1=pod 2 3=head1 NAME 4 5SSL_CTX_set_default_passwd_cb, SSL_CTX_set_default_passwd_cb_userdata - set passwd callback for encrypted PEM file handling 6 7=head1 SYNOPSIS 8 --- 26 unchanged lines hidden (view full) --- 35protect the private key. The way this password can be supplied may depend 36on the application. If only one private key is handled, it can be practical 37to have pem_passwd_cb() handle the password dialog interactively. If several 38keys have to be handled, it can be practical to ask for the password once, 39then keep it in memory and use it several times. In the last case, the 40password could be stored into the B<userdata> storage and the 41pem_passwd_cb() only returns the password already stored. 42 |
43When asking for the password interactively, pem_passwd_cb() can use 44B<rwflag> to check, whether an item shall be encrypted (rwflag=1). 45In this case the password dialog may ask for the same password twice 46for comparison in order to catch typos, that would make decryption 47impossible. 48 |
49Other items in PEM formatting (certificates) can also be encrypted, it is 50however not usual, as certificate information is considered public. 51 52=head1 RETURN VALUES 53 54SSL_CTX_set_default_passwd_cb() and SSL_CTX_set_default_passwd_cb_userdata() 55do not provide diagnostic information. 56 --- 20 unchanged lines hidden --- |