doxygen/certstor__macos_8h_source.html

/*

* Certificate Store

* (C) 1999-2019 Jack Lloyd

* (C) 2019      René Meusel

*

* Botan is released under the Simplified BSD License (see license.txt)

*/


#ifndef BOTAN_CERT_STORE_SYSTEM_MACOS_H_

#define BOTAN_CERT_STORE_SYSTEM_MACOS_H_


#include <memory>


#include <botan/certstor.h>


namespace Botan {


class Certificate_Store_MacOS_Impl;


/**

* Certificate Store that is backed by the system trust store on macOS. This

* opens a handle to the macOS keychain and serves certificate queries directly

* from there.

*/


class BOTAN_PUBLIC_API(2, 10) Certificate_Store_MacOS final : public Certificate_Store {

   public:

      Certificate_Store_MacOS();


      Certificate_Store_MacOS(const Certificate_Store_MacOS&) = default;

      Certificate_Store_MacOS(Certificate_Store_MacOS&&) = default;

      Certificate_Store_MacOS& operator=(const Certificate_Store_MacOS&) = default;

      Certificate_Store_MacOS& operator=(Certificate_Store_MacOS&&) = default;


      /**

      * @return DNs for all certificates managed by the store

      */

      std::vector<X509_DN> all_subjects() const override;


      /**

      * Find a certificate by Subject DN and (optionally) key identifier

      * @return the first certificate that matches

      */

      std::optional<X509_Certificate> find_cert(const X509_DN& subject_dn,

                                                const std::vector<uint8_t>& key_id) const override;


      /**

      * Find all certificates with a given Subject DN.

      * Subject DN and even the key identifier might not be unique.

      */

      std::vector<X509_Certificate> find_all_certs(const X509_DN& subject_dn,

                                                   const std::vector<uint8_t>& key_id) const override;


      /**

      * Find a certificate by searching for one with a matching SHA-1 hash of

      * public key.

      * @return a matching certificate or nullptr otherwise

      */

      std::optional<X509_Certificate> find_cert_by_pubkey_sha1(const std::vector<uint8_t>& key_hash) const override;


      /**

       * @throws Not_Implemented

       */

      std::optional<X509_Certificate> find_cert_by_raw_subject_dn_sha256(

         const std::vector<uint8_t>& subject_hash) const override;


      /**

       * Fetching CRLs is not supported by the keychain on macOS. This will

       * always return an empty list.

       */

      std::optional<X509_CRL> find_crl_for(const X509_Certificate& subject) const override;


   private:

      std::shared_ptr<Certificate_Store_MacOS_Impl> m_impl;

};


}  // namespace Botan


#endif

BOTAN_PUBLIC_API
#define BOTAN_PUBLIC_API(maj, min)
Definition api.h:19

Botan::Certificate_Store_MacOS
Definition certstor_macos.h:25

Botan::Certificate_Store_MacOS::operator=
Certificate_Store_MacOS & operator=(Certificate_Store_MacOS &&)=default

Botan::Certificate_Store_MacOS::Certificate_Store_MacOS
Certificate_Store_MacOS(Certificate_Store_MacOS &&)=default

Botan::Certificate_Store_MacOS::Certificate_Store_MacOS
Certificate_Store_MacOS(const Certificate_Store_MacOS &)=default

Botan::Certificate_Store_MacOS::operator=
Certificate_Store_MacOS & operator=(const Certificate_Store_MacOS &)=default

Botan::Certificate_Store
Definition certstor.h:20

Botan::X509_Certificate
Definition x509cert.h:36

Botan::X509_DN
Definition pkix_types.h:40

final
int(* final)(unsigned char *, CTX *)
Definition commoncrypto_hash.cpp:29

Botan
Definition alg_id.cpp:13