[thirdparty/squid.git] / src / ssl / cert_validate_message.h

/*
 * $Id$
 */

#ifndef SQUID_SSL_CERT_VALIDATE_MESSAGE_H
#define SQUID_SSL_CERT_VALIDATE_MESSAGE_H

#include "ssl/support.h"
#include "ssl/crtd_message.h"
#include <vector>

namespace Ssl 
{


class ValidateCertificate {
public:
    STACK_OF(X509) *peerCerts;
    Errors *errors;
    std::string domainName;
    ValidateCertificate() : peerCerts(NULL), errors(NULL) {}
};

class ValidateCertificateResponse {
public:
    class  ErrorItem{
    public:
        ErrorItem(): id(0), error_no(SSL_ERROR_NONE), cert(NULL) {}
        ErrorItem(const ErrorItem &);
        ~ErrorItem();
        ErrorItem & operator = (const ErrorItem &);
        void setCert(X509 *);
        void clear();
        int id; ///<  The id of the error
        ssl_error_t error_no; ///< The SSL error code
        std::string error_reason; ///< A string describing the error
        X509 *cert; ///< The broken certificate
    };

    typedef std::vector<ErrorItem> Errors;

    ValidateCertificateResponse() {}
    /// Search in errors list for an error with id=errorId
    /// If know found a new ErrorItem added with the given id;
    ErrorItem &getError(int errorId);
    Errors errors; ///< The list of parsed errors
};

class CertValidateMessage: public CrtdMessage {
private:
    class CertItem {
    public:
        std::string name;
        X509 *cert;
        CertItem(): cert(NULL) {}
        CertItem(const CertItem &);
        CertItem & operator = (const CertItem &);
        ~CertItem();
        void setCert(X509 *);
    };
public:
    CertValidateMessage(): CrtdMessage() {}
    void composeRequest(ValidateCertificate const &vcert);
    bool parseResponse(ValidateCertificateResponse &resp, STACK_OF(X509) *peerCerts, std::string &error);
    X509 *getCertByName(std::vector<CertItem> const &, std::string const & name); ///< search in a list of CertItems for a certificate

    /// String code for "cert_validate" messages
    static const std::string code_cert_validate;
    /// Parameter name for passing intended domain name
    static const std::string param_domain;
    /// Parameter name for passing SSL errors
    static const std::string param_error;
    /// Parameter name for passing SSL certificates
    static const std::string param_cert; 
    /// Parameter name for passing the major SSL error
    static const std::string param_error_name; 
    /// Parameter name for passing the error reason
    static const std::string param_error_reason; 
    /// Parameter name for passing the error cert ID
    static const std::string param_error_cert;
};

}//namespace Ssl
#endif // SQUID_SSL_CERT_VALIDATE_MESSAGE_H
Commit	Line	Data
a1f04d64 AR	1	/*
	2	* $Id$
	3	*/
	4
	5	#ifndef SQUID_SSL_CERT_VALIDATE_MESSAGE_H
	6	#define SQUID_SSL_CERT_VALIDATE_MESSAGE_H
	7
	8	#include "ssl/support.h"
	9	#include "ssl/crtd_message.h"
	10	#include <vector>
	11
	12	namespace Ssl
	13	{
	14
	15
	16	class ValidateCertificate {
	17	public:
	18	STACK_OF(X509) *peerCerts;
	19	Errors *errors;
	20	std::string domainName;
	21	ValidateCertificate() : peerCerts(NULL), errors(NULL) {}
	22	};
	23
	24	class ValidateCertificateResponse {
	25	public:
	26	class ErrorItem{
	27	public:
3a7d782f	28	ErrorItem(): id(0), error_no(SSL_ERROR_NONE), cert(NULL) {}
a1f04d64 AR	29	ErrorItem(const ErrorItem &);
	30	~ErrorItem();
	31	ErrorItem & operator = (const ErrorItem &);
	32	void setCert(X509 *);
	33	void clear();
3a7d782f CT	34	int id; ///< The id of the error
	35	ssl_error_t error_no; ///< The SSL error code
	36	std::string error_reason; ///< A string describing the error
	37	X509 *cert; ///< The broken certificate
a1f04d64 AR	38	};
a1f04d64 AR	39
3a7d782f CT	40	typedef std::vector<ErrorItem> Errors;
	41
	42	ValidateCertificateResponse() {}
	43	/// Search in errors list for an error with id=errorId
	44	/// If know found a new ErrorItem added with the given id;
	45	ErrorItem &getError(int errorId);
	46	Errors errors; ///< The list of parsed errors
	47	};
	48
	49	class CertValidateMessage: public CrtdMessage {
	50	private:
a1f04d64 AR	51	class CertItem {
	52	public:
	53	std::string name;
	54	X509 *cert;
	55	CertItem(): cert(NULL) {}
	56	CertItem(const CertItem &);
	57	CertItem & operator = (const CertItem &);
	58	~CertItem();
	59	void setCert(X509 *);
	60	};
a1f04d64 AR	61	public:
	62	CertValidateMessage(): CrtdMessage() {}
	63	void composeRequest(ValidateCertificate const &vcert);
77dce8a5	64	bool parseResponse(ValidateCertificateResponse &resp, STACK_OF(X509) *peerCerts, std::string &error);
3a7d782f	65	X509 *getCertByName(std::vector<CertItem> const &, std::string const & name); ///< search in a list of CertItems for a certificate
a1f04d64 AR	66
	67	/// String code for "cert_validate" messages
	68	static const std::string code_cert_validate;
	69	/// Parameter name for passing intended domain name
	70	static const std::string param_domain;
	71	/// Parameter name for passing SSL errors
	72	static const std::string param_error;
	73	/// Parameter name for passing SSL certificates
	74	static const std::string param_cert;
	75	/// Parameter name for passing the major SSL error
	76	static const std::string param_error_name;
	77	/// Parameter name for passing the error reason
	78	static const std::string param_error_reason;
	79	/// Parameter name for passing the error cert ID
	80	static const std::string param_error_cert;
	81	};
	82
	83	}//namespace Ssl
	84	#endif // SQUID_SSL_CERT_VALIDATE_MESSAGE_H