#include <XrdCryptoX509Chain.hh>
|
| enum | ECAStatus { kUnknown = 0,
kAbsent,
kInvalid,
kValid
} |
| |
| enum | EX509ChainErr {
kNone = 0,
kInconsistent,
kTooMany,
kNoCA,
kNoCertificate,
kInvalidType,
kInvalidNames,
kRevoked,
kExpired,
kMissingExtension,
kVerifyFail,
kInvalidSign,
kCANotAutoSigned
} |
| |
|
| XrdCryptoX509ChainNode * | Find (XrdCryptoX509 *c) |
| |
| XrdCryptoX509ChainNode * | FindIssuer (const char *issuer, ESearchMode mode=kExact, XrdCryptoX509ChainNode **p=0) |
| |
| XrdCryptoX509ChainNode * | FindSubject (const char *subject, ESearchMode mode=kExact, XrdCryptoX509ChainNode **p=0) |
| |
| bool | Verify (EX509ChainErr &e, const char *msg, XrdCryptoX509::EX509Type type, int when, XrdCryptoX509 *xcer, XrdCryptoX509 *xsig, XrdCryptoX509Crl *crl=0) |
| |
| Enumerator |
|---|
| kUnknown |
|
| kAbsent |
|
| kInvalid |
|
| kValid |
|
| Enumerator |
|---|
| kExact |
|
| kBegin |
|
| kEnd |
|
| Enumerator |
|---|
| kNone |
|
| kInconsistent |
|
| kTooMany |
|
| kNoCA |
|
| kNoCertificate |
|
| kInvalidType |
|
| kInvalidNames |
|
| kRevoked |
|
| kExpired |
|
| kMissingExtension |
|
| kVerifyFail |
|
| kInvalidSign |
|
| kCANotAutoSigned |
|
References begin, cahash, caname, current, eechash, eecname, end, XrdCryptoX509::kCA, kInvalid, kNone, kUnknown, kValid, lastError, previous, size, statusCA, XrdCryptoX509::Subject(), XrdCryptoX509::SubjectHash(), XrdCryptoX509::type, and Verify().
References Begin(), begin, CAhash(), cahash, CAname(), caname, current, EEChash(), eechash, EECname(), eecname, end, LastError(), lastError, Next(), previous, XrdCryptoX509ChainNode::SetNext(), size, StatusCA(), and statusCA.
| XrdCryptoX509Chain::~XrdCryptoX509Chain |
( |
| ) |
|
|
virtual |
References begin, XrdCryptoX509ChainNode::Cert(), current, and previous.
Referenced by XrdSecProtocolgsi::GetCA(), XrdSecProtocolgsi::getCredentials(), main(), XrdSecProtocolgsi::VerifyCA(), XrdCryptosslX509ExportChain(), XrdCryptosslX509ParseBucket(), XrdCryptosslX509ParseFile(), XrdCryptosslX509VerifyChain(), and XrdCryptoX509Chain().
| const char * XrdCryptoX509Chain::CAhash |
( |
| ) |
|
| const char * XrdCryptoX509Chain::CAname |
( |
| ) |
|
| bool XrdCryptoX509Chain::CheckCA |
( |
bool |
checkselfsigned = 1 | ) |
|
References begin, cahash, caname, XrdCryptoX509ChainNode::Cert(), end, XrdCryptoX509::kCA, kInvalid, kNone, kValid, kVerifyFail, lastError, XrdCryptoX509ChainNode::Next(), XrdCryptoX509ChainNode::SetNext(), statusCA, XrdCryptoX509::Subject(), XrdCryptoX509::SubjectHash(), XrdCryptoX509::type, Verify(), and X509ChainError().
Referenced by CAhash(), CAname(), XrdSecProtocolgsi::QueryProxy(), Verify(), and XrdSecProtocolgsi::VerifyCA().
| int XrdCryptoX509Chain::CheckValidity |
( |
bool |
outatfirst = 1, |
|
|
int |
when = 0 |
|
) |
| |
|
virtual |
| void XrdCryptoX509Chain::Cleanup |
( |
bool |
keepCA = 0 | ) |
|
References begin, cahash, caname, XrdCryptoX509ChainNode::Cert(), current, eechash, eecname, end, XrdCryptoX509::kCA, kUnknown, lastError, XrdCryptoX509ChainNode::Next(), previous, size, statusCA, and XrdCryptoX509::type.
Referenced by XrdSecProtocolgsi::QueryProxy(), and gsiHSVars::~gsiHSVars().
| void XrdCryptoX509Chain::Dump |
( |
| ) |
|
References begin, CAname(), XrdCryptoX509ChainNode::Cert(), EECname(), EPNAME, XrdCryptoX509::IssuerHash(), LOCDUMP, XrdCryptoX509ChainNode::Next(), Size(), XrdCryptoX509::SubjectHash(), and XrdCryptoX509::Type().
Referenced by main(), XrdSecProtocolgsi::ServerDoSigpxy(), and XrdCryptosslgsiX509Chain::Verify().
| const char * XrdCryptoX509Chain::EEChash |
( |
| ) |
|
References begin, XrdOucString::c_str(), XrdCryptoX509ChainNode::Cert(), DEBUG, eechash, EPNAME, XrdCryptoX509::kEEC, XrdOucString::length(), XrdCryptoX509ChainNode::Next(), XrdCryptoX509::SubjectHash(), and XrdCryptoX509::type.
Referenced by XrdSecProtocolgsi::Authenticate(), and XrdCryptoX509Chain().
| const char * XrdCryptoX509Chain::EECname |
( |
| ) |
|
References begin, XrdOucString::c_str(), XrdCryptoX509ChainNode::Cert(), DEBUG, eecname, EPNAME, XrdCryptoX509::kEEC, XrdOucString::length(), XrdCryptoX509ChainNode::Next(), XrdCryptoX509::Subject(), and XrdCryptoX509::type.
Referenced by XrdSecProtocolgsi::Authenticate(), Dump(), XrdSecProtocolgsi::QueryGMAP(), XrdSecProtocolgsi::ServerDoSigpxy(), and XrdCryptoX509Chain().
References XrdCryptoX509ChainNode::Cert(), and end.
Referenced by XrdSecProtocolgsi::Authenticate(), XrdSecProtocolgsi::ClientDoCert(), XrdSecProtocolgsi::ClientDoPxyreq(), XrdSecProtocolgsi::ExtractVOMS(), XrdSecProtocolgsi::QueryProxy(), XrdSecProtocolgsi::ServerDoCert(), XrdSecProtocolgsi::ServerDoSigpxy(), XrdCryptosslX509ChainToFile(), XrdCryptosslX509ExportChain(), XrdSecgsiAuthzKey(), and XrdSecgsiVOMSFun().
| const char* XrdCryptoX509Chain::LastError |
( |
| ) |
const |
|
inline |
References begin, cahash, caname, XrdCryptoX509ChainNode::Cert(), current, XrdCryptoX509::kCA, kUnknown, XrdCryptoX509ChainNode::Next(), previous, XrdCryptoX509ChainNode::SetNext(), size, statusCA, and XrdCryptoX509::type.
Referenced by XrdSecProtocolgsi::VerifyCA().
| int XrdCryptoX509Chain::Reorder |
( |
| ) |
|
|
virtual |
References begin, cahash, caname, XrdCryptoX509ChainNode::Cert(), DEBUG, eechash, eecname, end, EPNAME, FindSubject(), XrdCryptoX509::Issuer(), kAbsent, XrdCryptoX509::kCA, XrdCryptoX509::kEEC, kExact, kUnknown, XrdOucString::length(), XrdCryptoX509ChainNode::Next(), XrdCryptoX509ChainNode::SetNext(), size, statusCA, and XrdCryptoX509::Subject().
Referenced by main(), XrdSecProtocolgsi::QueryProxy(), XrdSecProtocolgsi::ServerDoCert(), XrdCryptosslgsiX509Chain::Verify(), Verify(), XrdCryptosslX509ChainToFile(), XrdCryptosslX509ExportChain(), and XrdSecgsiAuthzKey().
| void XrdCryptoX509Chain::SetStatusCA |
( |
ECAStatus |
st | ) |
|
|
inline |
| int XrdCryptoX509Chain::Size |
( |
| ) |
const |
|
inline |
| ECAStatus XrdCryptoX509Chain::StatusCA |
( |
| ) |
const |
|
inline |
Reimplemented in XrdCryptosslgsiX509Chain.
References begin, XrdCryptoX509ChainNode::Cert(), CheckCA(), DEBUG, EPNAME, kInconsistent, kNoCA, kNone, kOptsCheckSelfSigned, kTooMany, XrdCryptoX509::kUnknown, lastError, XrdCryptoX509ChainNode::Next(), x509ChainVerifyOpt_t::opt, x509ChainVerifyOpt_t::pathlen, Reorder(), size, x509ChainVerifyOpt_t::when, and X509ChainError().
Referenced by CheckCA(), main(), XrdCryptosslgsiX509Chain::Verify(), and XrdCryptoX509Chain().
References XrdOucString::c_str(), XrdCryptoX509Crl::IsRevoked(), XrdCryptoX509::IsValid(), kExpired, kInvalidType, kNoCertificate, kRevoked, XrdCryptoX509::kUnknown, kVerifyFail, lastError, XrdCryptoX509::SerialNumberString(), XrdCryptoX509::type, XrdCryptoX509::Verify(), and X509ChainError().
| const char * XrdCryptoX509Chain::X509ChainError |
( |
EX509ChainErr |
e | ) |
|
Referenced by Begin(), CheckCA(), CheckValidity(), Cleanup(), Dump(), EEChash(), EECname(), Find(), FindIssuer(), FindSubject(), PushBack(), PutInFront(), Remove(), Reorder(), XrdCryptosslgsiX509Chain::Verify(), Verify(), XrdCryptoX509Chain(), and ~XrdCryptoX509Chain().
| int XrdCryptoX509Chain::size |
|
private |
Referenced by CheckValidity(), Cleanup(), InsertAfter(), PushBack(), PutInFront(), Remove(), Reorder(), Size(), XrdCryptosslgsiX509Chain::Verify(), Verify(), and XrdCryptoX509Chain().
The documentation for this class was generated from the following files:
