kris
/
boringssl
1
0
Rozštěpit 0
Zdrojový kód Úkoly 0 Požadavky na natažení 0 Vydání 0 Wiki Aktivita
Nelze vybrat více než 25 témat Téma musí začínat písmenem nebo číslem, může obsahovat pomlčky („-“) a může být dlouhé až 35 znaků.
846 Revize
12 Větve
38 MiB
 
 
 
 
 
 
Strom: fd4eb60497
Větve Značky
${ item.name }
Vytvořit větev ${ searchTerm }
z „fd4eb60497“
${ noResults }
boringssl/include/openssl/dtls1.h

256 řádky
7.2 KiB
Surový Blame Historie 

  1. /* ssl/dtls1.h */

  2. /* 

  3.  * DTLS implementation written by Nagendra Modadugu

  4.  * (nagendra@cs.stanford.edu) for the OpenSSL project 2005.  

  5.  */

  6. /* ====================================================================

  7.  * Copyright (c) 1999-2005 The OpenSSL Project.  All rights reserved.

  8.  *

  9.  * Redistribution and use in source and binary forms, with or without

  10.  * modification, are permitted provided that the following conditions

  11.  * are met:

  12.  *

  13.  * 1. Redistributions of source code must retain the above copyright

  14.  *    notice, this list of conditions and the following disclaimer. 

  15.  *

  16.  * 2. Redistributions in binary form must reproduce the above copyright

  17.  *    notice, this list of conditions and the following disclaimer in

  18.  *    the documentation and/or other materials provided with the

  19.  *    distribution.

  20.  *

  21.  * 3. All advertising materials mentioning features or use of this

  22.  *    software must display the following acknowledgment:

  23.  *    "This product includes software developed by the OpenSSL Project

  24.  *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"

  25.  *

  26.  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to

  27.  *    endorse or promote products derived from this software without

  28.  *    prior written permission. For written permission, please contact

  29.  *    openssl-core@OpenSSL.org.

  30.  *

  31.  * 5. Products derived from this software may not be called "OpenSSL"

  32.  *    nor may "OpenSSL" appear in their names without prior written

  33.  *    permission of the OpenSSL Project.

  34.  *

  35.  * 6. Redistributions of any form whatsoever must retain the following

  36.  *    acknowledgment:

  37.  *    "This product includes software developed by the OpenSSL Project

  38.  *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"

  39.  *

  40.  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY

  41.  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

  42.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR

  43.  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR

  44.  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  45.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

  46.  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  47.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

  48.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

  49.  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

  50.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

  51.  * OF THE POSSIBILITY OF SUCH DAMAGE.

  52.  * ====================================================================

  53.  *

  54.  * This product includes cryptographic software written by Eric Young

  55.  * (eay@cryptsoft.com).  This product includes software written by Tim

  56.  * Hudson (tjh@cryptsoft.com). */

  57. 

  58. #ifndef HEADER_DTLS1_H

  59. #define HEADER_DTLS1_H

  60. 

  61. #include <openssl/base.h>

  62. #include <openssl/buf.h>

  63. #include <openssl/pqueue.h>

  64. 

  65. #ifdef  __cplusplus

  66. extern "C" {

  67. #endif

  68. 

  69. 

  70. #define DTLS1_VERSION			0xFEFF

  71. #define DTLS1_2_VERSION			0xFEFD

  72. 

  73. /* lengths of messages */

  74. #define DTLS1_COOKIE_LENGTH                     256

  75. 

  76. #define DTLS1_RT_HEADER_LENGTH                  13

  77. 

  78. #define DTLS1_HM_HEADER_LENGTH                  12

  79. 

  80. #define DTLS1_HM_BAD_FRAGMENT                   -2

  81. #define DTLS1_HM_FRAGMENT_RETRY                 -3

  82. 

  83. #define DTLS1_CCS_HEADER_LENGTH                  1

  84. 

  85. #define DTLS1_AL_HEADER_LENGTH                   2

  86. 

  87. #ifndef OPENSSL_NO_SSL_INTERN

  88. 

  89. 

  90. #if defined(OPENSSL_WINDOWS)

  91. /* Because of Windows header issues, we can't get the normal declaration of

  92.  * timeval. */

  93. typedef struct OPENSSL_timeval_st {

  94. 	long tv_sec;

  95. 	long tv_usec;

  96. } OPENSSL_timeval;

  97. #else

  98. #include <sys/time.h>

  99. typedef struct timeval OPENSSL_timeval;

  100. #endif

  101. 

  102. typedef struct dtls1_bitmap_st

  103. 	{

  104. 	/* map is a bit mask of the last 64 sequence numbers. Bit

  105. 	 * |1<<i| corresponds to |max_seq_num - i|. */

  106. 	uint64_t map;

  107. 	/* max_seq_num is the largest sequence number seen so far. It

  108. 	 * is a 64-bit value in big-endian encoding. */

  109. 	uint8_t max_seq_num[8];

  110. 	} DTLS1_BITMAP;

  111. 

  112. struct dtls1_retransmit_state

  113. 	{

  114. 	SSL_AEAD_CTX *aead_write_ctx;

  115. 	SSL_SESSION *session;

  116. 	unsigned short epoch;

  117. 	};

  118. 

  119. struct hm_header_st

  120. 	{

  121. 	unsigned char type;

  122. 	unsigned long msg_len;

  123. 	unsigned short seq;

  124. 	unsigned long frag_off;

  125. 	unsigned long frag_len;

  126. 	unsigned int is_ccs;

  127. 	struct dtls1_retransmit_state saved_retransmit_state;

  128. 	};

  129. 

  130. struct ccs_header_st

  131. 	{

  132. 	unsigned char type;

  133. 	unsigned short seq;

  134. 	};

  135. 

  136. struct dtls1_timeout_st

  137. 	{

  138. 	/* Number of read timeouts so far */

  139. 	unsigned int read_timeouts;

  140. 	

  141. 	/* Number of write timeouts so far */

  142. 	unsigned int write_timeouts;

  143. 	

  144. 	/* Number of alerts received so far */

  145. 	unsigned int num_alerts;

  146. 	};

  147. 

  148. typedef struct record_pqueue_st

  149. 	{

  150. 	unsigned short epoch;

  151. 	pqueue q;

  152. 	} record_pqueue;

  153. 

  154. typedef struct hm_fragment_st

  155. 	{

  156. 	struct hm_header_st msg_header;

  157. 	unsigned char *fragment;

  158. 	unsigned char *reassembly;

  159. 	} hm_fragment;

  160. 

  161. typedef struct dtls1_state_st

  162. 	{

  163. 	/* send_cookie is true if we are resending the ClientHello

  164. 	 * with a cookie from a HelloVerifyRequest. */

  165. 	unsigned int send_cookie;

  166. 

  167. 	uint8_t cookie[DTLS1_COOKIE_LENGTH];

  168. 	size_t cookie_len;

  169. 

  170. 	/* 

  171. 	 * The current data and handshake epoch.  This is initially

  172. 	 * undefined, and starts at zero once the initial handshake is

  173. 	 * completed 

  174. 	 */

  175. 	unsigned short r_epoch;

  176. 	unsigned short w_epoch;

  177. 

  178. 	/* records being received in the current epoch */

  179. 	DTLS1_BITMAP bitmap;

  180. 

  181. 	/* renegotiation starts a new set of sequence numbers */

  182. 	DTLS1_BITMAP next_bitmap;

  183. 

  184. 	/* handshake message numbers */

  185. 	unsigned short handshake_write_seq;

  186. 	unsigned short next_handshake_write_seq;

  187. 

  188. 	unsigned short handshake_read_seq;

  189. 

  190. 	/* save last sequence number for retransmissions */

  191. 	unsigned char last_write_sequence[8];

  192. 

  193. 	/* Received handshake records (processed and unprocessed) */

  194. 	record_pqueue unprocessed_rcds;

  195. 	record_pqueue processed_rcds;

  196. 

  197. 	/* Buffered handshake messages */

  198. 	pqueue buffered_messages;

  199. 

  200. 	/* Buffered (sent) handshake records */

  201. 	pqueue sent_messages;

  202. 

  203. 	/* Buffered application records.

  204. 	 * Only for records between CCS and Finished

  205. 	 * to prevent either protocol violation or

  206. 	 * unnecessary message loss.

  207. 	 */

  208. 	record_pqueue buffered_app_data;

  209. 

  210. 	unsigned int mtu; /* max DTLS packet size */

  211. 

  212. 	struct hm_header_st w_msg_hdr;

  213. 	struct hm_header_st r_msg_hdr;

  214. 

  215. 	struct dtls1_timeout_st timeout;

  216. 

  217. 	/* Indicates when the last handshake msg or heartbeat sent will

  218. 	 * timeout. Because of header issues on Windows, this cannot actually

  219. 	 * be a struct timeval. */

  220. 	OPENSSL_timeval next_timeout;

  221. 

  222. 	/* Timeout duration */

  223. 	unsigned short timeout_duration;

  224. 

  225. 	/* storage for Alert/Handshake protocol data received but not

  226. 	 * yet processed by ssl3_read_bytes: */

  227. 	unsigned char alert_fragment[DTLS1_AL_HEADER_LENGTH];

  228. 	unsigned int alert_fragment_len;

  229. 	unsigned char handshake_fragment[DTLS1_HM_HEADER_LENGTH];

  230. 	unsigned int handshake_fragment_len;

  231. 

  232. 	unsigned int change_cipher_spec_ok;

  233. 	} DTLS1_STATE;

  234. 

  235. typedef struct dtls1_record_data_st

  236. 	{

  237. 	unsigned char *packet;

  238. 	unsigned int   packet_length;

  239. 	SSL3_BUFFER    rbuf;

  240. 	SSL3_RECORD    rrec;

  241. 	} DTLS1_RECORD_DATA;

  242. 

  243. #endif

  244. 

  245. /* Timeout multipliers (timeout slice is defined in apps/timeouts.h */

  246. #define DTLS1_TMO_READ_COUNT                      2

  247. #define DTLS1_TMO_WRITE_COUNT                     2

  248. 

  249. #define DTLS1_TMO_ALERT_COUNT                     12

  250. 

  251. #ifdef  __cplusplus

  252. }

  253. #endif

  254. #endif