Class OpenSSLContext
Encapsulates the configuration for an SSL tunnel.
Note that when creating an SSLContext with SSLContextKind.client, the
peerValidationMode
will be set to SSLPeerValidationMode.trustedCert,
but no trusted certificate authorities are added by default. Use
useTrustedCertificateFile
to add those.
Inherits from
-
Object
(base class) -
TLSContext
Constructors
Name | Description |
---|---|
this
|
Properties
Name | Type | Description |
---|---|---|
alpnCallback
[set]
|
string delegate(string[]) |
Callback function invoked by server to choose alpn |
alpnCallback
[get]
|
string delegate(string[]) |
Get the current ALPN callback function |
kind
[get]
|
TLSContextKind |
The kind of SSL context (client/server)
|
maxCertChainLength
[get, set]
|
int |
The maximum length of an accepted certificate chain. |
peerValidationCallback
[get, set]
|
bool delegate(scope TLSPeerValidationData) |
An optional user callback for peer validation.
|
peerValidationMode
[get, set]
|
TLSPeerValidationMode |
Specifies the validation level of remote peers. |
sniCallback
[get, set]
|
TLSContext delegate(string) |
The callback used to associcate host names with TLS certificates/contexts.
|
Methods
Name | Description |
---|---|
createStream
|
|
setCipherList
|
Set the list of cipher specifications to use for SSL/TLS tunnels.
|
setClientALPN
|
Invoked by client to offer alpn |
setDHParams
|
Set params to use for DH cipher. |
setECDHCurve
|
Set the elliptic curve to use for ECDH cipher.
|
useCertificateChainFile
|
Sets a certificate file to use for authenticating to the remote peer |
usePrivateKeyFile
|
Sets the private key to use for authenticating to the remote peer based |
useTrustedCertificateFile
|
Sets the list of trusted certificates for verifying peer certificates. |
createStream
|
Creates a new stream associated to this context. |
Authors
Sönke Ludwig
Copyright
© 2012-2014 RejectedSoftware e.K.
License
Subject to the terms of the MIT license, as written in the included LICENSE.txt file.