• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
2  * All rights reserved.
3  *
4  * This package is an SSL implementation written
5  * by Eric Young (eay@cryptsoft.com).
6  * The implementation was written so as to conform with Netscapes SSL.
7  *
8  * This library is free for commercial and non-commercial use as long as
9  * the following conditions are aheared to.  The following conditions
10  * apply to all code found in this distribution, be it the RC4, RSA,
11  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
12  * included with this distribution is covered by the same copyright terms
13  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
14  *
15  * Copyright remains Eric Young's, and as such any Copyright notices in
16  * the code are not to be removed.
17  * If this package is used in a product, Eric Young should be given attribution
18  * as the author of the parts of the library used.
19  * This can be in the form of a textual message at program startup or
20  * in documentation (online or textual) provided with the package.
21  *
22  * Redistribution and use in source and binary forms, with or without
23  * modification, are permitted provided that the following conditions
24  * are met:
25  * 1. Redistributions of source code must retain the copyright
26  *    notice, this list of conditions and the following disclaimer.
27  * 2. Redistributions in binary form must reproduce the above copyright
28  *    notice, this list of conditions and the following disclaimer in the
29  *    documentation and/or other materials provided with the distribution.
30  * 3. All advertising materials mentioning features or use of this software
31  *    must display the following acknowledgement:
32  *    "This product includes cryptographic software written by
33  *     Eric Young (eay@cryptsoft.com)"
34  *    The word 'cryptographic' can be left out if the rouines from the library
35  *    being used are not cryptographic related :-).
36  * 4. If you include any Windows specific code (or a derivative thereof) from
37  *    the apps directory (application code) you must include an acknowledgement:
38  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
39  *
40  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
41  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
43  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
44  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
45  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
46  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
48  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
49  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50  * SUCH DAMAGE.
51  *
52  * The licence and distribution terms for any publically available version or
53  * derivative of this code cannot be changed.  i.e. this code cannot simply be
54  * copied and put under another distribution licence
55  * [including the GNU Public Licence.]
56  */
57 /* ====================================================================
58  * Copyright (c) 1998-2006 The OpenSSL Project.  All rights reserved.
59  *
60  * Redistribution and use in source and binary forms, with or without
61  * modification, are permitted provided that the following conditions
62  * are met:
63  *
64  * 1. Redistributions of source code must retain the above copyright
65  *    notice, this list of conditions and the following disclaimer.
66  *
67  * 2. Redistributions in binary form must reproduce the above copyright
68  *    notice, this list of conditions and the following disclaimer in
69  *    the documentation and/or other materials provided with the
70  *    distribution.
71  *
72  * 3. All advertising materials mentioning features or use of this
73  *    software must display the following acknowledgment:
74  *    "This product includes software developed by the OpenSSL Project
75  *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
76  *
77  * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
78  *    endorse or promote products derived from this software without
79  *    prior written permission. For written permission, please contact
80  *    openssl-core@openssl.org.
81  *
82  * 5. Products derived from this software may not be called "OpenSSL"
83  *    nor may "OpenSSL" appear in their names without prior written
84  *    permission of the OpenSSL Project.
85  *
86  * 6. Redistributions of any form whatsoever must retain the following
87  *    acknowledgment:
88  *    "This product includes software developed by the OpenSSL Project
89  *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
90  *
91  * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
92  * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
93  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
94  * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
95  * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
96  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
97  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
98  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
99  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
100  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
101  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
102  * OF THE POSSIBILITY OF SUCH DAMAGE.
103  * ====================================================================
104  *
105  * This product includes cryptographic software written by Eric Young
106  * (eay@cryptsoft.com).  This product includes software written by Tim
107  * Hudson (tjh@cryptsoft.com).
108  *
109  */
110 /* ====================================================================
111  * Copyright 2005 Nokia. All rights reserved.
112  *
113  * The portions of the attached software ("Contribution") is developed by
114  * Nokia Corporation and is licensed pursuant to the OpenSSL open source
115  * license.
116  *
117  * The Contribution, originally written by Mika Kousa and Pasi Eronen of
118  * Nokia Corporation, consists of the "PSK" (Pre-Shared Key) ciphersuites
119  * support (see RFC 4279) to OpenSSL.
120  *
121  * No patent licenses or other rights except those expressly stated in
122  * the OpenSSL open source license shall be deemed granted or received
123  * expressly, by implication, estoppel, or otherwise.
124  *
125  * No assurances are provided by Nokia that the Contribution does not
126  * infringe the patent or other intellectual property rights of any third
127  * party or that the license provides you with all the necessary rights
128  * to make use of the Contribution.
129  *
130  * THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IN
131  * ADDITION TO THE DISCLAIMERS INCLUDED IN THE LICENSE, NOKIA
132  * SPECIFICALLY DISCLAIMS ANY LIABILITY FOR CLAIMS BROUGHT BY YOU OR ANY
133  * OTHER ENTITY BASED ON INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS OR
134  * OTHERWISE. */
135 
136 #include <openssl/ssl.h>
137 
138 #include <assert.h>
139 #include <stdio.h>
140 #include <string.h>
141 
142 #include <openssl/err.h>
143 #include <openssl/lhash.h>
144 #include <openssl/mem.h>
145 #include <openssl/rand.h>
146 
147 #include "internal.h"
148 #include "../crypto/internal.h"
149 
150 
151 /* The address of this is a magic value, a pointer to which is returned by
152  * SSL_magic_pending_session_ptr(). It allows a session callback to indicate
153  * that it needs to asynchronously fetch session information. */
154 static const char g_pending_session_magic = 0;
155 
156 static CRYPTO_EX_DATA_CLASS g_ex_data_class =
157     CRYPTO_EX_DATA_CLASS_INIT_WITH_APP_DATA;
158 
159 static void SSL_SESSION_list_remove(SSL_CTX *ctx, SSL_SESSION *session);
160 static void SSL_SESSION_list_add(SSL_CTX *ctx, SSL_SESSION *session);
161 static int remove_session_lock(SSL_CTX *ctx, SSL_SESSION *session, int lock);
162 
SSL_SESSION_new(void)163 SSL_SESSION *SSL_SESSION_new(void) {
164   SSL_SESSION *session = (SSL_SESSION *)OPENSSL_malloc(sizeof(SSL_SESSION));
165   if (session == NULL) {
166     OPENSSL_PUT_ERROR(SSL, ERR_R_MALLOC_FAILURE);
167     return 0;
168   }
169   memset(session, 0, sizeof(SSL_SESSION));
170 
171   session->verify_result = 1; /* avoid 0 (= X509_V_OK) just in case */
172   session->references = 1;
173   session->timeout = SSL_DEFAULT_SESSION_TIMEOUT;
174   session->time = (unsigned long)time(NULL);
175   CRYPTO_new_ex_data(&session->ex_data);
176   return session;
177 }
178 
SSL_SESSION_up_ref(SSL_SESSION * session)179 SSL_SESSION *SSL_SESSION_up_ref(SSL_SESSION *session) {
180   if (session != NULL) {
181     CRYPTO_refcount_inc(&session->references);
182   }
183   return session;
184 }
185 
SSL_SESSION_free(SSL_SESSION * session)186 void SSL_SESSION_free(SSL_SESSION *session) {
187   if (session == NULL ||
188       !CRYPTO_refcount_dec_and_test_zero(&session->references)) {
189     return;
190   }
191 
192   CRYPTO_free_ex_data(&g_ex_data_class, session, &session->ex_data);
193 
194   OPENSSL_cleanse(session->master_key, sizeof(session->master_key));
195   OPENSSL_cleanse(session->session_id, sizeof(session->session_id));
196   X509_free(session->peer);
197   sk_X509_pop_free(session->cert_chain, X509_free);
198   OPENSSL_free(session->tlsext_hostname);
199   OPENSSL_free(session->tlsext_tick);
200   OPENSSL_free(session->tlsext_signed_cert_timestamp_list);
201   OPENSSL_free(session->ocsp_response);
202   OPENSSL_free(session->psk_identity);
203   OPENSSL_cleanse(session, sizeof(*session));
204   OPENSSL_free(session);
205 }
206 
SSL_SESSION_get_id(const SSL_SESSION * session,unsigned * out_len)207 const uint8_t *SSL_SESSION_get_id(const SSL_SESSION *session,
208                                   unsigned *out_len) {
209   if (out_len != NULL) {
210     *out_len = session->session_id_length;
211   }
212   return session->session_id;
213 }
214 
SSL_SESSION_get_timeout(const SSL_SESSION * session)215 long SSL_SESSION_get_timeout(const SSL_SESSION *session) {
216   return session->timeout;
217 }
218 
SSL_SESSION_get_time(const SSL_SESSION * session)219 long SSL_SESSION_get_time(const SSL_SESSION *session) {
220   if (session == NULL) {
221     /* NULL should crash, but silently accept it here for compatibility. */
222     return 0;
223   }
224   return session->time;
225 }
226 
SSL_SESSION_get_key_exchange_info(const SSL_SESSION * session)227 uint32_t SSL_SESSION_get_key_exchange_info(const SSL_SESSION *session) {
228   return session->key_exchange_info;
229 }
230 
SSL_SESSION_get0_peer(const SSL_SESSION * session)231 X509 *SSL_SESSION_get0_peer(const SSL_SESSION *session) {
232   return session->peer;
233 }
234 
SSL_SESSION_set_time(SSL_SESSION * session,long time)235 long SSL_SESSION_set_time(SSL_SESSION *session, long time) {
236   if (session == NULL) {
237     return 0;
238   }
239 
240   session->time = time;
241   return time;
242 }
243 
SSL_SESSION_set_timeout(SSL_SESSION * session,long timeout)244 long SSL_SESSION_set_timeout(SSL_SESSION *session, long timeout) {
245   if (session == NULL) {
246     return 0;
247   }
248 
249   session->timeout = timeout;
250   return 1;
251 }
252 
SSL_SESSION_set1_id_context(SSL_SESSION * session,const uint8_t * sid_ctx,unsigned sid_ctx_len)253 int SSL_SESSION_set1_id_context(SSL_SESSION *session, const uint8_t *sid_ctx,
254                                 unsigned sid_ctx_len) {
255   if (sid_ctx_len > SSL_MAX_SID_CTX_LENGTH) {
256     OPENSSL_PUT_ERROR(SSL, SSL_R_SSL_SESSION_ID_CONTEXT_TOO_LONG);
257     return 0;
258   }
259 
260   session->sid_ctx_length = sid_ctx_len;
261   memcpy(session->sid_ctx, sid_ctx, sid_ctx_len);
262 
263   return 1;
264 }
265 
SSL_magic_pending_session_ptr(void)266 SSL_SESSION *SSL_magic_pending_session_ptr(void) {
267   return (SSL_SESSION *)&g_pending_session_magic;
268 }
269 
SSL_get_session(const SSL * ssl)270 SSL_SESSION *SSL_get_session(const SSL *ssl)
271 {
272   /* aka SSL_get0_session; gets 0 objects, just returns a copy of the pointer */
273   return ssl->session;
274 }
275 
SSL_get1_session(SSL * ssl)276 SSL_SESSION *SSL_get1_session(SSL *ssl) {
277   /* variant of SSL_get_session: caller really gets something */
278   return SSL_SESSION_up_ref(ssl->session);
279 }
280 
SSL_SESSION_get_ex_new_index(long argl,void * argp,CRYPTO_EX_unused * unused,CRYPTO_EX_dup * dup_func,CRYPTO_EX_free * free_func)281 int SSL_SESSION_get_ex_new_index(long argl, void *argp,
282                                  CRYPTO_EX_unused *unused,
283                                  CRYPTO_EX_dup *dup_func,
284                                  CRYPTO_EX_free *free_func) {
285   int index;
286   if (!CRYPTO_get_ex_new_index(&g_ex_data_class, &index, argl, argp, dup_func,
287                                free_func)) {
288     return -1;
289   }
290   return index;
291 }
292 
SSL_SESSION_set_ex_data(SSL_SESSION * session,int idx,void * arg)293 int SSL_SESSION_set_ex_data(SSL_SESSION *session, int idx, void *arg) {
294   return CRYPTO_set_ex_data(&session->ex_data, idx, arg);
295 }
296 
SSL_SESSION_get_ex_data(const SSL_SESSION * session,int idx)297 void *SSL_SESSION_get_ex_data(const SSL_SESSION *session, int idx) {
298   return CRYPTO_get_ex_data(&session->ex_data, idx);
299 }
300 
ssl_get_new_session(SSL * ssl,int is_server)301 int ssl_get_new_session(SSL *ssl, int is_server) {
302   if (ssl->mode & SSL_MODE_NO_SESSION_CREATION) {
303     OPENSSL_PUT_ERROR(SSL, SSL_R_SESSION_MAY_NOT_BE_CREATED);
304     return 0;
305   }
306 
307   SSL_SESSION *session = SSL_SESSION_new();
308   if (session == NULL) {
309     return 0;
310   }
311 
312   /* If the context has a default timeout, use it over the default. */
313   if (ssl->initial_ctx->session_timeout != 0) {
314     session->timeout = ssl->initial_ctx->session_timeout;
315   }
316 
317   session->ssl_version = ssl->version;
318 
319   if (is_server) {
320     if (ssl->tlsext_ticket_expected) {
321       /* Don't set session IDs for sessions resumed with tickets. This will keep
322        * them out of the session cache. */
323       session->session_id_length = 0;
324     } else {
325       session->session_id_length = SSL3_SSL_SESSION_ID_LENGTH;
326       if (!RAND_bytes(session->session_id, session->session_id_length)) {
327         goto err;
328       }
329     }
330 
331     if (ssl->tlsext_hostname != NULL) {
332       session->tlsext_hostname = BUF_strdup(ssl->tlsext_hostname);
333       if (session->tlsext_hostname == NULL) {
334         OPENSSL_PUT_ERROR(SSL, ERR_R_MALLOC_FAILURE);
335         goto err;
336       }
337     }
338   } else {
339     session->session_id_length = 0;
340   }
341 
342   if (ssl->sid_ctx_length > sizeof(session->sid_ctx)) {
343     OPENSSL_PUT_ERROR(SSL, ERR_R_INTERNAL_ERROR);
344     goto err;
345   }
346   memcpy(session->sid_ctx, ssl->sid_ctx, ssl->sid_ctx_length);
347   session->sid_ctx_length = ssl->sid_ctx_length;
348 
349   session->verify_result = X509_V_OK;
350 
351   SSL_SESSION_free(ssl->session);
352   ssl->session = session;
353   return 1;
354 
355 err:
356   SSL_SESSION_free(session);
357   return 0;
358 }
359 
360 /* ssl_lookup_session looks up |session_id| in the session cache and sets
361  * |*out_session| to an |SSL_SESSION| object if found. The caller takes
362  * ownership of the result. */
ssl_lookup_session(SSL * ssl,SSL_SESSION ** out_session,const uint8_t * session_id,size_t session_id_len)363 static enum ssl_session_result_t ssl_lookup_session(
364     SSL *ssl, SSL_SESSION **out_session, const uint8_t *session_id,
365     size_t session_id_len) {
366   *out_session = NULL;
367 
368   if (session_id_len == 0 || session_id_len > SSL_MAX_SSL_SESSION_ID_LENGTH) {
369     return ssl_session_success;
370   }
371 
372   SSL_SESSION *session;
373   /* Try the internal cache, if it exists. */
374   if (!(ssl->initial_ctx->session_cache_mode &
375         SSL_SESS_CACHE_NO_INTERNAL_LOOKUP)) {
376     SSL_SESSION data;
377     data.ssl_version = ssl->version;
378     data.session_id_length = session_id_len;
379     memcpy(data.session_id, session_id, session_id_len);
380 
381     CRYPTO_MUTEX_lock_read(&ssl->initial_ctx->lock);
382     session = lh_SSL_SESSION_retrieve(ssl->initial_ctx->sessions, &data);
383     if (session != NULL) {
384       SSL_SESSION_up_ref(session);
385     }
386     /* TODO(davidben): This should probably move it to the front of the list. */
387     CRYPTO_MUTEX_unlock(&ssl->initial_ctx->lock);
388 
389     if (session != NULL) {
390       *out_session = session;
391       return ssl_session_success;
392     }
393   }
394 
395   /* Fall back to the external cache, if it exists. */
396   if (ssl->initial_ctx->get_session_cb == NULL) {
397     return ssl_session_success;
398   }
399   int copy = 1;
400   session = ssl->initial_ctx->get_session_cb(ssl, (uint8_t *)session_id,
401                                              session_id_len, &copy);
402   if (session == NULL) {
403     return ssl_session_success;
404   }
405   if (session == SSL_magic_pending_session_ptr()) {
406     return ssl_session_retry;
407   }
408 
409   /* Increment reference count now if the session callback asks us to do so
410    * (note that if the session structures returned by the callback are shared
411    * between threads, it must handle the reference count itself [i.e. copy ==
412    * 0], or things won't be thread-safe). */
413   if (copy) {
414     SSL_SESSION_up_ref(session);
415   }
416 
417   /* Add the externally cached session to the internal cache if necessary. */
418   if (!(ssl->initial_ctx->session_cache_mode &
419         SSL_SESS_CACHE_NO_INTERNAL_STORE)) {
420     SSL_CTX_add_session(ssl->initial_ctx, session);
421   }
422 
423   *out_session = session;
424   return ssl_session_success;
425 }
426 
ssl_get_prev_session(SSL * ssl,SSL_SESSION ** out_session,int * out_send_ticket,const struct ssl_early_callback_ctx * ctx)427 enum ssl_session_result_t ssl_get_prev_session(
428     SSL *ssl, SSL_SESSION **out_session, int *out_send_ticket,
429     const struct ssl_early_callback_ctx *ctx) {
430   /* This is used only by servers. */
431   assert(ssl->server);
432   SSL_SESSION *session = NULL;
433   int send_ticket = 0;
434 
435   /* If tickets are disabled, always behave as if no tickets are present. */
436   const uint8_t *ticket = NULL;
437   size_t ticket_len = 0;
438   const int tickets_supported =
439       !(SSL_get_options(ssl) & SSL_OP_NO_TICKET) &&
440       ssl->version > SSL3_VERSION &&
441       SSL_early_callback_ctx_extension_get(ctx, TLSEXT_TYPE_session_ticket,
442                                            &ticket, &ticket_len);
443   if (tickets_supported) {
444     if (!tls_process_ticket(ssl, &session, &send_ticket, ticket, ticket_len,
445                             ctx->session_id, ctx->session_id_len)) {
446       return ssl_session_error;
447     }
448   } else {
449     /* The client does not support session tickets, so the session ID should be
450      * used instead. */
451     enum ssl_session_result_t lookup_ret = ssl_lookup_session(
452         ssl, &session, ctx->session_id, ctx->session_id_len);
453     if (lookup_ret != ssl_session_success) {
454       return lookup_ret;
455     }
456   }
457 
458   if (session == NULL ||
459       session->sid_ctx_length != ssl->sid_ctx_length ||
460       memcmp(session->sid_ctx, ssl->sid_ctx, ssl->sid_ctx_length) != 0) {
461     goto no_session;
462   }
463 
464   if ((ssl->verify_mode & SSL_VERIFY_PEER) && ssl->sid_ctx_length == 0) {
465     /* We can't be sure if this session is being used out of context, which is
466      * especially important for SSL_VERIFY_PEER. The application should have
467      * used SSL[_CTX]_set_session_id_context.
468      *
469      * For this error case, we generate an error instead of treating the event
470      * like a cache miss (otherwise it would be easy for applications to
471      * effectively disable the session cache by accident without anyone
472      * noticing). */
473     OPENSSL_PUT_ERROR(SSL, SSL_R_SESSION_ID_CONTEXT_UNINITIALIZED);
474     goto fatal_error;
475   }
476 
477   if (session->timeout < (long)(time(NULL) - session->time)) {
478     if (!tickets_supported) {
479       /* The session was from the cache, so remove it. */
480       SSL_CTX_remove_session(ssl->initial_ctx, session);
481     }
482     goto no_session;
483   }
484 
485   *out_session = session;
486   *out_send_ticket = send_ticket;
487   return ssl_session_success;
488 
489 fatal_error:
490   SSL_SESSION_free(session);
491   return ssl_session_error;
492 
493 no_session:
494   *out_session = NULL;
495   *out_send_ticket = tickets_supported;
496   SSL_SESSION_free(session);
497   return ssl_session_success;
498 }
499 
SSL_CTX_add_session(SSL_CTX * ctx,SSL_SESSION * session)500 int SSL_CTX_add_session(SSL_CTX *ctx, SSL_SESSION *session) {
501   /* Although |session| is inserted into two structures (a doubly-linked list
502    * and the hash table), |ctx| only takes one reference. */
503   SSL_SESSION_up_ref(session);
504 
505   SSL_SESSION *old_session;
506   CRYPTO_MUTEX_lock_write(&ctx->lock);
507   if (!lh_SSL_SESSION_insert(ctx->sessions, &old_session, session)) {
508     CRYPTO_MUTEX_unlock(&ctx->lock);
509     SSL_SESSION_free(session);
510     return 0;
511   }
512 
513   if (old_session != NULL) {
514     if (old_session == session) {
515       /* |session| was already in the cache. */
516       CRYPTO_MUTEX_unlock(&ctx->lock);
517       SSL_SESSION_free(old_session);
518       return 0;
519     }
520 
521     /* There was a session ID collision. |old_session| must be removed from
522      * the linked list and released. */
523     SSL_SESSION_list_remove(ctx, old_session);
524     SSL_SESSION_free(old_session);
525   }
526 
527   SSL_SESSION_list_add(ctx, session);
528 
529   /* Enforce any cache size limits. */
530   if (SSL_CTX_sess_get_cache_size(ctx) > 0) {
531     while (SSL_CTX_sess_number(ctx) > SSL_CTX_sess_get_cache_size(ctx)) {
532       if (!remove_session_lock(ctx, ctx->session_cache_tail, 0)) {
533         break;
534       }
535     }
536   }
537 
538   CRYPTO_MUTEX_unlock(&ctx->lock);
539   return 1;
540 }
541 
SSL_CTX_remove_session(SSL_CTX * ctx,SSL_SESSION * session)542 int SSL_CTX_remove_session(SSL_CTX *ctx, SSL_SESSION *session) {
543   return remove_session_lock(ctx, session, 1);
544 }
545 
remove_session_lock(SSL_CTX * ctx,SSL_SESSION * session,int lock)546 static int remove_session_lock(SSL_CTX *ctx, SSL_SESSION *session, int lock) {
547   int ret = 0;
548 
549   if (session != NULL && session->session_id_length != 0) {
550     if (lock) {
551       CRYPTO_MUTEX_lock_write(&ctx->lock);
552     }
553     SSL_SESSION *found_session = lh_SSL_SESSION_retrieve(ctx->sessions,
554                                                          session);
555     if (found_session == session) {
556       ret = 1;
557       found_session = lh_SSL_SESSION_delete(ctx->sessions, session);
558       SSL_SESSION_list_remove(ctx, session);
559     }
560 
561     if (lock) {
562       CRYPTO_MUTEX_unlock(&ctx->lock);
563     }
564 
565     if (ret) {
566       found_session->not_resumable = 1;
567       if (ctx->remove_session_cb != NULL) {
568         ctx->remove_session_cb(ctx, found_session);
569       }
570       SSL_SESSION_free(found_session);
571     }
572   }
573 
574   return ret;
575 }
576 
SSL_set_session(SSL * ssl,SSL_SESSION * session)577 int SSL_set_session(SSL *ssl, SSL_SESSION *session) {
578   if (ssl->session == session) {
579     return 1;
580   }
581 
582   SSL_SESSION_free(ssl->session);
583   ssl->session = session;
584   if (session != NULL) {
585     SSL_SESSION_up_ref(session);
586     ssl->verify_result = session->verify_result;
587   }
588 
589   return 1;
590 }
591 
SSL_CTX_set_timeout(SSL_CTX * ctx,long timeout)592 long SSL_CTX_set_timeout(SSL_CTX *ctx, long timeout) {
593   if (ctx == NULL) {
594     return 0;
595   }
596 
597   long old_timeout = ctx->session_timeout;
598   ctx->session_timeout = timeout;
599   return old_timeout;
600 }
601 
SSL_CTX_get_timeout(const SSL_CTX * ctx)602 long SSL_CTX_get_timeout(const SSL_CTX *ctx) {
603   if (ctx == NULL) {
604     return 0;
605   }
606 
607   return ctx->session_timeout;
608 }
609 
610 typedef struct timeout_param_st {
611   SSL_CTX *ctx;
612   long time;
613   LHASH_OF(SSL_SESSION) *cache;
614 } TIMEOUT_PARAM;
615 
timeout_doall_arg(SSL_SESSION * session,void * void_param)616 static void timeout_doall_arg(SSL_SESSION *session, void *void_param) {
617   TIMEOUT_PARAM *param = void_param;
618 
619   if (param->time == 0 ||
620       param->time > (session->time + session->timeout)) {
621     /* timeout */
622     /* The reason we don't call SSL_CTX_remove_session() is to
623      * save on locking overhead */
624     (void) lh_SSL_SESSION_delete(param->cache, session);
625     SSL_SESSION_list_remove(param->ctx, session);
626     session->not_resumable = 1;
627     if (param->ctx->remove_session_cb != NULL) {
628       param->ctx->remove_session_cb(param->ctx, session);
629     }
630     SSL_SESSION_free(session);
631   }
632 }
633 
SSL_CTX_flush_sessions(SSL_CTX * ctx,long time)634 void SSL_CTX_flush_sessions(SSL_CTX *ctx, long time) {
635   TIMEOUT_PARAM tp;
636 
637   tp.ctx = ctx;
638   tp.cache = ctx->sessions;
639   if (tp.cache == NULL) {
640     return;
641   }
642   tp.time = time;
643   CRYPTO_MUTEX_lock_write(&ctx->lock);
644   lh_SSL_SESSION_doall_arg(tp.cache, timeout_doall_arg, &tp);
645   CRYPTO_MUTEX_unlock(&ctx->lock);
646 }
647 
ssl_clear_bad_session(SSL * ssl)648 int ssl_clear_bad_session(SSL *ssl) {
649   if (ssl->session != NULL && !(ssl->shutdown & SSL_SENT_SHUTDOWN) &&
650       !SSL_in_init(ssl)) {
651     SSL_CTX_remove_session(ssl->ctx, ssl->session);
652     return 1;
653   }
654 
655   return 0;
656 }
657 
658 /* locked by SSL_CTX in the calling function */
SSL_SESSION_list_remove(SSL_CTX * ctx,SSL_SESSION * session)659 static void SSL_SESSION_list_remove(SSL_CTX *ctx, SSL_SESSION *session) {
660   if (session->next == NULL || session->prev == NULL) {
661     return;
662   }
663 
664   if (session->next == (SSL_SESSION *)&ctx->session_cache_tail) {
665     /* last element in list */
666     if (session->prev == (SSL_SESSION *)&ctx->session_cache_head) {
667       /* only one element in list */
668       ctx->session_cache_head = NULL;
669       ctx->session_cache_tail = NULL;
670     } else {
671       ctx->session_cache_tail = session->prev;
672       session->prev->next = (SSL_SESSION *)&(ctx->session_cache_tail);
673     }
674   } else {
675     if (session->prev == (SSL_SESSION *)&ctx->session_cache_head) {
676       /* first element in list */
677       ctx->session_cache_head = session->next;
678       session->next->prev = (SSL_SESSION *)&(ctx->session_cache_head);
679     } else { /* middle of list */
680       session->next->prev = session->prev;
681       session->prev->next = session->next;
682     }
683   }
684   session->prev = session->next = NULL;
685 }
686 
SSL_SESSION_list_add(SSL_CTX * ctx,SSL_SESSION * session)687 static void SSL_SESSION_list_add(SSL_CTX *ctx, SSL_SESSION *session) {
688   if (session->next != NULL && session->prev != NULL) {
689     SSL_SESSION_list_remove(ctx, session);
690   }
691 
692   if (ctx->session_cache_head == NULL) {
693     ctx->session_cache_head = session;
694     ctx->session_cache_tail = session;
695     session->prev = (SSL_SESSION *)&(ctx->session_cache_head);
696     session->next = (SSL_SESSION *)&(ctx->session_cache_tail);
697   } else {
698     session->next = ctx->session_cache_head;
699     session->next->prev = session;
700     session->prev = (SSL_SESSION *)&(ctx->session_cache_head);
701     ctx->session_cache_head = session;
702   }
703 }
704 
SSL_CTX_sess_set_new_cb(SSL_CTX * ctx,int (* cb)(SSL * ssl,SSL_SESSION * session))705 void SSL_CTX_sess_set_new_cb(SSL_CTX *ctx,
706                              int (*cb)(SSL *ssl, SSL_SESSION *session)) {
707   ctx->new_session_cb = cb;
708 }
709 
SSL_CTX_sess_get_new_cb(SSL_CTX * ctx)710 int (*SSL_CTX_sess_get_new_cb(SSL_CTX *ctx))(SSL *ssl, SSL_SESSION *session) {
711   return ctx->new_session_cb;
712 }
713 
SSL_CTX_sess_set_remove_cb(SSL_CTX * ctx,void (* cb)(SSL_CTX * ctx,SSL_SESSION * session))714 void SSL_CTX_sess_set_remove_cb(
715     SSL_CTX *ctx, void (*cb)(SSL_CTX *ctx, SSL_SESSION *session)) {
716   ctx->remove_session_cb = cb;
717 }
718 
SSL_CTX_sess_get_remove_cb(SSL_CTX * ctx)719 void (*SSL_CTX_sess_get_remove_cb(SSL_CTX *ctx))(SSL_CTX *ctx,
720                                                  SSL_SESSION *session) {
721   return ctx->remove_session_cb;
722 }
723 
SSL_CTX_sess_set_get_cb(SSL_CTX * ctx,SSL_SESSION * (* cb)(SSL * ssl,uint8_t * id,int id_len,int * out_copy))724 void SSL_CTX_sess_set_get_cb(SSL_CTX *ctx,
725                              SSL_SESSION *(*cb)(SSL *ssl,
726                                                 uint8_t *id, int id_len,
727                                                 int *out_copy)) {
728   ctx->get_session_cb = cb;
729 }
730 
SSL_CTX_sess_get_get_cb(SSL_CTX * ctx)731 SSL_SESSION *(*SSL_CTX_sess_get_get_cb(SSL_CTX *ctx))(
732     SSL *ssl, uint8_t *id, int id_len, int *out_copy) {
733   return ctx->get_session_cb;
734 }
735 
SSL_CTX_set_info_callback(SSL_CTX * ctx,void (* cb)(const SSL * ssl,int type,int value))736 void SSL_CTX_set_info_callback(
737     SSL_CTX *ctx, void (*cb)(const SSL *ssl, int type, int value)) {
738   ctx->info_callback = cb;
739 }
740 
SSL_CTX_get_info_callback(SSL_CTX * ctx)741 void (*SSL_CTX_get_info_callback(SSL_CTX *ctx))(const SSL *ssl, int type,
742                                                 int value) {
743   return ctx->info_callback;
744 }
745 
SSL_CTX_set_client_cert_cb(SSL_CTX * ctx,int (* cb)(SSL * ssl,X509 ** out_x509,EVP_PKEY ** out_pkey))746 void SSL_CTX_set_client_cert_cb(SSL_CTX *ctx, int (*cb)(SSL *ssl,
747                                                         X509 **out_x509,
748                                                         EVP_PKEY **out_pkey)) {
749   ctx->client_cert_cb = cb;
750 }
751 
SSL_CTX_get_client_cert_cb(SSL_CTX * ctx)752 int (*SSL_CTX_get_client_cert_cb(SSL_CTX *ctx))(SSL *ssl, X509 **out_x509,
753                                                 EVP_PKEY **out_pkey) {
754   return ctx->client_cert_cb;
755 }
756 
SSL_CTX_set_channel_id_cb(SSL_CTX * ctx,void (* cb)(SSL * ssl,EVP_PKEY ** pkey))757 void SSL_CTX_set_channel_id_cb(SSL_CTX *ctx,
758                                void (*cb)(SSL *ssl, EVP_PKEY **pkey)) {
759   ctx->channel_id_cb = cb;
760 }
761 
SSL_CTX_get_channel_id_cb(SSL_CTX * ctx)762 void (*SSL_CTX_get_channel_id_cb(SSL_CTX *ctx))(SSL *ssl, EVP_PKEY **pkey) {
763   return ctx->channel_id_cb;
764 }
765