search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Also use Objects as part of an operation but as a result don't generate Any operation...
[ACE_TAO.git] / ACE / ace / SSL / SSL_SOCK_Stream.cpp
blob113adf25a61f18764132c87b82053e4e2eb23dfe
1 #include "ace/Handle_Set.h"
2 #include "ace/Log_Category.h"
3 #include "ace/Countdown_Time.h"
4 #include "ace/OS_NS_string.h"
5 #include "ace/OS_NS_sys_select.h"
6 #include "ace/OS_Memory.h"
7
8 #include <openssl/err.h>
9
10 #include "SSL_SOCK_Stream.h"
11
12 #if !defined (__ACE_INLINE__)
13 #include "SSL_SOCK_Stream.inl"
14 #endif /* __ACE_INLINE__ */
15
16 ACE_BEGIN_VERSIONED_NAMESPACE_DECL
17
18 ACE_ALLOC_HOOK_DEFINE(ACE_SSL_SOCK_Stream)
19
20 ACE_SSL_SOCK_Stream::ACE_SSL_SOCK_Stream (ACE_SSL_Context *context)
21 : ssl_ (0),
22 stream_ ()
23 {
24 ACE_TRACE ("ACE_SSL_SOCK_Stream::ACE_SSL_SOCK_Stream");
25
26 ACE_SSL_Context * ctx =
27 (context == 0 ? ACE_SSL_Context::instance () : context);
28
29 this->ssl_ = ::SSL_new (ctx->context ());
30
31 if (this->ssl_ == 0)
32 {
33 ACELIB_ERROR ((LM_ERROR,
34 "(%P|%t) ACE_SSL_SOCK_Stream "
35 "- cannot allocate new SSL structure %p\n",
36 ACE_TEXT ("")));
37 }
38 }
39
40 ACE_SSL_SOCK_Stream::~ACE_SSL_SOCK_Stream (void)
41 {
42 ACE_TRACE ("ACE_SSL_SOCK_Stream::~ACE_SSL_SOCK_Stream");
43
44 ::SSL_free (this->ssl_);
45
46 // @@ Question: should we reference count the Context object or
47 // leave that to the application developer? We do not reference
48 // count reactors (for example) and following some simple rules
49 // seems to work fine!
50 }
51
52 ssize_t
53 ACE_SSL_SOCK_Stream::sendv (const iovec iov[],
54 size_t n,
55 const ACE_Time_Value *max_wait_time) const
56 {
57 ACE_TRACE ("ACE_SSL_SOCK_Stream::sendv");
58
59 // There is subtle problem in this method that occurs when using
60 // non-blocking IO. The semantics of a non-blocking scatter write
61 // (sendv()) are not possible to retain with the emulation in this
62 // method.
63
64 ssize_t bytes_sent = 0;
65
66 ACE_Time_Value t;
67 ACE_Time_Value *timeout = const_cast<ACE_Time_Value *> (max_wait_time);
68
69 if (max_wait_time != 0)
70 {
71 // Make a copy since ACE_Countdown_Time modifies the
72 // ACE_Time_Value.
73 t = *max_wait_time;
74 timeout = &t;
75 }
76
77 // Take into account the time between each send.
78 ACE_Countdown_Time countdown (timeout);
79
80 for (size_t i = 0; i < n; ++i)
81 {
82 ssize_t const result = this->send (iov[i].iov_base,
83 iov[i].iov_len,
84 timeout);
85
86 if (result == -1)
87 {
88 // There is a subtle difference in behaviour depending on
89 // whether or not any data was sent. If no data was sent,
90 // then always return -1. Otherwise return bytes_sent.
91 // This gives the caller an opportunity to keep track of
92 if (bytes_sent > 0)
93 break;
94 else
95 return -1;
96 }
97 else
98 {
99 bytes_sent += result;
100
101 // Do not continue on to the next loop iteration if the
102 // amount of data sent was less than the amount data given.
103 // This avoids a subtle problem where "holes" in the data
104 // stream would occur if partial sends of a given buffer in
105 // the iovec array occurred.
106 if (static_cast<size_t> (result) < static_cast<size_t> (iov[i].iov_len))
107 break;
108 }
109
110 (void) countdown.update ();
111 }
112
113 return bytes_sent;
114 }
115
116 ssize_t
117 ACE_SSL_SOCK_Stream::recvv (iovec *io_vec,
118 const ACE_Time_Value *timeout) const
119 {
120 ACE_TRACE ("ACE_SSL_SOCK_Stream::recvv");
121
122 // From ACE_SOCK_IO::recvv().
123 #if defined (FIONREAD)
124 ACE_Handle_Set handle_set;
125 handle_set.reset ();
126 handle_set.set_bit (this->get_handle ());
127
128 io_vec->iov_base = 0;
129
130 // Check the status of the current socket.
131 switch (
132 ACE_OS::select (int (this->get_handle ()) + 1,
133 handle_set,
134 0,
135 0,
136 timeout))
137 {
138 case -1:
139 return -1;
140 /* NOTREACHED */
141 case 0:
142 errno = ETIME;
143 return -1;
144 /* NOTREACHED */
145 default:
146 // Goes fine, fallthrough to get data
147 break;
148 }
149
150 int inlen;
151
152 if (ACE_OS::ioctl (this->get_handle (),
153 FIONREAD,
154 &inlen) == -1)
155 return -1;
156 else if (inlen > 0)
157 {
158 ACE_NEW_RETURN (io_vec->iov_base,
159 char[inlen],
160 -1);
161 io_vec->iov_len = this->recv (io_vec->iov_base,
162 inlen);
163 return io_vec->iov_len;
164 }
165 else
166 return 0;
167 #else
168 ACE_UNUSED_ARG (io_vec);
169 ACE_UNUSED_ARG (timeout);
170 ACE_NOTSUP_RETURN (-1);
171 #endif /* FIONREAD */
172 }
173
174 ssize_t
175 ACE_SSL_SOCK_Stream::send (const void *buf,
176 size_t len,
177 int flags,
178 const ACE_Time_Value *timeout) const
179 {
180 ACE_TRACE ("ACE_SSL_SOCK_Stream::send");
181
182 // If SSL has data in the buffer, i.e. SSL_pending() returns a
183 // non-zero value, then don't block on select().
184 if (timeout == 0 || ::SSL_pending (this->ssl_))
185 return this->send (buf, len, flags);
186
187 int val = 0;
188 if (ACE::enter_send_timedwait (this->get_handle (),
189 timeout,
190 val) == -1)
191 return -1;
192
193 ssize_t const bytes_transferred = this->send (buf, len, flags);
194
195 ACE::restore_non_blocking_mode (this->get_handle (), val);
196
197 return bytes_transferred;
198 }
199
200 ssize_t
201 ACE_SSL_SOCK_Stream::recv (void *buf,
202 size_t n,
203 int flags,
204 const ACE_Time_Value *timeout) const
205 {
206 ACE_TRACE ("ACE_SSL_SOCK_Stream::recv");
207
208 return this->recv_i (buf, n, flags, timeout);
209 }
210
211
212 ssize_t
213 ACE_SSL_SOCK_Stream::send (size_t n, ...) const
214 {
215 ACE_TRACE ("ACE_SSL_SOCK_Stream::send");
216
217 size_t const total_tuples = n / 2;
218
219 va_list argp;
220 va_start (argp, n);
221
222 ssize_t bytes_sent = 0;
223
224 // NOTE: This method used to fill an IO vector (e.g. iovec) and then
225 // send it using a scatter write (sendv()). However, it is
226 // not possible to emulate a non-blocking scatter write over
227 // SSL. As such, there is no point in attempting to use
228 // scatter writes over SSL.
229 for (size_t i = 0; i < total_tuples; ++i)
230 {
231 ssize_t const data_len = va_arg (argp, ssize_t);
232 ssize_t const result = this->send (va_arg (argp, char *), data_len);
233
234 if (result == -1)
235 {
236 // There is a subtle difference in behaviour depending on
237 // whether or not any data was sent. If no data was sent,
238 // then always return -1. Otherwise return bytes_sent.
239 // This gives the caller an opportunity to keep track of
240 // which data was actually sent.
241 if (bytes_sent > 0)
242 break;
243 else
244 {
245 va_end (argp);
246 return -1;
247 }
248 }
249 else
250 {
251 bytes_sent += result;
252
253 // Do not continue on to the next loop iteration if the
254 // amount of data sent was less than the amount of data
255 // given. This avoids a subtle problem where "holes" in the
256 // data stream would occur if partial sends of a given
257 // buffer in the varargs occurred.
258 if (result < data_len)
259 break;
260
261 }
262 }
263
264 va_end (argp);
265
266 return bytes_sent;
267 }
268
269 ssize_t
270 ACE_SSL_SOCK_Stream::recv (size_t n, ...) const
271 {
272 ACE_TRACE ("ACE_SSL_SOCK_Stream::recv");
273
274 size_t const total_tuples = n / 2;
275
276 va_list argp;
277 va_start (argp, n);
278
279 ssize_t bytes_recv = 0;
280
281 for (size_t i = 0; i < total_tuples; ++i)
282 {
283 ssize_t const data_len = va_arg (argp, ssize_t);
284 ssize_t const result = this->recv (va_arg (argp, char *), data_len);
285
286 if (result == -1)
287 {
288 // There is a subtle difference in behaviour depending on
289 // whether or not any data was received. If no data was
290 // received, then always return -1. Otherwise return
291 // bytes_received. This gives the caller an opportunity to
292 // keep track of which data was actually received.
293 if (bytes_recv > 0)
294 {
295 break;
296 }
297 else
298 {
299 va_end (argp);
300 return -1;
301 }
302 }
303 else
304 {
305 bytes_recv += result;
306
307 // Do not continue on to the next loop iteration if the
308 // amount of data received was less than the amount of data
309 // desired. This avoids a subtle problem where "holes" in
310 // the data stream would occur if partial receives of a
311 // given buffer in the varargs occurred.
312 if (result < data_len)
313 {
314 break;
315 }
316 }
317 }
318
319 va_end (argp);
320
321 return bytes_recv;
322 }
323
324 ssize_t
325 ACE_SSL_SOCK_Stream::send_n (const void *buf,
326 size_t len,
327 int flags,
328 const ACE_Time_Value *timeout,
329 size_t *bt) const
330 {
331 ACE_TRACE ("ACE_SSL_SOCK_Stream::send_n");
332
333 // No support for send flags in SSL.
334 if (flags != 0)
335 {
336 ACE_NOTSUP_RETURN (-1);
337 }
338
339 /* This code mimics ACE::send_n */
340 // Total number of bytes written.
341 size_t temp = 0;
342 size_t &bytes_transferred = ((bt == 0) ? temp : *bt);
343
344 // Actual number of bytes written in each <send> attempt
345 ssize_t n = 0;
346
347 for (bytes_transferred = 0;
348 bytes_transferred < len;
349 bytes_transferred += n)
350 {
351 n = this->send ((const char*) buf + bytes_transferred,
352 len - bytes_transferred,
353 flags,
354 timeout);
355
356 if (n < 0)
357 {
358 if (errno == EWOULDBLOCK)
359 {
360 // If blocked, try again.
361 n = 0;
362 continue;
363 }
364 else
365 {
366 return -1;
367 }
368 }
369 else if (n == 0)
370 {
371 break;
372 }
373 }
374
375 return ACE_Utils::truncate_cast<ssize_t> (bytes_transferred);
376 }
377
378 ssize_t
379 ACE_SSL_SOCK_Stream::recv_n (void *buf,
380 size_t len,
381 int flags,
382 const ACE_Time_Value *timeout,
383 size_t *bt) const
384 {
385 ACE_TRACE ("ACE_SSL_SOCK_Stream::recv_n");
386
387 if (flags != 0)
388 {
389 if ((flags | MSG_PEEK) != MSG_PEEK)
390 {
391 ACE_NOTSUP_RETURN (-1);
392 }
393 }
394
395 size_t temp = 0;
396 size_t &bytes_transferred = ((bt == 0) ? temp : *bt);
397
398 ssize_t n = 0;
399
400 for (bytes_transferred = 0;
401 bytes_transferred < len;
402 bytes_transferred += n)
403 {
404 n = this->recv ((char*) buf + bytes_transferred,
405 len - bytes_transferred,
406 flags,
407 timeout);
408
409 if (n < 0)
410 return -1;
411 else if (n == 0)
412 break;
413 }
414
415 return ACE_Utils::truncate_cast<ssize_t> (bytes_transferred);
416 }
417
418 ssize_t
419 ACE_SSL_SOCK_Stream::recv_n (void *buf, int len, int flags) const
420 {
421 ACE_TRACE ("ACE_SSL_SOCK_Stream::recv_n");
422
423 if (flags != 0)
424 {
425 if ((flags | MSG_PEEK) != MSG_PEEK)
426 {
427 ACE_NOTSUP_RETURN (-1);
428 }
429 }
430
431 ssize_t bytes_transferred = 0;
432 ssize_t n = 0;
433
434 for (bytes_transferred = 0;
435 bytes_transferred < len;
436 bytes_transferred += n)
437 {
438 n = this->recv ((char*) buf + bytes_transferred,
439 len - bytes_transferred,
440 flags);
441
442 if (n < 0)
443 return -1;
444 else if (n == 0)
445 break;
446 }
447
448 return ACE_Utils::truncate_cast<ssize_t> (bytes_transferred);
449 }
450
451 ssize_t
452 ACE_SSL_SOCK_Stream::send_n (const void *buf, int len, int flags) const
453 {
454 ACE_TRACE ("ACE_SSL_SOCK_Stream::send_n");
455
456 // Send flags are unsupported in SSL
457 if (flags != 0)
458 {
459 ACE_NOTSUP_RETURN (-1);
460 }
461
462 /* The following code mimics <ACE::send_n> */
463 size_t bytes_transferred = 0;
464 ssize_t n = 0;
465
466 for (bytes_transferred = 0;
467 bytes_transferred < (size_t) len;
468 bytes_transferred += n)
469 {
470 n = this->send ((const char*) buf + bytes_transferred,
471 len - bytes_transferred,
472 flags);
473 if (n < 0)
474 return -1;
475 else if (n == 0)
476 break;
477 }
478
479 return ACE_Utils::truncate_cast<ssize_t> (bytes_transferred);
480 }
481
482 ssize_t
483 ACE_SSL_SOCK_Stream::sendv_n (const iovec iov[], size_t iovcnt) const
484 {
485 ACE_TRACE ("ACE_SSL_SOCK_Stream::sendv_n");
486
487 ssize_t bytes_sent = 0;
488
489 for (size_t i = 0; i < iovcnt; ++i)
490 {
491 ssize_t result = this->send_n (iov[i].iov_base,
492 iov[i].iov_len);
493
494
495 if (result == -1)
496 {
497 // There is a subtle difference in behaviour depending on
498 // whether or not any data was sent. If no data was sent,
499 // then always return -1. Otherwise return bytes_sent.
500 // This gives the caller an opportunity to keep track of
501 // which data was actually sent.
502 if (bytes_sent > 0)
503 {
504 break;
505 }
506 else
507 {
508 return -1;
509 }
510 }
511 else
512 {
513 bytes_sent += result;
514 }
515 }
516
517 return bytes_sent;
518 }
519
520 ssize_t
521 ACE_SSL_SOCK_Stream::recvv_n (iovec iov[], size_t iovcnt) const
522 {
523 ACE_TRACE ("ACE_SSL_SOCK_Stream::recvv_n");
524
525 ssize_t bytes_read = 0;
526
527 for (size_t i = 0; i < iovcnt; ++i)
528 {
529 ssize_t const result = this->recv_n (iov[i].iov_base,
530 iov[i].iov_len);
531
532 if (result == -1)
533 {
534 // There is a subtle difference in behaviour depending on
535 // whether or not any data was read. If no data was read,
536 // then always return -1. Otherwise return bytes_read.
537 // This gives the caller an opportunity to keep track of
538 // which data was actually read.
539 if (bytes_read > 0)
540 {
541 break;
542 }
543 else
544 {
545 return -1;
546 }
547 }
548 else
549 {
550 bytes_read += result;
551 }
552 }
553
554 return bytes_read;
555 }
556
557 int
558 ACE_SSL_SOCK_Stream::get_remote_addr (ACE_Addr &addr) const
559 {
560 // Some applications use get_remote_addr() as a way of determining
561 // whether or not a connection has been established. In SSL's case,
562 // the remote addr will be available once the TCP handshake has been
563 // complete. Despite that fact, the SSL connection may not have
564 // been completed. In such a case, a successful return from
565 // get_remote_addr() would be misleading.
566 if (SSL_is_init_finished (this->ssl_))
567 {
568 return this->ACE_SSL_SOCK::get_remote_addr (addr);
569 }
570
571 if (this->get_handle () == ACE_INVALID_HANDLE)
572 {
573 errno = EBADF;
574 }
575 else
576 {
577 errno = ENOTCONN;
578 }
579
580 return -1;
581 }
582
583 ACE_END_VERSIONED_NAMESPACE_DECL