blob: 7e2913ad0d5ec633e95b823f6e98685afafade80 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
|
//
// VMime library (http://www.vmime.org)
// Copyright (C) 2002 Vincent Richard <vincent@vmime.org>
//
// This program is free software; you can redistribute it and/or
// modify it under the terms of the GNU General Public License as
// published by the Free Software Foundation; either version 3 of
// the License, or (at your option) any later version.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
// General Public License for more details.
//
// You should have received a copy of the GNU General Public License along
// with this program; if not, write to the Free Software Foundation, Inc.,
// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
//
// Linking this library statically or dynamically with other modules is making
// a combined work based on this library. Thus, the terms and conditions of
// the GNU General Public License cover the whole combination.
//
#ifndef VMIME_SECURITY_CERT_CERTIFICATEVERIFIER_HPP_INCLUDED
#define VMIME_SECURITY_CERT_CERTIFICATEVERIFIER_HPP_INCLUDED
#include "vmime/types.hpp"
#include "vmime/security/cert/certificateChain.hpp"
#include "vmime/security/cert/unsupportedCertificateTypeException.hpp"
#include "vmime/security/cert/certificateIssuerVerificationException.hpp"
#include "vmime/security/cert/certificateNotTrustedException.hpp"
#include "vmime/security/cert/serverIdentityException.hpp"
namespace vmime {
namespace security {
namespace cert {
/** Verify that a certificate path issued by a server can be trusted.
*/
class VMIME_EXPORT certificateVerifier : public object {
public:
/** Verify that the specified certificate chain is trusted.
*
* @param chain certificate chain
* @param hostname server hostname
* @throw unsupportedCertificateTypeException if a certificate in the
* chain is of unsupported format
* @throw certificateExpiredException if a certificate in the chain
* has expired
* @throw certificateNotYetValidException if a certificate in the chain
* is not yet valid
* @throw certificateNotTrustedException if a certificate in the chain
* cannot be verified against root and/or trusted certificates
* @throw certificateIssuerVerificationException if a certificate in the
* chain cannot be verified against the next certificate (issuer)
* @throw serverIdentityException if the subject name of the certificate
* does not match the hostname of the server
*/
virtual void verify(const shared_ptr <certificateChain>& chain, const string& hostname) = 0;
};
} // cert
} // security
} // vmime
#endif // VMIME_SECURITY_CERT_CERTIFICATEVERIFIER_HPP_INCLUDED
|
