49 #define SEC_CT_PRIVATE_KEY "private-key"
50 #define SEC_CT_PUBLIC_KEY "public-key"
51 #define SEC_CT_CERTIFICATE "certificate"
52 #define SEC_CT_CERTIFICATE_REQUEST "certificate-request"
53 #define SEC_CT_PKCS7 "pkcs7"
54 #define SEC_CT_CRL "crl"
56 #define NS_CERTREQ_HEADER "-----BEGIN NEW CERTIFICATE REQUEST-----"
57 #define NS_CERTREQ_TRAILER "-----END NEW CERTIFICATE REQUEST-----"
59 #define NS_CERT_HEADER "-----BEGIN CERTIFICATE-----"
60 #define NS_CERT_TRAILER "-----END CERTIFICATE-----"
62 #define NS_CRL_HEADER "-----BEGIN CRL-----"
63 #define NS_CRL_TRAILER "-----END CRL-----"
67 SECItem *derCert,
char *nickname, CERTCertTrust *trust);
71 typedef int (*
SECU_PPFunc)(PRFileDesc *out, SECItem *item,
72 char *msg,
int level);
74 typedef int (*
SECU_PPFunc)(FILE *out, SECItem *item,
char *msg,
int level);
93 SECStatus
SECU_ChangePW(PK11SlotInfo *slot,
char *passwd,
char *pwFile);
116 PRBool (*chkpw)(
char *));
158 struct CERTDistNamesStr *caNames,
159 struct CERTCertificateStr **pRetCert,
160 struct SECKEYPrivateKeyStr **pRetKey);
174 CERTCertificate *
cert, PRBool checksig,
175 SECCertificateUsage certUsage,
void *pinArg, PRBool verbose);
199 extern void SECU_PrintAsHex(FILE *out, SECItem *i,
const char *m,
int level);
202 extern void SECU_PrintBuf(FILE *out,
const char *msg,
const void *vp,
int len);
232 PRBool sortByName, PRBool sortByTrust);
250 #ifdef HAVE_EPV_TEMPLATE
252 extern int SECU_PrintPrivateKey(FILE *out, SECItem *der,
char *m,
int level);
270 extern int SECU_PrintCrl(FILE *out, SECItem *der,
char *m,
int level);
276 extern void SECU_PrintAny(FILE *out, SECItem *i,
char *m,
int level);
278 extern void SECU_PrintPolicy(FILE *out, SECItem *value,
char *msg,
int level);
280 char *msg,
int level);
283 char *msg,
int level);
285 extern void SECU_PrintName(FILE *out, CERTName *name,
char *msg,
int level);
287 #ifdef SECU_GetPassword
289 extern SECKEYLowPublicKey *SECU_ConvHighToLow(SECKEYPublicKey *pubHighKey);
311 extern SECStatus
SECU_StoreCRL(PK11SlotInfo *slot, SECItem *derCrl,
312 PRFileDesc *outFile,
int ascii,
char *url);
328 unsigned char *buf,
int len,
329 SECKEYPrivateKey *pk, SECOidTag algID);
344 SECU_CopyCRL(PRArenaPool *destArena, CERTCrl *destCrl, CERTCrl *srcCrl);
358 CERTAuthKeyID*
id, PRTime validTime);
364 void *value, SECItem *encodedValue);
369 void *value, PRBool criticality,
int extenType,
415 void printflags(
char *trusts,
unsigned int flags);
418 extern int ffs(
unsigned int i);
const char * SECU_Strerror(PRErrorCode errNum)
int SECU_PrintPublicKey(FILE *out, SECItem *der, char *m, int level)
void SECU_PrintPolicy(FILE *out, SECItem *value, char *msg, int level)
SECStatus SEC_AddPermCertificate(CERTCertDBHandle *handle, SECItem *derCert, char *nickname, CERTCertTrust *trust)
int(* SECU_PPFunc)(FILE *out, SECItem *item, char *msg, int level)
security library failure security security library has experienced an input length error security security Improperly formatted time string Peer s certificate has an invalid signature Peer s Certificate has been revoked Peer s public key is invalid New password entered incorrectly Please try again security security Peer s certificate issuer has been marked as not trusted by the user Certificate already exists in your database Error adding certificate to database The private key for this certificate cannot be found in key database This certificate is not valid The certificate issuer s certificate has expired Check your system date and time The CRL for the certificate s issuer has an invalid signature Certificate extension value is invalid Issuer certificate is invalid Certificate usages field is invalid The key does not support the requested operation New CRL is not later than the current one Not Cannot or matching certificate and private key not found Signature verification too many signers or improper or corrupted data Cannot Fortezza card has not been properly initialized Please remove it and return it to your issuer No Fortezza card selected Personality not found Invalid Pin No KRL for this site s certificate has been found The KRL for this site s certificate has an invalid signature New KRL has an invalid format security The security card or token does not needs to be or has been removed No slot or token was selected A key with the same nickname already exists error while creating baggage object Couldn t delete the privilege Required algorithm is not allowed Error attempting to import certificates Unable to import Invalid MAC Incorrect password or corrupt file Unable to import Only password integrity and privacy modes supported Unable to import Encryption algorithm not supported Unable to import Incorrect privacy password The user pressed cancel Message not sent Certificate type not approved for application Unable to import Error attempting to import private key Unable to export Unable to locate certificate or key by nickname Unable to export Unable to write the export file Unable to export Key database corrupt or deleted Password entered is invalid Please pick a different one Certificate nickname already in use A sensitive key cannot be moved to the slot where it is needed Invalid module path filename Unable to delete module New CKL has different issuer than current CKL Delete current CKL The key revocation list for this certificate is not yet valid The requested certificate could not be found The location for the certificate status server has invalid format The OCSP server returned unexpected invalid HTTP data The OCSP server experienced an internal error The OCSP server requires a signature on this request The OCSP server returned an unrecognizable status You must enable OCSP before performing this operation The response from the OCSP server was corrupted or improperly formed The OCSP response is not yet The OCSP response contains out of date information The CMS or PKCS Could not decode ASN data Specified template was invalid You are attempting to import a cert with the same issuer serial as an existing cert
SECStatus SECU_SignAndEncodeCRL(CERTCertificate *issuer, CERTSignedCrl *signCrl, SECOidTag hashAlgTag, SignAndEncodeFuncExitStat *resCode)
void SECU_printCertProblems(FILE *outfile, CERTCertDBHandle *handle, CERTCertificate *cert, PRBool checksig, SECCertificateUsage certUsage, void *pinArg, PRBool verbose)
void SECU_PrintCRLInfo(FILE *out, CERTCrl *crl, char *m, int level)
SECStatus SECU_ReadDERFromFile(SECItem *der, PRFileDesc *inFile, PRBool ascii)
SECItem * SECU_GetPBEPassword(void *arg)
char * SEC_GetPassword(FILE *in, FILE *out, char *msg, PRBool(*chkpw)(char *))
void SECU_PrintTrustFlags(FILE *out, CERTCertTrust *trust, char *m, int level)
SignAndEncodeFuncExitStat
SECStatus DER_PrettyPrint(FILE *out, SECItem *it, PRBool raw)
int SECU_CheckCertNameExists(CERTCertDBHandle *handle, char *nickname)
int SECU_PrintCrl(FILE *out, SECItem *der, char *m, int level)
char * SECU_ErrorStringRaw(int16 err)
void SECU_PrintSystemError(char *progName, char *msg,...)
SECStatus SECU_StoreCRL(PK11SlotInfo *slot, SECItem *derCrl, PRFileDesc *outFile, int ascii, char *url)
void SECU_PrintAsHex(FILE *out, SECItem *i, const char *m, int level)
SECStatus(* EXTEN_EXT_VALUE_ENCODER)(PRArenaPool *extHandleArena, void *value, SECItem *encodedValue)
int SECU_PrintPKCS7ContentInfo(FILE *out, SECItem *der, char *m, int level)
CERTCertificate * SECU_FindCrlIssuer(CERTCertDBHandle *dbHandle, SECItem *subject, CERTAuthKeyID *id, PRTime validTime)
void SECU_PrintAny(FILE *out, SECItem *i, char *m, int level)
SECStatus SECU_FileToItem(SECItem *dst, PRFileDesc *src)
CERTAuthKeyID * SECU_FindCRLAuthKeyIDExten(PRArenaPool *arena, CERTSignedCrl *crl)
SECStatus SECU_ParseCommandLine(int argc, char **argv, char *progName, secuCommand *cmd)
void SECU_PrintUTCTime(FILE *out, SECItem *t, char *m, int level)
char * SECU_FilePasswd(PK11SlotInfo *slot, PRBool retry, void *arg)
void SECU_Indent(FILE *out, int level)
void SECU_PrintTimeChoice(FILE *out, SECItem *t, char *m, int level)
int SECU_PrintSignedData(FILE *out, SECItem *der, char *m, int level, SECU_PPFunc inner)
SECStatus SECU_EncodeAndAddExtensionValue(PRArenaPool *arena, void *extHandle, void *value, PRBool criticality, int extenType, EXTEN_EXT_VALUE_ENCODER EncodeValueFn)
void SECU_PrintExtensions(FILE *out, CERTCertExtension **extensions, char *msg, int level)
void SECU_PrintBuf(FILE *out, const char *msg, const void *vp, int len)
void SECU_PrintPrivKeyUsagePeriodExtension(FILE *out, SECItem *value, char *msg, int level)
int SECU_PrintCertificateRequest(FILE *out, SECItem *der, char *m, int level)
int SECU_PrintCertificate(FILE *out, SECItem *der, char *m, int level)
void printflags(char *trusts, unsigned int flags)
void SECU_PrintPRandOSError(char *progName)
int SECU_GetClientAuthData(void *arg, PRFileDesc *fd, struct CERTDistNamesStr *caNames, struct CERTCertificateStr **pRetCert, struct SECKEYPrivateKeyStr **pRetKey)
secuCommandFlag * commands
char * SECU_AppendFilenameToDir(char *dir, char *filename)
secuCommandFlag * options
void SECU_PrintError(char *progName, char *msg,...)
SECStatus SECU_CopyCRL(PRArenaPool *destArena, CERTCrl *destCrl, CERTCrl *srcCrl)
SECOidTag SECU_PrintObjectID(FILE *out, SECItem *oid, char *m, int level)
char * SECU_SECModDBName(void)
SECStatus SEC_WriteDongleFile(int fd, char *pw)
PRBool SEC_CheckPassword(char *password)
int SECU_PrintFingerprints(FILE *out, SECItem *derCert, char *m, int level)
char * SECU_DefaultSSLDir(void)
void SECU_PrintName(FILE *out, CERTName *name, char *msg, int level)
void SECU_PrintGeneralizedTime(FILE *out, SECItem *t, char *m, int level)
SECStatus SECU_PrintCertificateNames(CERTCertDBHandle *handle, PRFileDesc *out, PRBool sortByName, PRBool sortByTrust)
SECStatus SECU_DerSignDataCRL(PRArenaPool *arena, CERTSignedData *sd, unsigned char *buf, int len, SECKEYPrivateKey *pk, SECOidTag algID)
SECStatus SECU_TextFileToItem(SECItem *dst, PRFileDesc *src)
SECStatus SECU_PrintCertNickname(CERTCertListNode *cert, void *data)
char * SECU_GetOptionArg(secuCommand *cmd, int optionNum)
PRBool SEC_BlindCheckPassword(char *password)
void SECU_PrintInteger(FILE *out, SECItem *i, char *m, int level)
SECOidTag SECU_StringToSignatureAlgTag(const char *alg)
SECStatus SECU_PKCS11Init(PRBool readOnly)
char * SECU_ConfigDirectory(const char *base)
char * SECU_ErrorString(int16 err)
void SECU_PrintAlgorithmID(FILE *out, SECAlgorithmID *a, char *m, int level)
void SECU_PrintString(FILE *out, SECItem *si, char *m, int level)
char * SECU_GetModulePassword(PK11SlotInfo *slot, PRBool retry, void *arg)
SECStatus SECU_ChangePW(PK11SlotInfo *slot, char *passwd, char *pwFile)
SECStatus SECU_RegisterDynamicOids(void)
char * SECU_GetPasswordString(void *arg, char *prompt)
char * SEC_ReadDongleFile(int fd)