ssl: Change code to reflect that state data may be secret

author: Ingela Anderton Andin <[email protected]> 2014-12-01 17:48:58 +0100
committer: Ingela Anderton Andin <[email protected]> 2014-12-01 17:50:31 +0100
commit: 918f5fc27fddc788d09eeb0ab0261b6c8762e0a4 (patch)
tree: fc95722a37dec9bb6fa11727ee21e378d6310172 /lib/ssl/src/ssl_internal.hrl
parent: 7d717fb60d33280f4d18f0cbeb73dc90140b5040 (diff)
download: otp-918f5fc27fddc788d09eeb0ab0261b6c8762e0a4.tar.gz
otp-918f5fc27fddc788d09eeb0ab0261b6c8762e0a4.tar.bz2
otp-918f5fc27fddc788d09eeb0ab0261b6c8762e0a4.zip
1 files changed, 10 insertions, 7 deletions
diff --git a/lib/ssl/src/ssl_internal.hrl b/lib/ssl/src/ssl_internal.hrl
index 85724de4bd..75efb64e3f 100644
--- a/lib/ssl/src/ssl_internal.hrl
+++ b/lib/ssl/src/ssl_internal.hrl
@@ -24,6 +24,8 @@
 
 -include_lib("public_key/include/public_key.hrl"). 
 
+-define(SECRET_PRINTOUT, "***").
+
 -type reason()            :: term().
 -type reply()             :: term().
 -type msg()               :: term().
@@ -36,6 +38,7 @@
 -type issuer()            :: tuple().
 -type serialnumber()      :: integer().
 -type cert_key()          :: {reference(), integer(), issuer()}.
+-type secret_printout()   :: list().
 
 %% basic binary constructors
 -define(BOOLEAN(X),  X:8/unsigned-big-integer).
@@ -81,16 +84,16 @@
 	  validate_extensions_fun, 
 	  depth                :: integer(),
 	  certfile             :: binary(),
-	  cert                 :: public_key:der_encoded(),
+	  cert                 :: public_key:der_encoded() | secret_printout(),
 	  keyfile              :: binary(),
-	  key	               :: {'RSAPrivateKey' | 'DSAPrivateKey' | 'ECPrivateKey' | 'PrivateKeyInfo', public_key:der_encoded()},
-	  password	       :: string(),
-	  cacerts              :: [public_key:der_encoded()],
+	  key	               :: {'RSAPrivateKey' | 'DSAPrivateKey' | 'ECPrivateKey' | 'PrivateKeyInfo', public_key:der_encoded()} | secret_printout(),
+	  password	       :: string() | secret_printout(),
+	  cacerts              :: [public_key:der_encoded()] | secret_printout(),
 	  cacertfile           :: binary(),
-	  dh                   :: public_key:der_encoded(),
-	  dhfile               :: binary(),
+	  dh                   :: public_key:der_encoded() | secret_printout(),
+	  dhfile               :: binary() | secret_printout(),
 	  user_lookup_fun,  % server option, fun to lookup the user
-	  psk_identity         :: binary(),
+	  psk_identity         :: binary() | secret_printout() ,
 	  srp_identity,  % client option {User, Password}
 	  ciphers,    % 
 	  %% Local policy for the server if it want's to reuse the session
author	Ingela Anderton Andin <[email protected]>	2014-12-01 17:48:58 +0100
committer	Ingela Anderton Andin <[email protected]>	2014-12-01 17:50:31 +0100
commit	918f5fc27fddc788d09eeb0ab0261b6c8762e0a4 (patch)
tree	fc95722a37dec9bb6fa11727ee21e378d6310172 /lib/ssl/src/ssl_internal.hrl
parent	7d717fb60d33280f4d18f0cbeb73dc90140b5040 (diff)
download	otp-918f5fc27fddc788d09eeb0ab0261b6c8762e0a4.tar.gz otp-918f5fc27fddc788d09eeb0ab0261b6c8762e0a4.tar.bz2 otp-918f5fc27fddc788d09eeb0ab0261b6c8762e0a4.zip