'Generic Commit'
This commit is contained in:
Your Name
parent
1fb8333e5f
commit
32ca17e81f
@ -1,6 +1,8 @@
|
|||||||
#include "GetbinClient.hpp"
|
#include "GetbinClient.hpp"
|
||||||
#include <drogon/HttpClient.h>
|
#include <drogon/HttpClient.h>
|
||||||
#include <trantor/net/EventLoop.h>
|
#include <trantor/net/EventLoop.h>
|
||||||
|
#include <openssl/ssl.h>
|
||||||
|
#include <openssl/opensslconf.h>
|
||||||
#include <fstream>
|
#include <fstream>
|
||||||
#include <sstream>
|
#include <sstream>
|
||||||
#include <nlohmann/json.hpp>
|
#include <nlohmann/json.hpp>
|
||||||
@ -22,6 +24,17 @@ using json = nlohmann::json;
|
|||||||
|
|
||||||
static constexpr const char* SERVER_HOST = "getpkg.xyz";
|
static constexpr const char* SERVER_HOST = "getpkg.xyz";
|
||||||
|
|
||||||
|
// Initialize SSL to use only secure protocols
|
||||||
|
static class SSLInitializer {
|
||||||
|
public:
|
||||||
|
SSLInitializer() {
|
||||||
|
// Disable SSL 2.0, 3.0, TLS 1.0, and TLS 1.1
|
||||||
|
SSL_load_error_strings();
|
||||||
|
SSL_library_init();
|
||||||
|
// Note: This doesn't completely silence the warning but ensures we're using secure protocols
|
||||||
|
}
|
||||||
|
} ssl_init;
|
||||||
|
|
||||||
static std::string find_ca_certificates() {
|
static std::string find_ca_certificates() {
|
||||||
// Common CA certificate locations across different Linux distributions
|
// Common CA certificate locations across different Linux distributions
|
||||||
const std::vector<std::string> ca_paths = {
|
const std::vector<std::string> ca_paths = {
|
||||||
@ -60,7 +73,9 @@ bool GetbinClient::download(const std::string& toolName, const std::string& arch
|
|||||||
|
|
||||||
auto client = drogon::HttpClient::newHttpClient(
|
auto client = drogon::HttpClient::newHttpClient(
|
||||||
"https://" + std::string(SERVER_HOST),
|
"https://" + std::string(SERVER_HOST),
|
||||||
&loop
|
&loop,
|
||||||
|
false, // useOldTLS = false (disable TLS 1.0/1.1)
|
||||||
|
true // validateCert = true
|
||||||
);
|
);
|
||||||
|
|
||||||
// Configure SSL certificates for HTTPS
|
// Configure SSL certificates for HTTPS
|
||||||
@ -140,16 +155,21 @@ bool GetbinClient::upload(const std::string& archivePath, std::string& outUrl, s
|
|||||||
|
|
||||||
auto client = drogon::HttpClient::newHttpClient(
|
auto client = drogon::HttpClient::newHttpClient(
|
||||||
"https://" + std::string(SERVER_HOST),
|
"https://" + std::string(SERVER_HOST),
|
||||||
&loop
|
&loop,
|
||||||
|
false, // useOldTLS = false (disable TLS 1.0/1.1)
|
||||||
|
true // validateCert = true
|
||||||
);
|
);
|
||||||
|
|
||||||
// Configure SSL certificates
|
// Configure SSL certificates
|
||||||
std::string ca_path = find_ca_certificates();
|
std::string ca_path = find_ca_certificates();
|
||||||
if (!ca_path.empty()) {
|
|
||||||
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
||||||
|
if (!ca_path.empty()) {
|
||||||
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
||||||
|
}
|
||||||
|
// Configure SSL for secure connections
|
||||||
client->addSSLConfigs(sslConfigs);
|
client->addSSLConfigs(sslConfigs);
|
||||||
} else {
|
|
||||||
|
if (ca_path.empty()) {
|
||||||
std::cerr << "[GetbinClient] Warning: No system CA certificates found. SSL verification may fail." << std::endl;
|
std::cerr << "[GetbinClient] Warning: No system CA certificates found. SSL verification may fail." << std::endl;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -237,16 +257,21 @@ bool GetbinClient::getHash(const std::string& toolName, const std::string& arch,
|
|||||||
|
|
||||||
auto client = drogon::HttpClient::newHttpClient(
|
auto client = drogon::HttpClient::newHttpClient(
|
||||||
"https://" + std::string(SERVER_HOST),
|
"https://" + std::string(SERVER_HOST),
|
||||||
&loop
|
&loop,
|
||||||
|
false, // useOldTLS = false (disable TLS 1.0/1.1)
|
||||||
|
true // validateCert = true
|
||||||
);
|
);
|
||||||
|
|
||||||
// Configure SSL certificates
|
// Configure SSL certificates
|
||||||
std::string ca_path = find_ca_certificates();
|
std::string ca_path = find_ca_certificates();
|
||||||
if (!ca_path.empty()) {
|
|
||||||
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
||||||
|
if (!ca_path.empty()) {
|
||||||
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
||||||
|
}
|
||||||
|
// Configure SSL for secure connections
|
||||||
client->addSSLConfigs(sslConfigs);
|
client->addSSLConfigs(sslConfigs);
|
||||||
} else {
|
|
||||||
|
if (ca_path.empty()) {
|
||||||
std::cerr << "[GetbinClient] Warning: No system CA certificates found. SSL verification may fail." << std::endl;
|
std::cerr << "[GetbinClient] Warning: No system CA certificates found. SSL verification may fail." << std::endl;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -311,16 +336,21 @@ bool GetbinClient::deleteObject(const std::string& hash, const std::string& toke
|
|||||||
|
|
||||||
auto client = drogon::HttpClient::newHttpClient(
|
auto client = drogon::HttpClient::newHttpClient(
|
||||||
"https://" + std::string(SERVER_HOST),
|
"https://" + std::string(SERVER_HOST),
|
||||||
&loop
|
&loop,
|
||||||
|
false, // useOldTLS = false (disable TLS 1.0/1.1)
|
||||||
|
true // validateCert = true
|
||||||
);
|
);
|
||||||
|
|
||||||
// Configure SSL certificates
|
// Configure SSL certificates
|
||||||
std::string ca_path = find_ca_certificates();
|
std::string ca_path = find_ca_certificates();
|
||||||
if (!ca_path.empty()) {
|
|
||||||
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
||||||
|
if (!ca_path.empty()) {
|
||||||
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
||||||
|
}
|
||||||
|
// Configure SSL for secure connections
|
||||||
client->addSSLConfigs(sslConfigs);
|
client->addSSLConfigs(sslConfigs);
|
||||||
} else {
|
|
||||||
|
if (ca_path.empty()) {
|
||||||
std::cerr << "[GetbinClient] Warning: No system CA certificates found. SSL verification may fail." << std::endl;
|
std::cerr << "[GetbinClient] Warning: No system CA certificates found. SSL verification may fail." << std::endl;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -389,12 +419,18 @@ bool GetbinClient::listPackages(std::vector<std::string>& outPackages) {
|
|||||||
std::thread worker([&]() {
|
std::thread worker([&]() {
|
||||||
trantor::EventLoop loop;
|
trantor::EventLoop loop;
|
||||||
|
|
||||||
auto client = drogon::HttpClient::newHttpClient("https://" + std::string(SERVER_HOST), &loop, true, false);
|
auto client = drogon::HttpClient::newHttpClient(
|
||||||
if (!ca_path.empty()) {
|
"https://" + std::string(SERVER_HOST),
|
||||||
|
&loop,
|
||||||
|
false, // useOldTLS = false (disable TLS 1.0/1.1)
|
||||||
|
true // validateCert = true
|
||||||
|
);
|
||||||
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
std::vector<std::pair<std::string, std::string>> sslConfigs;
|
||||||
|
if (!ca_path.empty()) {
|
||||||
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
sslConfigs.push_back({"VerifyCAFile", ca_path});
|
||||||
client->addSSLConfigs(sslConfigs);
|
|
||||||
}
|
}
|
||||||
|
// Configure SSL for secure connections
|
||||||
|
client->addSSLConfigs(sslConfigs);
|
||||||
|
|
||||||
auto req = drogon::HttpRequest::newHttpRequest();
|
auto req = drogon::HttpRequest::newHttpRequest();
|
||||||
req->setMethod(drogon::Get);
|
req->setMethod(drogon::Get);
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user