[apple/xnu.git] / EXTERNAL_HEADERS / corecrypto / ccder.h

/*
 *  ccder.h
 *  corecrypto
 *
 *  Created by Michael Brouwer on 2/28/12.
 *  Copyright 2012 Apple Inc. All rights reserved.
 *
 */

#ifndef _CORECRYPTO_CCDER_H_
#define _CORECRYPTO_CCDER_H_

#include <corecrypto/ccasn1.h>
#include <corecrypto/ccn.h>

#define CCDER_MULTIBYTE_TAGS  1

#ifdef CCDER_MULTIBYTE_TAGS
typedef unsigned long ccder_tag;
#else
typedef uint8_t ccder_tag;
#endif

/* DER types to be used with ccder_decode and ccder_encode functions. */
enum {
    CCDER_EOL               = CCASN1_EOL,
    CCDER_BOOLEAN           = CCASN1_BOOLEAN,
    CCDER_INTEGER           = CCASN1_INTEGER,
    CCDER_BIT_STRING        = CCASN1_BIT_STRING,
    CCDER_OCTET_STRING      = CCASN1_OCTET_STRING,
    CCDER_NULL              = CCASN1_NULL,
    CCDER_OBJECT_IDENTIFIER = CCASN1_OBJECT_IDENTIFIER,
    CCDER_OBJECT_DESCRIPTOR = CCASN1_OBJECT_DESCRIPTOR,
    /* External or instance-of 0x08 */
    CCDER_REAL              = CCASN1_REAL,
    CCDER_ENUMERATED        = CCASN1_ENUMERATED,
    CCDER_EMBEDDED_PDV      = CCASN1_EMBEDDED_PDV,
    CCDER_UTF8_STRING       = CCASN1_UTF8_STRING,
    /*                         0x0d */
    /*                         0x0e */
    /*                         0x0f */
    CCDER_SEQUENCE          = CCASN1_SEQUENCE,
    CCDER_SET               = CCASN1_SET,
    CCDER_NUMERIC_STRING    = CCASN1_NUMERIC_STRING,
    CCDER_PRINTABLE_STRING  = CCASN1_PRINTABLE_STRING,
    CCDER_T61_STRING        = CCASN1_T61_STRING,
    CCDER_VIDEOTEX_STRING   = CCASN1_VIDEOTEX_STRING,
    CCDER_IA5_STRING        = CCASN1_IA5_STRING,
    CCDER_UTC_TIME          = CCASN1_UTC_TIME,
    CCDER_GENERALIZED_TIME  = CCASN1_GENERALIZED_TIME,
    CCDER_GRAPHIC_STRING    = CCASN1_GRAPHIC_STRING,
    CCDER_VISIBLE_STRING    = CCASN1_VISIBLE_STRING,
    CCDER_GENERAL_STRING    = CCASN1_GENERAL_STRING,
    CCDER_UNIVERSAL_STRING  = CCASN1_UNIVERSAL_STRING,
    /*                         0x1d */
    CCDER_BMP_STRING        = CCASN1_BMP_STRING,
    CCDER_HIGH_TAG_NUMBER   = CCASN1_HIGH_TAG_NUMBER,
    CCDER_TELETEX_STRING    = CCDER_T61_STRING,

#ifdef CCDER_MULTIBYTE_TAGS
    CCDER_TAG_MASK          = ((ccder_tag)~0),
    CCDER_TAGNUM_MASK       = ((ccder_tag)~((ccder_tag)7 << (sizeof(ccder_tag) * 8 - 3))),

    CCDER_METHOD_MASK       = ((ccder_tag)1 << (sizeof(ccder_tag) * 8 - 3)),
    CCDER_PRIMITIVE         = ((ccder_tag)0 << (sizeof(ccder_tag) * 8 - 3)),
    CCDER_CONSTRUCTED       = ((ccder_tag)1 << (sizeof(ccder_tag) * 8 - 3)),

    CCDER_CLASS_MASK        = ((ccder_tag)3 << (sizeof(ccder_tag) * 8 - 2)),
    CCDER_UNIVERSAL         = ((ccder_tag)0 << (sizeof(ccder_tag) * 8 - 2)),
    CCDER_APPLICATION       = ((ccder_tag)1 << (sizeof(ccder_tag) * 8 - 2)),
    CCDER_CONTEXT_SPECIFIC  = ((ccder_tag)2 << (sizeof(ccder_tag) * 8 - 2)),
    CCDER_PRIVATE           = ((ccder_tag)3 << (sizeof(ccder_tag) * 8 - 2)),
#else
    CCDER_TAG_MASK			= CCASN1_TAG_MASK,
    CCDER_TAGNUM_MASK		= CCASN1_TAGNUM_MASK,

    CCDER_METHOD_MASK		= CCASN1_METHOD_MASK,
    CCDER_PRIMITIVE         = CCASN1_PRIMITIVE,
    CCDER_CONSTRUCTED		= CCASN1_CONSTRUCTED,

    CCDER_CLASS_MASK		= CCASN1_CLASS_MASK,
    CCDER_UNIVERSAL         = CCASN1_UNIVERSAL,
    CCDER_APPLICATION		= CCASN1_APPLICATION,
    CCDER_CONTEXT_SPECIFIC	= CCASN1_CONTEXT_SPECIFIC,
    CCDER_PRIVATE			= CCASN1_PRIVATE,
#endif
    CCDER_CONSTRUCTED_SET   = CCDER_SET | CCDER_CONSTRUCTED,
    CCDER_CONSTRUCTED_SEQUENCE = CCDER_SEQUENCE | CCDER_CONSTRUCTED,
};


#define CC_NO_INLINE
// MARK: ccder_sizeof_ functions

/* Returns the size of an asn1 encoded item of length l in bytes. */
CC_NO_INLINE CC_CONST
size_t ccder_sizeof(ccder_tag tag, size_t len);

CC_NO_INLINE CC_PURE
size_t ccder_sizeof_implicit_integer(ccder_tag implicit_tag,
                                     cc_size n, const cc_unit *s);

CC_NO_INLINE CC_PURE
size_t ccder_sizeof_implicit_octet_string(ccder_tag implicit_tag,
                                          cc_size n, const cc_unit *s);

CC_NO_INLINE CC_CONST
size_t ccder_sizeof_implicit_raw_octet_string(ccder_tag implicit_tag,
                                              size_t s_size);
CC_NO_INLINE CC_CONST
size_t ccder_sizeof_implicit_uint64(ccder_tag implicit_tag, uint64_t value);

CC_NO_INLINE CC_PURE
size_t ccder_sizeof_integer(cc_size n, const cc_unit *s);

CC_NO_INLINE CC_CONST
size_t ccder_sizeof_len(size_t len);

CC_NO_INLINE CC_PURE
size_t ccder_sizeof_octet_string(cc_size n, const cc_unit *s);

CC_NO_INLINE CC_PURE
size_t ccder_sizeof_oid(ccoid_t oid);

CC_NO_INLINE CC_CONST
size_t ccder_sizeof_raw_octet_string(size_t s_size);

CC_NO_INLINE CC_CONST
size_t ccder_sizeof_tag(ccder_tag tag);

CC_NO_INLINE CC_CONST
size_t ccder_sizeof_uint64(uint64_t value);


// MARK: ccder_encode_ functions.

/* Encode a tag backwards, der_end should point to one byte past the end of
   destination for the tag, returns a pointer to the first byte of the tag.
   Returns NULL if there is an encoding error. */
CC_NO_INLINE CC_NONNULL2
uint8_t *ccder_encode_tag(ccder_tag tag, const uint8_t *der, uint8_t *der_end);

/* Returns a pointer to the start of the len field.  returns NULL if there
 is an encoding error. */
CC_NO_INLINE CC_NONNULL2
uint8_t *
ccder_encode_len(size_t len, const uint8_t *der, uint8_t *der_end);

/* der_end should point to the first byte of the content of this der item. */
CC_NO_INLINE CC_NONNULL3
uint8_t *
ccder_encode_tl(ccder_tag tag, size_t len, const uint8_t *der, uint8_t *der_end);

CC_NO_INLINE CC_PURE CC_NONNULL2
uint8_t *
ccder_encode_body_nocopy(size_t size, const uint8_t *der, uint8_t *der_end);

/* Encode the tag and length of a constructed object.  der is the lower
   bound, der_end is one byte paste where we want to write the length and
   body_end is one byte past the end of the body of the der object we are
   encoding the tag and length of. */
CC_NO_INLINE CC_NONNULL((2, 3))
uint8_t *
ccder_encode_constructed_tl(ccder_tag tag, const uint8_t *body_end,
                            const uint8_t *der, uint8_t *der_end);

/* Encodes oid into der and returns
 der + ccder_sizeof_oid(oid). */
CC_NO_INLINE CC_NONNULL_TU((1)) CC_NONNULL2
uint8_t *ccder_encode_oid(ccoid_t oid, const uint8_t *der, uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((3, 4))
uint8_t *ccder_encode_implicit_integer(ccder_tag implicit_tag,
                                       cc_size n, const cc_unit *s,
                                       const uint8_t *der, uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((2, 3))
uint8_t *ccder_encode_integer(cc_size n, const cc_unit *s,
                              const uint8_t *der, uint8_t *der_end);

CC_NO_INLINE CC_NONNULL3
uint8_t *ccder_encode_implicit_uint64(ccder_tag implicit_tag,
                                      uint64_t value,
                                      const uint8_t *der, uint8_t *der_end);

CC_NO_INLINE CC_NONNULL2
uint8_t *ccder_encode_uint64(uint64_t value,
                             const uint8_t *der, uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((3, 4))
uint8_t *ccder_encode_implicit_octet_string(ccder_tag implicit_tag,
                                            cc_size n, const cc_unit *s,
                                            const uint8_t *der,
                                            uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((2, 3))
uint8_t *ccder_encode_octet_string(cc_size n, const cc_unit *s,
                                   const uint8_t *der, uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((3, 4))
uint8_t *ccder_encode_implicit_raw_octet_string(ccder_tag implicit_tag,
                                                size_t s_size, const uint8_t *s,
                                                const uint8_t *der,
                                                uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((2, 3))
uint8_t *ccder_encode_raw_octet_string(size_t s_size, const uint8_t *s,
                                       const uint8_t *der, uint8_t *der_end);

/* ccder_encode_body COPIES the body into the der.
   It's inefficient – especially when you already have to convert to get to
   the form for the body.
   see encode integer for the right way to unify conversion and insertion */
CC_NO_INLINE CC_NONNULL3
uint8_t *
ccder_encode_body(size_t size, const uint8_t* body,
                  const uint8_t *der, uint8_t *der_end);

// MARK: ccder_decode_ functions.

/* Returns a pointer to the start of the length field, and returns the decoded tag in tag.
 returns NULL if there is a decoding error. */
CC_NO_INLINE CC_NONNULL((1, 3))
const uint8_t *ccder_decode_tag(ccder_tag *tagp, const uint8_t *der, const uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((1, 3))
const uint8_t *ccder_decode_len(size_t *lenp, const uint8_t *der, const uint8_t *der_end);

/* Returns a pointer to the start of the der object, and returns the length in len.
 returns NULL if there is a decoding error. */
CC_NO_INLINE CC_NONNULL((2, 4))
const uint8_t *ccder_decode_tl(ccder_tag expected_tag, size_t *lenp,
                               const uint8_t *der, const uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((2, 4))
const uint8_t *
ccder_decode_constructed_tl(ccder_tag expected_tag, const uint8_t **body_end,
                            const uint8_t *der, const uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((1, 3))
const uint8_t *
ccder_decode_sequence_tl(const uint8_t **body_end,
                         const uint8_t *der, const uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((2, 4))
const uint8_t *ccder_decode_uint(cc_size n, cc_unit *r,
                                 const uint8_t *der, const uint8_t *der_end);

CC_NO_INLINE CC_NONNULL((1, 3))
const uint8_t *ccder_decode_uint64(uint64_t* r,
                                   const uint8_t *der, const uint8_t *der_end);

/* Decode SEQUENCE { r, s -- (unsigned)integer } in der into r and s.
   Returns NULL on decode errors, returns pointer just past the end of the
   sequence of integers otherwise. */
CC_NO_INLINE CC_NONNULL((2, 3, 5))
const uint8_t *ccder_decode_seqii(cc_size n, cc_unit *r, cc_unit *s,
                                  const uint8_t *der, const uint8_t *der_end);
CC_NO_INLINE CC_NONNULL_TU((1)) CC_NONNULL((3))
const uint8_t *ccder_decode_oid(ccoid_t *oidp,
                                const uint8_t *der, const uint8_t *der_end);

CC_NO_INLINE CC_NONNULL_ALL
const uint8_t *ccder_decode_bitstring(const uint8_t **bit_string,
                                size_t *bit_length,
                                const uint8_t *der, const uint8_t *der_end);

CC_NO_INLINE CC_NONNULL_ALL
const uint8_t *ccder_decode_eckey(uint64_t *version,
                                  size_t *priv_size, const uint8_t **priv_key,
                                  ccoid_t *oid,
                                  size_t *pub_size, const uint8_t **pub_key,
                                  const uint8_t *der, const uint8_t *der_end);

#ifndef CCDER_MULTIBYTE_TAGS
#include <corecrypto/ccder_decode_constructed_tl.h>
#include <corecrypto/ccder_decode_len.h>
#include <corecrypto/ccder_decode_oid.h>
#include <corecrypto/ccder_decode_seqii.h>
#include <corecrypto/ccder_decode_sequence_tl.h>
#include <corecrypto/ccder_decode_tag.h>
#include <corecrypto/ccder_decode_tl.h>
#include <corecrypto/ccder_decode_uint.h>
#include <corecrypto/ccder_decode_bitstring.h>
#include <corecrypto/ccder_decode_eckey.h>
#include <corecrypto/ccder_encode_body_nocopy.h>
#include <corecrypto/ccder_encode_constructed_tl.h>
#include <corecrypto/ccder_encode_implicit_integer.h>
#include <corecrypto/ccder_encode_implicit_octet_string.h>
#include <corecrypto/ccder_encode_implicit_uint64.h>
#include <corecrypto/ccder_encode_integer.h>
#include <corecrypto/ccder_encode_len.h>
#include <corecrypto/ccder_encode_octet_string.h>
#include <corecrypto/ccder_encode_oid.h>
#include <corecrypto/ccder_encode_tag.h>
#include <corecrypto/ccder_encode_tl.h>
#include <corecrypto/ccder_encode_uint64.h>
#include <corecrypto/ccder_sizeof.h>
#include <corecrypto/ccder_sizeof_integer.h>
#include <corecrypto/ccder_sizeof_len.h>
#include <corecrypto/ccder_sizeof_oid.h>
#include <corecrypto/ccder_sizeof_tag.h>
#endif

#endif /* _CORECRYPTO_CCDER_H_ */
Commit	Line	Data
316670eb A	1	/*
	2	* ccder.h
	3	* corecrypto
	4	*
	5	* Created by Michael Brouwer on 2/28/12.
	6	* Copyright 2012 Apple Inc. All rights reserved.
	7	*
	8	*/
	9
	10	#ifndef _CORECRYPTO_CCDER_H_
	11	#define _CORECRYPTO_CCDER_H_
	12
	13	#include <corecrypto/ccasn1.h>
	14	#include <corecrypto/ccn.h>
	15
	16	#define CCDER_MULTIBYTE_TAGS 1
	17
	18	#ifdef CCDER_MULTIBYTE_TAGS
	19	typedef unsigned long ccder_tag;
	20	#else
	21	typedef uint8_t ccder_tag;
	22	#endif
	23
	24	/* DER types to be used with ccder_decode and ccder_encode functions. */
	25	enum {
	26	CCDER_EOL = CCASN1_EOL,
	27	CCDER_BOOLEAN = CCASN1_BOOLEAN,
	28	CCDER_INTEGER = CCASN1_INTEGER,
	29	CCDER_BIT_STRING = CCASN1_BIT_STRING,
	30	CCDER_OCTET_STRING = CCASN1_OCTET_STRING,
	31	CCDER_NULL = CCASN1_NULL,
	32	CCDER_OBJECT_IDENTIFIER = CCASN1_OBJECT_IDENTIFIER,
	33	CCDER_OBJECT_DESCRIPTOR = CCASN1_OBJECT_DESCRIPTOR,
	34	/* External or instance-of 0x08 */
	35	CCDER_REAL = CCASN1_REAL,
	36	CCDER_ENUMERATED = CCASN1_ENUMERATED,
	37	CCDER_EMBEDDED_PDV = CCASN1_EMBEDDED_PDV,
	38	CCDER_UTF8_STRING = CCASN1_UTF8_STRING,
	39	/* 0x0d */
	40	/* 0x0e */
	41	/* 0x0f */
	42	CCDER_SEQUENCE = CCASN1_SEQUENCE,
	43	CCDER_SET = CCASN1_SET,
	44	CCDER_NUMERIC_STRING = CCASN1_NUMERIC_STRING,
	45	CCDER_PRINTABLE_STRING = CCASN1_PRINTABLE_STRING,
	46	CCDER_T61_STRING = CCASN1_T61_STRING,
	47	CCDER_VIDEOTEX_STRING = CCASN1_VIDEOTEX_STRING,
	48	CCDER_IA5_STRING = CCASN1_IA5_STRING,
	49	CCDER_UTC_TIME = CCASN1_UTC_TIME,
	50	CCDER_GENERALIZED_TIME = CCASN1_GENERALIZED_TIME,
	51	CCDER_GRAPHIC_STRING = CCASN1_GRAPHIC_STRING,
	52	CCDER_VISIBLE_STRING = CCASN1_VISIBLE_STRING,
	53	CCDER_GENERAL_STRING = CCASN1_GENERAL_STRING,
	54	CCDER_UNIVERSAL_STRING = CCASN1_UNIVERSAL_STRING,
	55	/* 0x1d */
	56	CCDER_BMP_STRING = CCASN1_BMP_STRING,
	57	CCDER_HIGH_TAG_NUMBER = CCASN1_HIGH_TAG_NUMBER,
	58	CCDER_TELETEX_STRING = CCDER_T61_STRING,
	59
	60	#ifdef CCDER_MULTIBYTE_TAGS
	61	CCDER_TAG_MASK = ((ccder_tag)~0),
	62	CCDER_TAGNUM_MASK = ((ccder_tag)~((ccder_tag)7 << (sizeof(ccder_tag) * 8 - 3))),
	63
	64	CCDER_METHOD_MASK = ((ccder_tag)1 << (sizeof(ccder_tag) * 8 - 3)),
65	CCDER_PRIMITIVE = ((ccder_tag)0 << (sizeof(ccder_tag) * 8 - 3)),
66	CCDER_CONSTRUCTED = ((ccder_tag)1 << (sizeof(ccder_tag) * 8 - 3)),
67
68	CCDER_CLASS_MASK = ((ccder_tag)3 << (sizeof(ccder_tag) * 8 - 2)),
69	CCDER_UNIVERSAL = ((ccder_tag)0 << (sizeof(ccder_tag) * 8 - 2)),
70	CCDER_APPLICATION = ((ccder_tag)1 << (sizeof(ccder_tag) * 8 - 2)),
71	CCDER_CONTEXT_SPECIFIC = ((ccder_tag)2 << (sizeof(ccder_tag) * 8 - 2)),
72	CCDER_PRIVATE = ((ccder_tag)3 << (sizeof(ccder_tag) * 8 - 2)),
73	#else
74	CCDER_TAG_MASK = CCASN1_TAG_MASK,
75	CCDER_TAGNUM_MASK = CCASN1_TAGNUM_MASK,
76
77	CCDER_METHOD_MASK = CCASN1_METHOD_MASK,
78	CCDER_PRIMITIVE = CCASN1_PRIMITIVE,
79	CCDER_CONSTRUCTED = CCASN1_CONSTRUCTED,
80
81	CCDER_CLASS_MASK = CCASN1_CLASS_MASK,
82	CCDER_UNIVERSAL = CCASN1_UNIVERSAL,
83	CCDER_APPLICATION = CCASN1_APPLICATION,
84	CCDER_CONTEXT_SPECIFIC = CCASN1_CONTEXT_SPECIFIC,
85	CCDER_PRIVATE = CCASN1_PRIVATE,
86	#endif
87	CCDER_CONSTRUCTED_SET = CCDER_SET \| CCDER_CONSTRUCTED,
88	CCDER_CONSTRUCTED_SEQUENCE = CCDER_SEQUENCE \| CCDER_CONSTRUCTED,
89	};
90
91
fe8ab488 A	92	#define CC_NO_INLINE
fe8ab488 A	93	// MARK: ccder_sizeof_ functions
316670eb	94
fe8ab488 A	95	/* Returns the size of an asn1 encoded item of length l in bytes. */
	96	CC_NO_INLINE CC_CONST
	97	size_t ccder_sizeof(ccder_tag tag, size_t len);
	98
	99	CC_NO_INLINE CC_PURE
	100	size_t ccder_sizeof_implicit_integer(ccder_tag implicit_tag,
	101	cc_size n, const cc_unit *s);
	102
	103	CC_NO_INLINE CC_PURE
	104	size_t ccder_sizeof_implicit_octet_string(ccder_tag implicit_tag,
	105	cc_size n, const cc_unit *s);
316670eb	106
fe8ab488 A	107	CC_NO_INLINE CC_CONST
	108	size_t ccder_sizeof_implicit_raw_octet_string(ccder_tag implicit_tag,
	109	size_t s_size);
	110	CC_NO_INLINE CC_CONST
	111	size_t ccder_sizeof_implicit_uint64(ccder_tag implicit_tag, uint64_t value);
	112
	113	CC_NO_INLINE CC_PURE
	114	size_t ccder_sizeof_integer(cc_size n, const cc_unit *s);
	115
	116	CC_NO_INLINE CC_CONST
316670eb A	117	size_t ccder_sizeof_len(size_t len);
316670eb A	118
fe8ab488 A	119	CC_NO_INLINE CC_PURE
fe8ab488 A	120	size_t ccder_sizeof_octet_string(cc_size n, const cc_unit *s);
316670eb	121
fe8ab488	122	CC_NO_INLINE CC_PURE
316670eb A	123	size_t ccder_sizeof_oid(ccoid_t oid);
316670eb A	124
fe8ab488 A	125	CC_NO_INLINE CC_CONST
	126	size_t ccder_sizeof_raw_octet_string(size_t s_size);
	127
	128	CC_NO_INLINE CC_CONST
	129	size_t ccder_sizeof_tag(ccder_tag tag);
	130
	131	CC_NO_INLINE CC_CONST
	132	size_t ccder_sizeof_uint64(uint64_t value);
	133
	134
	135	// MARK: ccder_encode_ functions.
316670eb A	136
	137	/* Encode a tag backwards, der_end should point to one byte past the end of
	138	destination for the tag, returns a pointer to the first byte of the tag.
	139	Returns NULL if there is an encoding error. */
fe8ab488	140	CC_NO_INLINE CC_NONNULL2
316670eb A	141	uint8_t ccder_encode_tag(ccder_tag tag, const uint8_t der, uint8_t *der_end);
	142
	143	/* Returns a pointer to the start of the len field. returns NULL if there
	144	is an encoding error. */
fe8ab488	145	CC_NO_INLINE CC_NONNULL2
316670eb A	146	uint8_t *
	147	ccder_encode_len(size_t len, const uint8_t der, uint8_t der_end);
	148
	149	/* der_end should point to the first byte of the content of this der item. */
fe8ab488	150	CC_NO_INLINE CC_NONNULL3
316670eb A	151	uint8_t *
	152	ccder_encode_tl(ccder_tag tag, size_t len, const uint8_t der, uint8_t der_end);
	153
fe8ab488	154	CC_NO_INLINE CC_PURE CC_NONNULL2
316670eb A	155	uint8_t *
	156	ccder_encode_body_nocopy(size_t size, const uint8_t der, uint8_t der_end);
	157
	158	/* Encode the tag and length of a constructed object. der is the lower
	159	bound, der_end is one byte paste where we want to write the length and
	160	body_end is one byte past the end of the body of the der object we are
	161	encoding the tag and length of. */
fe8ab488	162	CC_NO_INLINE CC_NONNULL((2, 3))
316670eb A	163	uint8_t *
	164	ccder_encode_constructed_tl(ccder_tag tag, const uint8_t *body_end,
	165	const uint8_t der, uint8_t der_end);
	166
	167	/* Encodes oid into der and returns
	168	der + ccder_sizeof_oid(oid). */
fe8ab488	169	CC_NO_INLINE CC_NONNULL_TU((1)) CC_NONNULL2
316670eb A	170	uint8_t ccder_encode_oid(ccoid_t oid, const uint8_t der, uint8_t *der_end);
316670eb A	171
fe8ab488	172	CC_NO_INLINE CC_NONNULL((3, 4))
316670eb A	173	uint8_t *ccder_encode_implicit_integer(ccder_tag implicit_tag,
	174	cc_size n, const cc_unit *s,
	175	const uint8_t der, uint8_t der_end);
	176
fe8ab488	177	CC_NO_INLINE CC_NONNULL((2, 3))
316670eb A	178	uint8_t ccder_encode_integer(cc_size n, const cc_unit s,
	179	const uint8_t der, uint8_t der_end);
	180
fe8ab488	181	CC_NO_INLINE CC_NONNULL3
316670eb A	182	uint8_t *ccder_encode_implicit_uint64(ccder_tag implicit_tag,
	183	uint64_t value,
	184	const uint8_t der, uint8_t der_end);
	185
fe8ab488	186	CC_NO_INLINE CC_NONNULL2
316670eb A	187	uint8_t *ccder_encode_uint64(uint64_t value,
	188	const uint8_t der, uint8_t der_end);
	189
fe8ab488	190	CC_NO_INLINE CC_NONNULL((3, 4))
316670eb A	191	uint8_t *ccder_encode_implicit_octet_string(ccder_tag implicit_tag,
	192	cc_size n, const cc_unit *s,
	193	const uint8_t *der,
	194	uint8_t *der_end);
	195
fe8ab488	196	CC_NO_INLINE CC_NONNULL((2, 3))
316670eb A	197	uint8_t ccder_encode_octet_string(cc_size n, const cc_unit s,
	198	const uint8_t der, uint8_t der_end);
	199
fe8ab488	200	CC_NO_INLINE CC_NONNULL((3, 4))
316670eb A	201	uint8_t *ccder_encode_implicit_raw_octet_string(ccder_tag implicit_tag,
	202	size_t s_size, const uint8_t *s,
	203	const uint8_t *der,
	204	uint8_t *der_end);
	205
fe8ab488	206	CC_NO_INLINE CC_NONNULL((2, 3))
316670eb A	207	uint8_t ccder_encode_raw_octet_string(size_t s_size, const uint8_t s,
	208	const uint8_t der, uint8_t der_end);
	209
	210	/* ccder_encode_body COPIES the body into the der.
	211	It's inefficient – especially when you already have to convert to get to
	212	the form for the body.
	213	see encode integer for the right way to unify conversion and insertion */
fe8ab488	214	CC_NO_INLINE CC_NONNULL3
316670eb A	215	uint8_t *
	216	ccder_encode_body(size_t size, const uint8_t* body,
	217	const uint8_t der, uint8_t der_end);
	218
fe8ab488	219	// MARK: ccder_decode_ functions.
316670eb A	220
	221	/* Returns a pointer to the start of the length field, and returns the decoded tag in tag.
	222	returns NULL if there is a decoding error. */
fe8ab488	223	CC_NO_INLINE CC_NONNULL((1, 3))
316670eb A	224	const uint8_t ccder_decode_tag(ccder_tag tagp, const uint8_t der, const uint8_t der_end);
316670eb A	225
fe8ab488	226	CC_NO_INLINE CC_NONNULL((1, 3))
316670eb A	227	const uint8_t ccder_decode_len(size_t lenp, const uint8_t der, const uint8_t der_end);
	228
	229	/* Returns a pointer to the start of the der object, and returns the length in len.
	230	returns NULL if there is a decoding error. */
fe8ab488	231	CC_NO_INLINE CC_NONNULL((2, 4))
316670eb A	232	const uint8_t ccder_decode_tl(ccder_tag expected_tag, size_t lenp,
	233	const uint8_t der, const uint8_t der_end);
	234
fe8ab488	235	CC_NO_INLINE CC_NONNULL((2, 4))
316670eb A	236	const uint8_t *
	237	ccder_decode_constructed_tl(ccder_tag expected_tag, const uint8_t **body_end,
	238	const uint8_t der, const uint8_t der_end);
	239
fe8ab488	240	CC_NO_INLINE CC_NONNULL((1, 3))
316670eb A	241	const uint8_t *
	242	ccder_decode_sequence_tl(const uint8_t **body_end,
	243	const uint8_t der, const uint8_t der_end);
	244
fe8ab488	245	CC_NO_INLINE CC_NONNULL((2, 4))
316670eb A	246	const uint8_t ccder_decode_uint(cc_size n, cc_unit r,
	247	const uint8_t der, const uint8_t der_end);
	248
fe8ab488	249	CC_NO_INLINE CC_NONNULL((1, 3))
316670eb A	250	const uint8_t ccder_decode_uint64(uint64_t r,
	251	const uint8_t der, const uint8_t der_end);
	252
	253	/* Decode SEQUENCE { r, s -- (unsigned)integer } in der into r and s.
	254	Returns NULL on decode errors, returns pointer just past the end of the
	255	sequence of integers otherwise. */
fe8ab488	256	CC_NO_INLINE CC_NONNULL((2, 3, 5))
316670eb A	257	const uint8_t ccder_decode_seqii(cc_size n, cc_unit r, cc_unit *s,
316670eb A	258	const uint8_t der, const uint8_t der_end);
fe8ab488	259	CC_NO_INLINE CC_NONNULL_TU((1)) CC_NONNULL((3))
316670eb A	260	const uint8_t ccder_decode_oid(ccoid_t oidp,
	261	const uint8_t der, const uint8_t der_end);
	262
fe8ab488 A	263	CC_NO_INLINE CC_NONNULL_ALL
	264	const uint8_t ccder_decode_bitstring(const uint8_t *bit_string,
	265	size_t *bit_length,
	266	const uint8_t der, const uint8_t der_end);
	267
	268	CC_NO_INLINE CC_NONNULL_ALL
	269	const uint8_t ccder_decode_eckey(uint64_t version,
	270	size_t priv_size, const uint8_t *priv_key,
	271	ccoid_t *oid,
	272	size_t pub_size, const uint8_t *pub_key,
	273	const uint8_t der, const uint8_t der_end);
	274
316670eb A	275	#ifndef CCDER_MULTIBYTE_TAGS
	276	#include <corecrypto/ccder_decode_constructed_tl.h>
	277	#include <corecrypto/ccder_decode_len.h>
	278	#include <corecrypto/ccder_decode_oid.h>
	279	#include <corecrypto/ccder_decode_seqii.h>
	280	#include <corecrypto/ccder_decode_sequence_tl.h>
	281	#include <corecrypto/ccder_decode_tag.h>
	282	#include <corecrypto/ccder_decode_tl.h>
	283	#include <corecrypto/ccder_decode_uint.h>
fe8ab488 A	284	#include <corecrypto/ccder_decode_bitstring.h>
fe8ab488 A	285	#include <corecrypto/ccder_decode_eckey.h>
316670eb A	286	#include <corecrypto/ccder_encode_body_nocopy.h>
	287	#include <corecrypto/ccder_encode_constructed_tl.h>
	288	#include <corecrypto/ccder_encode_implicit_integer.h>
	289	#include <corecrypto/ccder_encode_implicit_octet_string.h>
	290	#include <corecrypto/ccder_encode_implicit_uint64.h>
	291	#include <corecrypto/ccder_encode_integer.h>
	292	#include <corecrypto/ccder_encode_len.h>
	293	#include <corecrypto/ccder_encode_octet_string.h>
	294	#include <corecrypto/ccder_encode_oid.h>
	295	#include <corecrypto/ccder_encode_tag.h>
	296	#include <corecrypto/ccder_encode_tl.h>
	297	#include <corecrypto/ccder_encode_uint64.h>
	298	#include <corecrypto/ccder_sizeof.h>
fe8ab488	299	#include <corecrypto/ccder_sizeof_integer.h>
316670eb A	300	#include <corecrypto/ccder_sizeof_len.h>
	301	#include <corecrypto/ccder_sizeof_oid.h>
	302	#include <corecrypto/ccder_sizeof_tag.h>
	303	#endif
	304
	305	#endif /* _CORECRYPTO_CCDER_H_ */