We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
ladybird
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 5049e41223
Branches Tags
ladybird
/
Libraries
/
LibTLS
/
Socket.cpp

Socket.cpp 7.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234 
  1. /*
    2. 

  2.  * Copyright (c) 2020, Ali Mohammad Pur <ali.mpfard@gmail.com>
    3. 

  3.  * All rights reserved.
    4. 

  4.  *
    5. 

  5.  * Redistribution and use in source and binary forms, with or without
    6. 

  6.  * modification, are permitted provided that the following conditions are met:
    7. 

  7.  *
    8. 

  8.  * 1. Redistributions of source code must retain the above copyright notice, this
    9. 

  9.  *    list of conditions and the following disclaimer.
    10. 

  10.  *
    11. 

  11.  * 2. Redistributions in binary form must reproduce the above copyright notice,
    12. 

  12.  *    this list of conditions and the following disclaimer in the documentation
    13. 

  13.  *    and/or other materials provided with the distribution.
    14. 

  14.  *
    15. 

  15.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
    16. 

  16.  * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    17. 

  17.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
    18. 

  18.  * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
    19. 

  19.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
    20. 

  20.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
    21. 

  21.  * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
    22. 

  22.  * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
    23. 

  23.  * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
    24. 

  24.  * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    25. 

  25.  */
    26. 

  26. 

  27. #include <LibCore/Timer.h>
    28. 

  28. #include <LibCrypto/ASN1/DER.h>
    29. 

  29. #include <LibCrypto/PK/Code/EMSA_PSS.h>
    30. 

  30. #include <LibTLS/TLSv12.h>
    31. 

  31. 

  32. namespace TLS {
    33. 

  33. 

  34. Optional<ByteBuffer> TLSv12::read()
    35. 

  35. {
    36. 

  36.     if (m_context.application_buffer.size()) {
    37. 

  37.         auto buf = m_context.application_buffer.slice(0, m_context.application_buffer.size());
    38. 

  38.         m_context.application_buffer.clear();
    39. 

  39.         return buf;
    40. 

  40.     }
    41. 

  41.     return {};
    42. 

  42. }
    43. 

  43. 

  44. ByteBuffer TLSv12::read(size_t max_size)
    45. 

  45. {
    46. 

  46.     if (m_context.application_buffer.size()) {
    47. 

  47.         auto length = min(m_context.application_buffer.size(), max_size);
    48. 

  48.         auto buf = m_context.application_buffer.slice(0, length);
    49. 

  49.         m_context.application_buffer = m_context.application_buffer.slice(length, m_context.application_buffer.size() - length);
    50. 

  50.         return buf;
    51. 

  51.     }
    52. 

  52.     return {};
    53. 

  53. }
    54. 

  54. 

  55. ByteBuffer TLSv12::read_line(size_t max_size)
    56. 

  56. {
    57. 

  57.     if (!can_read_line())
    58. 

  58.         return {};
    59. 

  59. 

  60.     auto* start = m_context.application_buffer.data();
    61. 

  61.     auto* newline = (u8*)memchr(m_context.application_buffer.data(), '\n', m_context.application_buffer.size());
    62. 

  62.     ASSERT(newline);
    63. 

  63. 

  64.     size_t offset = newline - start;
    65. 

  65. 

  66.     if (offset > max_size)
    67. 

  67.         return {};
    68. 

  68. 

  69.     auto buffer = ByteBuffer::copy(start, offset);
    70. 

  70.     m_context.application_buffer = m_context.application_buffer.slice(offset + 1, m_context.application_buffer.size() - offset - 1);
    71. 

  71. 

  72.     return buffer;
    73. 

  73. }
    74. 

  74. 

  75. bool TLSv12::write(const ByteBuffer& buffer)
    76. 

  76. {
    77. 

  77.     if (m_context.connection_status != ConnectionStatus::Established) {
    78. 

  78. #ifdef TLS_DEBUG
    79. 

  79.         dbg() << "write request while not connected";
    80. 

  80. #endif
    81. 

  81.         return false;
    82. 

  82.     }
    83. 

  83. 

  84.     PacketBuilder builder { MessageType::ApplicationData, m_context.version, buffer.size() };
    85. 

  85.     builder.append(buffer);
    86. 

  86.     auto packet = builder.build();
    87. 

  87. 

  88.     update_packet(packet);
    89. 

  89.     write_packet(packet);
    90. 

  90. 

  91.     return true;
    92. 

  92. }
    93. 

  93. 

  94. bool TLSv12::connect(const String& hostname, int port)
    95. 

  95. {
    96. 

  96.     set_sni(hostname);
    97. 

  97.     return Core::Socket::connect(hostname, port);
    98. 

  98. }
    99. 

  99. 

  100. bool TLSv12::common_connect(const struct sockaddr* saddr, socklen_t length)
    101. 

  101. {
    102. 

  102.     if (m_context.critical_error)
    103. 

  103.         return false;
    104. 

  104. 

  105.     if (Core::Socket::is_connected()) {
    106. 

  106.         if (is_established()) {
    107. 

  107.             ASSERT_NOT_REACHED();
    108. 

  108.         } else {
    109. 

  109.             Core::Socket::close(); // reuse?
    110. 

  110.         }
    111. 

  111.     }
    112. 

  112. 

  113.     auto packet = build_hello();
    114. 

  114.     write_packet(packet);
    115. 

  115. 

  116.     Core::Socket::on_connected = [this] {
    117. 

  117.         Core::Socket::on_ready_to_read = [this] {
    118. 

  118.             read_from_socket();
    119. 

  119.         };
    120. 

  120.         write_into_socket();
    121. 

  121.         if (on_tls_connected)
    122. 

  122.             on_tls_connected();
    123. 

  123.     };
    124. 

  124.     bool success = Core::Socket::common_connect(saddr, length);
    125. 

  125.     if (!success)
    126. 

  126.         return false;
    127. 

  127. 

  128.     return true;
    129. 

  129. }
    130. 

  130. 

  131. void TLSv12::read_from_socket()
    132. 

  132. {
    133. 

  133.     if (m_context.application_buffer.size() > 0) {
    134. 

  134.         deferred_invoke([&](auto&) { read_from_socket(); });
    135. 

  135.         if (on_tls_ready_to_read)
    136. 

  136.             on_tls_ready_to_read(*this);
    137. 

  137.     }
    138. 

  138. 

  139.     if (!check_connection_state(true))
    140. 

  140.         return;
    141. 

  141.     flush();
    142. 

  142.     consume(Core::Socket::read(4096));
    143. 

  143. }
    144. 

  144. 

  145. void TLSv12::write_into_socket()
    146. 

  146. {
    147. 

  147. #ifdef TLS_DEBUG
    148. 

  148.     dbg() << "Flushing cached records: " << m_context.tls_buffer.size() << " established? " << is_established();
    149. 

  149. #endif
    150. 

  150.     m_has_scheduled_write_flush = false;
    151. 

  151.     if (!check_connection_state(false))
    152. 

  152.         return;
    153. 

  153.     flush();
    154. 

  154. 

  155.     if (!is_established()) {
    156. 

  156.         deferred_invoke([this](auto&) { write_into_socket(); });
    157. 

  157.         m_has_scheduled_write_flush = true;
    158. 

  158.         return;
    159. 

  159.     }
    160. 

  160. 

  161.     if (is_established() && !m_context.application_buffer.size()) // hey client, you still have stuff to read...
    162. 

  162.         if (on_tls_ready_to_write)
    163. 

  163.             on_tls_ready_to_write(*this);
    164. 

  164. }
    165. 

  165. 

  166. bool TLSv12::check_connection_state(bool read)
    167. 

  167. {
    168. 

  168.     if (!Core::Socket::is_open() || !Core::Socket::is_connected() || Core::Socket::eof()) {
    169. 

  169.         // an abrupt closure (the server is a jerk)
    170. 

  170. #ifdef TLS_DEBUG
    171. 

  171.         dbg() << "Socket not open, assuming abrupt closure";
    172. 

  172. #endif
    173. 

  173.         m_context.connection_finished = true;
    174. 

  174.     }
    175. 

  175.     if (m_context.critical_error) {
    176. 

  176. #ifdef TLS_DEBUG
    177. 

  177.         dbg() << "CRITICAL ERROR " << m_context.critical_error << " :(";
    178. 

  178. #endif
    179. 

  179.         if (on_tls_error)
    180. 

  180.             on_tls_error((AlertDescription)m_context.critical_error);
    181. 

  181.         return false;
    182. 

  182.     }
    183. 

  183.     if (((read && m_context.application_buffer.size() == 0) || !read) && m_context.connection_finished) {
    184. 

  184.         if (m_context.application_buffer.size() == 0) {
    185. 

  185.             if (on_tls_finished)
    186. 

  186.                 on_tls_finished();
    187. 

  187.         }
    188. 

  188.         if (m_context.tls_buffer.size()) {
    189. 

  189. #ifdef TLS_DEBUG
    190. 

  190.             dbg() << "connection closed without finishing data transfer, " << m_context.tls_buffer.size() << " bytes still in buffer & " << m_context.application_buffer.size() << " bytes in application buffer";
    191. 

  191. #endif
    192. 

  192.         } else {
    193. 

  193.             m_context.connection_finished = false;
    194. 

  194. #ifdef TLS_DEBUG
    195. 

  195.             dbg() << "FINISHED";
    196. 

  196. #endif
    197. 

  197.         }
    198. 

  198.         if (!m_context.application_buffer.size()) {
    199. 

  199.             m_context.connection_status = ConnectionStatus::Disconnected;
    200. 

  200.             return false;
    201. 

  201.         }
    202. 

  202.     }
    203. 

  203.     return true;
    204. 

  204. }
    205. 

  205. 

  206. bool TLSv12::flush()
    207. 

  207. {
    208. 

  208.     auto out_buffer = write_buffer().data();
    209. 

  209.     size_t out_buffer_index { 0 };
    210. 

  210.     size_t out_buffer_length = write_buffer().size();
    211. 

  211. 

  212.     if (out_buffer_length == 0)
    213. 

  213.         return true;
    214. 

  214. 

  215. #ifdef TLS_DEBUG
    216. 

  216.     dbg() << "SENDING...";
    217. 

  217.     print_buffer(out_buffer, out_buffer_length);
    218. 

  218. #endif
    219. 

  219.     if (Core::Socket::write(&out_buffer[out_buffer_index], out_buffer_length)) {
    220. 

  220.         write_buffer().clear();
    221. 

  221.         return true;
    222. 

  222.     }
    223. 

  223.     if (m_context.send_retries++ == 10) {
    224. 

  224.         // drop the records, we can't send
    225. 

  225. #ifdef TLS_DEBUG
    226. 

  226.         dbg() << "Dropping " << write_buffer().size() << " bytes worth of TLS records as max retries has been reached";
    227. 

  227. #endif
    228. 

  228.         write_buffer().clear();
    229. 

  229.         m_context.send_retries = 0;
    230. 

  230.     }
    231. 

  231.     return false;
    232. 

  232. }
    233. 

  233. 

  234. }
    235.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5