apps/s_socket.c

   1 /* apps/s_socket.c -  socket-related functions used by s_client and s_server */
   2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
   3  * All rights reserved.
   4  *
   5  * This package is an SSL implementation written
   6  * by Eric Young (eay@cryptsoft.com).
   7  * The implementation was written so as to conform with Netscapes SSL.
   8  *
   9  * This library is free for commercial and non-commercial use as long as
  10  * the following conditions are aheared to.  The following conditions
  11  * apply to all code found in this distribution, be it the RC4, RSA,
  12  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
  13  * included with this distribution is covered by the same copyright terms
  14  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
  15  *
  16  * Copyright remains Eric Young's, and as such any Copyright notices in
  17  * the code are not to be removed.
  18  * If this package is used in a product, Eric Young should be given attribution
  19  * as the author of the parts of the library used.
  20  * This can be in the form of a textual message at program startup or
  21  * in documentation (online or textual) provided with the package.
  22  *
  23  * Redistribution and use in source and binary forms, with or without
  24  * modification, are permitted provided that the following conditions
  25  * are met:
  26  * 1. Redistributions of source code must retain the copyright
  27  *    notice, this list of conditions and the following disclaimer.
  28  * 2. Redistributions in binary form must reproduce the above copyright
  29  *    notice, this list of conditions and the following disclaimer in the
  30  *    documentation and/or other materials provided with the distribution.
  31  * 3. All advertising materials mentioning features or use of this software
  32  *    must display the following acknowledgement:
  33  *    "This product includes cryptographic software written by
  34  *     Eric Young (eay@cryptsoft.com)"
  35  *    The word 'cryptographic' can be left out if the rouines from the library
  36  *    being used are not cryptographic related :-).
  37  * 4. If you include any Windows specific code (or a derivative thereof) from
  38  *    the apps directory (application code) you must include an acknowledgement:
  39  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
  40  *
  41  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
  42  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  43  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  44  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  45  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  46  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  47  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  49  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  50  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  51  * SUCH DAMAGE.
  52  *
  53  * The licence and distribution terms for any publically available version or
  54  * derivative of this code cannot be changed.  i.e. this code cannot simply be
  55  * copied and put under another distribution licence
  56  * [including the GNU Public Licence.]
  57  */
  58
  59 #include <stdio.h>
  60 #include <stdlib.h>
  61 #include <string.h>
  62 #include <errno.h>
  63 #include <signal.h>
  64
  65 /* With IPv6, it looks like Digital has mixed up the proper order of
  66    recursive header file inclusion, resulting in the compiler complaining
  67    that u_int isn't defined, but only if _POSIX_C_SOURCE is defined, which
  68    is needed to have fileno() declared correctly...  So let's define u_int */
  69 #if defined(OPENSSL_SYS_VMS_DECC) && !defined(__U_INT)
  70 #define __U_INT
  71 typedef unsigned int u_int;
  72 #endif
  73
  74 #define USE_SOCKETS
  75 #define NON_MAIN
  76 #include "apps.h"
  77 #undef USE_SOCKETS
  78 #undef NON_MAIN
  79 #include "s_apps.h"
  80 #include <openssl/ssl.h>
  81
  82 #ifdef FLAT_INC
  83 #include "e_os.h"
  84 #else
  85 #include "../e_os.h"
  86 #endif
  87
  88 #ifndef OPENSSL_NO_SOCK
  89
  90 #if defined(OPENSSL_SYS_NETWARE) && defined(NETWARE_BSDSOCK)
  91 #include "netdb.h"
  92 #endif
  93
  94 static struct hostent *GetHostByName(char *name);
  95 #if defined(OPENSSL_SYS_WINDOWS) || (defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK))
  96 static void ssl_sock_cleanup(void);
  97 #endif
  98 static int ssl_sock_init(void);
  99 static int init_client_ip(int *sock, const unsigned char ip[4], int port,
 100                           int type);
 101 static int init_server(int *sock, int port, int type);
 102 static int init_server_long(int *sock, int port,char *ip, int type);
 103 static int do_accept(int acc_sock, int *sock, char **host);
 104 static int host_ip(char *str, unsigned char ip[4]);
 105
 106 #ifdef OPENSSL_SYS_WIN16
 107 #define SOCKET_PROTOCOL 0 /* more microsoft stupidity */
 108 #else
 109 #define SOCKET_PROTOCOL IPPROTO_TCP
 110 #endif
 111
 112 #if defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
 113 static int wsa_init_done=0;
 114 #endif
 115
 116 #ifdef OPENSSL_SYS_WINDOWS
 117 static struct WSAData wsa_state;
 118 static int wsa_init_done=0;
 119
 120 #ifdef OPENSSL_SYS_WIN16
 121 static HWND topWnd=0;
 122 static FARPROC lpTopWndProc=NULL;
 123 static FARPROC lpTopHookProc=NULL;
 124 extern HINSTANCE _hInstance;  /* nice global CRT provides */
 125
 126 static LONG FAR PASCAL topHookProc(HWND hwnd, UINT message, WPARAM wParam,
 127              LPARAM lParam)
 128         {
 129         if (hwnd == topWnd)
 130                 {
 131                 switch(message)
 132                         {
 133                 case WM_DESTROY:
 134                 case WM_CLOSE:
 135                         SetWindowLong(topWnd,GWL_WNDPROC,(LONG)lpTopWndProc);
 136                         ssl_sock_cleanup();
 137                         break;
 138                         }
 139                 }
 140         return CallWindowProc(lpTopWndProc,hwnd,message,wParam,lParam);
 141         }
 142
 143 static BOOL CALLBACK enumproc(HWND hwnd,LPARAM lParam)
 144         {
 145         topWnd=hwnd;
 146         return(FALSE);
 147         }
 148
 149 #endif /* OPENSSL_SYS_WIN32 */
 150 #endif /* OPENSSL_SYS_WINDOWS */
 151
 152 #ifdef OPENSSL_SYS_WINDOWS
 153 static void ssl_sock_cleanup(void)
 154         {
 155         if (wsa_init_done)
 156                 {
 157                 wsa_init_done=0;
 158 #ifndef OPENSSL_SYS_WINCE
 159                 WSACancelBlockingCall();
 160 #endif
 161                 WSACleanup();
 162                 }
 163         }
 164 #elif defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
 165 static void sock_cleanup(void)
 166     {
 167     if (wsa_init_done)
 168         {
 169         wsa_init_done=0;
 170                 WSACleanup();
 171                 }
 172         }
 173 #endif
 174
 175 static int ssl_sock_init(void)
 176         {
 177 #ifdef WATT32
 178         extern int _watt_do_exit;
 179         _watt_do_exit = 0;
 180         if (sock_init())
 181                 return (0);
 182 #elif defined(OPENSSL_SYS_WINDOWS)
 183         if (!wsa_init_done)
 184                 {
 185                 int err;
 186
 187 #ifdef SIGINT
 188                 signal(SIGINT,(void (*)(int))ssl_sock_cleanup);
 189 #endif
 190                 wsa_init_done=1;
 191                 memset(&wsa_state,0,sizeof(wsa_state));
 192                 if (WSAStartup(0x0101,&wsa_state)!=0)
 193                         {
 194                         err=WSAGetLastError();
 195                         BIO_printf(bio_err,"unable to start WINSOCK, error code=%d\n",err);
 196                         return(0);
 197                         }
 198
 199 #ifdef OPENSSL_SYS_WIN16
 200                 EnumTaskWindows(GetCurrentTask(),enumproc,0L);
 201                 lpTopWndProc=(FARPROC)GetWindowLong(topWnd,GWL_WNDPROC);
 202                 lpTopHookProc=MakeProcInstance((FARPROC)topHookProc,_hInstance);
 203
 204                 SetWindowLong(topWnd,GWL_WNDPROC,(LONG)lpTopHookProc);
 205 #endif /* OPENSSL_SYS_WIN16 */
 206                 }
 207 #elif defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
 208    WORD wVerReq;
 209    WSADATA wsaData;
 210    int err;
 211
 212    if (!wsa_init_done)
 213       {
 214
 215 # ifdef SIGINT
 216       signal(SIGINT,(void (*)(int))sock_cleanup);
 217 # endif
 218
 219       wsa_init_done=1;
 220       wVerReq = MAKEWORD( 2, 0 );
 221       err = WSAStartup(wVerReq,&wsaData);
 222       if (err != 0)
 223          {
 224          BIO_printf(bio_err,"unable to start WINSOCK2, error code=%d\n",err);
 225          return(0);
 226          }
 227       }
 228 #endif /* OPENSSL_SYS_WINDOWS */
 229         return(1);
 230         }
 231
 232 int init_client(int *sock, char *host, int port, int type)
 233         {
 234         unsigned char ip[4];
 235
 236         ip[0] = ip[1] = ip[2] = ip[3] = 0;
 237         if (!host_ip(host,&(ip[0])))
 238                 return 0;
 239         return init_client_ip(sock,ip,port,type);
 240         }
 241
 242 static int init_client_ip(int *sock, const unsigned char ip[4], int port,
 243                           int type)
 244         {
 245         unsigned long addr;
 246         struct sockaddr_in them;
 247         int s,i;
 248
 249         if (!ssl_sock_init()) return(0);
 250
 251         memset((char *)&them,0,sizeof(them));
 252         them.sin_family=AF_INET;
 253         them.sin_port=htons((unsigned short)port);
 254         addr=(unsigned long)
 255                 ((unsigned long)ip[0]<<24L)|
 256                 ((unsigned long)ip[1]<<16L)|
 257                 ((unsigned long)ip[2]<< 8L)|
 258                 ((unsigned long)ip[3]);
 259         them.sin_addr.s_addr=htonl(addr);
 260
 261         if (type == SOCK_STREAM)
 262                 s=socket(AF_INET,SOCK_STREAM,SOCKET_PROTOCOL);
 263         else /* ( type == SOCK_DGRAM) */
 264                 s=socket(AF_INET,SOCK_DGRAM,IPPROTO_UDP);
 265
 266         if (s == INVALID_SOCKET) { perror("socket"); return(0); }
 267
 268 #if defined(SO_KEEPALIVE) && !defined(OPENSSL_SYS_MPE)
 269         if (type == SOCK_STREAM)
 270                 {
 271                 i=0;
 272                 i=setsockopt(s,SOL_SOCKET,SO_KEEPALIVE,(char *)&i,sizeof(i));
 273                 if (i < 0) { perror("keepalive"); return(0); }
 274                 }
 275 #endif
 276
 277         if (connect(s,(struct sockaddr *)&them,sizeof(them)) == -1)
 278                 { closesocket(s); perror("connect"); return(0); }
 279         *sock=s;
 280         return(1);
 281         }
 282
 283 int do_server(int port, int type, int *ret, int (*cb)(char *hostname, int s, int stype, unsigned char *context), unsigned char *context, int naccept)
 284         {
 285         int sock;
 286         char *name = NULL;
 287         int accept_socket = 0;
 288         int i;
 289
 290         if (!init_server(&accept_socket,port,type)) return(0);
 291
 292         if (ret != NULL)
 293                 {
 294                 *ret=accept_socket;
 295                 /* return(1);*/
 296                 }
 297         for (;;)
 298                 {
 299                 if (type==SOCK_STREAM)
 300                         {
 301 #ifdef OPENSSL_SSL_DEBUG_BROKEN_PROTOCOL
 302                         if (do_accept(accept_socket,&sock,NULL) == 0)
 303 #else
 304                         if (do_accept(accept_socket,&sock,&name) == 0)
 305 #endif
 306                                 {
 307                                 SHUTDOWN(accept_socket);
 308                                 return(0);
 309                                 }
 310                         }
 311                 else
 312                         sock = accept_socket;
 313                 i=(*cb)(name,sock, type, context);
 314                 if (name != NULL) OPENSSL_free(name);
 315                 if (type==SOCK_STREAM)
 316                         SHUTDOWN2(sock);
 317                 if (naccept != -1)
 318                         naccept--;
 319                 if (i < 0 || naccept == 0)
 320                         {
 321                         SHUTDOWN2(accept_socket);
 322                         return(i);
 323                         }
 324                 }
 325         }
 326
 327 static int init_server_long(int *sock, int port, char *ip, int type)
 328         {
 329         int ret=0;
 330         struct sockaddr_in server;
 331         int s= -1;
 332
 333         if (!ssl_sock_init()) return(0);
 334
 335         memset((char *)&server,0,sizeof(server));
 336         server.sin_family=AF_INET;
 337         server.sin_port=htons((unsigned short)port);
 338         if (ip == NULL)
 339                 server.sin_addr.s_addr=INADDR_ANY;
 340         else
 341 /* Added for T3E, address-of fails on bit field (beckman@acl.lanl.gov) */
 342 #ifndef BIT_FIELD_LIMITS
 343                 memcpy(&server.sin_addr.s_addr,ip,4);
 344 #else
 345                 memcpy(&server.sin_addr,ip,4);
 346 #endif
 347
 348                 if (type == SOCK_STREAM)
 349                         s=socket(AF_INET,SOCK_STREAM,SOCKET_PROTOCOL);
 350                 else /* type == SOCK_DGRAM */
 351                         s=socket(AF_INET, SOCK_DGRAM,IPPROTO_UDP);
 352
 353         if (s == INVALID_SOCKET) goto err;
 354 #if defined SOL_SOCKET && defined SO_REUSEADDR
 355                 {
 356                 int j = 1;
 357                 setsockopt(s, SOL_SOCKET, SO_REUSEADDR,
 358                            (void *) &j, sizeof j);
 359                 }
 360 #endif
 361         if (bind(s,(struct sockaddr *)&server,sizeof(server)) == -1)
 362                 {
 363 #ifndef OPENSSL_SYS_WINDOWS
 364                 perror("bind");
 365 #endif
 366                 goto err;
 367                 }
 368         /* Make it 128 for linux */
 369         if (type==SOCK_STREAM && listen(s,128) == -1) goto err;
 370         *sock=s;
 371         ret=1;
 372 err:
 373         if ((ret == 0) && (s != -1))
 374                 {
 375                 SHUTDOWN(s);
 376                 }
 377         return(ret);
 378         }
 379
 380 static int init_server(int *sock, int port, int type)
 381         {
 382         return(init_server_long(sock, port, NULL, type));
 383         }
 384
 385 static int do_accept(int acc_sock, int *sock, char **host)
 386         {
 387         int ret;
 388         struct hostent *h1,*h2;
 389         static struct sockaddr_in from;
 390         int len;
 391 /*      struct linger ling; */
 392
 393         if (!ssl_sock_init()) return(0);
 394
 395 #ifndef OPENSSL_SYS_WINDOWS
 396 redoit:
 397 #endif
 398
 399         memset((char *)&from,0,sizeof(from));
 400         len=sizeof(from);
 401         /* Note: under VMS with SOCKETSHR the fourth parameter is currently
 402          * of type (int *) whereas under other systems it is (void *) if
 403          * you don't have a cast it will choke the compiler: if you do
 404          * have a cast then you can either go for (int *) or (void *).
 405          */
 406         ret=accept(acc_sock,(struct sockaddr *)&from,(void *)&len);
 407         if (ret == INVALID_SOCKET)
 408                 {
 409 #if defined(OPENSSL_SYS_WINDOWS) || (defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK))
 410                 int i;
 411                 i=WSAGetLastError();
 412                 BIO_printf(bio_err,"accept error %d\n",i);
 413 #else
 414                 if (errno == EINTR)
 415                         {
 416                         /*check_timeout(); */
 417                         goto redoit;
 418                         }
 419                 fprintf(stderr,"errno=%d ",errno);
 420                 perror("accept");
 421 #endif
 422                 return(0);
 423                 }
 424
 425 /*
 426         ling.l_onoff=1;
 427         ling.l_linger=0;
 428         i=setsockopt(ret,SOL_SOCKET,SO_LINGER,(char *)&ling,sizeof(ling));
 429         if (i < 0) { perror("linger"); return(0); }
 430         i=0;
 431         i=setsockopt(ret,SOL_SOCKET,SO_KEEPALIVE,(char *)&i,sizeof(i));
 432         if (i < 0) { perror("keepalive"); return(0); }
 433 */
 434
 435         if (host == NULL) goto end;
 436 #ifndef BIT_FIELD_LIMITS
 437         /* I should use WSAAsyncGetHostByName() under windows */
 438         h1=gethostbyaddr((char *)&from.sin_addr.s_addr,
 439                 sizeof(from.sin_addr.s_addr),AF_INET);
 440 #else
 441         h1=gethostbyaddr((char *)&from.sin_addr,
 442                 sizeof(struct in_addr),AF_INET);
 443 #endif
 444         if (h1 == NULL)
 445                 {
 446                 BIO_printf(bio_err,"bad gethostbyaddr\n");
 447                 *host=NULL;
 448                 /* return(0); */
 449                 }
 450         else
 451                 {
 452                 if ((*host=(char *)OPENSSL_malloc(strlen(h1->h_name)+1)) == NULL)
 453                         {
 454                         perror("OPENSSL_malloc");
 455                         return(0);
 456                         }
 457                 BUF_strlcpy(*host,h1->h_name,strlen(h1->h_name)+1);
 458
 459                 h2=GetHostByName(*host);
 460                 if (h2 == NULL)
 461                         {
 462                         BIO_printf(bio_err,"gethostbyname failure\n");
 463                         return(0);
 464                         }
 465                 if (h2->h_addrtype != AF_INET)
 466                         {
 467                         BIO_printf(bio_err,"gethostbyname addr is not AF_INET\n");
 468                         return(0);
 469                         }
 470                 }
 471 end:
 472         *sock=ret;
 473         return(1);
 474         }
 475
 476 int extract_host_port(char *str, char **host_ptr, unsigned char *ip,
 477              short *port_ptr)
 478         {
 479         char *h,*p;
 480
 481         h=str;
 482         p=strchr(str,':');
 483         if (p == NULL)
 484                 {
 485                 BIO_printf(bio_err,"no port defined\n");
 486                 return(0);
 487                 }
 488         *(p++)='\0';
 489
 490         if ((ip != NULL) && !host_ip(str,ip))
 491                 goto err;
 492         if (host_ptr != NULL) *host_ptr=h;
 493
 494         if (!extract_port(p,port_ptr))
 495                 goto err;
 496         return(1);
 497 err:
 498         return(0);
 499         }
 500
 501 static int host_ip(char *str, unsigned char ip[4])
 502         {
 503         unsigned int in[4];
 504         int i;
 505
 506         if (sscanf(str,"%u.%u.%u.%u",&(in[0]),&(in[1]),&(in[2]),&(in[3])) == 4)
 507                 {
 508                 for (i=0; i<4; i++)
 509                         if (in[i] > 255)
 510                                 {
 511                                 BIO_printf(bio_err,"invalid IP address\n");
 512                                 goto err;
 513                                 }
 514                 ip[0]=in[0];
 515                 ip[1]=in[1];
 516                 ip[2]=in[2];
 517                 ip[3]=in[3];
 518                 }
 519         else
 520                 { /* do a gethostbyname */
 521                 struct hostent *he;
 522
 523                 if (!ssl_sock_init()) return(0);
 524
 525                 he=GetHostByName(str);
 526                 if (he == NULL)
 527                         {
 528                         BIO_printf(bio_err,"gethostbyname failure\n");
 529                         goto err;
 530                         }
 531                 /* cast to short because of win16 winsock definition */
 532                 if ((short)he->h_addrtype != AF_INET)
 533                         {
 534                         BIO_printf(bio_err,"gethostbyname addr is not AF_INET\n");
 535                         return(0);
 536                         }
 537                 ip[0]=he->h_addr_list[0][0];
 538                 ip[1]=he->h_addr_list[0][1];
 539                 ip[2]=he->h_addr_list[0][2];
 540                 ip[3]=he->h_addr_list[0][3];
 541                 }
 542         return(1);
 543 err:
 544         return(0);
 545         }
 546
 547 int extract_port(char *str, short *port_ptr)
 548         {
 549         int i;
 550         struct servent *s;
 551
 552         i=atoi(str);
 553         if (i != 0)
 554                 *port_ptr=(unsigned short)i;
 555         else
 556                 {
 557                 s=getservbyname(str,"tcp");
 558                 if (s == NULL)
 559                         {
 560                         BIO_printf(bio_err,"getservbyname failure for %s\n",str);
 561                         return(0);
 562                         }
 563                 *port_ptr=ntohs((unsigned short)s->s_port);
 564                 }
 565         return(1);
 566         }
 567
 568 #define GHBN_NUM        4
 569 static struct ghbn_cache_st
 570         {
 571         char name[128];
 572         struct hostent ent;
 573         unsigned long order;
 574         } ghbn_cache[GHBN_NUM];
 575
 576 static unsigned long ghbn_hits=0L;
 577 static unsigned long ghbn_miss=0L;
 578
 579 static struct hostent *GetHostByName(char *name)
 580         {
 581         struct hostent *ret;
 582         int i,lowi=0;
 583         unsigned long low= (unsigned long)-1;
 584
 585         for (i=0; i<GHBN_NUM; i++)
 586                 {
 587                 if (low > ghbn_cache[i].order)
 588                         {
 589                         low=ghbn_cache[i].order;
 590                         lowi=i;
 591                         }
 592                 if (ghbn_cache[i].order > 0)
 593                         {
 594                         if (strncmp(name,ghbn_cache[i].name,128) == 0)
 595                                 break;
 596                         }
 597                 }
 598         if (i == GHBN_NUM) /* no hit*/
 599                 {
 600                 ghbn_miss++;
 601                 ret=gethostbyname(name);
 602                 if (ret == NULL) return(NULL);
 603                 /* else add to cache */
 604                 if(strlen(name) < sizeof ghbn_cache[0].name)
 605                         {
 606                         strcpy(ghbn_cache[lowi].name,name);
 607                         memcpy((char *)&(ghbn_cache[lowi].ent),ret,sizeof(struct hostent));
 608                         ghbn_cache[lowi].order=ghbn_miss+ghbn_hits;
 609                         }
 610                 return(ret);
 611                 }
 612         else
 613                 {
 614                 ghbn_hits++;
 615                 ret= &(ghbn_cache[i].ent);
 616                 ghbn_cache[i].order=ghbn_miss+ghbn_hits;
 617                 return(ret);
 618                 }
 619         }
 620
 621 #endif