| /* |
| * |
| * Copyright 2015, Google Inc. |
| * All rights reserved. |
| * |
| * Redistribution and use in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions are |
| * met: |
| * |
| * * Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * * Redistributions in binary form must reproduce the above |
| * copyright notice, this list of conditions and the following disclaimer |
| * in the documentation and/or other materials provided with the |
| * distribution. |
| * * Neither the name of Google Inc. nor the names of its |
| * contributors may be used to endorse or promote products derived from |
| * this software without specific prior written permission. |
| * |
| * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS |
| * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT |
| * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR |
| * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT |
| * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
| * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT |
| * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
| * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY |
| * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT |
| * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE |
| * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| * |
| */ |
| |
| #include "server_credentials.h" |
| |
| #ifdef HAVE_CONFIG_H |
| #include "config.h" |
| #endif |
| |
| #include <php.h> |
| #include <php_ini.h> |
| #include <ext/standard/info.h> |
| #include <ext/spl/spl_exceptions.h> |
| #include "php_grpc.h" |
| |
| #include <zend_exceptions.h> |
| #include <zend_hash.h> |
| |
| #include <grpc/grpc.h> |
| #include <grpc/grpc_security.h> |
| |
| zend_class_entry *grpc_ce_server_credentials; |
| |
| /* Frees and destroys an instace of wrapped_grpc_server_credentials */ |
| void free_wrapped_grpc_server_credentials(void *object TSRMLS_DC) { |
| wrapped_grpc_server_credentials *creds = |
| (wrapped_grpc_server_credentials *)object; |
| if (creds->wrapped != NULL) { |
| grpc_server_credentials_release(creds->wrapped); |
| } |
| efree(creds); |
| } |
| |
| /* Initializes an instace of wrapped_grpc_server_credentials to be associated |
| * with an object of a class specified by class_type */ |
| zend_object_value create_wrapped_grpc_server_credentials( |
| zend_class_entry *class_type TSRMLS_DC) { |
| zend_object_value retval; |
| wrapped_grpc_server_credentials *intern; |
| |
| intern = (wrapped_grpc_server_credentials *)emalloc( |
| sizeof(wrapped_grpc_server_credentials)); |
| memset(intern, 0, sizeof(wrapped_grpc_server_credentials)); |
| |
| zend_object_std_init(&intern->std, class_type TSRMLS_CC); |
| object_properties_init(&intern->std, class_type); |
| retval.handle = zend_objects_store_put( |
| intern, (zend_objects_store_dtor_t)zend_objects_destroy_object, |
| free_wrapped_grpc_server_credentials, NULL TSRMLS_CC); |
| retval.handlers = zend_get_std_object_handlers(); |
| return retval; |
| } |
| |
| zval *grpc_php_wrap_server_credentials(grpc_server_credentials *wrapped TSRMLS_DC) { |
| zval *server_credentials_object; |
| MAKE_STD_ZVAL(server_credentials_object); |
| object_init_ex(server_credentials_object, grpc_ce_server_credentials); |
| wrapped_grpc_server_credentials *server_credentials = |
| (wrapped_grpc_server_credentials *)zend_object_store_get_object( |
| server_credentials_object TSRMLS_CC); |
| server_credentials->wrapped = wrapped; |
| return server_credentials_object; |
| } |
| |
| /** |
| * Create SSL credentials. |
| * @param string pem_root_certs PEM encoding of the server root certificates |
| * @param string pem_private_key PEM encoding of the client's private key |
| * @param string pem_cert_chain PEM encoding of the client's certificate chain |
| * @return Credentials The new SSL credentials object |
| */ |
| PHP_METHOD(ServerCredentials, createSsl) { |
| char *pem_root_certs = 0; |
| grpc_ssl_pem_key_cert_pair pem_key_cert_pair; |
| |
| int root_certs_length = 0, private_key_length, cert_chain_length; |
| |
| /* "s!ss" == 1 nullable string, 2 strings */ |
| /* TODO: support multiple key cert pairs. */ |
| if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "s!ss", &pem_root_certs, |
| &root_certs_length, &pem_key_cert_pair.private_key, |
| &private_key_length, &pem_key_cert_pair.cert_chain, |
| &cert_chain_length) == FAILURE) { |
| zend_throw_exception(spl_ce_InvalidArgumentException, |
| "createSsl expects 3 strings", 1 TSRMLS_CC); |
| return; |
| } |
| /* TODO: add a client_certificate_request field in ServerCredentials and pass |
| * it as the last parameter. */ |
| grpc_server_credentials *creds = grpc_ssl_server_credentials_create_ex( |
| pem_root_certs, &pem_key_cert_pair, 1, |
| GRPC_SSL_DONT_REQUEST_CLIENT_CERTIFICATE, NULL); |
| zval *creds_object = grpc_php_wrap_server_credentials(creds TSRMLS_CC); |
| RETURN_DESTROY_ZVAL(creds_object); |
| } |
| |
| static zend_function_entry server_credentials_methods[] = { |
| PHP_ME(ServerCredentials, createSsl, NULL, |
| ZEND_ACC_PUBLIC | ZEND_ACC_STATIC) PHP_FE_END}; |
| |
| void grpc_init_server_credentials(TSRMLS_D) { |
| zend_class_entry ce; |
| INIT_CLASS_ENTRY(ce, "Grpc\\ServerCredentials", server_credentials_methods); |
| ce.create_object = create_wrapped_grpc_server_credentials; |
| grpc_ce_server_credentials = zend_register_internal_class(&ce TSRMLS_CC); |
| } |