5 // Martin Baulig <martin.baulig@xamarin.com>
7 // Copyright (c) 2015 Xamarin Inc. (http://www.xamarin.com)
9 // Permission is hereby granted, free of charge, to any person obtaining a copy
10 // of this software and associated documentation files (the "Software"), to deal
11 // in the Software without restriction, including without limitation the rights
12 // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
13 // copies of the Software, and to permit persons to whom the Software is
14 // furnished to do so, subject to the following conditions:
16 // The above copyright notice and this permission notice shall be included in
17 // all copies or substantial portions of the Software.
19 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
20 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
21 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
22 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
23 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
24 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
26 #if SECURITY_DEP && MONO_FEATURE_BTLS
30 using System.Runtime.InteropServices;
31 using System.Runtime.CompilerServices;
35 delegate int MonoBtlsVerifyCallback (MonoBtlsX509StoreCtx ctx);
36 delegate int MonoBtlsSelectCallback ();
38 class MonoBtlsSsl : MonoBtlsObject
40 internal class BoringSslHandle : MonoBtlsHandle
42 public BoringSslHandle (IntPtr handle)
47 protected override bool ReleaseHandle ()
49 mono_btls_ssl_destroy (handle);
55 [DllImport (BTLS_DYLIB)]
56 extern static void mono_btls_ssl_destroy (IntPtr handle);
58 [DllImport (BTLS_DYLIB)]
59 extern static IntPtr mono_btls_ssl_new (IntPtr handle);
61 [DllImport (BTLS_DYLIB)]
62 extern static int mono_btls_ssl_use_certificate (IntPtr handle, IntPtr x509);
64 [DllImport (BTLS_DYLIB)]
65 extern static int mono_btls_ssl_use_private_key (IntPtr handle, IntPtr key);
67 [DllImport (BTLS_DYLIB)]
68 extern static int mono_btls_ssl_add_chain_certificate (IntPtr handle, IntPtr x509);
70 [DllImport (BTLS_DYLIB)]
71 extern static int mono_btls_ssl_accept (IntPtr handle);
73 [DllImport (BTLS_DYLIB)]
74 extern static int mono_btls_ssl_connect (IntPtr handle);
76 [DllImport (BTLS_DYLIB)]
77 extern static int mono_btls_ssl_handshake (IntPtr handle);
79 [DllImport (BTLS_DYLIB)]
80 extern static void mono_btls_ssl_close (IntPtr handle);
82 [DllImport (BTLS_DYLIB)]
83 extern static int mono_btls_ssl_shutdown (IntPtr handle);
85 [DllImport (BTLS_DYLIB)]
86 extern static void mono_btls_ssl_set_quiet_shutdown (IntPtr handle, int mode);
88 [DllImport (BTLS_DYLIB)]
89 extern static void mono_btls_ssl_set_bio (IntPtr handle, IntPtr bio);
91 [DllImport (BTLS_DYLIB)]
92 extern static int mono_btls_ssl_read (IntPtr handle, IntPtr data, int len);
94 [DllImport (BTLS_DYLIB)]
95 extern static int mono_btls_ssl_write (IntPtr handle, IntPtr data, int len);
97 [DllImport (BTLS_DYLIB)]
98 extern static int mono_btls_ssl_get_error (IntPtr handle, int ret_code);
100 [DllImport (BTLS_DYLIB)]
101 extern static int mono_btls_ssl_get_version (IntPtr handle);
103 [DllImport (BTLS_DYLIB)]
104 extern static void mono_btls_ssl_set_min_version (IntPtr handle, int version);
106 [DllImport (BTLS_DYLIB)]
107 extern static void mono_btls_ssl_set_max_version (IntPtr handle, int version);
109 [DllImport (BTLS_DYLIB)]
110 extern static int mono_btls_ssl_get_cipher (IntPtr handle);
112 [DllImport (BTLS_DYLIB)]
113 extern static int mono_btls_ssl_get_ciphers (IntPtr handle, out IntPtr data);
115 [DllImport (BTLS_DYLIB)]
116 extern static IntPtr mono_btls_ssl_get_peer_certificate (IntPtr handle);
118 [DllImport (BTLS_DYLIB)]
119 extern static int mono_btls_ssl_set_cipher_list (IntPtr handle, IntPtr str);
121 [DllImport (BTLS_DYLIB)]
122 extern static void mono_btls_ssl_print_errors_cb (IntPtr func, IntPtr ctx);
124 [DllImport (BTLS_DYLIB)]
125 extern static int mono_btls_ssl_set_verify_param (IntPtr handle, IntPtr param);
127 [DllImport (BTLS_DYLIB)]
128 extern static int mono_btls_ssl_set_server_name (IntPtr handle, IntPtr name);
130 [DllImport (BTLS_DYLIB)]
131 extern static IntPtr mono_btls_ssl_get_server_name (IntPtr handle);
133 static BoringSslHandle Create_internal (MonoBtlsSslCtx ctx)
135 var handle = mono_btls_ssl_new (ctx.Handle.DangerousGetHandle ());
136 if (handle == IntPtr.Zero)
137 throw new MonoBtlsException ();
138 return new BoringSslHandle (handle);
142 PrintErrorsCallbackFunc printErrorsFunc;
143 IntPtr printErrorsFuncPtr;
145 public MonoBtlsSsl (MonoBtlsSslCtx ctx)
146 : base (Create_internal (ctx))
148 printErrorsFunc = PrintErrorsCallback;
149 printErrorsFuncPtr = Marshal.GetFunctionPointerForDelegate (printErrorsFunc);
152 new internal BoringSslHandle Handle {
153 get { return (BoringSslHandle)base.Handle; }
156 public void SetBio (MonoBtlsBio bio)
160 mono_btls_ssl_set_bio (
161 Handle.DangerousGetHandle (),
162 bio.Handle.DangerousGetHandle ());
165 Exception ThrowError ([CallerMemberName] string callerName = null)
169 if (callerName == null)
170 callerName = GetType ().Name;
171 errors = GetErrors ();
177 throw new MonoBtlsException ("{0} failed: {1}.", callerName, errors);
179 throw new MonoBtlsException ("{0} failed.", callerName);
182 MonoBtlsSslError GetError (int ret_code)
185 bio.CheckLastError ();
187 var error = mono_btls_ssl_get_error (
188 Handle.DangerousGetHandle (), ret_code);
189 return (MonoBtlsSslError)error;
192 public void SetCertificate (MonoBtlsX509 x509)
196 var ret = mono_btls_ssl_use_certificate (
197 Handle.DangerousGetHandle (),
198 x509.Handle.DangerousGetHandle ());
203 public void SetPrivateKey (MonoBtlsKey key)
207 var ret = mono_btls_ssl_use_private_key (
208 Handle.DangerousGetHandle (),
209 key.Handle.DangerousGetHandle ());
214 public void AddIntermediateCertificate (MonoBtlsX509 x509)
218 var ret = mono_btls_ssl_add_chain_certificate (
219 Handle.DangerousGetHandle (),
220 x509.Handle.DangerousGetHandle ());
225 public MonoBtlsSslError Accept ()
229 var ret = mono_btls_ssl_accept (Handle.DangerousGetHandle ());
231 var error = GetError (ret);
235 public MonoBtlsSslError Connect ()
239 var ret = mono_btls_ssl_connect (Handle.DangerousGetHandle ());
241 var error = GetError (ret);
245 public MonoBtlsSslError Handshake ()
249 var ret = mono_btls_ssl_handshake (Handle.DangerousGetHandle ());
251 var error = GetError (ret);
255 delegate int PrintErrorsCallbackFunc (IntPtr str, IntPtr len, IntPtr ctx);
257 [Mono.Util.MonoPInvokeCallback (typeof (PrintErrorsCallbackFunc))]
258 static int PrintErrorsCallback (IntPtr str, IntPtr len, IntPtr ctx)
260 var sb = (StringBuilder)GCHandle.FromIntPtr (ctx).Target;
262 var text = Marshal.PtrToStringAnsi (str, (int)len);
270 public string GetErrors ()
272 var text = new StringBuilder ();
273 var handle = GCHandle.Alloc (text);
276 mono_btls_ssl_print_errors_cb (printErrorsFuncPtr, GCHandle.ToIntPtr (handle));
277 return text.ToString ();
279 if (handle.IsAllocated)
284 public void PrintErrors ()
286 var errors = GetErrors ();
287 if (string.IsNullOrEmpty (errors))
289 Console.Error.WriteLine (errors);
292 public MonoBtlsSslError Read (IntPtr data, ref int dataSize)
295 var ret = mono_btls_ssl_read (
296 Handle.DangerousGetHandle (), data, dataSize);
300 return MonoBtlsSslError.None;
303 var error = GetError (ret);
304 if (ret == 0 && error == MonoBtlsSslError.Syscall) {
307 return MonoBtlsSslError.None;
314 public MonoBtlsSslError Write (IntPtr data, ref int dataSize)
317 var ret = mono_btls_ssl_write (
318 Handle.DangerousGetHandle (), data, dataSize);
322 return MonoBtlsSslError.None;
325 var error = mono_btls_ssl_get_error (
326 Handle.DangerousGetHandle (), ret);
328 return (MonoBtlsSslError)error;
331 public int GetVersion ()
334 return mono_btls_ssl_get_version (Handle.DangerousGetHandle ());
337 public void SetMinVersion (int version)
340 mono_btls_ssl_set_min_version (Handle.DangerousGetHandle (), version);
343 public void SetMaxVersion (int version)
346 mono_btls_ssl_set_max_version (Handle.DangerousGetHandle (), version);
349 public int GetCipher ()
352 var cipher = mono_btls_ssl_get_cipher (Handle.DangerousGetHandle ());
353 CheckError (cipher > 0);
357 public short[] GetCiphers ()
361 var count = mono_btls_ssl_get_ciphers (
362 Handle.DangerousGetHandle (), out data);
363 CheckError (count > 0);
365 short[] ciphers = new short[count];
366 Marshal.Copy (data, ciphers, 0, count);
373 public void SetCipherList (string str)
376 IntPtr strPtr = IntPtr.Zero;
378 strPtr = Marshal.StringToHGlobalAnsi (str);
379 var ret = mono_btls_ssl_set_cipher_list (
380 Handle.DangerousGetHandle (), strPtr);
383 if (strPtr != IntPtr.Zero)
384 Marshal.FreeHGlobal (strPtr);
388 public MonoBtlsX509 GetPeerCertificate ()
391 var x509 = mono_btls_ssl_get_peer_certificate (
392 Handle.DangerousGetHandle ());
393 if (x509 == IntPtr.Zero)
395 return new MonoBtlsX509 (new MonoBtlsX509.BoringX509Handle (x509));
398 public void SetVerifyParam (MonoBtlsX509VerifyParam param)
401 var ret = mono_btls_ssl_set_verify_param (
402 Handle.DangerousGetHandle (),
403 param.Handle.DangerousGetHandle ());
407 public void SetServerName (string name)
410 IntPtr namePtr = IntPtr.Zero;
412 namePtr = Marshal.StringToHGlobalAnsi (name);
413 var ret = mono_btls_ssl_set_server_name (
414 Handle.DangerousGetHandle (), namePtr);
417 if (namePtr != IntPtr.Zero)
418 Marshal.FreeHGlobal (namePtr);
422 public string GetServerName ()
425 var namePtr = mono_btls_ssl_get_server_name (
426 Handle.DangerousGetHandle ());
427 if (namePtr == IntPtr.Zero)
429 return Marshal.PtrToStringAnsi (namePtr);
432 public void Shutdown ()
435 var ret = mono_btls_ssl_shutdown (Handle.DangerousGetHandle ());
440 public void SetQuietShutdown ()
443 mono_btls_ssl_set_quiet_shutdown (Handle.DangerousGetHandle (), 1);
446 protected override void Close ()
448 if (!Handle.IsInvalid)
449 mono_btls_ssl_close (Handle.DangerousGetHandle ());