rcpp_framework/libs/brynet/net/SSLHelper.hpp

#pragma once

#include <brynet/base/Noexcept.hpp>
#include <brynet/base/NonCopyable.hpp>
#include <brynet/base/Platform.hpp>
#include <memory>
#include <mutex>
#include <string>
#include <thread>
#include <unordered_map>

#ifdef BRYNET_USE_OPENSSL

#ifdef __cplusplus
extern "C" {
#endif
#include <openssl/err.h>
#include <openssl/ssl.h>
#ifdef __cplusplus
}
#endif

#endif

namespace brynet {
namespace net {

#ifdef BRYNET_USE_OPENSSL

#ifndef CRYPTO_THREADID_set_callback
static void cryptoSetThreadIDCallback(CRYPTO_THREADID *id) {
#ifdef BRYNET_PLATFORM_WINDOWS
	CRYPTO_THREADID_set_numeric(id,
			static_cast<unsigned long>(GetCurrentThreadId()));
#elif defined BRYNET_PLATFORM_LINUX || defined BRYNET_PLATFORM_DARWIN
	CRYPTO_THREADID_set_numeric(id,
			static_cast<unsigned long>(pthread_self()));
#endif
}
#endif

#ifndef CRYPTO_set_locking_callback
static std::unordered_map<int, std::shared_ptr<std::mutex> > cryptoLocks;
static void cryptoLockingCallback(int mode,
		int type,
		const char *file, int line) {
	(void)file;
	(void)line;
	if (mode & CRYPTO_LOCK) {
		cryptoLocks[type]->lock();
	} else if (mode & CRYPTO_UNLOCK) {
		cryptoLocks[type]->unlock();
	}
}
#endif

static std::once_flag initCryptoThreadSafeSupportOnceFlag;
static void InitCryptoThreadSafeSupport() {
#ifndef CRYPTO_THREADID_set_callback
	CRYPTO_THREADID_set_callback(cryptoSetThreadIDCallback);
#endif

#ifndef CRYPTO_set_locking_callback
	for (int i = 0; i < CRYPTO_num_locks(); i++) {
		cryptoLocks[i] = std::make_shared<std::mutex>();
	}
	CRYPTO_set_locking_callback(cryptoLockingCallback);
#endif
}
#endif

class SSLHelper : public brynet::base::NonCopyable,
				  public std::enable_shared_from_this<SSLHelper> {
public:
	using Ptr = std::shared_ptr<SSLHelper>;

#ifdef BRYNET_USE_OPENSSL
	bool initSSL(const std::string &certificate,
			const std::string &privatekey) {
		std::call_once(initCryptoThreadSafeSupportOnceFlag,
				InitCryptoThreadSafeSupport);

		if (mOpenSSLCTX != nullptr) {
			return false;
		}
		if (certificate.empty() || privatekey.empty()) {
			return false;
		}

		mOpenSSLCTX = SSL_CTX_new(SSLv23_method());
		SSL_CTX_set_client_CA_list(mOpenSSLCTX,
				SSL_load_client_CA_file(certificate.c_str()));
		SSL_CTX_set_verify_depth(mOpenSSLCTX, 10);

		if (SSL_CTX_use_certificate_chain_file(mOpenSSLCTX,
					certificate.c_str()) <= 0) {
			SSL_CTX_free(mOpenSSLCTX);
			mOpenSSLCTX = nullptr;
			return false;
		}

		if (SSL_CTX_use_PrivateKey_file(mOpenSSLCTX,
					privatekey.c_str(),
					SSL_FILETYPE_PEM) <= 0) {
			SSL_CTX_free(mOpenSSLCTX);
			mOpenSSLCTX = nullptr;
			return false;
		}

		if (!SSL_CTX_check_private_key(mOpenSSLCTX)) {
			SSL_CTX_free(mOpenSSLCTX);
			mOpenSSLCTX = nullptr;
			return false;
		}

		return true;
	}

	void destroySSL() {
		if (mOpenSSLCTX != nullptr) {
			SSL_CTX_free(mOpenSSLCTX);
			mOpenSSLCTX = nullptr;
		}
	}

	SSL_CTX *getOpenSSLCTX() {
		return mOpenSSLCTX;
	}
#endif
	static Ptr Create() {
		class make_shared_enabler : public SSLHelper {
		};
		return std::make_shared<make_shared_enabler>();
	}

protected:
	SSLHelper() BRYNET_NOEXCEPT {
#ifdef BRYNET_USE_OPENSSL
		mOpenSSLCTX = nullptr;
#endif
	}

	virtual ~SSLHelper() BRYNET_NOEXCEPT {
#ifdef BRYNET_USE_OPENSSL
		destroySSL();
#endif
	}

private:
#ifdef BRYNET_USE_OPENSSL
	SSL_CTX *mOpenSSLCTX;
#endif
};

} // namespace net
} // namespace brynet
Initial commit. 2020-11-24 15:41:18 +01:00			`#pragma once`

Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#include <brynet/base/Noexcept.hpp>`
			`#include <brynet/base/NonCopyable.hpp>`
			`#include <brynet/base/Platform.hpp>`
Initial commit. 2020-11-24 15:41:18 +01:00			`#include <memory>`
			`#include <mutex>`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#include <string>`
Initial commit. 2020-11-24 15:41:18 +01:00			`#include <thread>`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#include <unordered_map>`
Initial commit. 2020-11-24 15:41:18 +01:00
			`#ifdef BRYNET_USE_OPENSSL`

Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#ifdef __cplusplus`
Initial commit. 2020-11-24 15:41:18 +01:00			`extern "C" {`
			`#endif`
			`#include <openssl/err.h>`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#include <openssl/ssl.h>`
			`#ifdef __cplusplus`
Initial commit. 2020-11-24 15:41:18 +01:00			`}`
			`#endif`

			`#endif`

Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`namespace brynet {`
			`namespace net {`
Initial commit. 2020-11-24 15:41:18 +01:00
			`#ifdef BRYNET_USE_OPENSSL`

			`#ifndef CRYPTO_THREADID_set_callback`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`static void cryptoSetThreadIDCallback(CRYPTO_THREADID *id) {`
Initial commit. 2020-11-24 15:41:18 +01:00			`#ifdef BRYNET_PLATFORM_WINDOWS`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`CRYPTO_THREADID_set_numeric(id,`
			`static_cast<unsigned long>(GetCurrentThreadId()));`
Initial commit. 2020-11-24 15:41:18 +01:00			`#elif defined BRYNET_PLATFORM_LINUX \|\| defined BRYNET_PLATFORM_DARWIN`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`CRYPTO_THREADID_set_numeric(id,`
			`static_cast<unsigned long>(pthread_self()));`
Initial commit. 2020-11-24 15:41:18 +01:00			`#endif`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`}`
Initial commit. 2020-11-24 15:41:18 +01:00			`#endif`

			`#ifndef CRYPTO_set_locking_callback`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`static std::unordered_map<int, std::shared_ptr<std::mutex> > cryptoLocks;`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`static void cryptoLockingCallback(int mode,`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`int type,`
			`const char *file, int line) {`
			`(void)file;`
			`(void)line;`
			`if (mode & CRYPTO_LOCK) {`
			`cryptoLocks[type]->lock();`
			`} else if (mode & CRYPTO_UNLOCK) {`
			`cryptoLocks[type]->unlock();`
			`}`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`}`
Initial commit. 2020-11-24 15:41:18 +01:00			`#endif`

Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`static std::once_flag initCryptoThreadSafeSupportOnceFlag;`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`static void InitCryptoThreadSafeSupport() {`
Initial commit. 2020-11-24 15:41:18 +01:00			`#ifndef CRYPTO_THREADID_set_callback`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`CRYPTO_THREADID_set_callback(cryptoSetThreadIDCallback);`
Initial commit. 2020-11-24 15:41:18 +01:00			`#endif`

			`#ifndef CRYPTO_set_locking_callback`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`for (int i = 0; i < CRYPTO_num_locks(); i++) {`
			`cryptoLocks[i] = std::make_shared<std::mutex>();`
			`}`
			`CRYPTO_set_locking_callback(cryptoLockingCallback);`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#endif`
			`}`
Initial commit. 2020-11-24 15:41:18 +01:00			`#endif`

Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`class SSLHelper : public brynet::base::NonCopyable,`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`public std::enable_shared_from_this<SSLHelper> {`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`public:`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`using Ptr = std::shared_ptr<SSLHelper>;`
Initial commit. 2020-11-24 15:41:18 +01:00
			`#ifdef BRYNET_USE_OPENSSL`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`bool initSSL(const std::string &certificate,`
			`const std::string &privatekey) {`
			`std::call_once(initCryptoThreadSafeSupportOnceFlag,`
			`InitCryptoThreadSafeSupport);`

			`if (mOpenSSLCTX != nullptr) {`
			`return false;`
			`}`
			`if (certificate.empty() \|\| privatekey.empty()) {`
			`return false;`
			`}`

			`mOpenSSLCTX = SSL_CTX_new(SSLv23_method());`
			`SSL_CTX_set_client_CA_list(mOpenSSLCTX,`
			`SSL_load_client_CA_file(certificate.c_str()));`
			`SSL_CTX_set_verify_depth(mOpenSSLCTX, 10);`

			`if (SSL_CTX_use_certificate_chain_file(mOpenSSLCTX,`
			`certificate.c_str()) <= 0) {`
			`SSL_CTX_free(mOpenSSLCTX);`
			`mOpenSSLCTX = nullptr;`
			`return false;`
			`}`

			`if (SSL_CTX_use_PrivateKey_file(mOpenSSLCTX,`
			`privatekey.c_str(),`
			`SSL_FILETYPE_PEM) <= 0) {`
			`SSL_CTX_free(mOpenSSLCTX);`
			`mOpenSSLCTX = nullptr;`
			`return false;`
			`}`

			`if (!SSL_CTX_check_private_key(mOpenSSLCTX)) {`
			`SSL_CTX_free(mOpenSSLCTX);`
			`mOpenSSLCTX = nullptr;`
			`return false;`
			`}`

			`return true;`
			`}`

			`void destroySSL() {`
			`if (mOpenSSLCTX != nullptr) {`
			`SSL_CTX_free(mOpenSSLCTX);`
			`mOpenSSLCTX = nullptr;`
			`}`
			`}`

			`SSL_CTX *getOpenSSLCTX() {`
			`return mOpenSSLCTX;`
			`}`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#endif`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`static Ptr Create() {`
			`class make_shared_enabler : public SSLHelper {`
			`};`
			`return std::make_shared<make_shared_enabler>();`
			`}`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00
			`protected:`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`SSLHelper() BRYNET_NOEXCEPT {`
Initial commit. 2020-11-24 15:41:18 +01:00			`#ifdef BRYNET_USE_OPENSSL`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`mOpenSSLCTX = nullptr;`
Initial commit. 2020-11-24 15:41:18 +01:00			`#endif`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`}`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`virtual ~SSLHelper() BRYNET_NOEXCEPT {`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#ifdef BRYNET_USE_OPENSSL`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`destroySSL();`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`#endif`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`}`
Initial commit. 2020-11-24 15:41:18 +01:00
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`private:`
Initial commit. 2020-11-24 15:41:18 +01:00			`#ifdef BRYNET_USE_OPENSSL`
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`SSL_CTX *mOpenSSLCTX;`
Initial commit. 2020-11-24 15:41:18 +01:00			`#endif`
Update brynet to the latest. 2021-04-30 16:10:14 +02:00			`};`
Initial commit. 2020-11-24 15:41:18 +01:00
Ran clang format on brynet. 2021-05-14 17:16:45 +02:00			`} // namespace net`
			`} // namespace brynet`