RFC 3161 compliant time stamp request creation, response generation
[openssl.git] / apps / s_socket.c
1 /* apps/s_socket.c -  socket-related functions used by s_client and s_server */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3  * All rights reserved.
4  *
5  * This package is an SSL implementation written
6  * by Eric Young (eay@cryptsoft.com).
7  * The implementation was written so as to conform with Netscapes SSL.
8  * 
9  * This library is free for commercial and non-commercial use as long as
10  * the following conditions are aheared to.  The following conditions
11  * apply to all code found in this distribution, be it the RC4, RSA,
12  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
13  * included with this distribution is covered by the same copyright terms
14  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15  * 
16  * Copyright remains Eric Young's, and as such any Copyright notices in
17  * the code are not to be removed.
18  * If this package is used in a product, Eric Young should be given attribution
19  * as the author of the parts of the library used.
20  * This can be in the form of a textual message at program startup or
21  * in documentation (online or textual) provided with the package.
22  * 
23  * Redistribution and use in source and binary forms, with or without
24  * modification, are permitted provided that the following conditions
25  * are met:
26  * 1. Redistributions of source code must retain the copyright
27  *    notice, this list of conditions and the following disclaimer.
28  * 2. Redistributions in binary form must reproduce the above copyright
29  *    notice, this list of conditions and the following disclaimer in the
30  *    documentation and/or other materials provided with the distribution.
31  * 3. All advertising materials mentioning features or use of this software
32  *    must display the following acknowledgement:
33  *    "This product includes cryptographic software written by
34  *     Eric Young (eay@cryptsoft.com)"
35  *    The word 'cryptographic' can be left out if the rouines from the library
36  *    being used are not cryptographic related :-).
37  * 4. If you include any Windows specific code (or a derivative thereof) from 
38  *    the apps directory (application code) you must include an acknowledgement:
39  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40  * 
41  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51  * SUCH DAMAGE.
52  * 
53  * The licence and distribution terms for any publically available version or
54  * derivative of this code cannot be changed.  i.e. this code cannot simply be
55  * copied and put under another distribution licence
56  * [including the GNU Public Licence.]
57  */
58
59 #include <stdio.h>
60 #include <stdlib.h>
61 #include <string.h>
62 #include <errno.h>
63 #include <signal.h>
64
65 /* With IPv6, it looks like Digital has mixed up the proper order of
66    recursive header file inclusion, resulting in the compiler complaining
67    that u_int isn't defined, but only if _POSIX_C_SOURCE is defined, which
68    is needed to have fileno() declared correctly...  So let's define u_int */
69 #if defined(OPENSSL_SYS_VMS_DECC) && !defined(__U_INT)
70 #define __U_INT
71 typedef unsigned int u_int;
72 #endif
73
74 #define USE_SOCKETS
75 #define NON_MAIN
76 #include "apps.h"
77 #undef USE_SOCKETS
78 #undef NON_MAIN
79 #include "s_apps.h"
80 #include <openssl/ssl.h>
81
82 #ifdef FLAT_INC
83 #include "e_os.h"
84 #else
85 #include "../e_os.h"
86 #endif
87
88 #ifndef OPENSSL_NO_SOCK
89
90 #if defined(OPENSSL_SYS_NETWARE) && defined(NETWARE_BSDSOCK)
91 #include "netdb.h"
92 #endif
93
94 static struct hostent *GetHostByName(char *name);
95 #if defined(OPENSSL_SYS_WINDOWS) || (defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK))
96 static void ssl_sock_cleanup(void);
97 #endif
98 static int ssl_sock_init(void);
99 static int init_client_ip(int *sock,unsigned char ip[4], int port, int type);
100 static int init_server(int *sock, int port, int type);
101 static int init_server_long(int *sock, int port,char *ip, int type);
102 static int do_accept(int acc_sock, int *sock, char **host);
103 static int host_ip(char *str, unsigned char ip[4]);
104
105 #ifdef OPENSSL_SYS_WIN16
106 #define SOCKET_PROTOCOL 0 /* more microsoft stupidity */
107 #else
108 #define SOCKET_PROTOCOL IPPROTO_TCP
109 #endif
110
111 #if defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
112 static int wsa_init_done=0;
113 #endif
114
115 #ifdef OPENSSL_SYS_WINDOWS
116 static struct WSAData wsa_state;
117 static int wsa_init_done=0;
118
119 #ifdef OPENSSL_SYS_WIN16
120 static HWND topWnd=0;
121 static FARPROC lpTopWndProc=NULL;
122 static FARPROC lpTopHookProc=NULL;
123 extern HINSTANCE _hInstance;  /* nice global CRT provides */
124
125 static LONG FAR PASCAL topHookProc(HWND hwnd, UINT message, WPARAM wParam,
126              LPARAM lParam)
127         {
128         if (hwnd == topWnd)
129                 {
130                 switch(message)
131                         {
132                 case WM_DESTROY:
133                 case WM_CLOSE:
134                         SetWindowLong(topWnd,GWL_WNDPROC,(LONG)lpTopWndProc);
135                         ssl_sock_cleanup();
136                         break;
137                         }
138                 }
139         return CallWindowProc(lpTopWndProc,hwnd,message,wParam,lParam);
140         }
141
142 static BOOL CALLBACK enumproc(HWND hwnd,LPARAM lParam)
143         {
144         topWnd=hwnd;
145         return(FALSE);
146         }
147
148 #endif /* OPENSSL_SYS_WIN32 */
149 #endif /* OPENSSL_SYS_WINDOWS */
150
151 #ifdef OPENSSL_SYS_WINDOWS
152 static void ssl_sock_cleanup(void)
153         {
154         if (wsa_init_done)
155                 {
156                 wsa_init_done=0;
157 #ifndef OPENSSL_SYS_WINCE
158                 WSACancelBlockingCall();
159 #endif
160                 WSACleanup();
161                 }
162         }
163 #elif defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
164 static void sock_cleanup(void)
165     {
166     if (wsa_init_done)
167         {
168         wsa_init_done=0;
169                 WSACleanup();
170                 }
171         }
172 #endif
173
174 static int ssl_sock_init(void)
175         {
176 #ifdef WATT32
177         extern int _watt_do_exit;
178         _watt_do_exit = 0;
179         if (sock_init())
180                 return (0);
181 #elif defined(OPENSSL_SYS_WINDOWS)
182         if (!wsa_init_done)
183                 {
184                 int err;
185           
186 #ifdef SIGINT
187                 signal(SIGINT,(void (*)(int))ssl_sock_cleanup);
188 #endif
189                 wsa_init_done=1;
190                 memset(&wsa_state,0,sizeof(wsa_state));
191                 if (WSAStartup(0x0101,&wsa_state)!=0)
192                         {
193                         err=WSAGetLastError();
194                         BIO_printf(bio_err,"unable to start WINSOCK, error code=%d\n",err);
195                         return(0);
196                         }
197
198 #ifdef OPENSSL_SYS_WIN16
199                 EnumTaskWindows(GetCurrentTask(),enumproc,0L);
200                 lpTopWndProc=(FARPROC)GetWindowLong(topWnd,GWL_WNDPROC);
201                 lpTopHookProc=MakeProcInstance((FARPROC)topHookProc,_hInstance);
202
203                 SetWindowLong(topWnd,GWL_WNDPROC,(LONG)lpTopHookProc);
204 #endif /* OPENSSL_SYS_WIN16 */
205                 }
206 #elif defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
207    WORD wVerReq;
208    WSADATA wsaData;
209    int err;
210
211    if (!wsa_init_done)
212       {
213    
214 # ifdef SIGINT
215       signal(SIGINT,(void (*)(int))sock_cleanup);
216 # endif
217
218       wsa_init_done=1;
219       wVerReq = MAKEWORD( 2, 0 );
220       err = WSAStartup(wVerReq,&wsaData);
221       if (err != 0)
222          {
223          BIO_printf(bio_err,"unable to start WINSOCK2, error code=%d\n",err);
224          return(0);
225          }
226       }
227 #endif /* OPENSSL_SYS_WINDOWS */
228         return(1);
229         }
230
231 int init_client(int *sock, char *host, int port, int type)
232         {
233         unsigned char ip[4];
234         short p=0;
235
236         if (!host_ip(host,&(ip[0])))
237                 {
238                 return(0);
239                 }
240         if (p != 0) port=p;
241         return(init_client_ip(sock,ip,port,type));
242         }
243
244 static int init_client_ip(int *sock, unsigned char ip[4], int port, int type)
245         {
246         unsigned long addr;
247         struct sockaddr_in them;
248         int s,i;
249
250         if (!ssl_sock_init()) return(0);
251
252         memset((char *)&them,0,sizeof(them));
253         them.sin_family=AF_INET;
254         them.sin_port=htons((unsigned short)port);
255         addr=(unsigned long)
256                 ((unsigned long)ip[0]<<24L)|
257                 ((unsigned long)ip[1]<<16L)|
258                 ((unsigned long)ip[2]<< 8L)|
259                 ((unsigned long)ip[3]);
260         them.sin_addr.s_addr=htonl(addr);
261
262         if (type == SOCK_STREAM)
263                 s=socket(AF_INET,SOCK_STREAM,SOCKET_PROTOCOL);
264         else /* ( type == SOCK_DGRAM) */
265                 s=socket(AF_INET,SOCK_DGRAM,IPPROTO_UDP);
266                         
267         if (s == INVALID_SOCKET) { perror("socket"); return(0); }
268
269 #ifndef OPENSSL_SYS_MPE
270         if (type == SOCK_STREAM)
271                 {
272                 i=0;
273                 i=setsockopt(s,SOL_SOCKET,SO_KEEPALIVE,(char *)&i,sizeof(i));
274                 if (i < 0) { perror("keepalive"); return(0); }
275                 }
276 #endif
277
278         if (connect(s,(struct sockaddr *)&them,sizeof(them)) == -1)
279                 { close(s); perror("connect"); return(0); }
280         *sock=s;
281         return(1);
282         }
283
284 int do_server(int port, int type, int *ret, int (*cb)(char *hostname, int s, unsigned char *context), unsigned char *context)
285         {
286         int sock;
287         char *name = NULL;
288         int accept_socket;
289         int i;
290
291         if (!init_server(&accept_socket,port,type)) return(0);
292
293         if (ret != NULL)
294                 {
295                 *ret=accept_socket;
296                 /* return(1);*/
297                 }
298         for (;;)
299                 {
300                 if (type==SOCK_STREAM)
301                         {
302                         if (do_accept(accept_socket,&sock,&name) == 0)
303                                 {
304                                 SHUTDOWN(accept_socket);
305                                 return(0);
306                                 }
307                         }
308                 else
309                         sock = accept_socket;
310                 i=(*cb)(name,sock, context);
311                 if (name != NULL) OPENSSL_free(name);
312                 if (type==SOCK_STREAM)
313                         SHUTDOWN2(sock);
314                 if (i < 0)
315                         {
316                         SHUTDOWN2(accept_socket);
317                         return(i);
318                         }
319                 }
320         }
321
322 static int init_server_long(int *sock, int port, char *ip, int type)
323         {
324         int ret=0;
325         struct sockaddr_in server;
326         int s= -1,i;
327
328         if (!ssl_sock_init()) return(0);
329
330         memset((char *)&server,0,sizeof(server));
331         server.sin_family=AF_INET;
332         server.sin_port=htons((unsigned short)port);
333         if (ip == NULL)
334                 server.sin_addr.s_addr=INADDR_ANY;
335         else
336 /* Added for T3E, address-of fails on bit field (beckman@acl.lanl.gov) */
337 #ifndef BIT_FIELD_LIMITS
338                 memcpy(&server.sin_addr.s_addr,ip,4);
339 #else
340                 memcpy(&server.sin_addr,ip,4);
341 #endif
342         
343                 if (type == SOCK_STREAM)
344                         s=socket(AF_INET,SOCK_STREAM,SOCKET_PROTOCOL);
345                 else /* type == SOCK_DGRAM */
346                         s=socket(AF_INET, SOCK_DGRAM,IPPROTO_UDP);
347
348         if (s == INVALID_SOCKET) goto err;
349 #if defined SOL_SOCKET && defined SO_REUSEADDR
350                 {
351                 int j = 1;
352                 setsockopt(s, SOL_SOCKET, SO_REUSEADDR,
353                            (void *) &j, sizeof j);
354                 }
355 #endif
356         if (bind(s,(struct sockaddr *)&server,sizeof(server)) == -1)
357                 {
358 #ifndef OPENSSL_SYS_WINDOWS
359                 perror("bind");
360 #endif
361                 goto err;
362                 }
363         /* Make it 128 for linux */
364         if (type==SOCK_STREAM && listen(s,128) == -1) goto err;
365         i=0;
366         *sock=s;
367         ret=1;
368 err:
369         if ((ret == 0) && (s != -1))
370                 {
371                 SHUTDOWN(s);
372                 }
373         return(ret);
374         }
375
376 static int init_server(int *sock, int port, int type)
377         {
378         return(init_server_long(sock, port, NULL, type));
379         }
380
381 static int do_accept(int acc_sock, int *sock, char **host)
382         {
383         int ret,i;
384         struct hostent *h1,*h2;
385         static struct sockaddr_in from;
386         int len;
387 /*      struct linger ling; */
388
389         if (!ssl_sock_init()) return(0);
390
391 #ifndef OPENSSL_SYS_WINDOWS
392 redoit:
393 #endif
394
395         memset((char *)&from,0,sizeof(from));
396         len=sizeof(from);
397         /* Note: under VMS with SOCKETSHR the fourth parameter is currently
398          * of type (int *) whereas under other systems it is (void *) if
399          * you don't have a cast it will choke the compiler: if you do
400          * have a cast then you can either go for (int *) or (void *).
401          */
402         ret=accept(acc_sock,(struct sockaddr *)&from,(void *)&len);
403         if (ret == INVALID_SOCKET)
404                 {
405 #if defined(OPENSSL_SYS_WINDOWS) || (defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK))
406                 i=WSAGetLastError();
407                 BIO_printf(bio_err,"accept error %d\n",i);
408 #else
409                 if (errno == EINTR)
410                         {
411                         /*check_timeout(); */
412                         goto redoit;
413                         }
414                 fprintf(stderr,"errno=%d ",errno);
415                 perror("accept");
416 #endif
417                 return(0);
418                 }
419
420 /*
421         ling.l_onoff=1;
422         ling.l_linger=0;
423         i=setsockopt(ret,SOL_SOCKET,SO_LINGER,(char *)&ling,sizeof(ling));
424         if (i < 0) { perror("linger"); return(0); }
425         i=0;
426         i=setsockopt(ret,SOL_SOCKET,SO_KEEPALIVE,(char *)&i,sizeof(i));
427         if (i < 0) { perror("keepalive"); return(0); }
428 */
429
430         if (host == NULL) goto end;
431 #ifndef BIT_FIELD_LIMITS
432         /* I should use WSAAsyncGetHostByName() under windows */
433         h1=gethostbyaddr((char *)&from.sin_addr.s_addr,
434                 sizeof(from.sin_addr.s_addr),AF_INET);
435 #else
436         h1=gethostbyaddr((char *)&from.sin_addr,
437                 sizeof(struct in_addr),AF_INET);
438 #endif
439         if (h1 == NULL)
440                 {
441                 BIO_printf(bio_err,"bad gethostbyaddr\n");
442                 *host=NULL;
443                 /* return(0); */
444                 }
445         else
446                 {
447                 if ((*host=(char *)OPENSSL_malloc(strlen(h1->h_name)+1)) == NULL)
448                         {
449                         perror("OPENSSL_malloc");
450                         return(0);
451                         }
452                 BUF_strlcpy(*host,h1->h_name,strlen(h1->h_name)+1);
453
454                 h2=GetHostByName(*host);
455                 if (h2 == NULL)
456                         {
457                         BIO_printf(bio_err,"gethostbyname failure\n");
458                         return(0);
459                         }
460                 i=0;
461                 if (h2->h_addrtype != AF_INET)
462                         {
463                         BIO_printf(bio_err,"gethostbyname addr is not AF_INET\n");
464                         return(0);
465                         }
466                 }
467 end:
468         *sock=ret;
469         return(1);
470         }
471
472 int extract_host_port(char *str, char **host_ptr, unsigned char *ip,
473              short *port_ptr)
474         {
475         char *h,*p;
476
477         h=str;
478         p=strchr(str,':');
479         if (p == NULL)
480                 {
481                 BIO_printf(bio_err,"no port defined\n");
482                 return(0);
483                 }
484         *(p++)='\0';
485
486         if ((ip != NULL) && !host_ip(str,ip))
487                 goto err;
488         if (host_ptr != NULL) *host_ptr=h;
489
490         if (!extract_port(p,port_ptr))
491                 goto err;
492         return(1);
493 err:
494         return(0);
495         }
496
497 static int host_ip(char *str, unsigned char ip[4])
498         {
499         unsigned int in[4]; 
500         int i;
501
502         if (sscanf(str,"%u.%u.%u.%u",&(in[0]),&(in[1]),&(in[2]),&(in[3])) == 4)
503                 {
504                 for (i=0; i<4; i++)
505                         if (in[i] > 255)
506                                 {
507                                 BIO_printf(bio_err,"invalid IP address\n");
508                                 goto err;
509                                 }
510                 ip[0]=in[0];
511                 ip[1]=in[1];
512                 ip[2]=in[2];
513                 ip[3]=in[3];
514                 }
515         else
516                 { /* do a gethostbyname */
517                 struct hostent *he;
518
519                 if (!ssl_sock_init()) return(0);
520
521                 he=GetHostByName(str);
522                 if (he == NULL)
523                         {
524                         BIO_printf(bio_err,"gethostbyname failure\n");
525                         goto err;
526                         }
527                 /* cast to short because of win16 winsock definition */
528                 if ((short)he->h_addrtype != AF_INET)
529                         {
530                         BIO_printf(bio_err,"gethostbyname addr is not AF_INET\n");
531                         return(0);
532                         }
533                 ip[0]=he->h_addr_list[0][0];
534                 ip[1]=he->h_addr_list[0][1];
535                 ip[2]=he->h_addr_list[0][2];
536                 ip[3]=he->h_addr_list[0][3];
537                 }
538         return(1);
539 err:
540         return(0);
541         }
542
543 int extract_port(char *str, short *port_ptr)
544         {
545         int i;
546         struct servent *s;
547
548         i=atoi(str);
549         if (i != 0)
550                 *port_ptr=(unsigned short)i;
551         else
552                 {
553                 s=getservbyname(str,"tcp");
554                 if (s == NULL)
555                         {
556                         BIO_printf(bio_err,"getservbyname failure for %s\n",str);
557                         return(0);
558                         }
559                 *port_ptr=ntohs((unsigned short)s->s_port);
560                 }
561         return(1);
562         }
563
564 #define GHBN_NUM        4
565 static struct ghbn_cache_st
566         {
567         char name[128];
568         struct hostent ent;
569         unsigned long order;
570         } ghbn_cache[GHBN_NUM];
571
572 static unsigned long ghbn_hits=0L;
573 static unsigned long ghbn_miss=0L;
574
575 static struct hostent *GetHostByName(char *name)
576         {
577         struct hostent *ret;
578         int i,lowi=0;
579         unsigned long low= (unsigned long)-1;
580
581         for (i=0; i<GHBN_NUM; i++)
582                 {
583                 if (low > ghbn_cache[i].order)
584                         {
585                         low=ghbn_cache[i].order;
586                         lowi=i;
587                         }
588                 if (ghbn_cache[i].order > 0)
589                         {
590                         if (strncmp(name,ghbn_cache[i].name,128) == 0)
591                                 break;
592                         }
593                 }
594         if (i == GHBN_NUM) /* no hit*/
595                 {
596                 ghbn_miss++;
597                 ret=gethostbyname(name);
598                 if (ret == NULL) return(NULL);
599                 /* else add to cache */
600                 if(strlen(name) < sizeof ghbn_cache[0].name)
601                         {
602                         strcpy(ghbn_cache[lowi].name,name);
603                         memcpy((char *)&(ghbn_cache[lowi].ent),ret,sizeof(struct hostent));
604                         ghbn_cache[lowi].order=ghbn_miss+ghbn_hits;
605                         }
606                 return(ret);
607                 }
608         else
609                 {
610                 ghbn_hits++;
611                 ret= &(ghbn_cache[i].ent);
612                 ghbn_cache[i].order=ghbn_miss+ghbn_hits;
613                 return(ret);
614                 }
615         }
616
617 #endif