diff options
Diffstat (limited to 'nsock/src/nsock_ssl.h')
| -rw-r--r-- | nsock/src/nsock_ssl.h | 85 |
1 files changed, 85 insertions, 0 deletions
diff --git a/nsock/src/nsock_ssl.h b/nsock/src/nsock_ssl.h new file mode 100644 index 0000000..f23f615 --- /dev/null +++ b/nsock/src/nsock_ssl.h @@ -0,0 +1,85 @@ +/*************************************************************************** + * nsock_ssl.c -- This contains functions that relate somewhat exclusively * + * to SSL (over TCP) support in nsock. Where SSL support is incidental, * + * it is often in other files where code can be more easily shared between * + * the SSL and NonSSL paths. * + * * + ***********************IMPORTANT NSOCK LICENSE TERMS*********************** + * + * The nsock parallel socket event library is (C) 1999-2023 Nmap Software LLC + * This library is free software; you may redistribute and/or modify it under + * the terms of the GNU General Public License as published by the Free Software + * Foundation; Version 2. This guarantees your right to use, modify, and + * redistribute this software under certain conditions. If this license is + * unacceptable to you, Nmap Software LLC may be willing to sell alternative + * licenses (contact sales@nmap.com ). + * + * As a special exception to the GPL terms, Nmap Software LLC grants permission + * to link the code of this program with any version of the OpenSSL library + * which is distributed under a license identical to that listed in the included + * docs/licenses/OpenSSL.txt file, and distribute linked combinations including + * the two. You must obey the GNU GPL in all respects for all of the code used + * other than OpenSSL. If you modify this file, you may extend this exception to + * your version of the file, but you are not obligated to do so. + * + * If you received these files with a written license agreement stating terms + * other than the (GPL) terms above, then that alternative license agreement + * takes precedence over this comment. + * + * Source is provided to this software because we believe users have a right to + * know exactly what a program is going to do before they run it. This also + * allows you to audit the software for security holes. + * + * Source code also allows you to port Nmap to new platforms, fix bugs, and add + * new features. You are highly encouraged to send your changes to the + * dev@nmap.org mailing list for possible incorporation into the main + * distribution. By sending these changes to Fyodor or one of the Insecure.Org + * development mailing lists, or checking them into the Nmap source code + * repository, it is understood (unless you specify otherwise) that you are + * offering the Nmap Project (Nmap Software LLC) the unlimited, non-exclusive + * right to reuse, modify, and relicense the code. Nmap will always be available + * Open Source, but this is important because the inability to relicense code + * has caused devastating problems for other Free Software projects (such as KDE + * and NASM). We also occasionally relicense the code to third parties as + * discussed above. If you wish to specify special license conditions of your + * contributions, just say so when you send them. + * + * This program is distributed in the hope that it will be useful, but WITHOUT + * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS + * FOR A PARTICULAR PURPOSE. See the GNU General Public License v2.0 for more + * details (http://www.gnu.org/licenses/gpl-2.0.html). + * + ***************************************************************************/ + +/* $Id$ */ + +#ifndef NSOCK_SSL_H +#define NSOCK_SSL_H + +#ifdef HAVE_CONFIG_H +#include "nsock_config.h" +#endif +#include "nsock_internal.h" + +#if HAVE_OPENSSL +#include <openssl/ssl.h> +#include <openssl/err.h> +#include <openssl/rand.h> + +#if OPENSSL_VERSION_NUMBER >= 0x30000000L +/* Deprecated in OpenSSL 3.0 */ +#define SSL_get_peer_certificate SSL_get1_peer_certificate +#endif + +struct sslinfo { + /* SSL_ERROR_NONE, SSL_ERROR_WANT_CONNECT, SSL_ERROR_WANT_READ, or + * SSL_ERROR_WANT_WRITE */ + int ssl_desire; +}; + +int nsi_ssl_post_connect_verify(const nsock_iod nsockiod); + +void nsp_ssl_cleanup(struct npool *nsp); +#endif /* HAVE_OPENSSL */ +#endif /* NSOCK_SSL_H */ + |