rofl-core/rofl-common/csocket__openssl_8h_source.html

 /* This Source Code Form is subject to the terms of the Mozilla Public

  * License, v. 2.0. If a copy of the MPL was not distributed with this

  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */


 #ifndef CSOCKET_OPENSSL_H

 #define CSOCKET_OPENSSL_H


 #include <set>

 #include <list>

 #include <bitset>

 #include <stdio.h>


 #include <openssl/bio.h>

 #include <openssl/ssl.h>

 #include <openssl/err.h>


 #include "rofl/common/ciosrv.h"

 #include "rofl/common/csocket.h"

 #include "rofl/common/csocket_plain.h"

 #include "rofl/common/logging.h"

 #include "rofl/common/croflexception.h"


 namespace rofl {


 class eOpenSSL          : public        RoflException {

         std::string error;

 public:

         eOpenSSL(std::string const& error) : error(error) {};

         virtual ~eOpenSSL() throw() {};

         friend std::ostream& operator<< (std::ostream& os, eOpenSSL const& e) {

                 os << "<eOpenSSL error: " << e.error << " >" << std::endl;

                 return os;

         };

 };


 class eOpenSSLVerify            : public eOpenSSL {};


 class csocket_openssl :

         public csocket,

         public csocket_env

 {

         //Defaults

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_CA_PATH;

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_CA_FILE;

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_CERT;

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_PRIVATE_KEY;

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_PRIVATE_KEY_PASSWORD;

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_VERIFY_MODE;

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_VERIFY_DEPTH;

         static std::string const        PARAM_DEFAULT_VALUE_SSL_KEY_CIPHERS;


         static bool ssl_initialized;


         static void

         openssl_init();


         static int

         openssl_password_callback(char *buf, int size, int rwflag, void *userdata);


         static std::set<csocket_openssl*> openssl_sockets;


         csocket_plain                           socket;

         pthread_rwlock_t                        ssl_lock;

         std::list<rofl::cmemory*>       txqueue;


         enum openssl_event_t {

                 EVENT_SEND_TXQUEUE              = 0,

                 EVENT_RECV_RXQUEUE              = 1,

                 EVENT_CONN_RESET                = 2,

         };


         /*

          * OpenSSL related structures

          */

         SSL_CTX                                         *ctx;

         SSL                                                     *ssl;

         BIO                                                     *bio;


         /*

          * socket parameters

          */

         std::string                                     capath;

         std::string                                     cafile;

         std::string                                     certfile;

         std::string                             keyfile;

         std::string                                     password;

         std::string                                     verify_mode;

         std::string                                     verify_depth;

         std::string                                     ciphers;


         enum openssl_flag_t {

                 FLAG_SSL_IDLE                   = 0,

                 FLAG_SSL_CONNECTING             = 1,

                 FLAG_SSL_ACCEPTING              = 2,

                 FLAG_SSL_ESTABLISHED    = 3,

                 FLAG_SSL_CLOSING                = 4,

                 FLAG_ACTIVE_SOCKET              = 5,

         };


         std::bitset<64>                         socket_flags;


 public:


         csocket_openssl(csocket_env *owner);


         virtual

         ~csocket_openssl();


         virtual void

         listen(

                 cparams const& params);


         virtual void

         accept(

                 cparams const& socket_params, int sd);


         virtual void

         connect(

                 cparams const& params);


         virtual void

         reconnect();


         virtual void

         close();


         virtual ssize_t

         recv(void *buf, size_t count);

         virtual ssize_t

         recv(void *buf, size_t count, int flags, rofl::csockaddr& from) {

                 return recv(buf, count); // TODO: OpenSSL with DTLS on datagram sockets

         };


         virtual void

         send(cmemory *mem, csockaddr const& dest = csockaddr());


         virtual bool

         is_established() const { return socket_flags.test(FLAG_SSL_ESTABLISHED); };


         virtual bool

         write_would_block() const { return socket.write_would_block(); };


         static cparams

         get_default_params();


 public:


         void

         set_capath(std::string const& capath) { this->capath = capath; };


         std::string const&

         get_capath() const { return capath; };


         void

         set_cafile(std::string const& cafile) { this->cafile = cafile; };


         std::string const&

         get_cafile() const { return cafile; };


         void

         set_certfile(std::string const& certfile) { this->certfile = certfile; };


         std::string const&

         get_certfile() const { return certfile; };


         void

         set_keyfile(std::string const& keyfile) { this->keyfile = keyfile; };


         std::string const&

         get_keyfile() const { return keyfile; };


         void

         set_password(std::string const& password) { this->password = password; };


         std::string const&

         get_password() const { return password; };


 protected:


         //

         // socket specific methods, must be overloaded in derived class

         //


         virtual void

         handle_accepted(rofl::csocket& socket);


         virtual void

         handle_accept_refused(rofl::csocket& socket);


         virtual void

         handle_connected(rofl::csocket& socket);


         virtual void

         handle_connect_refused(rofl::csocket& socket);


         virtual void

         handle_connect_failed(rofl::csocket& socket);


         virtual void

         handle_listen(

                         rofl::csocket& socket,

                         int newsd);


         virtual void

         handle_closed(rofl::csocket& socket);


         virtual void

         handle_read(rofl::csocket& socket);


         virtual void

         handle_write(rofl::csocket& socket);


 private:


         virtual void

         handle_event(cevent const& ev);


         void

         openssl_init_ctx();


         void

         openssl_destroy_ctx();


         void

         openssl_init_ssl();


         void

         openssl_destroy_ssl();


         void

         openssl_connect();


         void

         openssl_accept();


         bool

         openssl_verify_ok();


 protected:


         virtual void

         dequeue_packet();


 public:


         friend std::ostream&

         operator<< (std::ostream& os, csocket_openssl const& sock) {

                 os << rofl::indent(0) << "<csocket_openssl >" << std::endl;

                 os << rofl::indent(2) << "<flags: ";

                 if (sock.socket_flags.test(FLAG_SSL_IDLE)) {

                         os << "IDLE ";

                 }

                 if (sock.socket_flags.test(FLAG_SSL_CONNECTING)) {

                         os << "CONNECTING ";

                 }

                 if (sock.socket_flags.test(FLAG_SSL_ACCEPTING)) {

                         os << "ACCEPTING ";

                 }

                 if (sock.socket_flags.test(FLAG_SSL_ESTABLISHED)) {

                         os << "ESTABLISHED ";

                 }

                 if (sock.socket_flags.test(FLAG_SSL_CLOSING)) {

                         os << "CLOSING ";

                 }

                 os << ">" << std::endl;

                 rofl::indent i(2);

                 os << sock.socket;

                 return os;

         };


 };


 }; // end of namespace


 #endif

rofl::cparams
Definition: cparams.h:20

rofl::csocket_openssl::connect
virtual void connect(cparams const &params)
Open socket and connect to peer entity (client side).
Definition: csocket_openssl.cc:279

rofl::csocket
A single socket.
Definition: csocket.h:182

rofl::csockaddr
Definition: csockaddr.h:38

rofl::csocket_plain
A single unencrypted socket.This class provides basic support for socket based communication. Its aim is to encapsulate functionality for establishing a socket in active and passive mode. For using a socket, the owning class must implement the interface defined in csocket_plain_owner.
Definition: csocket_plain.h:51

rofl::csocket_openssl::handle_accepted
virtual void handle_accepted(rofl::csocket &socket)
Definition: csocket_openssl.cc:255

rofl::csocket_openssl::reconnect
virtual void reconnect()
Reconnect this socket.
Definition: csocket_openssl.cc:517

rofl::csocket_openssl::close
virtual void close()
Closes this socket.
Definition: csocket_openssl.cc:531

rofl::csocket_openssl::handle_write
virtual void handle_write(rofl::csocket &socket)
Definition: csocket_openssl.cc:420

rofl::csocket_openssl::handle_connected
virtual void handle_connected(rofl::csocket &socket)
Definition: csocket_openssl.cc:304

rofl::csocket_openssl::handle_connect_refused
virtual void handle_connect_refused(rofl::csocket &socket)
Definition: csocket_openssl.cc:318

rofl::eOpenSSLVerify
Definition: csocket_openssl.h:36

rofl::csocket::socket_params
cparams socket_params
Definition: csocket.h:488

rofl::csocket_openssl::listen
virtual void listen(cparams const &params)
Open socket in listening mode (server side).
Definition: csocket_openssl.cc:215

rofl::cmemory
C++ abstraction for malloc'ed memory areas.
Definition: cmemory.h:44

rofl::csocket_openssl::handle_accept_refused
virtual void handle_accept_refused(rofl::csocket &socket)
Definition: csocket_openssl.cc:269

rofl::cevent
Single event used internally by class crofl::cioloop.
Definition: cevent.h:20

rofl::csocket_openssl::send
virtual void send(cmemory *mem, csockaddr const &dest=csockaddr())
Store a packet for transmission.
Definition: csocket_openssl.cc:449

rofl::csocket_openssl::handle_closed
virtual void handle_closed(rofl::csocket &socket)
Definition: csocket_openssl.cc:346

rofl::csocket_env
An abstract interface defining the consumer side of a csocket.
Definition: csocket.h:58

rofl::csocket::sd
int sd
Definition: csocket.h:481

rofl::csocket_openssl::handle_read
virtual void handle_read(rofl::csocket &socket)
Definition: csocket_openssl.cc:355

rofl::indent
Definition: logging.h:76

rofl::csocket_openssl::csocket_openssl
csocket_openssl(csocket_env *owner)
Constructor for new empty csocket_impl instances.
Definition: csocket_openssl.cc:57

rofl::csocket_openssl
A single TLS encrypted socket.This class provides basic support for socket based communication. Its aim is to encapsulate functionality for establishing a socket in active and passive mode. For using a socket, the owning class must implement the interface defined in csocket_impl_owner.
Definition: csocket_openssl.h:58

rofl::csocket_openssl::~csocket_openssl
virtual ~csocket_openssl()
Destructor.
Definition: csocket_openssl.cc:78

rofl::csocket_openssl::handle_listen
virtual void handle_listen(rofl::csocket &socket, int newsd)
Definition: csocket_openssl.cc:338

rofl::csocket_openssl::accept
virtual void accept(cparams const &socket_params, int sd)
Handle accepted socket descriptor obtained from external listening socket.
Definition: csocket_openssl.cc:235

rofl::csocket_openssl::recv
virtual ssize_t recv(void *buf, size_t count)
Reads bytes from socket.
Definition: csocket_openssl.cc:385

rofl::csocket_openssl::dequeue_packet
virtual void dequeue_packet()
Definition: csocket_openssl.cc:483

rofl::eOpenSSL
Definition: csocket_openssl.h:25

rofl::RoflException
Definition: croflexception.h:27

rofl::csocket_openssl::handle_connect_failed
virtual void handle_connect_failed(rofl::csocket &socket)
Definition: csocket_openssl.cc:328