|
RTI TCP Transport Version 7.3.0
|
Set of TLS properties for certificate authorities (CAs) and verification. More...
#include <rtitls_openssl.h>
Data Fields | |
| char * | ca_file |
| Name of file containing Certificate Authority certificates. More... | |
| char * | ca_path |
| Paths to directories containing Certificate Authority certificates. More... | |
| char * | ca |
| List of Certificate Authority certificates. More... | |
| DDS_Long | verify_depth |
| Maximum certificate chain length for verification. More... | |
| RTITLS_Verify_Callback | callback |
| Callback used to verify peer certificates. More... | |
| char * | crl_file |
| Name of file containing Certificate Revocation List. More... | |
Set of TLS properties for certificate authorities (CAs) and verification.
| char* RTITLS_Verification::ca_file |
Name of file containing Certificate Authority certificates.
File should be in PEM format. See the OpenSSL manual page for SSL_load_verify_locations for more information.
At least one of ca_file and ca_path must be specified; both may be specified.
[default] NULL
| char* RTITLS_Verification::ca_path |
Paths to directories containing Certificate Authority certificates.
Files should be in PEM format, and follow the OpenSSL-required naming conventions. See the OpenSSL manual page for SSL_CTX_load_verify_locations for more information.
At least one of ca_file and ca_path must be specified; both may be specified.
[default] NULL
| char* RTITLS_Verification::ca |
List of Certificate Authority certificates.
Certificates should be in PEM format, and follow the OpenSSL-required naming conventions. See the OpenSSL manual page for X509_STORE_add_cert for more information.
ca_file and ca_path have precedence if specified. If not, ca must be specified.
[default] NULL
| DDS_Long RTITLS_Verification::verify_depth |
Maximum certificate chain length for verification.
[default] -1 (no limit)
| RTITLS_Verify_Callback RTITLS_Verification::callback |
Callback used to verify peer certificates.
See the OpenSSL manual page for SSL_set_verify for more information. There are a number of default callbacks included in the Secure Transport. See RTITLS_default_verify_callback() , RTITLS_verbose_verify_callback() .
[default] NULL (use RTITLS_default_verify_callback() )
| char* RTITLS_Verification::crl_file |
Name of file containing Certificate Revocation List.
File should be in PEM format.
[default] NULL