SSL fixes for validator list (RIPD-1558)

[bachase]

• Configures domain name for SNI
• On windows, uses wincrypt API to use system's root certificates.

[bachase]

The first commit is the only one required for published validator lists. I believe the second commit fixes remaining spots in rippled that with a similar issue, but I'm not sure that the current use of those classes requires the changes.

[codecov-io]

Codecov Report

Merging #2275 into develop will decrease coverage by 0.01%.
The diff coverage is 33.33%.

@@             Coverage Diff             @@
##           develop    #2275      +/-   ##
===========================================
- Coverage    70.11%   70.09%   -0.02%     
===========================================
  Files          689      690       +1     
  Lines        50800    50808       +8     
===========================================
- Hits         35617    35613       -4     
- Misses       15183    15195      +12

Impacted Files	Coverage Δ
src/ripple/app/misc/detail/WorkSSL.h	0% <0%> (ø)	⬆️
src/ripple/net/AutoSocket.h	0% <0%> (ø)	⬆️
src/ripple/net/impl/RegisterSSLCerts.cpp	100% <100%> (ø)
src/ripple/net/impl/HTTPClient.cpp	5.96% <33.33%> (-0.06%)	⬇️
src/ripple/basics/DecayingSample.h	77.77% <0%> (-8.34%)	⬇️
src/ripple/app/misc/SHAMapStoreImp.cpp	78.92% <0%> (-1.03%)	⬇️
src/ripple/net/impl/RPCSub.cpp	37.33% <0%> (-0.83%)	⬇️
src/ripple/app/main/Application.cpp	60.42% <0%> (-0.12%)	⬇️
src/ripple/protocol/impl/Serializer.cpp	70.3% <0%> (+0.34%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update cafe18c...af0d609. Read the comment docs.

[wilsonianb]

From what I can tell, HTTPClient is only used by RPCSub (Subscription object for JSON-RPC), which seem to be deprecated
https://ripple.com/build/rippled-apis/#subscriptions

JSON-RPC support for subscription callbacks is deprecated and may not work as expected.

[wilsonianb]

I'm not sure how this would fail, but should we log if it does?

[bachase]

Probably worth doing. I'll look into making an error_code.

[wilsonianb]

Isn't pContext guaranteed to be NULL here?

[bachase]

Yes, will fix.

[wilsonianb]

Just to confirm, the reason we don't use SSL_CTX_set1_cert_store here is because
https://www.openssl.org/docs/manmaster/man3/SSL_CTX_set_cert_store.html

SSL_CTX_set_cert_store() does not increment the store's reference count, so it should not be used to assign an X509_STORE that is owned by another SSL_CTX.

[bachase]

Correct. I believe since we create the store above, we do not need to increment the reference count.

[bachase]

Also, it looks like the reference counted version is not available in the 1.0.* versions we are using.

[wilsonianb]

It looks like BEAST_WINDOWS is only used in src/ripple/beast/
Should a different macro be used here?

[bachase]

I can use boost predef instead.

[bachase]

d2i_X509 actually modifies the pointer taken as the second argument; I will fix to use a local instead.

[bachase]

@HowardHinnant can you do a pass on the use of unique_ptr to manage the structures allocated from C apis? This is all in https://github.com/ripple/rippled/pull/2275/files#diff-f52b8187d06f944bb1c240a3c83c5d6a

[HowardHinnant]

This looks good to me! The ownership properties of these functions looks complex and poorly documented. Nice use of comments to clarify what owns what and when.

[wilsonianb]

I didn't test on Windows but LGTM 👍
I think you could take or leave the HTTPClient changes if it really is deprecated.

[wilsonianb]

This is ok as is (returning with ec and throwing if anything goes wrong), but I'm wondering if we could alternatively be ok calling continue here (and on line 85) and just having the caller log ec.

[miguelportilla]

Stale date

[miguelportilla]

nit: misaligned

[miguelportilla]

👍

[bachase]

Merged as a4a43a4