blob: 2cd1d274dc4cb72273f1041151985b0bc8f41e9f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
|
/**
* TLSConfig
*
* A set of configuration parameters for use by a TLSSocket or a TLSEngine.
* Most parameters are optional and will be set to appropriate default values for most use.
*
* Copyright (c) 2007 Henri Torgemane
*
* See LICENSE.txt for full license information.
*/
package com.hurlant.crypto.tls {
import flash.utils.ByteArray;
import com.hurlant.util.der.PEM;
import com.hurlant.crypto.rsa.RSAKey;
import com.hurlant.crypto.cert.X509CertificateCollection;
import com.hurlant.crypto.cert.MozillaRootCertificates;
public class TLSConfig {
public var entity:uint; // SERVER | CLIENT
public var certificate:ByteArray;
public var privateKey:RSAKey;
public var cipherSuites:Array;
public var compressions:Array;
public var ignoreCommonNameMismatch:Boolean = false;
public var trustAllCertificates:Boolean = false;
public var trustSelfSignedCertificates:Boolean = false;
public var promptUserForAcceptCert:Boolean = false;
public var CAStore:X509CertificateCollection;
public var localKeyStore:X509CertificateCollection;
public var version:uint;
public function TLSConfig( entity:uint, cipherSuites:Array = null, compressions:Array = null,
certificate:ByteArray = null, privateKey:RSAKey = null, CAStore:X509CertificateCollection = null, ver:uint = 0x00) {
this.entity = entity;
this.cipherSuites = cipherSuites;
this.compressions = compressions;
this.certificate = certificate;
this.privateKey = privateKey;
this.CAStore = CAStore;
this.version = ver;
// default settings.
if (cipherSuites==null) {
this.cipherSuites = CipherSuites.getDefaultSuites();
}
if (compressions==null) {
this.compressions = [TLSSecurityParameters.COMPRESSION_NULL];
}
if (CAStore==null) {
this.CAStore = new MozillaRootCertificates;
}
if (ver==0x00) {
// Default to TLS
this.version = TLSSecurityParameters.PROTOCOL_VERSION;
}
}
public function setPEMCertificate(cert:String, key:String = null):void {
if (key == null) {
key = cert; // for folks who like to concat those two in one file.
}
certificate = PEM.readCertIntoArray(cert);
privateKey = PEM.readRSAPrivateKey(key);
}
}
}
|