Botan 3.5.0
Crypto and TLS for C&
|
Name Constraints. More...
#include <pkix_types.h>
Public Member Functions | |
const std::vector< GeneralSubtree > & | excluded () const |
bool | is_excluded (const X509_Certificate &cert, bool reject_unknown) const |
bool | is_permitted (const X509_Certificate &cert, bool reject_unknown) const |
NameConstraints () | |
NameConstraints (std::vector< GeneralSubtree > &&permitted_subtrees, std::vector< GeneralSubtree > &&excluded_subtrees) | |
const std::vector< GeneralSubtree > & | permitted () const |
Name Constraints.
Wraps the Name Constraints associated with a certificate.
Definition at line 358 of file pkix_types.h.
|
inline |
Creates an empty name NameConstraints.
Definition at line 363 of file pkix_types.h.
Botan::NameConstraints::NameConstraints | ( | std::vector< GeneralSubtree > && | permitted_subtrees, |
std::vector< GeneralSubtree > && | excluded_subtrees ) |
Creates NameConstraints from a list of permitted and excluded subtrees.
permitted_subtrees | names for which the certificate is permitted |
excluded_subtrees | names for which the certificate is not permitted |
Definition at line 289 of file name_constraint.cpp.
|
inline |
Definition at line 383 of file pkix_types.h.
Referenced by is_excluded(), Botan::X509_Certificate::to_string(), and Botan::Cert_Extension::Name_Constraints::validate().
bool Botan::NameConstraints::is_excluded | ( | const X509_Certificate & | cert, |
bool | reject_unknown ) const |
Return true if any of the names in the certificate are excluded
Definition at line 438 of file name_constraint.cpp.
References Botan::X509_DN::count(), Botan::GeneralName::DN, Botan::GeneralName::DNS, excluded(), Botan::GeneralName::IPv4, name, Botan::GeneralName::Other, Botan::GeneralName::RFC822, Botan::string_to_ipv4(), Botan::X509_Certificate::subject_alt_name(), Botan::X509_Certificate::subject_dn(), Botan::X509_Certificate::subject_info(), and Botan::GeneralName::URI.
Referenced by Botan::Cert_Extension::Name_Constraints::validate().
bool Botan::NameConstraints::is_permitted | ( | const X509_Certificate & | cert, |
bool | reject_unknown ) const |
Return true if all of the names in the certificate are permitted
Definition at line 321 of file name_constraint.cpp.
References Botan::X509_DN::count(), Botan::GeneralName::DN, Botan::GeneralName::DNS, Botan::GeneralName::IPv4, name, Botan::GeneralName::Other, permitted(), Botan::GeneralName::RFC822, Botan::string_to_ipv4(), Botan::X509_Certificate::subject_alt_name(), Botan::X509_Certificate::subject_dn(), Botan::X509_Certificate::subject_info(), and Botan::GeneralName::URI.
Referenced by Botan::Cert_Extension::Name_Constraints::validate().
|
inline |
Definition at line 376 of file pkix_types.h.
Referenced by is_permitted(), Botan::X509_Certificate::to_string(), and Botan::Cert_Extension::Name_Constraints::validate().