| blob | 69b0aa64d34619e064bd3bf2d5b422fc893cc149 |
1 /* Copyright 2003 Roger Dingledine. */
2 /* See LICENSE for licensing information */
3 /* $Id$ */
5 /* TLS wrappers for The Onion Router. (Unlike other tor functions, these
6 * are prefixed with tor_ in order to avoid conflicting with OpenSSL
7 * functions and variables.)
8 */
15 /* Copied from or.h */
16 #define LEGAL_NICKNAME_CHARACTERS "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
18 #include <assert.h>
19 #include <openssl/ssl.h>
20 #include <openssl/err.h>
21 #include <openssl/tls1.h>
22 #include <openssl/asn1.h>
23 #include <openssl/bio.h>
25 /* How long do certificates live? (sec) */
26 #define CERT_LIFETIME (365*24*60*60)
27 /* How much clock skew do we tolerate when checking certificates? (sec) */
28 #define CERT_ALLOW_SKEW (30*60)
32 };
39 TOR_TLS_ST_SENTCLOSE, TOR_TLS_ST_CLOSED
43 };
48 /* global tls context, keep it here because nobody else needs to touch it */
52 #define _TOR_TLS_SYSCALL -6
53 #define _TOR_TLS_ZERORETURN -5
55 /* These functions are declared in crypto.c but not exported. */
59 static void
61 {
73 }
74 }
75 }
77 #define CATCH_SYSCALL 1
78 #define CATCH_ZERO 2
80 static int
83 {
107 }
108 }
110 static void
118 }
119 }
123 {
124 /* We always accept peer certs and complete the handshake. We don't validate
125 * them until later. */
127 }
129 /* Generate a self-signed certificate with the private key 'rsa' and
130 * commonName 'nickname', and write it, PEM-encoded, to the file named
131 * by 'certfile'. Return 0 on success, -1 for failure.
132 */
133 X509 *
136 {
181 error:
185 }
186 done:
192 }
195 #ifdef EVERYONE_HAS_AES
196 /* Everybody is running OpenSSL 0.9.7 or later, so no backward compatibility
197 * is needed. */
198 #define CIPHER_LIST TLS1_TXT_DHE_RSA_WITH_AES_128_SHA
199 #elif defined(TLS1_TXT_DHE_RSA_WITH_AES_128_SHA)
200 /* Some people are running OpenSSL before 0.9.7, but we aren't.
201 * We can support AES and 3DES.
202 */
204 SSL3_TXT_EDH_RSA_DES_192_CBC3_SHA)
205 #else
206 /* We're running OpenSSL before 0.9.7. We only support 3DES. */
207 #define CIPHER_LIST SSL3_TXT_EDH_RSA_DES_192_CBC3_SHA
208 #endif
210 /* Create a new TLS context. If we are going to be using it as a
211 * server, it must have isServer set to true, certfile set to a
212 * filename for a certificate file, and RSA set to the private key
213 * used for that certificate. Return -1 if failure, else 0.
214 */
215 int
218 {
231 }
232 }
236 #ifdef EVERYONE_HAS_AES
237 /* Tell OpenSSL to only use TLS1 */
240 #else
241 /* Tell OpenSSL to use SSL3 or TLS1 but not SSL2. */
245 #endif
261 }
262 }
267 always_accept_verify_cb);
268 /* let us realloc bufs that we're writing from */
271 /* Free the old context if one exists. */
273 /* This is safe even if there are open connections: OpenSSL does
274 * reference counting with SSL and SSL_CTX objects. */
277 }
281 error:
292 }
294 /* Create a new TLS object from a TLS context, a filedescriptor, and
295 * a flag to determine whether it is functioning as a server.
296 */
297 tor_tls *
299 {
310 }
312 /* Release resources associated with a TLS object. Does not close the
313 * underlying file descriptor.
314 */
315 void
317 {
320 }
322 /* Underlying function for TLS reading. Reads up to 'len' characters
323 * from 'tls' into 'cp'. On success, returns the number of characters
324 * read. On failure, returns TOR_TLS_ERROR, TOR_TLS_CLOSE,
325 * TOR_TLS_WANTREAD, or TOR_TLS_WANTWRITE.
326 */
327 int
329 {
343 }
344 }
346 /* Underlying function for TLS writing. Write up to 'n' characters
347 * from 'cp' onto 'tls'. On success, returns the number of characters
348 * written. On failure, returns TOR_TLS_ERROR, TOR_TLS_WANTREAD,
349 * or TOR_TLS_WANTWRITE.
350 */
351 int
353 {
360 /* if WANTWRITE last time, we must use the _same_ n as before */
366 }
371 }
375 }
377 }
379 /* Perform initial handshake on 'tls'. When finished, returns
380 * TOR_TLS_DONE. On failure, returns TOR_TLS_ERROR, TOR_TLS_WANTREAD,
381 * or TOR_TLS_WANTWRITE.
382 */
383 int
385 {
393 }
397 }
399 }
401 /* Shut down an open tls connection 'tls'. When finished, returns
402 * TOR_TLS_DONE. On failure, returns TOR_TLS_ERROR, TOR_TLS_WANTREAD,
403 * or TOR_TLS_WANTWRITE.
404 */
405 int
407 {
414 /* If we've already called shutdown once to send a close message,
415 * we read until the other side has closed too.
416 */
421 LOG_INFO);
424 /* fall through... */
427 }
428 }
432 /* If shutdown returns 1, the connection is entirely closed. */
435 }
437 LOG_INFO);
439 /* The underlying TCP connection closed while we were shutting down. */
443 /* The TLS connection says that it sent a shutdown record, but
444 * isn't done shutting down yet. Make sure that this hasn't
445 * happened before, then go back to the start of the function
446 * and try to read.
447 */
453 }
455 /* fall through ... */
458 }
460 }
462 /* Return true iff this TLS connection is authenticated.
463 */
464 int
466 {
472 }
474 int
476 {
485 }
489 }
499 }
501 error:
507 }
509 /* If the provided tls connection is authenticated and has a
510 * certificate that is currently valid and is correctly self-signed,
511 * return its public key. Otherwise return NULL.
512 */
513 crypto_pk_env_t *
515 {
529 }
534 }
536 /* Get the public key. */
540 }
544 }
552 }
557 done:
565 }
567 int
569 {
572 }
574 /* Return the number of bytes read across the underlying socket. */
576 {
579 }
581 {
584 }