viotcpip.c BitKeeper file /home/tonu/bk/mysql-4.0/vio/viotcpip.c

viosslfactories.c	BitKeeper file /home/tonu/bk/mysql-4.0/vio/viosslfactories.c
viossl.c	BitKeeper file /home/tonu/bk/mysql-4.0/vio/viossl.c
vio.c   	BitKeeper file /home/tonu/bk/mysql-4.0/vio/vio.c

1 files changed, 358 insertions, 0 deletions

diff --git a/vio/viossl.c b/vio/viossl.c
new file mode 100644
index 00000000000..5600bc1a800
--- /dev/null
+++ b/vio/viossl.c
@@ -0,0 +1,358 @@
+/* Copyright (C) 2000 MySQL AB & MySQL Finland AB & TCX DataKonsult AB
+   
+   This library is free software; you can redistribute it and/or
+   modify it under the terms of the GNU Library General Public
+   License as published by the Free Software Foundation; either
+   version 2 of the License, or (at your option) any later version.
+   
+   This library is distributed in the hope that it will be useful,
+   but WITHOUT ANY WARRANTY; without even the implied warranty of
+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+   Library General Public License for more details.
+   
+   You should have received a copy of the GNU Library General Public
+   License along with this library; if not, write to the Free
+   Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
+   MA 02111-1307, USA */
+
+/*
+  Note that we can't have assertion on file descriptors;  The reason for
+  this is that during mysql shutdown, another thread can close a file
+  we are working on.  In this case we should just return read errors from
+  the file descriptior.
+*/
+
+#include <global.h>
+
+#include <errno.h>
+#include <assert.h>
+#include <vio.h>
+#include <my_sys.h>
+#include <my_net.h>
+#include <m_string.h>
+#ifdef HAVE_POLL
+#include <sys/poll.h>
+#endif
+#ifdef HAVE_SYS_IOCTL_H
+#include <sys/ioctl.h>
+#endif
+
+#if defined(__EMX__)
+#define ioctlsocket ioctl
+#endif	/* defined(__EMX__) */
+
+#if defined(MSDOS) || defined(__WIN__)
+#ifdef __WIN__
+#undef errno
+#undef EINTR
+#undef EAGAIN
+#define errno WSAGetLastError()
+#define EINTR  WSAEINTR
+#define EAGAIN WSAEINPROGRESS
+#endif /* __WIN__ */
+#define O_NONBLOCK 1    /* For emulation of fcntl() */
+#endif
+#ifndef EWOULDBLOCK
+#define EWOULDBLOCK EAGAIN
+#endif
+
+#ifndef __WIN__
+#define HANDLE void *
+#endif
+
+
+#ifdef HAVE_OPENSSL
+void vio_ssl_delete(st_vio * vio)
+{
+  /* It must be safe to delete null pointers. */
+  /* This matches the semantics of C++'s delete operator. */
+  if (vio)
+  {
+    if (vio->type != VIO_CLOSED)
+      vio_close(vio);
+    my_free((gptr) vio,MYF(0));
+  }
+}
+
+int vio_ssl_errno(st_vio *vio __attribute__((unused)))
+{
+  return errno;			/* On Win32 this mapped to WSAGetLastError() */
+}
+
+
+int vio_ssl_read(st_vio * vio, gptr buf, int size)
+{
+  int r;
+  DBUG_ENTER("vio_ssl_read");
+  DBUG_PRINT("enter", ("sd=%d, buf=%p, size=%d", vio->sd, buf, size));
+  assert(vio->ssl_!= 0);
+  r = SSL_read(vio->ssl_, buf, size);
+#ifndef DBUG_OFF
+  if ( r< 0)
+    report_errors();
+#endif /* DBUG_OFF */
+  DBUG_PRINT("exit", ("%d", r));
+  DBUG_RETURN(r);
+}
+
+
+int vio_ssl_write(st_vio * vio, const gptr buf, int size)
+{
+  int r;
+  DBUG_ENTER("vio_ssl_write");
+  DBUG_PRINT("enter", ("sd=%d, buf=%p, size=%d", vio->sd, buf, size));
+  assert(vio->ssl_!=0);
+  r = SSL_write(vio->ssl_, buf, size);
+#ifndef DBUG_OFF
+  if (r<0)
+    report_errors();
+#endif /* DBUG_OFF */
+  DBUG_PRINT("exit", ("%d", r));
+  DBUG_RETURN(r);
+}
+
+
+int vio_ssl_fastsend(st_vio * vio __attribute__((unused)))
+{
+  int r=0;
+  DBUG_ENTER("vio_ssl_fastsend");
+
+#ifdef IPTOS_THROUGHPUT
+  {
+#ifndef __EMX__
+    int tos = IPTOS_THROUGHPUT;
+    if (!setsockopt(vio->sd, IPPROTO_IP, IP_TOS, (void *) &tos, sizeof(tos)))
+#endif				/* !__EMX__ */
+    {
+      int nodelay = 1;
+      if (setsockopt(vio->sd, IPPROTO_TCP, TCP_NODELAY, (void *) &nodelay,
+		     sizeof(nodelay))) {
+	DBUG_PRINT("warning",
+		   ("Couldn't set socket option for fast send"));
+	r= -1;
+      }
+    }
+  }
+#endif	/* IPTOS_THROUGHPUT */
+  DBUG_PRINT("exit", ("%d", r));
+  DBUG_RETURN(r);
+}
+
+int vio_ssl_keepalive(st_vio* vio, my_bool set_keep_alive)
+{
+  int r=0;
+  uint opt = 0;
+  DBUG_ENTER("vio_ssl_keepalive");
+  DBUG_PRINT("enter", ("sd=%d, set_keep_alive=%d", vio->sd, (int)
+		       set_keep_alive));
+  if (vio->type != VIO_TYPE_NAMEDPIPE)
+  {
+    if (set_keep_alive)
+      opt = 1;
+    r = setsockopt(vio->sd, SOL_SOCKET, SO_KEEPALIVE, (char *) &opt,
+		   sizeof(opt));
+  }
+  DBUG_RETURN(r);
+}
+
+
+my_bool
+vio_ssl_should_retry(st_vio * vio __attribute__((unused)))
+{
+  int en = errno;
+  return en == EAGAIN || en == EINTR || en == EWOULDBLOCK;
+}
+
+
+int vio_ssl_close(st_vio * vio)
+{
+  int r;
+  DBUG_ENTER("vio_ssl_close");
+  r=0;
+  if (vio->ssl_)
+  {
+    r = SSL_shutdown(vio->ssl_);
+    SSL_free(vio->ssl_);
+    vio->ssl_= 0;
+    vio->bio_ = 0;
+  }
+  if (shutdown(vio->sd,2))
+    r= -1;
+  if (closesocket(vio->sd))
+    r= -1;
+  if (r)
+  {
+    DBUG_PRINT("error", ("close() failed, error: %d",errno));
+    /* FIXME: error handling (not critical for MySQL) */
+  }
+  vio->type= VIO_CLOSED;
+  vio->sd=   -1;
+  DBUG_RETURN(r);
+}
+
+
+const char *vio_ssl_description(st_vio * vio)
+{
+  return vio->desc;
+}
+
+enum enum_vio_type vio_ssl_type(st_vio* vio)
+{
+  return vio->type;
+}
+
+my_socket vio_ssl_fd(st_vio* vio)
+{
+  return vio->sd;
+}
+
+
+my_bool vio_ssl_peer_addr(st_vio * vio, char *buf)
+{
+  DBUG_ENTER("vio_ssl_peer_addr");
+  DBUG_PRINT("enter", ("sd=%d", vio->sd));
+  if (vio->localhost)
+  {
+    strmov(buf,"127.0.0.1");
+  }
+  else
+  {
+    size_socket addrLen = sizeof(struct sockaddr);
+    if (getpeername(vio->sd, (struct sockaddr *) (& (vio->remote)),
+		    &addrLen) != 0)
+    {
+      DBUG_PRINT("exit", ("getpeername, error: %d", errno));
+      DBUG_RETURN(1);
+    }
+    /* FIXME */
+/*    my_inet_ntoa(vio->remote.sin_addr,buf); */
+  }
+  DBUG_PRINT("exit", ("addr=%s", buf));
+  DBUG_RETURN(0);
+}
+
+
+void vio_ssl_in_addr(st_vio *vio, struct in_addr *in)
+{
+  DBUG_ENTER("vio_ssl_in_addr");
+  if (vio->localhost)
+    bzero((char*) in, sizeof(*in));	/* This should never be executed */
+  else
+    *in=vio->remote.sin_addr;
+  DBUG_VOID_RETURN;
+}
+
+
+/* Return 0 if there is data to be read */
+
+my_bool vio_ssl_poll_read(st_vio *vio,uint timeout)
+{
+#ifndef HAVE_POLL
+  return 0;
+#else
+  struct pollfd fds;
+  int res;
+  DBUG_ENTER("vio_ssl_poll");
+  fds.fd=vio->sd;
+  fds.events=POLLIN;
+  fds.revents=0;
+  if ((res=poll(&fds,1,(int) timeout*1000)) <= 0)
+  {
+    DBUG_RETURN(res < 0 ? 0 : 1);		/* Don't return 1 on errors */
+  }
+  DBUG_RETURN(fds.revents & POLLIN ? 0 : 1);
+#endif
+}
+
+
+static void
+report_errors()
+{
+  unsigned long	l;
+  const char*	file;
+  const char*	data;
+  int		line,flags;
+  DBUG_ENTER("report_errors");
+
+  while ((l=ERR_get_error_line_data(&file,&line,&data,&flags)) != 0)
+  {
+    char buf[200];
+    DBUG_PRINT("error", ("OpenSSL: %s:%s:%d:%s\n", ERR_error_string(l,buf),
+			 file,line,(flags&ERR_TXT_STRING)?data:"")) ;
+  }
+  DBUG_VOID_RETURN;
+}
+
+/* FIXME: There are some duplicate code in 
+ * sslaccept()/sslconnect() which maybe can be eliminated 
+ */
+struct st_vio *sslaccept(struct st_VioSSLAcceptorFd* ptr, struct st_vio* sd)
+{
+  DBUG_ENTER("sslaccept");
+  DBUG_PRINT("enter", ("sd=%s ptr=%p", sd->desc,ptr));
+  vio_reset(sd,VIO_TYPE_SSL,sd->sd,0,FALSE);
+  ptr->bio_=0;
+  sd->ssl_=0;
+  sd->open_=FALSE; 
+  assert(sd != 0);
+  assert(ptr != 0);
+  assert(ptr->ssl_context_ != 0);
+  if (!(sd->ssl_ = SSL_new(ptr->ssl_context_)))
+  {
+    DBUG_PRINT("error", ("SSL_new failure"));
+    report_errors();
+    DBUG_RETURN(sd);
+  }
+  if (!(ptr->bio_ = BIO_new_socket(sd->sd, BIO_NOCLOSE)))
+  {
+    DBUG_PRINT("error", ("BIO_new_socket failure"));
+    report_errors();
+    SSL_free(sd->ssl_);
+    sd->ssl_=0;
+    DBUG_RETURN(sd);
+  }
+  SSL_set_bio(sd->ssl_, ptr->bio_, ptr->bio_);
+  SSL_set_accept_state(sd->ssl_);
+  sprintf(ptr->desc_, "VioSSL(%d)", sd->sd);
+/*  sd->ssl_cip_ = SSL_get_cipher(sd->ssl_); */
+  sd->open_ = TRUE;
+  DBUG_RETURN(sd);
+}
+
+struct st_vio *sslconnect(struct st_VioSSLConnectorFd* ptr, struct st_vio* sd)
+{
+  DBUG_ENTER("sslconnect");
+  DBUG_PRINT("enter", ("sd=%s ptr=%p ctx: %p", sd->desc,ptr,ptr->ssl_context_));
+  vio_reset(sd,VIO_TYPE_SSL,sd->sd,0,FALSE);
+
+  ptr->bio_=0;
+  sd->ssl_=0;
+  sd->open_=FALSE; 
+  assert(sd != 0);
+  assert(ptr != 0);
+  assert(ptr->ssl_context_ != 0);
+
+  if (!(sd->ssl_ = SSL_new(ptr->ssl_context_)))
+  {
+    DBUG_PRINT("error", ("SSL_new failure"));
+    report_errors();
+    DBUG_RETURN(sd);
+  }
+  if (!(ptr->bio_ = BIO_new_socket(sd->sd, BIO_NOCLOSE)))
+  {
+    DBUG_PRINT("error", ("BIO_new_socket failure"));
+    report_errors();
+    SSL_free(sd->ssl_);
+    sd->ssl_=0;
+    DBUG_RETURN(sd);
+  }
+  SSL_set_bio(sd->ssl_, ptr->bio_, ptr->bio_);
+  SSL_set_connect_state(sd->ssl_);
+/*  sprintf(ptr->desc_, "VioSSL(%d)", sd->sd); 
+  sd->ssl_cip_ = SSL_get_cipher(sd->ssl_);*/
+  sd->open_ = TRUE;
+  DBUG_RETURN(sd);
+}
+
+
+#endif /* HAVE_OPENSSL */