TAO::IIOP_SSL_Transport Class ReferenceIIOP Transport designed to be "SSL aware," i.e. it is aware of the existence of the SSLIOP Transport. It makes sure that SSL session state from a previous connection is not associated with the non-SSL connection handled by this handler. More...
Inheritance diagram for TAO::IIOP_SSL_Transport:
![]()
Collaboration diagram for TAO::IIOP_SSL_Transport:
![]()
Detailed DescriptionIIOP Transport designed to be "SSL aware," i.e. it is aware of the existence of the SSLIOP Transport. It makes sure that SSL session state from a previous connection is not associated with the non-SSL connection handled by this handler.However, this class overrides the handle_input() method to invalidate the current TSS SSL state during a standard IIOP (insecure) upcall. This prevents SSL session state from a previous SSL connection from being associated with non-SSL connections processed by this connection handler. In particular, this is very important for closing a security hole in nested upcalls. For example, an SSLIOP request is made. During that secure upcall, an insecure nested upcall is made. A naive implementation would associate the TSS SSL state from the secure upcall with the insecure upcall. This implementation closes that security hole. Constructor & Destructor Documentation
Constructor.
Default destructor.
Member Function Documentation
Member Data Documentation
Reference to the TAO::SSLIOP::Current object.
The documentation for this class was generated from the following files: Generated on Mon Sep 15 08:40:19 2008 for TAO_SSLIOP by ![]() |