dart::bin::SecureSocketUtils Class Reference

#include <secure_socket_utils.h>

Inheritance diagram for dart::bin::SecureSocketUtils:

Static Public Member Functions
static void	ThrowIOException (int status, const char *exception_type, const char *message, const SSL *ssl)
static void	CheckStatusSSL (int status, const char *type, const char *message, const SSL *ssl)
static void	CheckStatus (int status, const char *type, const char *message)
static bool	IsCurrentTimeInsideCertValidDateRange (X509 *root_cert)
static bool	NoPEMStartLine ()
static uint32_t	FetchErrorString (const SSL *ssl, TextBuffer *text_buffer)

Static Public Attributes
static constexpr int	SSL_ERROR_MESSAGE_BUFFER_SIZE = 1000

Detailed Description

Definition at line 26 of file secure_socket_utils.h.

Member Function Documentation

CheckStatus()

void dart::bin::SecureSocketUtils::CheckStatus ( int  status, const char *  type, const char *  message  )

static

Definition at line 97 of file secure_socket_utils.cc.

                                                         {
  SecureSocketUtils::CheckStatusSSL(status, type, message, nullptr);
}

CheckStatusSSL()

void dart::bin::SecureSocketUtils::CheckStatusSSL ( int  status, const char *  type, const char *  message, const SSL *  ssl  )

static

Definition at line 78 of file secure_socket_utils.cc.

                                                       {
  // TODO(24183): Take appropriate action on failed calls,
  // throw exception that includes all messages from the error stack.
  if (status == 1) {
    return;
  }
  if (SSL_LOG_STATUS) {
    int error = ERR_get_error();
    Syslog::PrintErr("Failed: %s status: %d ", message, status);
    char error_string[SSL_ERROR_MESSAGE_BUFFER_SIZE];
    ERR_error_string_n(error, error_string, SSL_ERROR_MESSAGE_BUFFER_SIZE);
    Syslog::PrintErr("%s\n", error_string);
  }
  SecureSocketUtils::ThrowIOException(status, type, message, ssl);
}

FetchErrorString()

uint32_t dart::bin::SecureSocketUtils::FetchErrorString ( const SSL *  ssl, TextBuffer *  text_buffer  )

static

Definition at line 27 of file secure_socket_utils.cc.

                                                                      {
  const char* sep = File::PathSeparator();
  uint32_t errCode = 0;
  while (true) {
    const char* path = nullptr;
    int line = -1;
    uint32_t error = ERR_get_error_line(&path, &line);
    if (error == 0) {
      break;
    }
    if (errCode == 0) {
      errCode = error;
    }
    text_buffer->Printf("\n\t%s", ERR_reason_error_string(error));
    if ((ssl != nullptr) && (ERR_GET_LIB(error) == ERR_LIB_SSL) &&
        (ERR_GET_REASON(error) == SSL_R_CERTIFICATE_VERIFY_FAILED)) {
      intptr_t result = SSL_get_verify_result(ssl);
      text_buffer->Printf(": %s", X509_verify_cert_error_string(result));
    }
    if ((path != nullptr) && (line >= 0)) {
      const char* file = strrchr(path, sep[0]);
      path = file != nullptr ? file + 1 : path;
      text_buffer->Printf("(%s:%d)", path, line);
    }
  }
  return errCode;
}

IsCurrentTimeInsideCertValidDateRange()

bool dart::bin::SecureSocketUtils::IsCurrentTimeInsideCertValidDateRange ( X509 *  root_cert )

static

Definition at line 103 of file secure_socket_utils.cc.

                                                                             {
  ASN1_TIME* not_before = X509_get_notBefore(root_cert);
  ASN1_TIME* not_after = X509_get_notAfter(root_cert);
  int days_since_valid = 0;
  int secs_since_valid = 0;
  int days_before_invalid = 0;
  int secs_before_invalid = 0;
  // nullptr indicates current date/time
  ASN1_TIME_diff(&days_since_valid, &secs_since_valid, not_before,
                 /*to=*/nullptr);
  ASN1_TIME_diff(&days_before_invalid, &secs_before_invalid,
                 /*from=*/nullptr, not_after);
  return days_since_valid >= 0 && secs_since_valid >= 0 &&
         days_before_invalid >= 0 && secs_before_invalid >= 0;
}

NoPEMStartLine()

static bool dart::bin::SecureSocketUtils::NoPEMStartLine ( )

inlinestatic

Definition at line 44 of file secure_socket_utils.h.

                               {
    uint32_t last_error = ERR_peek_last_error();
    return (ERR_GET_LIB(last_error) == ERR_LIB_PEM) &&
           (ERR_GET_REASON(last_error) == PEM_R_NO_START_LINE);
  }

ThrowIOException()

void dart::bin::SecureSocketUtils::ThrowIOException ( int  status, const char *  exception_type, const char *  message, const SSL *  ssl  )

static

Definition at line 57 of file secure_socket_utils.cc.

                                                         {
  Dart_Handle exception;
  {
    TextBuffer error_string(SSL_ERROR_MESSAGE_BUFFER_SIZE);
    uint32_t errCode = SecureSocketUtils::FetchErrorString(ssl, &error_string);
    if (status == 0) {
      status = errCode;
    }
    OSError os_error_struct(status, error_string.buffer(), OSError::kBoringSSL);
    Dart_Handle os_error = DartUtils::NewDartOSError(&os_error_struct);
    exception =
        DartUtils::NewDartIOException(exception_type, message, os_error);
    ASSERT(!Dart_IsError(exception));
  }
  Dart_ThrowException(exception);
  UNREACHABLE();
}

Member Data Documentation

SSL_ERROR_MESSAGE_BUFFER_SIZE

constexpr int dart::bin::SecureSocketUtils::SSL_ERROR_MESSAGE_BUFFER_SIZE = 1000

staticconstexpr

Definition at line 28 of file secure_socket_utils.h.

---

The documentation for this class was generated from the following files:

• third_party/dart-lang/sdk/runtime/bin/secure_socket_utils.h
• third_party/dart-lang/sdk/runtime/bin/secure_socket_utils.cc