Skip to content

Struct SolidSyslogTlsStreamConfig

ClassList > SolidSyslogTlsStreamConfig

Wires SolidSyslogTlsStream to its transport, trust anchors, and identity.

  • #include <SolidSyslogTlsStream.h>

Public Attributes

Type Name
const char * CaBundlePath
PEM file of trust anchors the peer cert must chain to.
const char * CipherList
TLS 1.2 cipher list; NULL uses the OpenSSL default.
const char * ClientCertChainPath
PEM leaf cert (+ intermediates) for mTLS; NULL = no mTLS.
const char * ClientKeyPath
PEM private key matching ClientCertChainPath; NULL = no mTLS.
SolidSyslogTlsHandshakeTimeoutFunction GetHandshakeTimeoutMs
Per-attempt handshake deadline in ms; NULL uses the SOLIDSYSLOG_TLS_HANDSHAKE_TIMEOUT_MS tunable.
void * HandshakeTimeoutContext
Passed back to GetHandshakeTimeoutMs unchanged; NULL is fine.
const char * ServerName
SNI plus the expected peer identity.
SolidSyslogSleepFunction Sleep
Drives the bounded handshake retry between WANT_READ/WANT_WRITE polls; required.
struct SolidSyslogStream * Transport
Underlying byte stream carrying the ciphertext.

Public Attributes Documentation

variable CaBundlePath

PEM file of trust anchors the peer cert must chain to.

const char* SolidSyslogTlsStreamConfig::CaBundlePath;


variable CipherList

TLS 1.2 cipher list; NULL uses the OpenSSL default.

const char* SolidSyslogTlsStreamConfig::CipherList;


variable ClientCertChainPath

PEM leaf cert (+ intermediates) for mTLS; NULL = no mTLS.

const char* SolidSyslogTlsStreamConfig::ClientCertChainPath;

Cert and key are all-or-nothing — supplying one without the other is a setup error.


variable ClientKeyPath

PEM private key matching ClientCertChainPath; NULL = no mTLS.

const char* SolidSyslogTlsStreamConfig::ClientKeyPath;


variable GetHandshakeTimeoutMs

Per-attempt handshake deadline in ms; NULL uses the SOLIDSYSLOG_TLS_HANDSHAKE_TIMEOUT_MS tunable.

SolidSyslogTlsHandshakeTimeoutFunction SolidSyslogTlsStreamConfig::GetHandshakeTimeoutMs;


variable HandshakeTimeoutContext

Passed back to GetHandshakeTimeoutMs unchanged; NULL is fine.

void* SolidSyslogTlsStreamConfig::HandshakeTimeoutContext;


variable ServerName

SNI plus the expected peer identity.

const char* SolidSyslogTlsStreamConfig::ServerName;

A non-empty name is verified against the cert (SAN/CN). NULL connects chain-only but emits a WARNING — the peer is unverified (MITM-class). "" is the no-name-check opt-out (closed network / private CA): still chain-verified against CaBundlePath, endpoint identity unchecked; no diagnostic.


variable Sleep

Drives the bounded handshake retry between WANT_READ/WANT_WRITE polls; required.

SolidSyslogSleepFunction SolidSyslogTlsStreamConfig::Sleep;


variable Transport

Underlying byte stream carrying the ciphertext.

struct SolidSyslogStream* SolidSyslogTlsStreamConfig::Transport;

Borrowed — this stream may Close it but never destroys it; the caller owns it and must keep it valid until SolidSyslogTlsStream_Destroy.



The documentation for this class was generated from the following file Platform/OpenSsl/Interface/SolidSyslogTlsStream.h