api_docs_2025-0/Certificate_8hpp_source.html

//

//  Copyright Phoenix Contact GmbH & Co. KG

//

#pragma once

#include "Arp/System/Core/Arp.h"

#include "Arp/System/Commons/Logging.h"

#include "Arp/System/Commons/Security/Asn1Time.hpp"

#include "Arp/System/Commons/Security/ItemInfo.hpp"

#include "Arp/System/Commons/Security/Internal/OpenSslBio.hpp"

#include <map>

#include <vector>


#include <openssl/x509.h>

#include <openssl/x509v3.h>


using namespace Arp::System::Commons::Security::Internal;


namespace Arp { namespace System { namespace Commons { namespace Security

{


class Certificate : private Loggable<Certificate>

{

public: // construction/destruction

    Certificate(void);

    Certificate(const String& filename);

    Certificate(const std::vector<byte>& pemOrDerEncoding);

    explicit Certificate(X509* cert);


    Certificate(const Certificate& arg);

    Certificate(Certificate&& arg) noexcept;

    Certificate& operator=(const Certificate& arg);

    Certificate& operator=(Certificate&& arg) noexcept;

    virtual ~Certificate(void);


public: // operators

    operator X509*() const;


public: // static operations

    static String Rfc2253Format(X509_NAME* name);

    static String GetAttributeValueByNid(X509_NAME *name, int nid);

    static String HexString(ASN1_INTEGER* integer);


public: // setter/getter operations

    const String& GetFilename(void) const;

    String GetSerialNumberHex(void) const;

    String GetSubject(void) const;

    String GetSubjectCommonName(void) const;

    String GetSubjectSerialNumber(void) const;

    String GetIssuer(void) const;

    String GetIssuerCommonName(void) const;

    const String& GetIdentifier(void) const;

    DateTime GetValidityNotBefore(void) const;

    Asn1Time GetValidityNotBeforeAsn1(void) const;

    DateTime GetValidityNotAfter(void) const;

    Asn1Time GetValidityNotAfterAsn1(void) const;

    std::vector<byte> GetPemData(void) const;

    std::vector<byte> GetDerData(void) const;

    ItemInfo GetItemInfo(void) const;


public: // operations

    void LoadFromFile(const String& filename);

    int LoadFromMemory(const std::vector<byte>& data, int offset = 0);

    bool TryLoadFromMemory(const std::vector<byte>& data, int& offset);

    bool TryLoadFromBio(OpenSslBio& bio, int& offset);

    void SaveToFilePem(const String& filename) const;

    void AppendToFilePem(const String& filename) const;

    void SaveToFileDer(const String& filename) const;


private: // static methods


private: // methods

    bool loadPemFile(OpenSslBio& pBio);

    bool loadDerFile(OpenSslBio& pBio);

    void generateIdentifier(void);


protected: // fields

    String identifier;

    X509* internalCertificate;


private: // fields

    String filename;


private: // static fields

};


}}}} // end of namespace Arp::System::Commons::Security

Arp.h

Arp::Base::Core::DateTime
This class contains date and time informations.
Definition: DateTime.hpp:27

Arp::Base::Core::String
This class represents the Arp String. The implementation is based on std::string.
Definition: String.hpp:39

Arp::System::Commons::Diagnostics::Logging::Loggable
Derive from this class to inherit logging functionality.
Definition: Loggable.hxx:28

Arp::System::Commons::Security::Asn1Time
Helper class to handle ASN1Time objects in x.509 Certificates
Definition: Asn1Time.hpp:21

Arp::System::Commons::Security::Certificate
Class to handle x.509 certificates
Definition: Certificate.hpp:25

Arp::System::Commons::Security::Certificate::Rfc2253Format
static String Rfc2253Format(X509_NAME *name)
static function to convert an openssl X509_NAME to an rfc2253 string
Definition: Certificate.cpp:377

Arp::System::Commons::Security::Certificate::HexString
static String HexString(ASN1_INTEGER *integer)
static function convert an openssl ASN1_INTEGER to hexadecimal String representation
Definition: Certificate.cpp:355

Arp::System::Commons::Security::Certificate::GetValidityNotAfter
DateTime GetValidityNotAfter(void) const
returns the notAfter field of the x.509 as DateTime object
Definition: Certificate.cpp:464

Arp::System::Commons::Security::Certificate::GetValidityNotBeforeAsn1
Asn1Time GetValidityNotBeforeAsn1(void) const
returns the notBefore field of the x.509 as Asn1Time object
Definition: Certificate.cpp:457

Arp::System::Commons::Security::Certificate::GetAttributeValueByNid
static String GetAttributeValueByNid(X509_NAME *name, int nid)
static function to extract an attribute value out of an openssl X509_NAME object identified by NID
Definition: Certificate.cpp:427

Arp::System::Commons::Security::Certificate::TryLoadFromMemory
bool TryLoadFromMemory(const std::vector< byte > &data, int &offset)
tries to load the certificate from memory. byte vector can be PEM or DER encoded
Definition: Certificate.cpp:161

Arp::System::Commons::Security::Certificate::AppendToFilePem
void AppendToFilePem(const String &filename) const
appends the certificate in PEM format to filename
Definition: Certificate.cpp:254

Arp::System::Commons::Security::Certificate::GetSerialNumberHex
String GetSerialNumberHex(void) const
returns the filename were this x.509 certificate was loaded from
Definition: Certificate.cpp:342

Arp::System::Commons::Security::Certificate::GetSubjectCommonName
String GetSubjectCommonName(void) const
returns the common name of the subject
Definition: Certificate.cpp:390

Arp::System::Commons::Security::Certificate::SaveToFilePem
void SaveToFilePem(const String &filename) const
saves the certificate in PEM format to filename
Definition: Certificate.cpp:239

Arp::System::Commons::Security::Certificate::SaveToFileDer
void SaveToFileDer(const String &filename) const
saves the certificate in DER format to filename
Definition: Certificate.cpp:269

Arp::System::Commons::Security::Certificate::GetItemInfo
ItemInfo GetItemInfo(void) const
returns ItemInfo for the Certificate
Definition: Certificate.cpp:543

Arp::System::Commons::Security::Certificate::TryLoadFromBio
bool TryLoadFromBio(OpenSslBio &bio, int &offset)
tries to load the certificate from OpenSslBio.
Definition: Certificate.cpp:216

Arp::System::Commons::Security::Certificate::GetSubjectSerialNumber
String GetSubjectSerialNumber(void) const
return the serialnumber of the subject as string
Definition: Certificate.cpp:397

Arp::System::Commons::Security::Certificate::operator=
Certificate & operator=(const Certificate &arg)
Assignment operator.
Definition: Certificate.cpp:90

Arp::System::Commons::Security::Certificate::GetPemData
std::vector< byte > GetPemData(void) const
returns the certificate encoded in PEM format
Definition: Certificate.cpp:499

Arp::System::Commons::Security::Certificate::LoadFromMemory
int LoadFromMemory(const std::vector< byte > &data, int offset=0)
loads the certificate from memory. byte vector can be PEM or DER encoded
Definition: Certificate.cpp:197

Arp::System::Commons::Security::Certificate::GetSubject
String GetSubject(void) const
returns the subject of the x.509 certificate as string (rfc2253 formatted)
Definition: Certificate.cpp:370

Arp::System::Commons::Security::Certificate::GetValidityNotBefore
DateTime GetValidityNotBefore(void) const
returns the notBefore field of the x.509 as DateTime object
Definition: Certificate.cpp:451

Arp::System::Commons::Security::Certificate::~Certificate
virtual ~Certificate(void)
Destructs this instance and frees all resources.
Definition: Certificate.cpp:67

Arp::System::Commons::Security::Certificate::Certificate
Certificate(void)
Constructs an empty Certificate instance to be loaded from file or memory.
Definition: Certificate.cpp:26

Arp::System::Commons::Security::Certificate::GetDerData
std::vector< byte > GetDerData(void) const
returns the certificate encoded in DER format
Definition: Certificate.cpp:521

Arp::System::Commons::Security::Certificate::LoadFromFile
void LoadFromFile(const String &filename)
loads the certificate from a file. File can be PEM or DER encoded
Definition: Certificate.cpp:124

Arp::System::Commons::Security::Certificate::GetValidityNotAfterAsn1
Asn1Time GetValidityNotAfterAsn1(void) const
returns the notAfter field of the x.509 as Asn1Time object
Definition: Certificate.cpp:470

Arp::System::Commons::Security::Certificate::GetIssuerCommonName
String GetIssuerCommonName(void) const
returns the common name of the issuer
Definition: Certificate.cpp:411

Arp::System::Commons::Security::Certificate::GetFilename
const String & GetFilename(void) const
returns the filename were this x.509 certificate was loaded from
Definition: Certificate.cpp:336

Arp::System::Commons::Security::Certificate::GetIssuer
String GetIssuer(void) const
returns the issuer of the x.509 certificate as string (rfc2253 formatted)
Definition: Certificate.cpp:404

Arp::System::Commons::Security::Certificate::GetIdentifier
const String & GetIdentifier(void) const
returns an unique identifier for this certificate as string (sha256 hash of the x....
Definition: Certificate.cpp:476

Arp::System::Commons::Security::Internal::OpenSslBio
Definition: OpenSslBio.hpp:14

Arp::System::Commons::Security::ItemInfo
Definition: ItemInfo.hpp:12

Arp
Root namespace for the PLCnext API