Class OpenSSLContext

Encapsulates the configuration for an SSL tunnel.


							
					class OpenSSLContext
					
  : TLSContext
					;

Note that when creating an SSLContext with SSLContextKind.client, the peerValidationMode will be set to SSLPeerValidationMode.trustedCert, but no trusted certificate authorities are added by default. Use useTrustedCertificateFile to add those.

Constructors

Name	Description
`this` (kind, ver)

Properties

Name	Type	Description
`alpnCallback`[set]	`@safe string delegate(string[])`	Callback function invoked by server to choose alpn
`alpnCallback`[get]	`@safe string delegate(string[])`	Get the current ALPN callback function
`kind`[get]	`TLSContextKind`	The kind of SSL context (client/server)
`maxCertChainLength`[get, set]	`int`	The maximum length of an accepted certificate chain.
`peerValidationCallback`[get, set]	`@safe bool delegate(scope TLSPeerValidationData)`	An optional user callback for peer validation.
`peerValidationMode`[get, set]	`TLSPeerValidationMode`	Specifies the validation level of remote peers.
`sniCallback`[get, set]	`@safe TLSContext delegate(string)`	The callback used to associcate host names with TLS certificates/contexts.

Methods

Name	Description
`createStream` (underlying, state, peer_name, peer_address)
`setCipherList` (list)	Set the list of cipher specifications to use for SSL/TLS tunnels.
`setClientALPN` (alpn_list)	Invoked by client to offer alpn
`setDHParams` (pem_file)	Set params to use for DH cipher.
`setECDHCurve` (curve)	Set the elliptic curve to use for ECDH cipher.
`useCertificateChainFile` (path)	Sets a certificate file to use for authenticating to the remote peer
`usePrivateKeyFile` (path)	Sets the private key to use for authenticating to the remote peer based on the configured certificate chain file.
`useTrustedCertificateFile` (path)	Sets the list of trusted certificates for verifying peer certificates.
`createStream` (underlying, state, peer_name, peer_address)	Creates a new stream associated to this context.
`setCipherList` (list)	Set the list of cipher specifications to use for TLS tunnels.
`setDHParams` (pem_file)	Set params to use for DH cipher.
`setECDHCurve` (curve)	Set the elliptic curve to use for ECDH cipher.
`useCertificateChainFile` (path)	Sets a certificate file to use for authenticating to the remote peer
`usePrivateKeyFile` (path)	Sets the private key to use for authenticating to the remote peer based on the configured certificate chain file.
`useTrustedCertificateFile` (path)	Sets the list of trusted certificates for verifying peer certificates.

Authors	Sönke Ludwig
Copyright	© 2012-2014 Sönke Ludwig
License	Subject to the terms of the MIT license, as written in the included LICENSE.txt file.