sqmail/doxygen/tls__timeoutio_8c_source.html

/* This is essentially taken from Eric Vermeulen's TLS patch */

#include "select.h"

#include "error.h"

#include "ndelay.h"

#include "now.h"

#include "logmsg.h"

#include "ucspissl.h"

#include "tls_timeoutio.h"


// this function pointer needs to be replaced


int tls_timeoutio(int (*fun)(),int t,int rfd,int wfd,SSL *ssl,char *buf,int len)

{

  int n;

  const datetime_sec end = (datetime_sec)t + now();


  do {

    fd_set fds;

    struct timeval tv;


    const int r = buf ? fun(ssl,buf,len) : fun(ssl);

    if (r > 0) return r;


    t = end - now();

    if (t < 0) break;

    tv.tv_sec = (time_t)t; tv.tv_usec = 0;


    FD_ZERO(&fds);

    switch (SSL_get_error(ssl,r)) {

      default: return r; /* some other error */

       case SSL_ERROR_WANT_READ:

          FD_SET(rfd,&fds); n = select(rfd + 1,&fds,NULL,NULL,&tv);

          break;

        case SSL_ERROR_WANT_WRITE:

          FD_SET(wfd,&fds); n = select(wfd + 1,NULL,&fds,NULL,&tv);

          break;

    }


    /* n is the number of descriptors that changed status */

  } while (n > 0);


  if (n != -1) errno = ETIMEDOUT;

  return -1;

}


int tls_timeoutaccept(int t,int rfd,int wfd,SSL *ssl)

{

  int r;


  /* if connection is established, keep NDELAY */

  if (ndelay_on(rfd) == -1 || ndelay_on(wfd) == -1) return -1;

  r = tls_timeoutio(SSL_accept,t,rfd,wfd,ssl,NULL,0);


  if (r <= 0) { ndelay_off(rfd); ndelay_off(wfd); }

  else SSL_set_mode(ssl,SSL_MODE_ENABLE_PARTIAL_WRITE);


  return r;

}


int tls_timeoutconn(int t,int rfd,int wfd,SSL *ssl)

{

  int r;


  /* if connection is established, keep NDELAY */

  if (ndelay_on(rfd) == -1 || ndelay_on(wfd) == -1) return -1;

  r = tls_timeoutio(SSL_connect,t,rfd,wfd,ssl,NULL,0);


  if (r <= 0) { ndelay_off(rfd); ndelay_off(wfd); }

  else SSL_set_mode(ssl,SSL_MODE_ENABLE_PARTIAL_WRITE);


  return r;

}


int tls_timeoutrehandshake(int t,int rfd,int wfd,SSL *ssl)

{

  int r;


  SSL_renegotiate(ssl);

  r = tls_timeoutio(SSL_do_handshake,t,rfd,wfd,ssl,NULL,0);

  if (r <= 0) return r;

  if (SSL_get_state(ssl) & SSL_ST_CONNECT) return -2; /* now a macro in ssl.h */


  /* this is for the client only */

  SSL_set_connect_state(ssl);


  return tls_timeoutio(SSL_do_handshake,t,rfd,wfd,ssl,NULL,0);

}


int tls_timeoutread(int t,int rfd,int wfd,SSL *ssl,char *buf,int len)

{

  if (!buf) return 0;

  if (SSL_pending(ssl)) return SSL_read(ssl,buf,len);

  return tls_timeoutio(SSL_read,t,rfd,wfd,ssl,buf,len);

}


int tls_timeoutwrite(int t,int rfd,int wfd,SSL *ssl,char *buf,int len)

{

  if (!buf) return 0;

  return tls_timeoutio(SSL_write,t,rfd,wfd,ssl,buf,len);

}

fds
fd_set fds
Definition: chkspawn.c:9

datetime_sec
long datetime_sec
Definition: datetime.h:15

buf
char buf[100+FMT_ULONG]
Definition: hier.c:11

now.h

now
datetime_sec now()
Definition: now.c:5

ssl
SSL * ssl
Definition: qmail-remote.c:107

tls_timeoutconn
int tls_timeoutconn(int t, int rfd, int wfd, SSL *ssl)
Definition: tls_timeoutio.c:60

tls_timeoutwrite
int tls_timeoutwrite(int t, int rfd, int wfd, SSL *ssl, char *buf, int len)
Definition: tls_timeoutio.c:96

tls_timeoutaccept
int tls_timeoutaccept(int t, int rfd, int wfd, SSL *ssl)
Definition: tls_timeoutio.c:46

tls_timeoutrehandshake
int tls_timeoutrehandshake(int t, int rfd, int wfd, SSL *ssl)
Definition: tls_timeoutio.c:74

tls_timeoutread
int tls_timeoutread(int t, int rfd, int wfd, SSL *ssl, char *buf, int len)
Definition: tls_timeoutio.c:89

tls_timeoutio
int tls_timeoutio(int(*fun)(), int t, int rfd, int wfd, SSL *ssl, char *buf, int len)
Definition: tls_timeoutio.c:12

tls_timeoutio.h