#include <SSLContext.h>

Public Member Functions

 SSLCertificateInfo (const String subjectName, const String issuerName, const int errorDepth, const int errorCode, const int respCode)
 
 SSLCertificateInfo (const SSLCertificateInfo &certificateInfo)
 
String getSubjectName () const
 
String getIssuerName () const
 
CIMDateTime getNotAfter () const
 
CIMDateTime getNotBefore () const
 
Uint32 getVersionNumber () const
 
long getSerialNumber () const
 
Uint32 getErrorDepth () const
 
Uint32 getErrorCode () const
 
void setErrorCode (const int errorCode)
 
String getErrorString () const
 
Uint32 getResponseCode () const
 
void setResponseCode (const int respCode)
 
String toString () const
 

Static Public Attributes

static const int V_OK
 
static const int V_ERR_UNABLE_TO_GET_ISSUER_CERT
 
static const int V_ERR_UNABLE_TO_GET_CRL
 
static const int V_ERR_UNABLE_TO_DECRYPT_CERT_SIGNATURE
 
static const int V_ERR_UNABLE_TO_DECRYPT_CRL_SIGNATURE
 
static const int V_ERR_UNABLE_TO_DECODE_ISSUER_PUBLIC_KEY
 
static const int V_ERR_CERT_SIGNATURE_FAILURE
 
static const int V_ERR_CRL_SIGNATURE_FAILURE
 
static const int V_ERR_CERT_NOT_YET_VALID
 
static const int V_ERR_CERT_HAS_EXPIRED
 
static const int V_ERR_CRL_NOT_YET_VALID
 
static const int V_ERR_CRL_HAS_EXPIRED
 
static const int V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD
 
static const int V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD
 
static const int V_ERR_ERROR_IN_CRL_LAST_UPDATE_FIELD
 
static const int V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD
 
static const int V_ERR_OUT_OF_MEM
 
static const int V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT
 
static const int V_ERR_SELF_SIGNED_CERT_IN_CHAIN
 
static const int V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY
 
static const int V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE
 
static const int V_ERR_CERT_CHAIN_TOO_LONG
 
static const int V_ERR_CERT_REVOKED
 
static const int V_ERR_INVALID_CA
 
static const int V_ERR_PATH_LENGTH_EXCEEDED
 
static const int V_ERR_INVALID_PURPOSE
 
static const int V_ERR_CERT_UNTRUSTED
 
static const int V_ERR_CERT_REJECTED
 
static const int V_ERR_SUBJECT_ISSUER_MISMATCH
 
static const int V_ERR_AKID_SKID_MISMATCH
 
static const int V_ERR_AKID_ISSUER_SERIAL_MISMATCH
 
static const int V_ERR_KEYUSAGE_NO_CERTSIGN
 
static const int V_ERR_APPLICATION_VERIFICATION
 

Detailed Description

This class provides the interface that a client gets as argument to certificate verification call back function.

Constructor & Destructor Documentation

◆ SSLCertificateInfo() [1/2]

SSLCertificateInfo::SSLCertificateInfo ( const String  subjectName,
const String  issuerName,
const int  errorDepth,
const int  errorCode,
const int  respCode 
)

Constructor for an SSLCertificateInfo object. Note: Do not use this constructor, instead use the private constructor. The constructor is not for client applications use, it is intended to be used only by the CIMServer.

Parameters
subjectNamesubject name of the certificate.
issuerNameissuer name of the certificate.
errorDepthdepth of the certificate chain.
errorCodeerror code from the default verification of the certificate by the OpenSSL library.
respCoderesult code from the default verification of the certificate by the OpenSSL library.

◆ SSLCertificateInfo() [2/2]

SSLCertificateInfo::SSLCertificateInfo ( const SSLCertificateInfo certificateInfo)

Copy constructor for an SSLCertificateInfo object.

Parameters
certificateInfoSSLCertificateInfo object to copy

Member Function Documentation

◆ getErrorCode()

Uint32 SSLCertificateInfo::getErrorCode ( ) const

Gets the pre-verify error code.

Returns
an int containing the pre-verify error code

◆ getErrorDepth()

Uint32 SSLCertificateInfo::getErrorDepth ( ) const

Gets the depth of the certificate chain.

Returns
an int containing the depth of the certificate chain

◆ getErrorString()

String SSLCertificateInfo::getErrorString ( ) const

Gets the pre-verify error string.

Returns
a string containing the pre-verify error string

◆ getIssuerName()

String SSLCertificateInfo::getIssuerName ( ) const

Gets the issuer name of the certificate.

Returns
a string containing the issuer name.

◆ getNotAfter()

CIMDateTime SSLCertificateInfo::getNotAfter ( ) const

Gets the notAfter date from the validity period of the certificate.

Returns
a CIMDateTime containing the notAfter date.

◆ getNotBefore()

CIMDateTime SSLCertificateInfo::getNotBefore ( ) const

Gets the notBefore date from the validity period of the certificate.

Returns
a CIMDateTime containing the notBefore date.

◆ getResponseCode()

Uint32 SSLCertificateInfo::getResponseCode ( ) const

Gets the pre-verify response code.

Returns
an int containing the pre-verify response code

◆ getSerialNumber()

long SSLCertificateInfo::getSerialNumber ( ) const

Gets the serialNumber value from the certificate.

Returns
a long integer containing the serial number.

◆ getSubjectName()

String SSLCertificateInfo::getSubjectName ( ) const

Gets the subject name of the certificate.

Returns
a string containing the subject name.

◆ getVersionNumber()

Uint32 SSLCertificateInfo::getVersionNumber ( ) const

Gets the version (version number) from the certificate.

Returns
a int containing the version.

◆ setErrorCode()

void SSLCertificateInfo::setErrorCode ( const int  errorCode)

Sets the error code.

Parameters
errorCodeerror code to be set

◆ setResponseCode()

void SSLCertificateInfo::setResponseCode ( const int  respCode)

Sets the response code. Note: Do not use this function, the value set using this function is ignored.

Parameters
respCoderesponse code to be set.

◆ toString()

String SSLCertificateInfo::toString ( ) const

Returns a string representation of this object

Returns
a string containing the certificate fields

Member Data Documentation

◆ V_ERR_AKID_ISSUER_SERIAL_MISMATCH

const int SSLCertificateInfo::V_ERR_AKID_ISSUER_SERIAL_MISMATCH
static

OpenSSL error code X509_V_ERR_AKID_ISSUER_SERIAL_MISMATCH.

◆ V_ERR_AKID_SKID_MISMATCH

const int SSLCertificateInfo::V_ERR_AKID_SKID_MISMATCH
static

OpenSSL error code X509_V_ERR_AKID_SKID_MISMATCH.

◆ V_ERR_APPLICATION_VERIFICATION

const int SSLCertificateInfo::V_ERR_APPLICATION_VERIFICATION
static

OpenSSL error code X509_V_ERR_APPLICATION_VERIFICATION.

◆ V_ERR_CERT_CHAIN_TOO_LONG

const int SSLCertificateInfo::V_ERR_CERT_CHAIN_TOO_LONG
static

OpenSSL error code X509_V_ERR_CERT_CHAIN_TOO_LONG.

◆ V_ERR_CERT_HAS_EXPIRED

const int SSLCertificateInfo::V_ERR_CERT_HAS_EXPIRED
static

OpenSSL error code X509_V_ERR_CERT_HAS_EXPIRED.

◆ V_ERR_CERT_NOT_YET_VALID

const int SSLCertificateInfo::V_ERR_CERT_NOT_YET_VALID
static

OpenSSL error code X509_V_ERR_CERT_NOT_YET_VALID.

◆ V_ERR_CERT_REJECTED

const int SSLCertificateInfo::V_ERR_CERT_REJECTED
static

OpenSSL error code X509_V_ERR_CERT_REJECTED.

◆ V_ERR_CERT_REVOKED

const int SSLCertificateInfo::V_ERR_CERT_REVOKED
static

OpenSSL error code X509_V_ERR_CERT_REVOKED.

◆ V_ERR_CERT_SIGNATURE_FAILURE

const int SSLCertificateInfo::V_ERR_CERT_SIGNATURE_FAILURE
static

OpenSSL error code X509_V_ERR_CERT_SIGNATURE_FAILURE.

◆ V_ERR_CERT_UNTRUSTED

const int SSLCertificateInfo::V_ERR_CERT_UNTRUSTED
static

OpenSSL error code X509_V_ERR_CERT_UNTRUSTED.

◆ V_ERR_CRL_HAS_EXPIRED

const int SSLCertificateInfo::V_ERR_CRL_HAS_EXPIRED
static

OpenSSL error code X509_V_ERR_CRL_HAS_EXPIRED.

◆ V_ERR_CRL_NOT_YET_VALID

const int SSLCertificateInfo::V_ERR_CRL_NOT_YET_VALID
static

OpenSSL error code X509_V_ERR_CRL_NOT_YET_VALID.

◆ V_ERR_CRL_SIGNATURE_FAILURE

const int SSLCertificateInfo::V_ERR_CRL_SIGNATURE_FAILURE
static

OpenSSL error code X509_V_ERR_CRL_SIGNATURE_FAILURE.

◆ V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT

const int SSLCertificateInfo::V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT
static

OpenSSL error code X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT.

◆ V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD

const int SSLCertificateInfo::V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD
static

OpenSSL error code X509_V_ERR_ERROR_IN_CERT_NOT_AFTER_FIELD.

◆ V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD

const int SSLCertificateInfo::V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD
static

OpenSSL error code X509_V_ERR_ERROR_IN_CERT_NOT_BEFORE_FIELD.

◆ V_ERR_ERROR_IN_CRL_LAST_UPDATE_FIELD

const int SSLCertificateInfo::V_ERR_ERROR_IN_CRL_LAST_UPDATE_FIELD
static

OpenSSL error code X509_V_ERR_ERROR_IN_CRL_LAST_UPDATE_FIELD.

◆ V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD

const int SSLCertificateInfo::V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD
static

OpenSSL error code X509_V_ERR_ERROR_IN_CRL_NEXT_UPDATE_FIELD.

◆ V_ERR_INVALID_CA

const int SSLCertificateInfo::V_ERR_INVALID_CA
static

OpenSSL error code X509_V_ERR_INVALID_CA.

◆ V_ERR_INVALID_PURPOSE

const int SSLCertificateInfo::V_ERR_INVALID_PURPOSE
static

OpenSSL error code X509_V_ERR_INVALID_PURPOSE.

◆ V_ERR_KEYUSAGE_NO_CERTSIGN

const int SSLCertificateInfo::V_ERR_KEYUSAGE_NO_CERTSIGN
static

OpenSSL error code X509_V_ERR_KEYUSAGE_NO_CERTSIGN.

◆ V_ERR_OUT_OF_MEM

const int SSLCertificateInfo::V_ERR_OUT_OF_MEM
static

OpenSSL error code X509_V_ERR_OUT_OF_MEM.

◆ V_ERR_PATH_LENGTH_EXCEEDED

const int SSLCertificateInfo::V_ERR_PATH_LENGTH_EXCEEDED
static

OpenSSL error code X509_V_ERR_PATH_LENGTH_EXCEEDED.

◆ V_ERR_SELF_SIGNED_CERT_IN_CHAIN

const int SSLCertificateInfo::V_ERR_SELF_SIGNED_CERT_IN_CHAIN
static

OpenSSL error code X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN.

◆ V_ERR_SUBJECT_ISSUER_MISMATCH

const int SSLCertificateInfo::V_ERR_SUBJECT_ISSUER_MISMATCH
static

OpenSSL error code X509_V_ERR_SUBJECT_ISSUER_MISMATCH.

◆ V_ERR_UNABLE_TO_DECODE_ISSUER_PUBLIC_KEY

const int SSLCertificateInfo::V_ERR_UNABLE_TO_DECODE_ISSUER_PUBLIC_KEY
static

OpenSSL error code X509_V_ERR_UNABLE_TO_DECODE_ISSUER_PUBLIC_KEY.

◆ V_ERR_UNABLE_TO_DECRYPT_CERT_SIGNATURE

const int SSLCertificateInfo::V_ERR_UNABLE_TO_DECRYPT_CERT_SIGNATURE
static

OpenSSL error code X509_V_ERR_UNABLE_TO_DECRYPT_CERT_SIGNATURE.

◆ V_ERR_UNABLE_TO_DECRYPT_CRL_SIGNATURE

const int SSLCertificateInfo::V_ERR_UNABLE_TO_DECRYPT_CRL_SIGNATURE
static

OpenSSL error code X509_V_ERR_UNABLE_TO_DECRYPT_CRL_SIGNATURE.

◆ V_ERR_UNABLE_TO_GET_CRL

const int SSLCertificateInfo::V_ERR_UNABLE_TO_GET_CRL
static

OpenSSL error code X509_V_ERR_UNABLE_TO_GET_CRL.

◆ V_ERR_UNABLE_TO_GET_ISSUER_CERT

const int SSLCertificateInfo::V_ERR_UNABLE_TO_GET_ISSUER_CERT
static

OpenSSL error code X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT.

◆ V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY

const int SSLCertificateInfo::V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY
static

OpenSSL error code X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY.

◆ V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE

const int SSLCertificateInfo::V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE
static

OpenSSL error code X509_V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE.

◆ V_OK

const int SSLCertificateInfo::V_OK
static

Certificate validation result code corresponding to the OpenSSL error code X509_V_OK.


The documentation for this class was generated from the following file:
  • /root/rpmbuild/BUILD/pegasus/src/Pegasus/Common/SSLContext.h