[Box Backup-commit] COMMIT r2090 - box/trunk/lib/server
boxbackup-dev@fluffy.co.uk
boxbackup-dev@fluffy.co.uk
Thu, 7 Feb 2008 17:37:01 +0000 (UTC)
Author: chris
Date: 2008-02-07 17:37:00 +0000 (Thu, 07 Feb 2008)
New Revision: 2090
Modified:
box/trunk/lib/server/SSLLib.cpp
box/trunk/lib/server/SSLLib.h
box/trunk/lib/server/SocketStreamTLS.cpp
box/trunk/lib/server/TLSContext.cpp
Log:
Improve error messages when loading SSL key files fails.
Modified: box/trunk/lib/server/SSLLib.cpp
===================================================================
--- box/trunk/lib/server/SSLLib.cpp 2008-02-05 23:34:14 UTC (rev 2089)
+++ box/trunk/lib/server/SSLLib.cpp 2008-02-07 17:37:00 UTC (rev 2090)
@@ -63,14 +63,14 @@
// Created: 2003/08/06
//
// --------------------------------------------------------------------------
-void SSLLib::LogError(const char *ErrorDuringAction)
+void SSLLib::LogError(const std::string& rErrorDuringAction)
{
unsigned long errcode;
char errname[256]; // SSL docs say at least 120 bytes
while((errcode = ERR_get_error()) != 0)
{
::ERR_error_string_n(errcode, errname, sizeof(errname));
- BOX_ERROR("SSL error during " << ErrorDuringAction << ": " <<
+ BOX_ERROR("SSL error while " << rErrorDuringAction << ": " <<
errname);
}
}
Modified: box/trunk/lib/server/SSLLib.h
===================================================================
--- box/trunk/lib/server/SSLLib.h 2008-02-05 23:34:14 UTC (rev 2089)
+++ box/trunk/lib/server/SSLLib.h 2008-02-07 17:37:00 UTC (rev 2090)
@@ -29,7 +29,7 @@
namespace SSLLib
{
void Initialise();
- void LogError(const char *ErrorDuringAction);
+ void LogError(const std::string& rErrorDuringAction);
};
#endif // SSLLIB__H
Modified: box/trunk/lib/server/SocketStreamTLS.cpp
===================================================================
--- box/trunk/lib/server/SocketStreamTLS.cpp 2008-02-05 23:34:14 UTC (rev 2089)
+++ box/trunk/lib/server/SocketStreamTLS.cpp 2008-02-07 17:37:00 UTC (rev 2090)
@@ -123,7 +123,7 @@
mpBIO = ::BIO_new(::BIO_s_socket());
if(mpBIO == 0)
{
- SSLLib::LogError("Create socket bio");
+ SSLLib::LogError("creating socket bio");
THROW_EXCEPTION(ServerException, TLSAllocationFailed)
}
@@ -134,7 +134,7 @@
mpSSL = ::SSL_new(rContext.GetRawContext());
if(mpSSL == 0)
{
- SSLLib::LogError("Create ssl");
+ SSLLib::LogError("creating SSL object");
THROW_EXCEPTION(ServerException, TLSAllocationFailed)
}
@@ -202,12 +202,12 @@
// Error occured
if(IsServer)
{
- SSLLib::LogError("Accept");
+ SSLLib::LogError("accepting connection");
THROW_EXCEPTION(ConnectionException, Conn_TLSHandshakeFailed)
}
else
{
- SSLLib::LogError("Connect");
+ SSLLib::LogError("connecting");
THROW_EXCEPTION(ConnectionException, Conn_TLSHandshakeFailed)
}
}
@@ -334,7 +334,7 @@
break;
default:
- SSLLib::LogError("Read");
+ SSLLib::LogError("reading");
THROW_EXCEPTION(ConnectionException, Conn_TLSReadFailed)
break;
}
@@ -399,7 +399,7 @@
break;
default:
- SSLLib::LogError("Write");
+ SSLLib::LogError("writing");
THROW_EXCEPTION(ConnectionException, Conn_TLSWriteFailed)
break;
}
@@ -441,7 +441,7 @@
if(::SSL_shutdown(mpSSL) < 0)
{
- SSLLib::LogError("Shutdown");
+ SSLLib::LogError("shutting down");
THROW_EXCEPTION(ConnectionException, Conn_TLSShutdownFailed)
}
Modified: box/trunk/lib/server/TLSContext.cpp
===================================================================
--- box/trunk/lib/server/TLSContext.cpp 2008-02-05 23:34:14 UTC (rev 2089)
+++ box/trunk/lib/server/TLSContext.cpp 2008-02-07 17:37:00 UTC (rev 2090)
@@ -75,19 +75,25 @@
// Setup our identity
if(::SSL_CTX_use_certificate_chain_file(mpContext, CertificatesFile) != 1)
{
- SSLLib::LogError("Load certificates");
+ std::string msg = "loading certificates from ";
+ msg += CertificatesFile;
+ SSLLib::LogError(msg);
THROW_EXCEPTION(ServerException, TLSLoadCertificatesFailed)
}
if(::SSL_CTX_use_PrivateKey_file(mpContext, PrivateKeyFile, SSL_FILETYPE_PEM) != 1)
{
- SSLLib::LogError("Load private key");
+ std::string msg = "loading private key from ";
+ msg += PrivateKeyFile;
+ SSLLib::LogError(msg);
THROW_EXCEPTION(ServerException, TLSLoadPrivateKeyFailed)
}
// Setup the identify of CAs we trust
if(::SSL_CTX_load_verify_locations(mpContext, TrustedCAsFile, NULL) != 1)
{
- SSLLib::LogError("Load CA cert");
+ std::string msg = "loading CA cert from ";
+ msg += TrustedCAsFile;
+ SSLLib::LogError(msg);
THROW_EXCEPTION(ServerException, TLSLoadTrustedCAsFailed)
}
@@ -99,7 +105,7 @@
// Setup allowed ciphers
if(::SSL_CTX_set_cipher_list(mpContext, CIPHER_LIST) != 1)
{
- SSLLib::LogError("Set cipher list");
+ SSLLib::LogError("setting cipher list to " CIPHER_LIST);
THROW_EXCEPTION(ServerException, TLSSetCiphersFailed)
}
}