2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
62 #include <openssl/asn1_mac.h>
63 #include <openssl/objects.h>
64 #include <openssl/x509.h>
66 typedef struct ssl_session_asn1_st
{
68 ASN1_INTEGER ssl_version
;
69 ASN1_OCTET_STRING cipher
;
70 ASN1_OCTET_STRING comp_id
;
71 ASN1_OCTET_STRING master_key
;
72 ASN1_OCTET_STRING session_id
;
73 ASN1_OCTET_STRING session_id_context
;
74 ASN1_OCTET_STRING key_arg
;
75 #ifndef OPENSSL_NO_KRB5
76 ASN1_OCTET_STRING krb5_princ
;
77 #endif /* OPENSSL_NO_KRB5 */
80 ASN1_INTEGER verify_result
;
81 #ifndef OPENSSL_NO_TLSEXT
82 ASN1_OCTET_STRING tlsext_hostname
;
83 ASN1_INTEGER tlsext_tick_lifetime
;
84 ASN1_OCTET_STRING tlsext_tick
;
85 #endif /* OPENSSL_NO_TLSEXT */
88 int i2d_SSL_SESSION(SSL_SESSION
*in
, unsigned char **pp
)
90 #define LSIZE2 (sizeof(long)*2)
91 int v1
= 0, v2
= 0, v3
= 0, v4
= 0, v5
= 0;
92 unsigned char buf
[4], ibuf1
[LSIZE2
], ibuf2
[LSIZE2
];
93 unsigned char ibuf3
[LSIZE2
], ibuf4
[LSIZE2
], ibuf5
[LSIZE2
];
94 #ifndef OPENSSL_NO_TLSEXT
95 int v6
= 0, v9
= 0, v10
= 0;
96 unsigned char ibuf6
[LSIZE2
];
98 #ifndef OPENSSL_NO_COMP
106 if ((in
== NULL
) || ((in
->cipher
== NULL
) && (in
->cipher_id
== 0)))
110 * Note that I cheat in the following 2 assignments. I know that if the
111 * ASN1_INTEGER passed to ASN1_INTEGER_set is > sizeof(long)+1, the
112 * buffer will not be re-OPENSSL_malloc()ed. This is a bit evil but makes
113 * things simple, no dynamic allocation to clean up :-)
115 a
.version
.length
= LSIZE2
;
116 a
.version
.type
= V_ASN1_INTEGER
;
117 a
.version
.data
= ibuf1
;
118 ASN1_INTEGER_set(&(a
.version
), SSL_SESSION_ASN1_VERSION
);
120 a
.ssl_version
.length
= LSIZE2
;
121 a
.ssl_version
.type
= V_ASN1_INTEGER
;
122 a
.ssl_version
.data
= ibuf2
;
123 ASN1_INTEGER_set(&(a
.ssl_version
), in
->ssl_version
);
125 a
.cipher
.type
= V_ASN1_OCTET_STRING
;
128 if (in
->cipher
== NULL
)
132 if (in
->ssl_version
== SSL2_VERSION
) {
134 buf
[0] = ((unsigned char)(l
>> 16L)) & 0xff;
135 buf
[1] = ((unsigned char)(l
>> 8L)) & 0xff;
136 buf
[2] = ((unsigned char)(l
)) & 0xff;
139 buf
[0] = ((unsigned char)(l
>> 8L)) & 0xff;
140 buf
[1] = ((unsigned char)(l
)) & 0xff;
143 #ifndef OPENSSL_NO_COMP
144 if (in
->compress_meth
) {
145 cbuf
= (unsigned char)in
->compress_meth
;
146 a
.comp_id
.length
= 1;
147 a
.comp_id
.type
= V_ASN1_OCTET_STRING
;
148 a
.comp_id
.data
= &cbuf
;
152 a
.master_key
.length
= in
->master_key_length
;
153 a
.master_key
.type
= V_ASN1_OCTET_STRING
;
154 a
.master_key
.data
= in
->master_key
;
156 a
.session_id
.length
= in
->session_id_length
;
157 a
.session_id
.type
= V_ASN1_OCTET_STRING
;
158 a
.session_id
.data
= in
->session_id
;
160 a
.session_id_context
.length
= in
->sid_ctx_length
;
161 a
.session_id_context
.type
= V_ASN1_OCTET_STRING
;
162 a
.session_id_context
.data
= in
->sid_ctx
;
164 a
.key_arg
.length
= in
->key_arg_length
;
165 a
.key_arg
.type
= V_ASN1_OCTET_STRING
;
166 a
.key_arg
.data
= in
->key_arg
;
168 #ifndef OPENSSL_NO_KRB5
169 if (in
->krb5_client_princ_len
) {
170 a
.krb5_princ
.length
= in
->krb5_client_princ_len
;
171 a
.krb5_princ
.type
= V_ASN1_OCTET_STRING
;
172 a
.krb5_princ
.data
= in
->krb5_client_princ
;
174 #endif /* OPENSSL_NO_KRB5 */
176 if (in
->time
!= 0L) {
177 a
.time
.length
= LSIZE2
;
178 a
.time
.type
= V_ASN1_INTEGER
;
180 ASN1_INTEGER_set(&(a
.time
), in
->time
);
183 if (in
->timeout
!= 0L) {
184 a
.timeout
.length
= LSIZE2
;
185 a
.timeout
.type
= V_ASN1_INTEGER
;
186 a
.timeout
.data
= ibuf4
;
187 ASN1_INTEGER_set(&(a
.timeout
), in
->timeout
);
190 if (in
->verify_result
!= X509_V_OK
) {
191 a
.verify_result
.length
= LSIZE2
;
192 a
.verify_result
.type
= V_ASN1_INTEGER
;
193 a
.verify_result
.data
= ibuf5
;
194 ASN1_INTEGER_set(&a
.verify_result
, in
->verify_result
);
196 #ifndef OPENSSL_NO_TLSEXT
197 if (in
->tlsext_hostname
) {
198 a
.tlsext_hostname
.length
= strlen(in
->tlsext_hostname
);
199 a
.tlsext_hostname
.type
= V_ASN1_OCTET_STRING
;
200 a
.tlsext_hostname
.data
= (unsigned char *)in
->tlsext_hostname
;
202 if (in
->tlsext_tick
) {
203 a
.tlsext_tick
.length
= in
->tlsext_ticklen
;
204 a
.tlsext_tick
.type
= V_ASN1_OCTET_STRING
;
205 a
.tlsext_tick
.data
= (unsigned char *)in
->tlsext_tick
;
207 if (in
->tlsext_tick_lifetime_hint
> 0) {
208 a
.tlsext_tick_lifetime
.length
= LSIZE2
;
209 a
.tlsext_tick_lifetime
.type
= V_ASN1_INTEGER
;
210 a
.tlsext_tick_lifetime
.data
= ibuf6
;
211 ASN1_INTEGER_set(&a
.tlsext_tick_lifetime
,
212 in
->tlsext_tick_lifetime_hint
);
214 #endif /* OPENSSL_NO_TLSEXT */
215 M_ASN1_I2D_len(&(a
.version
), i2d_ASN1_INTEGER
);
216 M_ASN1_I2D_len(&(a
.ssl_version
), i2d_ASN1_INTEGER
);
217 M_ASN1_I2D_len(&(a
.cipher
), i2d_ASN1_OCTET_STRING
);
218 M_ASN1_I2D_len(&(a
.session_id
), i2d_ASN1_OCTET_STRING
);
219 M_ASN1_I2D_len(&(a
.master_key
), i2d_ASN1_OCTET_STRING
);
220 #ifndef OPENSSL_NO_KRB5
221 if (in
->krb5_client_princ_len
)
222 M_ASN1_I2D_len(&(a
.krb5_princ
), i2d_ASN1_OCTET_STRING
);
223 #endif /* OPENSSL_NO_KRB5 */
224 if (in
->key_arg_length
> 0)
225 M_ASN1_I2D_len_IMP_opt(&(a
.key_arg
), i2d_ASN1_OCTET_STRING
);
227 M_ASN1_I2D_len_EXP_opt(&(a
.time
), i2d_ASN1_INTEGER
, 1, v1
);
228 if (in
->timeout
!= 0L)
229 M_ASN1_I2D_len_EXP_opt(&(a
.timeout
), i2d_ASN1_INTEGER
, 2, v2
);
230 if (in
->peer
!= NULL
)
231 M_ASN1_I2D_len_EXP_opt(in
->peer
, i2d_X509
, 3, v3
);
232 M_ASN1_I2D_len_EXP_opt(&a
.session_id_context
, i2d_ASN1_OCTET_STRING
, 4,
234 if (in
->verify_result
!= X509_V_OK
)
235 M_ASN1_I2D_len_EXP_opt(&(a
.verify_result
), i2d_ASN1_INTEGER
, 5, v5
);
237 #ifndef OPENSSL_NO_TLSEXT
238 if (in
->tlsext_tick_lifetime_hint
> 0)
239 M_ASN1_I2D_len_EXP_opt(&a
.tlsext_tick_lifetime
, i2d_ASN1_INTEGER
, 9,
242 M_ASN1_I2D_len_EXP_opt(&(a
.tlsext_tick
), i2d_ASN1_OCTET_STRING
, 10,
244 if (in
->tlsext_hostname
)
245 M_ASN1_I2D_len_EXP_opt(&(a
.tlsext_hostname
), i2d_ASN1_OCTET_STRING
, 6,
247 # ifndef OPENSSL_NO_COMP
248 if (in
->compress_meth
)
249 M_ASN1_I2D_len_EXP_opt(&(a
.comp_id
), i2d_ASN1_OCTET_STRING
, 11, v11
);
251 #endif /* OPENSSL_NO_TLSEXT */
252 M_ASN1_I2D_seq_total();
254 M_ASN1_I2D_put(&(a
.version
), i2d_ASN1_INTEGER
);
255 M_ASN1_I2D_put(&(a
.ssl_version
), i2d_ASN1_INTEGER
);
256 M_ASN1_I2D_put(&(a
.cipher
), i2d_ASN1_OCTET_STRING
);
257 M_ASN1_I2D_put(&(a
.session_id
), i2d_ASN1_OCTET_STRING
);
258 M_ASN1_I2D_put(&(a
.master_key
), i2d_ASN1_OCTET_STRING
);
259 #ifndef OPENSSL_NO_KRB5
260 if (in
->krb5_client_princ_len
)
261 M_ASN1_I2D_put(&(a
.krb5_princ
), i2d_ASN1_OCTET_STRING
);
262 #endif /* OPENSSL_NO_KRB5 */
263 if (in
->key_arg_length
> 0)
264 M_ASN1_I2D_put_IMP_opt(&(a
.key_arg
), i2d_ASN1_OCTET_STRING
, 0);
266 M_ASN1_I2D_put_EXP_opt(&(a
.time
), i2d_ASN1_INTEGER
, 1, v1
);
267 if (in
->timeout
!= 0L)
268 M_ASN1_I2D_put_EXP_opt(&(a
.timeout
), i2d_ASN1_INTEGER
, 2, v2
);
269 if (in
->peer
!= NULL
)
270 M_ASN1_I2D_put_EXP_opt(in
->peer
, i2d_X509
, 3, v3
);
271 M_ASN1_I2D_put_EXP_opt(&a
.session_id_context
, i2d_ASN1_OCTET_STRING
, 4,
273 if (in
->verify_result
!= X509_V_OK
)
274 M_ASN1_I2D_put_EXP_opt(&a
.verify_result
, i2d_ASN1_INTEGER
, 5, v5
);
275 #ifndef OPENSSL_NO_TLSEXT
276 if (in
->tlsext_hostname
)
277 M_ASN1_I2D_put_EXP_opt(&(a
.tlsext_hostname
), i2d_ASN1_OCTET_STRING
, 6,
279 if (in
->tlsext_tick_lifetime_hint
> 0)
280 M_ASN1_I2D_put_EXP_opt(&a
.tlsext_tick_lifetime
, i2d_ASN1_INTEGER
, 9,
283 M_ASN1_I2D_put_EXP_opt(&(a
.tlsext_tick
), i2d_ASN1_OCTET_STRING
, 10,
285 #endif /* OPENSSL_NO_TLSEXT */
286 #ifndef OPENSSL_NO_COMP
287 if (in
->compress_meth
)
288 M_ASN1_I2D_put_EXP_opt(&(a
.comp_id
), i2d_ASN1_OCTET_STRING
, 11, v11
);
293 SSL_SESSION
*d2i_SSL_SESSION(SSL_SESSION
**a
, const unsigned char **pp
,
296 int ssl_version
= 0, i
;
298 ASN1_INTEGER ai
, *aip
;
299 ASN1_OCTET_STRING os
, *osp
;
300 M_ASN1_D2I_vars(a
, SSL_SESSION
*, SSL_SESSION_new
);
306 M_ASN1_D2I_start_sequence();
310 M_ASN1_D2I_get_x(ASN1_INTEGER
, aip
, d2i_ASN1_INTEGER
);
311 if (ai
.data
!= NULL
) {
312 OPENSSL_free(ai
.data
);
317 /* we don't care about the version right now :-) */
318 M_ASN1_D2I_get_x(ASN1_INTEGER
, aip
, d2i_ASN1_INTEGER
);
319 ssl_version
= (int)ASN1_INTEGER_get(aip
);
320 ret
->ssl_version
= ssl_version
;
321 if (ai
.data
!= NULL
) {
322 OPENSSL_free(ai
.data
);
329 M_ASN1_D2I_get_x(ASN1_OCTET_STRING
, osp
, d2i_ASN1_OCTET_STRING
);
330 if (ssl_version
== SSL2_VERSION
) {
331 if (os
.length
!= 3) {
332 c
.error
= SSL_R_CIPHER_CODE_WRONG_LENGTH
;
336 ((unsigned long)os
.data
[0] << 16L) |
337 ((unsigned long)os
.data
[1] << 8L) | (unsigned long)os
.data
[2];
338 } else if ((ssl_version
>> 8) >= SSL3_VERSION_MAJOR
) {
339 if (os
.length
!= 2) {
340 c
.error
= SSL_R_CIPHER_CODE_WRONG_LENGTH
;
344 ((unsigned long)os
.data
[0] << 8L) | (unsigned long)os
.data
[1];
346 c
.error
= SSL_R_UNKNOWN_SSL_VERSION
;
353 M_ASN1_D2I_get_x(ASN1_OCTET_STRING
, osp
, d2i_ASN1_OCTET_STRING
);
354 if ((ssl_version
>> 8) >= SSL3_VERSION_MAJOR
)
355 i
= SSL3_MAX_SSL_SESSION_ID_LENGTH
;
356 else /* if (ssl_version>>8 == SSL2_VERSION_MAJOR) */
357 i
= SSL2_MAX_SSL_SESSION_ID_LENGTH
;
361 if (os
.length
> (int)sizeof(ret
->session_id
)) /* can't happen */
362 os
.length
= sizeof(ret
->session_id
);
364 ret
->session_id_length
= os
.length
;
365 OPENSSL_assert(os
.length
<= (int)sizeof(ret
->session_id
));
366 memcpy(ret
->session_id
, os
.data
, os
.length
);
368 M_ASN1_D2I_get_x(ASN1_OCTET_STRING
, osp
, d2i_ASN1_OCTET_STRING
);
369 if (os
.length
> SSL_MAX_MASTER_KEY_LENGTH
)
370 ret
->master_key_length
= SSL_MAX_MASTER_KEY_LENGTH
;
372 ret
->master_key_length
= os
.length
;
373 memcpy(ret
->master_key
, os
.data
, ret
->master_key_length
);
377 #ifndef OPENSSL_NO_KRB5
379 M_ASN1_D2I_get_opt(osp
, d2i_ASN1_OCTET_STRING
, V_ASN1_OCTET_STRING
);
381 if (os
.length
> SSL_MAX_KRB5_PRINCIPAL_LENGTH
)
382 ret
->krb5_client_princ_len
= 0;
384 ret
->krb5_client_princ_len
= os
.length
;
385 memcpy(ret
->krb5_client_princ
, os
.data
, ret
->krb5_client_princ_len
);
386 OPENSSL_free(os
.data
);
390 ret
->krb5_client_princ_len
= 0;
391 #endif /* OPENSSL_NO_KRB5 */
393 M_ASN1_D2I_get_IMP_opt(osp
, d2i_ASN1_OCTET_STRING
, 0,
394 V_ASN1_OCTET_STRING
);
395 if (os
.length
> SSL_MAX_KEY_ARG_LENGTH
)
396 ret
->key_arg_length
= SSL_MAX_KEY_ARG_LENGTH
;
398 ret
->key_arg_length
= os
.length
;
399 memcpy(ret
->key_arg
, os
.data
, ret
->key_arg_length
);
401 OPENSSL_free(os
.data
);
404 M_ASN1_D2I_get_EXP_opt(aip
, d2i_ASN1_INTEGER
, 1);
405 if (ai
.data
!= NULL
) {
406 ret
->time
= ASN1_INTEGER_get(aip
);
407 OPENSSL_free(ai
.data
);
411 ret
->time
= (unsigned long)time(NULL
);
414 M_ASN1_D2I_get_EXP_opt(aip
, d2i_ASN1_INTEGER
, 2);
415 if (ai
.data
!= NULL
) {
416 ret
->timeout
= ASN1_INTEGER_get(aip
);
417 OPENSSL_free(ai
.data
);
423 if (ret
->peer
!= NULL
) {
424 X509_free(ret
->peer
);
427 M_ASN1_D2I_get_EXP_opt(ret
->peer
, d2i_X509
, 3);
431 M_ASN1_D2I_get_EXP_opt(osp
, d2i_ASN1_OCTET_STRING
, 4);
433 if (os
.data
!= NULL
) {
434 if (os
.length
> SSL_MAX_SID_CTX_LENGTH
) {
435 c
.error
= SSL_R_BAD_LENGTH
;
438 ret
->sid_ctx_length
= os
.length
;
439 memcpy(ret
->sid_ctx
, os
.data
, os
.length
);
441 OPENSSL_free(os
.data
);
445 ret
->sid_ctx_length
= 0;
448 M_ASN1_D2I_get_EXP_opt(aip
, d2i_ASN1_INTEGER
, 5);
449 if (ai
.data
!= NULL
) {
450 ret
->verify_result
= ASN1_INTEGER_get(aip
);
451 OPENSSL_free(ai
.data
);
455 ret
->verify_result
= X509_V_OK
;
457 #ifndef OPENSSL_NO_TLSEXT
460 M_ASN1_D2I_get_EXP_opt(osp
, d2i_ASN1_OCTET_STRING
, 6);
462 ret
->tlsext_hostname
= BUF_strndup((char *)os
.data
, os
.length
);
463 OPENSSL_free(os
.data
);
467 ret
->tlsext_hostname
= NULL
;
469 M_ASN1_D2I_get_EXP_opt(aip
, d2i_ASN1_INTEGER
, 9);
470 if (ai
.data
!= NULL
) {
471 ret
->tlsext_tick_lifetime_hint
= ASN1_INTEGER_get(aip
);
472 OPENSSL_free(ai
.data
);
475 } else if (ret
->tlsext_ticklen
&& ret
->session_id_length
)
476 ret
->tlsext_tick_lifetime_hint
= -1;
478 ret
->tlsext_tick_lifetime_hint
= 0;
481 M_ASN1_D2I_get_EXP_opt(osp
, d2i_ASN1_OCTET_STRING
, 10);
483 ret
->tlsext_tick
= os
.data
;
484 ret
->tlsext_ticklen
= os
.length
;
488 ret
->tlsext_tick
= NULL
;
489 #endif /* OPENSSL_NO_TLSEXT */
490 #ifndef OPENSSL_NO_COMP
493 M_ASN1_D2I_get_EXP_opt(osp
, d2i_ASN1_OCTET_STRING
, 11);
495 ret
->compress_meth
= os
.data
[0];
496 OPENSSL_free(os
.data
);
501 M_ASN1_D2I_Finish(a
, SSL_SESSION_free
, SSL_F_D2I_SSL_SESSION
);