RTI Secure Wan Transport
Version 5.3.0
|
Set of TLS properties for certificate authorities (CAs) and verification. More...
Data Fields | |
char * | ca_file |
Name of file containing Certificate Authority certificates. | |
char * | ca_path |
Paths to directories containing Certificate Authority certificates. | |
char * | ca |
List of Certificate Authority certificates. | |
DDS_Long | verify_depth |
Maximum certificate chain length for verification. | |
DDS_Long | verify_peer |
If non-zero, use mutual authentication when performing TLS handshake; if zero, only client will verify server certificate. | |
NDDS_Transport_TLS_Verify_Callback | callback |
Callback used to verify peer certificates. | |
Set of TLS properties for certificate authorities (CAs) and verification.
char* NDDS_Transport_TLS_Verification::ca_file |
Name of file containing Certificate Authority certificates.
File should be in PEM format. See the OpenSSL manual page for SSL_load_verify_locations for more information.
At least one of ca_file and ca_path must be specified; both may be specified.
[default] NULL
char* NDDS_Transport_TLS_Verification::ca_path |
Paths to directories containing Certificate Authority certificates.
Files should be in PEM format, and follow the OpenSSL-required naming conventions. See the OpenSSL manual page for SSL_CTX_load_verify_locations for more information.
At least one of ca_file and ca_path must be specified; both may be specified.
[default] NULL
char* NDDS_Transport_TLS_Verification::ca |
List of Certificate Authority certificates.
Certificates should be in PEM format, and follow the OpenSSL-required naming conventions. See the OpenSSL manual page for X509_STORE_add_cert for more information.
ca_file and ca_path have precedence if specified. If not, ca must be specified.
[default] NULL
DDS_Long NDDS_Transport_TLS_Verification::verify_depth |
Maximum certificate chain length for verification.
[default] -1 (no limit)
DDS_Long NDDS_Transport_TLS_Verification::verify_peer |
If non-zero, use mutual authentication when performing TLS handshake; if zero, only client will verify server certificate.
[default] 0 (non-mutual verify)
NDDS_Transport_TLS_Verify_Callback NDDS_Transport_TLS_Verification::callback |
Callback used to verify peer certificates.
See the OpenSSL manual page for SSL_set_verify for more information. There are a number of default callbacks included in the Secure Transport. See NDDS_Transport_TLS_default_verify_callback() , NDDS_Transport_TLS_verbose_verify_callback() .
[default] NULL (use NDDS_Transport_TLS_default_verify_callback() )