blob: 55af46a6c9990e2b2f2a52384a852a2154e691d9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
|
// **********************************************************************
//
// Copyright (c) 2003-2012 ZeroC, Inc. All rights reserved.
//
// This copy of Ice is licensed to you under the terms described in the
// ICE_LICENSE file included in this distribution.
//
// **********************************************************************
#ifndef ICE_SSL_INSTANCE_H
#define ICE_SSL_INSTANCE_H
#include <IceSSL/InstanceF.h>
#include <IceSSL/UtilF.h>
#include <Ice/CommunicatorF.h>
#include <Ice/LoggerF.h>
#include <Ice/Network.h>
#include <Ice/ProtocolPluginFacadeF.h>
#include <IceSSL/Plugin.h>
#include <IceSSL/TrustManagerF.h>
#include <Ice/BuiltinSequences.h>
namespace IceSSL
{
class Instance : public IceUtil::Shared
{
public:
Instance(const Ice::CommunicatorPtr&);
~Instance();
void initialize();
void context(SSL_CTX*);
SSL_CTX* context() const;
void setCertificateVerifier(const CertificateVerifierPtr&);
void setPasswordPrompt(const PasswordPromptPtr&);
Ice::CommunicatorPtr communicator() const;
IceInternal::EndpointHostResolverPtr endpointHostResolver() const;
IceInternal::ProtocolSupport protocolSupport() const;
std::string defaultHost() const;
Ice::EncodingVersion defaultEncoding() const;
int networkTraceLevel() const;
std::string networkTraceCategory() const;
int securityTraceLevel() const;
std::string securityTraceCategory() const;
void verifyPeer(SSL*, SOCKET, const std::string&, const NativeConnectionInfoPtr&);
std::string sslErrors() const;
void traceConnection(SSL*, bool);
void destroy();
//
// OpenSSL callbacks.
//
std::string password(bool);
int verifyCallback(int, SSL*, X509_STORE_CTX*);
#ifndef OPENSSL_NO_DH
DH* dhParams(int);
#endif
private:
void parseProtocols(const Ice::StringSeq&);
Ice::LoggerPtr _logger;
bool _initOpenSSL;
IceInternal::ProtocolPluginFacadePtr _facade;
int _securityTraceLevel;
std::string _securityTraceCategory;
bool _initialized;
SSL_CTX* _ctx;
std::string _defaultDir;
bool _checkCertName;
int _verifyDepthMax;
int _verifyPeer;
std::string _password;
#ifndef OPENSSL_NO_DH
DHParamsPtr _dhParams;
#endif
CertificateVerifierPtr _verifier;
PasswordPromptPtr _prompt;
TrustManagerPtr _trustManager;
};
}
#endif
|
