d4/d8c/qdtls_8h_source.html

// Copyright (C) 2018 The Qt Company Ltd.

// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only


#ifndef QDTLS_H

#define QDTLS_H


#include <QtNetwork/qtnetworkglobal.h>


#include <QtNetwork/qsslsocket.h>

#include <QtNetwork/qssl.h>


#include <QtCore/qcryptographichash.h>

#include <QtCore/qobject.h>

#include <QtCore/qcontainerfwd.h>


Q_MOC_INCLUDE(<QtNetwork/QSslPreSharedKeyAuthenticator>)


#ifndef Q_QDOC

QT_REQUIRE_CONFIG(dtls);

#endif


QT_BEGIN_NAMESPACE


enum class QDtlsError : unsigned char

{

    NoError,

    InvalidInputParameters,

    InvalidOperation,

    UnderlyingSocketError,

    RemoteClosedConnectionError,

    PeerVerificationError,

    TlsInitializationError,

    TlsFatalError,

    TlsNonFatalError

};


class QHostAddress;

class QUdpSocket;

class QByteArray;

class QString;


class QDtlsClientVerifierPrivate;


class Q_NETWORK_EXPORT QDtlsClientVerifier : public QObject

{

    Q_OBJECT


public:


    explicit QDtlsClientVerifier(QObject *parent = nullptr);

    ~QDtlsClientVerifier();


    struct Q_NETWORK_EXPORT GeneratorParameters

    {

        GeneratorParameters();

        GeneratorParameters(QCryptographicHash::Algorithm a, const QByteArray &s);

        QCryptographicHash::Algorithm hash = QCryptographicHash::Sha1;

        QByteArray secret;

    };


    bool setCookieGeneratorParameters(const GeneratorParameters &params);

    GeneratorParameters cookieGeneratorParameters() const;


    bool verifyClient(QUdpSocket *socket, const QByteArray &dgram,

                      const QHostAddress &address, quint16 port);

    QByteArray verifiedHello() const;


    QDtlsError dtlsError() const;

    QString dtlsErrorString() const;


private:


    Q_DECLARE_PRIVATE(QDtlsClientVerifier)

    Q_DISABLE_COPY(QDtlsClientVerifier)

};


class QSslPreSharedKeyAuthenticator;

class QSslConfiguration;

class QSslCipher;

class QSslError;


class QDtlsPrivate;


class Q_NETWORK_EXPORT QDtls : public QObject

{

    Q_OBJECT


public:


    enum HandshakeState

    {

        HandshakeNotStarted,

        HandshakeInProgress,

        PeerVerificationFailed,

        HandshakeComplete

    };


    explicit QDtls(QSslSocket::SslMode mode, QObject *parent = nullptr);

    ~QDtls();


    bool setPeer(const QHostAddress &address, quint16 port,

                 const QString &verificationName = {});

    bool setPeerVerificationName(const QString &name);

    QHostAddress peerAddress() const;

    quint16 peerPort() const;

    QString peerVerificationName() const;

    QSslSocket::SslMode sslMode() const;


    void setMtuHint(quint16 mtuHint);

    quint16 mtuHint() const;


    using GeneratorParameters = QDtlsClientVerifier::GeneratorParameters;

    bool setCookieGeneratorParameters(const GeneratorParameters &params);

    GeneratorParameters cookieGeneratorParameters() const;


    bool setDtlsConfiguration(const QSslConfiguration &configuration);

    QSslConfiguration dtlsConfiguration() const;


    HandshakeState handshakeState() const;


    bool doHandshake(QUdpSocket *socket, const QByteArray &dgram = {});

    bool handleTimeout(QUdpSocket *socket);

    bool resumeHandshake(QUdpSocket *socket);

    bool abortHandshake(QUdpSocket *socket);

    bool shutdown(QUdpSocket *socket);


    bool isConnectionEncrypted() const;

    QSslCipher sessionCipher() const;

    QSsl::SslProtocol sessionProtocol() const;


    qint64 writeDatagramEncrypted(QUdpSocket *socket, const QByteArray &dgram);

    QByteArray decryptDatagram(QUdpSocket *socket, const QByteArray &dgram);


    QDtlsError dtlsError() const;

    QString dtlsErrorString() const;


    QList<QSslError> peerVerificationErrors() const;

    void ignoreVerificationErrors(const QList<QSslError> &errorsToIgnore);


Q_SIGNALS:


    void pskRequired(QSslPreSharedKeyAuthenticator *authenticator);

    void handshakeTimeout();


private:


    bool startHandshake(QUdpSocket *socket, const QByteArray &dgram);

    bool continueHandshake(QUdpSocket *socket, const QByteArray &dgram);


    Q_DECLARE_PRIVATE(QDtls)

    Q_DISABLE_COPY_MOVE(QDtls)

};


QT_END_NAMESPACE


#endif // QDTLS_H

QByteArray
\inmodule QtCore
Definition qbytearray.h:57

QCryptographicHash::Algorithm
Algorithm
Definition qcryptographichash.h:22

QCryptographicHash::Sha1
@ Sha1
Definition qcryptographichash.h:27

QDtlsClientVerifierPrivate
Definition qdtls_p.h:30

QDtlsClientVerifier
This class implements server-side DTLS cookie generation and verification.
Definition qdtls.h:44

QDtlsPrivate
Definition qdtls_p.h:38

QDtls
This class provides encryption for UDP sockets.
Definition qdtls.h:83

QDtls::HandshakeState
HandshakeState
Describes the current state of DTLS handshake.
Definition qdtls.h:89

QDtls::PeerVerificationFailed
@ PeerVerificationFailed
Definition qdtls.h:92

QDtls::HandshakeNotStarted
@ HandshakeNotStarted
Definition qdtls.h:90

QDtls::HandshakeInProgress
@ HandshakeInProgress
Definition qdtls.h:91

QDtls::handshakeTimeout
void handshakeTimeout()
Packet loss can result in timeouts during the handshake phase.

QDtls::pskRequired
void pskRequired(QSslPreSharedKeyAuthenticator *authenticator)
QDtls emits this signal when it negotiates a PSK ciphersuite, and therefore a PSK authentication is t...

QHostAddress
The QHostAddress class provides an IP address.
Definition qhostaddress.h:38

QObject
\inmodule QtCore
Definition qobject.h:103

QSslCipher
The QSslCipher class represents an SSL cryptographic cipher.
Definition qsslcipher.h:22

QSslConfiguration
The QSslConfiguration class holds the configuration and state of an SSL connection.
Definition qsslconfiguration.h:41

QSslError
The QSslError class provides an SSL error.
Definition qsslerror.h:21

QSslPreSharedKeyAuthenticator
The QSslPreSharedKeyAuthenticator class provides authentication data for pre shared keys (PSK) cipher...
Definition qsslpresharedkeyauthenticator.h:18

QSslSocket::SslMode
SslMode
Describes the connection modes available for QSslSocket.
Definition qsslsocket.h:33

QString
\macro QT_RESTRICTED_CAST_FROM_ASCII
Definition qstring.h:129

QUdpSocket
\reentrant
Definition qudpsocket.h:21

hash
QHash< int, QWidget * > hash
[35multi]
Definition doc_src_containers.cpp:114

QSsl::SslProtocol
SslProtocol
Describes the protocol of the cipher.
Definition qssl.h:50

QT_BEGIN_NAMESPACE
Combined button and popup list for selecting options.
Definition qstandardpaths_haiku.cpp:21

QT_END_NAMESPACE
Definition qsharedpointer.cpp:1590

QDtlsError
QDtlsError
Definition qdtls.h:25

QDtlsError::InvalidOperation
@ InvalidOperation

QDtlsError::TlsInitializationError
@ TlsInitializationError

QDtlsError::UnderlyingSocketError
@ UnderlyingSocketError

QDtlsError::InvalidInputParameters
@ InvalidInputParameters

QDtlsError::NoError
@ NoError

QDtlsError::TlsFatalError
@ TlsFatalError

QDtlsError::PeerVerificationError
@ PeerVerificationError

QDtlsError::RemoteClosedConnectionError
@ RemoteClosedConnectionError

QDtlsError::TlsNonFatalError
@ TlsNonFatalError

port
EGLOutputPortEXT port
Definition qeglstreamconvenience_p.h:49

mode
GLenum mode
Definition qopengles2ext.h:333

a
GLboolean GLboolean GLboolean GLboolean a
[7]
Definition qopengles2ext.h:337

name
GLuint name
Definition qopengles2ext.h:156

params
void ** params
Definition qopengles2ext.h:160

s
GLdouble s
[6]
Definition qopenglext.h:235

address
GLuint GLuint64EXT address
Definition qopenglext.h:11428

QT_REQUIRE_CONFIG
#define QT_REQUIRE_CONFIG(feature)
Definition qtconfigmacros.h:67

Q_OBJECT
#define Q_OBJECT
Definition qtmetamacros.h:119

Q_MOC_INCLUDE
#define Q_MOC_INCLUDE(...)
Definition qtmetamacros.h:79

Q_SIGNALS
#define Q_SIGNALS
Definition qtmetamacros.h:45

quint16
unsigned short quint16
Definition qtypes.h:48

qint64
long long qint64
Definition qtypes.h:60

socket
QTcpSocket * socket
[1]
Definition src_corelib_kernel_qobject.cpp:392

dtls
QDtls dtls
Definition src_network_ssl_qdtls.cpp:88

setPeer
clientDtls setPeer(address, port, peerName)

setDtlsConfiguration
dtlsConnection setDtlsConfiguration(config)

doHandshake
dtls doHandshake(udpSocket)

ignoreVerificationErrors
dtls ignoreVerificationErrors(expectedSslErrors)

QDtlsClientVerifier::GeneratorParameters
This class defines parameters for DTLS cookie generator.
Definition qdtls.h:53

QDtlsClientVerifier::GeneratorParameters::secret
QByteArray secret
Definition qdtls.h:57