Manualshelf

CORBA 2.6 Programmer's Guide for C++

ManualsBrandsHP ManualsServerHP NonStop G-Series
919293949596979899100
Chapter 11. Using the IIOP/SSL API
Chapter 11. Using the IIOP/SSL API
SSLIOP IDL Interface
SSLIOP::Current
SSLIOP::Current::get_peer_certificate()
SSLIOP::Current::get_peer_certificate_chain()
This section describes the objects used by applications to access IIOP/SSL. The IIOP/SSL features are available for the
C++ ORB only.
Note: Before you begin to use IIOP/SSL you must have installed the IIOP/SSL option for NonStop CORBA 2.6. For
more information about configuring and managing IIOP/SSL, see the NonStop CORBA 2.6 Administration
Guide.
The NonStop CORBA 2.6 IIOP/SSL option is based on OpenSSL. OpenSSL is an open-source toolkit that implements the
Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. OpenSSL also includes a general-purpose
cryptography library.
The SSLIOP::Current object allows applications to gain access to the SSL session state as well as to set configuration
parameters. The OpenSSL X.509 certificate routines are available for extracting information from the certificate. The
X.509 standard defines what information can go into a certificate, and describes how the information is formatted (the data
format).
SSLIOP IDL Interface
CORBA applications that use global state information may require changes. In general, global state information limits an
application's portability, as well as its ability to take advantage of the scalability features of NonStop CORBA and the
NonStop systems. The following example shows an SSLIOP IDL interface file:
#ifndef _SSLIOP_IDL
#define _SSLIOP_IDL
#pragma prefix "omg.org"
module SSLIOP {
// A DER encoded X.501 Distinguished Name (DN).
typedef sequence<octet> ASN_1_DN;
// A DER encoded X.509 certificate.
typedef sequence<octet> ASN_1_Cert;
// A chain of DER encoded X.509 certificates.
typedef sequence<ASN_1_Cert> SSL_Cert;
#pragma prefix "ssliop.nsdom"
// The SSLIOP::Current interface provides methods to gain access to
// the SSL session state for the current execution context.
local interface Current : CORBA::Current {