1 /*
2 * Copyright (C) 2021 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17 #define LOG_TAG "RpcTransportTls"
18 #include <log/log.h>
19
20 #include <poll.h>
21
22 #include <openssl/bn.h>
23 #include <openssl/ssl.h>
24
25 #include <binder/RpcTlsUtils.h>
26 #include <binder/RpcTransportTls.h>
27
28 #include "FdTrigger.h"
29 #include "RpcState.h"
30 #include "Utils.h"
31
32 #define SHOULD_LOG_TLS_DETAIL false
33
34 #if SHOULD_LOG_TLS_DETAIL
35 #define LOG_TLS_DETAIL(...) ALOGI(__VA_ARGS__)
36 #else
37 #define LOG_TLS_DETAIL(...) ALOGV(__VA_ARGS__) // for type checking
38 #endif
39
40 namespace android {
41 namespace {
42
43 // Implement BIO for socket that ignores SIGPIPE.
socketNew(BIO * bio)44 int socketNew(BIO* bio) {
45 BIO_set_data(bio, reinterpret_cast<void*>(-1));
46 BIO_set_init(bio, 0);
47 return 1;
48 }
socketFree(BIO * bio)49 int socketFree(BIO* bio) {
50 LOG_ALWAYS_FATAL_IF(bio == nullptr);
51 return 1;
52 }
socketRead(BIO * bio,char * buf,int size)53 int socketRead(BIO* bio, char* buf, int size) {
54 android::base::borrowed_fd fd(static_cast<int>(reinterpret_cast<intptr_t>(BIO_get_data(bio))));
55 int ret = TEMP_FAILURE_RETRY(::recv(fd.get(), buf, size, MSG_NOSIGNAL));
56 BIO_clear_retry_flags(bio);
57 if (errno == EAGAIN || errno == EWOULDBLOCK) {
58 BIO_set_retry_read(bio);
59 }
60 return ret;
61 }
62
socketWrite(BIO * bio,const char * buf,int size)63 int socketWrite(BIO* bio, const char* buf, int size) {
64 android::base::borrowed_fd fd(static_cast<int>(reinterpret_cast<intptr_t>(BIO_get_data(bio))));
65 int ret = TEMP_FAILURE_RETRY(::send(fd.get(), buf, size, MSG_NOSIGNAL));
66 BIO_clear_retry_flags(bio);
67 if (errno == EAGAIN || errno == EWOULDBLOCK) {
68 BIO_set_retry_write(bio);
69 }
70 return ret;
71 }
72
socketCtrl(BIO * bio,int cmd,long num,void *)73 long socketCtrl(BIO* bio, int cmd, long num, void*) { // NOLINT
74 android::base::borrowed_fd fd(static_cast<int>(reinterpret_cast<intptr_t>(BIO_get_data(bio))));
75 if (cmd == BIO_CTRL_FLUSH) return 1;
76 LOG_ALWAYS_FATAL("sockCtrl(fd=%d, %d, %ld)", fd.get(), cmd, num);
77 return 0;
78 }
79
newSocketBio(android::base::borrowed_fd fd)80 bssl::UniquePtr<BIO> newSocketBio(android::base::borrowed_fd fd) {
81 static const BIO_METHOD* gMethods = ([] {
82 auto methods = BIO_meth_new(BIO_get_new_index(), "socket_no_signal");
83 LOG_ALWAYS_FATAL_IF(0 == BIO_meth_set_write(methods, socketWrite), "BIO_meth_set_write");
84 LOG_ALWAYS_FATAL_IF(0 == BIO_meth_set_read(methods, socketRead), "BIO_meth_set_read");
85 LOG_ALWAYS_FATAL_IF(0 == BIO_meth_set_ctrl(methods, socketCtrl), "BIO_meth_set_ctrl");
86 LOG_ALWAYS_FATAL_IF(0 == BIO_meth_set_create(methods, socketNew), "BIO_meth_set_create");
87 LOG_ALWAYS_FATAL_IF(0 == BIO_meth_set_destroy(methods, socketFree), "BIO_meth_set_destroy");
88 return methods;
89 })();
90 bssl::UniquePtr<BIO> ret(BIO_new(gMethods));
91 if (ret == nullptr) return nullptr;
92 BIO_set_data(ret.get(), reinterpret_cast<void*>(fd.get()));
93 BIO_set_init(ret.get(), 1);
94 return ret;
95 }
96
sslDebugLog(const SSL * ssl,int type,int value)97 [[maybe_unused]] void sslDebugLog(const SSL* ssl, int type, int value) {
98 switch (type) {
99 case SSL_CB_HANDSHAKE_START:
100 LOG_TLS_DETAIL("Handshake started.");
101 break;
102 case SSL_CB_HANDSHAKE_DONE:
103 LOG_TLS_DETAIL("Handshake done.");
104 break;
105 case SSL_CB_ACCEPT_LOOP:
106 LOG_TLS_DETAIL("Handshake progress: %s", SSL_state_string_long(ssl));
107 break;
108 default:
109 LOG_TLS_DETAIL("SSL Debug Log: type = %d, value = %d", type, value);
110 break;
111 }
112 }
113
114 // Helper class to ErrorQueue::toString
115 class ErrorQueueString {
116 public:
toString()117 static std::string toString() {
118 ErrorQueueString thiz;
119 ERR_print_errors_cb(staticCallback, &thiz);
120 return thiz.mSs.str();
121 }
122
123 private:
staticCallback(const char * str,size_t len,void * ctx)124 static int staticCallback(const char* str, size_t len, void* ctx) {
125 return reinterpret_cast<ErrorQueueString*>(ctx)->callback(str, len);
126 }
callback(const char * str,size_t len)127 int callback(const char* str, size_t len) {
128 if (len == 0) return 1; // continue
129 // ERR_print_errors_cb place a new line at the end, but it doesn't say so in the API.
130 if (str[len - 1] == '\n') len -= 1;
131 if (!mIsFirst) {
132 mSs << '\n';
133 }
134 mSs << std::string_view(str, len);
135 mIsFirst = false;
136 return 1; // continue
137 }
138 std::stringstream mSs;
139 bool mIsFirst = true;
140 };
141
142 // Handles libssl's error queue.
143 //
144 // Call into any of its member functions to ensure the error queue is properly handled or cleared.
145 // If the error queue is not handled or cleared, the destructor will abort.
146 class ErrorQueue {
147 public:
~ErrorQueue()148 ~ErrorQueue() { LOG_ALWAYS_FATAL_IF(!mHandled); }
149
150 // Clear the error queue.
clear()151 void clear() {
152 ERR_clear_error();
153 mHandled = true;
154 }
155
156 // Stores the error queue in |ssl| into a string, then clears the error queue.
toString()157 std::string toString() {
158 auto ret = ErrorQueueString::toString();
159 // Though ERR_print_errors_cb should have cleared it, it is okay to clear again.
160 clear();
161 return ret;
162 }
163
toStatus(int sslError,const char * fnString)164 status_t toStatus(int sslError, const char* fnString) {
165 switch (sslError) {
166 case SSL_ERROR_SYSCALL: {
167 auto queue = toString();
168 LOG_TLS_DETAIL("%s(): %s. Treating as DEAD_OBJECT. Error queue: %s", fnString,
169 SSL_error_description(sslError), queue.c_str());
170 return DEAD_OBJECT;
171 }
172 default: {
173 auto queue = toString();
174 ALOGE("%s(): %s. Error queue: %s", fnString, SSL_error_description(sslError),
175 queue.c_str());
176 return UNKNOWN_ERROR;
177 }
178 }
179 }
180
181 // |sslError| should be from Ssl::getError().
182 // If |sslError| is WANT_READ / WANT_WRITE, poll for POLLIN / POLLOUT respectively. Otherwise
183 // return error. Also return error if |fdTrigger| is triggered before or during poll().
pollForSslError(android::base::borrowed_fd fd,int sslError,FdTrigger * fdTrigger,const char * fnString,int additionalEvent,const std::function<status_t ()> & altPoll)184 status_t pollForSslError(android::base::borrowed_fd fd, int sslError, FdTrigger* fdTrigger,
185 const char* fnString, int additionalEvent,
186 const std::function<status_t()>& altPoll) {
187 switch (sslError) {
188 case SSL_ERROR_WANT_READ:
189 return handlePoll(POLLIN | additionalEvent, fd, fdTrigger, fnString, altPoll);
190 case SSL_ERROR_WANT_WRITE:
191 return handlePoll(POLLOUT | additionalEvent, fd, fdTrigger, fnString, altPoll);
192 default:
193 return toStatus(sslError, fnString);
194 }
195 }
196
197 private:
198 bool mHandled = false;
199
handlePoll(int event,android::base::borrowed_fd fd,FdTrigger * fdTrigger,const char * fnString,const std::function<status_t ()> & altPoll)200 status_t handlePoll(int event, android::base::borrowed_fd fd, FdTrigger* fdTrigger,
201 const char* fnString, const std::function<status_t()>& altPoll) {
202 status_t ret;
203 if (altPoll) {
204 ret = altPoll();
205 if (fdTrigger->isTriggered()) ret = DEAD_OBJECT;
206 } else {
207 ret = fdTrigger->triggerablePoll(fd, event);
208 }
209
210 if (ret != OK && ret != DEAD_OBJECT) {
211 ALOGE("poll error while after %s(): %s", fnString, statusToString(ret).c_str());
212 }
213 clear();
214 return ret;
215 }
216 };
217
218 // Helper to call a function, with its return value instantiable.
219 template <typename Fn, typename... Args>
220 struct FuncCaller {
221 struct Monostate {};
222 static constexpr bool sIsVoid = std::is_void_v<std::invoke_result_t<Fn, Args...>>;
223 using Result = std::conditional_t<sIsVoid, Monostate, std::invoke_result_t<Fn, Args...>>;
callandroid::__anonbfc8ebe30111::FuncCaller224 static inline Result call(Fn fn, Args&&... args) {
225 if constexpr (std::is_void_v<std::invoke_result_t<Fn, Args...>>) {
226 std::invoke(fn, std::forward<Args>(args)...);
227 return {};
228 } else {
229 return std::invoke(fn, std::forward<Args>(args)...);
230 }
231 }
232 };
233
234 // Helper to Ssl::call(). Returns the result to the SSL_* function as well as an ErrorQueue object.
235 template <typename Fn, typename... Args>
236 struct SslCaller {
237 using RawCaller = FuncCaller<Fn, SSL*, Args...>;
238 struct ResultAndErrorQueue {
239 typename RawCaller::Result result;
240 ErrorQueue errorQueue;
241 };
callandroid::__anonbfc8ebe30111::SslCaller242 static inline ResultAndErrorQueue call(Fn fn, SSL* ssl, Args&&... args) {
243 LOG_ALWAYS_FATAL_IF(ssl == nullptr);
244 auto result = RawCaller::call(fn, std::forward<SSL*>(ssl), std::forward<Args>(args)...);
245 return ResultAndErrorQueue{std::move(result), ErrorQueue()};
246 }
247 };
248
249 // A wrapper over bssl::UniquePtr<SSL>. This class ensures that all SSL_* functions are called
250 // through call(), which returns an ErrorQueue object that requires the caller to either handle
251 // or clear it.
252 // Example:
253 // auto [ret, errorQueue] = ssl.call(SSL_read, buf, size);
254 // if (ret >= 0) errorQueue.clear();
255 // else ALOGE("%s", errorQueue.toString().c_str());
256 class Ssl {
257 public:
Ssl(bssl::UniquePtr<SSL> ssl)258 explicit Ssl(bssl::UniquePtr<SSL> ssl) : mSsl(std::move(ssl)) {
259 LOG_ALWAYS_FATAL_IF(mSsl == nullptr);
260 }
261
262 template <typename Fn, typename... Args>
call(Fn fn,Args &&...args)263 inline typename SslCaller<Fn, Args...>::ResultAndErrorQueue call(Fn fn, Args&&... args) {
264 return SslCaller<Fn, Args...>::call(fn, mSsl.get(), std::forward<Args>(args)...);
265 }
266
getError(int ret)267 int getError(int ret) {
268 LOG_ALWAYS_FATAL_IF(mSsl == nullptr);
269 return SSL_get_error(mSsl.get(), ret);
270 }
271
272 private:
273 bssl::UniquePtr<SSL> mSsl;
274 };
275
276 class RpcTransportTls : public RpcTransport {
277 public:
RpcTransportTls(android::base::unique_fd socket,Ssl ssl)278 RpcTransportTls(android::base::unique_fd socket, Ssl ssl)
279 : mSocket(std::move(socket)), mSsl(std::move(ssl)) {}
280 status_t peek(void* buf, size_t size, size_t* out_size) override;
281 status_t interruptableWriteFully(FdTrigger* fdTrigger, iovec* iovs, int niovs,
282 const std::function<status_t()>& altPoll) override;
283 status_t interruptableReadFully(FdTrigger* fdTrigger, iovec* iovs, int niovs,
284 const std::function<status_t()>& altPoll) override;
285
286 private:
287 android::base::unique_fd mSocket;
288 Ssl mSsl;
289 };
290
291 // Error code is errno.
peek(void * buf,size_t size,size_t * out_size)292 status_t RpcTransportTls::peek(void* buf, size_t size, size_t* out_size) {
293 size_t todo = std::min<size_t>(size, std::numeric_limits<int>::max());
294 auto [ret, errorQueue] = mSsl.call(SSL_peek, buf, static_cast<int>(todo));
295 if (ret < 0) {
296 int err = mSsl.getError(ret);
297 if (err == SSL_ERROR_WANT_WRITE || err == SSL_ERROR_WANT_READ) {
298 // Seen EAGAIN / EWOULDBLOCK on recv(2) / send(2).
299 // Like RpcTransportRaw::peek(), don't handle it here.
300 errorQueue.clear();
301 return WOULD_BLOCK;
302 }
303 return errorQueue.toStatus(err, "SSL_peek");
304 }
305 errorQueue.clear();
306 LOG_TLS_DETAIL("TLS: Peeked %d bytes!", ret);
307 *out_size = static_cast<size_t>(ret);
308 return OK;
309 }
310
interruptableWriteFully(FdTrigger * fdTrigger,iovec * iovs,int niovs,const std::function<status_t ()> & altPoll)311 status_t RpcTransportTls::interruptableWriteFully(FdTrigger* fdTrigger, iovec* iovs, int niovs,
312 const std::function<status_t()>& altPoll) {
313 MAYBE_WAIT_IN_FLAKE_MODE;
314
315 if (niovs < 0) return BAD_VALUE;
316
317 // Before doing any I/O, check trigger once. This ensures the trigger is checked at least
318 // once. The trigger is also checked via triggerablePoll() after every SSL_write().
319 if (fdTrigger->isTriggered()) return DEAD_OBJECT;
320
321 size_t size = 0;
322 for (int i = 0; i < niovs; i++) {
323 const iovec& iov = iovs[i];
324 if (iov.iov_len == 0) {
325 continue;
326 }
327 size += iov.iov_len;
328
329 auto buffer = reinterpret_cast<const uint8_t*>(iov.iov_base);
330 const uint8_t* end = buffer + iov.iov_len;
331 while (buffer < end) {
332 size_t todo = std::min<size_t>(end - buffer, std::numeric_limits<int>::max());
333 auto [writeSize, errorQueue] = mSsl.call(SSL_write, buffer, todo);
334 if (writeSize > 0) {
335 buffer += writeSize;
336 errorQueue.clear();
337 continue;
338 }
339 // SSL_write() should never return 0 unless BIO_write were to return 0.
340 int sslError = mSsl.getError(writeSize);
341 // TODO(b/195788248): BIO should contain the FdTrigger, and send(2) / recv(2) should be
342 // triggerablePoll()-ed. Then additionalEvent is no longer necessary.
343 status_t pollStatus = errorQueue.pollForSslError(mSocket.get(), sslError, fdTrigger,
344 "SSL_write", POLLIN, altPoll);
345 if (pollStatus != OK) return pollStatus;
346 // Do not advance buffer. Try SSL_write() again.
347 }
348 }
349 LOG_TLS_DETAIL("TLS: Sent %zu bytes!", size);
350 return OK;
351 }
352
interruptableReadFully(FdTrigger * fdTrigger,iovec * iovs,int niovs,const std::function<status_t ()> & altPoll)353 status_t RpcTransportTls::interruptableReadFully(FdTrigger* fdTrigger, iovec* iovs, int niovs,
354 const std::function<status_t()>& altPoll) {
355 MAYBE_WAIT_IN_FLAKE_MODE;
356
357 if (niovs < 0) return BAD_VALUE;
358
359 // Before doing any I/O, check trigger once. This ensures the trigger is checked at least
360 // once. The trigger is also checked via triggerablePoll() after every SSL_write().
361 if (fdTrigger->isTriggered()) return DEAD_OBJECT;
362
363 size_t size = 0;
364 for (int i = 0; i < niovs; i++) {
365 const iovec& iov = iovs[i];
366 if (iov.iov_len == 0) {
367 continue;
368 }
369 size += iov.iov_len;
370
371 auto buffer = reinterpret_cast<uint8_t*>(iov.iov_base);
372 const uint8_t* end = buffer + iov.iov_len;
373 while (buffer < end) {
374 size_t todo = std::min<size_t>(end - buffer, std::numeric_limits<int>::max());
375 auto [readSize, errorQueue] = mSsl.call(SSL_read, buffer, todo);
376 if (readSize > 0) {
377 buffer += readSize;
378 errorQueue.clear();
379 continue;
380 }
381 if (readSize == 0) {
382 // SSL_read() only returns 0 on EOF.
383 errorQueue.clear();
384 return DEAD_OBJECT;
385 }
386 int sslError = mSsl.getError(readSize);
387 status_t pollStatus = errorQueue.pollForSslError(mSocket.get(), sslError, fdTrigger,
388 "SSL_read", 0, altPoll);
389 if (pollStatus != OK) return pollStatus;
390 // Do not advance buffer. Try SSL_read() again.
391 }
392 }
393 LOG_TLS_DETAIL("TLS: Received %zu bytes!", size);
394 return OK;
395 }
396
397 // For |ssl|, set internal FD to |fd|, and do handshake. Handshake is triggerable by |fdTrigger|.
setFdAndDoHandshake(Ssl * ssl,android::base::borrowed_fd fd,FdTrigger * fdTrigger)398 bool setFdAndDoHandshake(Ssl* ssl, android::base::borrowed_fd fd, FdTrigger* fdTrigger) {
399 bssl::UniquePtr<BIO> bio = newSocketBio(fd);
400 TEST_AND_RETURN(false, bio != nullptr);
401 auto [_, errorQueue] = ssl->call(SSL_set_bio, bio.get(), bio.get());
402 (void)bio.release(); // SSL_set_bio takes ownership.
403 errorQueue.clear();
404
405 MAYBE_WAIT_IN_FLAKE_MODE;
406
407 while (true) {
408 auto [ret, errorQueue] = ssl->call(SSL_do_handshake);
409 if (ret > 0) {
410 errorQueue.clear();
411 return true;
412 }
413 if (ret == 0) {
414 // SSL_do_handshake() only returns 0 on EOF.
415 ALOGE("SSL_do_handshake(): EOF: %s", errorQueue.toString().c_str());
416 return false;
417 }
418 int sslError = ssl->getError(ret);
419 status_t pollStatus =
420 errorQueue.pollForSslError(fd, sslError, fdTrigger, "SSL_do_handshake", 0, {});
421 if (pollStatus != OK) return false;
422 }
423 }
424
425 class RpcTransportCtxTls : public RpcTransportCtx {
426 public:
427 template <typename Impl,
428 typename = std::enable_if_t<std::is_base_of_v<RpcTransportCtxTls, Impl>>>
429 static std::unique_ptr<RpcTransportCtxTls> create(
430 std::shared_ptr<RpcCertificateVerifier> verifier, RpcAuth* auth);
431 std::unique_ptr<RpcTransport> newTransport(android::base::unique_fd fd,
432 FdTrigger* fdTrigger) const override;
433 std::vector<uint8_t> getCertificate(RpcCertificateFormat) const override;
434
435 protected:
436 static ssl_verify_result_t sslCustomVerify(SSL* ssl, uint8_t* outAlert);
437 virtual void preHandshake(Ssl* ssl) const = 0;
438 bssl::UniquePtr<SSL_CTX> mCtx;
439 std::shared_ptr<RpcCertificateVerifier> mCertVerifier;
440 };
441
getCertificate(RpcCertificateFormat format) const442 std::vector<uint8_t> RpcTransportCtxTls::getCertificate(RpcCertificateFormat format) const {
443 X509* x509 = SSL_CTX_get0_certificate(mCtx.get()); // does not own
444 return serializeCertificate(x509, format);
445 }
446
447 // Verify by comparing the leaf of peer certificate with every certificate in
448 // mTrustedPeerCertificates. Does not support certificate chains.
sslCustomVerify(SSL * ssl,uint8_t * outAlert)449 ssl_verify_result_t RpcTransportCtxTls::sslCustomVerify(SSL* ssl, uint8_t* outAlert) {
450 LOG_ALWAYS_FATAL_IF(outAlert == nullptr);
451 const char* logPrefix = SSL_is_server(ssl) ? "Server" : "Client";
452
453 auto ctx = SSL_get_SSL_CTX(ssl); // Does not set error queue
454 LOG_ALWAYS_FATAL_IF(ctx == nullptr);
455 // void* -> RpcTransportCtxTls*
456 auto rpcTransportCtxTls = reinterpret_cast<RpcTransportCtxTls*>(SSL_CTX_get_app_data(ctx));
457 LOG_ALWAYS_FATAL_IF(rpcTransportCtxTls == nullptr);
458
459 status_t verifyStatus = rpcTransportCtxTls->mCertVerifier->verify(ssl, outAlert);
460 if (verifyStatus == OK) {
461 return ssl_verify_ok;
462 }
463 LOG_TLS_DETAIL("%s: Failed to verify client: status = %s, alert = %s", logPrefix,
464 statusToString(verifyStatus).c_str(), SSL_alert_desc_string_long(*outAlert));
465 return ssl_verify_invalid;
466 }
467
468 // Common implementation for creating server and client contexts. The child class, |Impl|, is
469 // provided as a template argument so that this function can initialize an |Impl| object.
470 template <typename Impl, typename>
create(std::shared_ptr<RpcCertificateVerifier> verifier,RpcAuth * auth)471 std::unique_ptr<RpcTransportCtxTls> RpcTransportCtxTls::create(
472 std::shared_ptr<RpcCertificateVerifier> verifier, RpcAuth* auth) {
473 bssl::UniquePtr<SSL_CTX> ctx(SSL_CTX_new(TLS_method()));
474 TEST_AND_RETURN(nullptr, ctx != nullptr);
475
476 if (status_t authStatus = auth->configure(ctx.get()); authStatus != OK) {
477 ALOGE("%s: Failed to configure auth info: %s", __PRETTY_FUNCTION__,
478 statusToString(authStatus).c_str());
479 return nullptr;
480 };
481
482 // Enable two-way authentication by setting SSL_VERIFY_FAIL_IF_NO_PEER_CERT on server.
483 // Client ignores SSL_VERIFY_FAIL_IF_NO_PEER_CERT flag.
484 SSL_CTX_set_custom_verify(ctx.get(), SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT,
485 sslCustomVerify);
486
487 // Require at least TLS 1.3
488 TEST_AND_RETURN(nullptr, SSL_CTX_set_min_proto_version(ctx.get(), TLS1_3_VERSION));
489
490 if constexpr (SHOULD_LOG_TLS_DETAIL) { // NOLINT
491 SSL_CTX_set_info_callback(ctx.get(), sslDebugLog);
492 }
493
494 auto ret = std::make_unique<Impl>();
495 // RpcTransportCtxTls* -> void*
496 TEST_AND_RETURN(nullptr, SSL_CTX_set_app_data(ctx.get(), reinterpret_cast<void*>(ret.get())));
497 ret->mCtx = std::move(ctx);
498 ret->mCertVerifier = std::move(verifier);
499 return ret;
500 }
501
newTransport(android::base::unique_fd fd,FdTrigger * fdTrigger) const502 std::unique_ptr<RpcTransport> RpcTransportCtxTls::newTransport(android::base::unique_fd fd,
503 FdTrigger* fdTrigger) const {
504 bssl::UniquePtr<SSL> ssl(SSL_new(mCtx.get()));
505 TEST_AND_RETURN(nullptr, ssl != nullptr);
506 Ssl wrapped(std::move(ssl));
507
508 preHandshake(&wrapped);
509 TEST_AND_RETURN(nullptr, setFdAndDoHandshake(&wrapped, fd, fdTrigger));
510 return std::make_unique<RpcTransportTls>(std::move(fd), std::move(wrapped));
511 }
512
513 class RpcTransportCtxTlsServer : public RpcTransportCtxTls {
514 protected:
preHandshake(Ssl * ssl) const515 void preHandshake(Ssl* ssl) const override {
516 ssl->call(SSL_set_accept_state).errorQueue.clear();
517 }
518 };
519
520 class RpcTransportCtxTlsClient : public RpcTransportCtxTls {
521 protected:
preHandshake(Ssl * ssl) const522 void preHandshake(Ssl* ssl) const override {
523 ssl->call(SSL_set_connect_state).errorQueue.clear();
524 }
525 };
526
527 } // namespace
528
newServerCtx() const529 std::unique_ptr<RpcTransportCtx> RpcTransportCtxFactoryTls::newServerCtx() const {
530 return android::RpcTransportCtxTls::create<RpcTransportCtxTlsServer>(mCertVerifier,
531 mAuth.get());
532 }
533
newClientCtx() const534 std::unique_ptr<RpcTransportCtx> RpcTransportCtxFactoryTls::newClientCtx() const {
535 return android::RpcTransportCtxTls::create<RpcTransportCtxTlsClient>(mCertVerifier,
536 mAuth.get());
537 }
538
toCString() const539 const char* RpcTransportCtxFactoryTls::toCString() const {
540 return "tls";
541 }
542
make(std::shared_ptr<RpcCertificateVerifier> verifier,std::unique_ptr<RpcAuth> auth)543 std::unique_ptr<RpcTransportCtxFactory> RpcTransportCtxFactoryTls::make(
544 std::shared_ptr<RpcCertificateVerifier> verifier, std::unique_ptr<RpcAuth> auth) {
545 if (verifier == nullptr) {
546 ALOGE("%s: Must provide a certificate verifier", __PRETTY_FUNCTION__);
547 return nullptr;
548 }
549 if (auth == nullptr) {
550 ALOGE("%s: Must provide an auth provider", __PRETTY_FUNCTION__);
551 return nullptr;
552 }
553 return std::unique_ptr<RpcTransportCtxFactoryTls>(
554 new RpcTransportCtxFactoryTls(std::move(verifier), std::move(auth)));
555 }
556
557 } // namespace android
558