#include <x509path.h>

Public Types
typedef Certificate_Status_Code	Code

Public Member Functions
const CertificatePathStatusCodes &	all_statuses () const

const std::vector< X509_Certificate > &	cert_path () const

bool	no_warnings () const

	Path_Validation_Result (Certificate_Status_Code status)

	Path_Validation_Result (CertificatePathStatusCodes status, std::vector< X509_Certificate > &&cert_chain)

Certificate_Status_Code	result () const

std::string	result_string () const

bool	successful_validation () const

const X509_Certificate &	trust_root () const

CertificatePathStatusCodes	warnings () const

std::string	warnings_string () const

Static Public Member Functions
static const char *	status_string (Certificate_Status_Code code)

Detailed Description

Represents the result of a PKIX path validation

Definition at line 157 of file x509path.h.

Member Typedef Documentation

◆ Code

Certificate_Status_Code Botan::Path_Validation_Result::Code

Definition at line 159 of file x509path.h.

Constructor & Destructor Documentation

◆ Path_Validation_Result() [1/2]

Botan::Path_Validation_Result::Path_Validation_Result	(	CertificatePathStatusCodes	status,
		std::vector< X509_Certificate > &&	cert_chain )

Create a Path_Validation_Result

Parameters

status	list of validation status codes
cert_chain	the certificate chain that was validated

Definition at line 1028 of file x509path.cpp.

                                                                                         :
      m_all_status(std::move(status)),
      m_warnings(find_warnings(m_all_status)),
      m_cert_path(std::move(cert_chain)),
      m_overall(PKIX::overall_status(m_all_status)) {}

◆ Path_Validation_Result() [2/2]

Botan::Path_Validation_Result::Path_Validation_Result ( Certificate_Status_Code status )

inlineexplicit

Create a Path_Validation_Result

Parameters

status validation status code

Definition at line 225 of file x509path.h.

225: m_overall(status) {}

Member Function Documentation

◆ all_statuses()

const CertificatePathStatusCodes & Botan::Path_Validation_Result::all_statuses ( ) const

inline

Returns: a set of status codes for each certificate in the chain

Definition at line 191 of file x509path.h.

191{ return m_all_status; }

◆ cert_path()

const std::vector< X509_Certificate > & Botan::Path_Validation_Result::cert_path ( ) const

inline

Returns: the full path from subject to trust root This path may be empty

Definition at line 171 of file x509path.h.

171{ return m_cert_path; }

◆ no_warnings()

bool Botan::Path_Validation_Result::no_warnings ( ) const

Returns: true iff no warnings occured during validation

Definition at line 1051 of file x509path.cpp.

                                               {
   for(const auto& status_set_i : m_warnings) {
      if(!status_set_i.empty()) {
         return false;
      }
   }
   return true;
}

◆ result()

Certificate_Status_Code Botan::Path_Validation_Result::result ( ) const

inline

Returns: overall validation result code

Definition at line 186 of file x509path.h.

186{ return m_overall; }

Referenced by result_string(), successful_validation(), and trust_root().

◆ result_string()

std::string Botan::Path_Validation_Result::result_string ( ) const

Returns: string representation of the validation result

Definition at line 1064 of file x509path.cpp.

                                                      {
   return status_string(result());
}

References result(), and status_string().

Referenced by Botan::TLS::Callbacks::tls_verify_cert_chain().

◆ status_string()

const char * Botan::Path_Validation_Result::status_string ( Certificate_Status_Code code )

static

Parameters

code	validation status code

Returns: corresponding validation status message

Definition at line 1068 of file x509path.cpp.

                                                                              {
   if(const char* s = to_string(code)) {
      return s;
   }
 
   return "Unknown error";
}

References Botan::to_string().

Referenced by result_string(), and warnings_string().

◆ successful_validation()

bool Botan::Path_Validation_Result::successful_validation ( ) const

Returns: true iff the validation was successful

Definition at line 1046 of file x509path.cpp.

                                                         {
   return (result() == Certificate_Status_Code::VERIFIED || result() == Certificate_Status_Code::OCSP_RESPONSE_GOOD ||
           result() == Certificate_Status_Code::VALID_CRL_CHECKED);
}

References Botan::OCSP_RESPONSE_GOOD, result(), Botan::VALID_CRL_CHECKED, and Botan::VERIFIED.

Referenced by Botan::TLS::Callbacks::tls_verify_cert_chain(), and Botan::x509_path_validate().

◆ trust_root()

const X509_Certificate & Botan::Path_Validation_Result::trust_root ( ) const

Returns: the trust root of the validation if successful throws an exception if the validation failed

Definition at line 1035 of file x509path.cpp.

                                                                 {
   if(m_cert_path.empty()) {
      throw Invalid_State("Path_Validation_Result::trust_root no path set");
   }
   if(result() != Certificate_Status_Code::VERIFIED) {
      throw Invalid_State("Path_Validation_Result::trust_root meaningless with invalid status");
   }
 
   return m_cert_path[m_cert_path.size() - 1];
}

References result(), and Botan::VERIFIED.

◆ warnings()

CertificatePathStatusCodes Botan::Path_Validation_Result::warnings ( ) const

Returns: the subset of status codes that are warnings

Definition at line 1060 of file x509path.cpp.

                                                                  {
   return m_warnings;
}

◆ warnings_string()

std::string Botan::Path_Validation_Result::warnings_string ( ) const

Returns: string representation of the warnings

Definition at line 1076 of file x509path.cpp.

                                                        {
   const std::string sep(", ");
   std::ostringstream oss;
   for(size_t i = 0; i < m_warnings.size(); i++) {
      for(auto code : m_warnings[i]) {
         oss << "[" << std::to_string(i) << "] " << status_string(code) << sep;
      }
   }
 
   std::string res = oss.str();
   // remove last sep
   if(res.size() >= sep.size()) {
      res = res.substr(0, res.size() - sep.size());
   }
   return res;
}

References status_string().

The documentation for this class was generated from the following files:

src/lib/x509/x509path.h
src/lib/x509/x509path.cpp

Public Types

Public Member Functions

Static Public Member Functions

Detailed Description

Member Typedef Documentation

◆ Code

Constructor & Destructor Documentation

◆ Path_Validation_Result() [1/2]

◆ Path_Validation_Result() [2/2]

Member Function Documentation

◆ all_statuses()

◆ cert_path()

◆ no_warnings()

◆ result()

◆ result_string()

◆ status_string()

◆ successful_validation()

◆ trust_root()

◆ warnings()

◆ warnings_string()