开通博客赚积分
发布资源赚积分
分类

源码开发语言/平台
当前位置:首页 > 源码/资料 > 加密解密 > CA认证 > 查看源码
cmsasn1.c
资源名称:nss-3.1.1.tar.gz [点击查看]
上传用户:lyxiangda
上传日期:2007-01-12
资源大小:3042k
文件大小:19k
源码类别:

CA认证

开发平台:

WINDOWS

cmsasn1.c:源码内容
  1. /*
  2.  * The contents of this file are subject to the Mozilla Public
  3.  * License Version 1.1 (the "License"); you may not use this file
  4.  * except in compliance with the License. You may obtain a copy of
  5.  * the License at http://www.mozilla.org/MPL/
  6.  * 
  7.  * Software distributed under the License is distributed on an "AS
  8.  * IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
  9.  * implied. See the License for the specific language governing
  10.  * rights and limitations under the License.
  11.  * 
  12.  * The Original Code is the Netscape security libraries.
  13.  * 
  14.  * The Initial Developer of the Original Code is Netscape
  15.  * Communications Corporation.  Portions created by Netscape are 
  16.  * Copyright (C) 1994-2000 Netscape Communications Corporation.  All
  17.  * Rights Reserved.
  18.  * 
  19.  * Contributor(s):
  20.  * 
  21.  * Alternatively, the contents of this file may be used under the
  22.  * terms of the GNU General Public License Version 2 or later (the
  23.  * "GPL"), in which case the provisions of the GPL are applicable 
  24.  * instead of those above.  If you wish to allow use of your 
  25.  * version of this file only under the terms of the GPL and not to
  26.  * allow others to use your version of this file under the MPL,
  27.  * indicate your decision by deleting the provisions above and
  28.  * replace them with the notice and other provisions required by
  29.  * the GPL.  If you do not delete the provisions above, a recipient
  30.  * may use your version of this file under either the MPL or the
  31.  * GPL.
  32.  */
  34. /*
  35.  * CMS ASN.1 templates
  36.  *
  37.  * $Id: cmsasn1.c,v 1.4 2000/06/20 16:28:57 chrisk%netscape.com Exp $
  38.  */
  40. #include "cmslocal.h"
  42. #include "cert.h"
  43. #include "key.h"
  44. #include "secasn1.h"
  45. #include "secitem.h"
  46. #include "secoid.h"
  47. #include "prtime.h"
  48. #include "secerr.h"
  51. extern const SEC_ASN1Template nss_cms_set_of_attribute_template[];
  53. /* -----------------------------------------------------------------------------
  54.  * MESSAGE
  55.  * (uses NSSCMSContentInfo)
  56.  */
  58. /* forward declaration */
  59. static const SEC_ASN1Template *
  60. nss_cms_choose_content_template(void *src_or_dest, PRBool encoding);
  62. static SEC_ChooseASN1TemplateFunc nss_cms_chooser
  63. = nss_cms_choose_content_template;
  65. const SEC_ASN1Template NSSCMSMessageTemplate[] = {
  66.     { SEC_ASN1_SEQUENCE | SEC_ASN1_MAY_STREAM,
  67.   0, NULL, sizeof(NSSCMSMessage) },
  68.     { SEC_ASN1_OBJECT_ID,
  69.   offsetof(NSSCMSMessage,contentInfo.contentType) },
  70.     { SEC_ASN1_OPTIONAL | SEC_ASN1_DYNAMIC | SEC_ASN1_MAY_STREAM
  71.      | SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  72.   offsetof(NSSCMSMessage,contentInfo.content),
  73.   &nss_cms_chooser },
  74.     { 0 }
  75. };
  77. static const SEC_ASN1Template NSS_PointerToCMSMessageTemplate[] = {
  78.     { SEC_ASN1_POINTER, 0, NSSCMSMessageTemplate }
  79. };
  81. /* -----------------------------------------------------------------------------
  82.  * ENCAPSULATED & ENCRYPTED CONTENTINFO
  83.  * (both use a NSSCMSContentInfo)
  84.  */
  85. static const SEC_ASN1Template NSSCMSEncapsulatedContentInfoTemplate[] = {
  86.     { SEC_ASN1_SEQUENCE | SEC_ASN1_MAY_STREAM,
  87.   0, NULL, sizeof(NSSCMSContentInfo) },
  88.     { SEC_ASN1_OBJECT_ID,
  89.   offsetof(NSSCMSContentInfo,contentType) },
  90.     { SEC_ASN1_OPTIONAL | SEC_ASN1_EXPLICIT | SEC_ASN1_MAY_STREAM |
  91. SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  92.   offsetof(NSSCMSContentInfo,rawContent),
  93.   SEC_PointerToOctetStringTemplate },
  94.     { 0 }
  95. };
  97. static const SEC_ASN1Template NSSCMSEncryptedContentInfoTemplate[] = {
  98.     { SEC_ASN1_SEQUENCE | SEC_ASN1_MAY_STREAM,
  99.   0, NULL, sizeof(NSSCMSContentInfo) },
  100.     { SEC_ASN1_OBJECT_ID,
  101.   offsetof(NSSCMSContentInfo,contentType) },
  102.     { SEC_ASN1_INLINE,
  103.   offsetof(NSSCMSContentInfo,contentEncAlg),
  104.   SECOID_AlgorithmIDTemplate },
  105.     { SEC_ASN1_OPTIONAL | SEC_ASN1_POINTER | SEC_ASN1_MAY_STREAM | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  106.   offsetof(NSSCMSContentInfo,rawContent),
  107.   SEC_OctetStringTemplate },
  108.     { 0 }
  109. };
  111. /* -----------------------------------------------------------------------------
  112.  * SIGNED DATA
  113.  */
  115. const SEC_ASN1Template NSSCMSSignerInfoTemplate[];
  117. const SEC_ASN1Template NSSCMSSignedDataTemplate[] = {
  118.     { SEC_ASN1_SEQUENCE | SEC_ASN1_MAY_STREAM,
  119.   0, NULL, sizeof(NSSCMSSignedData) },
  120.     { SEC_ASN1_INTEGER,
  121.   offsetof(NSSCMSSignedData,version) },
  122.     { SEC_ASN1_SET_OF,
  123.   offsetof(NSSCMSSignedData,digestAlgorithms),
  124.   SECOID_AlgorithmIDTemplate },
  125.     { SEC_ASN1_INLINE,
  126.   offsetof(NSSCMSSignedData,contentInfo),
  127.   NSSCMSEncapsulatedContentInfoTemplate },
  128.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  129.   offsetof(NSSCMSSignedData,rawCerts),
  130.   SEC_SetOfAnyTemplate },
  131.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 1,
  132.   offsetof(NSSCMSSignedData,crls),
  133.   CERT_SetOfSignedCrlTemplate },
  134.     { SEC_ASN1_SET_OF,
  135.   offsetof(NSSCMSSignedData,signerInfos),
  136.   NSSCMSSignerInfoTemplate },
  137.     { 0 }
  138. };
  140. const SEC_ASN1Template NSS_PointerToCMSSignedDataTemplate[] = {
  141.     { SEC_ASN1_POINTER, 0, NSSCMSSignedDataTemplate }
  142. };
  144. /* -----------------------------------------------------------------------------
  145.  * signeridentifier
  146.  */
  148. static const SEC_ASN1Template NSSCMSSignerIdentifierTemplate[] = {
  149.     { SEC_ASN1_CHOICE,
  150.   offsetof(NSSCMSSignerIdentifier,identifierType), NULL,
  151.   sizeof(NSSCMSSignerIdentifier) },
  152.     { SEC_ASN1_POINTER | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  153.   offsetof(NSSCMSSignerIdentifier,id.subjectKeyID),
  154.   SEC_OctetStringTemplate,
  155.   NSSCMSRecipientID_SubjectKeyID },
  156.     { SEC_ASN1_POINTER,
  157.   offsetof(NSSCMSSignerIdentifier,id.issuerAndSN),
  158.   CERT_IssuerAndSNTemplate,
  159.   NSSCMSRecipientID_IssuerSN },
  160.     { 0 }
  161. };
  163. /* -----------------------------------------------------------------------------
  164.  * signerinfo
  165.  */
  167. const SEC_ASN1Template NSSCMSSignerInfoTemplate[] = {
  168.     { SEC_ASN1_SEQUENCE,
  169.   0, NULL, sizeof(NSSCMSSignerInfo) },
  170.     { SEC_ASN1_INTEGER,
  171.   offsetof(NSSCMSSignerInfo,version) },
  172.     { SEC_ASN1_INLINE,
  173.   offsetof(NSSCMSSignerInfo,signerIdentifier),
  174.   NSSCMSSignerIdentifierTemplate },
  175.     { SEC_ASN1_INLINE,
  176.   offsetof(NSSCMSSignerInfo,digestAlg),
  177.   SECOID_AlgorithmIDTemplate },
  178.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  179.   offsetof(NSSCMSSignerInfo,authAttr),
  180.   nss_cms_set_of_attribute_template },
  181.     { SEC_ASN1_INLINE,
  182.   offsetof(NSSCMSSignerInfo,digestEncAlg),
  183.   SECOID_AlgorithmIDTemplate },
  184.     { SEC_ASN1_OCTET_STRING,
  185.   offsetof(NSSCMSSignerInfo,encDigest) },
  186.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 1,
  187.   offsetof(NSSCMSSignerInfo,unAuthAttr),
  188.   nss_cms_set_of_attribute_template },
  189.     { 0 }
  190. };
  192. /* -----------------------------------------------------------------------------
  193.  * ENVELOPED DATA
  194.  */
  196. static const SEC_ASN1Template NSSCMSOriginatorInfoTemplate[] = {
  197.     { SEC_ASN1_SEQUENCE,
  198.   0, NULL, sizeof(NSSCMSOriginatorInfo) },
  199.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  200.   offsetof(NSSCMSOriginatorInfo,rawCerts),
  201.   SEC_SetOfAnyTemplate },
  202.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 1,
  203.   offsetof(NSSCMSOriginatorInfo,crls),
  204.   CERT_SetOfSignedCrlTemplate },
  205.     { 0 }
  206. };
  208. const SEC_ASN1Template NSSCMSRecipientInfoTemplate[];
  210. const SEC_ASN1Template NSSCMSEnvelopedDataTemplate[] = {
  211.     { SEC_ASN1_SEQUENCE | SEC_ASN1_MAY_STREAM,
  212.   0, NULL, sizeof(NSSCMSEnvelopedData) },
  213.     { SEC_ASN1_INTEGER,
  214.   offsetof(NSSCMSEnvelopedData,version) },
  215.     { SEC_ASN1_OPTIONAL | SEC_ASN1_POINTER | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  216.   offsetof(NSSCMSEnvelopedData,originatorInfo),
  217.   NSSCMSOriginatorInfoTemplate },
  218.     { SEC_ASN1_SET_OF,
  219.   offsetof(NSSCMSEnvelopedData,recipientInfos),
  220.   NSSCMSRecipientInfoTemplate },
  221.     { SEC_ASN1_INLINE,
  222.   offsetof(NSSCMSEnvelopedData,contentInfo),
  223.   NSSCMSEncryptedContentInfoTemplate },
  224.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 1,
  225.   offsetof(NSSCMSEnvelopedData,unprotectedAttr),
  226.   nss_cms_set_of_attribute_template },
  227.     { 0 }
  228. };
  230. const SEC_ASN1Template NSS_PointerToCMSEnvelopedDataTemplate[] = {
  231.     { SEC_ASN1_POINTER, 0, NSSCMSEnvelopedDataTemplate }
  232. };
  234. /* here come the 15 gazillion templates for all the v3 varieties of RecipientInfo */
  236. /* -----------------------------------------------------------------------------
  237.  * key transport recipient info
  238.  */
  240. static const SEC_ASN1Template NSSCMSRecipientIdentifierTemplate[] = {
  241.     { SEC_ASN1_CHOICE,
  242.   offsetof(NSSCMSRecipientIdentifier,identifierType), NULL,
  243.   sizeof(NSSCMSRecipientIdentifier) },
  244.     { SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  245.   offsetof(NSSCMSRecipientIdentifier,id.subjectKeyID),
  246.   SEC_PointerToOctetStringTemplate,
  247.   NSSCMSRecipientID_SubjectKeyID },
  248.     { SEC_ASN1_POINTER,
  249.   offsetof(NSSCMSRecipientIdentifier,id.issuerAndSN),
  250.   CERT_IssuerAndSNTemplate,
  251.   NSSCMSRecipientID_IssuerSN },
  252.     { 0 }
  253. };
  256. static const SEC_ASN1Template NSSCMSKeyTransRecipientInfoTemplate[] = {
  257.     { SEC_ASN1_SEQUENCE,
  258.   0, NULL, sizeof(NSSCMSKeyTransRecipientInfo) },
  259.     { SEC_ASN1_INTEGER,
  260.   offsetof(NSSCMSKeyTransRecipientInfo,version) },
  261.     { SEC_ASN1_INLINE,
  262.   offsetof(NSSCMSKeyTransRecipientInfo,recipientIdentifier),
  263.   NSSCMSRecipientIdentifierTemplate },
  264.     { SEC_ASN1_INLINE,
  265.   offsetof(NSSCMSKeyTransRecipientInfo,keyEncAlg),
  266.   SECOID_AlgorithmIDTemplate },
  267.     { SEC_ASN1_OCTET_STRING,
  268.   offsetof(NSSCMSKeyTransRecipientInfo,encKey) },
  269.     { 0 }
  270. };
  272. /* -----------------------------------------------------------------------------
  273.  * key agreement recipient info
  274.  */
  276. static const SEC_ASN1Template NSSCMSOriginatorPublicKeyTemplate[] = {
  277.     { SEC_ASN1_SEQUENCE,
  278.   0, NULL, sizeof(NSSCMSOriginatorPublicKey) },
  279.     { SEC_ASN1_INLINE,
  280.   offsetof(NSSCMSOriginatorPublicKey,algorithmIdentifier),
  281.   SECOID_AlgorithmIDTemplate },
  282.     { SEC_ASN1_INLINE,
  283.   offsetof(NSSCMSOriginatorPublicKey,publicKey),
  284.   SEC_BitStringTemplate },
  285.     { 0 }
  286. };
  289. static const SEC_ASN1Template NSSCMSOriginatorIdentifierOrKeyTemplate[] = {
  290.     { SEC_ASN1_CHOICE,
  291.   offsetof(NSSCMSOriginatorIdentifierOrKey,identifierType), NULL,
  292.   sizeof(NSSCMSOriginatorIdentifierOrKey) },
  293.     { SEC_ASN1_POINTER,
  294.   offsetof(NSSCMSOriginatorIdentifierOrKey,id.issuerAndSN),
  295.   CERT_IssuerAndSNTemplate,
  296.   NSSCMSOriginatorIDOrKey_IssuerSN },
  297.     { SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 1,
  298.   offsetof(NSSCMSOriginatorIdentifierOrKey,id.subjectKeyID),
  299.   SEC_PointerToOctetStringTemplate,
  300.   NSSCMSOriginatorIDOrKey_SubjectKeyID },
  301.     { SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 2,
  302.   offsetof(NSSCMSOriginatorIdentifierOrKey,id.originatorPublicKey),
  303.   NSSCMSOriginatorPublicKeyTemplate,
  304.   NSSCMSOriginatorIDOrKey_OriginatorPublicKey },
  305.     { 0 }
  306. };
  308. const SEC_ASN1Template NSSCMSRecipientKeyIdentifierTemplate[] = {
  309.     { SEC_ASN1_SEQUENCE,
  310.   0, NULL, sizeof(NSSCMSRecipientKeyIdentifier) },
  311.     { SEC_ASN1_OCTET_STRING,
  312.   offsetof(NSSCMSRecipientKeyIdentifier,subjectKeyIdentifier) },
  313.     { SEC_ASN1_OPTIONAL | SEC_ASN1_OCTET_STRING,
  314.   offsetof(NSSCMSRecipientKeyIdentifier,date) },
  315.     { SEC_ASN1_OPTIONAL | SEC_ASN1_OCTET_STRING,
  316.   offsetof(NSSCMSRecipientKeyIdentifier,other) },
  317.     { 0 }
  318. };
  321. static const SEC_ASN1Template NSSCMSKeyAgreeRecipientIdentifierTemplate[] = {
  322.     { SEC_ASN1_CHOICE,
  323.   offsetof(NSSCMSKeyAgreeRecipientIdentifier,identifierType), NULL,
  324.   sizeof(NSSCMSKeyAgreeRecipientIdentifier) },
  325.     { SEC_ASN1_POINTER,
  326.   offsetof(NSSCMSKeyAgreeRecipientIdentifier,id.issuerAndSN),
  327.   CERT_IssuerAndSNTemplate,
  328.   NSSCMSKeyAgreeRecipientID_IssuerSN },
  329.     { SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  330.   offsetof(NSSCMSKeyAgreeRecipientIdentifier,id.recipientKeyIdentifier),
  331.   NSSCMSRecipientKeyIdentifierTemplate,
  332.   NSSCMSKeyAgreeRecipientID_RKeyID },
  333.     { 0 }
  334. };
  336. static const SEC_ASN1Template NSSCMSRecipientEncryptedKeyTemplate[] = {
  337.     { SEC_ASN1_SEQUENCE,
  338.   0, NULL, sizeof(NSSCMSRecipientEncryptedKey) },
  339.     { SEC_ASN1_INLINE,
  340.   offsetof(NSSCMSRecipientEncryptedKey,recipientIdentifier),
  341.   NSSCMSKeyAgreeRecipientIdentifierTemplate },
  342.     { SEC_ASN1_INLINE,
  343.   offsetof(NSSCMSRecipientEncryptedKey,encKey),
  344.   SEC_BitStringTemplate },
  345.     { 0 }
  346. };
  348. static const SEC_ASN1Template NSSCMSKeyAgreeRecipientInfoTemplate[] = {
  349.     { SEC_ASN1_SEQUENCE,
  350.   0, NULL, sizeof(NSSCMSKeyAgreeRecipientInfo) },
  351.     { SEC_ASN1_INTEGER,
  352.   offsetof(NSSCMSKeyAgreeRecipientInfo,version) },
  353.     { SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 0,
  354.   offsetof(NSSCMSKeyAgreeRecipientInfo,originatorIdentifierOrKey),
  355.   NSSCMSOriginatorIdentifierOrKeyTemplate },
  356.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_EXPLICIT |
  357.     SEC_ASN1_CONTEXT_SPECIFIC | 1,
  358.   offsetof(NSSCMSKeyAgreeRecipientInfo,ukm),
  359.   SEC_OctetStringTemplate },
  360.     { SEC_ASN1_INLINE,
  361.   offsetof(NSSCMSKeyAgreeRecipientInfo,keyEncAlg),
  362.   SECOID_AlgorithmIDTemplate },
  363.     { SEC_ASN1_SEQUENCE_OF,
  364.   offsetof(NSSCMSKeyAgreeRecipientInfo,recipientEncryptedKeys),
  365.   NSSCMSRecipientEncryptedKeyTemplate },
  366.     { 0 }
  367. };
  369. /* -----------------------------------------------------------------------------
  370.  * KEK recipient info
  371.  */
  373. static const SEC_ASN1Template NSSCMSKEKIdentifierTemplate[] = {
  374.     { SEC_ASN1_SEQUENCE,
  375.   0, NULL, sizeof(NSSCMSKEKIdentifier) },
  376.     { SEC_ASN1_OCTET_STRING,
  377.   offsetof(NSSCMSKEKIdentifier,keyIdentifier) },
  378.     { SEC_ASN1_OPTIONAL | SEC_ASN1_OCTET_STRING,
  379.   offsetof(NSSCMSKEKIdentifier,date) },
  380.     { SEC_ASN1_OPTIONAL | SEC_ASN1_OCTET_STRING,
  381.   offsetof(NSSCMSKEKIdentifier,other) },
  382.     { 0 }
  383. };
  385. static const SEC_ASN1Template NSSCMSKEKRecipientInfoTemplate[] = {
  386.     { SEC_ASN1_SEQUENCE,
  387.   0, NULL, sizeof(NSSCMSKEKRecipientInfo) },
  388.     { SEC_ASN1_INTEGER,
  389.   offsetof(NSSCMSKEKRecipientInfo,version) },
  390.     { SEC_ASN1_INLINE,
  391.   offsetof(NSSCMSKEKRecipientInfo,kekIdentifier),
  392.   NSSCMSKEKIdentifierTemplate },
  393.     { SEC_ASN1_INLINE,
  394.   offsetof(NSSCMSKEKRecipientInfo,keyEncAlg),
  395.   SECOID_AlgorithmIDTemplate },
  396.     { SEC_ASN1_OCTET_STRING,
  397.   offsetof(NSSCMSKEKRecipientInfo,encKey) },
  398.     { 0 }
  399. };
  401. /* -----------------------------------------------------------------------------
  402.  * recipient info
  403.  */
  404. const SEC_ASN1Template NSSCMSRecipientInfoTemplate[] = {
  405.     { SEC_ASN1_CHOICE,
  406.   offsetof(NSSCMSRecipientInfo,recipientInfoType), NULL,
  407.   sizeof(NSSCMSRecipientInfo) },
  408.     { SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 1,
  409.   offsetof(NSSCMSRecipientInfo,ri.keyAgreeRecipientInfo),
  410.   NSSCMSKeyAgreeRecipientInfoTemplate,
  411.   NSSCMSRecipientInfoID_KeyAgree },
  412.     { SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 2,
  413.   offsetof(NSSCMSRecipientInfo,ri.kekRecipientInfo),
  414.   NSSCMSKEKRecipientInfoTemplate,
  415.   NSSCMSRecipientInfoID_KEK },
  416.     { SEC_ASN1_INLINE,
  417.   offsetof(NSSCMSRecipientInfo,ri.keyTransRecipientInfo),
  418.   NSSCMSKeyTransRecipientInfoTemplate,
  419.   NSSCMSRecipientInfoID_KeyTrans },
  420.     { 0 }
  421. };
  423. /* -----------------------------------------------------------------------------
  424.  *
  425.  */
  427. const SEC_ASN1Template NSSCMSDigestedDataTemplate[] = {
  428.     { SEC_ASN1_SEQUENCE | SEC_ASN1_MAY_STREAM,
  429.   0, NULL, sizeof(NSSCMSDigestedData) },
  430.     { SEC_ASN1_INTEGER,
  431.   offsetof(NSSCMSDigestedData,version) },
  432.     { SEC_ASN1_INLINE,
  433.   offsetof(NSSCMSDigestedData,digestAlg),
  434.   SECOID_AlgorithmIDTemplate },
  435.     { SEC_ASN1_INLINE,
  436.   offsetof(NSSCMSDigestedData,contentInfo),
  437.   NSSCMSEncapsulatedContentInfoTemplate },
  438.     { SEC_ASN1_OCTET_STRING,
  439.   offsetof(NSSCMSDigestedData,digest) },
  440.     { 0 }
  441. };
  443. const SEC_ASN1Template NSS_PointerToCMSDigestedDataTemplate[] = {
  444.     { SEC_ASN1_POINTER, 0, NSSCMSDigestedDataTemplate }
  445. };
  447. const SEC_ASN1Template NSSCMSEncryptedDataTemplate[] = {
  448.     { SEC_ASN1_SEQUENCE | SEC_ASN1_MAY_STREAM,
  449.   0, NULL, sizeof(NSSCMSEncryptedData) },
  450.     { SEC_ASN1_INTEGER,
  451.   offsetof(NSSCMSEncryptedData,version) },
  452.     { SEC_ASN1_INLINE,
  453.   offsetof(NSSCMSEncryptedData,contentInfo),
  454.   NSSCMSEncryptedContentInfoTemplate },
  455.     { SEC_ASN1_OPTIONAL | SEC_ASN1_CONSTRUCTED | SEC_ASN1_CONTEXT_SPECIFIC | 1,
  456.   offsetof(NSSCMSEncryptedData,unprotectedAttr),
  457.   nss_cms_set_of_attribute_template },
  458.     { 0 }
  459. };
  461. const SEC_ASN1Template NSS_PointerToCMSEncryptedDataTemplate[] = {
  462.     { SEC_ASN1_POINTER, 0, NSSCMSEncryptedDataTemplate }
  463. };
  465. /* -----------------------------------------------------------------------------
  466.  * FORTEZZA KEA
  467.  */
  468. const SEC_ASN1Template NSS_SMIMEKEAParamTemplateSkipjack[] = {
  469. { SEC_ASN1_SEQUENCE,
  470.   0, NULL, sizeof(NSSCMSSMIMEKEAParameters) },
  471. { SEC_ASN1_OCTET_STRING /* | SEC_ASN1_OPTIONAL */,
  472.   offsetof(NSSCMSSMIMEKEAParameters,originatorKEAKey) },
  473. { SEC_ASN1_OCTET_STRING,
  474.   offsetof(NSSCMSSMIMEKEAParameters,originatorRA) },
  475. { 0 }
  476. };
  478. const SEC_ASN1Template NSS_SMIMEKEAParamTemplateNoSkipjack[] = {
  479. { SEC_ASN1_SEQUENCE,
  480.   0, NULL, sizeof(NSSCMSSMIMEKEAParameters) },
  481. { SEC_ASN1_OCTET_STRING /* | SEC_ASN1_OPTIONAL */,
  482.   offsetof(NSSCMSSMIMEKEAParameters,originatorKEAKey) },
  483. { SEC_ASN1_OCTET_STRING,
  484.   offsetof(NSSCMSSMIMEKEAParameters,originatorRA) },
  485. { SEC_ASN1_OCTET_STRING  | SEC_ASN1_OPTIONAL ,
  486.   offsetof(NSSCMSSMIMEKEAParameters,nonSkipjackIV) },
  487. { 0 }
  488. };
  490. const SEC_ASN1Template NSS_SMIMEKEAParamTemplateAllParams[] = {
  491. { SEC_ASN1_SEQUENCE,
  492.   0, NULL, sizeof(NSSCMSSMIMEKEAParameters) },
  493. { SEC_ASN1_OCTET_STRING /* | SEC_ASN1_OPTIONAL */,
  494.   offsetof(NSSCMSSMIMEKEAParameters,originatorKEAKey) },
  495. { SEC_ASN1_OCTET_STRING,
  496.   offsetof(NSSCMSSMIMEKEAParameters,originatorRA) },
  497. { SEC_ASN1_OCTET_STRING  | SEC_ASN1_OPTIONAL ,
  498.   offsetof(NSSCMSSMIMEKEAParameters,nonSkipjackIV) },
  499. { SEC_ASN1_OCTET_STRING  | SEC_ASN1_OPTIONAL ,
  500.   offsetof(NSSCMSSMIMEKEAParameters,bulkKeySize) },
  501. { 0 }
  502. };
  504. const SEC_ASN1Template *
  505. nss_cms_get_kea_template(NSSCMSKEATemplateSelector whichTemplate)
  506. {
  507. const SEC_ASN1Template *returnVal = NULL;
  509. switch(whichTemplate)
  510. {
  511. case NSSCMSKEAUsesNonSkipjack:
  512. returnVal = NSS_SMIMEKEAParamTemplateNoSkipjack;
  513. break;
  514. case NSSCMSKEAUsesSkipjack:
  515. returnVal = NSS_SMIMEKEAParamTemplateSkipjack;
  516. break;
  517. case NSSCMSKEAUsesNonSkipjackWithPaddedEncKey:
  518. default:
  519. returnVal = NSS_SMIMEKEAParamTemplateAllParams;
  520. break;
  521. }
  522. return returnVal;
  523. }
  525. /* -----------------------------------------------------------------------------
  526.  *
  527.  */
  528. static const SEC_ASN1Template *
  529. nss_cms_choose_content_template(void *src_or_dest, PRBool encoding)
  530. {
  531.     const SEC_ASN1Template *theTemplate;
  532.     NSSCMSContentInfo *cinfo;
  534.     PORT_Assert (src_or_dest != NULL);
  535.     if (src_or_dest == NULL)
  536. return NULL;
  538.     cinfo = (NSSCMSContentInfo *)src_or_dest;
  539.     switch (NSS_CMSContentInfo_GetContentTypeTag(cinfo)) {
  540.     default:
  541. theTemplate = SEC_PointerToAnyTemplate;
  542. break;
  543.     case SEC_OID_PKCS7_DATA:
  544. theTemplate = SEC_PointerToOctetStringTemplate;
  545. break;
  546.     case SEC_OID_PKCS7_SIGNED_DATA:
  547. theTemplate = NSS_PointerToCMSSignedDataTemplate;
  548. break;
  549.     case SEC_OID_PKCS7_ENVELOPED_DATA:
  550. theTemplate = NSS_PointerToCMSEnvelopedDataTemplate;
  551. break;
  552.     case SEC_OID_PKCS7_DIGESTED_DATA:
  553. theTemplate = NSS_PointerToCMSDigestedDataTemplate;
  554. break;
  555.     case SEC_OID_PKCS7_ENCRYPTED_DATA:
  556. theTemplate = NSS_PointerToCMSEncryptedDataTemplate;
  557. break;
  558.     }
  559.     return theTemplate;
  560. }