construct/rb/nossl.c

/*
 *  librb: a library used by ircd-ratbox and other things
 *  nossl.c: ssl stub code
 *
 *  Copyright (C) 2007-2008 ircd-ratbox development team
 *  Copyright (C) 2007-2008 Aaron Sethman <androsyn@ratbox.org>
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301
 *  USA
 *
 */


#include <rb/rb.h>

#if !defined(HAVE_OPENSSL) && !defined(HAVE_GNUTLS) && !defined(HAVE_MBEDTLS)
#include "arc4random.h"
#include <rb/commio_int.h>
#include <rb/ssl.h>

int
rb_setup_ssl_server(const char *cert, const char *keyfile, const char *dhfile, const char *cipher_list)
{
	errno = ENOSYS;
	return 0;
}

int
rb_init_ssl(void)
{
	errno = ENOSYS;
	return -1;

}

int
rb_ssl_listen(rb_fde_t *F, int backlog, int defer_accept)
{
	errno = ENOSYS;
	return -1;
}

static void
rb_stir_arc4random(void *unused)
{
	arc4random_stir();
}


int
rb_init_prng(const char *path, prng_seed_t seed_type)
{
	/* xxx this ignores the parameters above */
	arc4random_stir();
	rb_event_addish("rb_stir_arc4random", rb_stir_arc4random, NULL, 300);
	return 1;
}

int
rb_get_random(void *buf, size_t length)
{
	uint32_t rnd = 0, i;
	uint8_t *xbuf = buf;
	for(i = 0; i < length; i++)
	{
		if(i % 4 == 0)
			rnd = arc4random();
		xbuf[i] = rnd;
		rnd >>= 8;
	}
	return 1;
}

const char *
rb_get_ssl_strerror(rb_fde_t *F)
{
	static const char *nosupport = "SSL/TLS not supported";
	return nosupport;
}

int
rb_get_ssl_certfp(rb_fde_t *F, uint8_t certfp[RB_SSL_CERTFP_LEN], int method)
{
	return 0;
}

int
rb_get_ssl_certfp_file(const char *filename, uint8_t certfp[RB_SSL_CERTFP_LEN], int method)
{
	return 0;
}

void
rb_ssl_start_accepted(rb_fde_t *new_F, ACCB * cb, void *data, int timeout)
{
	return;
}

void
rb_ssl_start_connected(rb_fde_t *F, CNCB * callback, void *data, int timeout)
{
	return;
}

void
rb_connect_tcp_ssl(rb_fde_t *F, struct sockaddr *dest,
		   struct sockaddr *clocal, CNCB * callback, void *data, int timeout)
{
	return;
}

int
rb_supports_ssl(void)
{
	return 0;
}

void
rb_ssl_shutdown(rb_fde_t *F)
{
	return;
}

void
rb_ssl_accept_setup(rb_fde_t *F, rb_fde_t *new_F, struct sockaddr *st, int addrlen)
{
	return;
}

ssize_t
rb_ssl_read(rb_fde_t *F, void *buf, size_t count)
{
	errno = ENOSYS;
	return -1;
}

ssize_t
rb_ssl_write(rb_fde_t *F, const void *buf, size_t count)
{
	errno = ENOSYS;
	return -1;
}

unsigned int
rb_ssl_handshake_count(rb_fde_t *F)
{
	return 0;
}

void
rb_ssl_clear_handshake_count(rb_fde_t *F)
{
	return;
}

void
rb_get_ssl_info(char *buf, size_t len)
{
	snprintf(buf, len, "Not compiled with SSL support");
}

int
rb_ssl_get_certfp(rb_fde_t *F, uint8_t certfp[RB_SSL_CERTFP_LEN])
{
	errno = ENOSYS;
	return -1;
}

const char *
rb_ssl_get_cipher(rb_fde_t *F)
{
	errno = ENOSYS;
	return NULL;
}

#endif /* !HAVE_OPENSSL */
Remove trailing whitespace from all .c and .h files. 3134 bytes were removed. 2014-03-03 05:25:47 +01:00			`/*`
Change all leftover libratbox stuff to librb. 2016-03-06 10:49:27 +01:00			`* librb: a library used by ircd-ratbox and other things`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`* nossl.c: ssl stub code`
			`*`
			`* Copyright (C) 2007-2008 ircd-ratbox development team`
			`* Copyright (C) 2007-2008 Aaron Sethman <androsyn@ratbox.org>`
			`*`
			`* This program is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation; either version 2 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
Remove trailing whitespace from all .c and .h files. 3134 bytes were removed. 2014-03-03 05:25:47 +01:00			`*`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`* You should have received a copy of the GNU General Public License`
			`* along with this program; if not, write to the Free Software`
			`* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301`
			`* USA`
Remove trailing whitespace from all .c and .h files. 3134 bytes were removed. 2014-03-03 05:25:47 +01:00			`*`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`*/`


Refactor repository layout. * librb is no longer a separately configured subproject. * charybdis is now a standalone directory with a binary. * Include path layout now requires a directory ircd/ rb/ etc. 2016-07-01 05:04:00 +02:00			`#include <rb/rb.h>`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00
Refactor repository layout. * librb is no longer a separately configured subproject. * charybdis is now a standalone directory with a binary. * Include path layout now requires a directory ircd/ rb/ etc. 2016-07-01 05:04:00 +02:00			`#if !defined(HAVE_OPENSSL) && !defined(HAVE_GNUTLS) && !defined(HAVE_MBEDTLS)`
libratbox sync - r25796 2008-07-30 00:41:27 +02:00			`#include "arc4random.h"`
Refactor repository layout. * librb is no longer a separately configured subproject. * charybdis is now a standalone directory with a binary. * Include path layout now requires a directory ircd/ rb/ etc. 2016-07-01 05:04:00 +02:00			`#include <rb/commio_int.h>`
			`#include <rb/ssl.h>`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`int`
ssl: allow cipher list to be overridden (closes #67) 2015-12-12 14:50:48 +01:00			`rb_setup_ssl_server(const char cert, const char keyfile, const char dhfile, const char cipher_list)`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`{`
			`errno = ENOSYS;`
			`return 0;`
			`}`

			`int`
			`rb_init_ssl(void)`
			`{`
			`errno = ENOSYS;`
			`return -1;`

			`}`

			`int`
libratbox: make defer_accept optional. 2012-03-17 15:48:25 +01:00			`rb_ssl_listen(rb_fde_t *F, int backlog, int defer_accept)`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`{`
			`errno = ENOSYS;`
			`return -1;`
			`}`

libratbox sync - r25796 2008-07-30 00:41:27 +02:00			`static void`
			`rb_stir_arc4random(void *unused)`
			`{`
			`arc4random_stir();`
			`}`

Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00
			`int`
			`rb_init_prng(const char *path, prng_seed_t seed_type)`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`{`
libratbox sync - r25796 2008-07-30 00:41:27 +02:00			`/* xxx this ignores the parameters above */`
			`arc4random_stir();`
			`rb_event_addish("rb_stir_arc4random", rb_stir_arc4random, NULL, 300);`
			`return 1;`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`}`

			`int`
			`rb_get_random(void *buf, size_t length)`
			`{`
libratbox sync - r25796 2008-07-30 00:41:27 +02:00			`uint32_t rnd = 0, i;`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`uint8_t *xbuf = buf;`
			`for(i = 0; i < length; i++)`
libratbox sync - r25796 2008-07-30 00:41:27 +02:00			`{`
			`if(i % 4 == 0)`
			`rnd = arc4random();`
			`xbuf[i] = rnd;`
			`rnd >>= 8;`
			`}`
			`return 1;`
			`}`

Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`const char *`
			`rb_get_ssl_strerror(rb_fde_t *F)`
			`{`
			`static const char *nosupport = "SSL/TLS not supported";`
			`return nosupport;`
			`}`

Add certfp support to libratbox and ssld. This lets a user connect with a client certificate, and passes the certificate's fingerprint to ircd, which currently just notices it to the user. A new ssld->ircd message 'F' is used to pass on the fingerprint. This is only for OpenSSL for now, not GNUTLS. 2010-01-31 19:04:20 +01:00			`int`
Add ability to change CertFP hash. Presently this only supports SHA1, as the machinery to actually change the cipher is not hooked up to anything yet. 2015-05-27 23:46:46 +02:00			`rb_get_ssl_certfp(rb_fde_t *F, uint8_t certfp[RB_SSL_CERTFP_LEN], int method)`
Add certfp support to libratbox and ssld. This lets a user connect with a client certificate, and passes the certificate's fingerprint to ircd, which currently just notices it to the user. A new ssld->ircd message 'F' is used to pass on the fingerprint. This is only for OpenSSL for now, not GNUTLS. 2010-01-31 19:04:20 +01:00			`{`
			`return 0;`
			`}`

add mkfingerprint program 2016-04-26 21:21:23 +02:00			`int`
			`rb_get_ssl_certfp_file(const char *filename, uint8_t certfp[RB_SSL_CERTFP_LEN], int method)`
			`{`
			`return 0;`
			`}`

Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`void`
			`rb_ssl_start_accepted(rb_fde_t new_F, ACCB cb, void *data, int timeout)`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`{`
			`return;`
			`}`

Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`void`
			`rb_ssl_start_connected(rb_fde_t F, CNCB callback, void *data, int timeout)`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`{`
			`return;`
			`}`

			`void`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`rb_connect_tcp_ssl(rb_fde_t F, struct sockaddr dest,`
librb: remove socklen parameter from rb_connect_tcp 2016-04-24 18:11:20 +02:00			`struct sockaddr clocal, CNCB callback, void *data, int timeout)`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`{`
			`return;`
			`}`

			`int`
			`rb_supports_ssl(void)`
			`{`
			`return 0;`
			`}`

			`void`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`rb_ssl_shutdown(rb_fde_t *F)`
			`{`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00			`return;`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`}`
Make this link without OpenSSL. This patch should go upstream. 2008-04-01 21:57:52 +02:00
			`void`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`rb_ssl_accept_setup(rb_fde_t F, rb_fde_t new_F, struct sockaddr *st, int addrlen)`
Make this link without OpenSSL. This patch should go upstream. 2008-04-01 21:57:52 +02:00			`{`
			`return;`
			`}`

			`ssize_t`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`rb_ssl_read(rb_fde_t F, void buf, size_t count)`
Make this link without OpenSSL. This patch should go upstream. 2008-04-01 21:57:52 +02:00			`{`
sync libratbox - r25599 + charybdis packaging patch 2008-06-25 07:28:30 +02:00			`errno = ENOSYS;`
			`return -1;`
Make this link without OpenSSL. This patch should go upstream. 2008-04-01 21:57:52 +02:00			`}`

			`ssize_t`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`rb_ssl_write(rb_fde_t F, const void buf, size_t count)`
Make this link without OpenSSL. This patch should go upstream. 2008-04-01 21:57:52 +02:00			`{`
sync libratbox - r25599 + charybdis packaging patch 2008-06-25 07:28:30 +02:00			`errno = ENOSYS;`
			`return -1;`
Make this link without OpenSSL. This patch should go upstream. 2008-04-01 21:57:52 +02:00			`}`

sync libratbox - r25599 + charybdis packaging patch 2008-06-25 07:28:30 +02:00			`unsigned int`
			`rb_ssl_handshake_count(rb_fde_t *F)`
			`{`
			`return 0;`
			`}`
Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00
			`void`
sync libratbox - r25599 + charybdis packaging patch 2008-06-25 07:28:30 +02:00			`rb_ssl_clear_handshake_count(rb_fde_t *F)`
			`{`
			`return;`
			`}`
Pull in libratbox from ircd-ratbox-3.0.0beta1 and integrate into the build system. 2008-04-01 18:52:26 +02:00
Update libratbox. 2008-12-22 10:49:01 +01:00			`void`
			`rb_get_ssl_info(char *buf, size_t len)`
			`{`
Remove libratbox's snprintf.c, update related ircd code 2016-02-10 02:25:32 +01:00			`snprintf(buf, len, "Not compiled with SSL support");`
Update libratbox. 2008-12-22 10:49:01 +01:00			`}`
Remove trailing whitespace from all .c and .h files. 3134 bytes were removed. 2014-03-03 05:25:47 +01:00
libratbox: implement nossl variants of rb_get_ssl_certfp() and rb_get_ssl_cipher() 2015-12-11 15:36:21 +01:00			`int`
			`rb_ssl_get_certfp(rb_fde_t *F, uint8_t certfp[RB_SSL_CERTFP_LEN])`
			`{`
			`errno = ENOSYS;`
			`return -1;`
			`}`

			`const char *`
			`rb_ssl_get_cipher(rb_fde_t *F)`
			`{`
			`errno = ENOSYS;`
			`return NULL;`
			`}`

Copied libratbox and related stuff from shadowircd upstream. 2008-12-03 00:49:39 +01:00			`#endif /* !HAVE_OPENSSL */`