fix style

2025-10-13 14:45:36 +02:00 · 2018-03-05 19:54:01 +01:00
parent a2322be390
commit 38c9328db6
2 changed files with 111 additions and 111 deletions
--- a/NetSSL_OpenSSL/include/Poco/Net/Context.h
+++ b/NetSSL_OpenSSL/include/Poco/Net/Context.h
@@ -44,7 +44,7 @@ class NetSSL_API Context: public Poco::RefCountedObject
 {
 public:
 	typedef Poco::AutoPtr<Context> Ptr;
-	
+
 	enum Usage
 	{
 		CLIENT_USE, 	    /// Context is used by a client.
@@ -56,44 +56,44 @@ public:
 		TLSV1_2_CLIENT_USE, /// Context is used by a client requiring TLSv1.2 (OpenSSL 1.0.1 or newer).
 		TLSV1_2_SERVER_USE  /// Context is used by a server requiring TLSv1.2 (OpenSSL 1.0.1 or newer).
 	};
-	
-	enum VerificationMode 
+
+	enum VerificationMode
 	{
-		VERIFY_NONE    = SSL_VERIFY_NONE, 
-			/// Server: The server will not send a client certificate 
-			/// request to the client, so the client will not send a certificate. 
+		VERIFY_NONE    = SSL_VERIFY_NONE,
+			/// Server: The server will not send a client certificate
+			/// request to the client, so the client will not send a certificate.
 			///
-			/// Client: If not using an anonymous cipher (by default disabled), 
+			/// Client: If not using an anonymous cipher (by default disabled),
 			/// the server will send a certificate which will be checked, but
 			/// the result of the check will be ignored.
-			
-		VERIFY_RELAXED = SSL_VERIFY_PEER, 
-			/// Server: The server sends a client certificate request to the 
-			/// client. The certificate returned (if any) is checked. 
-			/// If the verification process fails, the TLS/SSL handshake is 
-			/// immediately terminated with an alert message containing the 
-			/// reason for the verification failure. 
-			///
-			/// Client: The server certificate is verified, if one is provided. 
+
+		VERIFY_RELAXED = SSL_VERIFY_PEER,
+			/// Server: The server sends a client certificate request to the
+			/// client. The certificate returned (if any) is checked.
 			/// If the verification process fails, the TLS/SSL handshake is
-			/// immediately terminated with an alert message containing the 
-			/// reason for the verification failure. 
-			
-		VERIFY_STRICT  = SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT,
-			/// Server: If the client did not return a certificate, the TLS/SSL 
-			/// handshake is immediately terminated with a handshake failure
-			/// alert. 
+			/// immediately terminated with an alert message containing the
+			/// reason for the verification failure.
 			///
-			/// Client: Same as VERIFY_RELAXED. 
-			
+			/// Client: The server certificate is verified, if one is provided.
+			/// If the verification process fails, the TLS/SSL handshake is
+			/// immediately terminated with an alert message containing the
+			/// reason for the verification failure.
+
+		VERIFY_STRICT  = SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT,
+			/// Server: If the client did not return a certificate, the TLS/SSL
+			/// handshake is immediately terminated with a handshake failure
+			/// alert.
+			///
+			/// Client: Same as VERIFY_RELAXED.
+
 		VERIFY_ONCE    = SSL_VERIFY_PEER | SSL_VERIFY_CLIENT_ONCE
-			/// Server: Only request a client certificate on the initial 
-			/// TLS/SSL handshake. Do not ask for a client certificate 
+			/// Server: Only request a client certificate on the initial
+			/// TLS/SSL handshake. Do not ask for a client certificate
 			/// again in case of a renegotiation.
 			///
-			/// Client: Same as VERIFY_RELAXED.	
+			/// Client: Same as VERIFY_RELAXED.
 	};
-	
+
 	enum Protocols
 	{
 		PROTO_SSLV2   = 0x01,
@@ -102,7 +102,7 @@ public:
 		PROTO_TLSV1_1 = 0x08,
 		PROTO_TLSV1_2 = 0x10
 	};
-	
+
 	struct Params
 	{
 		Params();
@@ -116,16 +116,16 @@ public:
 			/// Path to the certificate file (in PEM format).
 			/// If the private key and the certificate are stored in the same file, this
 			/// can be empty if privateKeyFile is given.
-			
+
 		std::string caLocation;
-			/// Path to the file or directory containing the CA/root certificates. 
+			/// Path to the file or directory containing the CA/root certificates.
 			/// Can be empty if the OpenSSL builtin CA certificates
 			/// are used (see loadDefaultCAs).

 		VerificationMode verificationMode;
 			/// Specifies whether and how peer certificates are validated.
 			/// Defaults to VERIFY_RELAXED.
-			
+
 		int verificationDepth;
 			/// Sets the upper limit for verification chain sizes. Verification
 			/// will fail if a certificate chain larger than this is encountered.
@@ -134,11 +134,11 @@ public:
 		bool loadDefaultCAs;
 			/// Specifies whether the builtin CA certificates from OpenSSL are used.
 			/// Defaults to false.
-	
+
 		std::string cipherList;
 			/// Specifies the supported ciphers in OpenSSL notation.
 			/// Defaults to "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH".
-			
+
 		std::string dhParamsFile;
 			/// Specifies a file containing Diffie-Hellman parameters.
 			/// If empty, the default parameters are used.
@@ -151,7 +151,7 @@ public:

 	Context(Usage usage, const Params& params);
 		/// Creates a Context using the given parameters.
-			/// 
+			///
 			///   * usage specifies whether the context is used by a client or server.
 			///   * params specifies the context parameters.

@@ -159,13 +159,13 @@ public:
 		Usage usage,
 		const std::string& privateKeyFile,
 		const std::string& certificateFile,
-		const std::string& caLocation, 
+		const std::string& caLocation,
 		VerificationMode verificationMode = VERIFY_RELAXED,
 		int verificationDepth = 9,
 		bool loadDefaultCAs = false,
 		const std::string& cipherList = "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH");
 			/// Creates a Context.
-			/// 
+			///
 			///   * usage specifies whether the context is used by a client or server.
 			///   * privateKeyFile contains the path to the private key file used for encryption.
 			///     Can be empty if no private key file is used.
@@ -187,13 +187,13 @@ public:

 	Context(
 		Usage usage,
-		const std::string& caLocation, 
+		const std::string& caLocation,
 		VerificationMode verificationMode = VERIFY_RELAXED,
 		int verificationDepth = 9,
 		bool loadDefaultCAs = false,
 		const std::string& cipherList = "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH");
 			/// Creates a Context.
-			/// 
+			///
 			///   * usage specifies whether the context is used by a client or server.
 			///   * caLocation contains the path to the file or directory containing the
 			///     CA/root certificates. Can be empty if the OpenSSL builtin CA certificates
@@ -210,9 +210,6 @@ public:
 	~Context();
 		/// Destroys the Context.

-	void addCertificateAuthority(const Poco::Crypto::X509Certificate& certificate);
-		/// Add one trusted certification authority to be used by the Context.
-
 	void useCertificate(const Poco::Crypto::X509Certificate& certificate);
 		/// Sets the certificate to be used by the Context.
 		///
@@ -222,10 +219,13 @@ public:
 		///
 		/// Note that useCertificate() must always be called before
 		/// usePrivateKey().
-		
+
 	void addChainCertificate(const Poco::Crypto::X509Certificate& certificate);
 		/// Adds a certificate for certificate chain validation.
-		
+
+	void addCertificateAuthority(const Poco::Crypto::X509Certificate& certificate);
+		/// Add one trusted certification authority to be used by the Context.
+
 	void usePrivateKey(const Poco::Crypto::RSAKey& key);
 		/// Sets the private key to be used by the Context.
 		///
@@ -242,13 +242,13 @@ public:
 	Usage usage() const;
 		/// Returns whether the context is for use by a client or by a server
 		/// and whether TLSv1 is required.
-		
+
 	bool isForServerUse() const;
 		/// Returns true iff the context is for use by a server.

 	Context::VerificationMode verificationMode() const;
 		/// Returns the verification mode.
-		
+
 	void enableSessionCache(bool flag = true);
 		/// Enable or disable SSL/TLS session caching.
 		/// For session caching to work, it must be enabled
@@ -268,7 +268,7 @@ public:
 		/// SessionIdContext contains the application's unique
 		/// session ID context, which becomes part of each
 		/// session identifier generated by the server within this
-		/// context. SessionIdContext can be an arbitrary sequence 
+		/// context. SessionIdContext can be an arbitrary sequence
 		/// of bytes with a maximum length of SSL_MAX_SSL_SESSION_ID_LENGTH.
 		///
 		/// A non-empty sessionIdContext should be specified even if
@@ -276,10 +276,10 @@ public:
 		/// requesting to reuse a session (e.g. Firefox 3.6).
 		///
 		/// This method may only be called on SERVER_USE Context objects.
-		
+
 	bool sessionCacheEnabled() const;
 		/// Returns true iff the session cache is enabled.
-		
+
 	void setSessionCacheSize(std::size_t size);
 		/// Sets the maximum size of the server session cache, in number of
 		/// sessions. The default size (according to OpenSSL documentation)
@@ -289,12 +289,12 @@ public:
 		/// Specifying a size of 0 will set an unlimited cache size.
 		///
 		/// This method may only be called on SERVER_USE Context objects.
-		
+
 	std::size_t getSessionCacheSize() const;
 		/// Returns the current maximum size of the server session cache.
 		///
 		/// This method may only be called on SERVER_USE Context objects.
-		
+
 	void setSessionTimeout(long seconds);
 		/// Sets the timeout (in seconds) of cached sessions on the server.
 		/// A cached session will be removed from the cache if it has
@@ -311,44 +311,44 @@ public:
 		/// Flushes the SSL session cache on the server.
 		///
 		/// This method may only be called on SERVER_USE Context objects.
-				
+
 	void enableExtendedCertificateVerification(bool flag = true);
 		/// Enable or disable the automatic post-connection
 		/// extended certificate verification.
 		///
 		/// See X509Certificate::verify() for more information.
-		
+
 	bool extendedCertificateVerificationEnabled() const;
-		/// Returns true iff automatic extended certificate 
+		/// Returns true iff automatic extended certificate
 		/// verification is enabled.
-		
+
 	void disableStatelessSessionResumption();
 		/// Newer versions of OpenSSL support RFC 4507 tickets for stateless
 		/// session resumption.
 		///
 		/// The feature can be disabled by calling this method.
-		
+
 	void disableProtocols(int protocols);
 		/// Disables the given protocols.
 		///
-		/// The protocols to be disabled are specified by OR-ing 
+		/// The protocols to be disabled are specified by OR-ing
 		/// values from the Protocols enumeration, e.g.:
 		///
 		///   context.disableProtocols(PROTO_SSLV2 | PROTO_SSLV3);
-		
+
 	void preferServerCiphers();
-		/// When choosing a cipher, use the server's preferences instead of the client 
-		/// preferences. When not called, the SSL server will always follow the clients 
-		/// preferences. When called, the SSL/TLS server will choose following its own 
+		/// When choosing a cipher, use the server's preferences instead of the client
+		/// preferences. When not called, the SSL server will always follow the clients
+		/// preferences. When called, the SSL/TLS server will choose following its own
 		/// preferences.

 private:
 	void init(const Params& params);
 		/// Initializes the Context with the given parameters.
-		
+
 	void initDH(const std::string& dhFile);
 		/// Initializes the Context with Diffie-Hellman parameters.
-		
+
 	void initECDH(const std::string& curve);
 		/// Initializes the Context with Elliptic-Curve Diffie-Hellman key
 		/// exchange curve parameters.