deskflow/SecureSocket_8h_source.html

/*

 * Deskflow -- mouse and keyboard sharing utility

 * SPDX-FileCopyrightText: (C) 2025 Deskflow Developers

 * SPDX-FileCopyrightText: (C) 2015 - 2016 Symless Ltd.

 * SPDX-License-Identifier: GPL-2.0-only WITH LicenseRef-OpenSSL-Exception

 */


#pragma once


#include "net/SecurityLevel.h"

#include "net/TCPSocket.h"


#include <memory>

#include <mutex>


class Event;

class IEventQueue;

class SocketMultiplexer;

class ISocketMultiplexerJob;

class QString;


struct Ssl;


class SecureSocket : public TCPSocket

{

public:

  SecureSocket(

      IEventQueue *events, SocketMultiplexer *socketMultiplexer, IArchNetwork::AddressFamily family,

      SecurityLevel securityLevel = SecurityLevel::Encrypted

  );

  SecureSocket(

      IEventQueue *events, SocketMultiplexer *socketMultiplexer, ArchSocket socket,

      SecurityLevel securityLevel = SecurityLevel::Encrypted

  );

  SecureSocket(SecureSocket const &) = delete;

  SecureSocket(SecureSocket &&) = delete;

  ~SecureSocket() override;


  SecureSocket &operator=(SecureSocket const &) = delete;

  SecureSocket &operator=(SecureSocket &&) = delete;


  // ISocket overrides

  void close() override;


  // IDataSocket overrides

  void connect(const NetworkAddress &) override;


  ISocketMultiplexerJob *newJob() override;


  bool isFatal() const override

  {

    return m_fatal;

  }


  void isFatal(bool b)

  {

    m_fatal = b;

  }


  bool isSecureReady() const;

  void secureConnect();

  void secureAccept();

  int secureRead(void *buffer, int size, int &read);

  int secureWrite(const void *buffer, int size, int &wrote);

  JobResult doRead() override;

  JobResult doWrite() override;

  void initSsl(bool server);

  bool loadCertificate(const QString &filename);


private:

  // SSL

  void initContext(bool server);

  void createSSL();

  void freeSSL();

  int secureAccept(int s);

  int secureConnect(int s);

  bool showCertificate() const;

  void checkResult(int n, int &retry);

  void disconnect();

  bool verifyCertFingerprint(const QString &FingerprintDatabasePath) const;


  ISocketMultiplexerJob *serviceConnect(ISocketMultiplexerJob *const socket, bool, bool, bool);


  ISocketMultiplexerJob *serviceAccept(ISocketMultiplexerJob *const socket, bool, bool, bool);


  void handleTCPConnected(const Event &event);


private:

  // all accesses to m_ssl must be protected by this mutex. The only function that is called

  // from outside SocketMultiplexer thread is close(), so we mostly care about things accessed

  // by it.

  std::mutex ssl_mutex_;


  std::unique_ptr<Ssl> m_ssl;

  bool m_secureReady = false;

  bool m_fatal = false;

  SecurityLevel m_securityLevel = SecurityLevel::Encrypted;

};


ArchSocket
ArchSocketImpl * ArchSocket
Opaque socket type. An opaque type representing a socket.
Definition IArchNetwork.h:30

SecurityLevel.h

SecurityLevel
SecurityLevel
This enum is used to set how the client and server will communicate.
Definition SecurityLevel.h:14

SecurityLevel::Encrypted
@ Encrypted
Definition SecurityLevel.h:16

TCPSocket.h

Event
Event.
Definition Event.h:29

IArchNetwork::AddressFamily
AddressFamily
Supported address families.
Definition IArchNetwork.h:58

IEventQueue
Event queue interface.
Definition IEventQueue.h:29

ISocketMultiplexerJob
Socket multiplexer job.
Definition ISocketMultiplexerJob.h:18

NetworkAddress
Network address type.
Definition NetworkAddress.h:17

SecureSocket::newJob
ISocketMultiplexerJob * newJob() override
Definition SecureSocket.cpp:84

SecureSocket::~SecureSocket
~SecureSocket() override
Definition SecureSocket.cpp:65

SecureSocket::SecureSocket
SecureSocket(IEventQueue *events, SocketMultiplexer *socketMultiplexer, IArchNetwork::AddressFamily family, SecurityLevel securityLevel=SecurityLevel::Encrypted)
Definition SecureSocket.cpp:46

SecureSocket::operator=
SecureSocket & operator=(SecureSocket const &)=delete

SecureSocket::SecureSocket
SecureSocket(SecureSocket const &)=delete

SecureSocket::loadCertificate
bool loadCertificate(const QString &filename)
Definition SecureSocket.cpp:288

SecureSocket::secureConnect
void secureConnect()
Definition SecureSocket.cpp:95

SecureSocket::isSecureReady
bool isSecureReady() const
Definition SecureSocket.cpp:274

SecureSocket::secureWrite
int secureWrite(const void *buffer, int size, int &wrote)
Definition SecureSocket.cpp:246

SecureSocket::close
void close() override
Close socket.
Definition SecureSocket.cpp:70

SecureSocket::operator=
SecureSocket & operator=(SecureSocket &&)=delete

SecureSocket::secureAccept
void secureAccept()
Definition SecureSocket.cpp:102

SecureSocket::initSsl
void initSsl(bool server)
Definition SecureSocket.cpp:279

SecureSocket::secureRead
int secureRead(void *buffer, int size, int &read)
Definition SecureSocket.cpp:219

SecureSocket::SecureSocket
SecureSocket(SecureSocket &&)=delete

SecureSocket::isFatal
bool isFatal() const override
Definition SecureSocket.h:53

SecureSocket::isFatal
void isFatal(bool b)
Definition SecureSocket.h:57

SecureSocket::connect
void connect(const NetworkAddress &) override
Connect socket.
Definition SecureSocket.cpp:76

SecureSocket::doRead
JobResult doRead() override
Definition SecureSocket.cpp:109

SecureSocket::doWrite
JobResult doWrite() override
Definition SecureSocket.cpp:166

SocketMultiplexer
Socket multiplexer.
Definition SocketMultiplexer.h:24

TCPSocket::JobResult
JobResult
Definition TCPSocket.h:64

TCPSocket::read
uint32_t read(void *buffer, uint32_t n) override
Read from stream.
Definition TCPSocket.cpp:117

TCPSocket::TCPSocket
TCPSocket(IEventQueue *events, SocketMultiplexer *socketMultiplexer, IArchNetwork::AddressFamily family=IArchNetwork::AddressFamily::INet)
Definition TCPSocket.cpp:29

Ssl
Definition SecureSocket.cpp:36