search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
disable broken tests on net_4_0
[mcs.git] / class / System.ServiceModel / Mono.Security.Protocol.Tls / SslStreamBase.cs
blob988749b005bf68eac60da6a435e631655b49e608
1 // Transport Security Layer (TLS)
2 // Copyright (c) 2003-2004 Carlos Guzman Alvarez
3 // Copyright (C) 2006-2007 Novell, Inc (http://www.novell.com)
4 //
5 // Permission is hereby granted, free of charge, to any person obtaining
6 // a copy of this software and associated documentation files (the
7 // "Software"), to deal in the Software without restriction, including
8 // without limitation the rights to use, copy, modify, merge, publish,
9 // distribute, sublicense, and/or sell copies of the Software, and to
10 // permit persons to whom the Software is furnished to do so, subject to
11 // the following conditions:
12 //
13 // The above copyright notice and this permission notice shall be
14 // included in all copies or substantial portions of the Software.
15 //
16 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
17 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
18 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
19 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
20 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
21 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
22 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
23 //
24
25 using System;
26 using System.Collections;
27 using System.IO;
28 using System.Net;
29 using System.Net.Sockets;
30 using System.Security.Cryptography;
31 using System.Security.Cryptography.X509Certificates;
32 using System.Threading;
33
34 namespace Mono.Security.Protocol.Tls
35 {
36 public abstract class SslStreamBase: Stream, IDisposable
37 {
38 private delegate void AsyncHandshakeDelegate(InternalAsyncResult asyncResult, bool fromWrite);
39
40 #region Fields
41
42 static ManualResetEvent record_processing = new ManualResetEvent (true);
43
44 private const int WaitTimeOut = 5 * 60 * 1000;
45
46 internal Stream innerStream;
47 internal MemoryStream inputBuffer;
48 internal Context context;
49 internal RecordProtocol protocol;
50 internal bool ownsStream;
51 private volatile bool disposed;
52 private bool checkCertRevocationStatus;
53 private object negotiate;
54 private object read;
55 private object write;
56 private ManualResetEvent negotiationComplete;
57
58 #endregion
59
60
61 #region Constructors
62
63 protected SslStreamBase(
64 Stream stream,
65 bool ownsStream)
66 {
67 if (stream == null)
68 {
69 throw new ArgumentNullException("stream is null.");
70 }
71 if (!stream.CanRead || !stream.CanWrite)
72 {
73 throw new ArgumentNullException("stream is not both readable and writable.");
74 }
75
76 this.inputBuffer = new MemoryStream();
77 this.innerStream = stream;
78 this.ownsStream = ownsStream;
79 this.negotiate = new object();
80 this.read = new object();
81 this.write = new object();
82 this.negotiationComplete = new ManualResetEvent(false);
83 }
84
85 #endregion
86
87 #region Handshakes
88 private void AsyncHandshakeCallback(IAsyncResult asyncResult)
89 {
90 InternalAsyncResult internalResult = asyncResult.AsyncState as InternalAsyncResult;
91
92 try
93 {
94 try
95 {
96 this.OnNegotiateHandshakeCallback(asyncResult);
97 }
98 catch (TlsException ex)
99 {
100 this.protocol.SendAlert(ex.Alert);
101
102 throw new IOException("The authentication or decryption has failed.", ex);
103 }
104 catch (Exception ex)
105 {
106 this.protocol.SendAlert(AlertDescription.InternalError);
107
108 throw new IOException("The authentication or decryption has failed.", ex);
109 }
110
111 if (internalResult.ProceedAfterHandshake)
112 {
113 //kick off the read or write process (whichever called us) after the handshake is complete
114 if (internalResult.FromWrite)
115 {
116 InternalBeginWrite(internalResult);
117 }
118 else
119 {
120 InternalBeginRead(internalResult);
121 }
122 negotiationComplete.Set();
123 }
124 else
125 {
126 negotiationComplete.Set();
127 internalResult.SetComplete();
128 }
129
130 }
131 catch (Exception ex)
132 {
133 negotiationComplete.Set();
134 internalResult.SetComplete(ex);
135 }
136 }
137
138 internal bool MightNeedHandshake
139 {
140 get
141 {
142 if (this.context.HandshakeState == HandshakeState.Finished)
143 {
144 return false;
145 }
146 else
147 {
148 lock (this.negotiate)
149 {
150 return (this.context.HandshakeState != HandshakeState.Finished);
151 }
152 }
153 }
154 }
155
156 internal void NegotiateHandshake()
157 {
158 if (this.MightNeedHandshake)
159 {
160 InternalAsyncResult ar = new InternalAsyncResult(null, null, null, 0, 0, false, false);
161
162 //if something already started negotiation, wait for it.
163 //otherwise end it ourselves.
164 if (!BeginNegotiateHandshake(ar))
165 {
166 this.negotiationComplete.WaitOne();
167 }
168 else
169 {
170 this.EndNegotiateHandshake(ar);
171 }
172 }
173 }
174
175 #endregion
176
177 #region Abstracts/Virtuals
178
179 internal abstract IAsyncResult OnBeginNegotiateHandshake(AsyncCallback callback, object state);
180 internal abstract void OnNegotiateHandshakeCallback(IAsyncResult asyncResult);
181
182 internal abstract X509Certificate OnLocalCertificateSelection(X509CertificateCollection clientCertificates,
183 X509Certificate serverCertificate,
184 string targetHost,
185 X509CertificateCollection serverRequestedCertificates);
186
187 internal abstract bool OnRemoteCertificateValidation(X509Certificate certificate, int[] errors);
188
189 internal abstract AsymmetricAlgorithm OnLocalPrivateKeySelection(X509Certificate certificate, string targetHost);
190
191 #endregion
192
193 #region Event Methods
194
195 internal X509Certificate RaiseLocalCertificateSelection(X509CertificateCollection certificates,
196 X509Certificate remoteCertificate,
197 string targetHost,
198 X509CertificateCollection requestedCertificates)
199 {
200 return OnLocalCertificateSelection(certificates, remoteCertificate, targetHost, requestedCertificates);
201 }
202
203 internal bool RaiseRemoteCertificateValidation(X509Certificate certificate, int[] errors)
204 {
205 return OnRemoteCertificateValidation(certificate, errors);
206 }
207
208 internal AsymmetricAlgorithm RaiseLocalPrivateKeySelection(
209 X509Certificate certificate,
210 string targetHost)
211 {
212 return OnLocalPrivateKeySelection(certificate, targetHost);
213 }
214 #endregion
215
216 #region Security Properties
217
218 public bool CheckCertRevocationStatus
219 {
220 get { return this.checkCertRevocationStatus; }
221 set { this.checkCertRevocationStatus = value; }
222 }
223
224 public CipherAlgorithmType CipherAlgorithm
225 {
226 get
227 {
228 if (this.context.HandshakeState == HandshakeState.Finished)
229 {
230 return this.context.Current.Cipher.CipherAlgorithmType;
231 }
232
233 return CipherAlgorithmType.None;
234 }
235 }
236
237 public int CipherStrength
238 {
239 get
240 {
241 if (this.context.HandshakeState == HandshakeState.Finished)
242 {
243 return this.context.Current.Cipher.EffectiveKeyBits;
244 }
245
246 return 0;
247 }
248 }
249
250 public HashAlgorithmType HashAlgorithm
251 {
252 get
253 {
254 if (this.context.HandshakeState == HandshakeState.Finished)
255 {
256 return this.context.Current.Cipher.HashAlgorithmType;
257 }
258
259 return HashAlgorithmType.None;
260 }
261 }
262
263 public int HashStrength
264 {
265 get
266 {
267 if (this.context.HandshakeState == HandshakeState.Finished)
268 {
269 return this.context.Current.Cipher.HashSize * 8;
270 }
271
272 return 0;
273 }
274 }
275
276 public int KeyExchangeStrength
277 {
278 get
279 {
280 if (this.context.HandshakeState == HandshakeState.Finished)
281 {
282 return this.context.ServerSettings.Certificates[0].RSA.KeySize;
283 }
284
285 return 0;
286 }
287 }
288
289 public ExchangeAlgorithmType KeyExchangeAlgorithm
290 {
291 get
292 {
293 if (this.context.HandshakeState == HandshakeState.Finished)
294 {
295 return this.context.Current.Cipher.ExchangeAlgorithmType;
296 }
297
298 return ExchangeAlgorithmType.None;
299 }
300 }
301
302 public SecurityProtocolType SecurityProtocol
303 {
304 get
305 {
306 if (this.context.HandshakeState == HandshakeState.Finished)
307 {
308 return this.context.SecurityProtocol;
309 }
310
311 return 0;
312 }
313 }
314
315 public X509Certificate ServerCertificate
316 {
317 get
318 {
319 if (this.context.HandshakeState == HandshakeState.Finished)
320 {
321 if (this.context.ServerSettings.Certificates != null &&
322 this.context.ServerSettings.Certificates.Count > 0)
323 {
324 return new X509Certificate(this.context.ServerSettings.Certificates[0].RawData);
325 }
326 }
327
328 return null;
329 }
330 }
331
332 // this is used by Mono's certmgr tool to download certificates
333 internal Mono.Security.X509.X509CertificateCollection ServerCertificates
334 {
335 get { return context.ServerSettings.Certificates; }
336 }
337
338 #endregion
339
340 #region Internal Async Result/State Class
341
342 private class InternalAsyncResult : IAsyncResult
343 {
344 private object locker = new object ();
345 private AsyncCallback _userCallback;
346 private object _userState;
347 private Exception _asyncException;
348 private ManualResetEvent handle;
349 private bool completed;
350 private int _bytesRead;
351 private bool _fromWrite;
352 private bool _proceedAfterHandshake;
353
354 private byte[] _buffer;
355 private int _offset;
356 private int _count;
357
358 public InternalAsyncResult(AsyncCallback userCallback, object userState, byte[] buffer, int offset, int count, bool fromWrite, bool proceedAfterHandshake)
359 {
360 _userCallback = userCallback;
361 _userState = userState;
362 _buffer = buffer;
363 _offset = offset;
364 _count = count;
365 _fromWrite = fromWrite;
366 _proceedAfterHandshake = proceedAfterHandshake;
367 }
368
369 public bool ProceedAfterHandshake
370 {
371 get { return _proceedAfterHandshake; }
372 }
373
374 public bool FromWrite
375 {
376 get { return _fromWrite; }
377 }
378
379 public byte[] Buffer
380 {
381 get { return _buffer; }
382 }
383
384 public int Offset
385 {
386 get { return _offset; }
387 }
388
389 public int Count
390 {
391 get { return _count; }
392 }
393
394 public int BytesRead
395 {
396 get { return _bytesRead; }
397 }
398
399 public object AsyncState
400 {
401 get { return _userState; }
402 }
403
404 public Exception AsyncException
405 {
406 get { return _asyncException; }
407 }
408
409 public bool CompletedWithError
410 {
411 get {
412 if (IsCompleted == false)
413 return false;
414 return null != _asyncException;
415 }
416 }
417
418 public WaitHandle AsyncWaitHandle
419 {
420 get {
421 lock (locker) {
422 if (handle == null)
423 handle = new ManualResetEvent (completed);
424 }
425 return handle;
426 }
427 }
428
429 public bool CompletedSynchronously
430 {
431 get { return false; }
432 }
433
434 public bool IsCompleted
435 {
436 get {
437 lock (locker)
438 return completed;
439 }
440 }
441
442 private void SetComplete(Exception ex, int bytesRead)
443 {
444 lock (locker) {
445 if (completed)
446 return;
447
448 completed = true;
449 _asyncException = ex;
450 _bytesRead = bytesRead;
451 if (handle != null)
452 handle.Set ();
453 }
454 if (_userCallback != null)
455 _userCallback.BeginInvoke (this, null, null);
456 }
457
458 public void SetComplete(Exception ex)
459 {
460 SetComplete(ex, 0);
461 }
462
463 public void SetComplete(int bytesRead)
464 {
465 SetComplete(null, bytesRead);
466 }
467
468 public void SetComplete()
469 {
470 SetComplete(null, 0);
471 }
472 }
473 #endregion
474
475 #region Stream Overrides and Async Stream Operations
476
477 private bool BeginNegotiateHandshake(InternalAsyncResult asyncResult)
478 {
479 try
480 {
481 lock (this.negotiate)
482 {
483 if (this.context.HandshakeState == HandshakeState.None)
484 {
485 this.OnBeginNegotiateHandshake(new AsyncCallback(AsyncHandshakeCallback), asyncResult);
486
487 return true;
488 }
489 else
490 {
491 return false;
492 }
493 }
494 }
495 catch (TlsException ex)
496 {
497 this.negotiationComplete.Set();
498 this.protocol.SendAlert(ex.Alert);
499
500 throw new IOException("The authentication or decryption has failed.", ex);
501 }
502 catch (Exception ex)
503 {
504 this.negotiationComplete.Set();
505 this.protocol.SendAlert(AlertDescription.InternalError);
506
507 throw new IOException("The authentication or decryption has failed.", ex);
508 }
509 }
510
511 private void EndNegotiateHandshake(InternalAsyncResult asyncResult)
512 {
513 if (asyncResult.IsCompleted == false)
514 asyncResult.AsyncWaitHandle.WaitOne();
515
516 if (asyncResult.CompletedWithError)
517 {
518 throw asyncResult.AsyncException;
519 }
520 }
521
522 public override IAsyncResult BeginRead(
523 byte[] buffer,
524 int offset,
525 int count,
526 AsyncCallback callback,
527 object state)
528 {
529 this.checkDisposed();
530
531 if (buffer == null)
532 {
533 throw new ArgumentNullException("buffer is a null reference.");
534 }
535 if (offset < 0)
536 {
537 throw new ArgumentOutOfRangeException("offset is less than 0.");
538 }
539 if (offset > buffer.Length)
540 {
541 throw new ArgumentOutOfRangeException("offset is greater than the length of buffer.");
542 }
543 if (count < 0)
544 {
545 throw new ArgumentOutOfRangeException("count is less than 0.");
546 }
547 if (count > (buffer.Length - offset))
548 {
549 throw new ArgumentOutOfRangeException("count is less than the length of buffer minus the value of the offset parameter.");
550 }
551
552 InternalAsyncResult asyncResult = new InternalAsyncResult(callback, state, buffer, offset, count, false, true);
553
554 if (this.MightNeedHandshake)
555 {
556 if (! BeginNegotiateHandshake(asyncResult))
557 {
558 //we made it down here so the handshake was not started.
559 //another thread must have started it in the mean time.
560 //wait for it to complete and then perform our original operation
561 this.negotiationComplete.WaitOne();
562
563 InternalBeginRead(asyncResult);
564 }
565 }
566 else
567 {
568 InternalBeginRead(asyncResult);
569 }
570
571 return asyncResult;
572 }
573
574 // bigger than max record length for SSL/TLS
575 private byte[] recbuf = new byte[16384];
576
577 private void InternalBeginRead(InternalAsyncResult asyncResult)
578 {
579 try
580 {
581 int preReadSize = 0;
582
583 lock (this.read)
584 {
585 // If actual buffer is fully read, reset it
586 bool shouldReset = this.inputBuffer.Position == this.inputBuffer.Length && this.inputBuffer.Length > 0;
587
588 // If the buffer isn't fully read, but does have data, we need to immediately
589 // read the info from the buffer and let the user know that they have more data.
590 bool shouldReadImmediately = (this.inputBuffer.Length > 0) && (asyncResult.Count > 0);
591
592 if (shouldReset)
593 {
594 this.resetBuffer();
595 }
596 else if (shouldReadImmediately)
597 {
598 preReadSize = this.inputBuffer.Read(asyncResult.Buffer, asyncResult.Offset, asyncResult.Count);
599 }
600 }
601
602 // This is explicitly done outside the synclock to avoid
603 // any potential deadlocks in the delegate call.
604 if (0 < preReadSize)
605 {
606 asyncResult.SetComplete(preReadSize);
607 }
608 else if (!this.context.ConnectionEnd)
609 {
610 // this will read data from the network until we have (at least) one
611 // record to send back to the caller
612 this.innerStream.BeginRead(recbuf, 0, recbuf.Length,
613 new AsyncCallback(InternalReadCallback), new object[] { recbuf, asyncResult });
614 }
615 else
616 {
617 // We're done with the connection so we need to let the caller know with 0 bytes read
618 asyncResult.SetComplete(0);
619 }
620 }
621 catch (TlsException ex)
622 {
623 this.protocol.SendAlert(ex.Alert);
624
625 throw new IOException("The authentication or decryption has failed.", ex);
626 }
627 catch (Exception ex)
628 {
629 throw new IOException("IO exception during read.", ex);
630 }
631 }
632
633
634 private MemoryStream recordStream = new MemoryStream();
635
636 // read encrypted data until we have enough to decrypt (at least) one
637 // record and return are the records (may be more than one) we have
638 private void InternalReadCallback(IAsyncResult result)
639 {
640 if (this.disposed)
641 return;
642
643 object[] state = (object[])result.AsyncState;
644 byte[] recbuf = (byte[])state[0];
645 InternalAsyncResult internalResult = (InternalAsyncResult)state[1];
646
647 try
648 {
649 int n = innerStream.EndRead(result);
650 if (n > 0)
651 {
652 // Add the just received data to the waiting data
653 recordStream.Write(recbuf, 0, n);
654 }
655 else
656 {
657 // 0 length data means this read operation is done (lost connection in the case of a network stream).
658 internalResult.SetComplete(0);
659 return;
660 }
661
662 bool dataToReturn = false;
663 long pos = recordStream.Position;
664
665 recordStream.Position = 0;
666 byte[] record = null;
667
668 // don't try to decode record unless we have at least 5 bytes
669 // i.e. type (1), protocol (2) and length (2)
670 if (recordStream.Length >= 5)
671 {
672 record = this.protocol.ReceiveRecord(recordStream);
673 }
674
675 // a record of 0 length is valid (and there may be more record after it)
676 while (record != null)
677 {
678 // we probably received more stuff after the record, and we must keep it!
679 long remainder = recordStream.Length - recordStream.Position;
680 byte[] outofrecord = null;
681 if (remainder > 0)
682 {
683 outofrecord = new byte[remainder];
684 recordStream.Read(outofrecord, 0, outofrecord.Length);
685 }
686
687 lock (this.read)
688 {
689 long position = this.inputBuffer.Position;
690
691 if (record.Length > 0)
692 {
693 // Write new data to the inputBuffer
694 this.inputBuffer.Seek(0, SeekOrigin.End);
695 this.inputBuffer.Write(record, 0, record.Length);
696
697 // Restore buffer position
698 this.inputBuffer.Seek(position, SeekOrigin.Begin);
699 dataToReturn = true;
700 }
701 }
702
703 recordStream.SetLength(0);
704 record = null;
705
706 if (remainder > 0)
707 {
708 recordStream.Write(outofrecord, 0, outofrecord.Length);
709 // type (1), protocol (2) and length (2)
710 if (recordStream.Length >= 5)
711 {
712 // try to see if another record is available
713 recordStream.Position = 0;
714 record = this.protocol.ReceiveRecord(recordStream);
715 if (record == null)
716 pos = recordStream.Length;
717 }
718 else
719 pos = remainder;
720 }
721 else
722 pos = 0;
723 }
724
725 if (!dataToReturn && (n > 0))
726 {
727 // there is no record to return to caller and (possibly) more data waiting
728 // so continue reading from network (and appending to stream)
729 recordStream.Position = recordStream.Length;
730 this.innerStream.BeginRead(recbuf, 0, recbuf.Length,
731 new AsyncCallback(InternalReadCallback), state);
732 }
733 else
734 {
735 // we have record(s) to return -or- no more available to read from network
736 // reset position for further reading
737 recordStream.Position = pos;
738
739 int bytesRead = 0;
740 lock (this.read)
741 {
742 bytesRead = this.inputBuffer.Read(internalResult.Buffer, internalResult.Offset, internalResult.Count);
743 }
744
745 internalResult.SetComplete(bytesRead);
746 }
747 }
748 catch (Exception ex)
749 {
750 internalResult.SetComplete(ex);
751 }
752
753 }
754
755 private void InternalBeginWrite(InternalAsyncResult asyncResult)
756 {
757 try
758 {
759 // Send the buffer as a TLS record
760
761 lock (this.write)
762 {
763 byte[] record = this.protocol.EncodeRecord(
764 ContentType.ApplicationData, asyncResult.Buffer, asyncResult.Offset, asyncResult.Count);
765
766 this.innerStream.BeginWrite(
767 record, 0, record.Length, new AsyncCallback(InternalWriteCallback), asyncResult);
768 }
769 }
770 catch (TlsException ex)
771 {
772 this.protocol.SendAlert(ex.Alert);
773 this.Close();
774
775 throw new IOException("The authentication or decryption has failed.", ex);
776 }
777 catch (Exception ex)
778 {
779 throw new IOException("IO exception during Write.", ex);
780 }
781 }
782
783 private void InternalWriteCallback(IAsyncResult ar)
784 {
785 if (this.disposed)
786 return;
787
788 InternalAsyncResult internalResult = (InternalAsyncResult)ar.AsyncState;
789
790 try
791 {
792 this.innerStream.EndWrite(ar);
793 internalResult.SetComplete();
794 }
795 catch (Exception ex)
796 {
797 internalResult.SetComplete(ex);
798 }
799 }
800
801 public override IAsyncResult BeginWrite(
802 byte[] buffer,
803 int offset,
804 int count,
805 AsyncCallback callback,
806 object state)
807 {
808 this.checkDisposed();
809
810 if (buffer == null)
811 {
812 throw new ArgumentNullException("buffer is a null reference.");
813 }
814 if (offset < 0)
815 {
816 throw new ArgumentOutOfRangeException("offset is less than 0.");
817 }
818 if (offset > buffer.Length)
819 {
820 throw new ArgumentOutOfRangeException("offset is greater than the length of buffer.");
821 }
822 if (count < 0)
823 {
824 throw new ArgumentOutOfRangeException("count is less than 0.");
825 }
826 if (count > (buffer.Length - offset))
827 {
828 throw new ArgumentOutOfRangeException("count is less than the length of buffer minus the value of the offset parameter.");
829 }
830
831
832 InternalAsyncResult asyncResult = new InternalAsyncResult(callback, state, buffer, offset, count, true, true);
833
834 if (this.MightNeedHandshake)
835 {
836 if (! BeginNegotiateHandshake(asyncResult))
837 {
838 //we made it down here so the handshake was not started.
839 //another thread must have started it in the mean time.
840 //wait for it to complete and then perform our original operation
841 this.negotiationComplete.WaitOne();
842
843 InternalBeginWrite(asyncResult);
844 }
845 }
846 else
847 {
848 InternalBeginWrite(asyncResult);
849 }
850
851 return asyncResult;
852 }
853
854 public override int EndRead(IAsyncResult asyncResult)
855 {
856 this.checkDisposed();
857
858 InternalAsyncResult internalResult = asyncResult as InternalAsyncResult;
859 if (internalResult == null)
860 {
861 throw new ArgumentNullException("asyncResult is null or was not obtained by calling BeginRead.");
862 }
863
864 // Always wait until the read is complete
865 if (!asyncResult.IsCompleted)
866 {
867 if (!asyncResult.AsyncWaitHandle.WaitOne (WaitTimeOut, false))
868 throw new TlsException (AlertDescription.InternalError, "Couldn't complete EndRead");
869 }
870
871 if (internalResult.CompletedWithError)
872 {
873 throw internalResult.AsyncException;
874 }
875
876 return internalResult.BytesRead;
877 }
878
879 public override void EndWrite(IAsyncResult asyncResult)
880 {
881 this.checkDisposed();
882
883 InternalAsyncResult internalResult = asyncResult as InternalAsyncResult;
884 if (internalResult == null)
885 {
886 throw new ArgumentNullException("asyncResult is null or was not obtained by calling BeginWrite.");
887 }
888
889
890 if (!asyncResult.IsCompleted)
891 {
892 if (!internalResult.AsyncWaitHandle.WaitOne (WaitTimeOut, false))
893 throw new TlsException (AlertDescription.InternalError, "Couldn't complete EndWrite");
894 }
895
896 if (internalResult.CompletedWithError)
897 {
898 throw internalResult.AsyncException;
899 }
900 }
901
902 public override void Close()
903 {
904 #if NET_2_0
905 base.Close ();
906 #else
907 ((IDisposable)this).Dispose();
908 #endif
909 }
910
911 public override void Flush()
912 {
913 this.checkDisposed();
914
915 this.innerStream.Flush();
916 }
917
918 public int Read(byte[] buffer)
919 {
920 return this.Read(buffer, 0, buffer.Length);
921 }
922
923 public override int Read(byte[] buffer, int offset, int count)
924 {
925 this.checkDisposed ();
926
927 if (buffer == null)
928 {
929 throw new ArgumentNullException ("buffer");
930 }
931 if (offset < 0)
932 {
933 throw new ArgumentOutOfRangeException("offset is less than 0.");
934 }
935 if (offset > buffer.Length)
936 {
937 throw new ArgumentOutOfRangeException("offset is greater than the length of buffer.");
938 }
939 if (count < 0)
940 {
941 throw new ArgumentOutOfRangeException("count is less than 0.");
942 }
943 if (count > (buffer.Length - offset))
944 {
945 throw new ArgumentOutOfRangeException("count is less than the length of buffer minus the value of the offset parameter.");
946 }
947
948 if (this.context.HandshakeState != HandshakeState.Finished)
949 {
950 this.NegotiateHandshake (); // Handshake negotiation
951 }
952
953 lock (this.read) {
954 try {
955 record_processing.Reset ();
956 // do we already have some decrypted data ?
957 if (this.inputBuffer.Position > 0) {
958 // or maybe we used all the buffer before ?
959 if (this.inputBuffer.Position == this.inputBuffer.Length) {
960 this.inputBuffer.SetLength (0);
961 } else {
962 int n = this.inputBuffer.Read (buffer, offset, count);
963 if (n > 0) {
964 record_processing.Set ();
965 return n;
966 }
967 }
968 }
969
970 bool needMoreData = false;
971 while (true) {
972 // we first try to process the read with the data we already have
973 if ((recordStream.Position == 0) || needMoreData) {
974 needMoreData = false;
975 // if we loop, then it either means we need more data
976 byte[] recbuf = new byte[16384];
977 int n = 0;
978 if (count == 1) {
979 int value = innerStream.ReadByte ();
980 if (value >= 0) {
981 recbuf[0] = (byte) value;
982 n = 1;
983 }
984 } else {
985 n = innerStream.Read (recbuf, 0, recbuf.Length);
986 }
987 if (n > 0) {
988 // Add the new received data to the waiting data
989 if ((recordStream.Length > 0) && (recordStream.Position != recordStream.Length))
990 recordStream.Seek (0, SeekOrigin.End);
991 recordStream.Write (recbuf, 0, n);
992 } else {
993 // or that the read operation is done (lost connection in the case of a network stream).
994 record_processing.Set ();
995 return 0;
996 }
997 }
998
999 bool dataToReturn = false;
1000
1001 recordStream.Position = 0;
1002 byte[] record = null;
1003
1004 // don't try to decode record unless we have at least 5 bytes
1005 // i.e. type (1), protocol (2) and length (2)
1006 if (recordStream.Length >= 5) {
1007 record = this.protocol.ReceiveRecord (recordStream);
1008 needMoreData = (record == null);
1009 }
1010
1011 // a record of 0 length is valid (and there may be more record after it)
1012 while (record != null) {
1013 // we probably received more stuff after the record, and we must keep it!
1014 long remainder = recordStream.Length - recordStream.Position;
1015 byte[] outofrecord = null;
1016 if (remainder > 0) {
1017 outofrecord = new byte[remainder];
1018 recordStream.Read (outofrecord, 0, outofrecord.Length);
1019 }
1020
1021 long position = this.inputBuffer.Position;
1022
1023 if (record.Length > 0) {
1024 // Write new data to the inputBuffer
1025 this.inputBuffer.Seek (0, SeekOrigin.End);
1026 this.inputBuffer.Write (record, 0, record.Length);
1027
1028 // Restore buffer position
1029 this.inputBuffer.Seek (position, SeekOrigin.Begin);
1030 dataToReturn = true;
1031 }
1032
1033 recordStream.SetLength (0);
1034 record = null;
1035
1036 if (remainder > 0) {
1037 recordStream.Write (outofrecord, 0, outofrecord.Length);
1038 }
1039
1040 if (dataToReturn) {
1041 // we have record(s) to return -or- no more available to read from network
1042 // reset position for further reading
1043 int i = inputBuffer.Read (buffer, offset, count);
1044 record_processing.Set ();
1045 return i;
1046 }
1047 }
1048 }
1049 }
1050 catch (TlsException ex)
1051 {
1052 throw new IOException("The authentication or decryption has failed.", ex);
1053 }
1054 catch (Exception ex)
1055 {
1056 throw new IOException("IO exception during read.", ex);
1057 }
1058 }
1059 }
1060
1061 public override long Seek(long offset, SeekOrigin origin)
1062 {
1063 throw new NotSupportedException();
1064 }
1065
1066 public override void SetLength(long value)
1067 {
1068 throw new NotSupportedException();
1069 }
1070
1071 public void Write(byte[] buffer)
1072 {
1073 this.Write(buffer, 0, buffer.Length);
1074 }
1075
1076 public override void Write(byte[] buffer, int offset, int count)
1077 {
1078 this.checkDisposed ();
1079
1080 if (buffer == null)
1081 {
1082 throw new ArgumentNullException ("buffer");
1083 }
1084 if (offset < 0)
1085 {
1086 throw new ArgumentOutOfRangeException("offset is less than 0.");
1087 }
1088 if (offset > buffer.Length)
1089 {
1090 throw new ArgumentOutOfRangeException("offset is greater than the length of buffer.");
1091 }
1092 if (count < 0)
1093 {
1094 throw new ArgumentOutOfRangeException("count is less than 0.");
1095 }
1096 if (count > (buffer.Length - offset))
1097 {
1098 throw new ArgumentOutOfRangeException("count is less than the length of buffer minus the value of the offset parameter.");
1099 }
1100
1101 if (this.context.HandshakeState != HandshakeState.Finished)
1102 {
1103 this.NegotiateHandshake ();
1104 }
1105
1106 lock (this.write)
1107 {
1108 try
1109 {
1110 // Send the buffer as a TLS record
1111 byte[] record = this.protocol.EncodeRecord (ContentType.ApplicationData, buffer, offset, count);
1112 this.innerStream.Write (record, 0, record.Length);
1113 }
1114 catch (TlsException ex)
1115 {
1116 this.protocol.SendAlert(ex.Alert);
1117 this.Close();
1118 throw new IOException("The authentication or decryption has failed.", ex);
1119 }
1120 catch (Exception ex)
1121 {
1122 throw new IOException("IO exception during Write.", ex);
1123 }
1124 }
1125 }
1126
1127 public override bool CanRead
1128 {
1129 get { return this.innerStream.CanRead; }
1130 }
1131
1132 public override bool CanSeek
1133 {
1134 get { return false; }
1135 }
1136
1137 public override bool CanWrite
1138 {
1139 get { return this.innerStream.CanWrite; }
1140 }
1141
1142 public override long Length
1143 {
1144 get { throw new NotSupportedException(); }
1145 }
1146
1147 public override long Position
1148 {
1149 get
1150 {
1151 throw new NotSupportedException();
1152 }
1153 set
1154 {
1155 throw new NotSupportedException();
1156 }
1157 }
1158 #endregion
1159
1160 #region IDisposable Members and Finalizer
1161
1162 ~SslStreamBase()
1163 {
1164 this.Dispose(false);
1165 }
1166
1167 #if !NET_2_0
1168 public void Dispose()
1169 {
1170 this.Dispose(true);
1171 GC.SuppressFinalize(this);
1172 }
1173
1174 protected virtual void Dispose (bool disposing)
1175 #else
1176 protected override void Dispose (bool disposing)
1177 #endif
1178 {
1179 if (!this.disposed)
1180 {
1181 if (disposing)
1182 {
1183 if (this.innerStream != null)
1184 {
1185 if (this.context.HandshakeState == HandshakeState.Finished &&
1186 !this.context.ConnectionEnd)
1187 {
1188 // Write close notify
1189 this.protocol.SendAlert(AlertDescription.CloseNotify);
1190 }
1191
1192 if (this.ownsStream)
1193 {
1194 // Close inner stream
1195 this.innerStream.Close();
1196 }
1197 }
1198 this.ownsStream = false;
1199 this.innerStream = null;
1200 }
1201
1202 this.disposed = true;
1203 #if NET_2_0
1204 base.Dispose (disposing);
1205 #endif
1206 }
1207 }
1208
1209 #endregion
1210
1211 #region Misc Methods
1212
1213 private void resetBuffer()
1214 {
1215 this.inputBuffer.SetLength(0);
1216 this.inputBuffer.Position = 0;
1217 }
1218
1219 internal void checkDisposed()
1220 {
1221 if (this.disposed)
1222 {
1223 throw new ObjectDisposedException("The Stream is closed.");
1224 }
1225 }
1226
1227 #endregion
1228
1229 }
1230 }
git-svn mirror of mcs