1 /***************************************************************************
3 * Project ___| | | | _ \| |
5 * | (__| |_| | _ <| |___
6 * \___|\___/|_| \_\_____|
8 * Copyright (C) 2010 - 2011, Hoi-Ho Chan, <hoiho.chan@gmail.com>
9 * Copyright (C) 2012 - 2017, Daniel Stenberg, <daniel@haxx.se>, et al.
11 * This software is licensed as described in the file COPYING, which
12 * you should have received as part of this distribution. The terms
13 * are also available at https://curl.haxx.se/docs/copyright.html.
15 * You may opt to use, copy, modify, merge, publish, distribute and/or sell
16 * copies of the Software, and permit persons to whom the Software is
17 * furnished to do so, under the terms of the COPYING file.
19 * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
20 * KIND, either express or implied.
22 ***************************************************************************/
25 * Source file for all mbedTLS-specific code for the TLS/SSL layer. No code
26 * but vtls.c should ever call or use these functions.
30 #include "curl_setup.h"
34 #include <mbedtls/version.h>
35 #if MBEDTLS_VERSION_NUMBER >= 0x02040000
36 #include <mbedtls/net_sockets.h>
38 #include <mbedtls/net.h>
40 #include <mbedtls/ssl.h>
41 #include <mbedtls/certs.h>
42 #include <mbedtls/x509.h>
44 #include <mbedtls/error.h>
45 #include <mbedtls/entropy.h>
46 #include <mbedtls/ctr_drbg.h>
47 #include <mbedtls/sha256.h>
51 #include "inet_pton.h"
54 #include "parsedate.h"
55 #include "connect.h" /* for the connect timeout */
57 #include "polarssl_threadlock.h"
59 /* The last 3 #include files should be in this order */
60 #include "curl_printf.h"
61 #include "curl_memory.h"
64 /* apply threading? */
65 #if defined(USE_THREADS_POSIX) || defined(USE_THREADS_WIN32)
66 #define THREADING_SUPPORT
69 #if defined(THREADING_SUPPORT)
70 static mbedtls_entropy_context entropy;
72 static int entropy_init_initialized = 0;
74 /* start of entropy_init_mutex() */
75 static void entropy_init_mutex(mbedtls_entropy_context *ctx)
77 /* lock 0 = entropy_init_mutex() */
78 Curl_polarsslthreadlock_lock_function(0);
79 if(entropy_init_initialized == 0) {
80 mbedtls_entropy_init(ctx);
81 entropy_init_initialized = 1;
83 Curl_polarsslthreadlock_unlock_function(0);
85 /* end of entropy_init_mutex() */
87 /* start of entropy_func_mutex() */
88 static int entropy_func_mutex(void *data, unsigned char *output, size_t len)
91 /* lock 1 = entropy_func_mutex() */
92 Curl_polarsslthreadlock_lock_function(1);
93 ret = mbedtls_entropy_func(data, output, len);
94 Curl_polarsslthreadlock_unlock_function(1);
98 /* end of entropy_func_mutex() */
100 #endif /* THREADING_SUPPORT */
102 /* Define this to enable lots of debugging for mbedTLS */
106 static void mbed_debug(void *context, int level, const char *f_name,
107 int line_nb, const char *line)
109 struct Curl_easy *data = NULL;
114 data = (struct Curl_easy *)context;
116 infof(data, "%s", line);
122 /* ALPN for http2? */
125 # ifdef MBEDTLS_SSL_ALPN
134 const mbedtls_x509_crt_profile mbedtls_x509_crt_profile_fr =
136 /* Hashes from SHA-1 and above */
137 MBEDTLS_X509_ID_FLAG(MBEDTLS_MD_SHA1) |
138 MBEDTLS_X509_ID_FLAG(MBEDTLS_MD_RIPEMD160) |
139 MBEDTLS_X509_ID_FLAG(MBEDTLS_MD_SHA224) |
140 MBEDTLS_X509_ID_FLAG(MBEDTLS_MD_SHA256) |
141 MBEDTLS_X509_ID_FLAG(MBEDTLS_MD_SHA384) |
142 MBEDTLS_X509_ID_FLAG(MBEDTLS_MD_SHA512),
143 0xFFFFFFF, /* Any PK alg */
144 0xFFFFFFF, /* Any curve */
145 1024, /* RSA min key len */
148 /* See https://tls.mbed.org/discussions/generic/
149 howto-determine-exact-buffer-len-for-mbedtls_pk_write_pubkey_der
151 #define RSA_PUB_DER_MAX_BYTES (38 + 2 * MBEDTLS_MPI_MAX_SIZE)
152 #define ECP_PUB_DER_MAX_BYTES (30 + 2 * MBEDTLS_ECP_MAX_BYTES)
154 #define PUB_DER_MAX_BYTES (RSA_PUB_DER_MAX_BYTES > ECP_PUB_DER_MAX_BYTES ? \
155 RSA_PUB_DER_MAX_BYTES : ECP_PUB_DER_MAX_BYTES)
157 static Curl_recv mbed_recv;
158 static Curl_send mbed_send;
161 mbed_connect_step1(struct connectdata *conn,
164 struct Curl_easy *data = conn->data;
165 struct ssl_connect_data* connssl = &conn->ssl[sockindex];
166 const char * const ssl_cafile = SSL_CONN_CONFIG(CAfile);
167 const bool verifypeer = SSL_CONN_CONFIG(verifypeer);
168 const char * const ssl_capath = SSL_CONN_CONFIG(CApath);
169 char * const ssl_cert = SSL_SET_OPTION(cert);
170 const char * const ssl_crlfile = SSL_SET_OPTION(CRLfile);
171 const char * const hostname = SSL_IS_PROXY() ? conn->http_proxy.host.name :
173 const long int port = SSL_IS_PROXY() ? conn->port : conn->remote_port;
178 /* mbedTLS only supports SSLv3 and TLSv1 */
179 if(SSL_CONN_CONFIG(version) == CURL_SSLVERSION_SSLv2) {
180 failf(data, "mbedTLS does not support SSLv2");
181 return CURLE_SSL_CONNECT_ERROR;
184 #ifdef THREADING_SUPPORT
185 entropy_init_mutex(&entropy);
186 mbedtls_ctr_drbg_init(&connssl->ctr_drbg);
188 ret = mbedtls_ctr_drbg_seed(&connssl->ctr_drbg, entropy_func_mutex,
191 #ifdef MBEDTLS_ERROR_C
192 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
193 #endif /* MBEDTLS_ERROR_C */
194 failf(data, "Failed - mbedTLS: ctr_drbg_init returned (-0x%04X) %s\n",
198 mbedtls_entropy_init(&connssl->entropy);
199 mbedtls_ctr_drbg_init(&connssl->ctr_drbg);
201 ret = mbedtls_ctr_drbg_seed(&connssl->ctr_drbg, mbedtls_entropy_func,
202 &connssl->entropy, NULL, 0);
204 #ifdef MBEDTLS_ERROR_C
205 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
206 #endif /* MBEDTLS_ERROR_C */
207 failf(data, "Failed - mbedTLS: ctr_drbg_init returned (-0x%04X) %s\n",
210 #endif /* THREADING_SUPPORT */
212 /* Load the trusted CA */
213 mbedtls_x509_crt_init(&connssl->cacert);
216 ret = mbedtls_x509_crt_parse_file(&connssl->cacert, ssl_cafile);
219 #ifdef MBEDTLS_ERROR_C
220 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
221 #endif /* MBEDTLS_ERROR_C */
222 failf(data, "Error reading ca cert file %s - mbedTLS: (-0x%04X) %s",
223 ssl_cafile, -ret, errorbuf);
226 return CURLE_SSL_CACERT_BADFILE;
231 ret = mbedtls_x509_crt_parse_path(&connssl->cacert, ssl_capath);
234 #ifdef MBEDTLS_ERROR_C
235 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
236 #endif /* MBEDTLS_ERROR_C */
237 failf(data, "Error reading ca cert path %s - mbedTLS: (-0x%04X) %s",
238 ssl_capath, -ret, errorbuf);
241 return CURLE_SSL_CACERT_BADFILE;
245 /* Load the client certificate */
246 mbedtls_x509_crt_init(&connssl->clicert);
249 ret = mbedtls_x509_crt_parse_file(&connssl->clicert, ssl_cert);
252 #ifdef MBEDTLS_ERROR_C
253 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
254 #endif /* MBEDTLS_ERROR_C */
255 failf(data, "Error reading client cert file %s - mbedTLS: (-0x%04X) %s",
256 ssl_cert, -ret, errorbuf);
258 return CURLE_SSL_CERTPROBLEM;
262 /* Load the client private key */
263 mbedtls_pk_init(&connssl->pk);
265 if(SSL_SET_OPTION(key)) {
266 ret = mbedtls_pk_parse_keyfile(&connssl->pk, SSL_SET_OPTION(key),
267 SSL_SET_OPTION(key_passwd));
268 if(ret == 0 && !mbedtls_pk_can_do(&connssl->pk, MBEDTLS_PK_RSA))
269 ret = MBEDTLS_ERR_PK_TYPE_MISMATCH;
272 #ifdef MBEDTLS_ERROR_C
273 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
274 #endif /* MBEDTLS_ERROR_C */
275 failf(data, "Error reading private key %s - mbedTLS: (-0x%04X) %s",
276 SSL_SET_OPTION(key), -ret, errorbuf);
278 return CURLE_SSL_CERTPROBLEM;
283 mbedtls_x509_crl_init(&connssl->crl);
286 ret = mbedtls_x509_crl_parse_file(&connssl->crl, ssl_crlfile);
289 #ifdef MBEDTLS_ERROR_C
290 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
291 #endif /* MBEDTLS_ERROR_C */
292 failf(data, "Error reading CRL file %s - mbedTLS: (-0x%04X) %s",
293 ssl_crlfile, -ret, errorbuf);
295 return CURLE_SSL_CRL_BADFILE;
299 infof(data, "mbedTLS: Connecting to %s:%d\n", hostname, port);
301 mbedtls_ssl_config_init(&connssl->config);
303 mbedtls_ssl_init(&connssl->ssl);
304 if(mbedtls_ssl_setup(&connssl->ssl, &connssl->config)) {
305 failf(data, "mbedTLS: ssl_init failed");
306 return CURLE_SSL_CONNECT_ERROR;
308 ret = mbedtls_ssl_config_defaults(&connssl->config,
309 MBEDTLS_SSL_IS_CLIENT,
310 MBEDTLS_SSL_TRANSPORT_STREAM,
311 MBEDTLS_SSL_PRESET_DEFAULT);
313 failf(data, "mbedTLS: ssl_config failed");
314 return CURLE_SSL_CONNECT_ERROR;
317 /* new profile with RSA min key len = 1024 ... */
318 mbedtls_ssl_conf_cert_profile(&connssl->config,
319 &mbedtls_x509_crt_profile_fr);
321 switch(SSL_CONN_CONFIG(version)) {
322 case CURL_SSLVERSION_DEFAULT:
323 case CURL_SSLVERSION_TLSv1:
324 mbedtls_ssl_conf_min_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
325 MBEDTLS_SSL_MINOR_VERSION_1);
326 infof(data, "mbedTLS: Set min SSL version to TLS 1.0\n");
328 case CURL_SSLVERSION_SSLv3:
329 mbedtls_ssl_conf_min_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
330 MBEDTLS_SSL_MINOR_VERSION_0);
331 mbedtls_ssl_conf_max_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
332 MBEDTLS_SSL_MINOR_VERSION_0);
333 infof(data, "mbedTLS: Set SSL version to SSLv3\n");
335 case CURL_SSLVERSION_TLSv1_0:
336 mbedtls_ssl_conf_min_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
337 MBEDTLS_SSL_MINOR_VERSION_1);
338 mbedtls_ssl_conf_max_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
339 MBEDTLS_SSL_MINOR_VERSION_1);
340 infof(data, "mbedTLS: Set SSL version to TLS 1.0\n");
342 case CURL_SSLVERSION_TLSv1_1:
343 mbedtls_ssl_conf_min_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
344 MBEDTLS_SSL_MINOR_VERSION_2);
345 mbedtls_ssl_conf_max_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
346 MBEDTLS_SSL_MINOR_VERSION_2);
347 infof(data, "mbedTLS: Set SSL version to TLS 1.1\n");
349 case CURL_SSLVERSION_TLSv1_2:
350 mbedtls_ssl_conf_min_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
351 MBEDTLS_SSL_MINOR_VERSION_3);
352 mbedtls_ssl_conf_max_version(&connssl->config, MBEDTLS_SSL_MAJOR_VERSION_3,
353 MBEDTLS_SSL_MINOR_VERSION_3);
354 infof(data, "mbedTLS: Set SSL version to TLS 1.2\n");
356 case CURL_SSLVERSION_TLSv1_3:
357 failf(data, "mbedTLS: TLS 1.3 is not yet supported");
358 return CURLE_SSL_CONNECT_ERROR;
360 failf(data, "Unrecognized parameter passed via CURLOPT_SSLVERSION");
361 return CURLE_SSL_CONNECT_ERROR;
364 mbedtls_ssl_conf_authmode(&connssl->config, MBEDTLS_SSL_VERIFY_OPTIONAL);
366 mbedtls_ssl_conf_rng(&connssl->config, mbedtls_ctr_drbg_random,
368 mbedtls_ssl_set_bio(&connssl->ssl, &conn->sock[sockindex],
371 NULL /* rev_timeout() */);
373 mbedtls_ssl_conf_ciphersuites(&connssl->config,
374 mbedtls_ssl_list_ciphersuites());
376 #if defined(MBEDTLS_SSL_SESSION_TICKETS)
377 mbedtls_ssl_conf_session_tickets(&connssl->config,
378 MBEDTLS_SSL_SESSION_TICKETS_DISABLED);
381 /* Check if there's a cached ID we can/should use here! */
382 if(data->set.general_ssl.sessionid) {
383 void *old_session = NULL;
385 Curl_ssl_sessionid_lock(conn);
386 if(!Curl_ssl_getsessionid(conn, &old_session, NULL, sockindex)) {
387 ret = mbedtls_ssl_set_session(&connssl->ssl, old_session);
389 Curl_ssl_sessionid_unlock(conn);
390 failf(data, "mbedtls_ssl_set_session returned -0x%x", -ret);
391 return CURLE_SSL_CONNECT_ERROR;
393 infof(data, "mbedTLS re-using session\n");
395 Curl_ssl_sessionid_unlock(conn);
398 mbedtls_ssl_conf_ca_chain(&connssl->config,
402 if(SSL_SET_OPTION(key)) {
403 mbedtls_ssl_conf_own_cert(&connssl->config,
404 &connssl->clicert, &connssl->pk);
406 if(mbedtls_ssl_set_hostname(&connssl->ssl, hostname)) {
407 /* mbedtls_ssl_set_hostname() sets the name to use in CN/SAN checks *and*
408 the name to set in the SNI extension. So even if curl connects to a
409 host specified as an IP address, this function must be used. */
410 failf(data, "couldn't set hostname in mbedTLS");
411 return CURLE_SSL_CONNECT_ERROR;
415 if(conn->bits.tls_enable_alpn) {
416 const char **p = &connssl->protocols[0];
418 if(data->set.httpversion >= CURL_HTTP_VERSION_2)
419 *p++ = NGHTTP2_PROTO_VERSION_ID;
421 *p++ = ALPN_HTTP_1_1;
423 /* this function doesn't clone the protocols array, which is why we need
425 if(mbedtls_ssl_conf_alpn_protocols(&connssl->config,
426 &connssl->protocols[0])) {
427 failf(data, "Failed setting ALPN protocols");
428 return CURLE_SSL_CONNECT_ERROR;
430 for(p = &connssl->protocols[0]; *p; ++p)
431 infof(data, "ALPN, offering %s\n", *p);
436 /* In order to make that work in mbedtls MBEDTLS_DEBUG_C must be defined. */
437 mbedtls_ssl_conf_dbg(&connssl->config, mbed_debug, data);
444 mbedtls_debug_set_threshold(4);
447 connssl->connecting_state = ssl_connect_2;
453 mbed_connect_step2(struct connectdata *conn,
457 struct Curl_easy *data = conn->data;
458 struct ssl_connect_data* connssl = &conn->ssl[sockindex];
459 const mbedtls_x509_crt *peercert;
460 const char * const pinnedpubkey = SSL_IS_PROXY() ?
461 data->set.str[STRING_SSL_PINNEDPUBLICKEY_PROXY] :
462 data->set.str[STRING_SSL_PINNEDPUBLICKEY_ORIG];
465 const char *next_protocol;
471 conn->recv[sockindex] = mbed_recv;
472 conn->send[sockindex] = mbed_send;
474 ret = mbedtls_ssl_handshake(&connssl->ssl);
476 if(ret == MBEDTLS_ERR_SSL_WANT_READ) {
477 connssl->connecting_state = ssl_connect_2_reading;
480 else if(ret == MBEDTLS_ERR_SSL_WANT_WRITE) {
481 connssl->connecting_state = ssl_connect_2_writing;
485 #ifdef MBEDTLS_ERROR_C
486 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
487 #endif /* MBEDTLS_ERROR_C */
488 failf(data, "ssl_handshake returned - mbedTLS: (-0x%04X) %s",
490 return CURLE_SSL_CONNECT_ERROR;
493 infof(data, "mbedTLS: Handshake complete, cipher is %s\n",
494 mbedtls_ssl_get_ciphersuite(&conn->ssl[sockindex].ssl)
497 ret = mbedtls_ssl_get_verify_result(&conn->ssl[sockindex].ssl);
499 if(ret && SSL_CONN_CONFIG(verifypeer)) {
500 if(ret & MBEDTLS_X509_BADCERT_EXPIRED)
501 failf(data, "Cert verify failed: BADCERT_EXPIRED");
503 if(ret & MBEDTLS_X509_BADCERT_REVOKED) {
504 failf(data, "Cert verify failed: BADCERT_REVOKED");
505 return CURLE_SSL_CACERT;
508 if(ret & MBEDTLS_X509_BADCERT_CN_MISMATCH)
509 failf(data, "Cert verify failed: BADCERT_CN_MISMATCH");
511 if(ret & MBEDTLS_X509_BADCERT_NOT_TRUSTED)
512 failf(data, "Cert verify failed: BADCERT_NOT_TRUSTED");
514 return CURLE_PEER_FAILED_VERIFICATION;
517 peercert = mbedtls_ssl_get_peer_cert(&connssl->ssl);
519 if(peercert && data->set.verbose) {
520 const size_t bufsize = 16384;
521 char *buffer = malloc(bufsize);
524 return CURLE_OUT_OF_MEMORY;
526 if(mbedtls_x509_crt_info(buffer, bufsize, "* ", peercert) > 0)
527 infof(data, "Dumping cert info:\n%s\n", buffer);
529 infof(data, "Unable to dump certificate information.\n");
538 unsigned char pubkey[PUB_DER_MAX_BYTES];
540 if(!peercert || !peercert->raw.p || !peercert->raw.len) {
541 failf(data, "Failed due to missing peer certificate");
542 return CURLE_SSL_PINNEDPUBKEYNOTMATCH;
545 p = calloc(1, sizeof(*p));
548 return CURLE_OUT_OF_MEMORY;
550 mbedtls_x509_crt_init(p);
552 /* Make a copy of our const peercert because mbedtls_pk_write_pubkey_der
553 needs a non-const key, for now.
554 https://github.com/ARMmbed/mbedtls/issues/396 */
555 if(mbedtls_x509_crt_parse_der(p, peercert->raw.p, peercert->raw.len)) {
556 failf(data, "Failed copying peer certificate");
557 mbedtls_x509_crt_free(p);
559 return CURLE_SSL_PINNEDPUBKEYNOTMATCH;
562 size = mbedtls_pk_write_pubkey_der(&p->pk, pubkey, PUB_DER_MAX_BYTES);
565 failf(data, "Failed copying public key from peer certificate");
566 mbedtls_x509_crt_free(p);
568 return CURLE_SSL_PINNEDPUBKEYNOTMATCH;
571 /* mbedtls_pk_write_pubkey_der writes data at the end of the buffer. */
572 result = Curl_pin_peer_pubkey(data,
574 &pubkey[PUB_DER_MAX_BYTES - size], size);
576 mbedtls_x509_crt_free(p);
581 mbedtls_x509_crt_free(p);
586 if(conn->bits.tls_enable_alpn) {
587 next_protocol = mbedtls_ssl_get_alpn_protocol(&connssl->ssl);
590 infof(data, "ALPN, server accepted to use %s\n", next_protocol);
592 if(!strncmp(next_protocol, NGHTTP2_PROTO_VERSION_ID,
593 NGHTTP2_PROTO_VERSION_ID_LEN) &&
594 !next_protocol[NGHTTP2_PROTO_VERSION_ID_LEN]) {
595 conn->negnpn = CURL_HTTP_VERSION_2;
599 if(!strncmp(next_protocol, ALPN_HTTP_1_1, ALPN_HTTP_1_1_LENGTH) &&
600 !next_protocol[ALPN_HTTP_1_1_LENGTH]) {
601 conn->negnpn = CURL_HTTP_VERSION_1_1;
605 infof(data, "ALPN, server did not agree to a protocol\n");
610 connssl->connecting_state = ssl_connect_3;
611 infof(data, "SSL connected\n");
617 mbed_connect_step3(struct connectdata *conn,
620 CURLcode retcode = CURLE_OK;
621 struct ssl_connect_data *connssl = &conn->ssl[sockindex];
622 struct Curl_easy *data = conn->data;
624 DEBUGASSERT(ssl_connect_3 == connssl->connecting_state);
626 if(data->set.general_ssl.sessionid) {
628 mbedtls_ssl_session *our_ssl_sessionid;
629 void *old_ssl_sessionid = NULL;
631 our_ssl_sessionid = malloc(sizeof(mbedtls_ssl_session));
632 if(!our_ssl_sessionid)
633 return CURLE_OUT_OF_MEMORY;
635 mbedtls_ssl_session_init(our_ssl_sessionid);
637 ret = mbedtls_ssl_get_session(&connssl->ssl, our_ssl_sessionid);
639 failf(data, "mbedtls_ssl_get_session returned -0x%x", -ret);
640 return CURLE_SSL_CONNECT_ERROR;
643 /* If there's already a matching session in the cache, delete it */
644 Curl_ssl_sessionid_lock(conn);
645 if(!Curl_ssl_getsessionid(conn, &old_ssl_sessionid, NULL, sockindex))
646 Curl_ssl_delsessionid(conn, old_ssl_sessionid);
648 retcode = Curl_ssl_addsessionid(conn, our_ssl_sessionid, 0, sockindex);
649 Curl_ssl_sessionid_unlock(conn);
651 free(our_ssl_sessionid);
652 failf(data, "failed to store ssl session");
657 connssl->connecting_state = ssl_connect_done;
662 static ssize_t mbed_send(struct connectdata *conn, int sockindex,
663 const void *mem, size_t len,
668 ret = mbedtls_ssl_write(&conn->ssl[sockindex].ssl,
669 (unsigned char *)mem, len);
672 *curlcode = (ret == MBEDTLS_ERR_SSL_WANT_WRITE) ?
673 CURLE_AGAIN : CURLE_SEND_ERROR;
680 void Curl_mbedtls_close_all(struct Curl_easy *data)
685 void Curl_mbedtls_close(struct connectdata *conn, int sockindex)
687 mbedtls_pk_free(&conn->ssl[sockindex].pk);
688 mbedtls_x509_crt_free(&conn->ssl[sockindex].clicert);
689 mbedtls_x509_crt_free(&conn->ssl[sockindex].cacert);
690 mbedtls_x509_crl_free(&conn->ssl[sockindex].crl);
691 mbedtls_ssl_config_free(&conn->ssl[sockindex].config);
692 mbedtls_ssl_free(&conn->ssl[sockindex].ssl);
693 mbedtls_ctr_drbg_free(&conn->ssl[sockindex].ctr_drbg);
694 #ifndef THREADING_SUPPORT
695 mbedtls_entropy_free(&conn->ssl[sockindex].entropy);
696 #endif /* THREADING_SUPPORT */
699 static ssize_t mbed_recv(struct connectdata *conn, int num,
700 char *buf, size_t buffersize,
706 memset(buf, 0, buffersize);
707 ret = mbedtls_ssl_read(&conn->ssl[num].ssl, (unsigned char *)buf,
711 if(ret == MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY)
714 *curlcode = (ret == MBEDTLS_ERR_SSL_WANT_READ) ?
715 CURLE_AGAIN : CURLE_RECV_ERROR;
724 void Curl_mbedtls_session_free(void *ptr)
726 mbedtls_ssl_session_free(ptr);
730 size_t Curl_mbedtls_version(char *buffer, size_t size)
732 unsigned int version = mbedtls_version_get_number();
733 return snprintf(buffer, size, "mbedTLS/%d.%d.%d", version>>24,
734 (version>>16)&0xff, (version>>8)&0xff);
737 CURLcode Curl_mbedtls_random(struct Curl_easy *data, unsigned char *entropy,
740 #if defined(MBEDTLS_CTR_DRBG_C)
743 mbedtls_entropy_context ctr_entropy;
744 mbedtls_ctr_drbg_context ctr_drbg;
745 mbedtls_entropy_init(&ctr_entropy);
746 mbedtls_ctr_drbg_init(&ctr_drbg);
749 ret = mbedtls_ctr_drbg_seed(&ctr_drbg, mbedtls_entropy_func,
750 &ctr_entropy, NULL, 0);
753 #ifdef MBEDTLS_ERROR_C
754 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
755 #endif /* MBEDTLS_ERROR_C */
756 failf(data, "Failed - mbedTLS: ctr_drbg_seed returned (-0x%04X) %s\n",
760 ret = mbedtls_ctr_drbg_random(&ctr_drbg, entropy, length);
763 #ifdef MBEDTLS_ERROR_C
764 mbedtls_strerror(ret, errorbuf, sizeof(errorbuf));
765 #endif /* MBEDTLS_ERROR_C */
766 failf(data, "mbedTLS: ctr_drbg_init returned (-0x%04X) %s\n",
771 mbedtls_ctr_drbg_free(&ctr_drbg);
772 mbedtls_entropy_free(&ctr_entropy);
774 return ret == 0 ? CURLE_OK : CURLE_FAILED_INIT;
775 #elif defined(MBEDTLS_HAVEGE_C)
776 mbedtls_havege_state hs;
777 mbedtls_havege_init(&hs);
778 mbedtls_havege_random(&hs, entropy, length);
779 mbedtls_havege_free(&hs);
782 return CURLE_NOT_BUILT_IN;
787 mbed_connect_common(struct connectdata *conn,
793 struct Curl_easy *data = conn->data;
794 struct ssl_connect_data *connssl = &conn->ssl[sockindex];
795 curl_socket_t sockfd = conn->sock[sockindex];
799 /* check if the connection has already been established */
800 if(ssl_connection_complete == connssl->state) {
805 if(ssl_connect_1==connssl->connecting_state) {
806 /* Find out how much more time we're allowed */
807 timeout_ms = Curl_timeleft(data, NULL, TRUE);
810 /* no need to continue if time already is up */
811 failf(data, "SSL connection timeout");
812 return CURLE_OPERATION_TIMEDOUT;
814 retcode = mbed_connect_step1(conn, sockindex);
819 while(ssl_connect_2 == connssl->connecting_state ||
820 ssl_connect_2_reading == connssl->connecting_state ||
821 ssl_connect_2_writing == connssl->connecting_state) {
823 /* check allowed time left */
824 timeout_ms = Curl_timeleft(data, NULL, TRUE);
827 /* no need to continue if time already is up */
828 failf(data, "SSL connection timeout");
829 return CURLE_OPERATION_TIMEDOUT;
832 /* if ssl is expecting something, check if it's available. */
833 if(connssl->connecting_state == ssl_connect_2_reading
834 || connssl->connecting_state == ssl_connect_2_writing) {
836 curl_socket_t writefd = ssl_connect_2_writing==
837 connssl->connecting_state?sockfd:CURL_SOCKET_BAD;
838 curl_socket_t readfd = ssl_connect_2_reading==
839 connssl->connecting_state?sockfd:CURL_SOCKET_BAD;
841 what = Curl_socket_check(readfd, CURL_SOCKET_BAD, writefd,
842 nonblocking ? 0 : timeout_ms);
845 failf(data, "select/poll on SSL socket, errno: %d", SOCKERRNO);
846 return CURLE_SSL_CONNECT_ERROR;
855 failf(data, "SSL connection timeout");
856 return CURLE_OPERATION_TIMEDOUT;
859 /* socket is readable or writable */
862 /* Run transaction, and return to the caller if it failed or if
863 * this connection is part of a multi handle and this loop would
864 * execute again. This permits the owner of a multi handle to
865 * abort a connection attempt before step2 has completed while
866 * ensuring that a client using select() or epoll() will always
867 * have a valid fdset to wait on.
869 retcode = mbed_connect_step2(conn, sockindex);
870 if(retcode || (nonblocking &&
871 (ssl_connect_2 == connssl->connecting_state ||
872 ssl_connect_2_reading == connssl->connecting_state ||
873 ssl_connect_2_writing == connssl->connecting_state)))
876 } /* repeat step2 until all transactions are done. */
878 if(ssl_connect_3==connssl->connecting_state) {
879 retcode = mbed_connect_step3(conn, sockindex);
884 if(ssl_connect_done==connssl->connecting_state) {
885 connssl->state = ssl_connection_complete;
886 conn->recv[sockindex] = mbed_recv;
887 conn->send[sockindex] = mbed_send;
893 /* Reset our connect state machine */
894 connssl->connecting_state = ssl_connect_1;
900 Curl_mbedtls_connect_nonblocking(struct connectdata *conn,
904 return mbed_connect_common(conn, sockindex, TRUE, done);
909 Curl_mbedtls_connect(struct connectdata *conn,
915 retcode = mbed_connect_common(conn, sockindex, FALSE, &done);
925 * return 0 error initializing SSL
926 * return 1 SSL initialized successfully
928 int Curl_mbedtls_init(void)
930 return Curl_polarsslthreadlock_thread_setup();
933 void Curl_mbedtls_cleanup(void)
935 (void)Curl_polarsslthreadlock_thread_cleanup();
938 int Curl_mbedtls_data_pending(const struct connectdata *conn, int sockindex)
940 return mbedtls_ssl_get_bytes_avail(&conn->ssl[sockindex].ssl) != 0;
943 #endif /* USE_MBEDTLS */