dd/d96/qsslconfiguration_8h_source.html

// Copyright (C) 2016 The Qt Company Ltd.

// Copyright (C) 2014 BlackBerry Limited. All rights reserved.

// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only


/****************************************************************************

**

** In addition, as a special exception, the copyright holders listed above give

** permission to link the code of its release of Qt with the OpenSSL project's

** "OpenSSL" library (or modified versions of the "OpenSSL" library that use the

** same license as the original version), and distribute the linked executables.

**

** You must comply with the GNU General Public License version 2 in all

** respects for all of the code used other than the "OpenSSL" code.  If you

** modify this file, you may extend this exception to your version of the file,

** but you are not obligated to do so.  If you do not wish to do so, delete

** this exception statement from your version of this file.

**

****************************************************************************/


#ifndef QSSLCONFIGURATION_H

#define QSSLCONFIGURATION_H


#include <QtNetwork/qtnetworkglobal.h>

#include <QtCore/qmap.h>

#include <QtCore/qshareddata.h>

#include <QtNetwork/qsslsocket.h>

#include <QtNetwork/qssl.h>


#ifndef QT_NO_SSL


QT_BEGIN_NAMESPACE


class QSslCertificate;

class QSslCipher;

class QSslKey;

class QSslEllipticCurve;

class QSslDiffieHellmanParameters;


class QSslConfigurationPrivate;


class Q_NETWORK_EXPORT QSslConfiguration

{

public:

    QSslConfiguration();

    QSslConfiguration(const QSslConfiguration &other);

    ~QSslConfiguration();

    QSslConfiguration &operator=(QSslConfiguration &&other) noexcept { swap(other); return *this; }

    QSslConfiguration &operator=(const QSslConfiguration &other);


    void swap(QSslConfiguration &other) noexcept

    { d.swap(other.d); }


    bool operator==(const QSslConfiguration &other) const;


    inline bool operator!=(const QSslConfiguration &other) const

    { return !(*this == other); }


    bool isNull() const;


    QSsl::SslProtocol protocol() const;

    void setProtocol(QSsl::SslProtocol protocol);


    // Verification

    QSslSocket::PeerVerifyMode peerVerifyMode() const;

    void setPeerVerifyMode(QSslSocket::PeerVerifyMode mode);


    int peerVerifyDepth() const;

    void setPeerVerifyDepth(int depth);


    // Certificate & cipher configuration

    QList<QSslCertificate> localCertificateChain() const;

    void setLocalCertificateChain(const QList<QSslCertificate> &localChain);


    QSslCertificate localCertificate() const;

    void setLocalCertificate(const QSslCertificate &certificate);


    QSslCertificate peerCertificate() const;

    QList<QSslCertificate> peerCertificateChain() const;

    QSslCipher sessionCipher() const;

    QSsl::SslProtocol sessionProtocol() const;


    // Private keys, for server sockets

    QSslKey privateKey() const;

    void setPrivateKey(const QSslKey &key);


    // Cipher settings

    QList<QSslCipher> ciphers() const;

    void setCiphers(const QList<QSslCipher> &ciphers);

    void setCiphers(const QString &ciphers);

    static QList<QSslCipher> supportedCiphers();


    // Certificate Authority (CA) settings

    QList<QSslCertificate> caCertificates() const;

    void setCaCertificates(const QList<QSslCertificate> &certificates);

    bool addCaCertificates(

            const QString &path, QSsl::EncodingFormat format = QSsl::Pem,

            QSslCertificate::PatternSyntax syntax = QSslCertificate::PatternSyntax::FixedString);

    void addCaCertificate(const QSslCertificate &certificate);

    void addCaCertificates(const QList<QSslCertificate> &certificates);


    static QList<QSslCertificate> systemCaCertificates();


    void setSslOption(QSsl::SslOption option, bool on);

    bool testSslOption(QSsl::SslOption option) const;


    QByteArray sessionTicket() const;

    void setSessionTicket(const QByteArray &sessionTicket);

    int sessionTicketLifeTimeHint() const;


    QSslKey ephemeralServerKey() const;


    // EC settings

    QList<QSslEllipticCurve> ellipticCurves() const;

    void setEllipticCurves(const QList<QSslEllipticCurve> &curves);

    static QList<QSslEllipticCurve> supportedEllipticCurves();


    QByteArray preSharedKeyIdentityHint() const;

    void setPreSharedKeyIdentityHint(const QByteArray &hint);


    QSslDiffieHellmanParameters diffieHellmanParameters() const;

    void setDiffieHellmanParameters(const QSslDiffieHellmanParameters &dhparams);


    QMap<QByteArray, QVariant> backendConfiguration() const;

    void setBackendConfigurationOption(const QByteArray &name, const QVariant &value);

    void setBackendConfiguration(const QMap<QByteArray, QVariant> &backendConfiguration = QMap<QByteArray, QVariant>());


    static QSslConfiguration defaultConfiguration();

    static void setDefaultConfiguration(const QSslConfiguration &configuration);


#if QT_CONFIG(dtls) || defined(Q_QDOC)

    bool dtlsCookieVerificationEnabled() const;

    void setDtlsCookieVerificationEnabled(bool enable);


    static QSslConfiguration defaultDtlsConfiguration();

    static void setDefaultDtlsConfiguration(const QSslConfiguration &configuration);

#endif // dtls


    bool handshakeMustInterruptOnError() const;

    void setHandshakeMustInterruptOnError(bool interrupt);


    bool missingCertificateIsFatal() const;

    void setMissingCertificateIsFatal(bool cannotRecover);


    void setOcspStaplingEnabled(bool enable);

    bool ocspStaplingEnabled() const;


    enum NextProtocolNegotiationStatus {

        NextProtocolNegotiationNone,

        NextProtocolNegotiationNegotiated,

        NextProtocolNegotiationUnsupported

    };


    void setAllowedNextProtocols(const QList<QByteArray> &protocols);

    QList<QByteArray> allowedNextProtocols() const;


    QByteArray nextNegotiatedProtocol() const;

    NextProtocolNegotiationStatus nextProtocolNegotiationStatus() const;


    static const char ALPNProtocolHTTP2[];

    static const char NextProtocolHttp1_1[];


private:

    friend class QSslSocket;

    friend class QSslConfigurationPrivate;

    friend class QSslContext;

    friend class QTlsBackend;

    QSslConfiguration(QSslConfigurationPrivate *dd);

    QSharedDataPointer<QSslConfigurationPrivate> d;

};


Q_DECLARE_SHARED(QSslConfiguration)


QT_END_NAMESPACE


QT_DECL_METATYPE_EXTERN(QSslConfiguration, Q_NETWORK_EXPORT)


#endif  // QT_NO_SSL


#endif

QByteArray
\inmodule QtCore
Definition qbytearray.h:57

QSslCertificate
The QSslCertificate class provides a convenient API for an X509 certificate.
Definition qsslcertificate.h:35

QSslCertificate::PatternSyntax
PatternSyntax
Definition qsslcertificate.h:49

QSslCertificate::PatternSyntax::FixedString
@ FixedString

QSslCipher
The QSslCipher class represents an SSL cryptographic cipher.
Definition qsslcipher.h:22

QSslConfigurationPrivate
Definition qsslconfiguration_p.h:47

QSslConfiguration
The QSslConfiguration class holds the configuration and state of an SSL connection.
Definition qsslconfiguration.h:41

QSslConfiguration::operator=
QSslConfiguration & operator=(QSslConfiguration &&other) noexcept
Definition qsslconfiguration.h:46

QSslConfiguration::swap
void swap(QSslConfiguration &other) noexcept
Definition qsslconfiguration.h:49

QSslConfiguration::operator!=
bool operator!=(const QSslConfiguration &other) const
Returns true if this QSslConfiguration differs from other.
Definition qsslconfiguration.h:53

QSslConfiguration::NextProtocolNegotiationStatus
NextProtocolNegotiationStatus
Describes the status of the Next Protocol Negotiation (NPN) or Application-Layer Protocol Negotiation...
Definition qsslconfiguration.h:145

QSslConfiguration::NextProtocolNegotiationNone
@ NextProtocolNegotiationNone
Definition qsslconfiguration.h:146

QSslConfiguration::NextProtocolNegotiationNegotiated
@ NextProtocolNegotiationNegotiated
Definition qsslconfiguration.h:147

QSslContext
Definition qsslcontext_openssl_p.h:31

QSslDiffieHellmanParameters
The QSslDiffieHellmanParameters class provides an interface for Diffie-Hellman parameters for servers...
Definition qssldiffiehellmanparameters.h:31

QSslEllipticCurve
Represents an elliptic curve for use by elliptic-curve cipher algorithms.
Definition qsslellipticcurve.h:18

QSslKey
The QSslKey class provides an interface for private and public keys.
Definition qsslkey.h:23

QSslSocket
The QSslSocket class provides an SSL encrypted socket for both clients and servers.
Definition qsslsocket.h:29

QSslSocket::PeerVerifyMode
PeerVerifyMode
Definition qsslsocket.h:40

QString
\macro QT_RESTRICTED_CAST_FROM_ASCII
Definition qstring.h:129

QTlsBackend
QTlsBackend is a factory class, providing implementations for the QSsl classes.
Definition qtlsbackend_p.h:266

QVariant
\inmodule QtCore
Definition qvariant.h:65

QSsl::EncodingFormat
EncodingFormat
Describes supported encoding formats for certificates and keys.
Definition qssl.h:28

QSsl::Pem
@ Pem
Definition qssl.h:29

QSsl::SslOption
SslOption
Describes the options that can be used to control the details of SSL behaviour.
Definition qssl.h:73

QSsl::SslProtocol
SslProtocol
Describes the protocol of the cipher.
Definition qssl.h:50

QT_BEGIN_NAMESPACE
Combined button and popup list for selecting options.
Definition qstandardpaths_haiku.cpp:21

QT_END_NAMESPACE
Definition qsharedpointer.cpp:1590

value
EGLOutputLayerEXT EGLint EGLAttrib value
[5]
Definition qeglstreamconvenience_p.h:46

QT_DECL_METATYPE_EXTERN
#define QT_DECL_METATYPE_EXTERN(TYPE, EXPORT)
Definition qmetatype.h:1388

depth
GLint GLenum GLsizei GLsizei GLsizei depth
Definition qopengles2ext.h:603

mode
GLenum mode
Definition qopengles2ext.h:333

key
GLuint64 key
Definition qopengles2ext.h:2268

enable
GLboolean enable
Definition qopengles2ext.h:855

name
GLuint name
Definition qopengles2ext.h:156

format
GLint GLsizei GLsizei GLenum format
Definition qopengles2ext.h:206

path
GLsizei const GLchar *const  * path
Definition qopenglext.h:4283

option
GLuint GLenum option
Definition qopenglext.h:5929

operator==
bool operator==(const QRandomGenerator &rng1, const QRandomGenerator &rng2)
Definition qrandom.cpp:1220

hint
static QT_BEGIN_NAMESPACE QVariant hint(QPlatformIntegration::StyleHint h)
Definition qstylehints.cpp:13

d
double d
Definition src_corelib_text_qlocale.cpp:9

other
QSharedPointer< T > other(t)
[5]

swap
this swap(other)

setDtlsCookieVerificationEnabled
config setDtlsCookieVerificationEnabled(false)

setProtocol
config setProtocol(QSsl::TlsV1_2)