2 * Claws Mail -- a GTK+ based, lightweight, and fast e-mail client
3 * Copyright (C) 1999-2007 Colin Leroy <colin@colino.net>
4 * and the Claws Mail team
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 3 of the License, or
9 * (at your option) any later version.
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program. If not, see <http://www.gnu.org/licenses/>.
21 #ifndef __SSL_CERTIFICATE_H__
22 #define __SSL_CERTIFICATE_H__
28 #if (defined(USE_OPENSSL) || defined (USE_GNUTLS))
30 #include <openssl/ssl.h>
31 #include <openssl/objects.h>
33 #include <gnutls/gnutls.h>
34 #include <gnutls/x509.h>
39 #define SSLCERT_ASK_HOOKLIST "sslcert_ask"
41 typedef struct _SSLCertificate SSLCertificate;
43 struct _SSLCertificate
48 gnutls_x509_crt x509_cert;
58 typedef struct _SSLCertHookData SSLCertHookData;
60 struct _SSLCertHookData
63 SSLCertificate *old_cert;
68 SSLCertificate *ssl_certificate_find (gchar *host, gushort port, const gchar *fingerprint);
69 SSLCertificate *ssl_certificate_find_lookup (gchar *host, gushort port, const gchar *fingerprint, gboolean lookup);
71 gboolean ssl_certificate_check (X509 *x509_cert, gchar *fqdn, gchar *host, gushort port);
73 gboolean ssl_certificate_check (gnutls_x509_crt x509_cert, guint status, gchar *fqdn, gchar *host, gushort port);
75 void ssl_certificate_destroy(SSLCertificate *cert);
76 void ssl_certificate_delete_from_disk(SSLCertificate *cert);
77 char * readable_fingerprint(unsigned char *src, int len);
79 char *ssl_certificate_check_signer (X509 *cert);
80 time_t asn1toTime(ASN1_TIME *asn1Time);
82 char *ssl_certificate_check_signer (gnutls_x509_crt cert, guint status);
85 #endif /* USE_OPENSSL */
86 #endif /* SSL_CERTIFICATE_H */