| #ifndef SRC_TLS_WRAP_H_ |
| #define SRC_TLS_WRAP_H_ |
| |
| #include "node.h" |
| #include "node_crypto.h" // SSLWrap |
| |
| #include "async-wrap.h" |
| #include "env.h" |
| #include "queue.h" |
| #include "stream_wrap.h" |
| #include "v8.h" |
| |
| #include <openssl/ssl.h> |
| |
| namespace node { |
| |
| // Forward-declarations |
| class NodeBIO; |
| class WriteWrap; |
| namespace crypto { |
| class SecureContext; |
| } |
| |
| class TLSCallbacks : public crypto::SSLWrap<TLSCallbacks>, |
| public StreamWrapCallbacks, |
| public AsyncWrap { |
| public: |
| ~TLSCallbacks() override; |
| |
| static void Initialize(v8::Handle<v8::Object> target, |
| v8::Handle<v8::Value> unused, |
| v8::Handle<v8::Context> context); |
| |
| const char* Error() const override; |
| void ClearError() override; |
| int TryWrite(uv_buf_t** bufs, size_t* count) override; |
| int DoWrite(WriteWrap* w, |
| uv_buf_t* bufs, |
| size_t count, |
| uv_stream_t* send_handle, |
| uv_write_cb cb) override; |
| void AfterWrite(WriteWrap* w) override; |
| void DoAlloc(uv_handle_t* handle, |
| size_t suggested_size, |
| uv_buf_t* buf) override; |
| void DoRead(uv_stream_t* handle, |
| ssize_t nread, |
| const uv_buf_t* buf, |
| uv_handle_type pending) override; |
| int DoShutdown(ShutdownWrap* req_wrap, uv_shutdown_cb cb) override; |
| |
| void NewSessionDoneCb(); |
| |
| protected: |
| static const int kClearOutChunkSize = 1024; |
| |
| // Maximum number of bytes for hello parser |
| static const int kMaxHelloLength = 16384; |
| |
| // Usual ServerHello + Certificate size |
| static const int kInitialClientBufferLength = 4096; |
| |
| // Maximum number of buffers passed to uv_write() |
| static const int kSimultaneousBufferCount = 10; |
| |
| // Write callback queue's item |
| class WriteItem { |
| public: |
| WriteItem(WriteWrap* w, uv_write_cb cb) : w_(w), cb_(cb) { |
| } |
| ~WriteItem() { |
| w_ = nullptr; |
| cb_ = nullptr; |
| } |
| |
| WriteWrap* w_; |
| uv_write_cb cb_; |
| QUEUE member_; |
| }; |
| |
| TLSCallbacks(Environment* env, |
| Kind kind, |
| v8::Handle<v8::Object> sc, |
| StreamWrapCallbacks* old); |
| |
| static void SSLInfoCallback(const SSL* ssl_, int where, int ret); |
| void InitSSL(); |
| void EncOut(); |
| static void EncOutCb(uv_write_t* req, int status); |
| bool ClearIn(); |
| void ClearOut(); |
| void MakePending(); |
| bool InvokeQueued(int status); |
| |
| inline void Cycle() { |
| // Prevent recursion |
| if (++cycle_depth_ > 1) |
| return; |
| |
| for (; cycle_depth_ > 0; cycle_depth_--) { |
| ClearIn(); |
| ClearOut(); |
| EncOut(); |
| } |
| } |
| |
| // If |msg| is not nullptr, caller is responsible for calling `delete[] *msg`. |
| v8::Local<v8::Value> GetSSLError(int status, int* err, const char** msg); |
| |
| static void OnClientHelloParseEnd(void* arg); |
| static void Wrap(const v8::FunctionCallbackInfo<v8::Value>& args); |
| static void Receive(const v8::FunctionCallbackInfo<v8::Value>& args); |
| static void Start(const v8::FunctionCallbackInfo<v8::Value>& args); |
| static void SetVerifyMode(const v8::FunctionCallbackInfo<v8::Value>& args); |
| static void EnableSessionCallbacks( |
| const v8::FunctionCallbackInfo<v8::Value>& args); |
| static void EnableHelloParser( |
| const v8::FunctionCallbackInfo<v8::Value>& args); |
| |
| #ifdef SSL_CTRL_SET_TLSEXT_SERVERNAME_CB |
| static void GetServername(const v8::FunctionCallbackInfo<v8::Value>& args); |
| static void SetServername(const v8::FunctionCallbackInfo<v8::Value>& args); |
| static int SelectSNIContextCallback(SSL* s, int* ad, void* arg); |
| #endif // SSL_CTRL_SET_TLSEXT_SERVERNAME_CB |
| |
| crypto::SecureContext* sc_; |
| v8::Persistent<v8::Object> sc_handle_; |
| BIO* enc_in_; |
| BIO* enc_out_; |
| NodeBIO* clear_in_; |
| uv_write_t write_req_; |
| size_t write_size_; |
| size_t write_queue_size_; |
| QUEUE write_item_queue_; |
| QUEUE pending_write_items_; |
| bool started_; |
| bool established_; |
| bool shutdown_; |
| const char* error_; |
| int cycle_depth_; |
| |
| // If true - delivered EOF to the js-land, either after `close_notify`, or |
| // after the `UV_EOF` on socket. |
| bool eof_; |
| |
| #ifdef SSL_CTRL_SET_TLSEXT_SERVERNAME_CB |
| v8::Persistent<v8::Value> sni_context_; |
| #endif // SSL_CTRL_SET_TLSEXT_SERVERNAME_CB |
| }; |
| |
| } // namespace node |
| |
| #endif // SRC_TLS_WRAP_H_ |