2009-07-28 04:03:57 +00:00
|
|
|
/*
|
2012-02-10 17:29:53 -05:00
|
|
|
* Copyright (c) 2009-2012 Niels Provos and Nick Mathewson
|
2009-07-28 04:03:57 +00:00
|
|
|
*
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
* modification, are permitted provided that the following conditions
|
|
|
|
* are met:
|
|
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
|
|
* documentation and/or other materials provided with the distribution.
|
|
|
|
* 3. The name of the author may not be used to endorse or promote products
|
|
|
|
* derived from this software without specific prior written permission.
|
|
|
|
*
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
|
|
|
|
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
|
|
|
|
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
|
|
|
|
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
|
|
|
|
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
|
|
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
|
|
|
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
*/
|
|
|
|
|
2013-12-17 13:28:23 +01:00
|
|
|
// Get rid of OSX 10.7 and greater deprecation warnings.
|
2014-01-22 13:19:49 +01:00
|
|
|
#if defined(__APPLE__) && defined(__clang__)
|
2013-12-17 13:28:23 +01:00
|
|
|
#pragma clang diagnostic ignored "-Wdeprecated-declarations"
|
2013-12-17 14:32:07 +01:00
|
|
|
#endif
|
2013-12-17 13:28:23 +01:00
|
|
|
|
2010-07-07 16:45:03 -04:00
|
|
|
#include "event2/event-config.h"
|
2011-01-02 08:43:45 -07:00
|
|
|
#include "evconfig-private.h"
|
|
|
|
|
|
|
|
#include <sys/types.h>
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2012-02-29 15:07:31 -05:00
|
|
|
#ifdef EVENT__HAVE_SYS_TIME_H
|
2009-07-28 04:03:57 +00:00
|
|
|
#include <sys/time.h>
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#include <errno.h>
|
|
|
|
#include <stdio.h>
|
|
|
|
#include <stdlib.h>
|
|
|
|
#include <string.h>
|
2012-02-29 15:07:31 -05:00
|
|
|
#ifdef EVENT__HAVE_STDARG_H
|
2009-07-28 04:03:57 +00:00
|
|
|
#include <stdarg.h>
|
|
|
|
#endif
|
2012-02-29 15:07:31 -05:00
|
|
|
#ifdef EVENT__HAVE_UNISTD_H
|
2009-07-28 04:03:57 +00:00
|
|
|
#include <unistd.h>
|
|
|
|
#endif
|
|
|
|
|
2011-05-25 19:50:56 -04:00
|
|
|
#ifdef _WIN32
|
2009-07-28 04:03:57 +00:00
|
|
|
#include <winsock2.h>
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#include "event2/bufferevent.h"
|
|
|
|
#include "event2/bufferevent_struct.h"
|
|
|
|
#include "event2/bufferevent_ssl.h"
|
|
|
|
#include "event2/buffer.h"
|
|
|
|
#include "event2/event.h"
|
|
|
|
|
|
|
|
#include "mm-internal.h"
|
|
|
|
#include "bufferevent-internal.h"
|
|
|
|
#include "log-internal.h"
|
|
|
|
|
|
|
|
#include <openssl/bio.h>
|
|
|
|
#include <openssl/ssl.h>
|
|
|
|
#include <openssl/err.h>
|
2016-09-19 22:05:15 +02:00
|
|
|
#include "openssl-compat.h"
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Define an OpenSSL bio that targets a bufferevent.
|
|
|
|
*/
|
|
|
|
|
|
|
|
/* --------------------
|
|
|
|
A BIO is an OpenSSL abstraction that handles reading and writing data. The
|
|
|
|
library will happily speak SSL over anything that implements a BIO
|
|
|
|
interface.
|
|
|
|
|
|
|
|
Here we define a BIO implementation that directs its output to a
|
|
|
|
bufferevent. We'll want to use this only when none of OpenSSL's built-in
|
2009-10-16 13:19:57 +00:00
|
|
|
IO mechanisms work for us.
|
2009-07-28 04:03:57 +00:00
|
|
|
-------------------- */
|
|
|
|
|
|
|
|
/* every BIO type needs its own integer type value. */
|
|
|
|
#define BIO_TYPE_LIBEVENT 57
|
|
|
|
/* ???? Arguably, we should set BIO_TYPE_FILTER or BIO_TYPE_SOURCE_SINK on
|
|
|
|
* this. */
|
|
|
|
|
|
|
|
#if 0
|
|
|
|
static void
|
|
|
|
print_err(int val)
|
|
|
|
{
|
|
|
|
int err;
|
|
|
|
printf("Error was %d\n", val);
|
|
|
|
|
2012-11-07 19:48:22 -08:00
|
|
|
while ((err = ERR_get_error())) {
|
2009-07-28 04:03:57 +00:00
|
|
|
const char *msg = (const char*)ERR_reason_error_string(err);
|
|
|
|
const char *lib = (const char*)ERR_lib_error_string(err);
|
|
|
|
const char *func = (const char*)ERR_func_error_string(err);
|
|
|
|
|
|
|
|
printf("%s in %s %s\n", msg, lib, func);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
#else
|
|
|
|
#define print_err(v) ((void)0)
|
|
|
|
#endif
|
|
|
|
|
|
|
|
/* Called to initialize a new BIO */
|
|
|
|
static int
|
|
|
|
bio_bufferevent_new(BIO *b)
|
|
|
|
{
|
2016-09-19 22:05:15 +02:00
|
|
|
BIO_set_init(b, 0);
|
|
|
|
BIO_set_data(b, NULL); /* We'll be putting the bufferevent in this field.*/
|
2009-07-28 04:03:57 +00:00
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Called to uninitialize the BIO. */
|
|
|
|
static int
|
|
|
|
bio_bufferevent_free(BIO *b)
|
|
|
|
{
|
|
|
|
if (!b)
|
|
|
|
return 0;
|
2016-09-19 22:05:15 +02:00
|
|
|
if (BIO_get_shutdown(b)) {
|
|
|
|
if (BIO_get_init(b) && BIO_get_data(b))
|
|
|
|
bufferevent_free(BIO_get_data(b));
|
|
|
|
BIO_free(b);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
return 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Called to extract data from the BIO. */
|
|
|
|
static int
|
|
|
|
bio_bufferevent_read(BIO *b, char *out, int outlen)
|
|
|
|
{
|
|
|
|
int r = 0;
|
|
|
|
struct evbuffer *input;
|
|
|
|
|
|
|
|
BIO_clear_retry_flags(b);
|
|
|
|
|
|
|
|
if (!out)
|
|
|
|
return 0;
|
2016-09-19 22:05:15 +02:00
|
|
|
if (!BIO_get_data(b))
|
2009-07-28 04:03:57 +00:00
|
|
|
return -1;
|
|
|
|
|
2016-09-19 22:05:15 +02:00
|
|
|
input = bufferevent_get_input(BIO_get_data(b));
|
2009-07-28 04:03:57 +00:00
|
|
|
if (evbuffer_get_length(input) == 0) {
|
|
|
|
/* If there's no data to read, say so. */
|
|
|
|
BIO_set_retry_read(b);
|
|
|
|
return -1;
|
|
|
|
} else {
|
|
|
|
r = evbuffer_remove(input, out, outlen);
|
|
|
|
}
|
|
|
|
|
|
|
|
return r;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Called to write data info the BIO */
|
|
|
|
static int
|
|
|
|
bio_bufferevent_write(BIO *b, const char *in, int inlen)
|
|
|
|
{
|
2016-09-19 22:05:15 +02:00
|
|
|
struct bufferevent *bufev = BIO_get_data(b);
|
2009-07-28 04:03:57 +00:00
|
|
|
struct evbuffer *output;
|
|
|
|
size_t outlen;
|
|
|
|
|
|
|
|
BIO_clear_retry_flags(b);
|
|
|
|
|
2016-09-19 22:05:15 +02:00
|
|
|
if (!BIO_get_data(b))
|
2009-07-28 04:03:57 +00:00
|
|
|
return -1;
|
|
|
|
|
|
|
|
output = bufferevent_get_output(bufev);
|
|
|
|
outlen = evbuffer_get_length(output);
|
|
|
|
|
|
|
|
/* Copy only as much data onto the output buffer as can fit under the
|
|
|
|
* high-water mark. */
|
2011-07-04 11:36:14 -04:00
|
|
|
if (bufev->wm_write.high && bufev->wm_write.high <= (outlen+inlen)) {
|
|
|
|
if (bufev->wm_write.high <= outlen) {
|
2009-07-28 04:03:57 +00:00
|
|
|
/* If no data can fit, we'll need to retry later. */
|
|
|
|
BIO_set_retry_write(b);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
inlen = bufev->wm_write.high - outlen;
|
|
|
|
}
|
|
|
|
|
2009-10-26 20:00:43 +00:00
|
|
|
EVUTIL_ASSERT(inlen > 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
evbuffer_add(output, in, inlen);
|
|
|
|
return inlen;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Called to handle various requests */
|
|
|
|
static long
|
|
|
|
bio_bufferevent_ctrl(BIO *b, int cmd, long num, void *ptr)
|
|
|
|
{
|
2016-09-19 22:05:15 +02:00
|
|
|
struct bufferevent *bufev = BIO_get_data(b);
|
2009-07-28 04:03:57 +00:00
|
|
|
long ret = 1;
|
|
|
|
|
|
|
|
switch (cmd) {
|
|
|
|
case BIO_CTRL_GET_CLOSE:
|
2016-09-19 22:05:15 +02:00
|
|
|
ret = BIO_get_shutdown(b);
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
case BIO_CTRL_SET_CLOSE:
|
2016-09-19 22:05:15 +02:00
|
|
|
BIO_set_shutdown(b, (int)num);
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
case BIO_CTRL_PENDING:
|
|
|
|
ret = evbuffer_get_length(bufferevent_get_input(bufev)) != 0;
|
|
|
|
break;
|
|
|
|
case BIO_CTRL_WPENDING:
|
|
|
|
ret = evbuffer_get_length(bufferevent_get_output(bufev)) != 0;
|
|
|
|
break;
|
|
|
|
/* XXXX These two are given a special-case treatment because
|
|
|
|
* of cargo-cultism. I should come up with a better reason. */
|
|
|
|
case BIO_CTRL_DUP:
|
|
|
|
case BIO_CTRL_FLUSH:
|
|
|
|
ret = 1;
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
ret = 0;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Called to write a string to the BIO */
|
|
|
|
static int
|
|
|
|
bio_bufferevent_puts(BIO *b, const char *s)
|
|
|
|
{
|
|
|
|
return bio_bufferevent_write(b, s, strlen(s));
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Method table for the bufferevent BIO */
|
2016-09-19 22:05:15 +02:00
|
|
|
static BIO_METHOD *methods_bufferevent;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
/* Return the method table for the bufferevents BIO */
|
|
|
|
static BIO_METHOD *
|
|
|
|
BIO_s_bufferevent(void)
|
|
|
|
{
|
2016-09-19 22:05:15 +02:00
|
|
|
if (methods_bufferevent == NULL) {
|
|
|
|
methods_bufferevent = BIO_meth_new(BIO_TYPE_LIBEVENT, "bufferevent");
|
|
|
|
if (methods_bufferevent == NULL)
|
|
|
|
return NULL;
|
|
|
|
BIO_meth_set_write(methods_bufferevent, bio_bufferevent_write);
|
|
|
|
BIO_meth_set_read(methods_bufferevent, bio_bufferevent_read);
|
|
|
|
BIO_meth_set_puts(methods_bufferevent, bio_bufferevent_puts);
|
|
|
|
BIO_meth_set_ctrl(methods_bufferevent, bio_bufferevent_ctrl);
|
|
|
|
BIO_meth_set_create(methods_bufferevent, bio_bufferevent_new);
|
|
|
|
BIO_meth_set_destroy(methods_bufferevent, bio_bufferevent_free);
|
|
|
|
}
|
|
|
|
return methods_bufferevent;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/* Create a new BIO to wrap communication around a bufferevent. If close_flag
|
|
|
|
* is true, the bufferevent will be freed when the BIO is closed. */
|
|
|
|
static BIO *
|
|
|
|
BIO_new_bufferevent(struct bufferevent *bufferevent, int close_flag)
|
|
|
|
{
|
|
|
|
BIO *result;
|
|
|
|
if (!bufferevent)
|
|
|
|
return NULL;
|
|
|
|
if (!(result = BIO_new(BIO_s_bufferevent())))
|
|
|
|
return NULL;
|
2016-09-19 22:05:15 +02:00
|
|
|
BIO_set_init(result, 1);
|
|
|
|
BIO_set_data(result, bufferevent);
|
|
|
|
BIO_set_shutdown(result, close_flag ? 1 : 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
return result;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* --------------------
|
2009-10-16 13:19:57 +00:00
|
|
|
Now, here's the OpenSSL-based implementation of bufferevent.
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
The implementation comes in two flavors: one that connects its SSL object
|
|
|
|
to an underlying bufferevent using a BIO_bufferevent, and one that has the
|
|
|
|
SSL object connect to a socket directly. The latter should generally be
|
|
|
|
faster, except on Windows, where your best bet is using a
|
|
|
|
bufferevent_async.
|
|
|
|
|
|
|
|
(OpenSSL supports many other BIO types, too. But we can't use any unless
|
|
|
|
we have a good way to get notified when they become readable/writable.)
|
|
|
|
-------------------- */
|
|
|
|
|
2010-08-04 14:54:38 -04:00
|
|
|
struct bio_data_counts {
|
|
|
|
unsigned long n_written;
|
|
|
|
unsigned long n_read;
|
|
|
|
};
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
struct bufferevent_openssl {
|
2009-10-16 13:19:57 +00:00
|
|
|
/* Shared fields with common bufferevent implementation code.
|
2009-07-28 04:03:57 +00:00
|
|
|
If we were set up with an underlying bufferevent, we use the
|
|
|
|
events here as timers only. If we have an SSL, then we use
|
|
|
|
the events as socket events.
|
|
|
|
*/
|
|
|
|
struct bufferevent_private bev;
|
|
|
|
/* An underlying bufferevent that we're directing our output to.
|
|
|
|
If it's NULL, then we're connected to an fd, not an evbuffer. */
|
|
|
|
struct bufferevent *underlying;
|
|
|
|
/* The SSL object doing our encryption. */
|
|
|
|
SSL *ssl;
|
|
|
|
|
|
|
|
/* A callback that's invoked when data arrives on our outbuf so we
|
|
|
|
know to write data to the SSL. */
|
|
|
|
struct evbuffer_cb_entry *outbuf_cb;
|
|
|
|
|
2010-08-04 14:54:38 -04:00
|
|
|
/* A count of how much data the bios have read/written total. Used
|
|
|
|
for rate-limiting. */
|
|
|
|
struct bio_data_counts counts;
|
|
|
|
|
2009-07-30 20:41:12 +00:00
|
|
|
/* If this value is greater than 0, then the last SSL_write blocked,
|
|
|
|
* and we need to try it again with this many bytes. */
|
|
|
|
ev_ssize_t last_write;
|
|
|
|
|
2009-10-30 21:08:29 +00:00
|
|
|
#define NUM_ERRORS 3
|
|
|
|
ev_uint32_t errors[NUM_ERRORS];
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
/* When we next get available space, we should say "read" instead of
|
|
|
|
"write". This can happen if there's a renegotiation during a read
|
|
|
|
operation. */
|
|
|
|
unsigned read_blocked_on_write : 1;
|
|
|
|
/* When we next get data, we should say "write" instead of "read". */
|
|
|
|
unsigned write_blocked_on_read : 1;
|
2011-11-21 19:57:19 -05:00
|
|
|
/* Treat TCP close before SSL close on SSL >= v3 as clean EOF. */
|
2009-07-28 04:03:57 +00:00
|
|
|
unsigned allow_dirty_shutdown : 1;
|
2009-10-30 21:08:29 +00:00
|
|
|
/* XXX */
|
|
|
|
unsigned n_errors : 2;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
/* Are we currently connecting, accepting, or doing IO? */
|
|
|
|
unsigned state : 2;
|
|
|
|
};
|
|
|
|
|
|
|
|
static int be_openssl_enable(struct bufferevent *, short);
|
|
|
|
static int be_openssl_disable(struct bufferevent *, short);
|
2013-04-09 18:16:13 -04:00
|
|
|
static void be_openssl_unlink(struct bufferevent *);
|
2009-07-28 04:03:57 +00:00
|
|
|
static void be_openssl_destruct(struct bufferevent *);
|
2010-01-22 16:14:49 -05:00
|
|
|
static int be_openssl_adj_timeouts(struct bufferevent *);
|
2009-07-28 04:03:57 +00:00
|
|
|
static int be_openssl_flush(struct bufferevent *bufev,
|
|
|
|
short iotype, enum bufferevent_flush_mode mode);
|
|
|
|
static int be_openssl_ctrl(struct bufferevent *, enum bufferevent_ctrl_op, union bufferevent_ctrl_data *);
|
|
|
|
|
|
|
|
const struct bufferevent_ops bufferevent_ops_openssl = {
|
|
|
|
"ssl",
|
2010-03-13 01:06:57 -05:00
|
|
|
evutil_offsetof(struct bufferevent_openssl, bev.bev),
|
2009-07-28 04:03:57 +00:00
|
|
|
be_openssl_enable,
|
|
|
|
be_openssl_disable,
|
2013-04-09 18:16:13 -04:00
|
|
|
be_openssl_unlink,
|
2009-07-28 04:03:57 +00:00
|
|
|
be_openssl_destruct,
|
|
|
|
be_openssl_adj_timeouts,
|
2010-02-18 17:41:15 -05:00
|
|
|
be_openssl_flush,
|
2009-07-28 04:03:57 +00:00
|
|
|
be_openssl_ctrl,
|
|
|
|
};
|
|
|
|
|
|
|
|
/* Given a bufferevent, return a pointer to the bufferevent_openssl that
|
2009-10-16 13:19:57 +00:00
|
|
|
* contains it, if any. */
|
2009-07-28 04:03:57 +00:00
|
|
|
static inline struct bufferevent_openssl *
|
|
|
|
upcast(struct bufferevent *bev)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_o;
|
|
|
|
if (bev->be_ops != &bufferevent_ops_openssl)
|
|
|
|
return NULL;
|
|
|
|
bev_o = (void*)( ((char*)bev) -
|
|
|
|
evutil_offsetof(struct bufferevent_openssl, bev.bev));
|
2009-10-26 20:00:43 +00:00
|
|
|
EVUTIL_ASSERT(bev_o->bev.bev.be_ops == &bufferevent_ops_openssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
return bev_o;
|
|
|
|
}
|
|
|
|
|
2009-10-30 21:08:29 +00:00
|
|
|
static inline void
|
|
|
|
put_error(struct bufferevent_openssl *bev_ssl, unsigned long err)
|
|
|
|
{
|
|
|
|
if (bev_ssl->n_errors == NUM_ERRORS)
|
|
|
|
return;
|
|
|
|
/* The error type according to openssl is "unsigned long", but
|
|
|
|
openssl never uses more than 32 bits of it. It _can't_ use more
|
|
|
|
than 32 bits of it, since it needs to report errors on systems
|
|
|
|
where long is only 32 bits.
|
|
|
|
*/
|
2009-11-05 15:57:22 +00:00
|
|
|
bev_ssl->errors[bev_ssl->n_errors++] = (ev_uint32_t) err;
|
2009-10-30 21:08:29 +00:00
|
|
|
}
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
/* Have the base communications channel (either the underlying bufferevent or
|
|
|
|
* ev_read and ev_write) start reading. Take the read-blocked-on-write flag
|
|
|
|
* into account. */
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
start_reading(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
if (bev_ssl->underlying) {
|
2012-02-29 15:07:33 -05:00
|
|
|
bufferevent_unsuspend_read_(bev_ssl->underlying,
|
Correct logic on disabling underlying bufferevents when disabling a filter
Previously, whenever writing was disabled on a bufferevent_filter (or
a filtering SSL bufferevent), we would stop writing on the underlying
bufferevent. This would make for trouble, though, since if you
implemented common patterns like "stop writing once data X has been
flushed", your bufferevent filter would disable the underlying
bufferevent after the data was flushed to the underlying bufferevent,
but before actually having it written to the network.
Now, we have filters leave their underlying bufferevents enabled for
reading and writing for reading and writing immediately. They are not
disabled, unless the user wants to disable them, which is now allowed.
To handle the case where we want to choke reading on the underlying
bufferevent because the filter no longer wants to read, we use
bufferevent_suspend_read(). This is analogous to the way that we use
bufferevent_suspend_write() to suspend writing on a filtering
bufferevent when the underlying bufferevent's output buffer has hit
its high watermark.
2010-10-08 00:59:02 -04:00
|
|
|
BEV_SUSPEND_FILT_READ);
|
|
|
|
return 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
2010-01-22 16:14:49 -05:00
|
|
|
int r;
|
2012-02-29 15:07:32 -05:00
|
|
|
r = bufferevent_add_event_(&bev->ev_read, &bev->timeout_read);
|
2010-01-22 16:14:49 -05:00
|
|
|
if (r == 0 && bev_ssl->read_blocked_on_write)
|
2012-02-29 15:07:32 -05:00
|
|
|
r = bufferevent_add_event_(&bev->ev_write,
|
2009-07-28 04:03:57 +00:00
|
|
|
&bev->timeout_write);
|
2010-01-22 16:14:49 -05:00
|
|
|
return r;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Have the base communications channel (either the underlying bufferevent or
|
|
|
|
* ev_read and ev_write) start writing. Take the write-blocked-on-read flag
|
|
|
|
* into account. */
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
start_writing(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
Correct logic on disabling underlying bufferevents when disabling a filter
Previously, whenever writing was disabled on a bufferevent_filter (or
a filtering SSL bufferevent), we would stop writing on the underlying
bufferevent. This would make for trouble, though, since if you
implemented common patterns like "stop writing once data X has been
flushed", your bufferevent filter would disable the underlying
bufferevent after the data was flushed to the underlying bufferevent,
but before actually having it written to the network.
Now, we have filters leave their underlying bufferevents enabled for
reading and writing for reading and writing immediately. They are not
disabled, unless the user wants to disable them, which is now allowed.
To handle the case where we want to choke reading on the underlying
bufferevent because the filter no longer wants to read, we use
bufferevent_suspend_read(). This is analogous to the way that we use
bufferevent_suspend_write() to suspend writing on a filtering
bufferevent when the underlying bufferevent's output buffer has hit
its high watermark.
2010-10-08 00:59:02 -04:00
|
|
|
int r = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
if (bev_ssl->underlying) {
|
Correct logic on disabling underlying bufferevents when disabling a filter
Previously, whenever writing was disabled on a bufferevent_filter (or
a filtering SSL bufferevent), we would stop writing on the underlying
bufferevent. This would make for trouble, though, since if you
implemented common patterns like "stop writing once data X has been
flushed", your bufferevent filter would disable the underlying
bufferevent after the data was flushed to the underlying bufferevent,
but before actually having it written to the network.
Now, we have filters leave their underlying bufferevents enabled for
reading and writing for reading and writing immediately. They are not
disabled, unless the user wants to disable them, which is now allowed.
To handle the case where we want to choke reading on the underlying
bufferevent because the filter no longer wants to read, we use
bufferevent_suspend_read(). This is analogous to the way that we use
bufferevent_suspend_write() to suspend writing on a filtering
bufferevent when the underlying bufferevent's output buffer has hit
its high watermark.
2010-10-08 00:59:02 -04:00
|
|
|
;
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
2012-02-29 15:07:32 -05:00
|
|
|
r = bufferevent_add_event_(&bev->ev_write, &bev->timeout_write);
|
2010-01-22 16:14:49 -05:00
|
|
|
if (!r && bev_ssl->write_blocked_on_read)
|
2012-02-29 15:07:32 -05:00
|
|
|
r = bufferevent_add_event_(&bev->ev_read,
|
2009-07-28 04:03:57 +00:00
|
|
|
&bev->timeout_read);
|
|
|
|
}
|
2010-01-22 16:14:49 -05:00
|
|
|
return r;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
stop_reading(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
if (bev_ssl->write_blocked_on_read)
|
|
|
|
return;
|
Correct logic on disabling underlying bufferevents when disabling a filter
Previously, whenever writing was disabled on a bufferevent_filter (or
a filtering SSL bufferevent), we would stop writing on the underlying
bufferevent. This would make for trouble, though, since if you
implemented common patterns like "stop writing once data X has been
flushed", your bufferevent filter would disable the underlying
bufferevent after the data was flushed to the underlying bufferevent,
but before actually having it written to the network.
Now, we have filters leave their underlying bufferevents enabled for
reading and writing for reading and writing immediately. They are not
disabled, unless the user wants to disable them, which is now allowed.
To handle the case where we want to choke reading on the underlying
bufferevent because the filter no longer wants to read, we use
bufferevent_suspend_read(). This is analogous to the way that we use
bufferevent_suspend_write() to suspend writing on a filtering
bufferevent when the underlying bufferevent's output buffer has hit
its high watermark.
2010-10-08 00:59:02 -04:00
|
|
|
if (bev_ssl->underlying) {
|
2012-02-29 15:07:33 -05:00
|
|
|
bufferevent_suspend_read_(bev_ssl->underlying,
|
Correct logic on disabling underlying bufferevents when disabling a filter
Previously, whenever writing was disabled on a bufferevent_filter (or
a filtering SSL bufferevent), we would stop writing on the underlying
bufferevent. This would make for trouble, though, since if you
implemented common patterns like "stop writing once data X has been
flushed", your bufferevent filter would disable the underlying
bufferevent after the data was flushed to the underlying bufferevent,
but before actually having it written to the network.
Now, we have filters leave their underlying bufferevents enabled for
reading and writing for reading and writing immediately. They are not
disabled, unless the user wants to disable them, which is now allowed.
To handle the case where we want to choke reading on the underlying
bufferevent because the filter no longer wants to read, we use
bufferevent_suspend_read(). This is analogous to the way that we use
bufferevent_suspend_write() to suspend writing on a filtering
bufferevent when the underlying bufferevent's output buffer has hit
its high watermark.
2010-10-08 00:59:02 -04:00
|
|
|
BEV_SUSPEND_FILT_READ);
|
|
|
|
} else {
|
2009-07-28 04:03:57 +00:00
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
|
|
|
event_del(&bev->ev_read);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
stop_writing(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
if (bev_ssl->read_blocked_on_write)
|
|
|
|
return;
|
Correct logic on disabling underlying bufferevents when disabling a filter
Previously, whenever writing was disabled on a bufferevent_filter (or
a filtering SSL bufferevent), we would stop writing on the underlying
bufferevent. This would make for trouble, though, since if you
implemented common patterns like "stop writing once data X has been
flushed", your bufferevent filter would disable the underlying
bufferevent after the data was flushed to the underlying bufferevent,
but before actually having it written to the network.
Now, we have filters leave their underlying bufferevents enabled for
reading and writing for reading and writing immediately. They are not
disabled, unless the user wants to disable them, which is now allowed.
To handle the case where we want to choke reading on the underlying
bufferevent because the filter no longer wants to read, we use
bufferevent_suspend_read(). This is analogous to the way that we use
bufferevent_suspend_write() to suspend writing on a filtering
bufferevent when the underlying bufferevent's output buffer has hit
its high watermark.
2010-10-08 00:59:02 -04:00
|
|
|
if (bev_ssl->underlying) {
|
|
|
|
;
|
|
|
|
} else {
|
2009-07-28 04:03:57 +00:00
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
|
|
|
event_del(&bev->ev_write);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
set_rbow(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
2009-07-30 20:41:21 +00:00
|
|
|
if (!bev_ssl->underlying)
|
|
|
|
stop_reading(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
bev_ssl->read_blocked_on_write = 1;
|
2010-01-22 16:14:49 -05:00
|
|
|
return start_writing(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
set_wbor(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
2009-07-30 20:41:21 +00:00
|
|
|
if (!bev_ssl->underlying)
|
|
|
|
stop_writing(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
bev_ssl->write_blocked_on_read = 1;
|
2010-01-22 16:14:49 -05:00
|
|
|
return start_reading(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
clear_rbow(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
2010-01-22 16:14:49 -05:00
|
|
|
int r = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
bev_ssl->read_blocked_on_write = 0;
|
|
|
|
if (!(bev->enabled & EV_WRITE))
|
|
|
|
stop_writing(bev_ssl);
|
|
|
|
if (bev->enabled & EV_READ)
|
2010-01-22 16:14:49 -05:00
|
|
|
r = start_reading(bev_ssl);
|
|
|
|
return r;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
clear_wbor(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
2010-01-22 16:14:49 -05:00
|
|
|
int r = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
bev_ssl->write_blocked_on_read = 0;
|
|
|
|
if (!(bev->enabled & EV_READ))
|
|
|
|
stop_reading(bev_ssl);
|
|
|
|
if (bev->enabled & EV_WRITE)
|
2010-01-22 16:14:49 -05:00
|
|
|
r = start_writing(bev_ssl);
|
|
|
|
return r;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
2011-11-21 19:24:50 -05:00
|
|
|
conn_closed(struct bufferevent_openssl *bev_ssl, int when, int errcode, int ret)
|
2009-07-28 04:03:57 +00:00
|
|
|
{
|
|
|
|
int event = BEV_EVENT_ERROR;
|
|
|
|
int dirty_shutdown = 0;
|
2009-10-30 21:08:29 +00:00
|
|
|
unsigned long err;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
switch (errcode) {
|
|
|
|
case SSL_ERROR_ZERO_RETURN:
|
|
|
|
/* Possibly a clean shutdown. */
|
|
|
|
if (SSL_get_shutdown(bev_ssl->ssl) & SSL_RECEIVED_SHUTDOWN)
|
|
|
|
event = BEV_EVENT_EOF;
|
|
|
|
else
|
|
|
|
dirty_shutdown = 1;
|
|
|
|
break;
|
|
|
|
case SSL_ERROR_SYSCALL:
|
|
|
|
/* IO error; possibly a dirty shutdown. */
|
2009-10-30 21:08:29 +00:00
|
|
|
if (ret == 0 && ERR_peek_error() == 0)
|
2009-07-28 04:03:57 +00:00
|
|
|
dirty_shutdown = 1;
|
|
|
|
break;
|
|
|
|
case SSL_ERROR_SSL:
|
|
|
|
/* Protocol error. */
|
|
|
|
break;
|
|
|
|
case SSL_ERROR_WANT_X509_LOOKUP:
|
|
|
|
/* XXXX handle this. */
|
|
|
|
break;
|
|
|
|
case SSL_ERROR_NONE:
|
|
|
|
case SSL_ERROR_WANT_READ:
|
|
|
|
case SSL_ERROR_WANT_WRITE:
|
|
|
|
case SSL_ERROR_WANT_CONNECT:
|
|
|
|
case SSL_ERROR_WANT_ACCEPT:
|
|
|
|
default:
|
2009-11-09 19:37:15 +00:00
|
|
|
/* should be impossible; treat as normal error. */
|
|
|
|
event_warnx("BUG: Unexpected OpenSSL error code %d", errcode);
|
|
|
|
break;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2009-10-30 21:08:29 +00:00
|
|
|
while ((err = ERR_get_error())) {
|
|
|
|
put_error(bev_ssl, err);
|
|
|
|
}
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
if (dirty_shutdown && bev_ssl->allow_dirty_shutdown)
|
|
|
|
event = BEV_EVENT_EOF;
|
|
|
|
|
|
|
|
stop_reading(bev_ssl);
|
|
|
|
stop_writing(bev_ssl);
|
2010-11-29 22:14:54 -05:00
|
|
|
|
2011-11-21 19:24:50 -05:00
|
|
|
/* when is BEV_EVENT_{READING|WRITING} */
|
|
|
|
event = when | event;
|
2013-12-03 23:01:54 +00:00
|
|
|
bufferevent_run_eventcb_(&bev_ssl->bev.bev, event, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2010-08-04 14:54:38 -04:00
|
|
|
static void
|
|
|
|
init_bio_counts(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
2016-11-11 17:51:37 -07:00
|
|
|
BIO *rbio, *wbio;
|
|
|
|
|
|
|
|
wbio = SSL_get_wbio(bev_ssl->ssl);
|
2016-10-12 17:49:17 -07:00
|
|
|
bev_ssl->counts.n_written = wbio ? BIO_number_written(wbio) : 0;
|
2016-11-11 17:51:37 -07:00
|
|
|
rbio = SSL_get_rbio(bev_ssl->ssl);
|
2016-10-12 17:49:17 -07:00
|
|
|
bev_ssl->counts.n_read = rbio ? BIO_number_read(rbio) : 0;
|
2010-08-04 14:54:38 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
static inline void
|
|
|
|
decrement_buckets(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
unsigned long num_w = BIO_number_written(SSL_get_wbio(bev_ssl->ssl));
|
2010-10-12 12:59:13 -04:00
|
|
|
unsigned long num_r = BIO_number_read(SSL_get_rbio(bev_ssl->ssl));
|
2010-08-04 14:54:38 -04:00
|
|
|
/* These next two subtractions can wrap around. That's okay. */
|
|
|
|
unsigned long w = num_w - bev_ssl->counts.n_written;
|
|
|
|
unsigned long r = num_r - bev_ssl->counts.n_read;
|
|
|
|
if (w)
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_decrement_write_buckets_(&bev_ssl->bev, w);
|
2010-08-04 14:54:38 -04:00
|
|
|
if (r)
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_decrement_read_buckets_(&bev_ssl->bev, r);
|
2010-08-04 14:54:38 -04:00
|
|
|
bev_ssl->counts.n_written = num_w;
|
|
|
|
bev_ssl->counts.n_read = num_r;
|
|
|
|
}
|
|
|
|
|
2012-08-22 12:30:42 -04:00
|
|
|
#define OP_MADE_PROGRESS 1
|
|
|
|
#define OP_BLOCKED 2
|
|
|
|
#define OP_ERR 4
|
|
|
|
|
|
|
|
/* Return a bitmask of OP_MADE_PROGRESS (if we read anything); OP_BLOCKED (if
|
|
|
|
we're now blocked); and OP_ERR (if an error occurred). */
|
2012-09-06 10:01:10 +02:00
|
|
|
static int
|
2012-08-22 12:30:42 -04:00
|
|
|
do_read(struct bufferevent_openssl *bev_ssl, int n_to_read) {
|
2009-07-28 04:03:57 +00:00
|
|
|
/* Requires lock */
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
|
|
|
struct evbuffer *input = bev->input;
|
2012-08-22 12:30:42 -04:00
|
|
|
int r, n, i, n_used = 0, atmost;
|
2009-07-28 04:03:57 +00:00
|
|
|
struct evbuffer_iovec space[2];
|
2012-08-22 12:30:42 -04:00
|
|
|
int result = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2012-09-06 10:01:10 +02:00
|
|
|
if (bev_ssl->bev.read_suspended)
|
|
|
|
return 0;
|
|
|
|
|
2012-02-29 15:07:32 -05:00
|
|
|
atmost = bufferevent_get_read_max_(&bev_ssl->bev);
|
2009-11-27 13:16:54 -05:00
|
|
|
if (n_to_read > atmost)
|
|
|
|
n_to_read = atmost;
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
n = evbuffer_reserve_space(input, n_to_read, space, 2);
|
|
|
|
if (n < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
for (i=0; i<n; ++i) {
|
2009-11-27 13:16:54 -05:00
|
|
|
if (bev_ssl->bev.read_suspended)
|
|
|
|
break;
|
2016-05-02 15:21:50 +03:00
|
|
|
ERR_clear_error();
|
2009-07-28 04:03:57 +00:00
|
|
|
r = SSL_read(bev_ssl->ssl, space[i].iov_base, space[i].iov_len);
|
|
|
|
if (r>0) {
|
2012-08-22 12:30:42 -04:00
|
|
|
result |= OP_MADE_PROGRESS;
|
2009-07-28 04:03:57 +00:00
|
|
|
if (bev_ssl->read_blocked_on_write)
|
2010-01-22 16:14:49 -05:00
|
|
|
if (clear_rbow(bev_ssl) < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR | result;
|
2009-07-28 04:03:57 +00:00
|
|
|
++n_used;
|
|
|
|
space[i].iov_len = r;
|
2010-08-04 14:54:38 -04:00
|
|
|
decrement_buckets(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
|
|
|
int err = SSL_get_error(bev_ssl->ssl, r);
|
|
|
|
print_err(err);
|
|
|
|
switch (err) {
|
|
|
|
case SSL_ERROR_WANT_READ:
|
|
|
|
/* Can't read until underlying has more data. */
|
|
|
|
if (bev_ssl->read_blocked_on_write)
|
2010-01-22 16:14:49 -05:00
|
|
|
if (clear_rbow(bev_ssl) < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR | result;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
case SSL_ERROR_WANT_WRITE:
|
|
|
|
/* This read operation requires a write, and the
|
|
|
|
* underlying is full */
|
|
|
|
if (!bev_ssl->read_blocked_on_write)
|
2010-01-22 16:14:49 -05:00
|
|
|
if (set_rbow(bev_ssl) < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR | result;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
default:
|
2011-11-21 19:24:50 -05:00
|
|
|
conn_closed(bev_ssl, BEV_EVENT_READING, err, r);
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
}
|
2012-08-22 12:30:42 -04:00
|
|
|
result |= OP_BLOCKED;
|
2009-07-28 04:03:57 +00:00
|
|
|
break; /* out of the loop */
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (n_used) {
|
|
|
|
evbuffer_commit_space(input, space, n_used);
|
|
|
|
if (bev_ssl->underlying)
|
|
|
|
BEV_RESET_GENERIC_READ_TIMEOUT(bev);
|
|
|
|
}
|
|
|
|
|
2012-08-22 12:30:42 -04:00
|
|
|
return result;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2012-08-22 12:30:42 -04:00
|
|
|
/* Return a bitmask of OP_MADE_PROGRESS (if we wrote anything); OP_BLOCKED (if
|
|
|
|
we're now blocked); and OP_ERR (if an error occurred). */
|
2009-07-28 04:03:57 +00:00
|
|
|
static int
|
|
|
|
do_write(struct bufferevent_openssl *bev_ssl, int atmost)
|
|
|
|
{
|
2012-08-22 12:30:42 -04:00
|
|
|
int i, r, n, n_written = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
|
|
|
struct evbuffer *output = bev->output;
|
|
|
|
struct evbuffer_iovec space[8];
|
2012-08-22 12:30:42 -04:00
|
|
|
int result = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2009-07-30 20:41:12 +00:00
|
|
|
if (bev_ssl->last_write > 0)
|
|
|
|
atmost = bev_ssl->last_write;
|
2009-11-27 13:16:54 -05:00
|
|
|
else
|
2012-02-29 15:07:32 -05:00
|
|
|
atmost = bufferevent_get_write_max_(&bev_ssl->bev);
|
2009-07-30 20:41:12 +00:00
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
n = evbuffer_peek(output, atmost, NULL, space, 8);
|
|
|
|
if (n < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR | result;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2009-12-17 12:38:46 -05:00
|
|
|
if (n > 8)
|
|
|
|
n = 8;
|
2009-07-28 04:03:57 +00:00
|
|
|
for (i=0; i < n; ++i) {
|
2009-11-27 13:16:54 -05:00
|
|
|
if (bev_ssl->bev.write_suspended)
|
|
|
|
break;
|
|
|
|
|
2010-07-19 15:31:19 +12:00
|
|
|
/* SSL_write will (reasonably) return 0 if we tell it to
|
|
|
|
send 0 data. Skip this case so we don't interpret the
|
|
|
|
result as an error */
|
|
|
|
if (space[i].iov_len == 0)
|
|
|
|
continue;
|
|
|
|
|
2016-05-02 15:21:50 +03:00
|
|
|
ERR_clear_error();
|
2009-07-28 04:03:57 +00:00
|
|
|
r = SSL_write(bev_ssl->ssl, space[i].iov_base,
|
|
|
|
space[i].iov_len);
|
|
|
|
if (r > 0) {
|
2012-08-22 12:30:42 -04:00
|
|
|
result |= OP_MADE_PROGRESS;
|
2009-07-28 04:03:57 +00:00
|
|
|
if (bev_ssl->write_blocked_on_read)
|
2010-01-22 16:14:49 -05:00
|
|
|
if (clear_wbor(bev_ssl) < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR | result;
|
2009-07-28 04:03:57 +00:00
|
|
|
n_written += r;
|
2009-07-30 20:41:12 +00:00
|
|
|
bev_ssl->last_write = -1;
|
2010-08-04 14:54:38 -04:00
|
|
|
decrement_buckets(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
|
|
|
int err = SSL_get_error(bev_ssl->ssl, r);
|
|
|
|
print_err(err);
|
|
|
|
switch (err) {
|
|
|
|
case SSL_ERROR_WANT_WRITE:
|
|
|
|
/* Can't read until underlying has more data. */
|
|
|
|
if (bev_ssl->write_blocked_on_read)
|
2010-01-22 16:14:49 -05:00
|
|
|
if (clear_wbor(bev_ssl) < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR | result;
|
2009-07-30 20:41:12 +00:00
|
|
|
bev_ssl->last_write = space[i].iov_len;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
case SSL_ERROR_WANT_READ:
|
|
|
|
/* This read operation requires a write, and the
|
|
|
|
* underlying is full */
|
|
|
|
if (!bev_ssl->write_blocked_on_read)
|
2010-01-22 16:14:49 -05:00
|
|
|
if (set_wbor(bev_ssl) < 0)
|
2012-08-22 12:30:42 -04:00
|
|
|
return OP_ERR | result;
|
2009-07-30 20:41:12 +00:00
|
|
|
bev_ssl->last_write = space[i].iov_len;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
default:
|
2011-11-21 19:24:50 -05:00
|
|
|
conn_closed(bev_ssl, BEV_EVENT_WRITING, err, r);
|
2009-07-30 20:41:12 +00:00
|
|
|
bev_ssl->last_write = -1;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
}
|
2012-08-22 12:30:42 -04:00
|
|
|
result |= OP_BLOCKED;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if (n_written) {
|
|
|
|
evbuffer_drain(output, n_written);
|
|
|
|
if (bev_ssl->underlying)
|
|
|
|
BEV_RESET_GENERIC_WRITE_TIMEOUT(bev);
|
|
|
|
|
2013-12-03 22:49:57 +00:00
|
|
|
bufferevent_trigger_nolock_(bev, EV_WRITE, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
2012-08-22 12:30:42 -04:00
|
|
|
return result;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
#define WRITE_FRAME 15000
|
|
|
|
|
|
|
|
#define READ_DEFAULT 4096
|
|
|
|
|
2011-11-17 11:45:49 -05:00
|
|
|
/* Try to figure out how many bytes to read; return 0 if we shouldn't be
|
|
|
|
* reading. */
|
|
|
|
static int
|
|
|
|
bytes_to_read(struct bufferevent_openssl *bev)
|
|
|
|
{
|
|
|
|
struct evbuffer *input = bev->bev.bev.input;
|
|
|
|
struct event_watermark *wm = &bev->bev.bev.wm_read;
|
2011-11-17 11:54:07 -05:00
|
|
|
int result = READ_DEFAULT;
|
|
|
|
ev_ssize_t limit;
|
|
|
|
/* XXX 99% of this is generic code that nearly all bufferevents will
|
|
|
|
* want. */
|
2011-11-17 11:45:49 -05:00
|
|
|
|
|
|
|
if (bev->write_blocked_on_read) {
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (! (bev->bev.bev.enabled & EV_READ)) {
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (bev->bev.read_suspended) {
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (wm->high) {
|
|
|
|
if (evbuffer_get_length(input) >= wm->high) {
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2011-11-17 11:54:07 -05:00
|
|
|
result = wm->high - evbuffer_get_length(input);
|
|
|
|
} else {
|
|
|
|
result = READ_DEFAULT;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Respect the rate limit */
|
2012-02-29 15:07:32 -05:00
|
|
|
limit = bufferevent_get_read_max_(&bev->bev);
|
2011-11-17 11:54:07 -05:00
|
|
|
if (result > limit) {
|
|
|
|
result = limit;
|
2011-11-17 11:45:49 -05:00
|
|
|
}
|
|
|
|
|
2011-11-17 11:54:07 -05:00
|
|
|
return result;
|
2011-11-17 11:45:49 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
/* Things look readable. If write is blocked on read, write till it isn't.
|
|
|
|
* Read from the underlying buffer until we block or we hit our high-water
|
|
|
|
* mark.
|
|
|
|
*/
|
|
|
|
static void
|
|
|
|
consider_reading(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
int r;
|
2011-11-17 11:45:49 -05:00
|
|
|
int n_to_read;
|
2012-08-22 12:30:42 -04:00
|
|
|
int all_result_flags = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
while (bev_ssl->write_blocked_on_read) {
|
|
|
|
r = do_write(bev_ssl, WRITE_FRAME);
|
2012-08-22 12:30:42 -04:00
|
|
|
if (r & (OP_BLOCKED|OP_ERR))
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
if (bev_ssl->write_blocked_on_read)
|
|
|
|
return;
|
2011-11-17 11:45:49 -05:00
|
|
|
|
2011-11-17 11:59:41 -05:00
|
|
|
n_to_read = bytes_to_read(bev_ssl);
|
|
|
|
|
|
|
|
while (n_to_read) {
|
2012-08-22 12:30:42 -04:00
|
|
|
r = do_read(bev_ssl, n_to_read);
|
|
|
|
all_result_flags |= r;
|
2011-11-17 11:59:41 -05:00
|
|
|
|
2012-08-22 12:30:42 -04:00
|
|
|
if (r & (OP_BLOCKED|OP_ERR))
|
|
|
|
break;
|
2012-03-30 15:08:40 -04:00
|
|
|
|
2012-09-03 21:42:15 +02:00
|
|
|
if (bev_ssl->bev.read_suspended)
|
|
|
|
break;
|
|
|
|
|
2011-11-17 17:42:45 -05:00
|
|
|
/* Read all pending data. This won't hit the network
|
|
|
|
* again, and will (most importantly) put us in a state
|
|
|
|
* where we don't need to read anything else until the
|
|
|
|
* socket is readable again. It'll potentially make us
|
|
|
|
* overrun our read high-watermark (somewhat
|
|
|
|
* regrettable). The damage to the rate-limit has
|
|
|
|
* already been done, since OpenSSL went and read a
|
|
|
|
* whole SSL record anyway. */
|
2011-11-17 11:59:41 -05:00
|
|
|
n_to_read = SSL_pending(bev_ssl->ssl);
|
2012-02-06 12:24:49 -05:00
|
|
|
|
|
|
|
/* XXX This if statement is actually a bad bug, added to avoid
|
|
|
|
* XXX a worse bug.
|
|
|
|
*
|
|
|
|
* The bad bug: It can potentially cause resource unfairness
|
|
|
|
* by reading too much data from the underlying bufferevent;
|
|
|
|
* it can potentially cause read looping if the underlying
|
|
|
|
* bufferevent is a bufferevent_pair and deferred callbacks
|
|
|
|
* aren't used.
|
|
|
|
*
|
|
|
|
* The worse bug: If we didn't do this, then we would
|
|
|
|
* potentially not read any more from bev_ssl->underlying
|
|
|
|
* until more data arrived there, which could lead to us
|
|
|
|
* waiting forever.
|
|
|
|
*/
|
|
|
|
if (!n_to_read && bev_ssl->underlying)
|
|
|
|
n_to_read = bytes_to_read(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
2010-10-20 13:41:02 -04:00
|
|
|
|
2012-08-22 12:30:42 -04:00
|
|
|
if (all_result_flags & OP_MADE_PROGRESS) {
|
2012-03-30 15:08:40 -04:00
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
|
|
|
|
2013-12-03 22:49:57 +00:00
|
|
|
bufferevent_trigger_nolock_(bev, EV_READ, 0);
|
2012-03-30 15:08:40 -04:00
|
|
|
}
|
|
|
|
|
2010-10-20 13:41:02 -04:00
|
|
|
if (!bev_ssl->underlying) {
|
|
|
|
/* Should be redundant, but let's avoid busy-looping */
|
|
|
|
if (bev_ssl->bev.read_suspended ||
|
|
|
|
!(bev_ssl->bev.bev.enabled & EV_READ)) {
|
|
|
|
event_del(&bev_ssl->bev.bev.ev_read);
|
|
|
|
}
|
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
consider_writing(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
int r;
|
|
|
|
struct evbuffer *output = bev_ssl->bev.bev.output;
|
|
|
|
struct evbuffer *target = NULL;
|
|
|
|
struct event_watermark *wm = NULL;
|
|
|
|
|
|
|
|
while (bev_ssl->read_blocked_on_write) {
|
|
|
|
r = do_read(bev_ssl, 1024); /* XXXX 1024 is a hack */
|
2012-08-22 12:30:42 -04:00
|
|
|
if (r & OP_MADE_PROGRESS) {
|
2012-03-30 15:08:40 -04:00
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
|
|
|
|
2013-12-03 22:49:57 +00:00
|
|
|
bufferevent_trigger_nolock_(bev, EV_READ, 0);
|
2012-03-30 15:08:40 -04:00
|
|
|
}
|
2012-08-22 12:30:42 -04:00
|
|
|
if (r & (OP_ERR|OP_BLOCKED))
|
|
|
|
break;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
if (bev_ssl->read_blocked_on_write)
|
|
|
|
return;
|
|
|
|
if (bev_ssl->underlying) {
|
|
|
|
target = bev_ssl->underlying->output;
|
|
|
|
wm = &bev_ssl->underlying->wm_write;
|
|
|
|
}
|
2011-11-15 18:33:50 -05:00
|
|
|
while ((bev_ssl->bev.bev.enabled & EV_WRITE) &&
|
2009-12-24 17:47:14 -05:00
|
|
|
(! bev_ssl->bev.write_suspended) &&
|
2009-07-28 04:03:57 +00:00
|
|
|
evbuffer_get_length(output) &&
|
|
|
|
(!target || (! wm->high || evbuffer_get_length(target) < wm->high))) {
|
|
|
|
int n_to_write;
|
|
|
|
if (wm && wm->high)
|
|
|
|
n_to_write = wm->high - evbuffer_get_length(target);
|
|
|
|
else
|
|
|
|
n_to_write = WRITE_FRAME;
|
|
|
|
r = do_write(bev_ssl, n_to_write);
|
2012-08-22 12:30:42 -04:00
|
|
|
if (r & (OP_BLOCKED|OP_ERR))
|
2011-11-15 18:33:50 -05:00
|
|
|
break;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2010-10-20 13:41:02 -04:00
|
|
|
if (!bev_ssl->underlying) {
|
|
|
|
if (evbuffer_get_length(output) == 0) {
|
|
|
|
event_del(&bev_ssl->bev.bev.ev_write);
|
|
|
|
} else if (bev_ssl->bev.write_suspended ||
|
|
|
|
!(bev_ssl->bev.bev.enabled & EV_WRITE)) {
|
|
|
|
/* Should be redundant, but let's avoid busy-looping */
|
|
|
|
event_del(&bev_ssl->bev.bev.ev_write);
|
|
|
|
}
|
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
be_openssl_readcb(struct bufferevent *bev_base, void *ctx)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = ctx;
|
|
|
|
consider_reading(bev_ssl);
|
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
be_openssl_writecb(struct bufferevent *bev_base, void *ctx)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = ctx;
|
|
|
|
consider_writing(bev_ssl);
|
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
be_openssl_eventcb(struct bufferevent *bev_base, short what, void *ctx)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = ctx;
|
|
|
|
int event = 0;
|
|
|
|
|
|
|
|
if (what & BEV_EVENT_EOF) {
|
|
|
|
if (bev_ssl->allow_dirty_shutdown)
|
|
|
|
event = BEV_EVENT_EOF;
|
|
|
|
else
|
|
|
|
event = BEV_EVENT_ERROR;
|
|
|
|
} else if (what & BEV_EVENT_TIMEOUT) {
|
|
|
|
/* We sure didn't set this. Propagate it to the user. */
|
|
|
|
event = what;
|
2011-07-26 10:31:18 +02:00
|
|
|
} else if (what & BEV_EVENT_ERROR) {
|
|
|
|
/* An error occurred on the connection. Propagate it to the user. */
|
|
|
|
event = what;
|
2009-07-28 04:03:57 +00:00
|
|
|
} else if (what & BEV_EVENT_CONNECTED) {
|
|
|
|
/* Ignore it. We're saying SSL_connect() already, which will
|
|
|
|
eat it. */
|
|
|
|
}
|
|
|
|
if (event)
|
2013-12-03 23:01:54 +00:00
|
|
|
bufferevent_run_eventcb_(&bev_ssl->bev.bev, event, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
be_openssl_readeventcb(evutil_socket_t fd, short what, void *ptr)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = ptr;
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_incref_and_lock_(&bev_ssl->bev.bev);
|
2012-09-07 15:53:02 -04:00
|
|
|
if (what == EV_TIMEOUT) {
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_run_eventcb_(&bev_ssl->bev.bev,
|
2013-12-03 23:01:54 +00:00
|
|
|
BEV_EVENT_TIMEOUT|BEV_EVENT_READING, 0);
|
2012-09-07 15:53:02 -04:00
|
|
|
} else {
|
2009-07-28 04:03:57 +00:00
|
|
|
consider_reading(bev_ssl);
|
2012-09-07 15:53:02 -04:00
|
|
|
}
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_decref_and_unlock_(&bev_ssl->bev.bev);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
be_openssl_writeeventcb(evutil_socket_t fd, short what, void *ptr)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = ptr;
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_incref_and_lock_(&bev_ssl->bev.bev);
|
2012-09-07 15:53:02 -04:00
|
|
|
if (what == EV_TIMEOUT) {
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_run_eventcb_(&bev_ssl->bev.bev,
|
2013-12-03 23:01:54 +00:00
|
|
|
BEV_EVENT_TIMEOUT|BEV_EVENT_WRITING, 0);
|
2012-09-07 15:53:02 -04:00
|
|
|
} else {
|
|
|
|
consider_writing(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_decref_and_unlock_(&bev_ssl->bev.bev);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2015-09-02 12:42:29 +03:00
|
|
|
static int
|
|
|
|
be_openssl_auto_fd(struct bufferevent_openssl *bev_ssl, int fd)
|
|
|
|
{
|
|
|
|
if (!bev_ssl->underlying) {
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
|
|
|
if (event_initialized(&bev->ev_read) && fd < 0) {
|
|
|
|
fd = event_get_fd(&bev->ev_read);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return fd;
|
|
|
|
}
|
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
set_open_callbacks(struct bufferevent_openssl *bev_ssl, evutil_socket_t fd)
|
|
|
|
{
|
|
|
|
if (bev_ssl->underlying) {
|
|
|
|
bufferevent_setcb(bev_ssl->underlying,
|
|
|
|
be_openssl_readcb, be_openssl_writecb, be_openssl_eventcb,
|
|
|
|
bev_ssl);
|
2010-01-22 16:14:49 -05:00
|
|
|
return 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
2010-01-22 16:14:49 -05:00
|
|
|
int rpending=0, wpending=0, r1=0, r2=0;
|
2015-08-22 21:38:18 +03:00
|
|
|
|
2015-09-02 12:40:26 +03:00
|
|
|
if (event_initialized(&bev->ev_read)) {
|
2015-09-02 14:19:16 +03:00
|
|
|
rpending = event_pending(&bev->ev_read, EV_READ, NULL);
|
|
|
|
wpending = event_pending(&bev->ev_write, EV_WRITE, NULL);
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
event_del(&bev->ev_read);
|
|
|
|
event_del(&bev->ev_write);
|
|
|
|
}
|
2015-08-22 21:38:18 +03:00
|
|
|
|
2015-09-02 12:40:26 +03:00
|
|
|
event_assign(&bev->ev_read, bev->ev_base, fd,
|
2013-04-09 18:16:13 -04:00
|
|
|
EV_READ|EV_PERSIST|EV_FINALIZE,
|
|
|
|
be_openssl_readeventcb, bev_ssl);
|
2015-09-02 12:40:26 +03:00
|
|
|
event_assign(&bev->ev_write, bev->ev_base, fd,
|
2013-04-09 18:16:13 -04:00
|
|
|
EV_WRITE|EV_PERSIST|EV_FINALIZE,
|
|
|
|
be_openssl_writeeventcb, bev_ssl);
|
2015-08-22 21:38:18 +03:00
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
if (rpending)
|
2012-02-29 15:07:32 -05:00
|
|
|
r1 = bufferevent_add_event_(&bev->ev_read, &bev->timeout_read);
|
2009-07-28 04:03:57 +00:00
|
|
|
if (wpending)
|
2012-02-29 15:07:32 -05:00
|
|
|
r2 = bufferevent_add_event_(&bev->ev_write, &bev->timeout_write);
|
2015-08-22 21:38:18 +03:00
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
return (r1<0 || r2<0) ? -1 : 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
}
|
2015-09-02 12:40:26 +03:00
|
|
|
static int
|
|
|
|
set_open_callbacks_auto(struct bufferevent_openssl *bev_ssl, evutil_socket_t fd)
|
|
|
|
{
|
2015-09-02 12:42:29 +03:00
|
|
|
fd = be_openssl_auto_fd(bev_ssl, fd);
|
2015-09-02 12:40:26 +03:00
|
|
|
return set_open_callbacks(bev_ssl, fd);
|
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
static int
|
|
|
|
do_handshake(struct bufferevent_openssl *bev_ssl)
|
|
|
|
{
|
|
|
|
int r;
|
|
|
|
|
|
|
|
switch (bev_ssl->state) {
|
|
|
|
default:
|
|
|
|
case BUFFEREVENT_SSL_OPEN:
|
2009-10-26 20:00:43 +00:00
|
|
|
EVUTIL_ASSERT(0);
|
2010-08-23 11:48:46 -04:00
|
|
|
return -1;
|
2009-07-28 04:03:57 +00:00
|
|
|
case BUFFEREVENT_SSL_CONNECTING:
|
|
|
|
case BUFFEREVENT_SSL_ACCEPTING:
|
2016-05-02 15:21:50 +03:00
|
|
|
ERR_clear_error();
|
2009-07-30 20:40:40 +00:00
|
|
|
r = SSL_do_handshake(bev_ssl->ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
}
|
2010-08-04 14:54:38 -04:00
|
|
|
decrement_buckets(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
if (r==1) {
|
2015-08-22 21:38:18 +03:00
|
|
|
int fd = event_get_fd(&bev_ssl->bev.bev.ev_read);
|
2009-07-28 04:03:57 +00:00
|
|
|
/* We're done! */
|
|
|
|
bev_ssl->state = BUFFEREVENT_SSL_OPEN;
|
2015-09-02 15:09:24 +03:00
|
|
|
set_open_callbacks(bev_ssl, fd); /* XXXX handle failure */
|
2009-07-28 04:03:57 +00:00
|
|
|
/* Call do_read and do_write as needed */
|
|
|
|
bufferevent_enable(&bev_ssl->bev.bev, bev_ssl->bev.bev.enabled);
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_run_eventcb_(&bev_ssl->bev.bev,
|
2013-12-03 23:01:54 +00:00
|
|
|
BEV_EVENT_CONNECTED, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
return 1;
|
|
|
|
} else {
|
|
|
|
int err = SSL_get_error(bev_ssl->ssl, r);
|
|
|
|
print_err(err);
|
|
|
|
switch (err) {
|
|
|
|
case SSL_ERROR_WANT_WRITE:
|
2010-10-14 10:53:26 -04:00
|
|
|
if (!bev_ssl->underlying) {
|
2009-08-14 20:07:17 +00:00
|
|
|
stop_reading(bev_ssl);
|
2010-01-22 16:14:49 -05:00
|
|
|
return start_writing(bev_ssl);
|
2009-08-14 20:07:17 +00:00
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
return 0;
|
|
|
|
case SSL_ERROR_WANT_READ:
|
2010-10-14 10:53:26 -04:00
|
|
|
if (!bev_ssl->underlying) {
|
2009-08-14 20:07:17 +00:00
|
|
|
stop_writing(bev_ssl);
|
2010-01-22 16:14:49 -05:00
|
|
|
return start_reading(bev_ssl);
|
2009-08-14 20:07:17 +00:00
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
return 0;
|
|
|
|
default:
|
2011-11-21 19:24:50 -05:00
|
|
|
conn_closed(bev_ssl, BEV_EVENT_READING, err, r);
|
2009-07-28 04:03:57 +00:00
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
be_openssl_handshakecb(struct bufferevent *bev_base, void *ctx)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = ctx;
|
2010-01-22 16:14:49 -05:00
|
|
|
do_handshake(bev_ssl);/* XXX handle failure */
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
2009-07-30 20:40:50 +00:00
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
static void
|
|
|
|
be_openssl_handshakeeventcb(evutil_socket_t fd, short what, void *ptr)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = ptr;
|
|
|
|
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_incref_and_lock_(&bev_ssl->bev.bev);
|
2009-07-28 04:03:57 +00:00
|
|
|
if (what & EV_TIMEOUT) {
|
2013-12-03 23:01:54 +00:00
|
|
|
bufferevent_run_eventcb_(&bev_ssl->bev.bev, BEV_EVENT_TIMEOUT, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
} else
|
2010-01-22 16:14:49 -05:00
|
|
|
do_handshake(bev_ssl);/* XXX handle failure */
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_decref_and_unlock_(&bev_ssl->bev.bev);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
set_handshake_callbacks(struct bufferevent_openssl *bev_ssl, evutil_socket_t fd)
|
|
|
|
{
|
|
|
|
if (bev_ssl->underlying) {
|
|
|
|
bufferevent_setcb(bev_ssl->underlying,
|
|
|
|
be_openssl_handshakecb, be_openssl_handshakecb,
|
|
|
|
be_openssl_eventcb,
|
|
|
|
bev_ssl);
|
2010-01-22 16:14:49 -05:00
|
|
|
return do_handshake(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
|
|
|
struct bufferevent *bev = &bev_ssl->bev.bev;
|
2015-08-22 21:38:18 +03:00
|
|
|
|
|
|
|
if (event_initialized(&bev->ev_read)) {
|
2009-07-28 04:03:57 +00:00
|
|
|
event_del(&bev->ev_read);
|
|
|
|
event_del(&bev->ev_write);
|
|
|
|
}
|
2015-08-22 21:38:18 +03:00
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
event_assign(&bev->ev_read, bev->ev_base, fd,
|
2013-04-09 18:16:13 -04:00
|
|
|
EV_READ|EV_PERSIST|EV_FINALIZE,
|
|
|
|
be_openssl_handshakeeventcb, bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
event_assign(&bev->ev_write, bev->ev_base, fd,
|
2013-04-09 18:16:13 -04:00
|
|
|
EV_WRITE|EV_PERSIST|EV_FINALIZE,
|
|
|
|
be_openssl_handshakeeventcb, bev_ssl);
|
2015-11-05 17:56:07 +03:00
|
|
|
if (fd >= 0)
|
|
|
|
bufferevent_enable(bev, bev->enabled);
|
|
|
|
return 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-08-22 21:38:18 +03:00
|
|
|
static int
|
|
|
|
set_handshake_callbacks_auto(struct bufferevent_openssl *bev_ssl, evutil_socket_t fd)
|
|
|
|
{
|
2015-09-02 12:42:29 +03:00
|
|
|
fd = be_openssl_auto_fd(bev_ssl, fd);
|
2015-08-22 21:38:18 +03:00
|
|
|
return set_handshake_callbacks(bev_ssl, fd);
|
|
|
|
}
|
|
|
|
|
2009-08-14 20:07:35 +00:00
|
|
|
int
|
|
|
|
bufferevent_ssl_renegotiate(struct bufferevent *bev)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bev);
|
|
|
|
if (!bev_ssl)
|
|
|
|
return -1;
|
|
|
|
if (SSL_renegotiate(bev_ssl->ssl) < 0)
|
|
|
|
return -1;
|
|
|
|
bev_ssl->state = BUFFEREVENT_SSL_CONNECTING;
|
2015-08-22 21:38:18 +03:00
|
|
|
if (set_handshake_callbacks_auto(bev_ssl, -1) < 0)
|
2010-01-22 16:14:49 -05:00
|
|
|
return -1;
|
2009-08-14 20:07:35 +00:00
|
|
|
if (!bev_ssl->underlying)
|
2010-01-22 16:14:49 -05:00
|
|
|
return do_handshake(bev_ssl);
|
2009-08-14 20:07:35 +00:00
|
|
|
return 0;
|
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
static void
|
|
|
|
be_openssl_outbuf_cb(struct evbuffer *buf,
|
2010-02-18 17:41:15 -05:00
|
|
|
const struct evbuffer_cb_info *cbinfo, void *arg)
|
2009-07-28 04:03:57 +00:00
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = arg;
|
2010-01-22 16:14:49 -05:00
|
|
|
int r = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
/* XXX need to hold a reference here. */
|
|
|
|
|
be_openssl: don't call do_write() directly from outbuf_cb
Otherwise we can trigger incorrect callback, the simplest way to trigger this
is using http regression tests -- https_chunk_out, since all it do is:
evhttp_send_reply_end()
evbuffer_add()
do_write()
evhttp_write_buffer()
evcon->cb = cb
And indeed this is what happens:
(gdb) bt
#0 do_write (bev_ssl=0x738a90, atmost=16384) at bufferevent_openssl.c:717
#1 0x00000000004b69f7 in consider_writing (bev_ssl=0x738a90) at bufferevent_openssl.c:875
#2 0x00000000004b7386 in be_openssl_outbuf_cb (buf=0x7387b0, cbinfo=0x7fffffffd590, arg=0x738a90) at bufferevent_openssl.c:1147
#3 0x0000000000490100 in evbuffer_run_callbacks (buffer=0x7387b0, running_deferred=0) at buffer.c:508
#4 0x00000000004901e5 in evbuffer_invoke_callbacks_ (buffer=0x7387b0) at buffer.c:529
#5 0x0000000000493a30 in evbuffer_add (buf=0x7387b0, data_in=0x4ecfb2, datlen=5) at buffer.c:1803
#6 0x00000000004be2e3 in evhttp_send_reply_end (req=0x7371a0) at http.c:2794
#7 0x000000000045c407 in http_chunked_trickle_cb (fd=-1, events=1, arg=0x75aaf0) at regress_http.c:402
...
(gdb) p bev.writecb
$4 = (bufferevent_data_cb) 0x4ba17e <evhttp_write_cb>
$5 = (void *) 0x7379b0
(gdb) p (struct evhttp_connection *)bev.cbarg
$6 = (struct evhttp_connection *) 0x7379b0
(gdb) p $6->cb
$7 = (void (*)(struct evhttp_connection *, void *)) 0x0
And be_sock don't do like this anyway.
Fixes: https_chunk_out
2015-11-13 16:00:39 +03:00
|
|
|
if (cbinfo->n_added && bev_ssl->state == BUFFEREVENT_SSL_OPEN &&
|
|
|
|
cbinfo->orig_size == 0) {
|
|
|
|
r = bufferevent_add_event_(&bev_ssl->bev.bev.ev_write,
|
|
|
|
&bev_ssl->bev.bev.timeout_write);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
2010-01-22 16:14:49 -05:00
|
|
|
/* XXX Handle r < 0 */
|
be_openssl: don't call do_write() directly from outbuf_cb
Otherwise we can trigger incorrect callback, the simplest way to trigger this
is using http regression tests -- https_chunk_out, since all it do is:
evhttp_send_reply_end()
evbuffer_add()
do_write()
evhttp_write_buffer()
evcon->cb = cb
And indeed this is what happens:
(gdb) bt
#0 do_write (bev_ssl=0x738a90, atmost=16384) at bufferevent_openssl.c:717
#1 0x00000000004b69f7 in consider_writing (bev_ssl=0x738a90) at bufferevent_openssl.c:875
#2 0x00000000004b7386 in be_openssl_outbuf_cb (buf=0x7387b0, cbinfo=0x7fffffffd590, arg=0x738a90) at bufferevent_openssl.c:1147
#3 0x0000000000490100 in evbuffer_run_callbacks (buffer=0x7387b0, running_deferred=0) at buffer.c:508
#4 0x00000000004901e5 in evbuffer_invoke_callbacks_ (buffer=0x7387b0) at buffer.c:529
#5 0x0000000000493a30 in evbuffer_add (buf=0x7387b0, data_in=0x4ecfb2, datlen=5) at buffer.c:1803
#6 0x00000000004be2e3 in evhttp_send_reply_end (req=0x7371a0) at http.c:2794
#7 0x000000000045c407 in http_chunked_trickle_cb (fd=-1, events=1, arg=0x75aaf0) at regress_http.c:402
...
(gdb) p bev.writecb
$4 = (bufferevent_data_cb) 0x4ba17e <evhttp_write_cb>
$5 = (void *) 0x7379b0
(gdb) p (struct evhttp_connection *)bev.cbarg
$6 = (struct evhttp_connection *) 0x7379b0
(gdb) p $6->cb
$7 = (void (*)(struct evhttp_connection *, void *)) 0x0
And be_sock don't do like this anyway.
Fixes: https_chunk_out
2015-11-13 16:00:39 +03:00
|
|
|
(void)r;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
be_openssl_enable(struct bufferevent *bev, short events)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bev);
|
2010-01-22 16:14:49 -05:00
|
|
|
int r1 = 0, r2 = 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
if (events & EV_READ)
|
2010-01-22 16:14:49 -05:00
|
|
|
r1 = start_reading(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
if (events & EV_WRITE)
|
2010-01-22 16:14:49 -05:00
|
|
|
r2 = start_writing(bev_ssl);
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
if (bev_ssl->underlying) {
|
2010-02-20 18:44:35 -05:00
|
|
|
if (events & EV_READ)
|
|
|
|
BEV_RESET_GENERIC_READ_TIMEOUT(bev);
|
|
|
|
if (events & EV_WRITE)
|
|
|
|
BEV_RESET_GENERIC_WRITE_TIMEOUT(bev);
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
if (events & EV_READ)
|
|
|
|
consider_reading(bev_ssl);
|
|
|
|
if (events & EV_WRITE)
|
|
|
|
consider_writing(bev_ssl);
|
|
|
|
}
|
2010-01-22 16:14:49 -05:00
|
|
|
return (r1 < 0 || r2 < 0) ? -1 : 0;
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
static int
|
|
|
|
be_openssl_disable(struct bufferevent *bev, short events)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bev);
|
|
|
|
|
|
|
|
if (events & EV_READ)
|
|
|
|
stop_reading(bev_ssl);
|
|
|
|
if (events & EV_WRITE)
|
|
|
|
stop_writing(bev_ssl);
|
|
|
|
|
2010-02-20 18:44:35 -05:00
|
|
|
if (bev_ssl->underlying) {
|
|
|
|
if (events & EV_READ)
|
|
|
|
BEV_DEL_GENERIC_READ_TIMEOUT(bev);
|
|
|
|
if (events & EV_WRITE)
|
|
|
|
BEV_DEL_GENERIC_WRITE_TIMEOUT(bev);
|
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
2013-04-09 18:16:13 -04:00
|
|
|
be_openssl_unlink(struct bufferevent *bev)
|
2009-07-28 04:03:57 +00:00
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bev);
|
|
|
|
|
|
|
|
if (bev_ssl->bev.options & BEV_OPT_CLOSE_ON_FREE) {
|
|
|
|
if (bev_ssl->underlying) {
|
2010-03-12 23:00:49 -05:00
|
|
|
if (BEV_UPCAST(bev_ssl->underlying)->refcnt < 2) {
|
|
|
|
event_warnx("BEV_OPT_CLOSE_ON_FREE set on an "
|
|
|
|
"bufferevent with too few references");
|
|
|
|
} else {
|
|
|
|
bufferevent_free(bev_ssl->underlying);
|
2013-04-26 11:36:43 -04:00
|
|
|
/* We still have a reference to it, via our
|
|
|
|
* BIO. So we don't drop this. */
|
2013-04-09 18:16:13 -04:00
|
|
|
// bev_ssl->underlying = NULL;
|
2010-03-12 23:00:49 -05:00
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
2010-11-09 11:43:47 -05:00
|
|
|
} else {
|
|
|
|
if (bev_ssl->underlying) {
|
2010-11-09 15:18:59 -05:00
|
|
|
if (bev_ssl->underlying->errorcb == be_openssl_eventcb)
|
|
|
|
bufferevent_setcb(bev_ssl->underlying,
|
|
|
|
NULL,NULL,NULL,NULL);
|
2012-02-29 15:07:33 -05:00
|
|
|
bufferevent_unsuspend_read_(bev_ssl->underlying,
|
2010-11-09 11:43:47 -05:00
|
|
|
BEV_SUSPEND_FILT_READ);
|
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2013-04-09 18:16:13 -04:00
|
|
|
static void
|
|
|
|
be_openssl_destruct(struct bufferevent *bev)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bev);
|
|
|
|
|
|
|
|
if (bev_ssl->bev.options & BEV_OPT_CLOSE_ON_FREE) {
|
|
|
|
if (! bev_ssl->underlying) {
|
|
|
|
evutil_socket_t fd = -1;
|
|
|
|
BIO *bio = SSL_get_wbio(bev_ssl->ssl);
|
|
|
|
if (bio)
|
|
|
|
fd = BIO_get_fd(bio, NULL);
|
|
|
|
if (fd >= 0)
|
|
|
|
evutil_closesocket(fd);
|
|
|
|
}
|
|
|
|
SSL_free(bev_ssl->ssl);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2010-01-22 16:14:49 -05:00
|
|
|
static int
|
2009-07-28 04:03:57 +00:00
|
|
|
be_openssl_adj_timeouts(struct bufferevent *bev)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bev);
|
|
|
|
|
2012-11-16 18:34:43 -05:00
|
|
|
if (bev_ssl->underlying) {
|
2012-02-29 15:07:32 -05:00
|
|
|
return bufferevent_generic_adj_timeouts_(bev);
|
2012-11-16 18:34:43 -05:00
|
|
|
} else {
|
2015-11-05 17:45:09 +03:00
|
|
|
return bufferevent_generic_adj_existing_timeouts_(bev);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
static int
|
|
|
|
be_openssl_flush(struct bufferevent *bufev,
|
|
|
|
short iotype, enum bufferevent_flush_mode mode)
|
|
|
|
{
|
|
|
|
/* XXXX Implement this. */
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
static int
|
|
|
|
be_openssl_ctrl(struct bufferevent *bev,
|
|
|
|
enum bufferevent_ctrl_op op, union bufferevent_ctrl_data *data)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bev);
|
|
|
|
switch (op) {
|
|
|
|
case BEV_CTRL_SET_FD:
|
|
|
|
if (bev_ssl->underlying)
|
|
|
|
return -1;
|
|
|
|
{
|
|
|
|
BIO *bio;
|
2010-11-14 19:52:18 -05:00
|
|
|
bio = BIO_new_socket(data->fd, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
SSL_set_bio(bev_ssl->ssl, bio, bio);
|
|
|
|
}
|
2015-09-02 14:19:16 +03:00
|
|
|
if (bev_ssl->state == BUFFEREVENT_SSL_OPEN && data->fd >= 0)
|
2010-01-22 16:14:49 -05:00
|
|
|
return set_open_callbacks(bev_ssl, data->fd);
|
2009-07-28 04:03:57 +00:00
|
|
|
else {
|
2010-01-22 16:14:49 -05:00
|
|
|
return set_handshake_callbacks(bev_ssl, data->fd);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
case BEV_CTRL_GET_FD:
|
|
|
|
data->fd = event_get_fd(&bev->ev_read);
|
|
|
|
return 0;
|
|
|
|
case BEV_CTRL_GET_UNDERLYING:
|
|
|
|
data->ptr = bev_ssl->underlying;
|
|
|
|
return 0;
|
2011-08-24 21:39:28 -04:00
|
|
|
case BEV_CTRL_CANCEL_ALL:
|
2009-07-28 04:03:57 +00:00
|
|
|
default:
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2009-07-30 20:41:00 +00:00
|
|
|
SSL *
|
|
|
|
bufferevent_openssl_get_ssl(struct bufferevent *bufev)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = upcast(bufev);
|
|
|
|
if (!bev_ssl)
|
|
|
|
return NULL;
|
|
|
|
return bev_ssl->ssl;
|
|
|
|
}
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
static struct bufferevent *
|
|
|
|
bufferevent_openssl_new_impl(struct event_base *base,
|
|
|
|
struct bufferevent *underlying,
|
|
|
|
evutil_socket_t fd,
|
|
|
|
SSL *ssl,
|
|
|
|
enum bufferevent_ssl_state state,
|
2009-10-21 18:48:22 +00:00
|
|
|
int options)
|
2009-07-28 04:03:57 +00:00
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl = NULL;
|
|
|
|
struct bufferevent_private *bev_p = NULL;
|
2009-10-21 18:48:22 +00:00
|
|
|
int tmp_options = options & ~BEV_OPT_THREADSAFE;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
if (underlying != NULL && fd >= 0)
|
|
|
|
return NULL; /* Only one can be set. */
|
|
|
|
|
|
|
|
if (!(bev_ssl = mm_calloc(1, sizeof(struct bufferevent_openssl))))
|
|
|
|
goto err;
|
|
|
|
|
|
|
|
bev_p = &bev_ssl->bev;
|
|
|
|
|
2012-02-29 15:07:33 -05:00
|
|
|
if (bufferevent_init_common_(bev_p, base,
|
2009-07-28 04:03:57 +00:00
|
|
|
&bufferevent_ops_openssl, tmp_options) < 0)
|
|
|
|
goto err;
|
|
|
|
|
2009-07-30 20:40:50 +00:00
|
|
|
/* Don't explode if we decide to realloc a chunk we're writing from in
|
|
|
|
* the output buffer. */
|
|
|
|
SSL_set_mode(ssl, SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER);
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
bev_ssl->underlying = underlying;
|
|
|
|
bev_ssl->ssl = ssl;
|
|
|
|
|
|
|
|
bev_ssl->outbuf_cb = evbuffer_add_cb(bev_p->bev.output,
|
|
|
|
be_openssl_outbuf_cb, bev_ssl);
|
|
|
|
|
|
|
|
if (options & BEV_OPT_THREADSAFE)
|
2012-02-29 15:07:33 -05:00
|
|
|
bufferevent_enable_locking_(&bev_ssl->bev.bev, NULL);
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2009-12-18 16:24:41 -05:00
|
|
|
if (underlying) {
|
2012-02-29 15:07:32 -05:00
|
|
|
bufferevent_init_generic_timeout_cbs_(&bev_ssl->bev.bev);
|
2012-02-29 15:07:33 -05:00
|
|
|
bufferevent_incref_(underlying);
|
2009-12-18 16:24:41 -05:00
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
bev_ssl->state = state;
|
2009-07-30 20:41:12 +00:00
|
|
|
bev_ssl->last_write = -1;
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2010-08-04 14:54:38 -04:00
|
|
|
init_bio_counts(bev_ssl);
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
switch (state) {
|
|
|
|
case BUFFEREVENT_SSL_ACCEPTING:
|
2009-07-30 20:40:40 +00:00
|
|
|
SSL_set_accept_state(bev_ssl->ssl);
|
2015-08-22 21:38:18 +03:00
|
|
|
if (set_handshake_callbacks_auto(bev_ssl, fd) < 0)
|
2010-01-22 16:14:49 -05:00
|
|
|
goto err;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
case BUFFEREVENT_SSL_CONNECTING:
|
2009-07-30 20:40:40 +00:00
|
|
|
SSL_set_connect_state(bev_ssl->ssl);
|
2015-08-22 21:38:18 +03:00
|
|
|
if (set_handshake_callbacks_auto(bev_ssl, fd) < 0)
|
2010-01-22 16:14:49 -05:00
|
|
|
goto err;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
case BUFFEREVENT_SSL_OPEN:
|
2015-09-02 12:40:26 +03:00
|
|
|
if (set_open_callbacks_auto(bev_ssl, fd) < 0)
|
2010-01-22 16:14:49 -05:00
|
|
|
goto err;
|
2009-07-28 04:03:57 +00:00
|
|
|
break;
|
|
|
|
default:
|
|
|
|
goto err;
|
|
|
|
}
|
|
|
|
|
Correct logic on disabling underlying bufferevents when disabling a filter
Previously, whenever writing was disabled on a bufferevent_filter (or
a filtering SSL bufferevent), we would stop writing on the underlying
bufferevent. This would make for trouble, though, since if you
implemented common patterns like "stop writing once data X has been
flushed", your bufferevent filter would disable the underlying
bufferevent after the data was flushed to the underlying bufferevent,
but before actually having it written to the network.
Now, we have filters leave their underlying bufferevents enabled for
reading and writing for reading and writing immediately. They are not
disabled, unless the user wants to disable them, which is now allowed.
To handle the case where we want to choke reading on the underlying
bufferevent because the filter no longer wants to read, we use
bufferevent_suspend_read(). This is analogous to the way that we use
bufferevent_suspend_write() to suspend writing on a filtering
bufferevent when the underlying bufferevent's output buffer has hit
its high watermark.
2010-10-08 00:59:02 -04:00
|
|
|
if (underlying) {
|
2011-08-29 23:39:26 +02:00
|
|
|
bufferevent_setwatermark(underlying, EV_READ, 0, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
bufferevent_enable(underlying, EV_READ|EV_WRITE);
|
2010-10-14 10:53:26 -04:00
|
|
|
if (state == BUFFEREVENT_SSL_OPEN)
|
2012-02-29 15:07:33 -05:00
|
|
|
bufferevent_suspend_read_(underlying,
|
2010-10-14 10:53:26 -04:00
|
|
|
BEV_SUSPEND_FILT_READ);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
return &bev_ssl->bev.bev;
|
|
|
|
err:
|
|
|
|
if (bev_ssl)
|
|
|
|
bufferevent_free(&bev_ssl->bev.bev);
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
struct bufferevent *
|
|
|
|
bufferevent_openssl_filter_new(struct event_base *base,
|
|
|
|
struct bufferevent *underlying,
|
|
|
|
SSL *ssl,
|
|
|
|
enum bufferevent_ssl_state state,
|
2009-10-21 18:48:22 +00:00
|
|
|
int options)
|
2009-07-28 04:03:57 +00:00
|
|
|
{
|
2010-03-13 00:23:06 -05:00
|
|
|
/* We don't tell the BIO to close the bufferevent; we do it ourselves
|
|
|
|
* on be_openssl_destruct */
|
|
|
|
int close_flag = 0; /* options & BEV_OPT_CLOSE_ON_FREE; */
|
2009-07-28 04:03:57 +00:00
|
|
|
BIO *bio;
|
|
|
|
if (!underlying)
|
|
|
|
return NULL;
|
|
|
|
if (!(bio = BIO_new_bufferevent(underlying, close_flag)))
|
|
|
|
return NULL;
|
|
|
|
|
|
|
|
SSL_set_bio(ssl, bio, bio);
|
|
|
|
|
|
|
|
return bufferevent_openssl_new_impl(
|
|
|
|
base, underlying, -1, ssl, state, options);
|
|
|
|
}
|
|
|
|
|
|
|
|
struct bufferevent *
|
|
|
|
bufferevent_openssl_socket_new(struct event_base *base,
|
|
|
|
evutil_socket_t fd,
|
|
|
|
SSL *ssl,
|
|
|
|
enum bufferevent_ssl_state state,
|
2009-10-21 18:48:22 +00:00
|
|
|
int options)
|
2009-07-28 04:03:57 +00:00
|
|
|
{
|
|
|
|
/* Does the SSL already have an fd? */
|
|
|
|
BIO *bio = SSL_get_wbio(ssl);
|
|
|
|
long have_fd = -1;
|
2010-10-14 11:41:10 -04:00
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
if (bio)
|
|
|
|
have_fd = BIO_get_fd(bio, NULL);
|
|
|
|
|
|
|
|
if (have_fd >= 0) {
|
|
|
|
/* The SSL is already configured with an fd. */
|
|
|
|
if (fd < 0) {
|
|
|
|
/* We should learn the fd from the SSL. */
|
|
|
|
fd = (evutil_socket_t) have_fd;
|
|
|
|
} else if (have_fd == (long)fd) {
|
|
|
|
/* We already know the fd from the SSL; do nothing */
|
|
|
|
} else {
|
|
|
|
/* We specified an fd different from that of the SSL.
|
|
|
|
This is probably an error on our part. Fail. */
|
|
|
|
return NULL;
|
|
|
|
}
|
2010-11-14 19:52:18 -05:00
|
|
|
(void) BIO_set_close(bio, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
|
|
|
/* The SSL isn't configured with a BIO with an fd. */
|
|
|
|
if (fd >= 0) {
|
|
|
|
/* ... and we have an fd we want to use. */
|
2010-11-14 19:52:18 -05:00
|
|
|
bio = BIO_new_socket(fd, 0);
|
2009-07-28 04:03:57 +00:00
|
|
|
SSL_set_bio(ssl, bio, bio);
|
|
|
|
} else {
|
|
|
|
/* Leave the fd unset. */
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return bufferevent_openssl_new_impl(
|
|
|
|
base, NULL, fd, ssl, state, options);
|
|
|
|
}
|
2009-10-30 21:08:29 +00:00
|
|
|
|
2011-11-24 12:31:50 -05:00
|
|
|
int
|
|
|
|
bufferevent_openssl_get_allow_dirty_shutdown(struct bufferevent *bev)
|
2011-11-21 19:57:19 -05:00
|
|
|
{
|
2011-11-24 12:31:50 -05:00
|
|
|
int allow_dirty_shutdown = -1;
|
2011-11-21 19:57:19 -05:00
|
|
|
struct bufferevent_openssl *bev_ssl;
|
|
|
|
BEV_LOCK(bev);
|
|
|
|
bev_ssl = upcast(bev);
|
2011-11-24 12:31:50 -05:00
|
|
|
if (bev_ssl)
|
|
|
|
allow_dirty_shutdown = bev_ssl->allow_dirty_shutdown;
|
2011-11-21 19:57:19 -05:00
|
|
|
BEV_UNLOCK(bev);
|
|
|
|
return allow_dirty_shutdown;
|
|
|
|
}
|
|
|
|
|
2011-11-24 12:31:50 -05:00
|
|
|
void
|
|
|
|
bufferevent_openssl_set_allow_dirty_shutdown(struct bufferevent *bev,
|
2011-11-21 19:57:19 -05:00
|
|
|
int allow_dirty_shutdown)
|
|
|
|
{
|
|
|
|
struct bufferevent_openssl *bev_ssl;
|
|
|
|
BEV_LOCK(bev);
|
|
|
|
bev_ssl = upcast(bev);
|
2011-11-24 12:31:50 -05:00
|
|
|
if (bev_ssl)
|
|
|
|
bev_ssl->allow_dirty_shutdown = !!allow_dirty_shutdown;
|
2011-11-21 19:57:19 -05:00
|
|
|
BEV_UNLOCK(bev);
|
|
|
|
}
|
|
|
|
|
2009-10-30 21:08:29 +00:00
|
|
|
unsigned long
|
|
|
|
bufferevent_get_openssl_error(struct bufferevent *bev)
|
|
|
|
{
|
|
|
|
unsigned long err = 0;
|
|
|
|
struct bufferevent_openssl *bev_ssl;
|
|
|
|
BEV_LOCK(bev);
|
|
|
|
bev_ssl = upcast(bev);
|
|
|
|
if (bev_ssl && bev_ssl->n_errors) {
|
|
|
|
err = bev_ssl->errors[--bev_ssl->n_errors];
|
|
|
|
}
|
|
|
|
BEV_UNLOCK(bev);
|
|
|
|
return err;
|
|
|
|
}
|