doxygen/certstor__macos_8h_source.html

/*

* Certificate Store

* (C) 1999-2019 Jack Lloyd

* (C) 2019      René Meusel

*

* Botan is released under the Simplified BSD License (see license.txt)

*/


#ifndef BOTAN_CERT_STORE_SYSTEM_MACOS_H_

#define BOTAN_CERT_STORE_SYSTEM_MACOS_H_


#include <memory>


#include <botan/certstor.h>


namespace Botan {


class Certificate_Store_MacOS_Impl;


/**

* Certificate Store that is backed by the system trust store on macOS. This

* opens a handle to the macOS keychain and serves certificate queries directly

* from there.

*/

class BOTAN_PUBLIC_API(2, 10) Certificate_Store_MacOS final : public Certificate_Store

   {

   public:

      Certificate_Store_MacOS();


      Certificate_Store_MacOS(const Certificate_Store_MacOS&) = default;

      Certificate_Store_MacOS(Certificate_Store_MacOS&&) = default;

      Certificate_Store_MacOS& operator=(const Certificate_Store_MacOS&) = default;

      Certificate_Store_MacOS& operator=(Certificate_Store_MacOS&&) = default;


      /**

      * @return DNs for all certificates managed by the store

      */

      std::vector<X509_DN> all_subjects() const override;


      /**

      * Find a certificate by Subject DN and (optionally) key identifier

      * @return the first certificate that matches

      */

      std::optional<X509_Certificate> find_cert(

         const X509_DN& subject_dn,

         const std::vector<uint8_t>& key_id) const override;


      /**

      * Find all certificates with a given Subject DN.

      * Subject DN and even the key identifier might not be unique.

      */

      std::vector<X509_Certificate> find_all_certs(

               const X509_DN& subject_dn, const std::vector<uint8_t>& key_id) const override;


      /**

      * Find a certificate by searching for one with a matching SHA-1 hash of

      * public key.

      * @return a matching certificate or nullptr otherwise

      */

      std::optional<X509_Certificate>

      find_cert_by_pubkey_sha1(const std::vector<uint8_t>& key_hash) const override;


      /**

       * @throws Not_Implemented

       */

      std::optional<X509_Certificate>

      find_cert_by_raw_subject_dn_sha256(const std::vector<uint8_t>& subject_hash) const override;


      /**

       * Fetching CRLs is not supported by the keychain on macOS. This will

       * always return an empty list.

       */

      std::optional<X509_CRL> find_crl_for(const X509_Certificate& subject) const override;


   private:

      std::shared_ptr<Certificate_Store_MacOS_Impl> m_impl;

   };


}


#endif

Botan::Certificate_Store_MacOS
Definition: certstor_macos.h:26

Botan::Certificate_Store_MacOS::operator=
Certificate_Store_MacOS & operator=(Certificate_Store_MacOS &&)=default

Botan::Certificate_Store_MacOS::Certificate_Store_MacOS
Certificate_Store_MacOS(Certificate_Store_MacOS &&)=default

Botan::Certificate_Store_MacOS::Certificate_Store_MacOS
Certificate_Store_MacOS(const Certificate_Store_MacOS &)=default

Botan::Certificate_Store_MacOS::operator=
Certificate_Store_MacOS & operator=(const Certificate_Store_MacOS &)=default

Botan::Certificate_Store
Definition: certstor.h:21

Botan::X509_Certificate
Definition: x509cert.h:38

Botan::X509_DN
Definition: pkix_types.h:38

final
int(* final)(unsigned char *, CTX *)
Definition: commoncrypto_hash.cpp:29

BOTAN_PUBLIC_API
#define BOTAN_PUBLIC_API(maj, min)
Definition: compiler.h:31

Botan
Definition: alg_id.cpp:12