andre@0: /* This Source Code Form is subject to the terms of the Mozilla Public
andre@0:  * License, v. 2.0. If a copy of the MPL was not distributed with this
andre@0:  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
andre@0: /*
andre@0:  * pkix_pl_nameconstraints.h
andre@0:  *
andre@0:  * Name Constraints Object Definitions
andre@0:  *
andre@0:  */
andre@0: 
andre@0: #ifndef _PKIX_PL_NAMECONSTRAINTS_H
andre@0: #define _PKIX_PL_NAMECONSTRAINTS_H
andre@0: 
andre@0: #include "pkix_pl_common.h"
andre@0: 
andre@0: #ifdef __cplusplus
andre@0: extern "C" {
andre@0: #endif
andre@0: 
andre@0: struct PKIX_PL_CertNameConstraintsStruct {
andre@0:         PLArenaPool *arena;
andre@0:         CERTNameConstraints **nssNameConstraintsList;
andre@0:         PKIX_UInt32 numNssNameConstraints;
andre@0:         PKIX_List *permittedList; /* list of PKIX_PL_GeneralName */
andre@0:         PKIX_List *excludedList; /* list of PKIX_PL_GeneralName */
andre@0: };
andre@0: 
andre@0: /* see source file for function documentation */
andre@0: 
andre@0: PKIX_Error *pkix_pl_CertNameConstraints_RegisterSelf(void *plContext);
andre@0: 
andre@0: PKIX_Error *pkix_pl_CertNameConstraints_Create(
andre@0:         CERTCertificate *nssCert,
andre@0:         PKIX_PL_CertNameConstraints **pNameConstraints,
andre@0:         void *plContext);
andre@0: 
andre@0: PKIX_Error *
andre@0: pkix_pl_CertNameConstraints_CreateWithNames(
andre@0:         PKIX_List *names, /* List of PKIX_PL_GeneralName */
andre@0:         PKIX_PL_CertNameConstraints **pNameConstraints,
andre@0:         void *plContext);
andre@0: 
andre@0: PKIX_Error *
andre@0: pkix_pl_CertNameConstraints_CheckNameSpaceNssNames(
andre@0:         CERTGeneralName *nssSubjectNames,
andre@0:         PKIX_PL_CertNameConstraints *nameConstraints,
andre@0:         PKIX_Boolean *pCheckPass,
andre@0:         void *plContext);
andre@0: 
andre@0: PKIX_Error *
andre@0: pkix_pl_CertNameConstraints_CheckNameSpacePkixNames(
andre@0:         PKIX_List *nameList,
andre@0:         PKIX_PL_CertNameConstraints *nameConstraints,
andre@0:         PKIX_Boolean *pCheckPass,
andre@0:         void *plContext);
andre@0: 
andre@0: 
andre@0: PKIX_Error *pkix_pl_CertNameConstraints_Merge(
andre@0:         PKIX_PL_CertNameConstraints *firstNC,
andre@0:         PKIX_PL_CertNameConstraints *secondNC,
andre@0:         PKIX_PL_CertNameConstraints **pMergedNC,
andre@0:         void *plContext);
andre@0: 
andre@0: #ifdef __cplusplus
andre@0: }
andre@0: #endif
andre@0: 
andre@0: #endif /* _PKIX_PL_NAMECONSTRAINTS_H */