]>
Commit | Line | Data |
---|---|---|
d02b48c6 | 1 | /* ssl/s2_pkt.c */ |
58964a49 | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
d02b48c6 RE |
3 | * All rights reserved. |
4 | * | |
5 | * This package is an SSL implementation written | |
6 | * by Eric Young (eay@cryptsoft.com). | |
7 | * The implementation was written so as to conform with Netscapes SSL. | |
8 | * | |
9 | * This library is free for commercial and non-commercial use as long as | |
10 | * the following conditions are aheared to. The following conditions | |
11 | * apply to all code found in this distribution, be it the RC4, RSA, | |
12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | |
13 | * included with this distribution is covered by the same copyright terms | |
14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | |
15 | * | |
16 | * Copyright remains Eric Young's, and as such any Copyright notices in | |
17 | * the code are not to be removed. | |
18 | * If this package is used in a product, Eric Young should be given attribution | |
19 | * as the author of the parts of the library used. | |
20 | * This can be in the form of a textual message at program startup or | |
21 | * in documentation (online or textual) provided with the package. | |
22 | * | |
23 | * Redistribution and use in source and binary forms, with or without | |
24 | * modification, are permitted provided that the following conditions | |
25 | * are met: | |
26 | * 1. Redistributions of source code must retain the copyright | |
27 | * notice, this list of conditions and the following disclaimer. | |
28 | * 2. Redistributions in binary form must reproduce the above copyright | |
29 | * notice, this list of conditions and the following disclaimer in the | |
30 | * documentation and/or other materials provided with the distribution. | |
31 | * 3. All advertising materials mentioning features or use of this software | |
32 | * must display the following acknowledgement: | |
33 | * "This product includes cryptographic software written by | |
34 | * Eric Young (eay@cryptsoft.com)" | |
35 | * The word 'cryptographic' can be left out if the rouines from the library | |
36 | * being used are not cryptographic related :-). | |
37 | * 4. If you include any Windows specific code (or a derivative thereof) from | |
38 | * the apps directory (application code) you must include an acknowledgement: | |
39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | |
40 | * | |
41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | |
42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | |
43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | |
44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | |
45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | |
46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | |
47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | |
48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | |
49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | |
50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | |
51 | * SUCH DAMAGE. | |
52 | * | |
53 | * The licence and distribution terms for any publically available version or | |
54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | |
55 | * copied and put under another distribution licence | |
56 | * [including the GNU Public Licence.] | |
57 | */ | |
5a4fbc69 | 58 | /* ==================================================================== |
cf82191d | 59 | * Copyright (c) 1998-2001 The OpenSSL Project. All rights reserved. |
5a4fbc69 BM |
60 | * |
61 | * Redistribution and use in source and binary forms, with or without | |
62 | * modification, are permitted provided that the following conditions | |
63 | * are met: | |
64 | * | |
65 | * 1. Redistributions of source code must retain the above copyright | |
66 | * notice, this list of conditions and the following disclaimer. | |
67 | * | |
68 | * 2. Redistributions in binary form must reproduce the above copyright | |
69 | * notice, this list of conditions and the following disclaimer in | |
70 | * the documentation and/or other materials provided with the | |
71 | * distribution. | |
72 | * | |
73 | * 3. All advertising materials mentioning features or use of this | |
74 | * software must display the following acknowledgment: | |
75 | * "This product includes software developed by the OpenSSL Project | |
76 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | |
77 | * | |
78 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | |
79 | * endorse or promote products derived from this software without | |
80 | * prior written permission. For written permission, please contact | |
81 | * openssl-core@openssl.org. | |
82 | * | |
83 | * 5. Products derived from this software may not be called "OpenSSL" | |
84 | * nor may "OpenSSL" appear in their names without prior written | |
85 | * permission of the OpenSSL Project. | |
86 | * | |
87 | * 6. Redistributions of any form whatsoever must retain the following | |
88 | * acknowledgment: | |
89 | * "This product includes software developed by the OpenSSL Project | |
90 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | |
91 | * | |
92 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | |
93 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | |
94 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | |
95 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | |
96 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | |
97 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | |
98 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | |
99 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | |
100 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | |
101 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | |
102 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | |
103 | * OF THE POSSIBILITY OF SUCH DAMAGE. | |
104 | * ==================================================================== | |
105 | * | |
106 | * This product includes cryptographic software written by Eric Young | |
107 | * (eay@cryptsoft.com). This product includes software written by Tim | |
108 | * Hudson (tjh@cryptsoft.com). | |
109 | * | |
110 | */ | |
d02b48c6 | 111 | |
aa82db4f | 112 | #include "ssl_locl.h" |
bc36ee62 | 113 | #ifndef OPENSSL_NO_SSL2 |
d02b48c6 RE |
114 | #include <stdio.h> |
115 | #include <errno.h> | |
116 | #define USE_SOCKETS | |
d02b48c6 | 117 | |
d02b48c6 | 118 | static int read_n(SSL *s,unsigned int n,unsigned int max,unsigned int extend); |
61f5b6f3 BL |
119 | static int do_ssl_write(SSL *s, const unsigned char *buf, unsigned int len); |
120 | static int write_pending(SSL *s, const unsigned char *buf, unsigned int len); | |
d02b48c6 | 121 | static int ssl_mt_error(int n); |
d02b48c6 | 122 | |
d02b48c6 | 123 | |
5a4fbc69 | 124 | /* SSL 2.0 imlementation for SSL_read/SSL_peek - |
d02b48c6 RE |
125 | * This routine will return 0 to len bytes, decrypted etc if required. |
126 | */ | |
5a4fbc69 | 127 | static int ssl2_read_internal(SSL *s, void *buf, int len, int peek) |
d02b48c6 RE |
128 | { |
129 | int n; | |
130 | unsigned char mac[MAX_MAC_SIZE]; | |
131 | unsigned char *p; | |
132 | int i; | |
ee60d9fb | 133 | unsigned int mac_size; |
d02b48c6 | 134 | |
a0aae68c | 135 | ssl2_read_again: |
d02b48c6 RE |
136 | if (SSL_in_init(s) && !s->in_handshake) |
137 | { | |
138 | n=s->handshake_func(s); | |
139 | if (n < 0) return(n); | |
140 | if (n == 0) | |
141 | { | |
5a4fbc69 | 142 | SSLerr(SSL_F_SSL2_READ_INTERNAL,SSL_R_SSL_HANDSHAKE_FAILURE); |
d02b48c6 RE |
143 | return(-1); |
144 | } | |
145 | } | |
146 | ||
58964a49 | 147 | clear_sys_error(); |
d02b48c6 RE |
148 | s->rwstate=SSL_NOTHING; |
149 | if (len <= 0) return(len); | |
150 | ||
151 | if (s->s2->ract_data_length != 0) /* read from buffer */ | |
152 | { | |
153 | if (len > s->s2->ract_data_length) | |
154 | n=s->s2->ract_data_length; | |
155 | else | |
156 | n=len; | |
157 | ||
158 | memcpy(buf,s->s2->ract_data,(unsigned int)n); | |
a0aae68c BM |
159 | if (!peek) |
160 | { | |
161 | s->s2->ract_data_length-=n; | |
162 | s->s2->ract_data+=n; | |
163 | if (s->s2->ract_data_length == 0) | |
164 | s->rstate=SSL_ST_READ_HEADER; | |
165 | } | |
166 | ||
d02b48c6 RE |
167 | return(n); |
168 | } | |
169 | ||
a0aae68c BM |
170 | /* s->s2->ract_data_length == 0 |
171 | * | |
172 | * Fill the buffer, then goto ssl2_read_again. | |
173 | */ | |
174 | ||
d02b48c6 RE |
175 | if (s->rstate == SSL_ST_READ_HEADER) |
176 | { | |
177 | if (s->first_packet) | |
178 | { | |
179 | n=read_n(s,5,SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER+2,0); | |
180 | if (n <= 0) return(n); /* error or non-blocking */ | |
181 | s->first_packet=0; | |
182 | p=s->packet; | |
183 | if (!((p[0] & 0x80) && ( | |
184 | (p[2] == SSL2_MT_CLIENT_HELLO) || | |
185 | (p[2] == SSL2_MT_SERVER_HELLO)))) | |
186 | { | |
5a4fbc69 | 187 | SSLerr(SSL_F_SSL2_READ_INTERNAL,SSL_R_NON_SSLV2_INITIAL_PACKET); |
d02b48c6 RE |
188 | return(-1); |
189 | } | |
190 | } | |
191 | else | |
192 | { | |
193 | n=read_n(s,2,SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER+2,0); | |
194 | if (n <= 0) return(n); /* error or non-blocking */ | |
195 | } | |
196 | /* part read stuff */ | |
197 | ||
198 | s->rstate=SSL_ST_READ_BODY; | |
199 | p=s->packet; | |
200 | /* Do header */ | |
201 | /*s->s2->padding=0;*/ | |
202 | s->s2->escape=0; | |
203 | s->s2->rlength=(((unsigned int)p[0])<<8)|((unsigned int)p[1]); | |
204 | if ((p[0] & TWO_BYTE_BIT)) /* Two byte header? */ | |
205 | { | |
206 | s->s2->three_byte_header=0; | |
207 | s->s2->rlength&=TWO_BYTE_MASK; | |
208 | } | |
209 | else | |
210 | { | |
211 | s->s2->three_byte_header=1; | |
212 | s->s2->rlength&=THREE_BYTE_MASK; | |
213 | ||
214 | /* security >s2->escape */ | |
215 | s->s2->escape=((p[0] & SEC_ESC_BIT))?1:0; | |
216 | } | |
217 | } | |
218 | ||
219 | if (s->rstate == SSL_ST_READ_BODY) | |
220 | { | |
221 | n=s->s2->rlength+2+s->s2->three_byte_header; | |
222 | if (n > (int)s->packet_length) | |
223 | { | |
224 | n-=s->packet_length; | |
225 | i=read_n(s,(unsigned int)n,(unsigned int)n,1); | |
226 | if (i <= 0) return(i); /* ERROR */ | |
227 | } | |
228 | ||
229 | p= &(s->packet[2]); | |
230 | s->rstate=SSL_ST_READ_HEADER; | |
231 | if (s->s2->three_byte_header) | |
232 | s->s2->padding= *(p++); | |
233 | else s->s2->padding=0; | |
234 | ||
235 | /* Data portion */ | |
236 | if (s->s2->clear_text) | |
237 | { | |
ee60d9fb | 238 | mac_size = 0; |
d02b48c6 RE |
239 | s->s2->mac_data=p; |
240 | s->s2->ract_data=p; | |
ee60d9fb BM |
241 | if (s->s2->padding) |
242 | { | |
243 | SSLerr(SSL_F_SSL2_READ_INTERNAL,SSL_R_ILLEGAL_PADDING); | |
244 | return(-1); | |
245 | } | |
d02b48c6 RE |
246 | } |
247 | else | |
248 | { | |
249 | mac_size=EVP_MD_size(s->read_hash); | |
54a656ef | 250 | OPENSSL_assert(mac_size <= MAX_MAC_SIZE); |
d02b48c6 RE |
251 | s->s2->mac_data=p; |
252 | s->s2->ract_data= &p[mac_size]; | |
ee60d9fb BM |
253 | if (s->s2->padding + mac_size > s->s2->rlength) |
254 | { | |
255 | SSLerr(SSL_F_SSL2_READ_INTERNAL,SSL_R_ILLEGAL_PADDING); | |
256 | return(-1); | |
257 | } | |
d02b48c6 RE |
258 | } |
259 | ||
260 | s->s2->ract_data_length=s->s2->rlength; | |
261 | /* added a check for length > max_size in case | |
262 | * encryption was not turned on yet due to an error */ | |
263 | if ((!s->s2->clear_text) && | |
264 | (s->s2->rlength >= mac_size)) | |
265 | { | |
266 | ssl2_enc(s,0); | |
267 | s->s2->ract_data_length-=mac_size; | |
268 | ssl2_mac(s,mac,0); | |
269 | s->s2->ract_data_length-=s->s2->padding; | |
27088131 | 270 | if ( (CRYPTO_memcmp(mac,s->s2->mac_data,mac_size) != 0) || |
d02b48c6 RE |
271 | (s->s2->rlength%EVP_CIPHER_CTX_block_size(s->enc_read_ctx) != 0)) |
272 | { | |
5a4fbc69 | 273 | SSLerr(SSL_F_SSL2_READ_INTERNAL,SSL_R_BAD_MAC_DECODE); |
58964a49 | 274 | return(-1); |
d02b48c6 RE |
275 | } |
276 | } | |
277 | INC32(s->s2->read_sequence); /* expect next number */ | |
278 | /* s->s2->ract_data is now available for processing */ | |
279 | ||
a0aae68c BM |
280 | /* Possibly the packet that we just read had 0 actual data bytes. |
281 | * (SSLeay/OpenSSL itself never sends such packets; see ssl2_write.) | |
282 | * In this case, returning 0 would be interpreted by the caller | |
283 | * as indicating EOF, so it's not a good idea. Instead, we just | |
284 | * continue reading; thus ssl2_read_internal may have to process | |
285 | * multiple packets before it can return. | |
286 | * | |
287 | * [Note that using select() for blocking sockets *never* guarantees | |
85f48f7e | 288 | * that the next SSL_read will not block -- the available |
a0aae68c BM |
289 | * data may contain incomplete packets, and except for SSL 2, |
290 | * renegotiation can confuse things even more.] */ | |
85f48f7e BM |
291 | |
292 | goto ssl2_read_again; /* This should really be | |
a0aae68c BM |
293 | * "return ssl2_read(s,buf,len)", |
294 | * but that would allow for | |
295 | * denial-of-service attacks if a | |
296 | * C compiler is used that does not | |
297 | * recognize end-recursion. */ | |
d02b48c6 RE |
298 | } |
299 | else | |
300 | { | |
5a4fbc69 | 301 | SSLerr(SSL_F_SSL2_READ_INTERNAL,SSL_R_BAD_STATE); |
58964a49 | 302 | return(-1); |
d02b48c6 RE |
303 | } |
304 | } | |
305 | ||
5a4fbc69 BM |
306 | int ssl2_read(SSL *s, void *buf, int len) |
307 | { | |
308 | return ssl2_read_internal(s, buf, len, 0); | |
309 | } | |
310 | ||
e34cfcf7 | 311 | int ssl2_peek(SSL *s, void *buf, int len) |
5a4fbc69 BM |
312 | { |
313 | return ssl2_read_internal(s, buf, len, 1); | |
314 | } | |
315 | ||
6b691a5c UM |
316 | static int read_n(SSL *s, unsigned int n, unsigned int max, |
317 | unsigned int extend) | |
d02b48c6 RE |
318 | { |
319 | int i,off,newb; | |
320 | ||
321 | /* if there is stuff still in the buffer from a previous read, | |
322 | * and there is more than we want, take some. */ | |
323 | if (s->s2->rbuf_left >= (int)n) | |
324 | { | |
325 | if (extend) | |
326 | s->packet_length+=n; | |
327 | else | |
328 | { | |
329 | s->packet= &(s->s2->rbuf[s->s2->rbuf_offs]); | |
330 | s->packet_length=n; | |
331 | } | |
332 | s->s2->rbuf_left-=n; | |
333 | s->s2->rbuf_offs+=n; | |
334 | return(n); | |
335 | } | |
336 | ||
337 | if (!s->read_ahead) max=n; | |
338 | if (max > (unsigned int)(SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER+2)) | |
339 | max=SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER+2; | |
340 | ||
341 | ||
342 | /* Else we want more than we have. | |
343 | * First, if there is some left or we want to extend */ | |
344 | off=0; | |
345 | if ((s->s2->rbuf_left != 0) || ((s->packet_length != 0) && extend)) | |
346 | { | |
347 | newb=s->s2->rbuf_left; | |
348 | if (extend) | |
349 | { | |
350 | off=s->packet_length; | |
351 | if (s->packet != s->s2->rbuf) | |
352 | memcpy(s->s2->rbuf,s->packet, | |
353 | (unsigned int)newb+off); | |
354 | } | |
355 | else if (s->s2->rbuf_offs != 0) | |
356 | { | |
357 | memcpy(s->s2->rbuf,&(s->s2->rbuf[s->s2->rbuf_offs]), | |
358 | (unsigned int)newb); | |
359 | s->s2->rbuf_offs=0; | |
360 | } | |
361 | s->s2->rbuf_left=0; | |
362 | } | |
363 | else | |
364 | newb=0; | |
365 | ||
366 | /* off is the offset to start writing too. | |
367 | * r->s2->rbuf_offs is the 'unread data', now 0. | |
368 | * newb is the number of new bytes so far | |
369 | */ | |
370 | s->packet=s->s2->rbuf; | |
371 | while (newb < (int)n) | |
372 | { | |
58964a49 | 373 | clear_sys_error(); |
d02b48c6 RE |
374 | if (s->rbio != NULL) |
375 | { | |
376 | s->rwstate=SSL_READING; | |
377 | i=BIO_read(s->rbio,(char *)&(s->s2->rbuf[off+newb]), | |
378 | max-newb); | |
379 | } | |
380 | else | |
381 | { | |
382 | SSLerr(SSL_F_READ_N,SSL_R_READ_BIO_NOT_SET); | |
383 | i= -1; | |
384 | } | |
385 | #ifdef PKT_DEBUG | |
386 | if (s->debug & 0x01) sleep(1); | |
387 | #endif | |
388 | if (i <= 0) | |
389 | { | |
390 | s->s2->rbuf_left+=newb; | |
391 | return(i); | |
392 | } | |
393 | newb+=i; | |
394 | } | |
395 | ||
396 | /* record unread data */ | |
397 | if (newb > (int)n) | |
398 | { | |
399 | s->s2->rbuf_offs=n+off; | |
400 | s->s2->rbuf_left=newb-n; | |
401 | } | |
402 | else | |
403 | { | |
404 | s->s2->rbuf_offs=0; | |
405 | s->s2->rbuf_left=0; | |
406 | } | |
407 | if (extend) | |
408 | s->packet_length+=n; | |
409 | else | |
410 | s->packet_length=n; | |
411 | s->rwstate=SSL_NOTHING; | |
412 | return(n); | |
413 | } | |
414 | ||
61f5b6f3 | 415 | int ssl2_write(SSL *s, const void *_buf, int len) |
d02b48c6 | 416 | { |
61f5b6f3 | 417 | const unsigned char *buf=_buf; |
d02b48c6 RE |
418 | unsigned int n,tot; |
419 | int i; | |
420 | ||
421 | if (SSL_in_init(s) && !s->in_handshake) | |
422 | { | |
423 | i=s->handshake_func(s); | |
424 | if (i < 0) return(i); | |
425 | if (i == 0) | |
426 | { | |
427 | SSLerr(SSL_F_SSL2_WRITE,SSL_R_SSL_HANDSHAKE_FAILURE); | |
428 | return(-1); | |
429 | } | |
430 | } | |
431 | ||
432 | if (s->error) | |
433 | { | |
434 | ssl2_write_error(s); | |
435 | if (s->error) | |
436 | return(-1); | |
437 | } | |
438 | ||
58964a49 | 439 | clear_sys_error(); |
d02b48c6 RE |
440 | s->rwstate=SSL_NOTHING; |
441 | if (len <= 0) return(len); | |
442 | ||
443 | tot=s->s2->wnum; | |
444 | s->s2->wnum=0; | |
445 | ||
446 | n=(len-tot); | |
447 | for (;;) | |
448 | { | |
449 | i=do_ssl_write(s,&(buf[tot]),n); | |
450 | if (i <= 0) | |
451 | { | |
452 | s->s2->wnum=tot; | |
453 | return(i); | |
454 | } | |
e1056435 | 455 | if ((i == (int)n) || |
11b1adad | 456 | (s->mode & SSL_MODE_ENABLE_PARTIAL_WRITE)) |
e1056435 BM |
457 | { |
458 | return(tot+i); | |
459 | } | |
460 | ||
d02b48c6 RE |
461 | n-=i; |
462 | tot+=i; | |
463 | } | |
464 | } | |
465 | ||
61f5b6f3 | 466 | static int write_pending(SSL *s, const unsigned char *buf, unsigned int len) |
d02b48c6 RE |
467 | { |
468 | int i; | |
469 | ||
470 | /* s->s2->wpend_len != 0 MUST be true. */ | |
471 | ||
472 | /* check that they have given us the same buffer to | |
473 | * write */ | |
e1056435 BM |
474 | if ((s->s2->wpend_tot > (int)len) || |
475 | ((s->s2->wpend_buf != buf) && | |
1afd8b39 | 476 | !(s->mode & SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER))) |
d02b48c6 RE |
477 | { |
478 | SSLerr(SSL_F_WRITE_PENDING,SSL_R_BAD_WRITE_RETRY); | |
58964a49 | 479 | return(-1); |
d02b48c6 RE |
480 | } |
481 | ||
482 | for (;;) | |
483 | { | |
58964a49 | 484 | clear_sys_error(); |
d02b48c6 RE |
485 | if (s->wbio != NULL) |
486 | { | |
487 | s->rwstate=SSL_WRITING; | |
488 | i=BIO_write(s->wbio, | |
489 | (char *)&(s->s2->write_ptr[s->s2->wpend_off]), | |
490 | (unsigned int)s->s2->wpend_len); | |
491 | } | |
492 | else | |
493 | { | |
494 | SSLerr(SSL_F_WRITE_PENDING,SSL_R_WRITE_BIO_NOT_SET); | |
495 | i= -1; | |
496 | } | |
497 | #ifdef PKT_DEBUG | |
498 | if (s->debug & 0x01) sleep(1); | |
499 | #endif | |
500 | if (i == s->s2->wpend_len) | |
501 | { | |
502 | s->s2->wpend_len=0; | |
503 | s->rwstate=SSL_NOTHING; | |
504 | return(s->s2->wpend_ret); | |
505 | } | |
506 | else if (i <= 0) | |
507 | return(i); | |
508 | s->s2->wpend_off+=i; | |
509 | s->s2->wpend_len-=i; | |
510 | } | |
511 | } | |
512 | ||
61f5b6f3 | 513 | static int do_ssl_write(SSL *s, const unsigned char *buf, unsigned int len) |
d02b48c6 RE |
514 | { |
515 | unsigned int j,k,olen,p,mac_size,bs; | |
516 | register unsigned char *pp; | |
517 | ||
518 | olen=len; | |
519 | ||
520 | /* first check if there is data from an encryption waiting to | |
521 | * be sent - it must be sent because the other end is waiting. | |
522 | * This will happen with non-blocking IO. We print it and then | |
523 | * return. | |
524 | */ | |
525 | if (s->s2->wpend_len != 0) return(write_pending(s,buf,len)); | |
526 | ||
527 | /* set mac_size to mac size */ | |
528 | if (s->s2->clear_text) | |
529 | mac_size=0; | |
530 | else | |
531 | mac_size=EVP_MD_size(s->write_hash); | |
532 | ||
533 | /* lets set the pad p */ | |
534 | if (s->s2->clear_text) | |
535 | { | |
536 | if (len > SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER) | |
537 | len=SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER; | |
538 | p=0; | |
539 | s->s2->three_byte_header=0; | |
540 | /* len=len; */ | |
541 | } | |
542 | else | |
543 | { | |
544 | bs=EVP_CIPHER_CTX_block_size(s->enc_read_ctx); | |
545 | j=len+mac_size; | |
3880cd35 BM |
546 | /* Two-byte headers allow for a larger record length than |
547 | * three-byte headers, but we can't use them if we need | |
548 | * padding or if we have to set the escape bit. */ | |
d02b48c6 RE |
549 | if ((j > SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER) && |
550 | (!s->s2->escape)) | |
551 | { | |
552 | if (j > SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER) | |
553 | j=SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER; | |
554 | /* set k to the max number of bytes with 2 | |
555 | * byte header */ | |
556 | k=j-(j%bs); | |
557 | /* how many data bytes? */ | |
558 | len=k-mac_size; | |
559 | s->s2->three_byte_header=0; | |
560 | p=0; | |
561 | } | |
562 | else if ((bs <= 1) && (!s->s2->escape)) | |
563 | { | |
3880cd35 BM |
564 | /* j <= SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER, thus |
565 | * j < SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER */ | |
d02b48c6 RE |
566 | s->s2->three_byte_header=0; |
567 | p=0; | |
568 | } | |
3880cd35 | 569 | else /* we may have to use a 3 byte header */ |
d02b48c6 | 570 | { |
3880cd35 BM |
571 | /* If s->s2->escape is not set, then |
572 | * j <= SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER, and thus | |
573 | * j < SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER. */ | |
d02b48c6 RE |
574 | p=(j%bs); |
575 | p=(p == 0)?0:(bs-p); | |
576 | if (s->s2->escape) | |
3880cd35 | 577 | { |
d02b48c6 | 578 | s->s2->three_byte_header=1; |
3880cd35 BM |
579 | if (j > SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER) |
580 | j=SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER; | |
581 | } | |
d02b48c6 RE |
582 | else |
583 | s->s2->three_byte_header=(p == 0)?0:1; | |
584 | } | |
585 | } | |
3880cd35 BM |
586 | |
587 | /* Now | |
588 | * j <= SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER | |
589 | * holds, and if s->s2->three_byte_header is set, then even | |
590 | * j <= SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER. | |
591 | */ | |
592 | ||
d02b48c6 RE |
593 | /* mac_size is the number of MAC bytes |
594 | * len is the number of data bytes we are going to send | |
595 | * p is the number of padding bytes | |
3880cd35 | 596 | * (if it is a two-byte header, then p == 0) */ |
d02b48c6 RE |
597 | |
598 | s->s2->wlength=len; | |
599 | s->s2->padding=p; | |
600 | s->s2->mac_data= &(s->s2->wbuf[3]); | |
601 | s->s2->wact_data= &(s->s2->wbuf[3+mac_size]); | |
602 | /* we copy the data into s->s2->wbuf */ | |
603 | memcpy(s->s2->wact_data,buf,len); | |
d02b48c6 | 604 | if (p) |
ee60d9fb | 605 | memset(&(s->s2->wact_data[len]),0,p); /* arbitrary padding */ |
d02b48c6 RE |
606 | |
607 | if (!s->s2->clear_text) | |
608 | { | |
609 | s->s2->wact_data_length=len+p; | |
610 | ssl2_mac(s,s->s2->mac_data,1); | |
611 | s->s2->wlength+=p+mac_size; | |
612 | ssl2_enc(s,1); | |
613 | } | |
614 | ||
615 | /* package up the header */ | |
616 | s->s2->wpend_len=s->s2->wlength; | |
617 | if (s->s2->three_byte_header) /* 3 byte header */ | |
618 | { | |
619 | pp=s->s2->mac_data; | |
620 | pp-=3; | |
621 | pp[0]=(s->s2->wlength>>8)&(THREE_BYTE_MASK>>8); | |
622 | if (s->s2->escape) pp[0]|=SEC_ESC_BIT; | |
623 | pp[1]=s->s2->wlength&0xff; | |
624 | pp[2]=s->s2->padding; | |
625 | s->s2->wpend_len+=3; | |
626 | } | |
627 | else | |
628 | { | |
629 | pp=s->s2->mac_data; | |
630 | pp-=2; | |
631 | pp[0]=((s->s2->wlength>>8)&(TWO_BYTE_MASK>>8))|TWO_BYTE_BIT; | |
632 | pp[1]=s->s2->wlength&0xff; | |
633 | s->s2->wpend_len+=2; | |
634 | } | |
635 | s->s2->write_ptr=pp; | |
636 | ||
637 | INC32(s->s2->write_sequence); /* expect next number */ | |
638 | ||
639 | /* lets try to actually write the data */ | |
640 | s->s2->wpend_tot=olen; | |
e778802f | 641 | s->s2->wpend_buf=buf; |
d02b48c6 RE |
642 | |
643 | s->s2->wpend_ret=len; | |
644 | ||
645 | s->s2->wpend_off=0; | |
646 | return(write_pending(s,buf,olen)); | |
647 | } | |
648 | ||
6b691a5c | 649 | int ssl2_part_read(SSL *s, unsigned long f, int i) |
d02b48c6 RE |
650 | { |
651 | unsigned char *p; | |
652 | int j; | |
653 | ||
d02b48c6 RE |
654 | if (i < 0) |
655 | { | |
656 | /* ssl2_return_error(s); */ | |
657 | /* for non-blocking io, | |
cf82191d | 658 | * this is not necessarily fatal */ |
d02b48c6 RE |
659 | return(i); |
660 | } | |
661 | else | |
662 | { | |
663 | s->init_num+=i; | |
cf82191d BM |
664 | |
665 | /* Check for error. While there are recoverable errors, | |
666 | * this function is not called when those must be expected; | |
667 | * any error detected here is fatal. */ | |
668 | if (s->init_num >= 3) | |
669 | { | |
670 | p=(unsigned char *)s->init_buf->data; | |
671 | if (p[0] == SSL2_MT_ERROR) | |
672 | { | |
673 | j=(p[1]<<8)|p[2]; | |
674 | SSLerr((int)f,ssl_mt_error(j)); | |
675 | s->init_num -= 3; | |
676 | if (s->init_num > 0) | |
677 | memmove(p, p+3, s->init_num); | |
678 | } | |
679 | } | |
680 | ||
681 | /* If it's not an error message, we have some error anyway -- | |
682 | * the message was shorter than expected. This too is treated | |
683 | * as fatal (at least if SSL_get_error is asked for its opinion). */ | |
d02b48c6 RE |
684 | return(0); |
685 | } | |
686 | } | |
687 | ||
6b691a5c | 688 | int ssl2_do_write(SSL *s) |
d02b48c6 RE |
689 | { |
690 | int ret; | |
691 | ||
61f5b6f3 | 692 | ret=ssl2_write(s,&s->init_buf->data[s->init_off],s->init_num); |
d02b48c6 | 693 | if (ret == s->init_num) |
cf82191d BM |
694 | { |
695 | if (s->msg_callback) | |
696 | s->msg_callback(1, s->version, 0, s->init_buf->data, (size_t)(s->init_off + s->init_num), s, s->msg_callback_arg); | |
d02b48c6 | 697 | return(1); |
cf82191d | 698 | } |
d02b48c6 RE |
699 | if (ret < 0) |
700 | return(-1); | |
701 | s->init_off+=ret; | |
702 | s->init_num-=ret; | |
703 | return(0); | |
704 | } | |
705 | ||
6b691a5c | 706 | static int ssl_mt_error(int n) |
d02b48c6 RE |
707 | { |
708 | int ret; | |
709 | ||
710 | switch (n) | |
711 | { | |
712 | case SSL2_PE_NO_CIPHER: | |
713 | ret=SSL_R_PEER_ERROR_NO_CIPHER; | |
714 | break; | |
715 | case SSL2_PE_NO_CERTIFICATE: | |
716 | ret=SSL_R_PEER_ERROR_NO_CERTIFICATE; | |
717 | break; | |
718 | case SSL2_PE_BAD_CERTIFICATE: | |
719 | ret=SSL_R_PEER_ERROR_CERTIFICATE; | |
720 | break; | |
721 | case SSL2_PE_UNSUPPORTED_CERTIFICATE_TYPE: | |
722 | ret=SSL_R_PEER_ERROR_UNSUPPORTED_CERTIFICATE_TYPE; | |
723 | break; | |
724 | default: | |
725 | ret=SSL_R_UNKNOWN_REMOTE_ERROR_TYPE; | |
726 | break; | |
727 | } | |
728 | return(ret); | |
729 | } | |
bc36ee62 | 730 | #else /* !OPENSSL_NO_SSL2 */ |
aa82db4f UM |
731 | |
732 | # if PEDANTIC | |
733 | static void *dummy=&dummy; | |
734 | # endif | |
735 | ||
736 | #endif |