mirrors/bun.sh
1
0
Fork 0
mirror of https://github.com/oven-sh/bun synced 2026-02-16 05:42:43 +00:00
Code Issues Packages Projects Releases Wiki Activity

addRootCerts

Browse Source
This commit is contained in:
Kai Tamkun
2025-06-05 19:53:39 -07:00
parent b0a7c945eb
commit 1bc25d3150
2 changed files with 17 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
src/bun.js/bindings/NodeTLS.cpp
View File

@@ -145,6 +145,14 @@ void NodeTLSSecureContext::setCACert(const ncrypto::BIOPointer& bio)
}
}
void NodeTLSSecureContext::setRootCerts()
{
ncrypto::ClearErrorOnReturn clearErrorOnReturn;
X509_STORE* store = getCertStore();
X509_STORE_up_ref(store);
SSL_CTX_set_cert_store(context(), store);
}
void NodeTLSSecureContext::setX509StoreFlag(unsigned long flags)
{
RELEASE_ASSERT(X509_STORE_set_flags(getCertStore(), flags) == 1);
@@ -395,11 +403,19 @@ JSC_DEFINE_HOST_FUNCTION(secureContextSetECDHCurve, (JSGlobalObject * globalObje
return JSC::encodedJSUndefined();
}
JSC_DEFINE_HOST_FUNCTION(secureContextAddRootCerts, (JSGlobalObject * globalObject, CallFrame* callFrame))
{
auto* thisObject = jsCast<NodeTLSSecureContext*>(callFrame->thisValue());
thisObject->setRootCerts();
return JSC::encodedJSUndefined();
}
static const HashTableValue NodeTLSSecureContextPrototypeTableValues[] = {
{ "init"_s, static_cast<unsigned>(PropertyAttribute::Function | PropertyAttribute::DontEnum), NoIntrinsic, { HashTableValue::NativeFunctionType, secureContextInit, 3 } },
{ "setCiphers"_s, static_cast<unsigned>(PropertyAttribute::Function | PropertyAttribute::DontEnum), NoIntrinsic, { HashTableValue::NativeFunctionType, secureContextSetCiphers, 1 } },
{ "addCACert"_s, static_cast<unsigned>(PropertyAttribute::Function | PropertyAttribute::DontEnum), NoIntrinsic, { HashTableValue::NativeFunctionType, secureContextAddCACert, 1 } },
{ "setECDHCurve"_s, static_cast<unsigned>(PropertyAttribute::Function | PropertyAttribute::DontEnum), NoIntrinsic, { HashTableValue::NativeFunctionType, secureContextSetECDHCurve, 1 } },
{ "addRootCerts"_s, static_cast<unsigned>(PropertyAttribute::Function | PropertyAttribute::DontEnum), NoIntrinsic, { HashTableValue::NativeFunctionType, secureContextAddRootCerts, 0 } },
};
static EncodedJSValue constructSecureContext(JSGlobalObject* globalObject, CallFrame* callFrame, JSValue newTarget = {})

1
src/bun.js/bindings/NodeTLS.h
View File

@@ -104,6 +104,7 @@ public:
void context(SSL_CTX* ctx) { m_context = { ctx, SSL_CTX_free }; }
void setCACert(const ncrypto::BIOPointer& bio);
void setRootCerts();
private:
std::unique_ptr<SSL_CTX, decltype(&SSL_CTX_free)> m_context { nullptr, nullptr };