/* * * Copyright 2015, Google Inc. * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are * met: * * * Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * Redistributions in binary form must reproduce the above * copyright notice, this list of conditions and the following disclaimer * in the documentation and/or other materials provided with the * distribution. * * Neither the name of Google Inc. nor the names of its * contributors may be used to endorse or promote products derived from * this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. * */ #include #include "grpc/grpc.h" #include "grpc/grpc_security.h" #include "grpc/support/log.h" #include "server_credentials.h" namespace grpc { namespace node { using v8::Array; using v8::Exception; using v8::External; using v8::Function; using v8::FunctionTemplate; using v8::Handle; using v8::HandleScope; using v8::Integer; using v8::Local; using v8::Object; using v8::ObjectTemplate; using v8::Persistent; using v8::String; using v8::Value; NanCallback *ServerCredentials::constructor; Persistent ServerCredentials::fun_tpl; ServerCredentials::ServerCredentials(grpc_server_credentials *credentials) : wrapped_credentials(credentials) {} ServerCredentials::~ServerCredentials() { grpc_server_credentials_release(wrapped_credentials); } void ServerCredentials::Init(Handle exports) { NanScope(); Local tpl = NanNew(New); tpl->SetClassName(NanNew("ServerCredentials")); tpl->InstanceTemplate()->SetInternalFieldCount(1); NanAssignPersistent(fun_tpl, tpl); Handle ctr = tpl->GetFunction(); ctr->Set(NanNew("createSsl"), NanNew(CreateSsl)->GetFunction()); ctr->Set(NanNew("createInsecure"), NanNew(CreateInsecure)->GetFunction()); constructor = new NanCallback(ctr); exports->Set(NanNew("ServerCredentials"), ctr); } bool ServerCredentials::HasInstance(Handle val) { NanScope(); return NanHasInstance(fun_tpl, val); } Handle ServerCredentials::WrapStruct( grpc_server_credentials *credentials) { NanEscapableScope(); const int argc = 1; Handle argv[argc] = { NanNew(reinterpret_cast(credentials))}; return NanEscapeScope(constructor->GetFunction()->NewInstance(argc, argv)); } grpc_server_credentials *ServerCredentials::GetWrappedServerCredentials() { return wrapped_credentials; } NAN_METHOD(ServerCredentials::New) { NanScope(); if (args.IsConstructCall()) { if (!args[0]->IsExternal()) { return NanThrowTypeError( "ServerCredentials can only be created with the provide functions"); } Handle ext = args[0].As(); grpc_server_credentials *creds_value = reinterpret_cast(ext->Value()); ServerCredentials *credentials = new ServerCredentials(creds_value); credentials->Wrap(args.This()); NanReturnValue(args.This()); } else { const int argc = 1; Local argv[argc] = {args[0]}; NanReturnValue(constructor->GetFunction()->NewInstance(argc, argv)); } } NAN_METHOD(ServerCredentials::CreateSsl) { // TODO: have the node API support multiple key/cert pairs. NanScope(); char *root_certs = NULL; if (::node::Buffer::HasInstance(args[0])) { root_certs = ::node::Buffer::Data(args[0]); } else if (!(args[0]->IsNull() || args[0]->IsUndefined())) { return NanThrowTypeError( "createSSl's first argument must be a Buffer if provided"); } if (!args[1]->IsArray()) { return NanThrowTypeError( "createSsl's second argument must be a list of objects"); } int force_client_auth = 0; if (args[2]->IsBoolean()) { force_client_auth = (int)args[2]->BooleanValue(); } else if (!(args[2]->IsUndefined() || args[2]->IsNull())) { return NanThrowTypeError( "createSsl's third argument must be a boolean if provided"); } Handle pair_list = Local::Cast(args[1]); uint32_t key_cert_pair_count = pair_list->Length(); grpc_ssl_pem_key_cert_pair *key_cert_pairs = new grpc_ssl_pem_key_cert_pair[ key_cert_pair_count]; Handle key_key = NanNew("private_key"); Handle cert_key = NanNew("cert_chain"); for(uint32_t i = 0; i < key_cert_pair_count; i++) { if (!pair_list->Get(i)->IsObject()) { delete key_cert_pairs; return NanThrowTypeError("Key/cert pairs must be objects"); } Handle pair_obj = pair_list->Get(i)->ToObject(); if (!pair_obj->HasOwnProperty(key_key)) { delete key_cert_pairs; return NanThrowTypeError( "Key/cert pairs must have a private_key and a cert_chain"); } if (!pair_obj->HasOwnProperty(cert_key)) { delete key_cert_pairs; return NanThrowTypeError( "Key/cert pairs must have a private_key and a cert_chain"); } if (!::node::Buffer::HasInstance(pair_obj->Get(key_key))) { delete key_cert_pairs; return NanThrowTypeError("private_key must be a Buffer"); } if (!::node::Buffer::HasInstance(pair_obj->Get(cert_key))) { delete key_cert_pairs; return NanThrowTypeError("cert_chain must be a Buffer"); } key_cert_pairs[i].private_key = ::node::Buffer::Data( pair_obj->Get(key_key)); key_cert_pairs[i].cert_chain = ::node::Buffer::Data( pair_obj->Get(cert_key)); } grpc_server_credentials *creds = grpc_ssl_server_credentials_create( root_certs, key_cert_pairs, key_cert_pair_count, force_client_auth, NULL); delete key_cert_pairs; if (creds == NULL) { NanReturnNull(); } NanReturnValue(WrapStruct(creds)); } NAN_METHOD(ServerCredentials::CreateInsecure) { NanScope(); NanReturnValue(WrapStruct(NULL)); } } // namespace node } // namespace grpc