1/* GIO - GLib Input, Output and Streaming Library
2 *
3 * Copyright © 2010 Collabora, Ltd
4 *
5 * This library is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU Lesser General Public
7 * License as published by the Free Software Foundation; either
8 * version 2.1 of the License, or (at your option) any later version.
9 *
10 * This library is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 * Lesser General Public License for more details.
14 *
15 * You should have received a copy of the GNU Lesser General
16 * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
17 *
18 * Author: Stef Walter <stefw@collabora.co.uk>
19 */
20
21#include "config.h"
22
23#include "gtlsfiledatabase.h"
24
25#include "ginitable.h"
26#include "gtlsbackend.h"
27#include "gtlsdatabase.h"
28#include "glibintl.h"
29
30/**
31 * SECTION:gtlsfiledatabase
32 * @short_description: TLS file based database type
33 * @include: gio/gio.h
34 *
35 * #GTlsFileDatabase is implemented by #GTlsDatabase objects which load
36 * their certificate information from a file. It is an interface which
37 * TLS library specific subtypes implement.
38 *
39 * Since: 2.30
40 */
41
42/**
43 * GTlsFileDatabase:
44 *
45 * Implemented by a #GTlsDatabase which allows you to load certificates
46 * from a file.
47 *
48 * Since: 2.30
49 */
50G_DEFINE_INTERFACE (GTlsFileDatabase, g_tls_file_database, G_TYPE_TLS_DATABASE)
51
52static void
53g_tls_file_database_default_init (GTlsFileDatabaseInterface *iface)
54{
55 /**
56 * GTlsFileDatabase:anchors:
57 *
58 * The path to a file containing PEM encoded certificate authority
59 * root anchors. The certificates in this file will be treated as
60 * root authorities for the purpose of verifying other certificates
61 * via the g_tls_database_verify_chain() operation.
62 *
63 * Since: 2.30
64 */
65 g_object_interface_install_property (g_iface: iface,
66 pspec: g_param_spec_string (name: "anchors",
67 P_("Anchors"),
68 P_("The certificate authority anchor file"),
69 NULL,
70 flags: G_PARAM_READWRITE |
71 G_PARAM_CONSTRUCT |
72 G_PARAM_STATIC_STRINGS));
73}
74
75/**
76 * g_tls_file_database_new:
77 * @anchors: (type filename): filename of anchor certificate authorities.
78 * @error: #GError for error reporting, or %NULL to ignore.
79 *
80 * Creates a new #GTlsFileDatabase which uses anchor certificate authorities
81 * in @anchors to verify certificate chains.
82 *
83 * The certificates in @anchors must be PEM encoded.
84 *
85 * Returns: (transfer full) (type GTlsFileDatabase): the new
86 * #GTlsFileDatabase, or %NULL on error
87 *
88 * Since: 2.30
89 */
90GTlsDatabase*
91g_tls_file_database_new (const gchar *anchors,
92 GError **error)
93{
94 GObject *database;
95 GTlsBackend *backend;
96
97 backend = g_tls_backend_get_default ();
98 database = g_initable_new (object_type: g_tls_backend_get_file_database_type (backend),
99 NULL, error,
100 first_property_name: "anchors", anchors,
101 NULL);
102 return G_TLS_DATABASE (database);
103}
104

source code of gtk/subprojects/glib/gio/gtlsfiledatabase.c