Symbian^3 Product Developer Library >

Swi::CCertChainConstraints Class Reference

class Swi::CCertChainConstraints : public CBase

The CCertChainConstraints class is to aggregate the constraints specified in certficate extensions across all valid certificate chains and then check them against information from the device and/or information contained in the SIS file.

Inherits from

  • Swi::CCertChainConstraints
Public Member Functions
~CCertChainConstraints()
IMPORT_C TBoolCapabilitiesAreConstrained()
IMPORT_C TBoolCapabilitiesAreValid(TCapabilitySet &)
IMPORT_C TBoolDeviceIDIsValid(const HBufC *)
IMPORT_C TBoolDeviceIDsAreConstrained()
IMPORT_C CCertChainConstraints *NewL(RPointerArray< CPKIXCertChainBase > &)
IMPORT_C CCertChainConstraints *NewL()
IMPORT_C CCertChainConstraints *NewLC(RPointerArray< CPKIXCertChainBase > &)
IMPORT_C TBoolSIDIsValid(TSecureId)
IMPORT_C TBoolSIDsAreConstrained()
IMPORT_C voidSetValidCapabilities(const TCapabilitySet &)
IMPORT_C TBoolVIDIsValid(TVendorId)
IMPORT_C TBoolVIDsAreConstrained()
IMPORT_C const TCapabilitySet &ValidCapabilities()
Private Member Functions
CCertChainConstraints()
voidConstructL(RPointerArray< CPKIXCertChainBase > &)
voidRetrieveExtensionCapabilitySetL(const CX509Certificate &)
voidRetrieveExtensionDeviceIDListL(const CX509Certificate &)
voidRetrieveExtensionSIDListL(const CX509Certificate &)
voidRetrieveExtensionVIDListL(const CX509Certificate &)
Inherited Functions
CBase::CBase()
CBase::Delete(CBase *)
CBase::Extension_(TUint,TAny *&,TAny *)
CBase::operator new(TUint)
CBase::operator new(TUint,TAny *)
CBase::operator new(TUint,TLeave)
CBase::operator new(TUint,TLeave,TUint)
CBase::operator new(TUint,TUint)
CBase::~CBase()
Private Attributes
TBool iCapabilitiesAreConstrained
TBool iDeviceIDsAreConstrained
TBool iSIDsAreConstrained
TBool iVIDsAreConstrained
TCapabilitySet iValidCapabilities
RPointerArray< HBufC >iValidDeviceIDs
RArray< TSecureId >iValidSIDs
RArray< TVendorId >iValidVIDs

Constructor & Destructor Documentation

CCertChainConstraints()

CCertChainConstraints()[private]

~CCertChainConstraints()

~CCertChainConstraints()

Member Functions Documentation

CapabilitiesAreConstrained()

IMPORT_C TBoolCapabilitiesAreConstrained()const

The method is tell if the Capabilities are constrained or not

CapabilitiesAreValid(TCapabilitySet &)

IMPORT_C TBoolCapabilitiesAreValid(TCapabilitySet &aRequestCapabilities)const

Determine if the request Capability set is valid.

Parameters

TCapabilitySet & aRequestCapabilities

ConstructL(RPointerArray< CPKIXCertChainBase > &)

voidConstructL(RPointerArray< CPKIXCertChainBase > &aValidCerts)[private]

Parameters

RPointerArray< CPKIXCertChainBase > & aValidCerts

DeviceIDIsValid(const HBufC *)

IMPORT_C TBoolDeviceIDIsValid(const HBufC *aRequestDeviceID)const

Determine if the request Device ID is valid.

Parameters

const HBufC * aRequestDeviceID

DeviceIDsAreConstrained()

IMPORT_C TBoolDeviceIDsAreConstrained()const

The method is tell if the Device IDs are constrained or not

NewL(RPointerArray< CPKIXCertChainBase > &)

IMPORT_C CCertChainConstraints *NewL(RPointerArray< CPKIXCertChainBase > &aValidCerts)[static]

Constructs a new CCertChainConstraints object

Parameters

RPointerArray< CPKIXCertChainBase > & aValidCertsa valid PKIX certificate chain

NewL()

IMPORT_C CCertChainConstraints *NewL()[static]

Constructs a new CCertChainConstraints object with no constraints

NewLC(RPointerArray< CPKIXCertChainBase > &)

IMPORT_C CCertChainConstraints *NewLC(RPointerArray< CPKIXCertChainBase > &aValidCerts)[static]

Constructs a new CCertChainConstraints object and leaves it on the cleanup stack

Parameters

RPointerArray< CPKIXCertChainBase > & aValidCertsa valid PKIX certificate chain

RetrieveExtensionCapabilitySetL(const CX509Certificate &)

voidRetrieveExtensionCapabilitySetL(const CX509Certificate &aCert)[private]

Retrieve the constrained capability set from the certificate extension, and take the intersection of the retrieved capabilities and the existing capability constraints as the new capability constraints

Parameters

const CX509Certificate & aCert

RetrieveExtensionDeviceIDListL(const CX509Certificate &)

voidRetrieveExtensionDeviceIDListL(const CX509Certificate &aCert)[private]

Retrieve the device IDs constraints from the certificate extension and take the intersection of the retrieved device ID constraints and the existing device ID constraints as the new device ID constraints

Parameters

const CX509Certificate & aCert

RetrieveExtensionSIDListL(const CX509Certificate &)

voidRetrieveExtensionSIDListL(const CX509Certificate &aCert)[private]

Retrieve the SID constraints from the certificate extension and take the intersection of the retrieved SID constraints and the existing SID constraints as the new VID constraints

Parameters

const CX509Certificate & aCert

RetrieveExtensionVIDListL(const CX509Certificate &)

voidRetrieveExtensionVIDListL(const CX509Certificate &aCert)[private]

Retrieve the VID constraints from the certificate extension and take the intersection of the retrieved VID constraints and the existing VID constraints as the new VID constraints

Parameters

const CX509Certificate & aCert

SIDIsValid(TSecureId)

IMPORT_C TBoolSIDIsValid(TSecureIdaRequestSID)const

Determine if the request SID is valid.

Parameters

TSecureId aRequestSIDa request SID

SIDsAreConstrained()

IMPORT_C TBoolSIDsAreConstrained()const

The method is tell if the SIDs are constrained or not

SetValidCapabilities(const TCapabilitySet &)

IMPORT_C voidSetValidCapabilities(const TCapabilitySet &aValidCapabilities)

Set the valid Capability set

Parameters

const TCapabilitySet & aValidCapabilitiesa capability set to be set in the constaints.

VIDIsValid(TVendorId)

IMPORT_C TBoolVIDIsValid(TVendorIdaRequestVID)const

Determine if the request VID is valid.

Parameters

TVendorId aRequestVID

VIDsAreConstrained()

IMPORT_C TBoolVIDsAreConstrained()const

The method is tell if the VIDs are constrained or not

ValidCapabilities()

IMPORT_C const TCapabilitySet &ValidCapabilities()const

The method retrieves the valid Capability Set

Member Data Documentation

TBool iCapabilitiesAreConstrained

TBool iCapabilitiesAreConstrained[private]

The flag that represents if the Device IDs are constrained.

TBool iDeviceIDsAreConstrained

TBool iDeviceIDsAreConstrained[private]

The flag that represents if the Device IDs are constrained.

TBool iSIDsAreConstrained

TBool iSIDsAreConstrained[private]

The flag that represents if the SIDs are constrained.

TBool iVIDsAreConstrained

TBool iVIDsAreConstrained[private]

The flag that represents if the VIDs are constrained.

TCapabilitySet iValidCapabilities

TCapabilitySet iValidCapabilities[private]

The list of valid capability set

RPointerArray< HBufC > iValidDeviceIDs

RPointerArray< HBufC >iValidDeviceIDs[private]

The list of valid device IDs

RArray< TSecureId > iValidSIDs

RArray< TSecureId >iValidSIDs[private]

The list of valid secured IDs

RArray< TVendorId > iValidVIDs

RArray< TVendorId >iValidVIDs[private]

The list of valid vendor IDs

Copyright ©2010 Nokia Corporation and/or its subsidiary(-ies).
All rights reserved. Unless otherwise stated, these materials are provided under the terms of the Eclipse Public License v1.0.