production/code_guide/ssl__init_8cpp_source.html

/*****************************************************************************\

*                                                                             *

*  Name   : SSL initialization helper                                         *

*  Author : Chris Koeritz                                                     *

*                                                                             *

*******************************************************************************

* Copyright (c) 2005-$now By Author.  This program is free software; you can  *

* redistribute it and/or modify it under the terms of the GNU General Public  *

* License as published by the Free Software Foundation; either version 2 of   *

* the License or (at your option) any later version.  This is online at:      *

*     http://www.fsf.org/copyleft/gpl.html                                    *

* Please send any updates to: fred@gruntose.com                               *

\*****************************************************************************/


#include "ssl_init.h"


#include <basis/functions.h>

#include <basis/mutex.h>

#include <loggers/program_wide_logger.h>

#include <structures/static_memory_gremlin.h>


#include <openssl/crypto.h>

#include <openssl/err.h>

#include <openssl/provider.h>

#include <openssl/rand.h>


using namespace basis;

using namespace loggers;

using namespace mathematics;

using namespace structures;


namespace crypto {


#define DEBUG_SSL

  // uncomment to cause more debugging information to be generated, plus

  // more checking to be performed in the SSL support.


#undef ALWAYS_LOG

#define ALWAYS_LOG(s) CLASS_EMERGENCY_LOG(program_wide_logger::get(), s)

#ifdef DEBUG_SSL

  #undef LOG

  #define LOG(s) CLASS_EMERGENCY_LOG(program_wide_logger::get(), s)

#else

  #undef LOG

  #define LOG(s)

#endif


const int SEED_SIZE = 100;

  // the size of the random seed that we'll use.


// our global initialization object.

SAFE_STATIC_CONST(ssl_init, static_ssl_initializer, )


ssl_init::ssl_init()

: c_rando(),

  c_default_provider(NULL_POINTER),

  c_legacy_provider(NULL_POINTER)

{

  FUNCDEF("ctor");


  LOG("prior to provider setup");

  // new code needed because blowfish is considered legacy code now.  ugh.

  c_legacy_provider = OSSL_PROVIDER_load(NULL_POINTER, "legacy");

  if (!c_legacy_provider) {

    ALWAYS_LOG("failed to load legacy openssl provider!  mega boofer fail!");

    exit(1);

  }

  // also load the default provider or the standard, still accepted, algorithms will not be available.

  c_default_provider = OSSL_PROVIDER_load(NULL_POINTER, "default");

  if (!c_default_provider) {

    ALWAYS_LOG("failed to load default openssl provider!  mega flopsweat fail!");

    exit(1);

  }

  LOG("after provider setup");


  LOG("prior to rand seed");

  RAND_seed(random_bytes(SEED_SIZE).observe(), SEED_SIZE);

  LOG("after rand seed");

}


ssl_init::~ssl_init()

{

  FUNCDEF("destructor");

  LOG("prior to crypto cleanup");


  // clean up the providers again.  not super necessary since the program will

  // exit shortly, but it's good to be tidy.

  if (c_default_provider) OSSL_PROVIDER_unload(c_default_provider);

  if (c_legacy_provider) OSSL_PROVIDER_unload(c_legacy_provider);


  CRYPTO_cleanup_all_ex_data();

}


const chaos &ssl_init::randomizer() const { return c_rando; }


byte_array ssl_init::random_bytes(int length) const

{

  byte_array seed;

  for (int i = 0; i < length; i++)

    seed += abyte(c_rando.inclusive(0, 255));

  return seed;

}


} //namespace.


ALWAYS_LOG
#define ALWAYS_LOG(t)
Definition blowfish_crypto.cpp:49

LOG
#define LOG(s)
Definition bookmark_tree.cpp:50

basis::byte_array
A very common template for a dynamic array of bytes.
Definition byte_array.h:36

crypto::ssl_init
provides some initialization for the RSA and blowfish crypto.
Definition ssl_init.h:43

crypto::ssl_init::randomizer
const mathematics::chaos & randomizer() const
provides a random number generator for any encryption routines.
Definition ssl_init.cpp:94

crypto::ssl_init::~ssl_init
~ssl_init()
Definition ssl_init.cpp:81

crypto::ssl_init::random_bytes
basis::byte_array random_bytes(int length) const
can be used to generate a random array of "length" bytes.
Definition ssl_init.cpp:96

mathematics::chaos
a platform-independent way to acquire random numbers in a specific range.
Definition chaos.h:51

mathematics::chaos::inclusive
int inclusive(int low, int high) const
< Returns a pseudo-random number r, such that "low" <= r <= "high".
Definition chaos.h:88

NULL_POINTER
#define NULL_POINTER
The value representing a pointer to nothing.
Definition definitions.h:32

FUNCDEF
#define FUNCDEF(func_in)
FUNCDEF sets the name of a function (and plugs it into the callstack).
Definition enhance_cpp.h:54

functions.h

mutex.h

basis
The guards collection helps in testing preconditions and reporting errors.
Definition array.h:30

basis::abyte
unsigned char abyte
A fairly important unit which is seldom defined...
Definition definitions.h:51

crypto
Definition blowfish_crypto.cpp:35

crypto::SEED_SIZE
const int SEED_SIZE
Definition ssl_init.cpp:48

crypto::static_ssl_initializer
const ssl_init & static_ssl_initializer()
the main method for accessing the SSL initialization support.

loggers
A logger that sends to the console screen using the standard output device.
Definition combo_logger.cpp:36

mathematics
An extension to floating point primitives providing approximate equality.
Definition averager.h:21

structures
A dynamic container class that holds any kind of object via pointers.
Definition amorph.h:55

program_wide_logger.h

ssl_init.h

static_memory_gremlin.h

SAFE_STATIC_CONST
#define SAFE_STATIC_CONST(type, func_name, parms)
this version returns a constant object instead.
Definition static_memory_gremlin.h:133

random_bytes
byte_array random_bytes(int length)
Definition test_file_info.cpp:50