X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/72a12576750f52947eb043106ba5c12c0d07decf..b1ab9ed8d0e0f1c3b66d7daa8fd5564444c56195:/libsecurity_ssl/lib/sslUtils.h diff --git a/libsecurity_ssl/lib/sslUtils.h b/libsecurity_ssl/lib/sslUtils.h new file mode 100644 index 00000000..e31763b0 --- /dev/null +++ b/libsecurity_ssl/lib/sslUtils.h @@ -0,0 +1,143 @@ +/* + * Copyright (c) 2000-2001,2005-2007,2010-2012 Apple Inc. All Rights Reserved. + * + * @APPLE_LICENSE_HEADER_START@ + * + * This file contains Original Code and/or Modifications of Original Code + * as defined in and that are subject to the Apple Public Source License + * Version 2.0 (the 'License'). You may not use this file except in + * compliance with the License. Please obtain a copy of the License at + * http://www.opensource.apple.com/apsl/ and read it before using this + * file. + * + * The Original Code and all software distributed under the License are + * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER + * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, + * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, + * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. + * Please see the License for the specific language governing rights and + * limitations under the License. + * + * @APPLE_LICENSE_HEADER_END@ + */ + +/* + * sslUtils.h + */ + +#ifndef _SSLUTILS_H_ +#define _SSLUTILS_H_ 1 + +#include "SecureTransport.h" +#include "sslPriv.h" + +#ifdef __cplusplus +extern "C" { +#endif + +uint32_t SSLDecodeInt( + const uint8_t * p, + size_t length); +uint8_t *SSLEncodeInt( + uint8_t *p, + uint32_t value, + size_t length); + +/* Same, but the value to encode is a size_t */ +size_t SSLDecodeSize( + const uint8_t * p, + size_t length); +uint8_t *SSLEncodeSize( + uint8_t *p, + size_t value, + size_t length); + +/* Same but for 64bits int */ +uint8_t* SSLEncodeUInt64( + uint8_t *p, + sslUint64 value); +void IncrementUInt64( + sslUint64 *v); +#if ENABLE_DTLS +void SSLDecodeUInt64( + const uint8_t *p, + size_t length, + sslUint64 *v); +#endif + +static inline +int SSLHandshakeHeaderSize(SSLRecord *rec) +{ + if(rec->protocolVersion==DTLS_Version_1_0) + return 12; + else + return 4; +} + +uint8_t *SSLEncodeHandshakeHeader( + SSLContext *ctx, + SSLRecord *rec, + SSLHandshakeType type, + size_t msglen); + +#ifdef USE_SSLCERTIFICATE +size_t SSLGetCertificateChainLength( + const SSLCertificate *c); +OSStatus sslDeleteCertificateChain( + SSLCertificate *certs, + SSLContext *ctx); +#endif /* USE_SSLCERTIFICATE */ + +Boolean sslIsSessionActive( + const SSLContext *ctx); + +OSStatus sslTime( + uint32_t *tim); + +#if SSL_DEBUG +extern const char *protocolVersStr( + SSLProtocolVersion prot); +#endif + +/* + * Redirect SSLBuffer-based I/O call to user-supplied I/O. + */ +OSStatus sslIoRead( + SSLBuffer buf, + size_t *actualLength, + SSLContext *ctx); + +OSStatus sslIoWrite( + SSLBuffer buf, + size_t *actualLength, + SSLContext *ctx); + +/* + * Common RNG function. + */ +OSStatus sslRand( + SSLContext *ctx, + SSLBuffer *buf); + +OSStatus sslVerifyProtVersion( + SSLContext *ctx, + SSLProtocolVersion peerVersion, + SSLProtocolVersion *negVersion); + +OSStatus sslGetMaxProtVersion( + SSLContext *ctx, + SSLProtocolVersion *version); // RETURNED + +static inline bool sslVersionIsLikeTls12(SSLContext *ctx) +{ + assert(ctx->negProtocolVersion!=SSL_Version_Undetermined); + return ctx->isDTLS ? ctx->negProtocolVersion > DTLS_Version_1_0 : ctx->negProtocolVersion >= TLS_Version_1_2; +} + +#define SET_SSL_BUFFER(buf, d, l) do { (buf).data = (d); (buf).length = (l); } while (0) + +#ifdef __cplusplus +} +#endif + +#endif