api_docs_2024-6/TlsSocket_8hpp_source.html

//

//  Copyright PHOENIX CONTACT Electronics GmbH

//

#pragma once

#include "Arp/System/Core/Arp.h"

#include "Arp/System/Commons/Net/IpAddress.hpp"

#include "Arp/System/Commons/Net/Socket.hpp"

#include "Arp/System/Commons/Logging.h"

#include "Arp/System/Commons/Exceptions/Exceptions.h"

#include "Arp/System/Commons/Security/IdentityStore.hpp"

#include "Arp/System/Core/PimplPtr.hxx"

#include "Arp/System/Commons/Net/TlsOptions.hpp"


using namespace Arp::System::Commons::Security;


// forwards

typedef struct ssl_st       SSL;

typedef struct ssl_ctx_st   SSL_CTX;


namespace Arp { namespace System { namespace Commons { namespace Net

{


class TlsContext;

using TlsContextPtr = std::shared_ptr<TlsContext>;


class TlsSocket : private Loggable<TlsSocket>

{


private:

    friend class TlsContext;


public: // typedefs/usings


    typedef std::shared_ptr<TlsSocket> Ptr;


    using ISocketService = Arp::System::Ve::ISocketService;


public: // construction/destruction


    TlsSocket(SocketType type, SocketDomain domain, SocketBlockingMode blockingMode);


    TlsSocket(SocketType type, SocketDomain domain, SocketBlockingMode blockingMode, TlsOptions options);


    TlsSocket(const TlsSocket& arg) = delete;


    TlsSocket& operator=(const TlsSocket& arg) = delete;


    ~TlsSocket(void);


private: // construction

    TlsSocket(Socket::Ptr pSocket, TlsContextPtr pContext, bool isInitialized);


public: // operators


public: // static operations


public: // setter/getter operations


    SocketType      GetSocketType(void);


    SocketDomain    GetSocketDomain(void);


    bool            IsBlocking(void);


    bool            IsConnected(void);


    bool            IsTlsConnected(void);


    IpAddress       GetRemoteIpAddress(void);


    int             GetRemotePort(void);


public: // operations


    Ptr             Accept(IpAddress& ip4address, int& port, SocketError& error);


    SocketError     Bind(const IpAddress& ip4Address, int port);


    SocketError     Bind2(const IpAddress& ip4Address, int& port);


    SocketError     Listen(size_t backlog);


    SocketError     Connect(const IpAddress& ip4Address, int port);


    SocketError     Shutdown(void);


    SocketError     Shutdown(ShutdownMode mode);


    SocketError     Close(void);


    int             Send(const void* pBuffer, size_t length, SocketError& error);


    int             Receive(void* pBuffer, size_t length, SocketError& error);


    bool            Select(SelectMode mode, Microseconds timeout, SocketError& error);


    int             Poll(PollMode mode, Milliseconds timeout, SocketError& error);


    SocketError     SetSocketOption(SocketOptionName optionName, const void* optionValue, size_t optionLength);


    SocketError     GetSocketOption(SocketOptionName optionName, void* optionValue, size_t *optionLength);


    SocketError     SetOptionReuseAddress(bool enabled);


    SocketError     GetOptionReuseAddress(bool& enabled);


    SocketError     SetOptionKeepAlive(bool enabled);


    SocketError     GetOptionKeepAlive(bool& enabled);


    SocketError     SetOptionBroadcast(bool enabled);


    SocketError     GetOptionBroadcast(bool& enabled);


    SocketError     SetOptionNoDelay(bool enabled);


    SocketError     GetOptionNoDelay(bool& enabled);


    SocketError     SetOptionLinger(bool enable, size_t timeout);


    SocketError     GetOptionLinger(bool& enable, size_t& timeout);


    SocketError     SetOptionUserTimeout(size_t timeout_ms);


    SocketError     GetOptionUserTimeout(size_t& timeout_ms);


    SocketError     SetOptionKeepAliveIdleTime(int seconds);


    SocketError     GetOptionKeepAliveIdleTime(int& seconds);


    SocketError     SetOptionKeepAliveProbeInterval(int seconds);


    SocketError     GetOptionKeepAliveProbeInterval(int& seconds);


    SocketError     SetOptionKeepAliveProbeCount(int probeCount);


    SocketError     GetOptionKeepAliveProbeCount(int& probeCount);


    SocketError     SetOptionBlocking(bool enable);


    SocketError InitClient(const String& trustStoreName, const String& identityStoreName, const String& hostName);


    SocketError InitServer(const String& identityStoreName, const String& trustStoreName = "");


    void SetCipherList(String cipherList);


    SocketError RenegotiateSession();


    SocketError UpdateSessionKeys(bool requestUpdate = true);


    SocketError GetPeerCertificate(Certificate& certificate);


protected: // operations


private: // static methods


private: // methods

    Ptr         TcpAccept(IpAddress& ip4address, int& port, SocketError& error);

    SocketError TlsAccept(void);

    SocketError TcpConnect(const IpAddress& ipAddress, int port);

    SocketError TlsConnect(void);

    int         PollRead(Milliseconds timeout, SocketError& error);

    int         PollWrite(Milliseconds timeout, SocketError& error);

    int         PollConnect(Milliseconds timeout, SocketError& error);

    int         PollAccept(Milliseconds timeout, SocketError& error);

    SocketError HandleSslResult(int result, int* sslErrorOut = nullptr);

    int         GetFileDescriptor(void);

    void        ClearOpenSslErrors(void);


    SocketError UpdateSessionKeysTls13(bool requestUpdate = true);

    SocketError UpdateSessionKeysTls12();

    bool        IsKeyUpdateScheduled() const;

    SocketError CreateSslConnection(void);


private: // fields

    Socket::Ptr pSocket = nullptr;

    SSL* sslConnection = nullptr;

    TlsContextPtr pContext;


    Ptr currentAcceptSocket;


    bool tlsIsConnected;    //true if TLS Handshake was completed

    bool hasSslError;

    bool socketIsConnected; //true if tcp socket is connected / accepted (set before SSL_connect / SSL_accept)

    bool tlsInitDone;

    bool isInitialized; // true if InitClient resp. InitServer has already been called

    bool tlsConnectIsPending;

    bool pendingTlsConnectNeedsRead;


    String hostNameToVerify;

};


// inline methods of class Socket


inline SocketType TlsSocket::GetSocketType(void)

{

    return this->pSocket->GetSocketType();

}


inline SocketDomain TlsSocket::GetSocketDomain(void)

{

    return this->pSocket->GetSocketDomain();

}


inline bool TlsSocket::IsBlocking(void)

{

    return this->pSocket->IsBlocking();

}


inline IpAddress TlsSocket::GetRemoteIpAddress(void)

{

    return this->pSocket->GetRemoteIpAddress();

}


inline int TlsSocket::GetRemotePort(void)

{

    return this->pSocket->GetRemotePort();

}


inline bool TlsSocket::IsConnected(void)

{

    return (!this->hasSslError) && (this->tlsIsConnected || this->socketIsConnected);

}


inline bool TlsSocket::IsTlsConnected(void)

{

    return (!this->hasSslError) && (this->tlsIsConnected);

}


inline SocketError TlsSocket::Bind(const IpAddress& ip4Address, int port)

{

    return pSocket->Bind(ip4Address, port);

}


inline SocketError TlsSocket::Bind2(const IpAddress& ip4Address, int& port)

{

    return pSocket->Bind2(ip4Address, port);

}


inline SocketError TlsSocket::Listen(size_t backlog)

{

    return pSocket->Listen(backlog);

}


inline SocketError TlsSocket::SetSocketOption(SocketOptionName optionName, const void * optionValue, size_t optionLength)

{

    return this->pSocket->SetSocketOption(optionName, optionValue, optionLength);

}


inline SocketError TlsSocket::GetSocketOption(SocketOptionName optionName, void * optionValue, size_t * optionLength)

{

    return this->pSocket->GetSocketOption(optionName, optionValue, optionLength);

}


inline SocketError TlsSocket::SetOptionReuseAddress(bool enabled)

{

    return this->pSocket->SetOptionReuseAddress(enabled);

}


inline SocketError TlsSocket::GetOptionReuseAddress(bool& enabled)

{

    return this->pSocket->GetOptionReuseAddress(enabled);

}


inline SocketError TlsSocket::SetOptionKeepAlive(bool enabled)

{

    return this->pSocket->SetOptionKeepAlive(enabled);

}


inline SocketError TlsSocket::GetOptionKeepAlive(bool& enabled)

{

    return this->pSocket->GetOptionKeepAlive(enabled);

}


inline SocketError TlsSocket::SetOptionBroadcast(bool enabled)

{

    return this->pSocket->SetOptionBroadcast(enabled);

}


inline SocketError TlsSocket::GetOptionBroadcast(bool& enabled)

{

    return this->pSocket->GetOptionBroadcast(enabled);

}


inline SocketError TlsSocket::SetOptionNoDelay(bool enabled)

{

    return this->pSocket->SetOptionNoDelay(enabled);

}


inline SocketError TlsSocket::GetOptionNoDelay(bool& enabled)

{

    return this->pSocket->GetOptionNoDelay(enabled);

}


inline SocketError TlsSocket::SetOptionLinger(bool enable, size_t timeout)

{

    return this->pSocket->SetOptionLinger(enable, timeout);

}


inline SocketError TlsSocket::GetOptionLinger(bool& enable, size_t& timeout)

{

    return this->pSocket->GetOptionLinger(enable, timeout);

}


inline SocketError TlsSocket::SetOptionUserTimeout(size_t timeout_ms)

{

    return this->pSocket->SetOptionUserTimeout(timeout_ms);

}


inline SocketError TlsSocket::GetOptionUserTimeout(size_t& timeout_ms)

{

    return this->pSocket->GetOptionUserTimeout(timeout_ms);

}


inline SocketError TlsSocket::SetOptionKeepAliveIdleTime(int seconds)

{

    return this->pSocket->SetOptionKeepAliveIdleTime(seconds);

}


inline SocketError TlsSocket::GetOptionKeepAliveIdleTime(int& seconds)

{

    return this->pSocket->GetOptionKeepAliveIdleTime(seconds);

}


inline SocketError TlsSocket::SetOptionKeepAliveProbeInterval(int seconds)

{

    return this->pSocket->SetOptionKeepAliveProbeInterval(seconds);

}


inline SocketError TlsSocket::GetOptionKeepAliveProbeInterval(int& seconds)

{

    return this->pSocket->GetOptionKeepAliveProbeInterval(seconds);

}


inline SocketError TlsSocket::SetOptionKeepAliveProbeCount(int probeCount)

{

    return this->pSocket->SetOptionKeepAliveProbeCount(probeCount);

}


inline SocketError TlsSocket::GetOptionKeepAliveProbeCount(int& probeCount)

{

    return this->pSocket->GetOptionKeepAliveProbeCount(probeCount);

}


inline SocketError TlsSocket::SetOptionBlocking(bool enable)

{

    return this->pSocket->SetOptionBlocking(enable);

}


}}}} // end of namespace Arp::System::Commons::Net

Arp.h

Arp::BasicString< char8 >

Arp::System::Commons::Diagnostics::Logging::Loggable
Definition: Loggable.hxx:20

Arp::System::Commons::Net::IpAddress
Unified representation for ip address schemes.
Definition: IpAddress.hpp:14

Arp::System::Commons::Net::Socket::Ptr
std::shared_ptr< Socket > Ptr
Contextual definition of pointer type.
Definition: Socket.hpp:122

Arp::System::Commons::Net::TlsSocket
Definition: TlsSocket.hpp:40

Arp::System::Commons::Net::TlsSocket::Close
SocketError Close(void)
Closes the socket. This ends all communication on the socket.

Arp::System::Commons::Net::TlsSocket::SetOptionUserTimeout
SocketError SetOptionUserTimeout(size_t timeout_ms)
Sets the retransmission timeout of a socket. This only works on Linux.
Definition: TlsSocket.hpp:717

Arp::System::Commons::Net::TlsSocket::Accept
Ptr Accept(IpAddress &ip4address, int &port, SocketError &error)
Accepts a pending connection request.

Arp::System::Commons::Net::TlsSocket::GetOptionKeepAlive
SocketError GetOptionKeepAlive(bool &enabled)
Checks if keep-alive is enabled.
Definition: TlsSocket.hpp:682

Arp::System::Commons::Net::TlsSocket::SetOptionReuseAddress
SocketError SetOptionReuseAddress(bool enabled)
Enables/Disables the reuse-address option for this socket.
Definition: TlsSocket.hpp:667

Arp::System::Commons::Net::TlsSocket::GetSocketDomain
SocketDomain GetSocketDomain(void)
Returns the type of the socket.
Definition: TlsSocket.hpp:611

Arp::System::Commons::Net::TlsSocket::Ptr
std::shared_ptr< TlsSocket > Ptr
Contextual definition of pointer type.
Definition: TlsSocket.hpp:48

Arp::System::Commons::Net::TlsSocket::SetOptionNoDelay
SocketError SetOptionNoDelay(bool enabled)
Enables/Disables no-delay for this socket.
Definition: TlsSocket.hpp:697

Arp::System::Commons::Net::TlsSocket::operator=
TlsSocket & operator=(const TlsSocket &arg)=delete
Assignment operator.

Arp::System::Commons::Net::TlsSocket::SetOptionBlocking
SocketError SetOptionBlocking(bool enable)
Enables/disables the blocking mode of this socket..
Definition: TlsSocket.hpp:757

Arp::System::Commons::Net::TlsSocket::Select
bool Select(SelectMode mode, Microseconds timeout, SocketError &error)
Checks if an i/o operation can be performed without blocking the calling thread.

Arp::System::Commons::Net::TlsSocket::GetSocketOption
SocketError GetSocketOption(SocketOptionName optionName, void *optionValue, size_t *optionLength)
Returns current value of queried socket option.
Definition: TlsSocket.hpp:662

Arp::System::Commons::Net::TlsSocket::SetSocketOption
SocketError SetSocketOption(SocketOptionName optionName, const void *optionValue, size_t optionLength)
Sets a single option on the socket.
Definition: TlsSocket.hpp:657

Arp::System::Commons::Net::TlsSocket::TlsSocket
TlsSocket(SocketType type, SocketDomain domain, SocketBlockingMode blockingMode)
Constructs an TlsSocket instance.

Arp::System::Commons::Net::TlsSocket::Send
int Send(const void *pBuffer, size_t length, SocketError &error)
Transmit data over the socket that is in a connected state.

Arp::System::Commons::Net::TlsSocket::Bind2
SocketError Bind2(const IpAddress &ip4Address, int &port)
Binds the socket to a specific address and port combination.
Definition: TlsSocket.hpp:646

Arp::System::Commons::Net::TlsSocket::SetOptionKeepAliveProbeCount
SocketError SetOptionKeepAliveProbeCount(int probeCount)
Sets the amount of probes to be sent, if the KeepAlive SocketOption is set to true.
Definition: TlsSocket.hpp:747

Arp::System::Commons::Net::TlsSocket::TlsSocket
TlsSocket(SocketType type, SocketDomain domain, SocketBlockingMode blockingMode, TlsOptions options)
Constructs an TlsSocket instance.

Arp::System::Commons::Net::TlsSocket::GetOptionLinger
SocketError GetOptionLinger(bool &enable, size_t &timeout)
Returns the current linger options. For more information see Arp::System::Commons::Net::Socket::SetOp...
Definition: TlsSocket.hpp:712

Arp::System::Commons::Net::TlsSocket::Bind
SocketError Bind(const IpAddress &ip4Address, int port)
Binds the socket to a specific address and port combination.
Definition: TlsSocket.hpp:641

Arp::System::Commons::Net::TlsSocket::Shutdown
SocketError Shutdown(void)
Shuts down a full-duplex connection.

Arp::System::Commons::Net::TlsSocket::Receive
int Receive(void *pBuffer, size_t length, SocketError &error)
Reads data from connected socket.

Arp::System::Commons::Net::TlsSocket::GetOptionKeepAliveProbeCount
SocketError GetOptionKeepAliveProbeCount(int &probeCount)
Gets the amount of probes to be sent, if the KeepAlive SocketOption is set to true....
Definition: TlsSocket.hpp:752

Arp::System::Commons::Net::TlsSocket::GetOptionKeepAliveProbeInterval
SocketError GetOptionKeepAliveProbeInterval(int &seconds)
Gets the interval time in between each Keep Alive probe, if the KeepAlive SocketOption is set to true...
Definition: TlsSocket.hpp:742

Arp::System::Commons::Net::TlsSocket::Shutdown
SocketError Shutdown(ShutdownMode mode)
Shuts down a full-duplex connection.

Arp::System::Commons::Net::TlsSocket::~TlsSocket
~TlsSocket(void)
Destructs this instance and frees all resouces.

Arp::System::Commons::Net::TlsSocket::InitClient
SocketError InitClient(const String &trustStoreName, const String &identityStoreName, const String &hostName)

Arp::System::Commons::Net::TlsSocket::GetOptionUserTimeout
SocketError GetOptionUserTimeout(size_t &timeout_ms)
Gets the retransmission timeout of a socket. This only works on Linux. For more information see Arp::...
Definition: TlsSocket.hpp:722

Arp::System::Commons::Net::TlsSocket::SetOptionKeepAliveIdleTime
SocketError SetOptionKeepAliveIdleTime(int seconds)
Sets the time that the socket needs to be idle for, before the Keep Alive mechanism can start if the ...
Definition: TlsSocket.hpp:727

Arp::System::Commons::Net::TlsSocket::GetRemotePort
int GetRemotePort(void)
If this socket is connected this method returns the port of the connection.
Definition: TlsSocket.hpp:626

Arp::System::Commons::Net::TlsSocket::RenegotiateSession
SocketError RenegotiateSession()

Arp::System::Commons::Net::TlsSocket::InitServer
SocketError InitServer(const String &identityStoreName, const String &trustStoreName="")

Arp::System::Commons::Net::TlsSocket::IsBlocking
bool IsBlocking(void)
Checks if the socket is in blocking mode.
Definition: TlsSocket.hpp:616

Arp::System::Commons::Net::TlsSocket::IsTlsConnected
bool IsTlsConnected(void)
Checks if a TLS connection is established with a remote peer.
Definition: TlsSocket.hpp:636

Arp::System::Commons::Net::TlsSocket::GetOptionKeepAliveIdleTime
SocketError GetOptionKeepAliveIdleTime(int &seconds)
Gets the time that the socket needs to be idle for, before the Keep Alive mechanism can start if the ...
Definition: TlsSocket.hpp:732

Arp::System::Commons::Net::TlsSocket::Poll
int Poll(PollMode mode, Milliseconds timeout, SocketError &error)
Checks if an i/o operation can be processed without blocking.

Arp::System::Commons::Net::TlsSocket::SetOptionKeepAlive
SocketError SetOptionKeepAlive(bool enabled)
Enables/Disables the keep-alive option for this socket.
Definition: TlsSocket.hpp:677

Arp::System::Commons::Net::TlsSocket::SetOptionLinger
SocketError SetOptionLinger(bool enable, size_t timeout)
Sets the amount of time a socket resides in TIME_WAIT state after active close.
Definition: TlsSocket.hpp:707

Arp::System::Commons::Net::TlsSocket::Connect
SocketError Connect(const IpAddress &ip4Address, int port)
Tries to connect with a remote socket.

Arp::System::Commons::Net::TlsSocket::GetRemoteIpAddress
IpAddress GetRemoteIpAddress(void)
Checks if this socket is connected with a remote peer.
Definition: TlsSocket.hpp:621

Arp::System::Commons::Net::TlsSocket::IsConnected
bool IsConnected(void)
Checks if the socket is in blocking mode.
Definition: TlsSocket.hpp:631

Arp::System::Commons::Net::TlsSocket::TlsSocket
TlsSocket(const TlsSocket &arg)=delete
Copy contructor.

Arp::System::Commons::Net::TlsSocket::SetOptionBroadcast
SocketError SetOptionBroadcast(bool enabled)
Enables/Disables broadcast for this socket.
Definition: TlsSocket.hpp:687

Arp::System::Commons::Net::TlsSocket::GetOptionBroadcast
SocketError GetOptionBroadcast(bool &enabled)
Checks if broadcast is enabled.
Definition: TlsSocket.hpp:692

Arp::System::Commons::Net::TlsSocket::UpdateSessionKeys
SocketError UpdateSessionKeys(bool requestUpdate=true)

Arp::System::Commons::Net::TlsSocket::SetOptionKeepAliveProbeInterval
SocketError SetOptionKeepAliveProbeInterval(int seconds)
Sets the interval time in between each Keep Alive probe, if the KeepAlive SocketOption is set to true...
Definition: TlsSocket.hpp:737

Arp::System::Commons::Net::TlsSocket::GetSocketType
SocketType GetSocketType(void)
Returns the type of the socket.
Definition: TlsSocket.hpp:606

Arp::System::Commons::Net::TlsSocket::SetCipherList
void SetCipherList(String cipherList)

Arp::System::Commons::Net::TlsSocket::Listen
SocketError Listen(size_t backlog)
Marks this socket as a passive socket that accepts incoming connection requests.
Definition: TlsSocket.hpp:652

Arp::System::Commons::Net::TlsSocket::GetOptionReuseAddress
SocketError GetOptionReuseAddress(bool &enabled)
Checks if reuse-address is enabled.
Definition: TlsSocket.hpp:672

Arp::System::Commons::Net::TlsSocket::GetOptionNoDelay
SocketError GetOptionNoDelay(bool &enabled)
Checks if no-delay is enabled.
Definition: TlsSocket.hpp:702

Arp::System::Commons::Security::Certificate
Class to handle x.509 certificates
Definition: Certificate.hpp:25

Arp::System::Ve::ISocketService
Definition: ISocketService.hpp:13

Arp::Milliseconds
std::chrono::milliseconds Milliseconds
The Arp Milliseconds unit class.
Definition: TypeSystem.h:52

Arp::Microseconds
std::chrono::microseconds Microseconds
The Arp Microseconds unit class.
Definition: TypeSystem.h:49

Arp::System::Acf::ComponentCategory::System
@ System
System components used by the System, Device, Plc or Io domains.

Arp::System::Commons::Net::PollMode
PollMode
This enum is used to specifiy the poll mode of the <cref name="Socket::Poll" > operation.
Definition: PollMode.hpp:15

Arp::System::Commons::Net::SelectMode
SelectMode
Modes for Select call to check different data channels.
Definition: SelectMode.hpp:14

Arp::System::Commons::Net::SocketDomain
SocketDomain
Supported communication domains, selecting the protocol for communication.
Definition: SocketDomain.hpp:14

Arp::System::Commons::Net::SocketType
SocketType
Enumeration of supported socket types.
Definition: SocketType.hpp:14

Arp::System::Commons::Net::ShutdownMode
ShutdownMode
This enum is used to specifiy the shutdown mode of the <cref name="Socket::Shutdown(ShutdownMode)" > ...
Definition: ShutdownMode.hpp:15

Arp::System::Commons::Net::SocketError
SocketError
Possible error codes for socket operation results.
Definition: SocketError.hpp:15

Arp::System::Commons::Net::TlsOptions
TlsOptions
This enum is used to select different options for the TlsSocket class
Definition: TlsOptions.hpp:25

Arp::System::Commons::Net::SocketOptionName
SocketOptionName
Specifies socket options to be set by the application. Copied from Eclr Socket Adaption
Definition: SocketOptionName.hpp:17

Arp::System::Commons::Net::SocketBlockingMode
SocketBlockingMode
Supported blocking modes.
Definition: Socket.hpp:28

Arp::System::Commons::Security
Namespace for classes dealing with certificates
Definition: Asn1Time.hpp:18

Arp
Root namespace for the PLCnext API