COCSPParameters Class Reference
class COCSPParameters : public CBase
|
Specifies paremeters needed to perform revocation checking. The important things to set are the certificates to be checked all - all the other parameters have defaults.
Constructor & Destructor Documentation
COCSPParameters()
COCSPParameters
|
(
|
)
|
[private]
|
Member Functions Documentation
AddAllAuthorisationSchemesL(const TUid &, MCertStore &)
IMPORT_C void
|
AddAllAuthorisationSchemesL
|
(
|
const
TUid
&
|
aCertStoreUid,
|
|
MCertStore
&
|
aCertStore
|
|
)
|
|
This function adds all of the currently supported authorisation schemes to this object. It is more convenient than having the client to allocate each scheme.
This function allocates the authorisation schemes defined in RFC2560 S2.2 - direct authorisation, CA delegate, and CA direct.
-
Pre-condition
-
No authorisation schemes should have been added to this object before this function is called.
AddAuthorisationSchemeL
Parameters
const
TUid
& aCertStoreUid
|
UID of trusted root certificates. E.g., KCertStoreUIDForSWInstallOCSPSigning.
|
MCertStore
& aCertStore
|
Certificate store which contains the the trust anchors used to validate the response.
|
AddAuthorisationSchemeL(MOCSPAuthorisationScheme *)
Add an authorisation scheme - takes ownership if it doesn't leave. Clients must specify at least one such scheme, used to validate the signature on the response.
AddCertificateL(const CX509Certificate &, const CX509Certificate &)
Add a certificate to be checked. Does not take ownership - certificates must not be destroyed until the OCSP check complete.
AddCertificatesL(const CX509CertChain &)
Add a certificate chain to be checked. Does not take ownership - certificates must not be destroyed until the OCSP check complete.
AuthSchemeCount()
TUint
|
AuthSchemeCount
|
(
|
)
|
const
|
CertCount()
TUint
|
CertCount
|
(
|
)
|
const
|
CheckCertsWithAiaOnly()
TBool
|
CheckCertsWithAiaOnly
|
(
|
)
|
const
|
ConstructL()
void
|
ConstructL
|
(
|
)
|
[private]
|
DefaultURI()
const
TDesC8
&
|
DefaultURI
|
(
|
)
|
const
|
GenerateResponseForMissingUri()
TBool
|
GenerateResponseForMissingUri
|
(
|
)
|
const
|
MaxStatusAge()
const
TUint
*
|
MaxStatusAge
|
(
|
)
|
const
|
NewL()
Create a new parameters object.
ReponderCertCheck()
TBool
|
ReponderCertCheck
|
(
|
)
|
const
|
RetryCount()
TUint
|
RetryCount
|
(
|
)
|
const
|
SetCheckCertsWithAiaOnly(const TBool)
IMPORT_C void
|
SetCheckCertsWithAiaOnly
|
(
|
const
TBool
|
aCheckCertsWithAiaOnly
|
)
|
|
Parameters
const
TBool
aCheckCertsWithAiaOnly
|
|
SetMaxStatusAgeL(TUint)
IMPORT_C void
|
SetMaxStatusAgeL
|
(
|
TUint
|
aMaxAge
|
)
|
|
Specify the maximum age of the thisUpdate field in seconds (zero => don't check).
SetOCSPCheckForResponderCert(const TBool)
IMPORT_C void
|
SetOCSPCheckForResponderCert
|
(
|
const
TBool
|
aResponderCertCheck
|
)
|
|
Parameters
const
TBool
aResponderCertCheck
|
|
SetRetryCount(const TUint)
IMPORT_C void
|
SetRetryCount
|
(
|
const
TUint
|
aRetryCount
|
)
|
|
Set the retry count for failed send request attempts. A default value of 1 (no retry) is used.
Parameters
const
TUint
aRetryCount
|
Retry count
|
SetTimeLeewayL(TUint)
IMPORT_C void
|
SetTimeLeewayL
|
(
|
TUint
|
aLeewaySeconds
|
)
|
|
Specify how much leeway we allow when comparing times.
SetTimeout(const TInt)
IMPORT_C void
|
SetTimeout
|
(
|
const
TInt
|
aTimeout
|
)
|
|
Set the request timeout. A default value of -1 (default transport timeout) is used.
Parameters
const
TInt
aTimeout
|
Request timeout in milliseconds
|
SetTransport(MOCSPTransport *)
Set the transport to use. This method must be called - if no transport is set
COCSPClient::NewL
will leave with KErrArgument. This object takes ownership.
SetURIL(const TDesC8 &, TBool)
IMPORT_C void
|
SetURIL
|
(
|
const
TDesC8
&
|
aURI,
|
|
TBool
|
aUseAIA
|
|
)
|
|
Set the URI of the OCSP responder to use. The descriptor is copied.
Parameters
const
TDesC8
& aURI
|
The URI of the responder to use.
|
TBool
aUseAIA
|
Indicates whether to use the responder specified in certifcate AuthorityInfoAccess extensions in preference to the one given here.
|
SetUseAIA(const TBool)
IMPORT_C void
|
SetUseAIA
|
(
|
const
TBool
|
aUseAIA
|
)
|
|
SetUseNonce(TBool)
IMPORT_C void
|
SetUseNonce
|
(
|
TBool
|
aUseNonce
|
)
|
|
Set whether or not to use a nonce. By default this is turned on.
SetValidationTimeL(const TTime &)
IMPORT_C void
|
SetValidationTimeL
|
(
|
const
TTime
&
|
aValidationTime
|
)
|
|
Specify the authorisation time (optional - uses producedAt time from response otherwise).
Parameters
const
TTime
& aValidationTime
|
|
TimeLeeway()
const
TUint
*
|
TimeLeeway
|
(
|
)
|
const
|
ValidationTime()
const
TTime
*
|
ValidationTime
|
(
|
)
|
const
|
Member Data Documentation
RPointerArray< MOCSPAuthorisationScheme > iAuthSchemes
TBool
iCheckCertsWithAiaOnly
TBool
|
iCheckCertsWithAiaOnly
|
[private]
|
HBufC8 * iDefaultURI
HBufC8
*
|
iDefaultURI
|
[private]
|
TBool
iGenerateResponseForMissingUri
TBool
|
iGenerateResponseForMissingUri
|
[private]
|
RPointerArray< CX509Certificate > iIssuerCerts
TUint * iMaxStatusAge
TUint
*
|
iMaxStatusAge
|
[private]
|
TBool
iResponderCertCheck
TBool
|
iResponderCertCheck
|
[private]
|
TUint
iRetryCount
TUint
|
iRetryCount
|
[private]
|
RPointerArray< CX509Certificate > iSubjectCerts
TUint * iTimeLeeway
TUint
*
|
iTimeLeeway
|
[private]
|
MOCSPTransport * iTransport
TBool
iUseNonce
TBool
|
iUseNonce
|
[private]
|
TTime * iValidationTime
TTime
*
|
iValidationTime
|
[private]
|
Copyright ©2010 Nokia Corporation and/or its subsidiary(-ies).
All rights
reserved. Unless otherwise stated, these materials are provided under the terms of the Eclipse Public License
v1.0.