proxygen: proxygen/folly/folly/io/async/AsyncSSLSocket.h Source File

Go to the documentation of this file.
 /*
  * Copyright 2014-present Facebook, Inc.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *   http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 
 #pragma once
 
 #include <iomanip>
 
 #include <folly/Optional.h>
 #include <folly/String.h>
 #include <folly/io/Cursor.h>
 #include <folly/io/IOBuf.h>
 #include <folly/io/async/AsyncPipe.h>
 #include <folly/io/async/AsyncSocket.h>
 #include <folly/io/async/AsyncTimeout.h>
 #include <folly/io/async/SSLContext.h>
 #include <folly/io/async/TimeoutManager.h>
 #include <folly/io/async/ssl/OpenSSLUtils.h>
 #include <folly/io/async/ssl/SSLErrors.h>
 #include <folly/io/async/ssl/TLSDefinitions.h>
 #include <folly/lang/Bits.h>
 #include <folly/portability/OpenSSL.h>
 #include <folly/portability/Sockets.h>
 #include <folly/ssl/OpenSSLPtrTypes.h>
 
 namespace folly {
 
 class AsyncSSLSocket : public virtual AsyncSocket {
  public:
   typedef std::unique_ptr<AsyncSSLSocket, Destructor> UniquePtr;
   using X509_deleter = folly::static_function_deleter<X509, &X509_free>;
 
   class HandshakeCB {
    public:
     virtual ~HandshakeCB() = default;
 
     virtual bool handshakeVer(
         AsyncSSLSocket* /*sock*/,
         bool preverifyOk,
         X509_STORE_CTX* /*ctx*/) noexcept {
       return preverifyOk;
     }
 
     virtual void handshakeSuc(AsyncSSLSocket* sock) noexcept = 0;
 
     virtual void handshakeErr(
         AsyncSSLSocket* sock,
         const AsyncSocketException& ex) noexcept = 0;
   };
 
   class Timeout : public AsyncTimeout {
    public:
     Timeout(AsyncSSLSocket* sslSocket, EventBase* eventBase)
         : AsyncTimeout(eventBase), sslSocket_(sslSocket) {}
 
     bool scheduleTimeout(TimeoutManager::timeout_type timeout) {
       timeout_ = timeout;
       return AsyncTimeout::scheduleTimeout(timeout);
     }
 
     bool scheduleTimeout(uint32_t timeoutMs) {
       return scheduleTimeout(std::chrono::milliseconds{timeoutMs});
     }
 
     TimeoutManager::timeout_type getTimeout() {
       return timeout_;
     }
 
     void timeoutExpired() noexcept override {
       sslSocket_->timeoutExpired(timeout_);
     }
 
    private:
     AsyncSSLSocket* sslSocket_;
     TimeoutManager::timeout_type timeout_;
   };
 
   class DefaultOpenSSLAsyncFinishCallback : public ReadCallback {
    public:
     DefaultOpenSSLAsyncFinishCallback(
         AsyncPipeReader::UniquePtr reader,
         AsyncSSLSocket* sslSocket,
         DestructorGuard dg)
         : pipeReader_(std::move(reader)),
           sslSocket_(sslSocket),
           dg_(std::move(dg)) {}
 
     ~DefaultOpenSSLAsyncFinishCallback() {
       pipeReader_->setReadCB(nullptr);
       sslSocket_->setAsyncOperationFinishCallback(nullptr);
     }
 
     void readDataAvailable(size_t len) noexcept override {
       CHECK_EQ(len, 1);
       sslSocket_->restartSSLAccept();
       pipeReader_->setReadCB(nullptr);
       sslSocket_->setAsyncOperationFinishCallback(nullptr);
     }
 
     void getReadBuffer(void** bufReturn, size_t* lenReturn) noexcept override {
       *bufReturn = &byte_;
       *lenReturn = 1;
     }
 
     void readEOF() noexcept override {}
 
     void readErr(const folly::AsyncSocketException&) noexcept override {}
 
    private:
     uint8_t byte_{0};
     AsyncPipeReader::UniquePtr pipeReader_;
     AsyncSSLSocket* sslSocket_{nullptr};
     DestructorGuard dg_;
   };
 
   AsyncSSLSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       EventBase* evb,
       bool deferSecurityNegotiation = false);
 
   AsyncSSLSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       EventBase* evb,
       int fd,
       bool server = true,
       bool deferSecurityNegotiation = false);
 
   AsyncSSLSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       AsyncSocket::UniquePtr oldAsyncSocket,
       bool server = true,
       bool deferSecurityNegotiation = false);
 
   static std::shared_ptr<AsyncSSLSocket> newSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       EventBase* evb,
       int fd,
       bool server = true,
       bool deferSecurityNegotiation = false) {
     return std::shared_ptr<AsyncSSLSocket>(
         new AsyncSSLSocket(ctx, evb, fd, server, deferSecurityNegotiation),
         Destructor());
   }
 
   static std::shared_ptr<AsyncSSLSocket> newSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       EventBase* evb,
       bool deferSecurityNegotiation = false) {
     return std::shared_ptr<AsyncSSLSocket>(
         new AsyncSSLSocket(ctx, evb, deferSecurityNegotiation), Destructor());
   }
 
 #if FOLLY_OPENSSL_HAS_SNI
 
   AsyncSSLSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       EventBase* evb,
       const std::string& serverName,
       bool deferSecurityNegotiation = false);
 
   AsyncSSLSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       EventBase* evb,
       int fd,
       const std::string& serverName,
       bool deferSecurityNegotiation = false);
 
   static std::shared_ptr<AsyncSSLSocket> newSocket(
       const std::shared_ptr<folly::SSLContext>& ctx,
       EventBase* evb,
       const std::string& serverName,
       bool deferSecurityNegotiation = false) {
     return std::shared_ptr<AsyncSSLSocket>(
         new AsyncSSLSocket(ctx, evb, serverName, deferSecurityNegotiation),
         Destructor());
   }
 #endif // FOLLY_OPENSSL_HAS_SNI
 
   // Inherit TAsyncTransport methods from AsyncSocket except the
   // following.
   // See the documentation in TAsyncTransport.h
   // TODO: implement graceful shutdown in close()
   // TODO: implement detachSSL() that returns the SSL connection
   void closeNow() override;
   void shutdownWrite() override;
   void shutdownWriteNow() override;
   bool good() const override;
   bool connecting() const override;
   std::string getApplicationProtocol() const noexcept override;
 
   std::string getSecurityProtocol() const override {
     if (sslState_ == STATE_UNENCRYPTED) {
       return "";
     }
     return "TLS";
   }
 
   void setEorTracking(bool track) override;
   size_t getRawBytesWritten() const override;
   size_t getRawBytesReceived() const override;
   void enableClientHelloParsing();
 
   virtual void sslAccept(
       HandshakeCB* callback,
       std::chrono::milliseconds timeout = std::chrono::milliseconds::zero(),
       const folly::SSLContext::SSLVerifyPeerEnum& verifyPeer =
           folly::SSLContext::SSLVerifyPeerEnum::USE_CTX);
 
   void restartSSLAccept();
 
   void connect(
       ConnectCallback* callback,
       const folly::SocketAddress& address,
       int timeout = 0,
       const OptionMap& options = emptyOptionMap,
       const folly::SocketAddress& bindAddr = anyAddress()) noexcept override;
 
   virtual void connect(
       ConnectCallback* callback,
       const folly::SocketAddress& address,
       std::chrono::milliseconds connectTimeout,
       std::chrono::milliseconds totalConnectTimeout,
       const OptionMap& options = emptyOptionMap,
       const folly::SocketAddress& bindAddr = anyAddress()) noexcept;
 
   using AsyncSocket::connect;
 
   virtual void sslConn(
       HandshakeCB* callback,
       std::chrono::milliseconds timeout = std::chrono::milliseconds::zero(),
       const folly::SSLContext::SSLVerifyPeerEnum& verifyPeer =
           folly::SSLContext::SSLVerifyPeerEnum::USE_CTX);
 
   enum SSLStateEnum {
     STATE_UNINIT,
     STATE_UNENCRYPTED,
     STATE_ACCEPTING,
     STATE_CACHE_LOOKUP,
     STATE_ASYNC_PENDING,
     STATE_CONNECTING,
     STATE_ESTABLISHED,
     STATE_REMOTE_CLOSED, 
     STATE_CLOSING, 
     STATE_CONNECTING_CLOSING,
     STATE_CLOSED,
     STATE_ERROR
   };
 
   SSLStateEnum getSSLState() const {
     return sslState_;
   }
 
   SSL_SESSION* getSSLSession();
 
   const SSL* getSSL() const;
 
   void setSSLSession(SSL_SESSION* session, bool takeOwnership = false);
 
   virtual void getSelectedNextProtocol(
       const unsigned char** protoName,
       unsigned* protoLen) const;
 
   virtual bool getSelectedNextProtocolNoThrow(
       const unsigned char** protoName,
       unsigned* protoLen) const;
 
   virtual bool getSSLSessionReused() const;
 
   bool sessionIDResumed() const {
     return sessionIDResumed_;
   }
 
   void setSessionIDResumed(bool resumed) {
     sessionIDResumed_ = resumed;
   }
 
   virtual const char* getNegotiatedCipherName() const;
 
   const char* getSSLServerName() const;
 
   const char* getSSLServerNameNoThrow() const;
 
   int getSSLVersion() const;
 
   const char* getSSLCertSigAlgName() const;
 
   int getSSLCertSize() const;
 
   const X509* getSelfCert() const override;
 
   void attachEventBase(EventBase* eventBase) override {
     AsyncSocket::attachEventBase(eventBase);
     handshakeTimeout_.attachEventBase(eventBase);
     connectionTimeout_.attachEventBase(eventBase);
   }
 
   void detachEventBase() override {
     AsyncSocket::detachEventBase();
     handshakeTimeout_.detachEventBase();
     connectionTimeout_.detachEventBase();
   }
 
   bool isDetachable() const override {
     return AsyncSocket::isDetachable() && !handshakeTimeout_.isScheduled();
   }
 
   virtual void attachTimeoutManager(TimeoutManager* manager) {
     handshakeTimeout_.attachTimeoutManager(manager);
   }
 
   virtual void detachTimeoutManager() {
     handshakeTimeout_.detachTimeoutManager();
   }
 
 #if OPENSSL_VERSION_NUMBER >= 0x009080bfL
 
   void attachSSLContext(const std::shared_ptr<folly::SSLContext>& ctx);
 
   void detachSSLContext();
 #endif
 
   const std::shared_ptr<folly::SSLContext>& getSSLContext() const {
     return ctx_;
   }
 
 #if FOLLY_OPENSSL_HAS_SNI
 
   void switchServerSSLContext(
       const std::shared_ptr<folly::SSLContext>& handshakeCtx);
 
   bool isServerNameMatch() const;
 
   void setServerName(std::string serverName) noexcept;
 #endif // FOLLY_OPENSSL_HAS_SNI
 
   void timeoutExpired(std::chrono::milliseconds timeout) noexcept;
 
   void getSSLClientCiphers(
       std::string& clientCiphers,
       bool convertToString = true) const;
 
   std::string getSSLClientComprMethods() const;
 
   std::string getSSLClientExts() const;
 
   std::string getSSLClientSigAlgs() const;
 
   std::string getSSLClientSupportedVersions() const;
 
   std::string getSSLAlertsReceived() const;
 
   /*
    * Save an optional alert message generated during certificate verify
    */
   void setSSLCertVerificationAlert(std::string alert);
 
   std::string getSSLCertVerificationAlert() const;
 
   void getSSLSharedCiphers(std::string& sharedCiphers) const;
 
   void getSSLServerCiphers(std::string& serverCiphers) const;
 
   bool needsPeerVerification() const;
 
   static int getSSLExDataIndex();
   static AsyncSSLSocket* getFromSSL(const SSL* ssl);
   static int bioWrite(BIO* b, const char* in, int inl);
   static int bioRead(BIO* b, char* out, int outl);
   void resetClientHelloParsing(SSL* ssl);
   static void clientHelloParsingCallback(
       int write_p,
       int version,
       int content_type,
       const void* buf,
       size_t len,
       SSL* ssl,
       void* arg);
   static const char* getSSLServerNameFromSSL(SSL* ssl);
 
   // For unit-tests
   ssl::ClientHelloInfo* getClientHelloInfo() const {
     return clientHelloInfo_.get();
   }
 
   virtual std::chrono::nanoseconds getHandshakeTime() const {
     return handshakeEndTime_ - handshakeStartTime_;
   }
 
   void setMinWriteSize(size_t minWriteSize) {
     minWriteSize_ = minWriteSize;
   }
 
   size_t getMinWriteSize() const {
     return minWriteSize_;
   }
 
   void setReadCB(ReadCallback* callback) override;
 
   void setBufferMovableEnabled(bool enabled);
 
   const AsyncTransportCertificate* getPeerCertificate() const override;
   const AsyncTransportCertificate* getSelfCertificate() const override;
 
   ssl::X509UniquePtr getPeerCert() const override {
     auto peerCert = getPeerCertificate();
     if (!peerCert) {
       return nullptr;
     }
     return peerCert->getX509();
   }
 
   void forceCacheAddrOnFailure(bool force) {
     cacheAddrOnFailure_ = force;
   }
 
   const std::string& getSessionKey() const {
     return sessionKey_;
   }
 
   void setSessionKey(std::string sessionKey) {
     sessionKey_ = std::move(sessionKey);
   }
 
   void setCertCacheHit(bool hit) {
     certCacheHit_ = hit;
   }
 
   bool getCertCacheHit() const {
     return certCacheHit_;
   }
 
   bool sessionResumptionAttempted() const {
     return sessionResumptionAttempted_;
   }
 
   std::chrono::milliseconds getTotalConnectTimeout() const {
     return totalConnectTimeout_;
   }
 
   // This can be called for OpenSSL 1.1.0 async operation finishes
   void setAsyncOperationFinishCallback(std::unique_ptr<ReadCallback> cb) {
     asyncOperationFinishCallback_ = std::move(cb);
   }
 
  private:
   void handleReturnFromSSLAccept(int ret);
 
   void init();
 
  protected:
   ~AsyncSSLSocket() override;
 
   // Inherit event notification methods from AsyncSocket except
   // the following.
   void prepareReadBuffer(void** buf, size_t* buflen) override;
   void handleRead() noexcept override;
   void handleWrite() noexcept override;
   void handleAccept() noexcept;
   void handleConnect() noexcept override;
 
   void invalidState(HandshakeCB* callback);
   bool
   willBlock(int ret, int* sslErrorOut, unsigned long* errErrorOut) noexcept;
 
   void checkForImmediateRead() noexcept override;
   // AsyncSocket calls this at the wrong time for SSL
   void handleInitialReadWrite() noexcept override {}
 
   WriteResult interpretSSLError(int rc, int error);
   ReadResult performRead(void** buf, size_t* buflen, size_t* offset) override;
   WriteResult performWrite(
       const iovec* vec,
       uint32_t count,
       WriteFlags flags,
       uint32_t* countWritten,
       uint32_t* partialWritten) override;
 
   ssize_t performWriteIovec(
       const iovec* vec,
       uint32_t count,
       WriteFlags flags,
       uint32_t* countWritten,
       uint32_t* partialWritten);
 
   // This virtual wrapper around SSL_write exists solely for testing/mockability
   virtual int sslWriteImpl(SSL* ssl, const void* buf, int n) {
     return SSL_write(ssl, buf, n);
   }
 
   void applyVerificationOptions(const ssl::SSLUniquePtr& ssl);
 
   bool setupSSLBio();
 
   int eorAwareSSLWrite(
       const ssl::SSLUniquePtr& ssl,
       const void* buf,
       int n,
       bool eor);
 
   // Inherit error handling methods from AsyncSocket, plus the following.
   void failHandshake(const char* fn, const AsyncSocketException& ex);
 
   void invokeHandshakeErr(const AsyncSocketException& ex);
   void invokeHandshakeCB();
 
   void invokeConnectErr(const AsyncSocketException& ex) override;
   void invokeConnectSuccess() override;
   void scheduleConnectTimeout() override;
 
   void startSSLConnect();
 
   static void sslInfoCallback(const SSL* ssl, int type, int val);
 
   // Whether the current write to the socket should use MSG_MORE.
   bool corkCurrentWrite_{false};
   // SSL related members.
   bool server_{false};
   // Used to prevent client-initiated renegotiation.  Note that AsyncSSLSocket
   // doesn't fully support renegotiation, so we could just fail all attempts
   // to enforce this.  Once it is supported, we should make it an option
   // to disable client-initiated renegotiation.
   bool handshakeComplete_{false};
   bool renegotiateAttempted_{false};
   SSLStateEnum sslState_{STATE_UNINIT};
   std::shared_ptr<folly::SSLContext> ctx_;
   // Callback for SSL_accept() or SSL_connect()
   HandshakeCB* handshakeCallback_{nullptr};
   ssl::SSLUniquePtr ssl_;
   SSL_SESSION* sslSession_{nullptr};
   Timeout handshakeTimeout_;
   Timeout connectionTimeout_;
 
   // The app byte num that we are tracking for the MSG_EOR
   // Only one app EOR byte can be tracked.
   size_t appEorByteNo_{0};
 
   // Try to avoid calling SSL_write() for buffers smaller than this.
   // It doesn't take effect when it is 0.
   size_t minWriteSize_{1500};
 
   // When openssl is about to sendmsg() across the minEorRawBytesNo_,
   // it will pass MSG_EOR to sendmsg().
   size_t minEorRawByteNo_{0};
 #if FOLLY_OPENSSL_HAS_SNI
   std::shared_ptr<folly::SSLContext> handshakeCtx_;
   std::string tlsextHostname_;
 #endif
 
   // a key that can be used for caching the established session
   std::string sessionKey_;
 
   folly::SSLContext::SSLVerifyPeerEnum verifyPeer_{
       folly::SSLContext::SSLVerifyPeerEnum::USE_CTX};
 
   // Callback for SSL_CTX_set_verify()
   static int sslVerifyCallback(int preverifyOk, X509_STORE_CTX* ctx);
 
   bool parseClientHello_{false};
   bool cacheAddrOnFailure_{false};
   bool bufferMovableEnabled_{false};
   bool certCacheHit_{false};
   std::unique_ptr<ssl::ClientHelloInfo> clientHelloInfo_;
   std::vector<std::pair<char, StringPiece>> alertsReceived_;
 
   // Time taken to complete the ssl handshake.
   std::chrono::steady_clock::time_point handshakeStartTime_;
   std::chrono::steady_clock::time_point handshakeEndTime_;
   std::chrono::milliseconds handshakeConnectTimeout_{0};
   std::chrono::milliseconds totalConnectTimeout_{0};
 
   std::string sslVerificationAlert_;
 
   bool sessionResumptionAttempted_{false};
   // whether the SSL session was resumed using session ID or not
   bool sessionIDResumed_{false};
   // This can be called for OpenSSL 1.1.0 async operation finishes
   std::unique_ptr<ReadCallback> asyncOperationFinishCallback_;
 };
 
 } // namespace folly