1 /* crypto/bio/b_sock.c */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
5 * This package is an SSL implementation written
6 * by Eric Young (eay@cryptsoft.com).
7 * The implementation was written so as to conform with Netscapes SSL.
9 * This library is free for commercial and non-commercial use as long as
10 * the following conditions are aheared to. The following conditions
11 * apply to all code found in this distribution, be it the RC4, RSA,
12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
13 * included with this distribution is covered by the same copyright terms
14 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
16 * Copyright remains Eric Young's, and as such any Copyright notices in
17 * the code are not to be removed.
18 * If this package is used in a product, Eric Young should be given attribution
19 * as the author of the parts of the library used.
20 * This can be in the form of a textual message at program startup or
21 * in documentation (online or textual) provided with the package.
23 * Redistribution and use in source and binary forms, with or without
24 * modification, are permitted provided that the following conditions
26 * 1. Redistributions of source code must retain the copyright
27 * notice, this list of conditions and the following disclaimer.
28 * 2. Redistributions in binary form must reproduce the above copyright
29 * notice, this list of conditions and the following disclaimer in the
30 * documentation and/or other materials provided with the distribution.
31 * 3. All advertising materials mentioning features or use of this software
32 * must display the following acknowledgement:
33 * "This product includes cryptographic software written by
34 * Eric Young (eay@cryptsoft.com)"
35 * The word 'cryptographic' can be left out if the rouines from the library
36 * being used are not cryptographic related :-).
37 * 4. If you include any Windows specific code (or a derivative thereof) from
38 * the apps directory (application code) you must include an acknowledgement:
39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
53 * The licence and distribution terms for any publically available version or
54 * derivative of this code cannot be changed. i.e. this code cannot simply be
55 * copied and put under another distribution licence
56 * [including the GNU Public Licence.]
64 #include <openssl/bio.h>
65 #if defined(OPENSSL_SYS_NETWARE) && defined(NETWARE_BSDSOCK)
67 #if defined(NETWARE_CLIB)
68 #include <sys/ioctl.h>
73 #ifndef OPENSSL_NO_SOCK
75 #include <openssl/dso.h>
77 #define SOCKET_PROTOCOL IPPROTO_TCP
80 #define MAX_LISTEN SO_MAXCONN
81 #elif defined(SOMAXCONN)
82 #define MAX_LISTEN SOMAXCONN
87 #if defined(OPENSSL_SYS_WINDOWS) || (defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK))
88 static int wsa_init_done=0;
92 * WSAAPI specifier is required to make indirect calls to run-time
93 * linked WinSock 2 functions used in this module, to be specific
94 * [get|free]addrinfo and getnameinfo. This is because WinSock uses
95 * uses non-C calling convention, __stdcall vs. __cdecl, on x86
96 * Windows. On non-WinSock platforms WSAAPI needs to be void.
103 static unsigned long BIO_ghbn_hits=0L;
104 static unsigned long BIO_ghbn_miss=0L;
107 static struct ghbn_cache_st
112 } ghbn_cache[GHBN_NUM];
115 static int get_ip(const char *str,unsigned char *ip);
117 static void ghbn_free(struct hostent *a);
118 static struct hostent *ghbn_dup(struct hostent *a);
120 int BIO_get_host_ip(const char *str, unsigned char *ip)
130 BIOerr(BIO_F_BIO_GET_HOST_IP,BIO_R_INVALID_IP_ADDRESS);
134 /* At this point, we have something that is most probably correct
135 in some way, so let's init the socket. */
136 if (BIO_sock_init() != 1)
137 return 0; /* don't generate another error code here */
139 /* If the string actually contained an IP address, we need not do
141 if (i > 0) return(1);
143 /* do a gethostbyname */
144 CRYPTO_w_lock(CRYPTO_LOCK_GETHOSTBYNAME);
146 he=BIO_gethostbyname(str);
149 BIOerr(BIO_F_BIO_GET_HOST_IP,BIO_R_BAD_HOSTNAME_LOOKUP);
153 /* cast to short because of win16 winsock definition */
154 if ((short)he->h_addrtype != AF_INET)
156 BIOerr(BIO_F_BIO_GET_HOST_IP,BIO_R_GETHOSTBYNAME_ADDR_IS_NOT_AF_INET);
160 ip[i]=he->h_addr_list[0][i];
165 CRYPTO_w_unlock(CRYPTO_LOCK_GETHOSTBYNAME);
168 ERR_add_error_data(2,"host=",str);
175 int BIO_get_port(const char *str, unsigned short *port_ptr)
182 BIOerr(BIO_F_BIO_GET_PORT,BIO_R_NO_PORT_DEFINED);
187 *port_ptr=(unsigned short)i;
190 CRYPTO_w_lock(CRYPTO_LOCK_GETSERVBYNAME);
191 /* Note: under VMS with SOCKETSHR, it seems like the first
192 * parameter is 'char *', instead of 'const char *'
195 s=getservbyname((char *)str,"tcp");
197 s=getservbyname(str,"tcp");
200 *port_ptr=ntohs((unsigned short)s->s_port);
201 CRYPTO_w_unlock(CRYPTO_LOCK_GETSERVBYNAME);
204 if (strcmp(str,"http") == 0)
206 else if (strcmp(str,"telnet") == 0)
208 else if (strcmp(str,"socks") == 0)
210 else if (strcmp(str,"https") == 0)
212 else if (strcmp(str,"ssl") == 0)
214 else if (strcmp(str,"ftp") == 0)
216 else if (strcmp(str,"gopher") == 0)
219 else if (strcmp(str,"wais") == 0)
224 SYSerr(SYS_F_GETSERVBYNAME,get_last_socket_error());
225 ERR_add_error_data(3,"service='",str,"'");
233 int BIO_sock_error(int sock)
238 #if defined(OPENSSL_SYS_BEOS_R5)
243 /* Note: under Windows the third parameter is of type (char *)
244 * whereas under other systems it is (void *) if you don't have
245 * a cast it will choke the compiler: if you do have a cast then
246 * you can either go for (char *) or (void *).
248 i=getsockopt(sock,SOL_SOCKET,SO_ERROR,(void *)&j,(void *)&size);
256 long BIO_ghbn_ctrl(int cmd, int iarg, char *parg)
263 case BIO_GHBN_CTRL_HITS:
264 return(BIO_ghbn_hits);
266 case BIO_GHBN_CTRL_MISSES:
267 return(BIO_ghbn_miss);
269 case BIO_GHBN_CTRL_CACHE_SIZE:
272 case BIO_GHBN_CTRL_GET_ENTRY:
273 if ((iarg >= 0) && (iarg <GHBN_NUM) &&
274 (ghbn_cache[iarg].order > 0))
277 if (p == NULL) return(0);
278 *p=ghbn_cache[iarg].name;
279 ghbn_cache[iarg].name[128]='\0';
284 case BIO_GHBN_CTRL_FLUSH:
285 for (i=0; i<GHBN_NUM; i++)
286 ghbn_cache[i].order=0;
296 static struct hostent *ghbn_dup(struct hostent *a)
302 ret=(struct hostent *)OPENSSL_malloc(sizeof(struct hostent));
303 if (ret == NULL) return(NULL);
304 memset(ret,0,sizeof(struct hostent));
306 for (i=0; a->h_aliases[i] != NULL; i++)
309 ret->h_aliases = (char **)OPENSSL_malloc(i*sizeof(char *));
310 if (ret->h_aliases == NULL)
312 memset(ret->h_aliases, 0, i*sizeof(char *));
314 for (i=0; a->h_addr_list[i] != NULL; i++)
317 ret->h_addr_list=(char **)OPENSSL_malloc(i*sizeof(char *));
318 if (ret->h_addr_list == NULL)
320 memset(ret->h_addr_list, 0, i*sizeof(char *));
322 j=strlen(a->h_name)+1;
323 if ((ret->h_name=OPENSSL_malloc(j)) == NULL) goto err;
324 memcpy((char *)ret->h_name,a->h_name,j);
325 for (i=0; a->h_aliases[i] != NULL; i++)
327 j=strlen(a->h_aliases[i])+1;
328 if ((ret->h_aliases[i]=OPENSSL_malloc(j)) == NULL) goto err;
329 memcpy(ret->h_aliases[i],a->h_aliases[i],j);
331 ret->h_length=a->h_length;
332 ret->h_addrtype=a->h_addrtype;
333 for (i=0; a->h_addr_list[i] != NULL; i++)
335 if ((ret->h_addr_list[i]=OPENSSL_malloc(a->h_length)) == NULL)
337 memcpy(ret->h_addr_list[i],a->h_addr_list[i],a->h_length);
350 static void ghbn_free(struct hostent *a)
357 if (a->h_aliases != NULL)
359 for (i=0; a->h_aliases[i] != NULL; i++)
360 OPENSSL_free(a->h_aliases[i]);
361 OPENSSL_free(a->h_aliases);
363 if (a->h_addr_list != NULL)
365 for (i=0; a->h_addr_list[i] != NULL; i++)
366 OPENSSL_free(a->h_addr_list[i]);
367 OPENSSL_free(a->h_addr_list);
369 if (a->h_name != NULL) OPENSSL_free(a->h_name);
375 struct hostent *BIO_gethostbyname(const char *name)
378 /* Caching gethostbyname() results forever is wrong,
379 * so we have to let the true gethostbyname() worry about this */
380 #if (defined(NETWARE_BSDSOCK) && !defined(__NOVELL_LIBC__))
381 return gethostbyname((char*)name);
383 return gethostbyname(name);
388 unsigned long low= (unsigned long)-1;
392 /* It doesn't make sense to use locking here: The function interface
393 * is not thread-safe, because threads can never be sure when
394 * some other thread destroys the data they were given a pointer to.
396 CRYPTO_w_lock(CRYPTO_LOCK_GETHOSTBYNAME);
401 for (i=0; i<GHBN_NUM; i++)
403 if (low > ghbn_cache[i].order)
405 low=ghbn_cache[i].order;
408 if (ghbn_cache[i].order > 0)
410 if (strncmp(name,ghbn_cache[i].name,128) == 0)
418 if (i == GHBN_NUM) /* no hit*/
421 /* Note: under VMS with SOCKETSHR, it seems like the first
422 * parameter is 'char *', instead of 'const char *'
424 # ifndef CONST_STRICT
425 ret=gethostbyname((char *)name);
427 ret=gethostbyname(name);
432 if (j > 128) /* too big to cache */
435 /* If we were trying to make this function thread-safe (which
436 * is bound to fail), we'd have to give up in this case
437 * (or allocate more memory). */
443 /* else add to cache */
444 if (ghbn_cache[lowi].ent != NULL)
445 ghbn_free(ghbn_cache[lowi].ent); /* XXX not thread-safe */
446 ghbn_cache[lowi].name[0] = '\0';
448 if((ret=ghbn_cache[lowi].ent=ghbn_dup(ret)) == NULL)
450 BIOerr(BIO_F_BIO_GETHOSTBYNAME,ERR_R_MALLOC_FAILURE);
453 strncpy(ghbn_cache[lowi].name,name,128);
454 ghbn_cache[lowi].order=BIO_ghbn_miss+BIO_ghbn_hits;
459 ret= ghbn_cache[i].ent;
460 ghbn_cache[i].order=BIO_ghbn_miss+BIO_ghbn_hits;
464 CRYPTO_w_unlock(CRYPTO_LOCK_GETHOSTBYNAME);
471 int BIO_sock_init(void)
473 #ifdef OPENSSL_SYS_WINDOWS
474 static struct WSAData wsa_state;
481 memset(&wsa_state,0,sizeof(wsa_state));
482 /* Not making wsa_state available to the rest of the
483 * code is formally wrong. But the structures we use
484 * are [beleived to be] invariable among Winsock DLLs,
485 * while API availability is [expected to be] probed
486 * at run-time with DSO_global_lookup. */
487 if (WSAStartup(0x0202,&wsa_state)!=0)
489 err=WSAGetLastError();
490 SYSerr(SYS_F_WSASTARTUP,err);
491 BIOerr(BIO_F_BIO_SOCK_INIT,BIO_R_WSASTARTUP);
495 #endif /* OPENSSL_SYS_WINDOWS */
497 extern int _watt_do_exit;
498 _watt_do_exit = 0; /* don't make sock_init() call exit() */
503 #if defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
511 wVerReq = MAKEWORD( 2, 0 );
512 err = WSAStartup(wVerReq,&wsaData);
515 SYSerr(SYS_F_WSASTARTUP,err);
516 BIOerr(BIO_F_BIO_SOCK_INIT,BIO_R_WSASTARTUP);
525 void BIO_sock_cleanup(void)
527 #ifdef OPENSSL_SYS_WINDOWS
531 #if 0 /* this call is claimed to be non-present in Winsock2 */
532 WSACancelBlockingCall();
536 #elif defined(OPENSSL_SYS_NETWARE) && !defined(NETWARE_BSDSOCK)
545 #if !defined(OPENSSL_SYS_VMS) || __VMS_VER >= 70000000
547 int BIO_socket_ioctl(int fd, long type, void *arg)
552 i=ioctlsocket(fd,type,(char *)arg);
554 i=ioctlsocket(fd,type,arg);
555 #endif /* __DJGPP__ */
557 SYSerr(SYS_F_IOCTLSOCKET,get_last_socket_error());
560 #endif /* __VMS_VER */
562 /* The reason I have implemented this instead of using sscanf is because
563 * Visual C 1.52c gives an unresolved external when linking a DLL :-( */
564 static int get_ip(const char *str, unsigned char ip[4])
569 tmp[0]=tmp[1]=tmp[2]=tmp[3]=0;
574 if ((c >= '0') && (c <= '9'))
577 tmp[num]=tmp[num]*10+c-'0';
578 if (tmp[num] > 255) return(0);
583 if (num == 3) return(0);
587 else if (c == '\0' && (num == 3) && ok)
599 int BIO_get_accept_socket(char *host, int bind_mode)
604 struct sockaddr_in sa_in;
606 struct sockaddr_in6 sa_in6;
609 int s=INVALID_SOCKET,cs;
617 if (BIO_sock_init() != 1) return(INVALID_SOCKET);
619 if ((str=BUF_strdup(host)) == NULL) return(INVALID_SOCKET);
635 if (p) *p++='\0'; /* points at last ':', '::port' is special [see below] */
640 static union { void *p;
641 int (WSAAPI *f)(const char *,const char *,
642 const struct addrinfo *,
644 } p_getaddrinfo = {NULL};
645 static union { void *p;
646 void (WSAAPI *f)(struct addrinfo *);
647 } p_freeaddrinfo = {NULL};
648 struct addrinfo *res,hint;
650 if (p_getaddrinfo.p==NULL)
652 if ((p_getaddrinfo.p=DSO_global_lookup("getaddrinfo"))==NULL ||
653 (p_freeaddrinfo.p=DSO_global_lookup("freeaddrinfo"))==NULL)
654 p_getaddrinfo.p=(void*)-1;
656 if (p_getaddrinfo.p==(void *)-1) break;
658 /* '::port' enforces IPv6 wildcard listener. Some OSes,
659 * e.g. Solaris, default to IPv6 without any hint. Also
660 * note that commonly IPv6 wildchard socket can service
661 * IPv4 connections just as well... */
662 memset(&hint,0,sizeof(hint));
667 if (h[1]=='\0') h=NULL;
669 hint.ai_family = AF_INET6;
674 else if (h[0]=='*' && h[1]=='\0')
678 if ((*p_getaddrinfo.f)(h,p,&hint,&res)) break;
680 memcpy(&server, res->ai_addr,
681 res->ai_addrlen<=sizeof(server)?res->ai_addrlen:sizeof(server));
683 (*p_freeaddrinfo.f)(res);
688 if (!BIO_get_port(p,&port)) goto err;
690 memset((char *)&server,0,sizeof(server));
691 server.sa_in.sin_family=AF_INET;
692 server.sa_in.sin_port=htons(port);
694 if (h == NULL || strcmp(h,"*") == 0)
695 server.sa_in.sin_addr.s_addr=INADDR_ANY;
698 if (!BIO_get_host_ip(h,&(ip[0]))) goto err;
700 ((unsigned long)ip[0]<<24L)|
701 ((unsigned long)ip[1]<<16L)|
702 ((unsigned long)ip[2]<< 8L)|
703 ((unsigned long)ip[3]);
704 server.sa_in.sin_addr.s_addr=htonl(l);
708 s=socket(server.sa.sa_family,SOCK_STREAM,SOCKET_PROTOCOL);
709 if (s == INVALID_SOCKET)
711 SYSerr(SYS_F_SOCKET,get_last_socket_error());
712 ERR_add_error_data(3,"port='",host,"'");
713 BIOerr(BIO_F_BIO_GET_ACCEPT_SOCKET,BIO_R_UNABLE_TO_CREATE_SOCKET);
718 if (bind_mode == BIO_BIND_REUSEADDR)
722 ret=setsockopt(s,SOL_SOCKET,SO_REUSEADDR,(char *)&i,sizeof(i));
723 bind_mode=BIO_BIND_NORMAL;
726 if (bind(s,&server.sa,sizeof(server)) == -1)
729 err_num=get_last_socket_error();
730 if ((bind_mode == BIO_BIND_REUSEADDR_IF_UNUSED) &&
731 (err_num == EADDRINUSE))
734 if (h == NULL || strcmp(h,"*") == 0)
737 if (client.sa.sa_family == AF_INET6)
739 memset(&client.sa_in6.sin6_addr,0,sizeof(client.sa_in6.sin6_addr));
740 client.sa_in6.sin6_addr.s6_addr[15]=1;
744 if (client.sa.sa_family == AF_INET)
746 client.sa_in.sin_addr.s_addr=htonl(0x7F000001);
750 cs=socket(client.sa.sa_family,SOCK_STREAM,SOCKET_PROTOCOL);
751 if (cs != INVALID_SOCKET)
754 ii=connect(cs,&client.sa,sizeof(client));
756 if (ii == INVALID_SOCKET)
758 bind_mode=BIO_BIND_REUSEADDR;
767 SYSerr(SYS_F_BIND,err_num);
768 ERR_add_error_data(3,"port='",host,"'");
769 BIOerr(BIO_F_BIO_GET_ACCEPT_SOCKET,BIO_R_UNABLE_TO_BIND_SOCKET);
772 if (listen(s,MAX_LISTEN) == -1)
774 SYSerr(SYS_F_BIND,get_last_socket_error());
775 ERR_add_error_data(3,"port='",host,"'");
776 BIOerr(BIO_F_BIO_GET_ACCEPT_SOCKET,BIO_R_UNABLE_TO_LISTEN_SOCKET);
781 if (str != NULL) OPENSSL_free(str);
782 if ((ret == 0) && (s != INVALID_SOCKET))
790 int BIO_accept(int sock, char **addr)
792 int ret=INVALID_SOCKET;
799 * As for following union. Trouble is that there are platforms
800 * that have socklen_t and there are platforms that don't, on
801 * some platforms socklen_t is int and on some size_t. So what
802 * one can do? One can cook #ifdef spaghetti, which is nothing
803 * but masochistic. Or one can do union between int and size_t.
804 * One naturally does it primarily for 64-bit platforms where
805 * sizeof(int) != sizeof(size_t). But would it work? Note that
806 * if size_t member is initialized to 0, then later int member
807 * assignment naturally does the job on little-endian platforms
808 * regardless accept's expectations! What about big-endians?
809 * If accept expects int*, then it works, and if size_t*, then
810 * length value would appear as unreasonably large. But this
811 * won't prevent it from filling in the address structure. The
812 * trouble of course would be if accept returns more data than
813 * actual buffer can accomodate and overwrite stack... That's
814 * where early OPENSSL_assert comes into picture. Besides, the
815 * only 64-bit big-endian platform found so far that expects
816 * size_t* is HP-UX, where stack grows towards higher address.
819 union { size_t s; int i; } len;
822 struct sockaddr_in sa_in;
824 struct sockaddr_in6 sa_in6;
830 sa.len.i=sizeof(sa.from);
831 memset(&sa.from,0,sizeof(sa.from));
832 ret=accept(sock,&sa.from.sa,(void *)&sa.len);
833 if (sizeof(sa.len.i)!=sizeof(sa.len.s) && sa.len.i==0)
835 OPENSSL_assert(sa.len.s<=sizeof(sa.from));
836 sa.len.i = (int)sa.len.s;
837 /* use sa.len.i from this point */
839 if (ret == INVALID_SOCKET)
841 if(BIO_sock_should_retry(ret)) return -2;
842 SYSerr(SYS_F_ACCEPT,get_last_socket_error());
843 BIOerr(BIO_F_BIO_ACCEPT,BIO_R_ACCEPT_ERROR);
847 if (addr == NULL) goto end;
851 char h[NI_MAXHOST],s[NI_MAXSERV];
853 static union { void *p;
854 int (WSAAPI *f)(const struct sockaddr *,size_t/*socklen_t*/,
855 char *,size_t,char *,size_t,int);
856 } p_getnameinfo = {NULL};
857 /* 2nd argument to getnameinfo is specified to
858 * be socklen_t. Unfortunately there is a number
859 * of environments where socklen_t is not defined.
860 * As it's passed by value, it's safe to pass it
861 * as size_t... <appro> */
863 if (p_getnameinfo.p==NULL)
865 if ((p_getnameinfo.p=DSO_global_lookup("getnameinfo"))==NULL)
866 p_getnameinfo.p=(void*)-1;
868 if (p_getnameinfo.p==(void *)-1) break;
870 if ((*p_getnameinfo.f)(&sa.from.sa,sa.len.i,h,sizeof(h),s,sizeof(s),
871 NI_NUMERICHOST|NI_NUMERICSERV)) break;
872 nl = strlen(h)+strlen(s)+2;
874 if (p) { *p = '\0'; p = OPENSSL_realloc(p,nl); }
875 else { p = OPENSSL_malloc(nl); }
878 BIOerr(BIO_F_BIO_ACCEPT,ERR_R_MALLOC_FAILURE);
882 BIO_snprintf(*addr,nl,"%s:%s",h,s);
886 if (sa.from.sa.sa_family != AF_INET) goto end;
887 l=ntohl(sa.from.sa_in.sin_addr.s_addr);
888 port=ntohs(sa.from.sa_in.sin_port);
891 if ((p=OPENSSL_malloc(24)) == NULL)
893 BIOerr(BIO_F_BIO_ACCEPT,ERR_R_MALLOC_FAILURE);
898 BIO_snprintf(*addr,24,"%d.%d.%d.%d:%d",
899 (unsigned char)(l>>24L)&0xff,
900 (unsigned char)(l>>16L)&0xff,
901 (unsigned char)(l>> 8L)&0xff,
902 (unsigned char)(l )&0xff,
908 int BIO_set_tcp_ndelay(int s, int on)
911 #if defined(TCP_NODELAY) && (defined(IPPROTO_TCP) || defined(SOL_TCP))
922 ret=setsockopt(s,opt,TCP_NODELAY,(char *)&on,sizeof(on));
928 int BIO_socket_nbio(int s, int mode)
935 ret=BIO_socket_ioctl(s,FIONBIO,&l);
projects / openssl.git / blob