S2OPC OPCUA Toolkit
Loading...
Searching...
No Matches
sopc_key_manager_lib_itf.h
Go to the documentation of this file.
1/*
2 * Licensed to Systerel under one or more contributor license
3 * agreements. See the NOTICE file distributed with this work
4 * for additional information regarding copyright ownership.
5 * Systerel licenses this file to you under the Apache
6 * License, Version 2.0 (the "License"); you may not use this
7 * file except in compliance with the License. You may obtain
8 * a copy of the License at
9 *
10 * http://www.apache.org/licenses/LICENSE-2.0
11 *
12 * Unless required by applicable law or agreed to in writing,
13 * software distributed under the License is distributed on an
14 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 * KIND, either express or implied. See the License for the
16 * specific language governing permissions and limitations
17 * under the License.
18 */
19
29#ifndef SOPC_KEY_MANAGER_LIB_ITF_H_
30#define SOPC_KEY_MANAGER_LIB_ITF_H_
31
32#include <stddef.h>
33
34#include "sopc_crypto_decl.h"
35#include "sopc_enums.h"
36
37#include "sopc_crypto_struct_lib_itf.h"
38
39/* ------------------------------------------------------------------------------------------------
40 * AsymmetricKey API
41 * ------------------------------------------------------------------------------------------------
42 */
43
64SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_CreateFromBuffer(const uint8_t* buffer,
65 uint32_t lenBuf,
66 bool is_public,
67 SOPC_AsymmetricKey** ppKey);
68
91SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_CreateFromFile(const char* szPath,
92 SOPC_AsymmetricKey** ppKey,
93 char* password,
94 uint32_t lenPassword);
95
105SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_GenRSA(uint32_t RSAKeySize, SOPC_AsymmetricKey** ppKey);
106
124SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_CreateFromCertificate(const SOPC_CertificateList* pCert,
125 SOPC_AsymmetricKey** pKey);
126
134void SOPC_KeyManager_AsymmetricKey_Free(SOPC_AsymmetricKey* pKey);
135
156SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_ToDER(const SOPC_AsymmetricKey* pKey,
157 bool is_public,
158 uint8_t* pDest,
159 uint32_t lenDest,
160 uint32_t* pLenWritten);
161
179SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_ToPEMFile(SOPC_AsymmetricKey* pKey,
180 const bool bIsPublic,
181 const char* filePath,
182 const char* pwd,
183 const uint32_t pwdLen);
184
194SOPC_ReturnStatus SOPC_KeyManager_SerializedAsymmetricKey_CreateFromKey(const SOPC_AsymmetricKey* pKey,
195 bool is_public,
196 SOPC_SerializedAsymmetricKey** out);
197
198/* ------------------------------------------------------------------------------------------------
199 * Cert API
200 * ------------------------------------------------------------------------------------------------
201 */
202
222SOPC_ReturnStatus SOPC_KeyManager_Certificate_CreateOrAddFromDER(const uint8_t* bufferDER,
223 uint32_t lenDER,
224 SOPC_CertificateList** ppCert);
225
245SOPC_ReturnStatus SOPC_KeyManager_Certificate_CreateOrAddFromFile(const char* szPath, SOPC_CertificateList** ppCert);
246
256void SOPC_KeyManager_Certificate_Free(SOPC_CertificateList* pCert);
257
275SOPC_ReturnStatus SOPC_KeyManager_Certificate_ToDER(const SOPC_CertificateList* pCert,
276 uint8_t** ppDest,
277 uint32_t* pLenAllocated);
278
288SOPC_ReturnStatus SOPC_KeyManager_Certificate_ToDER_Files(SOPC_CertificateList* pCerts, const char* directoryPath);
289
312SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetThumbprint(const SOPC_CryptoProvider* pProvider,
313 const SOPC_CertificateList* pCert,
314 uint8_t** ppDest,
315 uint32_t* lenDest);
316
335bool SOPC_KeyManager_Certificate_CheckApplicationUri(const SOPC_CertificateList* pCert, const char* applicationUri);
336
355SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetMaybeApplicationUri(const SOPC_CertificateList* pCert,
356 char** ppApplicationUri,
357 size_t* pStringLength);
358
369SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetListLength(const SOPC_CertificateList* pCert, size_t* pLength);
370
385SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetSubjectName(const SOPC_CertificateList* pCert,
386 char** ppSubjectName,
387 uint32_t* pSubjectNameLen);
388
404SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetSanDnsNames(const SOPC_CertificateList* pCert,
405 char*** ppDnsNameArray,
406 uint32_t* pArrayLength);
407
424SOPC_ReturnStatus SOPC_KeyManager_CertificateList_FindCertInList(const SOPC_CertificateList* pList,
425 const SOPC_CertificateList* pCert,
426 bool* pbMatch);
427
445SOPC_ReturnStatus SOPC_KeyManager_CertificateList_RemoveCertFromSHA1(SOPC_CertificateList** ppCertList,
446 SOPC_CRLList** ppCRLList,
447 const char* pThumbprint,
448 bool* pbMatch,
449 bool* pbIsIssuer);
450
462char* SOPC_KeyManager_Certificate_GetCstring_SHA1(const SOPC_CertificateList* pCert);
463
475SOPC_ReturnStatus SOPC_KeyManager_Certificate_IsSelfSigned(const SOPC_CertificateList* pCert, bool* pbIsSelfSigned);
476
488SOPC_ReturnStatus SOPC_KeyManager_Certificate_Copy(const SOPC_CertificateList* pCert,
489 SOPC_CertificateList** ppCertCopy);
490
504SOPC_ReturnStatus SOPC_KeyManager_CertificateList_AttachToSerializedArray(const SOPC_CertificateList* pCerts,
505 SOPC_SerializedCertificate** pSerializedArray,
506 uint32_t* pLenArray);
507
508/* ------------------------------------------------------------------------------------------------
509 * Certificate Revocation List API
510 * ------------------------------------------------------------------------------------------------
511 */
512
532SOPC_ReturnStatus SOPC_KeyManager_CRL_CreateOrAddFromDER(const uint8_t* bufferDER,
533 uint32_t lenDER,
534 SOPC_CRLList** ppCRL);
535
555SOPC_ReturnStatus SOPC_KeyManager_CRL_CreateOrAddFromFile(const char* szPath, SOPC_CRLList** ppCRL);
556
566SOPC_ReturnStatus SOPC_KeyManager_CRL_ToDER_Files(SOPC_CRLList* pCrls, const char* directoryPath);
567
578SOPC_ReturnStatus SOPC_KeyManager_CRL_Copy(const SOPC_CRLList* pCrl, SOPC_CRLList** ppCrlCopy);
579
590SOPC_ReturnStatus SOPC_KeyManager_CRL_GetListLength(const SOPC_CRLList* pCrl, size_t* pLength);
591
605SOPC_ReturnStatus SOPC_KeyManager_CRLList_AttachToSerializedArray(const SOPC_CRLList* pCRLs,
606 SOPC_SerializedCRL** pSerializedArray,
607 uint32_t* pLenArray);
608
615void SOPC_KeyManager_CRL_Free(SOPC_CRLList* pCRL);
616
617/* ------------------------------------------------------------------------------------------------
618 * Certificate Signing request API
619 * ------------------------------------------------------------------------------------------------
620 */
621
643SOPC_ReturnStatus SOPC_KeyManager_CSR_Create(const char* subjectName,
644 const bool bIsServer,
645 const char* mdType,
646 const char* uri,
647 char** pDnsArray,
648 uint32_t arrayLength,
649 SOPC_CSR** ppCSR);
650
665SOPC_ReturnStatus SOPC_KeyManager_CSR_ToDER(SOPC_CSR* pCSR,
666 SOPC_AsymmetricKey* pKey,
667 uint8_t** ppDest,
668 uint32_t* pLenAllocated);
669
675void SOPC_KeyManager_CSR_Free(SOPC_CSR* pCSR);
676
694SOPC_ReturnStatus SOPC_KeyManager_CertificateList_CheckCRL(SOPC_CertificateList* pCert,
695 const SOPC_CRLList* pCRL,
696 bool* bMatch);
697
698#endif /* SOPC_KEY_MANAGER_LIB_ITF_H_ */
sopc_crypto_decl.h
Defines the common declarations for the cryptographic objects. The structures and macros defined in t...
SOPC_SerializedAsymmetricKey
SOPC_SecretBuffer SOPC_SerializedAsymmetricKey
A serialized representation of an asymmetric key.
Definition sopc_crypto_decl.h:70
sopc_crypto_struct_lib_itf.h
Defines the cryptographic abstraction interface for the object. A cryptographic implementation must d...
sopc_enums.h
SOPC_ReturnStatus
enum _SOPC_ReturnStatus SOPC_ReturnStatus
Common enumerations for S2OPC.
SOPC_KeyManager_Certificate_GetSanDnsNames
SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetSanDnsNames(const SOPC_CertificateList *pCert, char ***ppDnsNameArray, uint32_t *pArrayLength)
Returns all the DNS names of certificate pCert as an array of C String.
SOPC_KeyManager_CRL_GetListLength
SOPC_ReturnStatus SOPC_KeyManager_CRL_GetListLength(const SOPC_CRLList *pCrl, size_t *pLength)
Returns the number of chained CRL in pCrl list.
SOPC_KeyManager_SerializedAsymmetricKey_CreateFromKey
SOPC_ReturnStatus SOPC_KeyManager_SerializedAsymmetricKey_CreateFromKey(const SOPC_AsymmetricKey *pKey, bool is_public, SOPC_SerializedAsymmetricKey **out)
Creates a serialized asymmetric key from an SOPC_AsymmetricKey structure.
SOPC_KeyManager_AsymmetricKey_GenRSA
SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_GenRSA(uint32_t RSAKeySize, SOPC_AsymmetricKey **ppKey)
Generate an RSA asymmetric key.
SOPC_KeyManager_CRL_CreateOrAddFromFile
SOPC_ReturnStatus SOPC_KeyManager_CRL_CreateOrAddFromFile(const char *szPath, SOPC_CRLList **ppCRL)
Creates a new Certificate Revocation List (CRL) from a file in the DER or PEM format,...
SOPC_KeyManager_AsymmetricKey_ToPEMFile
SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_ToPEMFile(SOPC_AsymmetricKey *pKey, const bool bIsPublic, const char *filePath, const char *pwd, const uint32_t pwdLen)
Write an asymmetric key to a PEM file.
SOPC_KeyManager_Certificate_GetListLength
SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetListLength(const SOPC_CertificateList *pCert, size_t *pLength)
Return the number of chained certificates in the certificate list pCert.
SOPC_KeyManager_Certificate_CheckApplicationUri
bool SOPC_KeyManager_Certificate_CheckApplicationUri(const SOPC_CertificateList *pCert, const char *applicationUri)
Verify the application URI embedded in a certificate.
SOPC_KeyManager_CSR_Free
void SOPC_KeyManager_CSR_Free(SOPC_CSR *pCSR)
Frees a CSR created with SOPC_KeyManager_CSR_Create.
SOPC_KeyManager_Certificate_CreateOrAddFromDER
SOPC_ReturnStatus SOPC_KeyManager_Certificate_CreateOrAddFromDER(const uint8_t *bufferDER, uint32_t lenDER, SOPC_CertificateList **ppCert)
Creates a new Certificate (signed public key) from a DER encoded buffer, or add it to an existing cer...
SOPC_KeyManager_CertificateList_CheckCRL
SOPC_ReturnStatus SOPC_KeyManager_CertificateList_CheckCRL(SOPC_CertificateList *pCert, const SOPC_CRLList *pCRL, bool *bMatch)
Checks if each CA certificate from pCert have a revocation list available in pCRL.
SOPC_KeyManager_CSR_ToDER
SOPC_ReturnStatus SOPC_KeyManager_CSR_ToDER(SOPC_CSR *pCSR, SOPC_AsymmetricKey *pKey, uint8_t **ppDest, uint32_t *pLenAllocated)
Encodes CSR pCSR as a DER buffer and writes the result in ppDest.
SOPC_KeyManager_Certificate_CreateOrAddFromFile
SOPC_ReturnStatus SOPC_KeyManager_Certificate_CreateOrAddFromFile(const char *szPath, SOPC_CertificateList **ppCert)
Creates a new Certificate (signed public key) from a file in the DER or PEM format,...
SOPC_KeyManager_AsymmetricKey_CreateFromBuffer
SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_CreateFromBuffer(const uint8_t *buffer, uint32_t lenBuf, bool is_public, SOPC_AsymmetricKey **ppKey)
Creates an asymmetric key (usually a private key) from in-memory buffer buffer.
SOPC_KeyManager_Certificate_GetThumbprint
SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetThumbprint(const SOPC_CryptoProvider *pProvider, const SOPC_CertificateList *pCert, uint8_t **ppDest, uint32_t *lenDest)
Computes and writes the thumbprint of pCert to pDest.
SOPC_KeyManager_CertificateList_RemoveCertFromSHA1
SOPC_ReturnStatus SOPC_KeyManager_CertificateList_RemoveCertFromSHA1(SOPC_CertificateList **ppCertList, SOPC_CRLList **ppCRLList, const char *pThumbprint, bool *pbMatch, bool *pbIsIssuer)
Remove a single Certificate from its thumbprint. If the Certificate is a CA Certificate then all the ...
SOPC_KeyManager_AsymmetricKey_CreateFromFile
SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_CreateFromFile(const char *szPath, SOPC_AsymmetricKey **ppKey, char *password, uint32_t lenPassword)
Creates an asymmetric key (usually a private key) from a file in the DER or PEM format.
SOPC_KeyManager_AsymmetricKey_CreateFromCertificate
SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_CreateFromCertificate(const SOPC_CertificateList *pCert, SOPC_AsymmetricKey **pKey)
Returns the public key of the signed public key.
SOPC_KeyManager_AsymmetricKey_ToDER
SOPC_ReturnStatus SOPC_KeyManager_AsymmetricKey_ToDER(const SOPC_AsymmetricKey *pKey, bool is_public, uint8_t *pDest, uint32_t lenDest, uint32_t *pLenWritten)
Encodes the pKey as a DER buffer, and writes the result in pDest.
SOPC_KeyManager_Certificate_ToDER
SOPC_ReturnStatus SOPC_KeyManager_Certificate_ToDER(const SOPC_CertificateList *pCert, uint8_t **ppDest, uint32_t *pLenAllocated)
Encodes a pCert as a DER buffer and writes the result in ppDest.
SOPC_KeyManager_CRL_Copy
SOPC_ReturnStatus SOPC_KeyManager_CRL_Copy(const SOPC_CRLList *pCrl, SOPC_CRLList **ppCrlCopy)
Makes a copy of a given CRL list.
SOPC_KeyManager_CertificateList_AttachToSerializedArray
SOPC_ReturnStatus SOPC_KeyManager_CertificateList_AttachToSerializedArray(const SOPC_CertificateList *pCerts, SOPC_SerializedCertificate **pSerializedArray, uint32_t *pLenArray)
Attach a DER certificate list to a serialized certificate array.
SOPC_KeyManager_CRL_CreateOrAddFromDER
SOPC_ReturnStatus SOPC_KeyManager_CRL_CreateOrAddFromDER(const uint8_t *bufferDER, uint32_t lenDER, SOPC_CRLList **ppCRL)
Creates a new Certificate Revocation List (CRL) from a DER encoded buffer, or add it to an existing C...
SOPC_KeyManager_Certificate_GetSubjectName
SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetSubjectName(const SOPC_CertificateList *pCert, char **ppSubjectName, uint32_t *pSubjectNameLen)
Returns the subject name of certificate pCert as a C String.
SOPC_KeyManager_CertificateList_FindCertInList
SOPC_ReturnStatus SOPC_KeyManager_CertificateList_FindCertInList(const SOPC_CertificateList *pList, const SOPC_CertificateList *pCert, bool *pbMatch)
Finds whether a certificate is in the given certificate list or not.
SOPC_KeyManager_Certificate_Copy
SOPC_ReturnStatus SOPC_KeyManager_Certificate_Copy(const SOPC_CertificateList *pCert, SOPC_CertificateList **ppCertCopy)
Makes a copy of a given certificate list.
SOPC_KeyManager_Certificate_Free
void SOPC_KeyManager_Certificate_Free(SOPC_CertificateList *pCert)
Frees a Certificate created with SOPC_KeyManager_Certificate_CreateOrAddFromFile or SOPC_KeyManager_C...
SOPC_KeyManager_CRL_ToDER_Files
SOPC_ReturnStatus SOPC_KeyManager_CRL_ToDER_Files(SOPC_CRLList *pCrls, const char *directoryPath)
Write all the CRL ( pCrls ) in DER files. at destination directoryPath . File names are defined using...
SOPC_KeyManager_CRLList_AttachToSerializedArray
SOPC_ReturnStatus SOPC_KeyManager_CRLList_AttachToSerializedArray(const SOPC_CRLList *pCRLs, SOPC_SerializedCRL **pSerializedArray, uint32_t *pLenArray)
Attach a DER CRL list to a serialized CRL array.
SOPC_KeyManager_CRL_Free
void SOPC_KeyManager_CRL_Free(SOPC_CRLList *pCRL)
Frees a Certificate created with SOPC_KeyManager_CRL_CreateOrAddFromFile or SOPC_KeyManager_CRL_Creat...
SOPC_KeyManager_Certificate_ToDER_Files
SOPC_ReturnStatus SOPC_KeyManager_Certificate_ToDER_Files(SOPC_CertificateList *pCerts, const char *directoryPath)
Write all the certificates of pCerts in DER files at destination directoryPath . File names are defin...
SOPC_KeyManager_Certificate_IsSelfSigned
SOPC_ReturnStatus SOPC_KeyManager_Certificate_IsSelfSigned(const SOPC_CertificateList *pCert, bool *pbIsSelfSigned)
Whether the first item of a certificate list is self signed.
SOPC_KeyManager_AsymmetricKey_Free
void SOPC_KeyManager_AsymmetricKey_Free(SOPC_AsymmetricKey *pKey)
Frees a previously created asymmetric key created with SOPC_KeyManager_AsymmetricKey_CreateFromBuffer...
SOPC_KeyManager_CSR_Create
SOPC_ReturnStatus SOPC_KeyManager_CSR_Create(const char *subjectName, const bool bIsServer, const char *mdType, const char *uri, char **pDnsArray, uint32_t arrayLength, SOPC_CSR **ppCSR)
Create a certificate signing request signed with pKey.
SOPC_KeyManager_Certificate_GetCstring_SHA1
char * SOPC_KeyManager_Certificate_GetCstring_SHA1(const SOPC_CertificateList *pCert)
Returns the SHA-1 thumbprint of a certificate.
SOPC_KeyManager_Certificate_GetMaybeApplicationUri
SOPC_ReturnStatus SOPC_KeyManager_Certificate_GetMaybeApplicationUri(const SOPC_CertificateList *pCert, char **ppApplicationUri, size_t *pStringLength)
Copy the application URI embedded in a certificate.
SOPC_AsymmetricKey
The asymmetric key representation.
Definition key_manager_cyclone.h:42
SOPC_Buffer
Bytes buffer structure.
Definition sopc_buffer.h:38
SOPC_CRLList
A list of Certificate Revocation Lists.
Definition key_manager_cyclone.h:79
SOPC_CSR
Definition key_manager_cyclone.h:86
SOPC_CertificateList
The signed public key representation.
Definition key_manager_cyclone.h:60
SOPC_CryptoProvider
The SOPC_CryptoProvider context.
Definition sopc_crypto_provider.h:43
Generated on Mon Feb 3 2025 15:08:45 for S2OPC OPCUA Toolkit by doxygen 1.12.0