Головна сторінка Огляд Довідка
Реєстрація Увійти
jochu_liu
/
WWKJ_UDP_HP_SOCKET
Слідкувати 1
Зірка 0
Відгалуження 0
Файли Проблеми 0 Запити на злиття 0 Wiki
Дерево: 0fb007d16d
Гілки Теги
WWKJ_UDP_HP_...
/
HPSocketCS
/
SSLHttpServer.cs

SSLHttpServer.cs 6.9 KB
Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193 
  1. using System;
    2. 

  2. using System.Collections.Generic;
    3. 

  3. using System.Linq;
    4. 

  4. using System.Text;
    5. 

  5. using System.Threading;
    6. 

  6. 

  7. namespace HPSocketCS
    8. 

  8. {
    9. 

  9.     public class HttpsServer : SSLHttpServer
    10. 

  10.     {
    11. 

  11.         public HttpsServer()
    12. 

  12.            : base()
    13. 

  13.         {
    14. 

  14. 

  15.         }
    16. 

  16.         public HttpsServer(SSLVerifyMode verifyModel, string pemCertFile, string pemKeyFile, string keyPasswod, string caPemCertFileOrPath, SSLSdk.SNIServerNameCallback sniServerNameCallback)
    17. 

  17.              : base(verifyModel,pemCertFile, pemKeyFile,keyPasswod,caPemCertFileOrPath, sniServerNameCallback)
    18. 

  18.         {
    19. 

  19.         }
    20. 

  20.     }
    21. 

  21.     public class SSLHttpServer : HttpServer
    22. 

  22.     {
    23. 

  23.         /// <summary>
    24. 

  24.         /// 验证模式
    25. 

  25.         /// </summary>
    26. 

  26.         public SSLVerifyMode VerifyMode { get; set; }
    27. 

  27.         /// <summary>
    28. 

  28.         /// 证书文件(客户端可选)
    29. 

  29.         /// </summary>
    30. 

  30.         public string PemCertFile { get; set; }
    31. 

  31.         /// <summary>
    32. 

  32.         /// 私钥文件(客户端可选)
    33. 

  33.         /// </summary>
    34. 

  34.         public string PemKeyFile { get; set; }
    35. 

  35.         /// <summary>
    36. 

  36.         /// 私钥密码(没有密码则为空)
    37. 

  37.         /// </summary>
    38. 

  38.         public string KeyPasswod { get; set; }
    39. 

  39.         /// <summary>
    40. 

  40.         /// CA 证书文件或目录(单向验证或客户端可选)
    41. 

  41.         /// </summary>
    42. 

  42.         public string CAPemCertFileOrPath { get; set; }
    43. 

  43. 

  44.         /// <summary>
    45. 

  45.         /// 名称:SNI 服务名称回调函数
    46. 

  46.         /// 描述:根据服务器名称选择 SSL 证书
    47. 

  47.         /// 返回值:
    48. 

  48.         /// 0	 -- 成功,使用默认 SSL 证书
    49. 

  49.         /// 正数	 -- 成功,使用返回值对应的 SNI 主机证书
    50. 

  50.         /// 负数	 -- 失败,中断 SSL 握手
    51. 

  51.         /// </summary>
    52. 

  52.         /// <param name="serverName"></param>
    53. 

  53.         /// <returns></returns>
    54. 

  54.         public SSLSdk.SNIServerNameCallback SNIServerNameCallback { get; set; }
    55. 

  55. 

  56. 

  57.         public SSLHttpServer()
    58. 

  58.         {
    59. 

  59.         }
    60. 

  60. 

  61.         /// <summary>
    62. 

  62.         /// 
    63. 

  63.         /// </summary>
    64. 

  64.         /// <param name="verifyModel">验证模式</param>
    65. 

  65.         /// <param name="pemCertFile">证书文件</param>
    66. 

  66.         /// <param name="pemKeyFile">私钥文件</param>
    67. 

  67.         /// <param name="keyPasswod">私钥密码(没有密码则为空)</param>
    68. 

  68.         /// <param name="caPemCertFileOrPath">CA 证书文件或目录(单向验证或客户端可选)</param>
    69. 

  69.         public SSLHttpServer(SSLVerifyMode verifyModel, string pemCertFile, string pemKeyFile, string keyPasswod, string caPemCertFileOrPath, SSLSdk.SNIServerNameCallback sniServerNameCallback)
    70. 

  70.         {
    71. 

  71.             this.VerifyMode = verifyModel;
    72. 

  72.             this.PemCertFile = pemCertFile;
    73. 

  73.             this.PemKeyFile = pemKeyFile;
    74. 

  74.             this.KeyPasswod = keyPasswod;
    75. 

  75.             this.CAPemCertFileOrPath = caPemCertFileOrPath;
    76. 

  76.             this.SNIServerNameCallback = sniServerNameCallback;
    77. 

  77. 

  78.         }
    79. 

  79.         
    80. 

  80. 

  81.         protected override bool CreateListener()
    82. 

  82.         {
    83. 

  83.             if (IsCreate == true || pListener != IntPtr.Zero || pServer != IntPtr.Zero)
    84. 

  84.             {
    85. 

  85.                 return false;
    86. 

  86.             }
    87. 

  87. 

  88.             pListener = HttpSdk.Create_HP_HttpServerListener();
    89. 

  89.             if (pListener == IntPtr.Zero)
    90. 

  90.             {
    91. 

  91.                 return false;
    92. 

  92.             }
    93. 

  93.             pServer = SSLHttpSdk.Create_HP_HttpsServer(pListener);
    94. 

  94.             if (pServer == IntPtr.Zero)
    95. 

  95.             {
    96. 

  96.                 return false;
    97. 

  97.             }
    98. 

  98. 

  99.             IsCreate = true;
    100. 

  100. 

  101.             return true;
    102. 

  102.         }
    103. 

  103. 

  104.         /// <summary>
    105. 

  105.         /// 初始化SSL环境
    106. 

  106.         /// </summary>
    107. 

  107.         /// <param name="callback"></param>
    108. 

  108.         /// <returns></returns>
    109. 

  109.         public virtual bool Initialize()
    110. 

  110.         {
    111. 

  111.             if (pServer != IntPtr.Zero)
    112. 

  112.             {
    113. 

  113.                 PemCertFile = string.IsNullOrWhiteSpace(PemCertFile) ? null : PemCertFile;
    114. 

  114.                 PemKeyFile = string.IsNullOrWhiteSpace(PemKeyFile) ? null : PemKeyFile;
    115. 

  115.                 KeyPasswod = string.IsNullOrWhiteSpace(KeyPasswod) ? null : KeyPasswod;
    116. 

  116.                 CAPemCertFileOrPath = string.IsNullOrWhiteSpace(CAPemCertFileOrPath) ? null : CAPemCertFileOrPath;
    117. 

  117.                 
    118. 

  118.                 return SSLSdk.HP_SSLServer_SetupSSLContext(pServer, VerifyMode, PemCertFile, PemKeyFile, KeyPasswod, CAPemCertFileOrPath, SNIServerNameCallback);
    119. 

  119.             }
    120. 

  120. 

  121.             return false;
    122. 

  122. 

  123.         }
    124. 

  124. 

  125.         /// <summary>
    126. 

  126.         /// 反初始化SSL环境
    127. 

  127.         /// </summary>
    128. 

  128.         public virtual void Uninitialize()
    129. 

  129.         {
    130. 

  130.             if (pServer != IntPtr.Zero)
    131. 

  131.             {
    132. 

  132.                 SSLSdk.HP_SSLServer_CleanupSSLContext(pServer);
    133. 

  133.             }
    134. 

  134.         }
    135. 

  135. 

  136.         public new bool Start()
    137. 

  137.         {
    138. 

  138.             return base.Start();
    139. 

  139.         }
    140. 

  140. 

  141.         public override void Destroy()
    142. 

  142.         {
    143. 

  143.             Stop();
    144. 

  144. 

  145.             if (pServer != IntPtr.Zero)
    146. 

  146.             {
    147. 

  147.                 SSLHttpSdk.Destroy_HP_HttpsServer(pServer);
    148. 

  148.                 pServer = IntPtr.Zero;
    149. 

  149.             }
    150. 

  150.             if (pListener != IntPtr.Zero)
    151. 

  151.             {
    152. 

  152.                 HttpSdk.Destroy_HP_HttpServerListener(pListener);
    153. 

  153.                 pListener = IntPtr.Zero;
    154. 

  154.             }
    155. 

  155. 

  156.             IsCreate = false;
    157. 

  157.         }
    158. 

  158. 

  159.         /// <summary>
    160. 

  160.         /// 名称:增加 SNI 主机证书(只用于服务端)
    161. 

  161.         /// 描述:SSL 服务端在 SetupSSLContext() 成功后可以调用本方法增加多个 SNI 主机证书
    162. 

  162.         /// 返回值:正数		-- 成功,并返回 SNI 主机证书对应的索引,该索引用于在 SNI 回调函数中定位 SNI 主机
    163. 

  163.         /// 返回值:负数		-- 失败,可通过 SYS_GetLastError() 获取失败原因
    164. 

  164.         /// </summary>
    165. 

  165.         /// <param name="verifyMode">SSL 验证模式(参考 EnSSLVerifyMode)</param>
    166. 

  166.         /// <param name="pemCertFile">证书文件</param>
    167. 

  167.         /// <param name="pemKeyFile">私钥文件</param>
    168. 

  168.         /// <param name="keyPasswod">私钥密码(没有密码则为空)</param>
    169. 

  169.         /// <param name="caPemCertFileOrPath">CA 证书文件或目录(单向验证可选)</param>
    170. 

  170.         /// <returns></returns>
    171. 

  171.         public int AddServerContext(SSLVerifyMode verifyMode, string pemCertFile, string pemKeyFile, string keyPasswod, string caPemCertFileOrPath)
    172. 

  172.         {
    173. 

  173.             /*if (SSLSdk.HP_SSL_IsValid() == false)
    174. 

  174.             {
    175. 

  175.                 throw new InvalidOperationException("请先调用Initialize()方法初始化SSL环境");
    176. 

  176.             }*/
    177. 

  177. 

  178.             if (string.IsNullOrWhiteSpace(pemCertFile))
    179. 

  179.             {
    180. 

  180.                 throw new ArgumentException("参数无效", pemCertFile);
    181. 

  181.             }
    182. 

  182.             if (string.IsNullOrWhiteSpace(pemKeyFile))
    183. 

  183.             {
    184. 

  184.                 throw new ArgumentException("参数无效", pemKeyFile);
    185. 

  185.             }
    186. 

  186.             keyPasswod = string.IsNullOrWhiteSpace(keyPasswod) ? null : keyPasswod;
    187. 

  187.             caPemCertFileOrPath = string.IsNullOrWhiteSpace(caPemCertFileOrPath) ? null : caPemCertFileOrPath;
    188. 

  188. 

  189.             return SSLSdk.HP_SSLServer_AddSSLContext(pServer, verifyMode, pemCertFile, pemKeyFile, KeyPasswod, caPemCertFileOrPath);
    190. 

  190.         }
    191. 

  191.     }
    192. 

  192. }
    193. 

  193.