| blob | 0afcfaa58a13ec7028595057afdb8d6e0e95ac7f |
1 /***************************************************************************
2 * _ _ ____ _
3 * Project ___| | | | _ \| |
4 * / __| | | | |_) | |
5 * | (__| |_| | _ <| |___
6 * \___|\___/|_| \_\_____|
7 *
8 * Copyright (C) 2010, DirecTV, Contact: Eric Hu, <ehu@directv.com>.
9 * Copyright (C) 2010 - 2016, Daniel Stenberg, <daniel@haxx.se>, et al.
10 *
11 * This software is licensed as described in the file COPYING, which
12 * you should have received as part of this distribution. The terms
13 * are also available at https://curl.haxx.se/docs/copyright.html.
14 *
15 * You may opt to use, copy, modify, merge, publish, distribute and/or sell
16 * copies of the Software, and permit persons to whom the Software is
17 * furnished to do so, under the terms of the COPYING file.
18 *
19 * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
20 * KIND, either express or implied.
21 *
22 ***************************************************************************/
24 /*
25 * Source file for all axTLS-specific code for the TLS/SSL layer. No code
26 * but vtls.c should ever call or use these functions.
27 */
31 #ifdef USE_AXTLS
32 #include <axTLS/config.h>
33 #include <axTLS/ssl.h>
44 #include <unistd.h>
46 /* The last #include files should be: */
51 /* Global axTLS init, called from Curl_ssl_init() */
53 {
54 /* axTLS has no global init. Everything is done through SSL and SSL_CTX
55 * structs stored in connectdata structure. Perhaps can move to axtls.h.
56 */
58 }
61 {
62 /* axTLS has no global cleanup. Perhaps can move this to axtls.h. */
64 }
67 {
115 }
116 }
122 {
126 }
130 }
131 }
133 /*
134 * For both blocking and non-blocking connects, this function sets up the
135 * ssl context and state. This function is called after the TCP connect
136 * has completed.
137 */
139 {
149 /* Assuming users will not compile in custom key/cert to axTLS.
150 * Also, even for blocking connects, use axTLS non-blocking feature.
151 */
153 SSL_SERVER_VERIFY_LATER |
154 SSL_CONNECT_IN_PARTS;
157 /* to make us tolerant against being called more than once for the
158 same connection */
161 /* axTLS only supports TLSv1 */
162 /* check to see if we've been told to use an explicit SSL/TLS version */
171 }
173 #ifdef AXTLSDEBUG
177 /* Allocate an SSL_CTX struct */
182 }
187 /* Load the trusted CA cert bundle file */
195 }
196 }
197 else
199 }
201 /* gtls.c tasks we're skipping for now:
202 * 1) certificate revocation list checking
203 * 2) dns name assignment to host
204 * 3) set protocol priority. axTLS is TLSv1 only, so can probably ignore
205 * 4) set certificate priority. axTLS ignores type and sends certs in
206 * order added. can probably ignore this.
207 */
209 /* Load client certificate */
212 /* Instead of trying to analyze cert type here, let axTLS try them all. */
220 }
221 i++;
222 }
223 /* Tried all cert types, none worked. */
228 }
229 }
231 /* Load client key.
232 If a pkcs12 file successfully loaded a cert, then there's nothing to do
233 because the key has already been loaded. */
236 /* Instead of trying to analyze key type here, let axTLS try them all. */
244 }
245 i++;
246 }
247 /* Tried all key types, none worked. */
252 }
253 }
255 /* gtls.c does more here that is being left out for now
256 * 1) set session credentials. can probably ignore since axtls puts this
257 * info in the ssl_ctx struct
258 * 2) setting up callbacks. these seem gnutls specific
259 */
261 /* In axTLS, handshaking happens inside ssl_client_new. */
263 /* we got a session id, use it! */
267 }
268 else
273 }
275 /*
276 * For both blocking and non-blocking connects, this function finalizes the
277 * SSL connection.
278 */
280 {
291 /* Here, gtls.c gets the peer certificates and fails out depending on
292 * settings in "data." axTLS api doesn't have get cert chain fcn, so omit?
293 */
295 /* Verify server's certificate */
301 }
302 }
303 else
306 /* Here, gtls.c does issuer verification. axTLS has no straightforward
307 * equivalent, so omitting for now.*/
309 /* Here, gtls.c does the following
310 * 1) x509 hostname checking per RFC2818. axTLS doesn't support this, but
311 * it seems useful. This is now implemented, by Oscar Koeroo
312 * 2) checks cert validity based on time. axTLS does this in ssl_verify_cert
313 * 3) displays a bunch of cert information. axTLS doesn't support most of
314 * this, but a couple fields are available.
315 */
317 /* There is no (DNS) Altnames count in the version 1.4.8 API. There is a
318 risk of an inifite loop */
323 }
331 }
332 }
334 /* RFC2818 checks */
337 /* Break connection ! */
342 }
343 else
346 }
348 /* Per RFC2818, when no Subject Alt Names were available, examine the peer
349 CN as a legacy fallback */
356 }
357 else
359 }
363 /* Break connection ! */
368 }
369 else
372 }
373 }
374 }
376 /* General housekeeping */
381 /* Put our freshly minted SSL session in cache */
389 }
391 /*
392 * Use axTLS's non-blocking connection feature to open an SSL connection.
393 * This is called after a TCP connection is already established.
394 */
399 {
400 CURLcode conn_step;
405 /* connectdata is calloc'd and connecting_state is only changed in this
406 function, so this is safe, as the state is effectively initialized. */
412 }
414 }
417 /* Check to make sure handshake was ok. */
419 /* Loop to perform more work in between sleeps. This is work around the
420 fact that axtls does not expose any knowledge about when work needs
421 to be performed. This can save ~25% of time on SSL handshakes. */
428 }
430 }
431 }
434 }
441 }
443 /* Reset connect state */
448 }
450 /* Unrecognized state. Things are very bad. */
453 /* Return value perhaps not strictly correct, but distinguishes the issue.*/
455 }
458 /*
459 * This function is called after the TCP connect has completed. Setup the TLS
460 * layer and do all necessary magic for a blocking connect.
461 */
462 CURLcode
466 {
476 }
478 /* Check to make sure handshake was ok. */
480 /* check allowed time left */
484 /* no need to continue if time already is up */
487 }
494 }
495 /* TODO: avoid polling */
497 }
504 }
507 }
509 /* return number of sent (non-SSL) bytes */
515 {
516 /* ssl_write() returns 'int' while write() and send() returns 'size_t' */
524 }
528 }
531 {
536 /* line from openssl.c: (void)SSL_shutdown(connssl->ssl);
537 axTLS compat layer does nothing for SSL_shutdown */
539 /* The following line is from openssl.c. There seems to be no axTLS
540 equivalent. ssl_free and ssl_ctx_free close things.
541 SSL_set_connect_state(connssl->handle); */
544 }
546 /*
547 * This function is called to shut down the SSL layer but keep the
548 * socket open (CCC - Clear Command Channel)
549 */
551 {
552 /* Outline taken from openssl.c since functions are in axTLS compat layer.
553 axTLS's error set is much smaller, so a lot of error-handling was removed.
554 */
559 ssize_t nread;
563 /* This has only been tested on the proftpd server, and the mod_tls code
564 sends a close notify alert without waiting for a close notify alert in
565 response. Thus we wait for a close notify alert from the server, but
566 we do not send one. Let's hope other servers do the same... */
568 /* axTLS compat layer does nothing for SSL_shutdown, so we do nothing too
569 if(data->set.ftp_ccc == CURLFTPSSL_CCC_ACTIVE)
570 (void)SSL_shutdown(connssl->ssl);
571 */
577 /* Something to read, let's do it and hope that it is the close
578 notify alert from the server. buf is managed internally by
579 axTLS and will be released upon calling ssl_free via
580 free_ssl_structs. */
586 }
587 }
589 /* timeout */
591 }
593 /* anything that gets here is fatally bad */
596 }
599 }
601 }
608 {
619 /* ssl_read returns SSL_OK if there is more data to read, so if it is
620 larger, then all data has been read already. */
623 }
625 /* more data to be read, signal caller to call again */
628 }
630 /* With patched axTLS, SSL_CLOSE_NOTIFY=-3. Hard-coding until axTLS
631 team approves proposed fix. */
633 }
638 }
639 }
642 }
644 /*
645 * Return codes:
646 * 1 means the connection is still in place
647 * 0 means the connection has been closed
648 * -1 means the connection status is unknown
649 */
651 {
652 /* openssl.c line: rc = SSL_peek(conn->ssl[FIRSTSOCKET].ssl, (void*)&buf, 1);
653 axTLS compat layer always returns the last argument, so connection is
654 always alive? */
658 }
661 {
663 /* free the ID */
664 /* both openssl.c and gtls.c do something here, but axTLS's OpenSSL
665 compatibility layer does nothing, so we do nothing too. */
666 }
669 {
671 }
676 {
681 /* Initialize the seed if not already done. This call is not exactly thread
682 * safe (and neither is the ssl_seeded check), but the worst effect of a
683 * race condition is that some global resources will leak. */
685 }
688 }