C/shark/SharkSSL_8h_source.html

/*

 *     ____             _________                __                _

 *    / __ \___  ____ _/ /_  __(_)___ ___  ___  / /   ____  ____ _(_)____

 *   / /_/ / _ \/ __ `/ / / / / / __ `__ \/ _ \/ /   / __ \/ __ `/ / ___/

 *  / _, _/  __/ /_/ / / / / / / / / / / /  __/ /___/ /_/ / /_/ / / /__

 * /_/ |_|\___/\__,_/_/ /_/ /_/_/ /_/ /_/\___/_____/\____/\__, /_/\___/

 *                                                       /____/

 *

 *                 SharkSSL Embedded SSL/TLS Stack

 ****************************************************************************

 *   PROGRAM MODULE

 *

 *   $Id: SharkSSL.h 5658 2025-04-30 05:08:15Z gianluca $

 *

 *   COPYRIGHT:  Real Time Logic LLC, 2010 - 2025

 *

 *   This software is copyrighted by and is the sole property of Real

 *   Time Logic LLC.  All rights, title, ownership, or other interests in

 *   the software remain the property of Real Time Logic LLC.  This

 *   software may only be used in accordance with the terms and

 *   conditions stipulated in the corresponding license agreement under

 *   which the software has been supplied.  Any unauthorized use,

 *   duplication, transmission, distribution, or disclosure of this

 *   software is expressly forbidden.

 *

 *   This Copyright notice may not be removed or modified without prior

 *   written consent of Real Time Logic LLC.

 *

 *   Real Time Logic LLC. reserves the right to modify this software

 *   without notice.

 *

 *               http://www.realtimelogic.com

 *               http://www.sharkssl.com

 ****************************************************************************

 *

 */

#ifndef _SharkSsl_h

#define _SharkSsl_h


#include "TargConfig.h"      /* platform dependencies  */


#if defined(SHARKDBG_ENABLE) && SHARKDBG_ENABLE

#define SHARKDBG_PRINTF(x) printf x

#else

#define SHARKDBG_PRINTF(x)

#endif


#ifndef SHARKSSL_API

#define SHARKSSL_API

#else  /* Barracuda */

#define SHARKSSL_BA 1

#include <ThreadLib.h>

#include <BaServerLib.h>

#endif


#include "SharkSSL_cfg.h"    /* SharkSSL configuration */

#ifdef __cplusplus

#include <stddef.h>          /* size_t for new, delete */

#endif


#include "SharkSslCrypto.h"  /* Crypto API */


#ifndef sharkCertSerialNumber2NetworkEndian

typedef U64 SharkCertSerialNumber;

#ifdef B_BIG_ENDIAN

#define sharkCertSerialNumber2NetworkEndian(n)

#else

#define sharkCertSerialNumber2NetworkEndian(n)  \

   do {                                         \

      U64 nn=0;                                 \

      register U8* t=(U8*)&nn;                  \

      register U8* f=(U8*)&n;                   \

      t[7]=f[0];                                \

      t[6]=f[1];                                \

      t[5]=f[2];                                \

      t[4]=f[3];                                \

      t[3]=f[4];                                \

      t[2]=f[5];                                \

      t[1]=f[6];                                \

      t[0]=f[7];                                \

      n=nn;                                     \

   } while(0)

#endif

#endif


/* Forward decl. */

struct SharkSslCertDN;

struct SharkSslASN1Create;

struct SharkSslBitExtReq;


#define SHARKSSL_ALERT_LEVEL_WARNING               1


#define SHARKSSL_ALERT_LEVEL_FATAL                 2


#define SHARKSSL_ALERT_CLOSE_NOTIFY                0

#define SHARKSSL_ALERT_UNEXPECTED_MESSAGE          10

#define SHARKSSL_ALERT_BAD_RECORD_MAC              20

#define SHARKSSL_ALERT_DECRYPTION_FAILED           21

#define SHARKSSL_ALERT_RECORD_OVERFLOW             22

#define SHARKSSL_ALERT_DECOMPRESSION_FAILURE       30

#define SHARKSSL_ALERT_HANDSHAKE_FAILURE           40

#define SHARKSSL_ALERT_BAD_CERTIFICATE             42

#define SHARKSSL_ALERT_UNSUPPORTED_CERTIFICATE     43

#define SHARKSSL_ALERT_CERTIFICATE_REVOKED         44

#define SHARKSSL_ALERT_CERTIFICATE_EXPIRED         45

#define SHARKSSL_ALERT_CERTIFICATE_UNKNOWN         46

#define SHARKSSL_ALERT_ILLEGAL_PARAMETER           47

#define SHARKSSL_ALERT_UNKNOWN_CA                  48

#define SHARKSSL_ALERT_ACCESS_DENIED               49

#define SHARKSSL_ALERT_DECODE_ERROR                50

#define SHARKSSL_ALERT_DECRYPT_ERROR               51

#define SHARKSSL_ALERT_EXPORT_RESTRICTION          60

#define SHARKSSL_ALERT_PROTOCOL_VERSION            70

#define SHARKSSL_ALERT_INSUFFICIENT_SECURITY       71

#define SHARKSSL_ALERT_INTERNAL_ERROR              80

#define SHARKSSL_ALERT_USER_CANCELED               90

#define SHARKSSL_ALERT_NO_RENEGOTIATION            100

#define SHARKSSL_ALERT_MISSING_EXTENSION           109

#define SHARKSSL_ALERT_UNSUPPORTED_EXTENSION       110

#define SHARKSSL_ALERT_UNRECOGNIZED_NAME           112

#define SHARKSSL_ALERT_NO_APPLICATION_PROTOCOL     120  /* RFC 7301 */

 /* end group SharkSslAlertMsg */  /* end group SharkSslAlert */


#if SHARKSSL_TLS_1_3

#define TLS_AES_128_GCM_SHA256                              0x1301

#define TLS_AES_256_GCM_SHA384                              0x1302

#define TLS_CHACHA20_POLY1305_SHA256                        0x1303

#endif

#if SHARKSSL_TLS_1_2

#define TLS_DHE_RSA_WITH_AES_128_GCM_SHA256                 0x009E

#define TLS_DHE_RSA_WITH_AES_256_GCM_SHA384                 0x009F

#define TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256             0xC02B

#define TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384             0xC02C

#define TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256               0xC02F

#define TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384               0xC030

#define TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256         0xCCA8

#define TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256       0xCCA9

#define TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256           0xCCAA

#endif

 /* end group SharkSslCiphers */


#define SHARKSSL_PROTOCOL_UNKNOWN                  0x00

#define SHARKSSL_PROTOCOL_TLS_1_2                  0x33

#define SHARKSSL_PROTOCOL_TLS_1_3                  0x34


/* internal use, with SHARKSSL_PROTOCOL_TLS_1_x as parameter */

#define SHARKSSL_PROTOCOL_MAJOR(p)                 (p >> 4)

#define SHARKSSL_PROTOCOL_MINOR(p)                 (p & 0xF)

 /* end group SharkSslProtocol */


#if (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA)

#ifndef BA_API  /* standalone SharkSSL */

#define BA_API SHARKSSL_API

#ifdef _SHARKSSL_C_

#define SingleListCode 1

#endif

#endif

#include "SingleList.h"

#endif


#if SHARKSSL_ENABLE_SESSION_CACHE || SHARKSSL_NOPACK


typedef struct SharkSslSession SharkSslSession;

 /* end group SharkSslSessionApi */


#ifndef _DOXYGEN

typedef struct SharkSslSessionCache

{

   SharkSslSession *cache;

   ThreadMutexBase  cacheMutex;

   U16 cacheSize;

} SharkSslSessionCache;

#endif

#endif


typedef enum

{

   SharkSsl_Unspecified,

   SharkSsl_Server,

   SharkSsl_Client

} SharkSsl_Role;

 /* end group SharkSslInfoAndCodes */


#if (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA)

typedef U8* SharkSslKey;


typedef const U8 *SharkSslCert;


#ifdef __cplusplus

extern "C" {

#endif


SHARKSSL_API U16 SharkSslCert_len(SharkSslCert cert);


#ifdef __DOXYGEN__

U32 baGetUnixTime(void);

#endif


#if SHARKSSL_ENABLE_CSR_CREATION

SHARKSSL_API int

SharkSslASN1Create_CSR(struct SharkSslASN1Create* o,

                       SharkSslKey privKey,

                       U8 hashID,

                       struct SharkSslCertDN* certDN,

                       const char *SAN,

                       struct SharkSslBitExtReq* keyUsage,

                       struct SharkSslBitExtReq* nsCertType);

#endif


#if SHARKSSL_ENABLE_CSR_SIGNING

SHARKSSL_API int

SharkSslCert_signCSR(SharkSslCert *signedCSR,

                     const U8 *csrData,

                     int csrDataLen,

                     const SharkSslCert caCert,

                     const SharkSslKey privKey,

                     const char *validFrom,

                     const char *validTo,

                     SharkCertSerialNumber serialNumber,

                     U8 hashID);

#endif


#if SHARKSSL_ENABLE_ASN1_KEY_CREATION

SHARKSSL_API int

SharkSslASN1Create_key(struct SharkSslASN1Create *o, const SharkSslKey key);

#endif


#ifdef __cplusplus

}

#endif


#if SHARKSSL_ENABLE_CA_LIST

typedef const U8 *SharkSslCAList;

#endif

 /* end group SharkSslInfoAndCodes */

#endif


#ifndef _DOXYGEN

struct SharkSsl;

#endif


/* Non documented API used by SharkSslSCMgr when used indirectly by

   Lua code in the Barracuda Application Server. The code manages

   automatic destruction of SharkSslSCMgr.

 */

#ifndef _DOXYGEN

struct SharkSslIntf;

typedef void (*SharkSslIntf_Terminate)(struct SharkSslIntf* o,

                                       struct SharkSsl* ssl);

typedef struct SharkSslIntf

{

   SharkSslIntf_Terminate terminate;

} SharkSslIntf;

#define SharkSslIntf_constructor(o,terminateFunc) (o)->terminate=terminateFunc

#endif


typedef struct SharkSslCon SharkSslCon;


typedef struct

SharkSsl

{

#ifdef __cplusplus

   void *operator new(size_t s) { return ::baMalloc(s); }

   void operator delete(void* d) { if(d) ::baFree(d); }

   void *operator new(size_t, void *place) { return place; }

   void operator delete(void*, void *) { }


   SharkSsl() {};


   SharkSsl(SharkSsl_Role role,

            U16 cacheSize         = 0,

            U16 inBufStartSize    = 4096,

            U16 outBufSize        = 4096

            );


   ~SharkSsl();

   SharkSslCon *createCon(void);

   U8 setCAList(SharkSslCAList caList);

   U8 addCertificate(SharkSslCert cert);

   void terminateCon(SharkSslCon *sslCon);

#endif

   #if (SHARKSSL_SSL_SERVER_CODE && SHARKSSL_SSL_CLIENT_CODE) || SHARKSSL_NOPACK

   SharkSsl_Role role;

   #endif

   U16 outBufSize;

   U16 inBufStartSize;

   U16 nCon;

   #if (SHARKSSL_ENABLE_RSA || (SHARKSSL_ENABLE_ECDSA))  || SHARKSSL_NOPACK

   SingleList certList;

   #if SHARKSSL_ENABLE_CA_LIST || SHARKSSL_NOPACK

   SharkSslCAList caList;

   #endif

   #endif

   #if SHARKSSL_ENABLE_SESSION_CACHE  || SHARKSSL_NOPACK

   SharkSslSessionCache sessionCache;

   /* Reserved for use with one SharkSslSCMgr object  */

   SharkSslIntf* intf;

   #endif

} SharkSsl;

 /* end group SharkSslInfoAndCodes */


typedef enum

{

   SharkSslCon_Error = 1,


   SharkSslCon_AllocationError,


   SharkSslCon_Decrypted,


   SharkSslCon_Handshake,


   SharkSslCon_NeedMoreData,


   SharkSslCon_AlertSend,


   SharkSslCon_AlertRecv,


   SharkSslCon_Encrypted,


   SharkSslCon_HandshakeNotComplete,


   SharkSslCon_CertificateError


} SharkSslCon_RetVal;

 /* end group SharkSslCoreApi */


#if (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA)


#if SHARKSSL_ENABLE_CERT_KEYUSAGE

#define SHARKSSL_CERT_KEYUSAGE_DIGITALSIGNATURE     0x00000001

#define SHARKSSL_CERT_KEYUSAGE_NONREPUDIATION       0x00000002

#define SHARKSSL_CERT_KEYUSAGE_KEYENCIPHERMENT      0x00000004

#define SHARKSSL_CERT_KEYUSAGE_DATAENCIPHERMENT     0x00000008

#define SHARKSSL_CERT_KEYUSAGE_KEYAGREEMENT         0x00000010

#define SHARKSSL_CERT_KEYUSAGE_KEYCERTSIGN          0x00000020

#define SHARKSSL_CERT_KEYUSAGE_CRLSIGN              0x00000040

#define SHARKSSL_CERT_KEYUSAGE_ENCIPHERONLY         0x00000080

#define SHARKSSL_CERT_KEYUSAGE_DECIPHERONLY         0x00000100

#define SHARKSSL_CERT_KEYUSAGE_PRESENT              0x00000200

#define SHARKSSL_CERT_KEYUSAGE_CRITICAL             0x00000400


#define SHARKSSL_CERT_KEYPURPOSE_SERVERAUTH         0x00010000

#define SHARKSSL_CERT_KEYPURPOSE_CLIENTAUTH         0x00020000

#define SHARKSSL_CERT_KEYPURPOSE_CODESIGNING        0x00040000

#define SHARKSSL_CERT_KEYPURPOSE_EMAILPROTECTION    0x00080000

#define SHARKSSL_CERT_KEYPURPOSE_TIMESTAMPING       0x00100000

#define SHARKSSL_CERT_KEYPURPOSE_OCSPSIGNING        0x00200000


#define SharkSslCertInfo_KeyFlagSet(o,f)            ((o)->keyUsagePurposes & f)


#define SharkSslCertInfo_isKeyUsagePresent(o)       SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_PRESENT)

#define SharkSslCertInfo_isKeyUsageCritical(o)      SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_CRITICAL)

#define SharkSslCertInfo_KU_digitalSignature(o)     SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_DIGITALSIGNATURE)

#define SharkSslCertInfo_KU_nonRepudiation(o)       SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_NONREPUDIATION)

#define SharkSslCertInfo_KU_keyEncipherment(o)      SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_KEYENCIPHERMENT)

#define SharkSslCertInfo_KU_dataEncipherment(o)     SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_DATAENCIPHERMENT)

#define SharkSslCertInfo_KU_keyAgreement(o)         SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_KEYAGREEMENT)

#define SharkSslCertInfo_KU_keyCertSign(o)          SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_KEYCERTSIGN)

#define SharkSslCertInfo_KU_cRLSign(o)              SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_CRLSIGN)

#define SharkSslCertInfo_KU_encipherOnly(o)         SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_ENCIPHERONLY)

#define SharkSslCertInfo_KU_decipherOnly(o)         SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYUSAGE_DECIPHERONLY)


#define SharkSslCertInfo_kp_serverAuth(o)           SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYPURPOSE_SERVERAUTH)

#define SharkSslCertInfo_kp_clientAuth(o)           SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYPURPOSE_CLIENTAUTH)

#define SharkSslCertInfo_kp_codeSigning(o)          SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYPURPOSE_CODESIGNING)

#define SharkSslCertInfo_kp_emailProtection(o)      SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYPURPOSE_EMAILPROTECTION)

#define SharkSslCertInfo_kp_timeStamping(o)         SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYPURPOSE_TIMESTAMPING)

#define SharkSslCertInfo_kp_OCSPSigning(o)          SharkSslCertInfo_KeyFlagSet(o, SHARKSSL_CERT_KEYPURPOSE_OCSPSIGNING)

#endif


typedef struct SharkSslCertDN

{

   const U8 *countryName;

   const U8 *province;

   const U8 *locality;

   const U8 *organization;

   const U8 *unit;

   const U8 *commonName;

   const U8 *emailAddress;


   U8 countryNameLen;

   U8 provinceLen;

   U8 localityLen;

   U8 organizationLen;

   U8 unitLen;

   U8 commonNameLen;

   U8 emailAddressLen;

} SharkSslCertDN;


#define SharkSslCertDN_constructor(o) memset(o,0,sizeof(SharkSslCertDN))

#define SharkSslCertDN_setCountryName(o, countryNameMA) \

   (o)->countryName=(const U8*)countryNameMA,(o)->countryNameLen=(U8)strlen(countryNameMA)

#define SharkSslCertDN_setProvince(o, provinceMA) \

   (o)->province=(const U8*)provinceMA,(o)->provinceLen=(U8)strlen(provinceMA)

#define SharkSslCertDN_setLocality(o, localityMA) \

   (o)->locality=(const U8*)localityMA,(o)->localityLen=(U8)strlen(localityMA)

#define SharkSslCertDN_setOrganization(o, organizationMA) \

   (o)->organization=(const U8*)organizationMA,(o)->organizationLen=(U8)strlen(organizationMA)

#define SharkSslCertDN_setUnit(o, unitMA) \

   (o)->unit=(const U8*)unitMA,(o)->unitLen=(U8)strlen(unitMA)

#define SharkSslCertDN_setCommonName(o, commonNameMA) \

   (o)->commonName=(const U8*)commonNameMA,(o)->commonNameLen=(U8)strlen(commonNameMA)

#define SharkSslCertDN_setEmailAddress(o, emailAddressMA) \

   (o)->emailAddress=(const U8*)emailAddressMA,(o)->emailAddressLen=(U8)strlen(emailAddressMA)


typedef struct SharkSslCertInfo

{

   U16 snLen;


   U8  version;


   U8 CAflag;


   U8 *sn;


   U8 *timeFrom;  /* declaration of U8 timeFromLen below */


   U8 *timeTo;    /* declaration of U8 timeToLen below */


   SharkSslCertDN issuer;


   SharkSslCertDN subject;


   U8 *subjectAltNamesPtr;

   U16 subjectAltNamesLen;


   U8  timeFromLen;


   U8  timeToLen;


   #if SHARKSSL_ENABLE_CERT_KEYUSAGE

   U32 keyUsagePurposes;

   #endif


   struct SharkSslCertInfo *parent;

} SharkSslCertInfo;

 /* end group SharkSslCertInfo */

#endif


#ifdef __cplusplus

extern "C" {

#endif


SHARKSSL_API void  SharkSsl_constructor(

                      SharkSsl *o,

                      SharkSsl_Role role,

                      U16 cacheSize,

                      U16 inBufStartSize,

                      U16 outBufSize

                      );


SHARKSSL_API void  SharkSsl_destructor(SharkSsl *o);


SharkSslCon *SharkSsl_createCon(SharkSsl *o);


void SharkSsl_terminateCon(const SharkSsl *o, SharkSslCon* con);


#if SHARKSSL_ENABLE_SESSION_CACHE


SHARKSSL_API U16   SharkSsl_getCacheSize(SharkSsl *o);


#define SharkSsl_setIntf(o, sharkSslIntf) (o)->intf=sharkSslIntf

#define SharkSsl_getIntf(o) (o)->intf


#endif


#define SharkSslCon_terminate(o) SharkSsl_terminateCon(0, o)


SharkSslCon_RetVal SharkSslCon_decrypt(SharkSslCon *o, U16 readLen);


SharkSslCon_RetVal SharkSslCon_encrypt(SharkSslCon *o, U8 *buf, U16 maxLen);


U8 SharkSslCon_isHandshakeComplete(SharkSslCon *o);


U8  SharkSslCon_encryptMore(SharkSslCon *o);


U8  SharkSslCon_decryptMore(SharkSslCon *o);


U8 *SharkSslCon_getBuf(SharkSslCon *o);


U16 SharkSslCon_getBufLen(SharkSslCon *o);


U16 SharkSslCon_copyDecData(SharkSslCon *o, U8 *buf, U16 maxLen);


SHARKSSL_API U16 SharkSslCon_getDecData(SharkSslCon *o, U8 **bufPtr);


U8 *SharkSslCon_getHandshakeData(SharkSslCon *o);


U16 SharkSslCon_getHandshakeDataLen(SharkSslCon *o);


U16 SharkSslCon_setHandshakeDataSent(SharkSslCon *o, U16 length);


U8 *SharkSslCon_getEncData(SharkSslCon *o);


U16 SharkSslCon_getEncDataLen(SharkSslCon *o);


U8 *SharkSslCon_getEncBufPtr(SharkSslCon *o);


U16 SharkSslCon_getEncBufSize(SharkSslCon *o);


U8  SharkSslCon_getAlertLevel(SharkSslCon *o);


U8  SharkSslCon_getAlertDescription(SharkSslCon *o);


#define SharkSslCon_getAlertData(o)    SharkSslCon_getEncData(o)


#define SharkSslCon_getAlertDataLen(o) SharkSslCon_getEncDataLen(o)

 /* end group SharkSslCoreApi */


#if SHARKSSL_ENABLE_INFO_API


SHARKSSL_API U16 SharkSslCon_getCiphersuite(SharkSslCon *o);


#if (SHARKSSL_TLS_1_3 && SHARKSSL_TLS_1_2)

SHARKSSL_API U8  SharkSslCon_getProtocol(SharkSslCon *o);

#elif SHARKSSL_TLS_1_3

#define SharkSslCon_getProtocol(o) (SHARKSSL_PROTOCOL_TLS_1_3)

#elif SHARKSSL_TLS_1_2

#define SharkSslCon_getProtocol(o) (SHARKSSL_PROTOCOL_TLS_1_2)

#else

#error please enable at least one of SHARKSSL_TLS_1_3, SHARKSSL_TLS_1_2

#endif


#endif


#if SHARKSSL_ENABLE_SNI


#if SHARKSSL_SSL_CLIENT_CODE

SHARKSSL_API U8  SharkSslCon_setSNI(SharkSslCon *o, const char *name, U16 length);

#endif


#endif


#if (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA)

#if (SHARKSSL_SSL_CLIENT_CODE && SHARKSSL_ENABLE_CLIENT_AUTH)

U8  SharkSslCon_certificateRequested(SharkSslCon *o);

#endif


SHARKSSL_API SharkSslCertInfo  *SharkSslCon_getCertInfo(SharkSslCon *o);


SHARKSSL_API U8 SharkSsl_addCertificate(SharkSsl *o, SharkSslCert cert);


#if SHARKSSL_ENABLE_CA_LIST


SHARKSSL_API U8  SharkSsl_setCAList(SharkSsl *o, SharkSslCAList caList);


SHARKSSL_API U8  SharkSslCon_trustedCA(SharkSslCon *o);


U8  SharkSslCon_isCAListEmpty(SharkSslCon *o);

#else


#define  SharkSslCon_trustedCA(o)   0

#endif  /* SHARKSSL_ENABLE_CA_LIST */


#if (SHARKSSL_SSL_SERVER_CODE && SHARKSSL_ENABLE_RSA)

/* to be used as 'flag' param */

#define SHARKSSL_SET_FAVOR_RSA      1

#define SHARKSSL_CLEAR_FAVOR_RSA    0


U8  SharkSslCon_favorRSA(SharkSslCon *o, U8 flag);

#endif  /* SHARKSSL_SSL_SERVER_CODE */

#endif  /* SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA */


#if SHARKSSL_SSL_CLIENT_CODE

U8  SharkSslCon_selectProtocol(SharkSslCon *o, U8 protocol);

#endif


#if SHARKSSL_ENABLE_SESSION_CACHE


#if SHARKSSL_ENABLE_INFO_API

SHARKSSL_API U8    SharkSslCon_isResumed(SharkSslCon *o);

#endif


SHARKSSL_API U8    SharkSslSession_release(SharkSslSession *o, SharkSsl *s);


#if SHARKSSL_SSL_SERVER_CODE

SHARKSSL_API U8    SharkSslCon_releaseSession(SharkSslCon *o);

#endif


#if SHARKSSL_SSL_CLIENT_CODE


SHARKSSL_API SharkSslSession *SharkSslCon_acquireSession(SharkSslCon *o);


SHARKSSL_API U8 SharkSslCon_resumeSession(SharkSslCon *o, SharkSslSession *s);


SHARKSSL_API U32   SharkSslSession_getLatestAccessTime(SharkSslSession *o);

#endif

#endif

 /* end group SharkSslSessionApi */


#if (SHARKSSL_SSL_SERVER_CODE && SHARKSSL_ENABLE_CLIENT_AUTH && \

    (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA))

SHARKSSL_API U8 SharkSslCon_requestClientCert(

   SharkSslCon *o, const void *caList);

#endif


#if (SHARKSSL_TLS_1_3 && SHARKSSL_SSL_CLIENT_CODE && SHARKSSL_ENABLE_CA_EXTENSION && \

    (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA))

SHARKSSL_API U8 SharkSslCon_setCertificateAuthorities(

   SharkSslCon *o, const void *caList);

#endif


#if SHARKSSL_ENABLE_ALPN_EXTENSION

#if SHARKSSL_SSL_CLIENT_CODE

SHARKSSL_API U8 SharkSslCon_setALPNProtocols(

   SharkSslCon* o, const char* protList);


SHARKSSL_API const char *SharkSslCon_getALPNProtocol(SharkSslCon* o);

#endif

#if SHARKSSL_SSL_SERVER_CODE

typedef int(*ALPNFunction)(SharkSslCon*, const char*, void *);

SHARKSSL_API U8 SharkSslCon_setALPNFunction(

   SharkSslCon *o, ALPNFunction func, void *pvoid);

#endif

#endif  /* SHARKSSL_ENABLE_ALPN_EXTENSION */


#if ((SHARKSSL_SSL_SERVER_CODE || SHARKSSL_SSL_CLIENT_CODE) && \

     SHARKSSL_ENABLE_SELECT_CIPHERSUITE)

SHARKSSL_API U8 SharkSslCon_selectCiphersuite(SharkSslCon *o, U16 cipherSuite);


SHARKSSL_API U8 SharkSslCon_clearCiphersuiteSelection(SharkSslCon *o);

#endif


#if (SHARKSSL_SSL_SERVER_CODE && SHARKSSL_ENABLE_SECURE_RENEGOTIATION)

SHARKSSL_API U8 SharkSslCon_renegotiate(SharkSslCon *o);

#endif

 /* end group SharkSslApi */


#if SHARKSSL_ENABLE_PEM_API

typedef enum

{

   SHARKSSL_PEM_OK = 0,


   SHARKSSL_PEM_OK_PUBLIC = 1,


   SHARKSSL_PEM_ALLOCATION_ERROR = - 3000,


   SHARKSSL_PEM_KEY_PARSE_ERROR,


   SHARKSSL_PEM_KEY_WRONG_IV,


   SHARKSSL_PEM_KEY_WRONG_LENGTH,


   SHARKSSL_PEM_KEY_PASSPHRASE_REQUIRED,


   SHARKSSL_PEM_KEY_UNRECOGNIZED_FORMAT,


   SHARKSSL_PEM_KEY_UNSUPPORTED_FORMAT,


   SHARKSSL_PEM_KEY_UNSUPPORTED_MODULUS_LENGTH,


   SHARKSSL_PEM_KEY_UNSUPPORTED_EXPONENT_LENGTH,


   SHARKSSL_PEM_KEY_UNSUPPORTED_ENCRYPTION_TYPE,


   SHARKSSL_PEM_KEY_CERT_MISMATCH,


   SHARKSSL_PEM_CERT_UNRECOGNIZED_FORMAT,


   SHARKSSL_PEM_CERT_UNSUPPORTED_TYPE,


   SHARKSSL_PEM_KEY_UNSUPPORTED_VERSION,


   SHARKSSL_PEM_KEY_REQUIRED,


   SHARKSSL_PEM_KEY_PRIVATE_KEY_REQUIRED,


   SHARKSSL_PEM_INTERNAL_ERROR

} sharkssl_PEM_RetVal;


SHARKSSL_API sharkssl_PEM_RetVal sharkssl_PEM(

   const char *certPEM, const char *keyPEM,

   const char *passphrase, SharkSslCert *sharkSslCert);


#if SHARKSSL_ENABLE_ENCRYPTED_PKCS8_SUPPORT

SHARKSSL_API int sharkssl_PEM_PBKDF2(

   U8 *dk, const char *passphrase,

   const char *salt, U32 saltLen,

   U32 iterations, U16 dkLen, U8 hashID);

#endif

 /* end group RayCryptoApi */

#endif


#if SHARKSSL_ENABLE_RSA


#define SHARKSSL_RSA_NO_PADDING      0


#define SHARKSSL_RSA_PKCS1_PADDING   1


typedef enum

{

   SHARKSSL_RSA_OK = 0,


   SHARKSSL_RSA_ALLOCATION_ERROR = -3000,


   SHARKSSL_RSA_INTERNAL_ERROR = -3100,


   SHARKSSL_RSA_WRONG_PARAMETERS,


   SHARKSSL_RSA_WRONG_KEY_FORMAT,


   SHARKSSL_RSA_WRONG_KEY_LENGTH,


   SHARKSSL_RSA_INPUT_DATA_LENGTH_TOO_BIG,


   SHARKSSL_RSA_INPUT_DATA_LENGTH_AND_KEY_LENGTH_MISMATCH,


   SHARKSSL_RSA_PKCS1_PADDING_ERROR,


   SHARKSSL_RSA_KEY_NOT_PRIVATE,


   SHARKSSL_RSA_VERIFICATION_FAIL,


   SHARKSSL_RSA_WRONG_SIGNATURE,


   SHARKSSL_RSA_WRONG_LABEL_LENGTH

} sharkssl_RSA_RetVal;

#endif

 /* end group SharkSslInfoAndCodes */


#if SHARKSSL_ENABLE_RSA_API


typedef U8* SharkSslRSAKey;


#if SHARKSSL_ENABLE_PEM_API

SHARKSSL_API SharkSslRSAKey sharkssl_PEM_to_RSAKey(

   const char *PEMKey, const char *passphrase);


SHARKSSL_API SharkSslKey

sharkssl_PEM_extractPublicKey(const char *certPEM);


SHARKSSL_API SharkSslKey

sharkssl_PEM_extractPublicKey_ext(const char *certPEM, U8 *keyType);

#endif  /* SHARKSSL_ENABLE_PEM_API */


#if (SHARKSSL_ENABLE_PEM_API || (SHARKSSL_ENABLE_RSA && SHARKSSL_ENABLE_RSAKEY_CREATE))

SHARKSSL_API void SharkSslRSAKey_free(SharkSslRSAKey key);

#define _SHARKSSLRSAKEY_FREE 1

#endif


#if SHARKSSL_ENABLE_RSA

#if SHARKSSL_ENABLE_RSAKEY_CREATE

SHARKSSL_API int SharkSslRSAKey_create(SharkSslRSAKey *privKey, U16 keyLength);


SHARKSSL_API U8 *SharkSslRSAKey_getPublic(SharkSslRSAKey privKey);

#endif


SHARKSSL_API U16 SharkSslRSAKey_size(SharkSslRSAKey key);


SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_public_encrypt(

    SharkSslRSAKey pubkey, const U8 *in, int len, U8 *out, int padding);


SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_private_decrypt(

   SharkSslRSAKey privkey, const U8 *in, int len, U8 *out, int padding);


SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_PKCS1V1_5_sign_hash(

   SharkSslRSAKey privkey, U8 *sig, U16 *siglen, const U8 *hash, U8 hashID);


SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_PKCS1V1_5_verify_hash(

   SharkSslRSAKey pubkey, U8 *sig, U16 siglen, const U8 *hash, U8 hashID);


#if SHARKSSL_ENABLE_RSA_OAEP

SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_private_decrypt_OAEP(

   SharkSslRSAKey privkey, U8 *in, int len, U8 hashID, U8 *out, const char *label, U16 labelLen);


SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_public_encrypt_OAEP(

   SharkSslRSAKey pubkey, const U8 *in, int len, U8 hashID, U8 *out, const char *label, U16 labelLen);

#endif


SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_private_encrypt(

   SharkSslRSAKey privkey, const U8 *in, int len, U8 *out, int padding);


SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_public_decrypt(

   SharkSslRSAKey pubkey, const U8 *in, int len, U8 *out, int padding);


#endif

 /* end group RSA */

#endif


#if SHARKSSL_USE_ECC


/*

 * NamedCurve, use as curveID parameter

 * SECPxxxR1       - RFC 4492 section 5.1.1

 * BRAINPOOLPxxxR1 - RFC 7027 section 2

 * CURVE25519,448  - RFC 8446 section 4.2.7

 */

#define SHARKSSL_EC_CURVE_ID_SECP256R1        23

#define SHARKSSL_EC_CURVE_ID_SECP384R1        24

#define SHARKSSL_EC_CURVE_ID_SECP521R1        25

#define SHARKSSL_EC_CURVE_ID_BRAINPOOLP256R1  26

#define SHARKSSL_EC_CURVE_ID_BRAINPOOLP384R1  27

#define SHARKSSL_EC_CURVE_ID_BRAINPOOLP512R1  28

#define SHARKSSL_EC_CURVE_ID_CURVE25519       29

#define SHARKSSL_EC_CURVE_ID_CURVE448         30


typedef U8* SharkSslECCKey;


#if SHARKSSL_ENABLE_PEM_API

SHARKSSL_API SharkSslECCKey sharkssl_PEM_to_ECCKey(

   const char *PEMKey, const char *passphrase);


#if (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA)

SHARKSSL_API U16 SharkSslKey_vectSize(const SharkSslKey key);

#define SharkSslCert_vectSize(c) SharkSslKey_vectSize((const SharkSslCert)c)

#define SharkSslCert_vectSize_keyInfo(c, t, p, a, b, x, y) SharkSslKey_vectSize_keyInfo((const SharkSslKey)c, t, p, a, b, x, y)

#if SHARKSSL_ENABLE_RSA

#define SharkSslRSAKey_vectSize(k) SharkSslKey_vectSize(k)

#define SharkSslRSAKey_vectSize_keyInfo(k, t, p, a, b, x, y) SharkSslKey_vectSize_keyInfo((const SharkSslKey)k, t, p, a, b, x, y)

#endif

#if SHARKSSL_ENABLE_ECDSA

#define SharkSslECCKey_vectSize(k) SharkSslKey_vectSize(k)

#define SharkSslECCKey_vectSize_keyInfo(k, t, p, a, b, x, y) SharkSslKey_vectSize_keyInfo((const SharkSslKey)k, t, p, a, b, x, y)

#endif


/* return values of function SharkSslKey_vectSize_keyInfo for the parameter keyType */

#define SHARKSSL_KEYTYPE_RSA     0x00

#define SHARKSSL_KEYTYPE_EC      0x02


SHARKSSL_API U16 SharkSslKey_vectSize_keyInfo(const SharkSslKey key, U8 *keyType, U8 *isKeyPrivate, U8 **d1, U16 *d1Len, U8 **d2, U16 *d2Len);

#endif

#endif


#if SHARKSSL_ENABLE_ECCKEY_CREATE


typedef int (*sharkssl_rngfunc)(void* handle, U8 *ptr, U16 len);


#define SharkSslECCKey_create(privKey, curveID) SharkSslECCKey_createEx((privKey), (curveID), 0, 0)


SHARKSSL_API int SharkSslECCKey_createEx(SharkSslECCKey* privKey, U16 curveID, void* rngHandle, sharkssl_rngfunc rngFunc);

#endif


#if (SHARKSSL_ENABLE_PEM_API || SHARKSSL_ENABLE_ECCKEY_CREATE)

SHARKSSL_API void SharkSslECCKey_free(SharkSslECCKey key);

#define _SHARKSSLECCKEY_FREE 1

#endif


/*

 *-----------------------------------------------------------------------------

 * To free up the memory allocated by SharkSslECCKey_create and

 * SharkSslRSAKey_create, the following macro is provided

 * For instance, this function could be called after saving the key to a file

 *-----------------------------------------------------------------------------

 * key: input parameter, points to a buffer allocated by either

 *    SharkSslECCKey_create or SharkSslRSAKey_create

 */

#if defined(_SHARKSSLRSAKEY_FREE)

#define SharkSslKey_free SharkSslRSAKey_free

#elif defined (_SHARKSSLECCKEY_FREE)

#define SharkSslKey_free SharkSslECCKey_free

#else

#define SharkSslKey_free

#endif

#undef _SHARKSSLRSAKEY_FREE

#undef _SHARKSSLECCKEY_FREE


#if SHARKSSL_ENABLE_ECDSA

/* ECDSA API and also internal sharkssl_ECDSA_signASN1 */

typedef enum

{

   SHARKSSL_ECDSA_OK = 0,


   SHARKSSL_ECDSA_ALLOCATION_ERROR = -3200,


   SHARKSSL_ECDSA_INTERNAL_ERROR = -3300,


   SHARKSSL_ECDSA_WRONG_PARAMETERS,


   SHARKSSL_ECDSA_WRONG_KEY_FORMAT,


   SHARKSSL_ECDSA_KEY_NOT_PRIVATE,


   SHARKSSL_ECDSA_KEY_NOT_PUBLIC,


   SHARKSSL_ECDSA_SIGLEN_TOO_SMALL,


   SHARKSSL_ECDSA_VERIFICATION_FAIL,


   SHARKSSL_ECDSA_WRONG_SIGNATURE

} sharkssl_ECDSA_RetVal;

 /* end group SharkSslInfoAndCodes */


#if SHARKSSL_ENABLE_ECDSA_API

#if (!SHARKSSL_ECDSA_ONLY_VERIFY)

SHARKSSL_API U16 sharkssl_ECDSA_siglen(SharkSslECCKey privkey);


SHARKSSL_API sharkssl_ECDSA_RetVal sharkssl_ECDSA_sign_hash(

   SharkSslECCKey privkey, U8 *sig, U16 *siglen, const U8 *hash, U8 hashID);

#endif


SHARKSSL_API sharkssl_ECDSA_RetVal sharkssl_ECDSA_verify_hash(

   SharkSslECCKey pubkey, U8 *sig, U16 siglen, const U8 *hash, U8 hashID);


#endif  /* SHARKSSL_ENABLE_ECDSA_API */

#endif  /* SHARKSSL_ENABLE_ECDSA */

 /* end group ECC */

#endif


#if (SHARKSSL_ENABLE_CA_LIST && SHARKSSL_ENABLE_CERTSTORE_API)


#ifndef BA_API  /* standalone SharkSSL */

#define BA_API SHARKSSL_API

typedef U8 BaBool;

#endif

#include "DoubleList.h"


typedef struct SharkSslCertStore

{

   DoubleList certList;

   SharkSslCAList caList;

   U16 elements;  /* number of elements in list */

} SharkSslCertStore;


SHARKSSL_API void  SharkSslCertStore_constructor(SharkSslCertStore *o);


SHARKSSL_API void  SharkSslCertStore_destructor(SharkSslCertStore* o);


#define            SharkSslCertStore_release(o) SharkSslCertStore_destructor(o)


SHARKSSL_API U16   SharkSslCertStore_add(

   SharkSslCertStore *o, const char *cert, U32 certlen);


SHARKSSL_API U8  SharkSslCertStore_assemble(

   SharkSslCertStore *o, SharkSslCAList *outList);

 /* end group SharkSslCertApi */

#endif  /* SHARKSSL_ENABLE_CA_LIST && SHARKSSL_ENABLE_CERTSTORE_API */


#if ((SHARKSSL_ENABLE_PEM_API) || (SHARKSSL_ENABLE_CERTSTORE_API))

SHARKSSL_API U32 sharkssl_B64Decode(

   U8 *outStr, U32 outStrSize, const char *b64beg, const char *b64end);

#endif


#ifdef __cplusplus

}


inline SharkSsl::SharkSsl(

   SharkSsl_Role role, U16 cacheSize, U16 inBufStartSize, U16 outBufSize) {

   SharkSsl_constructor(this, role, cacheSize, inBufStartSize, outBufSize);

}

inline SharkSsl::~SharkSsl() {

   SharkSsl_destructor(this);

}

inline SharkSslCon *SharkSsl::createCon(void) {

   return SharkSsl_createCon(this);

}

inline void SharkSsl::terminateCon(SharkSslCon *sslCon) {

   SharkSsl_terminateCon(this, sslCon);

}


#if (SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA)

inline U8 SharkSsl::addCertificate(SharkSslCert cert) {

   return SharkSsl_addCertificate(this, cert);

}

#if SHARKSSL_ENABLE_CA_LIST

inline U8 SharkSsl::setCAList(SharkSslCAList caList) {

   return SharkSsl_setCAList(this, caList);

}

#endif  /* SHARKSSL_ENABLE_CA_LIST */

#endif  /* SHARKSSL_ENABLE_RSA || SHARKSSL_ENABLE_ECDSA */


#endif  /* __cplusplus */


#endif

sharkssl_PEM_to_ECCKey
SHARKSSL_API SharkSslECCKey sharkssl_PEM_to_ECCKey(const char *PEMKey, const char *passphrase)
Convert an ECC private or public key in PEM format to the SharkSslECCKey format.

sharkssl_ECDSA_verify_hash
SHARKSSL_API sharkssl_ECDSA_RetVal sharkssl_ECDSA_verify_hash(SharkSslECCKey pubkey, U8 *sig, U16 siglen, const U8 *hash, U8 hashID)
Verify a message using the ECC public key and a hash algorithm.

sharkssl_ECDSA_siglen
SHARKSSL_API U16 sharkssl_ECDSA_siglen(SharkSslECCKey privkey)
Returns the maximum length (in bytes) of a DER-encoded ECDSA signature generated with the private key...

sharkssl_ECDSA_sign_hash
SHARKSSL_API sharkssl_ECDSA_RetVal sharkssl_ECDSA_sign_hash(SharkSslECCKey privkey, U8 *sig, U16 *siglen, const U8 *hash, U8 hashID)
Generate the signature using the ECC private key and a hash.

SharkSslECCKey
U8 * SharkSslECCKey
SharkSslECCKey is an alias for the SharkSslCert type and is a private/public key converted by sharkss...
Definition: SharkSSL.h:2272

sharkssl_PEM_to_RSAKey
SHARKSSL_API SharkSslRSAKey sharkssl_PEM_to_RSAKey(const char *PEMKey, const char *passphrase)
Convert an RSA private or public key in PEM format to the SharkSslRSAKey format.

sharkssl_RSA_PKCS1V1_5_verify_hash
SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_PKCS1V1_5_verify_hash(SharkSslRSAKey pubkey, U8 *sig, U16 siglen, const U8 *hash, U8 hashID)
Verify a signature hash using a public RSA key.

sharkssl_PEM_extractPublicKey
SHARKSSL_API SharkSslKey sharkssl_PEM_extractPublicKey(const char *certPEM)
Extract the public key form a certificate in PEM format.

sharkssl_RSA_private_encrypt
SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_private_encrypt(SharkSslRSAKey privkey, const U8 *in, int len, U8 *out, int padding)
Sign a message digest using the private key.

sharkssl_RSA_private_decrypt
SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_private_decrypt(SharkSslRSAKey privkey, const U8 *in, int len, U8 *out, int padding)
Decrypt ciphertext using the private key.

sharkssl_RSA_public_encrypt
SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_public_encrypt(SharkSslRSAKey pubkey, const U8 *in, int len, U8 *out, int padding)
Encrypt data using the public key or private key.

sharkssl_RSA_PKCS1V1_5_sign_hash
SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_PKCS1V1_5_sign_hash(SharkSslRSAKey privkey, U8 *sig, U16 *siglen, const U8 *hash, U8 hashID)
Sign a hash using a private RSA key.

SharkSslRSAKey_free
SHARKSSL_API void SharkSslRSAKey_free(SharkSslRSAKey key)
Release a SharkSslRSAKey allocated by functions sharkssl_PEM_to_RSAKey and sharkssl_PEM_extractPublic...

sharkssl_RSA_public_decrypt
SHARKSSL_API sharkssl_RSA_RetVal sharkssl_RSA_public_decrypt(SharkSslRSAKey pubkey, const U8 *in, int len, U8 *out, int padding)
Bring back a message digest using the public key or private key.

SharkSslRSAKey
U8 * SharkSslRSAKey
SharkSslRSAKey is an alias for the SharkSslCert type and is a private/public key converted by sharkss...
Definition: SharkSSL.h:1921

sharkssl_PEM_RetVal
sharkssl_PEM_RetVal
Return values from function sharkssl_PEM.
Definition: SharkSSL.h:1723

sharkssl_PEM
SHARKSSL_API sharkssl_PEM_RetVal sharkssl_PEM(const char *certPEM, const char *keyPEM, const char *passphrase, SharkSslCert *sharkSslCert)
Create a SharkSslCert certificate by using a certificate and key in PEM format.

sharkssl_PEM_PBKDF2
SHARKSSL_API int sharkssl_PEM_PBKDF2(U8 *dk, const char *passphrase, const char *salt, U32 saltLen, U32 iterations, U16 dkLen, U8 hashID)
sharkssl_PEM_PBKDF2 (output, passphrase, salt, salt_len, iterations, dkLen, hashID) Derives a key fro...

SHARKSSL_PEM_CERT_UNSUPPORTED_TYPE
@ SHARKSSL_PEM_CERT_UNSUPPORTED_TYPE
CERT_UNSUPPORTED_TYPE.
Definition: SharkSSL.h:1767

SHARKSSL_PEM_KEY_UNSUPPORTED_ENCRYPTION_TYPE
@ SHARKSSL_PEM_KEY_UNSUPPORTED_ENCRYPTION_TYPE
KEY_UNSUPPORTED_ENCRYPTION_TYPE.
Definition: SharkSSL.h:1758

SHARKSSL_PEM_OK
@ SHARKSSL_PEM_OK
OK.
Definition: SharkSSL.h:1725

SHARKSSL_PEM_OK_PUBLIC
@ SHARKSSL_PEM_OK_PUBLIC
OK_PUBLIC.
Definition: SharkSSL.h:1728

SHARKSSL_PEM_KEY_PRIVATE_KEY_REQUIRED
@ SHARKSSL_PEM_KEY_PRIVATE_KEY_REQUIRED
A PRIVATE KEY IS REQUIRED.
Definition: SharkSSL.h:1776

SHARKSSL_PEM_KEY_UNSUPPORTED_EXPONENT_LENGTH
@ SHARKSSL_PEM_KEY_UNSUPPORTED_EXPONENT_LENGTH
KEY_UNSUPPORTED_EXPONENT_LENGTH.
Definition: SharkSSL.h:1755

SHARKSSL_PEM_KEY_UNSUPPORTED_FORMAT
@ SHARKSSL_PEM_KEY_UNSUPPORTED_FORMAT
KEY_UNSUPPORTED_FORMAT.
Definition: SharkSSL.h:1749

SHARKSSL_PEM_KEY_UNRECOGNIZED_FORMAT
@ SHARKSSL_PEM_KEY_UNRECOGNIZED_FORMAT
KEY_UNRECOGNIZED_FORMAT.
Definition: SharkSSL.h:1746

SHARKSSL_PEM_KEY_UNSUPPORTED_VERSION
@ SHARKSSL_PEM_KEY_UNSUPPORTED_VERSION
KEY_UNSUPPORTED_VERSION.
Definition: SharkSSL.h:1770

SHARKSSL_PEM_KEY_PASSPHRASE_REQUIRED
@ SHARKSSL_PEM_KEY_PASSPHRASE_REQUIRED
KEY_PASSPHRASE_REQUIRED.
Definition: SharkSSL.h:1743

SHARKSSL_PEM_KEY_WRONG_LENGTH
@ SHARKSSL_PEM_KEY_WRONG_LENGTH
KEY_WRONG_LENGTH.
Definition: SharkSSL.h:1740

SHARKSSL_PEM_KEY_PARSE_ERROR
@ SHARKSSL_PEM_KEY_PARSE_ERROR
KEY_PARSE_ERROR.
Definition: SharkSSL.h:1734

SHARKSSL_PEM_CERT_UNRECOGNIZED_FORMAT
@ SHARKSSL_PEM_CERT_UNRECOGNIZED_FORMAT
CERT_UNRECOGNIZED_FORMAT.
Definition: SharkSSL.h:1764

SHARKSSL_PEM_KEY_REQUIRED
@ SHARKSSL_PEM_KEY_REQUIRED
KEY_REQUIRED.
Definition: SharkSSL.h:1773

SHARKSSL_PEM_ALLOCATION_ERROR
@ SHARKSSL_PEM_ALLOCATION_ERROR
ALLOCATION_ERROR.
Definition: SharkSSL.h:1731

SHARKSSL_PEM_KEY_WRONG_IV
@ SHARKSSL_PEM_KEY_WRONG_IV
KEY_WRONG_IV.
Definition: SharkSSL.h:1737

SHARKSSL_PEM_INTERNAL_ERROR
@ SHARKSSL_PEM_INTERNAL_ERROR
INTERNAL ERROR.
Definition: SharkSSL.h:1779

SHARKSSL_PEM_KEY_CERT_MISMATCH
@ SHARKSSL_PEM_KEY_CERT_MISMATCH
KEY_CERT_MISMATCH.
Definition: SharkSSL.h:1761

SHARKSSL_PEM_KEY_UNSUPPORTED_MODULUS_LENGTH
@ SHARKSSL_PEM_KEY_UNSUPPORTED_MODULUS_LENGTH
KEY_UNSUPPORTED_MODULUS_LENGTH.
Definition: SharkSSL.h:1752

SharkSslCon_favorRSA
U8 SharkSslCon_favorRSA(SharkSslCon *o, U8 flag)
A SharkSSL server can have multiple certificates, such as RSA certificates with various strengths,...

SharkSsl_getCacheSize
SHARKSSL_API U16 SharkSsl_getCacheSize(SharkSsl *o)
Returns the SharkSsl session cache size.

SharkSsl_createCon
SharkSslCon * SharkSsl_createCon(SharkSsl *o)
Create a SharkSslCon object.

SharkSslCon_setSNI
SHARKSSL_API U8 SharkSslCon_setSNI(SharkSslCon *o, const char *name, U16 length)
set Server Name Indication for TLS client connections

SharkSslCon_trustedCA
SHARKSSL_API U8 SharkSslCon_trustedCA(SharkSslCon *o)
Returns TRUE if the certificate is valid and is signed with a root certificate trusted by SharkSSL.

SharkSslCon_requestClientCert
SHARKSSL_API U8 SharkSslCon_requestClientCert(SharkSslCon *o, const void *caList)
This function is used by server solutions that require client SSL certificate authentication.

SharkSsl_destructor
SHARKSSL_API void SharkSsl_destructor(SharkSsl *o)
Close the SharkSsl object.

SharkSslCon_setCertificateAuthorities
SHARKSSL_API U8 SharkSslCon_setCertificateAuthorities(SharkSslCon *o, const void *caList)
This function is used by client solutions that require server SSL certificate authentication.

SharkSslCon_clearCiphersuiteSelection
SHARKSSL_API U8 SharkSslCon_clearCiphersuiteSelection(SharkSslCon *o)
Clears the selection, thus enabling all ciphers.

SharkSslCon_getProtocol
SHARKSSL_API U8 SharkSslCon_getProtocol(SharkSslCon *o)
Returns the active session's protocol version.

SharkSslCon_setALPNProtocols
SHARKSSL_API U8 SharkSslCon_setALPNProtocols(SharkSslCon *o, const char *protList)
This function is used by client solutions to specify a list of application layer protocols according ...

SharkSslCon_certificateRequested
U8 SharkSslCon_certificateRequested(SharkSslCon *o)
Returns TRUE if the server requested a certificate from the client to verify that the client's identi...

SharkSsl_addCertificate
SHARKSSL_API U8 SharkSsl_addCertificate(SharkSsl *o, SharkSslCert cert)
Add a certificate to the SharkSsl object.

SharkSslCon_selectCiphersuite
SHARKSSL_API U8 SharkSslCon_selectCiphersuite(SharkSslCon *o, U16 cipherSuite)
This function enables you to limit the number of ciphers at runtime.

SharkSsl_setCAList
SHARKSSL_API U8 SharkSsl_setCAList(SharkSsl *o, SharkSslCAList caList)
Set a Certificate Authority (CA) list so the SharkSSL object can permform certificate validation on t...

SharkSsl_terminateCon
void SharkSsl_terminateCon(const SharkSsl *o, SharkSslCon *con)
Terminate a SharkSslCon object created by function SharkSsl_createCon.

SharkSslCon_getCertInfo
SHARKSSL_API SharkSslCertInfo * SharkSslCon_getCertInfo(SharkSslCon *o)
Returns the peer's certificate if the handshaking has completed.

SharkSslCon_renegotiate
SHARKSSL_API U8 SharkSslCon_renegotiate(SharkSslCon *o)
This function enables you to renegotiate an already established SSL/TLS connection.

SharkSslCon_getCiphersuite
SHARKSSL_API U16 SharkSslCon_getCiphersuite(SharkSslCon *o)
Returns the active session's chiper suite.

SharkSslCon_getALPNProtocol
SHARKSSL_API const char * SharkSslCon_getALPNProtocol(SharkSslCon *o)
This function is used by client solutions to return the application layer protocol selected by the se...

SharkSsl_constructor
SHARKSSL_API void SharkSsl_constructor(SharkSsl *o, SharkSsl_Role role, U16 cacheSize, U16 inBufStartSize, U16 outBufSize)
A SharkSsl object is the coordinator for managing SharkSslCon objects.

SharkSslECCKey_createEx
SHARKSSL_API int SharkSslECCKey_createEx(SharkSslECCKey *privKey, U16 curveID, void *rngHandle, sharkssl_rngfunc rngFunc)
Creates an ECC key using the SharkSSL library.

SharkSslRSAKey_create
SHARKSSL_API int SharkSslRSAKey_create(SharkSslRSAKey *privKey, U16 keyLength)
RSA key creation.

SharkSslKey_vectSize_keyInfo
SHARKSSL_API U16 SharkSslKey_vectSize_keyInfo(const SharkSslKey key, U8 *keyType, U8 *isKeyPrivate, U8 **d1, U16 *d1Len, U8 **d2, U16 *d2Len)
Returns the private or public key's "vector size" in bytes.

SharkSslASN1Create_CSR
SHARKSSL_API int SharkSslASN1Create_CSR(struct SharkSslASN1Create *o, SharkSslKey privKey, U8 hashID, struct SharkSslCertDN *certDN, const char *SAN, struct SharkSslBitExtReq *keyUsage, struct SharkSslBitExtReq *nsCertType)
CSR creation (all parameters are input parameters)

SharkSslCertStore_constructor
SHARKSSL_API void SharkSslCertStore_constructor(SharkSslCertStore *o)
Initialize a SharkSslCertStore object.

SharkSslCert_signCSR
SHARKSSL_API int SharkSslCert_signCSR(SharkSslCert *signedCSR, const U8 *csrData, int csrDataLen, const SharkSslCert caCert, const SharkSslKey privKey, const char *validFrom, const char *validTo, SharkCertSerialNumber serialNumber, U8 hashID)
CSR signing (if not specified, parameters are input parameters)

SharkSslRSAKey_size
SHARKSSL_API U16 SharkSslRSAKey_size(SharkSslRSAKey key)
Returns the private or public key's modulus size in bytes.

SharkSslECCKey_free
SHARKSSL_API void SharkSslECCKey_free(SharkSslECCKey key)
Release a SharkSslECCKey allocated by functions sharkssl_PEM_to_ECCKey or SharkSslECCKey_create.

SharkSslCertStore_add
SHARKSSL_API U16 SharkSslCertStore_add(SharkSslCertStore *o, const char *cert, U32 certlen)
add a certificate in PEM or p7b format to the CA store.

SharkSslCertStore_assemble
SHARKSSL_API U8 SharkSslCertStore_assemble(SharkSslCertStore *o, SharkSslCAList *outList)
Assemble all certificates added by calling SharkSslCertStore_add.

SharkSslCertStore
struct SharkSslCertStore SharkSslCertStore
SharkSslCertStore is a container object used when assembling a SharkSslCAList.

SharkSslCertStore_destructor
SHARKSSL_API void SharkSslCertStore_destructor(SharkSslCertStore *o)
Cleanup all memory used by the SharkSslCAList object.

SharkSslCert_len
SHARKSSL_API U16 SharkSslCert_len(SharkSslCert cert)
Get certificate length.

SharkSslKey_vectSize
SHARKSSL_API U16 SharkSslKey_vectSize(const SharkSslKey key)
Returns the private or public key's "vector size" in bytes.

SharkSslRSAKey_getPublic
SHARKSSL_API U8 * SharkSslRSAKey_getPublic(SharkSslRSAKey privKey)
RSA public key extraction from a private key.

SharkSslCertInfo
struct SharkSslCertInfo SharkSslCertInfo
The peer's certificate information returned by SharkSslCon_getCertInfo.

SharkSslCertDN
struct SharkSslCertDN SharkSslCertDN
Certificate KeyUsage and ExtendedKeyUsage flags and relative pseudofunctions.

SharkSslCon_getEncData
U8 * SharkSslCon_getEncData(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_Encrypted returned by function SharkSslCo...

SharkSslCon_getHandshakeDataLen
U16 SharkSslCon_getHandshakeDataLen(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_Handshake returned by function SharkSslCo...

SharkSslCon_getEncDataLen
U16 SharkSslCon_getEncDataLen(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_Encrypted returned by function SharkSslCo...

SharkSslCon_getBufLen
U16 SharkSslCon_getBufLen(SharkSslCon *o)
Returns the length of the SharkSslCon input buffer.

SharkSslCon_RetVal
SharkSslCon_RetVal
The SharkSslCon_decrypt and SharkSslCon_encrypt return values.
Definition: SharkSSL.h:616

SharkSslCon_decrypt
SharkSslCon_RetVal SharkSslCon_decrypt(SharkSslCon *o, U16 readLen)
Decrypt the received data copied into the SharkSslCon receive buffer (the buffer returned by SharkSsl...

SharkSslCon_getEncBufSize
U16 SharkSslCon_getEncBufSize(SharkSslCon *o)
Returns the length of the buffer returned by SharkSslCon_getEncBufPtr.

SharkSslCon_encryptMore
U8 SharkSslCon_encryptMore(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_Encrypted returned by function SharkSslCo...

SharkSslCon_decryptMore
U8 SharkSslCon_decryptMore(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_Decrypted returned by function SharkSslCo...

SharkSslCon_getBuf
U8 * SharkSslCon_getBuf(SharkSslCon *o)
Returns a pointer to the SharkSslCon input/receive buffer.

SharkSslCon_getDecData
SHARKSSL_API U16 SharkSslCon_getDecData(SharkSslCon *o, U8 **bufPtr)
Get a pointer to the decoded data.

SharkSslCon_getAlertLevel
U8 SharkSslCon_getAlertLevel(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_AlertSend returned by function SharkSslCo...

SharkSslCon_copyDecData
U16 SharkSslCon_copyDecData(SharkSslCon *o, U8 *buf, U16 maxLen)
Copy decoded data to 'buf'.

SharkSslCon_getEncBufPtr
U8 * SharkSslCon_getEncBufPtr(SharkSslCon *o)
This function is used in conjunction with SharkSslCon_encrypt when using the zero copy send API.

SharkSslCon_setHandshakeDataSent
U16 SharkSslCon_setHandshakeDataSent(SharkSslCon *o, U16 length)
This function is used in conjunction with SharkSslCon_getHandshakeData.

SharkSslCon_getAlertDescription
U8 SharkSslCon_getAlertDescription(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_AlertSend returned by function SharkSslCo...

SharkSslCon_isHandshakeComplete
U8 SharkSslCon_isHandshakeComplete(SharkSslCon *o)
Returns the following values:

SharkSslCon_getHandshakeData
U8 * SharkSslCon_getHandshakeData(SharkSslCon *o)
This function is used in conjunction with state SharkSslCon_Handshake returned by function SharkSslCo...

SharkSslCon_encrypt
SharkSslCon_RetVal SharkSslCon_encrypt(SharkSslCon *o, U8 *buf, U16 maxLen)
Encrypt the data provided by parameter 'buf' or encrypt data in the SharkSslCon send buffer.

SharkSslCon_Encrypted
@ SharkSslCon_Encrypted
SharkSSL has successfully decrypted a chunk of data.
Definition: SharkSSL.h:695

SharkSslCon_Decrypted
@ SharkSslCon_Decrypted
Returned when a block of received data has been successfully decrypted.
Definition: SharkSSL.h:634

SharkSslCon_AlertSend
@ SharkSslCon_AlertSend
Returned when an SSL/TLS alert message must be sent to the peer side.
Definition: SharkSSL.h:674

SharkSslCon_AllocationError
@ SharkSslCon_AllocationError
The memory pool is too small.
Definition: SharkSSL.h:623

SharkSslCon_Error
@ SharkSslCon_Error
Indicates general errors, including configuration errors.
Definition: SharkSSL.h:619

SharkSslCon_CertificateError
@ SharkSslCon_CertificateError
Unrecognized format of a provided certificate.
Definition: SharkSSL.h:705

SharkSslCon_AlertRecv
@ SharkSslCon_AlertRecv
SharkSSL received an SSL/TLS alert message from the peer, which means that the peer either failed to ...
Definition: SharkSSL.h:683

SharkSslCon_HandshakeNotComplete
@ SharkSslCon_HandshakeNotComplete
An error condition returned by function SharkSslCon_encrypt if the SSL handshake is not completed.
Definition: SharkSSL.h:701

SharkSslCon_Handshake
@ SharkSslCon_Handshake
Returned when an SSL/TLS handshake message has been received or is to be sent.
Definition: SharkSSL.h:647

SharkSslCon_NeedMoreData
@ SharkSslCon_NeedMoreData
Returned when SharkSSL holds an incomplete SSL/TLS record or when the connection is initially establi...
Definition: SharkSSL.h:660

baGetUnixTime
U32 baGetUnixTime(void)
Platform dependent function returning seconds since Jan 1 1970.

SharkSsl
struct SharkSsl SharkSsl
A SharkSsl object is the coordinator for managing SharkSslCon objects (See SharkSsl_constructor for d...

SharkSslCert
const U8 * SharkSslCert
The SharkSSL Certificate is in a binary format optimized for speed and size.
Definition: SharkSSL.h:323

SharkSslASN1Create_key
SHARKSSL_API int SharkSslASN1Create_key(struct SharkSslASN1Create *o, const SharkSslKey key)
Convert a SharkSslKey to ASN.1 representation.

SharkSslCAList
const U8 * SharkSslCAList
The SharkSSL Certificate Authority (CA) List is in a binary format optimized for speed and size.
Definition: SharkSSL.h:511

SharkSslCon
struct SharkSslCon SharkSslCon
SharkSslCon is an opaque handle returned by function SharkSsl_createCon.
Definition: SharkSSL.h:559

SharkSsl_Role
SharkSsl_Role
Select one of client or server mode when creating a SharkSsl object.
Definition: SharkSSL.h:298

sharkssl_ECDSA_RetVal
sharkssl_ECDSA_RetVal
Return values from functions sharkssl_ECDSA_sign_hash, sharkssl_ECDSA_verify_hash.
Definition: SharkSSL.h:2470

sharkssl_RSA_RetVal
sharkssl_RSA_RetVal
Return values from functions sharkssl_RSA_public_encrypt, sharkssl_RSA_private_decrypt,...
Definition: SharkSSL.h:1865

SharkSslKey
U8 * SharkSslKey
The SharkSslKey type.
Definition: SharkSSL.h:315

SharkSsl_Unspecified
@ SharkSsl_Unspecified
Definition: SharkSSL.h:299

SharkSsl_Client
@ SharkSsl_Client
Definition: SharkSSL.h:301

SharkSsl_Server
@ SharkSsl_Server
Definition: SharkSSL.h:300

SHARKSSL_ECDSA_ALLOCATION_ERROR
@ SHARKSSL_ECDSA_ALLOCATION_ERROR
ALLOCATION_ERROR.
Definition: SharkSSL.h:2475

SHARKSSL_ECDSA_WRONG_KEY_FORMAT
@ SHARKSSL_ECDSA_WRONG_KEY_FORMAT
WRONG_KEY_FORMAT.
Definition: SharkSSL.h:2484

SHARKSSL_ECDSA_WRONG_SIGNATURE
@ SHARKSSL_ECDSA_WRONG_SIGNATURE
WRONG SIGNATURE.
Definition: SharkSSL.h:2499

SHARKSSL_ECDSA_WRONG_PARAMETERS
@ SHARKSSL_ECDSA_WRONG_PARAMETERS
WRONG_PARAMETERS.
Definition: SharkSSL.h:2481

SHARKSSL_ECDSA_OK
@ SHARKSSL_ECDSA_OK
OK.
Definition: SharkSSL.h:2472

SHARKSSL_ECDSA_VERIFICATION_FAIL
@ SHARKSSL_ECDSA_VERIFICATION_FAIL
VERIFICATION_FAIL.
Definition: SharkSSL.h:2496

SHARKSSL_ECDSA_INTERNAL_ERROR
@ SHARKSSL_ECDSA_INTERNAL_ERROR
INTERNAL_ERROR.
Definition: SharkSSL.h:2478

SHARKSSL_ECDSA_KEY_NOT_PRIVATE
@ SHARKSSL_ECDSA_KEY_NOT_PRIVATE
KEY_IS_NOT_PRIVATE.
Definition: SharkSSL.h:2487

SHARKSSL_ECDSA_KEY_NOT_PUBLIC
@ SHARKSSL_ECDSA_KEY_NOT_PUBLIC
KEY_IS_NOT_PUBLIC.
Definition: SharkSSL.h:2490

SHARKSSL_ECDSA_SIGLEN_TOO_SMALL
@ SHARKSSL_ECDSA_SIGLEN_TOO_SMALL
SIGLEN_TOO_SMALL.
Definition: SharkSSL.h:2493

SHARKSSL_RSA_INPUT_DATA_LENGTH_TOO_BIG
@ SHARKSSL_RSA_INPUT_DATA_LENGTH_TOO_BIG
INPUT_DATA_LENGTH_TOO_BIG.
Definition: SharkSSL.h:1885

SHARKSSL_RSA_WRONG_LABEL_LENGTH
@ SHARKSSL_RSA_WRONG_LABEL_LENGTH
WRONG_LABEL_LENGTH.
Definition: SharkSSL.h:1903

SHARKSSL_RSA_OK
@ SHARKSSL_RSA_OK
OK.
Definition: SharkSSL.h:1867

SHARKSSL_RSA_INTERNAL_ERROR
@ SHARKSSL_RSA_INTERNAL_ERROR
INTERNAL_ERROR.
Definition: SharkSSL.h:1873

SHARKSSL_RSA_WRONG_PARAMETERS
@ SHARKSSL_RSA_WRONG_PARAMETERS
WRONG_PARAMETERS.
Definition: SharkSSL.h:1876

SHARKSSL_RSA_WRONG_SIGNATURE
@ SHARKSSL_RSA_WRONG_SIGNATURE
WRONG SIGNATURE.
Definition: SharkSSL.h:1900

SHARKSSL_RSA_ALLOCATION_ERROR
@ SHARKSSL_RSA_ALLOCATION_ERROR
ALLOCATION_ERROR.
Definition: SharkSSL.h:1870

SHARKSSL_RSA_WRONG_KEY_FORMAT
@ SHARKSSL_RSA_WRONG_KEY_FORMAT
WRONG_KEY_FORMAT.
Definition: SharkSSL.h:1879

SHARKSSL_RSA_PKCS1_PADDING_ERROR
@ SHARKSSL_RSA_PKCS1_PADDING_ERROR
PKCS1_PADDING_ERROR.
Definition: SharkSSL.h:1891

SHARKSSL_RSA_INPUT_DATA_LENGTH_AND_KEY_LENGTH_MISMATCH
@ SHARKSSL_RSA_INPUT_DATA_LENGTH_AND_KEY_LENGTH_MISMATCH
INPUT_DATA_LENGTH_AND_KEY_LENGTH_MISMATCH.
Definition: SharkSSL.h:1888

SHARKSSL_RSA_WRONG_KEY_LENGTH
@ SHARKSSL_RSA_WRONG_KEY_LENGTH
WRONG_KEY_LENGTH.
Definition: SharkSSL.h:1882

SHARKSSL_RSA_VERIFICATION_FAIL
@ SHARKSSL_RSA_VERIFICATION_FAIL
VERIFICATION FAIL.
Definition: SharkSSL.h:1897

SHARKSSL_RSA_KEY_NOT_PRIVATE
@ SHARKSSL_RSA_KEY_NOT_PRIVATE
KEY_IS_NOT_PRIVATE.
Definition: SharkSSL.h:1894

SharkSslCon_acquireSession
SHARKSSL_API SharkSslSession * SharkSslCon_acquireSession(SharkSslCon *o)
Request a SharkSslSession object from the client's session pool.

SharkSslCon_releaseSession
SHARKSSL_API U8 SharkSslCon_releaseSession(SharkSslCon *o)
experimental

SharkSslSession
struct SharkSslSession SharkSslSession
SharkSslSession is an opaque handle returned by function SharkSslCon_acquireSession.
Definition: SharkSSL.h:271

SharkSslCon_resumeSession
SHARKSSL_API U8 SharkSslCon_resumeSession(SharkSslCon *o, SharkSslSession *s)
Resume an existing session.

SharkSslCon_isResumed
SHARKSSL_API U8 SharkSslCon_isResumed(SharkSslCon *o)
Returns 1 if the current session is a resumed one.

SharkSslSession_getLatestAccessTime
SHARKSSL_API U32 SharkSslSession_getLatestAccessTime(SharkSslSession *o)
Returns the last time the session was accessed.

SharkSslSession_release
SHARKSSL_API U8 SharkSslSession_release(SharkSslSession *o, SharkSsl *s)
Release a session created by function SharkSslCon_acquireSession.

SharkSslASN1Create
Opaque object used when creating ASN.1 encoded data.
Definition: SharkSslASN1.h:228

SharkSslBitExtReq
https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/nss_tech_notes/nss_tech_note3 http://to...
Definition: SharkSslASN1.h:239

SharkSslCertDN
Certificate KeyUsage and ExtendedKeyUsage flags and relative pseudofunctions.
Definition: SharkSSL.h:782

SharkSslCertDN::unitLen
U8 unitLen
length in bytes of the field "organization"
Definition: SharkSSL.h:798

SharkSslCertDN::provinceLen
U8 provinceLen
length in bytes of the field "country"
Definition: SharkSSL.h:795

SharkSslCertDN::province
const U8 * province
State or Province.
Definition: SharkSSL.h:784

SharkSslCertDN::localityLen
U8 localityLen
length in bytes of the field "province"
Definition: SharkSSL.h:796

SharkSslCertDN::unit
const U8 * unit
Organizational Unit (OU: department or organization unit)
Definition: SharkSSL.h:787

SharkSslCertDN::organization
const U8 * organization
Organization Name (company or department)
Definition: SharkSSL.h:786

SharkSslCertDN::commonName
const U8 * commonName
Common Name is the Host + Domain Name (example: www.mycompany.com, where www is host and mycompany....
Definition: SharkSSL.h:791

SharkSslCertDN::countryName
const U8 * countryName
ISO3166 country code.
Definition: SharkSSL.h:783

SharkSslCertDN::organizationLen
U8 organizationLen
length in bytes of the field "locality"
Definition: SharkSSL.h:797

SharkSslCertDN::commonNameLen
U8 commonNameLen
length in bytes of the field "unit"
Definition: SharkSSL.h:799

SharkSslCertDN::locality
const U8 * locality
The city or town name.
Definition: SharkSSL.h:785

SharkSslCertDN::emailAddressLen
U8 emailAddressLen
length in bytes of the field "common name"
Definition: SharkSSL.h:800

SharkSslCertInfo
The peer's certificate information returned by SharkSslCon_getCertInfo.
Definition: SharkSSL.h:840

SharkSslCertInfo::timeFromLen
U8 timeFromLen
Length of 'timeFrom'.
Definition: SharkSSL.h:896

SharkSslCertInfo::timeToLen
U8 timeToLen
Length of 'timeTo'.
Definition: SharkSSL.h:899

SharkSslCertInfo::snLen
U16 snLen
Length of 'sn' (serial number)
Definition: SharkSSL.h:842

SharkSslCertInfo::timeTo
U8 * timeTo
Certificate expiration date (in Time format: [YY]YYMMDDHHMMSSZ) UTCTime: 2-digit year; GeneralizedTim...
Definition: SharkSSL.h:867

SharkSslCertInfo::CAflag
U8 CAflag
The Certificate Authority flag (CA) is set to one if the certificate is a CA i.e.
Definition: SharkSSL.h:852

SharkSslCertInfo::issuer
SharkSslCertDN issuer
The entity who has signed and issued the certificate (RFC 2459 4.1.2.4)
Definition: SharkSSL.h:873

SharkSslCertInfo::subject
SharkSslCertDN subject
The entity associated with the public key (RFC 2459 4.1.2.6).
Definition: SharkSSL.h:879

SharkSslCertInfo::sn
U8 * sn
Binary serial number.
Definition: SharkSSL.h:856

SharkSslCertInfo::timeFrom
U8 * timeFrom
Certificate is valid from date (in Time format: [YY]YYMMDDHHMMSSZ) UTCTime: 2-digit year; Generalized...
Definition: SharkSSL.h:861

SharkSslCertInfo::subjectAltNamesPtr
U8 * subjectAltNamesPtr
Subject Alternative Names subjectAltNamesPtr is a pointer to an ASN1 sequence, whose length is subjec...
Definition: SharkSSL.h:892

SharkSslCertInfo::parent
struct SharkSslCertInfo * parent
Pointer to parent node when the SharkSslCertInfo object is part of a certificate chain.
Definition: SharkSSL.h:930

SharkSslCertInfo::version
U8 version
Certificate version is offset at 0 so add +1 for actual version number.
Definition: SharkSSL.h:847

SharkSslCertStore
SharkSslCertStore is a container object used when assembling a SharkSslCAList.
Definition: SharkSSL.h:2615

SharkSsl
A SharkSsl object is the coordinator for managing SharkSslCon objects (See SharkSsl_constructor for d...
Definition: SharkSSL.h:567