2 * Copyright 2005-2016 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the OpenSSL license (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
14 #ifndef OPENSSL_NO_DGRAM
16 # if !(defined(_WIN32) || defined(OPENSSL_SYS_VMS))
17 # include <sys/time.h>
19 # if defined(OPENSSL_SYS_VMS)
20 # include <sys/timeb.h>
23 # ifndef OPENSSL_NO_SCTP
24 # include <netinet/sctp.h>
26 # define OPENSSL_SCTP_DATA_CHUNK_TYPE 0x00
27 # define OPENSSL_SCTP_FORWARD_CUM_TSN_CHUNK_TYPE 0xc0
30 # if defined(OPENSSL_SYS_LINUX) && !defined(IP_MTU)
31 # define IP_MTU 14 /* linux is lame */
34 # if OPENSSL_USE_IPV6 && !defined(IPPROTO_IPV6)
35 # define IPPROTO_IPV6 41 /* windows is lame */
38 # if defined(__FreeBSD__) && defined(IN6_IS_ADDR_V4MAPPED)
39 /* Standard definition causes type-punning problems. */
40 # undef IN6_IS_ADDR_V4MAPPED
41 # define s6_addr32 __u6_addr.__u6_addr32
42 # define IN6_IS_ADDR_V4MAPPED(a) \
43 (((a)->s6_addr32[0] == 0) && \
44 ((a)->s6_addr32[1] == 0) && \
45 ((a)->s6_addr32[2] == htonl(0x0000ffff)))
48 static int dgram_write(BIO *h, const char *buf, int num);
49 static int dgram_read(BIO *h, char *buf, int size);
50 static int dgram_puts(BIO *h, const char *str);
51 static long dgram_ctrl(BIO *h, int cmd, long arg1, void *arg2);
52 static int dgram_new(BIO *h);
53 static int dgram_free(BIO *data);
54 static int dgram_clear(BIO *bio);
56 # ifndef OPENSSL_NO_SCTP
57 static int dgram_sctp_write(BIO *h, const char *buf, int num);
58 static int dgram_sctp_read(BIO *h, char *buf, int size);
59 static int dgram_sctp_puts(BIO *h, const char *str);
60 static long dgram_sctp_ctrl(BIO *h, int cmd, long arg1, void *arg2);
61 static int dgram_sctp_new(BIO *h);
62 static int dgram_sctp_free(BIO *data);
63 # ifdef SCTP_AUTHENTICATION_EVENT
64 static void dgram_sctp_handle_auth_free_key_event(BIO *b, union sctp_notification
69 static int BIO_dgram_should_retry(int s);
71 static void get_current_time(struct timeval *t);
73 static const BIO_METHOD methods_dgramp = {
77 /* TODO: Convert to new style read function */
81 NULL, /* dgram_gets, */
88 # ifndef OPENSSL_NO_SCTP
89 static const BIO_METHOD methods_dgramp_sctp = {
91 "datagram sctp socket",
95 NULL, /* dgram_gets, */
103 typedef struct bio_dgram_data_st {
105 unsigned int connected;
108 struct timeval next_timeout;
109 struct timeval socket_timeout;
110 unsigned int peekmode;
113 # ifndef OPENSSL_NO_SCTP
114 typedef struct bio_dgram_sctp_save_message_st {
118 } bio_dgram_sctp_save_message;
120 typedef struct bio_dgram_sctp_data_st {
122 unsigned int connected;
125 struct bio_dgram_sctp_sndinfo sndinfo;
126 struct bio_dgram_sctp_rcvinfo rcvinfo;
127 struct bio_dgram_sctp_prinfo prinfo;
128 void (*handle_notifications) (BIO *bio, void *context, void *buf);
129 void *notification_context;
134 int peer_auth_tested;
135 bio_dgram_sctp_save_message saved_message;
136 } bio_dgram_sctp_data;
139 const BIO_METHOD *BIO_s_datagram(void)
141 return (&methods_dgramp);
144 BIO *BIO_new_dgram(int fd, int close_flag)
148 ret = BIO_new(BIO_s_datagram());
151 BIO_set_fd(ret, fd, close_flag);
155 static int dgram_new(BIO *bi)
157 bio_dgram_data *data = OPENSSL_zalloc(sizeof(*data));
165 static int dgram_free(BIO *a)
167 bio_dgram_data *data;
174 data = (bio_dgram_data *)a->ptr;
180 static int dgram_clear(BIO *a)
186 BIO_closesocket(a->num);
194 static void dgram_adjust_rcv_timeout(BIO *b)
196 # if defined(SO_RCVTIMEO)
197 bio_dgram_data *data = (bio_dgram_data *)b->ptr;
205 /* Is a timer active? */
206 if (data->next_timeout.tv_sec > 0 || data->next_timeout.tv_usec > 0) {
207 struct timeval timenow, timeleft;
209 /* Read current socket timeout */
210 # ifdef OPENSSL_SYS_WINDOWS
213 sz.i = sizeof(timeout);
214 if (getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,
215 (void *)&timeout, &sz.i) < 0) {
216 perror("getsockopt");
218 data->socket_timeout.tv_sec = timeout / 1000;
219 data->socket_timeout.tv_usec = (timeout % 1000) * 1000;
222 sz.i = sizeof(data->socket_timeout);
223 if (getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,
224 &(data->socket_timeout), (void *)&sz) < 0) {
225 perror("getsockopt");
226 } else if (sizeof(sz.s) != sizeof(sz.i) && sz.i == 0)
227 OPENSSL_assert(sz.s <= sizeof(data->socket_timeout));
230 /* Get current time */
231 get_current_time(&timenow);
233 /* Calculate time left until timer expires */
234 memcpy(&timeleft, &(data->next_timeout), sizeof(struct timeval));
235 if (timeleft.tv_usec < timenow.tv_usec) {
236 timeleft.tv_usec = 1000000 - timenow.tv_usec + timeleft.tv_usec;
239 timeleft.tv_usec -= timenow.tv_usec;
241 if (timeleft.tv_sec < timenow.tv_sec) {
243 timeleft.tv_usec = 1;
245 timeleft.tv_sec -= timenow.tv_sec;
249 * Adjust socket timeout if next handshake message timer will expire
252 if ((data->socket_timeout.tv_sec == 0
253 && data->socket_timeout.tv_usec == 0)
254 || (data->socket_timeout.tv_sec > timeleft.tv_sec)
255 || (data->socket_timeout.tv_sec == timeleft.tv_sec
256 && data->socket_timeout.tv_usec >= timeleft.tv_usec)) {
257 # ifdef OPENSSL_SYS_WINDOWS
258 timeout = timeleft.tv_sec * 1000 + timeleft.tv_usec / 1000;
259 if (setsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,
260 (void *)&timeout, sizeof(timeout)) < 0) {
261 perror("setsockopt");
264 if (setsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO, &timeleft,
265 sizeof(struct timeval)) < 0) {
266 perror("setsockopt");
274 static void dgram_reset_rcv_timeout(BIO *b)
276 # if defined(SO_RCVTIMEO)
277 bio_dgram_data *data = (bio_dgram_data *)b->ptr;
279 /* Is a timer active? */
280 if (data->next_timeout.tv_sec > 0 || data->next_timeout.tv_usec > 0) {
281 # ifdef OPENSSL_SYS_WINDOWS
282 int timeout = data->socket_timeout.tv_sec * 1000 +
283 data->socket_timeout.tv_usec / 1000;
284 if (setsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,
285 (void *)&timeout, sizeof(timeout)) < 0) {
286 perror("setsockopt");
290 (b->num, SOL_SOCKET, SO_RCVTIMEO, &(data->socket_timeout),
291 sizeof(struct timeval)) < 0) {
292 perror("setsockopt");
299 static int dgram_read(BIO *b, char *out, int outl)
302 bio_dgram_data *data = (bio_dgram_data *)b->ptr;
306 socklen_t len = sizeof(peer);
309 clear_socket_error();
310 memset(&peer, 0, sizeof(peer));
311 dgram_adjust_rcv_timeout(b);
314 ret = recvfrom(b->num, out, outl, flags,
315 BIO_ADDR_sockaddr_noconst(&peer), &len);
317 if (!data->connected && ret >= 0)
318 BIO_ctrl(b, BIO_CTRL_DGRAM_SET_PEER, 0, &peer);
320 BIO_clear_retry_flags(b);
322 if (BIO_dgram_should_retry(ret)) {
323 BIO_set_retry_read(b);
324 data->_errno = get_last_socket_error();
328 dgram_reset_rcv_timeout(b);
333 static int dgram_write(BIO *b, const char *in, int inl)
336 bio_dgram_data *data = (bio_dgram_data *)b->ptr;
337 clear_socket_error();
340 ret = writesocket(b->num, in, inl);
342 int peerlen = BIO_ADDR_sockaddr_size(&data->peer);
344 # if defined(NETWARE_CLIB) && defined(NETWARE_BSDSOCK)
345 ret = sendto(b->num, (char *)in, inl, 0,
346 BIO_ADDR_sockaddr(&data->peer), peerlen);
348 ret = sendto(b->num, in, inl, 0,
349 BIO_ADDR_sockaddr(&data->peer), peerlen);
353 BIO_clear_retry_flags(b);
355 if (BIO_dgram_should_retry(ret)) {
356 BIO_set_retry_write(b);
357 data->_errno = get_last_socket_error();
363 static long dgram_get_mtu_overhead(bio_dgram_data *data)
367 switch (BIO_ADDR_family(&data->peer)) {
370 * Assume this is UDP - 20 bytes for IP, 8 bytes for UDP
377 # ifdef IN6_IS_ADDR_V4MAPPED
378 struct in6_addr tmp_addr;
379 if (BIO_ADDR_rawaddress(&data->peer, &tmp_addr, NULL)
380 && IN6_IS_ADDR_V4MAPPED(&tmp_addr))
382 * Assume this is UDP - 20 bytes for IP, 8 bytes for UDP
388 * Assume this is UDP - 40 bytes for IP, 8 bytes for UDP
395 /* We don't know. Go with the historical default */
402 static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)
406 bio_dgram_data *data = NULL;
409 # if defined(OPENSSL_SYS_LINUX) && (defined(IP_MTU_DISCOVER) || defined(IP_MTU))
410 socklen_t sockopt_len; /* assume that system supporting IP_MTU is
411 * modern enough to define socklen_t */
416 data = (bio_dgram_data *)b->ptr;
428 b->num = *((int *)ptr);
429 b->shutdown = (int)num;
441 case BIO_CTRL_GET_CLOSE:
444 case BIO_CTRL_SET_CLOSE:
445 b->shutdown = (int)num;
447 case BIO_CTRL_PENDING:
448 case BIO_CTRL_WPENDING:
455 case BIO_CTRL_DGRAM_CONNECT:
456 BIO_ADDR_make(&data->peer, BIO_ADDR_sockaddr((BIO_ADDR *)ptr));
458 /* (Linux)kernel sets DF bit on outgoing IP packets */
459 case BIO_CTRL_DGRAM_MTU_DISCOVER:
460 # if defined(OPENSSL_SYS_LINUX) && defined(IP_MTU_DISCOVER) && defined(IP_PMTUDISC_DO)
461 addr_len = (socklen_t) sizeof(addr);
462 memset(&addr, 0, sizeof(addr));
463 if (getsockname(b->num, &addr.sa, &addr_len) < 0) {
467 switch (addr.sa.sa_family) {
469 sockopt_val = IP_PMTUDISC_DO;
470 if ((ret = setsockopt(b->num, IPPROTO_IP, IP_MTU_DISCOVER,
471 &sockopt_val, sizeof(sockopt_val))) < 0)
472 perror("setsockopt");
474 # if OPENSSL_USE_IPV6 && defined(IPV6_MTU_DISCOVER) && defined(IPV6_PMTUDISC_DO)
476 sockopt_val = IPV6_PMTUDISC_DO;
477 if ((ret = setsockopt(b->num, IPPROTO_IPV6, IPV6_MTU_DISCOVER,
478 &sockopt_val, sizeof(sockopt_val))) < 0)
479 perror("setsockopt");
490 case BIO_CTRL_DGRAM_QUERY_MTU:
491 # if defined(OPENSSL_SYS_LINUX) && defined(IP_MTU)
492 addr_len = (socklen_t) sizeof(addr);
493 memset(&addr, 0, sizeof(addr));
494 if (getsockname(b->num, &addr.sa, &addr_len) < 0) {
498 sockopt_len = sizeof(sockopt_val);
499 switch (addr.sa.sa_family) {
502 getsockopt(b->num, IPPROTO_IP, IP_MTU, (void *)&sockopt_val,
503 &sockopt_len)) < 0 || sockopt_val < 0) {
507 * we assume that the transport protocol is UDP and no IP
510 data->mtu = sockopt_val - 8 - 20;
514 # if OPENSSL_USE_IPV6 && defined(IPV6_MTU)
517 getsockopt(b->num, IPPROTO_IPV6, IPV6_MTU,
518 (void *)&sockopt_val, &sockopt_len)) < 0
519 || sockopt_val < 0) {
523 * we assume that the transport protocol is UDP and no IPV6
526 data->mtu = sockopt_val - 8 - 40;
539 case BIO_CTRL_DGRAM_GET_FALLBACK_MTU:
540 ret = -dgram_get_mtu_overhead(data);
541 switch (BIO_ADDR_family(&data->peer)) {
545 # if OPENSSL_USE_IPV6
548 # ifdef IN6_IS_ADDR_V4MAPPED
549 struct in6_addr tmp_addr;
550 if (BIO_ADDR_rawaddress(&data->peer, &tmp_addr, NULL)
551 && IN6_IS_ADDR_V4MAPPED(&tmp_addr))
564 case BIO_CTRL_DGRAM_GET_MTU:
566 case BIO_CTRL_DGRAM_SET_MTU:
570 case BIO_CTRL_DGRAM_SET_CONNECTED:
573 BIO_ADDR_make(&data->peer, BIO_ADDR_sockaddr((BIO_ADDR *)ptr));
576 memset(&data->peer, 0, sizeof(data->peer));
579 case BIO_CTRL_DGRAM_GET_PEER:
580 ret = BIO_ADDR_sockaddr_size(&data->peer);
581 /* FIXME: if num < ret, we will only return part of an address.
582 That should bee an error, no? */
583 if (num == 0 || num > ret)
585 memcpy(ptr, &data->peer, (ret = num));
587 case BIO_CTRL_DGRAM_SET_PEER:
588 BIO_ADDR_make(&data->peer, BIO_ADDR_sockaddr((BIO_ADDR *)ptr));
590 case BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT:
591 memcpy(&(data->next_timeout), ptr, sizeof(struct timeval));
593 # if defined(SO_RCVTIMEO)
594 case BIO_CTRL_DGRAM_SET_RECV_TIMEOUT:
595 # ifdef OPENSSL_SYS_WINDOWS
597 struct timeval *tv = (struct timeval *)ptr;
598 int timeout = tv->tv_sec * 1000 + tv->tv_usec / 1000;
599 if (setsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,
600 (void *)&timeout, sizeof(timeout)) < 0) {
601 perror("setsockopt");
606 if (setsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO, ptr,
607 sizeof(struct timeval)) < 0) {
608 perror("setsockopt");
613 case BIO_CTRL_DGRAM_GET_RECV_TIMEOUT:
621 # ifdef OPENSSL_SYS_WINDOWS
623 struct timeval *tv = (struct timeval *)ptr;
625 sz.i = sizeof(timeout);
626 if (getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,
627 (void *)&timeout, &sz.i) < 0) {
628 perror("getsockopt");
631 tv->tv_sec = timeout / 1000;
632 tv->tv_usec = (timeout % 1000) * 1000;
636 sz.i = sizeof(struct timeval);
637 if (getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,
638 ptr, (void *)&sz) < 0) {
639 perror("getsockopt");
641 } else if (sizeof(sz.s) != sizeof(sz.i) && sz.i == 0) {
642 OPENSSL_assert(sz.s <= sizeof(struct timeval));
650 # if defined(SO_SNDTIMEO)
651 case BIO_CTRL_DGRAM_SET_SEND_TIMEOUT:
652 # ifdef OPENSSL_SYS_WINDOWS
654 struct timeval *tv = (struct timeval *)ptr;
655 int timeout = tv->tv_sec * 1000 + tv->tv_usec / 1000;
656 if (setsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO,
657 (void *)&timeout, sizeof(timeout)) < 0) {
658 perror("setsockopt");
663 if (setsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO, ptr,
664 sizeof(struct timeval)) < 0) {
665 perror("setsockopt");
670 case BIO_CTRL_DGRAM_GET_SEND_TIMEOUT:
678 # ifdef OPENSSL_SYS_WINDOWS
680 struct timeval *tv = (struct timeval *)ptr;
682 sz.i = sizeof(timeout);
683 if (getsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO,
684 (void *)&timeout, &sz.i) < 0) {
685 perror("getsockopt");
688 tv->tv_sec = timeout / 1000;
689 tv->tv_usec = (timeout % 1000) * 1000;
693 sz.i = sizeof(struct timeval);
694 if (getsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO,
695 ptr, (void *)&sz) < 0) {
696 perror("getsockopt");
698 } else if (sizeof(sz.s) != sizeof(sz.i) && sz.i == 0) {
699 OPENSSL_assert(sz.s <= sizeof(struct timeval));
707 case BIO_CTRL_DGRAM_GET_SEND_TIMER_EXP:
709 case BIO_CTRL_DGRAM_GET_RECV_TIMER_EXP:
710 # ifdef OPENSSL_SYS_WINDOWS
711 d_errno = (data->_errno == WSAETIMEDOUT);
713 d_errno = (data->_errno == EAGAIN);
722 case BIO_CTRL_DGRAM_MTU_EXCEEDED:
723 if (data->_errno == EMSGSIZE) {
730 case BIO_CTRL_DGRAM_SET_DONT_FRAG:
731 sockopt_val = num ? 1 : 0;
733 switch (data->peer.sa.sa_family) {
735 # if defined(IP_DONTFRAG)
736 if ((ret = setsockopt(b->num, IPPROTO_IP, IP_DONTFRAG,
737 &sockopt_val, sizeof(sockopt_val))) < 0) {
738 perror("setsockopt");
741 # elif defined(OPENSSL_SYS_LINUX) && defined(IP_MTU_DISCOVER) && defined (IP_PMTUDISC_PROBE)
742 if ((sockopt_val = num ? IP_PMTUDISC_PROBE : IP_PMTUDISC_DONT),
743 (ret = setsockopt(b->num, IPPROTO_IP, IP_MTU_DISCOVER,
744 &sockopt_val, sizeof(sockopt_val))) < 0) {
745 perror("setsockopt");
748 # elif defined(OPENSSL_SYS_WINDOWS) && defined(IP_DONTFRAGMENT)
749 if ((ret = setsockopt(b->num, IPPROTO_IP, IP_DONTFRAGMENT,
750 (const char *)&sockopt_val,
751 sizeof(sockopt_val))) < 0) {
752 perror("setsockopt");
759 # if OPENSSL_USE_IPV6
761 # if defined(IPV6_DONTFRAG)
762 if ((ret = setsockopt(b->num, IPPROTO_IPV6, IPV6_DONTFRAG,
763 (const void *)&sockopt_val,
764 sizeof(sockopt_val))) < 0) {
765 perror("setsockopt");
768 # elif defined(OPENSSL_SYS_LINUX) && defined(IPV6_MTUDISCOVER)
769 if ((sockopt_val = num ? IP_PMTUDISC_PROBE : IP_PMTUDISC_DONT),
770 (ret = setsockopt(b->num, IPPROTO_IPV6, IPV6_MTU_DISCOVER,
771 &sockopt_val, sizeof(sockopt_val))) < 0) {
772 perror("setsockopt");
785 case BIO_CTRL_DGRAM_GET_MTU_OVERHEAD:
786 ret = dgram_get_mtu_overhead(data);
788 case BIO_CTRL_DGRAM_SET_PEEK_MODE:
789 data->peekmode = (unsigned int)num;
798 static int dgram_puts(BIO *bp, const char *str)
803 ret = dgram_write(bp, str, n);
807 # ifndef OPENSSL_NO_SCTP
808 const BIO_METHOD *BIO_s_datagram_sctp(void)
810 return (&methods_dgramp_sctp);
813 BIO *BIO_new_dgram_sctp(int fd, int close_flag)
816 int ret, optval = 20000;
817 int auth_data = 0, auth_forward = 0;
819 struct sctp_authchunk auth;
820 struct sctp_authchunks *authchunks;
821 socklen_t sockopt_len;
822 # ifdef SCTP_AUTHENTICATION_EVENT
824 struct sctp_event event;
826 struct sctp_event_subscribe event;
830 bio = BIO_new(BIO_s_datagram_sctp());
833 BIO_set_fd(bio, fd, close_flag);
835 /* Activate SCTP-AUTH for DATA and FORWARD-TSN chunks */
836 auth.sauth_chunk = OPENSSL_SCTP_DATA_CHUNK_TYPE;
838 setsockopt(fd, IPPROTO_SCTP, SCTP_AUTH_CHUNK, &auth,
839 sizeof(struct sctp_authchunk));
844 auth.sauth_chunk = OPENSSL_SCTP_FORWARD_CUM_TSN_CHUNK_TYPE;
846 setsockopt(fd, IPPROTO_SCTP, SCTP_AUTH_CHUNK, &auth,
847 sizeof(struct sctp_authchunk));
854 * Test if activation was successful. When using accept(), SCTP-AUTH has
855 * to be activated for the listening socket already, otherwise the
856 * connected socket won't use it.
858 sockopt_len = (socklen_t) (sizeof(sctp_assoc_t) + 256 * sizeof(uint8_t));
859 authchunks = OPENSSL_zalloc(sockopt_len);
860 if (authchunks == NULL) {
864 ret = getsockopt(fd, IPPROTO_SCTP, SCTP_LOCAL_AUTH_CHUNKS, authchunks,
867 OPENSSL_free(authchunks);
872 for (p = (unsigned char *)authchunks->gauth_chunks;
873 p < (unsigned char *)authchunks + sockopt_len;
874 p += sizeof(uint8_t)) {
875 if (*p == OPENSSL_SCTP_DATA_CHUNK_TYPE)
877 if (*p == OPENSSL_SCTP_FORWARD_CUM_TSN_CHUNK_TYPE)
881 OPENSSL_free(authchunks);
883 OPENSSL_assert(auth_data);
884 OPENSSL_assert(auth_forward);
886 # ifdef SCTP_AUTHENTICATION_EVENT
888 memset(&event, 0, sizeof(event));
889 event.se_assoc_id = 0;
890 event.se_type = SCTP_AUTHENTICATION_EVENT;
893 setsockopt(fd, IPPROTO_SCTP, SCTP_EVENT, &event,
894 sizeof(struct sctp_event));
900 sockopt_len = (socklen_t) sizeof(struct sctp_event_subscribe);
901 ret = getsockopt(fd, IPPROTO_SCTP, SCTP_EVENTS, &event, &sockopt_len);
907 event.sctp_authentication_event = 1;
910 setsockopt(fd, IPPROTO_SCTP, SCTP_EVENTS, &event,
911 sizeof(struct sctp_event_subscribe));
920 * Disable partial delivery by setting the min size larger than the max
921 * record size of 2^14 + 2048 + 13
924 setsockopt(fd, IPPROTO_SCTP, SCTP_PARTIAL_DELIVERY_POINT, &optval,
934 int BIO_dgram_is_sctp(BIO *bio)
936 return (BIO_method_type(bio) == BIO_TYPE_DGRAM_SCTP);
939 static int dgram_sctp_new(BIO *bi)
941 bio_dgram_sctp_data *data = NULL;
945 data = OPENSSL_zalloc(sizeof(*data));
948 # ifdef SCTP_PR_SCTP_NONE
949 data->prinfo.pr_policy = SCTP_PR_SCTP_NONE;
957 static int dgram_sctp_free(BIO *a)
959 bio_dgram_sctp_data *data;
966 data = (bio_dgram_sctp_data *) a->ptr;
968 OPENSSL_free(data->saved_message.data);
975 # ifdef SCTP_AUTHENTICATION_EVENT
976 void dgram_sctp_handle_auth_free_key_event(BIO *b,
977 union sctp_notification *snp)
980 struct sctp_authkey_event *authkeyevent = &snp->sn_auth_event;
982 if (authkeyevent->auth_indication == SCTP_AUTH_FREE_KEY) {
983 struct sctp_authkeyid authkeyid;
986 authkeyid.scact_keynumber = authkeyevent->auth_keynumber;
987 ret = setsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_DELETE_KEY,
988 &authkeyid, sizeof(struct sctp_authkeyid));
993 static int dgram_sctp_read(BIO *b, char *out, int outl)
995 int ret = 0, n = 0, i, optval;
997 bio_dgram_sctp_data *data = (bio_dgram_sctp_data *) b->ptr;
998 union sctp_notification *snp;
1001 struct cmsghdr *cmsg;
1005 clear_socket_error();
1008 memset(&data->rcvinfo, 0, sizeof(data->rcvinfo));
1011 msg.msg_name = NULL;
1012 msg.msg_namelen = 0;
1015 msg.msg_control = cmsgbuf;
1016 msg.msg_controllen = 512;
1018 n = recvmsg(b->num, &msg, 0);
1026 if (msg.msg_controllen > 0) {
1027 for (cmsg = CMSG_FIRSTHDR(&msg); cmsg;
1028 cmsg = CMSG_NXTHDR(&msg, cmsg)) {
1029 if (cmsg->cmsg_level != IPPROTO_SCTP)
1031 # ifdef SCTP_RCVINFO
1032 if (cmsg->cmsg_type == SCTP_RCVINFO) {
1033 struct sctp_rcvinfo *rcvinfo;
1035 rcvinfo = (struct sctp_rcvinfo *)CMSG_DATA(cmsg);
1036 data->rcvinfo.rcv_sid = rcvinfo->rcv_sid;
1037 data->rcvinfo.rcv_ssn = rcvinfo->rcv_ssn;
1038 data->rcvinfo.rcv_flags = rcvinfo->rcv_flags;
1039 data->rcvinfo.rcv_ppid = rcvinfo->rcv_ppid;
1040 data->rcvinfo.rcv_tsn = rcvinfo->rcv_tsn;
1041 data->rcvinfo.rcv_cumtsn = rcvinfo->rcv_cumtsn;
1042 data->rcvinfo.rcv_context = rcvinfo->rcv_context;
1046 if (cmsg->cmsg_type == SCTP_SNDRCV) {
1047 struct sctp_sndrcvinfo *sndrcvinfo;
1050 (struct sctp_sndrcvinfo *)CMSG_DATA(cmsg);
1051 data->rcvinfo.rcv_sid = sndrcvinfo->sinfo_stream;
1052 data->rcvinfo.rcv_ssn = sndrcvinfo->sinfo_ssn;
1053 data->rcvinfo.rcv_flags = sndrcvinfo->sinfo_flags;
1054 data->rcvinfo.rcv_ppid = sndrcvinfo->sinfo_ppid;
1055 data->rcvinfo.rcv_tsn = sndrcvinfo->sinfo_tsn;
1056 data->rcvinfo.rcv_cumtsn = sndrcvinfo->sinfo_cumtsn;
1057 data->rcvinfo.rcv_context = sndrcvinfo->sinfo_context;
1063 if (msg.msg_flags & MSG_NOTIFICATION) {
1064 snp = (union sctp_notification *)out;
1065 if (snp->sn_header.sn_type == SCTP_SENDER_DRY_EVENT) {
1067 struct sctp_event event;
1069 struct sctp_event_subscribe event;
1070 socklen_t eventsize;
1073 * If a message has been delayed until the socket is dry,
1074 * it can be sent now.
1076 if (data->saved_message.length > 0) {
1077 i = dgram_sctp_write(data->saved_message.bio,
1078 data->saved_message.data,
1079 data->saved_message.length);
1084 OPENSSL_free(data->saved_message.data);
1085 data->saved_message.data = NULL;
1086 data->saved_message.length = 0;
1089 /* disable sender dry event */
1091 memset(&event, 0, sizeof(event));
1092 event.se_assoc_id = 0;
1093 event.se_type = SCTP_SENDER_DRY_EVENT;
1095 i = setsockopt(b->num, IPPROTO_SCTP, SCTP_EVENT, &event,
1096 sizeof(struct sctp_event));
1102 eventsize = sizeof(struct sctp_event_subscribe);
1103 i = getsockopt(b->num, IPPROTO_SCTP, SCTP_EVENTS, &event,
1110 event.sctp_sender_dry_event = 0;
1112 i = setsockopt(b->num, IPPROTO_SCTP, SCTP_EVENTS, &event,
1113 sizeof(struct sctp_event_subscribe));
1120 # ifdef SCTP_AUTHENTICATION_EVENT
1121 if (snp->sn_header.sn_type == SCTP_AUTHENTICATION_EVENT)
1122 dgram_sctp_handle_auth_free_key_event(b, snp);
1125 if (data->handle_notifications != NULL)
1126 data->handle_notifications(b, data->notification_context,
1129 memset(out, 0, outl);
1133 while ((msg.msg_flags & MSG_NOTIFICATION) && (msg.msg_flags & MSG_EOR)
1136 if (ret > 0 && !(msg.msg_flags & MSG_EOR)) {
1137 /* Partial message read, this should never happen! */
1140 * The buffer was too small, this means the peer sent a message
1141 * that was larger than allowed.
1147 * Test if socket buffer can handle max record size (2^14 + 2048
1150 optlen = (socklen_t) sizeof(int);
1151 ret = getsockopt(b->num, SOL_SOCKET, SO_RCVBUF, &optval, &optlen);
1153 OPENSSL_assert(optval >= 18445);
1156 * Test if SCTP doesn't partially deliver below max record size
1157 * (2^14 + 2048 + 13)
1159 optlen = (socklen_t) sizeof(int);
1161 getsockopt(b->num, IPPROTO_SCTP, SCTP_PARTIAL_DELIVERY_POINT,
1164 OPENSSL_assert(optval >= 18445);
1167 * Partially delivered notification??? Probably a bug....
1169 OPENSSL_assert(!(msg.msg_flags & MSG_NOTIFICATION));
1172 * Everything seems ok till now, so it's most likely a message
1173 * dropped by PR-SCTP.
1175 memset(out, 0, outl);
1176 BIO_set_retry_read(b);
1180 BIO_clear_retry_flags(b);
1182 if (BIO_dgram_should_retry(ret)) {
1183 BIO_set_retry_read(b);
1184 data->_errno = get_last_socket_error();
1188 /* Test if peer uses SCTP-AUTH before continuing */
1189 if (!data->peer_auth_tested) {
1190 int ii, auth_data = 0, auth_forward = 0;
1192 struct sctp_authchunks *authchunks;
1195 (socklen_t) (sizeof(sctp_assoc_t) + 256 * sizeof(uint8_t));
1196 authchunks = OPENSSL_malloc(optlen);
1197 if (authchunks == NULL) {
1198 BIOerr(BIO_F_DGRAM_SCTP_READ, ERR_R_MALLOC_FAILURE);
1201 memset(authchunks, 0, optlen);
1202 ii = getsockopt(b->num, IPPROTO_SCTP, SCTP_PEER_AUTH_CHUNKS,
1203 authchunks, &optlen);
1206 for (p = (unsigned char *)authchunks->gauth_chunks;
1207 p < (unsigned char *)authchunks + optlen;
1208 p += sizeof(uint8_t)) {
1209 if (*p == OPENSSL_SCTP_DATA_CHUNK_TYPE)
1211 if (*p == OPENSSL_SCTP_FORWARD_CUM_TSN_CHUNK_TYPE)
1215 OPENSSL_free(authchunks);
1217 if (!auth_data || !auth_forward) {
1218 BIOerr(BIO_F_DGRAM_SCTP_READ, BIO_R_CONNECT_ERROR);
1222 data->peer_auth_tested = 1;
1229 * dgram_sctp_write - send message on SCTP socket
1230 * @b: BIO to write to
1232 * @inl: amount of bytes in @in to send
1234 * Returns -1 on error or the sent amount of bytes on success
1236 static int dgram_sctp_write(BIO *b, const char *in, int inl)
1239 bio_dgram_sctp_data *data = (bio_dgram_sctp_data *) b->ptr;
1240 struct bio_dgram_sctp_sndinfo *sinfo = &(data->sndinfo);
1241 struct bio_dgram_sctp_prinfo *pinfo = &(data->prinfo);
1242 struct bio_dgram_sctp_sndinfo handshake_sinfo;
1243 struct iovec iov[1];
1245 struct cmsghdr *cmsg;
1246 # if defined(SCTP_SNDINFO) && defined(SCTP_PRINFO)
1247 char cmsgbuf[CMSG_SPACE(sizeof(struct sctp_sndinfo)) +
1248 CMSG_SPACE(sizeof(struct sctp_prinfo))];
1249 struct sctp_sndinfo *sndinfo;
1250 struct sctp_prinfo *prinfo;
1252 char cmsgbuf[CMSG_SPACE(sizeof(struct sctp_sndrcvinfo))];
1253 struct sctp_sndrcvinfo *sndrcvinfo;
1256 clear_socket_error();
1259 * If we're send anything else than application data, disable all user
1260 * parameters and flags.
1263 memset(&handshake_sinfo, 0, sizeof(handshake_sinfo));
1264 # ifdef SCTP_SACK_IMMEDIATELY
1265 handshake_sinfo.snd_flags = SCTP_SACK_IMMEDIATELY;
1267 sinfo = &handshake_sinfo;
1271 * If we have to send a shutdown alert message and the socket is not dry
1272 * yet, we have to save it and send it as soon as the socket gets dry.
1274 if (data->save_shutdown) {
1275 ret = BIO_dgram_sctp_wait_for_dry(b);
1281 data->saved_message.bio = b;
1282 if ((tmp = OPENSSL_malloc(inl)) == NULL) {
1283 BIOerr(BIO_F_DGRAM_SCTP_WRITE, ERR_R_MALLOC_FAILURE);
1286 OPENSSL_free(data->saved_message.data);
1287 data->saved_message.data = tmp;
1288 memcpy(data->saved_message.data, in, inl);
1289 data->saved_message.length = inl;
1294 iov[0].iov_base = (char *)in;
1295 iov[0].iov_len = inl;
1296 msg.msg_name = NULL;
1297 msg.msg_namelen = 0;
1300 msg.msg_control = (caddr_t) cmsgbuf;
1301 msg.msg_controllen = 0;
1303 # if defined(SCTP_SNDINFO) && defined(SCTP_PRINFO)
1304 cmsg = (struct cmsghdr *)cmsgbuf;
1305 cmsg->cmsg_level = IPPROTO_SCTP;
1306 cmsg->cmsg_type = SCTP_SNDINFO;
1307 cmsg->cmsg_len = CMSG_LEN(sizeof(struct sctp_sndinfo));
1308 sndinfo = (struct sctp_sndinfo *)CMSG_DATA(cmsg);
1309 memset(sndinfo, 0, sizeof(*sndinfo));
1310 sndinfo->snd_sid = sinfo->snd_sid;
1311 sndinfo->snd_flags = sinfo->snd_flags;
1312 sndinfo->snd_ppid = sinfo->snd_ppid;
1313 sndinfo->snd_context = sinfo->snd_context;
1314 msg.msg_controllen += CMSG_SPACE(sizeof(struct sctp_sndinfo));
1317 (struct cmsghdr *)&cmsgbuf[CMSG_SPACE(sizeof(struct sctp_sndinfo))];
1318 cmsg->cmsg_level = IPPROTO_SCTP;
1319 cmsg->cmsg_type = SCTP_PRINFO;
1320 cmsg->cmsg_len = CMSG_LEN(sizeof(struct sctp_prinfo));
1321 prinfo = (struct sctp_prinfo *)CMSG_DATA(cmsg);
1322 memset(prinfo, 0, sizeof(*prinfo));
1323 prinfo->pr_policy = pinfo->pr_policy;
1324 prinfo->pr_value = pinfo->pr_value;
1325 msg.msg_controllen += CMSG_SPACE(sizeof(struct sctp_prinfo));
1327 cmsg = (struct cmsghdr *)cmsgbuf;
1328 cmsg->cmsg_level = IPPROTO_SCTP;
1329 cmsg->cmsg_type = SCTP_SNDRCV;
1330 cmsg->cmsg_len = CMSG_LEN(sizeof(struct sctp_sndrcvinfo));
1331 sndrcvinfo = (struct sctp_sndrcvinfo *)CMSG_DATA(cmsg);
1332 memset(sndrcvinfo, 0, sizeof(*sndrcvinfo));
1333 sndrcvinfo->sinfo_stream = sinfo->snd_sid;
1334 sndrcvinfo->sinfo_flags = sinfo->snd_flags;
1336 sndrcvinfo->sinfo_flags |= pinfo->pr_policy;
1338 sndrcvinfo->sinfo_ppid = sinfo->snd_ppid;
1339 sndrcvinfo->sinfo_context = sinfo->snd_context;
1340 sndrcvinfo->sinfo_timetolive = pinfo->pr_value;
1341 msg.msg_controllen += CMSG_SPACE(sizeof(struct sctp_sndrcvinfo));
1344 ret = sendmsg(b->num, &msg, 0);
1346 BIO_clear_retry_flags(b);
1348 if (BIO_dgram_should_retry(ret)) {
1349 BIO_set_retry_write(b);
1350 data->_errno = get_last_socket_error();
1356 static long dgram_sctp_ctrl(BIO *b, int cmd, long num, void *ptr)
1359 bio_dgram_sctp_data *data = NULL;
1360 socklen_t sockopt_len = 0;
1361 struct sctp_authkeyid authkeyid;
1362 struct sctp_authkey *authkey = NULL;
1364 data = (bio_dgram_sctp_data *) b->ptr;
1367 case BIO_CTRL_DGRAM_QUERY_MTU:
1369 * Set to maximum (2^14) and ignore user input to enable transport
1370 * protocol fragmentation. Returns always 2^14.
1375 case BIO_CTRL_DGRAM_SET_MTU:
1377 * Set to maximum (2^14) and ignore input to enable transport
1378 * protocol fragmentation. Returns always 2^14.
1383 case BIO_CTRL_DGRAM_SET_CONNECTED:
1384 case BIO_CTRL_DGRAM_CONNECT:
1385 /* Returns always -1. */
1388 case BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT:
1390 * SCTP doesn't need the DTLS timer Returns always 1.
1393 case BIO_CTRL_DGRAM_GET_MTU_OVERHEAD:
1395 * We allow transport protocol fragmentation so this is irrelevant
1399 case BIO_CTRL_DGRAM_SCTP_SET_IN_HANDSHAKE:
1401 data->in_handshake = 1;
1403 data->in_handshake = 0;
1406 setsockopt(b->num, IPPROTO_SCTP, SCTP_NODELAY,
1407 &data->in_handshake, sizeof(int));
1409 case BIO_CTRL_DGRAM_SCTP_ADD_AUTH_KEY:
1411 * New shared key for SCTP AUTH. Returns 0 on success, -1 otherwise.
1414 /* Get active key */
1415 sockopt_len = sizeof(struct sctp_authkeyid);
1417 getsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_ACTIVE_KEY, &authkeyid,
1423 sockopt_len = sizeof(struct sctp_authkey) + 64 * sizeof(uint8_t);
1424 authkey = OPENSSL_malloc(sockopt_len);
1425 if (authkey == NULL) {
1429 memset(authkey, 0, sockopt_len);
1430 authkey->sca_keynumber = authkeyid.scact_keynumber + 1;
1431 # ifndef __FreeBSD__
1433 * This field is missing in FreeBSD 8.2 and earlier, and FreeBSD 8.3
1434 * and higher work without it.
1436 authkey->sca_keylength = 64;
1438 memcpy(&authkey->sca_key[0], ptr, 64 * sizeof(uint8_t));
1441 setsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_KEY, authkey,
1443 OPENSSL_free(authkey);
1448 /* Reset active key */
1449 ret = setsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_ACTIVE_KEY,
1450 &authkeyid, sizeof(struct sctp_authkeyid));
1455 case BIO_CTRL_DGRAM_SCTP_NEXT_AUTH_KEY:
1456 /* Returns 0 on success, -1 otherwise. */
1458 /* Get active key */
1459 sockopt_len = sizeof(struct sctp_authkeyid);
1461 getsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_ACTIVE_KEY, &authkeyid,
1466 /* Set active key */
1467 authkeyid.scact_keynumber = authkeyid.scact_keynumber + 1;
1468 ret = setsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_ACTIVE_KEY,
1469 &authkeyid, sizeof(struct sctp_authkeyid));
1474 * CCS has been sent, so remember that and fall through to check if
1475 * we need to deactivate an old key
1479 case BIO_CTRL_DGRAM_SCTP_AUTH_CCS_RCVD:
1480 /* Returns 0 on success, -1 otherwise. */
1483 * Has this command really been called or is this just a
1486 if (cmd == BIO_CTRL_DGRAM_SCTP_AUTH_CCS_RCVD)
1490 * CSS has been both, received and sent, so deactivate an old key
1492 if (data->ccs_rcvd == 1 && data->ccs_sent == 1) {
1493 /* Get active key */
1494 sockopt_len = sizeof(struct sctp_authkeyid);
1496 getsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_ACTIVE_KEY,
1497 &authkeyid, &sockopt_len);
1502 * Deactivate key or delete second last key if
1503 * SCTP_AUTHENTICATION_EVENT is not available.
1505 authkeyid.scact_keynumber = authkeyid.scact_keynumber - 1;
1506 # ifdef SCTP_AUTH_DEACTIVATE_KEY
1507 sockopt_len = sizeof(struct sctp_authkeyid);
1508 ret = setsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_DEACTIVATE_KEY,
1509 &authkeyid, sockopt_len);
1513 # ifndef SCTP_AUTHENTICATION_EVENT
1514 if (authkeyid.scact_keynumber > 0) {
1515 authkeyid.scact_keynumber = authkeyid.scact_keynumber - 1;
1516 ret = setsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_DELETE_KEY,
1517 &authkeyid, sizeof(struct sctp_authkeyid));
1527 case BIO_CTRL_DGRAM_SCTP_GET_SNDINFO:
1528 /* Returns the size of the copied struct. */
1529 if (num > (long)sizeof(struct bio_dgram_sctp_sndinfo))
1530 num = sizeof(struct bio_dgram_sctp_sndinfo);
1532 memcpy(ptr, &(data->sndinfo), num);
1535 case BIO_CTRL_DGRAM_SCTP_SET_SNDINFO:
1536 /* Returns the size of the copied struct. */
1537 if (num > (long)sizeof(struct bio_dgram_sctp_sndinfo))
1538 num = sizeof(struct bio_dgram_sctp_sndinfo);
1540 memcpy(&(data->sndinfo), ptr, num);
1542 case BIO_CTRL_DGRAM_SCTP_GET_RCVINFO:
1543 /* Returns the size of the copied struct. */
1544 if (num > (long)sizeof(struct bio_dgram_sctp_rcvinfo))
1545 num = sizeof(struct bio_dgram_sctp_rcvinfo);
1547 memcpy(ptr, &data->rcvinfo, num);
1551 case BIO_CTRL_DGRAM_SCTP_SET_RCVINFO:
1552 /* Returns the size of the copied struct. */
1553 if (num > (long)sizeof(struct bio_dgram_sctp_rcvinfo))
1554 num = sizeof(struct bio_dgram_sctp_rcvinfo);
1556 memcpy(&(data->rcvinfo), ptr, num);
1558 case BIO_CTRL_DGRAM_SCTP_GET_PRINFO:
1559 /* Returns the size of the copied struct. */
1560 if (num > (long)sizeof(struct bio_dgram_sctp_prinfo))
1561 num = sizeof(struct bio_dgram_sctp_prinfo);
1563 memcpy(ptr, &(data->prinfo), num);
1566 case BIO_CTRL_DGRAM_SCTP_SET_PRINFO:
1567 /* Returns the size of the copied struct. */
1568 if (num > (long)sizeof(struct bio_dgram_sctp_prinfo))
1569 num = sizeof(struct bio_dgram_sctp_prinfo);
1571 memcpy(&(data->prinfo), ptr, num);
1573 case BIO_CTRL_DGRAM_SCTP_SAVE_SHUTDOWN:
1574 /* Returns always 1. */
1576 data->save_shutdown = 1;
1578 data->save_shutdown = 0;
1583 * Pass to default ctrl function to process SCTP unspecific commands
1585 ret = dgram_ctrl(b, cmd, num, ptr);
1591 int BIO_dgram_sctp_notification_cb(BIO *b,
1592 void (*handle_notifications) (BIO *bio,
1598 bio_dgram_sctp_data *data = (bio_dgram_sctp_data *) b->ptr;
1600 if (handle_notifications != NULL) {
1601 data->handle_notifications = handle_notifications;
1602 data->notification_context = context;
1610 * BIO_dgram_sctp_wait_for_dry - Wait for SCTP SENDER_DRY event
1611 * @b: The BIO to check for the dry event
1613 * Wait until the peer confirms all packets have been received, and so that
1614 * our kernel doesn't have anything to send anymore. This is only received by
1615 * the peer's kernel, not the application.
1619 * 0 when not dry yet
1622 int BIO_dgram_sctp_wait_for_dry(BIO *b)
1627 union sctp_notification snp;
1631 struct sctp_event event;
1633 struct sctp_event_subscribe event;
1634 socklen_t eventsize;
1636 bio_dgram_sctp_data *data = (bio_dgram_sctp_data *) b->ptr;
1638 /* set sender dry event */
1640 memset(&event, 0, sizeof(event));
1641 event.se_assoc_id = 0;
1642 event.se_type = SCTP_SENDER_DRY_EVENT;
1645 setsockopt(b->num, IPPROTO_SCTP, SCTP_EVENT, &event,
1646 sizeof(struct sctp_event));
1648 eventsize = sizeof(struct sctp_event_subscribe);
1649 ret = getsockopt(b->num, IPPROTO_SCTP, SCTP_EVENTS, &event, &eventsize);
1653 event.sctp_sender_dry_event = 1;
1656 setsockopt(b->num, IPPROTO_SCTP, SCTP_EVENTS, &event,
1657 sizeof(struct sctp_event_subscribe));
1662 /* peek for notification */
1663 memset(&snp, 0, sizeof(snp));
1664 iov.iov_base = (char *)&snp;
1665 iov.iov_len = sizeof(union sctp_notification);
1666 msg.msg_name = NULL;
1667 msg.msg_namelen = 0;
1670 msg.msg_control = NULL;
1671 msg.msg_controllen = 0;
1674 n = recvmsg(b->num, &msg, MSG_PEEK);
1676 if ((n < 0) && (get_last_socket_error() != EAGAIN)
1677 && (get_last_socket_error() != EWOULDBLOCK))
1683 /* if we find a notification, process it and try again if necessary */
1684 while (msg.msg_flags & MSG_NOTIFICATION) {
1685 memset(&snp, 0, sizeof(snp));
1686 iov.iov_base = (char *)&snp;
1687 iov.iov_len = sizeof(union sctp_notification);
1688 msg.msg_name = NULL;
1689 msg.msg_namelen = 0;
1692 msg.msg_control = NULL;
1693 msg.msg_controllen = 0;
1696 n = recvmsg(b->num, &msg, 0);
1698 if ((n < 0) && (get_last_socket_error() != EAGAIN)
1699 && (get_last_socket_error() != EWOULDBLOCK))
1705 if (snp.sn_header.sn_type == SCTP_SENDER_DRY_EVENT) {
1708 /* disable sender dry event */
1710 memset(&event, 0, sizeof(event));
1711 event.se_assoc_id = 0;
1712 event.se_type = SCTP_SENDER_DRY_EVENT;
1715 setsockopt(b->num, IPPROTO_SCTP, SCTP_EVENT, &event,
1716 sizeof(struct sctp_event));
1718 eventsize = (socklen_t) sizeof(struct sctp_event_subscribe);
1720 getsockopt(b->num, IPPROTO_SCTP, SCTP_EVENTS, &event,
1725 event.sctp_sender_dry_event = 0;
1728 setsockopt(b->num, IPPROTO_SCTP, SCTP_EVENTS, &event,
1729 sizeof(struct sctp_event_subscribe));
1734 # ifdef SCTP_AUTHENTICATION_EVENT
1735 if (snp.sn_header.sn_type == SCTP_AUTHENTICATION_EVENT)
1736 dgram_sctp_handle_auth_free_key_event(b, &snp);
1739 if (data->handle_notifications != NULL)
1740 data->handle_notifications(b, data->notification_context,
1743 /* found notification, peek again */
1744 memset(&snp, 0, sizeof(snp));
1745 iov.iov_base = (char *)&snp;
1746 iov.iov_len = sizeof(union sctp_notification);
1747 msg.msg_name = NULL;
1748 msg.msg_namelen = 0;
1751 msg.msg_control = NULL;
1752 msg.msg_controllen = 0;
1755 /* if we have seen the dry already, don't wait */
1757 sockflags = fcntl(b->num, F_GETFL, 0);
1758 fcntl(b->num, F_SETFL, O_NONBLOCK);
1761 n = recvmsg(b->num, &msg, MSG_PEEK);
1764 fcntl(b->num, F_SETFL, sockflags);
1768 if ((n < 0) && (get_last_socket_error() != EAGAIN)
1769 && (get_last_socket_error() != EWOULDBLOCK))
1776 /* read anything else */
1780 int BIO_dgram_sctp_msg_waiting(BIO *b)
1783 union sctp_notification snp;
1786 bio_dgram_sctp_data *data = (bio_dgram_sctp_data *) b->ptr;
1788 /* Check if there are any messages waiting to be read */
1790 memset(&snp, 0, sizeof(snp));
1791 iov.iov_base = (char *)&snp;
1792 iov.iov_len = sizeof(union sctp_notification);
1793 msg.msg_name = NULL;
1794 msg.msg_namelen = 0;
1797 msg.msg_control = NULL;
1798 msg.msg_controllen = 0;
1801 sockflags = fcntl(b->num, F_GETFL, 0);
1802 fcntl(b->num, F_SETFL, O_NONBLOCK);
1803 n = recvmsg(b->num, &msg, MSG_PEEK);
1804 fcntl(b->num, F_SETFL, sockflags);
1806 /* if notification, process and try again */
1807 if (n > 0 && (msg.msg_flags & MSG_NOTIFICATION)) {
1808 # ifdef SCTP_AUTHENTICATION_EVENT
1809 if (snp.sn_header.sn_type == SCTP_AUTHENTICATION_EVENT)
1810 dgram_sctp_handle_auth_free_key_event(b, &snp);
1813 memset(&snp, 0, sizeof(snp));
1814 iov.iov_base = (char *)&snp;
1815 iov.iov_len = sizeof(union sctp_notification);
1816 msg.msg_name = NULL;
1817 msg.msg_namelen = 0;
1820 msg.msg_control = NULL;
1821 msg.msg_controllen = 0;
1823 n = recvmsg(b->num, &msg, 0);
1825 if (data->handle_notifications != NULL)
1826 data->handle_notifications(b, data->notification_context,
1830 } while (n > 0 && (msg.msg_flags & MSG_NOTIFICATION));
1832 /* Return 1 if there is a message to be read, return 0 otherwise. */
1839 static int dgram_sctp_puts(BIO *bp, const char *str)
1844 ret = dgram_sctp_write(bp, str, n);
1849 static int BIO_dgram_should_retry(int i)
1853 if ((i == 0) || (i == -1)) {
1854 err = get_last_socket_error();
1856 # if defined(OPENSSL_SYS_WINDOWS)
1858 * If the socket return value (i) is -1 and err is unexpectedly 0 at
1859 * this point, the error code was overwritten by another system call
1860 * before this error handling is called.
1864 return (BIO_dgram_non_fatal_error(err));
1869 int BIO_dgram_non_fatal_error(int err)
1872 # if defined(OPENSSL_SYS_WINDOWS)
1873 # if defined(WSAEWOULDBLOCK)
1874 case WSAEWOULDBLOCK:
1879 # ifdef WSAEWOULDBLOCK
1880 # if WSAEWOULDBLOCK != EWOULDBLOCK
1893 # if EWOULDBLOCK != EAGAIN
1918 static void get_current_time(struct timeval *t)
1920 # if defined(_WIN32)
1923 unsigned __int64 ul;
1928 SystemTimeToFileTime(&st, &now.ft);
1930 now.ul -= 116444736000000000ULL;
1932 now.ul -= 116444736000000000UI64; /* re-bias to 1/1/1970 */
1934 t->tv_sec = (long)(now.ul / 10000000);
1935 t->tv_usec = ((int)(now.ul % 10000000)) / 10;
1936 # elif defined(OPENSSL_SYS_VMS)
1939 t->tv_sec = (long)tb.time;
1940 t->tv_usec = (long)tb.millitm * 1000;
1942 gettimeofday(t, NULL);