search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
mfmediaengine: Handle Play() when called before topology is set.
[wine.git] / dlls / secur32 / schannel_gnutls.c
blob4d8109721ce15a3f562d193e902cde63b6db1764
1 /*
2 * GnuTLS-based implementation of the schannel (SSL/TLS) provider.
3 *
4 * Copyright 2005 Juan Lang
5 * Copyright 2008 Henri Verbeet
6 *
7 * This library is free software; you can redistribute it and/or
8 * modify it under the terms of the GNU Lesser General Public
9 * License as published by the Free Software Foundation; either
10 * version 2.1 of the License, or (at your option) any later version.
11 *
12 * This library is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * Lesser General Public License for more details.
16 *
17 * You should have received a copy of the GNU Lesser General Public
18 * License along with this library; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
20 */
21
22 #if 0
23 #pragma makedep unix
24 #endif
25
26 #include "config.h"
27 #include "wine/port.h"
28
29 #include <stdarg.h>
30 #include <stdio.h>
31 #include <errno.h>
32 #ifdef SONAME_LIBGNUTLS
33 #include <gnutls/gnutls.h>
34 #include <gnutls/crypto.h>
35 #include <gnutls/abstract.h>
36 #endif
37
38 #include "ntstatus.h"
39 #define WIN32_NO_STATUS
40 #include "windef.h"
41 #include "winbase.h"
42 #include "sspi.h"
43 #include "schannel.h"
44 #include "winreg.h"
45 #include "secur32_priv.h"
46
47 #include "wine/debug.h"
48 #include "wine/unicode.h"
49
50 #if defined(SONAME_LIBGNUTLS)
51
52 WINE_DEFAULT_DEBUG_CHANNEL(secur32);
53 WINE_DECLARE_DEBUG_CHANNEL(winediag);
54
55 static const struct schan_callbacks *callbacks;
56
57 /* Not present in gnutls version < 2.9.10. */
58 static int (*pgnutls_cipher_get_block_size)(gnutls_cipher_algorithm_t);
59
60 /* Not present in gnutls version < 3.0. */
61 static void (*pgnutls_transport_set_pull_timeout_function)(gnutls_session_t,
62 int (*)(gnutls_transport_ptr_t, unsigned int));
63 static void (*pgnutls_dtls_set_mtu)(gnutls_session_t, unsigned int);
64
65 /* Not present in gnutls version < 3.2.0. */
66 static int (*pgnutls_alpn_get_selected_protocol)(gnutls_session_t, gnutls_datum_t *);
67 static int (*pgnutls_alpn_set_protocols)(gnutls_session_t, const gnutls_datum_t *,
68 unsigned, unsigned int);
69
70 /* Not present in gnutls version < 3.3.0. */
71 static int (*pgnutls_privkey_import_rsa_raw)(gnutls_privkey_t, const gnutls_datum_t *,
72 const gnutls_datum_t *, const gnutls_datum_t *,
73 const gnutls_datum_t *, const gnutls_datum_t *,
74 const gnutls_datum_t *, const gnutls_datum_t *,
75 const gnutls_datum_t *);
76
77 /* Not present in gnutls version < 3.4.0. */
78 static int (*pgnutls_privkey_export_x509)(gnutls_privkey_t, gnutls_x509_privkey_t *);
79
80 static void *libgnutls_handle;
81 #define MAKE_FUNCPTR(f) static typeof(f) * p##f
82 MAKE_FUNCPTR(gnutls_alert_get);
83 MAKE_FUNCPTR(gnutls_alert_get_name);
84 MAKE_FUNCPTR(gnutls_certificate_allocate_credentials);
85 MAKE_FUNCPTR(gnutls_certificate_free_credentials);
86 MAKE_FUNCPTR(gnutls_certificate_get_peers);
87 MAKE_FUNCPTR(gnutls_certificate_set_x509_key);
88 MAKE_FUNCPTR(gnutls_cipher_get);
89 MAKE_FUNCPTR(gnutls_cipher_get_key_size);
90 MAKE_FUNCPTR(gnutls_credentials_set);
91 MAKE_FUNCPTR(gnutls_deinit);
92 MAKE_FUNCPTR(gnutls_global_deinit);
93 MAKE_FUNCPTR(gnutls_global_init);
94 MAKE_FUNCPTR(gnutls_global_set_log_function);
95 MAKE_FUNCPTR(gnutls_global_set_log_level);
96 MAKE_FUNCPTR(gnutls_handshake);
97 MAKE_FUNCPTR(gnutls_init);
98 MAKE_FUNCPTR(gnutls_kx_get);
99 MAKE_FUNCPTR(gnutls_mac_get);
100 MAKE_FUNCPTR(gnutls_mac_get_key_size);
101 MAKE_FUNCPTR(gnutls_perror);
102 MAKE_FUNCPTR(gnutls_protocol_get_version);
103 MAKE_FUNCPTR(gnutls_priority_set_direct);
104 MAKE_FUNCPTR(gnutls_privkey_deinit);
105 MAKE_FUNCPTR(gnutls_privkey_init);
106 MAKE_FUNCPTR(gnutls_record_get_max_size);
107 MAKE_FUNCPTR(gnutls_record_recv);
108 MAKE_FUNCPTR(gnutls_record_send);
109 MAKE_FUNCPTR(gnutls_server_name_set);
110 MAKE_FUNCPTR(gnutls_session_channel_binding);
111 MAKE_FUNCPTR(gnutls_transport_get_ptr);
112 MAKE_FUNCPTR(gnutls_transport_set_errno);
113 MAKE_FUNCPTR(gnutls_transport_set_ptr);
114 MAKE_FUNCPTR(gnutls_transport_set_pull_function);
115 MAKE_FUNCPTR(gnutls_transport_set_push_function);
116 MAKE_FUNCPTR(gnutls_x509_crt_deinit);
117 MAKE_FUNCPTR(gnutls_x509_crt_import);
118 MAKE_FUNCPTR(gnutls_x509_crt_init);
119 MAKE_FUNCPTR(gnutls_x509_privkey_deinit);
120 #undef MAKE_FUNCPTR
121
122 #if GNUTLS_VERSION_MAJOR < 3
123 #define GNUTLS_CIPHER_AES_192_CBC 92
124 #define GNUTLS_CIPHER_AES_128_GCM 93
125 #define GNUTLS_CIPHER_AES_256_GCM 94
126
127 #define GNUTLS_MAC_AEAD 200
128
129 #define GNUTLS_KX_ANON_ECDH 11
130 #define GNUTLS_KX_ECDHE_RSA 12
131 #define GNUTLS_KX_ECDHE_ECDSA 13
132 #define GNUTLS_KX_ECDHE_PSK 14
133 #endif
134
135 #if GNUTLS_VERSION_MAJOR < 3 || (GNUTLS_VERSION_MAJOR == 3 && GNUTLS_VERSION_MINOR < 5)
136 #define GNUTLS_ALPN_SERVER_PRECEDENCE (1<<1)
137 #endif
138
139 static int compat_cipher_get_block_size(gnutls_cipher_algorithm_t cipher)
140 {
141 switch(cipher) {
142 case GNUTLS_CIPHER_3DES_CBC:
143 return 8;
144 case GNUTLS_CIPHER_AES_128_CBC:
145 case GNUTLS_CIPHER_AES_256_CBC:
146 return 16;
147 case GNUTLS_CIPHER_ARCFOUR_128:
148 case GNUTLS_CIPHER_ARCFOUR_40:
149 return 1;
150 case GNUTLS_CIPHER_DES_CBC:
151 return 8;
152 case GNUTLS_CIPHER_NULL:
153 return 1;
154 case GNUTLS_CIPHER_RC2_40_CBC:
155 return 8;
156 default:
157 FIXME("Unknown cipher %#x, returning 1\n", cipher);
158 return 1;
159 }
160 }
161
162 static void compat_gnutls_transport_set_pull_timeout_function(gnutls_session_t session,
163 int (*func)(gnutls_transport_ptr_t, unsigned int))
164 {
165 FIXME("\n");
166 }
167
168 static int compat_gnutls_privkey_export_x509(gnutls_privkey_t privkey, gnutls_x509_privkey_t *key)
169 {
170 FIXME("\n");
171 return GNUTLS_E_UNKNOWN_PK_ALGORITHM;
172 }
173
174 static int compat_gnutls_privkey_import_rsa_raw(gnutls_privkey_t key, const gnutls_datum_t *p1,
175 const gnutls_datum_t *p2, const gnutls_datum_t *p3,
176 const gnutls_datum_t *p4, const gnutls_datum_t *p5,
177 const gnutls_datum_t *p6, const gnutls_datum_t *p7,
178 const gnutls_datum_t *p8)
179 {
180 FIXME("\n");
181 return GNUTLS_E_UNKNOWN_PK_ALGORITHM;
182 }
183
184 static int compat_gnutls_alpn_get_selected_protocol(gnutls_session_t session, gnutls_datum_t *protocol)
185 {
186 FIXME("\n");
187 return GNUTLS_E_INVALID_REQUEST;
188 }
189
190 static int compat_gnutls_alpn_set_protocols(gnutls_session_t session, const gnutls_datum_t *protocols,
191 unsigned size, unsigned int flags)
192 {
193 FIXME("\n");
194 return GNUTLS_E_INVALID_REQUEST;
195 }
196
197 static void compat_gnutls_dtls_set_mtu(gnutls_session_t session, unsigned int mtu)
198 {
199 FIXME("\n");
200 }
201
202 static ssize_t pull_adapter(gnutls_transport_ptr_t transport, void *buff, size_t buff_len)
203 {
204 struct schan_transport *t = (struct schan_transport*)transport;
205 gnutls_session_t s = (gnutls_session_t)callbacks->get_session_for_transport(t);
206
207 int ret = callbacks->pull(transport, buff, &buff_len);
208 if (ret == -1)
209 {
210 pgnutls_transport_set_errno(s, EAGAIN);
211 return -1;
212 }
213 if (ret < 0)
214 {
215 FIXME("unhandled error from pull callback %d\n", ret);
216 return -1;
217 }
218
219 return buff_len;
220 }
221
222 static ssize_t push_adapter(gnutls_transport_ptr_t transport, const void *buff, size_t buff_len)
223 {
224 struct schan_transport *t = (struct schan_transport*)transport;
225 gnutls_session_t s = (gnutls_session_t)callbacks->get_session_for_transport(t);
226
227 int ret = callbacks->push(transport, buff, &buff_len);
228 if (ret == -1)
229 {
230 pgnutls_transport_set_errno(s, EAGAIN);
231 return -1;
232 }
233 if (ret < 0)
234 {
235 FIXME("unhandled error from push callback %d\n", ret);
236 return -1;
237 }
238
239 return buff_len;
240 }
241
242 static const struct {
243 DWORD enable_flag;
244 const char *gnutls_flag;
245 } protocol_priority_flags[] = {
246 {SP_PROT_DTLS1_2_CLIENT, "VERS-DTLS1.2"},
247 {SP_PROT_DTLS1_0_CLIENT, "VERS-DTLS1.0"},
248 {SP_PROT_TLS1_3_CLIENT, "VERS-TLS1.3"},
249 {SP_PROT_TLS1_2_CLIENT, "VERS-TLS1.2"},
250 {SP_PROT_TLS1_1_CLIENT, "VERS-TLS1.1"},
251 {SP_PROT_TLS1_0_CLIENT, "VERS-TLS1.0"},
252 {SP_PROT_SSL3_CLIENT, "VERS-SSL3.0"}
253 /* {SP_PROT_SSL2_CLIENT} is not supported by GnuTLS */
254 };
255
256 static DWORD supported_protocols;
257
258 static void check_supported_protocols(void)
259 {
260 gnutls_session_t session;
261 char priority[64];
262 unsigned i;
263 int err;
264
265 err = pgnutls_init(&session, GNUTLS_CLIENT);
266 if (err != GNUTLS_E_SUCCESS)
267 {
268 pgnutls_perror(err);
269 return;
270 }
271
272 for(i = 0; i < ARRAY_SIZE(protocol_priority_flags); i++)
273 {
274 sprintf(priority, "NORMAL:-%s", protocol_priority_flags[i].gnutls_flag);
275 err = pgnutls_priority_set_direct(session, priority, NULL);
276 if (err == GNUTLS_E_SUCCESS)
277 {
278 TRACE("%s is supported\n", protocol_priority_flags[i].gnutls_flag);
279 supported_protocols |= protocol_priority_flags[i].enable_flag;
280 }
281 else
282 TRACE("%s is not supported\n", protocol_priority_flags[i].gnutls_flag);
283 }
284
285 pgnutls_deinit(session);
286 }
287
288 static DWORD CDECL schan_get_enabled_protocols(void)
289 {
290 return supported_protocols;
291 }
292
293 static int pull_timeout(gnutls_transport_ptr_t transport, unsigned int timeout)
294 {
295 struct schan_transport *t = (struct schan_transport*)transport;
296 gnutls_session_t s = (gnutls_session_t)callbacks->get_session_for_transport(t);
297 SIZE_T count = 0;
298
299 TRACE("\n");
300
301 if (callbacks->get_buffer(t, &t->in, &count)) return 1;
302 pgnutls_transport_set_errno(s, EAGAIN);
303 return -1;
304 }
305
306 static BOOL CDECL schan_create_session(schan_session *session, schan_credentials *cred)
307 {
308 gnutls_session_t *s = (gnutls_session_t*)session;
309 char priority[128] = "NORMAL:%LATEST_RECORD_VERSION", *p;
310 BOOL using_vers_all = FALSE, disabled;
311 unsigned int i, flags = (cred->credential_use == SECPKG_CRED_INBOUND) ? GNUTLS_SERVER : GNUTLS_CLIENT;
312 int err;
313
314 if (cred->enabled_protocols & (SP_PROT_DTLS1_0_CLIENT | SP_PROT_DTLS1_2_CLIENT))
315 {
316 flags |= GNUTLS_DATAGRAM;
317 }
318
319 err = pgnutls_init(s, flags);
320 if (err != GNUTLS_E_SUCCESS)
321 {
322 pgnutls_perror(err);
323 return FALSE;
324 }
325
326 p = priority + strlen(priority);
327
328 /* VERS-ALL is nice to use for forward compatibility. It was introduced before support for TLS1.3,
329 * so if TLS1.3 is supported, we may safely use it. Otherwise explicitly disable all known
330 * disabled protocols. */
331 if (supported_protocols & SP_PROT_TLS1_3_CLIENT)
332 {
333 strcpy(p, ":-VERS-ALL");
334 p += strlen(p);
335 using_vers_all = TRUE;
336 }
337
338 for (i = 0; i < ARRAY_SIZE(protocol_priority_flags); i++)
339 {
340 if (!(supported_protocols & protocol_priority_flags[i].enable_flag)) continue;
341
342 disabled = !(cred->enabled_protocols & protocol_priority_flags[i].enable_flag);
343 if (using_vers_all && disabled) continue;
344
345 *p++ = ':';
346 *p++ = disabled ? '-' : '+';
347 strcpy(p, protocol_priority_flags[i].gnutls_flag);
348 p += strlen(p);
349 }
350
351 TRACE("Using %s priority\n", debugstr_a(priority));
352 err = pgnutls_priority_set_direct(*s, priority, NULL);
353 if (err != GNUTLS_E_SUCCESS)
354 {
355 pgnutls_perror(err);
356 pgnutls_deinit(*s);
357 return FALSE;
358 }
359
360 err = pgnutls_credentials_set(*s, GNUTLS_CRD_CERTIFICATE,
361 (gnutls_certificate_credentials_t)cred->credentials);
362 if (err != GNUTLS_E_SUCCESS)
363 {
364 pgnutls_perror(err);
365 pgnutls_deinit(*s);
366 return FALSE;
367 }
368
369 pgnutls_transport_set_pull_function(*s, pull_adapter);
370 if (flags & GNUTLS_DATAGRAM) pgnutls_transport_set_pull_timeout_function(*s, pull_timeout);
371 pgnutls_transport_set_push_function(*s, push_adapter);
372
373 return TRUE;
374 }
375
376 static void CDECL schan_dispose_session(schan_session session)
377 {
378 gnutls_session_t s = (gnutls_session_t)session;
379 pgnutls_deinit(s);
380 }
381
382 static void CDECL schan_set_session_transport(schan_session session, struct schan_transport *t)
383 {
384 gnutls_session_t s = (gnutls_session_t)session;
385 pgnutls_transport_set_ptr(s, (gnutls_transport_ptr_t)t);
386 }
387
388 static void CDECL schan_set_session_target(schan_session session, const char *target)
389 {
390 gnutls_session_t s = (gnutls_session_t)session;
391 pgnutls_server_name_set( s, GNUTLS_NAME_DNS, target, strlen(target) );
392 }
393
394 static SECURITY_STATUS CDECL schan_handshake(schan_session session)
395 {
396 gnutls_session_t s = (gnutls_session_t)session;
397 int err;
398
399 while(1) {
400 err = pgnutls_handshake(s);
401 switch(err) {
402 case GNUTLS_E_SUCCESS:
403 TRACE("Handshake completed\n");
404 return SEC_E_OK;
405
406 case GNUTLS_E_AGAIN:
407 TRACE("Continue...\n");
408 return SEC_I_CONTINUE_NEEDED;
409
410 case GNUTLS_E_WARNING_ALERT_RECEIVED:
411 {
412 gnutls_alert_description_t alert = pgnutls_alert_get(s);
413
414 WARN("WARNING ALERT: %d %s\n", alert, pgnutls_alert_get_name(alert));
415
416 switch(alert) {
417 case GNUTLS_A_UNRECOGNIZED_NAME:
418 TRACE("Ignoring\n");
419 continue;
420 default:
421 return SEC_E_INTERNAL_ERROR;
422 }
423 }
424
425 case GNUTLS_E_FATAL_ALERT_RECEIVED:
426 {
427 gnutls_alert_description_t alert = pgnutls_alert_get(s);
428 WARN("FATAL ALERT: %d %s\n", alert, pgnutls_alert_get_name(alert));
429 return SEC_E_INTERNAL_ERROR;
430 }
431
432 default:
433 pgnutls_perror(err);
434 return SEC_E_INTERNAL_ERROR;
435 }
436 }
437
438 /* Never reached */
439 return SEC_E_OK;
440 }
441
442 static DWORD get_protocol(gnutls_protocol_t proto)
443 {
444 /* FIXME: currently schannel only implements client connections, but
445 * there's no reason it couldn't be used for servers as well. The
446 * context doesn't tell us which it is, so assume client for now.
447 */
448 switch (proto)
449 {
450 case GNUTLS_SSL3: return SP_PROT_SSL3_CLIENT;
451 case GNUTLS_TLS1_0: return SP_PROT_TLS1_0_CLIENT;
452 case GNUTLS_TLS1_1: return SP_PROT_TLS1_1_CLIENT;
453 case GNUTLS_TLS1_2: return SP_PROT_TLS1_2_CLIENT;
454 case GNUTLS_DTLS1_0: return SP_PROT_DTLS1_0_CLIENT;
455 case GNUTLS_DTLS1_2: return SP_PROT_DTLS1_2_CLIENT;
456 default:
457 FIXME("unknown protocol %d\n", proto);
458 return 0;
459 }
460 }
461
462 static ALG_ID get_cipher_algid(gnutls_cipher_algorithm_t cipher)
463 {
464 switch (cipher)
465 {
466 case GNUTLS_CIPHER_UNKNOWN:
467 case GNUTLS_CIPHER_NULL: return 0;
468 case GNUTLS_CIPHER_ARCFOUR_40:
469 case GNUTLS_CIPHER_ARCFOUR_128: return CALG_RC4;
470 case GNUTLS_CIPHER_DES_CBC: return CALG_DES;
471 case GNUTLS_CIPHER_3DES_CBC: return CALG_3DES;
472 case GNUTLS_CIPHER_AES_128_CBC:
473 case GNUTLS_CIPHER_AES_128_GCM: return CALG_AES_128;
474 case GNUTLS_CIPHER_AES_192_CBC: return CALG_AES_192;
475 case GNUTLS_CIPHER_AES_256_GCM:
476 case GNUTLS_CIPHER_AES_256_CBC: return CALG_AES_256;
477 case GNUTLS_CIPHER_RC2_40_CBC: return CALG_RC2;
478 default:
479 FIXME("unknown algorithm %d\n", cipher);
480 return 0;
481 }
482 }
483
484 static ALG_ID get_mac_algid(gnutls_mac_algorithm_t mac, gnutls_cipher_algorithm_t cipher)
485 {
486 switch (mac)
487 {
488 case GNUTLS_MAC_UNKNOWN:
489 case GNUTLS_MAC_NULL: return 0;
490 case GNUTLS_MAC_MD2: return CALG_MD2;
491 case GNUTLS_MAC_MD5: return CALG_MD5;
492 case GNUTLS_MAC_SHA1: return CALG_SHA1;
493 case GNUTLS_MAC_SHA256: return CALG_SHA_256;
494 case GNUTLS_MAC_SHA384: return CALG_SHA_384;
495 case GNUTLS_MAC_SHA512: return CALG_SHA_512;
496 case GNUTLS_MAC_AEAD:
497 /* When using AEAD (such as GCM), we return PRF algorithm instead
498 which is defined in RFC 5289. */
499 switch (cipher)
500 {
501 case GNUTLS_CIPHER_AES_128_GCM: return CALG_SHA_256;
502 case GNUTLS_CIPHER_AES_256_GCM: return CALG_SHA_384;
503 default:
504 break;
505 }
506 /* fall through */
507 default:
508 FIXME("unknown algorithm %d, cipher %d\n", mac, cipher);
509 return 0;
510 }
511 }
512
513 static ALG_ID get_kx_algid(int kx)
514 {
515 switch (kx)
516 {
517 case GNUTLS_KX_UNKNOWN: return 0;
518 case GNUTLS_KX_RSA:
519 case GNUTLS_KX_RSA_EXPORT: return CALG_RSA_KEYX;
520 case GNUTLS_KX_DHE_PSK:
521 case GNUTLS_KX_DHE_DSS:
522 case GNUTLS_KX_DHE_RSA: return CALG_DH_EPHEM;
523 case GNUTLS_KX_ANON_ECDH: return CALG_ECDH;
524 case GNUTLS_KX_ECDHE_RSA:
525 case GNUTLS_KX_ECDHE_PSK:
526 case GNUTLS_KX_ECDHE_ECDSA: return CALG_ECDH_EPHEM;
527 default:
528 FIXME("unknown algorithm %d\n", kx);
529 return 0;
530 }
531 }
532
533 static unsigned int CDECL schan_get_session_cipher_block_size(schan_session session)
534 {
535 gnutls_session_t s = (gnutls_session_t)session;
536 return pgnutls_cipher_get_block_size(pgnutls_cipher_get(s));
537 }
538
539 static unsigned int CDECL schan_get_max_message_size(schan_session session)
540 {
541 return pgnutls_record_get_max_size((gnutls_session_t)session);
542 }
543
544 static SECURITY_STATUS CDECL schan_get_connection_info(schan_session session, SecPkgContext_ConnectionInfo *info)
545 {
546 gnutls_session_t s = (gnutls_session_t)session;
547 gnutls_protocol_t proto = pgnutls_protocol_get_version(s);
548 gnutls_cipher_algorithm_t alg = pgnutls_cipher_get(s);
549 gnutls_mac_algorithm_t mac = pgnutls_mac_get(s);
550 gnutls_kx_algorithm_t kx = pgnutls_kx_get(s);
551
552 info->dwProtocol = get_protocol(proto);
553 info->aiCipher = get_cipher_algid(alg);
554 info->dwCipherStrength = pgnutls_cipher_get_key_size(alg) * 8;
555 info->aiHash = get_mac_algid(mac, alg);
556 info->dwHashStrength = pgnutls_mac_get_key_size(mac) * 8;
557 info->aiExch = get_kx_algid(kx);
558 /* FIXME: info->dwExchStrength? */
559 info->dwExchStrength = 0;
560 return SEC_E_OK;
561 }
562
563 static SECURITY_STATUS CDECL schan_get_unique_channel_binding(schan_session session, SecPkgContext_Bindings *bindings)
564 {
565 static const char prefix[] = "tls-unique:";
566 gnutls_datum_t datum;
567 int rc;
568 SECURITY_STATUS ret;
569 char *p;
570 gnutls_session_t s = (gnutls_session_t)session;
571
572 rc = pgnutls_session_channel_binding(s, GNUTLS_CB_TLS_UNIQUE, &datum);
573 if (rc)
574 {
575 pgnutls_perror(rc);
576 return SEC_E_INTERNAL_ERROR;
577 }
578
579 bindings->BindingsLength = sizeof(SEC_CHANNEL_BINDINGS) + sizeof(prefix)-1 + datum.size;
580 bindings->Bindings = RtlAllocateHeap(GetProcessHeap(), HEAP_ZERO_MEMORY, bindings->BindingsLength);
581 if (!bindings->Bindings)
582 ret = SEC_E_INSUFFICIENT_MEMORY;
583 else
584 {
585 bindings->Bindings->cbApplicationDataLength = sizeof(prefix)-1 + datum.size;
586 bindings->Bindings->dwApplicationDataOffset = sizeof(SEC_CHANNEL_BINDINGS);
587 p = (char*)(bindings->Bindings+1);
588 memcpy(p, prefix, sizeof(prefix)-1);
589 p += sizeof(prefix)-1;
590 memcpy(p, datum.data, datum.size);
591 ret = SEC_E_OK;
592 }
593 free(datum.data);
594 return ret;
595 }
596
597 static ALG_ID CDECL schan_get_key_signature_algorithm(schan_session session)
598 {
599 gnutls_session_t s = (gnutls_session_t)session;
600 gnutls_kx_algorithm_t kx = pgnutls_kx_get(s);
601
602 TRACE("(%p)\n", session);
603
604 switch (kx)
605 {
606 case GNUTLS_KX_UNKNOWN: return 0;
607 case GNUTLS_KX_RSA:
608 case GNUTLS_KX_RSA_EXPORT:
609 case GNUTLS_KX_DHE_RSA:
610 case GNUTLS_KX_ECDHE_RSA: return CALG_RSA_SIGN;
611 case GNUTLS_KX_ECDHE_ECDSA: return CALG_ECDSA;
612 default:
613 FIXME("unknown algorithm %d\n", kx);
614 return 0;
615 }
616 }
617
618 static SECURITY_STATUS CDECL schan_get_session_peer_certificate(schan_session session, struct schan_cert_list *list)
619 {
620 gnutls_session_t s = (gnutls_session_t)session;
621 const gnutls_datum_t *datum;
622 unsigned int i, size;
623 BYTE *ptr;
624
625 if (!(datum = pgnutls_certificate_get_peers(s, &list->count))) return SEC_E_INTERNAL_ERROR;
626
627 size = list->count * sizeof(list->certs[0]);
628 for (i = 0; i < list->count; i++) size += datum[i].size;
629 if (!(list->certs = RtlAllocateHeap(GetProcessHeap(), 0, size))) return SEC_E_INSUFFICIENT_MEMORY;
630
631 ptr = (BYTE *)&list->certs[list->count];
632 for (i = 0; i < list->count; i++)
633 {
634 list->certs[i].cbData = datum[i].size;
635 list->certs[i].pbData = ptr;
636 memcpy(list->certs[i].pbData, datum[i].data, datum[i].size);
637 ptr += datum[i].size;
638 }
639
640 return SEC_E_OK;
641 }
642
643 static SECURITY_STATUS CDECL schan_send(schan_session session, const void *buffer, SIZE_T *length)
644 {
645 gnutls_session_t s = (gnutls_session_t)session;
646 SSIZE_T ret, total = 0;
647
648 for (;;)
649 {
650 ret = pgnutls_record_send(s, (const char *)buffer + total, *length - total);
651 if (ret >= 0)
652 {
653 total += ret;
654 TRACE( "sent %ld now %ld/%ld\n", ret, total, *length );
655 if (total == *length) return SEC_E_OK;
656 }
657 else if (ret == GNUTLS_E_AGAIN)
658 {
659 struct schan_transport *t = (struct schan_transport *)pgnutls_transport_get_ptr(s);
660 SIZE_T count = 0;
661
662 if (callbacks->get_buffer(t, &t->out, &count)) continue;
663 return SEC_I_CONTINUE_NEEDED;
664 }
665 else
666 {
667 pgnutls_perror(ret);
668 return SEC_E_INTERNAL_ERROR;
669 }
670 }
671 }
672
673 static SECURITY_STATUS CDECL schan_recv(schan_session session, void *buffer, SIZE_T *length)
674 {
675 gnutls_session_t s = (gnutls_session_t)session;
676 ssize_t ret;
677
678 again:
679 ret = pgnutls_record_recv(s, buffer, *length);
680
681 if (ret >= 0)
682 *length = ret;
683 else if (ret == GNUTLS_E_AGAIN)
684 {
685 struct schan_transport *t = (struct schan_transport *)pgnutls_transport_get_ptr(s);
686 SIZE_T count = 0;
687
688 if (callbacks->get_buffer(t, &t->in, &count))
689 goto again;
690
691 return SEC_I_CONTINUE_NEEDED;
692 }
693 else if (ret == GNUTLS_E_REHANDSHAKE)
694 {
695 TRACE("Rehandshake requested\n");
696 return SEC_I_RENEGOTIATE;
697 }
698 else
699 {
700 pgnutls_perror(ret);
701 return SEC_E_INTERNAL_ERROR;
702 }
703
704 return SEC_E_OK;
705 }
706
707 static unsigned int parse_alpn_protocol_list(unsigned char *buffer, unsigned int buflen, gnutls_datum_t *list)
708 {
709 unsigned int len, offset = 0, count = 0;
710
711 while (buflen)
712 {
713 len = buffer[offset++];
714 buflen--;
715 if (!len || len > buflen) return 0;
716 if (list)
717 {
718 list[count].data = &buffer[offset];
719 list[count].size = len;
720 }
721 buflen -= len;
722 offset += len;
723 count++;
724 }
725
726 return count;
727 }
728
729 static void CDECL schan_set_application_protocols(schan_session session, unsigned char *buffer, unsigned int buflen)
730 {
731 gnutls_session_t s = (gnutls_session_t)session;
732 unsigned int extension_len, extension, count = 0, offset = 0;
733 unsigned short list_len;
734 gnutls_datum_t *protocols;
735 int ret;
736
737 if (sizeof(extension_len) > buflen) return;
738 extension_len = *(unsigned int *)&buffer[offset];
739 offset += sizeof(extension_len);
740
741 if (offset + sizeof(extension) > buflen) return;
742 extension = *(unsigned int *)&buffer[offset];
743 if (extension != SecApplicationProtocolNegotiationExt_ALPN)
744 {
745 FIXME("extension %u not supported\n", extension);
746 return;
747 }
748 offset += sizeof(extension);
749
750 if (offset + sizeof(list_len) > buflen) return;
751 list_len = *(unsigned short *)&buffer[offset];
752 offset += sizeof(list_len);
753
754 if (offset + list_len > buflen) return;
755 count = parse_alpn_protocol_list(&buffer[offset], list_len, NULL);
756 if (!count || !(protocols = RtlAllocateHeap(GetProcessHeap(), 0, count * sizeof(*protocols)))) return;
757
758 parse_alpn_protocol_list(&buffer[offset], list_len, protocols);
759 if ((ret = pgnutls_alpn_set_protocols(s, protocols, count, GNUTLS_ALPN_SERVER_PRECEDENCE) < 0))
760 {
761 pgnutls_perror(ret);
762 }
763
764 RtlFreeHeap(GetProcessHeap(), 0, protocols);
765 }
766
767 static SECURITY_STATUS CDECL schan_get_application_protocol(schan_session session,
768 SecPkgContext_ApplicationProtocol *protocol)
769 {
770 gnutls_session_t s = (gnutls_session_t)session;
771 gnutls_datum_t selected;
772
773 memset(protocol, 0, sizeof(*protocol));
774 if (pgnutls_alpn_get_selected_protocol(s, &selected) < 0) return SEC_E_OK;
775
776 if (selected.size <= sizeof(protocol->ProtocolId))
777 {
778 protocol->ProtoNegoStatus = SecApplicationProtocolNegotiationStatus_Success;
779 protocol->ProtoNegoExt = SecApplicationProtocolNegotiationExt_ALPN;
780 protocol->ProtocolIdSize = selected.size;
781 memcpy(protocol->ProtocolId, selected.data, selected.size);
782 TRACE("returning %s\n", wine_dbgstr_an((const char *)selected.data, selected.size));
783 }
784 return SEC_E_OK;
785 }
786
787 static SECURITY_STATUS CDECL schan_set_dtls_mtu(schan_session session, unsigned int mtu)
788 {
789 gnutls_session_t s = (gnutls_session_t)session;
790
791 pgnutls_dtls_set_mtu(s, mtu);
792 TRACE("MTU set to %u\n", mtu);
793 return SEC_E_OK;
794 }
795
796 static inline void reverse_bytes(BYTE *buf, ULONG len)
797 {
798 BYTE tmp;
799 ULONG i;
800 for (i = 0; i < len / 2; i++)
801 {
802 tmp = buf[i];
803 buf[i] = buf[len - i - 1];
804 buf[len - i - 1] = tmp;
805 }
806 }
807
808 static ULONG set_component(gnutls_datum_t *comp, BYTE *data, ULONG len, ULONG *buflen)
809 {
810 comp->data = data;
811 comp->size = len;
812 reverse_bytes(comp->data, comp->size);
813 if (comp->data[0] & 0x80) /* add leading 0 byte if most significant bit is set */
814 {
815 memmove(comp->data + 1, comp->data, *buflen);
816 comp->data[0] = 0;
817 comp->size++;
818 }
819 *buflen -= comp->size;
820 return comp->size;
821 }
822
823 static gnutls_x509_privkey_t get_x509_key(const DATA_BLOB *key_blob)
824 {
825 gnutls_privkey_t key = NULL;
826 gnutls_x509_privkey_t x509key = NULL;
827 gnutls_datum_t m, e, d, p, q, u, e1, e2;
828 BYTE *ptr;
829 RSAPUBKEY *rsakey;
830 DWORD size = key_blob->cbData;
831 int ret;
832
833 if (size < sizeof(BLOBHEADER)) return NULL;
834
835 rsakey = (RSAPUBKEY *)(key_blob->pbData + sizeof(BLOBHEADER));
836 TRACE("RSA key bitlen %u pubexp %u\n", rsakey->bitlen, rsakey->pubexp);
837
838 size -= sizeof(BLOBHEADER) + FIELD_OFFSET(RSAPUBKEY, pubexp);
839 set_component(&e, (BYTE *)&rsakey->pubexp, sizeof(rsakey->pubexp), &size);
840
841 ptr = (BYTE *)(rsakey + 1);
842 ptr += set_component(&m, ptr, rsakey->bitlen / 8, &size);
843 ptr += set_component(&p, ptr, rsakey->bitlen / 16, &size);
844 ptr += set_component(&q, ptr, rsakey->bitlen / 16, &size);
845 ptr += set_component(&e1, ptr, rsakey->bitlen / 16, &size);
846 ptr += set_component(&e2, ptr, rsakey->bitlen / 16, &size);
847 ptr += set_component(&u, ptr, rsakey->bitlen / 16, &size);
848 ptr += set_component(&d, ptr, rsakey->bitlen / 8, &size);
849
850 if ((ret = pgnutls_privkey_init(&key)) < 0)
851 {
852 pgnutls_perror(ret);
853 return NULL;
854 }
855
856 if (((ret = pgnutls_privkey_import_rsa_raw(key, &m, &e, &d, &p, &q, &u, &e1, &e2)) < 0) ||
857 (ret = pgnutls_privkey_export_x509(key, &x509key)) < 0)
858 {
859 pgnutls_perror(ret);
860 pgnutls_privkey_deinit(key);
861 return NULL;
862 }
863
864 return x509key;
865 }
866
867 static gnutls_x509_crt_t get_x509_crt(const CERT_CONTEXT *ctx)
868 {
869 gnutls_datum_t data;
870 gnutls_x509_crt_t crt;
871 int ret;
872
873 if (!ctx) return FALSE;
874 if (ctx->dwCertEncodingType != X509_ASN_ENCODING)
875 {
876 FIXME("encoding type %u not supported\n", ctx->dwCertEncodingType);
877 return NULL;
878 }
879
880 if ((ret = pgnutls_x509_crt_init(&crt)) < 0)
881 {
882 pgnutls_perror(ret);
883 return NULL;
884 }
885
886 data.data = ctx->pbCertEncoded;
887 data.size = ctx->cbCertEncoded;
888 if ((ret = pgnutls_x509_crt_import(crt, &data, GNUTLS_X509_FMT_DER)) < 0)
889 {
890 pgnutls_perror(ret);
891 pgnutls_x509_crt_deinit(crt);
892 return NULL;
893 }
894
895 return crt;
896 }
897
898 static BOOL CDECL schan_allocate_certificate_credentials(schan_credentials *c, const CERT_CONTEXT *ctx,
899 const DATA_BLOB *key_blob )
900 {
901 gnutls_certificate_credentials_t creds;
902 gnutls_x509_crt_t crt;
903 gnutls_x509_privkey_t key;
904 int ret;
905
906 ret = pgnutls_certificate_allocate_credentials(&creds);
907 if (ret != GNUTLS_E_SUCCESS)
908 {
909 pgnutls_perror(ret);
910 return FALSE;
911 }
912
913 if (!ctx)
914 {
915 c->credentials = creds;
916 return TRUE;
917 }
918
919 if (!(crt = get_x509_crt(ctx)))
920 {
921 pgnutls_certificate_free_credentials(creds);
922 return FALSE;
923 }
924
925 if (!(key = get_x509_key(key_blob)))
926 {
927 pgnutls_x509_crt_deinit(crt);
928 pgnutls_certificate_free_credentials(creds);
929 return FALSE;
930 }
931
932 ret = pgnutls_certificate_set_x509_key(creds, &crt, 1, key);
933 pgnutls_x509_privkey_deinit(key);
934 pgnutls_x509_crt_deinit(crt);
935 if (ret != GNUTLS_E_SUCCESS)
936 {
937 pgnutls_perror(ret);
938 pgnutls_certificate_free_credentials(creds);
939 return FALSE;
940 }
941
942 c->credentials = creds;
943 return TRUE;
944 }
945
946 static void CDECL schan_free_certificate_credentials(schan_credentials *c)
947 {
948 pgnutls_certificate_free_credentials(c->credentials);
949 }
950
951 static void gnutls_log(int level, const char *msg)
952 {
953 TRACE("<%d> %s", level, msg);
954 }
955
956 static BOOL gnutls_initialize(void)
957 {
958 const char *env_str;
959 int ret;
960
961 if ((env_str = getenv("GNUTLS_SYSTEM_PRIORITY_FILE")))
962 {
963 WARN("GNUTLS_SYSTEM_PRIORITY_FILE is %s.\n", debugstr_a(env_str));
964 }
965 else
966 {
967 WARN("Setting GNUTLS_SYSTEM_PRIORITY_FILE to \"/dev/null\".\n");
968 setenv("GNUTLS_SYSTEM_PRIORITY_FILE", "/dev/null", 0);
969 }
970
971 libgnutls_handle = dlopen(SONAME_LIBGNUTLS, RTLD_NOW);
972 if (!libgnutls_handle)
973 {
974 ERR_(winediag)("Failed to load libgnutls, secure connections will not be available.\n");
975 return FALSE;
976 }
977
978 #define LOAD_FUNCPTR(f) \
979 if (!(p##f = dlsym(libgnutls_handle, #f))) \
980 { \
981 ERR("Failed to load %s\n", #f); \
982 goto fail; \
983 }
984
985 LOAD_FUNCPTR(gnutls_alert_get)
986 LOAD_FUNCPTR(gnutls_alert_get_name)
987 LOAD_FUNCPTR(gnutls_certificate_allocate_credentials)
988 LOAD_FUNCPTR(gnutls_certificate_free_credentials)
989 LOAD_FUNCPTR(gnutls_certificate_get_peers)
990 LOAD_FUNCPTR(gnutls_certificate_set_x509_key)
991 LOAD_FUNCPTR(gnutls_cipher_get)
992 LOAD_FUNCPTR(gnutls_cipher_get_key_size)
993 LOAD_FUNCPTR(gnutls_credentials_set)
994 LOAD_FUNCPTR(gnutls_deinit)
995 LOAD_FUNCPTR(gnutls_global_deinit)
996 LOAD_FUNCPTR(gnutls_global_init)
997 LOAD_FUNCPTR(gnutls_global_set_log_function)
998 LOAD_FUNCPTR(gnutls_global_set_log_level)
999 LOAD_FUNCPTR(gnutls_handshake)
1000 LOAD_FUNCPTR(gnutls_init)
1001 LOAD_FUNCPTR(gnutls_kx_get)
1002 LOAD_FUNCPTR(gnutls_mac_get)
1003 LOAD_FUNCPTR(gnutls_mac_get_key_size)
1004 LOAD_FUNCPTR(gnutls_perror)
1005 LOAD_FUNCPTR(gnutls_protocol_get_version)
1006 LOAD_FUNCPTR(gnutls_priority_set_direct)
1007 LOAD_FUNCPTR(gnutls_privkey_deinit)
1008 LOAD_FUNCPTR(gnutls_privkey_init)
1009 LOAD_FUNCPTR(gnutls_record_get_max_size);
1010 LOAD_FUNCPTR(gnutls_record_recv);
1011 LOAD_FUNCPTR(gnutls_record_send);
1012 LOAD_FUNCPTR(gnutls_server_name_set)
1013 LOAD_FUNCPTR(gnutls_session_channel_binding)
1014 LOAD_FUNCPTR(gnutls_transport_get_ptr)
1015 LOAD_FUNCPTR(gnutls_transport_set_errno)
1016 LOAD_FUNCPTR(gnutls_transport_set_ptr)
1017 LOAD_FUNCPTR(gnutls_transport_set_pull_function)
1018 LOAD_FUNCPTR(gnutls_transport_set_push_function)
1019 LOAD_FUNCPTR(gnutls_x509_crt_deinit)
1020 LOAD_FUNCPTR(gnutls_x509_crt_import)
1021 LOAD_FUNCPTR(gnutls_x509_crt_init)
1022 LOAD_FUNCPTR(gnutls_x509_privkey_deinit)
1023 #undef LOAD_FUNCPTR
1024
1025 if (!(pgnutls_cipher_get_block_size = dlsym(libgnutls_handle, "gnutls_cipher_get_block_size")))
1026 {
1027 WARN("gnutls_cipher_get_block_size not found\n");
1028 pgnutls_cipher_get_block_size = compat_cipher_get_block_size;
1029 }
1030 if (!(pgnutls_transport_set_pull_timeout_function = dlsym(libgnutls_handle, "gnutls_transport_set_pull_timeout_function")))
1031 {
1032 WARN("gnutls_transport_set_pull_timeout_function not found\n");
1033 pgnutls_transport_set_pull_timeout_function = compat_gnutls_transport_set_pull_timeout_function;
1034 }
1035 if (!(pgnutls_alpn_set_protocols = dlsym(libgnutls_handle, "gnutls_alpn_set_protocols")))
1036 {
1037 WARN("gnutls_alpn_set_protocols not found\n");
1038 pgnutls_alpn_set_protocols = compat_gnutls_alpn_set_protocols;
1039 }
1040 if (!(pgnutls_alpn_get_selected_protocol = dlsym(libgnutls_handle, "gnutls_alpn_get_selected_protocol")))
1041 {
1042 WARN("gnutls_alpn_get_selected_protocol not found\n");
1043 pgnutls_alpn_get_selected_protocol = compat_gnutls_alpn_get_selected_protocol;
1044 }
1045 if (!(pgnutls_dtls_set_mtu = dlsym(libgnutls_handle, "gnutls_dtls_set_mtu")))
1046 {
1047 WARN("gnutls_dtls_set_mtu not found\n");
1048 pgnutls_dtls_set_mtu = compat_gnutls_dtls_set_mtu;
1049 }
1050 if (!(pgnutls_privkey_export_x509 = dlsym(libgnutls_handle, "gnutls_privkey_export_x509")))
1051 {
1052 WARN("gnutls_privkey_export_x509 not found\n");
1053 pgnutls_privkey_export_x509 = compat_gnutls_privkey_export_x509;
1054 }
1055 if (!(pgnutls_privkey_import_rsa_raw = dlsym(libgnutls_handle, "gnutls_privkey_import_rsa_raw")))
1056 {
1057 WARN("gnutls_privkey_import_rsa_raw not found\n");
1058 pgnutls_privkey_import_rsa_raw = compat_gnutls_privkey_import_rsa_raw;
1059 }
1060
1061 ret = pgnutls_global_init();
1062 if (ret != GNUTLS_E_SUCCESS)
1063 {
1064 pgnutls_perror(ret);
1065 goto fail;
1066 }
1067
1068 if (TRACE_ON(secur32))
1069 {
1070 pgnutls_global_set_log_level(4);
1071 pgnutls_global_set_log_function(gnutls_log);
1072 }
1073
1074 check_supported_protocols();
1075 return TRUE;
1076
1077 fail:
1078 dlclose(libgnutls_handle);
1079 libgnutls_handle = NULL;
1080 return FALSE;
1081 }
1082
1083 static void gnutls_uninitialize(void)
1084 {
1085 pgnutls_global_deinit();
1086 dlclose(libgnutls_handle);
1087 libgnutls_handle = NULL;
1088 }
1089
1090 static const struct schan_funcs funcs =
1091 {
1092 schan_allocate_certificate_credentials,
1093 schan_create_session,
1094 schan_dispose_session,
1095 schan_free_certificate_credentials,
1096 schan_get_application_protocol,
1097 schan_get_connection_info,
1098 schan_get_enabled_protocols,
1099 schan_get_key_signature_algorithm,
1100 schan_get_max_message_size,
1101 schan_get_session_cipher_block_size,
1102 schan_get_session_peer_certificate,
1103 schan_get_unique_channel_binding,
1104 schan_handshake,
1105 schan_recv,
1106 schan_send,
1107 schan_set_application_protocols,
1108 schan_set_dtls_mtu,
1109 schan_set_session_target,
1110 schan_set_session_transport,
1111 };
1112
1113 NTSTATUS CDECL __wine_init_unix_lib( HMODULE module, DWORD reason, const void *ptr_in, void *ptr_out )
1114 {
1115 switch (reason)
1116 {
1117 case DLL_PROCESS_ATTACH:
1118 if (!gnutls_initialize()) return STATUS_DLL_NOT_FOUND;
1119 callbacks = ptr_in;
1120 *(const struct schan_funcs **)ptr_out = &funcs;
1121 break;
1122 case DLL_PROCESS_DETACH:
1123 if (libgnutls_handle) gnutls_uninitialize();
1124 break;
1125 }
1126 return STATUS_SUCCESS;
1127 }
1128
1129 #endif /* SONAME_LIBGNUTLS */
Windows API implementation