aboutsummaryrefslogtreecommitdiffstats
path: root/src/tls/tls_policy.h
diff options
context:
space:
mode:
authorlloyd <[email protected]>2012-01-23 23:36:19 +0000
committerlloyd <[email protected]>2012-01-23 23:36:19 +0000
commitf34cc48100c672824aa70869adfb59669055d173 (patch)
tree6cbcd0d984b1a38b8024cf3b0642edc2a0498368 /src/tls/tls_policy.h
parente3dc1e69f53f93e03411f258e976d2befcf45f91 (diff)
The credentials manager interface seems a much better place for cert
checking, allowed client auth CAs, etc than the policy class. With this change, most users won't ever need to modify the default policy which is likely a good thing. Remove copy and paste of the credentials manager implemenation in the examples.
Diffstat (limited to 'src/tls/tls_policy.h')
-rw-r--r--src/tls/tls_policy.h11
1 files changed, 1 insertions, 10 deletions
diff --git a/src/tls/tls_policy.h b/src/tls/tls_policy.h
index 61de53dcd..68de2c4df 100644
--- a/src/tls/tls_policy.h
+++ b/src/tls/tls_policy.h
@@ -46,15 +46,6 @@ class BOTAN_DLL Policy
virtual std::vector<byte> compression() const;
- virtual bool check_cert(const std::vector<X509_Certificate>& cert_chain) const = 0;
-
- /**
- * If client authentication is desired, returns a list of allowable
- * CAs for same. If not desired, returns empty list.
- */
- virtual std::vector<X509_Certificate> client_auth_CAs() const
- { return std::vector<X509_Certificate>(); }
-
/**
* Require support for RFC 5746 extensions to enable
* renegotiation.
@@ -70,7 +61,7 @@ class BOTAN_DLL Policy
virtual DL_Group dh_group() const { return DL_Group("modp/ietf/1536"); }
/*
- * @return the minimum version that we will negotiate
+ * @return the minimum version that we are willing to negotiate
*/
virtual Protocol_Version min_version() const
{ return Protocol_Version::SSL_V3; }