2 * Copyright (c) 1995-2000, Index Data
3 * See the file LICENSE for details.
4 * Sebastian Hammer, Adam Dickmeiss
7 * Revision 1.34 2000-11-23 10:58:32 adam
8 * SSL comstack support. Separate POSIX thread support library.
10 * Revision 1.33 2000/09/04 08:27:11 adam
11 * Work on error handling for tcpip_accept.
13 * Revision 1.32 1999/11/30 13:47:11 adam
14 * Improved installation. Moved header files to include/yaz.
16 * Revision 1.31 1999/04/29 07:31:23 adam
17 * Changed tcpip_strtoaddr_ex so that only part 'till '/' is considered
20 * Revision 1.30 1999/04/20 09:56:48 adam
21 * Added 'name' paramter to encoder/decoder routines (typedef Odr_fun).
22 * Modified all encoders/decoders to reflect this change.
24 * Revision 1.29 1999/04/16 14:45:55 adam
25 * Added interface for tcpd wrapper for access control.
27 * Revision 1.28 1999/03/31 11:11:14 adam
28 * Function getprotobyname only called once. Minor change in tcpip_get
29 * to handle multi-threaded conditions.
31 * Revision 1.27 1999/02/02 13:57:31 adam
32 * Uses preprocessor define WIN32 instead of WINDOWS to build code
33 * for Microsoft WIN32.
35 * Revision 1.26 1999/01/08 11:23:14 adam
36 * Added const modifier to some of the BER/ODR encoding routines.
38 * Revision 1.25 1998/07/07 15:49:23 adam
39 * Added braces to avoid warning.
41 * Revision 1.24 1998/06/29 07:59:17 adam
44 * Revision 1.23 1998/06/23 15:37:50 adam
45 * Added type cast to prevent warning.
47 * Revision 1.22 1998/06/22 11:32:36 adam
48 * Added 'conditional cs_listen' feature.
50 * Revision 1.21 1998/05/20 09:55:32 adam
51 * Function tcpip_get treats EINPROGRESS error in the same way as
52 * EWOULDBLOCK. EINPROGRESS shouldn't be returned - but it is on
53 * Solaris in some cases.
55 * Revision 1.20 1998/05/18 10:10:40 adam
56 * Minor change to avoid C++ warning.
58 * Revision 1.19 1998/02/11 11:53:33 adam
59 * Changed code so that it compiles as C++.
61 * Revision 1.18 1997/09/29 07:15:25 adam
62 * Changed use of setsockopt to avoid warnings on MSVC.
64 * Revision 1.17 1997/09/17 12:10:30 adam
67 * Revision 1.16 1997/09/01 08:49:14 adam
68 * New windows NT/95 port using MSV5.0. Minor changes only.
70 * Revision 1.15 1997/05/14 06:53:33 adam
73 * Revision 1.14 1997/05/01 15:06:32 adam
74 * Moved WINSOCK init. code to tcpip_init routine.
76 * Revision 1.13 1996/11/01 08:45:18 adam
77 * Bug fix: used close on MS-Windows. Fixed to closesocket.
79 * Revision 1.12 1996/07/06 19:58:30 quinn
80 * System headerfiles gathered in yconfig
82 * Revision 1.11 1996/02/23 10:00:39 quinn
85 * Revision 1.10 1996/02/20 12:52:11 quinn
86 * WAIS protocol support.
88 * Revision 1.9 1996/02/10 12:23:11 quinn
89 * Enablie inetd operations fro TCP/IP stack
91 * Revision 1.8 1995/11/01 13:54:27 quinn
94 * Revision 1.7 1995/10/30 12:41:16 quinn
95 * Added hostname lookup for server.
97 * Revision 1.6 1995/09/29 17:12:00 quinn
100 * Revision 1.5 1995/09/29 17:01:48 quinn
103 * Revision 1.4 1995/09/28 10:12:26 quinn
104 * Windows-support changes
106 * Revision 1.3 1995/09/27 15:02:45 quinn
107 * Modified function heads & prototypes.
109 * Revision 1.2 1995/06/15 12:30:06 quinn
110 * Added @ as hostname alias for INADDR ANY.
112 * Revision 1.1 1995/06/14 09:58:20 quinn
113 * Renamed yazlib to comstack.
115 * Revision 1.20 1995/05/16 08:51:16 quinn
116 * License, documentation, and memory fixes
118 * Revision 1.19 1995/04/10 10:24:08 quinn
121 * Revision 1.18 1995/03/30 13:29:27 quinn
122 * Added REUSEADDR in tcpip_bind
124 * Revision 1.17 1995/03/27 08:36:10 quinn
125 * Some work on nonblocking operation in xmosi.c and rfct.c.
126 * Added protocol parameter to cs_create()
128 * Revision 1.16 1995/03/21 15:53:41 quinn
131 * Revision 1.15 1995/03/21 12:31:27 quinn
132 * Added check for EINPROGRESS on connect.
134 * Revision 1.14 1995/03/20 09:47:21 quinn
135 * Added server-side support to xmosi.c
136 * Fixed possible problems in rfct
139 * Revision 1.13 1995/03/15 16:15:13 adam
142 * Revision 1.12 1995/03/15 15:36:27 quinn
143 * Mods to support nonblocking I/O
145 * Revision 1.11 1995/03/15 08:37:57 quinn
146 * Now we're pretty much set for nonblocking I/O.
148 * Revision 1.10 1995/03/14 17:00:07 quinn
149 * Bug-fixes - added tracing info to tcpip.c
151 * Revision 1.9 1995/03/14 10:28:42 quinn
152 * Adding server-side support to tcpip.c and fixing bugs in nonblocking I/O
154 * Revision 1.8 1995/03/10 14:22:50 quinn
155 * Removed debug output.
157 * Revision 1.7 1995/03/10 11:44:59 quinn
158 * Fixes and debugging
160 * Revision 1.6 1995/03/07 10:26:55 quinn
161 * Initialized type field in the comstacks.
163 * Revision 1.5 1995/02/14 20:40:07 quinn
166 * Revision 1.4 1995/02/14 11:54:49 quinn
167 * Beginning to add full CCL.
169 * Revision 1.3 1995/02/10 18:58:10 quinn
170 * Fixed tcpip_get (formerly tcpip_read).
171 * Turned tst (cli) into a proper, event-driven thingy.
173 * Revision 1.2 1995/02/10 15:55:47 quinn
176 * Revision 1.1 1995/02/09 15:51:52 quinn
189 #if HAVE_OPENSSL_SSL_H
190 #include <openssl/ssl.h>
191 #include <openssl/err.h>
194 #include <yaz/comstack.h>
195 #include <yaz/tcpip.h>
198 /* Chas added the following, so we get the definition of completeBER */
201 int tcpip_close(COMSTACK h);
202 int tcpip_put(COMSTACK h, char *buf, int size);
203 int tcpip_get(COMSTACK h, char **buf, int *bufsize);
204 int tcpip_connect(COMSTACK h, void *address);
205 int tcpip_more(COMSTACK h);
206 int tcpip_rcvconnect(COMSTACK h);
207 int tcpip_bind(COMSTACK h, void *address, int mode);
208 int tcpip_listen(COMSTACK h, char *raddr, int *addrlen,
209 int (*check_ip)(void *cd, const char *a, int len, int type),
212 #if HAVE_OPENSSL_SSL_H
213 int ssl_get(COMSTACK h, char **buf, int *bufsize);
214 int ssl_put(COMSTACK h, char *buf, int size);
217 COMSTACK tcpip_accept(COMSTACK h);
218 char *tcpip_addrstr(COMSTACK h);
219 void *tcpip_straddr(COMSTACK h, const char *str);
227 /* this state is used for both SSL and straight TCP/IP */
228 typedef struct tcpip_state
230 char *altbuf; /* alternate buffer for surplus data */
231 int altsize; /* size as xmalloced */
232 int altlen; /* length of data or 0 if none */
234 int written; /* -1 if we aren't writing */
235 int towrite; /* to verify against user input */
236 int (*complete)(const unsigned char *buf, int len); /* length/comple. */
237 struct sockaddr_in addr; /* returned by cs_straddr */
238 char buf[128]; /* returned by cs_addrstr */
239 #if HAVE_OPENSSL_SSL_H
247 static int tcpip_init (void)
249 static int initialized = 0;
255 requested = MAKEWORD(1, 1);
256 if (WSAStartup(requested, &wd))
263 static int proto_number = 0;
265 static int tcpip_init (void)
267 struct protoent *proto;
268 /* only call getprotobyname once, in case it allocates memory */
269 if (!(proto = getprotobyname("tcp")))
271 proto_number = proto->p_proto;
277 * This function is always called through the cs_create() macro.
278 * s >= 0: socket has already been established for us.
280 COMSTACK tcpip_type(int s, int blocking, int protocol, void *vp)
286 unsigned long tru = 1;
294 if ((s = socket(AF_INET, SOCK_STREAM, 0)) < 0)
297 if ((s = socket(AF_INET, SOCK_STREAM, proto_number)) < 0)
304 if (!(p = (struct comstack *)xmalloc(sizeof(struct comstack))))
306 if (!(state = (struct tcpip_state *)(p->cprivate =
307 xmalloc(sizeof(tcpip_state)))))
311 if (!(p->blocking = blocking) && ioctlsocket(s, FIONBIO, &tru) < 0)
313 if (!(p->blocking = blocking) && fcntl(s, F_SETFL, O_NONBLOCK) < 0)
319 p->type = tcpip_type;
320 p->protocol = (enum oid_proto) protocol;
322 p->f_connect = tcpip_connect;
323 p->f_rcvconnect = tcpip_rcvconnect;
324 p->f_get = tcpip_get;
325 p->f_put = tcpip_put;
326 p->f_close = tcpip_close;
327 p->f_more = tcpip_more;
328 p->f_bind = tcpip_bind;
329 p->f_listen = tcpip_listen;
330 p->f_accept = tcpip_accept;
331 p->f_addrstr = tcpip_addrstr;
332 p->f_straddr = tcpip_straddr;
334 p->state = new_socket ? CS_UNBND : CS_IDLE; /* state of line */
339 #if HAVE_OPENSSL_SSL_H
340 state->ctx = state->ctx_alloc = 0;
345 state->altsize = state->altlen = 0;
346 state->towrite = state->written = -1;
347 if (protocol == PROTO_WAIS)
348 state->complete = completeWAIS;
350 state->complete = completeBER;
352 p->timeout = COMSTACK_DEFAULT_TIMEOUT;
353 TRC(fprintf(stderr, "Created new TCPIP comstack\n"));
358 #if HAVE_OPENSSL_SSL_H
360 COMSTACK ssl_type(int s, int blocking, int protocol, void *vp)
364 yaz_log(LOG_LOG, "ssl_type begin");
366 p = tcpip_type (s, blocking, protocol, 0);
372 state = (tcpip_state *) p->cprivate;
377 SSL_load_error_strings();
378 OpenSSL_add_all_algorithms();
380 state->ctx = state->ctx_alloc = SSL_CTX_new (SSLv23_method());
387 /* note: we don't handle already opened socket in SSL mode - yet */
388 yaz_log(LOG_LOG, "ssl_type end");
393 int tcpip_strtoaddr_ex(const char *str, struct sockaddr_in *add)
397 short int port = 210;
402 TRC(fprintf(stderr, "tcpip_strtoaddress: %s\n", str ? str : "NULL"));
403 add->sin_family = AF_INET;
404 strncpy(buf, str, 511);
406 if ((p = strchr(buf, '/')))
408 if ((p = strchr(buf, ':')))
413 add->sin_port = htons(port);
414 if (!strcmp("@", buf))
415 add->sin_addr.s_addr = INADDR_ANY;
416 else if ((hp = gethostbyname(buf)))
417 memcpy(&add->sin_addr.s_addr, *hp->h_addr_list,
418 sizeof(struct in_addr));
419 else if ((tmpadd = (unsigned) inet_addr(buf)) != 0)
420 memcpy(&add->sin_addr.s_addr, &tmpadd, sizeof(struct in_addr));
426 void *tcpip_straddr(COMSTACK h, const char *str)
428 tcpip_state *sp = (tcpip_state *)h->cprivate;
430 if (!tcpip_strtoaddr_ex (str, &sp->addr))
435 struct sockaddr_in *tcpip_strtoaddr(const char *str)
437 static struct sockaddr_in add;
439 if (!tcpip_strtoaddr_ex (str, &add))
444 int tcpip_more(COMSTACK h)
446 tcpip_state *sp = (tcpip_state *)h->cprivate;
448 return sp->altlen && (*sp->complete)((unsigned char *) sp->altbuf,
453 * connect(2) will block (sometimes) - nothing we can do short of doing
454 * weird things like spawning subprocesses or threading or some weird junk
457 int tcpip_connect(COMSTACK h, void *address)
459 struct sockaddr_in *add = (struct sockaddr_in *)address;
460 #if HAVE_OPENSSL_SSL_H
461 tcpip_state *sp = (tcpip_state *)h->cprivate;
465 TRC(fprintf(stderr, "tcpip_connect\n"));
467 if (h->state == CS_UNBND)
469 r = connect(h->iofile, (struct sockaddr *) add, sizeof(*add));
473 if (WSAGetLastError() == WSAEWOULDBLOCK)
475 h->state = CS_CONNECTING;
476 h->io_pending = CS_WANT_WRITE;
480 if (errno == EINPROGRESS)
482 h->state = CS_CONNECTING;
483 h->io_pending = CS_WANT_WRITE|CS_WANT_READ;
489 h->state = CS_CONNECTING;
491 if (h->state != CS_CONNECTING)
493 h->cerrno = CSOUTSTATE;
496 #if HAVE_OPENSSL_SSL_H
503 sp->ssl = SSL_new (sp->ctx);
504 SSL_set_fd (sp->ssl, h->iofile);
506 res = SSL_connect (sp->ssl);
509 int err = SSL_get_error(sp->ssl, res);
510 if (err == SSL_ERROR_WANT_READ)
512 yaz_log (LOG_LOG, "SSL_connect. want_read");
513 h->io_pending = CS_WANT_READ;
516 if (err == SSL_ERROR_WANT_WRITE)
518 yaz_log (LOG_LOG, "SSL_connect. want_write");
519 h->io_pending = CS_WANT_WRITE;
526 h->state = CS_DATAXFER;
533 int tcpip_rcvconnect(COMSTACK h)
535 TRC(fprintf(stderr, "tcpip_rcvconnect\n"));
539 #define CERTF "ztest.pem"
540 #define KEYF "ztest.pem"
542 int tcpip_bind(COMSTACK h, void *address, int mode)
544 struct sockaddr *addr = (struct sockaddr *)address;
548 unsigned long one = 1;
551 #if HAVE_OPENSSL_SSL_H
552 tcpip_state *sp = (tcpip_state *)h->cprivate;
558 res = SSL_CTX_use_certificate_file (sp->ctx, CERTF,
562 ERR_print_errors_fp(stderr);
565 res = SSL_CTX_use_PrivateKey_file (sp->ctx, KEYF,
569 ERR_print_errors_fp(stderr);
572 res = SSL_CTX_check_private_key (sp->ctx);
575 ERR_print_errors_fp(stderr);
579 TRC (fprintf (stderr, "ssl_bind\n"));
583 TRC (fprintf (stderr, "tcpip_bind\n"));
586 TRC (fprintf (stderr, "tcpip_bind\n"));
588 if (setsockopt(h->iofile, SOL_SOCKET, SO_REUSEADDR, (char*)
589 &one, sizeof(one)) < 0)
594 if (bind(h->iofile, addr, sizeof(struct sockaddr_in)) < 0)
599 if (mode == CS_SERVER && listen(h->iofile, 3) < 0)
608 int tcpip_listen(COMSTACK h, char *raddr, int *addrlen,
609 int (*check_ip)(void *cd, const char *a, int len, int t),
612 struct sockaddr_in addr;
613 int len = sizeof(addr);
615 TRC(fprintf(stderr, "tcpip_listen pid=%d\n", getpid()));
616 if (h->state != CS_IDLE)
618 h->cerrno = CSOUTSTATE;
621 h->newfd = accept(h->iofile, (struct sockaddr*)&addr, &len);
626 WSAGetLastError() == WSAEWOULDBLOCK
631 h->cerrno = CSNODATA;
636 if (addrlen && (size_t) (*addrlen) >= sizeof(struct sockaddr_in))
637 memcpy(raddr, &addr, *addrlen = sizeof(struct sockaddr_in));
640 if (check_ip && (*check_ip)(cd, (const char *) &addr,
641 sizeof(addr), AF_INET))
645 closesocket(h->newfd);
656 COMSTACK tcpip_accept(COMSTACK h)
659 tcpip_state *state, *st = (tcpip_state *)h->cprivate;
661 unsigned long tru = 1;
664 TRC(fprintf(stderr, "tcpip_accept\n"));
665 if (h->state == CS_INCON)
667 if (!(cnew = (COMSTACK)xmalloc(sizeof(*cnew))))
671 closesocket(h->newfd);
678 memcpy(cnew, h, sizeof(*h));
679 cnew->iofile = h->newfd;
680 cnew->io_pending = 0;
681 if (!(state = (tcpip_state *)
682 (cnew->cprivate = xmalloc(sizeof(tcpip_state)))))
688 closesocket(h->newfd);
696 if (!cnew->blocking &&
698 (ioctlsocket(cnew->iofile, FIONBIO, &tru) < 0)
700 (!cnew->blocking && fcntl(cnew->iofile, F_SETFL, O_NONBLOCK) < 0)
708 closesocket(h->newfd);
720 state->altsize = state->altlen = 0;
721 state->towrite = state->written = -1;
722 state->complete = st->complete;
723 cnew->state = CS_ACCEPT;
726 #if HAVE_OPENSSL_SSL_H
727 state->ctx = st->ctx;
728 state->ctx_alloc = 0;
729 state->ssl = st->ssl;
732 state->ssl = SSL_new (state->ctx);
733 SSL_set_fd (state->ssl, cnew->iofile);
738 if (h->state == CS_ACCEPT)
740 #if HAVE_OPENSSL_SSL_H
741 tcpip_state *state = (tcpip_state *)h->cprivate;
744 int res = SSL_accept (state->ssl);
745 TRC(fprintf(stderr, "SSL_accept\n"));
748 int err = SSL_get_error(state->ssl, res);
749 if (err == SSL_ERROR_WANT_READ)
751 h->io_pending = CS_WANT_READ;
752 yaz_log (LOG_LOG, "SSL_accept. want_read");
755 if (err == SSL_ERROR_WANT_WRITE)
757 h->io_pending = CS_WANT_WRITE;
758 yaz_log (LOG_LOG, "SSL_accept. want_write");
769 h->cerrno = CSOUTSTATE;
773 h->state = CS_DATAXFER;
777 #define CS_TCPIP_BUFCHUNK 4096
780 * Return: -1 error, >1 good, len of buffer, ==1 incomplete buffer,
781 * 0=connection closed.
783 int tcpip_get(COMSTACK h, char **buf, int *bufsize)
785 tcpip_state *sp = (tcpip_state *)h->cprivate;
787 int tmpi, berlen, rest, req, tomove;
788 int hasread = 0, res;
790 TRC(fprintf(stderr, "tcpip_get: bufsize=%d\n", *bufsize));
791 if (sp->altlen) /* switch buffers */
793 TRC(fprintf(stderr, " %d bytes in altbuf (0x%x)\n", sp->altlen,
794 (unsigned) sp->altbuf));
798 *bufsize = sp->altsize;
799 hasread = sp->altlen;
805 while (!(berlen = (*sp->complete)((unsigned char *)*buf, hasread)))
809 if (!(*buf = (char *)xmalloc(*bufsize = CS_TCPIP_BUFCHUNK)))
812 else if (*bufsize - hasread < CS_TCPIP_BUFCHUNK)
813 if (!(*buf =(char *)xrealloc(*buf, *bufsize *= 2)))
815 res = recv(h->iofile, *buf + hasread, CS_TCPIP_BUFCHUNK, 0);
816 TRC(fprintf(stderr, " recv res=%d, hasread=%d\n", res, hasread));
820 if (WSAGetLastError() == WSAEWOULDBLOCK)
822 h->io_pending = CS_WANT_READ;
828 if (errno == EWOULDBLOCK
830 || errno == EINPROGRESS
834 h->io_pending = CS_WANT_READ;
847 TRC (fprintf (stderr, " Out of read loop with hasread=%d, berlen=%d\n",
849 /* move surplus buffer (or everything if we didn't get a BER rec.) */
850 if (hasread > berlen)
852 tomove = req = hasread - berlen;
853 rest = tomove % CS_TCPIP_BUFCHUNK;
855 req += CS_TCPIP_BUFCHUNK - rest;
858 if (!(sp->altbuf = (char *)xmalloc(sp->altsize = req)))
860 } else if (sp->altsize < req)
861 if (!(sp->altbuf =(char *)xrealloc(sp->altbuf, sp->altsize = req)))
863 TRC(fprintf(stderr, " Moving %d bytes to altbuf(0x%x)\n", tomove,
864 (unsigned) sp->altbuf));
865 memcpy(sp->altbuf, *buf + berlen, sp->altlen = tomove);
867 if (berlen < CS_TCPIP_BUFCHUNK - 1)
868 *(*buf + berlen) = '\0';
869 return berlen ? berlen : 1;
873 #if HAVE_OPENSSL_SSL_H
875 * Return: -1 error, >1 good, len of buffer, ==1 incomplete buffer,
876 * 0=connection closed.
878 int ssl_get(COMSTACK h, char **buf, int *bufsize)
880 tcpip_state *sp = (tcpip_state *)h->cprivate;
882 int tmpi, berlen, rest, req, tomove;
883 int hasread = 0, res;
885 TRC(fprintf(stderr, "ssl_get: bufsize=%d\n", *bufsize));
886 if (sp->altlen) /* switch buffers */
888 TRC(fprintf(stderr, " %d bytes in altbuf (0x%x)\n", sp->altlen,
889 (unsigned) sp->altbuf));
893 *bufsize = sp->altsize;
894 hasread = sp->altlen;
900 while (!(berlen = (*sp->complete)((unsigned char *)*buf, hasread)))
904 if (!(*buf = (char *)xmalloc(*bufsize = CS_TCPIP_BUFCHUNK)))
907 else if (*bufsize - hasread < CS_TCPIP_BUFCHUNK)
908 if (!(*buf =(char *)xrealloc(*buf, *bufsize *= 2)))
910 res = SSL_read (sp->ssl, *buf + hasread, CS_TCPIP_BUFCHUNK);
911 TRC(fprintf(stderr, " SSL_read res=%d, hasread=%d\n", res, hasread));
914 int ssl_err = SSL_get_error(sp->ssl, res);
915 if (ssl_err == SSL_ERROR_WANT_READ)
917 h->io_pending = CS_WANT_READ;
918 yaz_log (LOG_LOG, "SSL_read. want_read");
921 if (ssl_err == SSL_ERROR_WANT_WRITE)
923 h->io_pending = CS_WANT_WRITE;
924 yaz_log (LOG_LOG, "SSL_read. want_write");
933 TRC (fprintf (stderr, " Out of read loop with hasread=%d, berlen=%d\n",
935 /* move surplus buffer (or everything if we didn't get a BER rec.) */
936 if (hasread > berlen)
938 tomove = req = hasread - berlen;
939 rest = tomove % CS_TCPIP_BUFCHUNK;
941 req += CS_TCPIP_BUFCHUNK - rest;
944 if (!(sp->altbuf = (char *)xmalloc(sp->altsize = req)))
946 } else if (sp->altsize < req)
947 if (!(sp->altbuf =(char *)xrealloc(sp->altbuf, sp->altsize = req)))
949 TRC(fprintf(stderr, " Moving %d bytes to altbuf(0x%x)\n", tomove,
950 (unsigned) sp->altbuf));
951 memcpy(sp->altbuf, *buf + berlen, sp->altlen = tomove);
953 if (berlen < CS_TCPIP_BUFCHUNK - 1)
954 *(*buf + berlen) = '\0';
955 return berlen ? berlen : 1;
961 * In nonblocking mode, you must call again with same buffer while
964 int tcpip_put(COMSTACK h, char *buf, int size)
967 struct tcpip_state *state = (struct tcpip_state *)h->cprivate;
969 TRC(fprintf(stderr, "tcpip_put: size=%d\n", size));
971 if (state->towrite < 0)
973 state->towrite = size;
976 else if (state->towrite != size)
978 h->cerrno = CSWRONGBUF;
981 while (state->towrite > state->written)
983 if ((res = send(h->iofile, buf + state->written, size -
984 state->written, 0)) < 0)
988 WSAGetLastError() == WSAEWOULDBLOCK
994 TRC(fprintf(stderr, " Flow control stop\n"));
995 h->io_pending = CS_WANT_WRITE;
1001 state->written += res;
1002 TRC(fprintf(stderr, " Wrote %d, written=%d, nbytes=%d\n",
1003 res, state->written, size));
1005 state->towrite = state->written = -1;
1006 TRC(fprintf(stderr, " Ok\n"));
1011 #if HAVE_OPENSSL_SSL_H
1013 * Returns 1, 0 or -1
1014 * In nonblocking mode, you must call again with same buffer while
1015 * return value is 1.
1017 int ssl_put(COMSTACK h, char *buf, int size)
1020 struct tcpip_state *state = (struct tcpip_state *)h->cprivate;
1022 TRC(fprintf(stderr, "ssl_put: size=%d\n", size));
1024 if (state->towrite < 0)
1026 state->towrite = size;
1029 else if (state->towrite != size)
1031 h->cerrno = CSWRONGBUF;
1034 while (state->towrite > state->written)
1036 res = SSL_write (state->ssl, buf + state->written,
1037 size - state->written);
1040 int ssl_err = SSL_get_error(state->ssl, res);
1041 if (ssl_err == SSL_ERROR_WANT_READ)
1043 h->io_pending = CS_WANT_READ;
1044 yaz_log (LOG_LOG, "SSL_write. want_read");
1047 if (ssl_err == SSL_ERROR_WANT_WRITE)
1049 h->io_pending = CS_WANT_WRITE;
1050 yaz_log (LOG_LOG, "SSL_write. want_write");
1055 state->written += res;
1056 TRC(fprintf(stderr, " Wrote %d, written=%d, nbytes=%d\n",
1057 res, state->written, size));
1059 state->towrite = state->written = -1;
1060 TRC(fprintf(stderr, " Ok\n"));
1065 int tcpip_close(COMSTACK h)
1067 tcpip_state *sp = (struct tcpip_state *)h->cprivate;
1069 TRC(fprintf(stderr, "tcpip_close\n"));
1070 if (h->iofile != -1)
1072 #if HAVE_OPENSSL_SSL_H
1075 SSL_shutdown (sp->ssl);
1079 closesocket(h->iofile);
1086 #if HAVE_OPENSSL_SSL_H
1089 TRC (fprintf(stderr, "SSL_free\n"));
1094 SSL_CTX_free (sp->ctx_alloc);
1101 char *tcpip_addrstr(COMSTACK h)
1103 struct sockaddr_in addr;
1104 tcpip_state *sp = (struct tcpip_state *)h->cprivate;
1105 char *r, *buf = sp->buf;
1107 struct hostent *host;
1110 if (getpeername(h->iofile, (struct sockaddr*) &addr, &len) < 0)
1112 h->cerrno = CSYSERR;
1115 if ((host = gethostbyaddr((char*)&addr.sin_addr, sizeof(addr.sin_addr),
1117 r = (char*) host->h_name;
1119 r = inet_ntoa(addr.sin_addr);
1120 sprintf(buf, "tcp:%s", r);
1121 #if HAVE_OPENSSL_SSL_H
1123 sprintf(buf, "ssl:%s", r);