ホーム エクスプローラ ヘルプ
登録 サインイン
Home
/
repos_util
1
0
フォーク 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: dbaa67299b
ブランチ タグ
repos_util
/
mariadbTest
/
include
/
ma_tls.h

ma_tls.h 4.0 KB
履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156 
  1. #ifndef _ma_tls_h_
    2. 

  2. #define _ma_tls_h_
    3. 

  3. 

  4. enum enum_pvio_tls_type {
    5. 

  5.   SSL_TYPE_DEFAULT=0,
    6. 

  6. #ifdef _WIN32
    7. 

  7.   SSL_TYPE_SCHANNEL,
    8. 

  8. #endif
    9. 

  9.   SSL_TYPE_OPENSSL,
    10. 

  10.   SSL_TYPE_GNUTLS
    11. 

  11. };
    12. 

  12. 

  13. typedef struct st_ma_pvio_tls {
    14. 

  14.   void *data;
    15. 

  15.   MARIADB_PVIO *pvio;
    16. 

  16.   void *ssl;
    17. 

  17. } MARIADB_TLS;
    18. 

  18. 

  19. struct st_ssl_version {
    20. 

  20.   unsigned int iversion;
    21. 

  21.   char *cversion;
    22. 

  22. };
    23. 

  23. 

  24. /* Function prototypes */
    25. 

  25. 

  26. /* ma_tls_start
    27. 

  27.    initializes the ssl library
    28. 

  28.    Parameter:
    29. 

  29.      errmsg      pointer to error message buffer
    30. 

  30.      errmsg_len  length of error message buffer
    31. 

  31.    Returns:
    32. 

  32.      0           success
    33. 

  33.      1           if an error occured
    34. 

  34.    Notes:
    35. 

  35.      On success the global variable ma_tls_initialized will be set to 1
    36. 

  36. */
    37. 

  37. int ma_tls_start(char *errmsg, size_t errmsg_len);
    38. 

  38. 

  39. /* ma_tls_end
    40. 

  40.    unloads/deinitializes ssl library and unsets global variable
    41. 

  41.    ma_tls_initialized
    42. 

  42. */
    43. 

  43. void ma_tls_end(void);
    44. 

  44. 

  45. /* ma_tls_init
    46. 

  46.    creates a new SSL structure for a SSL connection and loads
    47. 

  47.    client certificates
    48. 

  48. 

  49.    Parameters:
    50. 

  50.      MYSQL        a mysql structure
    51. 

  51.    Returns:
    52. 

  52.      void *       a pointer to internal SSL structure
    53. 

  53. */
    54. 

  54. void * ma_tls_init(MYSQL *mysql);
    55. 

  55. 

  56. /* ma_tls_connect
    57. 

  57.    performs SSL handshake
    58. 

  58.    Parameters:
    59. 

  59.      MARIADB_TLS   MariaDB SSL container
    60. 

  60.    Returns:
    61. 

  61.      0             success
    62. 

  62.      1             error
    63. 

  63. */
    64. 

  64. my_bool ma_tls_connect(MARIADB_TLS *ctls);
    65. 

  65. 

  66. /* ma_tls_read
    67. 

  67.    reads up to length bytes from socket
    68. 

  68.    Parameters:
    69. 

  69.      ctls         MariaDB SSL container
    70. 

  70.      buffer       read buffer
    71. 

  71.      length       buffer length
    72. 

  72.    Returns:
    73. 

  73.      0-n          bytes read
    74. 

  74.      -1           if an error occured
    75. 

  75. */
    76. 

  76. ssize_t ma_tls_read(MARIADB_TLS *ctls, const uchar* buffer, size_t length);
    77. 

  77. 

  78. /* ma_tls_write
    79. 

  79.    write buffer to socket
    80. 

  80.    Parameters:
    81. 

  81.      ctls         MariaDB SSL container
    82. 

  82.      buffer       write buffer
    83. 

  83.      length       buffer length
    84. 

  84.    Returns:
    85. 

  85.      0-n          bytes written
    86. 

  86.      -1           if an error occured
    87. 

  87. */
    88. 

  88. ssize_t ma_tls_write(MARIADB_TLS *ctls, const uchar* buffer, size_t length);
    89. 

  89. 

  90. /* ma_tls_close
    91. 

  91.    closes SSL connection and frees SSL structure which was previously
    92. 

  92.    created by ma_tls_init call
    93. 

  93.    Parameters:
    94. 

  94.      MARIADB_TLS  MariaDB SSL container
    95. 

  95.    Returns:
    96. 

  96.      0            success
    97. 

  97.      1            error
    98. 

  98. */
    99. 

  99. my_bool ma_tls_close(MARIADB_TLS *ctls);
    100. 

  100. 

  101. /* ma_tls_verify_server_cert
    102. 

  102.    validation check of server certificate
    103. 

  103.    Parameter:
    104. 

  104.      MARIADB_TLS  MariaDB SSL container
    105. 

  105.    Returns:
    106. 

  106.      ß            success
    107. 

  107.      1            error
    108. 

  108. */
    109. 

  109. int ma_tls_verify_server_cert(MARIADB_TLS *ctls);
    110. 

  110. 

  111. /* ma_tls_get_cipher
    112. 

  112.    returns cipher for current ssl connection
    113. 

  113.    Parameter:
    114. 

  114.      MARIADB_TLS  MariaDB SSL container
    115. 

  115.    Returns: 
    116. 

  116.      cipher in use or
    117. 

  117.      NULL on error
    118. 

  118. */
    119. 

  119. const char *ma_tls_get_cipher(MARIADB_TLS *ssl);
    120. 

  120. 

  121. /* ma_tls_get_finger_print
    122. 

  122.    returns SHA1 finger print of server certificate
    123. 

  123.    Parameter:
    124. 

  124.      MARIADB_TLS  MariaDB SSL container
    125. 

  125.      fp           buffer for fingerprint
    126. 

  126.      fp_len       buffer length
    127. 

  127.    Returns:
    128. 

  128.      actual size of finger print
    129. 

  129. */
    130. 

  130. unsigned int ma_tls_get_finger_print(MARIADB_TLS *ctls, char *fp, unsigned int fp_len);
    131. 

  131. 

  132. /* ma_tls_get_protocol_version 
    133. 

  133.    returns protocol version in use
    134. 

  134.    Parameter:
    135. 

  135.      MARIADB_TLS    MariaDB SSL container
    136. 

  136.      version        pointer to ssl version info
    137. 

  137.    Returns:
    138. 

  138.      0              success
    139. 

  139.      1              error
    140. 

  140. */
    141. 

  141. my_bool ma_tls_get_protocol_version(MARIADB_TLS *ctls, struct st_ssl_version *version);
    142. 

  142. 

  143. /* Function prototypes */
    144. 

  144. MARIADB_TLS *ma_pvio_tls_init(MYSQL *mysql);
    145. 

  145. my_bool ma_pvio_tls_connect(MARIADB_TLS *ctls);
    146. 

  146. ssize_t ma_pvio_tls_read(MARIADB_TLS *ctls, const uchar *buffer, size_t length);
    147. 

  147. ssize_t ma_pvio_tls_write(MARIADB_TLS *ctls, const uchar *buffer, size_t length);
    148. 

  148. my_bool ma_pvio_tls_close(MARIADB_TLS *ctls);
    149. 

  149. int ma_pvio_tls_verify_server_cert(MARIADB_TLS *ctls);
    150. 

  150. const char *ma_pvio_tls_cipher(MARIADB_TLS *ctls);
    151. 

  151. my_bool ma_pvio_tls_check_fp(MARIADB_TLS *ctls, const char *fp, const char *fp_list);
    152. 

  152. my_bool ma_pvio_start_ssl(MARIADB_PVIO *pvio);
    153. 

  153. my_bool ma_pvio_tls_get_protocol_version(MARIADB_TLS *ctls, struct st_ssl_version *version);
    154. 

  154. void ma_pvio_tls_end();
    155. 

  155. 

  156. #endif /* _ma_tls_h_ */
    157.