📄 tlsbase.h
字号:
/* Copyright (c) 2007-2008 by Jakob Schroeter <js@camaya.net> This file is part of the gloox library. http://camaya.net/gloox This software is distributed under a license. The full license agreement can be found in the file LICENSE in this distribution. This software may not be copied, modified, sold or distributed other than expressed in the named license agreement. This software is distributed without any warranty.*/#ifndef TLSBASE_H__#define TLSBASE_H__#include "gloox.h"#include "tlshandler.h"namespace gloox{ /** * @brief An abstract base class for TLS implementations. * * @author Jakob Schr鰐er <js@camaya.net> * @since 0.9 */ class GLOOX_API TLSBase { public: /** * Constructor. * @param th The TLSHandler to handle TLS-related events. * @param server The server to use in certificate verification. */ TLSBase( TLSHandler *th, const std::string server ) : m_handler( th ), m_server( server ), m_secure( false ), m_valid( false ) {} /** * Virtual destructor. */ virtual ~TLSBase() {} /** * Use this function to feed unencrypted data to the encryption implementation. * The encrypted result will be pushed to the TLSHandler's handleEncryptedData() function. * @param data The data to encrypt. * @return Whether or not the data was used successfully. */ virtual bool encrypt( const std::string& data ) = 0; /** * Use this function to feed encrypted data or received handshake data to the * encryption implementation. Handshake data will be eaten, unencrypted data * will be pushed to the TLSHandler's handleDecryptedData() function. * @param data The data to decrypt. * @return The number of bytes used from the input. */ virtual int decrypt( const std::string& data ) = 0; /** * This function performs internal cleanup and will be called after a failed handshake attempt. */ virtual void cleanup() = 0; /** * This functiopn performs the TLS handshake. Handshake data from the server side should be * fed in using decrypt(). Handshake data that is to be sent to the other side is pushed through * TLSBase's handleEncryptedData(). * @return @b True if the handshake was successful or if more input is needed, @b false if the * handshake failed. */ virtual bool handshake() = 0; /** * Returns the state of the encryption. * @return The state of the encryption. */ virtual bool isSecure() const { return m_secure; } /** * Use this function to set a number of trusted root CA certificates which shall be * used to verify a servers certificate. * @param cacerts A list of absolute paths to CA root certificate files in PEM format. */ virtual void setCACerts( const StringList& cacerts ) = 0; /** * This function is used to retrieve certificate and connection info of a encrypted connection. * @return Certificate information. */ virtual const CertInfo& fetchTLSInfo() const { return m_certInfo; } /** * Use this function to set the user's certificate and private key. The certificate will * be presented to the server upon request and can be used for SASL EXTERNAL authentication. * The user's certificate file should be a bundle of more than one certificate in PEM format. * The first one in the file should be the user's certificate, each cert following that one * should have signed the previous one. * @note These certificates are not necessarily the same as those used to verify the server's * certificate. * @param clientKey The absolute path to the user's private key in PEM format. * @param clientCerts A path to a certificate bundle in PEM format. */ virtual void setClientCert( const std::string& clientKey, const std::string& clientCerts ) = 0; protected: TLSHandler *m_handler; StringList m_cacerts; std::string m_clientKey; std::string m_clientCerts; std::string m_server; CertInfo m_certInfo; bool m_secure; bool m_valid; };}#endif // TLSBASE_H__⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -