libexec/httpd/ssl-bozo.c

1.8  mrg /*	$NetBSD: ssl-bozo.c,v 1.8 2010/05/15 06:48:27 mrg Exp $	*/
1.2  tls
1.8  mrg /*	$eterna: ssl-bozo.c,v 1.13 2010/05/12 12:24:58 rtr Exp $	*/
1.1  tls
1.1  tls /*
1.7  mrg  * Copyright (c) 1997-2010 Matthew R. Green
1.1  tls  * All rights reserved.
1.1  tls  *
1.1  tls  * Redistribution and use in source and binary forms, with or without
1.1  tls  * modification, are permitted provided that the following conditions
1.1  tls  * are met:
1.1  tls  * 1. Redistributions of source code must retain the above copyright
1.1  tls  *    notice, this list of conditions and the following disclaimer.
1.1  tls  * 2. Redistributions in binary form must reproduce the above copyright
1.1  tls  *    notice, this list of conditions and the following disclaimer and
1.1  tls  *    dedication in the documentation and/or other materials provided
1.1  tls  *    with the distribution.
1.1  tls  *
1.1  tls  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
1.1  tls  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
1.1  tls  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
1.1  tls  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
1.1  tls  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
1.1  tls  * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
1.1  tls  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
1.1  tls  * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
1.1  tls  * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1.1  tls  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1.1  tls  * SUCH DAMAGE.
1.1  tls  *
1.1  tls  */
1.1  tls
1.1  tls /* this code implements SSL for bozohttpd */
1.1  tls
1.7  mrg #include <stdarg.h>
1.7  mrg #include <stdio.h>
1.8  mrg #include <syslog.h>
1.7  mrg #include <unistd.h>
1.7  mrg
1.7  mrg #include "bozohttpd.h"
1.7  mrg
1.1  tls #ifndef NO_SSL_SUPPORT
1.1  tls
1.1  tls #include <openssl/ssl.h>
1.1  tls #include <openssl/err.h>
1.1  tls
1.7  mrg #ifndef USE_ARG
1.7  mrg #define USE_ARG(x)	/*LINTED*/(void)&(x)
1.7  mrg #endif
1.7  mrg
1.7  mrg /* this structure encapsulates the ssl info */
1.7  mrg typedef struct sslinfo_t {
1.7  mrg 	SSL_CTX			*ssl_context;
1.7  mrg 	const SSL_METHOD	*ssl_method;
1.7  mrg 	SSL			*bozossl;
1.7  mrg 	char			*certificate_file;
1.7  mrg 	char			*privatekey_file;
1.7  mrg } sslinfo_t;
1.7  mrg
1.8  mrg /*
1.8  mrg  * bozo_ssl_err
1.8  mrg  *
1.8  mrg  * bozo_ssl_err works just like bozo_err except in addition to printing
1.8  mrg  * the error provided by the caller at the point of error it pops and
1.8  mrg  * prints all errors from the SSL error queue.
1.8  mrg  */
1.8  mrg static void
1.8  mrg bozo_ssl_err(bozohttpd_t *httpd, int code, const char *fmt, ...)
1.8  mrg {
1.8  mrg         va_list ap;
1.8  mrg
1.8  mrg         va_start(ap, fmt);
1.8  mrg         if (httpd->logstderr || isatty(STDERR_FILENO)) {
1.8  mrg                 vfprintf(stderr, fmt, ap);
1.8  mrg                 fputs("\n", stderr);
1.8  mrg         } else
1.8  mrg                 vsyslog(LOG_ERR, fmt, ap);
1.8  mrg         va_end(ap);
1.8  mrg
1.8  mrg 	unsigned int sslcode = ERR_get_error();
1.8  mrg 	do {
1.8  mrg 		const char *sslfmt = "SSL Error: %s:%s:%s";
1.8  mrg
1.8  mrg 		if (httpd->logstderr || isatty(STDERR_FILENO)) {
1.8  mrg 			fprintf(stderr, sslfmt,
1.8  mrg 			    ERR_lib_error_string(sslcode),
1.8  mrg 			    ERR_func_error_string(sslcode),
1.8  mrg 			    ERR_reason_error_string(sslcode));
1.8  mrg 		} else {
1.8  mrg 			syslog(LOG_ERR, sslfmt,
1.8  mrg 			    ERR_lib_error_string(sslcode),
1.8  mrg 			    ERR_func_error_string(sslcode),
1.8  mrg 			    ERR_reason_error_string(sslcode));
1.8  mrg 		}
1.8  mrg 	} while (0 != (sslcode = ERR_get_error()));
1.8  mrg 	exit(code);
1.8  mrg }
1.8  mrg
1.7  mrg static int
1.8  mrg bozo_ssl_printf(bozohttpd_t *httpd, const char * fmt, va_list ap)
1.7  mrg {
1.7  mrg 	sslinfo_t	*sslinfo;
1.7  mrg 	char		*buf;
1.7  mrg 	int		 nbytes;
1.7  mrg
1.7  mrg 	sslinfo = httpd->sslinfo;
1.7  mrg 	/* XXX we need more elegant/proper handling of SSL_write return */
1.7  mrg 	if ((nbytes = vasprintf(&buf, fmt, ap)) != -1)
1.7  mrg 		SSL_write(sslinfo->bozossl, buf, nbytes);
1.7  mrg
1.7  mrg 	free(buf);
1.7  mrg
1.7  mrg 	return nbytes;
1.7  mrg }
1.7  mrg
1.7  mrg static ssize_t
1.7  mrg bozo_ssl_read(bozohttpd_t *httpd, int fd, void *buf, size_t nbytes)
1.7  mrg {
1.7  mrg 	sslinfo_t	*sslinfo;
1.7  mrg 	ssize_t		 rbytes;
1.7  mrg
1.7  mrg 	USE_ARG(fd);
1.7  mrg 	sslinfo = httpd->sslinfo;
1.7  mrg 	/* XXX we need elegant/proper handling of SSL_read return */
1.7  mrg 	rbytes = (ssize_t)SSL_read(sslinfo->bozossl, buf, (int)nbytes);
1.7  mrg 	if (rbytes < 1) {
1.7  mrg 		if (SSL_get_error(sslinfo->bozossl, rbytes) ==
1.7  mrg 				SSL_ERROR_WANT_READ)
1.7  mrg 			bozo_warn(httpd, "SSL_ERROR_WANT_READ");
1.7  mrg 		else
1.7  mrg 			bozo_warn(httpd, "SSL_ERROR OTHER");
1.7  mrg 	}
1.7  mrg
1.7  mrg 	return rbytes;
1.7  mrg }
1.7  mrg
1.7  mrg static ssize_t
1.7  mrg bozo_ssl_write(bozohttpd_t *httpd, int fd, const void *buf, size_t nbytes)
1.7  mrg {
1.7  mrg 	sslinfo_t	*sslinfo;
1.7  mrg 	ssize_t		 wbytes;
1.7  mrg
1.7  mrg 	USE_ARG(fd);
1.7  mrg 	sslinfo = httpd->sslinfo;
1.7  mrg 	/* XXX we need elegant/proper handling of SSL_write return */
1.7  mrg 	wbytes = (ssize_t)SSL_write(sslinfo->bozossl, buf, (int)nbytes);
1.1  tls
1.7  mrg 	return wbytes;
1.7  mrg }
1.7  mrg
1.7  mrg static int
1.7  mrg bozo_ssl_flush(bozohttpd_t *httpd, FILE *fp)
1.7  mrg {
1.7  mrg 	USE_ARG(httpd);
1.7  mrg 	USE_ARG(fp);
1.7  mrg 	/* nothing to see here, move right along */
1.7  mrg 	return 0;
1.7  mrg }
1.1  tls
1.1  tls void
1.7  mrg bozo_ssl_init(bozohttpd_t *httpd)
1.1  tls {
1.7  mrg 	sslinfo_t	*sslinfo;
1.7  mrg
1.7  mrg 	sslinfo = httpd->sslinfo;
1.7  mrg 	if (sslinfo == NULL || !sslinfo->certificate_file)
1.1  tls 		return;
1.1  tls 	SSL_library_init();
1.1  tls 	SSL_load_error_strings();
1.1  tls
1.7  mrg 	sslinfo->ssl_method = SSLv23_server_method();
1.7  mrg 	sslinfo->ssl_context = SSL_CTX_new(sslinfo->ssl_method);
1.1  tls
1.1  tls 	/* XXX we need to learn how to check the SSL stack for more info */
1.8  mrg 	if (NULL == sslinfo->ssl_context)
1.8  mrg 		bozo_ssl_err(httpd, EXIT_FAILURE,
1.8  mrg 		    "SSL context creation failed");
1.8  mrg
1.8  mrg 	if (1 != SSL_CTX_use_certificate_file(sslinfo->ssl_context,
1.8  mrg 	    sslinfo->certificate_file, SSL_FILETYPE_PEM))
1.8  mrg 		bozo_ssl_err(httpd, EXIT_FAILURE,
1.8  mrg 		    "Unable to use certificate file '%s'",
1.8  mrg 		    sslinfo->certificate_file);
1.8  mrg
1.8  mrg 	if (1 != SSL_CTX_use_PrivateKey_file(sslinfo->ssl_context,
1.8  mrg 	    sslinfo->privatekey_file, SSL_FILETYPE_PEM))
1.8  mrg 		bozo_ssl_err(httpd, EXIT_FAILURE,
1.8  mrg 		    "Unable to use private key file '%s'",
1.8  mrg 		    sslinfo->privatekey_file);
1.1  tls
1.1  tls 	/* check consistency of key vs certificate */
1.7  mrg 	if (!SSL_CTX_check_private_key(sslinfo->ssl_context))
1.8  mrg 		bozo_ssl_err(httpd, EXIT_FAILURE,
1.8  mrg 		    "Check private key failed");
1.1  tls }
1.1  tls
1.1  tls void
1.7  mrg bozo_ssl_accept(bozohttpd_t *httpd)
1.1  tls {
1.7  mrg 	sslinfo_t	*sslinfo;
1.7  mrg
1.7  mrg 	sslinfo = httpd->sslinfo;
1.7  mrg 	if (sslinfo != NULL && sslinfo->ssl_context) {
1.7  mrg 		sslinfo->bozossl = SSL_new(sslinfo->ssl_context);
1.7  mrg 		SSL_set_rfd(sslinfo->bozossl, 0);
1.7  mrg 		SSL_set_wfd(sslinfo->bozossl, 1);
1.7  mrg 		SSL_accept(sslinfo->bozossl);
1.1  tls 	}
1.1  tls }
1.1  tls
1.1  tls void
1.7  mrg bozo_ssl_destroy(bozohttpd_t *httpd)
1.1  tls {
1.7  mrg 	sslinfo_t	*sslinfo;
1.7  mrg
1.7  mrg 	sslinfo = httpd->sslinfo;
1.7  mrg 	if (sslinfo && sslinfo->bozossl)
1.7  mrg 		SSL_free(sslinfo->bozossl);
1.1  tls }
1.1  tls
1.1  tls void
1.7  mrg bozo_ssl_set_opts(bozohttpd_t *httpd, const char *cert, const char *priv)
1.1  tls {
1.7  mrg 	sslinfo_t	*sslinfo;
1.7  mrg
1.7  mrg 	if ((sslinfo = httpd->sslinfo) == NULL) {
1.7  mrg 		sslinfo = bozomalloc(httpd, sizeof(*sslinfo));
1.7  mrg 		if (sslinfo == NULL) {
1.7  mrg 			bozo_err(httpd, 1, "sslinfo allocation failed");
1.7  mrg 		}
1.7  mrg 		httpd->sslinfo = sslinfo;
1.7  mrg 	}
1.7  mrg 	sslinfo->certificate_file = strdup(cert);
1.7  mrg 	sslinfo->privatekey_file = strdup(priv);
1.7  mrg 	debug((httpd, DEBUG_NORMAL, "using cert/priv files: %s & %s",
1.7  mrg 		sslinfo->certificate_file,
1.7  mrg 		sslinfo->privatekey_file));
1.7  mrg 	if (!httpd->bindport) {
1.7  mrg 		httpd->bindport = strdup("https");
1.7  mrg 	}
1.1  tls }
1.1  tls
1.7  mrg #endif /* NO_SSL_SUPPORT */
1.7  mrg
1.7  mrg int
1.7  mrg bozo_printf(bozohttpd_t *httpd, const char *fmt, ...)
1.1  tls {
1.7  mrg 	va_list	args;
1.7  mrg 	int	cc;
1.1  tls
1.7  mrg 	va_start(args, fmt);
1.7  mrg #ifndef NO_SSL_SUPPORT
1.7  mrg 	if (httpd->sslinfo) {
1.7  mrg 		cc = bozo_ssl_printf(httpd, fmt, args);
1.7  mrg 		va_end(args);
1.7  mrg 		return cc;
1.7  mrg 	}
1.7  mrg #endif
1.7  mrg 	cc = vprintf(fmt, args);
1.7  mrg 	va_end(args);
1.7  mrg 	return cc;
1.1  tls }
1.1  tls
1.7  mrg ssize_t
1.7  mrg bozo_read(bozohttpd_t *httpd, int fd, void *buf, size_t len)
1.1  tls {
1.7  mrg #ifndef NO_SSL_SUPPORT
1.7  mrg 	if (httpd->sslinfo) {
1.7  mrg 		return bozo_ssl_read(httpd, fd, buf, len);
1.1  tls 	}
1.7  mrg #endif
1.7  mrg 	return read(fd, buf, len);
1.1  tls }
1.1  tls
1.7  mrg ssize_t
1.7  mrg bozo_write(bozohttpd_t *httpd, int fd, const void *buf, size_t len)
1.1  tls {
1.7  mrg #ifndef NO_SSL_SUPPORT
1.7  mrg 	if (httpd->sslinfo) {
1.7  mrg 		return bozo_ssl_write(httpd, fd, buf, len);
1.7  mrg 	}
1.7  mrg #endif
1.7  mrg 	return write(fd, buf, len);
1.1  tls }
1.1  tls
1.7  mrg int
1.7  mrg bozo_flush(bozohttpd_t *httpd, FILE *fp)
1.1  tls {
1.7  mrg #ifndef NO_SSL_SUPPORT
1.7  mrg 	if (httpd->sslinfo) {
1.7  mrg 		return bozo_ssl_flush(httpd, fp);
1.7  mrg 	}
1.7  mrg #endif
1.7  mrg 	return fflush(fp);
1.1  tls }