Mbed TLS v2.28.8
oid.h
Go to the documentation of this file.
1 
6 /*
7  * Copyright The Mbed TLS Contributors
8  * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
9  */
10 #ifndef MBEDTLS_OID_H
11 #define MBEDTLS_OID_H
12 
13 #if !defined(MBEDTLS_CONFIG_FILE)
14 #include "mbedtls/config.h"
15 #else
16 #include MBEDTLS_CONFIG_FILE
17 #endif
18 
19 #include "mbedtls/asn1.h"
20 #include "mbedtls/pk.h"
21 
22 #include <stddef.h>
23 
24 #if defined(MBEDTLS_CIPHER_C)
25 #include "mbedtls/cipher.h"
26 #endif
27 
28 #if defined(MBEDTLS_MD_C)
29 #include "mbedtls/md.h"
30 #endif
31 
33 #define MBEDTLS_ERR_OID_NOT_FOUND -0x002E
34 
35 #define MBEDTLS_ERR_OID_BUF_TOO_SMALL -0x000B
36 
37 /* This is for the benefit of X.509, but defined here in order to avoid
38  * having a "backwards" include of x.509.h here */
39 /*
40  * X.509 extension types (internal, arbitrary values for bitsets)
41  */
42 #define MBEDTLS_OID_X509_EXT_AUTHORITY_KEY_IDENTIFIER (1 << 0)
43 #define MBEDTLS_OID_X509_EXT_SUBJECT_KEY_IDENTIFIER (1 << 1)
44 #define MBEDTLS_OID_X509_EXT_KEY_USAGE (1 << 2)
45 #define MBEDTLS_OID_X509_EXT_CERTIFICATE_POLICIES (1 << 3)
46 #define MBEDTLS_OID_X509_EXT_POLICY_MAPPINGS (1 << 4)
47 #define MBEDTLS_OID_X509_EXT_SUBJECT_ALT_NAME (1 << 5)
48 #define MBEDTLS_OID_X509_EXT_ISSUER_ALT_NAME (1 << 6)
49 #define MBEDTLS_OID_X509_EXT_SUBJECT_DIRECTORY_ATTRS (1 << 7)
50 #define MBEDTLS_OID_X509_EXT_BASIC_CONSTRAINTS (1 << 8)
51 #define MBEDTLS_OID_X509_EXT_NAME_CONSTRAINTS (1 << 9)
52 #define MBEDTLS_OID_X509_EXT_POLICY_CONSTRAINTS (1 << 10)
53 #define MBEDTLS_OID_X509_EXT_EXTENDED_KEY_USAGE (1 << 11)
54 #define MBEDTLS_OID_X509_EXT_CRL_DISTRIBUTION_POINTS (1 << 12)
55 #define MBEDTLS_OID_X509_EXT_INIHIBIT_ANYPOLICY (1 << 13)
56 #define MBEDTLS_OID_X509_EXT_FRESHEST_CRL (1 << 14)
57 #define MBEDTLS_OID_X509_EXT_NS_CERT_TYPE (1 << 16)
58 
59 /*
60  * Top level OID tuples
61  */
62 #define MBEDTLS_OID_ISO_MEMBER_BODIES "\x2a" /* {iso(1) member-body(2)} */
63 #define MBEDTLS_OID_ISO_IDENTIFIED_ORG "\x2b" /* {iso(1) identified-organization(3)} */
64 #define MBEDTLS_OID_ISO_CCITT_DS "\x55" /* {joint-iso-ccitt(2) ds(5)} */
65 #define MBEDTLS_OID_ISO_ITU_COUNTRY "\x60" /* {joint-iso-itu-t(2) country(16)} */
66 
67 /*
68  * ISO Member bodies OID parts
69  */
70 #define MBEDTLS_OID_COUNTRY_US "\x86\x48" /* {us(840)} */
71 #define MBEDTLS_OID_ORG_RSA_DATA_SECURITY "\x86\xf7\x0d" /* {rsadsi(113549)} */
72 #define MBEDTLS_OID_RSA_COMPANY MBEDTLS_OID_ISO_MEMBER_BODIES MBEDTLS_OID_COUNTRY_US \
73  MBEDTLS_OID_ORG_RSA_DATA_SECURITY /* {iso(1) member-body(2) us(840) rsadsi(113549)} */
74 #define MBEDTLS_OID_ORG_ANSI_X9_62 "\xce\x3d" /* ansi-X9-62(10045) */
75 #define MBEDTLS_OID_ANSI_X9_62 MBEDTLS_OID_ISO_MEMBER_BODIES MBEDTLS_OID_COUNTRY_US \
76  MBEDTLS_OID_ORG_ANSI_X9_62
77 
78 /*
79  * ISO Identified organization OID parts
80  */
81 #define MBEDTLS_OID_ORG_DOD "\x06" /* {dod(6)} */
82 #define MBEDTLS_OID_ORG_OIW "\x0e"
83 #define MBEDTLS_OID_OIW_SECSIG MBEDTLS_OID_ORG_OIW "\x03"
84 #define MBEDTLS_OID_OIW_SECSIG_ALG MBEDTLS_OID_OIW_SECSIG "\x02"
85 #define MBEDTLS_OID_OIW_SECSIG_SHA1 MBEDTLS_OID_OIW_SECSIG_ALG "\x1a"
86 #define MBEDTLS_OID_ORG_CERTICOM "\x81\x04" /* certicom(132) */
87 #define MBEDTLS_OID_CERTICOM MBEDTLS_OID_ISO_IDENTIFIED_ORG \
88  MBEDTLS_OID_ORG_CERTICOM
89 #define MBEDTLS_OID_ORG_TELETRUST "\x24" /* teletrust(36) */
90 #define MBEDTLS_OID_TELETRUST MBEDTLS_OID_ISO_IDENTIFIED_ORG \
91  MBEDTLS_OID_ORG_TELETRUST
92 
93 /*
94  * ISO ITU OID parts
95  */
96 #define MBEDTLS_OID_ORGANIZATION "\x01" /* {organization(1)} */
97 #define MBEDTLS_OID_ISO_ITU_US_ORG MBEDTLS_OID_ISO_ITU_COUNTRY MBEDTLS_OID_COUNTRY_US \
98  MBEDTLS_OID_ORGANIZATION /* {joint-iso-itu-t(2) country(16) us(840) organization(1)} */
99 
100 #define MBEDTLS_OID_ORG_GOV "\x65" /* {gov(101)} */
101 #define MBEDTLS_OID_GOV MBEDTLS_OID_ISO_ITU_US_ORG MBEDTLS_OID_ORG_GOV /* {joint-iso-itu-t(2) country(16) us(840) organization(1) gov(101)} */
102 
103 #define MBEDTLS_OID_ORG_NETSCAPE "\x86\xF8\x42" /* {netscape(113730)} */
104 #define MBEDTLS_OID_NETSCAPE MBEDTLS_OID_ISO_ITU_US_ORG MBEDTLS_OID_ORG_NETSCAPE /* Netscape OID {joint-iso-itu-t(2) country(16) us(840) organization(1) netscape(113730)} */
105 
106 /* ISO arc for standard certificate and CRL extensions */
107 #define MBEDTLS_OID_ID_CE MBEDTLS_OID_ISO_CCITT_DS "\x1D"
109 #define MBEDTLS_OID_NIST_ALG MBEDTLS_OID_GOV "\x03\x04"
116 #define MBEDTLS_OID_INTERNET MBEDTLS_OID_ISO_IDENTIFIED_ORG MBEDTLS_OID_ORG_DOD \
117  "\x01"
118 #define MBEDTLS_OID_PKIX MBEDTLS_OID_INTERNET "\x05\x05\x07"
119 
120 /*
121  * Arc for standard naming attributes
122  */
123 #define MBEDTLS_OID_AT MBEDTLS_OID_ISO_CCITT_DS "\x04"
124 #define MBEDTLS_OID_AT_CN MBEDTLS_OID_AT "\x03"
125 #define MBEDTLS_OID_AT_SUR_NAME MBEDTLS_OID_AT "\x04"
126 #define MBEDTLS_OID_AT_SERIAL_NUMBER MBEDTLS_OID_AT "\x05"
127 #define MBEDTLS_OID_AT_COUNTRY MBEDTLS_OID_AT "\x06"
128 #define MBEDTLS_OID_AT_LOCALITY MBEDTLS_OID_AT "\x07"
129 #define MBEDTLS_OID_AT_STATE MBEDTLS_OID_AT "\x08"
130 #define MBEDTLS_OID_AT_ORGANIZATION MBEDTLS_OID_AT "\x0A"
131 #define MBEDTLS_OID_AT_ORG_UNIT MBEDTLS_OID_AT "\x0B"
132 #define MBEDTLS_OID_AT_TITLE MBEDTLS_OID_AT "\x0C"
133 #define MBEDTLS_OID_AT_POSTAL_ADDRESS MBEDTLS_OID_AT "\x10"
134 #define MBEDTLS_OID_AT_POSTAL_CODE MBEDTLS_OID_AT "\x11"
135 #define MBEDTLS_OID_AT_GIVEN_NAME MBEDTLS_OID_AT "\x2A"
136 #define MBEDTLS_OID_AT_INITIALS MBEDTLS_OID_AT "\x2B"
137 #define MBEDTLS_OID_AT_GENERATION_QUALIFIER MBEDTLS_OID_AT "\x2C"
138 #define MBEDTLS_OID_AT_UNIQUE_IDENTIFIER MBEDTLS_OID_AT "\x2D"
139 #define MBEDTLS_OID_AT_DN_QUALIFIER MBEDTLS_OID_AT "\x2E"
140 #define MBEDTLS_OID_AT_PSEUDONYM MBEDTLS_OID_AT "\x41"
142 #define MBEDTLS_OID_DOMAIN_COMPONENT "\x09\x92\x26\x89\x93\xF2\x2C\x64\x01\x19"
144 /*
145  * OIDs for standard certificate extensions
146  */
147 #define MBEDTLS_OID_AUTHORITY_KEY_IDENTIFIER MBEDTLS_OID_ID_CE "\x23"
148 #define MBEDTLS_OID_SUBJECT_KEY_IDENTIFIER MBEDTLS_OID_ID_CE "\x0E"
149 #define MBEDTLS_OID_KEY_USAGE MBEDTLS_OID_ID_CE "\x0F"
150 #define MBEDTLS_OID_CERTIFICATE_POLICIES MBEDTLS_OID_ID_CE "\x20"
151 #define MBEDTLS_OID_POLICY_MAPPINGS MBEDTLS_OID_ID_CE "\x21"
152 #define MBEDTLS_OID_SUBJECT_ALT_NAME MBEDTLS_OID_ID_CE "\x11"
153 #define MBEDTLS_OID_ISSUER_ALT_NAME MBEDTLS_OID_ID_CE "\x12"
154 #define MBEDTLS_OID_SUBJECT_DIRECTORY_ATTRS MBEDTLS_OID_ID_CE "\x09"
155 #define MBEDTLS_OID_BASIC_CONSTRAINTS MBEDTLS_OID_ID_CE "\x13"
156 #define MBEDTLS_OID_NAME_CONSTRAINTS MBEDTLS_OID_ID_CE "\x1E"
157 #define MBEDTLS_OID_POLICY_CONSTRAINTS MBEDTLS_OID_ID_CE "\x24"
158 #define MBEDTLS_OID_EXTENDED_KEY_USAGE MBEDTLS_OID_ID_CE "\x25"
159 #define MBEDTLS_OID_CRL_DISTRIBUTION_POINTS MBEDTLS_OID_ID_CE "\x1F"
160 #define MBEDTLS_OID_INIHIBIT_ANYPOLICY MBEDTLS_OID_ID_CE "\x36"
161 #define MBEDTLS_OID_FRESHEST_CRL MBEDTLS_OID_ID_CE "\x2E"
163 /*
164  * Certificate policies
165  */
166 #define MBEDTLS_OID_ANY_POLICY MBEDTLS_OID_CERTIFICATE_POLICIES "\x00"
168 /*
169  * Netscape certificate extensions
170  */
171 #define MBEDTLS_OID_NS_CERT MBEDTLS_OID_NETSCAPE "\x01"
172 #define MBEDTLS_OID_NS_CERT_TYPE MBEDTLS_OID_NS_CERT "\x01"
173 #define MBEDTLS_OID_NS_BASE_URL MBEDTLS_OID_NS_CERT "\x02"
174 #define MBEDTLS_OID_NS_REVOCATION_URL MBEDTLS_OID_NS_CERT "\x03"
175 #define MBEDTLS_OID_NS_CA_REVOCATION_URL MBEDTLS_OID_NS_CERT "\x04"
176 #define MBEDTLS_OID_NS_RENEWAL_URL MBEDTLS_OID_NS_CERT "\x07"
177 #define MBEDTLS_OID_NS_CA_POLICY_URL MBEDTLS_OID_NS_CERT "\x08"
178 #define MBEDTLS_OID_NS_SSL_SERVER_NAME MBEDTLS_OID_NS_CERT "\x0C"
179 #define MBEDTLS_OID_NS_COMMENT MBEDTLS_OID_NS_CERT "\x0D"
180 #define MBEDTLS_OID_NS_DATA_TYPE MBEDTLS_OID_NETSCAPE "\x02"
181 #define MBEDTLS_OID_NS_CERT_SEQUENCE MBEDTLS_OID_NS_DATA_TYPE "\x05"
182 
183 /*
184  * OIDs for CRL extensions
185  */
186 #define MBEDTLS_OID_PRIVATE_KEY_USAGE_PERIOD MBEDTLS_OID_ID_CE "\x10"
187 #define MBEDTLS_OID_CRL_NUMBER MBEDTLS_OID_ID_CE "\x14"
189 /*
190  * X.509 v3 Extended key usage OIDs
191  */
192 #define MBEDTLS_OID_ANY_EXTENDED_KEY_USAGE MBEDTLS_OID_EXTENDED_KEY_USAGE "\x00"
194 #define MBEDTLS_OID_KP MBEDTLS_OID_PKIX "\x03"
195 #define MBEDTLS_OID_SERVER_AUTH MBEDTLS_OID_KP "\x01"
196 #define MBEDTLS_OID_CLIENT_AUTH MBEDTLS_OID_KP "\x02"
197 #define MBEDTLS_OID_CODE_SIGNING MBEDTLS_OID_KP "\x03"
198 #define MBEDTLS_OID_EMAIL_PROTECTION MBEDTLS_OID_KP "\x04"
199 #define MBEDTLS_OID_TIME_STAMPING MBEDTLS_OID_KP "\x08"
200 #define MBEDTLS_OID_OCSP_SIGNING MBEDTLS_OID_KP "\x09"
207 #define MBEDTLS_OID_WISUN_FAN MBEDTLS_OID_INTERNET "\x04\x01\x82\xe4\x25\x01"
208 
209 #define MBEDTLS_OID_ON MBEDTLS_OID_PKIX "\x08"
210 #define MBEDTLS_OID_ON_HW_MODULE_NAME MBEDTLS_OID_ON "\x04"
212 /*
213  * PKCS definition OIDs
214  */
215 
216 #define MBEDTLS_OID_PKCS MBEDTLS_OID_RSA_COMPANY "\x01"
217 #define MBEDTLS_OID_PKCS1 MBEDTLS_OID_PKCS "\x01"
218 #define MBEDTLS_OID_PKCS5 MBEDTLS_OID_PKCS "\x05"
219 #define MBEDTLS_OID_PKCS9 MBEDTLS_OID_PKCS "\x09"
220 #define MBEDTLS_OID_PKCS12 MBEDTLS_OID_PKCS "\x0c"
222 /*
223  * PKCS#1 OIDs
224  */
225 #define MBEDTLS_OID_PKCS1_RSA MBEDTLS_OID_PKCS1 "\x01"
226 #define MBEDTLS_OID_PKCS1_MD2 MBEDTLS_OID_PKCS1 "\x02"
227 #define MBEDTLS_OID_PKCS1_MD4 MBEDTLS_OID_PKCS1 "\x03"
228 #define MBEDTLS_OID_PKCS1_MD5 MBEDTLS_OID_PKCS1 "\x04"
229 #define MBEDTLS_OID_PKCS1_SHA1 MBEDTLS_OID_PKCS1 "\x05"
230 #define MBEDTLS_OID_PKCS1_SHA224 MBEDTLS_OID_PKCS1 "\x0e"
231 #define MBEDTLS_OID_PKCS1_SHA256 MBEDTLS_OID_PKCS1 "\x0b"
232 #define MBEDTLS_OID_PKCS1_SHA384 MBEDTLS_OID_PKCS1 "\x0c"
233 #define MBEDTLS_OID_PKCS1_SHA512 MBEDTLS_OID_PKCS1 "\x0d"
235 #define MBEDTLS_OID_RSA_SHA_OBS "\x2B\x0E\x03\x02\x1D"
236 
237 #define MBEDTLS_OID_PKCS9_EMAIL MBEDTLS_OID_PKCS9 "\x01"
239 /* RFC 4055 */
240 #define MBEDTLS_OID_RSASSA_PSS MBEDTLS_OID_PKCS1 "\x0a"
241 #define MBEDTLS_OID_MGF1 MBEDTLS_OID_PKCS1 "\x08"
243 /*
244  * Digest algorithms
245  */
246 #define MBEDTLS_OID_DIGEST_ALG_MD2 MBEDTLS_OID_RSA_COMPANY "\x02\x02"
247 #define MBEDTLS_OID_DIGEST_ALG_MD4 MBEDTLS_OID_RSA_COMPANY "\x02\x04"
248 #define MBEDTLS_OID_DIGEST_ALG_MD5 MBEDTLS_OID_RSA_COMPANY "\x02\x05"
249 #define MBEDTLS_OID_DIGEST_ALG_SHA1 MBEDTLS_OID_ISO_IDENTIFIED_ORG \
250  MBEDTLS_OID_OIW_SECSIG_SHA1
251 #define MBEDTLS_OID_DIGEST_ALG_SHA224 MBEDTLS_OID_NIST_ALG "\x02\x04"
252 #define MBEDTLS_OID_DIGEST_ALG_SHA256 MBEDTLS_OID_NIST_ALG "\x02\x01"
254 #define MBEDTLS_OID_DIGEST_ALG_SHA384 MBEDTLS_OID_NIST_ALG "\x02\x02"
256 #define MBEDTLS_OID_DIGEST_ALG_SHA512 MBEDTLS_OID_NIST_ALG "\x02\x03"
258 #define MBEDTLS_OID_DIGEST_ALG_RIPEMD160 MBEDTLS_OID_TELETRUST "\x03\x02\x01"
260 #define MBEDTLS_OID_HMAC_SHA1 MBEDTLS_OID_RSA_COMPANY "\x02\x07"
262 #define MBEDTLS_OID_HMAC_SHA224 MBEDTLS_OID_RSA_COMPANY "\x02\x08"
264 #define MBEDTLS_OID_HMAC_SHA256 MBEDTLS_OID_RSA_COMPANY "\x02\x09"
266 #define MBEDTLS_OID_HMAC_SHA384 MBEDTLS_OID_RSA_COMPANY "\x02\x0A"
268 #define MBEDTLS_OID_HMAC_SHA512 MBEDTLS_OID_RSA_COMPANY "\x02\x0B"
270 /*
271  * Encryption algorithms
272  */
273 #define MBEDTLS_OID_DES_CBC MBEDTLS_OID_ISO_IDENTIFIED_ORG \
274  MBEDTLS_OID_OIW_SECSIG_ALG "\x07"
275 #define MBEDTLS_OID_DES_EDE3_CBC MBEDTLS_OID_RSA_COMPANY "\x03\x07"
276 #define MBEDTLS_OID_AES MBEDTLS_OID_NIST_ALG "\x01"
278 /*
279  * Key Wrapping algorithms
280  */
281 /*
282  * RFC 5649
283  */
284 #define MBEDTLS_OID_AES128_KW MBEDTLS_OID_AES "\x05"
285 #define MBEDTLS_OID_AES128_KWP MBEDTLS_OID_AES "\x08"
286 #define MBEDTLS_OID_AES192_KW MBEDTLS_OID_AES "\x19"
287 #define MBEDTLS_OID_AES192_KWP MBEDTLS_OID_AES "\x1c"
288 #define MBEDTLS_OID_AES256_KW MBEDTLS_OID_AES "\x2d"
289 #define MBEDTLS_OID_AES256_KWP MBEDTLS_OID_AES "\x30"
290 /*
291  * PKCS#5 OIDs
292  */
293 #define MBEDTLS_OID_PKCS5_PBKDF2 MBEDTLS_OID_PKCS5 "\x0c"
294 #define MBEDTLS_OID_PKCS5_PBES2 MBEDTLS_OID_PKCS5 "\x0d"
295 #define MBEDTLS_OID_PKCS5_PBMAC1 MBEDTLS_OID_PKCS5 "\x0e"
297 /*
298  * PKCS#5 PBES1 algorithms
299  */
300 #define MBEDTLS_OID_PKCS5_PBE_MD2_DES_CBC MBEDTLS_OID_PKCS5 "\x01"
301 #define MBEDTLS_OID_PKCS5_PBE_MD2_RC2_CBC MBEDTLS_OID_PKCS5 "\x04"
302 #define MBEDTLS_OID_PKCS5_PBE_MD5_DES_CBC MBEDTLS_OID_PKCS5 "\x03"
303 #define MBEDTLS_OID_PKCS5_PBE_MD5_RC2_CBC MBEDTLS_OID_PKCS5 "\x06"
304 #define MBEDTLS_OID_PKCS5_PBE_SHA1_DES_CBC MBEDTLS_OID_PKCS5 "\x0a"
305 #define MBEDTLS_OID_PKCS5_PBE_SHA1_RC2_CBC MBEDTLS_OID_PKCS5 "\x0b"
307 /*
308  * PKCS#8 OIDs
309  */
310 #define MBEDTLS_OID_PKCS9_CSR_EXT_REQ MBEDTLS_OID_PKCS9 "\x0e"
312 /*
313  * PKCS#12 PBE OIDs
314  */
315 #define MBEDTLS_OID_PKCS12_PBE MBEDTLS_OID_PKCS12 "\x01"
317 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC4_128 MBEDTLS_OID_PKCS12_PBE "\x01"
318 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC4_40 MBEDTLS_OID_PKCS12_PBE "\x02"
319 #define MBEDTLS_OID_PKCS12_PBE_SHA1_DES3_EDE_CBC MBEDTLS_OID_PKCS12_PBE "\x03"
320 #define MBEDTLS_OID_PKCS12_PBE_SHA1_DES2_EDE_CBC MBEDTLS_OID_PKCS12_PBE "\x04"
321 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC2_128_CBC MBEDTLS_OID_PKCS12_PBE "\x05"
322 #define MBEDTLS_OID_PKCS12_PBE_SHA1_RC2_40_CBC MBEDTLS_OID_PKCS12_PBE "\x06"
324 /*
325  * EC key algorithms from RFC 5480
326  */
327 
328 /* id-ecPublicKey OBJECT IDENTIFIER ::= {
329  * iso(1) member-body(2) us(840) ansi-X9-62(10045) keyType(2) 1 } */
330 #define MBEDTLS_OID_EC_ALG_UNRESTRICTED MBEDTLS_OID_ANSI_X9_62 "\x02\01"
331 
332 /* id-ecDH OBJECT IDENTIFIER ::= {
333  * iso(1) identified-organization(3) certicom(132)
334  * schemes(1) ecdh(12) } */
335 #define MBEDTLS_OID_EC_ALG_ECDH MBEDTLS_OID_CERTICOM "\x01\x0c"
336 
337 /*
338  * ECParameters namedCurve identifiers, from RFC 5480, RFC 5639, and SEC2
339  */
340 
341 /* secp192r1 OBJECT IDENTIFIER ::= {
342  * iso(1) member-body(2) us(840) ansi-X9-62(10045) curves(3) prime(1) 1 } */
343 #define MBEDTLS_OID_EC_GRP_SECP192R1 MBEDTLS_OID_ANSI_X9_62 "\x03\x01\x01"
344 
345 /* secp224r1 OBJECT IDENTIFIER ::= {
346  * iso(1) identified-organization(3) certicom(132) curve(0) 33 } */
347 #define MBEDTLS_OID_EC_GRP_SECP224R1 MBEDTLS_OID_CERTICOM "\x00\x21"
348 
349 /* secp256r1 OBJECT IDENTIFIER ::= {
350  * iso(1) member-body(2) us(840) ansi-X9-62(10045) curves(3) prime(1) 7 } */
351 #define MBEDTLS_OID_EC_GRP_SECP256R1 MBEDTLS_OID_ANSI_X9_62 "\x03\x01\x07"
352 
353 /* secp384r1 OBJECT IDENTIFIER ::= {
354  * iso(1) identified-organization(3) certicom(132) curve(0) 34 } */
355 #define MBEDTLS_OID_EC_GRP_SECP384R1 MBEDTLS_OID_CERTICOM "\x00\x22"
356 
357 /* secp521r1 OBJECT IDENTIFIER ::= {
358  * iso(1) identified-organization(3) certicom(132) curve(0) 35 } */
359 #define MBEDTLS_OID_EC_GRP_SECP521R1 MBEDTLS_OID_CERTICOM "\x00\x23"
360 
361 /* secp192k1 OBJECT IDENTIFIER ::= {
362  * iso(1) identified-organization(3) certicom(132) curve(0) 31 } */
363 #define MBEDTLS_OID_EC_GRP_SECP192K1 MBEDTLS_OID_CERTICOM "\x00\x1f"
364 
365 /* secp224k1 OBJECT IDENTIFIER ::= {
366  * iso(1) identified-organization(3) certicom(132) curve(0) 32 } */
367 #define MBEDTLS_OID_EC_GRP_SECP224K1 MBEDTLS_OID_CERTICOM "\x00\x20"
368 
369 /* secp256k1 OBJECT IDENTIFIER ::= {
370  * iso(1) identified-organization(3) certicom(132) curve(0) 10 } */
371 #define MBEDTLS_OID_EC_GRP_SECP256K1 MBEDTLS_OID_CERTICOM "\x00\x0a"
372 
373 /* RFC 5639 4.1
374  * ecStdCurvesAndGeneration OBJECT IDENTIFIER::= {iso(1)
375  * identified-organization(3) teletrust(36) algorithm(3) signature-
376  * algorithm(3) ecSign(2) 8}
377  * ellipticCurve OBJECT IDENTIFIER ::= {ecStdCurvesAndGeneration 1}
378  * versionOne OBJECT IDENTIFIER ::= {ellipticCurve 1} */
379 #define MBEDTLS_OID_EC_BRAINPOOL_V1 MBEDTLS_OID_TELETRUST "\x03\x03\x02\x08\x01\x01"
380 
381 /* brainpoolP256r1 OBJECT IDENTIFIER ::= {versionOne 7} */
382 #define MBEDTLS_OID_EC_GRP_BP256R1 MBEDTLS_OID_EC_BRAINPOOL_V1 "\x07"
383 
384 /* brainpoolP384r1 OBJECT IDENTIFIER ::= {versionOne 11} */
385 #define MBEDTLS_OID_EC_GRP_BP384R1 MBEDTLS_OID_EC_BRAINPOOL_V1 "\x0B"
386 
387 /* brainpoolP512r1 OBJECT IDENTIFIER ::= {versionOne 13} */
388 #define MBEDTLS_OID_EC_GRP_BP512R1 MBEDTLS_OID_EC_BRAINPOOL_V1 "\x0D"
389 
390 /*
391  * SEC1 C.1
392  *
393  * prime-field OBJECT IDENTIFIER ::= { id-fieldType 1 }
394  * id-fieldType OBJECT IDENTIFIER ::= { ansi-X9-62 fieldType(1)}
395  */
396 #define MBEDTLS_OID_ANSI_X9_62_FIELD_TYPE MBEDTLS_OID_ANSI_X9_62 "\x01"
397 #define MBEDTLS_OID_ANSI_X9_62_PRIME_FIELD MBEDTLS_OID_ANSI_X9_62_FIELD_TYPE "\x01"
398 
399 /*
400  * ECDSA signature identifiers, from RFC 5480
401  */
402 #define MBEDTLS_OID_ANSI_X9_62_SIG MBEDTLS_OID_ANSI_X9_62 "\x04" /* signatures(4) */
403 #define MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 MBEDTLS_OID_ANSI_X9_62_SIG "\x03" /* ecdsa-with-SHA2(3) */
404 
405 /* ecdsa-with-SHA1 OBJECT IDENTIFIER ::= {
406  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4) 1 } */
407 #define MBEDTLS_OID_ECDSA_SHA1 MBEDTLS_OID_ANSI_X9_62_SIG "\x01"
408 
409 /* ecdsa-with-SHA224 OBJECT IDENTIFIER ::= {
410  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
411  * ecdsa-with-SHA2(3) 1 } */
412 #define MBEDTLS_OID_ECDSA_SHA224 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x01"
413 
414 /* ecdsa-with-SHA256 OBJECT IDENTIFIER ::= {
415  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
416  * ecdsa-with-SHA2(3) 2 } */
417 #define MBEDTLS_OID_ECDSA_SHA256 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x02"
418 
419 /* ecdsa-with-SHA384 OBJECT IDENTIFIER ::= {
420  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
421  * ecdsa-with-SHA2(3) 3 } */
422 #define MBEDTLS_OID_ECDSA_SHA384 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x03"
423 
424 /* ecdsa-with-SHA512 OBJECT IDENTIFIER ::= {
425  * iso(1) member-body(2) us(840) ansi-X9-62(10045) signatures(4)
426  * ecdsa-with-SHA2(3) 4 } */
427 #define MBEDTLS_OID_ECDSA_SHA512 MBEDTLS_OID_ANSI_X9_62_SIG_SHA2 "\x04"
428 
429 #ifdef __cplusplus
430 extern "C" {
431 #endif
432 
436 typedef struct mbedtls_oid_descriptor_t {
437  const char *asn1;
438  size_t asn1_len;
439  const char *name;
440  const char *description;
442 
454 int mbedtls_oid_get_numeric_string(char *buf, size_t size, const mbedtls_asn1_buf *oid);
455 
464 int mbedtls_oid_get_x509_ext_type(const mbedtls_asn1_buf *oid, int *ext_type);
465 
475 int mbedtls_oid_get_attr_short_name(const mbedtls_asn1_buf *oid, const char **short_name);
476 
486 
497  const char **oid, size_t *olen);
498 
499 #if defined(MBEDTLS_ECP_C)
500 
509 
520  const char **oid, size_t *olen);
521 #endif /* MBEDTLS_ECP_C */
522 
523 #if defined(MBEDTLS_MD_C)
524 
534  mbedtls_md_type_t *md_alg, mbedtls_pk_type_t *pk_alg);
535 
544 int mbedtls_oid_get_sig_alg_desc(const mbedtls_asn1_buf *oid, const char **desc);
545 
557  const char **oid, size_t *olen);
558 
568 
578 #endif /* MBEDTLS_MD_C */
579 
588 int mbedtls_oid_get_extended_key_usage(const mbedtls_asn1_buf *oid, const char **desc);
589 
598 int mbedtls_oid_get_certificate_policies(const mbedtls_asn1_buf *oid, const char **desc);
599 
609 int mbedtls_oid_get_oid_by_md(mbedtls_md_type_t md_alg, const char **oid, size_t *olen);
610 
611 #if defined(MBEDTLS_CIPHER_C)
612 
621 #endif /* MBEDTLS_CIPHER_C */
622 
623 #if defined(MBEDTLS_PKCS12_C)
624 
635  mbedtls_cipher_type_t *cipher_alg);
636 #endif /* MBEDTLS_PKCS12_C */
637 
638 #ifdef __cplusplus
639 }
640 #endif
641 
642 #endif /* oid.h */
mbedtls_md_type_t
mbedtls_md_type_t
Supported message digests.
Definition: md.h:50
mbedtls_oid_get_cipher_alg
int mbedtls_oid_get_cipher_alg(const mbedtls_asn1_buf *oid, mbedtls_cipher_type_t *cipher_alg)
Translate encryption algorithm OID into cipher_type.
mbedtls_oid_get_extended_key_usage
int mbedtls_oid_get_extended_key_usage(const mbedtls_asn1_buf *oid, const char **desc)
Translate Extended Key Usage OID into description.
md.h
This file contains the generic message-digest wrapper.
mbedtls_oid_get_certificate_policies
int mbedtls_oid_get_certificate_policies(const mbedtls_asn1_buf *oid, const char **desc)
Translate certificate policies OID into description.
mbedtls_oid_get_sig_alg_desc
int mbedtls_oid_get_sig_alg_desc(const mbedtls_asn1_buf *oid, const char **desc)
Translate SignatureAlgorithm OID into description.
mbedtls_oid_descriptor_t::asn1_len
size_t asn1_len
Definition: oid.h:438
mbedtls_oid_get_oid_by_ec_grp
int mbedtls_oid_get_oid_by_ec_grp(mbedtls_ecp_group_id grp_id, const char **oid, size_t *olen)
Translate EC group identifier into NamedCurve OID.
mbedtls_oid_get_numeric_string
int mbedtls_oid_get_numeric_string(char *buf, size_t size, const mbedtls_asn1_buf *oid)
Translate an ASN.1 OID into its numeric representation (e.g. "\x2A\x86\x48\x86\xF7\x0D" into "1....
mbedtls_oid_descriptor_t
Base OID descriptor structure.
Definition: oid.h:436
mbedtls_oid_get_x509_ext_type
int mbedtls_oid_get_x509_ext_type(const mbedtls_asn1_buf *oid, int *ext_type)
Translate an X.509 extension OID into local values.
mbedtls_oid_get_attr_short_name
int mbedtls_oid_get_attr_short_name(const mbedtls_asn1_buf *oid, const char **short_name)
Translate an X.509 attribute type OID into the short name (e.g. the OID for an X520 Common Name into ...
cipher.h
This file contains an abstraction interface for use with the cipher primitives provided by the librar...
mbedtls_ecp_group_id
mbedtls_ecp_group_id
Definition: ecp.h:113
mbedtls_oid_descriptor_t::description
const char * description
Definition: oid.h:440
mbedtls_oid_get_ec_grp
int mbedtls_oid_get_ec_grp(const mbedtls_asn1_buf *oid, mbedtls_ecp_group_id *grp_id)
Translate NamedCurve OID into an EC group identifier.
mbedtls_oid_get_sig_alg
int mbedtls_oid_get_sig_alg(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_alg, mbedtls_pk_type_t *pk_alg)
Translate SignatureAlgorithm OID into md_type and pk_type.
mbedtls_pk_type_t
mbedtls_pk_type_t
Public key types.
Definition: pk.h:83
mbedtls_oid_descriptor_t::asn1
const char * asn1
Definition: oid.h:437
mbedtls_oid_descriptor_t
struct mbedtls_oid_descriptor_t mbedtls_oid_descriptor_t
Base OID descriptor structure.
mbedtls_oid_get_md_alg
int mbedtls_oid_get_md_alg(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_alg)
Translate hash algorithm OID into md_type.
mbedtls_oid_get_md_hmac
int mbedtls_oid_get_md_hmac(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_hmac)
Translate hmac algorithm OID into md_type.
mbedtls_oid_descriptor_t::name
const char * name
Definition: oid.h:439
mbedtls_oid_get_pk_alg
int mbedtls_oid_get_pk_alg(const mbedtls_asn1_buf *oid, mbedtls_pk_type_t *pk_alg)
Translate PublicKeyAlgorithm OID into pk_type.
pk.h
Public Key abstraction layer.
mbedtls_oid_get_oid_by_sig_alg
int mbedtls_oid_get_oid_by_sig_alg(mbedtls_pk_type_t pk_alg, mbedtls_md_type_t md_alg, const char **oid, size_t *olen)
Translate md_type and pk_type into SignatureAlgorithm OID.
config.h
Configuration options (set of defines)
md_hmac
#define md_hmac
Definition: compat-1.3.h:2027
mbedtls_oid_get_pkcs12_pbe_alg
int mbedtls_oid_get_pkcs12_pbe_alg(const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_alg, mbedtls_cipher_type_t *cipher_alg)
Translate PKCS#12 PBE algorithm OID into md_type and cipher_type.
mbedtls_asn1_buf
Definition: asn1.h:143
mbedtls_oid_get_oid_by_md
int mbedtls_oid_get_oid_by_md(mbedtls_md_type_t md_alg, const char **oid, size_t *olen)
Translate md_type into hash algorithm OID.
mbedtls_oid_get_oid_by_pk_alg
int mbedtls_oid_get_oid_by_pk_alg(mbedtls_pk_type_t pk_alg, const char **oid, size_t *olen)
Translate pk_type into PublicKeyAlgorithm OID.
mbedtls_cipher_type_t
mbedtls_cipher_type_t
Supported {cipher type, cipher mode} pairs.
Definition: cipher.h:98
asn1.h
Generic ASN.1 parsing.