[solanum.git] / librb / src / gnutls.c

/*
 *  librb: a library used by charybdis and other things
 *  gnutls.c: gnutls related code
 *
 *  Copyright (C) 2007-2008 ircd-ratbox development team
 *  Copyright (C) 2007-2008 Aaron Sethman <androsyn@ratbox.org>
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301
 *  USA
 *
 */

#include <librb_config.h>
#include <rb_lib.h>
#include <commio-int.h>
#include <commio-ssl.h>
#include <stdbool.h>
#ifdef HAVE_GNUTLS

#include <gnutls/gnutls.h>
#include <gnutls/x509.h>
#include <gnutls/abstract.h>

#if (GNUTLS_VERSION_MAJOR < 3)
# include <gcrypt.h>
#else
# include <gnutls/crypto.h>
#endif

static gnutls_certificate_credentials_t x509;
static gnutls_dh_params_t dh_params;
static gnutls_priority_t default_priority;

/* These are all used for getting GnuTLS to supply a client cert. */
#define MAX_CERTS 6
static unsigned int x509_cert_count;
static gnutls_x509_crt_t x509_cert[MAX_CERTS];
static gnutls_x509_privkey_t x509_key;
#if GNUTLS_VERSION_MAJOR < 3
static int cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
	const gnutls_pk_algorithm_t *sign_algos, int sign_algos_len, gnutls_retr_st *st);
#else
static int cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
	const gnutls_pk_algorithm_t *sign_algos, int sign_algos_len, gnutls_retr2_st *st);
#endif

#define SSL_P(x) *((gnutls_session_t *)F->ssl)

void
rb_ssl_shutdown(rb_fde_t *F)
{
	int i;
	if(F == NULL || F->ssl == NULL)
		return;
	for(i = 0; i < 4; i++)
	{
		if(gnutls_bye(SSL_P(F), GNUTLS_SHUT_RDWR) == GNUTLS_E_SUCCESS)
			break;
	}
	gnutls_deinit(SSL_P(F));
	rb_free(F->ssl);
}

unsigned int
rb_ssl_handshake_count(rb_fde_t *F)
{
	return F->handshake_count;
}

void
rb_ssl_clear_handshake_count(rb_fde_t *F)
{
	F->handshake_count = 0;
}

static void
rb_ssl_timeout(rb_fde_t *F, void *notused)
{
	lrb_assert(F->accept != NULL);
	F->accept->callback(F, RB_ERR_TIMEOUT, NULL, 0, F->accept->data);
}


static int
do_ssl_handshake(rb_fde_t *F, PF * callback, void *data)
{
	int ret;
	int flags;

	ret = gnutls_handshake(SSL_P(F));
	if(ret < 0)
	{
		if((ret == GNUTLS_E_INTERRUPTED && rb_ignore_errno(errno)) || ret == GNUTLS_E_AGAIN)
		{
			if(gnutls_record_get_direction(SSL_P(F)) == 0)
				flags = RB_SELECT_READ;
			else
				flags = RB_SELECT_WRITE;
			rb_setselect(F, flags, callback, data);
			return 0;
		}
		F->ssl_errno = ret;
		return -1;
	}
	return 1;		/* handshake is finished..go about life */
}

static void
rb_ssl_tryaccept(rb_fde_t *F, void *data)
{
	int ret;
	struct acceptdata *ad;

	lrb_assert(F->accept != NULL);

	ret = do_ssl_handshake(F, rb_ssl_tryaccept, NULL);

	/* do_ssl_handshake does the rb_setselect */
	if(ret == 0)
		return;

	ad = F->accept;
	F->accept = NULL;
	rb_settimeout(F, 0, NULL, NULL);
	rb_setselect(F, RB_SELECT_READ | RB_SELECT_WRITE, NULL, NULL);

	if(ret > 0)
		ad->callback(F, RB_OK, (struct sockaddr *)&ad->S, ad->addrlen, ad->data);
	else
		ad->callback(F, RB_ERROR_SSL, NULL, 0, ad->data);

	rb_free(ad);
}

void
rb_ssl_start_accepted(rb_fde_t *new_F, ACCB * cb, void *data, int timeout)
{
	gnutls_session_t *ssl;
	new_F->type |= RB_FD_SSL;
	ssl = new_F->ssl = rb_malloc(sizeof(gnutls_session_t));
	new_F->accept = rb_malloc(sizeof(struct acceptdata));

	new_F->accept->callback = cb;
	new_F->accept->data = data;
	rb_settimeout(new_F, timeout, rb_ssl_timeout, NULL);

	new_F->accept->addrlen = 0;

	gnutls_init(ssl, GNUTLS_SERVER);
	gnutls_set_default_priority(*ssl);
	gnutls_credentials_set(*ssl, GNUTLS_CRD_CERTIFICATE, x509);
	gnutls_dh_set_prime_bits(*ssl, 1024);
	gnutls_transport_set_ptr(*ssl, (gnutls_transport_ptr_t) (long int)new_F->fd);
	gnutls_certificate_server_set_request(*ssl, GNUTLS_CERT_REQUEST);
	gnutls_priority_set(*ssl, default_priority);

	if(do_ssl_handshake(new_F, rb_ssl_tryaccept, NULL))
	{
		struct acceptdata *ad = new_F->accept;
		new_F->accept = NULL;
		ad->callback(new_F, RB_OK, (struct sockaddr *)&ad->S, ad->addrlen, ad->data);
		rb_free(ad);
	}

}


void
rb_ssl_accept_setup(rb_fde_t *F, rb_fde_t *new_F, struct sockaddr *st, int addrlen)
{
	new_F->type |= RB_FD_SSL;
	new_F->ssl = rb_malloc(sizeof(gnutls_session_t));
	new_F->accept = rb_malloc(sizeof(struct acceptdata));

	new_F->accept->callback = F->accept->callback;
	new_F->accept->data = F->accept->data;
	rb_settimeout(new_F, 10, rb_ssl_timeout, NULL);
	memcpy(&new_F->accept->S, st, addrlen);
	new_F->accept->addrlen = addrlen;

	gnutls_init((gnutls_session_t *) new_F->ssl, GNUTLS_SERVER);
	gnutls_set_default_priority(SSL_P(new_F));
	gnutls_credentials_set(SSL_P(new_F), GNUTLS_CRD_CERTIFICATE, x509);
	gnutls_dh_set_prime_bits(SSL_P(new_F), 1024);
	gnutls_transport_set_ptr(SSL_P(new_F), (gnutls_transport_ptr_t) (long int)rb_get_fd(new_F));
	gnutls_certificate_server_set_request(SSL_P(new_F), GNUTLS_CERT_REQUEST);
	gnutls_priority_set(SSL_P(F), default_priority);

	if(do_ssl_handshake(F, rb_ssl_tryaccept, NULL))
	{
		struct acceptdata *ad = F->accept;
		F->accept = NULL;
		ad->callback(F, RB_OK, (struct sockaddr *)&ad->S, ad->addrlen, ad->data);
		rb_free(ad);
	}
}


static ssize_t
rb_ssl_read_or_write(int r_or_w, rb_fde_t *F, void *rbuf, const void *wbuf, size_t count)
{
	ssize_t ret;
	gnutls_session_t *ssl = F->ssl;

	if(r_or_w == 0)
		ret = gnutls_record_recv(*ssl, rbuf, count);
	else
		ret = gnutls_record_send(*ssl, wbuf, count);

	if(ret < 0)
	{
		switch (ret)
		{
		case GNUTLS_E_AGAIN:
		case GNUTLS_E_INTERRUPTED:
			if(rb_ignore_errno(errno))
			{
				if(gnutls_record_get_direction(*ssl) == 0)
					return RB_RW_SSL_NEED_READ;
				else
					return RB_RW_SSL_NEED_WRITE;
				break;
			}
		default:
			F->ssl_errno = ret;
			errno = EIO;
			return RB_RW_IO_ERROR;
		}
	}
	return ret;
}

ssize_t
rb_ssl_read(rb_fde_t *F, void *buf, size_t count)
{
	return rb_ssl_read_or_write(0, F, buf, NULL, count);
}

ssize_t
rb_ssl_write(rb_fde_t *F, const void *buf, size_t count)
{
	return rb_ssl_read_or_write(1, F, NULL, buf, count);
}

#if (GNUTLS_VERSION_MAJOR < 3)
static void
rb_gcry_random_seed(void *unused)
{
	gcry_fast_random_poll();
}
#endif

int
rb_init_ssl(void)
{
	gnutls_global_init();

	if(gnutls_certificate_allocate_credentials(&x509) != GNUTLS_E_SUCCESS)
	{
		rb_lib_log("rb_init_ssl: Unable to allocate SSL/TLS certificate credentials");
		return 0;
	}

#if GNUTLS_VERSION_MAJOR < 3
	gnutls_certificate_client_set_retrieve_function(x509, cert_callback);
#else
	gnutls_certificate_set_retrieve_function(x509, cert_callback);
#endif

#if (GNUTLS_VERSION_MAJOR < 3)
	rb_event_addish("rb_gcry_random_seed", rb_gcry_random_seed, NULL, 300);
#endif

	return 1;
}

/* We only have one certificate to authenticate with, as both client and server.  Unfortunately,
 * GnuTLS tries to be clever, and as client, will attempt to use a certificate that the server
 * will trust.  We usually use self-signed certs, though, so the result of this search is always
 * nothing.  Therefore, it uses no certificate to authenticate as a client.  This is undesirable
 * as it breaks fingerprint auth.  Thus, we use this callback to force GnuTLS to always
 * authenticate with our certificate at all times.
 */
#if GNUTLS_VERSION_MAJOR < 3
static int
cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
	const gnutls_pk_algorithm_t *sign_algos, int sign_algos_len, gnutls_retr_st *st)
#else
static int
cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
	const gnutls_pk_algorithm_t *sign_algos, int sign_algos_len, gnutls_retr2_st *st)
#endif
{
	/* XXX - ugly hack. Tell GnuTLS to use the first (only) certificate we have for auth. */
#if (GNUTLS_VERSION_MAJOR < 3)
	st->type = GNUTLS_CRT_X509;
#else
	st->cert_type = GNUTLS_CRT_X509;
	st->key_type = GNUTLS_PRIVKEY_X509;
#endif
	st->ncerts = x509_cert_count;
	st->cert.x509 = x509_cert;
	st->key.x509 = x509_key;
	st->deinit_all = 0;

	return 0;
}

static void
rb_free_datum_t(gnutls_datum_t * d)
{
	rb_free(d->data);
	rb_free(d);
}

static gnutls_datum_t *
rb_load_file_into_datum_t(const char *file)
{
	FILE *f;
	gnutls_datum_t *datum;
	struct stat fileinfo;
	if((f = fopen(file, "r")) == NULL)
		return NULL;
	if(fstat(fileno(f), &fileinfo))
		return NULL;

	datum = rb_malloc(sizeof(gnutls_datum_t));

	if(fileinfo.st_size > 131072)	/* deal with retards */
		datum->size = 131072;
	else
		datum->size = fileinfo.st_size;

	datum->data = rb_malloc(datum->size + 1);
	fread(datum->data, datum->size, 1, f);
	fclose(f);
	return datum;
}

int
rb_setup_ssl_server(const char *cert, const char *keyfile, const char *dhfile, const char *cipher_list)
{
	int ret;
	const char *err;
	gnutls_datum_t *d_cert, *d_key;
	if(cert == NULL)
	{
		rb_lib_log("rb_setup_ssl_server: No certificate file");
		return 0;
	}

	if((d_cert = rb_load_file_into_datum_t(cert)) == NULL)
	{
		rb_lib_log("rb_setup_ssl_server: Error loading certificate: %s", strerror(errno));
		return 0;
	}

	if((d_key = rb_load_file_into_datum_t(keyfile)) == NULL)
	{
		rb_lib_log("rb_setup_ssl_server: Error loading key: %s", strerror(errno));
		return 0;
	}

	/* In addition to creating the certificate set, we also need to store our cert elsewhere
	 * so we can force GnuTLS to identify with it when acting as a client.
	 */
	gnutls_x509_privkey_init(&x509_key);
	if ((ret = gnutls_x509_privkey_import(x509_key, d_key, GNUTLS_X509_FMT_PEM)) != GNUTLS_E_SUCCESS)
	{
		rb_lib_log("rb_setup_ssl_server: Error loading key file: %s", gnutls_strerror(ret));
		return 0;
	}

	x509_cert_count = MAX_CERTS;
	if ((ret = gnutls_x509_crt_list_import(x509_cert, &x509_cert_count, d_cert, GNUTLS_X509_FMT_PEM,
		GNUTLS_X509_CRT_LIST_IMPORT_FAIL_IF_EXCEED)) < 0)
	{
		rb_lib_log("rb_setup_ssl_server: Error loading certificate: %s", gnutls_strerror(ret));
		return 0;
	}
	x509_cert_count = ret;

	if((ret =
	    gnutls_certificate_set_x509_key_mem(x509, d_cert, d_key,
						GNUTLS_X509_FMT_PEM)) != GNUTLS_E_SUCCESS)
	{
		rb_lib_log("rb_setup_ssl_server: Error loading certificate or key file: %s",
			   gnutls_strerror(ret));
		return 0;
	}

	rb_free_datum_t(d_cert);
	rb_free_datum_t(d_key);

	if(dhfile != NULL)
	{
		if(gnutls_dh_params_init(&dh_params) == GNUTLS_E_SUCCESS)
		{
			gnutls_datum_t *data;
			int xret;
			data = rb_load_file_into_datum_t(dhfile);
			if(data != NULL)
			{
				xret = gnutls_dh_params_import_pkcs3(dh_params, data,
								     GNUTLS_X509_FMT_PEM);
				if(xret < 0)
					rb_lib_log
						("rb_setup_ssl_server: Error parsing DH file: %s\n",
						 gnutls_strerror(xret));
				rb_free_datum_t(data);
			}
			gnutls_certificate_set_dh_params(x509, dh_params);
		}
		else
			rb_lib_log("rb_setup_ssl_server: Unable to setup DH parameters");
	}

	ret = gnutls_priority_init(&default_priority, cipher_list, &err);
	if (ret < 0)
	{
		rb_lib_log("rb_setup_ssl_server: syntax error (using defaults instead) in ssl cipher list at: %s", err);
		gnutls_priority_init(&default_priority, NULL, &err);
		return 1;
	}

	return 1;
}

int
rb_ssl_listen(rb_fde_t *F, int backlog, int defer_accept)
{
	int result;

	result = rb_listen(F, backlog, defer_accept);
	F->type = RB_FD_SOCKET | RB_FD_LISTEN | RB_FD_SSL;

	return result;
}

struct ssl_connect
{
	CNCB *callback;
	void *data;
	int timeout;
};

static void
rb_ssl_connect_realcb(rb_fde_t *F, int status, struct ssl_connect *sconn)
{
	F->connect->callback = sconn->callback;
	F->connect->data = sconn->data;
	rb_free(sconn);
	rb_connect_callback(F, status);
}

static void
rb_ssl_tryconn_timeout_cb(rb_fde_t *F, void *data)
{
	rb_ssl_connect_realcb(F, RB_ERR_TIMEOUT, data);
}

static void
rb_ssl_tryconn_cb(rb_fde_t *F, void *data)
{
	struct ssl_connect *sconn = data;
	int ret;

	ret = do_ssl_handshake(F, rb_ssl_tryconn_cb, (void *)sconn);

	switch (ret)
	{
	case -1:
		rb_ssl_connect_realcb(F, RB_ERROR_SSL, sconn);
		break;
	case 0:
		/* do_ssl_handshake does the rb_setselect stuff */
		return;
	default:
		break;


	}
	rb_ssl_connect_realcb(F, RB_OK, sconn);
}

static void
rb_ssl_tryconn(rb_fde_t *F, int status, void *data)
{
	struct ssl_connect *sconn = data;
	if(status != RB_OK)
	{
		rb_ssl_connect_realcb(F, status, sconn);
		return;
	}

	F->type |= RB_FD_SSL;


	rb_settimeout(F, sconn->timeout, rb_ssl_tryconn_timeout_cb, sconn);
	F->ssl = rb_malloc(sizeof(gnutls_session_t));
	gnutls_init(F->ssl, GNUTLS_CLIENT);
	gnutls_set_default_priority(SSL_P(F));
	gnutls_credentials_set(SSL_P(F), GNUTLS_CRD_CERTIFICATE, x509);
	gnutls_dh_set_prime_bits(SSL_P(F), 1024);
	gnutls_transport_set_ptr(SSL_P(F), (gnutls_transport_ptr_t) (long int)F->fd);
	gnutls_priority_set(SSL_P(F), default_priority);

	do_ssl_handshake(F, rb_ssl_tryconn_cb, (void *)sconn);
}

void
rb_connect_tcp_ssl(rb_fde_t *F, struct sockaddr *dest,
		   struct sockaddr *clocal, int socklen, CNCB * callback, void *data, int timeout)
{
	struct ssl_connect *sconn;
	if(F == NULL)
		return;

	sconn = rb_malloc(sizeof(struct ssl_connect));
	sconn->data = data;
	sconn->callback = callback;
	sconn->timeout = timeout;
	rb_connect_tcp(F, dest, clocal, socklen, rb_ssl_tryconn, sconn, timeout);

}

void
rb_ssl_start_connected(rb_fde_t *F, CNCB * callback, void *data, int timeout)
{
	struct ssl_connect *sconn;
	if(F == NULL)
		return;

	sconn = rb_malloc(sizeof(struct ssl_connect));
	sconn->data = data;
	sconn->callback = callback;
	sconn->timeout = timeout;
	F->connect = rb_malloc(sizeof(struct conndata));
	F->connect->callback = callback;
	F->connect->data = data;
	F->type |= RB_FD_SSL;
	F->ssl = rb_malloc(sizeof(gnutls_session_t));

	gnutls_init(F->ssl, GNUTLS_CLIENT);
	gnutls_set_default_priority(SSL_P(F));
	gnutls_credentials_set(SSL_P(F), GNUTLS_CRD_CERTIFICATE, x509);
	gnutls_dh_set_prime_bits(SSL_P(F), 1024);
	gnutls_transport_set_ptr(SSL_P(F), (gnutls_transport_ptr_t) (long int)F->fd);
	gnutls_priority_set(SSL_P(F), default_priority);

	rb_settimeout(F, sconn->timeout, rb_ssl_tryconn_timeout_cb, sconn);

	do_ssl_handshake(F, rb_ssl_tryconn_cb, (void *)sconn);
}

int
rb_init_prng(const char *path, prng_seed_t seed_type)
{
#if GNUTLS_VERSION_MAJOR < 3
	gcry_fast_random_poll();
#endif
	return 1;
}

int
rb_get_random(void *buf, size_t length)
{
#if GNUTLS_VERSION_MAJOR < 3
	gcry_randomize(buf, length, GCRY_STRONG_RANDOM);
#else
	gnutls_rnd(GNUTLS_RND_KEY, buf, length);
#endif
	return 1;
}

const char *
rb_get_ssl_strerror(rb_fde_t *F)
{
	return gnutls_strerror(F->ssl_errno);
}

int
rb_get_ssl_certfp(rb_fde_t *F, uint8_t certfp[RB_SSL_CERTFP_LEN], int method)
{
	gnutls_x509_crt_t cert;
	gnutls_digest_algorithm_t algo;
	unsigned int cert_list_size;
	const gnutls_datum_t *cert_list;
	uint8_t digest[RB_SSL_CERTFP_LEN * 2];
	size_t digest_size;
	int len;
	bool spki = false;

	if (gnutls_certificate_type_get(SSL_P(F)) != GNUTLS_CRT_X509)
		return 0;

	if (gnutls_x509_crt_init(&cert) < 0)
		return 0;

	cert_list_size = 0;
	cert_list = gnutls_certificate_get_peers(SSL_P(F), &cert_list_size);
	if (cert_list == NULL)
	{
		gnutls_x509_crt_deinit(cert);
		return 0;
	}

	if (gnutls_x509_crt_import(cert, &cert_list[0], GNUTLS_X509_FMT_DER) < 0)
	{
		gnutls_x509_crt_deinit(cert);
		return 0;
	}

	switch(method)
	{
	case RB_SSL_CERTFP_METH_CERT_SHA1:
		algo = GNUTLS_DIG_SHA1;
		len = RB_SSL_CERTFP_LEN_SHA1;
		break;
	case RB_SSL_CERTFP_METH_SPKI_SHA256:
		spki = true;
	case RB_SSL_CERTFP_METH_CERT_SHA256:
		algo = GNUTLS_DIG_SHA256;
		len = RB_SSL_CERTFP_LEN_SHA256;
		break;
	case RB_SSL_CERTFP_METH_SPKI_SHA512:
		spki = true;
	case RB_SSL_CERTFP_METH_CERT_SHA512:
		algo = GNUTLS_DIG_SHA512;
		len = RB_SSL_CERTFP_LEN_SHA512;
		break;
	default:
		return 0;
	}

	if (!spki)
	{
		if (gnutls_x509_crt_get_fingerprint(cert, algo, digest, &digest_size) < 0)
			len = 0;
	}
	else
	{
		gnutls_pubkey_t pubkey;
		unsigned char *der_pubkey = NULL;
		size_t der_pubkey_len = 0;

		if (gnutls_pubkey_init(&pubkey) == GNUTLS_E_SUCCESS)
		{
			if (gnutls_pubkey_import_x509(pubkey, cert, 0) == GNUTLS_E_SUCCESS)
			{
				if (gnutls_pubkey_export(pubkey, GNUTLS_X509_FMT_DER, der_pubkey, &der_pubkey_len) == GNUTLS_E_SHORT_MEMORY_BUFFER)
				{
					der_pubkey = rb_malloc(der_pubkey_len);

					if (gnutls_pubkey_export(pubkey, GNUTLS_X509_FMT_DER, der_pubkey, &der_pubkey_len) != GNUTLS_E_SUCCESS)
					{
						rb_free(der_pubkey);
						der_pubkey = NULL;
					}
				}
			}

			gnutls_pubkey_deinit(pubkey);
		}

		if (der_pubkey)
		{
			if (gnutls_hash_fast(algo, der_pubkey, der_pubkey_len, digest) != 0)
				len = 0;

			rb_free(der_pubkey);
		}
		else
		{
			len = 0;
		}
	}

	if (len)
		memcpy(certfp, digest, len);

	gnutls_x509_crt_deinit(cert);
	return len;
}

int
rb_supports_ssl(void)
{
	return 1;
}

void
rb_get_ssl_info(char *buf, size_t len)
{
	snprintf(buf, len, "GNUTLS: compiled (%s), library(%s)",
		    LIBGNUTLS_VERSION, gnutls_check_version(NULL));
}

const char *
rb_ssl_get_cipher(rb_fde_t *F)
{
	static char buf[1024];

	snprintf(buf, sizeof(buf), "%s-%s-%s-%s",
		gnutls_protocol_get_name(gnutls_protocol_get_version(SSL_P(F))),
		gnutls_kx_get_name(gnutls_kx_get(SSL_P(F))),
		gnutls_cipher_get_name(gnutls_cipher_get(SSL_P(F))),
		gnutls_mac_get_name(gnutls_mac_get(SSL_P(F))));

	return buf;
}

#endif /* HAVE_GNUTLS */
Commit	Line	Data
2bd29df9	1	/*
fe037171	2	* librb: a library used by charybdis and other things
2bd29df9 AB	3	* gnutls.c: gnutls related code
	4	*
	5	* Copyright (C) 2007-2008 ircd-ratbox development team
	6	* Copyright (C) 2007-2008 Aaron Sethman <androsyn@ratbox.org>
	7	*
	8	* This program is free software; you can redistribute it and/or modify
	9	* it under the terms of the GNU General Public License as published by
	10	* the Free Software Foundation; either version 2 of the License, or
	11	* (at your option) any later version.
	12	*
	13	* This program is distributed in the hope that it will be useful,
	14	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	15	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	16	* GNU General Public License for more details.
55abcbb2	17	*
2bd29df9 AB	18	* You should have received a copy of the GNU General Public License
	19	* along with this program; if not, write to the Free Software
	20	* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
	21	* USA
	22	*
2bd29df9 AB	23	*/
2bd29df9 AB	24
fe037171 EM	25	#include <librb_config.h>
fe037171 EM	26	#include <rb_lib.h>
2bd29df9 AB	27	#include <commio-int.h>
2bd29df9 AB	28	#include <commio-ssl.h>
cf430c1a	29	#include <stdbool.h>
2bd29df9 AB	30	#ifdef HAVE_GNUTLS
	31
	32	#include <gnutls/gnutls.h>
	33	#include <gnutls/x509.h>
cf430c1a	34	#include <gnutls/abstract.h>
7aa40f6d	35
c56f5979	36	#if (GNUTLS_VERSION_MAJOR < 3)
7aa40f6d	37	# include <gcrypt.h>
c56f5979 VI	38	#else
c56f5979 VI	39	# include <gnutls/crypto.h>
7aa40f6d	40	#endif
2bd29df9	41
c56f5979 VI	42	static gnutls_certificate_credentials_t x509;
c56f5979 VI	43	static gnutls_dh_params_t dh_params;
673ec98e	44	static gnutls_priority_t default_priority;
2bd29df9 AB	45
	46	/* These are all used for getting GnuTLS to supply a client cert. */
	47	#define MAX_CERTS 6
	48	static unsigned int x509_cert_count;
	49	static gnutls_x509_crt_t x509_cert[MAX_CERTS];
	50	static gnutls_x509_privkey_t x509_key;
f7036bbe	51	#if GNUTLS_VERSION_MAJOR < 3
2bd29df9 AB	52	static int cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
2bd29df9 AB	53	const gnutls_pk_algorithm_t sign_algos, int sign_algos_len, gnutls_retr_st st);
f7036bbe AC	54	#else
	55	static int cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
	56	const gnutls_pk_algorithm_t sign_algos, int sign_algos_len, gnutls_retr2_st st);
	57	#endif
2bd29df9 AB	58
	59	#define SSL_P(x) ((gnutls_session_t )F->ssl)
	60
	61	void
	62	rb_ssl_shutdown(rb_fde_t *F)
	63	{
	64	int i;
	65	if(F == NULL \|\| F->ssl == NULL)
	66	return;
	67	for(i = 0; i < 4; i++)
	68	{
	69	if(gnutls_bye(SSL_P(F), GNUTLS_SHUT_RDWR) == GNUTLS_E_SUCCESS)
	70	break;
	71	}
	72	gnutls_deinit(SSL_P(F));
	73	rb_free(F->ssl);
	74	}
	75
	76	unsigned int
	77	rb_ssl_handshake_count(rb_fde_t *F)
	78	{
	79	return F->handshake_count;
	80	}
	81
	82	void
	83	rb_ssl_clear_handshake_count(rb_fde_t *F)
	84	{
	85	F->handshake_count = 0;
	86	}
	87
	88	static void
	89	rb_ssl_timeout(rb_fde_t F, void notused)
	90	{
	91	lrb_assert(F->accept != NULL);
	92	F->accept->callback(F, RB_ERR_TIMEOUT, NULL, 0, F->accept->data);
	93	}
	94
	95
	96	static int
	97	do_ssl_handshake(rb_fde_t F, PF callback, void *data)
	98	{
	99	int ret;
	100	int flags;
	101
	102	ret = gnutls_handshake(SSL_P(F));
	103	if(ret < 0)
	104	{
	105	if((ret == GNUTLS_E_INTERRUPTED && rb_ignore_errno(errno)) \|\| ret == GNUTLS_E_AGAIN)
	106	{
	107	if(gnutls_record_get_direction(SSL_P(F)) == 0)
	108	flags = RB_SELECT_READ;
	109	else
	110	flags = RB_SELECT_WRITE;
	111	rb_setselect(F, flags, callback, data);
	112	return 0;
	113	}
	114	F->ssl_errno = ret;
	115	return -1;
	116	}
	117	return 1; /* handshake is finished..go about life */
	118	}
	119
	120	static void
	121	rb_ssl_tryaccept(rb_fde_t F, void data)
122	{
123	int ret;
124	struct acceptdata *ad;
125
126	lrb_assert(F->accept != NULL);
127
128	ret = do_ssl_handshake(F, rb_ssl_tryaccept, NULL);
129
130	/* do_ssl_handshake does the rb_setselect */
131	if(ret == 0)
132	return;
133
134	ad = F->accept;
135	F->accept = NULL;
136	rb_settimeout(F, 0, NULL, NULL);
137	rb_setselect(F, RB_SELECT_READ \| RB_SELECT_WRITE, NULL, NULL);
55abcbb2	138
2bd29df9 AB	139	if(ret > 0)
	140	ad->callback(F, RB_OK, (struct sockaddr *)&ad->S, ad->addrlen, ad->data);
	141	else
	142	ad->callback(F, RB_ERROR_SSL, NULL, 0, ad->data);
	143
	144	rb_free(ad);
	145	}
	146
	147	void
	148	rb_ssl_start_accepted(rb_fde_t new_F, ACCB cb, void *data, int timeout)
	149	{
	150	gnutls_session_t *ssl;
	151	new_F->type \|= RB_FD_SSL;
	152	ssl = new_F->ssl = rb_malloc(sizeof(gnutls_session_t));
	153	new_F->accept = rb_malloc(sizeof(struct acceptdata));
	154
	155	new_F->accept->callback = cb;
	156	new_F->accept->data = data;
	157	rb_settimeout(new_F, timeout, rb_ssl_timeout, NULL);
	158
	159	new_F->accept->addrlen = 0;
	160
	161	gnutls_init(ssl, GNUTLS_SERVER);
	162	gnutls_set_default_priority(*ssl);
	163	gnutls_credentials_set(*ssl, GNUTLS_CRD_CERTIFICATE, x509);
	164	gnutls_dh_set_prime_bits(*ssl, 1024);
	165	gnutls_transport_set_ptr(*ssl, (gnutls_transport_ptr_t) (long int)new_F->fd);
	166	gnutls_certificate_server_set_request(*ssl, GNUTLS_CERT_REQUEST);
c56f5979	167	gnutls_priority_set(*ssl, default_priority);
673ec98e	168
2bd29df9 AB	169	if(do_ssl_handshake(new_F, rb_ssl_tryaccept, NULL))
	170	{
	171	struct acceptdata *ad = new_F->accept;
	172	new_F->accept = NULL;
	173	ad->callback(new_F, RB_OK, (struct sockaddr *)&ad->S, ad->addrlen, ad->data);
	174	rb_free(ad);
	175	}
	176
	177	}
	178
	179
	180
	181
	182	void
	183	rb_ssl_accept_setup(rb_fde_t F, rb_fde_t new_F, struct sockaddr *st, int addrlen)
	184	{
	185	new_F->type \|= RB_FD_SSL;
	186	new_F->ssl = rb_malloc(sizeof(gnutls_session_t));
	187	new_F->accept = rb_malloc(sizeof(struct acceptdata));
	188
	189	new_F->accept->callback = F->accept->callback;
	190	new_F->accept->data = F->accept->data;
	191	rb_settimeout(new_F, 10, rb_ssl_timeout, NULL);
	192	memcpy(&new_F->accept->S, st, addrlen);
	193	new_F->accept->addrlen = addrlen;
	194
	195	gnutls_init((gnutls_session_t *) new_F->ssl, GNUTLS_SERVER);
	196	gnutls_set_default_priority(SSL_P(new_F));
	197	gnutls_credentials_set(SSL_P(new_F), GNUTLS_CRD_CERTIFICATE, x509);
	198	gnutls_dh_set_prime_bits(SSL_P(new_F), 1024);
	199	gnutls_transport_set_ptr(SSL_P(new_F), (gnutls_transport_ptr_t) (long int)rb_get_fd(new_F));
	200	gnutls_certificate_server_set_request(SSL_P(new_F), GNUTLS_CERT_REQUEST);
673ec98e AC	201	gnutls_priority_set(SSL_P(F), default_priority);
673ec98e AC	202
2bd29df9 AB	203	if(do_ssl_handshake(F, rb_ssl_tryaccept, NULL))
	204	{
	205	struct acceptdata *ad = F->accept;
	206	F->accept = NULL;
	207	ad->callback(F, RB_OK, (struct sockaddr *)&ad->S, ad->addrlen, ad->data);
	208	rb_free(ad);
	209	}
	210	}
	211
	212
	213
	214
	215	static ssize_t
	216	rb_ssl_read_or_write(int r_or_w, rb_fde_t F, void rbuf, const void *wbuf, size_t count)
	217	{
	218	ssize_t ret;
	219	gnutls_session_t *ssl = F->ssl;
	220
	221	if(r_or_w == 0)
	222	ret = gnutls_record_recv(*ssl, rbuf, count);
	223	else
	224	ret = gnutls_record_send(*ssl, wbuf, count);
	225
	226	if(ret < 0)
	227	{
	228	switch (ret)
	229	{
	230	case GNUTLS_E_AGAIN:
	231	case GNUTLS_E_INTERRUPTED:
	232	if(rb_ignore_errno(errno))
	233	{
	234	if(gnutls_record_get_direction(*ssl) == 0)
	235	return RB_RW_SSL_NEED_READ;
	236	else
	237	return RB_RW_SSL_NEED_WRITE;
	238	break;
	239	}
	240	default:
	241	F->ssl_errno = ret;
	242	errno = EIO;
	243	return RB_RW_IO_ERROR;
	244	}
	245	}
	246	return ret;
	247	}
	248
	249	ssize_t
	250	rb_ssl_read(rb_fde_t F, void buf, size_t count)
	251	{
	252	return rb_ssl_read_or_write(0, F, buf, NULL, count);
	253	}
	254
	255	ssize_t
	256	rb_ssl_write(rb_fde_t F, const void buf, size_t count)
	257	{
	258	return rb_ssl_read_or_write(1, F, NULL, buf, count);
	259	}
	260
c56f5979	261	#if (GNUTLS_VERSION_MAJOR < 3)
2bd29df9 AB	262	static void
	263	rb_gcry_random_seed(void *unused)
	264	{
	265	gcry_fast_random_poll();
	266	}
c56f5979	267	#endif
2bd29df9 AB	268
	269	int
	270	rb_init_ssl(void)
	271	{
	272	gnutls_global_init();
	273
	274	if(gnutls_certificate_allocate_credentials(&x509) != GNUTLS_E_SUCCESS)
	275	{
	276	rb_lib_log("rb_init_ssl: Unable to allocate SSL/TLS certificate credentials");
	277	return 0;
	278	}
	279
f7036bbe	280	#if GNUTLS_VERSION_MAJOR < 3
2bd29df9	281	gnutls_certificate_client_set_retrieve_function(x509, cert_callback);
f7036bbe AC	282	#else
	283	gnutls_certificate_set_retrieve_function(x509, cert_callback);
	284	#endif
2bd29df9	285
c56f5979	286	#if (GNUTLS_VERSION_MAJOR < 3)
2bd29df9	287	rb_event_addish("rb_gcry_random_seed", rb_gcry_random_seed, NULL, 300);
c56f5979 VI	288	#endif
c56f5979 VI	289
2bd29df9 AB	290	return 1;
	291	}
	292
	293	/* We only have one certificate to authenticate with, as both client and server. Unfortunately,
	294	* GnuTLS tries to be clever, and as client, will attempt to use a certificate that the server
	295	* will trust. We usually use self-signed certs, though, so the result of this search is always
	296	* nothing. Therefore, it uses no certificate to authenticate as a client. This is undesirable
	297	* as it breaks fingerprint auth. Thus, we use this callback to force GnuTLS to always
	298	* authenticate with our certificate at all times.
	299	*/
f7036bbe	300	#if GNUTLS_VERSION_MAJOR < 3
2bd29df9 AB	301	static int
	302	cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
	303	const gnutls_pk_algorithm_t sign_algos, int sign_algos_len, gnutls_retr_st st)
f7036bbe AC	304	#else
	305	static int
	306	cert_callback(gnutls_session_t session, const gnutls_datum_t *req_ca_rdn, int nreqs,
	307	const gnutls_pk_algorithm_t sign_algos, int sign_algos_len, gnutls_retr2_st st)
	308	#endif
2bd29df9 AB	309	{
2bd29df9 AB	310	/* XXX - ugly hack. Tell GnuTLS to use the first (only) certificate we have for auth. */
c56f5979	311	#if (GNUTLS_VERSION_MAJOR < 3)
2bd29df9	312	st->type = GNUTLS_CRT_X509;
c56f5979 VI	313	#else
	314	st->cert_type = GNUTLS_CRT_X509;
	315	st->key_type = GNUTLS_PRIVKEY_X509;
	316	#endif
2bd29df9 AB	317	st->ncerts = x509_cert_count;
	318	st->cert.x509 = x509_cert;
	319	st->key.x509 = x509_key;
c56f5979	320	st->deinit_all = 0;
2bd29df9 AB	321
	322	return 0;
	323	}
	324
	325	static void
	326	rb_free_datum_t(gnutls_datum_t * d)
	327	{
	328	rb_free(d->data);
	329	rb_free(d);
	330	}
	331
	332	static gnutls_datum_t *
	333	rb_load_file_into_datum_t(const char *file)
	334	{
	335	FILE *f;
	336	gnutls_datum_t *datum;
	337	struct stat fileinfo;
	338	if((f = fopen(file, "r")) == NULL)
	339	return NULL;
	340	if(fstat(fileno(f), &fileinfo))
	341	return NULL;
	342
	343	datum = rb_malloc(sizeof(gnutls_datum_t));
	344
	345	if(fileinfo.st_size > 131072) /* deal with retards */
	346	datum->size = 131072;
	347	else
	348	datum->size = fileinfo.st_size;
	349
	350	datum->data = rb_malloc(datum->size + 1);
	351	fread(datum->data, datum->size, 1, f);
	352	fclose(f);
	353	return datum;
	354	}
	355
	356	int
c1725bda	357	rb_setup_ssl_server(const char cert, const char keyfile, const char dhfile, const char cipher_list)
2bd29df9 AB	358	{
2bd29df9 AB	359	int ret;
673ec98e	360	const char *err;
2bd29df9 AB	361	gnutls_datum_t d_cert, d_key;
	362	if(cert == NULL)
	363	{
	364	rb_lib_log("rb_setup_ssl_server: No certificate file");
	365	return 0;
	366	}
	367
	368	if((d_cert = rb_load_file_into_datum_t(cert)) == NULL)
	369	{
	370	rb_lib_log("rb_setup_ssl_server: Error loading certificate: %s", strerror(errno));
	371	return 0;
	372	}
	373
	374	if((d_key = rb_load_file_into_datum_t(keyfile)) == NULL)
	375	{
	376	rb_lib_log("rb_setup_ssl_server: Error loading key: %s", strerror(errno));
	377	return 0;
	378	}
	379
	380	/* In addition to creating the certificate set, we also need to store our cert elsewhere
	381	* so we can force GnuTLS to identify with it when acting as a client.
	382	*/
	383	gnutls_x509_privkey_init(&x509_key);
	384	if ((ret = gnutls_x509_privkey_import(x509_key, d_key, GNUTLS_X509_FMT_PEM)) != GNUTLS_E_SUCCESS)
	385	{
	386	rb_lib_log("rb_setup_ssl_server: Error loading key file: %s", gnutls_strerror(ret));
	387	return 0;
	388	}
	389
	390	x509_cert_count = MAX_CERTS;
	391	if ((ret = gnutls_x509_crt_list_import(x509_cert, &x509_cert_count, d_cert, GNUTLS_X509_FMT_PEM,
	392	GNUTLS_X509_CRT_LIST_IMPORT_FAIL_IF_EXCEED)) < 0)
	393	{
	394	rb_lib_log("rb_setup_ssl_server: Error loading certificate: %s", gnutls_strerror(ret));
	395	return 0;
	396	}
	397	x509_cert_count = ret;
	398
	399	if((ret =
	400	gnutls_certificate_set_x509_key_mem(x509, d_cert, d_key,
	401	GNUTLS_X509_FMT_PEM)) != GNUTLS_E_SUCCESS)
	402	{
	403	rb_lib_log("rb_setup_ssl_server: Error loading certificate or key file: %s",
	404	gnutls_strerror(ret));
	405	return 0;
	406	}
	407
	408	rb_free_datum_t(d_cert);
	409	rb_free_datum_t(d_key);
	410
	411	if(dhfile != NULL)
	412	{
	413	if(gnutls_dh_params_init(&dh_params) == GNUTLS_E_SUCCESS)
	414	{
	415	gnutls_datum_t *data;
	416	int xret;
	417	data = rb_load_file_into_datum_t(dhfile);
	418	if(data != NULL)
	419	{
	420	xret = gnutls_dh_params_import_pkcs3(dh_params, data,
	421	GNUTLS_X509_FMT_PEM);
	422	if(xret < 0)
	423	rb_lib_log
	424	("rb_setup_ssl_server: Error parsing DH file: %s\n",
425	gnutls_strerror(xret));
426	rb_free_datum_t(data);
427	}
428	gnutls_certificate_set_dh_params(x509, dh_params);
429	}
430	else
431	rb_lib_log("rb_setup_ssl_server: Unable to setup DH parameters");
432	}
c1725bda	433
7233e364	434	ret = gnutls_priority_init(&default_priority, cipher_list, &err);
673ec98e AC	435	if (ret < 0)
	436	{
	437	rb_lib_log("rb_setup_ssl_server: syntax error (using defaults instead) in ssl cipher list at: %s", err);
	438	gnutls_priority_init(&default_priority, NULL, &err);
	439	return 1;
	440	}
	441
2bd29df9 AB	442	return 1;
	443	}
	444
	445	int
	446	rb_ssl_listen(rb_fde_t *F, int backlog, int defer_accept)
	447	{
	448	int result;
	449
fab6f9e8	450	result = rb_listen(F, backlog, defer_accept);
2bd29df9 AB	451	F->type = RB_FD_SOCKET \| RB_FD_LISTEN \| RB_FD_SSL;
	452
	453	return result;
	454	}
	455
	456	struct ssl_connect
	457	{
	458	CNCB *callback;
	459	void *data;
	460	int timeout;
	461	};
	462
	463	static void
	464	rb_ssl_connect_realcb(rb_fde_t F, int status, struct ssl_connect sconn)
	465	{
	466	F->connect->callback = sconn->callback;
	467	F->connect->data = sconn->data;
	468	rb_free(sconn);
	469	rb_connect_callback(F, status);
	470	}
	471
	472	static void
	473	rb_ssl_tryconn_timeout_cb(rb_fde_t F, void data)
	474	{
	475	rb_ssl_connect_realcb(F, RB_ERR_TIMEOUT, data);
	476	}
	477
	478	static void
	479	rb_ssl_tryconn_cb(rb_fde_t F, void data)
	480	{
	481	struct ssl_connect *sconn = data;
	482	int ret;
	483
	484	ret = do_ssl_handshake(F, rb_ssl_tryconn_cb, (void *)sconn);
	485
	486	switch (ret)
	487	{
	488	case -1:
	489	rb_ssl_connect_realcb(F, RB_ERROR_SSL, sconn);
	490	break;
	491	case 0:
	492	/* do_ssl_handshake does the rb_setselect stuff */
	493	return;
	494	default:
	495	break;
	496
	497
	498	}
	499	rb_ssl_connect_realcb(F, RB_OK, sconn);
	500	}
	501
	502	static void
	503	rb_ssl_tryconn(rb_fde_t F, int status, void data)
	504	{
	505	struct ssl_connect *sconn = data;
	506	if(status != RB_OK)
	507	{
	508	rb_ssl_connect_realcb(F, status, sconn);
	509	return;
	510	}
	511
	512	F->type \|= RB_FD_SSL;
	513
	514
515	rb_settimeout(F, sconn->timeout, rb_ssl_tryconn_timeout_cb, sconn);
516	F->ssl = rb_malloc(sizeof(gnutls_session_t));
517	gnutls_init(F->ssl, GNUTLS_CLIENT);
518	gnutls_set_default_priority(SSL_P(F));
519	gnutls_credentials_set(SSL_P(F), GNUTLS_CRD_CERTIFICATE, x509);
520	gnutls_dh_set_prime_bits(SSL_P(F), 1024);
521	gnutls_transport_set_ptr(SSL_P(F), (gnutls_transport_ptr_t) (long int)F->fd);
673ec98e	522	gnutls_priority_set(SSL_P(F), default_priority);
2bd29df9 AB	523
	524	do_ssl_handshake(F, rb_ssl_tryconn_cb, (void *)sconn);
	525	}
	526
	527	void
	528	rb_connect_tcp_ssl(rb_fde_t F, struct sockaddr dest,
	529	struct sockaddr clocal, int socklen, CNCB callback, void *data, int timeout)
	530	{
	531	struct ssl_connect *sconn;
	532	if(F == NULL)
	533	return;
	534
	535	sconn = rb_malloc(sizeof(struct ssl_connect));
	536	sconn->data = data;
	537	sconn->callback = callback;
	538	sconn->timeout = timeout;
	539	rb_connect_tcp(F, dest, clocal, socklen, rb_ssl_tryconn, sconn, timeout);
	540
	541	}
	542
	543	void
	544	rb_ssl_start_connected(rb_fde_t F, CNCB callback, void *data, int timeout)
	545	{
	546	struct ssl_connect *sconn;
	547	if(F == NULL)
	548	return;
	549
	550	sconn = rb_malloc(sizeof(struct ssl_connect));
	551	sconn->data = data;
	552	sconn->callback = callback;
	553	sconn->timeout = timeout;
	554	F->connect = rb_malloc(sizeof(struct conndata));
	555	F->connect->callback = callback;
	556	F->connect->data = data;
	557	F->type \|= RB_FD_SSL;
	558	F->ssl = rb_malloc(sizeof(gnutls_session_t));
	559
	560	gnutls_init(F->ssl, GNUTLS_CLIENT);
	561	gnutls_set_default_priority(SSL_P(F));
	562	gnutls_credentials_set(SSL_P(F), GNUTLS_CRD_CERTIFICATE, x509);
	563	gnutls_dh_set_prime_bits(SSL_P(F), 1024);
	564	gnutls_transport_set_ptr(SSL_P(F), (gnutls_transport_ptr_t) (long int)F->fd);
673ec98e	565	gnutls_priority_set(SSL_P(F), default_priority);
2bd29df9 AB	566
	567	rb_settimeout(F, sconn->timeout, rb_ssl_tryconn_timeout_cb, sconn);
	568
	569	do_ssl_handshake(F, rb_ssl_tryconn_cb, (void *)sconn);
	570	}
	571
	572	int
	573	rb_init_prng(const char *path, prng_seed_t seed_type)
	574	{
7aa40f6d	575	#if GNUTLS_VERSION_MAJOR < 3
2bd29df9	576	gcry_fast_random_poll();
7aa40f6d	577	#endif
2bd29df9 AB	578	return 1;
	579	}
	580
	581	int
	582	rb_get_random(void *buf, size_t length)
	583	{
7aa40f6d	584	#if GNUTLS_VERSION_MAJOR < 3
2bd29df9	585	gcry_randomize(buf, length, GCRY_STRONG_RANDOM);
7aa40f6d AC	586	#else
	587	gnutls_rnd(GNUTLS_RND_KEY, buf, length);
	588	#endif
2bd29df9 AB	589	return 1;
	590	}
	591
2bd29df9 AB	592	const char *
	593	rb_get_ssl_strerror(rb_fde_t *F)
	594	{
	595	return gnutls_strerror(F->ssl_errno);
	596	}
	597
	598	int
e6bbb410	599	rb_get_ssl_certfp(rb_fde_t *F, uint8_t certfp[RB_SSL_CERTFP_LEN], int method)
2bd29df9 AB	600	{
2bd29df9 AB	601	gnutls_x509_crt_t cert;
e6bbb410	602	gnutls_digest_algorithm_t algo;
2bd29df9 AB	603	unsigned int cert_list_size;
	604	const gnutls_datum_t *cert_list;
	605	uint8_t digest[RB_SSL_CERTFP_LEN * 2];
	606	size_t digest_size;
e6bbb410	607	int len;
cf430c1a	608	bool spki = false;
2bd29df9 AB	609
	610	if (gnutls_certificate_type_get(SSL_P(F)) != GNUTLS_CRT_X509)
	611	return 0;
	612
	613	if (gnutls_x509_crt_init(&cert) < 0)
	614	return 0;
	615
	616	cert_list_size = 0;
	617	cert_list = gnutls_certificate_get_peers(SSL_P(F), &cert_list_size);
	618	if (cert_list == NULL)
	619	{
	620	gnutls_x509_crt_deinit(cert);
	621	return 0;
	622	}
	623
	624	if (gnutls_x509_crt_import(cert, &cert_list[0], GNUTLS_X509_FMT_DER) < 0)
	625	{
	626	gnutls_x509_crt_deinit(cert);
	627	return 0;
	628	}
	629
e6bbb410 EM	630	switch(method)
e6bbb410 EM	631	{
cf430c1a	632	case RB_SSL_CERTFP_METH_CERT_SHA1:
e6bbb410 EM	633	algo = GNUTLS_DIG_SHA1;
	634	len = RB_SSL_CERTFP_LEN_SHA1;
	635	break;
cf430c1a SA	636	case RB_SSL_CERTFP_METH_SPKI_SHA256:
	637	spki = true;
	638	case RB_SSL_CERTFP_METH_CERT_SHA256:
e6bbb410 EM	639	algo = GNUTLS_DIG_SHA256;
	640	len = RB_SSL_CERTFP_LEN_SHA256;
	641	break;
cf430c1a SA	642	case RB_SSL_CERTFP_METH_SPKI_SHA512:
	643	spki = true;
	644	case RB_SSL_CERTFP_METH_CERT_SHA512:
e6bbb410 EM	645	algo = GNUTLS_DIG_SHA512;
	646	len = RB_SSL_CERTFP_LEN_SHA512;
	647	break;
	648	default:
	649	return 0;
	650	}
	651
cf430c1a	652	if (!spki)
2bd29df9	653	{
cf430c1a SA	654	if (gnutls_x509_crt_get_fingerprint(cert, algo, digest, &digest_size) < 0)
	655	len = 0;
	656	}
	657	else
	658	{
	659	gnutls_pubkey_t pubkey;
	660	unsigned char *der_pubkey = NULL;
	661	size_t der_pubkey_len = 0;
	662
	663	if (gnutls_pubkey_init(&pubkey) == GNUTLS_E_SUCCESS)
	664	{
	665	if (gnutls_pubkey_import_x509(pubkey, cert, 0) == GNUTLS_E_SUCCESS)
	666	{
	667	if (gnutls_pubkey_export(pubkey, GNUTLS_X509_FMT_DER, der_pubkey, &der_pubkey_len) == GNUTLS_E_SHORT_MEMORY_BUFFER)
	668	{
	669	der_pubkey = rb_malloc(der_pubkey_len);
	670
	671	if (gnutls_pubkey_export(pubkey, GNUTLS_X509_FMT_DER, der_pubkey, &der_pubkey_len) != GNUTLS_E_SUCCESS)
	672	{
	673	rb_free(der_pubkey);
	674	der_pubkey = NULL;
	675	}
	676	}
	677	}
	678
	679	gnutls_pubkey_deinit(pubkey);
	680	}
	681
	682	if (der_pubkey)
	683	{
	684	if (gnutls_hash_fast(algo, der_pubkey, der_pubkey_len, digest) != 0)
	685	len = 0;
	686
	687	rb_free(der_pubkey);
	688	}
	689	else
	690	{
	691	len = 0;
	692	}
2bd29df9 AB	693	}
2bd29df9 AB	694
cf430c1a SA	695	if (len)
cf430c1a SA	696	memcpy(certfp, digest, len);
2bd29df9 AB	697
2bd29df9 AB	698	gnutls_x509_crt_deinit(cert);
e6bbb410	699	return len;
2bd29df9 AB	700	}
	701
	702	int
	703	rb_supports_ssl(void)
	704	{
	705	return 1;
	706	}
	707
	708	void
	709	rb_get_ssl_info(char *buf, size_t len)
	710	{
5203cba5	711	snprintf(buf, len, "GNUTLS: compiled (%s), library(%s)",
2bd29df9 AB	712	LIBGNUTLS_VERSION, gnutls_check_version(NULL));
2bd29df9 AB	713	}
55abcbb2	714
833b2f9c AC	715	const char *
	716	rb_ssl_get_cipher(rb_fde_t *F)
	717	{
	718	static char buf[1024];
	719
5203cba5	720	snprintf(buf, sizeof(buf), "%s-%s-%s-%s",
833b2f9c AC	721	gnutls_protocol_get_name(gnutls_protocol_get_version(SSL_P(F))),
	722	gnutls_kx_get_name(gnutls_kx_get(SSL_P(F))),
	723	gnutls_cipher_get_name(gnutls_cipher_get(SSL_P(F))),
	724	gnutls_mac_get_name(gnutls_mac_get(SSL_P(F))));
	725
	726	return buf;
	727	}
55abcbb2	728
2bd29df9	729	#endif /* HAVE_GNUTLS */