ksIotFrameworkLib/ks_cert_utils_8h_source.html

/*

 *  Copyright (c) 2021-2025, Krzysztof Strehlau

 *

 *  This file is a part of the ksIotFramework library.

 *  All licensing information can be found inside LICENSE.md file.

 *

 *  https://github.com/cziter15/ksIotFrameworkLib/blob/master/LICENSE

 */


#pragma once


#include <string>

#include <stdint.h>


#if (defined(ESP32))

    #if (defined(ESP32) && ESP_ARDUINO_VERSION_MAJOR >= 3)

        #define ksCertUtilsNetCLientSecure_t NetworkClientSecure

    #else

        #define ksCertUtilsNetCLientSecure_t WiFiClientSecure

    #endif

    class ksCertUtilsNetCLientSecure_t;

#elif (defined(ESP8266))

    namespace BearSSL{class WiFiClientSecure;}

    #define ksCertUtilsNetCLientSecure_t BearSSL::WiFiClientSecure

#else

    #error Platform not implemented.

#endif


namespace ksf::misc

{


    class ksCertFingerprint

    {

        protected:

            bool fingerprintToBytes(const std::string& fingerprint, uint8_t* bytes, uint8_t bytesLen) const;


        public:

            ksCertFingerprint();


            virtual ~ksCertFingerprint();


            virtual bool setup(ksCertUtilsNetCLientSecure_t* client, const std::string& fingerprint) = 0;


            virtual bool verify(ksCertUtilsNetCLientSecure_t* client) const = 0;

    };


#ifdef ESP32

    class ksCertFingerprintESP32 : public ksCertFingerprint

    {

        private:

            uint8_t fingerprintBytes[32];


        public:

            bool setup(ksCertUtilsNetCLientSecure_t* client, const std::string& fingerprint) override;


            bool verify(ksCertUtilsNetCLientSecure_t* client) const override;

    };


    using ksCertFingerprintHolder = ksCertFingerprintESP32;

#endif


#ifdef ESP8266

    class ksCertFingerprintESP8266 : public ksCertFingerprint

    {

        public:

            bool setup(ksCertUtilsNetCLientSecure_t* client, const std::string& fingerprint) override;


            bool verify(ksCertUtilsNetCLientSecure_t* client) const override;

    };


    using ksCertFingerprintHolder = ksCertFingerprintESP8266;

#endif

}

ksf::misc::ksCertFingerprint
Interface for certificate fingerprint verification.
Definition ksCertUtils.h:38

ksf::misc::ksCertFingerprint::setup
virtual bool setup(ksCertUtilsNetCLientSecure_t *client, const std::string &fingerprint)=0
Performs certificate fingerprint setup (platform dependent).

ksf::misc::ksCertFingerprint::~ksCertFingerprint
virtual ~ksCertFingerprint()
Destructor.

ksf::misc::ksCertFingerprint::verify
virtual bool verify(ksCertUtilsNetCLientSecure_t *client) const =0
Performs certificate fingerprint validation (platform dependent).

ksf::misc::ksCertFingerprint::ksCertFingerprint
ksCertFingerprint()
Constructor.

ksf::misc::ksCertFingerprint::fingerprintToBytes
bool fingerprintToBytes(const std::string &fingerprint, uint8_t *bytes, uint8_t bytesLen) const
Converts fingerprint string into array of bytes.
Definition ksCertUtils.cpp:37