int CTlsSocket::Handshake(const CTlsSocket* pPrimarySocket /*=0*/, bool try_resume /*=false*/)
{
m_pOwner->LogMessage(Debug_Verbose, _T("CTlsSocket::Handshake()"));
wxASSERT(m_session);
m_tlsState = handshake;
if (pPrimarySocket)
{
// Implicitly trust certificate of primary socket
unsigned int cert_list_size;
const gnutls_datum_t* const cert_list = gnutls_certificate_get_peers(pPrimarySocket->m_session, &cert_list_size);
if (cert_list && cert_list_size)
{
delete [] m_implicitTrustedCert.data;
m_implicitTrustedCert.data = new unsigned char[cert_list[0].size];
memcpy(m_implicitTrustedCert.data, cert_list[0].data, cert_list[0].size);
m_implicitTrustedCert.size = cert_list[0].size;
}
if (try_resume)
{
if (!CopySessionData(pPrimarySocket))
return FZ_REPLY_ERROR;
}
}
return ContinueHandshake();
}
void CTlsSocket::OnRead()
{
m_pOwner->LogMessage(MessageType::Debug_Debug, _T("CTlsSocket::OnRead()"));
m_canReadFromSocket = true;
if (!m_session)
return;
const int direction = gnutls_record_get_direction(m_session);
if (direction && !m_lastReadFailed) {
m_pOwner->LogMessage(MessageType::Debug_Debug, _T("CTlsSocket::Postponing read"));
return;
}
if (m_tlsState == TlsState::handshake)
ContinueHandshake();
if (m_tlsState == TlsState::closing)
ContinueShutdown();
else if (m_tlsState == TlsState::conn)
{
CheckResumeFailedReadWrite();
TriggerEvents();
}
}
int CTlsSocket::Handshake(const CTlsSocket* pPrimarySocket, bool try_resume)
{
m_pOwner->LogMessage(MessageType::Debug_Verbose, _T("CTlsSocket::Handshake()"));
wxASSERT(m_session);
m_tlsState = TlsState::handshake;
fz::native_string hostname;
if (pPrimarySocket) {
// Implicitly trust certificate of primary socket
unsigned int cert_list_size;
const gnutls_datum_t* const cert_list = gnutls_certificate_get_peers(pPrimarySocket->m_session, &cert_list_size);
if (cert_list && cert_list_size) {
delete [] m_implicitTrustedCert.data;
m_implicitTrustedCert.data = new unsigned char[cert_list[0].size];
memcpy(m_implicitTrustedCert.data, cert_list[0].data, cert_list[0].size);
m_implicitTrustedCert.size = cert_list[0].size;
}
if (try_resume) {
if (!CopySessionData(pPrimarySocket))
return FZ_REPLY_ERROR;
}
hostname = pPrimarySocket->m_socket.GetPeerHost();
}
else {
hostname = m_socket.GetPeerHost();
}
if (!hostname.empty() && fz::get_address_type(hostname) == fz::address_type::unknown) {
auto const utf8 = fz::to_utf8(hostname);
if (!utf8.empty()) {
int res = gnutls_server_name_set(m_session, GNUTLS_NAME_DNS, utf8.c_str(), utf8.size());
if (res) {
LogError(res, _T("gnutls_server_name_set"), MessageType::Debug_Warning );
}
}
}
gnutls_handshake_set_hook_function(m_session, GNUTLS_HANDSHAKE_ANY, GNUTLS_HOOK_BOTH, &handshake_hook_func);
return ContinueHandshake();
}
int CTlsSocket::Handshake(const CTlsSocket* pPrimarySocket, bool try_resume)
{
m_pOwner->LogMessage(MessageType::Debug_Verbose, _T("CTlsSocket::Handshake()"));
wxASSERT(m_session);
m_tlsState = TlsState::handshake;
wxString hostname;
if (pPrimarySocket) {
// Implicitly trust certificate of primary socket
unsigned int cert_list_size;
const gnutls_datum_t* const cert_list = gnutls_certificate_get_peers(pPrimarySocket->m_session, &cert_list_size);
if (cert_list && cert_list_size)
{
delete [] m_implicitTrustedCert.data;
m_implicitTrustedCert.data = new unsigned char[cert_list[0].size];
memcpy(m_implicitTrustedCert.data, cert_list[0].data, cert_list[0].size);
m_implicitTrustedCert.size = cert_list[0].size;
}
if (try_resume)
{
if (!CopySessionData(pPrimarySocket))
return FZ_REPLY_ERROR;
}
hostname = pPrimarySocket->m_pSocket->GetPeerHost();
}
else {
hostname = m_pSocket->GetPeerHost();
}
if( !hostname.empty() && !IsIpAddress(hostname) ) {
const wxWX2MBbuf utf8 = hostname.mb_str(wxConvUTF8);
if( utf8 ) {
int res = gnutls_server_name_set( m_session, GNUTLS_NAME_DNS, utf8, strlen(utf8) );
if( res ) {
LogError(res, _T("gnutls_server_name_set"), MessageType::Debug_Warning );
}
}
}
return ContinueHandshake();
}
void CTlsSocket::OnSend()
{
m_pOwner->LogMessage(Debug_Debug, _T("CTlsSocket::OnSend()"));
m_canWriteToSocket = true;
if (!m_session)
return;
const int direction = gnutls_record_get_direction(m_session);
if (!direction && !m_lastWriteFailed)
return;
if (m_tlsState == handshake)
ContinueHandshake();
else if (m_tlsState == closing)
ContinueShutdown();
else if (m_tlsState == conn)
{
CheckResumeFailedReadWrite();
TriggerEvents();
}
}
