QDefaultMaskGenerator Class
The QDefaultMaskGenerator class provides the default mask generator for QtWebSockets. More...
Header: | #include <QDefaultMaskGenerator> |
Inherits: | QMaskGenerator |
Public Functions
QDefaultMaskGenerator(QObject *parent = nullptr) | |
virtual | ~QDefaultMaskGenerator() override |
Reimplemented Public Functions
Detailed Description
\inmodule
QtWebSockets
The WebSockets specification as outlined in RFC 6455 requires that all communication from client to server must be masked. This is to prevent malicious scripts to attack bad behaving proxies. For more information about the importance of good masking, see "Talking to Yourself for Fun and Profit" by Lin-Shung Huang et al. The default mask generator uses the reasonably secure QRandomGenerator::global()->generate() function. The best measure against attacks mentioned in the document above, is to use QWebSocket over a secure connection (wss://). In general, always be careful to not have 3rd party script access to a QWebSocket in your application.
\internal
Member Function Documentation
[explicit]
QDefaultMaskGenerator::QDefaultMaskGenerator(QObject *parent = nullptr)
Constructs a new QDefaultMaskGenerator with the given parent.
\internal
[override virtual noexcept]
QDefaultMaskGenerator::~QDefaultMaskGenerator()
Destroys the QDefaultMaskGenerator object.
\internal
[override virtual noexcept]
quint32 QDefaultMaskGenerator::nextMask()
Reimplements: QMaskGenerator::nextMask().
Generates a new random mask using the insecure QRandomGenerator::global()->generate() method.
\internal
[override virtual noexcept]
bool QDefaultMaskGenerator::seed()
Reimplements: QMaskGenerator::seed().
\internal