2 * Copyright (C) 2006-2012 Free Software Foundation, Inc.
4 * Author: Nikos Mavrogiannopoulos
6 * This file is part of GnuTLS.
8 * The GnuTLS is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public License
10 * as published by the Free Software Foundation; either version 2.1 of
11 * the License, or (at your option) any later version.
13 * This library is distributed in the hope that it will be useful, but
14 * WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 * Lesser General Public License for more details.
18 * You should have received a copy of the GNU Lesser General Public License
19 * along with this program. If not, see <http://www.gnu.org/licenses/>
27 #include <gnutls/gnutlsxx.h>
32 inline static int RETWRAP (int ret)
35 throw (exception (ret));
39 session::session (unsigned int flags)
41 RETWRAP (gnutls_init (&s, flags));
49 int session::bye (gnutls_close_request_t how)
51 return RETWRAP (gnutls_bye (s, how));
54 int session::handshake ()
56 return RETWRAP (gnutls_handshake (s));
59 server_session::server_session ():session (GNUTLS_SERVER)
63 server_session::~server_session ()
67 int server_session::rehandshake ()
69 return RETWRAP (gnutls_rehandshake (s));
72 gnutls_alert_description_t session::get_alert () const
74 return gnutls_alert_get (s);
77 int session::send_alert (gnutls_alert_level_t level,
78 gnutls_alert_description_t desc)
80 return RETWRAP (gnutls_alert_send (s, level, desc));
83 int session::send_appropriate_alert (int err)
85 return RETWRAP (gnutls_alert_send_appropriate (s, err));
88 gnutls_cipher_algorithm_t session::get_cipher () const
90 return gnutls_cipher_get (s);
93 gnutls_kx_algorithm_t session::get_kx () const
95 return gnutls_kx_get (s);
98 gnutls_mac_algorithm_t session::get_mac () const
100 return gnutls_mac_get (s);
103 gnutls_compression_method_t session::get_compression () const
105 return gnutls_compression_get (s);
108 gnutls_certificate_type_t session::get_certificate_type () const
110 return gnutls_certificate_type_get (s);
113 void session::set_private_extensions (bool allow)
115 gnutls_handshake_set_private_extensions (s, (int) allow);
118 gnutls_handshake_description_t session::get_handshake_last_out () const
120 return gnutls_handshake_get_last_out (s);
123 gnutls_handshake_description_t session::get_handshake_last_in () const
125 return gnutls_handshake_get_last_in (s);
128 ssize_t session::send (const void *data, size_t sizeofdata)
130 return RETWRAP (gnutls_record_send (s, data, sizeofdata));
133 ssize_t session::recv (void *data, size_t sizeofdata)
135 return RETWRAP (gnutls_record_recv (s, data, sizeofdata));
138 bool session::get_record_direction () const
140 return gnutls_record_get_direction (s);
143 // maximum packet size
144 size_t session::get_max_size () const
146 return gnutls_record_get_max_size (s);
149 void session::set_max_size (size_t size)
151 RETWRAP (gnutls_record_set_max_size (s, size));
154 size_t session::check_pending () const
156 return gnutls_record_check_pending (s);
160 void session::prf (size_t label_size, const char *label,
161 int server_random_first,
162 size_t extra_size, const char *extra,
163 size_t outsize, char *out)
165 RETWRAP (gnutls_prf (s, label_size, label, server_random_first,
166 extra_size, extra, outsize, out));
169 void session::prf_raw (size_t label_size, const char *label,
170 size_t seed_size, const char *seed,
171 size_t outsize, char *out)
173 RETWRAP (gnutls_prf_raw
174 (s, label_size, label, seed_size, seed, outsize, out));
178 /* if you just want some defaults, use the following.
180 void session::set_priority (const char *prio, const char **err_pos)
182 RETWRAP (gnutls_priority_set_direct (s, prio, err_pos));
185 void session::set_priority (gnutls_priority_t p)
187 RETWRAP (gnutls_priority_set (s, p));
190 gnutls_protocol_t session::get_protocol_version () const
192 return gnutls_protocol_get_version (s);
195 void session::set_data (const void *session_data, size_t session_data_size)
197 RETWRAP (gnutls_session_set_data (s, session_data, session_data_size));
200 void session::get_data (void *session_data, size_t * session_data_size) const
202 RETWRAP (gnutls_session_get_data (s, session_data, session_data_size));
205 void session::get_data (gnutls_session_t session, gnutls_datum_t & data) const
207 RETWRAP (gnutls_session_get_data2 (s, &data));
211 void session::get_id (void *session_id, size_t * session_id_size) const
213 RETWRAP (gnutls_session_get_id (s, session_id, session_id_size));
216 bool session::is_resumed () const
218 int ret = gnutls_session_is_resumed (s);
223 bool session::get_peers_certificate (std::vector < gnutls_datum_t >
226 const gnutls_datum_t *certs;
227 unsigned int certs_size;
229 certs = gnutls_certificate_get_peers (s, &certs_size);
234 for (unsigned int i = 0; i < certs_size; i++)
235 out_certs.push_back (certs[i]);
240 bool session::get_peers_certificate (const gnutls_datum_t ** certs,
241 unsigned int *certs_size) const
243 *certs = gnutls_certificate_get_peers (s, certs_size);
250 void session::get_our_certificate (gnutls_datum_t & cert) const
252 const gnutls_datum_t *d;
254 d = gnutls_certificate_get_ours (s);
256 throw (exception (GNUTLS_E_INVALID_REQUEST));
260 time_t session::get_peers_certificate_activation_time () const
262 return gnutls_certificate_activation_time_peers (s);
265 time_t session::get_peers_certificate_expiration_time () const
267 return gnutls_certificate_expiration_time_peers (s);
269 void session::verify_peers_certificate (unsigned int &status) const
271 RETWRAP (gnutls_certificate_verify_peers2 (s, &status));
275 client_session::client_session ():session (GNUTLS_CLIENT)
279 client_session::~client_session ()
284 void client_session::set_server_name (gnutls_server_name_type_t type,
285 const void *name, size_t name_length)
287 RETWRAP (gnutls_server_name_set (s, type, name, name_length));
290 bool client_session::get_request_status ()
292 return RETWRAP (gnutls_certificate_client_get_request_status (s));
296 void server_session::get_server_name (void *data, size_t * data_length,
298 unsigned int indx) const
300 RETWRAP (gnutls_server_name_get (s, data, data_length, type, indx));
304 static int store_function (void *_db, gnutls_datum_t key,
309 DB *db = static_cast < DB * >(_db);
311 if (db->store (key, data) == false)
322 const static gnutls_datum_t null_datum = { NULL, 0 };
324 static gnutls_datum_t retrieve_function (void *_db, gnutls_datum_t key)
330 DB *db = static_cast < DB * >(_db);
332 if (db->retrieve (key, data) == false)
344 static int remove_function (void *_db, gnutls_datum_t key)
348 DB *db = static_cast < DB * >(_db);
350 if (db->remove (key) == false)
361 void server_session::set_db (const DB & db)
363 gnutls_db_set_ptr (s, const_cast < DB * >(&db));
364 gnutls_db_set_store_function (s, store_function);
365 gnutls_db_set_retrieve_function (s, retrieve_function);
366 gnutls_db_set_remove_function (s, remove_function);
369 void server_session::set_db_cache_expiration (unsigned int seconds)
371 gnutls_db_set_cache_expiration (s, seconds);
374 void server_session::db_remove () const
376 gnutls_db_remove_session (s);
379 bool server_session::db_check_entry (gnutls_datum_t & session_data) const
381 int ret = gnutls_db_check_entry (s, session_data);
388 void session::set_max_handshake_packet_length (size_t max)
390 gnutls_handshake_set_max_packet_length (s, max);
393 void session::clear_credentials ()
395 gnutls_credentials_clear (s);
398 void session::set_credentials (credentials & cred)
400 RETWRAP (gnutls_credentials_set (s, cred.get_type (), cred.ptr ()));
403 const char *server_session::get_srp_username () const
406 return gnutls_srp_server_get_username (s);
412 const char *server_session::get_psk_username () const
414 return gnutls_psk_server_get_username (s);
418 void session::set_transport_ptr (gnutls_transport_ptr_t ptr)
420 gnutls_transport_set_ptr (s, ptr);
423 void session::set_transport_ptr (gnutls_transport_ptr_t recv_ptr,
424 gnutls_transport_ptr_t send_ptr)
426 gnutls_transport_set_ptr2 (s, recv_ptr, send_ptr);
430 gnutls_transport_ptr_t session::get_transport_ptr () const
432 return gnutls_transport_get_ptr (s);
435 void session::get_transport_ptr (gnutls_transport_ptr_t & recv_ptr,
436 gnutls_transport_ptr_t & send_ptr) const
438 gnutls_transport_get_ptr2 (s, &recv_ptr, &send_ptr);
441 void session::set_transport_lowat (size_t num)
443 throw (exception (GNUTLS_E_UNIMPLEMENTED_FEATURE));
446 void session::set_transport_push_function (gnutls_push_func push_func)
448 gnutls_transport_set_push_function (s, push_func);
451 void session::set_transport_vec_push_function (gnutls_vec_push_func vec_push_func)
453 gnutls_transport_set_vec_push_function (s, vec_push_func);
456 void session::set_transport_pull_function (gnutls_pull_func pull_func)
458 gnutls_transport_set_pull_function (s, pull_func);
461 void session::set_user_ptr (void *ptr)
463 gnutls_session_set_ptr (s, ptr);
466 void *session::get_user_ptr () const
468 return gnutls_session_get_ptr (s);
471 void session::send_openpgp_cert (gnutls_openpgp_crt_status_t status)
473 #ifdef ENABLE_OPENPGP
474 gnutls_openpgp_send_cert (s, status);
478 void session::set_dh_prime_bits (unsigned int bits)
480 gnutls_dh_set_prime_bits (s, bits);
483 unsigned int session::get_dh_secret_bits () const
485 return RETWRAP (gnutls_dh_get_secret_bits (s));
488 unsigned int session::get_dh_peers_public_bits () const
490 return RETWRAP (gnutls_dh_get_peers_public_bits (s));
493 unsigned int session::get_dh_prime_bits () const
495 return RETWRAP (gnutls_dh_get_prime_bits (s));
498 void session::get_dh_group (gnutls_datum_t & gen,
499 gnutls_datum_t & prime) const
501 RETWRAP (gnutls_dh_get_group (s, &gen, &prime));
504 void session::get_dh_pubkey (gnutls_datum_t & raw_key) const
506 RETWRAP (gnutls_dh_get_pubkey (s, &raw_key));
509 #ifdef ENABLE_RSA_EXPORT
510 void session::get_rsa_export_pubkey (gnutls_datum_t & exponent,
511 gnutls_datum_t & modulus) const
513 RETWRAP (gnutls_rsa_export_get_pubkey (s, &exponent, &modulus));
516 unsigned int session::get_rsa_export_modulus_bits () const
518 return RETWRAP (gnutls_rsa_export_get_modulus_bits (s));
521 void certificate_credentials::
522 set_rsa_export_params (const rsa_params & params)
524 gnutls_certificate_set_rsa_export_params (cred, params.get_params_t ());
528 void server_session::
529 set_certificate_request (gnutls_certificate_request_t req)
531 gnutls_certificate_server_set_request (s, req);
534 gnutls_credentials_type_t session::get_auth_type () const
536 return gnutls_auth_get_type (s);
539 gnutls_credentials_type_t session::get_server_auth_type () const
541 return gnutls_auth_server_get_type (s);
544 gnutls_credentials_type_t session::get_client_auth_type () const
546 return gnutls_auth_client_get_type (s);
550 certificate_credentials::~certificate_credentials ()
552 gnutls_certificate_free_credentials (cred);
555 certificate_credentials::certificate_credentials ():credentials
556 (GNUTLS_CRD_CERTIFICATE)
558 RETWRAP (gnutls_certificate_allocate_credentials (&cred));
562 void certificate_server_credentials::
563 set_params_function (gnutls_params_function * func)
565 gnutls_certificate_set_params_function (cred, func);
568 anon_server_credentials::anon_server_credentials ():credentials
571 RETWRAP (gnutls_anon_allocate_server_credentials (&cred));
575 anon_server_credentials::~anon_server_credentials ()
577 gnutls_anon_free_server_credentials (cred);
580 void anon_server_credentials::set_dh_params (const dh_params & params)
582 gnutls_anon_set_server_dh_params (cred, params.get_params_t ());
585 void anon_server_credentials::set_params_function (gnutls_params_function *
588 gnutls_anon_set_server_params_function (cred, func);
591 anon_client_credentials::anon_client_credentials ():credentials
594 RETWRAP (gnutls_anon_allocate_client_credentials (&cred));
598 anon_client_credentials::~anon_client_credentials ()
600 gnutls_anon_free_client_credentials (cred);
603 void certificate_credentials::free_keys ()
605 gnutls_certificate_free_keys (cred);
608 void certificate_credentials::free_cas ()
610 gnutls_certificate_free_cas (cred);
613 void certificate_credentials::free_ca_names ()
615 gnutls_certificate_free_ca_names (cred);
618 void certificate_credentials::free_crls ()
620 gnutls_certificate_free_crls (cred);
624 void certificate_credentials::set_dh_params (const dh_params & params)
626 gnutls_certificate_set_dh_params (cred, params.get_params_t ());
629 void certificate_credentials::set_verify_flags (unsigned int flags)
631 gnutls_certificate_set_verify_flags (cred, flags);
634 void certificate_credentials::set_verify_limits (unsigned int max_bits,
635 unsigned int max_depth)
637 gnutls_certificate_set_verify_limits (cred, max_bits, max_depth);
640 void certificate_credentials::set_x509_trust_file (const char *cafile,
641 gnutls_x509_crt_fmt_t
644 RETWRAP (gnutls_certificate_set_x509_trust_file (cred, cafile, type));
647 void certificate_credentials::set_x509_trust (const gnutls_datum_t & CA,
648 gnutls_x509_crt_fmt_t type)
650 RETWRAP (gnutls_certificate_set_x509_trust_mem (cred, &CA, type));
654 void certificate_credentials::set_x509_crl_file (const char *crlfile,
655 gnutls_x509_crt_fmt_t type)
657 RETWRAP (gnutls_certificate_set_x509_crl_file (cred, crlfile, type));
660 void certificate_credentials::set_x509_crl (const gnutls_datum_t & CRL,
661 gnutls_x509_crt_fmt_t type)
663 RETWRAP (gnutls_certificate_set_x509_crl_mem (cred, &CRL, type));
666 void certificate_credentials::set_x509_key_file (const char *certfile,
668 gnutls_x509_crt_fmt_t type)
670 RETWRAP (gnutls_certificate_set_x509_key_file
671 (cred, certfile, keyfile, type));
674 void certificate_credentials::set_x509_key (const gnutls_datum_t & CERT,
675 const gnutls_datum_t & KEY,
676 gnutls_x509_crt_fmt_t type)
678 RETWRAP (gnutls_certificate_set_x509_key_mem (cred, &CERT, &KEY, type));
681 void certificate_credentials::
682 set_simple_pkcs12_file (const char *pkcs12file,
683 gnutls_x509_crt_fmt_t type, const char *password)
685 RETWRAP (gnutls_certificate_set_x509_simple_pkcs12_file
686 (cred, pkcs12file, type, password));
689 void certificate_credentials::set_x509_key (gnutls_x509_crt_t * cert_list,
691 gnutls_x509_privkey_t key)
693 RETWRAP (gnutls_certificate_set_x509_key
694 (cred, cert_list, cert_list_size, key));
697 void certificate_credentials::set_x509_trust (gnutls_x509_crt_t * ca_list,
700 RETWRAP (gnutls_certificate_set_x509_trust (cred, ca_list, ca_list_size));
703 void certificate_credentials::set_x509_crl (gnutls_x509_crl_t * crl_list,
706 RETWRAP (gnutls_certificate_set_x509_crl (cred, crl_list, crl_list_size));
709 void certificate_credentials::
710 set_retrieve_function (gnutls_certificate_retrieve_function * func)
712 gnutls_certificate_set_retrieve_function (cred, func);
719 srp_server_credentials::srp_server_credentials ():credentials
722 RETWRAP (gnutls_srp_allocate_server_credentials (&cred));
726 srp_server_credentials::~srp_server_credentials ()
728 gnutls_srp_free_server_credentials (cred);
731 srp_client_credentials::srp_client_credentials ():credentials
734 RETWRAP (gnutls_srp_allocate_client_credentials (&cred));
738 srp_client_credentials::~srp_client_credentials ()
740 gnutls_srp_free_client_credentials (cred);
743 void srp_client_credentials::set_credentials (const char *username,
744 const char *password)
746 RETWRAP (gnutls_srp_set_client_credentials (cred, username, password));
749 void srp_server_credentials::
750 set_credentials_file (const char *password_file,
751 const char *password_conf_file)
753 RETWRAP (gnutls_srp_set_server_credentials_file
754 (cred, password_file, password_conf_file));
757 void srp_server_credentials::
758 set_credentials_function (gnutls_srp_server_credentials_function * func)
760 gnutls_srp_set_server_credentials_function (cred, func);
763 void srp_client_credentials::
764 set_credentials_function (gnutls_srp_client_credentials_function * func)
766 gnutls_srp_set_client_credentials_function (cred, func);
769 #endif /* ENABLE_SRP */
773 psk_server_credentials::psk_server_credentials ():credentials
776 RETWRAP (gnutls_psk_allocate_server_credentials (&cred));
780 psk_server_credentials::~psk_server_credentials ()
782 gnutls_psk_free_server_credentials (cred);
785 void psk_server_credentials::
786 set_credentials_file (const char *password_file)
788 RETWRAP (gnutls_psk_set_server_credentials_file (cred, password_file));
791 void psk_server_credentials::
792 set_credentials_function (gnutls_psk_server_credentials_function * func)
794 gnutls_psk_set_server_credentials_function (cred, func);
797 void psk_server_credentials::set_dh_params (const dh_params & params)
799 gnutls_psk_set_server_dh_params (cred, params.get_params_t ());
802 void psk_server_credentials::set_params_function (gnutls_params_function *
805 gnutls_psk_set_server_params_function (cred, func);
808 psk_client_credentials::psk_client_credentials ():credentials
811 RETWRAP (gnutls_psk_allocate_client_credentials (&cred));
815 psk_client_credentials::~psk_client_credentials ()
817 gnutls_psk_free_client_credentials (cred);
820 void psk_client_credentials::set_credentials (const char *username,
821 const gnutls_datum_t & key,
822 gnutls_psk_key_flags flags)
824 RETWRAP (gnutls_psk_set_client_credentials (cred, username, &key, flags));
827 void psk_client_credentials::
828 set_credentials_function (gnutls_psk_client_credentials_function * func)
830 gnutls_psk_set_client_credentials_function (cred, func);
833 credentials::credentials (gnutls_credentials_type_t t):type (t),
838 gnutls_credentials_type_t credentials::get_type () const
843 void *credentials::ptr () const
848 void credentials::set_ptr (void *ptr)
853 exception::exception (int x)
858 int exception::get_code ()
863 const char *exception::what () const throw ()
865 return gnutls_strerror (retcode);
868 dh_params::dh_params ()
870 RETWRAP (gnutls_dh_params_init (¶ms));
873 dh_params::~dh_params ()
875 gnutls_dh_params_deinit (params);
878 void dh_params::import_raw (const gnutls_datum_t & prime,
879 const gnutls_datum_t & generator)
881 RETWRAP (gnutls_dh_params_import_raw (params, &prime, &generator));
884 void dh_params::import_pkcs3 (const gnutls_datum_t & pkcs3_params,
885 gnutls_x509_crt_fmt_t format)
887 RETWRAP (gnutls_dh_params_import_pkcs3 (params, &pkcs3_params, format));
890 void dh_params::generate (unsigned int bits)
892 RETWRAP (gnutls_dh_params_generate2 (params, bits));
895 void dh_params::export_pkcs3 (gnutls_x509_crt_fmt_t format,
896 unsigned char *params_data,
897 size_t * params_data_size)
899 RETWRAP (gnutls_dh_params_export_pkcs3
900 (params, format, params_data, params_data_size));
903 void dh_params::export_raw (gnutls_datum_t & prime,
904 gnutls_datum_t & generator)
906 RETWRAP (gnutls_dh_params_export_raw (params, &prime, &generator, NULL));
909 gnutls_dh_params_t dh_params::get_params_t () const
914 dh_params & dh_params::operator= (const dh_params & src)
916 dh_params *dst = new dh_params;
919 ret = gnutls_dh_params_cpy (dst->params, src.params);
924 throw (exception (ret));
932 #ifdef ENABLE_RSA_EXPORT
933 rsa_params::rsa_params ()
935 RETWRAP (gnutls_rsa_params_init (¶ms));
938 rsa_params::~rsa_params ()
940 gnutls_rsa_params_deinit (params);
943 void rsa_params::import_pkcs1 (const gnutls_datum_t & pkcs1_params,
944 gnutls_x509_crt_fmt_t format)
946 RETWRAP (gnutls_rsa_params_import_pkcs1 (params, &pkcs1_params, format));
949 void rsa_params::generate (unsigned int bits)
951 RETWRAP (gnutls_rsa_params_generate2 (params, bits));
954 void rsa_params::export_pkcs1 (gnutls_x509_crt_fmt_t format,
955 unsigned char *params_data,
956 size_t * params_data_size)
958 RETWRAP (gnutls_rsa_params_export_pkcs1
959 (params, format, params_data, params_data_size));
962 gnutls_rsa_params_t rsa_params::get_params_t () const
967 rsa_params & rsa_params::operator= (const rsa_params & src)
969 rsa_params *dst = new rsa_params;
972 ret = gnutls_rsa_params_cpy (dst->params, src.params);
977 throw (exception (ret));
983 void rsa_params::import_raw (const gnutls_datum_t & m,
984 const gnutls_datum_t & e,
985 const gnutls_datum_t & d,
986 const gnutls_datum_t & p,
987 const gnutls_datum_t & q,
988 const gnutls_datum_t & u)
991 RETWRAP (gnutls_rsa_params_import_raw (params, &m, &e, &d, &p, &q, &u));
995 void rsa_params::export_raw (gnutls_datum_t & m, gnutls_datum_t & e,
996 gnutls_datum_t & d, gnutls_datum_t & p,
997 gnutls_datum_t & q, gnutls_datum_t & u)
999 RETWRAP (gnutls_rsa_params_export_raw
1000 (params, &m, &e, &d, &p, &q, &u, NULL));
1003 } // namespace gnutls
projects / platform / upstream / gnutls.git / blob