15 #ifndef FS_LTVVERIFIER_H_ 16 #define FS_LTVVERIFIER_H_ 39 typedef enum _ResponseType {
109 return!(*
this == other);
197 return!(*
this == other);
227 typedef enum _CertStatus {
243 typedef enum _RevocationReason {
273 typedef enum _ResponseInfoLocation {
424 return!(*
this == other);
595 return!(*
this == other);
672 for (
size_t i = 0; i < ocsp_count; i++) {
676 for (
size_t i = 0; i < ocsp_count; i++) {
691 return!(*
this == other);
963 typedef enum _TimeType {
965 e_SignatureCreationTime = 0,
967 e_SignatureTSTTime = 1,
974 e_VRICreationTime = 3
982 typedef enum _VerifyMode {
984 e_VerifyModeETSI = 0,
986 e_VerifyModeAcrobat = 1
1005 explicit LTVVerifier(
const PDFDoc& document,
bool is_verify_signature,
bool use_expired_tst,
1006 bool ignore_doc_info, TimeType time_type);
1050 bool IsEmpty()
const;
1074 void SetVerifyMode(VerifyMode mode);
1134 typedef enum _LTVState {
1258 #endif // FS_LTVVERIFIER_H_ ResponseInfoLocation response_info_location
Response information (as revocation information) location where certificate response can be found....
Definition: fs_ltvverifier.h:527
This means certificate status is unknown.
Definition: fs_ltvverifier.h:235
String cert
A certificate contnet.
Definition: fs_ltvverifier.h:480
bool operator!=(const Response &other) const
Not equal operator.
Definition: fs_ltvverifier.h:108
bool operator!=(const CertIssuerPair &other) const
Not equal operator.
Definition: fs_ltvverifier.h:594
CertVerifyResultArray GetCertificateVerifyResults()
Get certificate verify results.
virtual DateTime GetDTSTime(const String &signature_content)=0
A callback function used to get the DTS (document time stamp signature) time from signature content.
bool IsEmpty() const
Check whether current object is empty or not.
bool operator!=(const TimeRange &other) const
Not equal operator.
Definition: fs_ltvverifier.h:196
TimeRange response_effect_time_range
The time range when the response takes effect.
Definition: fs_ltvverifier.h:489
Revocatoin reason: key compromise.
Definition: fs_ltvverifier.h:249
Response information is found in signature content.
Definition: fs_ltvverifier.h:279
void Set(const StringArray &ocsp_array, const StringArray &crl_array)
Set value.
Definition: fs_ltvverifier.h:702
virtual bool IsCertTrusted(const String &cert)=0
A callback function used to check if input certificate is trusted.
CFX_Object Object
Object type.
Definition: fs_basictypes.h:219
This means certificate is expired.
Definition: fs_ltvverifier.h:233
Revocatoin reason: cessation of operation.
Definition: fs_ltvverifier.h:257
TimeRange(const DateTime &start_time, const DateTime &end_time)
Constructor, with parameters.
Definition: fs_ltvverifier.h:144
bool operator==(const CertIssuerPair &other) const
Equal operator.
Definition: fs_ltvverifier.h:583
void Set(const String &cert, bool is_ca, bool is_trusted, Response response, const TimeRange &response_effect_time_range, const DateTime &revoke_time, CertStatus cert_status, RevocationReason reason, const DateTime &cert_check_time, bool exist_signature_vri_creation_time, const DateTime &signature_vri_creation_time, bool exist_response_signature_vri_creation_time, const DateTime &response_signature_vri_creation_time, ResponseInfoLocation response_info_location)
Set value.
Definition: fs_ltvverifier.h:456
String cert
Certificate content.
Definition: fs_ltvverifier.h:612
CertVerifyResult(const String &cert, bool is_ca, bool is_trusted, Response response, const TimeRange &response_effect_time_range, const DateTime &revoke_time, CertStatus cert_status, RevocationReason reason, const DateTime &cert_check_time, bool exist_signature_vri_creation_time, const DateTime &signature_vri_creation_time, bool exist_response_signature_vri_creation_time, const DateTime &response_signature_vri_creation_time, ResponseInfoLocation response_info_location)
Constructor, with parameters.
Definition: fs_ltvverifier.h:312
Location is not set.
Definition: fs_ltvverifier.h:275
Header file for PDF document related definitions and classes.
TimeRange & operator=(const TimeRange &other)
Assign operator.
Definition: fs_ltvverifier.h:172
This means certificate is valid.
Definition: fs_ltvverifier.h:229
virtual String GetOCSPSignature(const String &ocsp_data)=0
A callback function used to get the signature content from a OCSP response.
No response.
Definition: fs_ltvverifier.h:41
Definition: fs_basictypes.h:408
bool operator==(const Response &other) const
Equal operator.
Definition: fs_ltvverifier.h:97
Response information is found in DSS dictionary.
Definition: fs_ltvverifier.h:277
Revocatoin reason: superseded.
Definition: fs_ltvverifier.h:255
CertStatus cert_status
Certificate status. Please refer to values starting from CertVerifyResult::e_CertStatusValid and this...
Definition: fs_ltvverifier.h:497
CertIssuerPair(const String &cert, const String &issuer)
Constructor, with parameters.
Definition: fs_ltvverifier.h:542
Definition: fs_ltvverifier.h:531
virtual String GetTSTSignature(const String &signature_content)=0
A callback function used to get the time stamp token content from a signature content.
SignatureVerifyResultArray GetOCSPSigantureVerifyResults()
Get signature verify results for OCSP signature of each certificate.
Revocatoin reason: remove from CRL.
Definition: fs_ltvverifier.h:261
RevocationReason
Enumeration for revocation reason for a certificate.
Definition: fs_ltvverifier.h:243
Revocatoin reason: CA compromise.
Definition: fs_ltvverifier.h:251
~TimeRange()
Destructor.
Definition: fs_ltvverifier.h:153
CertIssuerPair()
Constructor.
Definition: fs_ltvverifier.h:548
virtual void Release()=0
A callback function used to release current callback object itself.
Response information is got by online request.
Definition: fs_ltvverifier.h:281
This means certificate is revoked.
Definition: fs_ltvverifier.h:231
This means LTV is enabled.
Definition: fs_ltvverifier.h:1138
virtual CertIssuerPair GetOCSPCertAndIssuer(const String &ocsp_data, const StringArray &trust_cert_chain)=0
A callback function used to get the cert-issuer pair of OCSP response.
Revocatoin reason: certificate hold.
Definition: fs_ltvverifier.h:259
Definition: fs_ltvverifier.h:956
CertIssuerPair & operator=(const CertIssuerPair &other)
Assign operator.
Definition: fs_ltvverifier.h:570
bool exist_signature_vri_creation_time
Indicate if creation time of siganture's VRI exists.
Definition: fs_ltvverifier.h:510
Response()
Constructor.
Definition: fs_ltvverifier.h:62
Definition: fs_pdfdoc.h:347
DateTime response_signature_vri_creation_time
Creation time of response signature's VRI. utc_hour_offset and utc_minite_offset of this time object ...
Definition: fs_ltvverifier.h:522
virtual StringArray GetCertChainFromSignature(const String &signature_content)=0
A callback function used to get the cert chain from the signature content.
bool operator==(const SignatureVerifyResult &other) const
Equal operator.
LTVState
Enumeration for LTV state that indicates if a signature is a LTV signature.
Definition: fs_ltvverifier.h:1134
virtual CertVerifyResult VerifyCRL(const CertIssuerPair &cert_issuer_pair, const String &crl_data)=0
A callback function used to verify whether the CRL response matches the certificate and get the verif...
DateTime GetSignatureCheckTime()
Get the time that is actually used to check signature.
bool is_trusted
Indicate if the certificate is truscted by user.
Definition: fs_ltvverifier.h:485
virtual DateTime GetTSTTime(const String &signature_content)=0
A callback function used to get the time stamp token time from signature content.
String GetSignatureName()
Get signature name.
bool is_ca
Indicate if the certificate is a CA certificate.
Definition: fs_ltvverifier.h:483
bool operator==(const char *str1, const CFX_ByteString &str2)
Check if two byte strings are equal.
Definition: fs_basictypes.h:128
Definition: fs_ltvverifier.h:931
ResponseType
Enumeration for response type.
Definition: fs_ltvverifier.h:39
CRL response.
Definition: fs_ltvverifier.h:43
Definition: fs_ltvverifier.h:618
virtual RevocationArrayInfo GetRevocationInfoFromSignatureData(const String &signature_content)=0
A callback function used to get the revocation information (in array type) from a signature.
virtual bool IsOCSPNeedCheck(const String &ocsp_data)=0
A callback function used to get flag which decides if need to check OCSP response.
DateTime signature_vri_creation_time
Creation time of a signature's VRI. utc_hour_offset and utc_minite_offset of this time object are ign...
Definition: fs_ltvverifier.h:515
Definition: fs_ltvverifier.h:32
bool operator==(const RevocationArrayInfo &other) const
Equal operator.
Definition: fs_ltvverifier.h:667
Definition: fs_ltvverifier.h:220
Definition: fs_ltvverifier.h:719
String response_data
Response content.
Definition: fs_ltvverifier.h:132
RevocationArrayInfo()
Constructor.
Definition: fs_ltvverifier.h:632
virtual DateTime GetOCSPProducedAtTime(const String &ocsp_data)=0
A callback function used to get the produce time of the OCSP response.
~CertVerifyResult()
Destructor.
Definition: fs_ltvverifier.h:346
~Response()
Destructor.
Definition: fs_ltvverifier.h:65
StringArray ocsp_array
An array of OCSP response content.
Definition: fs_ltvverifier.h:708
RevocationArrayInfo(const StringArray &ocsp_array, const StringArray &crl_array)
Constructor, with parameters.
Definition: fs_ltvverifier.h:626
TimeRange()
Constructor.
Definition: fs_ltvverifier.h:150
CertVerifyResult()
Constructor.
Definition: fs_ltvverifier.h:336
Response & operator=(const Response &other)
Assign operator.
Definition: fs_ltvverifier.h:84
Revocatoin reason: ceritifcate has no status.
Definition: fs_ltvverifier.h:245
virtual String GetCRLSignature(const String &crl_data)=0
A callback function used to get the signature content from a CRL response.
CertVerifyResult(const CertVerifyResult &other)
Constructor, with another response object.
Definition: fs_ltvverifier.h:353
uint32 GetSignatureState()
Get signature state.
CertStatus
Enumeration for certificate status.
Definition: fs_ltvverifier.h:227
Response response
A response for the certificate.
Definition: fs_ltvverifier.h:487
DateTime revoke_time
Revoked time got from the response.
Definition: fs_ltvverifier.h:491
Definition: fs_ltvverifier.h:136
This means LTV is not enabled.
Definition: fs_ltvverifier.h:1140
FX_UINT32 uint32
32-bit unsigned integer.
Definition: fs_basictypes.h:198
String issuer
An issuer of the certificate.
Definition: fs_ltvverifier.h:614
void * FS_HANDLE
Handle type.
Definition: fs_basictypes.h:216
Header file for common definitions and classes.
virtual CertVerifyResult VerifyOCSP(const CertIssuerPair &cert_issuer_pair, const String &ocsp_data)=0
A callback function used to verify whether the OCSP response matches the certificate and get the veri...
CertVerifyResult & operator=(const CertVerifyResult &other)
Assign operator.
Definition: fs_ltvverifier.h:377
void Set(const String &cert, const String &issuer)
Set value.
Definition: fs_ltvverifier.h:606
DateTime cert_check_time
The actual time when this certificate is checked validity. utc_hour_offset and utc_minite_offset of t...
Definition: fs_ltvverifier.h:508
~CertIssuerPair()
Destructor.
Definition: fs_ltvverifier.h:551
TimeRange(const TimeRange &other)
Constructor, with another time range object.
Definition: fs_ltvverifier.h:160
Definition: fs_basictypes.h:375
Definition: fs_basictypes.h:228
size_t GetSize() const
Get the size of elements in current array.
Revocatoin reason: affiliation changed.
Definition: fs_ltvverifier.h:253
void Set(ResponseType type, const String &response_data)
Set value.
Definition: fs_ltvverifier.h:121
void Set(const DateTime &start_time, const DateTime &end_time)
Set value.
Definition: fs_ltvverifier.h:208
bool operator!=(const SignatureVerifyResult &other) const
Not equal operator.
Revocatoin reason: unspecified reason.
Definition: fs_ltvverifier.h:247
RevocationReason reason
Revocation reason of the certificate. Please refer to values starting from CertVerifyResult::e_Reason...
Definition: fs_ltvverifier.h:503
virtual TimeRange GetCertValidTimeRange(const String &cert)=0
A callback function used to get the time range that represents validity period of a certificate.
Response(ResponseType type, const String &response_data)
Constructor, with parameters.
Definition: fs_ltvverifier.h:56
OCSP response.
Definition: fs_ltvverifier.h:45
CertIssuerPair(const CertIssuerPair &other)
Constructor, with another cert-issuer pair object.
Definition: fs_ltvverifier.h:558
RevocationArrayInfo(const RevocationArrayInfo &other)
Constructor, with another revocation array information object.
Definition: fs_ltvverifier.h:642
String GetAt(size_t index) const
Retrieve a copy of the element at position specified by index in current array.
TimeType
Enumeration for time type.
Definition: fs_ltvverifier.h:963
Foxit namespace.
Definition: fs_compare.h:27
bool operator==(const TimeRange &other) const
Equal operator.
Definition: fs_ltvverifier.h:185
LTVVerifier::TimeType GetSignatureCheckTimeType()
Get the type of the time that is actually used to check siganture.
BYTE STRING CLASS.
Definition: fx_string.h:317
String GetSignatureHashValue()
Get signature hash value.
bool operator!=(const RevocationArrayInfo &other) const
Not equal operator.
Definition: fs_ltvverifier.h:690
Definition: fs_ltvverifier.h:946
ResponseType type
Response type. Please refer to values starting from Response::e_TypeNone and this should be one of th...
Definition: fs_ltvverifier.h:130
DateTime start_time
Start time of current time range.
Definition: fs_ltvverifier.h:214
virtual bool IsIssuerMatchCert(const CertIssuerPair &cert_issuer_pair)=0
A callback function used to check if an issuer matches a certificate.
LTVState GetLTVState()
Get LTV state that indicates if a signature is a LTV signature.
DateTime end_time
End time of current time range.
Definition: fs_ltvverifier.h:216
Definition: fs_ltvverifier.h:534
Response(const Response &other)
Constructor, with another response object.
Definition: fs_ltvverifier.h:72
#define NULL
The null-pointer value.
Definition: fx_system.h:771
Definition: fs_signature.h:93
virtual Response GetResponseOnLineForSingleCert(const CertIssuerPair &cert_issuer_pair)=0
A callback function used to get response online for a certificate.
bool operator!=(const char *str1, const CFX_ByteString &str2)
Check if two byte strings are not equal.
Definition: fs_basictypes.h:140
bool exist_response_signature_vri_creation_time
Indicate if creation time of response signature's VRI exists.
Definition: fs_ltvverifier.h:517
SignatureVerifyResult(const SignatureVerifyResult &other)
Constructor, with another signature veirfy result object.
RevocationArrayInfo & operator=(const RevocationArrayInfo &other)
Assign operator.
Definition: fs_ltvverifier.h:654
Definition: fs_ltvverifier.h:1127
StringArray crl_array
An array of CRL response content.
Definition: fs_ltvverifier.h:710
SignatureVerifyResult GetTSTSignatureVerifyResult()
Get the verify result of time stamp token of this signature.
Revocatoin reason: privilege with drawn.
Definition: fs_ltvverifier.h:263
bool operator!=(const CertVerifyResult &other) const
Not equal operator.
Definition: fs_ltvverifier.h:423
ResponseInfoLocation
Enumeration for response information location.
Definition: fs_ltvverifier.h:273
~RevocationArrayInfo()
Destructor.
Definition: fs_ltvverifier.h:635
bool operator==(const CertVerifyResult &other) const
Equal operator.
Definition: fs_ltvverifier.h:402
~SignatureVerifyResult()
Destructor.
virtual bool IsCA(const String &cert)=0
A callback function used to judge whether a certificate is a CA certificate.
This means LTV is inactive.
Definition: fs_ltvverifier.h:1136
Revocatoin reason: AA compromise.
Definition: fs_ltvverifier.h:265
SignatureVerifyResult & operator=(const SignatureVerifyResult &other)
Assign operator.