-
Notifications
You must be signed in to change notification settings - Fork 97
/
Copy pathTlsSocketImpl.h
142 lines (110 loc) · 4.6 KB
/
TlsSocketImpl.h
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
#pragma once
#include <iostream>
#include <thread>
#include <future>
#include "restc-cpp/restc-cpp.h"
#include "restc-cpp/logging.h"
#include <boost/asio/ssl.hpp>
#include <boost/version.hpp>
#include "restc-cpp/Socket.h"
#include "restc-cpp/config.h"
#if !defined(RESTC_CPP_WITH_TLS)
# error "Do not include when compiling without TLS"
#endif
namespace restc_cpp {
class TlsSocketImpl : public Socket, protected ExceptionWrapper {
public:
using ssl_socket_t = boost::asio::ssl::stream<boost::asio::ip::tcp::socket>;
TlsSocketImpl(boost_io_service& io_service, shared_ptr<boost::asio::ssl::context> ctx)
{
ssl_socket_ = std::make_unique<ssl_socket_t>(io_service, *ctx);
}
boost::asio::ip::tcp::socket& GetSocket() override {
return static_cast<boost::asio::ip::tcp::socket&>(
ssl_socket_->lowest_layer());
}
const boost::asio::ip::tcp::socket& GetSocket() const override {
return static_cast<const boost::asio::ip::tcp::socket&>(
ssl_socket_->lowest_layer());
}
std::size_t AsyncReadSome(boost_mutable_buffer buffers,
boost::asio::yield_context& yield) override {
return WrapException<std::size_t>([&] {
return ssl_socket_->async_read_some(buffers, yield);
});
}
std::size_t AsyncRead(boost_mutable_buffer buffers,
boost::asio::yield_context& yield) override {
return WrapException<std::size_t>([&] {
return boost::asio::async_read(*ssl_socket_, buffers, yield);
});
}
void AsyncWrite(const boost_const_buffer& buffers,
boost::asio::yield_context& yield) override {
boost::asio::async_write(*ssl_socket_, buffers, yield);
}
void AsyncWrite(const write_buffers_t& buffers,
boost::asio::yield_context& yield) override {
return WrapException<void>([&] {
boost::asio::async_write(*ssl_socket_, buffers, yield);
});
}
void AsyncConnect(const boost::asio::ip::tcp::endpoint& ep,
const std::string &host,
bool tcpNodelay,
boost::asio::yield_context& yield) override {
return WrapException<void>([&] {
//TLS-SNI (without this option, handshakes attempts with hosts behind CDNs will fail,
//due to the fact that the CDN does not have enough information at the TLS layer
//to decide where to forward the handshake attempt).
RESTC_CPP_LOG_TRACE_("AsyncConnect - Calling SSL_set_tlsext_host_name --> " << host);
SSL_set_tlsext_host_name(ssl_socket_->native_handle(), host.c_str());
RESTC_CPP_LOG_TRACE_("AsyncConnect - Calling async_connect");
GetSocket().async_connect(ep, yield);
RESTC_CPP_LOG_TRACE_("AsyncConnect - Calling lowest_layer().set_option");
ssl_socket_->lowest_layer().set_option(
boost::asio::ip::tcp::no_delay(tcpNodelay));
RESTC_CPP_LOG_TRACE_("AsyncConnect - Calling OnAfterConnect()");
OnAfterConnect();
RESTC_CPP_LOG_TRACE_("AsyncConnect - Calling async_handshake");
ssl_socket_->async_handshake(boost::asio::ssl::stream_base::client,
yield);
RESTC_CPP_LOG_TRACE_("AsyncConnect - Done");
});
}
void AsyncShutdown(boost::asio::yield_context& yield) override {
return WrapException<void>([&] {
ssl_socket_->async_shutdown(yield);
});
}
void Close(Reason reason) override {
if (ssl_socket_->lowest_layer().is_open()) {
RESTC_CPP_LOG_TRACE_("Closing " << *this);
ssl_socket_->lowest_layer().close();
}
reason_ = reason;
}
bool IsOpen() const noexcept override {
return ssl_socket_->lowest_layer().is_open();
}
protected:
std::ostream& Print(std::ostream& o) const override {
if (IsOpen()) {
const auto& socket = GetSocket();
o << "{TlsSocket "
<< "socket# "
<< static_cast<int>(
const_cast<boost::asio::ip::tcp::socket&>(socket).native_handle());
try {
return o << " " << socket.local_endpoint()
<< " <--> " << socket.remote_endpoint() << '}';
} catch (const std::exception& ex) {
o << " {std exception: " << ex.what() << "}}";
}
}
return o << "{TlsSocket (unused/closed)}";
}
private:
std::unique_ptr<ssl_socket_t> ssl_socket_;
};
} // restc_cpp