nickorlow/anthracite
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

broken ssl
Some checks failed
Docker Build & Publish / build (push) Failing after 1h8m3s
Details

Browse source
This commit is contained in:
Nicholas Orlowsky 2025-02-17 18:46:52 -05:00
parent da9f2f2d51
commit a63d9d1e65
Signed by: nickorlow
GPG key ID: 838827D8C4611687
2 changed files with 122 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

100
lib/socket/openssl_socket.cpp Normal file
View file

@ -0,0 +1,100 @@
#include <exception>
#include <openssl/ssl.h>
#include <openssl/err.h>
#include "./openssl_socket.hpp"
#include <arpa/inet.h>
#include <array>
#include <malloc.h>
#include <netinet/in.h>
#include <string>
#include <sys/socket.h>
#include <sys/time.h>
#include <unistd.h>
#include <vector>
#include <iostream>
#include "../log/log.hpp"
namespace anthracite::socket {
SSL_CTX* openssl_socket::_context = nullptr;
openssl_socket::openssl_socket(int port, int max_queue)
: anthracite_socket(port, max_queue)
{
const SSL_METHOD *method = TLS_server_method();
if (_context == nullptr) {
_context = SSL_CTX_new(method);
}
if (!_context) {
log::err << "Unable to initialize SSL" << std::endl;
throw std::exception();
}
if (SSL_CTX_use_certificate_file(_context, "cert.pem", SSL_FILETYPE_PEM) <= 0) {
log::err << "Unable to open cert.pem" << std::endl;
throw std::exception();
}
if (SSL_CTX_use_PrivateKey_file(_context, "key.pem", SSL_FILETYPE_PEM) <= 0 ) {
log::err << "Unable to open key.pem" << std::endl;
throw std::exception();
}
}
openssl_socket::~openssl_socket() = default;
void openssl_socket::wait_for_conn()
{
client_ip = "";
client_socket = accept(server_socket, reinterpret_cast<struct sockaddr*>(&client_addr), &client_addr_len);
std::array<char, INET_ADDRSTRLEN> ip_str { 0 };
inet_ntop(AF_INET, &client_addr.sin_addr, ip_str.data(), INET_ADDRSTRLEN);
client_ip = std::string(ip_str.data());
_ssl = SSL_new(_context);
SSL_set_fd(_ssl, client_socket);
if (SSL_accept(_ssl) <= 0) {
log::warn << "Unable to open SSL connection with client" << std::endl;
client_ip = "";
close(client_socket);
client_socket = -1;
}
}
void openssl_socket::close_conn()
{
SSL_shutdown(_ssl);
SSL_free(_ssl);
close(client_socket);
client_socket = -1;
}
void openssl_socket::send_message(std::string& msg)
{
if (client_socket == -1) {
return;
}
SSL_write(_ssl, &msg[0], msg.length());
}
std::string openssl_socket::recv_message(int buffer_size)
{
if (client_socket == -1) {
return "";
}
setsockopt(client_socket, SOL_SOCKET, SO_RCVTIMEO, &timeout_tv, sizeof timeout_tv);
std::vector<char> response(buffer_size + 1);
ssize_t result = SSL_read(_ssl, response.data(), buffer_size+1);
if (result < 1) {
return "";
}
response[buffer_size] = '\0';
return { response.data() };
}
};

22
lib/socket/openssl_socket.hpp Normal file
View file

@ -0,0 +1,22 @@
#pragma once
#include "./socket.hpp"
#include <openssl/ssl.h>
#include <openssl/err.h>
namespace anthracite::socket {
class openssl_socket : public anthracite_socket {
private:
static SSL_CTX* _context;
SSL* _ssl;
public:
openssl_socket(int port, int max_queue = MAX_QUEUE_LENGTH);
~openssl_socket();
void wait_for_conn() override;
void close_conn() override;
void send_message(std::string& msg) override;
std::string recv_message(int buffer_size) override;
};
};