/** * @file netssltransport.h * * @brief SSL driver for NetTransport (connection use and close) * NetSslTransport - a TCP subclass of NetTcpTransport * * Threading: underlying SSL library contains threading * * @invariants: * * Copyright (c) 2011 Perforce Software * Confidential. All Rights Reserved. * @author Wendy Heffner * * Creation Date: August 19, 2011 */ /* * These headers are required to be included before * including netssltransport.h * * extern "C" { // OpenSSL * * # include "openssl/bio.h" * # include "openssl/ssl.h" * # include "openssl/err.h" * * } * * # include "netsupport.h" * # include "netport.h" * # include "netaddrinfo.h" * # include "netportparser.h" * # include "netconnect.h" * # include "nettcptransport.h" * # include "netsslcredentials.h" */ # ifdef USE_SSL //////////////////////////////////////////////////////////////////////////// // OpenSSL Dynamic Locking Callback Functions // //////////////////////////////////////////////////////////////////////////// // Dynamic locking code only being used on NT in 2012.1, will be used on // other platforms in 2012.2 (by that time I will include pthreads to the // HPUX build). In 2012.1 HPUX has many compile errors for pthreads. #ifndef OS_HPUX # ifdef OS_NT struct CRYPTO_dynlock_value { HANDLE mutex; }; # else struct CRYPTO_dynlock_value { pthread_mutex_t mutex; }; # endif // OS_NT extern "C" { static int InitLockCallbacks( Error *e ); static int ShutdownLockCallbacks(void); static void LockingFunction(int mode, int n, const char *file, int line); static unsigned long IdFunction(void); static struct CRYPTO_dynlock_value * DynCreateFunction(const char *file, int line); static void DynLockFunction(int mode, struct CRYPTO_dynlock_value *l, const char *file, int line); static void DynDestroyFunction(struct CRYPTO_dynlock_value *l, const char *file, int line); } #endif //OS_HPUX //////////////////////////////////////////////////////////////////////////// // Class NetSslTransport // //////////////////////////////////////////////////////////////////////////// class NetSslTransport : public NetTcpTransport { public: NetSslTransport( int t, bool fromClient ); NetSslTransport( int t, bool fromClient, NetSslCredentials &cred ); ~NetSslTransport(); void ValidateCredentials( Error *e ); void ClientMismatch( Error *e ); void DoHandshake( Error *e ); void Close(); int SendOrReceive( NetIoPtrs &io, Error *se, Error *re ); void GetEncryptionType(StrBuf &value) { value.Set(cipherSuite); } void GetPeerFingerprint(StrBuf &value); private: void SslClientInit( Error *e ); void SslServerInit( StrPtr *hostname, Error *e ); void ValidateRuntimeVsCompiletimeSSLVersion( Error *e ); void GetVersionString( StrBuf &sb, unsigned long version ); // These two endpoint method need access to the Init methods friend NetTransport *NetSslEndPoint::Accept( Error *e ); friend NetTransport *NetSslEndPoint::Connect( Error *e ); static bool VerifyKeyFile( const char *path ); bool SslHandshake( Error *e ); static unsigned long sCompileVersion; static SSL_CTX *sServerCtx; static SSL_CTX *sClientCtx; BIO * bio; SSL * ssl; StrBuf cipherSuite; bool clientNotSsl; NetSslCredentials credentials; } ; # endif //USE_SSL
# | Change | User | Description | Committed | |
---|---|---|---|---|---|
#1 | 18760 | rlranft |
Populate -o //guest/perforce_software/p4/... //guest/rlranft/p4/.... |
||
//guest/perforce_software/p4/2014-2/net/netssltransport.h | |||||
#1 | 15903 | Matt Attaway | Everything should be happy now between the Workshop and the depot paths | ||
//guest/perforce_software/p4/2014_2/net/netssltransport.h | |||||
#1 | 15901 | Matt Attaway | Clean up code to fit modern Workshop naming standards | ||
//guest/perforce_software/p4/2014.2/net/netssltransport.h | |||||
#1 | 12189 | Matt Attaway | Initial (and much belated) drop of 2014.2 p4 source code |