#include <grpc/support/port_platform.h>#include "src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.h"#include <string.h>#include <string>#include <utility>#include "absl/strings/string_view.h"#include <grpc/support/alloc.h>#include <grpc/support/log.h>#include <grpc/support/string_util.h>#include "src/core/lib/debug/trace.h"#include "src/core/lib/gprpp/host_port.h"#include "src/core/lib/iomgr/exec_ctx.h"#include "src/core/lib/security/credentials/tls/tls_utils.h"#include "src/core/lib/surface/api_trace.h"
Go to the source code of this file.
Namespaces | |
| grpc_core | |
Functions | |
| void | grpc_tls_certificate_verifier_cancel (grpc_tls_certificate_verifier *verifier, grpc_tls_custom_verification_check_request *request) |
| grpc_tls_certificate_verifier * | grpc_tls_certificate_verifier_external_create (grpc_tls_certificate_verifier_external *external_verifier) |
| grpc_tls_certificate_verifier * | grpc_tls_certificate_verifier_host_name_create () |
| grpc_tls_certificate_verifier * | grpc_tls_certificate_verifier_no_op_create () |
| void | grpc_tls_certificate_verifier_release (grpc_tls_certificate_verifier *verifier) |
| int | grpc_tls_certificate_verifier_verify (grpc_tls_certificate_verifier *verifier, grpc_tls_custom_verification_check_request *request, grpc_tls_on_custom_verification_check_done_cb callback, void *callback_arg, grpc_status_code *sync_status, char **sync_error_details) |
Function Documentation
◆ grpc_tls_certificate_verifier_cancel()
| void grpc_tls_certificate_verifier_cancel | ( | grpc_tls_certificate_verifier * | verifier, |
| grpc_tls_custom_verification_check_request * | request | ||
| ) |
EXPERIMENTAL API - Subject to change
Performs the cancellation logic of an internal verifier. This is typically used when composing the internal verifiers as part of the custom verification.
Definition at line 211 of file grpc_tls_certificate_verifier.cc.
◆ grpc_tls_certificate_verifier_external_create()
| grpc_tls_certificate_verifier* grpc_tls_certificate_verifier_external_create | ( | grpc_tls_certificate_verifier_external * | external_verifier | ) |
EXPERIMENTAL API - Subject to change
Converts an external verifier to an internal verifier. Note that we will not take the ownership of the external_verifier. Callers will need to delete external_verifier in its own destruct function.
Definition at line 218 of file grpc_tls_certificate_verifier.cc.
◆ grpc_tls_certificate_verifier_host_name_create()
| grpc_tls_certificate_verifier* grpc_tls_certificate_verifier_host_name_create | ( | ) |
EXPERIMENTAL API - Subject to change
Factory function for an internal verifier that will do the default hostname check.
Definition at line 230 of file grpc_tls_certificate_verifier.cc.
◆ grpc_tls_certificate_verifier_no_op_create()
| grpc_tls_certificate_verifier* grpc_tls_certificate_verifier_no_op_create | ( | ) |
EXPERIMENTAL API - Subject to change
Factory function for an internal verifier that won't perform any post-handshake verification. Note: using this solely without any other authentication mechanisms on the peer identity will leave your applications to the MITM(Man-In-The-Middle) attacks. Users should avoid doing so in production environments.
Definition at line 224 of file grpc_tls_certificate_verifier.cc.
◆ grpc_tls_certificate_verifier_release()
| void grpc_tls_certificate_verifier_release | ( | grpc_tls_certificate_verifier * | verifier | ) |
EXPERIMENTAL API - Subject to change
Releases a grpc_tls_certificate_verifier object. The creator of the grpc_tls_certificate_verifier object is responsible for its release.
Definition at line 235 of file grpc_tls_certificate_verifier.cc.
◆ grpc_tls_certificate_verifier_verify()
| int grpc_tls_certificate_verifier_verify | ( | grpc_tls_certificate_verifier * | verifier, |
| grpc_tls_custom_verification_check_request * | request, | ||
| grpc_tls_on_custom_verification_check_done_cb | callback, | ||
| void * | callback_arg, | ||
| grpc_status_code * | sync_status, | ||
| char ** | sync_error_details | ||
| ) |
EXPERIMENTAL API - Subject to change
Performs the verification logic of an internal verifier. This is typically used when composing the internal verifiers as part of the custom verification. If |grpc_tls_certificate_verifier_verify| returns true, inspect the verification result through request->status and request->error_details. Otherwise, inspect through the parameter of |callback|.
Definition at line 187 of file grpc_tls_certificate_verifier.cc.