Difference between revisions of "Unit X.509"

Revision as of 04:32, 6 June 2018

X.509 is a standard that defines the format of public key certificates. An X.509 certificate contains a public key and an identity (a hostname, or an organization, or an individual), and is either signed by a certificate authority or self-signed. When a certificate is signed by a trusted certificate authority, or validated by other means, someone holding that certificate can rely on the public key it contains to establish secure communications with another party, or validate documents digitally signed by the corresponding private key.

This unit currently only provides the basic functionality required to read and parse an X.509 certificate in DER or PEM format and extract basic information such as the issuer, subject, validity, algorithm and public key.

It is expected that this unit will be expanded to incorporate additional functions over time.

@@ Line 532: / Line 532: @@
-'''X509 name'''
+'''X509 specific classes'''
-<div class="toccolours mw-collapsible mw-collapsed" style="border: 1; font-family: arial;">
+{| class="wikitable" style="font-size: 14px; text-align: left; width: 100%; height: 50px;"
-<code>TX509Name = class(TObject)</code>
-<div class="mw-collapsible-content" style="text-align: left; padding-left: 5px;">
-{| class="wikitable" style="font-size: 14px; background: white;"
 |-
-|colspan="2"|<div style="font-family: monospace,courier;">'''private'''</div>
+| [[TX509Name|<code>TX509Name = class(TObject)</code>]]
-|-
-| <code>function StringCompare(const AValue1,AValue2:String):Integer;</code>
-| &nbsp;
-|-
-|colspan="2"|<div style="font-family: monospace,courier;">'''public'''</div>
-|-
-| <code>NameAttributes:TX509NameAttributes;</code>
-| &nbsp;
-|-
-| <code>NameAttributeCount:LongWord;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>Email:String;</code>
-| emailAddress
-|-
-|colspan="2"|''From subjectAltName extension''
-|-
-| <code>AltEmail:String;</code>
-| rfc822Name
-|-
-| <code>DNS:String;</code>
-| dNSName
-|-
-| <code>URI:String;</code>
-| uniformResourceIdentifier
-|-
-| <code>IP:PByte;</code>
-| iPAddress
-|-
-| <code>IPLen:Longword;</code>
-| IPv4 = 4,IPv6 = 16
-|-
-| <code>RegisteredID:TASN1OID;</code>
-| registeredID
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>destructor Destroy; override;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function GetCN:String;</code>
-| &nbsp;
-|-
-| <code>function GetDN:String;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function Compare(AName:TX509Name):Integer;</code>
-| &nbsp;
 |-
 |}
-</div></div>
+{| class="wikitable" style="font-size: 14px; text-align: left; width: 100%; height: 50px;"
-'''X509 certificate'''
-<div class="toccolours mw-collapsible mw-collapsed" style="border: 1; font-family: arial;">
-<code>TX509Certificate = class;</code>
-<div class="mw-collapsible-content" style="text-align: left; padding-left: 5px;">
-{| class="wikitable" style="font-size: 14px; background: white;"
 |-
-|colspan="2"|<div style="font-family: monospace,courier;">'''private'''</div>
+| [[TX509CertificateList|<code>TX509CertificateList = class(TObject)</code>]]
-|-
-|colspan="2"|&nbsp;
-|-
-|colspan="2"|<div style="font-family: monospace,courier;">'''public'''</div>
-|-
-|colspan="2"|&nbsp;
 |-
 |}
-</div></div>
+{| class="wikitable" style="font-size: 14px; text-align: left; width: 100%; height: 50px;"
-'''X509 certificate list'''
-<div class="toccolours mw-collapsible mw-collapsed" style="border: 1; font-family: arial;">
-<code>TX509CertificateList = class(TObject)</code>
-<div class="mw-collapsible-content" style="text-align: left; padding-left: 5px;">
-{| class="wikitable" style="font-size: 14px; background: white;"
 |-
-|colspan="2"|<div style="font-family: monospace,courier;">'''protected'''</div>
+| [[TX509CertificateChain|<code>TX509CertificateChain = class(TObject)</code>]]
-|-
-| <code>FList:TList;</code>
-| style="width: 50%;"|&nbsp;
-|-
-| <code>FLock: TCriticalSectionHandle;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>procedure Clear;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function AcquireLock:Boolean;</code>
-| &nbsp;
-|-
-| <code>function ReleaseLock:Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|<div style="font-family: monospace,courier;">'''public'''</div>
-|-
-| <code>constructor Create;</code>
-| &nbsp;
-|-
-| <code>destructor Destroy; override;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function First:TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function Last:TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function Prev(ACertificate:TX509Certificate):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function Next(ACertificate:TX509Certificate):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function Add(ACertificate:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function Remove(ACertificate:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function FindByIssuer(AName:TX509Name):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function FindBySubject(AName:TX509Name):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportDER(ABuffer:Pointer; ASize:Integer):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function ImportPEM(ABuffer:Pointer; var ASize:Integer):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ExportDER(ABuffer:Pointer; var ASize:Integer; ACertificate:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function ExportPEM(ABuffer:Pointer; var ASize:Integer; AStart:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
 |-
 |}
-</div></div>
+{| class="wikitable" style="font-size: 14px; text-align: left; width: 100%; height: 50px;"
-'''X509 certificate chain'''
-<div class="toccolours mw-collapsible mw-collapsed" style="border: 1; font-family: arial;">
-<code>TX509CertificateChain = class(TObject)</code>
-<div class="mw-collapsible-content" style="text-align: left; padding-left: 5px;">
-{| class="wikitable" style="font-size: 14px; background: white;"
-|-
-|colspan="2"|<div style="font-family: monospace,courier;">'''protected'''</div>
-|-
-| <code>FRoot:TX509Certificate;</code>
-|  style="width: 50%;"|&nbsp;
-|-
-| <code>FLock: TCriticalSectionHandle;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>procedure Clear; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function AcquireLock:Boolean;</code>
-| &nbsp;
-|-
-| <code>function ReleaseLock:Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|<div style="font-family: monospace,courier;">'''public'''</div>
-|-
-| <code>property Root:TX509Certificate read FRoot;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>constructor Create(ARoot:TX509Certificate); virtual;</code>
-| &nbsp;
-|-
-| <code>destructor Destroy; override;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function Last:TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function Prev(ACertificate:TX509Certificate):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function Next(ACertificate:TX509Certificate):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function InsertAfter(AParent,ACertificate:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function InsertBefore(AChild,ACertificate:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function Remove(ACertificate:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function FindByIssuer(AName:TX509Name):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function FindBySubject(AName:TX509Name):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function FindBySubjectCN(const AName:String):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function FindBySubjectDN(const AName:String):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportDER(ABuffer:Pointer; ASize:Integer; AParent:TX509Certificate):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-| <code>function ImportPEM(ABuffer:Pointer; var ASize:Integer; AParent:TX509Certificate):TX509Certificate; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ExportDER(ABuffer:Pointer; var ASize:Integer; ACertificate:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function ExportPEM(ABuffer:Pointer; var ASize:Integer; AStart:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function GetPathLength(ACertificate:TX509Certificate):LongWord; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ValidateChain(ATrust:TX509CertificateList):Integer; virtual;</code>
-| &nbsp;
-|-
-|}
-</div></div>
-'''X509 certificate'''
-<div class="toccolours mw-collapsible mw-collapsed" style="border: 1; font-family: arial;">
-<code>TX509Certificate = class(TObject)</code>
-<div class="mw-collapsible-content" style="text-align: left; padding-left: 5px;">
-{| class="wikitable" style="font-size: 14px; background: white;"
-|-
-|colspan="2"|<div style="font-family: monospace,courier;">'''protected'''</div>
-|-
-| <code>FList:TX509CertificateList;</code>
-| &nbsp;
-|-
-| <code>FChain:TX509CertificateChain;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>FParent:TX509Certificate;</code>
-| &nbsp;
-|-
-| <code>FChild:TX509Certificate;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>FData:PByte;</code>
-| Copy of certificate data from import
-|-
-| <code>FSize:LongWord;</code>
-| Total size of certificate data
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>FTBSData:PByte;</code>
-| Pointer to start of TBS (To Be Signed) data
-|-
-| <code>FTBSSize:LongWord;</code>
-| Length of TBS (To Be Signed) data
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportTime(ABuffer:PByte; ASize:Integer; ATag:LongWord  ADateTime:TDateTime):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportName(ABuffer:PByte; ASize:Integer; AName:TX509Name; var ANext:PByte):Boolean;</code>
-| &nbsp;
-|-
-| <code>function ImportExtensionAltName(ABuffer:PByte; ASize:Integer; AName:TX509Name):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportAlgorithmIdentifier(ABuffer:PByte; ASize:Integer; var AIdentifier:TX509AlgorithmIdentifier; var ANext:PByte):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportValidity(ABuffer:PByte; ASize:Integer; var ANext:PByte):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportPublicKey(ABuffer:PByte; ASize:Integer; var ANext:PByte):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportExtension(ABuffer:PByte; ASize:Integer; var ANext:PByte):Boolean;</code>
-| &nbsp;
-|-
-| <code>function ImportExtensionData(ABuffer:PByte; ASize:Integer; const AOID:TASN1OID):Boolean;</code>
-| &nbsp;
-|-
-| <code>function ImportExtensionKeyUsage(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function ImportExtensionSubjectAltName(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function ImportExtensionIssuerAltName(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function ImportExtensionBasicContraints(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function ImportExtensionExtKeyUsage(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportExtensions(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportTBSCertificate(ABuffer:PByte; ASize:Integer; var ANext:PByte):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function VerifyRSASignature(AIssuer:TX509Certificate):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function VerifyMD5Digest(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function VerifySHA1Digest(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function VerifySHA256Digest(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function VerifySHA384Digest(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-| <code>function VerifySHA512Digest(ABuffer:PByte; ASize:Integer):Boolean;</code>
-| &nbsp;
-|-
-|colspan="2"|<div style="font-family: monospace,courier;">'''public'''</div>
-|-
-|colspan="2"|''Properties''
-|-
-| <code>Version:LongWord;</code>
-| &nbsp;
-|-
-| <code>SerialNumber:TX509SerialNumber;</code>
-| &nbsp;
-|-
-| <code>SignatureAlgorithm:TX509AlgorithmIdentifier;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>Issuer:TX509Name;</code>
-| &nbsp;
-|-
-| <code>Subject:TX509Name;</code>
-| &nbsp;
-|-
-| <code>SubjectDN:String;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>NotBefore:TDateTime;</code>
-| &nbsp;
-|-
-| <code>NotAfter:TDateTime;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>PublicKey:TX509PublicKey;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>Signature:TX509Signature;</code>
-| &nbsp;
-|-
-|colspan="2"|''Extensions''
-|-
-| <code>ExtensionsPresent:LongWord;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>CA:Boolean;</code>
-| &nbsp;
-|-
-| <code>PathLenConstraint:LongWord;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>KeyUsage:LongWord;</code>
-| &nbsp;
-|-
-| <code>ExtendedKeyUsage:LongWord;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>property List:TX509CertificateList read FList;</code>
-| &nbsp;
-|-
-| <code>property Chain:TX509CertificateChain read FChain;</code>
-| &nbsp;
-|-
-| <code>property Parent:TX509Certificate read FParent;</code>
-| &nbsp;
-|-
-| <code>property Child:TX509Certificate read FChild;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>constructor Create(AChain:TX509CertificateChain; AParent:TX509Certificate); virtual;</code>
-| &nbsp;
-|-
-| <code>destructor Destroy; override;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ImportDER(ABuffer:Pointer; ASize:Integer):Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function ImportPEM(ABuffer:Pointer; var ASize:Integer):Boolean; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function ExportDER(ABuffer:Pointer; var ASize:Integer):Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function ExportPEM(ABuffer:Pointer; var ASize:Integer):Boolean; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function IsValidIssuer:Boolean; virtual;</code>
-| &nbsp;
-|-
-| <code>function IsSelfSigned:Boolean; virtual;</code>
-| &nbsp;
-|-
-|colspan="2"|&nbsp;
-|-
-| <code>function VerifySignature(AIssuer:TX509Certificate):Boolean; virtual;</code>
-| &nbsp;
 |-
-| <code>function ValidateCertificate(AIssuer:TX509Certificate):Integer; virtual;</code>
+| [[TX509Certificate|<code>TX509Certificate = class(TObject)</code>]]
-| &nbsp;
 |-
 |}
-</div></div>
 <br />

`X509_MAX_NAME_ATTRIBUTES = 20;`
`X509_MAX_SERIAL_NUM_LEN = 20;`

`X509_NAME_ATTR_NONE = 0;`
`X509_NAME_ATTR_DC = 1;`
`X509_NAME_ATTR_CN = 2;`
`X509_NAME_ATTR_C = 3;`
`X509_NAME_ATTR_L = 4;`
`X509_NAME_ATTR_ST = 5;`
`X509_NAME_ATTR_O = 6;`
`X509_NAME_ATTR_OU = 7;`

`X509_VALIDATE_OK = 0;`
`X509_VALIDATE_BAD_CERTIFICATE = 1;`
`X509_VALIDATE_UNSUPPORTED_CERTIFICATE = 2;`
`X509_VALIDATE_CERTIFICATE_REVOKED = 3;`
`X509_VALIDATE_CERTIFICATE_EXPIRED = 4;`
`X509_VALIDATE_CERTIFICATE_UNKNOWN = 5;`
`X509_VALIDATE_UNKNOWN_CA = 6;`

`X509_EXT_BASIC_CONSTRAINTS = (1 shl 0);`
`X509_EXT_PATH_LEN_CONSTRAINT = (1 shl 1);`
`X509_EXT_KEY_USAGE = (1 shl 2);`
`X509_EXT_SUBJECT_ALT_NAME = (1 shl 3);`
`X509_EXT_ISSUER_ALT_NAME = (1 shl 4);`
`X509_EXT_EXT_KEY_USAGE = (1 shl 5);`

Note: RFC5280 Section 4.2.1.3. - Key Usage
`X509_KEY_USAGE_DIGITAL_SIGNATURE = (1 shl 0);`	digitalSignature - The digitalSignature bit is asserted when the subject public key is used for verifying digital signatures, other than signatures on certificates.
`X509_KEY_USAGE_NON_REPUDIATION = (1 shl 1);`	nonRepudiation - The nonRepudiation bit is asserted when the subject public key is used to verify digital signatures, other than signatures on certificates.
`X509_KEY_USAGE_KEY_ENCIPHERMENT = (1 shl 2);`	keyEncipherment - The keyEncipherment bit is asserted when the subject public key is used for enciphering private or secret keys, i.e., for key transport
`X509_KEY_USAGE_DATA_ENCIPHERMENT = (1 shl 3);`	dataEncipherment - The dataEncipherment bit is asserted when the subject public key is used for directly enciphering raw user data without the use of an intermediate symmetric cipher.
`X509_KEY_USAGE_KEY_AGREEMENT = (1 shl 4);`	keyAgreement - The keyAgreement bit is asserted when the subject public key is used for key agreement
`X509_KEY_USAGE_KEY_CERT_SIGN = (1 shl 5);`	keyCertSign - The keyCertSign bit is asserted when the subject public key is used for verifying signatures on public key certificates
`X509_KEY_USAGE_CRL_SIGN = (1 shl 6);`	cRLSign - The cRLSign bit is asserted when the subject public key is used for verifying signatures on certificate revocation lists
`X509_KEY_USAGE_ENCIPHER_ONLY = (1 shl 7);`	encipherOnly - When the encipherOnly bit is asserted and the keyAgreement bit is also set, the subject public key may be used only for enciphering data while performing key agreement.
`X509_KEY_USAGE_DECIPHER_ONLY = (1 shl 8);`	decipherOnly - When the decipherOnly bit is asserted and the keyAgreement bit is also set, the subject public key may be used only for deciphering data while performing key agreement.

`X509_EXT_KEY_USAGE_ANY = (1 shl 0);`
`X509_EXT_KEY_USAGE_SERVER_AUTH = (1 shl 1);`
`X509_EXT_KEY_USAGE_CLIENT_AUTH = (1 shl 2);`
`X509_EXT_KEY_USAGE_OCSP = (1 shl 3);`

`Value:array[0..X509_MAX_SERIAL_NUM_LEN - 1] of Byte;`
`Length:Integer;`

`function ToString:String;`

`Algorithm:TX509AlgorithmIdentifier;`
`Key:PByte;`
`Length:Integer;`

`procedure Release;`

`function ToString:String;`

Note: RFC3447 - Appendix A.1.2 - RSA private key syntax

`Algorithm:TX509AlgorithmIdentifier;`
`Key:PByte;`
`Length:Integer;`

`procedure Release;`

`function ToString:String;`

`X509_CERT_V1 = 0;`
`X509_CERT_V2 = 1;`
`X509_CERT_V3 = 2;`

`X509_FILETYPE_PEM = 1;`
`X509_FILETYPE_ASN1 = 2;`

`Value:String;`
`_Type:LongWord;`

`function ToString:String;`

`Modulus:PByte;`	M
`PublicExponent:PByte;`	E

`ModulusLen:Integer;`
`PublicExponentLen:Integer;`

`function ImportDER(ABuffer:Pointer; ASize:Integer):Boolean;`
`procedure Release;`

`Algorithm:TX509AlgorithmIdentifier;`
`Value:PByte;`
`Length:Integer;`

`procedure Release;`

`Version:Integer;`
`Modulus:PByte;`	M
`PublicExponent:PByte;`	E
`PrivateExponent:PByte;`	D
`Prime1:PByte;`	P
`Prime2:PByte;`	Q
`Exponent1:PByte;`	D mod (P - 1)
`Exponent2:PByte;`	D mod (Q - 1)
`Coefficient:PByte;`	(Inverse of Q) mod P

`ModulusLen:Integer;`
`PublicExponentLen:Integer;`
`PrivateExponentLen:Integer;`
`Prime1Len:Integer;`
`Prime2Len:Integer;`
`Exponent1Len:Integer;`
`Exponent2Len:Integer;`
`CoefficientLen:Integer;`

`function ImportDER(ABuffer:Pointer; ASize:Integer):Boolean;`
`procedure Release;`

Difference between revisions of "Unit X.509"

Revision as of 04:32, 6 June 2018

Contents

Description

Constants

Type definitions

Class definitions

Public variables

Function declarations

Navigation menu

Search