kio Library API Documentation

KSSLCertificate Class Reference

KDE X.509 Certificate KDE X.509 Certificate. More...

#include <ksslcertificate.h>

List of all members.

Public Types

typedef QValueList< KSSLValidation > KSSLValidationList
enum  KSSLValidation {
  Unknown, Ok, NoCARoot, InvalidPurpose,
  PathLengthExceeded, InvalidCA, Expired, SelfSigned,
  ErrorReadingRoot, NoSSL, Revoked, Untrusted,
  SignatureFailed, Rejected, PrivateKeyFailed, InvalidHost
}
enum  KSSLPurpose {
  None = 0, SSLServer = 1, SSLClient = 2, SMIMESign = 3,
  SMIMEEncrypt = 4, Any = 5
}

Public Member Functions

 ~KSSLCertificate ()
QString toString ()
QString getSubject () const
QString getIssuer () const
QString getNotBefore () const
QString getNotAfter () const
QDateTime getQDTNotBefore () const
QDateTime getQDTNotAfter () const
QByteArray toDer ()
QByteArray toPem ()
QByteArray toNetscape ()
QString toText ()
QString getSerialNumber () const
QString getKeyType () const
QString getPublicKeyText () const
QString getMD5DigestText () const
QString getSignatureText () const
bool isValid ()
bool isValid (KSSLPurpose p)
KSSLValidation validate ()
KSSLValidation validate (KSSLPurpose p)
KSSLValidationList validateVerbose (KSSLPurpose p)
KSSLValidation revalidate ()
KSSLValidation revalidate (KSSLPurpose p)
KSSLCertChainchain ()
KSSLCertificatereplicate ()
 KSSLCertificate (const KSSLCertificate &x)
bool setCert (QString &cert)
KSSLX509V3x509V3Extensions ()
bool isSigner ()
void getEmails (QStringList &to) const
QString getKDEKey () const

Static Public Member Functions

KSSLCertificatefromString (QCString cert)
KSSLCertificatefromX509 (X509 *x5)
QString verifyText (KSSLValidation x)
QString getMD5DigestFromKDEKey (const QString &k)

Protected Member Functions

void setCert (X509 *c)
void setChain (void *c)
X509 * getCert ()
KSSLValidation processError (int ec)

Friends

int operator== (KSSLCertificate &x, KSSLCertificate &y)
int operator!= (KSSLCertificate &x, KSSLCertificate &y)


Detailed Description

KDE X.509 Certificate KDE X.509 Certificate.

This class represents an X.509 (SSL) certificate. Note: this object is VERY HEAVY TO COPY. Please try to use reference or pointer whenever possible

Author:
George Staikos <staikos@kde.org>
See also:
KSSL

Definition at line 69 of file ksslcertificate.h.


Constructor & Destructor Documentation

KSSLCertificate::~KSSLCertificate  ) 
 

Destroy this X.509 certificate.

Definition at line 118 of file ksslcertificate.cc.

KSSLCertificate::KSSLCertificate const KSSLCertificate x  ) 
 

Copy constructor.

Beware, this is very expensive.

Parameters:
x the object to copy from

Definition at line 103 of file ksslcertificate.cc.

References KStandardDirs::addResourceType(), KGlobal::dirs(), KSSLCertificate(), KSSLCertChain::rawChain(), and setCert().

Referenced by KSSLCertificate().


Member Function Documentation

KSSLCertificate * KSSLCertificate::fromString QCString  cert  )  [static]
 

Create an X.509 certificate from a base64 encoded string.

Parameters:
cert the certificate in base64 form
Returns:
the X.509 certificate, or NULL

Definition at line 144 of file ksslcertificate.cc.

References fromString(), and setCert().

Referenced by fromString().

KSSLCertificate * KSSLCertificate::fromX509 X509 *  x5  )  [static]
 

Create an X.509 certificate from the internal representation.

This one duplicates the X509 object for itself.

Parameters:
x5 the OpenSSL representation of the certificate
Returns:
the X.509 certificate, or NULL

Definition at line 132 of file ksslcertificate.cc.

References fromX509(), and setCert().

Referenced by fromX509().

QString KSSLCertificate::toString  ) 
 

Convert this certificate to a string.

Returns:
the certificate in base64 format

Definition at line 872 of file ksslcertificate.cc.

References toDer().

Referenced by KSSLSigners::addCA(), and toPem().

QString KSSLCertificate::getSubject  )  const
 

Get the subject of the certificate (X.509 map).

Returns:
the subject

Definition at line 166 of file ksslcertificate.cc.

Referenced by KSSLPeerInfo::certMatchesAddress(), getKDEKey(), KSSLPKCS7::name(), KSSLPKCS12::name(), KSSLSigners::remove(), KSSLInfoDlg::setup(), KSSLSigners::useForCode(), KSSLSigners::useForEmail(), and KSSLSigners::useForSSL().

QString KSSLCertificate::getIssuer  )  const
 

Get the issuer of the certificate (X.509 map).

Returns:
the issuer

Definition at line 402 of file ksslcertificate.cc.

Referenced by KSSLInfoDlg::setup().

QString KSSLCertificate::getNotBefore  )  const
 

Get the date that the certificate becomes valid on.

Returns:
the date as a string, localised

Definition at line 812 of file ksslcertificate.cc.

QString KSSLCertificate::getNotAfter  )  const
 

Get the date that the certificate is valid until.

Returns:
the date as a string, localised

Definition at line 821 of file ksslcertificate.cc.

QDateTime KSSLCertificate::getQDTNotBefore  )  const
 

Get the date that the certificate becomes valid on.

Returns:
the date

Definition at line 830 of file ksslcertificate.cc.

QDateTime KSSLCertificate::getQDTNotAfter  )  const
 

Get the date that the certificate is valid until.

Returns:
the date

Definition at line 839 of file ksslcertificate.cc.

QByteArray KSSLCertificate::toDer  ) 
 

Convert the certificate to DER (ASN.1) format.

Returns:
the binary data of the DER encoding

Definition at line 914 of file ksslcertificate.cc.

Referenced by toString().

QByteArray KSSLCertificate::toPem  ) 
 

Convert the certificate to PEM (base64) format.

Returns:
the binary data of the PEM encoding

Definition at line 934 of file ksslcertificate.cc.

References toString().

QByteArray KSSLCertificate::toNetscape  ) 
 

Convert the certificate to Netscape format.

Returns:
the binary data of the Netscape encoding

Definition at line 962 of file ksslcertificate.cc.

References KTempFile::close(), KTempFile::fstream(), KTempFile::name(), and KTempFile::unlink().

QString KSSLCertificate::toText  ) 
 

Convert the certificate to OpenSSL plain text format.

Returns:
the OpenSSL text encoding

Definition at line 995 of file ksslcertificate.cc.

References KTempFile::close(), KTempFile::fstream(), KTempFile::name(), and KTempFile::unlink().

QString KSSLCertificate::getSerialNumber  )  const
 

Get the serial number of the certificate.

Returns:
the serial number as a string

Definition at line 180 of file ksslcertificate.cc.

QString KSSLCertificate::getKeyType  )  const
 

Get the key type (RSA, DSA, etc).

Returns:
the key type as a string

Definition at line 282 of file ksslcertificate.cc.

QString KSSLCertificate::getPublicKeyText  )  const
 

Get the public key.

Returns:
the public key as a hexidecimal string

Definition at line 308 of file ksslcertificate.cc.

QString KSSLCertificate::getMD5DigestText  )  const
 

Get the MD5 digest of the certificate.

Returns:
the MD5 digest in a hexidecimal string

Definition at line 257 of file ksslcertificate.cc.

Referenced by getKDEKey().

QString KSSLCertificate::getSignatureText  )  const
 

Get the signature.

Returns:
the signature in text format

Definition at line 194 of file ksslcertificate.cc.

bool KSSLCertificate::isValid  ) 
 

Check if this is a valid certificate.

Will use cached data.

Returns:
true if it is valid

Definition at line 542 of file ksslcertificate.cc.

bool KSSLCertificate::isValid KSSLPurpose  p  ) 
 

Check if this is a valid certificate.

Will use cached data.

Parameters:
p the purpose to validate for
Returns:
true if it is valid

Definition at line 537 of file ksslcertificate.cc.

References validate().

KSSLCertificate::KSSLValidation KSSLCertificate::validate  ) 
 

Check if this is a valid certificate.

Will use cached data.

Returns:
the result of the validation

Definition at line 567 of file ksslcertificate.cc.

Referenced by isValid(), revalidate(), KSSLInfoDlg::setup(), KSSLPKCS7::validate(), and KSSLPKCS12::validate().

KSSLCertificate::KSSLValidation KSSLCertificate::validate KSSLPurpose  p  ) 
 

Check if this is a valid certificate.

Will use cached data.

Parameters:
p the purpose to validate for
Returns:
the result of the validation

Definition at line 571 of file ksslcertificate.cc.

References validateVerbose().

KSSLCertificate::KSSLValidationList KSSLCertificate::validateVerbose KSSLPurpose  p  ) 
 

Check if this is a valid certificate.

Will use cached data.

Parameters:
p the purpose to validate for
Returns:
all problems encountered during validation

Definition at line 585 of file ksslcertificate.cc.

References KGlobal::dirs(), endl(), kdDebug(), KStandardDirs::resourceDirs(), and validateVerbose().

Referenced by validate(), and validateVerbose().

KSSLCertificate::KSSLValidation KSSLCertificate::revalidate  ) 
 

Check if this is a valid certificate.

Will NOT use cached data.

Returns:
the result of the validation

Definition at line 715 of file ksslcertificate.cc.

Referenced by KSSLPKCS7::revalidate(), and KSSLPKCS12::revalidate().

KSSLCertificate::KSSLValidation KSSLCertificate::revalidate KSSLPurpose  p  ) 
 

Check if this is a valid certificate.

Will NOT use cached data.

Parameters:
p the purpose to validate for
Returns:
the result of the validation

Definition at line 720 of file ksslcertificate.cc.

References validate().

KSSLCertChain & KSSLCertificate::chain  ) 
 

Get a reference to the certificate chain.

Returns:
reference to the chain

Definition at line 127 of file ksslcertificate.cc.

Referenced by Observer::messageBox(), and KSSLInfoDlg::setup().

QString KSSLCertificate::verifyText KSSLValidation  x  )  [static]
 

Obtain the localized message that corresponds to a validation result.

Parameters:
x the code to look up
Returns:
the message text corresponding to the validation code

Definition at line 877 of file ksslcertificate.cc.

References verifyText().

Referenced by verifyText().

KSSLCertificate * KSSLCertificate::replicate  ) 
 

Explicitly make a copy of this certificate.

Returns:
a copy of the certificate

Definition at line 858 of file ksslcertificate.cc.

References KSSLCertChain::rawChain(), setCert(), and setChain().

bool KSSLCertificate::setCert QString cert  ) 
 

Re-set the certificate from a base64 string.

Parameters:
cert the certificate to set to
Returns:
true on success

Definition at line 1017 of file ksslcertificate.cc.

References setCert().

Referenced by fromString(), fromX509(), KSSLCertChain::getChain(), KSSLCertificate(), replicate(), and setCert().

KSSLX509V3 & KSSLCertificate::x509V3Extensions  ) 
 

Access the X.509v3 parameters.

Returns:
reference to the extension object
See also:
KSSLX509V3

Definition at line 1032 of file ksslcertificate.cc.

Referenced by KSSL::setClientCertificate().

bool KSSLCertificate::isSigner  ) 
 

Check if this is a signer certificate.

Returns:
true if this is a signer certificate

Definition at line 1037 of file ksslcertificate.cc.

void KSSLCertificate::getEmails QStringList to  )  const
 

FIXME: document.

Definition at line 222 of file ksslcertificate.cc.

References getEmails().

Referenced by getEmails().

QString KSSLCertificate::getKDEKey  )  const
 

KDEKey is a concatenation "Subject (MD5)", mostly needed for SMIME.

The result of getKDEKey might change and should not be used for persistant storage.

Definition at line 239 of file ksslcertificate.cc.

References getMD5DigestText(), and getSubject().

QString KSSLCertificate::getMD5DigestFromKDEKey const QString k  )  [static]
 

Aegypten semantics force us to search by MD5Digest only.

Definition at line 244 of file ksslcertificate.cc.

References getMD5DigestFromKDEKey().

Referenced by getMD5DigestFromKDEKey().


Friends And Related Function Documentation

int operator== KSSLCertificate x,
KSSLCertificate y
[friend]
 

Compare two certificate to determine if they are the same.

Definition at line 848 of file ksslcertificate.cc.

int operator!= KSSLCertificate x,
KSSLCertificate y
[friend]
 

Compare two certificate to determine if they are not the same.

Definition at line 289 of file ksslcertificate.h.


The documentation for this class was generated from the following files:
KDE Logo
This file is part of the documentation for kio Library Version 3.2.3.
Documentation copyright © 1996-2004 the KDE developers.
Generated on Sun Oct 10 18:55:32 2004 by doxygen 1.3.7 written by Dimitri van Heesch, © 1997-2003