481c12a8b3
properly distribute the certificates between the SSL context's trust store and our host cert list. as a drive-by, clean up some nasty type casts at the cost of including a second OpenSSL header into socket.h.
156 lines
4.3 KiB
C
156 lines
4.3 KiB
C
/*
|
|
* mbsync - mailbox synchronizer
|
|
* Copyright (C) 2000-2002 Michael R. Elkins <me@mutt.org>
|
|
* Copyright (C) 2002-2006,2010-2012 Oswald Buddenhagen <ossi@users.sf.net>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*
|
|
* As a special exception, mbsync may be linked with the OpenSSL library,
|
|
* despite that library's more restrictive license.
|
|
*/
|
|
|
|
#ifndef SOCKET_H
|
|
#define SOCKET_H
|
|
|
|
#include "common.h"
|
|
|
|
#ifdef HAVE_LIBZ
|
|
#include <zlib.h>
|
|
#endif
|
|
|
|
#ifdef HAVE_LIBSSL
|
|
# include <openssl/ssl.h>
|
|
# include <openssl/x509.h>
|
|
|
|
enum {
|
|
TLSv1 = 4,
|
|
TLSv1_1 = 8,
|
|
TLSv1_2 = 16,
|
|
TLSv1_3 = 32
|
|
};
|
|
#endif
|
|
|
|
typedef struct {
|
|
char *tunnel;
|
|
char *host;
|
|
ushort port;
|
|
int timeout;
|
|
#ifdef HAVE_LIBSSL
|
|
char *cert_file;
|
|
char *client_certfile;
|
|
char *client_keyfile;
|
|
char *cipher_string;
|
|
char system_certs;
|
|
char ssl_versions;
|
|
|
|
/* these are actually variables and are leaked at the end */
|
|
char ssl_ctx_valid;
|
|
STACK_OF(X509) *trusted_certs;
|
|
SSL_CTX *SSLContext;
|
|
#endif
|
|
} server_conf_t;
|
|
|
|
typedef struct buff_chunk {
|
|
struct buff_chunk *next;
|
|
uint len;
|
|
char data[1];
|
|
} buff_chunk_t;
|
|
|
|
typedef struct {
|
|
/* connection */
|
|
int fd;
|
|
int state;
|
|
const server_conf_t *conf; /* needed during connect */
|
|
#ifdef HAVE_IPV6
|
|
struct addrinfo *addrs, *curr_addr; /* needed during connect */
|
|
#else
|
|
struct addr_info *addrs, *curr_addr; /* needed during connect */
|
|
#endif
|
|
char *name;
|
|
#ifdef HAVE_LIBSSL
|
|
SSL *ssl;
|
|
wakeup_t ssl_fake;
|
|
#endif
|
|
#ifdef HAVE_LIBZ
|
|
z_streamp in_z, out_z;
|
|
wakeup_t z_fake;
|
|
int z_written;
|
|
#endif
|
|
|
|
void (*bad_callback)( void *aux ); /* async fail while sending or listening */
|
|
void (*read_callback)( void *aux ); /* data available for reading */
|
|
void (*write_callback)( void *aux ); /* all *queued* data was sent */
|
|
union {
|
|
void (*connect)( int ok, void *aux );
|
|
void (*starttls)( int ok, void *aux );
|
|
} callbacks;
|
|
void *callback_aux;
|
|
|
|
notifier_t notify;
|
|
wakeup_t fd_fake;
|
|
wakeup_t fd_timeout;
|
|
|
|
/* writing */
|
|
buff_chunk_t *append_buf; /* accumulating buffer */
|
|
buff_chunk_t *write_buf, **write_buf_append; /* buffer head & tail */
|
|
#ifdef HAVE_LIBZ
|
|
uint append_avail; /* space left in accumulating buffer */
|
|
#endif
|
|
uint write_offset; /* offset into buffer head */
|
|
uint buffer_mem; /* memory currently occupied by buffers in the queue */
|
|
|
|
/* reading */
|
|
uint offset; /* start of filled bytes in buffer */
|
|
uint bytes; /* number of filled bytes in buffer */
|
|
uint scanoff; /* offset to continue scanning for newline at, relative to 'offset' */
|
|
char buf[100000];
|
|
#ifdef HAVE_LIBZ
|
|
char z_buf[100000];
|
|
#endif
|
|
} conn_t;
|
|
|
|
/* call this before doing anything with the socket */
|
|
static INLINE void socket_init( conn_t *conn,
|
|
const server_conf_t *conf,
|
|
void (*bad_callback)( void *aux ),
|
|
void (*read_callback)( void *aux ),
|
|
void (*write_callback)( void *aux ),
|
|
void *aux )
|
|
{
|
|
conn->conf = conf;
|
|
conn->bad_callback = bad_callback;
|
|
conn->read_callback = read_callback;
|
|
conn->write_callback = write_callback;
|
|
conn->callback_aux = aux;
|
|
conn->fd = -1;
|
|
conn->name = NULL;
|
|
conn->write_buf_append = &conn->write_buf;
|
|
}
|
|
void socket_connect( conn_t *conn, void (*cb)( int ok, void *aux ) );
|
|
void socket_start_tls(conn_t *conn, void (*cb)( int ok, void *aux ) );
|
|
void socket_start_deflate( conn_t *conn );
|
|
void socket_close( conn_t *sock );
|
|
void socket_expect_activity( conn_t *sock, int expect );
|
|
int socket_read( conn_t *sock, char *buf, uint len ); /* never waits */
|
|
char *socket_read_line( conn_t *sock ); /* don't free return value; never waits */
|
|
typedef enum { KeepOwn = 0, GiveOwn } ownership_t;
|
|
typedef struct {
|
|
char *buf;
|
|
uint len;
|
|
ownership_t takeOwn;
|
|
} conn_iovec_t;
|
|
void socket_write( conn_t *sock, conn_iovec_t *iov, int iovcnt );
|
|
|
|
#endif
|