1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
|
//===----------------------------------------------------------------------===//
//
// This source file is part of the SwiftNIO open source project
//
// Copyright (c) 2017-2018 Apple Inc. and the SwiftNIO project authors
// Licensed under Apache License v2.0
//
// See LICENSE.txt for license information
// See CONTRIBUTORS.txt for the list of SwiftNIO project authors
//
// SPDX-License-Identifier: Apache-2.0
//
//===----------------------------------------------------------------------===//
import NIO
#if compiler(>=5.1)
@_implementationOnly import CNIOBoringSSL
@_implementationOnly import CNIOBoringSSLShims
#else
import CNIOBoringSSL
import CNIOBoringSSLShims
#endif
// This is a neat trick. Swift lazily initializes module-globals based on when they're first
// used. This lets us defer BoringSSL intialization as late as possible and only do it if people
// actually create any object that uses BoringSSL.
internal var boringSSLIsInitialized: Bool = initializeBoringSSL()
internal enum FileSystemObject {
case directory
case file
static internal func pathType(path: String) -> FileSystemObject? {
var statObj = stat()
do {
try Posix.stat(path: path, buf: &statObj)
} catch {
return nil
}
#if os(Android)
return (statObj.st_mode & UInt32(Glibc.S_IFDIR)) != 0 ? .directory : .file
#else
return (statObj.st_mode & S_IFDIR) != 0 ? .directory : .file
#endif
}
}
// This bizarre extension to UnsafeBufferPointer is very useful for handling ALPN identifiers. BoringSSL
// likes to work with them in wire format, so rather than us decoding them we can just encode ours to
// the wire format and then work with them from there.
private extension UnsafeBufferPointer where Element == UInt8 {
func locateAlpnIdentifier<T>(identifier: UnsafeBufferPointer<T>) -> (index: Int, length: Int)? where T == Element {
precondition(identifier.count != 0)
let targetLength = Int(identifier[0])
var index = 0
outerLoop: while index < self.count {
let length = Int(self[index])
guard index + length + 1 <= self.count else {
// Invalid length of ALPN identifier, no match.
return nil
}
guard targetLength == length else {
index += length + 1
continue outerLoop
}
for innerIndex in 1...length {
guard identifier[innerIndex] == self[index + innerIndex] else {
index += length + 1
continue outerLoop
}
}
// Found it
return (index: index + 1, length: length)
}
return nil
}
}
private func alpnCallback(ssl: OpaquePointer?,
out: UnsafeMutablePointer<UnsafePointer<UInt8>?>?,
outlen: UnsafeMutablePointer<UInt8>?,
in: UnsafePointer<UInt8>?,
inlen: UInt32,
appData: UnsafeMutableRawPointer?) -> CInt {
// Perform some soundness checks. We don't want NULL pointers around here.
guard let ssl = ssl, let out = out, let outlen = outlen, let `in` = `in` else {
return SSL_TLSEXT_ERR_NOACK
}
// We want to take the SSL pointer and extract the parent Swift object.
let parentCtx = CNIOBoringSSL_SSL_get_SSL_CTX(ssl)!
let parentPtr = CNIOBoringSSLShims_SSL_CTX_get_app_data(parentCtx)!
let parentSwiftContext: NIOSSLContext = Unmanaged.fromOpaque(parentPtr).takeUnretainedValue()
let offeredProtocols = UnsafeBufferPointer(start: `in`, count: Int(inlen))
guard let (index, length) = parentSwiftContext.alpnSelectCallback(offeredProtocols: offeredProtocols) else {
out.pointee = nil
outlen.pointee = 0
return SSL_TLSEXT_ERR_NOACK
}
out.pointee = `in` + index
outlen.pointee = UInt8(length)
return SSL_TLSEXT_ERR_OK
}
/// A wrapper class that encapsulates BoringSSL's `SSL_CTX *` object.
///
/// This object is thread-safe and can be shared across TLS connections in your application. Even if the connections
/// are associated with `Channel`s from different `EventLoop`s.
///
/// - Note: Creating a `NIOSSLContext` is a very expensive operation because BoringSSL will usually need to load and
/// parse large number of certificates from the system trust store. Therefore, creating a
/// `NIOSSLContext` will likely allocate many thousand times and will also _perform blocking disk I/O_.
///
/// - Warning: Avoid creating `NIOSSLContext`s on any `EventLoop` because it does _blocking disk I/O_.
public final class NIOSSLContext {
private let sslContext: OpaquePointer
private let callbackManager: CallbackManagerProtocol?
private var keyLogManager: KeyLogCallbackManager?
internal let configuration: TLSConfiguration
/// Initialize a context that will create multiple connections, all with the same
/// configuration.
internal init(configuration: TLSConfiguration, callbackManager: CallbackManagerProtocol?) throws {
guard boringSSLIsInitialized else { fatalError("Failed to initialize BoringSSL") }
guard let context = CNIOBoringSSL_SSL_CTX_new(CNIOBoringSSL_TLS_method()) else { fatalError("Failed to create new BoringSSL context") }
let minTLSVersion: CInt
switch configuration.minimumTLSVersion {
case .tlsv13:
minTLSVersion = TLS1_3_VERSION
case .tlsv12:
minTLSVersion = TLS1_2_VERSION
case .tlsv11:
minTLSVersion = TLS1_1_VERSION
case .tlsv1:
minTLSVersion = TLS1_VERSION
}
var returnCode = CNIOBoringSSL_SSL_CTX_set_min_proto_version(context, UInt16(minTLSVersion))
precondition(1 == returnCode)
let maxTLSVersion: CInt
switch configuration.maximumTLSVersion {
case .some(.tlsv1):
maxTLSVersion = TLS1_VERSION
case .some(.tlsv11):
maxTLSVersion = TLS1_1_VERSION
case .some(.tlsv12):
maxTLSVersion = TLS1_2_VERSION
case .some(.tlsv13), .none:
// Unset defaults to TLS1.3 for now. BoringSSL's default is TLS 1.2.
maxTLSVersion = TLS1_3_VERSION
}
returnCode = CNIOBoringSSL_SSL_CTX_set_max_proto_version(context, UInt16(maxTLSVersion))
precondition(1 == returnCode)
// Cipher suites. We just pass this straight to BoringSSL.
returnCode = CNIOBoringSSL_SSL_CTX_set_cipher_list(context, configuration.cipherSuites)
precondition(1 == returnCode)
// On non-Linux platforms, when using the platform default trust roots, we make use of a
// custom verify callback. If we have also been presented with additional trust roots of
// type `.file`, we take the opportunity now to load them in memory to avoid doing so
// repeatedly on the request path.
//
// However, to avoid closely coupling this code with other parts (e.g. the platform-specific
// concerns, and the defaulting of `trustRoots` to `.default` when `nil`), we unilaterally
// convert any `additionalTrustRoots` of type `.file` to `.certificates`.
var configuration = configuration
configuration.additionalTrustRoots = try configuration.additionalTrustRoots.map { trustRoots in
switch trustRoots {
case .file(let path):
return .certificates(try NIOSSLCertificate.fromPEMFile(path))
default:
return trustRoots
}
}
// Configure certificate validation
try NIOSSLContext.configureCertificateValidation(
context: context,
verification: configuration.certificateVerification,
trustRoots: configuration.trustRoots,
additionalTrustRoots: configuration.additionalTrustRoots,
sendCANames: configuration.sendCANameList)
// Configure verification algorithms
if let verifySignatureAlgorithms = configuration.verifySignatureAlgorithms {
returnCode = verifySignatureAlgorithms
.map { $0.rawValue }
.withUnsafeBufferPointer { algo in
CNIOBoringSSL_SSL_CTX_set_verify_algorithm_prefs(context, algo.baseAddress, algo.count)
}
if returnCode != 1 {
let errorStack = BoringSSLError.buildErrorStack()
throw BoringSSLError.unknownError(errorStack)
}
}
// Configure signing algorithms
if let signingSignatureAlgorithms = configuration.signingSignatureAlgorithms {
returnCode = signingSignatureAlgorithms
.map { $0.rawValue }
.withUnsafeBufferPointer { algo in
CNIOBoringSSL_SSL_CTX_set_signing_algorithm_prefs(context, algo.baseAddress, algo.count)
}
if returnCode != 1 {
let errorStack = BoringSSLError.buildErrorStack()
throw BoringSSLError.unknownError(errorStack)
}
}
// If we were given a certificate chain to use, load it and its associated private key. Before
// we do, set up a passphrase callback if we need to.
if let callbackManager = callbackManager {
CNIOBoringSSL_SSL_CTX_set_default_passwd_cb(context, { globalBoringSSLPassphraseCallback(buf: $0, size: $1, rwflag: $2, u: $3) })
CNIOBoringSSL_SSL_CTX_set_default_passwd_cb_userdata(context, Unmanaged.passUnretained(callbackManager as AnyObject).toOpaque())
}
var leaf = true
try configuration.certificateChain.forEach {
switch $0 {
case .file(let p):
NIOSSLContext.useCertificateChainFile(p, context: context)
leaf = false
case .certificate(let cert):
if leaf {
try NIOSSLContext.setLeafCertificate(cert, context: context)
leaf = false
} else {
try NIOSSLContext.addAdditionalChainCertificate(cert, context: context)
}
}
}
if let pkey = configuration.privateKey {
switch pkey {
case .file(let p):
try NIOSSLContext.usePrivateKeyFile(p, context: context)
case .privateKey(let key):
try NIOSSLContext.setPrivateKey(key, context: context)
}
}
if configuration.encodedApplicationProtocols.count > 0 {
try NIOSSLContext.setAlpnProtocols(configuration.encodedApplicationProtocols, context: context)
NIOSSLContext.setAlpnCallback(context: context)
}
// Add a key log callback.
if let keyLogCallback = configuration.keyLogCallback {
self.keyLogManager = KeyLogCallbackManager(callback: keyLogCallback)
try NIOSSLContext.setKeylogCallback(context: context)
} else {
self.keyLogManager = nil
}
self.sslContext = context
self.configuration = configuration
self.callbackManager = callbackManager
// Always make it possible to get from an SSL_CTX structure back to this.
let ptrToSelf = Unmanaged.passUnretained(self).toOpaque()
CNIOBoringSSLShims_SSL_CTX_set_app_data(context, ptrToSelf)
}
/// Initialize a context that will create multiple connections, all with the same
/// configuration.
///
/// - Note: Creating a `NIOSSLContext` is a very expensive operation because BoringSSL will usually need to load and
/// parse large number of certificates from the system trust store. Therefore, creating a
/// `NIOSSLContext` will likely allocate many thousand times and will also _perform blocking disk I/O_.
///
/// - Warning: Avoid creating `NIOSSLContext`s on any `EventLoop` because it does _blocking disk I/O_.
public convenience init(configuration: TLSConfiguration) throws {
try self.init(configuration: configuration, callbackManager: nil)
}
/// Initialize a context that will create multiple connections, all with the same
/// configuration, along with a callback that will be called when needed to decrypt any
/// encrypted private keys.
///
/// - Note: Creating a `NIOSSLContext` is a very expensive operation because BoringSSL will usually need to load and
/// parse large number of certificates from the system trust store. Therefore, creating a
/// `NIOSSLContext` will likely allocate many thousand times and will also _perform blocking disk I/O_.
///
/// - Warning: Avoid creating `NIOSSLContext`s on any `EventLoop` because it does _blocking disk I/O_.
///
/// - parameters:
/// - configuration: The `TLSConfiguration` to use for all the connections with this
/// `NIOSSLContext`.
/// - passphraseCallback: The callback to use to decrypt any private keys used by this
/// `NIOSSLContext`. For more details on this parameter see the documentation for
/// `NIOSSLPassphraseCallback`.
public convenience init<T: Collection>(configuration: TLSConfiguration,
passphraseCallback: @escaping NIOSSLPassphraseCallback<T>) throws where T.Element == UInt8 {
let manager = BoringSSLPassphraseCallbackManager(userCallback: passphraseCallback)
try self.init(configuration: configuration, callbackManager: manager)
}
/// Create a new connection object with the configuration from this
/// context.
internal func createConnection() -> SSLConnection? {
guard let ssl = CNIOBoringSSL_SSL_new(self.sslContext) else {
return nil
}
let conn = SSLConnection(ownedSSL: ssl, parentContext: self)
// If we need to turn on the validation on Apple platforms, do it here.
#if os(macOS) || os(iOS) || os(watchOS) || os(tvOS)
switch self.configuration.trustRoots {
case .some(.default), .none:
conn.setCustomVerificationCallback(CustomVerifyManager(callback: { conn.performSecurityFrameworkValidation(promise: $0) }))
case .some(.certificates), .some(.file):
break
}
#endif
return conn
}
fileprivate func alpnSelectCallback(offeredProtocols: UnsafeBufferPointer<UInt8>) -> (index: Int, length: Int)? {
for possibility in configuration.encodedApplicationProtocols {
let match = possibility.withUnsafeBufferPointer {
offeredProtocols.locateAlpnIdentifier(identifier: $0)
}
if match != nil { return match }
}
return nil
}
deinit {
CNIOBoringSSL_SSL_CTX_free(self.sslContext)
}
}
extension NIOSSLContext {
private static func useCertificateChainFile(_ path: String, context: OpaquePointer) {
// TODO(cory): This shouldn't be an assert but should instead be actual error handling.
// assert(path.isFileURL)
let result = path.withCString { (pointer) -> CInt in
return CNIOBoringSSL_SSL_CTX_use_certificate_chain_file(context, pointer)
}
// TODO(cory): again, some error handling would be good.
precondition(result == 1)
}
private static func setLeafCertificate(_ cert: NIOSSLCertificate, context: OpaquePointer) throws {
let rc = CNIOBoringSSL_SSL_CTX_use_certificate(context, cert.ref)
guard rc == 1 else {
throw NIOSSLError.failedToLoadCertificate
}
}
private static func addAdditionalChainCertificate(_ cert: NIOSSLCertificate, context: OpaquePointer) throws {
guard 1 == CNIOBoringSSL_SSL_CTX_add1_chain_cert(context, cert.ref) else {
throw NIOSSLError.failedToLoadCertificate
}
}
private static func setPrivateKey(_ key: NIOSSLPrivateKey, context: OpaquePointer) throws {
guard 1 == CNIOBoringSSL_SSL_CTX_use_PrivateKey(context, key.ref) else {
throw NIOSSLError.failedToLoadPrivateKey
}
}
private static func usePrivateKeyFile(_ path: String, context: OpaquePointer) throws {
let pathExtension = path.split(separator: ".").last
let fileType: CInt
switch pathExtension?.lowercased() {
case .some("pem"):
fileType = SSL_FILETYPE_PEM
case .some("der"), .some("key"):
fileType = SSL_FILETYPE_ASN1
default:
// TODO(cory): Again, error handling here would be good.
fatalError("Unknown private key file type.")
}
let result = path.withCString { (pointer) -> CInt in
return CNIOBoringSSL_SSL_CTX_use_PrivateKey_file(context, pointer, fileType)
}
guard result == 1 else {
throw NIOSSLError.failedToLoadPrivateKey
}
}
private static func setAlpnProtocols(_ protocols: [[UInt8]], context: OpaquePointer) throws {
// This copy should be done infrequently, so we don't worry too much about it.
let protoBuf = protocols.reduce([UInt8](), +)
let rc = protoBuf.withUnsafeBufferPointer {
CNIOBoringSSL_SSL_CTX_set_alpn_protos(context, $0.baseAddress!, CUnsignedInt($0.count))
}
// Annoyingly this function reverses the error convention: 0 is success, non-zero is failure.
if rc != 0 {
let errorStack = BoringSSLError.buildErrorStack()
throw BoringSSLError.failedToSetALPN(errorStack)
}
}
private static func setAlpnCallback(context: OpaquePointer) {
// This extra closure here is very silly, but it exists to allow us to avoid writing down the type of the first
// argument. Combined with the helper above, the compiler will be able to solve its way to success here.
CNIOBoringSSL_SSL_CTX_set_alpn_select_cb(context,
{ alpnCallback(ssl: $0, out: $1, outlen: $2, in: $3, inlen: $4, appData: $5) },
nil)
}
}
// Configuring certificate verification
extension NIOSSLContext {
private static func configureCertificateValidation(context: OpaquePointer, verification: CertificateVerification, trustRoots: NIOSSLTrustRoots?, additionalTrustRoots: [NIOSSLAdditionalTrustRoots], sendCANames: Bool) throws {
// If validation is turned on, set the trust roots and turn on cert validation.
switch verification {
case .fullVerification, .noHostnameVerification:
CNIOBoringSSL_SSL_CTX_set_verify(context, SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT, nil)
// Also, set TRUSTED_FIRST to work around dumb clients that don't know what they're doing and send
// untrusted root certs. X509_VERIFY_PARAM will or-in the flags, so we don't need to load them first.
// This is get0 so we can just ignore the pointer, we don't have an owned ref.
let trustParams = CNIOBoringSSL_SSL_CTX_get0_param(context)!
CNIOBoringSSL_X509_VERIFY_PARAM_set_flags(trustParams, CUnsignedLong(X509_V_FLAG_TRUSTED_FIRST))
func configureTrustRoots(trustRoots: NIOSSLTrustRoots) throws {
switch trustRoots {
case .default:
try NIOSSLContext.platformDefaultConfiguration(context: context)
case .file(let path):
try NIOSSLContext.loadVerifyLocations(path, context: context, sendCANames: sendCANames)
case .certificates(let certs):
for cert in certs {
try NIOSSLContext.addRootCertificate(cert, context: context)
// Add the CA name from the trust root
if sendCANames {
try NIOSSLContext.addCACertificateNameToList(context: context, certificate: cert)
}
}
}
}
try configureTrustRoots(trustRoots: trustRoots ?? .default)
try additionalTrustRoots.forEach { try configureTrustRoots(trustRoots: .init(from: $0)) }
default:
break
}
}
private static func addCACertificateNameToList(context: OpaquePointer, certificate: NIOSSLCertificate) throws {
// Adds the CA name extracted from cert to the list of CAs sent to the client when requesting a client certificate.
try withExtendedLifetime(certificate) {
guard 1 == CNIOBoringSSL_SSL_CTX_add_client_CA(context, certificate.ref) else {
throw NIOSSLError.failedToLoadCertificate
}
}
}
private static func loadVerifyLocations(_ path: String, context: OpaquePointer, sendCANames: Bool) throws {
let isDirectory: Bool
switch FileSystemObject.pathType(path: path) {
case .some(.directory):
isDirectory = true
case .some(.file):
isDirectory = false
case .none:
throw NIOSSLError.noSuchFilesystemObject
}
let result = path.withCString { (pointer) -> CInt in
let file = !isDirectory ? pointer : nil
let directory = isDirectory ? pointer: nil
return CNIOBoringSSL_SSL_CTX_load_verify_locations(context, file, directory)
}
if result == 0 {
let errorStack = BoringSSLError.buildErrorStack()
throw BoringSSLError.unknownError(errorStack)
} else if sendCANames, !isDirectory {
// For single CA file, add the CA name from the trust root.
// This could be from a location like /etc/ssl/cert.pem as an example.
CNIOBoringSSL_SSL_CTX_set_client_CA_list(context, CNIOBoringSSL_SSL_load_client_CA_file(path))
} else if sendCANames, isDirectory {
// If the path that is passed in is a directory, scan the directory and gather up the PEM or DER files.
let pemFilePaths = DirectoryContents(path: path).filter { $0.suffix(4) == ".pem" || $0.suffix(4) == ".cer" }
// Create the PEM files one by one and use `addCACertificateNameToList` to add the CA name to the STACK_OF(X509_NAME).
for path in pemFilePaths {
let cert: NIOSSLCertificate
if path.suffix(4) == ".pem" {
cert = try NIOSSLCertificate(file: path, format: .pem)
} else {
cert = try NIOSSLCertificate(file: path, format: .der)
}
try addCACertificateNameToList(context: context, certificate: cert)
}
}
}
private static func addRootCertificate(_ cert: NIOSSLCertificate, context: OpaquePointer) throws {
let store = CNIOBoringSSL_SSL_CTX_get_cert_store(context)!
if 0 == CNIOBoringSSL_X509_STORE_add_cert(store, cert.ref) {
throw NIOSSLError.failedToLoadCertificate
}
}
private static func platformDefaultConfiguration(context: OpaquePointer) throws {
// Platform default trust is configured differently in different places.
// On Linux, we use our searched heuristics to guess about where the platform trust store is.
// On Darwin, we use a custom callback that is set later, in createConnection
#if os(Linux)
let result = rootCAFilePath.withCString { rootCAFilePointer in
rootCADirectoryPath.withCString { rootCADirectoryPointer in
CNIOBoringSSL_SSL_CTX_load_verify_locations(context, rootCAFilePointer, rootCADirectoryPointer)
}
}
if result == 0 {
let errorStack = BoringSSLError.buildErrorStack()
throw BoringSSLError.unknownError(errorStack)
}
#endif
}
private static func setKeylogCallback(context: OpaquePointer) throws {
CNIOBoringSSL_SSL_CTX_set_keylog_callback(context) { (ssl, linePointer) in
guard let ssl = ssl, let linePointer = linePointer else {
return
}
// We want to take the SSL pointer and extract the parent Swift object. These force-unwraps are for
// safety: a correct NIO program can never fail to set these pointers, and if it does failing loudly is
// more useful than failing quietly.
let parentCtx = CNIOBoringSSL_SSL_get_SSL_CTX(ssl)!
let parentPtr = CNIOBoringSSLShims_SSL_CTX_get_app_data(parentCtx)!
let parentSwiftContext: NIOSSLContext = Unmanaged.fromOpaque(parentPtr).takeUnretainedValue()
// Similarly, this force-unwrap is safe because a correct NIO program can never fail to unwrap this entry
// either.
parentSwiftContext.keyLogManager!.log(linePointer)
}
}
}
extension NIOSSLContext {
/// Exposes the CA Name list count from BoringSSL's STACK_OF(X509_NAME)
func getX509NameListCount() -> Int {
guard let caNameList = CNIOBoringSSL_SSL_CTX_get_client_CA_list(self.sslContext) else {
return 0
}
return CNIOBoringSSL_sk_X509_NAME_num(caNameList)
}
}
// For accessing STACK_OF(SSL_CIPHER) from a SSLContext
extension NIOSSLContext {
/// A collection of buffers representing a STACK_OF(SSL_CIPHER)
struct NIOTLSCipherBuffers {
private let basePointer: OpaquePointer
fileprivate init(basePointer: OpaquePointer) {
self.basePointer = basePointer
}
}
/// Invokes a block with a collection of pointers to STACK_OF(SSL_CIPHER).
///
/// The pointers are only guaranteed to be valid for the duration of this call. This method aligns with the RandomAccessCollection protocol
/// to access UInt16 pointers at a specific index. This pointer is used to safely access id values of the cipher to create a new NIOTLSCipher.
fileprivate func withStackOfCipherSuiteBuffers<Result>(_ body: (NIOTLSCipherBuffers?) throws -> Result) rethrows -> Result {
guard let stackPointer = CNIOBoringSSL_SSL_CTX_get_ciphers(self.sslContext) else {
return try body(nil)
}
return try body(NIOTLSCipherBuffers(basePointer: stackPointer))
}
/// Access cipher suites applied to the context
internal var cipherSuites: [NIOTLSCipher] {
return self.withStackOfCipherSuiteBuffers { buffers in
guard let buffers = buffers else {
return []
}
return Array(buffers)
}
}
}
extension NIOSSLContext.NIOTLSCipherBuffers: RandomAccessCollection {
struct Index: Hashable, Comparable, Strideable {
typealias Stride = Int
fileprivate var index: Int
fileprivate init(_ index: Int) {
self.index = index
}
static func < (lhs: Index, rhs: Index) -> Bool {
return lhs.index < rhs.index
}
func advanced(by n: NIOSSLContext.NIOTLSCipherBuffers.Index.Stride) -> NIOSSLContext.NIOTLSCipherBuffers.Index {
var result = self
result.index += n
return result
}
func distance(to other: NIOSSLContext.NIOTLSCipherBuffers.Index) -> NIOSSLContext.NIOTLSCipherBuffers.Index.Stride {
return other.index - self.index
}
}
typealias Element = NIOTLSCipher
var startIndex: Index {
return Index(0)
}
var endIndex: Index {
return Index(self.count)
}
var count: Int {
return CNIOBoringSSL_sk_SSL_CIPHER_num(self.basePointer)
}
subscript(position: Index) -> NIOTLSCipher {
precondition(position < self.endIndex)
precondition(position >= self.startIndex)
guard let ptr = CNIOBoringSSL_sk_SSL_CIPHER_value(self.basePointer, position.index) else {
preconditionFailure("Unable to locate backing pointer.")
}
let cipherID = CNIOBoringSSL_SSL_CIPHER_get_protocol_id(ptr)
return NIOTLSCipher(cipherID)
}
}
extension Optional where Wrapped == String {
internal func withCString<Result>(_ body: (UnsafePointer<CChar>?) throws -> Result) rethrows -> Result {
switch self {
case .some(let s):
return try s.withCString({ try body($0 ) })
case .none:
return try body(nil)
}
}
}
internal class DirectoryContents: Sequence, IteratorProtocol {
typealias Element = String
let path: String
// Used to account between the differences of DIR being defined on Darwin.
// Otherwise an OpaquePointer needs to be used to account for the non-defined type in glibc.
#if os(macOS) || os(iOS) || os(watchOS) || os(tvOS)
let dir: UnsafeMutablePointer<DIR>
#else
let dir: OpaquePointer
#endif
init(path: String) {
self.path = path
self.dir = opendir(path)
}
func next() -> String? {
if let dirent: UnsafeMutablePointer<dirent> = readdir(self.dir) {
let name = withUnsafePointer(to: &dirent.pointee.d_name) { (ptr) -> String in
// Pointers to homogeneous tuples in Swift are always bound to both the tuple type and the element type,
// so the assumption below is safe.
let elementPointer = UnsafeRawPointer(ptr).assumingMemoryBound(to: CChar.self)
return String(cString: elementPointer)
}
return self.path + name
}
return nil
}
deinit {
closedir(dir)
}
}
|
