tyler.durden/icinga2
1
0
Fork 0
mirror of https://github.com/Icinga/icinga2.git synced 2025-07-27 07:34:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #7315 from Icinga/feature/api-cipher-list-log

Browse Source 
TLS: Fetch the cipher list and log them for debugging (OpenSSL 1.1.x)
This commit is contained in:
Diana Flach 2019-07-12 16:55:07 +02:00 committed by GitHub
commit 35f53c0dc1
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 39 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
lib/base/array-script.cpp
View File

@ -107,22 +107,7 @@ static Value ArrayJoin(const Value& separator)
ScriptFrame *vframe = ScriptFrame::GetCurrentFrame(); ScriptFrame *vframe = ScriptFrame::GetCurrentFrame();
Array::Ptr self = static_cast<Array::Ptr>(vframe->Self); Array::Ptr self = static_cast<Array::Ptr>(vframe->Self);
REQUIRE_NOT_NULL(self); REQUIRE_NOT_NULL(self);
return self->Join(separator);
Value result;
bool first = true;
ObjectLock olock(self);
for (const Value& item : self) {
if (first) {
first = false;
} else {
result = result + separator;
}
result = result + item;
}
return result;
} }
static Array::Ptr ArrayReverse() static Array::Ptr ArrayReverse()

20
lib/base/array.cpp
View File

@ -297,6 +297,26 @@ String Array::ToString() const
return msgbuf.str(); return msgbuf.str();
} }
Value Array::Join(const Value& separator) const
{
Value result;
bool first = true;
ObjectLock olock(this);
for (const Value& item : m_Data) {
if (first) {
first = false;
} else {
result = result + separator;
}
result = result + item;
}
return result;
}
Array::Ptr Array::Unique() const Array::Ptr Array::Unique() const
{ {
std::set<Value> result; std::set<Value> result;

1
lib/base/array.hpp
View File

@ -94,6 +94,7 @@ public:
void Sort(bool overrideFrozen = false); void Sort(bool overrideFrozen = false);
String ToString() const override; String ToString() const override;
Value Join(const Value& separator) const;
Array::Ptr Unique() const; Array::Ptr Unique() const;
void Freeze(); void Freeze();

17
lib/base/tlsutility.cpp
View File

@ -176,6 +176,23 @@ void SetCipherListToSSLContext(const std::shared_ptr<boost::asio::ssl::context>&
<< boost::errinfo_api_function("SSL_CTX_set_cipher_list") << boost::errinfo_api_function("SSL_CTX_set_cipher_list")
<< errinfo_openssl_error(ERR_peek_error())); << errinfo_openssl_error(ERR_peek_error()));
} }
#if OPENSSL_VERSION_NUMBER >= 0x10100000L
//With OpenSSL 1.1.0, there might not be any returned 0.
STACK_OF(SSL_CIPHER) *ciphers;
Array::Ptr cipherNames = new Array();
ciphers = SSL_CTX_get_ciphers(context->native_handle());
for (int i = 0; i < sk_SSL_CIPHER_num(ciphers); i++) {
const SSL_CIPHER *cipher = sk_SSL_CIPHER_value(ciphers, i);
String cipher_name = SSL_CIPHER_get_name(cipher);
cipherNames->Add(cipher_name);
}
Log(LogNotice, "TlsUtility")
<< "Available TLS cipher list: " << cipherNames->Join(" ");
#endif /* OPENSSL_VERSION_NUMBER >= 0x10100000L */
} }
/** /**