Always build library object files with shared library cflags

[openssl.git] / ssl / ssl_sess.c
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c

index aff615e0e61632c9ec093c406d44985ea6f8a754..97f3ce2480a7d10cffb1a46fbbee8f5b09063ba8 100644 (file)
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -1,4 +1,3 @@
-/* ssl/ssl_sess.c */
  /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
   * All rights reserved.
   *
  /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
   * All rights reserved.
   *
@@ -249,13 +248,13 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
  
  #ifndef OPENSSL_NO_PSK
      if (src->psk_identity_hint) {
  
  #ifndef OPENSSL_NO_PSK
      if (src->psk_identity_hint) {
-        dest->psk_identity_hint = BUF_strdup(src->psk_identity_hint);
+        dest->psk_identity_hint = OPENSSL_strdup(src->psk_identity_hint);
          if (dest->psk_identity_hint == NULL) {
              goto err;
          }
      }
      if (src->psk_identity) {
          if (dest->psk_identity_hint == NULL) {
              goto err;
          }
      }
      if (src->psk_identity) {
-        dest->psk_identity = BUF_strdup(src->psk_identity);
+        dest->psk_identity = OPENSSL_strdup(src->psk_identity);
          if (dest->psk_identity == NULL) {
              goto err;
          }
          if (dest->psk_identity == NULL) {
              goto err;
          }
@@ -274,7 +273,7 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
      }
  
      if (src->tlsext_hostname) {
      }
  
      if (src->tlsext_hostname) {
-        dest->tlsext_hostname = BUF_strdup(src->tlsext_hostname);
+        dest->tlsext_hostname = OPENSSL_strdup(src->tlsext_hostname);
          if (dest->tlsext_hostname == NULL) {
              goto err;
          }
          if (dest->tlsext_hostname == NULL) {
              goto err;
          }
@@ -282,14 +281,14 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
  #ifndef OPENSSL_NO_EC
      if (src->tlsext_ecpointformatlist) {
          dest->tlsext_ecpointformatlist =
  #ifndef OPENSSL_NO_EC
      if (src->tlsext_ecpointformatlist) {
          dest->tlsext_ecpointformatlist =
-            BUF_memdup(src->tlsext_ecpointformatlist,
+            OPENSSL_memdup(src->tlsext_ecpointformatlist,
                         src->tlsext_ecpointformatlist_length);
          if (dest->tlsext_ecpointformatlist == NULL)
              goto err;
      }
      if (src->tlsext_ellipticcurvelist) {
          dest->tlsext_ellipticcurvelist =
                         src->tlsext_ecpointformatlist_length);
          if (dest->tlsext_ecpointformatlist == NULL)
              goto err;
      }
      if (src->tlsext_ellipticcurvelist) {
          dest->tlsext_ellipticcurvelist =
-            BUF_memdup(src->tlsext_ellipticcurvelist,
+            OPENSSL_memdup(src->tlsext_ellipticcurvelist,
                         src->tlsext_ellipticcurvelist_length);
          if (dest->tlsext_ellipticcurvelist == NULL)
              goto err;
                         src->tlsext_ellipticcurvelist_length);
          if (dest->tlsext_ellipticcurvelist == NULL)
              goto err;
@@ -297,7 +296,7 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
  #endif
  
      if (ticket != 0) {
  #endif
  
      if (ticket != 0) {
-        dest->tlsext_tick = BUF_memdup(src->tlsext_tick, src->tlsext_ticklen);
+        dest->tlsext_tick = OPENSSL_memdup(src->tlsext_tick, src->tlsext_ticklen);
          if(dest->tlsext_tick == NULL)
              goto err;
      } else {
          if(dest->tlsext_tick == NULL)
              goto err;
      } else {
@@ -307,7 +306,7 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
  
  #ifndef OPENSSL_NO_SRP
      if (src->srp_username) {
  
  #ifndef OPENSSL_NO_SRP
      if (src->srp_username) {
-        dest->srp_username = BUF_strdup(src->srp_username);
+        dest->srp_username = OPENSSL_strdup(src->srp_username);
          if (dest->srp_username == NULL) {
              goto err;
          }
          if (dest->srp_username == NULL) {
              goto err;
          }
@@ -475,7 +474,7 @@ int ssl_get_new_session(SSL *s, int session)
  
   sess_id_done:
          if (s->tlsext_hostname) {
  
   sess_id_done:
          if (s->tlsext_hostname) {
-            ss->tlsext_hostname = BUF_strdup(s->tlsext_hostname);
+            ss->tlsext_hostname = OPENSSL_strdup(s->tlsext_hostname);
              if (ss->tlsext_hostname == NULL) {
                  SSLerr(SSL_F_SSL_GET_NEW_SESSION, ERR_R_INTERNAL_ERROR);
                  SSL_SESSION_free(ss);
              if (ss->tlsext_hostname == NULL) {
                  SSLerr(SSL_F_SSL_GET_NEW_SESSION, ERR_R_INTERNAL_ERROR);
                  SSL_SESSION_free(ss);
@@ -529,12 +528,8 @@ int ssl_get_prev_session(SSL *s, const PACKET *ext, const PACKET *session_id)
      int fatal = 0;
      int try_session_cache = 1;
      int r;
      int fatal = 0;
      int try_session_cache = 1;
      int r;
-    size_t len = PACKET_remaining(session_id);
  
  
-    if (len > SSL_MAX_SSL_SESSION_ID_LENGTH)
-        goto err;
-
-    if (len == 0)
+    if (PACKET_remaining(session_id) == 0)
          try_session_cache = 0;
  
      /* sets s->tlsext_ticket_expected and extended master secret flag */
          try_session_cache = 0;
  
      /* sets s->tlsext_ticket_expected and extended master secret flag */
@@ -581,13 +576,9 @@ int ssl_get_prev_session(SSL *s, const PACKET *ext, const PACKET *session_id)
      if (try_session_cache &&
          ret == NULL && s->session_ctx->get_session_cb != NULL) {
          int copy = 1;
      if (try_session_cache &&
          ret == NULL && s->session_ctx->get_session_cb != NULL) {
          int copy = 1;
-        /* The user callback takes a non-const pointer, so grab a local copy. */
-        unsigned char *sid = NULL;
-        size_t sid_len;
-        if (!PACKET_memdup(session_id, &sid, &sid_len))
-            goto err;
-        ret = s->session_ctx->get_session_cb(s, sid, sid_len, &copy);
-        OPENSSL_free(sid);
+        ret = s->session_ctx->get_session_cb(s, PACKET_data(session_id),
+                                             PACKET_remaining(session_id),
+                                             &copy);
  
          if (ret != NULL) {
              s->session_ctx->stats.sess_cb_hit++;
  
          if (ret != NULL) {
              s->session_ctx->stats.sess_cb_hit++;
@@ -823,17 +814,10 @@ void SSL_SESSION_free(SSL_SESSION *ss)
          return;
  
      i = CRYPTO_add(&ss->references, -1, CRYPTO_LOCK_SSL_SESSION);
          return;
  
      i = CRYPTO_add(&ss->references, -1, CRYPTO_LOCK_SSL_SESSION);
-#ifdef REF_PRINT
-    REF_PRINT("SSL_SESSION", ss);
-#endif
+    REF_PRINT_COUNT("SSL_SESSION", ss);
      if (i > 0)
          return;
      if (i > 0)
          return;
-#ifdef REF_CHECK
-    if (i < 0) {
-        fprintf(stderr, "SSL_SESSION_free, bad reference count\n");
-        abort();                /* ok */
-    }
-#endif
+    REF_ASSERT_ISNT(i < 0);
  
      CRYPTO_free_ex_data(CRYPTO_EX_INDEX_SSL_SESSION, ss, &ss->ex_data);
  
  
      CRYPTO_free_ex_data(CRYPTO_EX_INDEX_SSL_SESSION, ss, &ss->ex_data);
  
@@ -989,7 +973,7 @@ int SSL_set_session_secret_cb(SSL *s,
                                                              int *secret_len,
                                                              STACK_OF(SSL_CIPHER)
                                                              *peer_ciphers,
                                                              int *secret_len,
                                                              STACK_OF(SSL_CIPHER)
                                                              *peer_ciphers,
-                                                            SSL_CIPHER
+                                                            const SSL_CIPHER
                                                              **cipher,
                                                              void *arg),
                                void *arg)
                                                              **cipher,
                                                              void *arg),
                                void *arg)
@@ -1044,7 +1028,7 @@ typedef struct timeout_param_st {
      LHASH_OF(SSL_SESSION) *cache;
  } TIMEOUT_PARAM;
  
      LHASH_OF(SSL_SESSION) *cache;
  } TIMEOUT_PARAM;
  
-static void timeout_doall_arg(SSL_SESSION *s, TIMEOUT_PARAM *p)
+static void timeout_cb(SSL_SESSION *s, TIMEOUT_PARAM *p)
  {
      if ((p->time == 0) || (p->time > (s->time + s->timeout))) { /* timeout */
          /*
  {
      if ((p->time == 0) || (p->time > (s->time + s->timeout))) { /* timeout */
          /*
@@ -1060,7 +1044,7 @@ static void timeout_doall_arg(SSL_SESSION *s, TIMEOUT_PARAM *p)
      }
  }
  
      }
  }
  
-static IMPLEMENT_LHASH_DOALL_ARG_FN(timeout, SSL_SESSION, TIMEOUT_PARAM)
+IMPLEMENT_LHASH_DOALL_ARG(SSL_SESSION, TIMEOUT_PARAM);
  
  void SSL_CTX_flush_sessions(SSL_CTX *s, long t)
  {
  
  void SSL_CTX_flush_sessions(SSL_CTX *s, long t)
  {
@@ -1075,8 +1059,7 @@ void SSL_CTX_flush_sessions(SSL_CTX *s, long t)
      CRYPTO_w_lock(CRYPTO_LOCK_SSL_CTX);
      i = CHECKED_LHASH_OF(SSL_SESSION, tp.cache)->down_load;
      CHECKED_LHASH_OF(SSL_SESSION, tp.cache)->down_load = 0;
      CRYPTO_w_lock(CRYPTO_LOCK_SSL_CTX);
      i = CHECKED_LHASH_OF(SSL_SESSION, tp.cache)->down_load;
      CHECKED_LHASH_OF(SSL_SESSION, tp.cache)->down_load = 0;
-    lh_SSL_SESSION_doall_arg(tp.cache, LHASH_DOALL_ARG_FN(timeout),
-                             TIMEOUT_PARAM, &tp);
+    lh_SSL_SESSION_doall_TIMEOUT_PARAM(tp.cache, timeout_cb, &tp);
      CHECKED_LHASH_OF(SSL_SESSION, tp.cache)->down_load = i;
      CRYPTO_w_unlock(CRYPTO_LOCK_SSL_CTX);
  }
      CHECKED_LHASH_OF(SSL_SESSION, tp.cache)->down_load = i;
      CRYPTO_w_unlock(CRYPTO_LOCK_SSL_CTX);
  }
@@ -1164,14 +1147,14 @@ void (*SSL_CTX_sess_get_remove_cb(SSL_CTX *ctx)) (SSL_CTX *ctx,
  
  void SSL_CTX_sess_set_get_cb(SSL_CTX *ctx,
                               SSL_SESSION *(*cb) (struct ssl_st *ssl,
  
  void SSL_CTX_sess_set_get_cb(SSL_CTX *ctx,
                               SSL_SESSION *(*cb) (struct ssl_st *ssl,
-                                                 unsigned char *data, int len,
-                                                 int *copy))
+                                                 const unsigned char *data,
+                                                 int len, int *copy))
  {
      ctx->get_session_cb = cb;
  }
  
  SSL_SESSION *(*SSL_CTX_sess_get_get_cb(SSL_CTX *ctx)) (SSL *ssl,
  {
      ctx->get_session_cb = cb;
  }
  
  SSL_SESSION *(*SSL_CTX_sess_get_get_cb(SSL_CTX *ctx)) (SSL *ssl,
-                                                       unsigned char *data,
+                                                       const unsigned char *data,
                                                         int len, int *copy) {
      return ctx->get_session_cb;
  }
                                                         int len, int *copy) {
      return ctx->get_session_cb;
  }