api_docs_2023-6/Certificate_8hpp_source.html

//

//  Copyright PHOENIX CONTACT Electronics GmbH

//

#pragma once

#include "Arp/System/Core/Arp.h"

#include "Arp/System/Commons/Logging.h"

#include "Arp/System/Commons/Security/Asn1Time.hpp"

#include "Arp/System/Commons/Security/ItemInfo.hpp"

#include "Arp/System/Commons/Security/Internal/OpenSslBio.hpp"

#include <map>

#include <vector>


#include <openssl/x509.h>

#include <openssl/x509v3.h>


using namespace Arp::System::Commons::Security::Internal;


namespace Arp { namespace System { namespace Commons { namespace Security

{


class Certificate : private Loggable<Certificate>

{

public: // typedefs


public: // construction/destruction

    Certificate(void);

    Certificate(const String& filename);

    Certificate(const std::vector<byte>& pemOrDerEncoding);

    explicit Certificate(X509* cert);


    Certificate(const Certificate& arg);

    Certificate(Certificate&& arg) noexcept;

    virtual Certificate& operator=(const Certificate& arg);

    Certificate& operator=(Certificate&& arg) noexcept;

    virtual ~Certificate(void);


public: // operators

    operator X509*() const;


public: // static operations

    static String Rfc2253Format(X509_NAME* name);


    static String GetAttributeValueByNid(X509_NAME *name, int nid);


    static String HexString(ASN1_INTEGER* integer);


public: // setter/getter operations

    const String& GetFilename(void) const;


    String GetSerialNumberHex(void) const;


    String GetSubject(void) const;


    String GetSubjectCommonName(void) const;


    String GetSubjectSerialNumber(void) const;


    String GetIssuer(void) const;


    String GetIssuerCommonName(void) const;


    const String& GetIdentifier(void) const;


    DateTime GetValidityNotBefore(void) const;  // please care: for some values DateTime::ToIso8601String does not work on 32 bit systems


    Asn1Time GetValidityNotBeforeAsn1(void) const;


    DateTime GetValidityNotAfter(void) const;  // please care: for some values DateTime::ToIso8601String does not work on 32 bit systems


    Asn1Time GetValidityNotAfterAsn1(void) const;


    std::vector<byte> GetPemData(void) const;


    std::vector<byte> GetDerData(void) const;


    ItemInfo GetItemInfo(void) const;


public: // operations

    void LoadFromFile(const String& filename);


    int LoadFromMemory(const std::vector<byte>& data, int offset = 0);


    bool TryLoadFromMemory(const std::vector<byte>& data, int& offset);


    bool TryLoadFromBio(OpenSslBio& bio, int& offset);


    void SaveToFilePem(const String& filename) const;


    void AppendToFilePem(const String& filename) const;


    void SaveToFileDer(const String& filename) const;


private: // static methods


private: // methods

    bool loadPemFile(OpenSslBio& pBio);

    bool loadDerFile(OpenSslBio& pBio);

    void generateIdentifier(void);


protected: // fields

    String identifier;

    X509* internalCertificate;


private: // fields

    String filename;


private: // static fields

};


// inline methods of class Certificate


inline Certificate::operator X509*() const

{

    return this->internalCertificate;

}


inline const String& Certificate::GetFilename() const

{

    return this->filename;

}


}}}} // end of namespace Arp::System::Commons::Security

Arp.h

Arp::BasicString< char8 >

Arp::DateTime
The class contains date and time informations.
Definition: DateTime.hpp:46

Arp::System::Commons::Diagnostics::Logging::Loggable
Definition: Loggable.hxx:20

Arp::System::Commons::Security::Asn1Time
Helper class to handle ASN1Time objects in x.509 Certificates
Definition: Asn1Time.hpp:22

Arp::System::Commons::Security::Certificate
Class to handle x.509 certificates
Definition: Certificate.hpp:25

Arp::System::Commons::Security::Certificate::~Certificate
virtual ~Certificate(void)
Destructs this instance and frees all resources.

Arp::System::Commons::Security::Certificate::GetValidityNotAfter
DateTime GetValidityNotAfter(void) const
returns the notAfter field of the x.509 as DateTime object

Arp::System::Commons::Security::Certificate::GetValidityNotBeforeAsn1
Asn1Time GetValidityNotBeforeAsn1(void) const
returns the notBefore field of the x.509 as Asn1Time object

Arp::System::Commons::Security::Certificate::Certificate
Certificate(const std::vector< byte > &pemOrDerEncoding)
Constructs an Certificate instance load from memory

Arp::System::Commons::Security::Certificate::TryLoadFromMemory
bool TryLoadFromMemory(const std::vector< byte > &data, int &offset)
tries to load the certificate from memory. byte vector can be PEM or DER encoded

Arp::System::Commons::Security::Certificate::AppendToFilePem
void AppendToFilePem(const String &filename) const
appends the certificate in PEM format to filename

Arp::System::Commons::Security::Certificate::Rfc2253Format
static String Rfc2253Format(X509_NAME *name)
static function to convert an openssl X509_NAME to an rfc2253 string

Arp::System::Commons::Security::Certificate::Certificate
Certificate(const String &filename)
Constructs an Certificate instance load from a file

Arp::System::Commons::Security::Certificate::GetSerialNumberHex
String GetSerialNumberHex(void) const
returns the filename were this x.509 certificate was loaded from

Arp::System::Commons::Security::Certificate::GetSubjectCommonName
String GetSubjectCommonName(void) const
returns the common name of the subject

Arp::System::Commons::Security::Certificate::SaveToFilePem
void SaveToFilePem(const String &filename) const
saves the certificate in PEM format to filename

Arp::System::Commons::Security::Certificate::SaveToFileDer
void SaveToFileDer(const String &filename) const
saves the certificate in DER format to filename

Arp::System::Commons::Security::Certificate::operator=
virtual Certificate & operator=(const Certificate &arg)
Assignment operator.

Arp::System::Commons::Security::Certificate::GetItemInfo
ItemInfo GetItemInfo(void) const
returns ItemInfo for the Certificate

Arp::System::Commons::Security::Certificate::TryLoadFromBio
bool TryLoadFromBio(OpenSslBio &bio, int &offset)
tries to load the certificate from OpenSslBio.

Arp::System::Commons::Security::Certificate::GetAttributeValueByNid
static String GetAttributeValueByNid(X509_NAME *name, int nid)
static function to extract an attribute value out of an openssl X509_NAME object identified by NID

Arp::System::Commons::Security::Certificate::GetSubjectSerialNumber
String GetSubjectSerialNumber(void) const
return the serialnumber of the subject as string

Arp::System::Commons::Security::Certificate::GetPemData
std::vector< byte > GetPemData(void) const
returns the certificate encoded in PEM format

Arp::System::Commons::Security::Certificate::LoadFromMemory
int LoadFromMemory(const std::vector< byte > &data, int offset=0)
loads the certificate from memory. byte vector can be PEM or DER encoded

Arp::System::Commons::Security::Certificate::GetSubject
String GetSubject(void) const
returns the subject of the x.509 certificate as string (rfc2253 formatted)

Arp::System::Commons::Security::Certificate::GetValidityNotBefore
DateTime GetValidityNotBefore(void) const
returns the notBefore field of the x.509 as DateTime object

Arp::System::Commons::Security::Certificate::Certificate
Certificate(void)
Constructs an empty Certificate instance to be loaded from file or memory.

Arp::System::Commons::Security::Certificate::GetDerData
std::vector< byte > GetDerData(void) const
returns the certificate encoded in DER format

Arp::System::Commons::Security::Certificate::LoadFromFile
void LoadFromFile(const String &filename)
loads the certificate from a file. File can be PEM or DER encoded

Arp::System::Commons::Security::Certificate::GetValidityNotAfterAsn1
Asn1Time GetValidityNotAfterAsn1(void) const
returns the notAfter field of the x.509 as Asn1Time object

Arp::System::Commons::Security::Certificate::GetIssuerCommonName
String GetIssuerCommonName(void) const
returns the common name of the issuer

Arp::System::Commons::Security::Certificate::GetFilename
const String & GetFilename(void) const
returns the filename were this x.509 certificate was loaded from
Definition: Certificate.hpp:180

Arp::System::Commons::Security::Certificate::HexString
static String HexString(ASN1_INTEGER *integer)
static function convert an openssl ASN1_INTEGER to hexadecimal String representation

Arp::System::Commons::Security::Certificate::GetIssuer
String GetIssuer(void) const
returns the issuer of the x.509 certificate as string (rfc2253 formatted)

Arp::System::Commons::Security::Certificate::GetIdentifier
const String & GetIdentifier(void) const
returns an unique identifier for this certificate as string (sha256 hash of the x....

Arp::System::Commons::Security::Certificate::Certificate
Certificate(const Certificate &arg)
Copy constructor.

Arp::System::Commons::Security::Internal::OpenSslBio
Definition: OpenSslBio.hpp:14

Arp::System::Commons::Security::ItemInfo
Definition: ItemInfo.hpp:12

Arp::System::Acf::ComponentCategory::System
@ System
System components used by the System, Device, Plc or Io domains.

Arp
Root namespace for the PLCnext API