ServerOptions.h
Go to the documentation of this file.
30 typedef std::unique_ptr<STACK_OF(X509_NAME), Security::ServerOptions::sk_X509_NAME_free_wrapper> X509_NAME_STACK_Pointer;
bool updateContextConfig(Security::ContextPointer &)
update the given TLS security context using squid.conf settings
Definition: ServerOptions.cc:381
std::unique_ptr< STACK_OF(X509_NAME), Security::ServerOptions::sk_X509_NAME_free_wrapper > X509_NAME_STACK_Pointer
Definition: ServerOptions.h:30
bool createStaticServerContext(AnyP::PortCfg &)
Definition: ServerOptions.cc:209
virtual Security::ContextPointer createBlankContext() const
generate an unset security context object
Definition: ServerOptions.cc:158
void createSigningContexts(const AnyP::PortCfg &)
Definition: ServerOptions.cc:280
struct Security::PeerOptions::flags_ flags
Security::DhePointer parsedDhParams
DH parameters for temporary/ephemeral DH key exchanges.
Definition: ServerOptions.h:119
Security::ContextPointer staticContext
TLS context to use for HTTPS accelerator or static SSL-Bump.
Definition: ServerOptions.h:71
Definition: Packable.h:53
size_t dynamicCertMemCacheSize
max size of generated certificates memory cache (4 MB default)
Definition: ServerOptions.h:91
sk_dtor_wrapper(sk_X509_NAME, STACK_OF(X509_NAME) *, X509_NAME_free)
Definition: PortCfg.h:25
void updateContextSessionId(Security::ContextPointer &)
update the context with a configured session ID (if any)
Definition: ServerOptions.cc:492
void updateContextClientCa(Security::ContextPointer &)
update the context with CA details used to verify client certificates
Definition: ServerOptions.cc:423
void updateContextEecdh(Security::ContextPointer &)
update the context with DH, EDH, EECDH settings
Definition: ServerOptions.cc:450
ServerOptions(ServerOptions &&o)
Definition: ServerOptions.h:40
YesNoNone tlsDefaultCa
whether to use the system default Trusted CA when verifying the remote end certificate
Definition: PeerOptions.h:137
void initServerContexts(AnyP::PortCfg &)
Definition: ServerOptions.cc:188
ServerOptions(const ServerOptions &o)
Definition: ServerOptions.h:38
virtual void dumpCfg(Packable *, const char *pfx) const
output squid.conf syntax with 'pfx' prefix on parameters for the stored settings
Definition: ServerOptions.cc:135
virtual ~ServerOptions()=default
Security::KeyData untrustedSigningCa
x509 certificate and key for signing untrusted generated certificates
Definition: ServerOptions.h:88
SBuf eecdhCurve
Elliptic curve for ephemeral EC-based DH key exchanges.
Definition: ServerOptions.h:117
ServerOptions & operator=(const ServerOptions &)
Definition: ServerOptions.cc:30
void defaultTo(bool beSet)
enables or disables the option; updating to 'implicit' state
Definition: YesNoNone.h:59
Security::KeyData signingCa
x509 certificate and key for signing generated certificates
Definition: ServerOptions.h:87
X509_NAME_STACK_Pointer clientCaStack
CA certificate(s) to use when verifying client certificates.
Definition: ServerOptions.h:110