MPDC: Multi Party Domain Cryptosystem 1.0.0.0b (A0)
MPDC Interior protocol
certificate.h
Go to the documentation of this file.
1/* 2025 Quantum Resistant Cryptographic Solutions Corporation
2 * All Rights Reserved.
3 *
4 * NOTICE: This software and all accompanying materials are the exclusive
5 * property of Quantum Resistant Cryptographic Solutions Corporation (QRCS).
6 * The intellectual and technical concepts contained within this implementation
7 * are proprietary to QRCS and its authorized licensors and are protected under
8 * applicable U.S. and international copyright, patent, and trade secret laws.
9 *
10 * CRYPTOGRAPHIC STANDARDS:
11 * - This software includes implementations of cryptographic algorithms such as
12 * SHA3, AES, and others. These algorithms are public domain or standardized
13 * by organizations such as NIST and are NOT the property of QRCS.
14 * - However, all source code, optimizations, and implementations in this library
15 * are original works of QRCS and are protected under this license.
16 *
17 * RESTRICTIONS:
18 * - Redistribution, modification, or unauthorized distribution of this software,
19 * in whole or in part, is strictly prohibited.
20 * - This software is provided for non-commercial, educational, and research
21 * purposes only. Commercial use in any form is expressly forbidden.
22 * - Licensing and authorized distribution are solely at the discretion of QRCS.
23 * - Any use of this software implies acceptance of these restrictions.
24 *
25 * DISCLAIMER:
26 * This software is provided "as is," without warranty of any kind, express or
27 * implied, including but not limited to warranties of merchantability or fitness
28 * for a particular purpose. QRCS disclaims all liability for any direct, indirect,
29 * incidental, or consequential damages resulting from the use or misuse of this software.
30 *
31 * FULL LICENSE:
32 * This software is subject to the **Quantum Resistant Cryptographic Solutions
33 * Proprietary License (QRCS-PL)**. The complete license terms are included
34 * in the LICENSE.txt file distributed with this software.
35 *
36 * Written by: John G. Underhill
37 * Contact: john.underhill@protonmail.com
38 */
39
40#ifndef MPDC_CERTIFICATE_H
41#define MPDC_CERTIFICATE_H
42
43#include "mpdc.h"
44
96
97
98/* Function Prototypes */
99
107MPDC_EXPORT_API mpdc_configuration_sets mpdc_certificate_algorithm_decode(const char* name);
108
116MPDC_EXPORT_API bool mpdc_certificate_algorithm_enabled(mpdc_configuration_sets conf);
117
124MPDC_EXPORT_API void mpdc_certificate_algorithm_encode(char* name, mpdc_configuration_sets conf);
125
137MPDC_EXPORT_API bool mpdc_certificate_child_are_equal(const mpdc_child_certificate* a, const mpdc_child_certificate* b);
138
148MPDC_EXPORT_API void mpdc_certificate_child_copy(mpdc_child_certificate* output, const mpdc_child_certificate* input);
149
162MPDC_EXPORT_API void mpdc_certificate_child_create(mpdc_child_certificate* child, const uint8_t* pubkey, const mpdc_certificate_expiration* expiration, const char* issuer, mpdc_network_designations designation);
163
175MPDC_EXPORT_API bool mpdc_certificate_child_decode(mpdc_child_certificate* child, const char enck[MPDC_CHILD_CERTIFICATE_STRING_SIZE]);
176
185MPDC_EXPORT_API void mpdc_certificate_child_deserialize(mpdc_child_certificate* child, const uint8_t* input);
186
197MPDC_EXPORT_API size_t mpdc_certificate_child_encode(char enck[MPDC_CHILD_CERTIFICATE_STRING_SIZE], const mpdc_child_certificate* child);
198
206MPDC_EXPORT_API void mpdc_certificate_child_erase(mpdc_child_certificate* child);
207
219MPDC_EXPORT_API bool mpdc_certificate_child_file_to_struct(const char* fpath, mpdc_child_certificate* child);
220
230MPDC_EXPORT_API void mpdc_certificate_child_hash(uint8_t* output, const mpdc_child_certificate* child);
231
242MPDC_EXPORT_API bool mpdc_certificate_child_is_valid(const mpdc_child_certificate* child);
243
258MPDC_EXPORT_API bool mpdc_certificate_child_message_verify(uint8_t* message, size_t* msglen, const uint8_t* signature, size_t siglen, const mpdc_child_certificate* child);
259
266MPDC_EXPORT_API void mpdc_certificate_child_serialize(uint8_t* output, const mpdc_child_certificate* child);
267
282MPDC_EXPORT_API bool mpdc_certificate_signature_hash_verify(const uint8_t* signature, size_t siglen, const uint8_t* message, size_t msglen, const mpdc_child_certificate* lcert);
283
292MPDC_EXPORT_API bool mpdc_certificate_child_struct_to_file(const char* fpath, const mpdc_child_certificate* child);
293
301MPDC_EXPORT_API mpdc_network_designations mpdc_certificate_designation_decode(const char* sdsg);
302
311MPDC_EXPORT_API size_t mpdc_certificate_designation_encode(char* sdsg, mpdc_network_designations designation);
312
322MPDC_EXPORT_API void mpdc_certificate_expiration_set_days(mpdc_certificate_expiration* expiration, uint16_t start, uint16_t duration);
323
331MPDC_EXPORT_API void mpdc_certificate_expiration_set_seconds(mpdc_certificate_expiration* expiration, uint64_t start, uint64_t period);
332
340MPDC_EXPORT_API bool mpdc_certificate_expiration_time_verify(const mpdc_certificate_expiration* expiration);
341
355MPDC_EXPORT_API size_t mpdc_certificate_message_hash_sign(uint8_t* signature, const uint8_t* sigkey, const uint8_t* message, size_t msglen);
356
367MPDC_EXPORT_API bool mpdc_certificate_root_compare(const mpdc_root_certificate* a, const mpdc_root_certificate* b);
368
380MPDC_EXPORT_API void mpdc_certificate_root_create(mpdc_root_certificate* root, const uint8_t* pubkey, const mpdc_certificate_expiration* expiration, const char* issuer);
381
392MPDC_EXPORT_API bool mpdc_certificate_root_decode(mpdc_root_certificate* root, const char* enck);
393
400MPDC_EXPORT_API void mpdc_certificate_root_deserialize(mpdc_root_certificate* root, const uint8_t* input);
401
412MPDC_EXPORT_API size_t mpdc_certificate_root_encode(char* enck, const mpdc_root_certificate* root);
413
421MPDC_EXPORT_API void mpdc_certificate_root_erase(mpdc_root_certificate* root);
422
431MPDC_EXPORT_API bool mpdc_certificate_root_file_to_struct(const char* fpath, mpdc_root_certificate* root);
432
442MPDC_EXPORT_API void mpdc_certificate_root_hash(uint8_t* output, const mpdc_root_certificate* root);
443
450MPDC_EXPORT_API void mpdc_certificate_root_serialize(uint8_t* output, const mpdc_root_certificate* root);
451
464MPDC_EXPORT_API size_t mpdc_certificate_root_sign(mpdc_child_certificate* child, const mpdc_root_certificate* root, const uint8_t* rsigkey);
465
477MPDC_EXPORT_API bool mpdc_certificate_root_signature_verify(const mpdc_child_certificate* child, const mpdc_root_certificate* root);
478
487MPDC_EXPORT_API bool mpdc_certificate_root_struct_to_file(const char* fpath, const mpdc_root_certificate* root);
488
499MPDC_EXPORT_API bool mpdc_certificate_root_is_valid(const mpdc_root_certificate* root);
500
509MPDC_EXPORT_API void mpdc_certificate_signature_generate_keypair(mpdc_signature_keypair* keypair);
510
521MPDC_EXPORT_API size_t mpdc_certificate_signature_sign_message(uint8_t* signature, const uint8_t* message, size_t msglen, const uint8_t* prikey);
522
534MPDC_EXPORT_API bool mpdc_certificate_signature_verify_message(const uint8_t* message, size_t msglen, const uint8_t* signature, size_t siglen, const uint8_t* pubkey);
535
536#if defined(MPDC_DEBUG_TESTS_RUN)
548MPDC_EXPORT_API bool mpdc_certificate_functions_test();
549#endif
550
551#endif
mpdc_certificate_child_message_verify
MPDC_EXPORT_API bool mpdc_certificate_child_message_verify(uint8_t *message, size_t *msglen, const uint8_t *signature, size_t siglen, const mpdc_child_certificate *child)
Verify a message signature using a child certificate.
Definition certificate.c:589
mpdc_certificate_root_deserialize
MPDC_EXPORT_API void mpdc_certificate_root_deserialize(mpdc_root_certificate *root, const uint8_t *input)
Deserialize a root certificate from a byte array.
Definition certificate.c:962
mpdc_certificate_root_erase
MPDC_EXPORT_API void mpdc_certificate_root_erase(mpdc_root_certificate *root)
Delete (erase) a root certificate.
Definition certificate.c:1081
mpdc_certificate_signature_verify_message
MPDC_EXPORT_API bool mpdc_certificate_signature_verify_message(const uint8_t *message, size_t msglen, const uint8_t *signature, size_t siglen, const uint8_t *pubkey)
Verify a message signature using the asymmetric signature scheme.
Definition certificate.c:1304
mpdc_certificate_root_hash
MPDC_EXPORT_API void mpdc_certificate_root_hash(uint8_t *output, const mpdc_root_certificate *root)
Compute the cryptographic hash of a root certificate.
Definition certificate.c:1122
mpdc_certificate_root_struct_to_file
MPDC_EXPORT_API bool mpdc_certificate_root_struct_to_file(const char *fpath, const mpdc_root_certificate *root)
Write a root certificate structure to a file.
Definition certificate.c:1254
mpdc_certificate_child_erase
MPDC_EXPORT_API void mpdc_certificate_child_erase(mpdc_child_certificate *child)
Delete (erase) a child certificate.
Definition certificate.c:485
mpdc_certificate_designation_encode
MPDC_EXPORT_API size_t mpdc_certificate_designation_encode(char *sdsg, mpdc_network_designations designation)
Encode the network-designation enumerator into a string.
Definition certificate.c:743
mpdc_certificate_signature_sign_message
MPDC_EXPORT_API size_t mpdc_certificate_signature_sign_message(uint8_t *signature, const uint8_t *message, size_t msglen, const uint8_t *prikey)
Sign a message using the asymmetric signature scheme.
Definition certificate.c:1284
mpdc_certificate_root_sign
MPDC_EXPORT_API size_t mpdc_certificate_root_sign(mpdc_child_certificate *child, const mpdc_root_certificate *root, const uint8_t *rsigkey)
Sign a child certificate with the root certificate.
Definition certificate.c:1202
mpdc_certificate_root_file_to_struct
MPDC_EXPORT_API bool mpdc_certificate_root_file_to_struct(const char *fpath, mpdc_root_certificate *root)
Copy a serialized root certificate from a file into a root certificate structure.
Definition certificate.c:1096
mpdc_certificate_child_hash
MPDC_EXPORT_API void mpdc_certificate_child_hash(uint8_t *output, const mpdc_child_certificate *child)
Compute the cryptographic hash of a child certificate.
Definition certificate.c:529
mpdc_certificate_algorithm_enabled
MPDC_EXPORT_API bool mpdc_certificate_algorithm_enabled(mpdc_configuration_sets conf)
Test if the specified protocol-set is enabled on this system.
Definition certificate.c:154
mpdc_certificate_signature_generate_keypair
MPDC_EXPORT_API void mpdc_certificate_signature_generate_keypair(mpdc_signature_keypair *keypair)
Generate and encode an asymmetric signature scheme keypair.
Definition certificate.c:1274
mpdc_certificate_child_create
MPDC_EXPORT_API void mpdc_certificate_child_create(mpdc_child_certificate *child, const uint8_t *pubkey, const mpdc_certificate_expiration *expiration, const char *issuer, mpdc_network_designations designation)
Create a child certificate.
Definition certificate.c:213
mpdc_certificate_child_is_valid
MPDC_EXPORT_API bool mpdc_certificate_child_is_valid(const mpdc_child_certificate *child)
Test a child certificate for a valid format and expiration.
Definition certificate.c:557
mpdc_certificate_signature_hash_verify
MPDC_EXPORT_API bool mpdc_certificate_signature_hash_verify(const uint8_t *signature, size_t siglen, const uint8_t *message, size_t msglen, const mpdc_child_certificate *lcert)
Verify that a signature hash matches a computed message hash using a child certificate.
Definition certificate.c:639
mpdc_certificate_expiration_set_seconds
MPDC_EXPORT_API void mpdc_certificate_expiration_set_seconds(mpdc_certificate_expiration *expiration, uint64_t start, uint64_t period)
Set the expiration seconds on a certificate expiration structure.
Definition certificate.c:797
mpdc_certificate_root_is_valid
MPDC_EXPORT_API bool mpdc_certificate_root_is_valid(const mpdc_root_certificate *root)
Validate a root certificate.
Definition certificate.c:1149
mpdc_certificate_root_create
MPDC_EXPORT_API void mpdc_certificate_root_create(mpdc_root_certificate *root, const uint8_t *pubkey, const mpdc_certificate_expiration *expiration, const char *issuer)
Create a root certificate.
Definition certificate.c:878
mpdc_certificate_root_compare
MPDC_EXPORT_API bool mpdc_certificate_root_compare(const mpdc_root_certificate *a, const mpdc_root_certificate *b)
Compare two root certificates for equivalence.
Definition certificate.c:851
mpdc_certificate_expiration_set_days
MPDC_EXPORT_API void mpdc_certificate_expiration_set_days(mpdc_certificate_expiration *expiration, uint16_t start, uint16_t duration)
Set the expiration days on a certificate expiration structure.
Definition certificate.c:786
mpdc_certificate_root_signature_verify
MPDC_EXPORT_API bool mpdc_certificate_root_signature_verify(const mpdc_child_certificate *child, const mpdc_root_certificate *root)
Verify a child certificate against a root certificate.
Definition certificate.c:1224
mpdc_certificate_child_copy
MPDC_EXPORT_API void mpdc_certificate_child_copy(mpdc_child_certificate *output, const mpdc_child_certificate *input)
Copy a child certificate structure.
Definition certificate.c:194
mpdc_certificate_child_deserialize
MPDC_EXPORT_API void mpdc_certificate_child_deserialize(mpdc_child_certificate *child, const uint8_t *input)
Deserialize a child certificate from a byte array.
Definition certificate.c:315
mpdc_certificate_child_serialize
MPDC_EXPORT_API void mpdc_certificate_child_serialize(uint8_t *output, const mpdc_child_certificate *child)
Serialize a child certificate into a contiguous byte array.
Definition certificate.c:610
mpdc_certificate_algorithm_decode
MPDC_EXPORT_API mpdc_configuration_sets mpdc_certificate_algorithm_decode(const char *name)
Decode the string algorithm-set number to the enumerated representation.
Definition certificate.c:14
mpdc_certificate_root_decode
MPDC_EXPORT_API bool mpdc_certificate_root_decode(mpdc_root_certificate *root, const char *enck)
Decode a root certificate string into a certificate structure.
Definition certificate.c:896
mpdc_certificate_child_struct_to_file
MPDC_EXPORT_API bool mpdc_certificate_child_struct_to_file(const char *fpath, const mpdc_child_certificate *child)
Write a child certificate structure to a file.
Definition certificate.c:671
mpdc_certificate_child_are_equal
MPDC_EXPORT_API bool mpdc_certificate_child_are_equal(const mpdc_child_certificate *a, const mpdc_child_certificate *b)
Compare two child certificates for equivalence.
Definition certificate.c:161
mpdc_certificate_child_decode
MPDC_EXPORT_API bool mpdc_certificate_child_decode(mpdc_child_certificate *child, const char enck[MPDC_CHILD_CERTIFICATE_STRING_SIZE])
Decode a child certificate string into a certificate structure.
Definition certificate.c:233
mpdc_certificate_algorithm_encode
MPDC_EXPORT_API void mpdc_certificate_algorithm_encode(char *name, mpdc_configuration_sets conf)
Encode the protocol-set enumerator into its string form.
Definition certificate.c:89
mpdc_certificate_child_file_to_struct
MPDC_EXPORT_API bool mpdc_certificate_child_file_to_struct(const char *fpath, mpdc_child_certificate *child)
Copy a serialized certificate from a file into a child certificate structure.
Definition certificate.c:503
mpdc_certificate_designation_decode
MPDC_EXPORT_API mpdc_network_designations mpdc_certificate_designation_decode(const char *sdsg)
Decode the network-designation string to its enumerated representation.
Definition certificate.c:696
mpdc_certificate_root_encode
MPDC_EXPORT_API size_t mpdc_certificate_root_encode(char *enck, const mpdc_root_certificate *root)
Encode a public root certificate into a human-readable string.
Definition certificate.c:985
mpdc_certificate_child_encode
MPDC_EXPORT_API size_t mpdc_certificate_child_encode(char enck[MPDC_CHILD_CERTIFICATE_STRING_SIZE], const mpdc_child_certificate *child)
Encode a public child certificate into a human-readable string.
Definition certificate.c:344
mpdc_certificate_message_hash_sign
MPDC_EXPORT_API size_t mpdc_certificate_message_hash_sign(uint8_t *signature, const uint8_t *sigkey, const uint8_t *message, size_t msglen)
Hash a message and sign the hash.
Definition certificate.c:829
mpdc_certificate_expiration_time_verify
MPDC_EXPORT_API bool mpdc_certificate_expiration_time_verify(const mpdc_certificate_expiration *expiration)
Verify the expiration time against the current UTC time.
Definition certificate.c:808
mpdc_certificate_root_serialize
MPDC_EXPORT_API void mpdc_certificate_root_serialize(uint8_t *output, const mpdc_root_certificate *root)
Serialize a root certificate into a contiguous byte array.
Definition certificate.c:1179
mpdc.h
MPDC Common Definitions and Protocol Configuration.
MPDC_CHILD_CERTIFICATE_STRING_SIZE
#define MPDC_CHILD_CERTIFICATE_STRING_SIZE
The encoded certificate string length.
Definition mpdc.h:304
mpdc_configuration_sets
mpdc_configuration_sets
The MPDC algorithm configuration sets.
Definition mpdc.h:1091
mpdc_network_designations
mpdc_network_designations
The MPDC device designation.
Definition mpdc.h:1114
mpdc_certificate_expiration
The certificate expiration time structure.
Definition mpdc.h:1283
mpdc_child_certificate
The child certificate structure.
Definition mpdc.h:1293
mpdc_root_certificate
The root certificate structure.
Definition mpdc.h:1411
mpdc_signature_keypair
The MPDC asymmetric signature scheme key container.
Definition mpdc.h:1436