1 /***************************************************************************
2 * Copyright (C) 2005-2020 by the Quassel Project *
3 * devel@quassel-irc.org *
5 * This program is free software; you can redistribute it and/or modify *
6 * it under the terms of the GNU General Public License as published by *
7 * the Free Software Foundation; either version 2 of the License, or *
8 * (at your option) version 3. *
10 * This program is distributed in the hope that it will be useful, *
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
13 * GNU General Public License for more details. *
15 * You should have received a copy of the GNU General Public License *
16 * along with this program; if not, write to the *
17 * Free Software Foundation, Inc., *
18 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. *
19 ***************************************************************************/
26 # include <QLinkedList>
27 # include <QSslCertificate>
29 # include <QTcpServer>
31 # include "metricsserver.h"
33 class SslServer : public QTcpServer
38 SslServer(QObject* parent = nullptr);
40 bool hasPendingConnections() const override { return !_pendingConnections.isEmpty(); }
41 QTcpSocket* nextPendingConnection() override;
43 const QSslCertificate& certificate() const { return _cert; }
44 const QSslKey& key() const { return _key; }
45 bool isCertValid() const { return _isCertValid; }
48 * Reloads SSL certificates used for connections
50 * If this command fails, it will try to maintain the most recent working certificate. Error
51 * conditions are automatically written to the log.
53 * @return True if certificates reloaded successfully, otherwise false.
57 void setMetricsServer(MetricsServer* metricsServer);
60 void incomingConnection(qintptr socketDescriptor) override;
62 bool setCertificate(const QString& path, const QString& keyPath);
66 * Loads SSL certificates used for connections
68 * If this command fails, it will try to maintain the most recent working certificate. Will log
69 * specific failure points, but does not offer verbose guidance.
71 * @return True if certificates loaded successfully, otherwise false.
74 QSslKey loadKey(QFile* keyFile);
76 MetricsServer* _metricsServer{nullptr};
78 QLinkedList<QTcpSocket*> _pendingConnections;
79 QSslCertificate _cert;
81 QList<QSslCertificate> _ca;
82 bool _isCertValid{false};
84 // Used when reloading certificates later
85 QString _sslCertPath; /// Path to the certificate file
86 QString _sslKeyPath; /// Path to the private key file (may be in same file as above)
88 QDateTime _certificateExpires;