doxygen/async/AsyncSslX509_8h_source.html

#ifndef ASYNC_SSL_X509_INCLUDED

#define ASYNC_SSL_X509_INCLUDED


/****************************************************************************

 *

 * System Includes

 *

 ****************************************************************************/


#include <openssl/x509.h>

#include <openssl/bn.h>


#include <iomanip>

#include <numeric>

#include <ctime>

#include <limits>


/****************************************************************************

 *

 * Project Includes

 *

 ****************************************************************************/


#include <AsyncSslKeypair.h>

#include <AsyncSslX509Extensions.h>


/****************************************************************************

 *

 * Local Includes

 *

 ****************************************************************************/


/****************************************************************************

 *

 * Forward declarations

 *

 ****************************************************************************/


/****************************************************************************

 *

 * Namespace

 *

 ****************************************************************************/


namespace Async

{


/****************************************************************************

 *

 * Forward declarations of classes inside of the declared namespace

 *

 ****************************************************************************/


/****************************************************************************

 *

 * Defines & typedefs

 *

 ****************************************************************************/


/****************************************************************************

 *

 * Exported Global Variables

 *

 ****************************************************************************/


/****************************************************************************

 *

 * Class definitions

 *

 ****************************************************************************/


class SslX509

{

  public:

    enum : long

    {

      VERSION_1 = 0,

      VERSION_2 = 1,

      VERSION_3 = 2

    };


    SslX509(void) : m_cert(X509_new())

    {

      //std::cout << "### SslX509()" << std::endl;

    }


    SslX509(X509* cert, bool managed=true)

      : m_cert(cert), m_managed(managed)

    {

      //std::cout << "### SslX509(X509*)" << std::endl;

    }


    explicit SslX509(X509_STORE_CTX& ctx)

      : m_cert(X509_STORE_CTX_get_current_cert(&ctx)), m_managed(false)

    {

      //std::cout << "### SslX509(X509_STORE_CTX&)" << std::endl;

      //int ret = X509_up_ref(m_cert);

      //assert(ret == 1);

    }


    SslX509(SslX509&& other)

    {

      //std::cout << "### SslX509(SslX509&&)" << std::endl;

      set(other.m_cert, other.m_managed);

      //if (m_managed && (m_cert != nullptr))

      //{

      //  X509_free(m_cert);

      //}

      //m_cert = other.m_cert;

      //m_managed = other.m_managed;

      other.m_cert = nullptr;

      other.m_managed = true;

    }


    SslX509& operator=(SslX509&& other)

    {

      //std::cout << "### SslX509::operator=(SslX509&&)" << std::endl;

      set(other.m_cert, other.m_managed);

      //if (m_cert != nullptr)

      //{

      //  X509_free(m_cert);

      //}

      //m_cert = other.m_cert;

      //m_managed = other.m_managed;

      other.m_cert = nullptr;

      other.m_managed = true;

      return *this;

    }


    SslX509(const SslX509&) = delete;


    //explicit SslX509(const std::string& pem)

    //{

    //  std::cout << "### SslX509(const std::string&)" << std::endl;

    //  readPem(pem);

    //}


    ~SslX509(void)

    {

      //std::cout << "### ~SslX509()" << std::endl;

      set(nullptr);

    }


    void set(X509* cert, bool managed=true)

    {

      if (m_managed && (m_cert != nullptr))

      {

        X509_free(m_cert);

      }

      m_cert = cert;

      m_managed = managed;

    }


    void clear(void)

    {

      if (m_managed && (m_cert != nullptr))

      {

        X509_free(m_cert);

      }

      m_cert = X509_new();

    }


    bool isNull(void) const { return m_cert == nullptr; }


    SslX509& operator=(const SslX509&) = delete;


    bool setIssuerName(const X509_NAME* name)

    {

      assert(m_cert != nullptr);

#if OPENSSL_VERSION_MAJOR >= 3

      return (X509_set_issuer_name(m_cert, name) == 1);

#else

      auto n = X509_NAME_dup(const_cast<X509_NAME*>(name));

      int ret = X509_set_issuer_name(m_cert, n);

      X509_NAME_free(n);

     return (ret == 1);

#endif

    }


    const X509_NAME* issuerName(void) const

    {

      assert(m_cert != nullptr);

      return X509_get_issuer_name(m_cert);

    }


    bool setSubjectName(const X509_NAME* name)

    {

      assert(m_cert != nullptr);

#if OPENSSL_VERSION_MAJOR >= 3

      return (X509_set_subject_name(m_cert, name) == 1);

#else

      auto n = X509_NAME_dup(const_cast<X509_NAME*>(name));

      int ret = X509_set_subject_name(m_cert, n);

      X509_NAME_free(n);

     return (ret == 1);

#endif

    }


    const X509_NAME* subjectName(void) const

    {

      assert(m_cert != nullptr);

      return X509_get_subject_name(m_cert);

    }


    operator const X509*(void) const { return m_cert; }


    std::string commonName(void) const

    {

      std::string cn;


      const X509_NAME* subj = subjectName();

      if (subj == nullptr)

      {

        return cn;

      }


        // Assume there is only one CN

#if OPENSSL_VERSION_MAJOR >= 3

      int lastpos = X509_NAME_get_index_by_NID(subj, NID_commonName, -1);

#else

      auto s = X509_NAME_dup(const_cast<X509_NAME*>(subj));

      int lastpos = X509_NAME_get_index_by_NID(s, NID_commonName, -1);

      X509_NAME_free(s);

#endif

      if (lastpos >= 0)

      {

        X509_NAME_ENTRY *e = X509_NAME_get_entry(subj, lastpos);

        ASN1_STRING *d = X509_NAME_ENTRY_get_data(e);

        cn = reinterpret_cast<const char*>(ASN1_STRING_get0_data(d));

      }

      return cn;

    }


    bool verify(SslKeypair& keypair)

    {

      assert(m_cert != nullptr);

      return (X509_verify(m_cert, keypair) == 1);

    }


    bool readPem(const std::string& pem)

    {

      BIO *mem = BIO_new(BIO_s_mem());

      BIO_puts(mem, pem.c_str());

      if (m_managed && (m_cert != nullptr))

      {

        X509_free(m_cert);

      }

      m_cert = PEM_read_bio_X509(mem, nullptr, nullptr, nullptr);

      BIO_free(mem);

      return (m_cert != nullptr);

    }


    std::string pem(void) const

    {

      assert(m_cert != nullptr);

      BIO *mem = BIO_new(BIO_s_mem());

      int ret = PEM_write_bio_X509(mem, m_cert);

      assert(ret == 1);

      char buf[16384];

      int len = BIO_read(mem, buf, sizeof(buf));

      assert(len > 0);

      BIO_free(mem);

      return std::string(buf, len);

    }


    bool readPemFile(const std::string& filename)

    {

      FILE *p_file = fopen(filename.c_str(), "r");

      if (p_file == nullptr)

      {

        //std::cerr << "### Failed to open file '" << filename

        //          << "' for reading certificate" << std::endl;

        return false;

      }

      if (m_managed && (m_cert != nullptr))

      {

        X509_free(m_cert);

      }

      m_cert = PEM_read_X509(p_file, nullptr, nullptr, nullptr);

      fclose(p_file);

      return (m_cert != nullptr);

    }


    bool writePemFile(FILE* f)

    {

      assert(m_cert != nullptr);

      if (f == nullptr)

      {

        //std::cerr << "### Failed to open file '" << filename

        //          << "' for writing certificate" << std::endl;

        return false;

      }

      int ret = PEM_write_X509(f, m_cert);

      fclose(f);

      return (ret == 1);

    }


    bool writePemFile(const std::string& filename)

    {

      return writePemFile(fopen(filename.c_str(), "w"));

    }


    bool appendPemFile(const std::string& filename)

    {

      return writePemFile(fopen(filename.c_str(), "a"));

    }


    bool setVersion(long version)

    {

      return (X509_set_version(m_cert, version) == 1);

    }


    long version(void) const { return X509_get_version(m_cert); }


    void setNotBefore(std::time_t in_time)

    {

      X509_time_adj_ex(X509_get_notBefore(m_cert), 0L, 0L, &in_time);

    }


    std::time_t notBefore(void) const

    {

      ASN1_TIME* epoch = ASN1_TIME_set(nullptr, 0);

      const ASN1_TIME* not_before = X509_get0_notBefore(m_cert);

      int pday=0, psec=0;

      ASN1_TIME_diff(&pday, &psec, epoch, not_before);

      ASN1_STRING_free(epoch);

      return static_cast<std::time_t>(pday)*24*3600 + psec;

    }


    std::string notBeforeString(void) const

    {

      const ASN1_TIME* t = X509_get_notBefore(m_cert);

      int len = ASN1_STRING_length(t);

      if (t == nullptr)

      {

        return std::string();

      }

      const unsigned char* data = ASN1_STRING_get0_data(t);

      return std::string(data, data+len);

    }


    std::string notBeforeLocaltimeString(void) const

    {

      std::time_t t = notBefore();

      std::ostringstream ss;

      ss << std::put_time(std::localtime(&t), "%c");

      return ss.str();

    }


    void setNotAfter(std::time_t in_time)

    {

      X509_time_adj_ex(X509_get_notAfter(m_cert), 0L, 0L, &in_time);

    }


    std::time_t notAfter(void) const

    {

      ASN1_TIME* epoch = ASN1_TIME_set(nullptr, 0);

      const ASN1_TIME* not_after = X509_get0_notAfter(m_cert);

      int pday=0, psec=0;

      ASN1_TIME_diff(&pday, &psec, epoch, not_after);

      ASN1_STRING_free(epoch);

      return static_cast<std::time_t>(pday)*24*3600 + psec;

    }


    std::string notAfterString(void) const

    {

      const ASN1_TIME* t = X509_get_notAfter(m_cert);

      const unsigned char* data = ASN1_STRING_get0_data(t);

      int len = ASN1_STRING_length(t);

      if (t == nullptr)

      {

        return std::string();

      }

      return std::string(data, data+len);

    }


    std::string notAfterLocaltimeString(void) const

    {

      std::time_t t = notAfter();

      std::ostringstream ss;

      ss << std::put_time(std::localtime(&t), "%c");

      return ss.str();

    }


    void setValidityTime(unsigned days, int offset_days=0)

    {

      std::time_t validity_secs = days * 24 * 60 * 60;

      std::time_t tnow = time(NULL);

      tnow += offset_days * 24 * 60 * 60;

      if (std::numeric_limits<time_t>::max() - validity_secs < tnow)

      {

        validity_secs = std::numeric_limits<time_t>::max() - tnow;

      }

      setNotBefore(tnow);

      setNotAfter(tnow + validity_secs);

    }


    void validityTime(int& days, int& seconds) const

    {

      const ASN1_TIME* not_before = X509_get_notBefore(m_cert);

      const ASN1_TIME* not_after = X509_get_notAfter(m_cert);

      ASN1_TIME_diff(&days, &seconds, not_before, not_after);

    }


    bool timeIsWithinRange(std::time_t tbegin=time(NULL),

                           std::time_t tend=time(NULL)) const

    {

      const ASN1_TIME* not_before = X509_get_notBefore(m_cert);

      const ASN1_TIME* not_after = X509_get_notAfter(m_cert);

      return ((not_before == nullptr) ||

              (X509_cmp_time(not_before, &tbegin) == -1)) &&

             ((not_after == nullptr) ||

              (X509_cmp_time(not_after, &tend) == 1));

    }


    int signatureType(void) const

    {

      return X509_get_signature_type(m_cert);

    }


    void setSerialNumber(long serial_number=-1)

    {

      // FIXME: Error handling

      ASN1_INTEGER *p_serial_number = ASN1_INTEGER_new();

      if (serial_number < 0)

      {

        randSerial(p_serial_number);

      }

      else

      {

        ASN1_INTEGER_set(p_serial_number, serial_number);

      }

      X509_set_serialNumber(m_cert, p_serial_number);

      ASN1_INTEGER_free(p_serial_number);

    }


    std::string serialNumberString(void) const

    {

      const ASN1_INTEGER* i = X509_get0_serialNumber(m_cert);

      if (i == nullptr)

      {

        return std::string();

      }

      BIGNUM *bn = ASN1_INTEGER_to_BN(i, nullptr);

      if (bn == nullptr)

      {

        return std::string();

      }

      char *hex = BN_bn2hex(bn);

      BN_free(bn);

      if (hex == nullptr)

      {

        return std::string();

      }

      std::string ret(hex, hex+strlen(hex));

      ret = std::string("0x") + ret;

      OPENSSL_free(hex);

      return ret;

    }


    //void setIssuerName()

    //{

    //  X509_set_issuer_name(p_generated_cert, X509_REQ_get_subject_name(pCertReq));

    //}


    void addIssuerName(const std::string& field, const std::string& value)

    {

      // FIXME: Error handling

      assert(m_cert != nullptr);

      X509_NAME* name = X509_get_issuer_name(m_cert);

      if (name == nullptr)

      {

        name = X509_NAME_new();

      }

      assert(name != nullptr);

      int ret = X509_NAME_add_entry_by_txt(name, field.c_str(), MBSTRING_UTF8,

          reinterpret_cast<const unsigned char*>(value.c_str()),

          value.size(), -1, 0);

      assert(ret == 1);

      ret = X509_set_issuer_name(m_cert, name);

      assert(ret == 1);

    }


    void addSubjectName(const std::string& field, const std::string& value)

    {

      // FIXME: Error handling

      assert(m_cert != nullptr);

      X509_NAME* name = X509_get_subject_name(m_cert);

      if (name == nullptr)

      {

        name = X509_NAME_new();

      }

      assert(name != nullptr);

      int ret = X509_NAME_add_entry_by_txt(name, field.c_str(), MBSTRING_UTF8,

          reinterpret_cast<const unsigned char*>(value.c_str()),

          value.size(), -1, 0);

      assert(ret == 1);

      ret = X509_set_subject_name(m_cert, name);

      assert(ret == 1);

    }


    std::string issuerNameString(void) const

    {

      std::string str;

      const X509_NAME* nm = issuerName();

      if (nm != nullptr)

      {

        BIO *mem = BIO_new(BIO_s_mem());

        assert(mem != nullptr);

          // Print all subject names on one line. Don't escape multibyte chars.

        int len = X509_NAME_print_ex(mem, nm, 0,

            XN_FLAG_ONELINE & ~ASN1_STRFLGS_ESC_MSB);

        if (len > 0)

        {

          char buf[len+1];

          len = BIO_read(mem, buf, sizeof(buf));

          if (len > 0)

          {

            str = std::string(buf, len);

          }

        }

        BIO_free(mem);

      }

      return str;

    }


    std::string subjectNameString(void) const

    {

      std::string str;

      const X509_NAME* nm = subjectName();

      if (nm != nullptr)

      {

        BIO *mem = BIO_new(BIO_s_mem());

        assert(mem != nullptr);

          // Print all subject names on one line. Don't escape multibyte chars.

        int len = X509_NAME_print_ex(mem, nm, 0,

            XN_FLAG_ONELINE & ~ASN1_STRFLGS_ESC_MSB);

        if (len > 0)

        {

          char buf[len+1];

          len = BIO_read(mem, buf, sizeof(buf));

          if (len > 0)

          {

            str = std::string(buf, len);

          }

        }

        BIO_free(mem);

      }

      return str;

    }


    void addExtensions(const SslX509Extensions& exts)

    {

      for (int i=0; i<X509v3_get_ext_count(exts); ++i)

      {

        auto ext = X509v3_get_ext(exts, i);

        X509_add_ext(m_cert, ext, -1);

      }

    }


    SslKeypair publicKey(void) const

    {

      assert(m_cert != nullptr);

      return SslKeypair(X509_get_pubkey(m_cert));

    }


    bool setPublicKey(SslKeypair& pkey)

    {

      return (X509_set_pubkey(m_cert, pkey) == 1);

    }


    bool sign(SslKeypair& pkey)

    {

      auto md = EVP_sha256();

      auto md_size = EVP_MD_size(md);

      return (X509_sign(m_cert, pkey, md) != md_size);

    }


    std::vector<unsigned char> digest(void) const

    {

      assert(m_cert != nullptr);

      std::vector<unsigned char> md(EVP_MAX_MD_SIZE);

      unsigned int len = md.size();

      if (X509_digest(m_cert, EVP_sha256(), md.data(), &len) != 1)

      {

        len = 0;

      }

      md.resize(len);

      return md;

    }


#if 0

    int certificateType(void) const

    {

      auto pkey = X509_get0_pubkey(m_cert);

      if (pkey == nullptr)

      {

        return -1;

      }

      return X509_certificate_type(m_cert, pkey);

    }

#endif


    bool matchHost(const std::string& name) const

    {

      int chk = X509_check_host(m_cert, name.c_str(), name.size(), 0, nullptr);

      return chk > 0;

    }


    bool matchIp(const IpAddress& ip) const

    {

      int chk = X509_check_ip_asc(m_cert, ip.toString().c_str(), 0);

      return chk > 0;

    }


    void print(const std::string& prefix="") const

    {

      if (isNull())

      {

        std::cout << "NULL" << std::endl;

        return;

      }


      int ext_idx = X509_get_ext_by_NID(m_cert, NID_subject_alt_name, -1);

      auto ext = X509_get_ext(m_cert, ext_idx);

      auto sanstr = SslX509ExtSubjectAltName(ext).toString();

      const auto md = digest();

      std::cout

        //<< prefix << "Version          : " << (version()+1) << "\n"

        << prefix << "Serial No.       : " << serialNumberString() << "\n"

        << prefix << "Issuer           : " << issuerNameString() << "\n"

        << prefix << "Subject          : " << subjectNameString() << "\n"

        << prefix << "Not Before       : "

                  << notBeforeLocaltimeString() << "\n"

        << prefix << "Not After        : "

                  << notAfterLocaltimeString() << "\n"

        //<< prefix << "Signature Type   : " << signatureType() << "\n"

        ;

      if (!sanstr.empty())

      {

        std::cout << prefix << "Subject Alt Name : " << sanstr << "\n";

      }

      //std::cout << prefix << "SHA256 Digest    : " << std::accumulate(

      //    md.begin(),

      //    md.end(),

      //    std::ostringstream() << std::hex << std::setfill('0'),

      //    [](std::ostringstream& ss, unsigned char x)

      //    {

      //      if (!ss.str().empty()) { ss << ":"; }

      //      return std::move(ss) << std::setw(2) << unsigned(x);

      //    }).str() + "\n"

      std::cout << std::flush;

    }


  protected:


  private:

    X509* m_cert = nullptr;

    bool  m_managed = true;


    int randSerial(ASN1_INTEGER *ai)

    {

      BIGNUM *p_bignum = NULL;

      int ret = -1;


      if (NULL == (p_bignum = BN_new())) {

        goto CLEANUP;

      }


      if (!BN_rand(p_bignum, 159, 0, 0)) {

        goto CLEANUP;

      }


      if (ai && !BN_to_ASN1_INTEGER(p_bignum, ai)) {

        goto CLEANUP;

      }


      ret = 1;


      CLEANUP:

        BN_free(p_bignum);

        return ret;

    }

};  /* class SslX509 */


} /* namespace */


#endif /* ASYNC_SSL_X509_INCLUDED */


/*

 * This file has not been truncated

 */

AsyncSslKeypair.h
Represent private and public keys.

AsyncSslX509Extensions.h
A class representing X.509 v3 extensions.

Async::IpAddress
A class for representing an IP address in an OS independent way.
Definition AsyncIpAddress.h:105

Async::IpAddress::toString
std::string toString(void) const
Return the string representation of the IP address.

Async::SslKeypair
A class representing private and public keys.
Definition AsyncSslKeypair.h:124

Async::SslX509ExtSubjectAltName
A class representing the X.509 Subject Alternative Name extension.
Definition AsyncSslX509ExtSubjectAltName.h:116

Async::SslX509ExtSubjectAltName::toString
std::string toString(int type=-1) const
Convert all SANs to a string.
Definition AsyncSslX509ExtSubjectAltName.h:308

Async::SslX509Extensions
A class representing X.509 extensions.
Definition AsyncSslX509Extensions.h:120

Async::SslX509
A class representing an X.509 certificate.
Definition AsyncSslX509.h:124

Async::SslX509::serialNumberString
std::string serialNumberString(void) const
Get the serial number as a string.
Definition AsyncSslX509.h:677

Async::SslX509::setValidityTime
void setValidityTime(unsigned days, int offset_days=0)
Set the validity time relative to current time.
Definition AsyncSslX509.h:597

Async::SslX509::appendPemFile
bool appendPemFile(const std::string &filename)
Append this certificate to file in PEM format.
Definition AsyncSslX509.h:467

Async::SslX509::readPemFile
bool readPemFile(const std::string &filename)
Initialize this object with PEM data read from given file.
Definition AsyncSslX509.h:415

Async::SslX509::matchHost
bool matchHost(const std::string &name) const
Check if the given hostname match this certificate.
Definition AsyncSslX509.h:889

Async::SslX509::commonName
std::string commonName(void) const
Get the common name of the subject.
Definition AsyncSslX509.h:337

Async::SslX509::addSubjectName
void addSubjectName(const std::string &field, const std::string &value)
Add a name to the subject distinguished name.
Definition AsyncSslX509.h:734

Async::SslX509::addIssuerName
void addIssuerName(const std::string &field, const std::string &value)
Add a name to the issuer distinguished name.
Definition AsyncSslX509.h:711

Async::SslX509::publicKey
SslKeypair publicKey(void) const
Get the public key @retrun Returns the public key.
Definition AsyncSslX509.h:827

Async::SslX509::notBefore
std::time_t notBefore(void) const
Get the date and time from which this certificate is valid.
Definition AsyncSslX509.h:503

Async::SslX509::SslX509
SslX509(X509_STORE_CTX &ctx)
Constructor.
Definition AsyncSslX509.h:161

Async::SslX509::version
long version(void) const
Get the version of this certificate.
Definition AsyncSslX509.h:488

Async::SslX509::operator=
SslX509 & operator=(const SslX509 &)=delete
Disallow use of the copy assignment operator.

Async::SslX509::validityTime
void validityTime(int &days, int &seconds) const
The duration that this certificate is valid.
Definition AsyncSslX509.h:615

Async::SslX509::SslX509
SslX509(void)
Default constructor.
Definition AsyncSslX509.h:136

Async::SslX509::signatureType
int signatureType(void) const
Get the signature type.
Definition AsyncSslX509.h:646

Async::SslX509::writePemFile
bool writePemFile(const std::string &filename)
Write this certificate to file in PEM format.
Definition AsyncSslX509.h:457

Async::SslX509::print
void print(const std::string &prefix="") const
Print this certificate to std::cout.
Definition AsyncSslX509.h:910

Async::SslX509::setSerialNumber
void setSerialNumber(long serial_number=-1)
Set the serial number of the certificate.
Definition AsyncSslX509.h:657

Async::SslX509::setPublicKey
bool setPublicKey(SslKeypair &pkey)
Set the public key for this certificate.
Definition AsyncSslX509.h:838

Async::SslX509::~SslX509
~SslX509(void)
Constructor taking PEM data.
Definition AsyncSslX509.h:224

Async::SslX509::verify
bool verify(SslKeypair &keypair)
Verify that this certificate is signed by the given key.
Definition AsyncSslX509.h:369

Async::SslX509::subjectName
const X509_NAME * subjectName(void) const
Get the subject distinguished name.
Definition AsyncSslX509.h:321

Async::SslX509::subjectNameString
std::string subjectNameString(void) const
Get the subject distinguished name as a string.
Definition AsyncSslX509.h:785

Async::SslX509::notAfterString
std::string notAfterString(void) const
Get the date and time up to which this certificate is valid.
Definition AsyncSslX509.h:568

Async::SslX509::timeIsWithinRange
bool timeIsWithinRange(std::time_t tbegin=time(NULL), std::time_t tend=time(NULL)) const
Check if the certificate is valid within the given range.
Definition AsyncSslX509.h:628

Async::SslX509::readPem
bool readPem(const std::string &pem)
Initialize this certificate from a string containing PEM data.
Definition AsyncSslX509.h:380

Async::SslX509::SslX509
SslX509(const SslX509 &)=delete
Don't allow copy construction.

Async::SslX509::setSubjectName
bool setSubjectName(const X509_NAME *name)
Set the subject distinguished name.
Definition AsyncSslX509.h:304

Async::SslX509::operator=
SslX509 & operator=(SslX509 &&other)
Move assignment operator.
Definition AsyncSslX509.h:191

Async::SslX509::isNull
bool isNull(void) const
Check if this object is empty.
Definition AsyncSslX509.h:264

Async::SslX509::set
void set(X509 *cert, bool managed=true)
Set the internal X509 object to use.
Definition AsyncSslX509.h:235

Async::SslX509::notAfter
std::time_t notAfter(void) const
Get the date and time up to which this certificate is valid.
Definition AsyncSslX509.h:554

Async::SslX509::writePemFile
bool writePemFile(FILE *f)
Write this certificate to file in PEM format.
Definition AsyncSslX509.h:438

Async::SslX509::matchIp
bool matchIp(const IpAddress &ip) const
Check if the given IP address match this certificate.
Definition AsyncSslX509.h:900

Async::SslX509::setIssuerName
bool setIssuerName(const X509_NAME *name)
Set the issuer distinguished name.
Definition AsyncSslX509.h:276

Async::SslX509::addExtensions
void addExtensions(const SslX509Extensions &exts)
Add v3 extensions to this certificate.
Definition AsyncSslX509.h:814

Async::SslX509::issuerNameString
std::string issuerNameString(void) const
Get the issuer distinguished name as a string.
Definition AsyncSslX509.h:756

Async::SslX509::SslX509
SslX509(X509 *cert, bool managed=true)
Constructor.
Definition AsyncSslX509.h:146

Async::SslX509::sign
bool sign(SslKeypair &pkey)
Sign this certificate using the given key.
Definition AsyncSslX509.h:848

Async::SslX509::notBeforeString
std::string notBeforeString(void) const
Get the date and time from which this certificate is valid.
Definition AsyncSslX509.h:517

Async::SslX509::pem
std::string pem(void) const
Get this certificate as PEM data.
Definition AsyncSslX509.h:397

Async::SslX509::issuerName
const X509_NAME * issuerName(void) const
Get the issuer distinguished name.
Definition AsyncSslX509.h:293

Async::SslX509::VERSION_2
@ VERSION_2
Definition AsyncSslX509.h:129

Async::SslX509::VERSION_1
@ VERSION_1
Definition AsyncSslX509.h:128

Async::SslX509::VERSION_3
@ VERSION_3
Definition AsyncSslX509.h:130

Async::SslX509::clear
void clear(void)
Set this object to empty.
Definition AsyncSslX509.h:251

Async::SslX509::setNotBefore
void setNotBefore(std::time_t in_time)
Set the date and time from which this certificate is valid.
Definition AsyncSslX509.h:494

Async::SslX509::SslX509
SslX509(SslX509 &&other)
Move constructor.
Definition AsyncSslX509.h:173

Async::SslX509::setNotAfter
void setNotAfter(std::time_t in_time)
Set the date and time up to which this certificate is valid.
Definition AsyncSslX509.h:545

Async::SslX509::digest
std::vector< unsigned char > digest(void) const
Get the digest of this certificate.
Definition AsyncSslX509.h:859

Async::SslX509::notAfterLocaltimeString
std::string notAfterLocaltimeString(void) const
Get the date and time up to which this certificate is valid.
Definition AsyncSslX509.h:584

Async::SslX509::notBeforeLocaltimeString
std::string notBeforeLocaltimeString(void) const
Get the date and time from which this certificate is valid.
Definition AsyncSslX509.h:533

Async::SslX509::setVersion
bool setVersion(long version)
Set the version of this certificate.
Definition AsyncSslX509.h:479

Async
Namespace for the asynchronous programming classes.
Definition AsyncApplication.h:76