mirror of https://github.com/wolfSSL/wolfssl.git
Sean Parkinson
GitHub
commit
b952f18eb4
88
src/ssl.c
88
src/ssl.c
|
|
@ -12744,16 +12744,13 @@ int AddSession(WOLFSSL* ssl)
|
||||||
#ifdef HAVE_EXT_CACHE
|
#ifdef HAVE_EXT_CACHE
|
||||||
if (ssl->options.internalCacheOff) {
|
if (ssl->options.internalCacheOff) {
|
||||||
/* Create a new session object to be stored. */
|
/* Create a new session object to be stored. */
|
||||||
session = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
session = wolfSSL_SESSION_new();
|
||||||
DYNAMIC_TYPE_OPENSSL);
|
|
||||||
if (session == NULL) {
|
if (session == NULL) {
|
||||||
#ifdef HAVE_SESSION_TICKET
|
#ifdef HAVE_SESSION_TICKET
|
||||||
XFREE(tmpBuff, ssl->heap, DYNAMIC_TYPE_SESSION_TICK);
|
XFREE(tmpBuff, ssl->heap, DYNAMIC_TYPE_SESSION_TICK);
|
||||||
#endif
|
#endif
|
||||||
return MEMORY_E;
|
return MEMORY_E;
|
||||||
}
|
}
|
||||||
XMEMSET(session, 0, sizeof(WOLFSSL_SESSION));
|
|
||||||
session->isAlloced = 1;
|
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
#endif
|
#endif
|
||||||
|
|
@ -17332,6 +17329,12 @@ WOLFSSL_X509* wolfSSL_d2i_X509(WOLFSSL_X509** x509, const unsigned char** in,
|
||||||
int len)
|
int len)
|
||||||
{
|
{
|
||||||
WOLFSSL_X509* newX509 = NULL;
|
WOLFSSL_X509* newX509 = NULL;
|
||||||
|
WOLFSSL_ENTER("wolfSSL_d2i_X509");
|
||||||
|
|
||||||
|
if (in == NULL) {
|
||||||
|
WOLFSSL_MSG("NULL input for wolfSSL_d2i_X509");
|
||||||
|
return NULL;
|
||||||
|
}
|
||||||
|
|
||||||
newX509 = wolfSSL_X509_d2i(x509, *in, len);
|
newX509 = wolfSSL_X509_d2i(x509, *in, len);
|
||||||
if (newX509 != NULL) {
|
if (newX509 != NULL) {
|
||||||
|
|
@ -19277,6 +19280,44 @@ int wolfSSL_session_reused(WOLFSSL* ssl)
|
||||||
}
|
}
|
||||||
|
|
||||||
#if defined(OPENSSL_EXTRA) || defined(HAVE_EXT_CACHE)
|
#if defined(OPENSSL_EXTRA) || defined(HAVE_EXT_CACHE)
|
||||||
|
/* return a new malloc'd session with default settings on success */
|
||||||
|
WOLFSSL_SESSION* wolfSSL_SESSION_new()
|
||||||
|
{
|
||||||
|
WOLFSSL_SESSION* ret = NULL;
|
||||||
|
|
||||||
|
ret = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
||||||
|
DYNAMIC_TYPE_OPENSSL);
|
||||||
|
if (ret != NULL) {
|
||||||
|
XMEMSET(ret, 0, sizeof(WOLFSSL_SESSION));
|
||||||
|
#ifdef OPENSSL_EXTRA
|
||||||
|
if (wc_InitMutex(&ret->refMutex) != 0) {
|
||||||
|
WOLFSSL_MSG("Error setting up session reference mutex");
|
||||||
|
XFREE(ret, NULL, DYNAMIC_TYPE_OPENSSL);
|
||||||
|
return NULL;
|
||||||
|
}
|
||||||
|
#endif
|
||||||
|
ret->isAlloced = 1;
|
||||||
|
}
|
||||||
|
return ret;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
/* add one to session reference count
|
||||||
|
* return WOFLSSL_SUCCESS on success and WOLFSSL_FAILURE on error */
|
||||||
|
int wolfSSL_SESSION_up_ref(WOLFSSL_SESSION* session)
|
||||||
|
{
|
||||||
|
if (session == NULL)
|
||||||
|
return WOLFSSL_FAILURE;
|
||||||
|
|
||||||
|
if (wc_LockMutex(&session->refMutex) != 0) {
|
||||||
|
WOLFSSL_MSG("Failed to lock session mutex");
|
||||||
|
}
|
||||||
|
session->refCount++;
|
||||||
|
wc_UnLockMutex(&session->refMutex);
|
||||||
|
return WOLFSSL_SUCCESS;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session)
|
WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session)
|
||||||
{
|
{
|
||||||
#ifdef HAVE_EXT_CACHE
|
#ifdef HAVE_EXT_CACHE
|
||||||
|
|
@ -19293,8 +19334,7 @@ WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session)
|
||||||
}
|
}
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
copy = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
copy = wolfSSL_SESSION_new();
|
||||||
DYNAMIC_TYPE_OPENSSL);
|
|
||||||
if (copy != NULL) {
|
if (copy != NULL) {
|
||||||
XMEMCPY(copy, session, sizeof(WOLFSSL_SESSION));
|
XMEMCPY(copy, session, sizeof(WOLFSSL_SESSION));
|
||||||
copy->isAlloced = 1;
|
copy->isAlloced = 1;
|
||||||
|
|
@ -19331,7 +19371,18 @@ void wolfSSL_SESSION_free(WOLFSSL_SESSION* session)
|
||||||
}
|
}
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#ifdef HAVE_EXT_CACHE
|
#ifdef OPENSSL_EXTRA
|
||||||
|
if (wc_LockMutex(&session->refMutex) != 0) {
|
||||||
|
WOLFSSL_MSG("Failed to lock session mutex");
|
||||||
|
}
|
||||||
|
if (session->refCount > 0) {
|
||||||
|
session->refCount--;
|
||||||
|
wc_UnLockMutex(&session->refMutex);
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
wc_UnLockMutex(&session->refMutex);
|
||||||
|
#endif
|
||||||
|
#if defined(HAVE_EXT_CACHE) || defined(OPENSSL_EXTRA)
|
||||||
if (session->isAlloced) {
|
if (session->isAlloced) {
|
||||||
#ifdef HAVE_SESSION_TICKET
|
#ifdef HAVE_SESSION_TICKET
|
||||||
if (session->isDynamic)
|
if (session->isDynamic)
|
||||||
|
|
@ -23939,7 +23990,10 @@ unsigned long wolfSSL_ERR_peek_error(void)
|
||||||
|
|
||||||
int wolfSSL_ERR_GET_LIB(unsigned long err)
|
int wolfSSL_ERR_GET_LIB(unsigned long err)
|
||||||
{
|
{
|
||||||
switch (err) {
|
unsigned long value;
|
||||||
|
|
||||||
|
value = (err & 0xFFFFFFL);
|
||||||
|
switch (value) {
|
||||||
case PEM_R_NO_START_LINE:
|
case PEM_R_NO_START_LINE:
|
||||||
case PEM_R_PROBLEMS_GETTING_PASSWORD:
|
case PEM_R_PROBLEMS_GETTING_PASSWORD:
|
||||||
case PEM_R_BAD_PASSWORD_READ:
|
case PEM_R_BAD_PASSWORD_READ:
|
||||||
|
|
@ -27220,12 +27274,9 @@ WOLFSSL_SESSION* wolfSSL_d2i_SSL_SESSION(WOLFSSL_SESSION** sess,
|
||||||
return NULL;
|
return NULL;
|
||||||
|
|
||||||
if (s == NULL) {
|
if (s == NULL) {
|
||||||
s = (WOLFSSL_SESSION*)XMALLOC(sizeof(WOLFSSL_SESSION), NULL,
|
s = wolfSSL_SESSION_new();
|
||||||
DYNAMIC_TYPE_OPENSSL);
|
|
||||||
if (s == NULL)
|
if (s == NULL)
|
||||||
return NULL;
|
return NULL;
|
||||||
XMEMSET(s, 0, sizeof(WOLFSSL_SESSION));
|
|
||||||
s->isAlloced = 1;
|
|
||||||
#ifdef HAVE_SESSION_TICKET
|
#ifdef HAVE_SESSION_TICKET
|
||||||
s->isDynamic = 0;
|
s->isDynamic = 0;
|
||||||
#endif
|
#endif
|
||||||
|
|
@ -42999,9 +43050,9 @@ unsigned long wolfSSL_ERR_peek_error_line_data(const char **file, int *line,
|
||||||
|
|
||||||
if (ret == -ASN_NO_PEM_HEADER)
|
if (ret == -ASN_NO_PEM_HEADER)
|
||||||
return (ERR_LIB_PEM << 24) | PEM_R_NO_START_LINE;
|
return (ERR_LIB_PEM << 24) | PEM_R_NO_START_LINE;
|
||||||
if (ret != WANT_READ && ret != WANT_WRITE &&
|
if (ret != -WANT_READ && ret != -WANT_WRITE &&
|
||||||
ret != ZERO_RETURN && ret != WOLFSSL_ERROR_ZERO_RETURN &&
|
ret != -ZERO_RETURN && ret != -WOLFSSL_ERROR_ZERO_RETURN &&
|
||||||
ret != SOCKET_PEER_CLOSED_E && ret != SOCKET_ERROR_E)
|
ret != -SOCKET_PEER_CLOSED_E && ret != -SOCKET_ERROR_E)
|
||||||
break;
|
break;
|
||||||
|
|
||||||
wc_RemoveErrorNode(-1);
|
wc_RemoveErrorNode(-1);
|
||||||
|
|
@ -43823,6 +43874,13 @@ int wolfSSL_X509_check_issued(WOLFSSL_X509 *issuer, WOLFSSL_X509 *subject)
|
||||||
|
|
||||||
WOLFSSL_X509* wolfSSL_X509_dup(WOLFSSL_X509 *x)
|
WOLFSSL_X509* wolfSSL_X509_dup(WOLFSSL_X509 *x)
|
||||||
{
|
{
|
||||||
|
WOLFSSL_ENTER("wolfSSL_X509_dup");
|
||||||
|
|
||||||
|
if (x == NULL) {
|
||||||
|
WOLFSSL_MSG("Error: NULL certificate passed in");
|
||||||
|
return NULL;
|
||||||
|
}
|
||||||
|
|
||||||
return wolfSSL_X509_d2i(NULL, x->derCert->buffer, x->derCert->length);
|
return wolfSSL_X509_d2i(NULL, x->derCert->buffer, x->derCert->length);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -3154,6 +3154,8 @@ struct WOLFSSL_SESSION {
|
||||||
#ifdef OPENSSL_EXTRA
|
#ifdef OPENSSL_EXTRA
|
||||||
byte sessionCtxSz; /* sessionCtx length */
|
byte sessionCtxSz; /* sessionCtx length */
|
||||||
byte sessionCtx[ID_LEN]; /* app specific context id */
|
byte sessionCtx[ID_LEN]; /* app specific context id */
|
||||||
|
wolfSSL_Mutex refMutex; /* ref count mutex */
|
||||||
|
int refCount; /* reference count */
|
||||||
#endif
|
#endif
|
||||||
#ifdef WOLFSSL_TLS13
|
#ifdef WOLFSSL_TLS13
|
||||||
word16 namedGroup;
|
word16 namedGroup;
|
||||||
|
|
@ -3174,7 +3176,7 @@ struct WOLFSSL_SESSION {
|
||||||
byte staticTicket[SESSION_TICKET_LEN];
|
byte staticTicket[SESSION_TICKET_LEN];
|
||||||
byte isDynamic;
|
byte isDynamic;
|
||||||
#endif
|
#endif
|
||||||
#ifdef HAVE_EXT_CACHE
|
#if defined(HAVE_EXT_CACHE) || defined(OPENSSL_EXTRA)
|
||||||
byte isAlloced;
|
byte isAlloced;
|
||||||
#endif
|
#endif
|
||||||
#ifdef HAVE_EX_DATA
|
#ifdef HAVE_EX_DATA
|
||||||
|
|
|
||||||
|
|
@ -302,6 +302,7 @@ typedef STACK_OF(ACCESS_DESCRIPTION) AUTHORITY_INFO_ACCESS;
|
||||||
#define SSL_set_connect_state wolfSSL_set_connect_state
|
#define SSL_set_connect_state wolfSSL_set_connect_state
|
||||||
#define SSL_set_accept_state wolfSSL_set_accept_state
|
#define SSL_set_accept_state wolfSSL_set_accept_state
|
||||||
#define SSL_session_reused wolfSSL_session_reused
|
#define SSL_session_reused wolfSSL_session_reused
|
||||||
|
#define SSL_SESSION_up_ref wolfSSL_SESSION_up_ref
|
||||||
#define SSL_SESSION_dup wolfSSL_SESSION_dup
|
#define SSL_SESSION_dup wolfSSL_SESSION_dup
|
||||||
#define SSL_SESSION_free wolfSSL_SESSION_free
|
#define SSL_SESSION_free wolfSSL_SESSION_free
|
||||||
#define SSL_is_init_finished wolfSSL_is_init_finished
|
#define SSL_is_init_finished wolfSSL_is_init_finished
|
||||||
|
|
|
||||||
|
|
@ -1153,7 +1153,9 @@ WOLFSSL_API int wolfSSL_set_session_id_context(WOLFSSL*, const unsigned char*,
|
||||||
WOLFSSL_API void wolfSSL_set_connect_state(WOLFSSL*);
|
WOLFSSL_API void wolfSSL_set_connect_state(WOLFSSL*);
|
||||||
WOLFSSL_API void wolfSSL_set_accept_state(WOLFSSL*);
|
WOLFSSL_API void wolfSSL_set_accept_state(WOLFSSL*);
|
||||||
WOLFSSL_API int wolfSSL_session_reused(WOLFSSL*);
|
WOLFSSL_API int wolfSSL_session_reused(WOLFSSL*);
|
||||||
|
WOLFSSL_API int wolfSSL_SESSION_up_ref(WOLFSSL_SESSION* session);
|
||||||
WOLFSSL_API WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session);
|
WOLFSSL_API WOLFSSL_SESSION* wolfSSL_SESSION_dup(WOLFSSL_SESSION* session);
|
||||||
|
WOLFSSL_API WOLFSSL_SESSION* wolfSSL_SESSION_new(void);
|
||||||
WOLFSSL_API void wolfSSL_SESSION_free(WOLFSSL_SESSION* session);
|
WOLFSSL_API void wolfSSL_SESSION_free(WOLFSSL_SESSION* session);
|
||||||
WOLFSSL_API int wolfSSL_is_init_finished(WOLFSSL*);
|
WOLFSSL_API int wolfSSL_is_init_finished(WOLFSSL*);
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue