diff options
author | Olle Johansson <oej@edvina.net> | 2011-11-06 09:51:09 +0000 |
---|---|---|
committer | Olle Johansson <oej@edvina.net> | 2011-11-06 09:51:09 +0000 |
commit | 816dc295c24e83ecdf949c82d6d3c9442214db65 (patch) | |
tree | 6fdf2ed235df17e54b0cd0b5ca95f27d0d436a65 /include | |
parent | c580b163b540ac9bdf07704adf30fa11cb037b6b (diff) |
Formatting and doxygen improvements
git-svn-id: https://origsvn.digium.com/svn/asterisk/trunk@343492 65c4cc65-6c06-0410-ace0-fbb531ad65f3
Diffstat (limited to 'include')
-rw-r--r-- | include/asterisk/tcptls.h | 22 |
1 files changed, 15 insertions, 7 deletions
diff --git a/include/asterisk/tcptls.h b/include/asterisk/tcptls.h index 2cc2c0fa3..6f187b20b 100644 --- a/include/asterisk/tcptls.h +++ b/include/asterisk/tcptls.h @@ -25,8 +25,10 @@ * in or out the DO_SSL macro. * * TLS/SSL support is basically implemented by reading from a config file - * (currently http.conf and sip.conf) the names of the certificate and cipher to use, - * and then run ssl_setup() to create an appropriate SSL_CTX (ssl_ctx) + * (currently manager.conf, http.conf and sip.conf) the names of the certificate + * files and cipher to use, and then run ssl_setup() to create an appropriate + * data structure named ssl_ctx. + * * If we support multiple domains, presumably we need to read multiple * certificates. * @@ -42,6 +44,11 @@ * and their setup should be moved to a more central place, e.g. asterisk.conf * and the source files that processes it. Similarly, ssl_setup() should * be run earlier in the startup process so modules have it available. + * + * \ref AstTlsOverview + * + * \todo For SIP, the SubjectAltNames should be checked on verification + * of the certificate. (Check RFC 5922) * */ @@ -93,7 +100,8 @@ struct ast_tls_config { SSL_CTX *ssl_ctx; }; -/*! +/*! \page AstTlsOverview TLS Implementation Overview + * * The following code implements a generic mechanism for starting * services on a TCP or TLS socket. * The service is configured in the struct session_args, and @@ -135,13 +143,13 @@ struct ast_tcptls_session_args { const char *name; }; -/* +/*! \brief * describes a server instance */ struct ast_tcptls_session_instance { - FILE *f; /* fopen/funopen result */ - int fd; /* the socket returned by accept() */ - SSL *ssl; /* ssl state */ + FILE *f; /*!< fopen/funopen result */ + int fd; /*!< the socket returned by accept() */ + SSL *ssl; /*!< ssl state */ /* iint (*ssl_setup)(SSL *); */ int client; struct ast_sockaddr remote_address; |