Botan  1.11.15
Public Member Functions
Botan::Path_Validation_Restrictions Class Reference

#include <x509path.h>

List of all members.

Public Member Functions

size_t minimum_key_strength () const
bool ocsp_all_intermediates () const
 Path_Validation_Restrictions (bool require_rev=false, size_t minimum_key_strength=80, bool ocsp_all_intermediates=false)
 Path_Validation_Restrictions (bool require_rev, size_t minimum_key_strength, bool ocsp_all_intermediates, const std::set< std::string > &trusted_hashes)
bool require_revocation_information () const
const std::set< std::string > & trusted_hashes () const

Detailed Description

Specifies restrictions on the PKIX path validation

Definition at line 21 of file x509path.h.


Constructor & Destructor Documentation

Botan::Path_Validation_Restrictions::Path_Validation_Restrictions ( bool  require_rev = false,
size_t  minimum_key_strength = 80,
bool  ocsp_all_intermediates = false 
)
Parameters:
require_revif true, revocation information is required
minimum_key_strengthis the minimum strength (in terms of operations, eg 80 means 2^80) of a signature. Signatures weaker than this are rejected. If more than 80, SHA-1 signatures are also rejected.

Definition at line 276 of file x509path.cpp.

                                                                          :
   m_require_revocation_information(require_rev),
   m_ocsp_all_intermediates(ocsp_all),
   m_minimum_key_strength(key_strength)
   {
   if(key_strength <= 80)
      m_trusted_hashes.insert("SHA-160");

   m_trusted_hashes.insert("SHA-224");
   m_trusted_hashes.insert("SHA-256");
   m_trusted_hashes.insert("SHA-384");
   m_trusted_hashes.insert("SHA-512");
   }
Botan::Path_Validation_Restrictions::Path_Validation_Restrictions ( bool  require_rev,
size_t  minimum_key_strength,
bool  ocsp_all_intermediates,
const std::set< std::string > &  trusted_hashes 
) [inline]
Parameters:
require_revif true, revocation information is required
minimum_key_strengthis the minimum strength (in terms of operations, eg 80 means 2^80) of a signature. Signatures weaker than this are rejected.
trusted_hashesa set of trusted hashes. Any signatures created using a hash other than one of these will be rejected.

Definition at line 44 of file x509path.h.

                                                                            :
         m_require_revocation_information(require_rev),
         m_ocsp_all_intermediates(ocsp_all_intermediates),
         m_trusted_hashes(trusted_hashes),
         m_minimum_key_strength(minimum_key_strength) {}

Member Function Documentation

Definition at line 62 of file x509path.h.

         { return m_minimum_key_strength; }

Definition at line 56 of file x509path.h.

         { return m_ocsp_all_intermediates; }

Definition at line 53 of file x509path.h.

         { return m_require_revocation_information; }
const std::set<std::string>& Botan::Path_Validation_Restrictions::trusted_hashes ( ) const [inline]

Definition at line 59 of file x509path.h.

         { return m_trusted_hashes; }

The documentation for this class was generated from the following files: