Home Explore Help
Sign In
BlitzNG
/
database.mod
mirror of https://github.com/bmx-ng/database.mod.git
2
0
Fork 0
Files Issues 0 Wiki
Branch: task/add-postgresql
Branches Tags
database.mod
/
mariadb.mod
/
include
/
ma_tls.h

ma_tls.h 4.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161 
  1. #ifndef _ma_tls_h_
    2. 

  2. #define _ma_tls_h_
    3. 

  3. 

  4. enum enum_pvio_tls_type {
    5. 

  5.   SSL_TYPE_DEFAULT=0,
    6. 

  6. #ifdef _WIN32
    7. 

  7.   SSL_TYPE_SCHANNEL,
    8. 

  8. #endif
    9. 

  9.   SSL_TYPE_OPENSSL,
    10. 

  10.   SSL_TYPE_GNUTLS
    11. 

  11. };
    12. 

  12. 

  13. #define PROTOCOL_SSLV3    0
    14. 

  14. #define PROTOCOL_TLS_1_0  1
    15. 

  15. #define PROTOCOL_TLS_1_1  2
    16. 

  16. #define PROTOCOL_TLS_1_2  3
    17. 

  17. #define PROTOCOL_TLS_1_3  4
    18. 

  18. #define PROTOCOL_UNKNOWN  5
    19. 

  19. #define PROTOCOL_MAX PROTOCOL_TLS_1_3
    20. 

  20. 

  21. #define TLS_VERSION_LENGTH 64
    22. 

  22. extern char tls_library_version[TLS_VERSION_LENGTH];
    23. 

  23. 

  24. typedef struct st_ma_pvio_tls {
    25. 

  25.   void *data;
    26. 

  26.   MARIADB_PVIO *pvio;
    27. 

  27.   void *ssl;
    28. 

  28. } MARIADB_TLS;
    29. 

  29. 

  30. /* Function prototypes */
    31. 

  31. 

  32. /* ma_tls_start
    33. 

  33.    initializes the ssl library
    34. 

  34.    Parameter:
    35. 

  35.      errmsg      pointer to error message buffer
    36. 

  36.      errmsg_len  length of error message buffer
    37. 

  37.    Returns:
    38. 

  38.      0           success
    39. 

  39.      1           if an error occurred
    40. 

  40.    Notes:
    41. 

  41.      On success the global variable ma_tls_initialized will be set to 1
    42. 

  42. */
    43. 

  43. int ma_tls_start(char *errmsg, size_t errmsg_len);
    44. 

  44. 

  45. /* ma_tls_end
    46. 

  46.    unloads/deinitializes ssl library and unsets global variable
    47. 

  47.    ma_tls_initialized
    48. 

  48. */
    49. 

  49. void ma_tls_end(void);
    50. 

  50. 

  51. /* ma_tls_init
    52. 

  52.    creates a new SSL structure for a SSL connection and loads
    53. 

  53.    client certificates
    54. 

  54. 

  55.    Parameters:
    56. 

  56.      MYSQL        a mysql structure
    57. 

  57.    Returns:
    58. 

  58.      void *       a pointer to internal SSL structure
    59. 

  59. */
    60. 

  60. void * ma_tls_init(MYSQL *mysql);
    61. 

  61. 

  62. /* ma_tls_connect
    63. 

  63.    performs SSL handshake
    64. 

  64.    Parameters:
    65. 

  65.      MARIADB_TLS   MariaDB SSL container
    66. 

  66.    Returns:
    67. 

  67.      0             success
    68. 

  68.      1             error
    69. 

  69. */
    70. 

  70. my_bool ma_tls_connect(MARIADB_TLS *ctls);
    71. 

  71. 

  72. /* ma_tls_read
    73. 

  73.    reads up to length bytes from socket
    74. 

  74.    Parameters:
    75. 

  75.      ctls         MariaDB SSL container
    76. 

  76.      buffer       read buffer
    77. 

  77.      length       buffer length
    78. 

  78.    Returns:
    79. 

  79.      0-n          bytes read
    80. 

  80.      -1           if an error occurred
    81. 

  81. */
    82. 

  82. ssize_t ma_tls_read(MARIADB_TLS *ctls, const uchar* buffer, size_t length);
    83. 

  83. 

  84. /* ma_tls_write
    85. 

  85.    write buffer to socket
    86. 

  86.    Parameters:
    87. 

  87.      ctls         MariaDB SSL container
    88. 

  88.      buffer       write buffer
    89. 

  89.      length       buffer length
    90. 

  90.    Returns:
    91. 

  91.      0-n          bytes written
    92. 

  92.      -1           if an error occurred
    93. 

  93. */
    94. 

  94. ssize_t ma_tls_write(MARIADB_TLS *ctls, const uchar* buffer, size_t length);
    95. 

  95. 

  96. /* ma_tls_close
    97. 

  97.    closes SSL connection and frees SSL structure which was previously
    98. 

  98.    created by ma_tls_init call
    99. 

  99.    Parameters:
    100. 

  100.      MARIADB_TLS  MariaDB SSL container
    101. 

  101.    Returns:
    102. 

  102.      0            success
    103. 

  103.      1            error
    104. 

  104. */
    105. 

  105. my_bool ma_tls_close(MARIADB_TLS *ctls);
    106. 

  106. 

  107. /* ma_tls_verify_server_cert
    108. 

  108.    validation check of server certificate
    109. 

  109.    Parameter:
    110. 

  110.      MARIADB_TLS  MariaDB SSL container
    111. 

  111.    Returns:
    112. 

  112.      ß            success
    113. 

  113.      1            error
    114. 

  114. */
    115. 

  115. int ma_tls_verify_server_cert(MARIADB_TLS *ctls);
    116. 

  116. 

  117. /* ma_tls_get_cipher
    118. 

  118.    returns cipher for current ssl connection
    119. 

  119.    Parameter:
    120. 

  120.      MARIADB_TLS  MariaDB SSL container
    121. 

  121.    Returns: 
    122. 

  122.      cipher in use or
    123. 

  123.      NULL on error
    124. 

  124. */
    125. 

  125. const char *ma_tls_get_cipher(MARIADB_TLS *ssl);
    126. 

  126. 

  127. /* ma_tls_get_finger_print
    128. 

  128.    returns SHA1 finger print of server certificate
    129. 

  129.    Parameter:
    130. 

  130.      MARIADB_TLS  MariaDB SSL container
    131. 

  131.      fp           buffer for fingerprint
    132. 

  132.      fp_len       buffer length
    133. 

  133.    Returns:
    134. 

  134.      actual size of finger print
    135. 

  135. */
    136. 

  136. unsigned int ma_tls_get_finger_print(MARIADB_TLS *ctls, char *fp, unsigned int fp_len);
    137. 

  137. 

  138. /* ma_tls_get_protocol_version 
    139. 

  139.    returns protocol version number in use
    140. 

  140.    Parameter:
    141. 

  141.      MARIADB_TLS    MariaDB SSL container
    142. 

  142.    Returns:
    143. 

  143.      protocol number
    144. 

  144. */
    145. 

  145. int ma_tls_get_protocol_version(MARIADB_TLS *ctls);
    146. 

  146. const char *ma_pvio_tls_get_protocol_version(MARIADB_TLS *ctls);
    147. 

  147. int ma_pvio_tls_get_protocol_version_id(MARIADB_TLS *ctls);
    148. 

  148. 

  149. /* Function prototypes */
    150. 

  150. MARIADB_TLS *ma_pvio_tls_init(MYSQL *mysql);
    151. 

  151. my_bool ma_pvio_tls_connect(MARIADB_TLS *ctls);
    152. 

  152. ssize_t ma_pvio_tls_read(MARIADB_TLS *ctls, const uchar *buffer, size_t length);
    153. 

  153. ssize_t ma_pvio_tls_write(MARIADB_TLS *ctls, const uchar *buffer, size_t length);
    154. 

  154. my_bool ma_pvio_tls_close(MARIADB_TLS *ctls);
    155. 

  155. int ma_pvio_tls_verify_server_cert(MARIADB_TLS *ctls);
    156. 

  156. const char *ma_pvio_tls_cipher(MARIADB_TLS *ctls);
    157. 

  157. my_bool ma_pvio_tls_check_fp(MARIADB_TLS *ctls, const char *fp, const char *fp_list);
    158. 

  158. my_bool ma_pvio_start_ssl(MARIADB_PVIO *pvio);
    159. 

  159. void ma_pvio_tls_end();
    160. 

  160. 

  161. #endif /* _ma_tls_h_ */
    162.