|
||
class CPKIXCertChain : public CPKIXCertChainBase;
This class implements a PKIX certificate chain.
CPKIXCertChainBase
- No description.
CPKIXCertChain
- This class implements a PKIX certificate chain.
Defined in CPKIXCertChain
:
AddCertL(const TPtrC8 &)
Adds a certificate (if it is not self-signed) to the chain .AddSupportedCriticalExtensionsL(const RPointerArray< TDesC > &)
Adds one or more critical extension OIDs to the list of supported critical exten...CancelValidate()
Cancels an asynchronous CPKIXCertChain::ValidateL(CPKIXValidationResult &,co...ChainHasRoot()const
Tests whether the root certificate of the chain is locatable.NewL(RFs &,const TPtrC8 &,const RPointerArray< CX509Certificate > &)
Creates a certificate chain using the binary data in aEncodedCerts.NewL(RFs &,const TPtrC8 &,const TUid)
Creates a certificate chain using the binary data in aEncodedCerts.NewLC(RFs &,const TPtrC8 &,const RPointerArray< CX509Certificate > &)
Creates a certificate chain using the binary data in aEncodedCerts and puts a po...NewLC(RFs &,const TPtrC8 &,const TUid)
Creates a certificate chain using the binary data in aEncodedCerts, and puts a p...RemoveSupportedCriticalExtensions(const RPointerArray< TDesC > &)
Removes one or more critical extension OIDs from the list of supported critical ...ResetSupportedCriticalExtsToDefaultL()
Resets the current list of supported critical extensions and re-populates it wit...SetSupportedCriticalExtensionsL(const RPointerArray< TDesC > &)
Completely replaces the set of supported critical extensions for certificate val...SetValidityPeriodCheckFatal(TBool)
Specify if a failed check on the certificate validity date is treated as an erro...SupportedCriticalExtensions()const
Returns a list of the critical extension OIDs that are supported by the chain va...ValidateL(CPKIXValidationResult &,const TTime &,TRequestStatus &)
Validates the chain.ValidateL(CPKIXValidationResult &,const TTime &,const CArrayPtr< HBufC > &,TRequestStatus &)
Validates the chain.~CPKIXCertChain()
Destructor.IMPORT_C static CPKIXCertChain* NewL(RFs &aFs, const TPtrC8 &aEncodedCerts, const TUid aClient);
Creates a certificate chain using the binary data in aEncodedCerts.
|
|
IMPORT_C static CPKIXCertChain* NewLC(RFs &aFs, const TPtrC8 &aEncodedCerts, const TUid aClient);
Creates a certificate chain using the binary data in aEncodedCerts, and puts a pointer to the new object onto the cleanup stack.
|
|
IMPORT_C static CPKIXCertChain* NewL(RFs &aFs, const TPtrC8 &aEncodedCerts, const RPointerArray< CX509Certificate > &aRootCerts);
Creates a certificate chain using the binary data in aEncodedCerts.
|
|
IMPORT_C static CPKIXCertChain* NewLC(RFs &aFs, const TPtrC8 &aEncodedCerts, const RPointerArray< CX509Certificate > &aRootCerts);
Creates a certificate chain using the binary data in aEncodedCerts and puts a pointer to the new object onto the cleanup stack.
|
|
IMPORT_C void ValidateL(CPKIXValidationResult &aValidationResult, const TTime &aValidationTime, TRequestStatus &aStatus);
Validates the chain.
|
IMPORT_C void ValidateL(CPKIXValidationResult &aValidationResult, const TTime &aValidationTime, const CArrayPtr< HBufC > &aInitialPolicies,
TRequestStatus &aStatus);
Validates the chain.
|
IMPORT_C void CancelValidate();
Cancels an asynchronous CPKIXCertChain::ValidateL(CPKIXValidationResult &,const TTime &,TRequestStatus &)
operation.
IMPORT_C void AddCertL(const TPtrC8 &aEncodedCerts);
Adds a certificate (if it is not self-signed) to the chain .
|
IMPORT_C TBool ChainHasRoot() const;
Tests whether the root certificate of the chain is locatable.
Note that the value is only significant after a successfull call to CPKIXCertChain::ValidateL(CPKIXValidationResult &,const TTime &,TRequestStatus &)
.
|
IMPORT_C const RPointerArray< TDesC >& SupportedCriticalExtensions() const;
Returns a list of the critical extension OIDs that are supported by the chain validator. If a critical extension is encountered in a certificate chain whose OID matches an element in this set then the chain validator shall treat this as a warning instead of an error.
If CPKIXCertChain::SetSupportedCriticalExtensionsL(const RPointerArray< TDesC > &)
has not been called, this list will return the default set of supported critical extensions which includes the X.509 standard
and Symbian specific SIS file critical extensions. These extensions may change in the future and should not be relied upon.
|
IMPORT_C void AddSupportedCriticalExtensionsL(const RPointerArray< TDesC > &aCriticalExtOids);
Adds one or more critical extension OIDs to the list of supported critical extensions. Duplicate OID values are not added.
|
IMPORT_C void RemoveSupportedCriticalExtensions(const RPointerArray< TDesC > &aCriticalExtOids);
Removes one or more critical extension OIDs from the list of supported critical extensions.
|
IMPORT_C void SetSupportedCriticalExtensionsL(const RPointerArray< TDesC > &aCriticalExtOids);
Completely replaces the set of supported critical extensions for certificate validation. If a critical extension is encountered
matching one of these OIDs then its occurrence is treated as a warning rather than an error. The results of which can be queried
through a call to CPKIXValidationResult::ValidationWarnings()const
.
|
IMPORT_C void ResetSupportedCriticalExtsToDefaultL();
Resets the current list of supported critical extensions and re-populates it with the default set which includes the X.509 standard and Symbian specific SIS file critical extensions. These extensions may change in the future and should not be relied upon.
IMPORT_C void SetValidityPeriodCheckFatal(TBool aIsFatal);
Specify if a failed check on the certificate validity date is treated as an error or a warning.
|