diff options
Diffstat (limited to 'nss/lib/pki/pkim.h')
-rw-r--r-- | nss/lib/pki/pkim.h | 534 |
1 files changed, 193 insertions, 341 deletions
diff --git a/nss/lib/pki/pkim.h b/nss/lib/pki/pkim.h index b1158eb..3be3337 100644 --- a/nss/lib/pki/pkim.h +++ b/nss/lib/pki/pkim.h @@ -36,11 +36,11 @@ PR_BEGIN_EXTERN_C * nssPKIObject_DeleteStoredObject */ -NSS_EXTERN void nssPKIObject_Lock (nssPKIObject * object); -NSS_EXTERN void nssPKIObject_Unlock (nssPKIObject * object); -NSS_EXTERN PRStatus nssPKIObject_NewLock (nssPKIObject * object, - nssPKILockType lockType); -NSS_EXTERN void nssPKIObject_DestroyLock(nssPKIObject * object); +NSS_EXTERN void nssPKIObject_Lock(nssPKIObject *object); +NSS_EXTERN void nssPKIObject_Unlock(nssPKIObject *object); +NSS_EXTERN PRStatus nssPKIObject_NewLock(nssPKIObject *object, + nssPKILockType lockType); +NSS_EXTERN void nssPKIObject_DestroyLock(nssPKIObject *object); /* nssPKIObject_Create * @@ -48,22 +48,17 @@ NSS_EXTERN void nssPKIObject_DestroyLock(nssPKIObject * object); * initialized with a token instance, or alternatively in a crypto context. */ NSS_EXTERN nssPKIObject * -nssPKIObject_Create -( - NSSArena *arenaOpt, - nssCryptokiObject *instanceOpt, - NSSTrustDomain *td, - NSSCryptoContext *ccOpt, - nssPKILockType lockType -); +nssPKIObject_Create( + NSSArena *arenaOpt, + nssCryptokiObject *instanceOpt, + NSSTrustDomain *td, + NSSCryptoContext *ccOpt, + nssPKILockType lockType); /* nssPKIObject_AddRef */ NSS_EXTERN nssPKIObject * -nssPKIObject_AddRef -( - nssPKIObject *object -); +nssPKIObject_AddRef(nssPKIObject *object); /* nssPKIObject_Destroy * @@ -71,43 +66,34 @@ nssPKIObject_AddRef * all references are gone and it should delete any members it owns. */ NSS_EXTERN PRBool -nssPKIObject_Destroy -( - nssPKIObject *object -); +nssPKIObject_Destroy(nssPKIObject *object); /* nssPKIObject_AddInstance * * Add a token instance to the object, if it does not have it already. */ NSS_EXTERN PRStatus -nssPKIObject_AddInstance -( - nssPKIObject *object, - nssCryptokiObject *instance -); +nssPKIObject_AddInstance( + nssPKIObject *object, + nssCryptokiObject *instance); /* nssPKIObject_HasInstance * * Query the object for a token instance. */ NSS_EXTERN PRBool -nssPKIObject_HasInstance -( - nssPKIObject *object, - nssCryptokiObject *instance -); +nssPKIObject_HasInstance( + nssPKIObject *object, + nssCryptokiObject *instance); /* nssPKIObject_GetTokens * * Get all tokens which have an instance of the object. */ NSS_EXTERN NSSToken ** -nssPKIObject_GetTokens -( - nssPKIObject *object, - PRStatus *statusOpt -); +nssPKIObject_GetTokens( + nssPKIObject *object, + PRStatus *statusOpt); /* nssPKIObject_GetNicknameForToken * @@ -115,22 +101,18 @@ nssPKIObject_GetTokens * nickname for the specified token. */ NSS_EXTERN NSSUTF8 * -nssPKIObject_GetNicknameForToken -( - nssPKIObject *object, - NSSToken *tokenOpt -); +nssPKIObject_GetNicknameForToken( + nssPKIObject *object, + NSSToken *tokenOpt); /* nssPKIObject_RemoveInstanceForToken * * Remove the instance of the object on the specified token. */ NSS_EXTERN PRStatus -nssPKIObject_RemoveInstanceForToken -( - nssPKIObject *object, - NSSToken *token -); +nssPKIObject_RemoveInstanceForToken( + nssPKIObject *object, + NSSToken *token); /* nssPKIObject_DeleteStoredObject * @@ -143,135 +125,88 @@ nssPKIObject_RemoveInstanceForToken * regardless of the value of 'isFriendly'. */ NSS_EXTERN PRStatus -nssPKIObject_DeleteStoredObject -( - nssPKIObject *object, - NSSCallback *uhh, - PRBool isFriendly -); +nssPKIObject_DeleteStoredObject( + nssPKIObject *object, + NSSCallback *uhh, + PRBool isFriendly); NSS_EXTERN nssCryptokiObject ** -nssPKIObject_GetInstances -( - nssPKIObject *object -); +nssPKIObject_GetInstances( + nssPKIObject *object); NSS_EXTERN NSSCertificate ** -nssTrustDomain_FindCertificatesByID -( - NSSTrustDomain *td, - NSSItem *id, - NSSCertificate **rvOpt, - PRUint32 maximumOpt, - NSSArena *arenaOpt -); +nssTrustDomain_FindCertificatesByID( + NSSTrustDomain *td, + NSSItem *id, + NSSCertificate **rvOpt, + PRUint32 maximumOpt, + NSSArena *arenaOpt); NSS_EXTERN NSSCRL ** -nssTrustDomain_FindCRLsBySubject -( - NSSTrustDomain *td, - NSSDER *subject -); +nssTrustDomain_FindCRLsBySubject( + NSSTrustDomain *td, + NSSDER *subject); /* module-private nsspki methods */ NSS_EXTERN NSSCryptoContext * -nssCryptoContext_Create -( - NSSTrustDomain *td, - NSSCallback *uhhOpt -); +nssCryptoContext_Create( + NSSTrustDomain *td, + NSSCallback *uhhOpt); /* XXX for the collection */ NSS_EXTERN NSSCertificate * -nssCertificate_Create -( - nssPKIObject *object -); +nssCertificate_Create(nssPKIObject *object); NSS_EXTERN PRStatus -nssCertificate_SetCertTrust -( - NSSCertificate *c, - NSSTrust *trust -); +nssCertificate_SetCertTrust( + NSSCertificate *c, + NSSTrust *trust); NSS_EXTERN nssDecodedCert * -nssCertificate_GetDecoding -( - NSSCertificate *c -); +nssCertificate_GetDecoding(NSSCertificate *c); extern PRIntn -nssCertificate_SubjectListSort -( - void *v1, - void *v2 -); +nssCertificate_SubjectListSort( + void *v1, + void *v2); NSS_EXTERN nssDecodedCert * -nssDecodedCert_Create -( - NSSArena *arenaOpt, - NSSDER *encoding, - NSSCertificateType type -); +nssDecodedCert_Create( + NSSArena *arenaOpt, + NSSDER *encoding, + NSSCertificateType type); NSS_EXTERN PRStatus -nssDecodedCert_Destroy -( - nssDecodedCert *dc -); +nssDecodedCert_Destroy(nssDecodedCert *dc); NSS_EXTERN NSSTrust * -nssTrust_Create -( - nssPKIObject *object, - NSSItem *certData -); +nssTrust_Create( + nssPKIObject *object, + NSSItem *certData); NSS_EXTERN NSSCRL * -nssCRL_Create -( - nssPKIObject *object -); +nssCRL_Create(nssPKIObject *object); NSS_EXTERN NSSCRL * -nssCRL_AddRef -( - NSSCRL *crl -); +nssCRL_AddRef(NSSCRL *crl); NSS_EXTERN PRStatus -nssCRL_Destroy -( - NSSCRL *crl -); +nssCRL_Destroy(NSSCRL *crl); NSS_EXTERN PRStatus -nssCRL_DeleteStoredObject -( - NSSCRL *crl, - NSSCallback *uhh -); +nssCRL_DeleteStoredObject( + NSSCRL *crl, + NSSCallback *uhh); NSS_EXTERN NSSPrivateKey * -nssPrivateKey_Create -( - nssPKIObject *o -); +nssPrivateKey_Create(nssPKIObject *o); NSS_EXTERN NSSDER * -nssCRL_GetEncoding -( - NSSCRL *crl -); +nssCRL_GetEncoding(NSSCRL *crl); NSS_EXTERN NSSPublicKey * -nssPublicKey_Create -( - nssPKIObject *object -); +nssPublicKey_Create(nssPKIObject *object); /* nssCertificateArray * @@ -291,10 +226,7 @@ nssPublicKey_Create * to call this method on an arena-allocated array. */ NSS_EXTERN void -nssCertificateArray_Destroy -( - NSSCertificate **certs -); +nssCertificateArray_Destroy(NSSCertificate **certs); /* nssCertificateArray_Join * @@ -305,25 +237,21 @@ nssCertificateArray_Destroy * arena. */ NSS_EXTERN NSSCertificate ** -nssCertificateArray_Join -( - NSSCertificate **certs1, - NSSCertificate **certs2 -); +nssCertificateArray_Join( + NSSCertificate **certs1, + NSSCertificate **certs2); /* nssCertificateArray_FindBestCertificate * * Use the usual { time, usage, policies } to find the best cert in the * array. */ -NSS_EXTERN NSSCertificate * -nssCertificateArray_FindBestCertificate -( - NSSCertificate **certs, - NSSTime *timeOpt, - const NSSUsage *usage, - NSSPolicies *policiesOpt -); +NSS_EXTERN NSSCertificate * +nssCertificateArray_FindBestCertificate( + NSSCertificate **certs, + NSSTime *timeOpt, + const NSSUsage *usage, + NSSPolicies *policiesOpt); /* nssCertificateArray_Traverse * @@ -331,24 +259,19 @@ nssCertificateArray_FindBestCertificate * fails. */ NSS_EXTERN PRStatus -nssCertificateArray_Traverse -( - NSSCertificate **certs, - PRStatus (* callback)(NSSCertificate *c, void *arg), - void *arg -); +nssCertificateArray_Traverse( + NSSCertificate **certs, + PRStatus (*callback)(NSSCertificate *c, void *arg), + void *arg); NSS_EXTERN void -nssCRLArray_Destroy -( - NSSCRL **crls -); +nssCRLArray_Destroy(NSSCRL **crls); /* nssPKIObjectCollection * * This is a handy way to group objects together and perform operations * on them. It can also handle "proto-objects"-- references to - * objects instances on tokens, where the actual object hasn't + * objects instances on tokens, where the actual object hasn't * been formed yet. * * nssCertificateCollection_Create @@ -360,7 +283,7 @@ nssCRLArray_Destroy * type (nssPKIObjectCollection), shared among all. This may cause * confusion; an alternative would be to define all of the methods * for each subtype (nssCertificateCollection_Destroy, ...), but that doesn't - * seem worth the code bloat.. It is left up to the caller to remember + * seem worth the code bloat.. It is left up to the caller to remember * what type of collection he/she is dealing with. * * nssPKIObjectCollection_Destroy @@ -383,11 +306,9 @@ nssCRLArray_Destroy * Optionally provide a starting set of certs. */ NSS_EXTERN nssPKIObjectCollection * -nssCertificateCollection_Create -( - NSSTrustDomain *td, - NSSCertificate **certsOpt -); +nssCertificateCollection_Create( + NSSTrustDomain *td, + NSSCertificate **certsOpt); /* nssCRLCollection_Create * @@ -395,11 +316,9 @@ nssCertificateCollection_Create * Optionally provide a starting set of CRLs. */ NSS_EXTERN nssPKIObjectCollection * -nssCRLCollection_Create -( - NSSTrustDomain *td, - NSSCRL **crlsOpt -); +nssCRLCollection_Create( + NSSTrustDomain *td, + NSSCRL **crlsOpt); /* nssPrivateKeyCollection_Create * @@ -407,11 +326,9 @@ nssCRLCollection_Create * Optionally provide a starting set of keys. */ NSS_EXTERN nssPKIObjectCollection * -nssPrivateKeyCollection_Create -( - NSSTrustDomain *td, - NSSPrivateKey **pvkOpt -); +nssPrivateKeyCollection_Create( + NSSTrustDomain *td, + NSSPrivateKey **pvkOpt); /* nssPublicKeyCollection_Create * @@ -419,34 +336,24 @@ nssPrivateKeyCollection_Create * Optionally provide a starting set of keys. */ NSS_EXTERN nssPKIObjectCollection * -nssPublicKeyCollection_Create -( - NSSTrustDomain *td, - NSSPublicKey **pvkOpt -); +nssPublicKeyCollection_Create( + NSSTrustDomain *td, + NSSPublicKey **pvkOpt); /* nssPKIObjectCollection_Destroy */ NSS_EXTERN void -nssPKIObjectCollection_Destroy -( - nssPKIObjectCollection *collection -); +nssPKIObjectCollection_Destroy(nssPKIObjectCollection *collection); /* nssPKIObjectCollection_Count */ NSS_EXTERN PRUint32 -nssPKIObjectCollection_Count -( - nssPKIObjectCollection *collection -); +nssPKIObjectCollection_Count(nssPKIObjectCollection *collection); NSS_EXTERN PRStatus -nssPKIObjectCollection_AddObject -( - nssPKIObjectCollection *collection, - nssPKIObject *object -); +nssPKIObjectCollection_AddObject( + nssPKIObjectCollection *collection, + nssPKIObject *object); /* nssPKIObjectCollection_AddInstances * @@ -460,21 +367,17 @@ nssPKIObjectCollection_AddObject * numInstances = 0 means the array is NULL-terminated */ NSS_EXTERN PRStatus -nssPKIObjectCollection_AddInstances -( - nssPKIObjectCollection *collection, - nssCryptokiObject **instances, - PRUint32 numInstances -); +nssPKIObjectCollection_AddInstances( + nssPKIObjectCollection *collection, + nssCryptokiObject **instances, + PRUint32 numInstances); /* nssPKIObjectCollection_Traverse */ NSS_EXTERN PRStatus -nssPKIObjectCollection_Traverse -( - nssPKIObjectCollection *collection, - nssPKIObjectCallback *callback -); +nssPKIObjectCollection_Traverse( + nssPKIObjectCollection *collection, + nssPKIObjectCallback *callback); /* This function is being added for NSS 3.5. It corresponds to the function * nssToken_TraverseCertificates. The idea is to use the collection during @@ -482,213 +385,162 @@ nssPKIObjectCollection_Traverse * a cert does not already exist. */ NSS_EXTERN PRStatus -nssPKIObjectCollection_AddInstanceAsObject -( - nssPKIObjectCollection *collection, - nssCryptokiObject *instance -); +nssPKIObjectCollection_AddInstanceAsObject( + nssPKIObjectCollection *collection, + nssCryptokiObject *instance); /* nssPKIObjectCollection_GetCertificates * - * Get all of the certificates in the collection. + * Get all of the certificates in the collection. */ NSS_EXTERN NSSCertificate ** -nssPKIObjectCollection_GetCertificates -( - nssPKIObjectCollection *collection, - NSSCertificate **rvOpt, - PRUint32 maximumOpt, - NSSArena *arenaOpt -); +nssPKIObjectCollection_GetCertificates( + nssPKIObjectCollection *collection, + NSSCertificate **rvOpt, + PRUint32 maximumOpt, + NSSArena *arenaOpt); NSS_EXTERN NSSCRL ** -nssPKIObjectCollection_GetCRLs -( - nssPKIObjectCollection *collection, - NSSCRL **rvOpt, - PRUint32 maximumOpt, - NSSArena *arenaOpt -); +nssPKIObjectCollection_GetCRLs( + nssPKIObjectCollection *collection, + NSSCRL **rvOpt, + PRUint32 maximumOpt, + NSSArena *arenaOpt); NSS_EXTERN NSSPrivateKey ** -nssPKIObjectCollection_GetPrivateKeys -( - nssPKIObjectCollection *collection, - NSSPrivateKey **rvOpt, - PRUint32 maximumOpt, - NSSArena *arenaOpt -); +nssPKIObjectCollection_GetPrivateKeys( + nssPKIObjectCollection *collection, + NSSPrivateKey **rvOpt, + PRUint32 maximumOpt, + NSSArena *arenaOpt); NSS_EXTERN NSSPublicKey ** -nssPKIObjectCollection_GetPublicKeys -( - nssPKIObjectCollection *collection, - NSSPublicKey **rvOpt, - PRUint32 maximumOpt, - NSSArena *arenaOpt -); +nssPKIObjectCollection_GetPublicKeys( + nssPKIObjectCollection *collection, + NSSPublicKey **rvOpt, + PRUint32 maximumOpt, + NSSArena *arenaOpt); NSS_EXTERN NSSTime * -NSSTime_Now -( - NSSTime *timeOpt -); +NSSTime_Now(NSSTime *timeOpt); NSS_EXTERN NSSTime * -NSSTime_SetPRTime -( - NSSTime *timeOpt, - PRTime prTime -); +NSSTime_SetPRTime( + NSSTime *timeOpt, + PRTime prTime); NSS_EXTERN PRTime -NSSTime_GetPRTime -( - NSSTime *time -); +NSSTime_GetPRTime( + NSSTime *time); NSS_EXTERN nssHash * -nssHash_CreateCertificate -( - NSSArena *arenaOpt, - PRUint32 numBuckets -); +nssHash_CreateCertificate( + NSSArena *arenaOpt, + PRUint32 numBuckets); /* 3.4 Certificate cache routines */ NSS_EXTERN PRStatus -nssTrustDomain_InitializeCache -( - NSSTrustDomain *td, - PRUint32 cacheSize -); +nssTrustDomain_InitializeCache( + NSSTrustDomain *td, + PRUint32 cacheSize); NSS_EXTERN PRStatus -nssTrustDomain_AddCertsToCache -( - NSSTrustDomain *td, - NSSCertificate **certs, - PRUint32 numCerts -); +nssTrustDomain_AddCertsToCache( + NSSTrustDomain *td, + NSSCertificate **certs, + PRUint32 numCerts); NSS_EXTERN void -nssTrustDomain_RemoveCertFromCacheLOCKED ( - NSSTrustDomain *td, - NSSCertificate *cert -); +nssTrustDomain_RemoveCertFromCacheLOCKED( + NSSTrustDomain *td, + NSSCertificate *cert); NSS_EXTERN void -nssTrustDomain_LockCertCache ( - NSSTrustDomain *td -); +nssTrustDomain_LockCertCache(NSSTrustDomain *td); NSS_EXTERN void -nssTrustDomain_UnlockCertCache ( - NSSTrustDomain *td -); +nssTrustDomain_UnlockCertCache(NSSTrustDomain *td); NSS_IMPLEMENT PRStatus -nssTrustDomain_DestroyCache -( - NSSTrustDomain *td -); +nssTrustDomain_DestroyCache(NSSTrustDomain *td); -/* +/* * Remove all certs for the given token from the cache. This is * needed if the token is removed. */ NSS_EXTERN PRStatus -nssTrustDomain_RemoveTokenCertsFromCache -( - NSSTrustDomain *td, - NSSToken *token -); +nssTrustDomain_RemoveTokenCertsFromCache( + NSSTrustDomain *td, + NSSToken *token); NSS_EXTERN PRStatus -nssTrustDomain_UpdateCachedTokenCerts -( - NSSTrustDomain *td, - NSSToken *token -); +nssTrustDomain_UpdateCachedTokenCerts( + NSSTrustDomain *td, + NSSToken *token); /* * Find all cached certs with this nickname (label). */ NSS_EXTERN NSSCertificate ** -nssTrustDomain_GetCertsForNicknameFromCache -( - NSSTrustDomain *td, - const NSSUTF8 *nickname, - nssList *certListOpt -); +nssTrustDomain_GetCertsForNicknameFromCache( + NSSTrustDomain *td, + const NSSUTF8 *nickname, + nssList *certListOpt); /* * Find all cached certs with this email address. */ NSS_EXTERN NSSCertificate ** -nssTrustDomain_GetCertsForEmailAddressFromCache -( - NSSTrustDomain *td, - NSSASCII7 *email, - nssList *certListOpt -); +nssTrustDomain_GetCertsForEmailAddressFromCache( + NSSTrustDomain *td, + NSSASCII7 *email, + nssList *certListOpt); /* * Find all cached certs with this subject. */ NSS_EXTERN NSSCertificate ** -nssTrustDomain_GetCertsForSubjectFromCache -( - NSSTrustDomain *td, - NSSDER *subject, - nssList *certListOpt -); +nssTrustDomain_GetCertsForSubjectFromCache( + NSSTrustDomain *td, + NSSDER *subject, + nssList *certListOpt); /* * Look for a specific cert in the cache. */ NSS_EXTERN NSSCertificate * -nssTrustDomain_GetCertForIssuerAndSNFromCache -( - NSSTrustDomain *td, - NSSDER *issuer, - NSSDER *serialNum -); +nssTrustDomain_GetCertForIssuerAndSNFromCache( + NSSTrustDomain *td, + NSSDER *issuer, + NSSDER *serialNum); /* * Look for a specific cert in the cache. */ NSS_EXTERN NSSCertificate * -nssTrustDomain_GetCertByDERFromCache -( - NSSTrustDomain *td, - NSSDER *der -); +nssTrustDomain_GetCertByDERFromCache( + NSSTrustDomain *td, + NSSDER *der); /* Get all certs from the cache */ /* XXX this is being included to make some old-style calls word, not to * say we should keep it */ NSS_EXTERN NSSCertificate ** -nssTrustDomain_GetCertsFromCache -( - NSSTrustDomain *td, - nssList *certListOpt -); +nssTrustDomain_GetCertsFromCache( + NSSTrustDomain *td, + nssList *certListOpt); NSS_EXTERN void -nssTrustDomain_DumpCacheInfo -( - NSSTrustDomain *td, - void (* cert_dump_iter)(const void *, void *, void *), - void *arg -); +nssTrustDomain_DumpCacheInfo( + NSSTrustDomain *td, + void (*cert_dump_iter)(const void *, void *, void *), + void *arg); NSS_EXTERN void -nssCertificateList_AddReferences -( - nssList *certList -); +nssCertificateList_AddReferences( + nssList *certList); PR_END_EXTERN_C |