FCL/sf/mw/qt: util/src/network/ssl/qsslcertificate.cpp@f7bc934e204c (annotated)

7 f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	1	/****************************************************************************
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	2	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	3	** Copyright (C) 2010 Nokia Corporation and/or its subsidiary(-ies).
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	4	** All rights reserved.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	5	** Contact: Nokia Corporation (qt-info@nokia.com)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	6	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	7	** This file is part of the QtNetwork module of the Qt Toolkit.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	8	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	9	** $QT_BEGIN_LICENSE:LGPL$
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	10	** No Commercial Usage
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	11	** This file contains pre-release code and may not be distributed.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	12	** You may use this file in accordance with the terms and conditions
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	13	** contained in the Technology Preview License Agreement accompanying
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	14	** this package.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	15	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	16	** GNU Lesser General Public License Usage
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	17	** Alternatively, this file may be used under the terms of the GNU Lesser
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	18	** General Public License version 2.1 as published by the Free Software
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	19	** Foundation and appearing in the file LICENSE.LGPL included in the
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	20	** packaging of this file. Please review the following information to
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	21	** ensure the GNU Lesser General Public License version 2.1 requirements
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	22	** will be met: http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	23	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	24	** In addition, as a special exception, Nokia gives you certain additional
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	25	** rights. These rights are described in the Nokia Qt LGPL Exception
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	26	** version 1.1, included in the file LGPL_EXCEPTION.txt in this package.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	27	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	28	** If you have questions regarding the use of this file, please contact
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	29	** Nokia at qt-info@nokia.com.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	30	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	31	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	32	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	33	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	34	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	35	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	36	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	37	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	38	** $QT_END_LICENSE$
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	39	**
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	40	****************************************************************************/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	41
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	42
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	43	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	44	\class QSslCertificate
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	45	\brief The QSslCertificate class provides a convenient API for an X509 certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	46	\since 4.3
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	47
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	48	\reentrant
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	49	\ingroup network
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	50	\ingroup ssl
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	51	\inmodule QtNetwork
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	52
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	53	QSslCertificate stores an X509 certificate, and is commonly used
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	54	to verify the identity and store information about the local host,
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	55	a remotely connected peer, or a trusted third party Certificate
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	56	Authority.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	57
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	58	There are many ways to construct a QSslCertificate. The most
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	59	common way is to call QSslSocket::peerCertificate(), which returns
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	60	a QSslCertificate object, or QSslSocket::peerCertificateChain(),
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	61	which returns a list of them. You can also load certificates from
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	62	a DER (binary) or PEM (Base64) encoded bundle, typically stored as
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	63	one or more local files, or in a Qt Resource.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	64
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	65	You can call isNull() to check if your certificate is null. By
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	66	default, QSslCertificate constructs a null certificate. To check
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	67	if the certificate is valid, call isValid(). A null certificate is
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	68	invalid, but an invalid certificate is not necessarily null. If
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	69	you want to reset all contents in a certificate, call clear().
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	70
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	71	After loading a certificate, you can find information about the
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	72	certificate, its subject, and its issuer, by calling one of the
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	73	many accessor functions, including version(), serialNumber(),
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	74	issuerInfo() and subjectInfo(). You can call effectiveDate() and
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	75	expiryDate() to check when the certificate starts being
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	76	effective and when it expires.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	77	The publicKey() function returns the certificate
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	78	subject's public key as a QSslKey. You can call issuerInfo() or
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	79	subjectInfo() to get detailed information about the certificate
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	80	issuer and its subject.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	81
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	82	Internally, QSslCertificate is stored as an X509 structure. You
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	83	can access this handle by calling handle(), but the results are
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	84	likely to not be portable.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	85
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	86	\sa QSslSocket, QSslKey, QSslCipher, QSslError
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	87	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	88
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	89	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	90	\enum QSslCertificate::SubjectInfo
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	91
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	92	Describes keys that you can pass to QSslCertificate::issuerInfo() or
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	93	QSslCertificate::subjectInfo() to get information about the certificate
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	94	issuer or subject.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	95
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	96	\value Organization "O" The name of the organization.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	97
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	98	\value CommonName "CN" The common name; most often this is used to store
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	99	the host name.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	100
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	101	\value LocalityName "L" The locality.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	102
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	103	\value OrganizationalUnitName "OU" The organizational unit name.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	104
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	105	\value CountryName "C" The country.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	106
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	107	\value StateOrProvinceName "ST" The state or province.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	108	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	109
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	110	#include "qsslsocket_openssl_symbols_p.h"
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	111	#include "qsslcertificate.h"
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	112	#include "qsslcertificate_p.h"
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	113	#include "qsslkey.h"
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	114	#include "qsslkey_p.h"
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	115
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	116	#include <QtCore/qatomic.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	117	#include <QtCore/qdatetime.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	118	#include <QtCore/qdebug.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	119	#include <QtCore/qdir.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	120	#include <QtCore/qdiriterator.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	121	#include <QtCore/qfile.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	122	#include <QtCore/qfileinfo.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	123	#include <QtCore/qmap.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	124	#include <QtCore/qstring.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	125	#include <QtCore/qstringlist.h>
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	126
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	127	QT_BEGIN_NAMESPACE
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	128
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	129	// forward declaration
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	130	static QMap<QString, QString> _q_mapFromOnelineName(char *name);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	131
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	132	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	133	Constructs a QSslCertificate by reading \a format encoded data
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	134	from \a device and using the first certificate found. You can
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	135	later call isNull() to see if \a device contained a certificate,
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	136	and if this certificate was loaded successfully.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	137	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	138	QSslCertificate::QSslCertificate(QIODevice *device, QSsl::EncodingFormat format)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	139	: d(new QSslCertificatePrivate)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	140	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	141	QSslSocketPrivate::ensureInitialized();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	142	if (device)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	143	d->init(device->readAll(), format);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	144	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	145
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	146	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	147	Constructs a QSslCertificate by parsing the \a format encoded
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	148	\a data and using the first available certificate found. You can
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	149	later call isNull() to see if \a data contained a certificate,
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	150	and if this certificate was loaded successfully.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	151	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	152	QSslCertificate::QSslCertificate(const QByteArray &data, QSsl::EncodingFormat format)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	153	: d(new QSslCertificatePrivate)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	154	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	155	QSslSocketPrivate::ensureInitialized();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	156	d->init(data, format);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	157	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	158
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	159	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	160	Constructs an identical copy of \a other.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	161	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	162	QSslCertificate::QSslCertificate(const QSslCertificate &other) : d(other.d)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	163	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	164	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	165
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	166	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	167	Destroys the QSslCertificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	168	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	169	QSslCertificate::~QSslCertificate()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	170	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	171	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	172
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	173	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	174	Copies the contents of \a other into this certificate, making the two
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	175	certificates identical.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	176	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	177	QSslCertificate &QSslCertificate::operator=(const QSslCertificate &other)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	178	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	179	d = other.d;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	180	return *this;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	181	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	182
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	183	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	184	Returns true if this certificate is the same as \a other; otherwise
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	185	returns false.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	186	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	187	bool QSslCertificate::operator==(const QSslCertificate &other) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	188	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	189	if (d == other.d)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	190	return true;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	191	if (d->null && other.d->null)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	192	return true;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	193	if (d->x509 && other.d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	194	return q_X509_cmp(d->x509, other.d->x509) == 0;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	195	return false;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	196	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	197
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	198	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	199	\fn bool QSslCertificate::operator!=(const QSslCertificate &other) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	200
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	201	Returns true if this certificate is not the same as \a other; otherwise
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	202	returns false.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	203	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	204
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	205	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	206	Returns true if this is a null certificate (i.e., a certificate
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	207	with no contents); otherwise returns false.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	208
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	209	By default, QSslCertificate constructs a null certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	210
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	211	\sa isValid(), clear()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	212	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	213	bool QSslCertificate::isNull() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	214	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	215	return d->null;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	216	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	217
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	218	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	219	Returns true if this certificate is valid; otherwise returns
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	220	false.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	221
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	222	Note: Currently, this function only checks that the current
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	223	data-time is within the date-time range during which the
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	224	certificate is considered valid. No other checks are
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	225	currently performed.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	226
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	227	\sa isNull()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	228	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	229	bool QSslCertificate::isValid() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	230	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	231	const QDateTime currentTime = QDateTime::currentDateTime();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	232	return currentTime >= d->notValidBefore && currentTime <= d->notValidAfter;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	233	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	234
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	235	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	236	Clears the contents of this certificate, making it a null
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	237	certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	238
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	239	\sa isNull()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	240	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	241	void QSslCertificate::clear()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	242	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	243	if (isNull())
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	244	return;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	245	d = new QSslCertificatePrivate;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	246	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	247
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	248	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	249	Returns the certificate's version string.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	250	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	251	QByteArray QSslCertificate::version() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	252	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	253	if (d->versionString.isEmpty() && d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	254	d->versionString =
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	255	QByteArray::number(qlonglong(q_ASN1_INTEGER_get(d->x509->cert_info->version)) + 1);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	256
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	257	return d->versionString;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	258	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	259
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	260	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	261	Returns the certificate's serial number string in decimal format.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	262	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	263	QByteArray QSslCertificate::serialNumber() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	264	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	265	if (d->serialNumberString.isEmpty() && d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	266	d->serialNumberString =
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	267	QByteArray::number(qlonglong(q_ASN1_INTEGER_get(d->x509->cert_info->serialNumber)));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	268
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	269	return d->serialNumberString;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	270	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	271
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	272	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	273	Returns a cryptographic digest of this certificate. By default,
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	274	an MD5 digest will be generated, but you can also specify a
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	275	custom \a algorithm.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	276	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	277	QByteArray QSslCertificate::digest(QCryptographicHash::Algorithm algorithm) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	278	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	279	return QCryptographicHash::hash(toDer(), algorithm);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	280	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	281
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	282	static QString _q_SubjectInfoToString(QSslCertificate::SubjectInfo info)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	283	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	284	QString str;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	285	switch (info) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	286	case QSslCertificate::Organization: str = QLatin1String("O"); break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	287	case QSslCertificate::CommonName: str = QLatin1String("CN"); break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	288	case QSslCertificate::LocalityName: str = QLatin1String("L"); break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	289	case QSslCertificate::OrganizationalUnitName: str = QLatin1String("OU"); break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	290	case QSslCertificate::CountryName: str = QLatin1String("C"); break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	291	case QSslCertificate::StateOrProvinceName: str = QLatin1String("ST"); break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	292	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	293	return str;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	294	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	295
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	296	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	297	\fn QString QSslCertificate::issuerInfo(SubjectInfo subject) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	298
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	299	Returns the issuer information for the \a subject from the
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	300	certificate, or an empty string if there is no information for
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	301	\a subject in the certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	302
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	303	\sa subjectInfo()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	304	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	305	QString QSslCertificate::issuerInfo(SubjectInfo info) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	306	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	307	// lazy init
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	308	if (d->issuerInfo.isEmpty() && d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	309	d->issuerInfo =
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	310	_q_mapFromOnelineName(q_X509_NAME_oneline(q_X509_get_issuer_name(d->x509), 0, 0));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	311
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	312	return d->issuerInfo.value(_q_SubjectInfoToString(info));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	313	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	314
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	315	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	316	Returns the issuer information for \a tag from the certificate,
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	317	or an empty string if there is no information for \a tag in the
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	318	certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	319
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	320	\sa subjectInfo()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	321	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	322	QString QSslCertificate::issuerInfo(const QByteArray &tag) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	323	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	324	// lazy init
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	325	if (d->issuerInfo.isEmpty() && d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	326	d->issuerInfo =
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	327	_q_mapFromOnelineName(q_X509_NAME_oneline(q_X509_get_issuer_name(d->x509), 0, 0));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	328
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	329	return d->issuerInfo.value(QString::fromLatin1(tag));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	330	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	331
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	332	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	333
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	334	\fn QString QSslCertificate::subjectInfo(SubjectInfo subject) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	335
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	336	Returns the information for the \a subject, or an empty string if
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	337	there is no information for \a subject in the certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	338
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	339	\sa issuerInfo()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	340	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	341	QString QSslCertificate::subjectInfo(SubjectInfo info) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	342	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	343	// lazy init
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	344	if (d->subjectInfo.isEmpty() && d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	345	d->subjectInfo =
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	346	_q_mapFromOnelineName(q_X509_NAME_oneline(q_X509_get_subject_name(d->x509), 0, 0));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	347
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	348	return d->subjectInfo.value(_q_SubjectInfoToString(info));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	349	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	350
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	351	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	352	Returns the subject information for \a tag, or an empty string if
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	353	there is no information for \a tag in the certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	354
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	355	\sa issuerInfo()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	356	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	357	QString QSslCertificate::subjectInfo(const QByteArray &tag) const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	358	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	359	// lazy init
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	360	if (d->subjectInfo.isEmpty() && d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	361	d->subjectInfo =
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	362	_q_mapFromOnelineName(q_X509_NAME_oneline(q_X509_get_subject_name(d->x509), 0, 0));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	363
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	364	return d->subjectInfo.value(QString::fromLatin1(tag));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	365	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	366
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	367	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	368	Returns the list of alternative subject names for this
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	369	certificate. The alternate subject names typically contain host
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	370	names, optionally with wildcards, that are valid for this
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	371	certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	372
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	373	These names are tested against the connected peer's host name, if
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	374	either the subject information for \l CommonName doesn't define a
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	375	valid host name, or the subject info name doesn't match the peer's
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	376	host name.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	377
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	378	\sa subjectInfo()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	379	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	380	QMultiMap<QSsl::AlternateNameEntryType, QString> QSslCertificate::alternateSubjectNames() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	381	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	382	QMultiMap<QSsl::AlternateNameEntryType, QString> result;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	383
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	384	if (!d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	385	return result;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	386
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	387	STACK_OF(GENERAL_NAME) altNames = (STACK_OF(GENERAL_NAME))q_X509_get_ext_d2i(d->x509, NID_subject_alt_name, 0, 0);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	388
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	389	if (altNames) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	390	for (int i = 0; i < q_sk_GENERAL_NAME_num(altNames); ++i) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	391	const GENERAL_NAME *genName = q_sk_GENERAL_NAME_value(altNames, i);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	392	if (genName->type != GEN_DNS && genName->type != GEN_EMAIL)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	393	continue;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	394
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	395	int len = q_ASN1_STRING_length(genName->d.ia5);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	396	if (len < 0 \|\| len >= 8192) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	397	// broken name
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	398	continue;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	399	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	400
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	401	const char altNameStr = reinterpret_cast<const char >(q_ASN1_STRING_data(genName->d.ia5));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	402	const QString altName = QString::fromLatin1(altNameStr, len);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	403	if (genName->type == GEN_DNS)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	404	result.insert(QSsl::DnsEntry, altName);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	405	else if (genName->type == GEN_EMAIL)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	406	result.insert(QSsl::EmailEntry, altName);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	407	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	408	q_sk_pop_free((STACK)altNames, reinterpret_cast<void()(void*)>(q_sk_free));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	409	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	410
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	411	return result;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	412	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	413
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	414	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	415	Returns the date-time that the certificate becomes valid, or an
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	416	empty QDateTime if this is a null certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	417
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	418	\sa expiryDate()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	419	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	420	QDateTime QSslCertificate::effectiveDate() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	421	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	422	return d->notValidBefore;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	423	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	424
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	425	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	426	Returns the date-time that the certificate expires, or an empty
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	427	QDateTime if this is a null certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	428
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	429	\sa effectiveDate()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	430	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	431	QDateTime QSslCertificate::expiryDate() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	432	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	433	return d->notValidAfter;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	434	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	435
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	436	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	437	Returns a pointer to the native certificate handle, if there is
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	438	one, or a null pointer otherwise.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	439
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	440	You can use this handle, together with the native API, to access
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	441	extended information about the certificate.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	442
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	443	\warning Use of this function has a high probability of being
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	444	non-portable, and its return value may vary from platform to
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	445	platform or change from minor release to minor release.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	446	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	447	Qt::HANDLE QSslCertificate::handle() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	448	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	449	return Qt::HANDLE(d->x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	450	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	451
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	452	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	453	Returns the certificate subject's public key.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	454	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	455	QSslKey QSslCertificate::publicKey() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	456	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	457	if (!d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	458	return QSslKey();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	459
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	460	QSslKey key;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	461
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	462	key.d->type = QSsl::PublicKey;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	463	X509_PUBKEY *xkey = d->x509->cert_info->key;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	464	EVP_PKEY *pkey = q_X509_PUBKEY_get(xkey);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	465	Q_ASSERT(pkey);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	466
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	467	if (q_EVP_PKEY_type(pkey->type) == EVP_PKEY_RSA) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	468	key.d->rsa = q_EVP_PKEY_get1_RSA(pkey);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	469	key.d->algorithm = QSsl::Rsa;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	470	key.d->isNull = false;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	471	} else if (q_EVP_PKEY_type(pkey->type) == EVP_PKEY_DSA) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	472	key.d->dsa = q_EVP_PKEY_get1_DSA(pkey);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	473	key.d->algorithm = QSsl::Dsa;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	474	key.d->isNull = false;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	475	} else if (q_EVP_PKEY_type(pkey->type) == EVP_PKEY_DH) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	476	// DH unsupported
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	477	} else {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	478	// error?
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	479	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	480
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	481	q_EVP_PKEY_free(pkey);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	482	return key;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	483	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	484
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	485	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	486	Returns this certificate converted to a PEM (Base64) encoded
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	487	representation.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	488	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	489	QByteArray QSslCertificate::toPem() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	490	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	491	if (!d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	492	return QByteArray();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	493	return d->QByteArray_from_X509(d->x509, QSsl::Pem);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	494	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	495
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	496	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	497	Returns this certificate converted to a DER (binary) encoded
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	498	representation.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	499	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	500	QByteArray QSslCertificate::toDer() const
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	501	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	502	if (!d->x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	503	return QByteArray();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	504	return d->QByteArray_from_X509(d->x509, QSsl::Der);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	505	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	506
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	507	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	508	Searches all files in the \a path for certificates encoded in the
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	509	specified \a format and returns them in a list. \e must be a file or a
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	510	pattern matching one or more files, as specified by \a syntax.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	511
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	512	Example:
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	513
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	514	\snippet doc/src/snippets/code/src_network_ssl_qsslcertificate.cpp 0
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	515
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	516	\sa fromData()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	517	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	518	QList<QSslCertificate> QSslCertificate::fromPath(const QString &path,
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	519	QSsl::EncodingFormat format,
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	520	QRegExp::PatternSyntax syntax)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	521	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	522	// $, (,), *, +, ., ?, [, ,], ^, {, \| and }.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	523	int pos = -1;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	524	if (syntax == QRegExp::Wildcard)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	525	pos = path.indexOf(QRegExp(QLatin1String("[^\\][\\*\\?\\[\\]]")));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	526	else if (syntax != QRegExp::FixedString)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	527	pos = path.indexOf(QRegExp(QLatin1String("[^\\][\\$\$\$\\*\\+\\.\\?\\[\\]\\^\\{\\}\\\|]")));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	528	QString pathPrefix = path.left(pos); // == path if pos < 0
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	529	if (pos != -1)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	530	pathPrefix = pathPrefix.left(pathPrefix.lastIndexOf(QLatin1Char('/')));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	531
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	532	// Special case - if the prefix ends up being nothing, use "." instead and
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	533	// chop off the first two characters from the glob'ed paths.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	534	int startIndex = 0;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	535	if (pathPrefix.trimmed().isEmpty()) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	536	startIndex = 2;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	537	pathPrefix = QLatin1String(".");
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	538	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	539
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	540	// The path is a file.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	541	if (pos == -1 && QFileInfo(pathPrefix).isFile()) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	542	QFile file(pathPrefix);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	543	if (file.open(QIODevice::ReadOnly \| QIODevice::Text))
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	544	return QSslCertificate::fromData(file.readAll(),format);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	545	return QList<QSslCertificate>();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	546	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	547
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	548	// The path can be a file or directory.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	549	QList<QSslCertificate> certs;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	550	QRegExp pattern(path, Qt::CaseSensitive, syntax);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	551	QDirIterator it(pathPrefix, QDir::Files, QDirIterator::FollowSymlinks \| QDirIterator::Subdirectories);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	552	while (it.hasNext()) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	553	QString filePath = startIndex == 0 ? it.next() : it.next().mid(startIndex);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	554	if (!pattern.exactMatch(filePath))
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	555	continue;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	556
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	557	QFile file(filePath);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	558	if (file.open(QIODevice::ReadOnly \| QIODevice::Text))
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	559	certs += QSslCertificate::fromData(file.readAll(),format);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	560	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	561	return certs;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	562	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	563
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	564	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	565	Searches for and parses all certificates in \a device that are
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	566	encoded in the specified \a format and returns them in a list of
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	567	certificates.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	568
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	569	\sa fromData()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	570	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	571	QList<QSslCertificate> QSslCertificate::fromDevice(QIODevice *device, QSsl::EncodingFormat format)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	572	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	573	if (!device) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	574	qWarning("QSslCertificate::fromDevice: cannot read from a null device");
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	575	return QList<QSslCertificate>();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	576	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	577	return fromData(device->readAll(), format);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	578	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	579
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	580	/*!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	581	Searches for and parses all certificates in \a data that are
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	582	encoded in the specified \a format and returns them in a list of
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	583	certificates.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	584
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	585	\sa fromDevice()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	586	*/
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	587	QList<QSslCertificate> QSslCertificate::fromData(const QByteArray &data, QSsl::EncodingFormat format)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	588	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	589	return (format == QSsl::Pem)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	590	? QSslCertificatePrivate::certificatesFromPem(data)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	591	: QSslCertificatePrivate::certificatesFromDer(data);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	592	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	593
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	594	void QSslCertificatePrivate::init(const QByteArray &data, QSsl::EncodingFormat format)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	595	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	596	if (!data.isEmpty()) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	597	QList<QSslCertificate> certs = (format == QSsl::Pem)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	598	? certificatesFromPem(data, 1)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	599	: certificatesFromDer(data, 1);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	600	if (!certs.isEmpty()) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	601	this = certs.first().d;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	602	if (x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	603	x509 = q_X509_dup(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	604	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	605	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	606	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	607
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	608	#define BEGINCERTSTRING "-----BEGIN CERTIFICATE-----"
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	609	#define ENDCERTSTRING "-----END CERTIFICATE-----"
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	610
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	611	// ### refactor against QSsl::pemFromDer() etc. (to avoid redundant implementations)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	612	QByteArray QSslCertificatePrivate::QByteArray_from_X509(X509 *x509, QSsl::EncodingFormat format)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	613	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	614	if (!x509) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	615	qWarning("QSslSocketBackendPrivate::X509_to_QByteArray: null X509");
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	616	return QByteArray();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	617	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	618
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	619	// Use i2d_X509 to convert the X509 to an array.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	620	int length = q_i2d_X509(x509, 0);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	621	QByteArray array;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	622	array.resize(length);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	623	char *data = array.data();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	624	char **dataP = &data;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	625	unsigned char dataPu = (unsigned char )dataP;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	626	if (q_i2d_X509(x509, dataPu) < 0)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	627	return QByteArray();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	628
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	629	if (format == QSsl::Der)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	630	return array;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	631
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	632	// Convert to Base64 - wrap at 64 characters.
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	633	array = array.toBase64();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	634	QByteArray tmp;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	635	for (int i = 0; i <= array.size() - 64; i += 64) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	636	tmp += QByteArray::fromRawData(array.data() + i, 64);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	637	tmp += '\n';
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	638	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	639	if (int remainder = array.size() % 64) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	640	tmp += QByteArray::fromRawData(array.data() + array.size() - remainder, remainder);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	641	tmp += '\n';
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	642	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	643
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	644	return BEGINCERTSTRING "\n" + tmp + ENDCERTSTRING "\n";
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	645	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	646
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	647	static QMap<QString, QString> _q_mapFromOnelineName(char *name)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	648	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	649	QMap<QString, QString> info;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	650	QString infoStr = QString::fromLocal8Bit(name);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	651	q_CRYPTO_free(name);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	652
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	653	// ### The right-hand encoding seems to allow hex (Regulierungsbeh\xC8orde)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	654	//entry.replace(QLatin1String("\\x"), QLatin1String("%"));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	655	//entry = QUrl::fromPercentEncoding(entry.toLatin1());
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	656	// ### See RFC-4630 for more details!
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	657
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	658	QRegExp rx(QLatin1String("/([A-Za-z]+)=(.+)"));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	659
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	660	int pos = 0;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	661	while ((pos = rx.indexIn(infoStr, pos)) != -1) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	662	const QString name = rx.cap(1);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	663
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	664	QString value = rx.cap(2);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	665	const int valuePos = rx.pos(2);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	666
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	667	const int next = rx.indexIn(value);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	668	if (next == -1) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	669	info.insert(name, value);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	670	break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	671	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	672
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	673	value = value.left(next);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	674	info.insert(name, value);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	675	pos = valuePos + value.length();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	676	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	677
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	678	return info;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	679	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	680
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	681	QSslCertificate QSslCertificatePrivate::QSslCertificate_from_X509(X509 *x509)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	682	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	683	QSslCertificate certificate;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	684	if (!x509 \|\| !QSslSocket::supportsSsl())
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	685	return certificate;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	686
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	687	ASN1_TIME *nbef = q_X509_get_notBefore(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	688	ASN1_TIME *naft = q_X509_get_notAfter(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	689	certificate.d->notValidBefore = q_getTimeFromASN1(nbef);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	690	certificate.d->notValidAfter = q_getTimeFromASN1(naft);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	691	certificate.d->null = false;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	692	certificate.d->x509 = q_X509_dup(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	693
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	694	return certificate;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	695	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	696
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	697	static bool matchLineFeed(const QByteArray &pem, int *offset)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	698	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	699	char ch;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	700
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	701	// ignore extra whitespace at the end of the line
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	702	while (offset < pem.size() && (ch = pem.at(offset)) == ' ')
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	703	++*offset;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	704
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	705	if (ch == '\n') {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	706	*offset += 1;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	707	return true;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	708	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	709	if (ch == '\r' && pem.size() > (offset + 1) && pem.at(offset + 1) == '\n') {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	710	*offset += 2;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	711	return true;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	712	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	713	return false;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	714	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	715
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	716	QList<QSslCertificate> QSslCertificatePrivate::certificatesFromPem(const QByteArray &pem, int count)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	717	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	718	QList<QSslCertificate> certificates;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	719	QSslSocketPrivate::ensureInitialized();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	720
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	721	int offset = 0;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	722	while (count == -1 \|\| certificates.size() < count) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	723	int startPos = pem.indexOf(BEGINCERTSTRING, offset);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	724	if (startPos == -1)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	725	break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	726	startPos += sizeof(BEGINCERTSTRING) - 1;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	727	if (!matchLineFeed(pem, &startPos))
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	728	break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	729
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	730	int endPos = pem.indexOf(ENDCERTSTRING, startPos);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	731	if (endPos == -1)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	732	break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	733
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	734	offset = endPos + sizeof(ENDCERTSTRING) - 1;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	735	if (offset < pem.size() && !matchLineFeed(pem, &offset))
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	736	break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	737
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	738	QByteArray decoded = QByteArray::fromBase64(
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	739	QByteArray::fromRawData(pem.data() + startPos, endPos - startPos));
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	740	#if OPENSSL_VERSION_NUMBER >= 0x00908000L
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	741	const unsigned char data = (const unsigned char )decoded.data();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	742	#else
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	743	unsigned char data = (unsigned char )decoded.data();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	744	#endif
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	745
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	746	if (X509 *x509 = q_d2i_X509(0, &data, decoded.size())) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	747	certificates << QSslCertificate_from_X509(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	748	q_X509_free(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	749	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	750	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	751
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	752	return certificates;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	753	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	754
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	755	QList<QSslCertificate> QSslCertificatePrivate::certificatesFromDer(const QByteArray &der, int count)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	756	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	757	QList<QSslCertificate> certificates;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	758	QSslSocketPrivate::ensureInitialized();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	759
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	760
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	761	#if OPENSSL_VERSION_NUMBER >= 0x00908000L
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	762	const unsigned char data = (const unsigned char )der.data();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	763	#else
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	764	unsigned char data = (unsigned char )der.data();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	765	#endif
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	766	int size = der.size();
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	767
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	768	while (count == -1 \|\| certificates.size() < count) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	769	if (X509 *x509 = q_d2i_X509(0, &data, size)) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	770	certificates << QSslCertificate_from_X509(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	771	q_X509_free(x509);
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	772	} else {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	773	break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	774	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	775	size -= ((char *)data - der.data());
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	776	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	777
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	778	return certificates;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	779	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	780
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	781	#ifndef QT_NO_DEBUG_STREAM
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	782	QDebug operator<<(QDebug debug, const QSslCertificate &certificate)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	783	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	784	debug << "QSslCertificate("
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	785	<< certificate.version()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	786	<< ',' << certificate.serialNumber()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	787	<< ',' << certificate.digest().toBase64()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	788	<< ',' << certificate.issuerInfo(QSslCertificate::Organization)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	789	<< ',' << certificate.subjectInfo(QSslCertificate::Organization)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	790	<< ',' << certificate.alternateSubjectNames()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	791	#ifndef QT_NO_TEXTSTREAM
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	792	<< ',' << certificate.effectiveDate()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	793	<< ',' << certificate.expiryDate()
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	794	#endif
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	795	<< ')';
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	796	return debug;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	797	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	798	QDebug operator<<(QDebug debug, QSslCertificate::SubjectInfo info)
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	799	{
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	800	switch (info) {
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	801	case QSslCertificate::Organization: debug << "Organization"; break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	802	case QSslCertificate::CommonName: debug << "CommonName"; break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	803	case QSslCertificate::CountryName: debug << "CountryName"; break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	804	case QSslCertificate::LocalityName: debug << "LocalityName"; break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	805	case QSslCertificate::OrganizationalUnitName: debug << "OrganizationalUnitName"; break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	806	case QSslCertificate::StateOrProvinceName: debug << "StateOrProvinceName"; break;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	807	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	808	return debug;
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	809	}
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	810	#endif
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	811
f7bc934e204c 5cabc75a39ca2f064f70b40f72ed93c74c4dc19b eckhart.koppen@nokia.com parents: diff changeset	812	QT_END_NAMESPACE

author	eckhart.koppen@nokia.com
	Wed, 31 Mar 2010 11:06:36 +0300
changeset 7	f7bc934e204c
permissions	-rw-r--r--