UDIF/certstore_8h_source.html

/* 2025-2026 Quantum Resistant Cryptographic Solutions Corporation

 * All Rights Reserved.

 *

 * NOTICE:

 * This software and all accompanying materials are the exclusive property of

 * Quantum Resistant Cryptographic Solutions Corporation (QRCS). The intellectual

 * and technical concepts contained herein are proprietary to QRCS and are

 * protected under applicable Canadian, U.S., and international copyright,

 * patent, and trade secret laws.

 *

 * CRYPTOGRAPHIC ALGORITHMS AND IMPLEMENTATIONS:

 * - This software includes implementations of cryptographic primitives and

 *   algorithms that are standardized or in the public domain, such as AES

 *   and SHA-3, which are not proprietary to QRCS.

 * - This software also includes cryptographic primitives, constructions, and

 *   algorithms designed by QRCS, including but not limited to RCS, SCB, CSX, QMAC, and

 *   related components, which are proprietary to QRCS.

 * - All source code, implementations, protocol compositions, optimizations,

 *   parameter selections, and engineering work contained in this software are

 *   original works of QRCS and are protected under this license.

 *

 * LICENSE AND USE RESTRICTIONS:

 * - This software is licensed under the Quantum Resistant Cryptographic Solutions

 *   Public Research and Evaluation License (QRCS-PREL), 2025-2026.

 * - Permission is granted solely for non-commercial evaluation, academic research,

 *   cryptographic analysis, interoperability testing, and feasibility assessment.

 * - Commercial use, production deployment, commercial redistribution, or

 *   integration into products or services is strictly prohibited without a

 *   separate written license agreement executed with QRCS.

 * - Licensing and authorized distribution are solely at the discretion of QRCS.

 *

 * EXPERIMENTAL CRYPTOGRAPHY NOTICE:

 * Portions of this software may include experimental, novel, or evolving

 * cryptographic designs. Use of this software is entirely at the user's risk.

 *

 * DISCLAIMER:

 * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

 * IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS

 * FOR A PARTICULAR PURPOSE, SECURITY, OR NON-INFRINGEMENT. QRCS DISCLAIMS ALL

 * LIABILITY FOR ANY DIRECT, INDIRECT, INCIDENTAL, OR CONSEQUENTIAL DAMAGES

 * ARISING FROM THE USE OR MISUSE OF THIS SOFTWARE.

 *

 * FULL LICENSE:

 * This software is subject to the Quantum Resistant Cryptographic Solutions

 * Public Research and Evaluation License (QRCS-PREL), 2025-2026. The complete license terms

 * are provided in the accompanying LICENSE file or at https://www.qrcscorp.ca.

 *

 * Written by: John G. Underhill

 * Contact: contact@qrcscorp.ca

 */


#ifndef UDIF_CERTSTORE_H

#define UDIF_CERTSTORE_H


#include "certificate.h"


#define UDIF_CERTSTORE_CAPACITY 256U


UDIF_EXPORT_API typedef enum udif_certstore_status

{

    udif_certstore_status_unknown = 0x00U,

    udif_certstore_status_active = 0x01U,

    udif_certstore_status_suspended = 0x02U,

    udif_certstore_status_revoked = 0x03U,

    udif_certstore_status_expired = 0x04U

} udif_certstore_status;


UDIF_EXPORT_API typedef struct udif_certstore_entry

{

    udif_certificate cert;

    udif_certstore_status status;

    uint64_t statustime;

    bool occupied;

} udif_certstore_entry;


UDIF_EXPORT_API typedef struct udif_certstore

{

    udif_certstore_entry entries[UDIF_CERTSTORE_CAPACITY];

    size_t count;

} udif_certstore;


UDIF_EXPORT_API void udif_certstore_initialize(udif_certstore* store);


UDIF_EXPORT_API void udif_certstore_clear(udif_certstore* store);


UDIF_EXPORT_API size_t udif_certstore_count(const udif_certstore* store);


UDIF_EXPORT_API udif_errors udif_certstore_add(udif_certstore* store, const udif_certificate* cert, udif_certstore_status status, uint64_t nowsecs);


UDIF_EXPORT_API const udif_certificate* udif_certstore_find(const udif_certstore* store, const uint8_t* serial);


UDIF_EXPORT_API udif_certstore_status udif_certstore_get_status(const udif_certstore* store, const uint8_t* serial);


UDIF_EXPORT_API udif_errors udif_certstore_set_status(udif_certstore* store, const uint8_t* serial, udif_certstore_status status, uint64_t nowsecs);


UDIF_EXPORT_API udif_errors udif_certstore_validate_status(udif_certstore* store, const uint8_t* serial, uint64_t nowsecs);


UDIF_EXPORT_API udif_errors udif_certstore_verify_certificate(udif_certstore* store, const uint8_t* serial, uint64_t nowsecs);


#endif

certificate.h
UDIF certificate operations.

udif_certstore_add
UDIF_EXPORT_API udif_errors udif_certstore_add(udif_certstore *store, const udif_certificate *cert, udif_certstore_status status, uint64_t nowsecs)
Add or update a certificate status entry.
Definition certstore.c:232

udif_certstore_set_status
UDIF_EXPORT_API udif_errors udif_certstore_set_status(udif_certstore *store, const uint8_t *serial, udif_certstore_status status, uint64_t nowsecs)
Set the status of an existing certificate serial.
Definition certstore.c:328

udif_certstore_get_status
UDIF_EXPORT_API udif_certstore_status udif_certstore_get_status(const udif_certstore *store, const uint8_t *serial)
Return the stored status for a certificate serial.
Definition certstore.c:305

udif_certstore_clear
UDIF_EXPORT_API void udif_certstore_clear(udif_certstore *store)
Clear a certificate store.
Definition certstore.c:208

udif_certstore_verify_certificate
UDIF_EXPORT_API udif_errors udif_certstore_verify_certificate(udif_certstore *store, const uint8_t *serial, uint64_t nowsecs)
Verify a certificate recursively against the stored root chain and status.
Definition certstore.c:428

udif_certstore_find
UDIF_EXPORT_API const udif_certificate * udif_certstore_find(const udif_certstore *store, const uint8_t *serial)
Find a certificate by serial number.
Definition certstore.c:282

udif_certstore_status
udif_certstore_status
Runtime status assigned to a certificate serial.
Definition certstore.h:79

udif_certstore_status_suspended
@ udif_certstore_status_suspended
Definition certstore.h:82

udif_certstore_status_active
@ udif_certstore_status_active
Definition certstore.h:81

udif_certstore_status_expired
@ udif_certstore_status_expired
Definition certstore.h:84

udif_certstore_status_revoked
@ udif_certstore_status_revoked
Definition certstore.h:83

udif_certstore_status_unknown
@ udif_certstore_status_unknown
Definition certstore.h:80

UDIF_CERTSTORE_CAPACITY
#define UDIF_CERTSTORE_CAPACITY
Maximum number of certificate status records held by one context.
Definition certstore.h:72

udif_certstore_count
UDIF_EXPORT_API size_t udif_certstore_count(const udif_certstore *store)
Return the number of occupied entries.
Definition certstore.c:218

udif_certstore_validate_status
UDIF_EXPORT_API udif_errors udif_certstore_validate_status(udif_certstore *store, const uint8_t *serial, uint64_t nowsecs)
Validate that a certificate serial is active at a specified time.
Definition certstore.c:371

udif_certstore_initialize
UDIF_EXPORT_API void udif_certstore_initialize(udif_certstore *store)
Initialize a certificate store.
Definition certstore.c:198

udif_certificate
UDIF entity certificate.
Definition certificate.h:341

udif_certstore_entry
Certificate status record.
Definition certstore.h:92

udif_certstore_entry::cert
udif_certificate cert
Definition certstore.h:93

udif_certstore_entry::occupied
bool occupied
Definition certstore.h:96

udif_certstore_entry::statustime
uint64_t statustime
Definition certstore.h:95

udif_certstore_entry::status
udif_certstore_status status
Definition certstore.h:94

udif_certstore
Fixed-capacity certificate status table.
Definition certstore.h:104

udif_certstore::entries
udif_certstore_entry entries[UDIF_CERTSTORE_CAPACITY]
Definition certstore.h:105

udif_certstore::count
size_t count
Definition certstore.h:106

udif_errors
udif_errors
UDIF error codes.
Definition udif.h:1210

UDIF_EXPORT_API
#define UDIF_EXPORT_API
The api export prefix.
Definition udifcommon.h:101