// Copyright (C) 2020 The Qt Company Ltd. // SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only #ifndef QSSLCERTIFICATE_H #define QSSLCERTIFICATE_H #ifdef verify #undef verify #endif #include #include #include #include #include #include #include #include QT_BEGIN_NAMESPACE class QDateTime; class QIODevice; class QSslError; class QSslKey; class QSslCertificateExtension; class QSslCertificate; // qHash is a friend, but we can't use default arguments for friends (§8.3.6.4) Q_NETWORK_EXPORT size_t qHash(const QSslCertificate &key, size_t seed = 0) noexcept; class QSslCertificatePrivate; class Q_NETWORK_EXPORT QSslCertificate { public: enum SubjectInfo { Organization, CommonName, LocalityName, OrganizationalUnitName, CountryName, StateOrProvinceName, DistinguishedNameQualifier, SerialNumber, EmailAddress }; enum class PatternSyntax { RegularExpression, Wildcard, FixedString }; explicit QSslCertificate(QIODevice *device, QSsl::EncodingFormat format = QSsl::Pem); explicit QSslCertificate(const QByteArray &data = QByteArray(), QSsl::EncodingFormat format = QSsl::Pem); QSslCertificate(const QSslCertificate &other); ~QSslCertificate(); QSslCertificate &operator=(QSslCertificate &&other) noexcept { swap(other); return *this; } QSslCertificate &operator=(const QSslCertificate &other); void swap(QSslCertificate &other) noexcept { d.swap(other.d); } bool operator==(const QSslCertificate &other) const; inline bool operator!=(const QSslCertificate &other) const { return !operator==(other); } bool isNull() const; bool isBlacklisted() const; bool isSelfSigned() const; void clear(); // Certificate info QByteArray version() const; QByteArray serialNumber() const; QByteArray digest(QCryptographicHash::Algorithm algorithm = QCryptographicHash::Md5) const; QStringList issuerInfo(SubjectInfo info) const; QStringList issuerInfo(const QByteArray &attribute) const; QStringList subjectInfo(SubjectInfo info) const; QStringList subjectInfo(const QByteArray &attribute) const; QString issuerDisplayName() const; QString subjectDisplayName() const; QList subjectInfoAttributes() const; QList issuerInfoAttributes() const; QMultiMap subjectAlternativeNames() const; QDateTime effectiveDate() const; QDateTime expiryDate() const; #ifndef QT_NO_SSL QSslKey publicKey() const; #endif QList extensions() const; QByteArray toPem() const; QByteArray toDer() const; QString toText() const; static QList fromPath(const QString &path, QSsl::EncodingFormat format = QSsl::Pem, PatternSyntax syntax = PatternSyntax::FixedString); static QList fromDevice( QIODevice *device, QSsl::EncodingFormat format = QSsl::Pem); static QList fromData( const QByteArray &data, QSsl::EncodingFormat format = QSsl::Pem); #ifndef QT_NO_SSL static QList verify(const QList &certificateChain, const QString &hostName = QString()); static bool importPkcs12(QIODevice *device, QSslKey *key, QSslCertificate *cert, QList *caCertificates = nullptr, const QByteArray &passPhrase=QByteArray()); #endif Qt::HANDLE handle() const; private: QExplicitlySharedDataPointer d; friend class QTlsBackend; friend Q_NETWORK_EXPORT size_t qHash(const QSslCertificate &key, size_t seed) noexcept; }; Q_DECLARE_SHARED(QSslCertificate) #ifndef QT_NO_DEBUG_STREAM class QDebug; Q_NETWORK_EXPORT QDebug operator<<(QDebug debug, const QSslCertificate &certificate); Q_NETWORK_EXPORT QDebug operator<<(QDebug debug, QSslCertificate::SubjectInfo info); #endif QT_END_NAMESPACE QT_DECL_METATYPE_EXTERN(QSslCertificate, Q_NETWORK_EXPORT) #endif