TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 831a755d9e78471a4f68529a8c8945386d8c7bf5 / . / include / polarssl / ssl.h
blob: 1108b8b793c6658c9587d006d14c1f4923564a4e [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1/**
2 * \file ssl.h
Paul Bakkere0ccd0a2009-01-04 16:27:10 +0000[diff] [blame]3 *
Paul Bakker37ca75d2011-01-06 12:28:03 +0000[diff] [blame]4 * \brief SSL/TLS functions.
5 *
Paul Bakker84f12b72010-07-18 10:13:04 +0000[diff] [blame]6 * Copyright (C) 2006-2010, Brainspark B.V.
Paul Bakkerb96f1542010-07-18 20:36:00 +0000[diff] [blame]7 *
8 * This file is part of PolarSSL (http://www.polarssl.org)
Paul Bakker84f12b72010-07-18 10:13:04 +0000[diff] [blame]9 * Lead Maintainer: Paul Bakker <polarssl_maintainer at polarssl.org>
Paul Bakkerb96f1542010-07-18 20:36:00 +0000[diff] [blame]10 *
Paul Bakker77b385e2009-07-28 17:23:11 +0000[diff] [blame]11 * All rights reserved.
Paul Bakkere0ccd0a2009-01-04 16:27:10 +0000[diff] [blame]12 *
Paul Bakkere0ccd0a2009-01-04 16:27:10 +0000[diff] [blame]13 * This program is free software; you can redistribute it and/or modify
14 * it under the terms of the GNU General Public License as published by
15 * the Free Software Foundation; either version 2 of the License, or
16 * (at your option) any later version.
17 *
18 * This program is distributed in the hope that it will be useful,
19 * but WITHOUT ANY WARRANTY; without even the implied warranty of
20 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
21 * GNU General Public License for more details.
22 *
23 * You should have received a copy of the GNU General Public License along
24 * with this program; if not, write to the Free Software Foundation, Inc.,
25 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]26 */
Paul Bakker40e46942009-01-03 21:51:57 +0000[diff] [blame]27#ifndef POLARSSL_SSL_H
28#define POLARSSL_SSL_H
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]29
30#include <time.h>
31
Paul Bakker8e831ed2009-01-03 21:24:11 +0000[diff] [blame]32#include "polarssl/net.h"
33#include "polarssl/dhm.h"
34#include "polarssl/rsa.h"
35#include "polarssl/md5.h"
36#include "polarssl/sha1.h"
37#include "polarssl/x509.h"
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]38#include "polarssl/config.h"
39
40#if defined(POLARSSL_PKCS11_C)
41#include "polarssl/pkcs11.h"
42#endif
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]43
Paul Bakkeraf5c85f2011-04-18 03:47:52 +0000[diff] [blame]44#ifdef _MSC_VER
45#define inline _inline
46#endif
47
Paul Bakker13e2dfe2009-07-28 07:18:38 +0000[diff] [blame]48/*
49 * SSL Error codes
50 */
Paul Bakker9d781402011-05-09 16:17:09 +0000[diff] [blame]51#define POLARSSL_ERR_SSL_FEATURE_UNAVAILABLE -0x7080 /**< The requested feature is not available. */
52#define POLARSSL_ERR_SSL_BAD_INPUT_DATA -0x7100 /**< Bad input parameters to function. */
53#define POLARSSL_ERR_SSL_INVALID_MAC -0x7180 /**< Verification of the message MAC failed. */
54#define POLARSSL_ERR_SSL_INVALID_RECORD -0x7200 /**< An invalid SSL record was received. */
Paul Bakker831a7552011-05-18 13:32:51 +0000[diff] [blame^]55#define POLARSSL_ERR_SSL_CONN_EOF -0x7280 /**< The connection indicated an EOF. */
Paul Bakker9d781402011-05-09 16:17:09 +0000[diff] [blame]56#define POLARSSL_ERR_SSL_UNKNOWN_CIPHER -0x7300 /**< An unknown cipher was received. */
57#define POLARSSL_ERR_SSL_NO_CIPHER_CHOSEN -0x7380 /**< The server has no ciphersuites in common with the client. */
58#define POLARSSL_ERR_SSL_NO_SESSION_FOUND -0x7400 /**< No session to recover was found. */
59#define POLARSSL_ERR_SSL_NO_CLIENT_CERTIFICATE -0x7480 /**< No client certification received from the client, but required by the authentication mode. */
60#define POLARSSL_ERR_SSL_CERTIFICATE_TOO_LARGE -0x7500 /**< Our own certificate(s) is/are too large to send in an SSL message.*/
61#define POLARSSL_ERR_SSL_CERTIFICATE_REQUIRED -0x7580 /**< The own certificate is not set, but needed by the server. */
62#define POLARSSL_ERR_SSL_PRIVATE_KEY_REQUIRED -0x7600 /**< The own private key is not set, but needed. */
63#define POLARSSL_ERR_SSL_CA_CHAIN_REQUIRED -0x7680 /**< No CA Chain is set, but required to operate. */
64#define POLARSSL_ERR_SSL_UNEXPECTED_MESSAGE -0x7700 /**< An unexpected message was received from our peer. */
65#define POLARSSL_ERR_SSL_FATAL_ALERT_MESSAGE -0x7780 /**< A fatal alert message was received from our peer. */
66#define POLARSSL_ERR_SSL_PEER_VERIFY_FAILED -0x7800 /**< Verification of our peer failed. */
67#define POLARSSL_ERR_SSL_PEER_CLOSE_NOTIFY -0x7880 /**< The peer notified us that the connection is going to be closed. */
68#define POLARSSL_ERR_SSL_BAD_HS_CLIENT_HELLO -0x7900 /**< Processing of the ClientHello handshake message failed. */
69#define POLARSSL_ERR_SSL_BAD_HS_SERVER_HELLO -0x7980 /**< Processing of the ServerHello handshake message failed. */
70#define POLARSSL_ERR_SSL_BAD_HS_CERTIFICATE -0x7A00 /**< Processing of the Certificate handshake message failed. */
71#define POLARSSL_ERR_SSL_BAD_HS_CERTIFICATE_REQUEST -0x7A80 /**< Processing of the CertificateRequest handshake message failed. */
72#define POLARSSL_ERR_SSL_BAD_HS_SERVER_KEY_EXCHANGE -0x7B00 /**< Processing of the ServerKeyExchange handshake message failed. */
73#define POLARSSL_ERR_SSL_BAD_HS_SERVER_HELLO_DONE -0x7B80 /**< Processing of the ServerHelloDone handshake message failed. */
74#define POLARSSL_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE -0x7C00 /**< Processing of the ClientKeyExchange handshake message failed. */
75#define POLARSSL_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE_DHM_RP -0x7C80 /**< Processing of the ClientKeyExchange handshake message failed in DHM Read Public. */
76#define POLARSSL_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE_DHM_CS -0x7D00 /**< Processing of the ClientKeyExchange handshake message failed in DHM Calculate Secret. */
77#define POLARSSL_ERR_SSL_BAD_HS_CERTIFICATE_VERIFY -0x7D80 /**< Processing of the CertificateVerify handshake message failed. */
78#define POLARSSL_ERR_SSL_BAD_HS_CHANGE_CIPHER_SPEC -0x7E00 /**< Processing of the ChangeCipherSpec handshake message failed. */
79#define POLARSSL_ERR_SSL_BAD_HS_FINISHED -0x7E80 /**< Processing of the Finished handshake message failed. */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]80
81/*
82 * Various constants
83 */
84#define SSL_MAJOR_VERSION_3 3
85#define SSL_MINOR_VERSION_0 0 /*!< SSL v3.0 */
86#define SSL_MINOR_VERSION_1 1 /*!< TLS v1.0 */
87#define SSL_MINOR_VERSION_2 2 /*!< TLS v1.1 */
88
89#define SSL_IS_CLIENT 0
90#define SSL_IS_SERVER 1
91#define SSL_COMPRESS_NULL 0
92
93#define SSL_VERIFY_NONE 0
94#define SSL_VERIFY_OPTIONAL 1
95#define SSL_VERIFY_REQUIRED 2
96
97#define SSL_MAX_CONTENT_LEN 16384
98
99/*
100 * Allow an extra 512 bytes for the record header
101 * and encryption overhead (counter + MAC + padding).
102 */
103#define SSL_BUFFER_LEN (SSL_MAX_CONTENT_LEN + 512)
104
105/*
106 * Supported ciphersuites
107 */
Paul Bakker2e11f7d2010-07-25 14:24:53 +0000[diff] [blame]108#define SSL_RSA_RC4_128_MD5 0x04
109#define SSL_RSA_RC4_128_SHA 0x05
110#define SSL_RSA_DES_168_SHA 0x0A
111#define SSL_EDH_RSA_DES_168_SHA 0x16
112#define SSL_RSA_AES_128_SHA 0x2F
113#define SSL_EDH_RSA_AES_128_SHA 0x33
114#define SSL_RSA_AES_256_SHA 0x35
115#define SSL_EDH_RSA_AES_256_SHA 0x39
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]116
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]117#define SSL_RSA_CAMELLIA_128_SHA 0x41
Paul Bakker77a43582010-06-15 21:32:46 +0000[diff] [blame]118#define SSL_EDH_RSA_CAMELLIA_128_SHA 0x45
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]119#define SSL_RSA_CAMELLIA_256_SHA 0x84
120#define SSL_EDH_RSA_CAMELLIA_256_SHA 0x88
Paul Bakkerb5ef0ba2009-01-11 20:25:36 +0000[diff] [blame]121
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]122/*
123 * Message, alert and handshake types
124 */
125#define SSL_MSG_CHANGE_CIPHER_SPEC 20
126#define SSL_MSG_ALERT 21
127#define SSL_MSG_HANDSHAKE 22
128#define SSL_MSG_APPLICATION_DATA 23
129
Paul Bakker2e11f7d2010-07-25 14:24:53 +0000[diff] [blame]130#define SSL_ALERT_LEVEL_WARNING 1
131#define SSL_ALERT_LEVEL_FATAL 2
132
133#define SSL_ALERT_MSG_CLOSE_NOTIFY 0
134#define SSL_ALERT_MSG_UNEXPECTED_MESSAGE 10
Paul Bakkerfbc4a452011-03-25 09:07:46 +0000[diff] [blame]135#define SSL_ALERT_MSG_BAD_RECORD_MAC 20
Paul Bakker2e11f7d2010-07-25 14:24:53 +0000[diff] [blame]136#define SSL_ALERT_MSG_DECRYPTION_FAILED 21
137#define SSL_ALERT_MSG_RECORD_OVERFLOW 22
138#define SSL_ALERT_MSG_DECOMPRESSION_FAILURE 30
139#define SSL_ALERT_MSG_HANDSHAKE_FAILURE 40
140#define SSL_ALERT_MSG_NO_CERT 41
141#define SSL_ALERT_MSG_BAD_CERT 42
142#define SSL_ALERT_MSG_UNSUPPORTED_CERT 43
143#define SSL_ALERT_MSG_CERT_REVOKED 44
144#define SSL_ALERT_MSG_CERT_EXPIRED 45
145#define SSL_ALERT_MSG_CERT_UNKNOWN 46
146#define SSL_ALERT_MSG_ILLEGAL_PARAMETER 47
147#define SSL_ALERT_MSG_UNKNOWN_CA 48
148#define SSL_ALERT_MSG_ACCESS_DENIED 49
149#define SSL_ALERT_MSG_DECODE_ERROR 50
150#define SSL_ALERT_MSG_DECRYPT_ERROR 51
151#define SSL_ALERT_MSG_EXPORT_RESTRICTION 60
152#define SSL_ALERT_MSG_PROTOCOL_VERSION 70
153#define SSL_ALERT_MSG_INSUFFICIENT_SECURITY 71
154#define SSL_ALERT_MSG_INTERNAL_ERROR 80
155#define SSL_ALERT_MSG_USER_CANCELED 90
156#define SSL_ALERT_MSG_NO_RENEGOTIATION 100
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]157
158#define SSL_HS_HELLO_REQUEST 0
159#define SSL_HS_CLIENT_HELLO 1
160#define SSL_HS_SERVER_HELLO 2
161#define SSL_HS_CERTIFICATE 11
162#define SSL_HS_SERVER_KEY_EXCHANGE 12
163#define SSL_HS_CERTIFICATE_REQUEST 13
164#define SSL_HS_SERVER_HELLO_DONE 14
165#define SSL_HS_CERTIFICATE_VERIFY 15
166#define SSL_HS_CLIENT_KEY_EXCHANGE 16
167#define SSL_HS_FINISHED 20
168
169/*
170 * TLS extensions
171 */
172#define TLS_EXT_SERVERNAME 0
173#define TLS_EXT_SERVERNAME_HOSTNAME 0
174
175/*
176 * SSL state machine
177 */
178typedef enum
179{
180 SSL_HELLO_REQUEST,
181 SSL_CLIENT_HELLO,
182 SSL_SERVER_HELLO,
183 SSL_SERVER_CERTIFICATE,
184 SSL_SERVER_KEY_EXCHANGE,
185 SSL_CERTIFICATE_REQUEST,
186 SSL_SERVER_HELLO_DONE,
187 SSL_CLIENT_CERTIFICATE,
188 SSL_CLIENT_KEY_EXCHANGE,
189 SSL_CERTIFICATE_VERIFY,
190 SSL_CLIENT_CHANGE_CIPHER_SPEC,
191 SSL_CLIENT_FINISHED,
192 SSL_SERVER_CHANGE_CIPHER_SPEC,
193 SSL_SERVER_FINISHED,
194 SSL_FLUSH_BUFFERS,
195 SSL_HANDSHAKE_OVER
196}
197ssl_states;
198
199typedef struct _ssl_session ssl_session;
200typedef struct _ssl_context ssl_context;
201
202/*
203 * This structure is used for session resuming.
204 */
205struct _ssl_session
206{
207 time_t start; /*!< starting time */
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]208 int ciphersuite; /*!< chosen ciphersuite */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]209 size_t length; /*!< session id length */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]210 unsigned char id[32]; /*!< session identifier */
211 unsigned char master[48]; /*!< the master secret */
212 ssl_session *next; /*!< next session entry */
213};
214
215struct _ssl_context
216{
217 /*
218 * Miscellaneous
219 */
220 int state; /*!< SSL handshake: current state */
221
222 int major_ver; /*!< equal to SSL_MAJOR_VERSION_3 */
223 int minor_ver; /*!< either 0 (SSL3) or 1 (TLS1.0) */
224
225 int max_major_ver; /*!< max. major version from client */
226 int max_minor_ver; /*!< max. minor version from client */
227
228 /*
Paul Bakkerb63b0af2011-01-13 17:54:59 +0000[diff] [blame]229 * Callbacks (RNG, debug, I/O, verification)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]230 */
231 int (*f_rng)(void *);
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]232 void (*f_dbg)(void *, int, const char *);
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]233 int (*f_recv)(void *, unsigned char *, size_t);
234 int (*f_send)(void *, unsigned char *, size_t);
Paul Bakkerb63b0af2011-01-13 17:54:59 +0000[diff] [blame]235 int (*f_vrfy)(void *, x509_cert *, int, int);
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]236
237 void *p_rng; /*!< context for the RNG function */
238 void *p_dbg; /*!< context for the debug function */
239 void *p_recv; /*!< context for reading operations */
240 void *p_send; /*!< context for writing operations */
Paul Bakkerb63b0af2011-01-13 17:54:59 +0000[diff] [blame]241 void *p_vrfy; /*!< context for verification */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]242
243 /*
244 * Session layer
245 */
246 int resume; /*!< session resuming flag */
247 int timeout; /*!< sess. expiration time */
248 ssl_session *session; /*!< current session data */
249 int (*s_get)(ssl_context *); /*!< (server) get callback */
250 int (*s_set)(ssl_context *); /*!< (server) set callback */
251
252 /*
253 * Record layer (incoming data)
254 */
255 unsigned char *in_ctr; /*!< 64-bit incoming message counter */
256 unsigned char *in_hdr; /*!< 5-byte record header (in_ctr+8) */
257 unsigned char *in_msg; /*!< the message contents (in_hdr+5) */
258 unsigned char *in_offt; /*!< read offset in application data */
259
260 int in_msgtype; /*!< record header: message type */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]261 size_t in_msglen; /*!< record header: message length */
262 size_t in_left; /*!< amount of data read so far */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]263
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]264 size_t in_hslen; /*!< current handshake message length */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]265 int nb_zero; /*!< # of 0-length encrypted messages */
266
267 /*
268 * Record layer (outgoing data)
269 */
270 unsigned char *out_ctr; /*!< 64-bit outgoing message counter */
271 unsigned char *out_hdr; /*!< 5-byte record header (out_ctr+8) */
272 unsigned char *out_msg; /*!< the message contents (out_hdr+5) */
273
274 int out_msgtype; /*!< record header: message type */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]275 size_t out_msglen; /*!< record header: message length */
276 size_t out_left; /*!< amount of data not yet written */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]277
278 /*
279 * PKI layer
280 */
281 rsa_context *rsa_key; /*!< own RSA private key */
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]282#if defined(POLARSSL_PKCS11_C)
283 pkcs11_context *pkcs11_key; /*!< own PKCS#11 RSA private key */
284#endif
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]285 x509_cert *own_cert; /*!< own X.509 certificate */
286 x509_cert *ca_chain; /*!< own trusted CA chain */
Paul Bakker40ea7de2009-05-03 10:18:48 +0000[diff] [blame]287 x509_crl *ca_crl; /*!< trusted CA CRLs */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]288 x509_cert *peer_cert; /*!< peer X.509 cert chain */
Paul Bakker57b79142010-03-24 06:51:15 +0000[diff] [blame]289 const char *peer_cn; /*!< expected peer CN */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]290
291 int endpoint; /*!< 0: client, 1: server */
292 int authmode; /*!< verification mode */
293 int client_auth; /*!< flag for client auth. */
294 int verify_result; /*!< verification result */
295
296 /*
297 * Crypto layer
298 */
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]299 dhm_context dhm_ctx; /*!< DHM key exchange */
300 md5_context fin_md5; /*!< Finished MD5 checksum */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]301 sha1_context fin_sha1; /*!< Finished SHA-1 checksum */
302
303 int do_crypt; /*!< en(de)cryption flag */
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]304 int *ciphersuites; /*!< allowed ciphersuites */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]305 size_t pmslen; /*!< premaster length */
306 unsigned int keylen; /*!< symmetric key length */
307 size_t minlen; /*!< min. ciphertext length */
308 size_t ivlen; /*!< IV length */
309 size_t maclen; /*!< MAC length */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]310
311 unsigned char randbytes[64]; /*!< random bytes */
312 unsigned char premaster[256]; /*!< premaster secret */
313
314 unsigned char iv_enc[16]; /*!< IV (encryption) */
315 unsigned char iv_dec[16]; /*!< IV (decryption) */
316
317 unsigned char mac_enc[32]; /*!< MAC (encryption) */
318 unsigned char mac_dec[32]; /*!< MAC (decryption) */
319
320 unsigned long ctx_enc[128]; /*!< encryption context */
321 unsigned long ctx_dec[128]; /*!< decryption context */
322
323 /*
324 * TLS extensions
325 */
326 unsigned char *hostname;
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]327 size_t hostname_len;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]328};
329
330#ifdef __cplusplus
331extern "C" {
332#endif
333
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]334extern int ssl_default_ciphersuites[];
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]335
336/**
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]337 * \brief Returns the list of ciphersuites supported by the SSL/TLS module.
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]338 *
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]339 * \return a statically allocated array of ciphersuites, the last
340 * entry is 0.
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]341 */
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]342static inline const int *ssl_list_ciphersuites( void )
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]343{
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]344 return ssl_default_ciphersuites;
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]345}
346
347/**
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]348 * \brief Return the name of the ciphersuite associated with the given
349 * ID
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]350 *
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]351 * \param ciphersuite_id SSL ciphersuite ID
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]352 *
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]353 * \return a string containing the ciphersuite name
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]354 */
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]355const char *ssl_get_ciphersuite_name( const int ciphersuite_id );
356
357/**
358 * \brief Return the ID of the ciphersuite associated with the given
359 * name
360 *
361 * \param ciphersuite_name SSL ciphersuite name
362 *
363 * \return the ID with the ciphersuite or 0 if not found
364 */
365int ssl_get_ciphersuite_id( const char *ciphersuite_name );
Paul Bakker72f62662011-01-16 21:27:44 +0000[diff] [blame]366
367/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]368 * \brief Initialize an SSL context
369 *
370 * \param ssl SSL context
371 *
372 * \return 0 if successful, or 1 if memory allocation failed
373 */
374int ssl_init( ssl_context *ssl );
375
376/**
377 * \brief Set the current endpoint type
378 *
379 * \param ssl SSL context
380 * \param endpoint must be SSL_IS_CLIENT or SSL_IS_SERVER
381 */
382void ssl_set_endpoint( ssl_context *ssl, int endpoint );
383
384/**
385 * \brief Set the certificate verification mode
386 *
387 * \param ssl SSL context
Paul Bakker37ca75d2011-01-06 12:28:03 +0000[diff] [blame]388 * \param authmode can be:
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]389 *
390 * SSL_VERIFY_NONE: peer certificate is not checked (default),
391 * this is insecure and SHOULD be avoided.
392 *
393 * SSL_VERIFY_OPTIONAL: peer certificate is checked, however the
394 * handshake continues even if verification failed;
395 * ssl_get_verify_result() can be called after the
396 * handshake is complete.
397 *
398 * SSL_VERIFY_REQUIRED: peer *must* present a valid certificate,
399 * handshake is aborted if verification failed.
400 */
401void ssl_set_authmode( ssl_context *ssl, int authmode );
402
403/**
Paul Bakkerb63b0af2011-01-13 17:54:59 +0000[diff] [blame]404 * \brief Set the verification callback (Optional).
405 *
406 * If set, the verification callback is called once for every
407 * certificate in the chain. The verification function has the
408 * following parameter: (void *parameter, x509_cert certificate,
409 * int certifcate_depth, int preverify_ok). It should
410 * return 0 on SUCCESS.
411 *
412 * \param ssl SSL context
413 * \param f_vrfy verification function
414 * \param p_vrfy verification parameter
415 */
416void ssl_set_verify( ssl_context *ssl,
417 int (*f_vrfy)(void *, x509_cert *, int, int),
418 void *p_vrfy );
419
420/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]421 * \brief Set the random number generator callback
422 *
423 * \param ssl SSL context
424 * \param f_rng RNG function
425 * \param p_rng RNG parameter
426 */
427void ssl_set_rng( ssl_context *ssl,
428 int (*f_rng)(void *),
429 void *p_rng );
430
431/**
432 * \brief Set the debug callback
433 *
434 * \param ssl SSL context
435 * \param f_dbg debug function
436 * \param p_dbg debug parameter
437 */
438void ssl_set_dbg( ssl_context *ssl,
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]439 void (*f_dbg)(void *, int, const char *),
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]440 void *p_dbg );
441
442/**
443 * \brief Set the underlying BIO read and write callbacks
444 *
445 * \param ssl SSL context
446 * \param f_recv read callback
447 * \param p_recv read parameter
448 * \param f_send write callback
449 * \param p_send write parameter
450 */
451void ssl_set_bio( ssl_context *ssl,
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]452 int (*f_recv)(void *, unsigned char *, size_t), void *p_recv,
453 int (*f_send)(void *, unsigned char *, size_t), void *p_send );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]454
455/**
456 * \brief Set the session callbacks (server-side only)
457 *
458 * \param ssl SSL context
459 * \param s_get session get callback
460 * \param s_set session set callback
461 */
462void ssl_set_scb( ssl_context *ssl,
463 int (*s_get)(ssl_context *),
464 int (*s_set)(ssl_context *) );
465
466/**
467 * \brief Set the session resuming flag, timeout and data
468 *
469 * \param ssl SSL context
470 * \param resume if 0 (default), the session will not be resumed
471 * \param timeout session timeout in seconds, or 0 (no timeout)
472 * \param session session context
473 */
474void ssl_set_session( ssl_context *ssl, int resume, int timeout,
475 ssl_session *session );
476
477/**
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]478 * \brief Set the list of allowed ciphersuites
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]479 *
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]480 * \param ssl SSL context
481 * \param ciphersuites 0-terminated list of allowed ciphersuites
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]482 */
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]483void ssl_set_ciphersuites( ssl_context *ssl, int *ciphersuites );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]484
485/**
486 * \brief Set the data required to verify peer certificate
487 *
488 * \param ssl SSL context
489 * \param ca_chain trusted CA chain
Paul Bakker40ea7de2009-05-03 10:18:48 +0000[diff] [blame]490 * \param ca_crl trusted CA CRLs
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]491 * \param peer_cn expected peer CommonName (or NULL)
492 *
493 * \note TODO: add two more parameters: depth and crl
494 */
495void ssl_set_ca_chain( ssl_context *ssl, x509_cert *ca_chain,
Paul Bakker57b79142010-03-24 06:51:15 +0000[diff] [blame]496 x509_crl *ca_crl, const char *peer_cn );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]497
498/**
499 * \brief Set own certificate and private key
500 *
501 * \param ssl SSL context
502 * \param own_cert own public certificate
503 * \param rsa_key own private RSA key
504 */
505void ssl_set_own_cert( ssl_context *ssl, x509_cert *own_cert,
506 rsa_context *rsa_key );
507
Paul Bakker43b7e352011-01-18 15:27:19 +0000[diff] [blame]508#if defined(POLARSSL_PKCS11_C)
509/**
510 * \brief Set own certificate and PKCS#11 private key
511 *
512 * \param ssl SSL context
513 * \param own_cert own public certificate
514 * \param pkcs11_key own PKCS#11 RSA key
515 */
516void ssl_set_own_cert_pkcs11( ssl_context *ssl, x509_cert *own_cert,
517 pkcs11_context *pkcs11_key );
518#endif
519
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]520/**
521 * \brief Set the Diffie-Hellman public P and G values,
522 * read as hexadecimal strings (server-side only)
523 *
524 * \param ssl SSL context
525 * \param dhm_P Diffie-Hellman-Merkle modulus
526 * \param dhm_G Diffie-Hellman-Merkle generator
527 *
528 * \return 0 if successful
529 */
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]530int ssl_set_dh_param( ssl_context *ssl, const char *dhm_P, const char *dhm_G );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]531
532/**
Paul Bakker1b57b062011-01-06 15:48:19 +0000[diff] [blame]533 * \brief Set the Diffie-Hellman public P and G values,
534 * read from existing context (server-side only)
535 *
536 * \param ssl SSL context
537 * \param dhm_ctx Diffie-Hellman-Merkle context
538 *
539 * \return 0 if successful
540 */
541int ssl_set_dh_param_ctx( ssl_context *ssl, dhm_context *dhm_ctx );
542
543/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]544 * \brief Set hostname for ServerName TLS Extension
545 *
546 *
547 * \param ssl SSL context
548 * \param hostname the server hostname
549 *
550 * \return 0 if successful
551 */
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]552int ssl_set_hostname( ssl_context *ssl, const char *hostname );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]553
554/**
555 * \brief Return the number of data bytes available to read
556 *
557 * \param ssl SSL context
558 *
559 * \return how many bytes are available in the read buffer
560 */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]561size_t ssl_get_bytes_avail( const ssl_context *ssl );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]562
563/**
564 * \brief Return the result of the certificate verification
565 *
566 * \param ssl SSL context
567 *
568 * \return 0 if successful, or a combination of:
569 * BADCERT_EXPIRED
570 * BADCERT_REVOKED
571 * BADCERT_CN_MISMATCH
572 * BADCERT_NOT_TRUSTED
573 */
Paul Bakkerff60ee62010-03-16 21:09:09 +0000[diff] [blame]574int ssl_get_verify_result( const ssl_context *ssl );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]575
576/**
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]577 * \brief Return the name of the current ciphersuite
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]578 *
579 * \param ssl SSL context
580 *
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]581 * \return a string containing the ciphersuite name
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]582 */
Paul Bakkere3166ce2011-01-27 17:40:50 +0000[diff] [blame]583const char *ssl_get_ciphersuite( const ssl_context *ssl );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]584
585/**
Paul Bakker43ca69c2011-01-15 17:35:19 +0000[diff] [blame]586 * \brief Return the current SSL version (SSLv3/TLSv1/etc)
587 *
588 * \param ssl SSL context
589 *
590 * \return a string containing the SSL version
591 */
592const char *ssl_get_version( const ssl_context *ssl );
593
594/**
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]595 * \brief Perform the SSL handshake
596 *
597 * \param ssl SSL context
598 *
Paul Bakker831a7552011-05-18 13:32:51 +0000[diff] [blame^]599 * \return 0 if successful, POLARSSL_ERR_NET_WANT_READ,
600 * POLARSSL_ERR_NET_WANT_WRITE, or a specific SSL error code.
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]601 */
602int ssl_handshake( ssl_context *ssl );
603
604/**
605 * \brief Read at most 'len' application data bytes
606 *
607 * \param ssl SSL context
608 * \param buf buffer that will hold the data
609 * \param len how many bytes must be read
610 *
Paul Bakker831a7552011-05-18 13:32:51 +0000[diff] [blame^]611 * \return This function returns the number of bytes read, 0 for EOF,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]612 * or a negative error code.
613 */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]614int ssl_read( ssl_context *ssl, unsigned char *buf, size_t len );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]615
616/**
617 * \brief Write exactly 'len' application data bytes
618 *
619 * \param ssl SSL context
620 * \param buf buffer holding the data
621 * \param len how many bytes must be written
622 *
623 * \return This function returns the number of bytes written,
624 * or a negative error code.
625 *
Paul Bakker831a7552011-05-18 13:32:51 +0000[diff] [blame^]626 * \note When this function returns POLARSSL_ERR_NET_WANT_WRITE,
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]627 * it must be called later with the *same* arguments,
628 * until it returns a positive value.
629 */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]630int ssl_write( ssl_context *ssl, const unsigned char *buf, size_t len );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]631
632/**
633 * \brief Notify the peer that the connection is being closed
Paul Bakker13e2dfe2009-07-28 07:18:38 +0000[diff] [blame]634 *
635 * \param ssl SSL context
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]636 */
637int ssl_close_notify( ssl_context *ssl );
638
639/**
640 * \brief Free an SSL context
Paul Bakker13e2dfe2009-07-28 07:18:38 +0000[diff] [blame]641 *
642 * \param ssl SSL context
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]643 */
644void ssl_free( ssl_context *ssl );
645
646/*
647 * Internal functions (do not call directly)
648 */
649int ssl_handshake_client( ssl_context *ssl );
650int ssl_handshake_server( ssl_context *ssl );
651
652int ssl_derive_keys( ssl_context *ssl );
653void ssl_calc_verify( ssl_context *ssl, unsigned char hash[36] );
654
655int ssl_read_record( ssl_context *ssl );
Paul Bakker831a7552011-05-18 13:32:51 +0000[diff] [blame^]656/**
657 * \return 0 if successful, POLARSSL_ERR_SSL_CONN_EOF on EOF or
658 * another negative error code.
659 */
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]660int ssl_fetch_input( ssl_context *ssl, size_t nb_want );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]661
662int ssl_write_record( ssl_context *ssl );
663int ssl_flush_output( ssl_context *ssl );
664
665int ssl_parse_certificate( ssl_context *ssl );
666int ssl_write_certificate( ssl_context *ssl );
667
668int ssl_parse_change_cipher_spec( ssl_context *ssl );
669int ssl_write_change_cipher_spec( ssl_context *ssl );
670
671int ssl_parse_finished( ssl_context *ssl );
672int ssl_write_finished( ssl_context *ssl );
673
674#ifdef __cplusplus
675}
676#endif
677
678#endif /* ssl.h */