CyaSSL - A library for setting up Secure Socket Layer (SSL…

MultiTech » Code » CyaSSL

A library for setting up Secure Socket Layer (SSL) connections and verifying remote hosts using certificates. Contains only the source files for mbed platform implementation of the library.

Dependents: HTTPClient-SSL HTTPClient-SSL HTTPClient-SSL HTTPClient-SSL

cyassl/test.h@6:cf58d49e1a86, 2015-03-23 (annotated)

Committer:: Mike Fiore
Date:: Mon Mar 23 16:51:07 2015 -0500
Revision:: 6:cf58d49e1a86
Parent:: 0:b86d15c6ba29

fix whitespace in sha512.c

Who changed what in which revision?

User	Revision	Line number	New contents of line
Vanger	0:b86d15c6ba29	1	/* test.h */
Vanger	0:b86d15c6ba29	2
Vanger	0:b86d15c6ba29	3	#ifndef CyaSSL_TEST_H
Vanger	0:b86d15c6ba29	4	#define CyaSSL_TEST_H
Vanger	0:b86d15c6ba29	5
Vanger	0:b86d15c6ba29	6	#include <stdio.h>
Vanger	0:b86d15c6ba29	7	#include <stdlib.h>
Vanger	0:b86d15c6ba29	8	#include <assert.h>
Vanger	0:b86d15c6ba29	9	#include <ctype.h>
Vanger	0:b86d15c6ba29	10	#include <cyassl/ssl.h>
Vanger	0:b86d15c6ba29	11	#include <cyassl/ctaocrypt/types.h>
Vanger	0:b86d15c6ba29	12	#include <cyassl/ctaocrypt/error-crypt.h>
Vanger	0:b86d15c6ba29	13
Vanger	0:b86d15c6ba29	14	#ifdef ATOMIC_USER
Vanger	0:b86d15c6ba29	15	#include <cyassl/ctaocrypt/aes.h>
Vanger	0:b86d15c6ba29	16	#include <cyassl/ctaocrypt/arc4.h>
Vanger	0:b86d15c6ba29	17	#include <cyassl/ctaocrypt/hmac.h>
Vanger	0:b86d15c6ba29	18	#endif
Vanger	0:b86d15c6ba29	19	#ifdef HAVE_PK_CALLBACKS
Vanger	0:b86d15c6ba29	20	#include <cyassl/ctaocrypt/random.h>
Vanger	0:b86d15c6ba29	21	#include <cyassl/ctaocrypt/asn.h>
Vanger	0:b86d15c6ba29	22	#ifdef HAVE_ECC
Vanger	0:b86d15c6ba29	23	#include <cyassl/ctaocrypt/ecc.h>
Vanger	0:b86d15c6ba29	24	#endif /* HAVE_ECC */
Vanger	0:b86d15c6ba29	25	#endif /HAVE_PK_CALLBACKS /
Vanger	0:b86d15c6ba29	26
Vanger	0:b86d15c6ba29	27	#ifdef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	28	#include <winsock2.h>
Vanger	0:b86d15c6ba29	29	#include <process.h>
Vanger	0:b86d15c6ba29	30	#ifdef TEST_IPV6 /* don't require newer SDK for IPV4 */
Vanger	0:b86d15c6ba29	31	#include <ws2tcpip.h>
Vanger	0:b86d15c6ba29	32	#include <wspiapi.h>
Vanger	0:b86d15c6ba29	33	#endif
Vanger	0:b86d15c6ba29	34	#define SOCKET_T SOCKET
Vanger	0:b86d15c6ba29	35	#define SNPRINTF _snprintf
Vanger	0:b86d15c6ba29	36	#elif defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	37	#include <string.h>
Vanger	0:b86d15c6ba29	38	#elif defined(CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	39	#include <string.h>
Vanger	0:b86d15c6ba29	40	#include <netdb.h>
Vanger	0:b86d15c6ba29	41	#include <sys/types.h>
Vanger	0:b86d15c6ba29	42	#include <arpa/inet.h>
Vanger	0:b86d15c6ba29	43	#include <sys/socket.h>
Vanger	0:b86d15c6ba29	44	#include <ti/sysbios/knl/Task.h>
Vanger	0:b86d15c6ba29	45	#define SOCKET_T int
Vanger	0:b86d15c6ba29	46	#else
Vanger	0:b86d15c6ba29	47	#include <string.h>
Vanger	0:b86d15c6ba29	48	#include <sys/types.h>
Vanger	0:b86d15c6ba29	49	#ifndef CYASSL_LEANPSK
Vanger	0:b86d15c6ba29	50	#include <unistd.h>
Vanger	0:b86d15c6ba29	51	#include <netdb.h>
Vanger	0:b86d15c6ba29	52	#include <netinet/in.h>
Vanger	0:b86d15c6ba29	53	#include <netinet/tcp.h>
Vanger	0:b86d15c6ba29	54	#include <arpa/inet.h>
Vanger	0:b86d15c6ba29	55	#include <sys/ioctl.h>
Vanger	0:b86d15c6ba29	56	#include <sys/time.h>
Vanger	0:b86d15c6ba29	57	#include <sys/socket.h>
Vanger	0:b86d15c6ba29	58	#include <pthread.h>
Vanger	0:b86d15c6ba29	59	#include <fcntl.h>
Vanger	0:b86d15c6ba29	60	#ifdef TEST_IPV6
Vanger	0:b86d15c6ba29	61	#include <netdb.h>
Vanger	0:b86d15c6ba29	62	#endif
Vanger	0:b86d15c6ba29	63	#endif
Vanger	0:b86d15c6ba29	64	#define SOCKET_T int
Vanger	0:b86d15c6ba29	65	#ifndef SO_NOSIGPIPE
Vanger	0:b86d15c6ba29	66	#include <signal.h> /* ignore SIGPIPE */
Vanger	0:b86d15c6ba29	67	#endif
Vanger	0:b86d15c6ba29	68	#define SNPRINTF snprintf
Vanger	0:b86d15c6ba29	69	#endif /* USE_WINDOWS_API */
Vanger	0:b86d15c6ba29	70
Vanger	0:b86d15c6ba29	71	#ifdef HAVE_CAVIUM
Vanger	0:b86d15c6ba29	72	#include "cavium_sysdep.h"
Vanger	0:b86d15c6ba29	73	#include "cavium_common.h"
Vanger	0:b86d15c6ba29	74	#include "cavium_ioctl.h"
Vanger	0:b86d15c6ba29	75	#endif
Vanger	0:b86d15c6ba29	76
Vanger	0:b86d15c6ba29	77	#ifdef _MSC_VER
Vanger	0:b86d15c6ba29	78	/* disable conversion warning */
Vanger	0:b86d15c6ba29	79	/* 4996 warning to use MS extensions e.g., strcpy_s instead of strncpy */
Vanger	0:b86d15c6ba29	80	#pragma warning(disable:4244 4996)
Vanger	0:b86d15c6ba29	81	#endif
Vanger	0:b86d15c6ba29	82
Vanger	0:b86d15c6ba29	83
Vanger	0:b86d15c6ba29	84	#if defined(__MACH__) \|\| defined(USE_WINDOWS_API)
Vanger	0:b86d15c6ba29	85	#ifndef _SOCKLEN_T
Vanger	0:b86d15c6ba29	86	typedef int socklen_t;
Vanger	0:b86d15c6ba29	87	#endif
Vanger	0:b86d15c6ba29	88	#endif
Vanger	0:b86d15c6ba29	89
Vanger	0:b86d15c6ba29	90
Vanger	0:b86d15c6ba29	91	/* HPUX doesn't use socklent_t for third parameter to accept, unless
Vanger	0:b86d15c6ba29	92	_XOPEN_SOURCE_EXTENDED is defined */
Vanger	0:b86d15c6ba29	93	#if !defined(__hpux__) && !defined(CYASSL_MDK_ARM) && !defined(CYASSL_IAR_ARM)
Vanger	0:b86d15c6ba29	94	typedef socklen_t* ACCEPT_THIRD_T;
Vanger	0:b86d15c6ba29	95	#else
Vanger	0:b86d15c6ba29	96	#if defined _XOPEN_SOURCE_EXTENDED
Vanger	0:b86d15c6ba29	97	typedef socklen_t* ACCEPT_THIRD_T;
Vanger	0:b86d15c6ba29	98	#else
Vanger	0:b86d15c6ba29	99	typedef int* ACCEPT_THIRD_T;
Vanger	0:b86d15c6ba29	100	#endif
Vanger	0:b86d15c6ba29	101	#endif
Vanger	0:b86d15c6ba29	102
Vanger	0:b86d15c6ba29	103
Vanger	0:b86d15c6ba29	104	#ifdef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	105	#define CloseSocket(s) closesocket(s)
Vanger	0:b86d15c6ba29	106	#define StartTCP() { WSADATA wsd; WSAStartup(0x0002, &wsd); }
Vanger	0:b86d15c6ba29	107	#elif defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	108	#define CloseSocket(s) closesocket(s)
Vanger	0:b86d15c6ba29	109	#define StartTCP()
Vanger	0:b86d15c6ba29	110	#else
Vanger	0:b86d15c6ba29	111	#define CloseSocket(s) close(s)
Vanger	0:b86d15c6ba29	112	#define StartTCP()
Vanger	0:b86d15c6ba29	113	#endif
Vanger	0:b86d15c6ba29	114
Vanger	0:b86d15c6ba29	115
Vanger	0:b86d15c6ba29	116	#ifdef SINGLE_THREADED
Vanger	0:b86d15c6ba29	117	typedef unsigned int THREAD_RETURN;
Vanger	0:b86d15c6ba29	118	typedef void* THREAD_TYPE;
Vanger	0:b86d15c6ba29	119	#define CYASSL_THREAD
Vanger	0:b86d15c6ba29	120	#else
Vanger	0:b86d15c6ba29	121	#if defined(_POSIX_THREADS) && !defined(__MINGW32__)
Vanger	0:b86d15c6ba29	122	typedef void* THREAD_RETURN;
Vanger	0:b86d15c6ba29	123	typedef pthread_t THREAD_TYPE;
Vanger	0:b86d15c6ba29	124	#define CYASSL_THREAD
Vanger	0:b86d15c6ba29	125	#define INFINITE -1
Vanger	0:b86d15c6ba29	126	#define WAIT_OBJECT_0 0L
Vanger	0:b86d15c6ba29	127	#elif defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	128	typedef unsigned int THREAD_RETURN;
Vanger	0:b86d15c6ba29	129	typedef int THREAD_TYPE;
Vanger	0:b86d15c6ba29	130	#define CYASSL_THREAD
Vanger	0:b86d15c6ba29	131	#elif defined(CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	132	typedef void THREAD_RETURN;
Vanger	0:b86d15c6ba29	133	typedef Task_Handle THREAD_TYPE;
Vanger	0:b86d15c6ba29	134	#define CYASSL_THREAD
Vanger	0:b86d15c6ba29	135	#else
Vanger	0:b86d15c6ba29	136	typedef unsigned int THREAD_RETURN;
Vanger	0:b86d15c6ba29	137	typedef intptr_t THREAD_TYPE;
Vanger	0:b86d15c6ba29	138	#define CYASSL_THREAD __stdcall
Vanger	0:b86d15c6ba29	139	#endif
Vanger	0:b86d15c6ba29	140	#endif
Vanger	0:b86d15c6ba29	141
Vanger	0:b86d15c6ba29	142
Vanger	0:b86d15c6ba29	143	#ifdef TEST_IPV6
Vanger	0:b86d15c6ba29	144	typedef struct sockaddr_in6 SOCKADDR_IN_T;
Vanger	0:b86d15c6ba29	145	#define AF_INET_V AF_INET6
Vanger	0:b86d15c6ba29	146	#else
Vanger	0:b86d15c6ba29	147	typedef struct sockaddr_in SOCKADDR_IN_T;
Vanger	0:b86d15c6ba29	148	#define AF_INET_V AF_INET
Vanger	0:b86d15c6ba29	149	#endif
Vanger	0:b86d15c6ba29	150
Vanger	0:b86d15c6ba29	151
Vanger	0:b86d15c6ba29	152	#define SERVER_DEFAULT_VERSION 3
Vanger	0:b86d15c6ba29	153	#define SERVER_DTLS_DEFAULT_VERSION (-2)
Vanger	0:b86d15c6ba29	154	#define SERVER_INVALID_VERSION (-99)
Vanger	0:b86d15c6ba29	155	#define CLIENT_DEFAULT_VERSION 3
Vanger	0:b86d15c6ba29	156	#define CLIENT_DTLS_DEFAULT_VERSION (-2)
Vanger	0:b86d15c6ba29	157	#define CLIENT_INVALID_VERSION (-99)
Vanger	0:b86d15c6ba29	158
Vanger	0:b86d15c6ba29	159	/* all certs relative to CyaSSL home directory now */
Vanger	0:b86d15c6ba29	160	#define caCert "./certs/ca-cert.pem"
Vanger	0:b86d15c6ba29	161	#define eccCert "./certs/server-ecc.pem"
Vanger	0:b86d15c6ba29	162	#define eccKey "./certs/ecc-key.pem"
Vanger	0:b86d15c6ba29	163	#define svrCert "./certs/server-cert.pem"
Vanger	0:b86d15c6ba29	164	#define svrKey "./certs/server-key.pem"
Vanger	0:b86d15c6ba29	165	#define cliCert "./certs/client-cert.pem"
Vanger	0:b86d15c6ba29	166	#define cliKey "./certs/client-key.pem"
Vanger	0:b86d15c6ba29	167	#define ntruCert "./certs/ntru-cert.pem"
Vanger	0:b86d15c6ba29	168	#define ntruKey "./certs/ntru-key.raw"
Vanger	0:b86d15c6ba29	169	#define dhParam "./certs/dh2048.pem"
Vanger	0:b86d15c6ba29	170	#define cliEccKey "./certs/ecc-client-key.pem"
Vanger	0:b86d15c6ba29	171	#define cliEccCert "./certs/client-ecc-cert.pem"
Vanger	0:b86d15c6ba29	172	#define crlPemDir "./certs/crl"
Vanger	0:b86d15c6ba29	173
Vanger	0:b86d15c6ba29	174	typedef struct tcp_ready {
Vanger	0:b86d15c6ba29	175	word16 ready; /* predicate */
Vanger	0:b86d15c6ba29	176	word16 port;
Vanger	0:b86d15c6ba29	177	#if defined(_POSIX_THREADS) && !defined(__MINGW32__)
Vanger	0:b86d15c6ba29	178	pthread_mutex_t mutex;
Vanger	0:b86d15c6ba29	179	pthread_cond_t cond;
Vanger	0:b86d15c6ba29	180	#endif
Vanger	0:b86d15c6ba29	181	} tcp_ready;
Vanger	0:b86d15c6ba29	182
Vanger	0:b86d15c6ba29	183
Vanger	0:b86d15c6ba29	184	void InitTcpReady(tcp_ready*);
Vanger	0:b86d15c6ba29	185	void FreeTcpReady(tcp_ready*);
Vanger	0:b86d15c6ba29	186
Vanger	0:b86d15c6ba29	187	typedef CYASSL_METHOD* (*method_provider)(void);
Vanger	0:b86d15c6ba29	188	typedef void (ctx_callback)(CYASSL_CTX ctx);
Vanger	0:b86d15c6ba29	189	typedef void (ssl_callback)(CYASSL ssl);
Vanger	0:b86d15c6ba29	190
Vanger	0:b86d15c6ba29	191	typedef struct callback_functions {
Vanger	0:b86d15c6ba29	192	method_provider method;
Vanger	0:b86d15c6ba29	193	ctx_callback ctx_ready;
Vanger	0:b86d15c6ba29	194	ssl_callback ssl_ready;
Vanger	0:b86d15c6ba29	195	ssl_callback on_result;
Vanger	0:b86d15c6ba29	196	} callback_functions;
Vanger	0:b86d15c6ba29	197
Vanger	0:b86d15c6ba29	198	typedef struct func_args {
Vanger	0:b86d15c6ba29	199	int argc;
Vanger	0:b86d15c6ba29	200	char** argv;
Vanger	0:b86d15c6ba29	201	int return_code;
Vanger	0:b86d15c6ba29	202	tcp_ready* signal;
Vanger	0:b86d15c6ba29	203	callback_functions *callbacks;
Vanger	0:b86d15c6ba29	204	} func_args;
Vanger	0:b86d15c6ba29	205
Vanger	0:b86d15c6ba29	206	void wait_tcp_ready(func_args*);
Vanger	0:b86d15c6ba29	207
Vanger	0:b86d15c6ba29	208	typedef THREAD_RETURN CYASSL_THREAD THREAD_FUNC(void*);
Vanger	0:b86d15c6ba29	209
Vanger	0:b86d15c6ba29	210	void start_thread(THREAD_FUNC, func_args, THREAD_TYPE);
Vanger	0:b86d15c6ba29	211	void join_thread(THREAD_TYPE);
Vanger	0:b86d15c6ba29	212
Vanger	0:b86d15c6ba29	213	/* yaSSL */
Vanger	0:b86d15c6ba29	214	#ifndef TEST_IPV6
Vanger	0:b86d15c6ba29	215	static const char* const yasslIP = "127.0.0.1";
Vanger	0:b86d15c6ba29	216	#else
Vanger	0:b86d15c6ba29	217	static const char* const yasslIP = "::1";
Vanger	0:b86d15c6ba29	218	#endif
Vanger	0:b86d15c6ba29	219	static const word16 yasslPort = 11111;
Vanger	0:b86d15c6ba29	220
Vanger	0:b86d15c6ba29	221	static INLINE void err_sys(const char* msg)
Vanger	0:b86d15c6ba29	222	{
Vanger	0:b86d15c6ba29	223	printf("yassl error: %s\n", msg);
Vanger	0:b86d15c6ba29	224	if (msg)
Vanger	0:b86d15c6ba29	225	exit(EXIT_FAILURE);
Vanger	0:b86d15c6ba29	226	}
Vanger	0:b86d15c6ba29	227
Vanger	0:b86d15c6ba29	228
Vanger	0:b86d15c6ba29	229	#define MY_EX_USAGE 2
Vanger	0:b86d15c6ba29	230
Vanger	0:b86d15c6ba29	231	extern int myoptind;
Vanger	0:b86d15c6ba29	232	extern char* myoptarg;
Vanger	0:b86d15c6ba29	233
Vanger	0:b86d15c6ba29	234	static INLINE int mygetopt(int argc, char** argv, const char* optstring)
Vanger	0:b86d15c6ba29	235	{
Vanger	0:b86d15c6ba29	236	static char* next = NULL;
Vanger	0:b86d15c6ba29	237
Vanger	0:b86d15c6ba29	238	char c;
Vanger	0:b86d15c6ba29	239	char* cp;
Vanger	0:b86d15c6ba29	240
Vanger	0:b86d15c6ba29	241	if (myoptind == 0)
Vanger	0:b86d15c6ba29	242	next = NULL; /* we're starting new/over */
Vanger	0:b86d15c6ba29	243
Vanger	0:b86d15c6ba29	244	if (next == NULL \|\| *next == '\0') {
Vanger	0:b86d15c6ba29	245	if (myoptind == 0)
Vanger	0:b86d15c6ba29	246	myoptind++;
Vanger	0:b86d15c6ba29	247
Vanger	0:b86d15c6ba29	248	if (myoptind >= argc \|\| argv[myoptind][0] != '-' \|\|
Vanger	0:b86d15c6ba29	249	argv[myoptind][1] == '\0') {
Vanger	0:b86d15c6ba29	250	myoptarg = NULL;
Vanger	0:b86d15c6ba29	251	if (myoptind < argc)
Vanger	0:b86d15c6ba29	252	myoptarg = argv[myoptind];
Vanger	0:b86d15c6ba29	253
Vanger	0:b86d15c6ba29	254	return -1;
Vanger	0:b86d15c6ba29	255	}
Vanger	0:b86d15c6ba29	256
Vanger	0:b86d15c6ba29	257	if (strcmp(argv[myoptind], "--") == 0) {
Vanger	0:b86d15c6ba29	258	myoptind++;
Vanger	0:b86d15c6ba29	259	myoptarg = NULL;
Vanger	0:b86d15c6ba29	260
Vanger	0:b86d15c6ba29	261	if (myoptind < argc)
Vanger	0:b86d15c6ba29	262	myoptarg = argv[myoptind];
Vanger	0:b86d15c6ba29	263
Vanger	0:b86d15c6ba29	264	return -1;
Vanger	0:b86d15c6ba29	265	}
Vanger	0:b86d15c6ba29	266
Vanger	0:b86d15c6ba29	267	next = argv[myoptind];
Vanger	0:b86d15c6ba29	268	next++; /* skip - */
Vanger	0:b86d15c6ba29	269	myoptind++;
Vanger	0:b86d15c6ba29	270	}
Vanger	0:b86d15c6ba29	271
Vanger	0:b86d15c6ba29	272	c = *next++;
Vanger	0:b86d15c6ba29	273	/* The C++ strchr can return a different value */
Vanger	0:b86d15c6ba29	274	cp = (char*)strchr(optstring, c);
Vanger	0:b86d15c6ba29	275
Vanger	0:b86d15c6ba29	276	if (cp == NULL \|\| c == ':')
Vanger	0:b86d15c6ba29	277	return '?';
Vanger	0:b86d15c6ba29	278
Vanger	0:b86d15c6ba29	279	cp++;
Vanger	0:b86d15c6ba29	280
Vanger	0:b86d15c6ba29	281	if (*cp == ':') {
Vanger	0:b86d15c6ba29	282	if (*next != '\0') {
Vanger	0:b86d15c6ba29	283	myoptarg = next;
Vanger	0:b86d15c6ba29	284	next = NULL;
Vanger	0:b86d15c6ba29	285	}
Vanger	0:b86d15c6ba29	286	else if (myoptind < argc) {
Vanger	0:b86d15c6ba29	287	myoptarg = argv[myoptind];
Vanger	0:b86d15c6ba29	288	myoptind++;
Vanger	0:b86d15c6ba29	289	}
Vanger	0:b86d15c6ba29	290	else
Vanger	0:b86d15c6ba29	291	return '?';
Vanger	0:b86d15c6ba29	292	}
Vanger	0:b86d15c6ba29	293
Vanger	0:b86d15c6ba29	294	return c;
Vanger	0:b86d15c6ba29	295	}
Vanger	0:b86d15c6ba29	296
Vanger	0:b86d15c6ba29	297
Vanger	0:b86d15c6ba29	298	#if defined(OPENSSL_EXTRA) \|\| defined(HAVE_WEBSERVER)
Vanger	0:b86d15c6ba29	299
Vanger	0:b86d15c6ba29	300	static INLINE int PasswordCallBack(char* passwd, int sz, int rw, void* userdata)
Vanger	0:b86d15c6ba29	301	{
Vanger	0:b86d15c6ba29	302	(void)rw;
Vanger	0:b86d15c6ba29	303	(void)userdata;
Vanger	0:b86d15c6ba29	304	strncpy(passwd, "yassl123", sz);
Vanger	0:b86d15c6ba29	305	return 8;
Vanger	0:b86d15c6ba29	306	}
Vanger	0:b86d15c6ba29	307
Vanger	0:b86d15c6ba29	308	#endif
Vanger	0:b86d15c6ba29	309
Vanger	0:b86d15c6ba29	310
Vanger	0:b86d15c6ba29	311	#if defined(KEEP_PEER_CERT) \|\| defined(SESSION_CERTS)
Vanger	0:b86d15c6ba29	312
Vanger	0:b86d15c6ba29	313	static INLINE void ShowX509(CYASSL_X509* x509, const char* hdr)
Vanger	0:b86d15c6ba29	314	{
Vanger	0:b86d15c6ba29	315	char* altName;
Vanger	0:b86d15c6ba29	316	char* issuer = CyaSSL_X509_NAME_oneline(
Vanger	0:b86d15c6ba29	317	CyaSSL_X509_get_issuer_name(x509), 0, 0);
Vanger	0:b86d15c6ba29	318	char* subject = CyaSSL_X509_NAME_oneline(
Vanger	0:b86d15c6ba29	319	CyaSSL_X509_get_subject_name(x509), 0, 0);
Vanger	0:b86d15c6ba29	320	byte serial[32];
Vanger	0:b86d15c6ba29	321	int ret;
Vanger	0:b86d15c6ba29	322	int sz = sizeof(serial);
Vanger	0:b86d15c6ba29	323
Vanger	0:b86d15c6ba29	324	printf("%s\n issuer : %s\n subject: %s\n", hdr, issuer, subject);
Vanger	0:b86d15c6ba29	325
Vanger	0:b86d15c6ba29	326	while ( (altName = CyaSSL_X509_get_next_altname(x509)) != NULL)
Vanger	0:b86d15c6ba29	327	printf(" altname = %s\n", altName);
Vanger	0:b86d15c6ba29	328
Vanger	0:b86d15c6ba29	329	ret = CyaSSL_X509_get_serial_number(x509, serial, &sz);
Vanger	0:b86d15c6ba29	330	if (ret == SSL_SUCCESS) {
Vanger	0:b86d15c6ba29	331	int i;
Vanger	0:b86d15c6ba29	332	int strLen;
Vanger	0:b86d15c6ba29	333	char serialMsg[80];
Vanger	0:b86d15c6ba29	334
Vanger	0:b86d15c6ba29	335	/* testsuite has multiple threads writing to stdout, get output
Vanger	0:b86d15c6ba29	336	message ready to write once */
Vanger	0:b86d15c6ba29	337	strLen = sprintf(serialMsg, " serial number");
Vanger	0:b86d15c6ba29	338	for (i = 0; i < sz; i++)
Vanger	0:b86d15c6ba29	339	sprintf(serialMsg + strLen + (i*3), ":%02x ", serial[i]);
Vanger	0:b86d15c6ba29	340	printf("%s\n", serialMsg);
Vanger	0:b86d15c6ba29	341	}
Vanger	0:b86d15c6ba29	342
Vanger	0:b86d15c6ba29	343	XFREE(subject, 0, DYNAMIC_TYPE_OPENSSL);
Vanger	0:b86d15c6ba29	344	XFREE(issuer, 0, DYNAMIC_TYPE_OPENSSL);
Vanger	0:b86d15c6ba29	345	}
Vanger	0:b86d15c6ba29	346
Vanger	0:b86d15c6ba29	347	#endif /* KEEP_PEER_CERT \|\| SESSION_CERTS */
Vanger	0:b86d15c6ba29	348
Vanger	0:b86d15c6ba29	349
Vanger	0:b86d15c6ba29	350	static INLINE void showPeer(CYASSL* ssl)
Vanger	0:b86d15c6ba29	351	{
Vanger	0:b86d15c6ba29	352
Vanger	0:b86d15c6ba29	353	CYASSL_CIPHER* cipher;
Vanger	0:b86d15c6ba29	354	#ifdef KEEP_PEER_CERT
Vanger	0:b86d15c6ba29	355	CYASSL_X509* peer = CyaSSL_get_peer_certificate(ssl);
Vanger	0:b86d15c6ba29	356	if (peer)
Vanger	0:b86d15c6ba29	357	ShowX509(peer, "peer's cert info:");
Vanger	0:b86d15c6ba29	358	else
Vanger	0:b86d15c6ba29	359	printf("peer has no cert!\n");
Vanger	0:b86d15c6ba29	360	#endif
Vanger	0:b86d15c6ba29	361	printf("SSL version is %s\n", CyaSSL_get_version(ssl));
Vanger	0:b86d15c6ba29	362
Vanger	0:b86d15c6ba29	363	cipher = CyaSSL_get_current_cipher(ssl);
Vanger	0:b86d15c6ba29	364	printf("SSL cipher suite is %s\n", CyaSSL_CIPHER_get_name(cipher));
Vanger	0:b86d15c6ba29	365
Vanger	0:b86d15c6ba29	366	#if defined(SESSION_CERTS) && defined(SHOW_CERTS)
Vanger	0:b86d15c6ba29	367	{
Vanger	0:b86d15c6ba29	368	CYASSL_X509_CHAIN* chain = CyaSSL_get_peer_chain(ssl);
Vanger	0:b86d15c6ba29	369	int count = CyaSSL_get_chain_count(chain);
Vanger	0:b86d15c6ba29	370	int i;
Vanger	0:b86d15c6ba29	371
Vanger	0:b86d15c6ba29	372	for (i = 0; i < count; i++) {
Vanger	0:b86d15c6ba29	373	int length;
Vanger	0:b86d15c6ba29	374	unsigned char buffer[3072];
Vanger	0:b86d15c6ba29	375	CYASSL_X509* chainX509;
Vanger	0:b86d15c6ba29	376
Vanger	0:b86d15c6ba29	377	CyaSSL_get_chain_cert_pem(chain,i,buffer, sizeof(buffer), &length);
Vanger	0:b86d15c6ba29	378	buffer[length] = 0;
Vanger	0:b86d15c6ba29	379	printf("cert %d has length %d data = \n%s\n", i, length, buffer);
Vanger	0:b86d15c6ba29	380
Vanger	0:b86d15c6ba29	381	chainX509 = CyaSSL_get_chain_X509(chain, i);
Vanger	0:b86d15c6ba29	382	if (chainX509)
Vanger	0:b86d15c6ba29	383	ShowX509(chainX509, "session cert info:");
Vanger	0:b86d15c6ba29	384	else
Vanger	0:b86d15c6ba29	385	printf("get_chain_X509 failed\n");
Vanger	0:b86d15c6ba29	386	CyaSSL_FreeX509(chainX509);
Vanger	0:b86d15c6ba29	387	}
Vanger	0:b86d15c6ba29	388	}
Vanger	0:b86d15c6ba29	389	#endif
Vanger	0:b86d15c6ba29	390	(void)ssl;
Vanger	0:b86d15c6ba29	391	}
Vanger	0:b86d15c6ba29	392
Vanger	0:b86d15c6ba29	393
Vanger	0:b86d15c6ba29	394	static INLINE void build_addr(SOCKADDR_IN_T* addr, const char* peer,
Vanger	0:b86d15c6ba29	395	word16 port, int udp)
Vanger	0:b86d15c6ba29	396	{
Vanger	0:b86d15c6ba29	397	int useLookup = 0;
Vanger	0:b86d15c6ba29	398	(void)useLookup;
Vanger	0:b86d15c6ba29	399	(void)udp;
Vanger	0:b86d15c6ba29	400
Vanger	0:b86d15c6ba29	401	memset(addr, 0, sizeof(SOCKADDR_IN_T));
Vanger	0:b86d15c6ba29	402
Vanger	0:b86d15c6ba29	403	#ifndef TEST_IPV6
Vanger	0:b86d15c6ba29	404	/* peer could be in human readable form */
Vanger	0:b86d15c6ba29	405	if ( (peer != INADDR_ANY) && isalpha((int)peer[0])) {
Vanger	0:b86d15c6ba29	406	#ifdef CYASSL_MDK_ARM
Vanger	0:b86d15c6ba29	407	int err;
Vanger	0:b86d15c6ba29	408	struct hostent* entry = gethostbyname(peer, &err);
Vanger	0:b86d15c6ba29	409	#else
Vanger	0:b86d15c6ba29	410	struct hostent* entry = gethostbyname(peer);
Vanger	0:b86d15c6ba29	411	#endif
Vanger	0:b86d15c6ba29	412
Vanger	0:b86d15c6ba29	413	if (entry) {
Vanger	0:b86d15c6ba29	414	memcpy(&addr->sin_addr.s_addr, entry->h_addr_list[0],
Vanger	0:b86d15c6ba29	415	entry->h_length);
Vanger	0:b86d15c6ba29	416	useLookup = 1;
Vanger	0:b86d15c6ba29	417	}
Vanger	0:b86d15c6ba29	418	else
Vanger	0:b86d15c6ba29	419	err_sys("no entry for host");
Vanger	0:b86d15c6ba29	420	}
Vanger	0:b86d15c6ba29	421	#endif
Vanger	0:b86d15c6ba29	422
Vanger	0:b86d15c6ba29	423
Vanger	0:b86d15c6ba29	424	#ifndef TEST_IPV6
Vanger	0:b86d15c6ba29	425	#if defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	426	addr->sin_family = PF_INET;
Vanger	0:b86d15c6ba29	427	#else
Vanger	0:b86d15c6ba29	428	addr->sin_family = AF_INET_V;
Vanger	0:b86d15c6ba29	429	#endif
Vanger	0:b86d15c6ba29	430	addr->sin_port = htons(port);
Vanger	0:b86d15c6ba29	431	if (peer == INADDR_ANY)
Vanger	0:b86d15c6ba29	432	addr->sin_addr.s_addr = INADDR_ANY;
Vanger	0:b86d15c6ba29	433	else {
Vanger	0:b86d15c6ba29	434	if (!useLookup)
Vanger	0:b86d15c6ba29	435	addr->sin_addr.s_addr = inet_addr(peer);
Vanger	0:b86d15c6ba29	436	}
Vanger	0:b86d15c6ba29	437	#else
Vanger	0:b86d15c6ba29	438	addr->sin6_family = AF_INET_V;
Vanger	0:b86d15c6ba29	439	addr->sin6_port = htons(port);
Vanger	0:b86d15c6ba29	440	if (peer == INADDR_ANY)
Vanger	0:b86d15c6ba29	441	addr->sin6_addr = in6addr_any;
Vanger	0:b86d15c6ba29	442	else {
Vanger	0:b86d15c6ba29	443	#ifdef HAVE_GETADDRINFO
Vanger	0:b86d15c6ba29	444	struct addrinfo hints;
Vanger	0:b86d15c6ba29	445	struct addrinfo* answer = NULL;
Vanger	0:b86d15c6ba29	446	int ret;
Vanger	0:b86d15c6ba29	447	char strPort[80];
Vanger	0:b86d15c6ba29	448
Vanger	0:b86d15c6ba29	449	memset(&hints, 0, sizeof(hints));
Vanger	0:b86d15c6ba29	450
Vanger	0:b86d15c6ba29	451	hints.ai_family = AF_INET_V;
Vanger	0:b86d15c6ba29	452	hints.ai_socktype = udp ? SOCK_DGRAM : SOCK_STREAM;
Vanger	0:b86d15c6ba29	453	hints.ai_protocol = udp ? IPPROTO_UDP : IPPROTO_TCP;
Vanger	0:b86d15c6ba29	454
Vanger	0:b86d15c6ba29	455	SNPRINTF(strPort, sizeof(strPort), "%d", port);
Vanger	0:b86d15c6ba29	456	strPort[79] = '\0';
Vanger	0:b86d15c6ba29	457
Vanger	0:b86d15c6ba29	458	ret = getaddrinfo(peer, strPort, &hints, &answer);
Vanger	0:b86d15c6ba29	459	if (ret < 0 \|\| answer == NULL)
Vanger	0:b86d15c6ba29	460	err_sys("getaddrinfo failed");
Vanger	0:b86d15c6ba29	461
Vanger	0:b86d15c6ba29	462	memcpy(addr, answer->ai_addr, answer->ai_addrlen);
Vanger	0:b86d15c6ba29	463	freeaddrinfo(answer);
Vanger	0:b86d15c6ba29	464	#else
Vanger	0:b86d15c6ba29	465	printf("no ipv6 getaddrinfo, loopback only tests/examples\n");
Vanger	0:b86d15c6ba29	466	addr->sin6_addr = in6addr_loopback;
Vanger	0:b86d15c6ba29	467	#endif
Vanger	0:b86d15c6ba29	468	}
Vanger	0:b86d15c6ba29	469	#endif
Vanger	0:b86d15c6ba29	470	}
Vanger	0:b86d15c6ba29	471
Vanger	0:b86d15c6ba29	472
Vanger	0:b86d15c6ba29	473	static INLINE void tcp_socket(SOCKET_T* sockfd, int udp)
Vanger	0:b86d15c6ba29	474	{
Vanger	0:b86d15c6ba29	475	if (udp)
Vanger	0:b86d15c6ba29	476	*sockfd = socket(AF_INET_V, SOCK_DGRAM, 0);
Vanger	0:b86d15c6ba29	477	else
Vanger	0:b86d15c6ba29	478	*sockfd = socket(AF_INET_V, SOCK_STREAM, 0);
Vanger	0:b86d15c6ba29	479
Vanger	0:b86d15c6ba29	480	#ifdef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	481	if (*sockfd == INVALID_SOCKET)
Vanger	0:b86d15c6ba29	482	err_sys("socket failed\n");
Vanger	0:b86d15c6ba29	483	#elif defined(CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	484	if (*sockfd == -1)
Vanger	0:b86d15c6ba29	485	err_sys("socket failed\n");
Vanger	0:b86d15c6ba29	486	#else
Vanger	0:b86d15c6ba29	487	if (*sockfd < 0)
Vanger	0:b86d15c6ba29	488	err_sys("socket failed\n");
Vanger	0:b86d15c6ba29	489	#endif
Vanger	0:b86d15c6ba29	490
Vanger	0:b86d15c6ba29	491	#ifndef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	492	#ifdef SO_NOSIGPIPE
Vanger	0:b86d15c6ba29	493	{
Vanger	0:b86d15c6ba29	494	int on = 1;
Vanger	0:b86d15c6ba29	495	socklen_t len = sizeof(on);
Vanger	0:b86d15c6ba29	496	int res = setsockopt(*sockfd, SOL_SOCKET, SO_NOSIGPIPE, &on, len);
Vanger	0:b86d15c6ba29	497	if (res < 0)
Vanger	0:b86d15c6ba29	498	err_sys("setsockopt SO_NOSIGPIPE failed\n");
Vanger	0:b86d15c6ba29	499	}
Vanger	0:b86d15c6ba29	500	#elif defined(CYASSL_MDK_ARM) \|\| defined (CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	501	/* nothing to define */
Vanger	0:b86d15c6ba29	502	#else /* no S_NOSIGPIPE */
Vanger	0:b86d15c6ba29	503	signal(SIGPIPE, SIG_IGN);
Vanger	0:b86d15c6ba29	504	#endif /* S_NOSIGPIPE */
Vanger	0:b86d15c6ba29	505
Vanger	0:b86d15c6ba29	506	#if defined(TCP_NODELAY)
Vanger	0:b86d15c6ba29	507	if (!udp)
Vanger	0:b86d15c6ba29	508	{
Vanger	0:b86d15c6ba29	509	int on = 1;
Vanger	0:b86d15c6ba29	510	socklen_t len = sizeof(on);
Vanger	0:b86d15c6ba29	511	int res = setsockopt(*sockfd, IPPROTO_TCP, TCP_NODELAY, &on, len);
Vanger	0:b86d15c6ba29	512	if (res < 0)
Vanger	0:b86d15c6ba29	513	err_sys("setsockopt TCP_NODELAY failed\n");
Vanger	0:b86d15c6ba29	514	}
Vanger	0:b86d15c6ba29	515	#endif
Vanger	0:b86d15c6ba29	516	#endif /* USE_WINDOWS_API */
Vanger	0:b86d15c6ba29	517	}
Vanger	0:b86d15c6ba29	518
Vanger	0:b86d15c6ba29	519	static INLINE void tcp_connect(SOCKET_T* sockfd, const char* ip, word16 port,
Vanger	0:b86d15c6ba29	520	int udp)
Vanger	0:b86d15c6ba29	521	{
Vanger	0:b86d15c6ba29	522	SOCKADDR_IN_T addr;
Vanger	0:b86d15c6ba29	523	build_addr(&addr, ip, port, udp);
Vanger	0:b86d15c6ba29	524	tcp_socket(sockfd, udp);
Vanger	0:b86d15c6ba29	525
Vanger	0:b86d15c6ba29	526	if (!udp) {
Vanger	0:b86d15c6ba29	527	if (connect(sockfd, (const struct sockaddr)&addr, sizeof(addr)) != 0)
Vanger	0:b86d15c6ba29	528	err_sys("tcp connect failed");
Vanger	0:b86d15c6ba29	529	}
Vanger	0:b86d15c6ba29	530	}
Vanger	0:b86d15c6ba29	531
Vanger	0:b86d15c6ba29	532
Vanger	0:b86d15c6ba29	533	static INLINE void udp_connect(SOCKET_T* sockfd, void* addr, int addrSz)
Vanger	0:b86d15c6ba29	534	{
Vanger	0:b86d15c6ba29	535	if (connect(sockfd, (const struct sockaddr)addr, addrSz) != 0)
Vanger	0:b86d15c6ba29	536	err_sys("tcp connect failed");
Vanger	0:b86d15c6ba29	537	}
Vanger	0:b86d15c6ba29	538
Vanger	0:b86d15c6ba29	539
Vanger	0:b86d15c6ba29	540	enum {
Vanger	0:b86d15c6ba29	541	TEST_SELECT_FAIL,
Vanger	0:b86d15c6ba29	542	TEST_TIMEOUT,
Vanger	0:b86d15c6ba29	543	TEST_RECV_READY,
Vanger	0:b86d15c6ba29	544	TEST_ERROR_READY
Vanger	0:b86d15c6ba29	545	};
Vanger	0:b86d15c6ba29	546
Vanger	0:b86d15c6ba29	547
Vanger	0:b86d15c6ba29	548	#if !defined(CYASSL_MDK_ARM) && !defined(CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	549	static INLINE int tcp_select(SOCKET_T socketfd, int to_sec)
Vanger	0:b86d15c6ba29	550	{
Vanger	0:b86d15c6ba29	551	fd_set recvfds, errfds;
Vanger	0:b86d15c6ba29	552	SOCKET_T nfds = socketfd + 1;
Vanger	0:b86d15c6ba29	553	struct timeval timeout = { (to_sec > 0) ? to_sec : 0, 0};
Vanger	0:b86d15c6ba29	554	int result;
Vanger	0:b86d15c6ba29	555
Vanger	0:b86d15c6ba29	556	FD_ZERO(&recvfds);
Vanger	0:b86d15c6ba29	557	FD_SET(socketfd, &recvfds);
Vanger	0:b86d15c6ba29	558	FD_ZERO(&errfds);
Vanger	0:b86d15c6ba29	559	FD_SET(socketfd, &errfds);
Vanger	0:b86d15c6ba29	560
Vanger	0:b86d15c6ba29	561	result = select(nfds, &recvfds, NULL, &errfds, &timeout);
Vanger	0:b86d15c6ba29	562
Vanger	0:b86d15c6ba29	563	if (result == 0)
Vanger	0:b86d15c6ba29	564	return TEST_TIMEOUT;
Vanger	0:b86d15c6ba29	565	else if (result > 0) {
Vanger	0:b86d15c6ba29	566	if (FD_ISSET(socketfd, &recvfds))
Vanger	0:b86d15c6ba29	567	return TEST_RECV_READY;
Vanger	0:b86d15c6ba29	568	else if(FD_ISSET(socketfd, &errfds))
Vanger	0:b86d15c6ba29	569	return TEST_ERROR_READY;
Vanger	0:b86d15c6ba29	570	}
Vanger	0:b86d15c6ba29	571
Vanger	0:b86d15c6ba29	572	return TEST_SELECT_FAIL;
Vanger	0:b86d15c6ba29	573	}
Vanger	0:b86d15c6ba29	574	#elif defined(CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	575	static INLINE int tcp_select(SOCKET_T socketfd, int to_sec)
Vanger	0:b86d15c6ba29	576	{
Vanger	0:b86d15c6ba29	577	return TEST_RECV_READY;
Vanger	0:b86d15c6ba29	578	}
Vanger	0:b86d15c6ba29	579	#endif /* !CYASSL_MDK_ARM */
Vanger	0:b86d15c6ba29	580
Vanger	0:b86d15c6ba29	581
Vanger	0:b86d15c6ba29	582	static INLINE void tcp_listen(SOCKET_T* sockfd, word16* port, int useAnyAddr,
Vanger	0:b86d15c6ba29	583	int udp)
Vanger	0:b86d15c6ba29	584	{
Vanger	0:b86d15c6ba29	585	SOCKADDR_IN_T addr;
Vanger	0:b86d15c6ba29	586
Vanger	0:b86d15c6ba29	587	/* don't use INADDR_ANY by default, firewall may block, make user switch
Vanger	0:b86d15c6ba29	588	on */
Vanger	0:b86d15c6ba29	589	build_addr(&addr, (useAnyAddr ? INADDR_ANY : yasslIP), *port, udp);
Vanger	0:b86d15c6ba29	590	tcp_socket(sockfd, udp);
Vanger	0:b86d15c6ba29	591
Vanger	0:b86d15c6ba29	592	#if !defined(USE_WINDOWS_API) && !defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	593	{
Vanger	0:b86d15c6ba29	594	int res, on = 1;
Vanger	0:b86d15c6ba29	595	socklen_t len = sizeof(on);
Vanger	0:b86d15c6ba29	596	res = setsockopt(*sockfd, SOL_SOCKET, SO_REUSEADDR, &on, len);
Vanger	0:b86d15c6ba29	597	if (res < 0)
Vanger	0:b86d15c6ba29	598	err_sys("setsockopt SO_REUSEADDR failed\n");
Vanger	0:b86d15c6ba29	599	}
Vanger	0:b86d15c6ba29	600	#endif
Vanger	0:b86d15c6ba29	601
Vanger	0:b86d15c6ba29	602	if (bind(sockfd, (const struct sockaddr)&addr, sizeof(addr)) != 0)
Vanger	0:b86d15c6ba29	603	err_sys("tcp bind failed");
Vanger	0:b86d15c6ba29	604	if (!udp) {
Vanger	0:b86d15c6ba29	605	if (listen(*sockfd, 5) != 0)
Vanger	0:b86d15c6ba29	606	err_sys("tcp listen failed");
Vanger	0:b86d15c6ba29	607	}
Vanger	0:b86d15c6ba29	608	#if defined(NO_MAIN_DRIVER) && !defined(USE_WINDOWS_API)
Vanger	0:b86d15c6ba29	609	if (*port == 0) {
Vanger	0:b86d15c6ba29	610	socklen_t len = sizeof(addr);
Vanger	0:b86d15c6ba29	611	if (getsockname(sockfd, (struct sockaddr)&addr, &len) == 0) {
Vanger	0:b86d15c6ba29	612	#ifndef TEST_IPV6
Vanger	0:b86d15c6ba29	613	*port = ntohs(addr.sin_port);
Vanger	0:b86d15c6ba29	614	#else
Vanger	0:b86d15c6ba29	615	*port = ntohs(addr.sin6_port);
Vanger	0:b86d15c6ba29	616	#endif
Vanger	0:b86d15c6ba29	617	}
Vanger	0:b86d15c6ba29	618	}
Vanger	0:b86d15c6ba29	619	#endif
Vanger	0:b86d15c6ba29	620	}
Vanger	0:b86d15c6ba29	621
Vanger	0:b86d15c6ba29	622
Vanger	0:b86d15c6ba29	623	static INLINE int udp_read_connect(SOCKET_T sockfd)
Vanger	0:b86d15c6ba29	624	{
Vanger	0:b86d15c6ba29	625	SOCKADDR_IN_T cliaddr;
Vanger	0:b86d15c6ba29	626	byte b[1500];
Vanger	0:b86d15c6ba29	627	int n;
Vanger	0:b86d15c6ba29	628	socklen_t len = sizeof(cliaddr);
Vanger	0:b86d15c6ba29	629
Vanger	0:b86d15c6ba29	630	n = (int)recvfrom(sockfd, (char*)b, sizeof(b), MSG_PEEK,
Vanger	0:b86d15c6ba29	631	(struct sockaddr*)&cliaddr, &len);
Vanger	0:b86d15c6ba29	632	if (n > 0) {
Vanger	0:b86d15c6ba29	633	if (connect(sockfd, (const struct sockaddr*)&cliaddr,
Vanger	0:b86d15c6ba29	634	sizeof(cliaddr)) != 0)
Vanger	0:b86d15c6ba29	635	err_sys("udp connect failed");
Vanger	0:b86d15c6ba29	636	}
Vanger	0:b86d15c6ba29	637	else
Vanger	0:b86d15c6ba29	638	err_sys("recvfrom failed");
Vanger	0:b86d15c6ba29	639
Vanger	0:b86d15c6ba29	640	return sockfd;
Vanger	0:b86d15c6ba29	641	}
Vanger	0:b86d15c6ba29	642
Vanger	0:b86d15c6ba29	643	static INLINE void udp_accept(SOCKET_T* sockfd, SOCKET_T* clientfd,
Vanger	0:b86d15c6ba29	644	int useAnyAddr, word16 port, func_args* args)
Vanger	0:b86d15c6ba29	645	{
Vanger	0:b86d15c6ba29	646	SOCKADDR_IN_T addr;
Vanger	0:b86d15c6ba29	647
Vanger	0:b86d15c6ba29	648	(void)args;
Vanger	0:b86d15c6ba29	649	build_addr(&addr, (useAnyAddr ? INADDR_ANY : yasslIP), port, 1);
Vanger	0:b86d15c6ba29	650	tcp_socket(sockfd, 1);
Vanger	0:b86d15c6ba29	651
Vanger	0:b86d15c6ba29	652
Vanger	0:b86d15c6ba29	653	#if !defined(USE_WINDOWS_API) && !defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	654	{
Vanger	0:b86d15c6ba29	655	int res, on = 1;
Vanger	0:b86d15c6ba29	656	socklen_t len = sizeof(on);
Vanger	0:b86d15c6ba29	657	res = setsockopt(*sockfd, SOL_SOCKET, SO_REUSEADDR, &on, len);
Vanger	0:b86d15c6ba29	658	if (res < 0)
Vanger	0:b86d15c6ba29	659	err_sys("setsockopt SO_REUSEADDR failed\n");
Vanger	0:b86d15c6ba29	660	}
Vanger	0:b86d15c6ba29	661	#endif
Vanger	0:b86d15c6ba29	662
Vanger	0:b86d15c6ba29	663	if (bind(sockfd, (const struct sockaddr)&addr, sizeof(addr)) != 0)
Vanger	0:b86d15c6ba29	664	err_sys("tcp bind failed");
Vanger	0:b86d15c6ba29	665
Vanger	0:b86d15c6ba29	666	#if defined(NO_MAIN_DRIVER) && !defined(USE_WINDOWS_API)
Vanger	0:b86d15c6ba29	667	if (port == 0) {
Vanger	0:b86d15c6ba29	668	socklen_t len = sizeof(addr);
Vanger	0:b86d15c6ba29	669	if (getsockname(sockfd, (struct sockaddr)&addr, &len) == 0) {
Vanger	0:b86d15c6ba29	670	#ifndef TEST_IPV6
Vanger	0:b86d15c6ba29	671	port = ntohs(addr.sin_port);
Vanger	0:b86d15c6ba29	672	#else
Vanger	0:b86d15c6ba29	673	port = ntohs(addr.sin6_port);
Vanger	0:b86d15c6ba29	674	#endif
Vanger	0:b86d15c6ba29	675	}
Vanger	0:b86d15c6ba29	676	}
Vanger	0:b86d15c6ba29	677	#endif
Vanger	0:b86d15c6ba29	678
Vanger	0:b86d15c6ba29	679	#if defined(_POSIX_THREADS) && defined(NO_MAIN_DRIVER) && !defined(__MINGW32__)
Vanger	0:b86d15c6ba29	680	/* signal ready to accept data */
Vanger	0:b86d15c6ba29	681	{
Vanger	0:b86d15c6ba29	682	tcp_ready* ready = args->signal;
Vanger	0:b86d15c6ba29	683	pthread_mutex_lock(&ready->mutex);
Vanger	0:b86d15c6ba29	684	ready->ready = 1;
Vanger	0:b86d15c6ba29	685	ready->port = port;
Vanger	0:b86d15c6ba29	686	pthread_cond_signal(&ready->cond);
Vanger	0:b86d15c6ba29	687	pthread_mutex_unlock(&ready->mutex);
Vanger	0:b86d15c6ba29	688	}
Vanger	0:b86d15c6ba29	689	#elif defined (CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	690	/* Need mutex? */
Vanger	0:b86d15c6ba29	691	tcp_ready* ready = args->signal;
Vanger	0:b86d15c6ba29	692	ready->ready = 1;
Vanger	0:b86d15c6ba29	693	ready->port = port;
Vanger	0:b86d15c6ba29	694	#endif
Vanger	0:b86d15c6ba29	695
Vanger	0:b86d15c6ba29	696	clientfd = udp_read_connect(sockfd);
Vanger	0:b86d15c6ba29	697	}
Vanger	0:b86d15c6ba29	698
Vanger	0:b86d15c6ba29	699	static INLINE void tcp_accept(SOCKET_T* sockfd, SOCKET_T* clientfd,
Vanger	0:b86d15c6ba29	700	func_args* args, word16 port, int useAnyAddr,
Vanger	0:b86d15c6ba29	701	int udp, int ready_file)
Vanger	0:b86d15c6ba29	702	{
Vanger	0:b86d15c6ba29	703	SOCKADDR_IN_T client;
Vanger	0:b86d15c6ba29	704	socklen_t client_len = sizeof(client);
Vanger	0:b86d15c6ba29	705
Vanger	0:b86d15c6ba29	706	if (udp) {
Vanger	0:b86d15c6ba29	707	udp_accept(sockfd, clientfd, useAnyAddr, port, args);
Vanger	0:b86d15c6ba29	708	return;
Vanger	0:b86d15c6ba29	709	}
Vanger	0:b86d15c6ba29	710
Vanger	0:b86d15c6ba29	711	tcp_listen(sockfd, &port, useAnyAddr, udp);
Vanger	0:b86d15c6ba29	712
Vanger	0:b86d15c6ba29	713	#if defined(_POSIX_THREADS) && defined(NO_MAIN_DRIVER) && !defined(__MINGW32__)
Vanger	0:b86d15c6ba29	714	/* signal ready to tcp_accept */
Vanger	0:b86d15c6ba29	715	{
Vanger	0:b86d15c6ba29	716	tcp_ready* ready = args->signal;
Vanger	0:b86d15c6ba29	717	pthread_mutex_lock(&ready->mutex);
Vanger	0:b86d15c6ba29	718	ready->ready = 1;
Vanger	0:b86d15c6ba29	719	ready->port = port;
Vanger	0:b86d15c6ba29	720	pthread_cond_signal(&ready->cond);
Vanger	0:b86d15c6ba29	721	pthread_mutex_unlock(&ready->mutex);
Vanger	0:b86d15c6ba29	722	}
Vanger	0:b86d15c6ba29	723	#elif defined (CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	724	/* Need mutex? */
Vanger	0:b86d15c6ba29	725	tcp_ready* ready = args->signal;
Vanger	0:b86d15c6ba29	726	ready->ready = 1;
Vanger	0:b86d15c6ba29	727	ready->port = port;
Vanger	0:b86d15c6ba29	728	#endif
Vanger	0:b86d15c6ba29	729
Vanger	0:b86d15c6ba29	730	if (ready_file) {
Vanger	0:b86d15c6ba29	731	#ifndef NO_FILESYSTEM
Vanger	0:b86d15c6ba29	732	FILE* srf = fopen("./server_ready", "w+");
Vanger	0:b86d15c6ba29	733
Vanger	0:b86d15c6ba29	734	if (srf) {
Vanger	0:b86d15c6ba29	735	fputs("ready", srf);
Vanger	0:b86d15c6ba29	736	fclose(srf);
Vanger	0:b86d15c6ba29	737	}
Vanger	0:b86d15c6ba29	738	#endif
Vanger	0:b86d15c6ba29	739	}
Vanger	0:b86d15c6ba29	740
Vanger	0:b86d15c6ba29	741	clientfd = accept(sockfd, (struct sockaddr*)&client,
Vanger	0:b86d15c6ba29	742	(ACCEPT_THIRD_T)&client_len);
Vanger	0:b86d15c6ba29	743	#ifdef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	744	if (*clientfd == INVALID_SOCKET)
Vanger	0:b86d15c6ba29	745	err_sys("tcp accept failed");
Vanger	0:b86d15c6ba29	746	#else
Vanger	0:b86d15c6ba29	747	if (*clientfd == -1)
Vanger	0:b86d15c6ba29	748	err_sys("tcp accept failed");
Vanger	0:b86d15c6ba29	749	#endif
Vanger	0:b86d15c6ba29	750	}
Vanger	0:b86d15c6ba29	751
Vanger	0:b86d15c6ba29	752
Vanger	0:b86d15c6ba29	753	static INLINE void tcp_set_nonblocking(SOCKET_T* sockfd)
Vanger	0:b86d15c6ba29	754	{
Vanger	0:b86d15c6ba29	755	#ifdef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	756	unsigned long blocking = 1;
Vanger	0:b86d15c6ba29	757	int ret = ioctlsocket(*sockfd, FIONBIO, &blocking);
Vanger	0:b86d15c6ba29	758	if (ret == SOCKET_ERROR)
Vanger	0:b86d15c6ba29	759	err_sys("ioctlsocket failed");
Vanger	0:b86d15c6ba29	760	#elif defined(CYASSL_MDK_ARM) \|\| defined (CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	761	/* non blocking not suppported, for now */
Vanger	0:b86d15c6ba29	762	#else
Vanger	0:b86d15c6ba29	763	int flags = fcntl(*sockfd, F_GETFL, 0);
Vanger	0:b86d15c6ba29	764	if (flags < 0)
Vanger	0:b86d15c6ba29	765	err_sys("fcntl get failed");
Vanger	0:b86d15c6ba29	766	flags = fcntl(*sockfd, F_SETFL, flags \| O_NONBLOCK);
Vanger	0:b86d15c6ba29	767	if (flags < 0)
Vanger	0:b86d15c6ba29	768	err_sys("fcntl set failed");
Vanger	0:b86d15c6ba29	769	#endif
Vanger	0:b86d15c6ba29	770	}
Vanger	0:b86d15c6ba29	771
Vanger	0:b86d15c6ba29	772
Vanger	0:b86d15c6ba29	773	#ifndef NO_PSK
Vanger	0:b86d15c6ba29	774
Vanger	0:b86d15c6ba29	775	static INLINE unsigned int my_psk_client_cb(CYASSL* ssl, const char* hint,
Vanger	0:b86d15c6ba29	776	char* identity, unsigned int id_max_len, unsigned char* key,
Vanger	0:b86d15c6ba29	777	unsigned int key_max_len)
Vanger	0:b86d15c6ba29	778	{
Vanger	0:b86d15c6ba29	779	(void)ssl;
Vanger	0:b86d15c6ba29	780	(void)hint;
Vanger	0:b86d15c6ba29	781	(void)key_max_len;
Vanger	0:b86d15c6ba29	782
Vanger	0:b86d15c6ba29	783	/* identity is OpenSSL testing default for openssl s_client, keep same */
Vanger	0:b86d15c6ba29	784	strncpy(identity, "Client_identity", id_max_len);
Vanger	0:b86d15c6ba29	785
Vanger	0:b86d15c6ba29	786
Vanger	0:b86d15c6ba29	787	/* test key in hex is 0x1a2b3c4d , in decimal 439,041,101 , we're using
Vanger	0:b86d15c6ba29	788	unsigned binary */
Vanger	0:b86d15c6ba29	789	key[0] = 26;
Vanger	0:b86d15c6ba29	790	key[1] = 43;
Vanger	0:b86d15c6ba29	791	key[2] = 60;
Vanger	0:b86d15c6ba29	792	key[3] = 77;
Vanger	0:b86d15c6ba29	793
Vanger	0:b86d15c6ba29	794	return 4; /* length of key in octets or 0 for error */
Vanger	0:b86d15c6ba29	795	}
Vanger	0:b86d15c6ba29	796
Vanger	0:b86d15c6ba29	797
Vanger	0:b86d15c6ba29	798	static INLINE unsigned int my_psk_server_cb(CYASSL* ssl, const char* identity,
Vanger	0:b86d15c6ba29	799	unsigned char* key, unsigned int key_max_len)
Vanger	0:b86d15c6ba29	800	{
Vanger	0:b86d15c6ba29	801	(void)ssl;
Vanger	0:b86d15c6ba29	802	(void)key_max_len;
Vanger	0:b86d15c6ba29	803
Vanger	0:b86d15c6ba29	804	/* identity is OpenSSL testing default for openssl s_client, keep same */
Vanger	0:b86d15c6ba29	805	if (strncmp(identity, "Client_identity", 15) != 0)
Vanger	0:b86d15c6ba29	806	return 0;
Vanger	0:b86d15c6ba29	807
Vanger	0:b86d15c6ba29	808	/* test key in hex is 0x1a2b3c4d , in decimal 439,041,101 , we're using
Vanger	0:b86d15c6ba29	809	unsigned binary */
Vanger	0:b86d15c6ba29	810	key[0] = 26;
Vanger	0:b86d15c6ba29	811	key[1] = 43;
Vanger	0:b86d15c6ba29	812	key[2] = 60;
Vanger	0:b86d15c6ba29	813	key[3] = 77;
Vanger	0:b86d15c6ba29	814
Vanger	0:b86d15c6ba29	815	return 4; /* length of key in octets or 0 for error */
Vanger	0:b86d15c6ba29	816	}
Vanger	0:b86d15c6ba29	817
Vanger	0:b86d15c6ba29	818	#endif /* NO_PSK */
Vanger	0:b86d15c6ba29	819
Vanger	0:b86d15c6ba29	820
Vanger	0:b86d15c6ba29	821	#ifdef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	822
Vanger	0:b86d15c6ba29	823	#define WIN32_LEAN_AND_MEAN
Vanger	0:b86d15c6ba29	824	#include <windows.h>
Vanger	0:b86d15c6ba29	825
Vanger	0:b86d15c6ba29	826	static INLINE double current_time()
Vanger	0:b86d15c6ba29	827	{
Vanger	0:b86d15c6ba29	828	static int init = 0;
Vanger	0:b86d15c6ba29	829	static LARGE_INTEGER freq;
Vanger	0:b86d15c6ba29	830
Vanger	0:b86d15c6ba29	831	LARGE_INTEGER count;
Vanger	0:b86d15c6ba29	832
Vanger	0:b86d15c6ba29	833	if (!init) {
Vanger	0:b86d15c6ba29	834	QueryPerformanceFrequency(&freq);
Vanger	0:b86d15c6ba29	835	init = 1;
Vanger	0:b86d15c6ba29	836	}
Vanger	0:b86d15c6ba29	837
Vanger	0:b86d15c6ba29	838	QueryPerformanceCounter(&count);
Vanger	0:b86d15c6ba29	839
Vanger	0:b86d15c6ba29	840	return (double)count.QuadPart / freq.QuadPart;
Vanger	0:b86d15c6ba29	841	}
Vanger	0:b86d15c6ba29	842
Vanger	0:b86d15c6ba29	843	#elif defined(CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	844	extern double current_time();
Vanger	0:b86d15c6ba29	845	#else
Vanger	0:b86d15c6ba29	846
Vanger	0:b86d15c6ba29	847	#if !defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	848	#include <sys/time.h>
Vanger	0:b86d15c6ba29	849
Vanger	0:b86d15c6ba29	850	static INLINE double current_time(void)
Vanger	0:b86d15c6ba29	851	{
Vanger	0:b86d15c6ba29	852	struct timeval tv;
Vanger	0:b86d15c6ba29	853	gettimeofday(&tv, 0);
Vanger	0:b86d15c6ba29	854
Vanger	0:b86d15c6ba29	855	return (double)tv.tv_sec + (double)tv.tv_usec / 1000000;
Vanger	0:b86d15c6ba29	856	}
Vanger	0:b86d15c6ba29	857
Vanger	0:b86d15c6ba29	858	#endif
Vanger	0:b86d15c6ba29	859	#endif /* USE_WINDOWS_API */
Vanger	0:b86d15c6ba29	860
Vanger	0:b86d15c6ba29	861
Vanger	0:b86d15c6ba29	862	#if defined(NO_FILESYSTEM) && !defined(NO_CERTS)
Vanger	0:b86d15c6ba29	863
Vanger	0:b86d15c6ba29	864	enum {
Vanger	0:b86d15c6ba29	865	CYASSL_CA = 1,
Vanger	0:b86d15c6ba29	866	CYASSL_CERT = 2,
Vanger	0:b86d15c6ba29	867	CYASSL_KEY = 3
Vanger	0:b86d15c6ba29	868	};
Vanger	0:b86d15c6ba29	869
Vanger	0:b86d15c6ba29	870	static INLINE void load_buffer(CYASSL_CTX* ctx, const char* fname, int type)
Vanger	0:b86d15c6ba29	871	{
Vanger	0:b86d15c6ba29	872	/* test buffer load */
Vanger	0:b86d15c6ba29	873	long sz = 0;
Vanger	0:b86d15c6ba29	874	byte buff[10000];
Vanger	0:b86d15c6ba29	875	FILE* file = fopen(fname, "rb");
Vanger	0:b86d15c6ba29	876
Vanger	0:b86d15c6ba29	877	if (!file)
Vanger	0:b86d15c6ba29	878	err_sys("can't open file for buffer load "
Vanger	0:b86d15c6ba29	879	"Please run from CyaSSL home directory if not");
Vanger	0:b86d15c6ba29	880	fseek(file, 0, SEEK_END);
Vanger	0:b86d15c6ba29	881	sz = ftell(file);
Vanger	0:b86d15c6ba29	882	rewind(file);
Vanger	0:b86d15c6ba29	883	fread(buff, sizeof(buff), 1, file);
Vanger	0:b86d15c6ba29	884
Vanger	0:b86d15c6ba29	885	if (type == CYASSL_CA) {
Vanger	0:b86d15c6ba29	886	if (CyaSSL_CTX_load_verify_buffer(ctx, buff, sz, SSL_FILETYPE_PEM)
Vanger	0:b86d15c6ba29	887	!= SSL_SUCCESS)
Vanger	0:b86d15c6ba29	888	err_sys("can't load buffer ca file");
Vanger	0:b86d15c6ba29	889	}
Vanger	0:b86d15c6ba29	890	else if (type == CYASSL_CERT) {
Vanger	0:b86d15c6ba29	891	if (CyaSSL_CTX_use_certificate_buffer(ctx, buff, sz,
Vanger	0:b86d15c6ba29	892	SSL_FILETYPE_PEM) != SSL_SUCCESS)
Vanger	0:b86d15c6ba29	893	err_sys("can't load buffer cert file");
Vanger	0:b86d15c6ba29	894	}
Vanger	0:b86d15c6ba29	895	else if (type == CYASSL_KEY) {
Vanger	0:b86d15c6ba29	896	if (CyaSSL_CTX_use_PrivateKey_buffer(ctx, buff, sz,
Vanger	0:b86d15c6ba29	897	SSL_FILETYPE_PEM) != SSL_SUCCESS)
Vanger	0:b86d15c6ba29	898	err_sys("can't load buffer key file");
Vanger	0:b86d15c6ba29	899	}
Vanger	0:b86d15c6ba29	900	}
Vanger	0:b86d15c6ba29	901
Vanger	0:b86d15c6ba29	902	#endif /* NO_FILESYSTEM */
Vanger	0:b86d15c6ba29	903
Vanger	0:b86d15c6ba29	904	#ifdef VERIFY_CALLBACK
Vanger	0:b86d15c6ba29	905
Vanger	0:b86d15c6ba29	906	static INLINE int myVerify(int preverify, CYASSL_X509_STORE_CTX* store)
Vanger	0:b86d15c6ba29	907	{
Vanger	0:b86d15c6ba29	908	(void)preverify;
Vanger	0:b86d15c6ba29	909	char buffer[CYASSL_MAX_ERROR_SZ];
Vanger	0:b86d15c6ba29	910
Vanger	0:b86d15c6ba29	911	#ifdef OPENSSL_EXTRA
Vanger	0:b86d15c6ba29	912	CYASSL_X509* peer;
Vanger	0:b86d15c6ba29	913	#endif
Vanger	0:b86d15c6ba29	914
Vanger	0:b86d15c6ba29	915	printf("In verification callback, error = %d, %s\n", store->error,
Vanger	0:b86d15c6ba29	916	CyaSSL_ERR_error_string(store->error, buffer));
Vanger	0:b86d15c6ba29	917	#ifdef OPENSSL_EXTRA
Vanger	0:b86d15c6ba29	918	peer = store->current_cert;
Vanger	0:b86d15c6ba29	919	if (peer) {
Vanger	0:b86d15c6ba29	920	char* issuer = CyaSSL_X509_NAME_oneline(
Vanger	0:b86d15c6ba29	921	CyaSSL_X509_get_issuer_name(peer), 0, 0);
Vanger	0:b86d15c6ba29	922	char* subject = CyaSSL_X509_NAME_oneline(
Vanger	0:b86d15c6ba29	923	CyaSSL_X509_get_subject_name(peer), 0, 0);
Vanger	0:b86d15c6ba29	924	printf("peer's cert info:\n issuer : %s\n subject: %s\n", issuer,
Vanger	0:b86d15c6ba29	925	subject);
Vanger	0:b86d15c6ba29	926	XFREE(subject, 0, DYNAMIC_TYPE_OPENSSL);
Vanger	0:b86d15c6ba29	927	XFREE(issuer, 0, DYNAMIC_TYPE_OPENSSL);
Vanger	0:b86d15c6ba29	928	}
Vanger	0:b86d15c6ba29	929	else
Vanger	0:b86d15c6ba29	930	printf("peer has no cert!\n");
Vanger	0:b86d15c6ba29	931	#endif
Vanger	0:b86d15c6ba29	932	printf("Subject's domain name is %s\n", store->domain);
Vanger	0:b86d15c6ba29	933
Vanger	0:b86d15c6ba29	934	printf("Allowing to continue anyway (shouldn't do this, EVER!!!)\n");
Vanger	0:b86d15c6ba29	935	return 1;
Vanger	0:b86d15c6ba29	936	}
Vanger	0:b86d15c6ba29	937
Vanger	0:b86d15c6ba29	938	#endif /* VERIFY_CALLBACK */
Vanger	0:b86d15c6ba29	939
Vanger	0:b86d15c6ba29	940
Vanger	0:b86d15c6ba29	941	static INLINE int myDateCb(int preverify, CYASSL_X509_STORE_CTX* store)
Vanger	0:b86d15c6ba29	942	{
Vanger	0:b86d15c6ba29	943	char buffer[CYASSL_MAX_ERROR_SZ];
Vanger	0:b86d15c6ba29	944	(void)preverify;
Vanger	0:b86d15c6ba29	945
Vanger	0:b86d15c6ba29	946	printf("In verification callback, error = %d, %s\n", store->error,
Vanger	0:b86d15c6ba29	947	CyaSSL_ERR_error_string(store->error, buffer));
Vanger	0:b86d15c6ba29	948	printf("Subject's domain name is %s\n", store->domain);
Vanger	0:b86d15c6ba29	949
Vanger	0:b86d15c6ba29	950	if (store->error == ASN_BEFORE_DATE_E \|\| store->error == ASN_AFTER_DATE_E) {
Vanger	0:b86d15c6ba29	951	printf("Overriding cert date error as example for bad clock testing\n");
Vanger	0:b86d15c6ba29	952	return 1;
Vanger	0:b86d15c6ba29	953	}
Vanger	0:b86d15c6ba29	954	printf("Cert error is not date error, not overriding\n");
Vanger	0:b86d15c6ba29	955
Vanger	0:b86d15c6ba29	956	return 0;
Vanger	0:b86d15c6ba29	957	}
Vanger	0:b86d15c6ba29	958
Vanger	0:b86d15c6ba29	959
Vanger	0:b86d15c6ba29	960	#ifdef HAVE_CRL
Vanger	0:b86d15c6ba29	961
Vanger	0:b86d15c6ba29	962	static INLINE void CRL_CallBack(const char* url)
Vanger	0:b86d15c6ba29	963	{
Vanger	0:b86d15c6ba29	964	printf("CRL callback url = %s\n", url);
Vanger	0:b86d15c6ba29	965	}
Vanger	0:b86d15c6ba29	966
Vanger	0:b86d15c6ba29	967	#endif
Vanger	0:b86d15c6ba29	968
Vanger	0:b86d15c6ba29	969	#ifndef NO_CERTS
Vanger	0:b86d15c6ba29	970
Vanger	0:b86d15c6ba29	971	static INLINE void CaCb(unsigned char* der, int sz, int type)
Vanger	0:b86d15c6ba29	972	{
Vanger	0:b86d15c6ba29	973	(void)der;
Vanger	0:b86d15c6ba29	974	printf("Got CA cache add callback, derSz = %d, type = %d\n", sz, type);
Vanger	0:b86d15c6ba29	975	}
Vanger	0:b86d15c6ba29	976
Vanger	0:b86d15c6ba29	977
Vanger	0:b86d15c6ba29	978	#ifndef NO_DH
Vanger	0:b86d15c6ba29	979	static INLINE void SetDH(CYASSL* ssl)
Vanger	0:b86d15c6ba29	980	{
Vanger	0:b86d15c6ba29	981	/* dh1024 p */
Vanger	0:b86d15c6ba29	982	static unsigned char p[] =
Vanger	0:b86d15c6ba29	983	{
Vanger	0:b86d15c6ba29	984	0xE6, 0x96, 0x9D, 0x3D, 0x49, 0x5B, 0xE3, 0x2C, 0x7C, 0xF1, 0x80, 0xC3,
Vanger	0:b86d15c6ba29	985	0xBD, 0xD4, 0x79, 0x8E, 0x91, 0xB7, 0x81, 0x82, 0x51, 0xBB, 0x05, 0x5E,
Vanger	0:b86d15c6ba29	986	0x2A, 0x20, 0x64, 0x90, 0x4A, 0x79, 0xA7, 0x70, 0xFA, 0x15, 0xA2, 0x59,
Vanger	0:b86d15c6ba29	987	0xCB, 0xD5, 0x23, 0xA6, 0xA6, 0xEF, 0x09, 0xC4, 0x30, 0x48, 0xD5, 0xA2,
Vanger	0:b86d15c6ba29	988	0x2F, 0x97, 0x1F, 0x3C, 0x20, 0x12, 0x9B, 0x48, 0x00, 0x0E, 0x6E, 0xDD,
Vanger	0:b86d15c6ba29	989	0x06, 0x1C, 0xBC, 0x05, 0x3E, 0x37, 0x1D, 0x79, 0x4E, 0x53, 0x27, 0xDF,
Vanger	0:b86d15c6ba29	990	0x61, 0x1E, 0xBB, 0xBE, 0x1B, 0xAC, 0x9B, 0x5C, 0x60, 0x44, 0xCF, 0x02,
Vanger	0:b86d15c6ba29	991	0x3D, 0x76, 0xE0, 0x5E, 0xEA, 0x9B, 0xAD, 0x99, 0x1B, 0x13, 0xA6, 0x3C,
Vanger	0:b86d15c6ba29	992	0x97, 0x4E, 0x9E, 0xF1, 0x83, 0x9E, 0xB5, 0xDB, 0x12, 0x51, 0x36, 0xF7,
Vanger	0:b86d15c6ba29	993	0x26, 0x2E, 0x56, 0xA8, 0x87, 0x15, 0x38, 0xDF, 0xD8, 0x23, 0xC6, 0x50,
Vanger	0:b86d15c6ba29	994	0x50, 0x85, 0xE2, 0x1F, 0x0D, 0xD5, 0xC8, 0x6B,
Vanger	0:b86d15c6ba29	995	};
Vanger	0:b86d15c6ba29	996
Vanger	0:b86d15c6ba29	997	/* dh1024 g */
Vanger	0:b86d15c6ba29	998	static unsigned char g[] =
Vanger	0:b86d15c6ba29	999	{
Vanger	0:b86d15c6ba29	1000	0x02,
Vanger	0:b86d15c6ba29	1001	};
Vanger	0:b86d15c6ba29	1002
Vanger	0:b86d15c6ba29	1003	CyaSSL_SetTmpDH(ssl, p, sizeof(p), g, sizeof(g));
Vanger	0:b86d15c6ba29	1004	}
Vanger	0:b86d15c6ba29	1005
Vanger	0:b86d15c6ba29	1006	static INLINE void SetDHCtx(CYASSL_CTX* ctx)
Vanger	0:b86d15c6ba29	1007	{
Vanger	0:b86d15c6ba29	1008	/* dh1024 p */
Vanger	0:b86d15c6ba29	1009	static unsigned char p[] =
Vanger	0:b86d15c6ba29	1010	{
Vanger	0:b86d15c6ba29	1011	0xE6, 0x96, 0x9D, 0x3D, 0x49, 0x5B, 0xE3, 0x2C, 0x7C, 0xF1, 0x80, 0xC3,
Vanger	0:b86d15c6ba29	1012	0xBD, 0xD4, 0x79, 0x8E, 0x91, 0xB7, 0x81, 0x82, 0x51, 0xBB, 0x05, 0x5E,
Vanger	0:b86d15c6ba29	1013	0x2A, 0x20, 0x64, 0x90, 0x4A, 0x79, 0xA7, 0x70, 0xFA, 0x15, 0xA2, 0x59,
Vanger	0:b86d15c6ba29	1014	0xCB, 0xD5, 0x23, 0xA6, 0xA6, 0xEF, 0x09, 0xC4, 0x30, 0x48, 0xD5, 0xA2,
Vanger	0:b86d15c6ba29	1015	0x2F, 0x97, 0x1F, 0x3C, 0x20, 0x12, 0x9B, 0x48, 0x00, 0x0E, 0x6E, 0xDD,
Vanger	0:b86d15c6ba29	1016	0x06, 0x1C, 0xBC, 0x05, 0x3E, 0x37, 0x1D, 0x79, 0x4E, 0x53, 0x27, 0xDF,
Vanger	0:b86d15c6ba29	1017	0x61, 0x1E, 0xBB, 0xBE, 0x1B, 0xAC, 0x9B, 0x5C, 0x60, 0x44, 0xCF, 0x02,
Vanger	0:b86d15c6ba29	1018	0x3D, 0x76, 0xE0, 0x5E, 0xEA, 0x9B, 0xAD, 0x99, 0x1B, 0x13, 0xA6, 0x3C,
Vanger	0:b86d15c6ba29	1019	0x97, 0x4E, 0x9E, 0xF1, 0x83, 0x9E, 0xB5, 0xDB, 0x12, 0x51, 0x36, 0xF7,
Vanger	0:b86d15c6ba29	1020	0x26, 0x2E, 0x56, 0xA8, 0x87, 0x15, 0x38, 0xDF, 0xD8, 0x23, 0xC6, 0x50,
Vanger	0:b86d15c6ba29	1021	0x50, 0x85, 0xE2, 0x1F, 0x0D, 0xD5, 0xC8, 0x6B,
Vanger	0:b86d15c6ba29	1022	};
Vanger	0:b86d15c6ba29	1023
Vanger	0:b86d15c6ba29	1024	/* dh1024 g */
Vanger	0:b86d15c6ba29	1025	static unsigned char g[] =
Vanger	0:b86d15c6ba29	1026	{
Vanger	0:b86d15c6ba29	1027	0x02,
Vanger	0:b86d15c6ba29	1028	};
Vanger	0:b86d15c6ba29	1029
Vanger	0:b86d15c6ba29	1030	CyaSSL_CTX_SetTmpDH(ctx, p, sizeof(p), g, sizeof(g));
Vanger	0:b86d15c6ba29	1031	}
Vanger	0:b86d15c6ba29	1032	#endif /* NO_DH */
Vanger	0:b86d15c6ba29	1033	#endif /* !NO_CERTS */
Vanger	0:b86d15c6ba29	1034
Vanger	0:b86d15c6ba29	1035	#ifdef HAVE_CAVIUM
Vanger	0:b86d15c6ba29	1036
Vanger	0:b86d15c6ba29	1037	static INLINE int OpenNitroxDevice(int dma_mode,int dev_id)
Vanger	0:b86d15c6ba29	1038	{
Vanger	0:b86d15c6ba29	1039	Csp1CoreAssignment core_assign;
Vanger	0:b86d15c6ba29	1040	Uint32 device;
Vanger	0:b86d15c6ba29	1041
Vanger	0:b86d15c6ba29	1042	if (CspInitialize(CAVIUM_DIRECT,CAVIUM_DEV_ID))
Vanger	0:b86d15c6ba29	1043	return -1;
Vanger	0:b86d15c6ba29	1044	if (Csp1GetDevType(&device))
Vanger	0:b86d15c6ba29	1045	return -1;
Vanger	0:b86d15c6ba29	1046	if (device != NPX_DEVICE) {
Vanger	0:b86d15c6ba29	1047	if (ioctl(gpkpdev_hdlr[CAVIUM_DEV_ID], IOCTL_CSP1_GET_CORE_ASSIGNMENT,
Vanger	0:b86d15c6ba29	1048	(Uint32 *)&core_assign)!= 0)
Vanger	0:b86d15c6ba29	1049	return -1;
Vanger	0:b86d15c6ba29	1050	}
Vanger	0:b86d15c6ba29	1051	CspShutdown(CAVIUM_DEV_ID);
Vanger	0:b86d15c6ba29	1052
Vanger	0:b86d15c6ba29	1053	return CspInitialize(dma_mode, dev_id);
Vanger	0:b86d15c6ba29	1054	}
Vanger	0:b86d15c6ba29	1055
Vanger	0:b86d15c6ba29	1056	#endif /* HAVE_CAVIUM */
Vanger	0:b86d15c6ba29	1057
Vanger	0:b86d15c6ba29	1058
Vanger	0:b86d15c6ba29	1059	#ifdef USE_WINDOWS_API
Vanger	0:b86d15c6ba29	1060
Vanger	0:b86d15c6ba29	1061	/* do back x number of directories */
Vanger	0:b86d15c6ba29	1062	static INLINE void ChangeDirBack(int x)
Vanger	0:b86d15c6ba29	1063	{
Vanger	0:b86d15c6ba29	1064	char path[MAX_PATH];
Vanger	0:b86d15c6ba29	1065
Vanger	0:b86d15c6ba29	1066	if (x == 1)
Vanger	0:b86d15c6ba29	1067	strncpy(path, "..\\", MAX_PATH);
Vanger	0:b86d15c6ba29	1068	else if (x == 2)
Vanger	0:b86d15c6ba29	1069	strncpy(path, "..\\..\\", MAX_PATH);
Vanger	0:b86d15c6ba29	1070	else if (x == 3)
Vanger	0:b86d15c6ba29	1071	strncpy(path, "..\\..\\..\\", MAX_PATH);
Vanger	0:b86d15c6ba29	1072	else if (x == 4)
Vanger	0:b86d15c6ba29	1073	strncpy(path, "..\\..\\..\\..\\", MAX_PATH);
Vanger	0:b86d15c6ba29	1074	else
Vanger	0:b86d15c6ba29	1075	strncpy(path, ".\\", MAX_PATH);
Vanger	0:b86d15c6ba29	1076
Vanger	0:b86d15c6ba29	1077	SetCurrentDirectoryA(path);
Vanger	0:b86d15c6ba29	1078	}
Vanger	0:b86d15c6ba29	1079
Vanger	0:b86d15c6ba29	1080	/* does current dir contain str */
Vanger	0:b86d15c6ba29	1081	static INLINE int CurrentDir(const char* str)
Vanger	0:b86d15c6ba29	1082	{
Vanger	0:b86d15c6ba29	1083	char path[MAX_PATH];
Vanger	0:b86d15c6ba29	1084	char* baseName;
Vanger	0:b86d15c6ba29	1085
Vanger	0:b86d15c6ba29	1086	GetCurrentDirectoryA(sizeof(path), path);
Vanger	0:b86d15c6ba29	1087
Vanger	0:b86d15c6ba29	1088	baseName = strrchr(path, '\\');
Vanger	0:b86d15c6ba29	1089	if (baseName)
Vanger	0:b86d15c6ba29	1090	baseName++;
Vanger	0:b86d15c6ba29	1091	else
Vanger	0:b86d15c6ba29	1092	baseName = path;
Vanger	0:b86d15c6ba29	1093
Vanger	0:b86d15c6ba29	1094	if (strstr(baseName, str))
Vanger	0:b86d15c6ba29	1095	return 1;
Vanger	0:b86d15c6ba29	1096
Vanger	0:b86d15c6ba29	1097	return 0;
Vanger	0:b86d15c6ba29	1098	}
Vanger	0:b86d15c6ba29	1099
Vanger	0:b86d15c6ba29	1100	#elif defined(CYASSL_MDK_ARM)
Vanger	0:b86d15c6ba29	1101	/* KEIL-RL File System does not support relative directry */
Vanger	0:b86d15c6ba29	1102	#elif defined(CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	1103	#else
Vanger	0:b86d15c6ba29	1104
Vanger	0:b86d15c6ba29	1105	#ifndef MAX_PATH
Vanger	0:b86d15c6ba29	1106	#define MAX_PATH 256
Vanger	0:b86d15c6ba29	1107	#endif
Vanger	0:b86d15c6ba29	1108
Vanger	0:b86d15c6ba29	1109	/* do back x number of directories */
Vanger	0:b86d15c6ba29	1110	static INLINE void ChangeDirBack(int x)
Vanger	0:b86d15c6ba29	1111	{
Vanger	0:b86d15c6ba29	1112	char path[MAX_PATH];
Vanger	0:b86d15c6ba29	1113
Vanger	0:b86d15c6ba29	1114	if (x == 1)
Vanger	0:b86d15c6ba29	1115	strncpy(path, "../", MAX_PATH);
Vanger	0:b86d15c6ba29	1116	else if (x == 2)
Vanger	0:b86d15c6ba29	1117	strncpy(path, "../../", MAX_PATH);
Vanger	0:b86d15c6ba29	1118	else if (x == 3)
Vanger	0:b86d15c6ba29	1119	strncpy(path, "../../../", MAX_PATH);
Vanger	0:b86d15c6ba29	1120	else if (x == 4)
Vanger	0:b86d15c6ba29	1121	strncpy(path, "../../../../", MAX_PATH);
Vanger	0:b86d15c6ba29	1122	else
Vanger	0:b86d15c6ba29	1123	strncpy(path, "./", MAX_PATH);
Vanger	0:b86d15c6ba29	1124
Vanger	0:b86d15c6ba29	1125	if (chdir(path) < 0)
Vanger	0:b86d15c6ba29	1126	printf("chdir to %s failed\n", path);
Vanger	0:b86d15c6ba29	1127	}
Vanger	0:b86d15c6ba29	1128
Vanger	0:b86d15c6ba29	1129	/* does current dir contain str */
Vanger	0:b86d15c6ba29	1130	static INLINE int CurrentDir(const char* str)
Vanger	0:b86d15c6ba29	1131	{
Vanger	0:b86d15c6ba29	1132	char path[MAX_PATH];
Vanger	0:b86d15c6ba29	1133	char* baseName;
Vanger	0:b86d15c6ba29	1134
Vanger	0:b86d15c6ba29	1135	if (getcwd(path, sizeof(path)) == NULL) {
Vanger	0:b86d15c6ba29	1136	printf("no current dir?\n");
Vanger	0:b86d15c6ba29	1137	return 0;
Vanger	0:b86d15c6ba29	1138	}
Vanger	0:b86d15c6ba29	1139
Vanger	0:b86d15c6ba29	1140	baseName = strrchr(path, '/');
Vanger	0:b86d15c6ba29	1141	if (baseName)
Vanger	0:b86d15c6ba29	1142	baseName++;
Vanger	0:b86d15c6ba29	1143	else
Vanger	0:b86d15c6ba29	1144	baseName = path;
Vanger	0:b86d15c6ba29	1145
Vanger	0:b86d15c6ba29	1146	if (strstr(baseName, str))
Vanger	0:b86d15c6ba29	1147	return 1;
Vanger	0:b86d15c6ba29	1148
Vanger	0:b86d15c6ba29	1149	return 0;
Vanger	0:b86d15c6ba29	1150	}
Vanger	0:b86d15c6ba29	1151
Vanger	0:b86d15c6ba29	1152	#endif /* USE_WINDOWS_API */
Vanger	0:b86d15c6ba29	1153
Vanger	0:b86d15c6ba29	1154
Vanger	0:b86d15c6ba29	1155	#ifdef USE_CYASSL_MEMORY
Vanger	0:b86d15c6ba29	1156
Vanger	0:b86d15c6ba29	1157	typedef struct memoryStats {
Vanger	0:b86d15c6ba29	1158	size_t totalAllocs; /* number of allocations */
Vanger	0:b86d15c6ba29	1159	size_t totalBytes; /* total number of bytes allocated */
Vanger	0:b86d15c6ba29	1160	size_t peakBytes; /* concurrent max bytes */
Vanger	0:b86d15c6ba29	1161	size_t currentBytes; /* total current bytes in use */
Vanger	0:b86d15c6ba29	1162	} memoryStats;
Vanger	0:b86d15c6ba29	1163
Vanger	0:b86d15c6ba29	1164	typedef struct memHint {
Vanger	0:b86d15c6ba29	1165	size_t thisSize; /* size of this memory */
Vanger	0:b86d15c6ba29	1166	void* thisMemory; /* actual memory for user */
Vanger	0:b86d15c6ba29	1167	} memHint;
Vanger	0:b86d15c6ba29	1168
Vanger	0:b86d15c6ba29	1169	typedef struct memoryTrack {
Vanger	0:b86d15c6ba29	1170	union {
Vanger	0:b86d15c6ba29	1171	memHint hint;
Vanger	0:b86d15c6ba29	1172	byte alignit[16]; /* make sure we have strong alignment */
Vanger	0:b86d15c6ba29	1173	} u;
Vanger	0:b86d15c6ba29	1174	} memoryTrack;
Vanger	0:b86d15c6ba29	1175
Vanger	0:b86d15c6ba29	1176	#if defined(CYASSL_TRACK_MEMORY)
Vanger	0:b86d15c6ba29	1177	#define DO_MEM_STATS
Vanger	0:b86d15c6ba29	1178	static memoryStats ourMemStats;
Vanger	0:b86d15c6ba29	1179	#endif
Vanger	0:b86d15c6ba29	1180
Vanger	0:b86d15c6ba29	1181	static INLINE void* TrackMalloc(size_t sz)
Vanger	0:b86d15c6ba29	1182	{
Vanger	0:b86d15c6ba29	1183	memoryTrack* mt;
Vanger	0:b86d15c6ba29	1184
Vanger	0:b86d15c6ba29	1185	if (sz == 0)
Vanger	0:b86d15c6ba29	1186	return NULL;
Vanger	0:b86d15c6ba29	1187
Vanger	0:b86d15c6ba29	1188	mt = (memoryTrack*)malloc(sizeof(memoryTrack) + sz);
Vanger	0:b86d15c6ba29	1189	if (mt == NULL)
Vanger	0:b86d15c6ba29	1190	return NULL;
Vanger	0:b86d15c6ba29	1191
Vanger	0:b86d15c6ba29	1192	mt->u.hint.thisSize = sz;
Vanger	0:b86d15c6ba29	1193	mt->u.hint.thisMemory = (byte*)mt + sizeof(memoryTrack);
Vanger	0:b86d15c6ba29	1194
Vanger	0:b86d15c6ba29	1195	#ifdef DO_MEM_STATS
Vanger	0:b86d15c6ba29	1196	ourMemStats.totalAllocs++;
Vanger	0:b86d15c6ba29	1197	ourMemStats.totalBytes += sz;
Vanger	0:b86d15c6ba29	1198	ourMemStats.currentBytes += sz;
Vanger	0:b86d15c6ba29	1199	if (ourMemStats.currentBytes > ourMemStats.peakBytes)
Vanger	0:b86d15c6ba29	1200	ourMemStats.peakBytes = ourMemStats.currentBytes;
Vanger	0:b86d15c6ba29	1201	#endif
Vanger	0:b86d15c6ba29	1202
Vanger	0:b86d15c6ba29	1203	return mt->u.hint.thisMemory;
Vanger	0:b86d15c6ba29	1204	}
Vanger	0:b86d15c6ba29	1205
Vanger	0:b86d15c6ba29	1206
Vanger	0:b86d15c6ba29	1207	static INLINE void TrackFree(void* ptr)
Vanger	0:b86d15c6ba29	1208	{
Vanger	0:b86d15c6ba29	1209	memoryTrack* mt;
Vanger	0:b86d15c6ba29	1210
Vanger	0:b86d15c6ba29	1211	if (ptr == NULL)
Vanger	0:b86d15c6ba29	1212	return;
Vanger	0:b86d15c6ba29	1213
Vanger	0:b86d15c6ba29	1214	mt = (memoryTrack*)ptr;
Vanger	0:b86d15c6ba29	1215	--mt; /* same as minus sizeof(memoryTrack), removes header */
Vanger	0:b86d15c6ba29	1216
Vanger	0:b86d15c6ba29	1217	#ifdef DO_MEM_STATS
Vanger	0:b86d15c6ba29	1218	ourMemStats.currentBytes -= mt->u.hint.thisSize;
Vanger	0:b86d15c6ba29	1219	#endif
Vanger	0:b86d15c6ba29	1220
Vanger	0:b86d15c6ba29	1221	free(mt);
Vanger	0:b86d15c6ba29	1222	}
Vanger	0:b86d15c6ba29	1223
Vanger	0:b86d15c6ba29	1224
Vanger	0:b86d15c6ba29	1225	static INLINE void* TrackRealloc(void* ptr, size_t sz)
Vanger	0:b86d15c6ba29	1226	{
Vanger	0:b86d15c6ba29	1227	void* ret = TrackMalloc(sz);
Vanger	0:b86d15c6ba29	1228
Vanger	0:b86d15c6ba29	1229	if (ptr) {
Vanger	0:b86d15c6ba29	1230	/* if realloc is bigger, don't overread old ptr */
Vanger	0:b86d15c6ba29	1231	memoryTrack* mt = (memoryTrack*)ptr;
Vanger	0:b86d15c6ba29	1232	--mt; /* same as minus sizeof(memoryTrack), removes header */
Vanger	0:b86d15c6ba29	1233
Vanger	0:b86d15c6ba29	1234	if (mt->u.hint.thisSize < sz)
Vanger	0:b86d15c6ba29	1235	sz = mt->u.hint.thisSize;
Vanger	0:b86d15c6ba29	1236	}
Vanger	0:b86d15c6ba29	1237
Vanger	0:b86d15c6ba29	1238	if (ret && ptr)
Vanger	0:b86d15c6ba29	1239	memcpy(ret, ptr, sz);
Vanger	0:b86d15c6ba29	1240
Vanger	0:b86d15c6ba29	1241	if (ret)
Vanger	0:b86d15c6ba29	1242	TrackFree(ptr);
Vanger	0:b86d15c6ba29	1243
Vanger	0:b86d15c6ba29	1244	return ret;
Vanger	0:b86d15c6ba29	1245	}
Vanger	0:b86d15c6ba29	1246
Vanger	0:b86d15c6ba29	1247	static INLINE void InitMemoryTracker(void)
Vanger	0:b86d15c6ba29	1248	{
Vanger	0:b86d15c6ba29	1249	if (CyaSSL_SetAllocators(TrackMalloc, TrackFree, TrackRealloc) != 0)
Vanger	0:b86d15c6ba29	1250	err_sys("CyaSSL SetAllocators failed for track memory");
Vanger	0:b86d15c6ba29	1251
Vanger	0:b86d15c6ba29	1252	#ifdef DO_MEM_STATS
Vanger	0:b86d15c6ba29	1253	ourMemStats.totalAllocs = 0;
Vanger	0:b86d15c6ba29	1254	ourMemStats.totalBytes = 0;
Vanger	0:b86d15c6ba29	1255	ourMemStats.peakBytes = 0;
Vanger	0:b86d15c6ba29	1256	ourMemStats.currentBytes = 0;
Vanger	0:b86d15c6ba29	1257	#endif
Vanger	0:b86d15c6ba29	1258	}
Vanger	0:b86d15c6ba29	1259
Vanger	0:b86d15c6ba29	1260	static INLINE void ShowMemoryTracker(void)
Vanger	0:b86d15c6ba29	1261	{
Vanger	0:b86d15c6ba29	1262	#ifdef DO_MEM_STATS
Vanger	0:b86d15c6ba29	1263	printf("total Allocs = %9lu\n",
Vanger	0:b86d15c6ba29	1264	(unsigned long)ourMemStats.totalAllocs);
Vanger	0:b86d15c6ba29	1265	printf("total Bytes = %9lu\n",
Vanger	0:b86d15c6ba29	1266	(unsigned long)ourMemStats.totalBytes);
Vanger	0:b86d15c6ba29	1267	printf("peak Bytes = %9lu\n",
Vanger	0:b86d15c6ba29	1268	(unsigned long)ourMemStats.peakBytes);
Vanger	0:b86d15c6ba29	1269	printf("current Bytes = %9lu\n",
Vanger	0:b86d15c6ba29	1270	(unsigned long)ourMemStats.currentBytes);
Vanger	0:b86d15c6ba29	1271	#endif
Vanger	0:b86d15c6ba29	1272	}
Vanger	0:b86d15c6ba29	1273
Vanger	0:b86d15c6ba29	1274	#endif /* USE_CYASSL_MEMORY */
Vanger	0:b86d15c6ba29	1275
Vanger	0:b86d15c6ba29	1276
Vanger	0:b86d15c6ba29	1277	#ifdef HAVE_STACK_SIZE
Vanger	0:b86d15c6ba29	1278
Vanger	0:b86d15c6ba29	1279	typedef THREAD_RETURN CYASSL_THREAD (thread_func)(void args);
Vanger	0:b86d15c6ba29	1280
Vanger	0:b86d15c6ba29	1281
Vanger	0:b86d15c6ba29	1282	static INLINE void StackSizeCheck(func_args* args, thread_func tf)
Vanger	0:b86d15c6ba29	1283	{
Vanger	0:b86d15c6ba29	1284	int ret, i, used;
Vanger	0:b86d15c6ba29	1285	unsigned char* myStack;
Vanger	0:b86d15c6ba29	1286	int stackSize = 1024*128;
Vanger	0:b86d15c6ba29	1287	pthread_attr_t myAttr;
Vanger	0:b86d15c6ba29	1288	pthread_t threadId;
Vanger	0:b86d15c6ba29	1289
Vanger	0:b86d15c6ba29	1290	#ifdef PTHREAD_STACK_MIN
Vanger	0:b86d15c6ba29	1291	if (stackSize < PTHREAD_STACK_MIN)
Vanger	0:b86d15c6ba29	1292	stackSize = PTHREAD_STACK_MIN;
Vanger	0:b86d15c6ba29	1293	#endif
Vanger	0:b86d15c6ba29	1294
Vanger	0:b86d15c6ba29	1295	ret = posix_memalign((void**)&myStack, sysconf(_SC_PAGESIZE), stackSize);
Vanger	0:b86d15c6ba29	1296	if (ret != 0)
Vanger	0:b86d15c6ba29	1297	err_sys("posix_memalign failed\n");
Vanger	0:b86d15c6ba29	1298
Vanger	0:b86d15c6ba29	1299	memset(myStack, 0x01, stackSize);
Vanger	0:b86d15c6ba29	1300
Vanger	0:b86d15c6ba29	1301	ret = pthread_attr_init(&myAttr);
Vanger	0:b86d15c6ba29	1302	if (ret != 0)
Vanger	0:b86d15c6ba29	1303	err_sys("attr_init failed");
Vanger	0:b86d15c6ba29	1304
Vanger	0:b86d15c6ba29	1305	ret = pthread_attr_setstack(&myAttr, myStack, stackSize);
Vanger	0:b86d15c6ba29	1306	if (ret != 0)
Vanger	0:b86d15c6ba29	1307	err_sys("attr_setstackaddr failed");
Vanger	0:b86d15c6ba29	1308
Vanger	0:b86d15c6ba29	1309	ret = pthread_create(&threadId, &myAttr, tf, args);
Vanger	0:b86d15c6ba29	1310	if (ret != 0) {
Vanger	0:b86d15c6ba29	1311	perror("pthread_create failed");
Vanger	0:b86d15c6ba29	1312	exit(EXIT_FAILURE);
Vanger	0:b86d15c6ba29	1313	}
Vanger	0:b86d15c6ba29	1314
Vanger	0:b86d15c6ba29	1315	ret = pthread_join(threadId, NULL);
Vanger	0:b86d15c6ba29	1316	if (ret != 0)
Vanger	0:b86d15c6ba29	1317	err_sys("pthread_join failed");
Vanger	0:b86d15c6ba29	1318
Vanger	0:b86d15c6ba29	1319	for (i = 0; i < stackSize; i++) {
Vanger	0:b86d15c6ba29	1320	if (myStack[i] != 0x01) {
Vanger	0:b86d15c6ba29	1321	break;
Vanger	0:b86d15c6ba29	1322	}
Vanger	0:b86d15c6ba29	1323	}
Vanger	0:b86d15c6ba29	1324
Vanger	0:b86d15c6ba29	1325	used = stackSize - i;
Vanger	0:b86d15c6ba29	1326	printf("stack used = %d\n", used);
Vanger	0:b86d15c6ba29	1327	}
Vanger	0:b86d15c6ba29	1328
Vanger	0:b86d15c6ba29	1329
Vanger	0:b86d15c6ba29	1330	#endif /* HAVE_STACK_SIZE */
Vanger	0:b86d15c6ba29	1331
Vanger	0:b86d15c6ba29	1332
Vanger	0:b86d15c6ba29	1333	#ifdef STACK_TRAP
Vanger	0:b86d15c6ba29	1334
Vanger	0:b86d15c6ba29	1335	/* good settings
Vanger	0:b86d15c6ba29	1336	--enable-debug --disable-shared C_EXTRA_FLAGS="-DUSER_TIME -DTFM_TIMING_RESISTANT -DPOSITIVE_EXP_ONLY -DSTACK_TRAP"
Vanger	0:b86d15c6ba29	1337
Vanger	0:b86d15c6ba29	1338	*/
Vanger	0:b86d15c6ba29	1339
Vanger	0:b86d15c6ba29	1340	#ifdef HAVE_STACK_SIZE
Vanger	0:b86d15c6ba29	1341	/* client only for now, setrlimit will fail if pthread_create() called */
Vanger	0:b86d15c6ba29	1342	/* STACK_SIZE does pthread_create() on client */
Vanger	0:b86d15c6ba29	1343	#error "can't use STACK_TRAP with STACK_SIZE, setrlimit will fail"
Vanger	0:b86d15c6ba29	1344	#endif /* HAVE_STACK_SIZE */
Vanger	0:b86d15c6ba29	1345
Vanger	0:b86d15c6ba29	1346	static INLINE void StackTrap(void)
Vanger	0:b86d15c6ba29	1347	{
Vanger	0:b86d15c6ba29	1348	struct rlimit rl;
Vanger	0:b86d15c6ba29	1349	if (getrlimit(RLIMIT_STACK, &rl) != 0)
Vanger	0:b86d15c6ba29	1350	err_sys("getrlimit failed");
Vanger	0:b86d15c6ba29	1351	printf("rlim_cur = %llu\n", rl.rlim_cur);
Vanger	0:b86d15c6ba29	1352	rl.rlim_cur = 102421; / adjust trap size here */
Vanger	0:b86d15c6ba29	1353	if (setrlimit(RLIMIT_STACK, &rl) != 0) {
Vanger	0:b86d15c6ba29	1354	perror("setrlimit");
Vanger	0:b86d15c6ba29	1355	err_sys("setrlimit failed");
Vanger	0:b86d15c6ba29	1356	}
Vanger	0:b86d15c6ba29	1357	}
Vanger	0:b86d15c6ba29	1358
Vanger	0:b86d15c6ba29	1359	#else /* STACK_TRAP */
Vanger	0:b86d15c6ba29	1360
Vanger	0:b86d15c6ba29	1361	static INLINE void StackTrap(void)
Vanger	0:b86d15c6ba29	1362	{
Vanger	0:b86d15c6ba29	1363	}
Vanger	0:b86d15c6ba29	1364
Vanger	0:b86d15c6ba29	1365	#endif /* STACK_TRAP */
Vanger	0:b86d15c6ba29	1366
Vanger	0:b86d15c6ba29	1367
Vanger	0:b86d15c6ba29	1368	#ifdef ATOMIC_USER
Vanger	0:b86d15c6ba29	1369
Vanger	0:b86d15c6ba29	1370	/* Atomic Encrypt Context example */
Vanger	0:b86d15c6ba29	1371	typedef struct AtomicEncCtx {
Vanger	0:b86d15c6ba29	1372	int keySetup; /* have we done key setup yet */
Vanger	0:b86d15c6ba29	1373	Aes aes; /* for aes example */
Vanger	0:b86d15c6ba29	1374	} AtomicEncCtx;
Vanger	0:b86d15c6ba29	1375
Vanger	0:b86d15c6ba29	1376
Vanger	0:b86d15c6ba29	1377	/* Atomic Decrypt Context example */
Vanger	0:b86d15c6ba29	1378	typedef struct AtomicDecCtx {
Vanger	0:b86d15c6ba29	1379	int keySetup; /* have we done key setup yet */
Vanger	0:b86d15c6ba29	1380	Aes aes; /* for aes example */
Vanger	0:b86d15c6ba29	1381	} AtomicDecCtx;
Vanger	0:b86d15c6ba29	1382
Vanger	0:b86d15c6ba29	1383
Vanger	0:b86d15c6ba29	1384	static INLINE int myMacEncryptCb(CYASSL* ssl, unsigned char* macOut,
Vanger	0:b86d15c6ba29	1385	const unsigned char* macIn, unsigned int macInSz, int macContent,
Vanger	0:b86d15c6ba29	1386	int macVerify, unsigned char* encOut, const unsigned char* encIn,
Vanger	0:b86d15c6ba29	1387	unsigned int encSz, void* ctx)
Vanger	0:b86d15c6ba29	1388	{
Vanger	0:b86d15c6ba29	1389	int ret;
Vanger	0:b86d15c6ba29	1390	Hmac hmac;
Vanger	0:b86d15c6ba29	1391	byte myInner[CYASSL_TLS_HMAC_INNER_SZ];
Vanger	0:b86d15c6ba29	1392	AtomicEncCtx* encCtx = (AtomicEncCtx*)ctx;
Vanger	0:b86d15c6ba29	1393	const char* tlsStr = "TLS";
Vanger	0:b86d15c6ba29	1394
Vanger	0:b86d15c6ba29	1395	/* example supports (d)tls aes */
Vanger	0:b86d15c6ba29	1396	if (CyaSSL_GetBulkCipher(ssl) != cyassl_aes) {
Vanger	0:b86d15c6ba29	1397	printf("myMacEncryptCb not using AES\n");
Vanger	0:b86d15c6ba29	1398	return -1;
Vanger	0:b86d15c6ba29	1399	}
Vanger	0:b86d15c6ba29	1400
Vanger	0:b86d15c6ba29	1401	if (strstr(CyaSSL_get_version(ssl), tlsStr) == NULL) {
Vanger	0:b86d15c6ba29	1402	printf("myMacEncryptCb not using (D)TLS\n");
Vanger	0:b86d15c6ba29	1403	return -1;
Vanger	0:b86d15c6ba29	1404	}
Vanger	0:b86d15c6ba29	1405
Vanger	0:b86d15c6ba29	1406	/* hmac, not needed if aead mode */
Vanger	0:b86d15c6ba29	1407	CyaSSL_SetTlsHmacInner(ssl, myInner, macInSz, macContent, macVerify);
Vanger	0:b86d15c6ba29	1408
Vanger	0:b86d15c6ba29	1409	ret = HmacSetKey(&hmac, CyaSSL_GetHmacType(ssl),
Vanger	0:b86d15c6ba29	1410	CyaSSL_GetMacSecret(ssl, macVerify), CyaSSL_GetHmacSize(ssl));
Vanger	0:b86d15c6ba29	1411	if (ret != 0)
Vanger	0:b86d15c6ba29	1412	return ret;
Vanger	0:b86d15c6ba29	1413	ret = HmacUpdate(&hmac, myInner, sizeof(myInner));
Vanger	0:b86d15c6ba29	1414	if (ret != 0)
Vanger	0:b86d15c6ba29	1415	return ret;
Vanger	0:b86d15c6ba29	1416	ret = HmacUpdate(&hmac, macIn, macInSz);
Vanger	0:b86d15c6ba29	1417	if (ret != 0)
Vanger	0:b86d15c6ba29	1418	return ret;
Vanger	0:b86d15c6ba29	1419	ret = HmacFinal(&hmac, macOut);
Vanger	0:b86d15c6ba29	1420	if (ret != 0)
Vanger	0:b86d15c6ba29	1421	return ret;
Vanger	0:b86d15c6ba29	1422
Vanger	0:b86d15c6ba29	1423
Vanger	0:b86d15c6ba29	1424	/* encrypt setup on first time */
Vanger	0:b86d15c6ba29	1425	if (encCtx->keySetup == 0) {
Vanger	0:b86d15c6ba29	1426	int keyLen = CyaSSL_GetKeySize(ssl);
Vanger	0:b86d15c6ba29	1427	const byte* key;
Vanger	0:b86d15c6ba29	1428	const byte* iv;
Vanger	0:b86d15c6ba29	1429
Vanger	0:b86d15c6ba29	1430	if (CyaSSL_GetSide(ssl) == CYASSL_CLIENT_END) {
Vanger	0:b86d15c6ba29	1431	key = CyaSSL_GetClientWriteKey(ssl);
Vanger	0:b86d15c6ba29	1432	iv = CyaSSL_GetClientWriteIV(ssl);
Vanger	0:b86d15c6ba29	1433	}
Vanger	0:b86d15c6ba29	1434	else {
Vanger	0:b86d15c6ba29	1435	key = CyaSSL_GetServerWriteKey(ssl);
Vanger	0:b86d15c6ba29	1436	iv = CyaSSL_GetServerWriteIV(ssl);
Vanger	0:b86d15c6ba29	1437	}
Vanger	0:b86d15c6ba29	1438
Vanger	0:b86d15c6ba29	1439	ret = AesSetKey(&encCtx->aes, key, keyLen, iv, AES_ENCRYPTION);
Vanger	0:b86d15c6ba29	1440	if (ret != 0) {
Vanger	0:b86d15c6ba29	1441	printf("AesSetKey failed in myMacEncryptCb\n");
Vanger	0:b86d15c6ba29	1442	return ret;
Vanger	0:b86d15c6ba29	1443	}
Vanger	0:b86d15c6ba29	1444	encCtx->keySetup = 1;
Vanger	0:b86d15c6ba29	1445	}
Vanger	0:b86d15c6ba29	1446
Vanger	0:b86d15c6ba29	1447	/* encrypt */
Vanger	0:b86d15c6ba29	1448	return AesCbcEncrypt(&encCtx->aes, encOut, encIn, encSz);
Vanger	0:b86d15c6ba29	1449	}
Vanger	0:b86d15c6ba29	1450
Vanger	0:b86d15c6ba29	1451
Vanger	0:b86d15c6ba29	1452	static INLINE int myDecryptVerifyCb(CYASSL* ssl,
Vanger	0:b86d15c6ba29	1453	unsigned char* decOut, const unsigned char* decIn,
Vanger	0:b86d15c6ba29	1454	unsigned int decSz, int macContent, int macVerify,
Vanger	0:b86d15c6ba29	1455	unsigned int* padSz, void* ctx)
Vanger	0:b86d15c6ba29	1456	{
Vanger	0:b86d15c6ba29	1457	AtomicDecCtx* decCtx = (AtomicDecCtx*)ctx;
Vanger	0:b86d15c6ba29	1458	int ret = 0;
Vanger	0:b86d15c6ba29	1459	int macInSz = 0;
Vanger	0:b86d15c6ba29	1460	int ivExtra = 0;
Vanger	0:b86d15c6ba29	1461	int digestSz = CyaSSL_GetHmacSize(ssl);
Vanger	0:b86d15c6ba29	1462	unsigned int pad = 0;
Vanger	0:b86d15c6ba29	1463	unsigned int padByte = 0;
Vanger	0:b86d15c6ba29	1464	Hmac hmac;
Vanger	0:b86d15c6ba29	1465	byte myInner[CYASSL_TLS_HMAC_INNER_SZ];
Vanger	0:b86d15c6ba29	1466	byte verify[MAX_DIGEST_SIZE];
Vanger	0:b86d15c6ba29	1467	const char* tlsStr = "TLS";
Vanger	0:b86d15c6ba29	1468
Vanger	0:b86d15c6ba29	1469	/* example supports (d)tls aes */
Vanger	0:b86d15c6ba29	1470	if (CyaSSL_GetBulkCipher(ssl) != cyassl_aes) {
Vanger	0:b86d15c6ba29	1471	printf("myMacEncryptCb not using AES\n");
Vanger	0:b86d15c6ba29	1472	return -1;
Vanger	0:b86d15c6ba29	1473	}
Vanger	0:b86d15c6ba29	1474
Vanger	0:b86d15c6ba29	1475	if (strstr(CyaSSL_get_version(ssl), tlsStr) == NULL) {
Vanger	0:b86d15c6ba29	1476	printf("myMacEncryptCb not using (D)TLS\n");
Vanger	0:b86d15c6ba29	1477	return -1;
Vanger	0:b86d15c6ba29	1478	}
Vanger	0:b86d15c6ba29	1479
Vanger	0:b86d15c6ba29	1480	/decrypt /
Vanger	0:b86d15c6ba29	1481	if (decCtx->keySetup == 0) {
Vanger	0:b86d15c6ba29	1482	int keyLen = CyaSSL_GetKeySize(ssl);
Vanger	0:b86d15c6ba29	1483	const byte* key;
Vanger	0:b86d15c6ba29	1484	const byte* iv;
Vanger	0:b86d15c6ba29	1485
Vanger	0:b86d15c6ba29	1486	/* decrypt is from other side (peer) */
Vanger	0:b86d15c6ba29	1487	if (CyaSSL_GetSide(ssl) == CYASSL_SERVER_END) {
Vanger	0:b86d15c6ba29	1488	key = CyaSSL_GetClientWriteKey(ssl);
Vanger	0:b86d15c6ba29	1489	iv = CyaSSL_GetClientWriteIV(ssl);
Vanger	0:b86d15c6ba29	1490	}
Vanger	0:b86d15c6ba29	1491	else {
Vanger	0:b86d15c6ba29	1492	key = CyaSSL_GetServerWriteKey(ssl);
Vanger	0:b86d15c6ba29	1493	iv = CyaSSL_GetServerWriteIV(ssl);
Vanger	0:b86d15c6ba29	1494	}
Vanger	0:b86d15c6ba29	1495
Vanger	0:b86d15c6ba29	1496	ret = AesSetKey(&decCtx->aes, key, keyLen, iv, AES_DECRYPTION);
Vanger	0:b86d15c6ba29	1497	if (ret != 0) {
Vanger	0:b86d15c6ba29	1498	printf("AesSetKey failed in myDecryptVerifyCb\n");
Vanger	0:b86d15c6ba29	1499	return ret;
Vanger	0:b86d15c6ba29	1500	}
Vanger	0:b86d15c6ba29	1501	decCtx->keySetup = 1;
Vanger	0:b86d15c6ba29	1502	}
Vanger	0:b86d15c6ba29	1503
Vanger	0:b86d15c6ba29	1504	/* decrypt */
Vanger	0:b86d15c6ba29	1505	ret = AesCbcDecrypt(&decCtx->aes, decOut, decIn, decSz);
Vanger	0:b86d15c6ba29	1506
Vanger	0:b86d15c6ba29	1507	if (CyaSSL_GetCipherType(ssl) == CYASSL_AEAD_TYPE) {
Vanger	0:b86d15c6ba29	1508	*padSz = CyaSSL_GetAeadMacSize(ssl);
Vanger	0:b86d15c6ba29	1509	return 0; /* hmac, not needed if aead mode */
Vanger	0:b86d15c6ba29	1510	}
Vanger	0:b86d15c6ba29	1511
Vanger	0:b86d15c6ba29	1512	if (CyaSSL_GetCipherType(ssl) == CYASSL_BLOCK_TYPE) {
Vanger	0:b86d15c6ba29	1513	pad = *(decOut + decSz - 1);
Vanger	0:b86d15c6ba29	1514	padByte = 1;
Vanger	0:b86d15c6ba29	1515	if (CyaSSL_IsTLSv1_1(ssl))
Vanger	0:b86d15c6ba29	1516	ivExtra = CyaSSL_GetCipherBlockSize(ssl);
Vanger	0:b86d15c6ba29	1517	}
Vanger	0:b86d15c6ba29	1518
Vanger	0:b86d15c6ba29	1519	*padSz = CyaSSL_GetHmacSize(ssl) + pad + padByte;
Vanger	0:b86d15c6ba29	1520	macInSz = decSz - ivExtra - digestSz - pad - padByte;
Vanger	0:b86d15c6ba29	1521
Vanger	0:b86d15c6ba29	1522	CyaSSL_SetTlsHmacInner(ssl, myInner, macInSz, macContent, macVerify);
Vanger	0:b86d15c6ba29	1523
Vanger	0:b86d15c6ba29	1524	ret = HmacSetKey(&hmac, CyaSSL_GetHmacType(ssl),
Vanger	0:b86d15c6ba29	1525	CyaSSL_GetMacSecret(ssl, macVerify), digestSz);
Vanger	0:b86d15c6ba29	1526	if (ret != 0)
Vanger	0:b86d15c6ba29	1527	return ret;
Vanger	0:b86d15c6ba29	1528	ret = HmacUpdate(&hmac, myInner, sizeof(myInner));
Vanger	0:b86d15c6ba29	1529	if (ret != 0)
Vanger	0:b86d15c6ba29	1530	return ret;
Vanger	0:b86d15c6ba29	1531	ret = HmacUpdate(&hmac, decOut + ivExtra, macInSz);
Vanger	0:b86d15c6ba29	1532	if (ret != 0)
Vanger	0:b86d15c6ba29	1533	return ret;
Vanger	0:b86d15c6ba29	1534	ret = HmacFinal(&hmac, verify);
Vanger	0:b86d15c6ba29	1535	if (ret != 0)
Vanger	0:b86d15c6ba29	1536	return ret;
Vanger	0:b86d15c6ba29	1537
Vanger	0:b86d15c6ba29	1538	if (memcmp(verify, decOut + decSz - digestSz - pad - padByte,
Vanger	0:b86d15c6ba29	1539	digestSz) != 0) {
Vanger	0:b86d15c6ba29	1540	printf("myDecryptVerify verify failed\n");
Vanger	0:b86d15c6ba29	1541	return -1;
Vanger	0:b86d15c6ba29	1542	}
Vanger	0:b86d15c6ba29	1543
Vanger	0:b86d15c6ba29	1544	return ret;
Vanger	0:b86d15c6ba29	1545	}
Vanger	0:b86d15c6ba29	1546
Vanger	0:b86d15c6ba29	1547
Vanger	0:b86d15c6ba29	1548	static INLINE void SetupAtomicUser(CYASSL_CTX* ctx, CYASSL* ssl)
Vanger	0:b86d15c6ba29	1549	{
Vanger	0:b86d15c6ba29	1550	AtomicEncCtx* encCtx;
Vanger	0:b86d15c6ba29	1551	AtomicDecCtx* decCtx;
Vanger	0:b86d15c6ba29	1552
Vanger	0:b86d15c6ba29	1553	encCtx = (AtomicEncCtx*)malloc(sizeof(AtomicEncCtx));
Vanger	0:b86d15c6ba29	1554	if (encCtx == NULL)
Vanger	0:b86d15c6ba29	1555	err_sys("AtomicEncCtx malloc failed");
Vanger	0:b86d15c6ba29	1556	memset(encCtx, 0, sizeof(AtomicEncCtx));
Vanger	0:b86d15c6ba29	1557
Vanger	0:b86d15c6ba29	1558	decCtx = (AtomicDecCtx*)malloc(sizeof(AtomicDecCtx));
Vanger	0:b86d15c6ba29	1559	if (decCtx == NULL) {
Vanger	0:b86d15c6ba29	1560	free(encCtx);
Vanger	0:b86d15c6ba29	1561	err_sys("AtomicDecCtx malloc failed");
Vanger	0:b86d15c6ba29	1562	}
Vanger	0:b86d15c6ba29	1563	memset(decCtx, 0, sizeof(AtomicDecCtx));
Vanger	0:b86d15c6ba29	1564
Vanger	0:b86d15c6ba29	1565	CyaSSL_CTX_SetMacEncryptCb(ctx, myMacEncryptCb);
Vanger	0:b86d15c6ba29	1566	CyaSSL_SetMacEncryptCtx(ssl, encCtx);
Vanger	0:b86d15c6ba29	1567
Vanger	0:b86d15c6ba29	1568	CyaSSL_CTX_SetDecryptVerifyCb(ctx, myDecryptVerifyCb);
Vanger	0:b86d15c6ba29	1569	CyaSSL_SetDecryptVerifyCtx(ssl, decCtx);
Vanger	0:b86d15c6ba29	1570	}
Vanger	0:b86d15c6ba29	1571
Vanger	0:b86d15c6ba29	1572
Vanger	0:b86d15c6ba29	1573	static INLINE void FreeAtomicUser(CYASSL* ssl)
Vanger	0:b86d15c6ba29	1574	{
Vanger	0:b86d15c6ba29	1575	AtomicEncCtx* encCtx = (AtomicEncCtx*)CyaSSL_GetMacEncryptCtx(ssl);
Vanger	0:b86d15c6ba29	1576	AtomicDecCtx* decCtx = (AtomicDecCtx*)CyaSSL_GetDecryptVerifyCtx(ssl);
Vanger	0:b86d15c6ba29	1577
Vanger	0:b86d15c6ba29	1578	free(decCtx);
Vanger	0:b86d15c6ba29	1579	free(encCtx);
Vanger	0:b86d15c6ba29	1580	}
Vanger	0:b86d15c6ba29	1581
Vanger	0:b86d15c6ba29	1582	#endif /* ATOMIC_USER */
Vanger	0:b86d15c6ba29	1583
Vanger	0:b86d15c6ba29	1584
Vanger	0:b86d15c6ba29	1585	#ifdef HAVE_PK_CALLBACKS
Vanger	0:b86d15c6ba29	1586
Vanger	0:b86d15c6ba29	1587	#ifdef HAVE_ECC
Vanger	0:b86d15c6ba29	1588
Vanger	0:b86d15c6ba29	1589	static INLINE int myEccSign(CYASSL* ssl, const byte* in, word32 inSz,
Vanger	0:b86d15c6ba29	1590	byte* out, word32* outSz, const byte* key, word32 keySz, void* ctx)
Vanger	0:b86d15c6ba29	1591	{
Vanger	0:b86d15c6ba29	1592	RNG rng;
Vanger	0:b86d15c6ba29	1593	int ret;
Vanger	0:b86d15c6ba29	1594	word32 idx = 0;
Vanger	0:b86d15c6ba29	1595	ecc_key myKey;
Vanger	0:b86d15c6ba29	1596
Vanger	0:b86d15c6ba29	1597	(void)ssl;
Vanger	0:b86d15c6ba29	1598	(void)ctx;
Vanger	0:b86d15c6ba29	1599
Vanger	0:b86d15c6ba29	1600	ret = InitRng(&rng);
Vanger	0:b86d15c6ba29	1601	if (ret != 0)
Vanger	0:b86d15c6ba29	1602	return ret;
Vanger	0:b86d15c6ba29	1603
Vanger	0:b86d15c6ba29	1604	ecc_init(&myKey);
Vanger	0:b86d15c6ba29	1605
Vanger	0:b86d15c6ba29	1606	ret = EccPrivateKeyDecode(key, &idx, &myKey, keySz);
Vanger	0:b86d15c6ba29	1607	if (ret == 0)
Vanger	0:b86d15c6ba29	1608	ret = ecc_sign_hash(in, inSz, out, outSz, &rng, &myKey);
Vanger	0:b86d15c6ba29	1609	ecc_free(&myKey);
Vanger	0:b86d15c6ba29	1610
Vanger	0:b86d15c6ba29	1611	return ret;
Vanger	0:b86d15c6ba29	1612	}
Vanger	0:b86d15c6ba29	1613
Vanger	0:b86d15c6ba29	1614
Vanger	0:b86d15c6ba29	1615	static INLINE int myEccVerify(CYASSL* ssl, const byte* sig, word32 sigSz,
Vanger	0:b86d15c6ba29	1616	const byte* hash, word32 hashSz, const byte* key, word32 keySz,
Vanger	0:b86d15c6ba29	1617	int* result, void* ctx)
Vanger	0:b86d15c6ba29	1618	{
Vanger	0:b86d15c6ba29	1619	int ret;
Vanger	0:b86d15c6ba29	1620	ecc_key myKey;
Vanger	0:b86d15c6ba29	1621
Vanger	0:b86d15c6ba29	1622	(void)ssl;
Vanger	0:b86d15c6ba29	1623	(void)ctx;
Vanger	0:b86d15c6ba29	1624
Vanger	0:b86d15c6ba29	1625	ecc_init(&myKey);
Vanger	0:b86d15c6ba29	1626
Vanger	0:b86d15c6ba29	1627	ret = ecc_import_x963(key, keySz, &myKey);
Vanger	0:b86d15c6ba29	1628	if (ret == 0)
Vanger	0:b86d15c6ba29	1629	ret = ecc_verify_hash(sig, sigSz, hash, hashSz, result, &myKey);
Vanger	0:b86d15c6ba29	1630	ecc_free(&myKey);
Vanger	0:b86d15c6ba29	1631
Vanger	0:b86d15c6ba29	1632	return ret;
Vanger	0:b86d15c6ba29	1633	}
Vanger	0:b86d15c6ba29	1634
Vanger	0:b86d15c6ba29	1635	#endif /* HAVE_ECC */
Vanger	0:b86d15c6ba29	1636
Vanger	0:b86d15c6ba29	1637	#ifndef NO_RSA
Vanger	0:b86d15c6ba29	1638
Vanger	0:b86d15c6ba29	1639	static INLINE int myRsaSign(CYASSL* ssl, const byte* in, word32 inSz,
Vanger	0:b86d15c6ba29	1640	byte* out, word32* outSz, const byte* key, word32 keySz, void* ctx)
Vanger	0:b86d15c6ba29	1641	{
Vanger	0:b86d15c6ba29	1642	RNG rng;
Vanger	0:b86d15c6ba29	1643	int ret;
Vanger	0:b86d15c6ba29	1644	word32 idx = 0;
Vanger	0:b86d15c6ba29	1645	RsaKey myKey;
Vanger	0:b86d15c6ba29	1646
Vanger	0:b86d15c6ba29	1647	(void)ssl;
Vanger	0:b86d15c6ba29	1648	(void)ctx;
Vanger	0:b86d15c6ba29	1649
Vanger	0:b86d15c6ba29	1650	ret = InitRng(&rng);
Vanger	0:b86d15c6ba29	1651	if (ret != 0)
Vanger	0:b86d15c6ba29	1652	return ret;
Vanger	0:b86d15c6ba29	1653
Vanger	0:b86d15c6ba29	1654	InitRsaKey(&myKey, NULL);
Vanger	0:b86d15c6ba29	1655
Vanger	0:b86d15c6ba29	1656	ret = RsaPrivateKeyDecode(key, &idx, &myKey, keySz);
Vanger	0:b86d15c6ba29	1657	if (ret == 0)
Vanger	0:b86d15c6ba29	1658	ret = RsaSSL_Sign(in, inSz, out, *outSz, &myKey, &rng);
Vanger	0:b86d15c6ba29	1659	if (ret > 0) { /* save and convert to 0 success */
Vanger	0:b86d15c6ba29	1660	*outSz = ret;
Vanger	0:b86d15c6ba29	1661	ret = 0;
Vanger	0:b86d15c6ba29	1662	}
Vanger	0:b86d15c6ba29	1663	FreeRsaKey(&myKey);
Vanger	0:b86d15c6ba29	1664
Vanger	0:b86d15c6ba29	1665	return ret;
Vanger	0:b86d15c6ba29	1666	}
Vanger	0:b86d15c6ba29	1667
Vanger	0:b86d15c6ba29	1668
Vanger	0:b86d15c6ba29	1669	static INLINE int myRsaVerify(CYASSL* ssl, byte* sig, word32 sigSz,
Vanger	0:b86d15c6ba29	1670	byte** out,
Vanger	0:b86d15c6ba29	1671	const byte* key, word32 keySz,
Vanger	0:b86d15c6ba29	1672	void* ctx)
Vanger	0:b86d15c6ba29	1673	{
Vanger	0:b86d15c6ba29	1674	int ret;
Vanger	0:b86d15c6ba29	1675	word32 idx = 0;
Vanger	0:b86d15c6ba29	1676	RsaKey myKey;
Vanger	0:b86d15c6ba29	1677
Vanger	0:b86d15c6ba29	1678	(void)ssl;
Vanger	0:b86d15c6ba29	1679	(void)ctx;
Vanger	0:b86d15c6ba29	1680
Vanger	0:b86d15c6ba29	1681	InitRsaKey(&myKey, NULL);
Vanger	0:b86d15c6ba29	1682
Vanger	0:b86d15c6ba29	1683	ret = RsaPublicKeyDecode(key, &idx, &myKey, keySz);
Vanger	0:b86d15c6ba29	1684	if (ret == 0)
Vanger	0:b86d15c6ba29	1685	ret = RsaSSL_VerifyInline(sig, sigSz, out, &myKey);
Vanger	0:b86d15c6ba29	1686	FreeRsaKey(&myKey);
Vanger	0:b86d15c6ba29	1687
Vanger	0:b86d15c6ba29	1688	return ret;
Vanger	0:b86d15c6ba29	1689	}
Vanger	0:b86d15c6ba29	1690
Vanger	0:b86d15c6ba29	1691
Vanger	0:b86d15c6ba29	1692	static INLINE int myRsaEnc(CYASSL* ssl, const byte* in, word32 inSz,
Vanger	0:b86d15c6ba29	1693	byte* out, word32* outSz, const byte* key,
Vanger	0:b86d15c6ba29	1694	word32 keySz, void* ctx)
Vanger	0:b86d15c6ba29	1695	{
Vanger	0:b86d15c6ba29	1696	int ret;
Vanger	0:b86d15c6ba29	1697	word32 idx = 0;
Vanger	0:b86d15c6ba29	1698	RsaKey myKey;
Vanger	0:b86d15c6ba29	1699	RNG rng;
Vanger	0:b86d15c6ba29	1700
Vanger	0:b86d15c6ba29	1701	(void)ssl;
Vanger	0:b86d15c6ba29	1702	(void)ctx;
Vanger	0:b86d15c6ba29	1703
Vanger	0:b86d15c6ba29	1704	ret = InitRng(&rng);
Vanger	0:b86d15c6ba29	1705	if (ret != 0)
Vanger	0:b86d15c6ba29	1706	return ret;
Vanger	0:b86d15c6ba29	1707
Vanger	0:b86d15c6ba29	1708	InitRsaKey(&myKey, NULL);
Vanger	0:b86d15c6ba29	1709
Vanger	0:b86d15c6ba29	1710	ret = RsaPublicKeyDecode(key, &idx, &myKey, keySz);
Vanger	0:b86d15c6ba29	1711	if (ret == 0) {
Vanger	0:b86d15c6ba29	1712	ret = RsaPublicEncrypt(in, inSz, out, *outSz, &myKey, &rng);
Vanger	0:b86d15c6ba29	1713	if (ret > 0) {
Vanger	0:b86d15c6ba29	1714	*outSz = ret;
Vanger	0:b86d15c6ba29	1715	ret = 0; /* reset to success */
Vanger	0:b86d15c6ba29	1716	}
Vanger	0:b86d15c6ba29	1717	}
Vanger	0:b86d15c6ba29	1718	FreeRsaKey(&myKey);
Vanger	0:b86d15c6ba29	1719
Vanger	0:b86d15c6ba29	1720	return ret;
Vanger	0:b86d15c6ba29	1721	}
Vanger	0:b86d15c6ba29	1722
Vanger	0:b86d15c6ba29	1723	static INLINE int myRsaDec(CYASSL* ssl, byte* in, word32 inSz,
Vanger	0:b86d15c6ba29	1724	byte** out,
Vanger	0:b86d15c6ba29	1725	const byte* key, word32 keySz, void* ctx)
Vanger	0:b86d15c6ba29	1726	{
Vanger	0:b86d15c6ba29	1727	int ret;
Vanger	0:b86d15c6ba29	1728	word32 idx = 0;
Vanger	0:b86d15c6ba29	1729	RsaKey myKey;
Vanger	0:b86d15c6ba29	1730
Vanger	0:b86d15c6ba29	1731	(void)ssl;
Vanger	0:b86d15c6ba29	1732	(void)ctx;
Vanger	0:b86d15c6ba29	1733
Vanger	0:b86d15c6ba29	1734	InitRsaKey(&myKey, NULL);
Vanger	0:b86d15c6ba29	1735
Vanger	0:b86d15c6ba29	1736	ret = RsaPrivateKeyDecode(key, &idx, &myKey, keySz);
Vanger	0:b86d15c6ba29	1737	if (ret == 0) {
Vanger	0:b86d15c6ba29	1738	ret = RsaPrivateDecryptInline(in, inSz, out, &myKey);
Vanger	0:b86d15c6ba29	1739	}
Vanger	0:b86d15c6ba29	1740	FreeRsaKey(&myKey);
Vanger	0:b86d15c6ba29	1741
Vanger	0:b86d15c6ba29	1742	return ret;
Vanger	0:b86d15c6ba29	1743	}
Vanger	0:b86d15c6ba29	1744
Vanger	0:b86d15c6ba29	1745	#endif /* NO_RSA */
Vanger	0:b86d15c6ba29	1746
Vanger	0:b86d15c6ba29	1747	static INLINE void SetupPkCallbacks(CYASSL_CTX* ctx, CYASSL* ssl)
Vanger	0:b86d15c6ba29	1748	{
Vanger	0:b86d15c6ba29	1749	(void)ctx;
Vanger	0:b86d15c6ba29	1750	(void)ssl;
Vanger	0:b86d15c6ba29	1751
Vanger	0:b86d15c6ba29	1752	#ifdef HAVE_ECC
Vanger	0:b86d15c6ba29	1753	CyaSSL_CTX_SetEccSignCb(ctx, myEccSign);
Vanger	0:b86d15c6ba29	1754	CyaSSL_CTX_SetEccVerifyCb(ctx, myEccVerify);
Vanger	0:b86d15c6ba29	1755	#endif /* HAVE_ECC */
Vanger	0:b86d15c6ba29	1756	#ifndef NO_RSA
Vanger	0:b86d15c6ba29	1757	CyaSSL_CTX_SetRsaSignCb(ctx, myRsaSign);
Vanger	0:b86d15c6ba29	1758	CyaSSL_CTX_SetRsaVerifyCb(ctx, myRsaVerify);
Vanger	0:b86d15c6ba29	1759	CyaSSL_CTX_SetRsaEncCb(ctx, myRsaEnc);
Vanger	0:b86d15c6ba29	1760	CyaSSL_CTX_SetRsaDecCb(ctx, myRsaDec);
Vanger	0:b86d15c6ba29	1761	#endif /* NO_RSA */
Vanger	0:b86d15c6ba29	1762	}
Vanger	0:b86d15c6ba29	1763
Vanger	0:b86d15c6ba29	1764	#endif /* HAVE_PK_CALLBACKS */
Vanger	0:b86d15c6ba29	1765
Vanger	0:b86d15c6ba29	1766
Vanger	0:b86d15c6ba29	1767
Vanger	0:b86d15c6ba29	1768
Vanger	0:b86d15c6ba29	1769
Vanger	0:b86d15c6ba29	1770	#if defined(__hpux__) \|\| defined(__MINGW32__) \|\| defined (CYASSL_TIRTOS)
Vanger	0:b86d15c6ba29	1771
Vanger	0:b86d15c6ba29	1772	/* HP/UX doesn't have strsep, needed by test/suites.c */
Vanger	0:b86d15c6ba29	1773	static INLINE char* strsep(char *stringp, const char delim)
Vanger	0:b86d15c6ba29	1774	{
Vanger	0:b86d15c6ba29	1775	char* start;
Vanger	0:b86d15c6ba29	1776	char* end;
Vanger	0:b86d15c6ba29	1777
Vanger	0:b86d15c6ba29	1778	start = *stringp;
Vanger	0:b86d15c6ba29	1779	if (start == NULL)
Vanger	0:b86d15c6ba29	1780	return NULL;
Vanger	0:b86d15c6ba29	1781
Vanger	0:b86d15c6ba29	1782	if ((end = strpbrk(start, delim))) {
Vanger	0:b86d15c6ba29	1783	*end++ = '\0';
Vanger	0:b86d15c6ba29	1784	*stringp = end;
Vanger	0:b86d15c6ba29	1785	} else {
Vanger	0:b86d15c6ba29	1786	*stringp = NULL;
Vanger	0:b86d15c6ba29	1787	}
Vanger	0:b86d15c6ba29	1788
Vanger	0:b86d15c6ba29	1789	return start;
Vanger	0:b86d15c6ba29	1790	}
Vanger	0:b86d15c6ba29	1791
Vanger	0:b86d15c6ba29	1792	#endif /* __hpux__ */
Vanger	0:b86d15c6ba29	1793
Vanger	0:b86d15c6ba29	1794	#endif /* CyaSSL_TEST_H */
Vanger	0:b86d15c6ba29	1795

Repository toolbox

Export to desktop IDE

Repository details

Type:	Library
Created:	27 Mar 2015
Imports:	27
Forks:	0
Commits:	7
Dependents:	4
Dependencies:	0
Followers:	87

cyassl/test.h@6:cf58d49e1a86, 2015-03-23 (annotated)

Who changed what in which revision?

Repository toolbox

Repository details

Important Information for this Arm website

Access Warning