cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

an OpenSSL plugin for gaim's SSL support. originally from

Browse Source 
Matthew Luckie <mjl at luckie dot org dot nz> though he has
handed off the code to me and does not want any credit
including removing the GPL copyright and allowing me to use
the ISC style license from license.template.
This commit is contained in:
brad 2004-01-18 00:05:23 +00:00
parent cc38508d2e
commit 5695b7d0ef
1 changed files with 321 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

321
net/gaim/files/ssl-openssl.c Normal file
View File

@ -0,0 +1,321 @@
/*
* OpenSSL SSL-plugin for gaim
*
* Copyright (c) 2004 Brad Smith <brad@comstyle.com>
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
/*
* This code was written to link in with the gaim ssl plugin system.
* It was written using the ssl-nss.c and ssl-gnutls.c files as documentation
* as to how to use the gaim ssl plugin mechanism. That code was written by
* ChipX86.
*
* This code is not supported by the gaim team. If you have SSL-related
* problems with any service, disable this plugin and use one of the ssl
* plugins that ships with gaim before contacting them for support.
*
* The OpenSSL webpage at http://www.openssl.org/support/faq.html#LEGAL2
* says that you may use this code on systems that normally include OpenSSL.
* It is my judgement that FreeBSD, NetBSD, and OpenBSD fit into this
* category, but I am not a lawyer.
*/
#include "internal.h"
#include "debug.h"
#include "plugin.h"
#include "sslconn.h"
#define SSL_OPENSSL_PLUGIN_ID "ssl-openssl"
#ifdef HAVE_OPENSSL
#include <openssl/ssl.h>
#include <openssl/err.h>
typedef struct
{
SSL *ssl;
SSL_CTX *ssl_ctx;
} GaimSslOpensslData;
#define GAIM_SSL_OPENSSL_DATA(gsc) ((GaimSslOpensslData *)gsc->private_data)
/*
* ssl_openssl_init_openssl
*
* load the error strings we might want to use eventually, and init the
* openssl library
*/
static void ssl_openssl_init_openssl(void)
{
/*
* load the error number to string strings so that we can make sense
* of ssl issues while debugging this code
*/
SSL_load_error_strings();
/*
* we need to initialise the openssl library
* we do not seed the random number generator, although we probably
* should in gaim-win32.
*/
SSL_library_init();
return TRUE;
}
/*
* ssl_openssl_init
*/
static gboolean ssl_openssl_init(void)
{
return TRUE;
}
/*
* ssl_openssl_uninit
*
* couldn't find anything to match the call to SSL_library_init in the man
* pages, i wonder if there actually is anything we need to call
*/
static void ssl_openssl_uninit(void)
{
ERR_free_strings();
return;
}
/*
* ssl_openssl_connect_cb
*
* given a socket, put an openssl connection around it.
*/
static void ssl_openssl_connect_cb(gpointer data, gint source, GaimInputCondition cond)
{
GaimSslConnection *gsc = (GaimSslConnection *)data;
GaimSslOpensslData *openssl_data;
/*
* we need a valid file descriptor to associate the SSL connection with.
*/
if(source < 0)
{
return;
}
gsc->fd = source;
/*
* allocate some memory to store variables for the openssl connection.
* the memory comes zero'd from g_new0 so we don't need to null the
* pointers held in this struct.
*/
openssl_data = g_new0(GaimSslOpensslData, 1);
gsc->private_data = openssl_data;
/*
* allocate a new SSL_CTX object
*/
openssl_data->ssl_ctx = SSL_CTX_new(SSLv23_client_method());
if(openssl_data->ssl_ctx == NULL)
{
gaim_debug_error("openssl", "SSL_CTX_new failed\n");
if(gsc->error_cb != NULL)
{
gsc->error_cb(gsc, GAIM_SSL_HANDSHAKE_FAILED, gsc->connect_cb_data);
}
gaim_ssl_close(gsc);
return;
}
/*
* allocate a new SSL object
*/
openssl_data->ssl = SSL_new(openssl_data->ssl_ctx);
if(openssl_data->ssl == NULL)
{
gaim_debug_error("openssl", "SSL_new failed\n");
if(gsc->error_cb != NULL)
{
gsc->error_cb(gsc, GAIM_SSL_HANDSHAKE_FAILED, gsc->connect_cb_data);
}
gaim_ssl_close(gsc);
return;
}
/*
* now we associate the file descriptor we have with the SSL connection
*/
if(SSL_set_fd(openssl_data->ssl, source) == 0)
{
gaim_debug_error("openssl", "SSL_set_fd failed\n");
if(gsc->error_cb != NULL)
{
gsc->error_cb(gsc, GAIM_SSL_HANDSHAKE_FAILED, gsc->connect_cb_data);
}
gaim_ssl_close(gsc);
return;
}
/*
* finally, do the negotiation that sets up the SSL connection between
* here and there.
*/
if(SSL_connect(openssl_data->ssl) <= 0)
{
gaim_debug_error("openssl", "SSL_connect failed\n");
if(gsc->error_cb != NULL)
{
gsc->error_cb(gsc, GAIM_SSL_HANDSHAKE_FAILED, gsc->connect_cb_data);
}
gaim_ssl_close(gsc);
return;
}
/* SSL connected now */
gsc->connect_cb(gsc->connect_cb_data, gsc, cond);
return;
}
static void ssl_openssl_close(GaimSslConnection *gsc)
{
GaimSslOpensslData *openssl_data = GAIM_SSL_OPENSSL_DATA(gsc);
int i;
if(openssl_data == NULL)
{
return;
}
if(openssl_data->ssl != NULL)
{
i = SSL_shutdown(openssl_data->ssl);
if(i == 0) SSL_shutdown(openssl_data->ssl);
SSL_free(openssl_data->ssl);
}
if(openssl_data->ssl_ctx != NULL)
{
SSL_CTX_free(openssl_data->ssl_ctx);
}
g_free(openssl_data);
return;
}
static size_t ssl_openssl_read(GaimSslConnection *gsc, void *data, size_t len)
{
GaimSslOpensslData *openssl_data = GAIM_SSL_OPENSSL_DATA(gsc);
int i;
i = SSL_read(openssl_data->ssl, data, len);
if(i < 0) i = 0;
return i;
}
static size_t ssl_openssl_write(GaimSslConnection *gsc, const void *data, size_t len)
{
GaimSslOpensslData *openssl_data = GAIM_SSL_OPENSSL_DATA(gsc);
int s = 0;
if(openssl_data != NULL)
{
s = SSL_write(openssl_data->ssl, data, len);
}
if(s < 0)
{
s = 0;
}
return s;
}
static GaimSslOps ssl_ops =
{
ssl_openssl_init,
ssl_openssl_uninit,
ssl_openssl_connect_cb,
ssl_openssl_close,
ssl_openssl_read,
ssl_openssl_write
};
#endif /* HAVE_OPENSSL */
static gboolean plugin_load(GaimPlugin *plugin)
{
#ifdef HAVE_OPENSSL
if (!gaim_ssl_get_ops()) {
gaim_ssl_set_ops(&ssl_ops);
}
/* Init OpenSSL now so others can use it even if sslconn never does */
ssl_openssl_init_openssl();
return TRUE;
#else
return FALSE;
#endif
}
static gboolean plugin_unload(GaimPlugin *plugin)
{
#ifdef HAVE_OPENSSL
if (gaim_ssl_get_ops() == &ssl_ops) {
gaim_ssl_set_ops(NULL);
}
#endif
return TRUE;
}
static GaimPluginInfo info =
{
2, /* api_version */
GAIM_PLUGIN_STANDARD, /* type */
NULL, /* ui_requirement */
GAIM_PLUGIN_FLAG_INVISIBLE, /* flags */
NULL, /* dependencies */
GAIM_PRIORITY_DEFAULT, /* priority */
SSL_OPENSSL_PLUGIN_ID, /* id */
N_("OpenSSL"), /* name */
VERSION, /* version */
N_("Provides SSL support through OpenSSL."), /* description */
N_("Provides SSL support through OpenSSL."),
"OpenSSL",
NULL, /* homepage */
plugin_load, /* load */
plugin_unload, /* unload */
NULL, /* destroy */
NULL, /* ui_info */
NULL /* extra_info */
};
static void init_plugin(GaimPlugin *plugin)
{
return;
}
GAIM_INIT_PLUGIN(ssl_openssl, init_plugin, info)