RTI Secure Wan Transport  Version 6.0.0
 All Data Structures Functions Variables Typedefs Enumerations Groups Pages
Data Fields
NDDS_Transport_TLS_Verification Struct Reference
OpenSSL-Related Configuration

Set of TLS properties for certificate authorities (CAs) and verification. More...

Data Fields

char * ca_file
 Name of file containing Certificate Authority certificates.
 
char * ca_path
 Paths to directories containing Certificate Authority certificates.
 
char * ca
 List of Certificate Authority certificates.
 
DDS_Long verify_depth
 Maximum certificate chain length for verification.
 
DDS_Long verify_peer
 If non-zero, use mutual authentication when performing TLS handshake; if zero, only client will verify server certificate.
 
NDDS_Transport_TLS_Verify_Callback callback
 Callback used to verify peer certificates.
 

Detailed Description

Set of TLS properties for certificate authorities (CAs) and verification.

Field Documentation

char* NDDS_Transport_TLS_Verification::ca_file

Name of file containing Certificate Authority certificates.

File should be in PEM format. See the OpenSSL manual page for SSL_load_verify_locations for more information.

At least one of ca_file and ca_path must be specified; both may be specified.

[default] NULL

char* NDDS_Transport_TLS_Verification::ca_path

Paths to directories containing Certificate Authority certificates.

Files should be in PEM format, and follow the OpenSSL-required naming conventions. See the OpenSSL manual page for SSL_CTX_load_verify_locations for more information.

At least one of ca_file and ca_path must be specified; both may be specified.

[default] NULL

char* NDDS_Transport_TLS_Verification::ca

List of Certificate Authority certificates.

Certificates should be in PEM format, and follow the OpenSSL-required naming conventions. See the OpenSSL manual page for X509_STORE_add_cert for more information.

ca_file and ca_path have precedence if specified. If not, ca must be specified.

[default] NULL

DDS_Long NDDS_Transport_TLS_Verification::verify_depth

Maximum certificate chain length for verification.

[default] -1 (no limit)

DDS_Long NDDS_Transport_TLS_Verification::verify_peer

If non-zero, use mutual authentication when performing TLS handshake; if zero, only client will verify server certificate.

[default] 0 (non-mutual verify)

NDDS_Transport_TLS_Verify_Callback NDDS_Transport_TLS_Verification::callback

Callback used to verify peer certificates.

See the OpenSSL manual page for SSL_set_verify for more information. There are a number of default callbacks included in the Secure Transport. See NDDS_Transport_TLS_default_verify_callback() , NDDS_Transport_TLS_verbose_verify_callback() .

[default] NULL (use NDDS_Transport_TLS_default_verify_callback() )

RTI Secure Wan Transport Version 6.0.0 Copyright © Sun Mar 3 2019 Real-Time Innovations, Inc