redis/src/cli_common.h

#ifndef __CLICOMMON_H
#define __CLICOMMON_H

#include <hiredis.h>

typedef struct cliSSLconfig {
    /* Requested SNI, or NULL */
    char *sni;
    /* CA Certificate file, or NULL */
    char *cacert;
    /* Directory where trusted CA certificates are stored, or NULL */
    char *cacertdir;
    /* Skip server certificate verification. */
    int skip_cert_verify;
    /* Client certificate to authenticate with, or NULL */
    char *cert;
    /* Private key file to authenticate with, or NULL */
    char *key;
    /* Preferred cipher list, or NULL (applies only to <= TLSv1.2) */
    char* ciphers;
    /* Preferred ciphersuites list, or NULL (applies only to TLSv1.3) */
    char* ciphersuites;
} cliSSLconfig;

/* Wrapper around redisSecureConnection to avoid hiredis_ssl dependencies if
 * not building with TLS support.
 */
int cliSecureConnection(redisContext *c, cliSSLconfig config, const char **err);

/* Wrapper around hiredis to allow arbitrary reads and writes.
 *
 * We piggybacks on top of hiredis to achieve transparent TLS support,
 * and use its internal buffers so it can co-exist with commands
 * previously/later issued on the connection.
 *
 * Interface is close to enough to read()/write() so things should mostly
 * work transparently.
 */

/* Write a raw buffer through a redisContext. If we already have something
 * in the buffer (leftovers from hiredis operations) it will be written
 * as well.
 */
ssize_t cliWriteConn(redisContext *c, const char *buf, size_t buf_len);

/* Wrapper around OpenSSL (libssl and libcrypto) initialisation.
 */
int cliSecureInit();

#endif /* __CLICOMMON_H */
TLS Support for redis-benchmark (#7959) 2020-10-28 07:00:54 +01:00			`#ifndef __CLICOMMON_H`
			`#define __CLICOMMON_H`

			`#include <hiredis.h>`

			`typedef struct cliSSLconfig {`
			`/* Requested SNI, or NULL */`
			`char *sni;`
			`/* CA Certificate file, or NULL */`
			`char *cacert;`
			`/* Directory where trusted CA certificates are stored, or NULL */`
			`char *cacertdir;`
Add --insecure option to command line tools. (#8416) Disable certificate validation, making it possible to connect to servers without configuring full trust chain. The use of this option is insecure and makes the connection vulnerable to man in the middle attacks. 2021-02-07 11:36:56 +01:00			`/* Skip server certificate verification. */`
			`int skip_cert_verify;`
TLS Support for redis-benchmark (#7959) 2020-10-28 07:00:54 +01:00			`/* Client certificate to authenticate with, or NULL */`
			`char *cert;`
			`/* Private key file to authenticate with, or NULL */`
			`char *key;`
Fixed some typos, add a spell check ci and others minor fix (#8890) This PR adds a spell checker CI action that will fail future PRs if they introduce typos and spelling mistakes. This spell checker is based on blacklist of common spelling mistakes, so it will not catch everything, but at least it is also unlikely to cause false positives. Besides that, the PR also fixes many spelling mistakes and types, not all are a result of the spell checker we use. Here's a summary of other changes: 1. Scanned the entire source code and fixes all sorts of typos and spelling mistakes (including missing or extra spaces). 2. Outdated function / variable / argument names in comments 3. Fix outdated keyspace masks error log when we check `config.notify-keyspace-events` in loadServerConfigFromString. 4. Trim the white space at the end of line in `module.c`. Check: https://github.com/redis/redis/pull/7751 5. Some outdated https link URLs. 6. Fix some outdated comment. Such as: - In README: about the rdb, we used to said create a `thread`, change to `process` - dbRandomKey function coment (about the dictGetRandomKey, change to dictGetFairRandomKey) - notifyKeyspaceEvent fucntion comment (add type arg) - Some others minor fix in comment (Most of them are incorrectly quoted by variable names) 7. Modified the error log so that users can easily distinguish between TCP and TLS in `changeBindAddr` 2021-06-10 14:39:33 +02:00			`/* Preferred cipher list, or NULL (applies only to <= TLSv1.2) */`
Enable specifying TLS ciphers(suites) in redis-cli/redis-benchmark (#8005) Enable specifying the preferred ciphers and/or ciphersuites for redis-cli/redis-benchmark. Co-authored-by: Yossi Gottlieb <yossigo@gmail.com> 2020-11-04 13:49:15 +01:00			`char* ciphers;`
Fixed some typos, add a spell check ci and others minor fix (#8890) This PR adds a spell checker CI action that will fail future PRs if they introduce typos and spelling mistakes. This spell checker is based on blacklist of common spelling mistakes, so it will not catch everything, but at least it is also unlikely to cause false positives. Besides that, the PR also fixes many spelling mistakes and types, not all are a result of the spell checker we use. Here's a summary of other changes: 1. Scanned the entire source code and fixes all sorts of typos and spelling mistakes (including missing or extra spaces). 2. Outdated function / variable / argument names in comments 3. Fix outdated keyspace masks error log when we check `config.notify-keyspace-events` in loadServerConfigFromString. 4. Trim the white space at the end of line in `module.c`. Check: https://github.com/redis/redis/pull/7751 5. Some outdated https link URLs. 6. Fix some outdated comment. Such as: - In README: about the rdb, we used to said create a `thread`, change to `process` - dbRandomKey function coment (about the dictGetRandomKey, change to dictGetFairRandomKey) - notifyKeyspaceEvent fucntion comment (add type arg) - Some others minor fix in comment (Most of them are incorrectly quoted by variable names) 7. Modified the error log so that users can easily distinguish between TCP and TLS in `changeBindAddr` 2021-06-10 14:39:33 +02:00			`/* Preferred ciphersuites list, or NULL (applies only to TLSv1.3) */`
Enable specifying TLS ciphers(suites) in redis-cli/redis-benchmark (#8005) Enable specifying the preferred ciphers and/or ciphersuites for redis-cli/redis-benchmark. Co-authored-by: Yossi Gottlieb <yossigo@gmail.com> 2020-11-04 13:49:15 +01:00			`char* ciphersuites;`
TLS Support for redis-benchmark (#7959) 2020-10-28 07:00:54 +01:00			`} cliSSLconfig;`

			`/* Wrapper around redisSecureConnection to avoid hiredis_ssl dependencies if`
			`* not building with TLS support.`
			`*/`
			`int cliSecureConnection(redisContext c, cliSSLconfig config, const char *err);`

			`/* Wrapper around hiredis to allow arbitrary reads and writes.`
			`*`
			`* We piggybacks on top of hiredis to achieve transparent TLS support,`
			`* and use its internal buffers so it can co-exist with commands`
			`* previously/later issued on the connection.`
			`*`
			`* Interface is close to enough to read()/write() so things should mostly`
			`* work transparently.`
			`*/`

			`/* Write a raw buffer through a redisContext. If we already have something`
			`* in the buffer (leftovers from hiredis operations) it will be written`
			`* as well.`
			`*/`
			`ssize_t cliWriteConn(redisContext c, const char buf, size_t buf_len);`

			`/* Wrapper around OpenSSL (libssl and libcrypto) initialisation.`
			`*/`
			`int cliSecureInit();`

			`#endif /* __CLICOMMON_H */`