Return to
SSLContextRep.h
CVS log
Up to [Pegasus] / pegasus / src / Pegasus / Common
|
Return to
SSLContextRep.h
CVS log
|
Up to [Pegasus] / pegasus / src / Pegasus / Common
|
|
File: [Pegasus] / pegasus / src / Pegasus / Common / SSLContextRep.h
(download)
Revision: 1.27, Wed Aug 9 20:12:42 2006 UTC (17 years, 10 months ago) by mike Branch: MAIN CVS Tags: TASK-TASK-BUG4011_WinLocalConnect-branch-New-root, TASK-TASK-BUG4011_WinLocalConnect-branch-New-merged_out_to_branch, TASK-TASK-BUG4011_WinLocalConnect-branch-New-merged_out_from_trunk, TASK-TASK-BUG4011_WinLocalConnect-branch-New-merged_in_to_trunk, TASK-TASK-BUG4011_WinLocalConnect-branch-New-merged_in_from_branch, TASK-TASK-BUG4011_WinLocalConnect-branch-New-branch, TASK-PEP268_SSLClientCertificatePropagation-root, TASK-PEP268_SSLClientCertificatePropagation-merged_out_to_branch, TASK-PEP268_SSLClientCertificatePropagation-merged_out_from_trunk, TASK-PEP268_SSLClientCertificatePropagation-merged_in_to_trunk, TASK-PEP268_SSLClientCertificatePropagation-merged_in_from_branch, TASK-PEP268_SSLClientCertificatePropagation-branch, TASK-PEP267_SLPReregistrationSupport-root, TASK-PEP267_SLPReregistrationSupport-merging_out_to_branch, TASK-PEP267_SLPReregistrationSupport-merging_out_from_trunk, TASK-PEP267_SLPReregistrationSupport-merged_out_to_branch, TASK-PEP267_SLPReregistrationSupport-merged_out_from_trunk, TASK-PEP267_SLPReregistrationSupport-merged_in_to_trunk, TASK-PEP267_SLPReregistrationSupport-merged_in_from_branch, TASK-PEP267_SLPReregistrationSupport-branch, TASK-Bugs5690_3913_RemoteCMPI-root, TASK-Bugs5690_3913_RemoteCMPI-merged_out_to_branch, TASK-Bugs5690_3913_RemoteCMPI-merged_out_from_trunk, TASK-Bugs5690_3913_RemoteCMPI-merged_in_to_trunk, TASK-Bugs5690_3913_RemoteCMPI-merged_in_from_branch, TASK-Bugs5690_3913_RemoteCMPI-branch, TASK-Bug2021_RemoteCMPIonWindows-root, TASK-Bug2021_RemoteCMPIonWindows-merged_out_to_branch, TASK-Bug2021_RemoteCMPIonWindows-merged_out_from_trunk, TASK-Bug2021_RemoteCMPIonWindows-merged_in_to_trunk, TASK-Bug2021_RemoteCMPIonWindows-merged_in_from_branch, TASK-Bug2021_RemoteCMPIonWindows-branch, TASK-Bug2021_RCMPIonWindows-root, TASK-Bug2021_RCMPIonWindows-merged_out_to_branch, TASK-Bug2021_RCMPIonWindows-merged_out_from_trunk, TASK-Bug2021_RCMPIonWindows-merged_in_to_trunk, TASK-Bug2021_RCMPIonWindows-merged_in_from_branch, TASK-Bug2021_RCMPIonWindows-branch, TASK-BUG4011_WinLocalConnect-branch-New Changes since 1.26: +1 -1 lines BUG#: 5314 TITLE: IPC Refactoring DESCRIPTION: This patch cleans up the IPC related classes. It (1) reorganizes related classes into their own headers, (2) makes the mutex class recursive to eliminate recursive lock exclusion logic, (3) reimplements condition variables, renames dozens of global functions. |
//%2006////////////////////////////////////////////////////////////////////////
//
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems.
// Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L.P.;
// IBM Corp.; EMC Corporation, The Open Group.
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.;
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group.
// Copyright (c) 2005 Hewlett-Packard Development Company, L.P.; IBM Corp.;
// EMC Corporation; VERITAS Software Corporation; The Open Group.
// Copyright (c) 2006 Hewlett-Packard Development Company, L.P.; IBM Corp.;
// EMC Corporation; Symantec Corporation; The Open Group.
//
// Permission is hereby granted, free of charge, to any person obtaining a copy
// of this software and associated documentation files (the "Software"), to
// deal in the Software without restriction, including without limitation the
// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
// sell copies of the Software, and to permit persons to whom the Software is
// furnished to do so, subject to the following conditions:
//
// THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN
// ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED
// "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT
// LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
// PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
// ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//
//==============================================================================
//
// Author: Nag Boranna, Hewlett-Packard Company ( nagaraja_boranna@hp.com )
//
// Modified By: Sushma Fernandes, Hewlett-Packard Company (sushma_fernandes@hp.com)
// Heather Sterling, IBM (hsterl@us.ibm.com)
// Aruran, IBM (ashanmug@in.ibm.com) for Bug#4422
//
//%/////////////////////////////////////////////////////////////////////////////
#ifdef PEGASUS_HAS_SSL
#define OPENSSL_NO_KRB5 1
#include <openssl/err.h>
#include <openssl/ssl.h>
#include <openssl/rand.h>
#else
#define SSL_CTX void
#endif
#include <Pegasus/Common/SSLContext.h>
#include <Pegasus/Common/Linkage.h>
#include <Pegasus/Common/Mutex.h>
#ifndef Pegasus_SSLContextRep_h
#define Pegasus_SSLContextRep_h
PEGASUS_NAMESPACE_BEGIN
class SSLCallbackInfoRep
{
public:
SSLCertificateVerifyFunction* verifyCertificateCallback;
Array<SSLCertificateInfo*> peerCertificate;
X509_STORE* crlStore;
};
class SSLContextRep
{
/*
SSL locking callback function. It is needed to perform locking on
shared data structures.
This function needs access to variable ssl_locks.
Declare it as a friend of class SSLContextRep.
@param mode Specifies whether to lock/unlock.
@param type Type of lock.
@param file File name of the function setting the lock.
@param line Line number of the function setting the lock.
*/
friend void pegasus_locking_callback(
int mode,
int type,
const char* file,
int line);
public:
/** Constructor for a SSLContextRep object.
@param trustStore trust store file path
@param certPath server certificate file path
@param keyPath server key file path
@param verifyCert function pointer to a certificate verification
call back function.
@param randomFile file path of a random file that is used as a seed
for random number generation by OpenSSL.
@exception SSLException exception indicating failure to create a context.
*/
SSLContextRep(
const String& trustStore,
const String& certPath = String::EMPTY,
const String& keyPath = String::EMPTY,
const String& crlPath = String::EMPTY,
SSLCertificateVerifyFunction* verifyCert = NULL,
const String& randomFile = String::EMPTY);
SSLContextRep(const SSLContextRep& sslContextRep);
~SSLContextRep();
SSL_CTX * getContext() const;
String getTrustStore() const;
String getCertPath() const;
String getKeyPath() const;
#ifdef PEGASUS_USE_DEPRECATED_INTERFACES
String getTrustStoreUserName() const;
#endif
String getCRLPath() const;
X509_STORE* getCRLStore() const;
void setCRLStore(X509_STORE* store);
Boolean isPeerVerificationEnabled() const;
SSLCertificateVerifyFunction* getSSLCertificateVerifyFunction() const;
private:
SSL_CTX * _makeSSLContext();
void _randomInit(const String& randomFile);
Boolean _verifyPrivateKey(SSL_CTX *ctx, const String& keyPath);
/*
Initialize the SSL locking environment.
This function sets the locking callback functions.
*/
static void init_ssl();
/*
Cleanup the SSL locking environment.
*/
static void free_ssl();
String _trustStore;
String _certPath;
String _keyPath;
String _crlPath;
String _randomFile;
SSL_CTX * _sslContext;
Boolean _verifyPeer;
SSLCertificateVerifyFunction* _certificateVerifyFunction;
X509_STORE* _crlStore;
/*
Mutex containing the SSL locks.
*/
static AutoArrayPtr<Mutex> _sslLocks;
/*
Count for instances of this class. This is used to initialize and free
SSL locking objects.
*/
static int _countRep;
/*
Mutex for countRep.
*/
static Mutex _countRepMutex;
};
PEGASUS_NAMESPACE_END
#endif /* Pegasus_SSLContextRep_h */
| No CVS admin address has been configured |
Powered by ViewCVS 0.9.2 |