Commit fe4abfb2 authored by unknown's avatar unknown

Import yaSSL version 1.7.2

- Fix bug#27265
- Support for fixing bug#18441


extra/yassl/include/openssl/crypto.h:
  Import patch yassl.diff
extra/yassl/include/openssl/ssl.h:
  Import patch yassl.diff
extra/yassl/include/yassl_int.hpp:
  Import patch yassl.diff
extra/yassl/src/handshake.cpp:
  Import patch yassl.diff
extra/yassl/src/socket_wrapper.cpp:
  Import patch yassl.diff
extra/yassl/src/ssl.cpp:
  Import patch yassl.diff
extra/yassl/src/yassl_int.cpp:
  Import patch yassl.diff
extra/yassl/taocrypt/src/coding.cpp:
  Import patch yassl.diff
extra/yassl/taocrypt/src/crypto.cpp:
  Import patch yassl.diff
extra/yassl/include/openssl/des_old.h:
  Import patch yassl.diff
extra/yassl/include/openssl/evp.h:
  Import patch yassl.diff
extra/yassl/include/openssl/hmac.h:
  Import patch yassl.diff
extra/yassl/include/openssl/objects.h:
  Import patch yassl.diff
extra/yassl/include/openssl/sha.h:
  Import patch yassl.diff
extra/yassl/include/openssl/prefix_ssl.h:
  Update prefixes
parent 6fdcb4c7
...@@ -9,6 +9,7 @@ ...@@ -9,6 +9,7 @@
const char* SSLeay_version(int type); const char* SSLeay_version(int type);
#define SSLEAY_NUMBER_DEFINED
#define SSLEAY_VERSION 0x0900L #define SSLEAY_VERSION 0x0900L
#define SSLEAY_VERSION_NUMBER SSLEAY_VERSION #define SSLEAY_VERSION_NUMBER SSLEAY_VERSION
......
/* des_old.h for openvn */
/* evp.h for openSSL */
#ifndef SSLEAY_NUMBER_DEFINED
#define SSLEAY_NUMBER_DEFINED
/* for OpenVPN */
#define SSLEAY_VERSION_NUMBER 0x0090700f
#endif /* SSLEAY_NUMBER_DEFINED */
/* hmac.h for openvpn */
/* objects.h for openvpn */
...@@ -30,6 +30,7 @@ ...@@ -30,6 +30,7 @@
#define SSL_CTX_new yaSSL_CTX_new #define SSL_CTX_new yaSSL_CTX_new
#define SSL_new yaSSL_new #define SSL_new yaSSL_new
#define SSL_set_fd yaSSL_set_fd #define SSL_set_fd yaSSL_set_fd
#define SSL_get_fd yaSSL_get_fd
#define SSL_connect yaSSL_connect #define SSL_connect yaSSL_connect
#define SSL_write yaSSL_write #define SSL_write yaSSL_write
#define SSL_read yaSSL_read #define SSL_read yaSSL_read
...@@ -91,6 +92,8 @@ ...@@ -91,6 +92,8 @@
#define SSL_set_rfd yaSSL_set_rfd #define SSL_set_rfd yaSSL_set_rfd
#define SSL_set_wfd yaSSL_set_wfd #define SSL_set_wfd yaSSL_set_wfd
#define SSL_set_shutdown yaSSL_set_shutdown #define SSL_set_shutdown yaSSL_set_shutdown
#define SSL_set_quiet_shutdown yaSSL_set_quiet_shutdown
#define SSL_get_quiet_shutdown yaSSL_get_quiet_shutdown
#define SSL_want_read yaSSL_want_read #define SSL_want_read yaSSL_want_read
#define SSL_want_write yaSSL_want_write #define SSL_want_write yaSSL_want_write
#define SSL_pending yaSSL_pending #define SSL_pending yaSSL_pending
......
...@@ -34,7 +34,7 @@ ...@@ -34,7 +34,7 @@
#include "rsa.h" #include "rsa.h"
#define YASSL_VERSION "1.6.5" #define YASSL_VERSION "1.7.2"
#if defined(__cplusplus) #if defined(__cplusplus)
...@@ -201,6 +201,7 @@ typedef int YASSL_SOCKET_T; ...@@ -201,6 +201,7 @@ typedef int YASSL_SOCKET_T;
SSL_CTX* SSL_CTX_new(SSL_METHOD*); SSL_CTX* SSL_CTX_new(SSL_METHOD*);
SSL* SSL_new(SSL_CTX*); SSL* SSL_new(SSL_CTX*);
int SSL_set_fd (SSL*, YASSL_SOCKET_T); int SSL_set_fd (SSL*, YASSL_SOCKET_T);
YASSL_SOCKET_T SSL_get_fd(const SSL*);
int SSL_connect(SSL*); int SSL_connect(SSL*);
int SSL_write(SSL*, const void*, int); int SSL_write(SSL*, const void*, int);
int SSL_read(SSL*, void*, int); int SSL_read(SSL*, void*, int);
......
...@@ -584,7 +584,7 @@ class SSL { ...@@ -584,7 +584,7 @@ class SSL {
Socket socket_; // socket wrapper Socket socket_; // socket wrapper
Buffers buffers_; // buffered handshakes and data Buffers buffers_; // buffered handshakes and data
Log log_; // logger Log log_; // logger
bool quietShutdown_; // shutdown without handshakes bool quietShutdown_;
// optimization variables // optimization variables
bool has_data_; // buffered data ready? bool has_data_; // buffered data ready?
......
...@@ -719,6 +719,10 @@ int DoProcessReply(SSL& ssl) ...@@ -719,6 +719,10 @@ int DoProcessReply(SSL& ssl)
// add new data // add new data
uint read = ssl.useSocket().receive(buffer.get_buffer() + buffSz, ready); uint read = ssl.useSocket().receive(buffer.get_buffer() + buffSz, ready);
if (read == static_cast<uint>(-1)) {
ssl.SetError(receive_error);
return 0;
}
buffer.add_size(read); buffer.add_size(read);
uint offset = 0; uint offset = 0;
const MessageFactory& mf = ssl.getFactory().getMessage(); const MessageFactory& mf = ssl.getFactory().getMessage();
......
...@@ -114,8 +114,6 @@ uint Socket::send(const byte* buf, unsigned int sz, int flags) const ...@@ -114,8 +114,6 @@ uint Socket::send(const byte* buf, unsigned int sz, int flags) const
const byte* pos = buf; const byte* pos = buf;
const byte* end = pos + sz; const byte* end = pos + sz;
assert(socket_ != INVALID_SOCKET);
while (pos != end) { while (pos != end) {
int sent = ::send(socket_, reinterpret_cast<const char *>(pos), int sent = ::send(socket_, reinterpret_cast<const char *>(pos),
static_cast<int>(end - pos), flags); static_cast<int>(end - pos), flags);
...@@ -132,7 +130,6 @@ uint Socket::send(const byte* buf, unsigned int sz, int flags) const ...@@ -132,7 +130,6 @@ uint Socket::send(const byte* buf, unsigned int sz, int flags) const
uint Socket::receive(byte* buf, unsigned int sz, int flags) uint Socket::receive(byte* buf, unsigned int sz, int flags)
{ {
assert(socket_ != INVALID_SOCKET);
wouldBlock_ = false; wouldBlock_ = false;
int recvd = ::recv(socket_, reinterpret_cast<char *>(buf), sz, flags); int recvd = ::recv(socket_, reinterpret_cast<char *>(buf), sz, flags);
...@@ -163,7 +160,6 @@ bool Socket::wait() ...@@ -163,7 +160,6 @@ bool Socket::wait()
void Socket::shutDown(int how) void Socket::shutDown(int how)
{ {
assert(socket_ != INVALID_SOCKET);
shutdown(socket_, how); shutdown(socket_, how);
} }
......
...@@ -239,6 +239,12 @@ int SSL_set_fd(SSL* ssl, YASSL_SOCKET_T fd) ...@@ -239,6 +239,12 @@ int SSL_set_fd(SSL* ssl, YASSL_SOCKET_T fd)
} }
YASSL_SOCKET_T SSL_get_fd(const SSL* ssl)
{
return ssl->getSocket().get_fd();
}
int SSL_connect(SSL* ssl) int SSL_connect(SSL* ssl)
{ {
if (ssl->GetError() == YasslError(SSL_ERROR_WANT_READ)) if (ssl->GetError() == YasslError(SSL_ERROR_WANT_READ))
......
...@@ -773,6 +773,7 @@ void SSL::SetError(YasslError ye) ...@@ -773,6 +773,7 @@ void SSL::SetError(YasslError ye)
// TODO: add string here // TODO: add string here
} }
// set the quiet shutdown mode (close_nofiy not sent or received on shutdown) // set the quiet shutdown mode (close_nofiy not sent or received on shutdown)
void SSL::SetQuietShutdown(bool mode) void SSL::SetQuietShutdown(bool mode)
{ {
......
...@@ -107,11 +107,12 @@ void HexDecoder::Decode() ...@@ -107,11 +107,12 @@ void HexDecoder::Decode()
// sanity checks // sanity checks
assert( b < sizeof(hexDecode)/sizeof(hexDecode[0]) ); assert( b < sizeof(hexDecode)/sizeof(hexDecode[0]) );
assert( b2 < sizeof(hexDecode)/sizeof(hexDecode[0]) ); assert( b2 < sizeof(hexDecode)/sizeof(hexDecode[0]) );
assert( b != bad && b2 != bad );
b = hexDecode[b]; b = hexDecode[b];
b2 = hexDecode[b2]; b2 = hexDecode[b2];
assert( b != bad && b2 != bad );
decoded_[i++] = (b << 4) | b2; decoded_[i++] = (b << 4) | b2;
bytes -= 2; bytes -= 2;
} }
...@@ -184,7 +185,7 @@ void Base64Decoder::Decode() ...@@ -184,7 +185,7 @@ void Base64Decoder::Decode()
{ {
word32 bytes = coded_.size(); word32 bytes = coded_.size();
word32 plainSz = bytes - ((bytes + (pemLineSz - 1)) / pemLineSz); word32 plainSz = bytes - ((bytes + (pemLineSz - 1)) / pemLineSz);
plainSz = ((plainSz * 3) / 4) + 3; plainSz = (plainSz * 3 + 3) / 4;
decoded_.New(plainSz); decoded_.New(plainSz);
word32 i = 0; word32 i = 0;
......
...@@ -26,6 +26,11 @@ extern "C" { ...@@ -26,6 +26,11 @@ extern "C" {
// locking handled internally by library // locking handled internally by library
char CRYPTO_lock() { return 0;} char CRYPTO_lock() { return 0;}
char CRYPTO_add_lock() { return 0;} char CRYPTO_add_lock() { return 0;}
// for openvpn, test are the signatures they use
char EVP_CIPHER_CTX_init() { return 0; }
char CRYPTO_mem_ctrl() { return 0; }
} // extern "C" } // extern "C"
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment