Adds SecurityContext.setTrustedCertificatesBytes

runtime/bin/secure_socket.cc

 // Copyright (c) 2012, the Dart project authors.  Please see the AUTHORS file
 // for details. All rights reserved. Use of this source code is governed by a
 // BSD-style license that can be found in the LICENSE file.
 
 #include "bin/secure_socket.h"
 
 #include <errno.h>
 #include <fcntl.h>
 #include <sys/stat.h>
 #include <stdio.h>
@@ skipping 358 matching lines @@
     int error = ERR_get_error();
     Log::PrintErr("Failed: %s status %d", message, status);
     char error_string[SSL_ERROR_MESSAGE_BUFFER_SIZE];
     ERR_error_string_n(error, error_string, SSL_ERROR_MESSAGE_BUFFER_SIZE);
     Log::PrintErr("ERROR: %d %s\n", error, error_string);
   }
   ThrowIOException(status, type, message);
 }
 
 
+static bool GetBIOArgument(Dart_Handle object, BIO** bio) {

[Bill Hesse, 2016/02/05 14:48:17]

I would call this FillMemBIO.  "Argument" doesn't add anything, and the BIO
isn't being gotten.

[zra, 2016/02/05 17:18:22]

Replaced these functions with MemBIOScope

+  ASSERT(bio != NULL);
+  if (!Dart_IsTypedData(object) && !Dart_IsList(object)) {
+    Dart_ThrowException(DartUtils::NewDartArgumentError(
+        "Argument is not a List<int>"));
+  }
+
+  uint8_t* bytes = NULL;
+  intptr_t bytes_len = 0;
+  bool is_typed_data = false;
+  if (Dart_IsTypedData(object)) {
+    is_typed_data = true;
+    Dart_TypedData_Type typ;
+    ThrowIfError(Dart_TypedDataAcquireData(
+        object,
+        &typ,
+        reinterpret_cast<void**>(&bytes),
+        &bytes_len));
+  } else {
+    ASSERT(Dart_IsList(object));
+    ThrowIfError(Dart_ListLength(object, &bytes_len));
+    bytes = new uint8_t[bytes_len];
+    Dart_Handle err =
+        Dart_ListGetAsBytes(object, 0, bytes, bytes_len);
+    if (Dart_IsError(err)) {
+      delete[] bytes;
+      Dart_PropagateError(err);
+    }
+  }
+
+  *bio = BIO_new_mem_buf(bytes, bytes_len);
+  return is_typed_data;
+}
+
+

[Bill Hesse, 2016/02/05 14:48:17]

This seems really fragile (the typed data release), but looking at its uses, I
guess it is needed.   Can we put comments that FreeBIO (FreeMemBIO) must be
called after a successful return from FillMemBIO, without any non-fatal returns
between the two calls.

[zra, 2016/02/05 17:18:22]

Acknowledged.

+static void FreeBIO(Dart_Handle object, BIO* bio, bool is_typed_data) {
+  if (is_typed_data) {
+    BIO_free(bio);
+    ThrowIfError(Dart_TypedDataReleaseData(object));
+  } else {
+    uint8_t* bytes;
+    uintptr_t bytes_len;
+    if (BIO_mem_contents(
+        bio, const_cast<const uint8_t**>(&bytes), &bytes_len) != 0) {
+      ASSERT(bytes != NULL);
+      delete[] bytes;
+    }
+    BIO_free(bio);
+  }
+}
+
+
 void FUNCTION_NAME(SecurityContext_UsePrivateKeyBytes)(
     Dart_NativeArguments args) {
   SSL_CTX* context = GetSecurityContext(args);
 
-  Dart_Handle key_object = ThrowIfError(Dart_GetNativeArgument(args, 1));
-  if (!Dart_IsTypedData(key_object) && !Dart_IsList(key_object)) {
-    Dart_ThrowException(DartUtils::NewDartArgumentError(
-        "keyBytes argument to SecurityContext.usePrivateKeyBytes "
-        "is not a List<int>"));
-  }
-
   Dart_Handle password_object = ThrowIfError(Dart_GetNativeArgument(args, 2));
   const char* password = NULL;
   if (Dart_IsString(password_object)) {
     ThrowIfError(Dart_StringToCString(password_object, &password));
     if (strlen(password) > PEM_BUFSIZE - 1) {
       Dart_ThrowException(DartUtils::NewDartArgumentError(
         "SecurityContext.usePrivateKey password length is greater than"
         " 1023 (PEM_BUFSIZE)"));
     }
   } else if (Dart_IsNull(password_object)) {
     password = "";
   } else {
     Dart_ThrowException(DartUtils::NewDartArgumentError(
         "SecurityContext.usePrivateKey password is not a String or null"));
   }
 
-  uint8_t* key_bytes = NULL;
-  intptr_t key_bytes_len = 0;
-  bool is_typed_data = false;
-  if (Dart_IsTypedData(key_object)) {
-    is_typed_data = true;
-    Dart_TypedData_Type typ;
-    ThrowIfError(Dart_TypedDataAcquireData(
-        key_object,
-        &typ,
-        reinterpret_cast<void**>(&key_bytes),
-        &key_bytes_len));
-  } else {
-    ASSERT(Dart_IsList(key_object));
-    ThrowIfError(Dart_ListLength(key_object, &key_bytes_len));
-    key_bytes = new uint8_t[key_bytes_len];
-    Dart_Handle err =
-        Dart_ListGetAsBytes(key_object, 0, key_bytes, key_bytes_len);
-    if (Dart_IsError(err)) {
-      delete[] key_bytes;
-      Dart_PropagateError(err);
-    }
-  }
-  ASSERT(key_bytes != NULL);
+  BIO* bio = NULL;
+  Dart_Handle key_object = ThrowIfError(Dart_GetNativeArgument(args, 1));
+  bool is_typed_data = GetBIOArgument(key_object, &bio);
+  ASSERT(bio != NULL);
 
-  BIO* bio = BIO_new_mem_buf(key_bytes, key_bytes_len);
   EVP_PKEY *key = PEM_read_bio_PrivateKey(
       bio, NULL, PasswordCallback, const_cast<char*>(password));
   int status = SSL_CTX_use_PrivateKey(context, key);
-  BIO_free(bio);
-  if (is_typed_data) {
-    ThrowIfError(Dart_TypedDataReleaseData(key_object));
-  } else {
-    delete[] key_bytes;
-  }
+
+  FreeBIO(key_object, bio, is_typed_data);
 
   // TODO(24184): Handle different expected errors here - file missing,
   // incorrect password, file not a PEM, and throw exceptions.
   // CheckStatus should also throw an exception in uncaught cases.
   CheckStatus(status, "TlsException", "Failure in usePrivateKeyBytes");
 }
 
 
-void FUNCTION_NAME(SecurityContext_SetTrustedCertificates)(
-    Dart_NativeArguments args) {
-  SSL_CTX* context = GetSecurityContext(args);
-  Dart_Handle filename_object = ThrowIfError(Dart_GetNativeArgument(args, 1));
-  const char* filename = NULL;
-  if (Dart_IsString(filename_object)) {
-    ThrowIfError(Dart_StringToCString(filename_object, &filename));
-  }
-  Dart_Handle directory_object = ThrowIfError(Dart_GetNativeArgument(args, 2));
-  const char* directory = NULL;
-  if (Dart_IsString(directory_object)) {
-    ThrowIfError(Dart_StringToCString(directory_object, &directory));
-  } else if (Dart_IsNull(directory_object)) {
-    directory = NULL;
-  } else {
-    Dart_ThrowException(DartUtils::NewDartArgumentError(
-        "Directory argument to SecurityContext.setTrustedCertificates is not "
-        "a String or null"));
+static int SetTrustedCertificatesBytes(SSL_CTX* context, BIO* bio) {
+  X509_STORE* store = SSL_CTX_get_cert_store(context);
+
+  int status = 0;
+  X509* cert = NULL;
+  while ((cert = PEM_read_bio_X509(bio, NULL, NULL, NULL)) != NULL) {
+    status = X509_STORE_add_cert(store, cert);
+    if (status == 0) {
+      X509_free(cert);
+      return status;
+    }
   }
 
-  int status = SSL_CTX_load_verify_locations(context, filename, directory);
-  CheckStatus(
-      status, "TlsException", "SSL_CTX_load_verify_locations");
+  uint32_t err = ERR_peek_last_error();
+  if ((ERR_GET_LIB(err) == ERR_LIB_PEM) &&
+      (ERR_GET_REASON(err) == PEM_R_NO_START_LINE)) {
+    // Reached the end of the buffer.
+    ERR_clear_error();
+  } else {
+    // Some real error happened.
+    status = 0;
+  }
+
+  return status;
 }
 
 
+void FUNCTION_NAME(SecurityContext_SetTrustedCertificatesBytes)(
+    Dart_NativeArguments args) {
+  SSL_CTX* context = GetSecurityContext(args);
+
+  BIO* bio = NULL;
+  Dart_Handle certs_object = ThrowIfError(Dart_GetNativeArgument(args, 1));
+  bool is_typed_data = GetBIOArgument(certs_object, &bio);
+  ASSERT(bio != NULL);
+
+  int status = SetTrustedCertificatesBytes(context, bio);
+
+  FreeBIO(certs_object, bio, is_typed_data);
+  CheckStatus(status,
+              "TlsException",
+              "Failure in setTrustedCertificatesBytes");
+}
+
+
 void FUNCTION_NAME(SecurityContext_TrustBuiltinRoots)(
     Dart_NativeArguments args) {
   SSL_CTX* context = GetSecurityContext(args);
   X509_STORE* store = SSL_CTX_get_cert_store(context);
   BIO* roots_bio =
       BIO_new_mem_buf(const_cast<unsigned char*>(root_certificates_pem),
                       root_certificates_pem_length);
   X509* root_cert;
   // PEM_read_bio_X509 reads PEM-encoded certificates from a bio (in our case,
   // backed by a memory buffer), and returns X509 objects, one by one.
   // When the end of the bio is reached, it returns null.
   while ((root_cert = PEM_read_bio_X509(roots_bio, NULL, NULL, NULL))) {
     X509_STORE_add_cert(store, root_cert);
   }
   BIO_free(roots_bio);
 }
 
 
-static int UseChainBytes(
-    SSL_CTX* context, uint8_t* chain_bytes, intptr_t chain_bytes_len) {
+static int UseChainBytes(SSL_CTX* context, BIO* bio) {
   int status = 0;
-  BIO* bio = BIO_new_mem_buf(chain_bytes, chain_bytes_len);
-  if (bio == NULL) {
+  X509* x509 = PEM_read_bio_X509_AUX(bio, NULL, NULL, NULL);
+  if (x509 == NULL) {
     return 0;
   }
 
-  X509* x509 = PEM_read_bio_X509_AUX(bio, NULL, NULL, NULL);
-  if (x509 == NULL) {
-    BIO_free(bio);
-    return 0;
-  }
-
   status = SSL_CTX_use_certificate(context, x509);
   if (ERR_peek_error() != 0) {
     // Key/certificate mismatch doesn't imply status is 0.
     status = 0;
   }
   if (status == 0) {
     X509_free(x509);
-    BIO_free(bio);
     return status;
   }
 
   SSL_CTX_clear_chain_certs(context);
 
   while (true) {
     X509* ca = PEM_read_bio_X509(bio, NULL, NULL, NULL);
     if (ca == NULL) {
       break;
     }
     status = SSL_CTX_add0_chain_cert(context, ca);
     if (status == 0) {
       X509_free(ca);
       X509_free(x509);
-      BIO_free(bio);
       return status;
     }
     // Note that we must not free `ca` if it was successfully added to the
     // chain. We must free the main certificate x509, though since its reference
     // count is increased by SSL_CTX_use_certificate.
   }
 
   uint32_t err = ERR_peek_last_error();
   if ((ERR_GET_LIB(err) == ERR_LIB_PEM) &&
       (ERR_GET_REASON(err) == PEM_R_NO_START_LINE)) {
     // Reached the end of the buffer.
     ERR_clear_error();
   } else {
     // Some real error happened.
     status = 0;
   }
 
   X509_free(x509);
-  BIO_free(bio);
   return status;
 }
 
 
 void FUNCTION_NAME(SecurityContext_UseCertificateChainBytes)(
     Dart_NativeArguments args) {
   SSL_CTX* context = GetSecurityContext(args);
 
+  BIO* bio = NULL;
   Dart_Handle chain_object = ThrowIfError(Dart_GetNativeArgument(args, 1));
-  if (!Dart_IsTypedData(chain_object) && !Dart_IsList(chain_object)) {
-    Dart_ThrowException(DartUtils::NewDartArgumentError(
-        "chainBytes argument to SecurityContext.useCertificateChainBytes "
-        "is not a List<int>"));
-  }
+  bool is_typed_data = GetBIOArgument(chain_object, &bio);
+  ASSERT(bio != NULL);
 
-  uint8_t* chain_bytes = NULL;
-  intptr_t chain_bytes_len = 0;
-  bool is_typed_data = false;
-  if (Dart_IsTypedData(chain_object)) {
-    is_typed_data = true;
-    Dart_TypedData_Type typ;
-    ThrowIfError(Dart_TypedDataAcquireData(
-        chain_object,
-        &typ,
-        reinterpret_cast<void**>(&chain_bytes),
-        &chain_bytes_len));
-  } else {
-    ASSERT(Dart_IsList(chain_object));
-    ThrowIfError(Dart_ListLength(chain_object, &chain_bytes_len));
-    chain_bytes = new uint8_t[chain_bytes_len];
-    Dart_Handle err =
-        Dart_ListGetAsBytes(chain_object, 0, chain_bytes, chain_bytes_len);
-    if (Dart_IsError(err)) {
-      delete[] chain_bytes;
-      Dart_PropagateError(err);
-    }
-  }
-  ASSERT(chain_bytes != NULL);
+  int status = UseChainBytes(context, bio);
 
-  int status = UseChainBytes(context, chain_bytes, chain_bytes_len);
-
-  if (is_typed_data) {
-    ThrowIfError(Dart_TypedDataReleaseData(chain_object));
-  } else {
-    delete[] chain_bytes;
-  }
+  FreeBIO(chain_object, bio, is_typed_data);
   CheckStatus(status,
               "TlsException",
               "Failure in useCertificateChainBytes");
 }
 
 
-void FUNCTION_NAME(SecurityContext_SetClientAuthorities)(
+static STACK_OF(X509_NAME)* GetCertificateNames(BIO* bio) {
+  STACK_OF(X509_NAME)* result = sk_X509_NAME_new_null();
+  if (result == NULL) {
+    return NULL;
+  }
+
+  while (true) {
+    X509* x509 = PEM_read_bio_X509(bio, NULL, NULL, NULL);
+    if (x509 == NULL) {
+      break;
+    }
+
+    X509_NAME* x509_name = X509_get_subject_name(x509);
+    if (x509_name == NULL) {
+      sk_X509_NAME_pop_free(result, X509_NAME_free);
+      X509_free(x509);
+      return NULL;
+    }
+
+    // Duplicate the name to put it on the stack.
+    x509_name = X509_NAME_dup(x509_name);
+    if (x509_name == NULL) {
+      sk_X509_NAME_pop_free(result, X509_NAME_free);
+      X509_free(x509);
+      return NULL;
+    }
+    sk_X509_NAME_push(result, x509_name);
+    X509_free(x509);
+  }
+
+  return result;
+}
+
+
+void FUNCTION_NAME(SecurityContext_SetClientAuthoritiesBytes)(
     Dart_NativeArguments args) {
   SSL_CTX* context = GetSecurityContext(args);
-  Dart_Handle filename_object = ThrowIfError(Dart_GetNativeArgument(args, 1));
-  const char* filename = NULL;
-  if (Dart_IsString(filename_object)) {
-    ThrowIfError(Dart_StringToCString(filename_object, &filename));
-  } else {
-    Dart_ThrowException(DartUtils::NewDartArgumentError(
-         "file argument in SecurityContext.setClientAuthorities"
-         " is not a String"));
-  }
-  STACK_OF(X509_NAME)* certificate_names;
-  certificate_names = SSL_load_client_CA_file(filename);
+
+  BIO* bio = NULL;
+  Dart_Handle certs_object = ThrowIfError(Dart_GetNativeArgument(args, 1));
+  bool is_typed_data = GetBIOArgument(certs_object, &bio);
+  ASSERT(bio != NULL);
+
+  STACK_OF(X509_NAME)* certificate_names = GetCertificateNames(bio);
+
+  FreeBIO(certs_object, bio, is_typed_data);
+
   if (certificate_names != NULL) {
     SSL_CTX_set_client_CA_list(context, certificate_names);
   } else {
     Dart_ThrowException(DartUtils::NewDartArgumentError(
         "Could not load certificate names from file in SetClientAuthorities"));
   }
 }
 
 
 void FUNCTION_NAME(SecurityContext_SetAlpnProtocols)(
@@ skipping 612 matching lines @@
     } else {
       if (SSL_LOG_DATA) Log::Print(
           "WriteEncrypted  BIO_read wrote %d bytes\n", bytes_processed);
     }
   }
   return bytes_processed;
 }
 
 }  // namespace bin
 }  // namespace dart