#include <qx509_openssl_p.h>

Inheritance diagram for QTlsPrivate::X509CertificateOpenSSL:

Collaboration diagram for QTlsPrivate::X509CertificateOpenSSL:

Public Member Functions
	X509CertificateOpenSSL ()

	~X509CertificateOpenSSL ()

bool	isEqual (const X509Certificate &rhs) const override

bool	isSelfSigned () const override

QMultiMap< QSsl::AlternativeNameEntryType, QString >	subjectAlternativeNames () const override

TlsKey *	publicKey () const override

QByteArray	toPem () const override

QByteArray	toDer () const override

QString	toText () const override

Qt::HANDLE	handle () const override

size_t	hash (size_t seed) const noexcept override

Public Member Functions inherited from QTlsPrivate::X509CertificateBase
bool	isNull () const override

QByteArray	version () const override

QByteArray	serialNumber () const override

QStringList	issuerInfo (QSslCertificate::SubjectInfo info) const override

QStringList	issuerInfo (const QByteArray &attribute) const override

QStringList	subjectInfo (QSslCertificate::SubjectInfo info) const override

QStringList	subjectInfo (const QByteArray &attribute) const override

QList< QByteArray >	subjectInfoAttributes () const override

QList< QByteArray >	issuerInfoAttributes () const override

QDateTime	effectiveDate () const override

QDateTime	expiryDate () const override

qsizetype	numberOfExtensions () const override

QString	oidForExtension (qsizetype index) const override

QString	nameForExtension (qsizetype index) const override

QVariant	valueForExtension (qsizetype index) const override

bool	isExtensionCritical (qsizetype index) const override

bool	isExtensionSupported (qsizetype index) const override

Public Member Functions inherited from QTlsPrivate::X509Certificate
virtual	~X509Certificate ()

virtual bool	isEqual (const X509Certificate &other) const =0

virtual bool	isNull () const =0

virtual bool	isSelfSigned () const =0

virtual QByteArray	version () const =0

virtual QByteArray	serialNumber () const =0

virtual QStringList	issuerInfo (QSslCertificate::SubjectInfo subject) const =0

virtual QStringList	issuerInfo (const QByteArray &attribute) const =0

virtual QStringList	subjectInfo (QSslCertificate::SubjectInfo subject) const =0

virtual QStringList	subjectInfo (const QByteArray &attribute) const =0

virtual QList< QByteArray >	subjectInfoAttributes () const =0

virtual QList< QByteArray >	issuerInfoAttributes () const =0

virtual QMultiMap< QSsl::AlternativeNameEntryType, QString >	subjectAlternativeNames () const =0

virtual QDateTime	effectiveDate () const =0

virtual QDateTime	expiryDate () const =0

virtual TlsKey *	publicKey () const

virtual qsizetype	numberOfExtensions () const =0

virtual QString	oidForExtension (qsizetype i) const =0

virtual QString	nameForExtension (qsizetype i) const =0

virtual QVariant	valueForExtension (qsizetype i) const =0

virtual bool	isExtensionCritical (qsizetype i) const =0

virtual bool	isExtensionSupported (qsizetype i) const =0

virtual QByteArray	toPem () const =0

virtual QByteArray	toDer () const =0

virtual QString	toText () const =0

virtual Qt::HANDLE	handle () const =0

virtual size_t	hash (size_t seed) const noexcept=0

Static Public Member Functions
static QSslCertificate	certificateFromX509 (X509 *x)

static QList< QSslCertificate >	stackOfX509ToQSslCertificates (STACK_OF(X509) *x509)

static QSslErrorEntry	errorEntryFromStoreContext (X509_STORE_CTX *ctx)

static QList< QSslError >	verify (const QList< QSslCertificate > &chain, const QString &hostName)

static QList< QSslError >	verify (const QList< QSslCertificate > &caCertificates, const QList< QSslCertificate > &certificateChain, const QString &hostName)

static QList< QSslCertificate >	certificatesFromPem (const QByteArray &pem, int count)

static QList< QSslCertificate >	certificatesFromDer (const QByteArray &der, int count)

static bool	importPkcs12 (QIODevice device, QSslKey key, QSslCertificate cert, QList< QSslCertificate > caCertificates, const QByteArray &passPhrase)

static QSslError	openSSLErrorToQSslError (int errorCode, const QSslCertificate &cert)

Static Public Member Functions inherited from QTlsPrivate::X509CertificateBase
static QByteArray	subjectInfoToString (QSslCertificate::SubjectInfo info)

static bool	matchLineFeed (const QByteArray &pem, int *offset)

Additional Inherited Members
Protected Member Functions inherited from QTlsPrivate::X509CertificateBase
bool	validIndex (qsizetype index) const

Protected Attributes inherited from QTlsPrivate::X509CertificateBase
bool	null = true

QByteArray	versionString

QByteArray	serialNumberString

QMultiMap< QByteArray, QString >	issuerInfoEntries

QMultiMap< QByteArray, QString >	subjectInfoEntries

QDateTime	notValidAfter

QDateTime	notValidBefore

QList< X509CertificateExtension >	extensions

Detailed Description

Definition at line 36 of file qx509_openssl_p.h.

Constructor & Destructor Documentation

◆ X509CertificateOpenSSL()

QTlsPrivate::X509CertificateOpenSSL::X509CertificateOpenSSL ( )

default

◆ ~X509CertificateOpenSSL()

QTlsPrivate::X509CertificateOpenSSL::~X509CertificateOpenSSL ( )

Definition at line 399 of file qx509_openssl.cpp.

References q_X509_free().

Here is the call graph for this function:

Member Function Documentation

◆ certificateFromX509()

QSslCertificate QTlsPrivate::X509CertificateOpenSSL::certificateFromX509 ( X509 * x )

static

Definition at line 539 of file qx509_openssl.cpp.

References QByteArray::chop(), QByteArray::data(), QByteArray::length(), QByteArray::number(), q_X509_dup(), q_X509_get_issuer_name(), q_X509_get_serialNumber(), q_X509_get_subject_name(), q_X509_get_version(), q_X509_getm_notAfter(), q_X509_getm_notBefore(), QByteArray::reserve(), QByteArray::rightJustified(), and QTlsPrivate::X509CertificateBase::serialNumber().

Referenced by certificatesFromDer(), certificatesFromPem(), QTlsPrivate::TlsCryptographOpenSSL::emitErrorFromCallback(), importPkcs12(), stackOfX509ToQSslCertificates(), QTlsPrivate::TlsCryptographOpenSSL::storePeerCertificates(), and QTlsPrivate::TlsCryptographOpenSSL::transmit().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ certificatesFromDer()

QList< QSslCertificate > QTlsPrivate::X509CertificateOpenSSL::certificatesFromDer	(	const QByteArray &	der,
		int	count
	)

static

Definition at line 754 of file qx509_openssl.cpp.

References certificateFromX509(), QByteArray::data(), q_d2i_X509(), q_X509_free(), QByteArray::size(), and QList< T >::size().

Referenced by QTlsBackendOpenSSL::X509DerReader().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ certificatesFromPem()

QList< QSslCertificate > QTlsPrivate::X509CertificateOpenSSL::certificatesFromPem	(	const QByteArray &	pem,
		int	count
	)

static

Definition at line 720 of file qx509_openssl.cpp.

References BEGINCERTSTRING, certificateFromX509(), QByteArray::data(), ENDCERTSTRING, QByteArray::fromBase64(), QByteArray::fromRawData(), QByteArray::indexOf(), QTlsPrivate::X509CertificateBase::matchLineFeed(), q_d2i_X509(), q_X509_free(), QByteArray::size(), and QList< T >::size().

Referenced by QTlsBackendOpenSSL::X509PemReader().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ errorEntryFromStoreContext()

QSslErrorEntry QTlsPrivate::X509CertificateOpenSSL::errorEntryFromStoreContext ( X509_STORE_CTX * ctx )

static

Definition at line 592 of file qx509_openssl.cpp.

References Q_ASSERT, q_X509_STORE_CTX_get_error(), and q_X509_STORE_CTX_get_error_depth().

Referenced by QTlsPrivate::TlsCryptographOpenSSL::emitErrorFromCallback(), QTlsPrivate::q_X509Callback(), dtlscallbacks::q_X509DtlsCallback(), and QTlsPrivate::qt_X509Callback().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ handle()

Qt::HANDLE QTlsPrivate::X509CertificateOpenSSL::handle ( ) const

overridevirtual

This function is expected to return a pointer to the native certificate handle, if there is one, else nullptr.

Implements QTlsPrivate::X509Certificate.

Definition at line 521 of file qx509_openssl.cpp.

Referenced by verify().

Here is the caller graph for this function:

◆ hash()

size_t QTlsPrivate::X509CertificateOpenSSL::hash ( size_t seed ) const

overridevirtualnoexcept

This function is expected to return the hash value for this certificate, using seed to seed the calculation.

Implements QTlsPrivate::X509Certificate.

Definition at line 526 of file qx509_openssl.cpp.

References q_EVP_sha1(), q_X509_digest(), qHashBits(), and seed.

Here is the call graph for this function:

◆ importPkcs12()

bool QTlsPrivate::X509CertificateOpenSSL::importPkcs12	(	QIODevice *	device,
		QSslKey *	key,
		QSslCertificate *	cert,
		QList< QSslCertificate > *	caCertificates,
		const QByteArray &	passPhrase
	)

static

Definition at line 774 of file qx509_openssl.cpp.

References cert, certificateFromX509(), QByteArray::constData(), device, Q_ASSERT, q_BIO_free(), q_BIO_new_mem_buf(), q_d2i_PKCS12_bio(), q_ERR_error_string(), q_ERR_get_error(), q_EVP_PKEY_free(), q_OPENSSL_sk_pop_free(), q_PKCS12_free(), q_PKCS12_parse(), q_X509_free(), qCWarning, qScopeGuard(), QByteArray::size(), STACK_OF(), and stackOfX509ToQSslCertificates().

Referenced by QTlsBackendOpenSSL::X509Pkcs12Reader().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ isEqual()

bool QTlsPrivate::X509CertificateOpenSSL::isEqual ( const X509Certificate & other ) const

overridevirtual

This function is expected to return true if this certificate is the same as the other, false otherwise. Used by QSslCertificate's comparison operators.

Implements QTlsPrivate::X509Certificate.

Definition at line 405 of file qx509_openssl.cpp.

References QTlsBackendOpenSSL::logAndClearErrorQueue(), other(), q_X509_cmp(), and ret.

Here is the call graph for this function:

◆ isSelfSigned()

bool QTlsPrivate::X509CertificateOpenSSL::isSelfSigned ( ) const

overridevirtual

This function is needed to implement QSslCertificate::isSelfSigned()

See also: QSslCertificate::isSelfSigned()

Implements QTlsPrivate::X509Certificate.

Definition at line 419 of file qx509_openssl.cpp.

References q_X509_check_issued().

Here is the call graph for this function:

◆ openSSLErrorToQSslError()

QSslError QTlsPrivate::X509CertificateOpenSSL::openSSLErrorToQSslError	(	int	errorCode,
		const QSslCertificate &	cert
	)

static

Definition at line 837 of file qx509_openssl.cpp.

References cert, QSslError::CertificateExpired, QSslError::CertificateNotYetValid, QSslError::CertificateRejected, QSslError::CertificateRevoked, QSslError::CertificateSignatureFailed, QSslError::CertificateUntrusted, error, QSslError::InvalidCaCertificate, QSslError::InvalidNotAfterField, QSslError::InvalidNotBeforeField, QSslError::InvalidPurpose, QSslError::PathLengthExceeded, QSslError::SelfSignedCertificate, QSslError::SelfSignedCertificateInChain, QSslError::UnableToDecodeIssuerPublicKey, QSslError::UnableToDecryptCertificateSignature, QSslError::UnableToGetIssuerCertificate, QSslError::UnableToGetLocalIssuerCertificate, QSslError::UnableToVerifyFirstCertificate, and QSslError::UnspecifiedError.

Referenced by QTlsPrivate::TlsCryptographOpenSSL::emitErrorFromCallback(), QTlsPrivate::TlsCryptographOpenSSL::startHandshake(), and verify().

Here is the caller graph for this function:

◆ publicKey()

TlsKey * QTlsPrivate::X509CertificateOpenSSL::publicKey ( ) const

overridevirtual

Returns the certificate subject's public key.

Reimplemented from QTlsPrivate::X509Certificate.

Definition at line 489 of file qx509_openssl.cpp.

References QTlsPrivate::TlsKeyOpenSSL::publicKeyFromX509().

Here is the call graph for this function:

◆ stackOfX509ToQSslCertificates()

QList< QSslCertificate > QTlsPrivate::X509CertificateOpenSSL::stackOfX509ToQSslCertificates ( STACK_OF(X509) * x509 )

static

Definition at line 578 of file qx509_openssl.cpp.

References certificateFromX509(), i, q_sk_X509_num, and q_sk_X509_value.

Referenced by importPkcs12(), and QTlsPrivate::TlsCryptographOpenSSL::storePeerCertificates().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ subjectAlternativeNames()

QMultiMap< QSsl::AlternativeNameEntryType, QString > QTlsPrivate::X509CertificateOpenSSL::subjectAlternativeNames ( ) const

overridevirtual

This function is expected to return the list of alternative subject names for this certificate. The alternative names typically contain host names, optionally with wildcards, that are valid for this certificate.

See also: subjectInfo()

Implements QTlsPrivate::X509Certificate.

Definition at line 428 of file qx509_openssl.cpp.

References QSsl::DnsEntry, QSsl::EmailEntry, QString::fromLatin1(), i, QSsl::IpAddressEntry, QHostAddress::isNull(), q_ASN1_STRING_get0_data(), q_ASN1_STRING_length(), q_GENERAL_NAME_free(), q_OPENSSL_sk_pop_free(), q_sk_GENERAL_NAME_num, q_sk_GENERAL_NAME_value, q_X509_get_ext_d2i(), qFromBigEndian(), STACK_OF(), and QHostAddress::toString().

Here is the call graph for this function:

◆ toDer()

QByteArray QTlsPrivate::X509CertificateOpenSSL::toDer ( ) const

overridevirtual

This function is expected to return this certificate converted to a DER (binary) encoded representation.

Implements QTlsPrivate::X509Certificate.

Definition at line 505 of file qx509_openssl.cpp.

References QSsl::Der.

◆ toPem()

QByteArray QTlsPrivate::X509CertificateOpenSSL::toPem ( ) const

overridevirtual

This function is expected to return this certificate converted to a PEM (Base64) encoded representation.

Implements QTlsPrivate::X509Certificate.

Definition at line 497 of file qx509_openssl.cpp.

References QSsl::Pem.

◆ toText()

QString QTlsPrivate::X509CertificateOpenSSL::toText ( ) const

overridevirtual

This function is expected to return this certificate converted to a human-readable text representation.

Implements QTlsPrivate::X509Certificate.

Definition at line 513 of file qx509_openssl.cpp.

◆ verify() [1/2]

QList< QSslError > QTlsPrivate::X509CertificateOpenSSL::verify	(	const QList< QSslCertificate > &	caCertificates,
		const QList< QSslCertificate > &	certificateChain,
		const QString &	hostName
	)

static

Definition at line 615 of file qx509_openssl.cpp.

References cert, QSslError::CertificateBlacklisted, QDateTime::currentDateTimeUtc(), error, handle(), QSslError::HostNameMismatch, QString::isEmpty(), now, openSSLErrorToQSslError(), q_OPENSSL_sk_free(), q_OPENSSL_sk_new_null(), q_OPENSSL_sk_push(), q_X509_STORE_add_cert(), q_X509_STORE_CTX_free(), q_X509_STORE_CTX_init(), q_X509_STORE_CTX_new(), q_X509_STORE_free(), q_X509_STORE_new(), q_X509_STORE_set_ex_data(), q_X509_STORE_set_verify_cb(), q_X509_verify_cert(), qCWarning, QTlsPrivate::qt_X509Callback(), QList< T >::reserve(), QList< T >::size(), STACK_OF(), QSslError::UnspecifiedError, QList< T >::value(), and void.

Here is the call graph for this function:

◆ verify() [2/2]

QList< QSslError > QTlsPrivate::X509CertificateOpenSSL::verify	(	const QList< QSslCertificate > &	chain,
		const QString &	hostName
	)

static

Definition at line 599 of file qx509_openssl.cpp.

References QList< T >::append(), QSslConfiguration::caCertificates(), QSslConfiguration::defaultConfiguration(), QSslSocketPrivate::rootCertOnDemandLoadingSupported(), QSslSocketPrivate::systemCaCertificates(), and verify().

Referenced by verify(), and QTlsBackendOpenSSL::X509Verifier().

Here is the call graph for this function:

Here is the caller graph for this function:

The documentation for this class was generated from the following files:

qtbase/src/plugins/tls/openssl/qx509_openssl_p.h
qtbase/src/plugins/tls/openssl/qx509_openssl.cpp

Public Member Functions

Static Public Member Functions

Additional Inherited Members

Detailed Description

Constructor & Destructor Documentation

◆ X509CertificateOpenSSL()

◆ ~X509CertificateOpenSSL()

Member Function Documentation

◆ certificateFromX509()

◆ certificatesFromDer()

◆ certificatesFromPem()

◆ errorEntryFromStoreContext()

◆ handle()

◆ hash()

◆ importPkcs12()

◆ isEqual()

◆ isSelfSigned()

◆ openSSLErrorToQSslError()

◆ publicKey()

◆ stackOfX509ToQSslCertificates()

◆ subjectAlternativeNames()

◆ toDer()

◆ toPem()

◆ toText()

◆ verify() [1/2]

◆ verify() [2/2]