nss-3.41/nss/lib/libpkix/pkix/checker/pkix_policychecker.h - manifest_repos/nss - Git at Google

 /* This Source Code Form is subject to the terms of the Mozilla Public
  * License, v. 2.0. If a copy of the MPL was not distributed with this
  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
 /*
  * pkix_policychecker.h
  *
  * Header file for policy checker.
  *
  */

 #ifndef _PKIX_POLICYCHECKER_H
 #define _PKIX_POLICYCHECKER_H

 #include "pkix_tools.h"

 #ifdef __cplusplus
 extern "C" {
 #endif

 typedef struct PKIX_PolicyCheckerStateStruct PKIX_PolicyCheckerState;

 struct PKIX_PolicyCheckerStateStruct{
         PKIX_PL_OID *certPoliciesExtension;             /* const */
         PKIX_PL_OID *policyMappingsExtension;           /* const */
         PKIX_PL_OID *policyConstraintsExtension;        /* const */
         PKIX_PL_OID *inhibitAnyPolicyExtension;         /* const */
         PKIX_PL_OID *anyPolicyOID;                      /* const */
         PKIX_Boolean initialIsAnyPolicy;                /* const */
         PKIX_PolicyNode *validPolicyTree;
         PKIX_List *userInitialPolicySet;                /* immutable */
         PKIX_List *mappedUserInitialPolicySet;
         PKIX_Boolean policyQualifiersRejected;
         PKIX_Boolean initialPolicyMappingInhibit;
         PKIX_Boolean initialExplicitPolicy;
         PKIX_Boolean initialAnyPolicyInhibit;
         PKIX_UInt32 explicitPolicy;
         PKIX_UInt32 inhibitAnyPolicy;
         PKIX_UInt32 policyMapping;
         PKIX_UInt32 numCerts;
         PKIX_UInt32 certsProcessed;
         PKIX_PolicyNode *anyPolicyNodeAtBottom;
         PKIX_PolicyNode *newAnyPolicyNode;
         /*
          * The following variables do not survive from one
          * certificate to the next. They are needed at each
          * level of recursive routines, any by placing them
          * in the state object we can pass fewer arguments.
          */
         PKIX_Boolean certPoliciesCritical;
         PKIX_List *mappedPolicyOIDs;
 };

 PKIX_Error *
 pkix_PolicyChecker_Initialize(
         PKIX_List *initialPolicies,
         PKIX_Boolean policyQualifiersRejected,
         PKIX_Boolean initialPolicyMappingInhibit,
         PKIX_Boolean initialExplicitPolicy,
         PKIX_Boolean initialAnyPolicyInhibit,
         PKIX_UInt32 numCerts,
         PKIX_CertChainChecker **pChecker,
         void *plContext);

 /* --Private-Functions-------------------------------------------- */

 PKIX_Error *
 pkix_PolicyCheckerState_RegisterSelf(void *plContext);

 #ifdef __cplusplus
 }
 #endif

 #endif /* _PKIX_POLICYCHECKER_H */
	/* This Source Code Form is subject to the terms of the Mozilla Public
	* License, v. 2.0. If a copy of the MPL was not distributed with this
	* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
	/*
	* pkix_policychecker.h
	*
	* Header file for policy checker.
	*
	*/

	#ifndef _PKIX_POLICYCHECKER_H
	#define _PKIX_POLICYCHECKER_H

	#include "pkix_tools.h"

	#ifdef __cplusplus
	extern "C" {
	#endif

	typedef struct PKIX_PolicyCheckerStateStruct PKIX_PolicyCheckerState;

	struct PKIX_PolicyCheckerStateStruct{
	PKIX_PL_OID certPoliciesExtension; / const */
	PKIX_PL_OID policyMappingsExtension; / const */
	PKIX_PL_OID policyConstraintsExtension; / const */
	PKIX_PL_OID inhibitAnyPolicyExtension; / const */
	PKIX_PL_OID anyPolicyOID; / const */
	PKIX_Boolean initialIsAnyPolicy; /* const */
	PKIX_PolicyNode *validPolicyTree;
	PKIX_List userInitialPolicySet; / immutable */
	PKIX_List *mappedUserInitialPolicySet;
	PKIX_Boolean policyQualifiersRejected;
	PKIX_Boolean initialPolicyMappingInhibit;
	PKIX_Boolean initialExplicitPolicy;
	PKIX_Boolean initialAnyPolicyInhibit;
	PKIX_UInt32 explicitPolicy;
	PKIX_UInt32 inhibitAnyPolicy;
	PKIX_UInt32 policyMapping;
	PKIX_UInt32 numCerts;
	PKIX_UInt32 certsProcessed;
	PKIX_PolicyNode *anyPolicyNodeAtBottom;
	PKIX_PolicyNode *newAnyPolicyNode;
	/*
	* The following variables do not survive from one
	* certificate to the next. They are needed at each
	* level of recursive routines, any by placing them
	* in the state object we can pass fewer arguments.
	*/
	PKIX_Boolean certPoliciesCritical;
	PKIX_List *mappedPolicyOIDs;
	};

	PKIX_Error *
	pkix_PolicyChecker_Initialize(
	PKIX_List *initialPolicies,
	PKIX_Boolean policyQualifiersRejected,
	PKIX_Boolean initialPolicyMappingInhibit,
	PKIX_Boolean initialExplicitPolicy,
	PKIX_Boolean initialAnyPolicyInhibit,
	PKIX_UInt32 numCerts,
	PKIX_CertChainChecker **pChecker,
	void *plContext);

	/* --Private-Functions-------------------------------------------- */

	PKIX_Error *
	pkix_PolicyCheckerState_RegisterSelf(void *plContext);

	#ifdef __cplusplus
	}
	#endif

	#endif /* _PKIX_POLICYCHECKER_H */