OpenSSLWrapper

from panda3d.core import OpenSSLWrapper
class OpenSSLWrapper

Bases: DTOOL_SUPER_BASE

Provides an interface wrapper around the OpenSSL library, to ensure that the library is properly initialized in the application, and to provide some hooks into global OpenSSL context data.

Inheritance diagram

Inheritance diagram of OpenSSLWrapper

__init__(*args, **kwargs)
clearCertificates()

C++ Interface: clear_certificates(const OpenSSLWrapper self)

/**

  • Removes all the certificates from the global store, including the compiled-

  • in certificates loaded from ca_bundle_data.c. You can add new certificates

  • by calling load_certificates().

*/

clear_certificates()

C++ Interface: clear_certificates(const OpenSSLWrapper self)

/**

  • Removes all the certificates from the global store, including the compiled-

  • in certificates loaded from ca_bundle_data.c. You can add new certificates

  • by calling load_certificates().

*/

getGlobalPtr()

C++ Interface: get_global_ptr()

/**

*/

get_global_ptr()

C++ Interface: get_global_ptr()

/**

*/

loadCertificates()

C++ Interface: load_certificates(const OpenSSLWrapper self, const Filename filename)

/**

  • Reads the PEM-formatted certificate(s) (delimited by —–BEGIN

  • CERTIFICATE—– and —–END CERTIFICATE—–) from the indicated file and

  • adds them to the global store object, retrieved via get_x509_store().

  • Returns the number of certificates read on success, or 0 on failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

loadCertificatesFromDerRam()

C++ Interface: load_certificates_from_der_ram(const OpenSSLWrapper self, str data) load_certificates_from_der_ram(const OpenSSLWrapper self, str data, int data_size)

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be DER-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be DER-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

loadCertificatesFromPemRam()

C++ Interface: load_certificates_from_pem_ram(const OpenSSLWrapper self, str data) load_certificates_from_pem_ram(const OpenSSLWrapper self, str data, int data_size)

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be PEM-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be PEM-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

load_certificates()

C++ Interface: load_certificates(const OpenSSLWrapper self, const Filename filename)

/**

  • Reads the PEM-formatted certificate(s) (delimited by —–BEGIN

  • CERTIFICATE—– and —–END CERTIFICATE—–) from the indicated file and

  • adds them to the global store object, retrieved via get_x509_store().

  • Returns the number of certificates read on success, or 0 on failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

load_certificates_from_der_ram()

C++ Interface: load_certificates_from_der_ram(const OpenSSLWrapper self, str data) load_certificates_from_der_ram(const OpenSSLWrapper self, str data, int data_size)

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be DER-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be DER-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

load_certificates_from_pem_ram()

C++ Interface: load_certificates_from_pem_ram(const OpenSSLWrapper self, str data) load_certificates_from_pem_ram(const OpenSSLWrapper self, str data, int data_size)

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be PEM-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

/**

  • Reads a chain of trusted certificates from the indicated data buffer and

  • adds them to the X509_STORE object. The data buffer should be PEM-

  • formatted. Returns the number of certificates read on success, or 0 on

  • failure.

  • You should call this only with trusted, locally-stored certificates; not

  • with certificates received from an untrusted source.

*/

notifyDebugSslErrors()

C++ Interface: notify_debug_ssl_errors(const OpenSSLWrapper self)

/**

  • As notify_ssl_errors(), but sends the output to debug instead of warning.

*/

notifySslErrors()

C++ Interface: notify_ssl_errors(const OpenSSLWrapper self)

/**

  • A convenience function that is itself a wrapper around the OpenSSL

  • convenience function to output the recent OpenSSL errors. This function

  • sends the error string to express_cat.warning(). If REPORT_OPENSSL_ERRORS

  • is not defined, the function does nothing.

*/

notify_debug_ssl_errors()

C++ Interface: notify_debug_ssl_errors(const OpenSSLWrapper self)

/**

  • As notify_ssl_errors(), but sends the output to debug instead of warning.

*/

notify_ssl_errors()

C++ Interface: notify_ssl_errors(const OpenSSLWrapper self)

/**

  • A convenience function that is itself a wrapper around the OpenSSL

  • convenience function to output the recent OpenSSL errors. This function

  • sends the error string to express_cat.warning(). If REPORT_OPENSSL_ERRORS

  • is not defined, the function does nothing.

*/