294 lines
8.8 KiB
C
Executable file
294 lines
8.8 KiB
C
Executable file
/*
|
|
* Copyright (c) 2007-2016, Cameron Rich
|
|
*
|
|
* All rights reserved.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions are met:
|
|
*
|
|
* * Redistributions of source code must retain the above copyright notice,
|
|
* this list of conditions and the following disclaimer.
|
|
* * Redistributions in binary form must reproduce the above copyright notice,
|
|
* this list of conditions and the following disclaimer in the documentation
|
|
* and/or other materials provided with the distribution.
|
|
* * Neither the name of the axTLS project nor the names of its contributors
|
|
* may be used to endorse or promote products derived from this software
|
|
* without specific prior written permission.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
* "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
|
* A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
|
|
* CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
|
|
* EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
|
|
* PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
|
|
* PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
|
|
* LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
|
|
* NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
|
|
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
*/
|
|
|
|
/**
|
|
* @file tls1.h
|
|
*
|
|
* @brief The definitions for the TLS library.
|
|
*/
|
|
#ifndef HEADER_SSL_LIB_H
|
|
#define HEADER_SSL_LIB_H
|
|
|
|
#ifdef __cplusplus
|
|
extern "C" {
|
|
#endif
|
|
|
|
#include "version.h"
|
|
#include "config.h"
|
|
#include "os_int.h"
|
|
#include "os_port.h"
|
|
#include "crypto.h"
|
|
#include "crypto_misc.h"
|
|
|
|
#define SSL_PROTOCOL_MIN_VERSION 0x31 /* TLS v1.0 */
|
|
#define SSL_PROTOCOL_MINOR_VERSION 0x02 /* TLS v1.1 */
|
|
#define SSL_PROTOCOL_VERSION_MAX 0x32 /* TLS v1.1 */
|
|
#define SSL_PROTOCOL_VERSION1_1 0x32 /* TLS v1.1 */
|
|
#define SSL_RANDOM_SIZE 32
|
|
#define SSL_SECRET_SIZE 48
|
|
#define SSL_FINISHED_HASH_SIZE 12
|
|
#define SSL_RECORD_SIZE 5
|
|
#define SSL_SERVER_READ 0
|
|
#define SSL_SERVER_WRITE 1
|
|
#define SSL_CLIENT_READ 2
|
|
#define SSL_CLIENT_WRITE 3
|
|
#define SSL_HS_HDR_SIZE 4
|
|
|
|
/* the flags we use while establishing a connection */
|
|
#define SSL_NEED_RECORD 0x0001
|
|
#define SSL_TX_ENCRYPTED 0x0002
|
|
#define SSL_RX_ENCRYPTED 0x0004
|
|
#define SSL_SESSION_RESUME 0x0008
|
|
#define SSL_IS_CLIENT 0x0010
|
|
#define SSL_HAS_CERT_REQ 0x0020
|
|
#define SSL_SENT_CLOSE_NOTIFY 0x0040
|
|
|
|
/* some macros to muck around with flag bits */
|
|
#define SET_SSL_FLAG(A) (ssl->flag |= A)
|
|
#define CLR_SSL_FLAG(A) (ssl->flag &= ~A)
|
|
#define IS_SET_SSL_FLAG(A) (ssl->flag & A)
|
|
|
|
#define MAX_KEY_BYTE_SIZE 512 /* for a 4096 bit key */
|
|
#define RT_MAX_PLAIN_LENGTH 16384
|
|
#define RT_EXTRA 1024
|
|
#define BM_RECORD_OFFSET 5
|
|
|
|
#define NUM_PROTOCOLS 2
|
|
|
|
#define PARANOIA_CHECK(A, B) if (A < B) { \
|
|
ret = SSL_ERROR_INVALID_HANDSHAKE; goto error; }
|
|
|
|
/* protocol types */
|
|
enum
|
|
{
|
|
PT_CHANGE_CIPHER_SPEC = 20,
|
|
PT_ALERT_PROTOCOL,
|
|
PT_HANDSHAKE_PROTOCOL,
|
|
PT_APP_PROTOCOL_DATA
|
|
};
|
|
|
|
/* handshaking types */
|
|
enum
|
|
{
|
|
HS_HELLO_REQUEST,
|
|
HS_CLIENT_HELLO,
|
|
HS_SERVER_HELLO,
|
|
HS_CERTIFICATE = 11,
|
|
HS_SERVER_KEY_XCHG,
|
|
HS_CERT_REQ,
|
|
HS_SERVER_HELLO_DONE,
|
|
HS_CERT_VERIFY,
|
|
HS_CLIENT_KEY_XCHG,
|
|
HS_FINISHED = 20
|
|
};
|
|
|
|
typedef struct
|
|
{
|
|
uint8_t cipher;
|
|
uint8_t key_size;
|
|
uint8_t iv_size;
|
|
uint8_t key_block_size;
|
|
uint8_t padding_size;
|
|
uint8_t digest_size;
|
|
hmac_func hmac;
|
|
crypt_func encrypt;
|
|
crypt_func decrypt;
|
|
} cipher_info_t;
|
|
|
|
struct _SSLObjLoader
|
|
{
|
|
uint8_t *buf;
|
|
int len;
|
|
};
|
|
|
|
typedef struct _SSLObjLoader SSLObjLoader;
|
|
|
|
typedef struct
|
|
{
|
|
time_t conn_time;
|
|
uint8_t session_id[SSL_SESSION_ID_SIZE];
|
|
uint8_t master_secret[SSL_SECRET_SIZE];
|
|
} SSL_SESSION;
|
|
|
|
typedef struct
|
|
{
|
|
uint8_t *buf;
|
|
int size;
|
|
} SSL_CERT;
|
|
|
|
typedef struct
|
|
{
|
|
MD5_CTX md5_ctx;
|
|
SHA1_CTX sha1_ctx;
|
|
uint8_t final_finish_mac[SSL_FINISHED_HASH_SIZE];
|
|
uint8_t *key_block;
|
|
uint8_t master_secret[SSL_SECRET_SIZE];
|
|
uint8_t client_random[SSL_RANDOM_SIZE]; /* client's random sequence */
|
|
uint8_t server_random[SSL_RANDOM_SIZE]; /* server's random sequence */
|
|
uint16_t bm_proc_index;
|
|
} DISPOSABLE_CTX;
|
|
|
|
struct _SSL
|
|
{
|
|
uint32_t flag;
|
|
uint16_t need_bytes;
|
|
uint16_t got_bytes;
|
|
uint8_t record_type;
|
|
uint8_t cipher;
|
|
uint8_t sess_id_size;
|
|
uint8_t version;
|
|
uint8_t client_version;
|
|
int16_t next_state;
|
|
int16_t hs_status;
|
|
DISPOSABLE_CTX *dc; /* temporary data which we'll get rid of soon */
|
|
int client_fd;
|
|
const cipher_info_t *cipher_info;
|
|
void *encrypt_ctx;
|
|
void *decrypt_ctx;
|
|
uint8_t bm_all_data[RT_MAX_PLAIN_LENGTH+RT_EXTRA];
|
|
uint8_t *bm_data;
|
|
uint16_t bm_index;
|
|
uint16_t bm_read_index;
|
|
struct _SSL *next; /* doubly linked list */
|
|
struct _SSL *prev;
|
|
struct _SSL_CTX *ssl_ctx; /* back reference to a clnt/svr ctx */
|
|
#ifndef CONFIG_SSL_SKELETON_MODE
|
|
uint16_t session_index;
|
|
SSL_SESSION *session;
|
|
#endif
|
|
#ifdef CONFIG_SSL_CERT_VERIFICATION
|
|
X509_CTX *x509_ctx;
|
|
#endif
|
|
|
|
uint8_t session_id[SSL_SESSION_ID_SIZE];
|
|
uint8_t client_mac[SHA1_SIZE]; /* for HMAC verification */
|
|
uint8_t server_mac[SHA1_SIZE]; /* for HMAC verification */
|
|
uint8_t read_sequence[8]; /* 64 bit sequence number */
|
|
uint8_t write_sequence[8]; /* 64 bit sequence number */
|
|
uint8_t hmac_header[SSL_RECORD_SIZE]; /* rx hmac */
|
|
};
|
|
|
|
typedef struct _SSL SSL;
|
|
|
|
struct _SSL_CTX
|
|
{
|
|
uint32_t options;
|
|
uint8_t chain_length;
|
|
RSA_CTX *rsa_ctx;
|
|
#ifdef CONFIG_SSL_CERT_VERIFICATION
|
|
CA_CERT_CTX *ca_cert_ctx;
|
|
#endif
|
|
SSL *head;
|
|
SSL *tail;
|
|
SSL_CERT certs[CONFIG_SSL_MAX_CERTS];
|
|
#ifndef CONFIG_SSL_SKELETON_MODE
|
|
uint16_t num_sessions;
|
|
SSL_SESSION **ssl_sessions;
|
|
#endif
|
|
#ifdef CONFIG_SSL_CTX_MUTEXING
|
|
SSL_CTX_MUTEX_TYPE mutex;
|
|
#endif
|
|
#ifdef CONFIG_OPENSSL_COMPATIBLE
|
|
void *bonus_attr;
|
|
#endif
|
|
};
|
|
|
|
typedef struct _SSL_CTX SSL_CTX;
|
|
|
|
/* backwards compatibility */
|
|
typedef struct _SSL_CTX SSLCTX;
|
|
|
|
extern const uint8_t ssl_prot_prefs[NUM_PROTOCOLS];
|
|
|
|
SSL *ssl_new(SSL_CTX *ssl_ctx, int client_fd);
|
|
void disposable_new(SSL *ssl);
|
|
void disposable_free(SSL *ssl);
|
|
int send_packet(SSL *ssl, uint8_t protocol,
|
|
const uint8_t *in, int length);
|
|
int do_svr_handshake(SSL *ssl, int handshake_type, uint8_t *buf, int hs_len);
|
|
int do_clnt_handshake(SSL *ssl, int handshake_type, uint8_t *buf, int hs_len);
|
|
int process_finished(SSL *ssl, uint8_t *buf, int hs_len);
|
|
int process_sslv23_client_hello(SSL *ssl);
|
|
int send_alert(SSL *ssl, int error_code);
|
|
int send_finished(SSL *ssl);
|
|
int send_certificate(SSL *ssl);
|
|
int basic_read(SSL *ssl, uint8_t **in_data);
|
|
int send_change_cipher_spec(SSL *ssl);
|
|
void finished_digest(SSL *ssl, const char *label, uint8_t *digest);
|
|
void generate_master_secret(SSL *ssl, const uint8_t *premaster_secret);
|
|
void add_packet(SSL *ssl, const uint8_t *pkt, int len);
|
|
int add_cert(SSL_CTX *ssl_ctx, const uint8_t *buf, int len);
|
|
int add_private_key(SSL_CTX *ssl_ctx, SSLObjLoader *ssl_obj);
|
|
void ssl_obj_free(SSLObjLoader *ssl_obj);
|
|
int pkcs8_decode(SSL_CTX *ssl_ctx, SSLObjLoader *ssl_obj, const char *password);
|
|
int pkcs12_decode(SSL_CTX *ssl_ctx, SSLObjLoader *ssl_obj, const char *password);
|
|
int load_key_certs(SSL_CTX *ssl_ctx);
|
|
#ifdef CONFIG_SSL_CERT_VERIFICATION
|
|
int add_cert_auth(SSL_CTX *ssl_ctx, const uint8_t *buf, int len);
|
|
void remove_ca_certs(CA_CERT_CTX *ca_cert_ctx);
|
|
#endif
|
|
#ifdef CONFIG_SSL_ENABLE_CLIENT
|
|
int do_client_connect(SSL *ssl);
|
|
#endif
|
|
|
|
#ifdef CONFIG_SSL_FULL_MODE
|
|
void DISPLAY_STATE(SSL *ssl, int is_send, uint8_t state, int not_ok);
|
|
void DISPLAY_BYTES(SSL *ssl, const char *format,
|
|
const uint8_t *data, int size, ...);
|
|
void DISPLAY_CERT(SSL *ssl, const X509_CTX *x509_ctx);
|
|
void DISPLAY_RSA(SSL *ssl, const RSA_CTX *rsa_ctx);
|
|
void DISPLAY_ALERT(SSL *ssl, int alert);
|
|
#else
|
|
#define DISPLAY_STATE(A,B,C,D)
|
|
#define DISPLAY_CERT(A,B)
|
|
#define DISPLAY_RSA(A,B)
|
|
#define DISPLAY_ALERT(A, B)
|
|
#ifdef WIN32
|
|
void DISPLAY_BYTES(SSL *ssl, const char *format,/* win32 has no variadic macros */
|
|
const uint8_t *data, int size, ...);
|
|
#else
|
|
#define DISPLAY_BYTES(A,B,C,D,...)
|
|
#endif
|
|
#endif
|
|
|
|
#ifdef CONFIG_SSL_CERT_VERIFICATION
|
|
int process_certificate(SSL *ssl, X509_CTX **x509_ctx);
|
|
#endif
|
|
|
|
SSL_SESSION *ssl_session_update(int max_sessions,
|
|
SSL_SESSION *ssl_sessions[], SSL *ssl,
|
|
const uint8_t *session_id);
|
|
void kill_ssl_session(SSL_SESSION **ssl_sessions, SSL *ssl);
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
#endif
|