSE_HEADER_START@ + * + * This file contains Original Code and/or Modifications of Original Code + * as defined in and that are subject to the Apple Public Source License + * Version 2.0 (the 'License'). You may not use this file except in + * compliance with the License. Please obtain a copy of the License at + * http://www.opensource.apple.com/apsl/ and read it before using this + * file. + * + * The Original Code and all software distributed under the License are + * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER + * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, + * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, + * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. + * Please see the License for the specific language governing rights and + * limitations under the License. + * + * @APPLE_LICENSE_HEADER_END@ + */ + +/* + * sslCrypto.h - interface between SSL and crypto libraries + */ + +#ifndef _SSL_CRYPTO_H_ +#define _SSL_CRYPTO_H_ 1 + +#include "ssl.h" +#include "sslContext.h" +#include + +#ifdef __cplusplus +extern "C" { +#endif + +#ifndef NDEBUG +extern void stPrintCdsaError(const char *op, OSStatus crtn); +#else +#define stPrintCdsaError(o, cr) +#endif + +/* + * Get algorithm id for a SSLPubKey object. + */ +CFIndex sslPubKeyGetAlgorithmID(SecKeyRef pubKey); + +/* + * Get algorithm id for a SSLPrivKey object. + */ +CFIndex sslPrivKeyGetAlgorithmID(SecKeyRef privKey); + +/* + * Create a new SecTrust object and return it. + */ +OSStatus +sslCreateSecTrust( + SSLContext *ctx, + CFArrayRef certChain, + bool arePeerCerts, + SecTrustRef *trust); /* RETURNED */ + +OSStatus sslVerifySelectedCipher( + SSLContext *ctx); + +/* Convert DER certs to SecCertificateRefs */ +CFArrayRef tls_get_peer_certs(const SSLCertificate *certs); + +/* + * Verify the peer cert chain. + */ +int tls_verify_peer_cert(SSLContext *ctx); + + +# +#ifdef __cplusplus +} +#endif + + +#endif /* _SSL_CRYPTO_H_ */