mbed TLS v2.16.7
oid.h
Go to the documentation of this file.
1 
6 /*
7  * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
8  * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
9  *
10  * This file is provided under the Apache License 2.0, or the
11  * GNU General Public License v2.0 or later.
12  *
13  * **********
14  * Apache License 2.0:
15  *
16  * Licensed under the Apache License, Version 2.0 (the "License"); you may
17  * not use this file except in compliance with the License.
18  * You may obtain a copy of the License at
19  *
20  * http://www.apache.org/licenses/LICENSE-2.0
21  *
22  * Unless required by applicable law or agreed to in writing, software
23  * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
24  * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
25  * See the License for the specific language governing permissions and
26  * limitations under the License.
27  *
28  * **********
29  *
30  * **********
31  * GNU General Public License v2.0 or later:
32  *
33  * This program is free software; you can redistribute it and/or modify
34  * it under the terms of the GNU General Public License as published by
35  * the Free Software Foundation; either version 2 of the License, or
36  * (at your option) any later version.
37  *
38  * This program is distributed in the hope that it will be useful,
39  * but WITHOUT ANY WARRANTY; without even the implied warranty of
40  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
41  * GNU General Public License for more details.
42  *
43  * You should have received a copy of the GNU General Public License along
44  * with this program; if not, write to the Free Software Foundation, Inc.,
45  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
46  *
47  * **********
48  *
49  * This file is part of mbed TLS (https://tls.mbed.org)
50  */
51 #ifndef MBEDTLS_OID_H
52 #define MBEDTLS_OID_H
53 
54 #if !defined(MBEDTLS_CONFIG_FILE)
55 #include "config.h"
56 #else
57 #include MBEDTLS_CONFIG_FILE
58 #endif
59 
60 #include "asn1.h"
61 #include "pk.h"
62 
63 #include <stddef.h>
64 
65 #if defined(MBEDTLS_CIPHER_C)
66 #include "cipher.h"
67 #endif
68 
69 #if defined(MBEDTLS_MD_C)
70 #include "md.h"
71 #endif
72 
73 #if defined(MBEDTLS_X509_USE_C) || defined(MBEDTLS_X509_CREATE_C)
74 #include "x509.h"
75 #endif
76 
77 #define MBEDTLS_ERR_OID_NOT_FOUND -0x002E
78 #define MBEDTLS_ERR_OID_BUF_TOO_SMALL -0x000B
80 /*
81  * Top level OID tuples
82  */
83 #define MBEDTLS_OID_ISO_MEMBER_BODIES "\x2a" /* {iso(1) member-body(2)} */
84 #define MBEDTLS_OID_ISO_IDENTIFIED_ORG "\x2b" /* {iso(1) identified-organization(3)} */
85 #define MBEDTLS_OID_ISO_CCITT_DS "\x55" /* {joint-iso-ccitt(2) ds(5)} */
86 #define MBEDTLS_OID_ISO_ITU_COUNTRY "\x60" /* {joint-iso-itu-t(2) country(16)} */
87 
88 /*
89  * ISO Member bodies OID parts
90  */
91 #define MBEDTLS_OID_COUNTRY_US "\x86\x48" /* {us(840)} */
92 #define MBEDTLS_OID_ORG_RSA_DATA_SECURITY "\x86\xf7\x0d" /* {rsadsi(113549)} */
93 #define MBEDTLS_OID_RSA_COMPANY MBEDTLS_OID_ISO_MEMBER_BODIES MBEDTLS_OID_COUNTRY_US \
94  MBEDTLS_OID_ORG_RSA_DATA_SECURITY /* {iso(1) member-body(2) us(840) rsadsi(113549)} */
95 #define MBEDTLS_OID_ORG_ANSI_X9_62 "\xce\x3d" /* ansi-X9-62(10045) */
96 #define MBEDTLS_OID_ANSI_X9_62 MBEDTLS_OID_ISO_MEMBER_BODIES MBEDTLS_OID_COUNTRY_US \
97  MBEDTLS_OID_ORG_ANSI_X9_62
98 
99 /*
100  * ISO Identified organization OID parts
101  */
102 #define MBEDTLS_OID_ORG_DOD "\x06" /* {dod(6)} */
103 #define MBEDTLS_OID_ORG_OIW "\x0e"
104 #define MBEDTLS_OID_OIW_SECSIG MBEDTLS_OID_ORG_OIW "\x03"
105 #define MBEDTLS_OID_OIW_SECSIG_ALG MBEDTLS_OID_OIW_SECSIG "\x02"
106 #define MBEDTLS_OID_OIW_SECSIG_SHA1 MBEDTLS_OID_OIW_SECSIG_ALG "\x1a"
107 #define MBEDTLS_OID_ORG_CERTICOM "\x81\x04" /* certicom(132) */
108 #define MBEDTLS_OID_CERTICOM MBEDTLS_OID_ISO_IDENTIFIED_ORG MBEDTLS_OID_ORG_CERTICOM
109 #define MBEDTLS_OID_ORG_TELETRUST "\x24" /* teletrust(36) */
110 #define MBEDTLS_OID_TELETRUST MBEDTLS_OID_ISO_IDENTIFIED_ORG MBEDTLS_OID_ORG_TELETRUST
111 
112 /*
113  * ISO ITU OID parts
114  */
115 #define MBEDTLS_OID_ORGANIZATION "\x01" /* {organization(1)} */
116 #define MBEDTLS_OID_ISO_ITU_US_ORG MBEDTLS_OID_ISO_ITU_COUNTRY MBEDTLS_OID_COUNTRY_US MBEDTLS_OID_ORGANIZATION /* {joint-iso-itu-t(2) country(16) us(840) organization(1)} */
117 
118 #define MBEDTLS_OID_ORG_GOV "\x65" /* {gov(101)} */
119 #define MBEDTLS_OID_GOV MBEDTLS_OID_ISO_ITU_US_ORG MBEDTLS_OID_ORG_GOV /* {joint-iso-itu-t(2) country(16) us(840) organization(1) gov(101)} */
120 
121 #define MBEDTLS_OID_ORG_NETSCAPE "\x86\xF8\x42" /* {netscape(113730)} */
122 #define MBEDTLS_OID_NETSCAPE MBEDTLS_OID_ISO_ITU_US_ORG MBEDTLS_OID_ORG_NETSCAPE /* Netscape OID {joint-iso-itu-t(2) country(16) us(840) organization(1) netscape(113730)} */
123 
124 /* ISO arc for standard certificate and CRL extensions */
125 #define MBEDTLS_OID_ID_CE MBEDTLS_OID_ISO_CCITT_DS "\x1D"
127 #define MBEDTLS_OID_NIST_ALG MBEDTLS_OID_GOV "\x03\x04"
134 #define MBEDTLS_OID_PKIX MBEDTLS_OID_ISO_IDENTIFIED_ORG MBEDTLS_OID_ORG_DOD "\x01\x05\x05\x07"
135 
136 /*
137  * Arc for standard naming attributes
138  */
139 #define MBEDTLS_OID_AT MBEDTLS_OID_ISO_CCITT_DS "\x04"
140 #define MBEDTLS_OID_AT_CN MBEDTLS_OID_AT "\x03"
141 #define MBEDTLS_OID_AT_SUR_NAME MBEDTLS_OID_AT "\x04"
142 #define MBEDTLS_OID_AT_SERIAL_NUMBER MBEDTLS_OID_AT "\x05"
143 #define MBEDTLS_OID_AT_COUNTRY MBEDTLS_OID_AT "\x06"
144 #define MBEDTLS_OID_AT_LOCALITY MBEDTLS_OID_AT "\x07"
145 #define MBEDTLS_OID_AT_STATE MBEDTLS_OID_AT "\x08"
146 #define MBEDTLS_OID_AT_ORGANIZATION MBEDTLS_OID_AT "\x0A"
147 #define MBEDTLS_OID_AT_ORG_UNIT MBEDTLS_OID_AT "\x0B"
148 #define MBEDTLS_OID_AT_TITLE MBEDTLS_OID_AT "\x0C"
149 #define MBEDTLS_OID_AT_POSTAL_ADDRESS MBEDTLS_OID_AT "\x10"
150 #define MBEDTLS_OID_AT_POSTAL_CODE MBEDTLS_OID_AT "\x11"
151 #define MBEDTLS_OID_AT_GIVEN_NAME MBEDTLS_OID_AT "\x2A"
152 #define MBEDTLS_OID_AT_INITIALS MBEDTLS_OID_AT "\x2B"
153 #define MBEDTLS_OID_AT_GENERATION_QUALIFIER MBEDTLS_OID_AT "\x2C"
154 #define MBEDTLS_OID_AT_UNIQUE_IDENTIFIER MBEDTLS_OID_AT "\x2D"
155 #define MBEDTLS_OID_AT_DN_QUALIFIER MBEDTLS_OID_AT "\x2E"
156 #define MBEDTLS_OID_AT_PSEUDONYM MBEDTLS_OID_AT "\x41"
158 #define MBEDTLS_OID_DOMAIN_COMPONENT "\x09\x92\x26\x89\x93\xF2\x2C\x64\x01\x19"
160 /*
161  * OIDs for standard certificate extensions
162  */
163 #define MBEDTLS_OID_AUTHORITY_KEY_IDENTIFIER MBEDTLS_OID_ID_CE "\x23"
164 #define MBEDTLS_OID_SUBJECT_KEY_IDENTIFIER MBEDTLS_OID_ID_CE "\x0E"
165 #define MBEDTLS_OID_KEY_USAGE MBEDTLS_OID_ID_CE "\x0F"
166 #define MBEDTLS_OID_CERTIFICATE_POLICIES MBEDTLS_OID_ID_CE "\x20"
167 #define MBEDTLS_OID_POLICY_MAPPINGS MBEDTLS_OID_ID_CE "\x21"
168 #define MBEDTLS_OID_SUBJECT_ALT_NAME MBEDTLS_OID_ID_CE "\x11"
169 #define MBEDTLS_OID_ISSUER_ALT_NAME MBEDTLS_OID_ID_CE "\x12"
170 #define MBEDTLS_OID_SUBJECT_DIRECTORY_ATTRS MBEDTLS_OID_ID_CE "\x09"
171 #define MBEDTLS_OID_BASIC_CONSTRAINTS MBEDTLS_OID_ID_CE "\x13"
172 #define MBEDTLS_OID_NAME_CONSTRAINTS MBEDTLS_OID_ID_CE "\x1E"
173 #define MBEDTLS_OID_POLICY_CONSTRAINTS MBEDTLS_OID_ID_CE "\x24"
174 #define MBEDTLS_OID_EXTENDED_KEY_USAGE MBEDTLS_OID_ID_CE "\x25"
175 #define MBEDTLS_OID_CRL_DISTRIBUTION_POINTS MBEDTLS_OID_ID_CE "\x1F"
176 #define MBEDTLS_OID_INIHIBIT_ANYPOLICY MBEDTLS_OID_ID_CE "\x36"
177 #define MBEDTLS_OID_FRESHEST_CRL MBEDTLS_OID_ID_CE "\x2E"
179 /*
180  * Netscape certificate extensions
181  */
182 #define MBEDTLS_OID_NS_CERT MBEDTLS_OID_NETSCAPE "\x01"
183 #define MBEDTLS_OID_NS_CERT_TYPE MBEDTLS_OID_NS_CERT "\x01"
184 #define MBEDTLS_OID_NS_BASE_URL MBEDTLS_OID_NS_CERT "\x02"
185 #define MBEDTLS_OID_NS_REVOCATION_URL MBEDTLS_OID_NS_CERT "\x03"
186 #define MBEDTLS_OID_NS_CA_REVOCATION_URL MBEDTLS_OID_NS_CERT "\x04"
187 #define MBEDTLS_OID_NS_RENEWAL_URL MBEDTLS_OID_NS_CERT "\x07"
188 #define MBEDTLS_OID_NS_CA_POLICY_URL MBEDTLS_OID_NS_CERT "\x08"
189 #define MBEDTLS_OID_NS_SSL_SERVER_NAME MBEDTLS_OID_NS_CERT "\x0C"
190 #define MBEDTLS_OID_NS_COMMENT MBEDTLS_OID_NS_CERT "\x0D"
191 #define MBEDTLS_OID_NS_DATA_TYPE MBEDTLS_OID_NETSCAPE "\x02"
192 #define MBEDTLS_OID_NS_CERT_SEQUENCE MBEDTLS_OID_NS_DATA_TYPE "\x05"
193 
194 /*
195  * OIDs for CRL extensions
196  */
197 #define MBEDTLS_OID_PRIVATE_KEY_USAGE_PERIOD MBEDTLS_OID_ID_CE "\x10"
198 #define MBEDTLS_OID_CRL_NUMBER MBEDTLS_OID_ID_CE "\x14"
200 /*
201  * X.509 v3 Extended key usage OIDs
202  */
203 #define MBEDTLS_OID_ANY_EXTENDED_KEY_USAGE MBEDTLS_OID_EXTENDED_KEY_USAGE "\x00"
205 #define MBEDTLS_OID_KP MBEDTLS_OID_PKIX "\x03"
206 #define MBEDTLS_OID_SERVER_AUTH MBEDTLS_OID_KP "\x01"
207 #define MBEDTLS_OID_CLIENT_AUTH MBEDTLS_OID_KP "\x02"
208 #define MBEDTLS_OID_CODE_SIGNING MBEDTLS_OID_KP "\x03"
209 #define MBEDTLS_OID_EMAIL_PROTECTION MBEDTLS_OID_KP "\x04"
210 #define MBEDTLS_OID_TIME_STAMPING MBEDTLS_OID_KP "\x08"
211 #define MBEDTLS_OID_OCSP_SIGNING MBEDTLS_OID_KP "\x09"
213 /*
214  * PKCS definition OIDs
215  */
216 
217 #define MBEDTLS_OID_PKCS MBEDTLS_OID_RSA_COMPANY "\x01"
218 #define MBEDTLS_OID_PKCS1 MBEDTLS_OID_PKCS "\x01"
219 #define MBEDTLS_OID_PKCS5 MBEDTLS_OID_PKCS "\x05"
220 #define MBEDTLS_OID_PKCS9 MBEDTLS_OID_PKCS "\x09"
221 #define MBEDTLS_OID_PKCS12 MBEDTLS_OID_PKCS "\x0c"
223 /*
224  * PKCS#1 OIDs
225  */
226 #define MBEDTLS_OID_PKCS1_RSA MBEDTLS_OID_PKCS1 "\x01"
227 #define MBEDTLS_OID_PKCS1_MD2 MBEDTLS_OID_PKCS1 "\x02"
228 #define MBEDTLS_OID_PKCS1_MD4 MBEDTLS_OID_PKCS1 "\x03"
229 #define MBEDTLS_OID_PKCS1_MD5 MBEDTLS_OID_PKCS1 "\x04"
230 #define MBEDTLS_OID_PKCS1_SHA1 MBEDTLS_OID_PKCS1 "\x05"
231 #define MBEDTLS_OID_PKCS1_SHA224 MBEDTLS_OID_PKCS1 "\x0e"
232 #define MBEDTLS_OID_PKCS1_SHA256 MBEDTLS_OID_PKCS1 "\x0b"
233 #define MBEDTLS_OID_PKCS1_SHA384 MBEDTLS_OID_PKCS1 "\x0c"
234 #define MBEDTLS_OID_PKCS1_SHA512 MBEDTLS_OID_PKCS1 "\x0d"
236 #define MBEDTLS_OID_RSA_SHA_OBS "\x2B\x0E\x03\x02\x1D"
237 
238 #define MBEDTLS_OID_PKCS9_EMAIL MBEDTLS_OID_PKCS9 "\x01"
240 /* RFC 4055 */
241 #define MBEDTLS_OID_RSASSA_PSS MBEDTLS_OID_PKCS1 "\x0a"
242 #define MBEDTLS_OID_MGF1 MBEDTLS_OID_PKCS1 "\x08"
244 /*
245  * Digest algorithms
246  */
247 #define MBEDTLS_OID_DIGEST_ALG_MD2 MBEDTLS_OID_RSA_COMPANY "\x02\x02"
248 #define MBEDTLS_OID_DIGEST_ALG_MD4 MBEDTLS_OID_RSA_COMPANY "\x02\x04"
249 #define MBEDTLS_OID_DIGEST_ALG_MD5 MBEDTLS_OID_RSA_COMPANY "\x02\x05"
250 #define MBEDTLS_OID_DIGEST_ALG_SHA1 MBEDTLS_OID_ISO_IDENTIFIED_ORG MBEDTLS_OID_OIW_SECSIG_SHA1
251 #define MBEDTLS_OID_DIGEST_ALG_SHA224 MBEDTLS_OID_NIST_ALG "\x02\x04"
252 #define MBEDTLS_OID_DIGEST_ALG_SHA256 MBEDTLS_OID_NIST_ALG "\x02\x01"
254 #define MBEDTLS_OID_DIGEST_ALG_SHA384 MBEDTLS_OID_NIST_ALG "\x02\x02"
256 #define MBEDTLS_OID_DIGEST_ALG_SHA512 MBEDTLS_OID_NIST_ALG "\x02\x03"
258 #define MBEDTLS_OID_HMAC_SHA1 MBEDTLS_OID_RSA_COMPANY "\x02\x07"
260 #define MBEDTLS_OID_HMAC_SHA224 MBEDTLS_OID_RSA_COMPANY "\x02\x08"
262 #define MBEDTLS_OID_HMAC_SHA256 MBEDTLS_OID_RSA_COMPANY "\x02\x09"
264 #define MBEDTLS_OID_HMAC_SHA384 MBEDTLS_OID_RSA_COMPANY "\x02\x0A"
266 #define MBEDTLS_OID_HMAC_SHA512 MBEDTLS_OID_RSA_COMPANY "\x02\x0B"
268 /*
269  * Encryption algorithms
270  */
271 #define MBEDTLS_OID_DES_CBC MBEDTLS_OID_ISO_IDENTIFIED_ORG MBEDTLS_OID_OIW_SECSIG_ALG "\x07"
272 #define MBEDTLS_OID_DES_EDE3_CBC MBEDTLS_OID_RSA_COMPANY "\x03\x07"
273 #define MBEDTLS_OID_AES MBEDTLS_OID_NIST_ALG "\x01"
275 /*
276  * Key Wrapping algorithms
277  */
278 /*
279  * RFC 5649
280  */
281 #define MBEDTLS_OID_AES128_KW MBEDTLS_OID_AES "\x05"
282 #define MBEDTLS_OID_AES128_KWP MBEDTLS_OID_AES "\x08"
283 #define MBEDTLS_OID_AES192_KW MBEDTLS_OID_AES "\x19"
284 #define MBEDTLS_OID_AES192_KWP MBEDTLS_OID_AES "\x1c"
285 #define MBEDTLS_OID_AES256_KW MBEDTLS_OID_AES "\x2d"
286 #define MBEDTLS_OID_AES256_KWP MBEDTLS_OID_AES "\x30"
287 /*
288  * PKCS#5 OIDs
289  */
290 #define MBEDTLS_OID_PKCS5_PBKDF2 MBEDTLS_OID_PKCS5 "\x0c"
291 #define MBEDTLS_OID_PKCS5_PBES2 MBEDTLS_OID_PKCS5 "\x0d"
292 #define MBEDTLS_OID_PKCS5_PBMAC1 MBEDTLS_OID_PKCS5 "\x0e"
294 /*
295  * PKCS#5 PBES1 algorithms
296  */
297 #define MBEDTLS_OID_PKCS5_PBE_MD2_DES_CBC MBEDTLS_OID_PKCS5 "\x01"
298 #define MBEDTLS_OID_PKCS5_PBE_MD2_RC2_CBC MBEDTLS_OID_PKCS5 "\x04"
299 #define MBEDTLS_OID_PKCS5_PBE_MD5_DES_CBC MBEDTLS_OID_PKCS5 "\x03"
300 #define MBEDTLS_OID_PKCS5_PBE_MD5_RC2_CBC MBEDTLS_OID_PKCS5 "\x06"
301 #define MBEDTLS_OID_PKCS5_PBE_SHA1_DES_CBC MBEDTLS_OID_PKCS5 "\x0a"
302 #define MBEDTLS_OID_PKCS5_PBE_SHA1_RC2_CBC MBEDTLS_OID_PKCS5 "\x0b"
304 /*
305  * PKCS#8 OIDs
306  */
307 #define MBEDTLS_OID_PKCS9_CSR_EXT_REQ MBEDTLS_OID_PKCS9 "\x0e"
309 /*
310  * PKCS#12 PBE OIDs
311  */
312 #define MBEDTLS_OID_PKCS12_PBE MBEDTLS_OID_PKCS12 "\x01"
314 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC4_128 MBEDTLS_OID_PKCS12_PBE "\x01"
315 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC4_40 MBEDTLS_OID_PKCS12_PBE "\x02"
316 #define MBEDTLS_OID_PKCS12_PBE_SHA1_DES3_EDE_CBC MBEDTLS_OID_PKCS12_PBE "\x03"
317 #define MBEDTLS_OID_PKCS12_PBE_SHA1_DES2_EDE_CBC MBEDTLS_OID_PKCS12_PBE "\x04"
318 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC2_128_CBC MBEDTLS_OID_PKCS12_PBE "\x05"
319 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC2_40_CBC MBEDTLS_OID_PKCS12_PBE "\x06"
321 /*
322  * EC key algorithms from RFC 5480
323  */
324 
325 /* id-ecPublicKey OBJECT IDENTIFIER ::= {
326  * iso(1) member-body(2) us(840) ansi-X9-62(10045) keyType(2) 1 } */
327 #define MBEDTLS_OID_EC_ALG_UNRESTRICTED MBEDTLS_OID_ANSI_X9_62 "\x02\01"
328 
329 /* id-ecDH OBJECT IDENTIFIER ::= {
330  * iso(1) identified-organization(3) certicom(132)
331  * schemes(1) ecdh(12) } */
332 #define MBEDTLS_OID_EC_ALG_ECDH MBEDTLS_OID_CERTICOM "\x01\x0c"
333 
334 /*
335  * ECParameters namedCurve identifiers, from RFC 5480, RFC 5639, and SEC2
336  */
337 
338 /* secp192r1 OBJECT IDENTIFIER ::= {
339  * iso(1) member-body(2) us(840) ansi-X9-62(10045) curves(3) prime(1) 1 } */
340 #define MBEDTLS_OID_EC_GRP_SECP192R1 MBEDTLS_OID_ANSI_X9_62 "\x03\x01\x01"
341 
342 /* secp224r1 OBJECT IDENTIFIER ::= {
343  * iso(1) identified-organization(3) certicom(132) curve(0) 33 } */
344 #define MBEDTLS_OID_EC_GRP_SECP224R1 MBEDTLS_OID_CERTICOM "\x00\x21"
345 
346 /* secp256r1 OBJECT IDENTIFIER ::= {
347  * iso(1) member-body(2) us(840) ansi-X9-62(10045) curves(3) prime(1) 7 } */
348 #define MBEDTLS_OID_EC_GRP_SECP256R1 MBEDTLS_OID_ANSI_X9_62 "\x03\x01\x07"
349 
350 /* secp384r1 OBJECT IDENTIFIER ::= {
351  * iso(1) identified-organization(3) certicom(132) curve(0) 34 } */
352 #define MBEDTLS_OID_EC_GRP_SECP384R1 MBEDTLS_OID_CERTICOM "\x00\x22"
353 
354 /* secp521r1 OBJECT IDENTIFIER ::= {
355  * iso(1) identified-organization(3) certicom(132) curve(0) 35 } */
356 #define MBEDTLS_OID_EC_GRP_SECP521R1 MBEDTLS_OID_CERTICOM "\x00\x23"
357 
358 /* secp192k1 OBJECT IDENTIFIER ::= {
359  * iso(1) identified-organization(3) certicom(132) curve(0) 31 } */
360 #define MBEDTLS_OID_EC_GRP_SECP192K1 MBEDTLS_OID_CERTICOM "\x00\x1f"
361 
362 /* secp224k1 OBJECT IDENTIFIER ::= {
363  * iso(1) identified-organization(3) certicom(132) curve(0) 32 } */
364 #define MBEDTLS_OID_EC_GRP_SECP224K1 MBEDTLS_OID_CERTICOM "\x00\x20"
365 
366 /* secp256k1 OBJECT IDENTIFIER ::= {
367  * iso(1) identified-organization(3) certicom(132) curve(0) 10 } */
368 #define MBEDTLS_OID_EC_GRP_SECP256K1 MBEDTLS_OID_CERTICOM "\x00\x0a"
369 
370 /* RFC 5639 4.1
371  * ecStdCurvesAndGeneration OBJECT IDENTIFIER::= {iso(1)
372  * identified-organization(3) teletrust(36) algorithm(3) signature-
373  * algorithm(3) ecSign(2) 8}
374  * ellipticCurve OBJECT IDENTIFIER ::= {ecStdCurvesAndGeneration 1}
375  * versionOne OBJECT IDENTIFIER ::= {ellipticCurve 1} */
376 #define MBEDTLS_OID_EC_BRAINPOOL_V1 MBEDTLS_OID_TELETRUST "\x03\x03\x02\x08\x01\x01"
377 
378 /* brainpoolP256r1 OBJECT IDENTIFIER ::= {versionOne 7} */
379 #define MBEDTLS_OID_EC_GRP_BP256R1 MBEDTLS_OID_EC_BRAINPOOL_V1 "\x07"
380 
381 /* brainpoolP384r1 OBJECT IDENTIFIER ::= {versionOne 11} */
382 #define MBEDTLS_OID_EC_GRP_BP384R1 MBEDTLS_OID_EC_BRAINPOOL_V1 "\x0B"
383 
384 /* brainpoolP512r1 OBJECT IDENTIFIER ::= {versionOne 13} */
385 #define MBEDTLS_OID_EC_GRP_BP512R1 MBEDTLS_OID_EC_BRAINPOOL_V1 "\x0D"
386 
387 /*
388  * SEC1 C.1
389  *
390  * prime-field OBJECT IDENTIFIER ::= { id-fieldType 1 }
391  * id-fieldType OBJECT IDENTIFIER ::= { ansi-X9-62 fieldType(1)}
392  */
393 #define MBEDTLS_OID_ANSI_X9_62_FIELD_TYPE MBEDTLS_OID_ANSI_X9_62 "\x01"
394 #define MBEDTLS_OID_ANSI_X9_62_PRIME_FIELD MBEDTLS_OID_ANSI_X9_62_FIELD_TYPE "\x01"
395 
396 /*
397  * ECDSA signature identifiers, from RFC 5480
398  */
399 #define MBEDTLS_OID_ANSI_X9_62_SIG MBEDTLS_OID_ANSI_X9_62 "\x04" /* signatures(4) */
400 #define MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 MBEDTLS_OID_ANSI_X9_62_SIG "\x03" /* ecdsa-with-SHA2(3) */
401 
402 /* ecdsa-with-SHA1 OBJECT IDENTIFIER ::= {
403  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4) 1 } */
404 #define MBEDTLS_OID_ECDSA_SHA1 MBEDTLS_OID_ANSI_X9_62_SIG "\x01"
405 
406 /* ecdsa-with-SHA224 OBJECT IDENTIFIER ::= {
407  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
408  * ecdsa-with-SHA2(3) 1 } */
409 #define MBEDTLS_OID_ECDSA_SHA224 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x01"
410 
411 /* ecdsa-with-SHA256 OBJECT IDENTIFIER ::= {
412  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
413  * ecdsa-with-SHA2(3) 2 } */
414 #define MBEDTLS_OID_ECDSA_SHA256 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x02"
415 
416 /* ecdsa-with-SHA384 OBJECT IDENTIFIER ::= {
417  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
418  * ecdsa-with-SHA2(3) 3 } */
419 #define MBEDTLS_OID_ECDSA_SHA384 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x03"
420 
421 /* ecdsa-with-SHA512 OBJECT IDENTIFIER ::= {
422  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
423  * ecdsa-with-SHA2(3) 4 } */
424 #define MBEDTLS_OID_ECDSA_SHA512 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x04"
425 
426 #ifdef __cplusplus
427 extern "C" {
428 #endif
429 
434 {
435  const char *asn1;
436  size_t asn1_len;
437  const char *name;
438  const char *description;
440 
452 int mbedtls_oid_get_numeric_string( char *buf, size_t size, const mbedtls_asn1_buf *oid );
453 
454 #if defined(MBEDTLS_X509_USE_C) || defined(MBEDTLS_X509_CREATE_C)
455 
463 int mbedtls_oid_get_x509_ext_type( const mbedtls_asn1_buf *oid, int *ext_type );
464 #endif
465 
475 int mbedtls_oid_get_attr_short_name( const mbedtls_asn1_buf *oid, const char **short_name );
476 
486 
497  const char **oid, size_t *olen );
498 
499 #if defined(MBEDTLS_ECP_C)
500 
509 
520  const char **oid, size_t *olen );
521 #endif /* MBEDTLS_ECP_C */
522 
523 #if defined(MBEDTLS_MD_C)
524 
534  mbedtls_md_type_t *md_alg, mbedtls_pk_type_t *pk_alg );
535 
544 int mbedtls_oid_get_sig_alg_desc( const mbedtls_asn1_buf *oid, const char **desc );
545 
557  const char **oid, size_t *olen );
558 
568 
578 #endif /* MBEDTLS_MD_C */
579 
588 int mbedtls_oid_get_extended_key_usage( const mbedtls_asn1_buf *oid, const char **desc );
589 
599 int mbedtls_oid_get_oid_by_md( mbedtls_md_type_t md_alg, const char **oid, size_t *olen );
600 
601 #if defined(MBEDTLS_CIPHER_C)
602 
611 #endif /* MBEDTLS_CIPHER_C */
612 
613 #if defined(MBEDTLS_PKCS12_C)
614 
625  mbedtls_cipher_type_t *cipher_alg );
626 #endif /* MBEDTLS_PKCS12_C */
627 
628 #ifdef __cplusplus
629 }
630 #endif
631 
632 #endif /* oid.h */
mbedtls_md_type_t
mbedtls_md_type_t
Supported message digests.
Definition: md.h:85
mbedtls_oid_get_cipher_alg
int mbedtls_oid_get_cipher_alg(const mbedtls_asn1_buf *oid, mbedtls_cipher_type_t *cipher_alg)
Translate encryption algorithm OID into cipher_type.
mbedtls_oid_get_extended_key_usage
int mbedtls_oid_get_extended_key_usage(const mbedtls_asn1_buf *oid, const char **desc)
Translate Extended Key Usage OID into description.
md.h
This file contains the generic message-digest wrapper.
mbedtls_oid_get_sig_alg_desc
int mbedtls_oid_get_sig_alg_desc(const mbedtls_asn1_buf *oid, const char **desc)
Translate SignatureAlgorithm OID into description.
mbedtls_oid_descriptor_t::asn1_len
size_t asn1_len
Definition: oid.h:436
mbedtls_oid_get_oid_by_ec_grp
int mbedtls_oid_get_oid_by_ec_grp(mbedtls_ecp_group_id grp_id, const char **oid, size_t *olen)
Translate EC group identifier into NamedCurve OID.
mbedtls_oid_get_numeric_string
int mbedtls_oid_get_numeric_string(char *buf, size_t size, const mbedtls_asn1_buf *oid)
Translate an ASN.1 OID into its numeric representation (e.g. "\x2A\x86\x48\x86\xF7\x0D" into "1....
mbedtls_oid_descriptor_t
Base OID descriptor structure.
Definition: oid.h:434
mbedtls_oid_get_x509_ext_type
int mbedtls_oid_get_x509_ext_type(const mbedtls_asn1_buf *oid, int *ext_type)
Translate an X.509 extension OID into local values.
mbedtls_oid_get_attr_short_name
int mbedtls_oid_get_attr_short_name(const mbedtls_asn1_buf *oid, const char **short_name)
Translate an X.509 attribute type OID into the short name (e.g. the OID for an X520 Common Name into ...
cipher.h
This file contains an abstraction interface for use with the cipher primitives provided by the librar...
mbedtls_ecp_group_id
mbedtls_ecp_group_id
Definition: ecp.h:105
mbedtls_oid_descriptor_t::description
const char * description
Definition: oid.h:438
mbedtls_oid_get_ec_grp
int mbedtls_oid_get_ec_grp(const mbedtls_asn1_buf *oid, mbedtls_ecp_group_id *grp_id)
Translate NamedCurve OID into an EC group identifier.
mbedtls_oid_get_sig_alg
int mbedtls_oid_get_sig_alg(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_alg, mbedtls_pk_type_t *pk_alg)
Translate SignatureAlgorithm OID into md_type and pk_type.
mbedtls_pk_type_t
mbedtls_pk_type_t
Public key types.
Definition: pk.h:105
mbedtls_oid_descriptor_t::asn1
const char * asn1
Definition: oid.h:435
mbedtls_oid_descriptor_t
struct mbedtls_oid_descriptor_t mbedtls_oid_descriptor_t
Base OID descriptor structure.
mbedtls_oid_get_md_alg
int mbedtls_oid_get_md_alg(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_alg)
Translate hash algorithm OID into md_type.
mbedtls_oid_get_md_hmac
int mbedtls_oid_get_md_hmac(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_hmac)
Translate hmac algorithm OID into md_type.
mbedtls_oid_descriptor_t::name
const char * name
Definition: oid.h:437
mbedtls_oid_get_pk_alg
int mbedtls_oid_get_pk_alg(const mbedtls_asn1_buf *oid, mbedtls_pk_type_t *pk_alg)
Translate PublicKeyAlgorithm OID into pk_type.
pk.h
Public Key abstraction layer.
mbedtls_oid_get_oid_by_sig_alg
int mbedtls_oid_get_oid_by_sig_alg(mbedtls_pk_type_t pk_alg, mbedtls_md_type_t md_alg, const char **oid, size_t *olen)
Translate md_type and pk_type into SignatureAlgorithm OID.
config.h
Configuration options (set of defines)
md_hmac
#define md_hmac
Definition: compat-1.3.h:2053
mbedtls_oid_get_pkcs12_pbe_alg
int mbedtls_oid_get_pkcs12_pbe_alg(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_alg, mbedtls_cipher_type_t *cipher_alg)
Translate PKCS#12 PBE algorithm OID into md_type and cipher_type.
mbedtls_asn1_buf
Definition: asn1.h:162
mbedtls_oid_get_oid_by_md
int mbedtls_oid_get_oid_by_md(mbedtls_md_type_t md_alg, const char **oid, size_t *olen)
Translate md_type into hash algorithm OID.
mbedtls_oid_get_oid_by_pk_alg
int mbedtls_oid_get_oid_by_pk_alg(mbedtls_pk_type_t pk_alg, const char **oid, size_t *olen)
Translate pk_type into PublicKeyAlgorithm OID.
mbedtls_cipher_type_t
mbedtls_cipher_type_t
Supported {cipher type, cipher mode} pairs.
Definition: cipher.h:131
asn1.h
Generic ASN.1 parsing.
x509.h
X.509 generic defines and structures.