Secure Sockets Layer (SSL) Classes¶
Classes for secure communication over network sockets.
The classes below provide support for secure network communication using the Secure Sockets Layer (SSL) protocol, using the OpenSSL Toolkit to perform encryption and protocol handling.
From Qt version 5.15 onwards, the officially supported version for OpenSSL is 1.1.1 or later.
QDtlsClientVerifier
This class implements server-side DTLS cookie generation and verification.
QDtlsClientVerifier.GeneratorParameters
This class defines parameters for DTLS cookie generator.
QDtls.QDtlsError
Describes errors that can be found by QDtls and QDtlsClientVerifier.
PySide2.QtNetwork.QDtls
This class provides encryption for UDP sockets.
QDtls.HandshakeState
Describes the current state of DTLS handshake.
PySide2.QtNetwork.QOcspResponse
This class represents Online Certificate Status Protocol response.
QOcspResponse.QOcspCertificateStatus
Describes the Online Certificate Status
QOcspResponse.QOcspRevocationReason
Describes the reason for revocation
qssl.html
The QSsl namespace declares enums common to all SSL classes in Qt Network.
PySide2.QtNetwork.QSslCertificate
The QSslCertificate class provides a convenient API for an X509 certificate.
PySide2.QtNetwork.QSslCertificateExtension
The QSslCertificateExtension class provides an API for accessing the extensions of an X509 certificate.
PySide2.QtNetwork.QSslCipher
The QSslCipher class represents an SSL cryptographic cipher.
PySide2.QtNetwork.QSslConfiguration
The QSslConfiguration class holds the configuration and state of an SSL connection.
PySide2.QtNetwork.QSslDiffieHellmanParameters
The QSslDiffieHellmanParameters class provides an interface for Diffie-Hellman parameters for servers.
QSslEllipticCurve
Represents an elliptic curve for use by elliptic-curve cipher algorithms.
PySide2.QtNetwork.QSslError
The QSslError class provides an SSL error.
PySide2.QtNetwork.QSslKey
The QSslKey class provides an interface for private and public keys.
PySide2.QtNetwork.QSslPreSharedKeyAuthenticator
The QSslPreSharedKeyAuthenticator class provides authentication data for pre shared keys (PSK) ciphersuites.
PySide2.QtNetwork.QSslSocket
The QSslSocket class provides an SSL encrypted socket for both clients and servers.
Enabling and Disabling SSL Support¶
When building Qt from source, the configuration system checks for the presence of the
openssl/opensslv.h
header provided by source or developer packages of OpenSSL.By default, an SSL-enabled Qt library dynamically loads any installed OpenSSL library at run-time. However, it is possible to link against the library at compile-time by configuring Qt with the
-openssl-linked
option.When building a version of Qt linked against OpenSSL, the build system will attempt to link with libssl and libcrypt libraries located in the default location on the developer’s system. This location is configurable: set the
OPENSSL_LIBS
environment variable to contain the linker options required to link Qt against the installed library. For example, on a Unix/Linux system:OPENSSL_LIBS='-L/opt/ssl/lib -lssl -lcrypto' ./configure -openssl-linkedTo disable SSL support in a Qt build, configure Qt with the
-no-openssl
option.
Datagram Transport Layer Security¶
Datagram Transport Layer Security (DTLS) is a protocol that enables security for datagram-based applications, providing them with protection against eavesdropping, tampering, or message forgery. The DTLS protocol is based on the stream-oriented Transport Layer Security (TLS) protocol. QtNetwork enables the use of DTLS with User Datagram Protocol (UDP), as defined by RFC 6347 .
Import and Export Restrictions¶
Qt binary installers include the OpenSSL libraries used by QtNetwork . However, those are not automatically deployed with applications that are built with Qt. Import and export restrictions apply for some types of software, and for some parts of the world. Developers wishing to use SSL communication in their deployed applications should either ensure that their users have the appropriate libraries installed, or they should consult a suitably qualified legal professional to ensure that applications using code from the OpenSSL project are correctly certified for import and export in relevant regions of the world.
© 2022 The Qt Company Ltd. Documentation contributions included herein are the copyrights of their respective owners. The documentation provided herein is licensed under the terms of the GNU Free Documentation License version 1.3 as published by the Free Software Foundation. Qt and respective logos are trademarks of The Qt Company Ltd. in Finland and/or other countries worldwide. All other trademarks are property of their respective owners.