Conform to OFTLSSocket
This also introduces automatic certificate verification and enables it by default, as required by OFTLSSocket. There are still TODOs until OFTLSSocket is fully implemented.
This commit is contained in:
parent
01b588e4d6
commit
eed791dff1
4 changed files with 139 additions and 36 deletions
|
|
@ -33,17 +33,19 @@
|
|||
SSL *_SSL;
|
||||
OFString *_certificateFile, *_privateKeyFile;
|
||||
const char *_privateKeyPassphrase;
|
||||
bool _requestsClientCertificates;
|
||||
bool _certificateVerificationEnabled;
|
||||
bool _requestClientCertificatesEnabled;
|
||||
}
|
||||
|
||||
#ifdef OF_HAVE_PROPERTIES
|
||||
@property bool requestsClientCertificates;
|
||||
@property (getter=isRequestClientCertificatesEnabled)
|
||||
bool requestClientCertificatesEnabled;
|
||||
#endif
|
||||
|
||||
- initWithSocket: (OFTCPSocket*)socket;
|
||||
- (void)SSL_super_close;
|
||||
- (void)setRequestsClientCertificates: (bool)enabled;
|
||||
- (bool)requestsClientCertificates;
|
||||
- (void)setRequestClientCertificatesEnabled: (bool)enabled;
|
||||
- (bool)isRequestClientCertificatesEnabled;
|
||||
- (OFDataArray*)channelBindingDataWithType: (OFString*)type;
|
||||
- (X509Certificate*)peerCertificate;
|
||||
- (void)verifyPeerCertificate;
|
||||
|
|
|
|||
Reference in a new issue