luc14n0/glib
1
0
Fork 0
mirror of https://gitlab.gnome.org/GNOME/glib.git synced 2025-08-20 15:48:54 +02:00
Code Issues Packages Projects Releases Wiki Activity

gtlscertificate: Add g_tls_certificate_is_same() function

Browse Source 
* Certificate equality in PKIX in general is equality between
   the DER encoding of the certificates.

https://bugzilla.gnome.org/show_bug.cgi?id=681116
This commit is contained in:
Stef Walter
2012-08-01 10:41:02 +02:00
parent b913b0c29e
commit 6ddf40f301
4 changed files with 43 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
docs/reference/gio/gio-sections.txt
View File

@@ -3300,6 +3300,7 @@ g_tls_certificate_new_from_files
g_tls_certificate_list_new_from_file g_tls_certificate_list_new_from_file
g_tls_certificate_get_issuer g_tls_certificate_get_issuer
g_tls_certificate_verify g_tls_certificate_verify
g_tls_certificate_is_same
<SUBSECTION Standard> <SUBSECTION Standard>
GTlsCertificateClass GTlsCertificateClass
GTlsCertificatePrivate GTlsCertificatePrivate

1
gio/gio.symbols
View File

@@ -1525,6 +1525,7 @@ g_tls_error_get_type
g_tls_error_quark g_tls_error_quark
g_tls_certificate_get_issuer g_tls_certificate_get_issuer
g_tls_certificate_get_type g_tls_certificate_get_type
g_tls_certificate_is_same
g_tls_certificate_list_new_from_file g_tls_certificate_list_new_from_file
g_tls_certificate_new_from_file g_tls_certificate_new_from_file
g_tls_certificate_new_from_files g_tls_certificate_new_from_files

37
gio/gtlscertificate.c
View File

@@ -560,3 +560,40 @@ g_tls_certificate_verify (GTlsCertificate *cert,
{ {
return G_TLS_CERTIFICATE_GET_CLASS (cert)->verify (cert, identity, trusted_ca); return G_TLS_CERTIFICATE_GET_CLASS (cert)->verify (cert, identity, trusted_ca);
} }
/**
* g_tls_certificate_is_same:
* @cert_one: first certificate to compare
* @cert_two: second certificate to compare
*
* Check if two #GTlsCertificate objects represent the same certificate.
* The raw DER byte data of the two certificates are checked for equality.
* This has the effect that two certificates may compare equal even if
* their #GTlsCertificate:issuer, #GTlsCertificate:private-key, or
* #GTlsCertificate:private-key-pem properties differ.
*
* Return value: whether the same or not
*
* Since: 2.34
*/
gboolean
g_tls_certificate_is_same (GTlsCertificate *cert_one,
GTlsCertificate *cert_two)
{
GByteArray *b1, *b2;
gboolean equal;
g_return_val_if_fail (G_IS_TLS_CERTIFICATE (cert_one), FALSE);
g_return_val_if_fail (G_IS_TLS_CERTIFICATE (cert_two), FALSE);
g_object_get (cert_one, "certificate", &b1, NULL);
g_object_get (cert_two, "certificate", &b2, NULL);
equal = (b1->len == b2->len &&
memcmp (b1->data, b2->data, b1->len) == 0);
g_byte_array_unref (b1);
g_byte_array_unref (b2);
return equal;
}

4
gio/gtlscertificate.h
View File

@@ -78,6 +78,10 @@ GTlsCertificateFlags g_tls_certificate_verify (GTlsCertificate
GSocketConnectable *identity, GSocketConnectable *identity,
GTlsCertificate *trusted_ca); GTlsCertificate *trusted_ca);
GLIB_AVAILABLE_IN_2_34
gboolean g_tls_certificate_is_same (GTlsCertificate *cert_one,
GTlsCertificate *cert_two);
G_END_DECLS G_END_DECLS
#endif /* __G_TLS_CERTIFICATE_H__ */ #endif /* __G_TLS_CERTIFICATE_H__ */