SiCertificateVerifier Class Reference

a class representing X.509 public key certificates. More...

List of all members.

Public Member Functions

 SiCertificateVerifier ()
 default constructor
virtual ~SiCertificateVerifier ()
 destructor
OFCondition addTrustedCertificateFile (const char *fileName, int fileType)
 loads a certificate from a file and adds it to the pool of trusted certificates.
OFCondition addTrustedCertificateDir (const char *pathName, int fileType)
 loads all files as certificates from the specified directory and adds them to the pool of trusted certificates.
OFCondition addCertificateRevocationList (const char *fileName, int fileType)
 loads a certificate revocation list (CRL) in X.509 format from a file and adds it to the pool of trusted certificates and CRLs.
OFCondition verifyCertificate (SiCertificate &certificate)
 verifies a certificate against the known trusted CA certificates and certificate revocation lists.
const char * lastError () const
 returns an error string containing a textual description of the result of the last call to verifyCertificate() if that call returned SI_EC_VerificationFailed_NoTrust.

Private Member Functions

 SiCertificateVerifier (SiCertificateVerifier &arg)
 private undefined copy constructor
SiCertificateVerifieroperator= (SiCertificateVerifier &arg)
 private undefined copy assignment operator

Private Attributes

X509_STORE * x509store
 OpenSSL X.509 certificate store.
long errorCode
 OpenSSL X.509 certificate verification error code for the last operation.

Detailed Description

a class representing X.509 public key certificates.

Definition at line 48 of file sicertvf.h.

Member Function Documentation

OFCondition SiCertificateVerifier::addCertificateRevocationList const char *  fileName,
int  fileType
 

loads a certificate revocation list (CRL) in X.509 format from a file and adds it to the pool of trusted certificates and CRLs.

Parameters:
fileName path to the CRL file
filetype file format: X509_FILETYPE_PEM or X509_FILETYPE_ASN1
Returns:
SI_EC_Normal if successful, an error code otherwise

OFCondition SiCertificateVerifier::addTrustedCertificateDir const char *  pathName,
int  fileType
 

loads all files as certificates from the specified directory and adds them to the pool of trusted certificates.

Parameters:
fileName path to the directory containing certificate files
filetype file format: X509_FILETYPE_PEM or X509_FILETYPE_ASN1
Returns:
SI_EC_Normal if successful, an error code otherwise

OFCondition SiCertificateVerifier::addTrustedCertificateFile const char *  fileName,
int  fileType
 

loads a certificate from a file and adds it to the pool of trusted certificates.

Parameters:
fileName path to the certificate file
filetype file format: X509_FILETYPE_PEM or X509_FILETYPE_ASN1
Returns:
SI_EC_Normal if successful, an error code otherwise

const char* SiCertificateVerifier::lastError  )  const
 

returns an error string containing a textual description of the result of the last call to verifyCertificate() if that call returned SI_EC_VerificationFailed_NoTrust.

Returns:
text string

OFCondition SiCertificateVerifier::verifyCertificate SiCertificate certificate  ) 
 

verifies a certificate against the known trusted CA certificates and certificate revocation lists.

Returns a status flag and stores a detailed error description that can be retrieved with lastError().

Parameters:
certificate the certificate to verify
Returns:
SI_EC_Normal if successful, an error code otherwise. If the certificate could not be verified, returns SI_EC_VerificationFailed_NoTrust.

The documentation for this class was generated from the following file:

Generated on 20 Dec 2005 for OFFIS DCMTK Version 3.5.4 by Doxygen 1.4.5