<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="en_US" xml:lang="en_US"> <head> <title>kio/kssl: ksslcertificatefactory.cc Source File (kio/kssl)</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Style-Type" content="text/css" /> <meta http-equiv="pics-label" content='(pics-1.1 "http://www.icra.org/ratingsv02.html" comment "ICRAonline DE v2.0" l gen true for "http://www.kde.org" r (nz 1 vz 1 lz 1 oz 1 cb 1) "http://www.rsac.org/ratingsv01.html" l gen true for "http://www.kde.org" r (n 0 s 0 v 0 l 0))' /> <meta name="trademark" content="KDE e.V." /> <meta name="description" content="K Desktop Environment Homepage, KDE.org" /> <meta name="MSSmartTagsPreventParsing" content="true" /> <meta name="robots" content="all" /> <link rel="shortcut icon" href="../../../favicon.ico" /> <link rel="stylesheet" media="screen" type="text/css" title="APIDOX" href="doxygen.css" /> </head> <body> <div id="nav_header_top" align="right"> <a href="#content" class="doNotDisplay" accesskey="2">Skip to main content ::</a> <a href="../../.."><img id="nav_header_logo" alt="Home" align="left" src="../../../kde_gear_64.png" border="0" /></a> <span class="doNotDisplay">::</span> <div id="nav_header_title" align="left">KDE API Reference</div> </div> <div id="nav_header_bottom" align="right"> <span class="doNotDisplay">:: <a href="#navigation" accesskey="5">Skip to Link Menu</a><br/></span> <div id="nav_header_bottom_right" style="text-align: left;"> / <a href="../../..">API Reference</a> / <a href="../../html/index.html">kio</a> / <a href=".">kssl</a> </div> </div> <table id="main" border="0" cellpadding="0" cellspacing="0" width="100%"> <tr> <td valign="top" class="menuheader" height="0"></td> <td id="contentcolumn" valign="top" rowspan="2" > <div id="content" style="padding-top: 0px;"><div style="width:100%; margin: 0px; padding: 0px;"> <a name="content"></a> <!-- Generated by Doxygen 1.4.7 --> <h1>ksslcertificatefactory.cc</h1><div class="fragment"><pre class="fragment"><a name="l00001"></a>00001 <span class="comment">/* This file is part of the KDE project</span> <a name="l00002"></a>00002 <span class="comment"> *</span> <a name="l00003"></a>00003 <span class="comment"> * Copyright (C) 2000 George Staikos <staikos@kde.org></span> <a name="l00004"></a>00004 <span class="comment"> *</span> <a name="l00005"></a>00005 <span class="comment"> * This library is free software; you can redistribute it and/or</span> <a name="l00006"></a>00006 <span class="comment"> * modify it under the terms of the GNU Library General Public</span> <a name="l00007"></a>00007 <span class="comment"> * License as published by the Free Software Foundation; either</span> <a name="l00008"></a>00008 <span class="comment"> * version 2 of the License, or (at your option) any later version.</span> <a name="l00009"></a>00009 <span class="comment"> *</span> <a name="l00010"></a>00010 <span class="comment"> * This library is distributed in the hope that it will be useful,</span> <a name="l00011"></a>00011 <span class="comment"> * but WITHOUT ANY WARRANTY; without even the implied warranty of</span> <a name="l00012"></a>00012 <span class="comment"> * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU</span> <a name="l00013"></a>00013 <span class="comment"> * Library General Public License for more details.</span> <a name="l00014"></a>00014 <span class="comment"> *</span> <a name="l00015"></a>00015 <span class="comment"> * You should have received a copy of the GNU Library General Public License</span> <a name="l00016"></a>00016 <span class="comment"> * along with this library; see the file COPYING.LIB. If not, write to</span> <a name="l00017"></a>00017 <span class="comment"> * the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,</span> <a name="l00018"></a>00018 <span class="comment"> * Boston, MA 02110-1301, USA.</span> <a name="l00019"></a>00019 <span class="comment"> */</span> <a name="l00020"></a>00020 <a name="l00021"></a>00021 <span class="preprocessor">#include <ksslcertificatefactory.h></span> <a name="l00022"></a>00022 <span class="preprocessor">#include <ksslcertificate.h></span> <a name="l00023"></a>00023 <span class="preprocessor">#include <stdlib.h></span> <a name="l00024"></a>00024 <a name="l00025"></a>00025 <span class="comment">//#include <kopenssl.h></span> <a name="l00026"></a>00026 <a name="l00027"></a>00027 <a class="code" href="classKSSLCertificate.html">KSSLCertificate</a>* <a name="l00028"></a><a class="code" href="classKSSLCertificateFactory.html#985c8c3d2e2f5ccba6ba7e2561b45beb">00028</a> <a class="code" href="classKSSLCertificateFactory.html#985c8c3d2e2f5ccba6ba7e2561b45beb">KSSLCertificateFactory::generateSelfSigned</a>(KSSLKeyType <span class="comment">/*keytype*/</span>) { <a name="l00029"></a>00029 <span class="preprocessor">#if 0</span> <a name="l00030"></a>00030 <span class="preprocessor"></span> <span class="comment">//#ifdef KSSL_HAVE_SSL</span> <a name="l00031"></a>00031 X509_NAME *x509name = X509_NAME_new(); <a name="l00032"></a>00032 X509 *x509; <a name="l00033"></a>00033 ASN1_UTCTIME *beforeafter; <a name="l00034"></a>00034 <a class="code" href="classKSSLCertificate.html">KSSLCertificate</a> *newcert; <a name="l00035"></a>00035 <span class="keywordtype">int</span> rc; <a name="l00036"></a>00036 <a name="l00037"></a>00037 <span class="comment">// FIXME: generate the private key</span> <a name="l00038"></a>00038 <span class="keywordflow">if</span> (keytype == KEYTYPE_UNKNOWN || (key=EVP_PKEY_new()) == NULL) { <a name="l00039"></a>00039 X509_NAME_free(x509name); <a name="l00040"></a>00040 <span class="keywordflow">return</span> NULL; <a name="l00041"></a>00041 } <a name="l00042"></a>00042 <a name="l00043"></a>00043 <span class="keywordflow">switch</span>(keytype) { <a name="l00044"></a>00044 <span class="keywordflow">case</span> KEYTYPE_RSA: <a name="l00045"></a>00045 <span class="keywordflow">if</span> (!EVP_PKEY_assign_RSA(key, RSA_generate_key(newkey,0x10001, <a name="l00046"></a>00046 req_cb,bio_err))) { <a name="l00047"></a>00047 <a name="l00048"></a>00048 } <a name="l00049"></a>00049 <span class="keywordflow">break</span>; <a name="l00050"></a>00050 <span class="keywordflow">case</span> KEYTYPE_DSA: <a name="l00051"></a>00051 <span class="keywordflow">if</span> (!DSA_generate_key(dsa_params)) <span class="keywordflow">goto</span> end; <a name="l00052"></a>00052 <span class="keywordflow">if</span> (!EVP_PKEY_assign_DSA(pkey,dsa_params)) <span class="keywordflow">goto</span> end; <a name="l00053"></a>00053 dsa_params=NULL; <a name="l00054"></a>00054 <span class="keywordflow">if</span> (pkey->type == EVP_PKEY_DSA) <a name="l00055"></a>00055 digest=EVP_dss1(); <a name="l00056"></a>00056 <span class="keywordflow">break</span>; <a name="l00057"></a>00057 } <a name="l00058"></a>00058 <a name="l00059"></a>00059 <span class="comment">// FIXME: dn doesn't exist</span> <a name="l00060"></a>00060 <span class="comment">// FIXME: allow the notAfter value to be parameterized</span> <a name="l00061"></a>00061 <span class="comment">// FIXME: allow a password to lock the key with</span> <a name="l00062"></a>00062 <a name="l00063"></a>00063 <span class="comment">// Fill in the certificate</span> <a name="l00064"></a>00064 X509_NAME_add_entry_by_NID(x509name, OBJ_txt2nid(<span class="stringliteral">"CN"</span>), 0x1001, <a name="l00065"></a>00065 (<span class="keywordtype">unsigned</span> <span class="keywordtype">char</span> *) dn, -1, -1, 0); <a name="l00066"></a>00066 <a name="l00067"></a>00067 x509 = X509_new(); <a name="l00068"></a>00068 rc = X509_set_issuer_name(x509, x509name); <a name="l00069"></a>00069 <span class="keywordflow">if</span> (rc != 0) { <a name="l00070"></a>00070 X509_free(x509); <a name="l00071"></a>00071 X509_NAME_free(x509name); <a name="l00072"></a>00072 <span class="keywordflow">return</span> NULL; <a name="l00073"></a>00073 } <a name="l00074"></a>00074 rc = X509_set_subject_name(x509, x509name); <a name="l00075"></a>00075 <span class="keywordflow">if</span> (rc != 0) { <a name="l00076"></a>00076 X509_free(x509); <a name="l00077"></a>00077 X509_NAME_free(x509name); <a name="l00078"></a>00078 <span class="keywordflow">return</span> NULL; <a name="l00079"></a>00079 } <a name="l00080"></a>00080 ASN1_INTEGER_set(X509_get_serialNumber(*x509), 0); <a name="l00081"></a>00081 <a name="l00082"></a>00082 X509_NAME_free(x509name); <a name="l00083"></a>00083 <a name="l00084"></a>00084 <span class="comment">// Make it a 1 year certificate</span> <a name="l00085"></a>00085 beforeafter = ASN1_UTCTIME_new(); <a name="l00086"></a>00086 <span class="keywordflow">if</span> (!X509_gmtime_adj(beforeafter, -60*60*24)) { <span class="comment">// yesterday</span> <a name="l00087"></a>00087 X509_free(x509); <a name="l00088"></a>00088 <span class="keywordflow">return</span> NULL; <a name="l00089"></a>00089 } <a name="l00090"></a>00090 <span class="keywordflow">if</span> (!X509_set_notBefore(x509, beforeafter)) { <a name="l00091"></a>00091 X509_free(x509); <a name="l00092"></a>00092 <span class="keywordflow">return</span> NULL; <a name="l00093"></a>00093 } <a name="l00094"></a>00094 <span class="keywordflow">if</span> (!X509_gmtime_adj(beforeafter, 60*60*24*364)) { <span class="comment">// a year from yesterday</span> <a name="l00095"></a>00095 X509_free(x509); <a name="l00096"></a>00096 <span class="keywordflow">return</span> NULL; <a name="l00097"></a>00097 } <a name="l00098"></a>00098 <span class="keywordflow">if</span> (!X509_set_notAfter(x509, beforeafter)) { <a name="l00099"></a>00099 X509_free(x509); <a name="l00100"></a>00100 <span class="keywordflow">return</span> NULL; <a name="l00101"></a>00101 } <a name="l00102"></a>00102 ASN1_UTCTIME_free(beforeafter); <a name="l00103"></a>00103 <a name="l00104"></a>00104 <span class="keywordflow">if</span> (!X509_set_pubkey(x509, key)) { <a name="l00105"></a>00105 X509_free(x509); <a name="l00106"></a>00106 <span class="keywordflow">return</span> NULL; <a name="l00107"></a>00107 } <a name="l00108"></a>00108 <a name="l00109"></a>00109 rc = X509_sign(x509, key, EVP_sha1()); <a name="l00110"></a>00110 <span class="keywordflow">if</span> (rc != 0) { <a name="l00111"></a>00111 X509_free(x509); <a name="l00112"></a>00112 <span class="keywordflow">return</span> NULL; <a name="l00113"></a>00113 } <a name="l00114"></a>00114 <a name="l00115"></a>00115 newCert = <span class="keyword">new</span> <a class="code" href="classKSSLCertificate.html">KSSLCertificate</a>; <a name="l00116"></a>00116 newCert->setCert(x509); <a name="l00117"></a>00117 <span class="keywordflow">return</span> newCert; <a name="l00118"></a>00118 <span class="preprocessor">#else</span> <a name="l00119"></a>00119 <span class="preprocessor"></span> <span class="keywordflow">return</span> NULL; <a name="l00120"></a>00120 <span class="preprocessor">#endif</span> <a name="l00121"></a>00121 <span class="preprocessor"></span>} <a name="l00122"></a>00122 </pre></div> </div></div> </td> </tr> <tr> <td valign="top" id="leftmenu" width="25%"> <a name="navigation"></a> <div class="menu_box"><h2>kio/kssl</h2> <div class="nav_list"> <ul><li><a href="index.html">Main Page</a></li><li><a href="hierarchy.html">Class Hierarchy</a></li><li><a href="classes.html">Alphabetical List</a></li><li><a href="annotated.html">Class List</a></li><li><a href="files.html">File List</a></li><li><a href="functions.html">Class Members</a></li><li><a href="pages.html">Related Pages</a></li></ul> <!-- <h2>Class Picker</h2> <div style="text-align: center;"> <form name="guideform"> <select name="guidelinks" style="width:100%;" onChange="window.location=document.guideform.guidelinks.options[document.guideform.guidelinks.selectedIndex].value"> <option value="annotated.html">-- Choose --</option> <option value="classKGWizardPage1.html">kgwizardpage1</option>, <option value="classKGWizardPage2.html">kgwizardpage2</option>, <option value="classKOpenSSLProxy.html">kopensslproxy</option>, <option value="classKSMIMECrypto.html">ksmimecrypto</option>, <option value="classKSSL.html">kssl</option>, <option value="classKSSLCertBox.html">ksslcertbox</option>, <option value="classKSSLCertChain.html">ksslcertchain</option>, <option value="classKSSLCertDlg.html">ksslcertdlg</option>, <option value="classKSSLCertDlgRet.html">ksslcertdlgret</option>, <option value="classKSSLCertificate.html">ksslcertificate</option>, <option value="classKSSLCertificateCache.html">ksslcertificatecache</option>, <option value="classKSSLCertificateFactory.html">ksslcertificatefactory</option>, <option value="classKSSLCertificateHome.html">ksslcertificatehome</option>, <option value="classKSSLConnectionInfo.html">ksslconnectioninfo</option>, <option value="classKSSLCSessionCache.html">ksslcsessioncache</option>, <option value="classKSSLInfoDlg.html">ksslinfodlg</option>, <option value="classKSSLKeyGen.html">ksslkeygen</option>, <option value="classKSSLPeerInfo.html">ksslpeerinfo</option>, <option value="classKSSLPKCS12.html">ksslpkcs12</option>, <option value="classKSSLPKCS7.html">ksslpkcs7</option>, <option value="classKSSLSession.html">ksslsession</option>, <option value="classKSSLSettings.html">ksslsettings</option>, <option value="classKSSLSigners.html">ksslsigners</option>, <option value="classKSSLX509Map.html">ksslx509map</option>, <option value="classKSSLX509V3.html">ksslx509v3</option>, </select> </form> </div> --> </div></div> <div class="menu_box"><h2>API Dox</h2> <div class="nav_list"> <ul> <li><a href="../../../arts/html/index.html">arts</a></li><li><a href="../../../dcop/html/index.html">dcop</a></li><li><a href="../../../dnssd/html/index.html">dnssd</a></li><li><a href="../../../interfaces/html/index.html">interfaces</a></li><li> <a href="../../../interfaces/kimproxy/interface/html/index.html">interface</a></li><li> <a href="../../../interfaces/kimproxy/library/html/index.html">library</a></li><li> <a href="../../../interfaces/kspeech/html/index.html">kspeech</a></li><li> <a href="../../../interfaces/ktexteditor/html/index.html">ktexteditor</a></li><li><a href="../../../kabc/html/index.html">kabc</a></li><li><a href="../../../kate/html/index.html">kate</a></li><li><a href="../../../kcmshell/html/index.html">kcmshell</a></li><li><a href="../../../kdecore/html/index.html">kdecore</a></li><li><a href="../../../kded/html/index.html">kded</a></li><li><a href="../../../kdefx/html/index.html">kdefx</a></li><li><a href="../../../kdeprint/html/index.html">kdeprint</a></li><li><a href="../../../kdesu/html/index.html">kdesu</a></li><li><a href="../../../kdeui/html/index.html">kdeui</a></li><li><a href="../../../kdoctools/html/index.html">kdoctools</a></li><li><a href="../../../khtml/html/index.html">khtml</a></li><li><a href="../../../kimgio/html/index.html">kimgio</a></li><li><a href="../../../kinit/html/index.html">kinit</a></li><li><a href="../../../kio/html/index.html">kio</a></li><li> <a href="../../../kio/bookmarks/html/index.html">bookmarks</a></li><li> <a href="../../../kio/httpfilter/html/index.html">httpfilter</a></li><li> <a href="../../../kio/kfile/html/index.html">kfile</a></li><li> <a href="../../../kio/kio/html/index.html">kio</a></li><li> <a href="../../../kio/kioexec/html/index.html">kioexec</a></li><li> <a href="../../../kio/kpasswdserver/html/index.html">kpasswdserver</a></li><li> <a href="../../../kio/kssl/html/index.html">kssl</a></li><li><a href="../../../kioslave/html/index.html">kioslave</a></li><li> <a href="../../../kioslave/http/html/index.html">http</a></li><li><a href="../../../kjs/html/index.html">kjs</a></li><li><a href="../../../kmdi/html/index.html">kmdi</a></li><li> <a href="../../../kmdi/kmdi/html/index.html">kmdi</a></li><li><a href="../../../knewstuff/html/index.html">knewstuff</a></li><li><a href="../../../kparts/html/index.html">kparts</a></li><li><a href="../../../kresources/html/index.html">kresources</a></li><li><a href="../../../kspell2/html/index.html">kspell2</a></li><li><a href="../../../kunittest/html/index.html">kunittest</a></li><li><a href="../../../kutils/html/index.html">kutils</a></li><li><a href="../../../kwallet/html/index.html">kwallet</a></li><li><a href="../../../libkmid/html/index.html">libkmid</a></li><li><a href="../../../libkscreensaver/html/index.html">libkscreensaver</a></li> </ul></div></div> </td> </tr> </table> <span class="doNotDisplay"> <a href="http://www.kde.org/" accesskey="8">KDE Home</a> | <a href="http://accessibility.kde.org/" accesskey="9">KDE Accessibility Home</a> | <a href="http://www.kde.org/media/accesskeys.php" accesskey="0">Description of Access Keys</a> </span> <div style="height: 8px"></div> <div id="footer"> <div id="footer_left"> Maintained by <a href="mailto:groot@kde.org">Adriaan de Groot</a> and <a href="mailto:wintert@kde.org">Allen Winter</a>. <br/> KDE and K Desktop Environment are trademarks of <a href="http://www.kde.org/areas/kde-ev/" title="Homepage of the KDE non-profit Organization">KDE e.V.</a> | <a href="http://www.kde.org/contact/impressum.php">Legal</a> </div> <div id="footer_right"><img src="/media/images/footer_right.png" style="margin: 0px" alt="" /></div> </div> <!-- WARNING: DO NOT SEND MAIL TO THE FOLLOWING EMAIL ADDRESS! YOU WILL BE BLOCKED INSTANTLY AND PERMANENTLY! <a href="mailto:aaaatrap-425acc3b5374943f@kde.org">Block me</a> WARNING END --> </body> </html>