version 1.41, 2007/05/09 19:17:59
|
version 1.42, 2007/09/12 20:35:02
|
|
|
| |
/** This class provides the interface that a client uses to create | /** This class provides the interface that a client uses to create |
SSL context. | SSL context. |
|
|
For the OSs that don't have /dev/random device file, |
|
must enable PEGASUS_SSL_RANDOMFILE flag and pass |
|
random file name to constructor. |
|
*/ | */ |
class PEGASUS_COMMON_LINKAGE SSLContext | class PEGASUS_COMMON_LINKAGE SSLContext |
{ | { |
|
|
@param verifyCert function pointer to a certificate verification | @param verifyCert function pointer to a certificate verification |
call back function. A null pointer indicates that no callback is | call back function. A null pointer indicates that no callback is |
requested for certificate verification. | requested for certificate verification. |
@param randomFile file path of a random file that is used as a seed |
@param randomFile file path of a random file that may be used as a seed |
for random number generation by OpenSSL. | for random number generation by OpenSSL. |
| |
|
NOTE: |
|
For platforms that support /dev/random(urandom), the /dev/random |
|
files will be used to seed OpenSSL. The specified random file |
|
may be used as a fallback when /dev/random(urandom) is unavailable |
|
or fails. Using /dev/random to seed OpenSSL is more secure than using |
|
a random file. |
|
|
|
An empty random file string indicates that a random file should not |
|
be used. If sufficient randomness is not achieved using /dev/random |
|
and/or a random file, an SSLException is thrown. |
|
|
@exception SSLException indicates failure to create an SSL context. | @exception SSLException indicates failure to create an SSL context. |
*/ | */ |
SSLContext( | SSLContext( |
|
|
@param verifyCert function pointer to a certificate verification | @param verifyCert function pointer to a certificate verification |
call back function. A null pointer indicates that no callback is | call back function. A null pointer indicates that no callback is |
requested for certificate verification. | requested for certificate verification. |
@param randomFile file path of a random file that is used as a seed |
@param randomFile file path of a random file that may be used as a seed |
for random number generation by OpenSSL. | for random number generation by OpenSSL. |
| |
|
NOTE: |
|
For platforms that support /dev/random(urandom), the /dev/random |
|
files will be used to seed OpenSSL. The specified random file |
|
may be used as a fallback when /dev/random(urandom) is unavailable |
|
or fails. Using /dev/random to seed OpenSSL is more secure than using |
|
a random file. |
|
|
|
An empty random file string indicates that a random file should not |
|
be used. If sufficient randomness is not achieved using /dev/random |
|
and/or a random file, an SSLException is thrown. |
|
|
@exception SSLException indicates failure to create an SSL context. | @exception SSLException indicates failure to create an SSL context. |
*/ | */ |
SSLContext( | SSLContext( |
|
|
@param verifyCert function pointer to a certificate verification | @param verifyCert function pointer to a certificate verification |
call back function. A null pointer indicates that no callback is | call back function. A null pointer indicates that no callback is |
requested for certificate verification. | requested for certificate verification. |
@param randomFile file path of a random file that is used as a seed |
@param randomFile file path of a random file that may be used as a seed |
for random number generation by OpenSSL. | for random number generation by OpenSSL. |
| |
|
NOTE: |
|
For platforms that support /dev/random(urandom), the /dev/random |
|
files will be used to seed OpenSSL. The specified random file |
|
may be used as a fallback when /dev/random(urandom) is unavailable |
|
or fails. Using /dev/random to seed OpenSSL is more secure than using |
|
a random file. |
|
|
|
An empty random file string indicates that a random file should not |
|
be used. If sufficient randomness is not achieved using /dev/random |
|
and/or a random file, an SSLException is thrown. |
|
|
@exception SSLException indicates failure to create an SSL context. | @exception SSLException indicates failure to create an SSL context. |
*/ | */ |
SSLContext( | SSLContext( |