d0/d53/qsslsocket__p_8h_source.html

// Copyright (C) 2021 The Qt Company Ltd.

// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only


#ifndef QSSLSOCKET_P_H

#define QSSLSOCKET_P_H


#include "qsslsocket.h"


//

//  W A R N I N G

//  -------------

//

// This file is not part of the Qt API. It exists purely as an

// implementation detail. This header file may change from version to

// version without notice, or even be removed.

//

// We mean it.

//


#include <QtNetwork/private/qtnetworkglobal_p.h>


#include <private/qtcpsocket_p.h>


#include "qocspresponse.h"

#include "qsslconfiguration_p.h"

#include "qsslkey.h"

#include "qtlsbackend_p.h"


#include <QtCore/qlist.h>

#include <QtCore/qmutex.h>

#include <QtCore/qstringlist.h>


#include <memory>


QT_BEGIN_NAMESPACE


class QSslContext;

class QTlsBackend;


class Q_NETWORK_EXPORT QSslSocketPrivate : public QTcpSocketPrivate

{

    Q_DECLARE_PUBLIC(QSslSocket)

public:

    QSslSocketPrivate();

    virtual ~QSslSocketPrivate();


    void init();

    bool verifyProtocolSupported(const char *where);

    bool initialized;


    QSslSocket::SslMode mode;

    bool autoStartHandshake;

    bool connectionEncrypted;

    bool ignoreAllSslErrors;

    QList<QSslError> ignoreErrorsList;

    bool* readyReadEmittedPointer;


    QSslConfigurationPrivate configuration;


    // if set, this hostname is used for certificate validation instead of the hostname

    // that was used for connecting to.

    QString verificationPeerName;


    bool allowRootCertOnDemandLoading;


    static bool s_loadRootCertsOnDemand;


    static bool supportsSsl();

    static void ensureInitialized();


    static QList<QSslCipher> defaultCiphers();

    static QList<QSslCipher> defaultDtlsCiphers();

    static QList<QSslCipher> supportedCiphers();

    static void setDefaultCiphers(const QList<QSslCipher> &ciphers);

    static void setDefaultDtlsCiphers(const QList<QSslCipher> &ciphers);

    static void setDefaultSupportedCiphers(const QList<QSslCipher> &ciphers);


    static QList<QSslEllipticCurve> supportedEllipticCurves();

    static void setDefaultSupportedEllipticCurves(const QList<QSslEllipticCurve> &curves);

    static void resetDefaultEllipticCurves();


    static QList<QSslCertificate> defaultCaCertificates();

    static QList<QSslCertificate> systemCaCertificates();

    static void setDefaultCaCertificates(const QList<QSslCertificate> &certs);

    static void addDefaultCaCertificate(const QSslCertificate &cert);

    static void addDefaultCaCertificates(const QList<QSslCertificate> &certs);

    static bool isMatchingHostname(const QSslCertificate &cert, const QString &peerName);

    static bool isMatchingHostname(const QString &cn, const QString &hostname);


    // The socket itself, including private slots.

    QTcpSocket *plainSocket = nullptr;

    void createPlainSocket(QIODevice::OpenMode openMode);

    static void pauseSocketNotifiers(QSslSocket*);

    static void resumeSocketNotifiers(QSslSocket*);

    // ### The 2 methods below should be made member methods once the QSslContext class is made public

    static void checkSettingSslContext(QSslSocket*, std::shared_ptr<QSslContext>);

    static std::shared_ptr<QSslContext> sslContext(QSslSocket *socket);

    bool isPaused() const;

    void setPaused(bool p);

    bool bind(const QHostAddress &address, quint16, QAbstractSocket::BindMode) override;

    void _q_connectedSlot();

    void _q_hostFoundSlot();

    void _q_disconnectedSlot();

    void _q_stateChangedSlot(QAbstractSocket::SocketState);

    void _q_errorSlot(QAbstractSocket::SocketError);

    void _q_readyReadSlot();

    void _q_channelReadyReadSlot(int);

    void _q_bytesWrittenSlot(qint64);

    void _q_channelBytesWrittenSlot(int, qint64);

    void _q_readChannelFinishedSlot();

    void _q_flushWriteBuffer();

    void _q_flushReadBuffer();

    void _q_resumeImplementation();


    static QList<QByteArray> unixRootCertDirectories(); // used also by QSslContext


    qint64 peek(char *data, qint64 maxSize) override;

    QByteArray peek(qint64 maxSize) override;

    bool flush() override;


    void startClientEncryption();

    void startServerEncryption();

    void transmit();

    void disconnectFromHost();

    void disconnected();

    QSslCipher sessionCipher() const;

    QSsl::SslProtocol sessionProtocol() const;

    void continueHandshake();


    static bool rootCertOnDemandLoadingSupported();

    static void setRootCertOnDemandLoadingSupported(bool supported);


    static QTlsBackend *tlsBackendInUse();


    // Needed by TlsCryptograph:

    QSslSocket::SslMode tlsMode() const;

    bool isRootsOnDemandAllowed() const;

    QString verificationName() const;

    QString tlsHostName() const;

    QTcpSocket *plainTcpSocket() const;

    bool verifyErrorsHaveBeenIgnored();

    bool isAutoStartingHandshake() const;

    bool isPendingClose() const;

    void setPendingClose(bool pc);

    qint64 maxReadBufferSize() const;

    void setMaxReadBufferSize(qint64 maxSize);

    void setEncrypted(bool enc);

    QRingBufferRef &tlsWriteBuffer();

    QRingBufferRef &tlsBuffer();

    bool &tlsEmittedBytesWritten();

    bool *readyReadPointer();


protected:


    bool hasUndecryptedData() const;

    bool paused;

    bool flushTriggered;


    static inline QMutex backendMutex;

    static inline QString activeBackendName;

    static inline QTlsBackend *tlsBackend = nullptr;


    std::unique_ptr<QTlsPrivate::TlsCryptograph> backend;

};


QT_END_NAMESPACE


#endif

QAbstractSocket::SocketState
SocketState
This enum describes the different states in which a socket can be.
Definition qabstractsocket.h:89

QAbstractSocket::SocketError
SocketError
This enum describes the socket errors that can occur.
Definition qabstractsocket.h:61

QByteArray
\inmodule QtCore
Definition qbytearray.h:57

QHostAddress
The QHostAddress class provides an IP address.
Definition qhostaddress.h:38

QIODevicePrivate::QRingBufferRef
Definition qiodevice_p.h:58

QMutex
\inmodule QtCore
Definition qmutex.h:281

QSslCertificate
The QSslCertificate class provides a convenient API for an X509 certificate.
Definition qsslcertificate.h:35

QSslCipher
The QSslCipher class represents an SSL cryptographic cipher.
Definition qsslcipher.h:22

QSslConfigurationPrivate
Definition qsslconfiguration_p.h:47

QSslContext
Definition qsslcontext_openssl_p.h:31

QSslSocketPrivate
Definition qsslsocket_p.h:42

QSslSocketPrivate::readyReadEmittedPointer
bool * readyReadEmittedPointer
Definition qsslsocket_p.h:57

QSslSocketPrivate::verificationPeerName
QString verificationPeerName
Definition qsslsocket_p.h:63

QSslSocketPrivate::mode
QSslSocket::SslMode mode
Definition qsslsocket_p.h:52

QSslSocketPrivate::allowRootCertOnDemandLoading
bool allowRootCertOnDemandLoading
Definition qsslsocket_p.h:65

QSslSocketPrivate::backend
std::unique_ptr< QTlsPrivate::TlsCryptograph > backend
Definition qsslsocket_p.h:164

QSslSocketPrivate::activeBackendName
static QString activeBackendName
Definition qsslsocket_p.h:161

QSslSocketPrivate::paused
bool paused
Definition qsslsocket_p.h:157

QSslSocketPrivate::backendMutex
static QMutex backendMutex
Definition qsslsocket_p.h:160

QSslSocketPrivate::ignoreAllSslErrors
bool ignoreAllSslErrors
Definition qsslsocket_p.h:55

QSslSocketPrivate::initialized
bool initialized
Definition qsslsocket_p.h:50

QSslSocketPrivate::ignoreErrorsList
QList< QSslError > ignoreErrorsList
Definition qsslsocket_p.h:56

QSslSocketPrivate::connectionEncrypted
bool connectionEncrypted
Definition qsslsocket_p.h:54

QSslSocketPrivate::s_loadRootCertsOnDemand
static bool s_loadRootCertsOnDemand
Definition qsslsocket_p.h:67

QSslSocketPrivate::flushTriggered
bool flushTriggered
Definition qsslsocket_p.h:158

QSslSocketPrivate::autoStartHandshake
bool autoStartHandshake
Definition qsslsocket_p.h:53

QSslSocketPrivate::configuration
QSslConfigurationPrivate configuration
Definition qsslsocket_p.h:59

QSslSocket
The QSslSocket class provides an SSL encrypted socket for both clients and servers.
Definition qsslsocket.h:29

QSslSocket::SslMode
SslMode
Describes the connection modes available for QSslSocket.
Definition qsslsocket.h:33

QString
\macro QT_RESTRICTED_CAST_FROM_ASCII
Definition qstring.h:129

QTcpSocketPrivate
Definition qtcpsocket_p.h:25

QTcpSocket
The QTcpSocket class provides a TCP socket.
Definition qtcpsocket.h:18

QTlsBackend
QTlsBackend is a factory class, providing implementations for the QSsl classes.
Definition qtlsbackend_p.h:266

QSsl::SslProtocol
SslProtocol
Describes the protocol of the cipher.
Definition qssl.h:50

QT_BEGIN_NAMESPACE
Combined button and popup list for selecting options.
Definition qstandardpaths_haiku.cpp:21

QT_END_NAMESPACE
Definition qsharedpointer.cpp:1590

ensureInitialized
static void ensureInitialized()
Definition qnetworkaccessmanager.cpp:155

qocspresponse.h

data
GLint GLsizei GLsizei GLenum GLenum GLsizei void * data
Definition qopengles2ext.h:206

address
GLuint GLuint64EXT address
Definition qopenglext.h:11428

p
GLfloat GLfloat p
[1]
Definition qopenglext.h:12698

qsslconfiguration_p.h

qsslkey.h

qsslsocket.h

init
static QT_BEGIN_NAMESPACE void init(QTextBoundaryFinder::BoundaryType type, QStringView str, QCharAttributes *attributes)
Definition qtextboundaryfinder.cpp:10

qtlsbackend_p.h

quint16
unsigned short quint16
Definition qtypes.h:48

qint64
long long qint64
Definition qtypes.h:60

socket
QTcpSocket * socket
[1]
Definition src_corelib_kernel_qobject.cpp:392

cert
QList< QSslCertificate > cert
[0]
Definition src_network_access_qnetworkreply.cpp:7

disconnectFromHost
socket disconnectFromHost()
[0]

bind
socketLayer bind(QHostAddress::Any, 4000)

certs
const auto certs
[1]
Definition src_network_ssl_qsslcertificate.cpp:5