Opened 15 years ago

Last modified 15 years ago

#957 closed enhancement

SSL/secure socket abstraction and SIP TLS transport rewrite — at Version 5

Reported by: nanang Owned by: bennylp
Priority: normal Milestone: release-1.5
Component: common Version: trunk
Keywords: Cc:
Backport to 1.x milestone: Backported:

Description (last modified by bennylp)

Objective:

To create a portable SSL/secure socket abstraction in PJLIB and to rewrite the SIP TLS transport in PJSIP.

Specifications:

  1. General:
    • supports client and server socket operations (note: Symbian's CSecureSocket only supports client sockets)
  2. I/O:
    • asynchronous I/O API similar to PJLIB's Active Socket API
    • timeout setting for SSL negotiation
    • buffer size control
  3. Options:
    • select SSL version to use (SSLv23, TLSv1, etc)
    • select ciphersuite to use
    • verify server's certificate (note: not available on Symbian)
    • verify client's certificate (note: not available on Symbian)
    • TLS server name extension to support connecting to multihosted TLS server (note: only available on recent OpenSSL versoins)
  4. Certificate management (note: not available on Symbian):
    • specify which certificate to use
    • load the certificate, either from file(s) or OS's certificate store.
    • retrieve certificate infos.

Backends:

  1. OpenSSL
  2. CSecureSocket on Symbian

Change History (5)

comment:1 Changed 15 years ago by nanang

In r2913, initial version of TLS transport for Symbian, includes:

  • Secure socket, generic abstraction and Symbian implementation (using CSecureSocket).
  • Initial rewrite of SIP TLS transport.
  • Updated symbian_ua.mmp to support SIP transport TLS (experimental).

comment:2 Changed 15 years ago by nanang

  • Component changed from pjsip to common
  • Summary changed from TLS transport on Symbian to Implement SSL socket abstraction and rewrite SIP TLS transport.

comment:3 Changed 15 years ago by nanang

In r2950:

  • Added SSL socket abstraction with OpenSSL backend (source only, i.e: hasn't been integrated to build settings).
  • Updated cipher data type and added cipher constants (Symbian SSL socket has also been updated).
  • Updated SIP TLS transport to allow setting certificate/credential (via file).

comment:4 Changed 15 years ago by bennylp

  • Description modified (diff)
  • Summary changed from Implement SSL socket abstraction and rewrite SIP TLS transport. to SSL/secure socket abstraction and SIP TLS transport rewrite

comment:5 Changed 15 years ago by bennylp

  • Description modified (diff)
Note: See TracTickets for help on using tickets.