• file
• latest
• revisions
• annotate
• diff
• comparison
• raw

plugins/ssl/ssl-nss.c@4ad9297570d2 (annotated)

plugins/ssl/ssl-nss.c

Thu, 16 Feb 2006 23:02:56 +0000

author

Sean Egan <seanegan@pidgin.im>

date

Thu, 16 Feb 2006 23:02:56 +0000

changeset 13304

4ad9297570d2

parent 13264

f5db933aa42a

child 13530

2fbf309637b2

permissions

-rw-r--r--

[gaim-migrate @ 15669]
There was an attempt to make each Jabber resource have its own conversation
window, which wasn't working, and instead sending outgoing messages to the
wrong resource. Different conversations with each resource breaks the whole
"Send to" one-window-per-person metaphor, so I just changed the behavior to
send messages to whichever resources last messaged you. Perhaps later, when
we're not in a freeze, we can consider an API that allows prpls to populate
the Send To menu themselves, letting you easily switch what resource you're
chatting with in the same window

7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	1	/**
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	2	* @file ssl-nss.c Mozilla NSS SSL plugin.
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	3	*
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	4	* gaim
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	5	*
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	6	* Copyright (C) 2003 Christian Hammond <chipx86@gnupdate.org>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	7	*
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	8	* This program is free software; you can redistribute it and/or modify
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	9	* it under the terms of the GNU General Public License as published by
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	10	* the Free Software Foundation; either version 2 of the License, or
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	11	* (at your option) any later version.
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	12	*
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	13	* This program is distributed in the hope that it will be useful,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	14	* but WITHOUT ANY WARRANTY; without even the implied warranty of
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	15	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	16	* GNU General Public License for more details.
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	17	*
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	18	* You should have received a copy of the GNU General Public License
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	19	* along with this program; if not, write to the Free Software
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	20	* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	21	*/
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	22	#include "internal.h"
7051 8ddb8f560399 [gaim-migrate @ 7614] Christian Hammond <chipx86@chipx86.com> parents: 7050 diff changeset	23	#include "debug.h"
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	24	#include "plugin.h"
7051 8ddb8f560399 [gaim-migrate @ 7614] Christian Hammond <chipx86@chipx86.com> parents: 7050 diff changeset	25	#include "sslconn.h"
9943 b54a762f60fa [gaim-migrate @ 10835] Nathan Walp <nwalp@pidgin.im> parents: 9582 diff changeset	26	#include "version.h"
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	27
7029 fe690e0607ec [gaim-migrate @ 7592] Christian Hammond <chipx86@chipx86.com> parents: 7028 diff changeset	28	#define SSL_NSS_PLUGIN_ID "ssl-nss"
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	29
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	30	#ifdef HAVE_NSS
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	31
9582 68facdf2b52d [gaim-migrate @ 10425] Christian Hammond <chipx86@chipx86.com> parents: 8749 diff changeset	32	#undef HAVE_LONG_LONG /* Make Mozilla less angry. If angry, Mozilla SMASH! */
68facdf2b52d [gaim-migrate @ 10425] Christian Hammond <chipx86@chipx86.com> parents: 8749 diff changeset	33
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	34	#include <nspr.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	35	#include <private/pprio.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	36	#include <nss.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	37	#include <pk11func.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	38	#include <prio.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	39	#include <secerr.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	40	#include <secmod.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	41	#include <ssl.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	42	#include <sslerr.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	43	#include <sslproto.h>
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	44
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	45	typedef struct
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	46	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	47	PRFileDesc *fd;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	48	PRFileDesc *in;
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	49	guint handshake_handler;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	50
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	51	} GaimSslNssData;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	52
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	53	#define GAIM_SSL_NSS_DATA(gsc) ((GaimSslNssData *)gsc->private_data)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	54
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	55	static const PRIOMethods *_nss_methods = NULL;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	56	static PRDescIdentity _identity;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	57
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	58	/* Thank you, Evolution */
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	59	static void
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	60	set_errno(int code)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	61	{
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	62	/* FIXME: this should handle more. */
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	63	switch (code) {
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	64	case PR_INVALID_ARGUMENT_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	65	errno = EINVAL;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	66	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	67	case PR_PENDING_INTERRUPT_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	68	errno = EINTR;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	69	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	70	case PR_IO_PENDING_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	71	errno = EAGAIN;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	72	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	73	case PR_WOULD_BLOCK_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	74	errno = EAGAIN;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	75	/*errno = EWOULDBLOCK; */
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	76	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	77	case PR_IN_PROGRESS_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	78	errno = EINPROGRESS;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	79	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	80	case PR_ALREADY_INITIATED_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	81	errno = EALREADY;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	82	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	83	case PR_NETWORK_UNREACHABLE_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	84	errno = EHOSTUNREACH;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	85	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	86	case PR_CONNECT_REFUSED_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	87	errno = ECONNREFUSED;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	88	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	89	case PR_CONNECT_TIMEOUT_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	90	case PR_IO_TIMEOUT_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	91	errno = ETIMEDOUT;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	92	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	93	case PR_NOT_CONNECTED_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	94	errno = ENOTCONN;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	95	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	96	case PR_CONNECT_RESET_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	97	errno = ECONNRESET;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	98	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	99	case PR_IO_ERROR:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	100	default:
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	101	errno = EIO;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	102	break;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	103	}
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	104	}
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	105
7993 3bfea94dd0eb [gaim-migrate @ 8670] Christian Hammond <chipx86@chipx86.com> parents: 7862 diff changeset	106	static void
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	107	ssl_nss_init_nss(void)
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	108	{
10519 80801a34a246 [gaim-migrate @ 11833] Stu Tomlinson <nosnilmot@pidgin.im> parents: 10263 diff changeset	109	char *lib;
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	110	PR_Init(PR_SYSTEM_THREAD, PR_PRIORITY_NORMAL, 1);
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	111	NSS_NoDB_Init(NULL);
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	112
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	113	/* TODO: Fix this so autoconf does the work trying to find this lib. */
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	114	#ifndef _WIN32
10519 80801a34a246 [gaim-migrate @ 11833] Stu Tomlinson <nosnilmot@pidgin.im> parents: 10263 diff changeset	115	lib = g_strdup(BR_LIBDIR("/libnssckbi.so"));
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	116	#else
10519 80801a34a246 [gaim-migrate @ 11833] Stu Tomlinson <nosnilmot@pidgin.im> parents: 10263 diff changeset	117	lib = g_strdup("nssckbi.dll");
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	118	#endif
10519 80801a34a246 [gaim-migrate @ 11833] Stu Tomlinson <nosnilmot@pidgin.im> parents: 10263 diff changeset	119	SECMOD_AddNewModule("Builtins", lib, 0, 0);
80801a34a246 [gaim-migrate @ 11833] Stu Tomlinson <nosnilmot@pidgin.im> parents: 10263 diff changeset	120	g_free(lib);
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	121	NSS_SetDomesticPolicy();
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	122
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	123	_identity = PR_GetUniqueIdentity("Gaim");
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	124	_nss_methods = PR_GetDefaultIOMethods();
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	125	}
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	126
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	127	static SECStatus
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	128	ssl_auth_cert(void *arg, PRFileDesc *socket, PRBool checksig,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	129	PRBool is_server)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	130	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	131	return SECSuccess;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	132
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	133	#if 0
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	134	CERTCertificate *cert;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	135	void *pinArg;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	136	SECStatus status;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	137
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	138	cert = SSL_PeerCertificate(socket);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	139	pinArg = SSL_RevealPinArg(socket);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	140
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	141	status = CERT_VerifyCertNow((CERTCertDBHandle *)arg, cert, checksig,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	142	certUsageSSLClient, pinArg);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	143
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	144	if (status != SECSuccess) {
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	145	gaim_debug_error("nss", "CERT_VerifyCertNow failed\n");
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	146	CERT_DestroyCertificate(cert);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	147	return status;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	148	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	149
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	150	CERT_DestroyCertificate(cert);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	151	return SECSuccess;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	152	#endif
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	153	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	154
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	155	static SECStatus
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	156	ssl_bad_cert(void *arg, PRFileDesc *socket)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	157	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	158	SECStatus status = SECFailure;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	159	PRErrorCode err;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	160
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	161	if (arg == NULL)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	162	return status;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	163
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	164	*(PRErrorCode *)arg = err = PORT_GetError();
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	165
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	166	switch (err)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	167	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	168	case SEC_ERROR_INVALID_AVA:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	169	case SEC_ERROR_INVALID_TIME:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	170	case SEC_ERROR_BAD_SIGNATURE:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	171	case SEC_ERROR_EXPIRED_CERTIFICATE:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	172	case SEC_ERROR_UNKNOWN_ISSUER:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	173	case SEC_ERROR_UNTRUSTED_CERT:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	174	case SEC_ERROR_CERT_VALID:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	175	case SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	176	case SEC_ERROR_CRL_EXPIRED:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	177	case SEC_ERROR_CRL_BAD_SIGNATURE:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	178	case SEC_ERROR_EXTENSION_VALUE_INVALID:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	179	case SEC_ERROR_CA_CERT_INVALID:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	180	case SEC_ERROR_CERT_USAGES_INVALID:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	181	case SEC_ERROR_UNKNOWN_CRITICAL_EXTENSION:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	182	status = SECSuccess;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	183	break;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	184
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	185	default:
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	186	status = SECFailure;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	187	break;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	188	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	189
12209 0a393bdb7cb7 [gaim-migrate @ 14511] Stu Tomlinson <nosnilmot@pidgin.im> parents: 11513 diff changeset	190	gaim_debug_error("nss", "Bad certificate: %d\n", err);
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	191
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	192	return status;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	193	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	194
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	195	static gboolean
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	196	ssl_nss_init(void)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	197	{
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	198	return TRUE;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	199	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	200
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	201	static void
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	202	ssl_nss_uninit(void)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	203	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	204	PR_Cleanup();
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	205
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	206	_nss_methods = NULL;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	207	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	208
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	209	static void
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	210	ssl_nss_handshake_cb(gpointer data, int fd, GaimInputCondition cond)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	211	{
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	212	GaimSslConnection *gsc = (GaimSslConnection *)data;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	213	GaimSslNssData *nss_data = gsc->private_data;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	214
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	215	/* I don't think this the best way to do this...
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	216	* It seems to work because it'll eventually use the cached value
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	217	*/
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	218	if(SSL_ForceHandshake(nss_data->in) != SECSuccess) {
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	219	set_errno(PR_GetError());
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	220	if (errno == EAGAIN || errno == EWOULDBLOCK)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	221	return;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	222
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	223	gaim_debug_error("nss", "Handshake failed %u\n", PR_GetError());
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	224
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	225	if (gsc->error_cb != NULL)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	226	gsc->error_cb(gsc, GAIM_SSL_HANDSHAKE_FAILED, gsc->connect_cb_data);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	227
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	228	gaim_ssl_close(gsc);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	229
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	230	return;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	231	}
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	232
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	233	gaim_input_remove(nss_data->handshake_handler);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	234	nss_data->handshake_handler = 0;
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	235
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	236	gsc->connect_cb(gsc->connect_cb_data, gsc, cond);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	237	}
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	238
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	239	static void
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	240	ssl_nss_connect_cb(gpointer data, gint source, GaimInputCondition cond)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	241	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	242	GaimSslConnection *gsc = (GaimSslConnection *)data;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	243	GaimSslNssData *nss_data = g_new0(GaimSslNssData, 1);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	244	PRSocketOptionData socket_opt;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	245
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	246	gsc->private_data = nss_data;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	247
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	248	gsc->fd = source;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	249
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	250	nss_data->fd = PR_ImportTCPSocket(gsc->fd);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	251
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	252	if (nss_data->fd == NULL)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	253	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	254	gaim_debug_error("nss", "nss_data->fd == NULL!\n");
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	255
8362 1dc105ff1804 [gaim-migrate @ 9087] Nathan Walp <nwalp@pidgin.im> parents: 8360 diff changeset	256	if (gsc->error_cb != NULL)
1dc105ff1804 [gaim-migrate @ 9087] Nathan Walp <nwalp@pidgin.im> parents: 8360 diff changeset	257	gsc->error_cb(gsc, GAIM_SSL_CONNECT_FAILED, gsc->connect_cb_data);
1dc105ff1804 [gaim-migrate @ 9087] Nathan Walp <nwalp@pidgin.im> parents: 8360 diff changeset	258
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	259	gaim_ssl_close((GaimSslConnection *)gsc);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	260
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	261	return;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	262	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	263
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	264	socket_opt.option = PR_SockOpt_Nonblocking;
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	265	socket_opt.value.non_blocking = PR_TRUE;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	266
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	267	if (PR_SetSocketOption(nss_data->fd, &socket_opt) != PR_SUCCESS)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	268	gaim_debug_warning("nss", "unable to set socket into non-blocking mode: %u\n", PR_GetError());
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	269
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	270	nss_data->in = SSL_ImportFD(NULL, nss_data->fd);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	271
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	272	if (nss_data->in == NULL)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	273	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	274	gaim_debug_error("nss", "nss_data->in == NUL!\n");
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	275
8362 1dc105ff1804 [gaim-migrate @ 9087] Nathan Walp <nwalp@pidgin.im> parents: 8360 diff changeset	276	if (gsc->error_cb != NULL)
1dc105ff1804 [gaim-migrate @ 9087] Nathan Walp <nwalp@pidgin.im> parents: 8360 diff changeset	277	gsc->error_cb(gsc, GAIM_SSL_CONNECT_FAILED, gsc->connect_cb_data);
1dc105ff1804 [gaim-migrate @ 9087] Nathan Walp <nwalp@pidgin.im> parents: 8360 diff changeset	278
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	279	gaim_ssl_close((GaimSslConnection *)gsc);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	280
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	281	return;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	282	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	283
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	284	SSL_OptionSet(nss_data->in, SSL_SECURITY, PR_TRUE);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	285	SSL_OptionSet(nss_data->in, SSL_HANDSHAKE_AS_CLIENT, PR_TRUE);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	286
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	287	SSL_AuthCertificateHook(nss_data->in,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	288	(SSLAuthCertificate)ssl_auth_cert,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	289	(void *)CERT_GetDefaultCertDB());
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	290	SSL_BadCertHook(nss_data->in, (SSLBadCertHandler)ssl_bad_cert, NULL);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	291
7157 aad2cacc9238 [gaim-migrate @ 7724] Nathan Walp <nwalp@pidgin.im> parents: 7053 diff changeset	292	if(gsc->host)
aad2cacc9238 [gaim-migrate @ 7724] Nathan Walp <nwalp@pidgin.im> parents: 7053 diff changeset	293	SSL_SetURL(nss_data->in, gsc->host);
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	294
13264 f5db933aa42a [gaim-migrate @ 15629] Björn Voigt <bjoern@cs.tu-berlin.de> parents: 13201 diff changeset	295	#if 0
f5db933aa42a [gaim-migrate @ 15629] Björn Voigt <bjoern@cs.tu-berlin.de> parents: 13201 diff changeset	296	/* This seems like it'd the be the correct way to implement the
f5db933aa42a [gaim-migrate @ 15629] Björn Voigt <bjoern@cs.tu-berlin.de> parents: 13201 diff changeset	297	nonblocking stuff, but it doesn't seem to work */
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	298	SSL_HandshakeCallback(nss_data->in,
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	299	(SSLHandshakeCallback) ssl_nss_handshake_cb, gsc);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	300	#endif
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	301	SSL_ResetHandshake(nss_data->in, PR_FALSE);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	302
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	303	nss_data->handshake_handler = gaim_input_add(gsc->fd,
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	304	GAIM_INPUT_READ, ssl_nss_handshake_cb, gsc);
7274 42ec5f56e32a [gaim-migrate @ 7851] Christian Hammond <chipx86@chipx86.com> parents: 7157 diff changeset	305
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	306	ssl_nss_handshake_cb(gsc, gsc->fd, GAIM_INPUT_READ);
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	307	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	308
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	309	static void
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	310	ssl_nss_close(GaimSslConnection *gsc)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	311	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	312	GaimSslNssData *nss_data = GAIM_SSL_NSS_DATA(gsc);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	313
7467 a459b5408f83 [gaim-migrate @ 8080] Nathan Walp <nwalp@pidgin.im> parents: 7274 diff changeset	314	if(!nss_data)
a459b5408f83 [gaim-migrate @ 8080] Nathan Walp <nwalp@pidgin.im> parents: 7274 diff changeset	315	return;
a459b5408f83 [gaim-migrate @ 8080] Nathan Walp <nwalp@pidgin.im> parents: 7274 diff changeset	316
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	317	if (nss_data->in) PR_Close(nss_data->in);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	318	/* if (nss_data->fd) PR_Close(nss_data->fd); */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	319
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	320	if (nss_data->handshake_handler)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	321	gaim_input_remove(nss_data->handshake_handler);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	322
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	323	g_free(nss_data);
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	324	gsc->private_data = NULL;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	325	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	326
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	327	static size_t
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	328	ssl_nss_read(GaimSslConnection *gsc, void *data, size_t len)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	329	{
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	330	ssize_t ret;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	331	GaimSslNssData *nss_data = GAIM_SSL_NSS_DATA(gsc);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	332
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	333	ret = PR_Read(nss_data->in, data, len);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	334
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	335	if (ret == -1)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	336	set_errno(PR_GetError());
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	337
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	338	return ret;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	339	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	340
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	341	static size_t
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	342	ssl_nss_write(GaimSslConnection *gsc, const void *data, size_t len)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	343	{
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	344	ssize_t ret;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	345	GaimSslNssData *nss_data = GAIM_SSL_NSS_DATA(gsc);
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	346
7467 a459b5408f83 [gaim-migrate @ 8080] Nathan Walp <nwalp@pidgin.im> parents: 7274 diff changeset	347	if(!nss_data)
a459b5408f83 [gaim-migrate @ 8080] Nathan Walp <nwalp@pidgin.im> parents: 7274 diff changeset	348	return 0;
a459b5408f83 [gaim-migrate @ 8080] Nathan Walp <nwalp@pidgin.im> parents: 7274 diff changeset	349
13201 8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	350	ret = PR_Write(nss_data->in, data, len);
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	351
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	352	if (ret == -1)
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	353	set_errno(PR_GetError());
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	354
8c224ef70efa [gaim-migrate @ 15563] Daniel Atallah <datallah@pidgin.im> parents: 12209 diff changeset	355	return ret;
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	356	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	357
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	358	static GaimSslOps ssl_ops =
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	359	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	360	ssl_nss_init,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	361	ssl_nss_uninit,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	362	ssl_nss_connect_cb,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	363	ssl_nss_close,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	364	ssl_nss_read,
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	365	ssl_nss_write
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	366	};
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	367
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	368	#endif /* HAVE_NSS */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	369
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	370
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	371	static gboolean
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	372	plugin_load(GaimPlugin *plugin)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	373	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	374	#ifdef HAVE_NSS
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	375	if (!gaim_ssl_get_ops()) {
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	376	gaim_ssl_set_ops(&ssl_ops);
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	377	}
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	378
11033 dc68e074f10d [gaim-migrate @ 12919] Etan Reisner <deryni@pidgin.im> parents: 10519 diff changeset	379	/* Init NSS now, so others can use it even if sslconn never does */
dc68e074f10d [gaim-migrate @ 12919] Etan Reisner <deryni@pidgin.im> parents: 10519 diff changeset	380	ssl_nss_init_nss();
dc68e074f10d [gaim-migrate @ 12919] Etan Reisner <deryni@pidgin.im> parents: 10519 diff changeset	381
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	382	return TRUE;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	383	#else
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	384	return FALSE;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	385	#endif
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	386	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	387
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	388	static gboolean
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	389	plugin_unload(GaimPlugin *plugin)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	390	{
7053 724da43d6430 [gaim-migrate @ 7616] Nathan Walp <nwalp@pidgin.im> parents: 7051 diff changeset	391	#ifdef HAVE_NSS
7862 9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	392	if (gaim_ssl_get_ops() == &ssl_ops) {
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	393	gaim_ssl_set_ops(NULL);
9b96706e44e7 [gaim-migrate @ 8516] Bill Tompkins <obobo@users.sourceforge.net> parents: 7467 diff changeset	394	}
7050 12730863b0f9 [gaim-migrate @ 7613] Christian Hammond <chipx86@chipx86.com> parents: 7029 diff changeset	395	#endif
12730863b0f9 [gaim-migrate @ 7613] Christian Hammond <chipx86@chipx86.com> parents: 7029 diff changeset	396
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	397	return TRUE;
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	398	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	399
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	400	static GaimPluginInfo info =
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	401	{
9943 b54a762f60fa [gaim-migrate @ 10835] Nathan Walp <nwalp@pidgin.im> parents: 9582 diff changeset	402	GAIM_PLUGIN_MAGIC,
b54a762f60fa [gaim-migrate @ 10835] Nathan Walp <nwalp@pidgin.im> parents: 9582 diff changeset	403	GAIM_MAJOR_VERSION,
b54a762f60fa [gaim-migrate @ 10835] Nathan Walp <nwalp@pidgin.im> parents: 9582 diff changeset	404	GAIM_MINOR_VERSION,
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	405	GAIM_PLUGIN_STANDARD, /**< type */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	406	NULL, /**< ui_requirement */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	407	GAIM_PLUGIN_FLAG_INVISIBLE, /**< flags */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	408	NULL, /**< dependencies */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	409	GAIM_PRIORITY_DEFAULT, /**< priority */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	410
7029 fe690e0607ec [gaim-migrate @ 7592] Christian Hammond <chipx86@chipx86.com> parents: 7028 diff changeset	411	SSL_NSS_PLUGIN_ID, /**< id */
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	412	N_("NSS"), /**< name */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	413	VERSION, /**< version */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	414	/** summary */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	415	N_("Provides SSL support through Mozilla NSS."),
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	416	/** description */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	417	N_("Provides SSL support through Mozilla NSS."),
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	418	"Christian Hammond <chipx86@gnupdate.org>",
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	419	GAIM_WEBSITE, /**< homepage */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	420
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	421	plugin_load, /**< load */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	422	plugin_unload, /**< unload */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	423	NULL, /**< destroy */
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	424
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	425	NULL, /**< ui_info */
11513 89bf8d856291 [gaim-migrate @ 13758] Stu Tomlinson <nosnilmot@pidgin.im> parents: 11256 diff changeset	426	NULL, /**< extra_info */
89bf8d856291 [gaim-migrate @ 13758] Stu Tomlinson <nosnilmot@pidgin.im> parents: 11256 diff changeset	427	NULL, /**< prefs_info */
89bf8d856291 [gaim-migrate @ 13758] Stu Tomlinson <nosnilmot@pidgin.im> parents: 11256 diff changeset	428	NULL /**< actions */
7016 895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	429	};
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	430
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	431	static void
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	432	init_plugin(GaimPlugin *plugin)
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	433	{
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	434	}
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	435
895a5ff9ebd4 [gaim-migrate @ 7579] Christian Hammond <chipx86@chipx86.com> parents: diff changeset	436	GAIM_INIT_PLUGIN(ssl_nss, init_plugin, info)