Gitiles
Code Review Sign In
gerrit.openfyde.cn / webrtc.googlesource.com / src / 28e20752806a492f5a6a5d343c02f9556f39b1cd / . / talk / base / openssladapter.cc
blob: 50391e5c2150c45367111ab421f1690a14cedc93 [file] [log] [blame]
henrike@webrtc.org28e20752013-07-10 00:45:36 +0000[diff] [blame^]1/*
2 * libjingle
3 * Copyright 2008, Google Inc.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions are met:
7 *
8 * 1. Redistributions of source code must retain the above copyright notice,
9 * this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright notice,
11 * this list of conditions and the following disclaimer in the documentation
12 * and/or other materials provided with the distribution.
13 * 3. The name of the author may not be used to endorse or promote products
14 * derived from this software without specific prior written permission.
15 *
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
17 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
18 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
19 * EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
20 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
21 * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
22 * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
23 * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
24 * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
25 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
26 */
27
28#if HAVE_OPENSSL_SSL_H
29
30#include "talk/base/openssladapter.h"
31
32#if defined(POSIX)
33#include <unistd.h>
34#endif
35
36// Must be included first before openssl headers.
37#include "talk/base/win32.h" // NOLINT
38
39#include <openssl/bio.h>
40#include <openssl/crypto.h>
41#include <openssl/err.h>
42#include <openssl/opensslv.h>
43#include <openssl/rand.h>
44#include <openssl/ssl.h>
45#include <openssl/x509v3.h>
46
47#if HAVE_CONFIG_H
48#include "config.h"
49#endif // HAVE_CONFIG_H
50
51#include "talk/base/common.h"
52#include "talk/base/logging.h"
53#include "talk/base/sslroots.h"
54#include "talk/base/stringutils.h"
55
56// TODO: Use a nicer abstraction for mutex.
57
58#if defined(WIN32)
59 #define MUTEX_TYPE HANDLE
60 #define MUTEX_SETUP(x) (x) = CreateMutex(NULL, FALSE, NULL)
61 #define MUTEX_CLEANUP(x) CloseHandle(x)
62 #define MUTEX_LOCK(x) WaitForSingleObject((x), INFINITE)
63 #define MUTEX_UNLOCK(x) ReleaseMutex(x)
64 #define THREAD_ID GetCurrentThreadId()
65#elif defined(_POSIX_THREADS)
66 // _POSIX_THREADS is normally defined in unistd.h if pthreads are available
67 // on your platform.
68 #define MUTEX_TYPE pthread_mutex_t
69 #define MUTEX_SETUP(x) pthread_mutex_init(&(x), NULL)
70 #define MUTEX_CLEANUP(x) pthread_mutex_destroy(&(x))
71 #define MUTEX_LOCK(x) pthread_mutex_lock(&(x))
72 #define MUTEX_UNLOCK(x) pthread_mutex_unlock(&(x))
73 #define THREAD_ID pthread_self()
74#else
75 #error You must define mutex operations appropriate for your platform!
76#endif
77
78struct CRYPTO_dynlock_value {
79 MUTEX_TYPE mutex;
80};
81
82//////////////////////////////////////////////////////////////////////
83// SocketBIO
84//////////////////////////////////////////////////////////////////////
85
86static int socket_write(BIO* h, const char* buf, int num);
87static int socket_read(BIO* h, char* buf, int size);
88static int socket_puts(BIO* h, const char* str);
89static long socket_ctrl(BIO* h, int cmd, long arg1, void* arg2);
90static int socket_new(BIO* h);
91static int socket_free(BIO* data);
92
93static BIO_METHOD methods_socket = {
94 BIO_TYPE_BIO,
95 "socket",
96 socket_write,
97 socket_read,
98 socket_puts,
99 0,
100 socket_ctrl,
101 socket_new,
102 socket_free,
103 NULL,
104};
105
106BIO_METHOD* BIO_s_socket2() { return(&methods_socket); }
107
108BIO* BIO_new_socket(talk_base::AsyncSocket* socket) {
109 BIO* ret = BIO_new(BIO_s_socket2());
110 if (ret == NULL) {
111 return NULL;
112 }
113 ret->ptr = socket;
114 return ret;
115}
116
117static int socket_new(BIO* b) {
118 b->shutdown = 0;
119 b->init = 1;
120 b->num = 0; // 1 means socket closed
121 b->ptr = 0;
122 return 1;
123}
124
125static int socket_free(BIO* b) {
126 if (b == NULL)
127 return 0;
128 return 1;
129}
130
131static int socket_read(BIO* b, char* out, int outl) {
132 if (!out)
133 return -1;
134 talk_base::AsyncSocket* socket = static_cast<talk_base::AsyncSocket*>(b->ptr);
135 BIO_clear_retry_flags(b);
136 int result = socket->Recv(out, outl);
137 if (result > 0) {
138 return result;
139 } else if (result == 0) {
140 b->num = 1;
141 } else if (socket->IsBlocking()) {
142 BIO_set_retry_read(b);
143 }
144 return -1;
145}
146
147static int socket_write(BIO* b, const char* in, int inl) {
148 if (!in)
149 return -1;
150 talk_base::AsyncSocket* socket = static_cast<talk_base::AsyncSocket*>(b->ptr);
151 BIO_clear_retry_flags(b);
152 int result = socket->Send(in, inl);
153 if (result > 0) {
154 return result;
155 } else if (socket->IsBlocking()) {
156 BIO_set_retry_write(b);
157 }
158 return -1;
159}
160
161static int socket_puts(BIO* b, const char* str) {
162 return socket_write(b, str, strlen(str));
163}
164
165static long socket_ctrl(BIO* b, int cmd, long num, void* ptr) {
166 UNUSED(num);
167 UNUSED(ptr);
168
169 switch (cmd) {
170 case BIO_CTRL_RESET:
171 return 0;
172 case BIO_CTRL_EOF:
173 return b->num;
174 case BIO_CTRL_WPENDING:
175 case BIO_CTRL_PENDING:
176 return 0;
177 case BIO_CTRL_FLUSH:
178 return 1;
179 default:
180 return 0;
181 }
182}
183
184/////////////////////////////////////////////////////////////////////////////
185// OpenSSLAdapter
186/////////////////////////////////////////////////////////////////////////////
187
188namespace talk_base {
189
190// This array will store all of the mutexes available to OpenSSL.
191static MUTEX_TYPE* mutex_buf = NULL;
192
193static void locking_function(int mode, int n, const char * file, int line) {
194 if (mode & CRYPTO_LOCK) {
195 MUTEX_LOCK(mutex_buf[n]);
196 } else {
197 MUTEX_UNLOCK(mutex_buf[n]);
198 }
199}
200
201static unsigned long id_function() { // NOLINT
202 // Use old-style C cast because THREAD_ID's type varies with the platform,
203 // in some cases requiring static_cast, and in others requiring
204 // reinterpret_cast.
205 return (unsigned long)THREAD_ID; // NOLINT
206}
207
208static CRYPTO_dynlock_value* dyn_create_function(const char* file, int line) {
209 CRYPTO_dynlock_value* value = new CRYPTO_dynlock_value;
210 if (!value)
211 return NULL;
212 MUTEX_SETUP(value->mutex);
213 return value;
214}
215
216static void dyn_lock_function(int mode, CRYPTO_dynlock_value* l,
217 const char* file, int line) {
218 if (mode & CRYPTO_LOCK) {
219 MUTEX_LOCK(l->mutex);
220 } else {
221 MUTEX_UNLOCK(l->mutex);
222 }
223}
224
225static void dyn_destroy_function(CRYPTO_dynlock_value* l,
226 const char* file, int line) {
227 MUTEX_CLEANUP(l->mutex);
228 delete l;
229}
230
231VerificationCallback OpenSSLAdapter::custom_verify_callback_ = NULL;
232
233bool OpenSSLAdapter::InitializeSSL(VerificationCallback callback) {
234 if (!InitializeSSLThread() || !SSL_library_init())
235 return false;
236 SSL_load_error_strings();
237 ERR_load_BIO_strings();
238 OpenSSL_add_all_algorithms();
239 RAND_poll();
240 custom_verify_callback_ = callback;
241 return true;
242}
243
244bool OpenSSLAdapter::InitializeSSLThread() {
245 mutex_buf = new MUTEX_TYPE[CRYPTO_num_locks()];
246 if (!mutex_buf)
247 return false;
248 for (int i = 0; i < CRYPTO_num_locks(); ++i)
249 MUTEX_SETUP(mutex_buf[i]);
250
251 // we need to cast our id_function to return an unsigned long -- pthread_t is
252 // a pointer
253 CRYPTO_set_id_callback(id_function);
254 CRYPTO_set_locking_callback(locking_function);
255 CRYPTO_set_dynlock_create_callback(dyn_create_function);
256 CRYPTO_set_dynlock_lock_callback(dyn_lock_function);
257 CRYPTO_set_dynlock_destroy_callback(dyn_destroy_function);
258 return true;
259}
260
261bool OpenSSLAdapter::CleanupSSL() {
262 if (!mutex_buf)
263 return false;
264 CRYPTO_set_id_callback(NULL);
265 CRYPTO_set_locking_callback(NULL);
266 CRYPTO_set_dynlock_create_callback(NULL);
267 CRYPTO_set_dynlock_lock_callback(NULL);
268 CRYPTO_set_dynlock_destroy_callback(NULL);
269 for (int i = 0; i < CRYPTO_num_locks(); ++i)
270 MUTEX_CLEANUP(mutex_buf[i]);
271 delete [] mutex_buf;
272 mutex_buf = NULL;
273 return true;
274}
275
276OpenSSLAdapter::OpenSSLAdapter(AsyncSocket* socket)
277 : SSLAdapter(socket),
278 state_(SSL_NONE),
279 ssl_read_needs_write_(false),
280 ssl_write_needs_read_(false),
281 restartable_(false),
282 ssl_(NULL), ssl_ctx_(NULL),
283 custom_verification_succeeded_(false) {
284}
285
286OpenSSLAdapter::~OpenSSLAdapter() {
287 Cleanup();
288}
289
290int
291OpenSSLAdapter::StartSSL(const char* hostname, bool restartable) {
292 if (state_ != SSL_NONE)
293 return -1;
294
295 ssl_host_name_ = hostname;
296 restartable_ = restartable;
297
298 if (socket_->GetState() != Socket::CS_CONNECTED) {
299 state_ = SSL_WAIT;
300 return 0;
301 }
302
303 state_ = SSL_CONNECTING;
304 if (int err = BeginSSL()) {
305 Error("BeginSSL", err, false);
306 return err;
307 }
308
309 return 0;
310}
311
312int
313OpenSSLAdapter::BeginSSL() {
314 LOG(LS_INFO) << "BeginSSL: " << ssl_host_name_;
315 ASSERT(state_ == SSL_CONNECTING);
316
317 int err = 0;
318 BIO* bio = NULL;
319
320 // First set up the context
321 if (!ssl_ctx_)
322 ssl_ctx_ = SetupSSLContext();
323
324 if (!ssl_ctx_) {
325 err = -1;
326 goto ssl_error;
327 }
328
329 bio = BIO_new_socket(static_cast<AsyncSocketAdapter*>(socket_));
330 if (!bio) {
331 err = -1;
332 goto ssl_error;
333 }
334
335 ssl_ = SSL_new(ssl_ctx_);
336 if (!ssl_) {
337 err = -1;
338 goto ssl_error;
339 }
340
341 SSL_set_app_data(ssl_, this);
342
343 SSL_set_bio(ssl_, bio, bio);
344 SSL_set_mode(ssl_, SSL_MODE_ENABLE_PARTIAL_WRITE |
345 SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER);
346
347 // the SSL object owns the bio now
348 bio = NULL;
349
350 // Do the connect
351 err = ContinueSSL();
352 if (err != 0)
353 goto ssl_error;
354
355 return err;
356
357ssl_error:
358 Cleanup();
359 if (bio)
360 BIO_free(bio);
361
362 return err;
363}
364
365int
366OpenSSLAdapter::ContinueSSL() {
367 ASSERT(state_ == SSL_CONNECTING);
368
369 int code = SSL_connect(ssl_);
370 switch (SSL_get_error(ssl_, code)) {
371 case SSL_ERROR_NONE:
372 if (!SSLPostConnectionCheck(ssl_, ssl_host_name_.c_str())) {
373 LOG(LS_ERROR) << "TLS post connection check failed";
374 // make sure we close the socket
375 Cleanup();
376 // The connect failed so return -1 to shut down the socket
377 return -1;
378 }
379
380 state_ = SSL_CONNECTED;
381 AsyncSocketAdapter::OnConnectEvent(this);
382#if 0 // TODO: worry about this
383 // Don't let ourselves go away during the callbacks
384 PRefPtr<OpenSSLAdapter> lock(this);
385 LOG(LS_INFO) << " -- onStreamReadable";
386 AsyncSocketAdapter::OnReadEvent(this);
387 LOG(LS_INFO) << " -- onStreamWriteable";
388 AsyncSocketAdapter::OnWriteEvent(this);
389#endif
390 break;
391
392 case SSL_ERROR_WANT_READ:
393 case SSL_ERROR_WANT_WRITE:
394 break;
395
396 case SSL_ERROR_ZERO_RETURN:
397 default:
398 LOG(LS_WARNING) << "ContinueSSL -- error " << code;
399 return (code != 0) ? code : -1;
400 }
401
402 return 0;
403}
404
405void
406OpenSSLAdapter::Error(const char* context, int err, bool signal) {
407 LOG(LS_WARNING) << "OpenSSLAdapter::Error("
408 << context << ", " << err << ")";
409 state_ = SSL_ERROR;
410 SetError(err);
411 if (signal)
412 AsyncSocketAdapter::OnCloseEvent(this, err);
413}
414
415void
416OpenSSLAdapter::Cleanup() {
417 LOG(LS_INFO) << "Cleanup";
418
419 state_ = SSL_NONE;
420 ssl_read_needs_write_ = false;
421 ssl_write_needs_read_ = false;
422 custom_verification_succeeded_ = false;
423
424 if (ssl_) {
425 SSL_free(ssl_);
426 ssl_ = NULL;
427 }
428
429 if (ssl_ctx_) {
430 SSL_CTX_free(ssl_ctx_);
431 ssl_ctx_ = NULL;
432 }
433}
434
435//
436// AsyncSocket Implementation
437//
438
439int
440OpenSSLAdapter::Send(const void* pv, size_t cb) {
441 //LOG(LS_INFO) << "OpenSSLAdapter::Send(" << cb << ")";
442
443 switch (state_) {
444 case SSL_NONE:
445 return AsyncSocketAdapter::Send(pv, cb);
446
447 case SSL_WAIT:
448 case SSL_CONNECTING:
449 SetError(EWOULDBLOCK);
450 return SOCKET_ERROR;
451
452 case SSL_CONNECTED:
453 break;
454
455 case SSL_ERROR:
456 default:
457 return SOCKET_ERROR;
458 }
459
460 // OpenSSL will return an error if we try to write zero bytes
461 if (cb == 0)
462 return 0;
463
464 ssl_write_needs_read_ = false;
465
466 int code = SSL_write(ssl_, pv, cb);
467 switch (SSL_get_error(ssl_, code)) {
468 case SSL_ERROR_NONE:
469 //LOG(LS_INFO) << " -- success";
470 return code;
471 case SSL_ERROR_WANT_READ:
472 //LOG(LS_INFO) << " -- error want read";
473 ssl_write_needs_read_ = true;
474 SetError(EWOULDBLOCK);
475 break;
476 case SSL_ERROR_WANT_WRITE:
477 //LOG(LS_INFO) << " -- error want write";
478 SetError(EWOULDBLOCK);
479 break;
480 case SSL_ERROR_ZERO_RETURN:
481 //LOG(LS_INFO) << " -- remote side closed";
482 SetError(EWOULDBLOCK);
483 // do we need to signal closure?
484 break;
485 default:
486 //LOG(LS_INFO) << " -- error " << code;
487 Error("SSL_write", (code ? code : -1), false);
488 break;
489 }
490
491 return SOCKET_ERROR;
492}
493
494int
495OpenSSLAdapter::Recv(void* pv, size_t cb) {
496 //LOG(LS_INFO) << "OpenSSLAdapter::Recv(" << cb << ")";
497 switch (state_) {
498
499 case SSL_NONE:
500 return AsyncSocketAdapter::Recv(pv, cb);
501
502 case SSL_WAIT:
503 case SSL_CONNECTING:
504 SetError(EWOULDBLOCK);
505 return SOCKET_ERROR;
506
507 case SSL_CONNECTED:
508 break;
509
510 case SSL_ERROR:
511 default:
512 return SOCKET_ERROR;
513 }
514
515 // Don't trust OpenSSL with zero byte reads
516 if (cb == 0)
517 return 0;
518
519 ssl_read_needs_write_ = false;
520
521 int code = SSL_read(ssl_, pv, cb);
522 switch (SSL_get_error(ssl_, code)) {
523 case SSL_ERROR_NONE:
524 //LOG(LS_INFO) << " -- success";
525 return code;
526 case SSL_ERROR_WANT_READ:
527 //LOG(LS_INFO) << " -- error want read";
528 SetError(EWOULDBLOCK);
529 break;
530 case SSL_ERROR_WANT_WRITE:
531 //LOG(LS_INFO) << " -- error want write";
532 ssl_read_needs_write_ = true;
533 SetError(EWOULDBLOCK);
534 break;
535 case SSL_ERROR_ZERO_RETURN:
536 //LOG(LS_INFO) << " -- remote side closed";
537 SetError(EWOULDBLOCK);
538 // do we need to signal closure?
539 break;
540 default:
541 //LOG(LS_INFO) << " -- error " << code;
542 Error("SSL_read", (code ? code : -1), false);
543 break;
544 }
545
546 return SOCKET_ERROR;
547}
548
549int
550OpenSSLAdapter::Close() {
551 Cleanup();
552 state_ = restartable_ ? SSL_WAIT : SSL_NONE;
553 return AsyncSocketAdapter::Close();
554}
555
556Socket::ConnState
557OpenSSLAdapter::GetState() const {
558 //if (signal_close_)
559 // return CS_CONNECTED;
560 ConnState state = socket_->GetState();
561 if ((state == CS_CONNECTED)
562 && ((state_ == SSL_WAIT) || (state_ == SSL_CONNECTING)))
563 state = CS_CONNECTING;
564 return state;
565}
566
567void
568OpenSSLAdapter::OnConnectEvent(AsyncSocket* socket) {
569 LOG(LS_INFO) << "OpenSSLAdapter::OnConnectEvent";
570 if (state_ != SSL_WAIT) {
571 ASSERT(state_ == SSL_NONE);
572 AsyncSocketAdapter::OnConnectEvent(socket);
573 return;
574 }
575
576 state_ = SSL_CONNECTING;
577 if (int err = BeginSSL()) {
578 AsyncSocketAdapter::OnCloseEvent(socket, err);
579 }
580}
581
582void
583OpenSSLAdapter::OnReadEvent(AsyncSocket* socket) {
584 //LOG(LS_INFO) << "OpenSSLAdapter::OnReadEvent";
585
586 if (state_ == SSL_NONE) {
587 AsyncSocketAdapter::OnReadEvent(socket);
588 return;
589 }
590
591 if (state_ == SSL_CONNECTING) {
592 if (int err = ContinueSSL()) {
593 Error("ContinueSSL", err);
594 }
595 return;
596 }
597
598 if (state_ != SSL_CONNECTED)
599 return;
600
601 // Don't let ourselves go away during the callbacks
602 //PRefPtr<OpenSSLAdapter> lock(this); // TODO: fix this
603 if (ssl_write_needs_read_) {
604 //LOG(LS_INFO) << " -- onStreamWriteable";
605 AsyncSocketAdapter::OnWriteEvent(socket);
606 }
607
608 //LOG(LS_INFO) << " -- onStreamReadable";
609 AsyncSocketAdapter::OnReadEvent(socket);
610}
611
612void
613OpenSSLAdapter::OnWriteEvent(AsyncSocket* socket) {
614 //LOG(LS_INFO) << "OpenSSLAdapter::OnWriteEvent";
615
616 if (state_ == SSL_NONE) {
617 AsyncSocketAdapter::OnWriteEvent(socket);
618 return;
619 }
620
621 if (state_ == SSL_CONNECTING) {
622 if (int err = ContinueSSL()) {
623 Error("ContinueSSL", err);
624 }
625 return;
626 }
627
628 if (state_ != SSL_CONNECTED)
629 return;
630
631 // Don't let ourselves go away during the callbacks
632 //PRefPtr<OpenSSLAdapter> lock(this); // TODO: fix this
633
634 if (ssl_read_needs_write_) {
635 //LOG(LS_INFO) << " -- onStreamReadable";
636 AsyncSocketAdapter::OnReadEvent(socket);
637 }
638
639 //LOG(LS_INFO) << " -- onStreamWriteable";
640 AsyncSocketAdapter::OnWriteEvent(socket);
641}
642
643void
644OpenSSLAdapter::OnCloseEvent(AsyncSocket* socket, int err) {
645 LOG(LS_INFO) << "OpenSSLAdapter::OnCloseEvent(" << err << ")";
646 AsyncSocketAdapter::OnCloseEvent(socket, err);
647}
648
649// This code is taken from the "Network Security with OpenSSL"
650// sample in chapter 5
651
652bool OpenSSLAdapter::VerifyServerName(SSL* ssl, const char* host,
653 bool ignore_bad_cert) {
654 if (!host)
655 return false;
656
657 // Checking the return from SSL_get_peer_certificate here is not strictly
658 // necessary. With our setup, it is not possible for it to return
659 // NULL. However, it is good form to check the return.
660 X509* certificate = SSL_get_peer_certificate(ssl);
661 if (!certificate)
662 return false;
663
664 // Logging certificates is extremely verbose. So it is disabled by default.
665#ifdef LOG_CERTIFICATES
666 {
667 LOG(LS_INFO) << "Certificate from server:";
668 BIO* mem = BIO_new(BIO_s_mem());
669 X509_print_ex(mem, certificate, XN_FLAG_SEP_CPLUS_SPC, X509_FLAG_NO_HEADER);
670 BIO_write(mem, "\0", 1);
671 char* buffer;
672 BIO_get_mem_data(mem, &buffer);
673 LOG(LS_INFO) << buffer;
674 BIO_free(mem);
675
676 char* cipher_description =
677 SSL_CIPHER_description(SSL_get_current_cipher(ssl), NULL, 128);
678 LOG(LS_INFO) << "Cipher: " << cipher_description;
679 OPENSSL_free(cipher_description);
680 }
681#endif
682
683 bool ok = false;
684 int extension_count = X509_get_ext_count(certificate);
685 for (int i = 0; i < extension_count; ++i) {
686 X509_EXTENSION* extension = X509_get_ext(certificate, i);
687 int extension_nid = OBJ_obj2nid(X509_EXTENSION_get_object(extension));
688
689 if (extension_nid == NID_subject_alt_name) {
690#if OPENSSL_VERSION_NUMBER >= 0x10000000L
691 const X509V3_EXT_METHOD* meth = X509V3_EXT_get(extension);
692#else
693 X509V3_EXT_METHOD* meth = X509V3_EXT_get(extension);
694#endif
695 if (!meth)
696 break;
697
698 void* ext_str = NULL;
699
700 // We assign this to a local variable, instead of passing the address
701 // directly to ASN1_item_d2i.
702 // See http://readlist.com/lists/openssl.org/openssl-users/0/4761.html.
703 unsigned char* ext_value_data = extension->value->data;
704
705#if OPENSSL_VERSION_NUMBER >= 0x0090800fL
706 const unsigned char **ext_value_data_ptr =
707 (const_cast<const unsigned char **>(&ext_value_data));
708#else
709 unsigned char **ext_value_data_ptr = &ext_value_data;
710#endif
711
712 if (meth->it) {
713 ext_str = ASN1_item_d2i(NULL, ext_value_data_ptr,
714 extension->value->length,
715 ASN1_ITEM_ptr(meth->it));
716 } else {
717 ext_str = meth->d2i(NULL, ext_value_data_ptr, extension->value->length);
718 }
719
720 STACK_OF(CONF_VALUE)* value = meth->i2v(meth, ext_str, NULL);
721 for (int j = 0; j < sk_CONF_VALUE_num(value); ++j) {
722 CONF_VALUE* nval = sk_CONF_VALUE_value(value, j);
723 // The value for nval can contain wildcards
724 if (!strcmp(nval->name, "DNS") && string_match(host, nval->value)) {
725 ok = true;
726 break;
727 }
728 }
729 sk_CONF_VALUE_pop_free(value, X509V3_conf_free);
730 value = NULL;
731
732 if (meth->it) {
733 ASN1_item_free(reinterpret_cast<ASN1_VALUE*>(ext_str),
734 ASN1_ITEM_ptr(meth->it));
735 } else {
736 meth->ext_free(ext_str);
737 }
738 ext_str = NULL;
739 }
740 if (ok)
741 break;
742 }
743
744 char data[256];
745 X509_name_st* subject;
746 if (!ok
747 && ((subject = X509_get_subject_name(certificate)) != NULL)
748 && (X509_NAME_get_text_by_NID(subject, NID_commonName,
749 data, sizeof(data)) > 0)) {
750 data[sizeof(data)-1] = 0;
751 if (_stricmp(data, host) == 0)
752 ok = true;
753 }
754
755 X509_free(certificate);
756
757 // This should only ever be turned on for debugging and development.
758 if (!ok && ignore_bad_cert) {
759 LOG(LS_WARNING) << "TLS certificate check FAILED. "
760 << "Allowing connection anyway.";
761 ok = true;
762 }
763
764 return ok;
765}
766
767bool OpenSSLAdapter::SSLPostConnectionCheck(SSL* ssl, const char* host) {
768 bool ok = VerifyServerName(ssl, host, ignore_bad_cert());
769
770 if (ok) {
771 ok = (SSL_get_verify_result(ssl) == X509_V_OK ||
772 custom_verification_succeeded_);
773 }
774
775 if (!ok && ignore_bad_cert()) {
776 LOG(LS_INFO) << "Other TLS post connection checks failed.";
777 ok = true;
778 }
779
780 return ok;
781}
782
783#if _DEBUG
784
785// We only use this for tracing and so it is only needed in debug mode
786
787void
788OpenSSLAdapter::SSLInfoCallback(const SSL* s, int where, int ret) {
789 const char* str = "undefined";
790 int w = where & ~SSL_ST_MASK;
791 if (w & SSL_ST_CONNECT) {
792 str = "SSL_connect";
793 } else if (w & SSL_ST_ACCEPT) {
794 str = "SSL_accept";
795 }
796 if (where & SSL_CB_LOOP) {
797 LOG(LS_INFO) << str << ":" << SSL_state_string_long(s);
798 } else if (where & SSL_CB_ALERT) {
799 str = (where & SSL_CB_READ) ? "read" : "write";
800 LOG(LS_INFO) << "SSL3 alert " << str
801 << ":" << SSL_alert_type_string_long(ret)
802 << ":" << SSL_alert_desc_string_long(ret);
803 } else if (where & SSL_CB_EXIT) {
804 if (ret == 0) {
805 LOG(LS_INFO) << str << ":failed in " << SSL_state_string_long(s);
806 } else if (ret < 0) {
807 LOG(LS_INFO) << str << ":error in " << SSL_state_string_long(s);
808 }
809 }
810}
811
812#endif // _DEBUG
813
814int
815OpenSSLAdapter::SSLVerifyCallback(int ok, X509_STORE_CTX* store) {
816#if _DEBUG
817 if (!ok) {
818 char data[256];
819 X509* cert = X509_STORE_CTX_get_current_cert(store);
820 int depth = X509_STORE_CTX_get_error_depth(store);
821 int err = X509_STORE_CTX_get_error(store);
822
823 LOG(LS_INFO) << "Error with certificate at depth: " << depth;
824 X509_NAME_oneline(X509_get_issuer_name(cert), data, sizeof(data));
825 LOG(LS_INFO) << " issuer = " << data;
826 X509_NAME_oneline(X509_get_subject_name(cert), data, sizeof(data));
827 LOG(LS_INFO) << " subject = " << data;
828 LOG(LS_INFO) << " err = " << err
829 << ":" << X509_verify_cert_error_string(err);
830 }
831#endif
832
833 // Get our stream pointer from the store
834 SSL* ssl = reinterpret_cast<SSL*>(
835 X509_STORE_CTX_get_ex_data(store,
836 SSL_get_ex_data_X509_STORE_CTX_idx()));
837
838 OpenSSLAdapter* stream =
839 reinterpret_cast<OpenSSLAdapter*>(SSL_get_app_data(ssl));
840
841 if (!ok && custom_verify_callback_) {
842 void* cert =
843 reinterpret_cast<void*>(X509_STORE_CTX_get_current_cert(store));
844 if (custom_verify_callback_(cert)) {
845 stream->custom_verification_succeeded_ = true;
846 LOG(LS_INFO) << "validated certificate using custom callback";
847 ok = true;
848 }
849 }
850
851 // Should only be used for debugging and development.
852 if (!ok && stream->ignore_bad_cert()) {
853 LOG(LS_WARNING) << "Ignoring cert error while verifying cert chain";
854 ok = 1;
855 }
856
857 return ok;
858}
859
860bool OpenSSLAdapter::ConfigureTrustedRootCertificates(SSL_CTX* ctx) {
861 // Add the root cert that we care about to the SSL context
862 int count_of_added_certs = 0;
863 for (int i = 0; i < ARRAY_SIZE(kSSLCertCertificateList); i++) {
864 const unsigned char* cert_buffer = kSSLCertCertificateList[i];
865 size_t cert_buffer_len = kSSLCertCertificateSizeList[i];
866 X509* cert = d2i_X509(NULL, &cert_buffer, cert_buffer_len);
867 if (cert) {
868 int return_value = X509_STORE_add_cert(SSL_CTX_get_cert_store(ctx), cert);
869 if (return_value == 0) {
870 LOG(LS_WARNING) << "Unable to add certificate.";
871 } else {
872 count_of_added_certs++;
873 }
874 X509_free(cert);
875 }
876 }
877 return count_of_added_certs > 0;
878}
879
880SSL_CTX*
881OpenSSLAdapter::SetupSSLContext() {
882 SSL_CTX* ctx = SSL_CTX_new(TLSv1_client_method());
883 if (ctx == NULL) {
884 unsigned long error = ERR_get_error(); // NOLINT: type used by OpenSSL.
885 LOG(LS_WARNING) << "SSL_CTX creation failed: "
886 << '"' << ERR_reason_error_string(error) << "\" "
887 << "(error=" << error << ')';
888 return NULL;
889 }
890 if (!ConfigureTrustedRootCertificates(ctx)) {
891 SSL_CTX_free(ctx);
892 return NULL;
893 }
894
895#ifdef _DEBUG
896 SSL_CTX_set_info_callback(ctx, SSLInfoCallback);
897#endif
898
899 SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER, SSLVerifyCallback);
900 SSL_CTX_set_verify_depth(ctx, 4);
901 SSL_CTX_set_cipher_list(ctx, "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH");
902
903 return ctx;
904}
905
906} // namespace talk_base
907
908#endif // HAVE_OPENSSL_SSL_H