production/code_guide/ssl__init_8cpp_source.html

 /*****************************************************************************\

 *                                                                             *

 *  Name   : SSL initialization helper                                         *

 *  Author : Chris Koeritz                                                     *

 *                                                                             *

 *******************************************************************************

 * Copyright (c) 2005-$now By Author.  This program is free software; you can  *

 * redistribute it and/or modify it under the terms of the GNU General Public  *

 * License as published by the Free Software Foundation; either version 2 of   *

 * the License or (at your option) any later version.  This is online at:      *

 *     http://www.fsf.org/copyleft/gpl.html                                    *

 * Please send any updates to: fred@gruntose.com                               *

 \*****************************************************************************/


 #include "ssl_init.h"


 #include <basis/functions.h>

 #include <basis/mutex.h>

 #include <loggers/program_wide_logger.h>

 #include <structures/static_memory_gremlin.h>


 #include <openssl/crypto.h>

 #include <openssl/err.h>

 #include <openssl/provider.h>

 #include <openssl/rand.h>


 using namespace basis;

 using namespace loggers;

 using namespace mathematics;

 using namespace structures;


 namespace crypto {


 //#define DEBUG_SSL

   // uncomment to cause more debugging information to be generated, plus

   // more checking to be performed in the SSL support.


 #ifdef DEBUG_SSL

   #undef LOG

   #define LOG(s) CLASS_EMERGENCY_LOG(program_wide_logger::get(), s)

 #else

   #undef LOG

   #define LOG(s)

 #endif


 const int SEED_SIZE = 100;

   // the size of the random seed that we'll use.


 // our global initialization object.

 SAFE_STATIC_CONST(ssl_init, static_ssl_initializer, )


 ssl_init::ssl_init()

 : c_rando()

 {

   FUNCDEF("ctor");


   // new code needed because blowfish is considered legacy code now.  ugh.

   OSSL_PROVIDER *legacy_provider = OSSL_PROVIDER_load(NULL_POINTER, "legacy");

   // also load the default provider or the standard, still accepted, algorithms will not be available.

   OSSL_PROVIDER *default_provider = OSSL_PROVIDER_load(NULL, "default");

 //hmmm: do we need to clean up these providers?


 #ifdef DEBUG_SSL

   LOG("prior to crypto debug init");

   CRYPTO_malloc_debug_init();

   LOG("prior to dbg set options");

   CRYPTO_dbg_set_options(V_CRYPTO_MDEBUG_ALL);

   LOG("prior to mem ctrl");

   CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON);

 #endif

   LOG("prior to rand seed");

   RAND_seed(random_bytes(SEED_SIZE).observe(), SEED_SIZE);

   LOG("after rand seed");

 }


 ssl_init::~ssl_init()

 {

   FUNCDEF("destructor");

   LOG("prior to crypto cleanup");

   CRYPTO_cleanup_all_ex_data();


 //hmmm: deprecated

 //  LOG("prior to err remove state");

 //  ERR_remove_thread_state(NULL);


 //THIS HAD TO be removed in most recent openssl; does it exist?

 //  LOG("prior to mem leaks fp");

 //  CRYPTO_mem_leaks_fp(stderr);

 //  LOG("after mem leaks fp");

 }


 const chaos &ssl_init::randomizer() const { return c_rando; }


 byte_array ssl_init::random_bytes(int length) const

 {

   byte_array seed;

   for (int i = 0; i < length; i++)

     seed += abyte(c_rando.inclusive(0, 255));

   return seed;

 }


 } //namespace.


basis::byte_array
A very common template for a dynamic array of bytes.
Definition: byte_array.h:36

crypto::ssl_init
provides some initialization for the RSA and blowfish crypto.
Definition: ssl_init.h:40

mathematics::chaos
a platform-independent way to acquire random numbers in a specific range.
Definition: chaos.h:51

NULL_POINTER
#define NULL_POINTER
The value representing a pointer to nothing.
Definition: definitions.h:32

FUNCDEF
#define FUNCDEF(func_in)
FUNCDEF sets the name of a function (and plugs it into the callstack).
Definition: enhance_cpp.h:54

functions.h

mutex.h

basis
The guards collection helps in testing preconditions and reporting errors.
Definition: array.h:30

basis::abyte
unsigned char abyte
A fairly important unit which is seldom defined...
Definition: definitions.h:51

crypto
Definition: blowfish_crypto.cpp:34

crypto::SEED_SIZE
const int SEED_SIZE
Definition: ssl_init.cpp:46

crypto::static_ssl_initializer
const ssl_init & static_ssl_initializer()
the main method for accessing the SSL initialization support.

loggers
A logger that sends to the console screen using the standard output device.
Definition: combo_logger.cpp:36

mathematics
An extension to floating point primitives providing approximate equality.
Definition: averager.h:21

structures
A dynamic container class that holds any kind of object via pointers.
Definition: amorph.h:55

program_wide_logger.h

LOG
#define LOG(s)
Definition: ssl_init.cpp:43

ssl_init.h

static_memory_gremlin.h

SAFE_STATIC_CONST
#define SAFE_STATIC_CONST(type, func_name, parms)
this version returns a constant object instead.
Definition: static_memory_gremlin.h:133

randomizer
#define randomizer()
Definition: test_bin_threaded.cpp:159

random_bytes
byte_array random_bytes(int length)
Definition: test_file_info.cpp:50