2 // Copyright (C) 2011 Suguru Kawamoto
\r
4 // socket関連関数をOpenSSL用に置換
\r
6 // コンパイルにはOpenSSLのヘッダーファイルが必要
\r
7 // 実行にはOpenSSLのDLLが必要
\r
9 #include <ws2tcpip.h>
\r
10 #include <windows.h>
\r
11 #include <mmsystem.h>
\r
12 #include <openssl/ssl.h>
\r
14 #include "socketwrapper.h"
\r
15 #include "protectprocess.h"
\r
16 #include "mbswrapper.h"
\r
17 #include "punycode.h"
\r
21 typedef void (__cdecl* _SSL_load_error_strings)();
\r
22 typedef int (__cdecl* _SSL_library_init)();
\r
23 typedef SSL_METHOD* (__cdecl* _SSLv23_method)();
\r
24 typedef SSL_CTX* (__cdecl* _SSL_CTX_new)(SSL_METHOD*);
\r
25 typedef void (__cdecl* _SSL_CTX_free)(SSL_CTX*);
\r
26 typedef SSL* (__cdecl* _SSL_new)(SSL_CTX*);
\r
27 typedef void (__cdecl* _SSL_free)(SSL*);
\r
28 typedef int (__cdecl* _SSL_shutdown)(SSL*);
\r
29 typedef int (__cdecl* _SSL_get_fd)(SSL*);
\r
30 typedef int (__cdecl* _SSL_set_fd)(SSL*, int);
\r
31 typedef int (__cdecl* _SSL_accept)(SSL*);
\r
32 typedef int (__cdecl* _SSL_connect)(SSL*);
\r
33 typedef int (__cdecl* _SSL_write)(SSL*, const void*, int);
\r
34 typedef int (__cdecl* _SSL_peek)(SSL*, void*, int);
\r
35 typedef int (__cdecl* _SSL_read)(SSL*, void*, int);
\r
36 typedef int (__cdecl* _SSL_get_error)(SSL*, int);
\r
37 typedef X509* (__cdecl* _SSL_get_peer_certificate)(const SSL*);
\r
38 typedef long (__cdecl* _SSL_get_verify_result)(const SSL*);
\r
39 typedef SSL_SESSION* (__cdecl* _SSL_get_session)(SSL*);
\r
40 typedef int (__cdecl* _SSL_set_session)(SSL*, SSL_SESSION*);
\r
41 typedef X509_STORE* (__cdecl* _SSL_CTX_get_cert_store)(const SSL_CTX*);
\r
42 typedef BIO_METHOD* (__cdecl* _BIO_s_mem)();
\r
43 typedef BIO* (__cdecl* _BIO_new)(BIO_METHOD*);
\r
44 typedef int (__cdecl* _BIO_free)(BIO*);
\r
45 typedef BIO* (__cdecl* _BIO_new_mem_buf)(void*, int);
\r
46 typedef long (__cdecl* _BIO_ctrl)(BIO*, int, long, void*);
\r
47 typedef void (__cdecl* _X509_free)(X509*);
\r
48 typedef int (__cdecl* _X509_print_ex)(BIO*, X509*, unsigned long, unsigned long);
\r
49 typedef X509_NAME* (__cdecl* _X509_get_subject_name)(X509*);
\r
50 typedef int (__cdecl* _X509_NAME_print_ex)(BIO*, X509_NAME*, int, unsigned long);
\r
51 typedef X509* (__cdecl* _PEM_read_bio_X509)(BIO*, X509**, pem_password_cb*, void*);
\r
52 typedef int (__cdecl* _X509_STORE_add_cert)(X509_STORE*, X509*);
\r
54 _SSL_load_error_strings p_SSL_load_error_strings;
\r
55 _SSL_library_init p_SSL_library_init;
\r
56 _SSLv23_method p_SSLv23_method;
\r
57 _SSL_CTX_new p_SSL_CTX_new;
\r
58 _SSL_CTX_free p_SSL_CTX_free;
\r
60 _SSL_free p_SSL_free;
\r
61 _SSL_shutdown p_SSL_shutdown;
\r
62 _SSL_get_fd p_SSL_get_fd;
\r
63 _SSL_set_fd p_SSL_set_fd;
\r
64 _SSL_accept p_SSL_accept;
\r
65 _SSL_connect p_SSL_connect;
\r
66 _SSL_write p_SSL_write;
\r
67 _SSL_peek p_SSL_peek;
\r
68 _SSL_read p_SSL_read;
\r
69 _SSL_get_error p_SSL_get_error;
\r
70 _SSL_get_peer_certificate p_SSL_get_peer_certificate;
\r
71 _SSL_get_verify_result p_SSL_get_verify_result;
\r
72 _SSL_get_session p_SSL_get_session;
\r
73 _SSL_set_session p_SSL_set_session;
\r
74 _SSL_CTX_get_cert_store p_SSL_CTX_get_cert_store;
\r
75 _BIO_s_mem p_BIO_s_mem;
\r
77 _BIO_free p_BIO_free;
\r
78 _BIO_new_mem_buf p_BIO_new_mem_buf;
\r
79 _BIO_ctrl p_BIO_ctrl;
\r
80 _X509_free p_X509_free;
\r
81 _X509_print_ex p_X509_print_ex;
\r
82 _X509_get_subject_name p_X509_get_subject_name;
\r
83 _X509_NAME_print_ex p_X509_NAME_print_ex;
\r
84 _PEM_read_bio_X509 p_PEM_read_bio_X509;
\r
85 _X509_STORE_add_cert p_X509_STORE_add_cert;
\r
87 #define MAX_SSL_SOCKET 16
\r
89 BOOL g_bOpenSSLLoaded;
\r
91 HMODULE g_hOpenSSLCommon;
\r
92 CRITICAL_SECTION g_OpenSSLLock;
\r
93 DWORD g_OpenSSLTimeout;
\r
94 LPSSLTIMEOUTCALLBACK g_pOpenSSLTimeoutCallback;
\r
95 LPSSLCONFIRMCALLBACK g_pOpenSSLConfirmCallback;
\r
96 SSL_CTX* g_pOpenSSLCTX;
\r
97 SSL* g_pOpenSSLHandle[MAX_SSL_SOCKET];
\r
99 BOOL __stdcall DefaultSSLTimeoutCallback(BOOL* pbAborted)
\r
105 BOOL __stdcall DefaultSSLConfirmCallback(BOOL* pbAborted, BOOL bVerified, LPCSTR Certificate, LPCSTR CommonName)
\r
113 if(g_bOpenSSLLoaded)
\r
115 #ifdef ENABLE_PROCESS_PROTECTION
\r
116 // 同梱するOpenSSLのバージョンに合わせてSHA1ハッシュ値を変更すること
\r
117 // ssleay32.dll 1.0.0e
\r
118 // libssl32.dll 1.0.0e
\r
119 RegisterTrustedModuleSHA1Hash("\x4E\xB7\xA0\x22\x14\x4B\x58\x6D\xBC\xF5\x21\x0D\x96\x78\x0D\x79\x7D\x66\xB2\xB0");
\r
120 // libeay32.dll 1.0.0e
\r
121 RegisterTrustedModuleSHA1Hash("\x01\x32\x7A\xAE\x69\x26\xE6\x58\xC7\x63\x22\x1E\x53\x5A\x78\xBC\x61\xC7\xB5\xC1");
\r
123 g_hOpenSSL = LoadLibrary("ssleay32.dll");
\r
124 // バージョン固定のためlibssl32.dllの読み込みは脆弱性の原因になり得るので廃止
\r
126 // g_hOpenSSL = LoadLibrary("libssl32.dll");
\r
128 || !(p_SSL_load_error_strings = (_SSL_load_error_strings)GetProcAddress(g_hOpenSSL, "SSL_load_error_strings"))
\r
129 || !(p_SSL_library_init = (_SSL_library_init)GetProcAddress(g_hOpenSSL, "SSL_library_init"))
\r
130 || !(p_SSLv23_method = (_SSLv23_method)GetProcAddress(g_hOpenSSL, "SSLv23_method"))
\r
131 || !(p_SSL_CTX_new = (_SSL_CTX_new)GetProcAddress(g_hOpenSSL, "SSL_CTX_new"))
\r
132 || !(p_SSL_CTX_free = (_SSL_CTX_free)GetProcAddress(g_hOpenSSL, "SSL_CTX_free"))
\r
133 || !(p_SSL_new = (_SSL_new)GetProcAddress(g_hOpenSSL, "SSL_new"))
\r
134 || !(p_SSL_free = (_SSL_free)GetProcAddress(g_hOpenSSL, "SSL_free"))
\r
135 || !(p_SSL_shutdown = (_SSL_shutdown)GetProcAddress(g_hOpenSSL, "SSL_shutdown"))
\r
136 || !(p_SSL_get_fd = (_SSL_get_fd)GetProcAddress(g_hOpenSSL, "SSL_get_fd"))
\r
137 || !(p_SSL_set_fd = (_SSL_set_fd)GetProcAddress(g_hOpenSSL, "SSL_set_fd"))
\r
138 || !(p_SSL_accept = (_SSL_accept)GetProcAddress(g_hOpenSSL, "SSL_accept"))
\r
139 || !(p_SSL_connect = (_SSL_connect)GetProcAddress(g_hOpenSSL, "SSL_connect"))
\r
140 || !(p_SSL_write = (_SSL_write)GetProcAddress(g_hOpenSSL, "SSL_write"))
\r
141 || !(p_SSL_peek = (_SSL_peek)GetProcAddress(g_hOpenSSL, "SSL_peek"))
\r
142 || !(p_SSL_read = (_SSL_read)GetProcAddress(g_hOpenSSL, "SSL_read"))
\r
143 || !(p_SSL_get_error = (_SSL_get_error)GetProcAddress(g_hOpenSSL, "SSL_get_error"))
\r
144 || !(p_SSL_get_peer_certificate = (_SSL_get_peer_certificate)GetProcAddress(g_hOpenSSL, "SSL_get_peer_certificate"))
\r
145 || !(p_SSL_get_verify_result = (_SSL_get_verify_result)GetProcAddress(g_hOpenSSL, "SSL_get_verify_result"))
\r
146 || !(p_SSL_get_session = (_SSL_get_session)GetProcAddress(g_hOpenSSL, "SSL_get_session"))
\r
147 || !(p_SSL_set_session = (_SSL_set_session)GetProcAddress(g_hOpenSSL, "SSL_set_session"))
\r
148 || !(p_SSL_CTX_get_cert_store = (_SSL_CTX_get_cert_store)GetProcAddress(g_hOpenSSL, "SSL_CTX_get_cert_store")))
\r
151 FreeLibrary(g_hOpenSSL);
\r
155 g_hOpenSSLCommon = LoadLibrary("libeay32.dll");
\r
156 if(!g_hOpenSSLCommon
\r
157 || !(p_BIO_s_mem = (_BIO_s_mem)GetProcAddress(g_hOpenSSLCommon, "BIO_s_mem"))
\r
158 || !(p_BIO_new = (_BIO_new)GetProcAddress(g_hOpenSSLCommon, "BIO_new"))
\r
159 || !(p_BIO_free = (_BIO_free)GetProcAddress(g_hOpenSSLCommon, "BIO_free"))
\r
160 || !(p_BIO_new_mem_buf = (_BIO_new_mem_buf)GetProcAddress(g_hOpenSSLCommon, "BIO_new_mem_buf"))
\r
161 || !(p_BIO_ctrl = (_BIO_ctrl)GetProcAddress(g_hOpenSSLCommon, "BIO_ctrl"))
\r
162 || !(p_X509_free = (_X509_free)GetProcAddress(g_hOpenSSLCommon, "X509_free"))
\r
163 || !(p_X509_print_ex = (_X509_print_ex)GetProcAddress(g_hOpenSSLCommon, "X509_print_ex"))
\r
164 || !(p_X509_get_subject_name = (_X509_get_subject_name)GetProcAddress(g_hOpenSSLCommon, "X509_get_subject_name"))
\r
165 || !(p_X509_NAME_print_ex = (_X509_NAME_print_ex)GetProcAddress(g_hOpenSSLCommon, "X509_NAME_print_ex"))
\r
166 || !(p_PEM_read_bio_X509 = (_PEM_read_bio_X509)GetProcAddress(g_hOpenSSLCommon, "PEM_read_bio_X509"))
\r
167 || !(p_X509_STORE_add_cert = (_X509_STORE_add_cert)GetProcAddress(g_hOpenSSLCommon, "X509_STORE_add_cert")))
\r
170 FreeLibrary(g_hOpenSSL);
\r
172 if(g_hOpenSSLCommon)
\r
173 FreeLibrary(g_hOpenSSLCommon);
\r
174 g_hOpenSSLCommon = NULL;
\r
177 InitializeCriticalSection(&g_OpenSSLLock);
\r
178 p_SSL_load_error_strings();
\r
179 p_SSL_library_init();
\r
180 SetSSLTimeoutCallback(60000, DefaultSSLTimeoutCallback);
\r
181 SetSSLConfirmCallback(DefaultSSLConfirmCallback);
\r
182 g_bOpenSSLLoaded = TRUE;
\r
190 if(!g_bOpenSSLLoaded)
\r
192 EnterCriticalSection(&g_OpenSSLLock);
\r
193 for(i = 0; i < MAX_SSL_SOCKET; i++)
\r
195 if(g_pOpenSSLHandle[i])
\r
197 p_SSL_shutdown(g_pOpenSSLHandle[i]);
\r
198 p_SSL_free(g_pOpenSSLHandle[i]);
\r
199 g_pOpenSSLHandle[i] = NULL;
\r
203 p_SSL_CTX_free(g_pOpenSSLCTX);
\r
204 g_pOpenSSLCTX = NULL;
\r
205 FreeLibrary(g_hOpenSSL);
\r
207 FreeLibrary(g_hOpenSSLCommon);
\r
208 g_hOpenSSLCommon = NULL;
\r
209 LeaveCriticalSection(&g_OpenSSLLock);
\r
210 DeleteCriticalSection(&g_OpenSSLLock);
\r
211 g_bOpenSSLLoaded = FALSE;
\r
214 // OpenSSLが使用可能かどうか確認
\r
215 BOOL IsOpenSSLLoaded()
\r
217 return g_bOpenSSLLoaded;
\r
220 SSL** GetUnusedSSLPointer()
\r
223 for(i = 0; i < MAX_SSL_SOCKET; i++)
\r
225 if(!g_pOpenSSLHandle[i])
\r
226 return &g_pOpenSSLHandle[i];
\r
231 SSL** FindSSLPointerFromSocket(SOCKET s)
\r
234 for(i = 0; i < MAX_SSL_SOCKET; i++)
\r
236 if(g_pOpenSSLHandle[i])
\r
238 if(p_SSL_get_fd(g_pOpenSSLHandle[i]) == s)
\r
239 return &g_pOpenSSLHandle[i];
\r
245 BOOL ConfirmSSLCertificate(SSL* pSSL, BOOL* pbAborted)
\r
261 if(pX509 = p_SSL_get_peer_certificate(pSSL))
\r
263 if(pBIO = p_BIO_new(p_BIO_s_mem()))
\r
265 p_X509_print_ex(pBIO, pX509, 0, XN_FLAG_RFC2253);
\r
266 if((Length = p_BIO_ctrl(pBIO, BIO_CTRL_INFO, 0, &pBuffer)) > 0)
\r
268 if(pData = (char*)malloc(Length + sizeof(char)))
\r
270 memcpy(pData, pBuffer, Length);
\r
271 *(char*)((size_t)pData + Length) = '\0';
\r
276 if(pBIO = p_BIO_new(p_BIO_s_mem()))
\r
278 p_X509_NAME_print_ex(pBIO, p_X509_get_subject_name(pX509), 0, XN_FLAG_RFC2253);
\r
279 if((Length = p_BIO_ctrl(pBIO, BIO_CTRL_INFO, 0, &pBuffer)) > 0)
\r
281 if(pSubject = (char*)malloc(Length + sizeof(char)))
\r
283 memcpy(pSubject, pBuffer, Length);
\r
284 *(char*)((size_t)pSubject + Length) = '\0';
\r
289 p_X509_free(pX509);
\r
291 if(pX509 && p_SSL_get_verify_result(pSSL) == X509_V_OK)
\r
296 if(strncmp(pCN, "CN=", strlen("CN=")) == 0)
\r
298 pCN += strlen("CN=");
\r
299 if(p = strchr(pCN, ','))
\r
303 if(pCN = strchr(pCN, ','))
\r
306 bResult = g_pOpenSSLConfirmCallback(pbAborted, bVerified, pData, pCN);
\r
314 void SetSSLTimeoutCallback(DWORD Timeout, LPSSLTIMEOUTCALLBACK pCallback)
\r
316 if(!g_bOpenSSLLoaded)
\r
318 EnterCriticalSection(&g_OpenSSLLock);
\r
319 g_OpenSSLTimeout = Timeout;
\r
320 g_pOpenSSLTimeoutCallback = pCallback;
\r
321 LeaveCriticalSection(&g_OpenSSLLock);
\r
324 void SetSSLConfirmCallback(LPSSLCONFIRMCALLBACK pCallback)
\r
326 if(!g_bOpenSSLLoaded)
\r
328 EnterCriticalSection(&g_OpenSSLLock);
\r
329 g_pOpenSSLConfirmCallback = pCallback;
\r
330 LeaveCriticalSection(&g_OpenSSLLock);
\r
335 BOOL SetSSLRootCertificate(const void* pData, DWORD Length)
\r
338 X509_STORE* pStore;
\r
344 if(!g_bOpenSSLLoaded)
\r
347 EnterCriticalSection(&g_OpenSSLLock);
\r
349 g_pOpenSSLCTX = p_SSL_CTX_new(p_SSLv23_method());
\r
352 if(pStore = p_SSL_CTX_get_cert_store(g_pOpenSSLCTX))
\r
363 if(memcmp(p, "-----BEGIN CERTIFICATE-----", 27) == 0)
\r
370 if(memcmp(p, "-----END CERTIFICATE-----", 25) == 0)
\r
375 if(pBIO = p_BIO_new_mem_buf(pBegin, (int)((size_t)pEnd - (size_t)pBegin)))
\r
377 if(pX509 = p_PEM_read_bio_X509(pBIO, NULL, NULL, NULL))
\r
379 if(p_X509_STORE_add_cert(pStore, pX509) == 1)
\r
381 p_X509_free(pX509);
\r
393 LeaveCriticalSection(&g_OpenSSLLock);
\r
399 BOOL IsHostNameMatched(LPCSTR HostName, LPCSTR CommonName)
\r
402 const char* pAsterisk;
\r
403 size_t BeforeAsterisk;
\r
404 const char* pBeginAsterisk;
\r
405 const char* pEndAsterisk;
\r
408 if(HostName && CommonName)
\r
410 if(pAsterisk = strchr(CommonName, '*'))
\r
412 BeforeAsterisk = ((size_t)pAsterisk - (size_t)CommonName) / sizeof(char);
\r
413 pBeginAsterisk = HostName + BeforeAsterisk;
\r
414 while(*pAsterisk == '*')
\r
418 pEndAsterisk = HostName + strlen(HostName) - strlen(pAsterisk);
\r
419 // "*"より前は大文字小文字を無視して完全一致
\r
420 if(_strnicmp(HostName, CommonName, BeforeAsterisk) == 0)
\r
422 // "*"より後は大文字小文字を無視して完全一致
\r
423 if(_stricmp(pEndAsterisk, pAsterisk) == 0)
\r
425 // "*"と一致する範囲に"."が含まれてはならない
\r
426 pDot = strchr(pBeginAsterisk, '.');
\r
427 if(!pDot || pDot >= pEndAsterisk)
\r
432 else if(_stricmp(HostName, CommonName) == 0)
\r
439 BOOL AttachSSL(SOCKET s, SOCKET parent, BOOL* pbAborted)
\r
445 SSL_SESSION* pSession;
\r
448 if(!g_bOpenSSLLoaded)
\r
451 Time = timeGetTime();
\r
452 EnterCriticalSection(&g_OpenSSLLock);
\r
454 g_pOpenSSLCTX = p_SSL_CTX_new(p_SSLv23_method());
\r
457 if(ppSSL = GetUnusedSSLPointer())
\r
459 if(*ppSSL = p_SSL_new(g_pOpenSSLCTX))
\r
461 if(p_SSL_set_fd(*ppSSL, s) != 0)
\r
463 if(parent != INVALID_SOCKET)
\r
465 if(ppSSLParent = FindSSLPointerFromSocket(parent))
\r
467 if(pSession = p_SSL_get_session(*ppSSLParent))
\r
469 if(p_SSL_set_session(*ppSSL, pSession) == 1)
\r
475 // SSLのネゴシエーションには時間がかかる場合がある
\r
479 Return = p_SSL_connect(*ppSSL);
\r
482 Error = p_SSL_get_error(*ppSSL, Return);
\r
483 if(Error == SSL_ERROR_WANT_READ || Error == SSL_ERROR_WANT_WRITE)
\r
485 LeaveCriticalSection(&g_OpenSSLLock);
\r
486 if(g_pOpenSSLTimeoutCallback(pbAborted) || (g_OpenSSLTimeout > 0 && timeGetTime() - Time >= g_OpenSSLTimeout))
\r
488 EnterCriticalSection(&g_OpenSSLLock);
\r
495 if(ConfirmSSLCertificate(*ppSSL, pbAborted))
\r
500 LeaveCriticalSection(&g_OpenSSLLock);
\r
503 EnterCriticalSection(&g_OpenSSLLock);
\r
508 LeaveCriticalSection(&g_OpenSSLLock);
\r
510 EnterCriticalSection(&g_OpenSSLLock);
\r
515 LeaveCriticalSection(&g_OpenSSLLock);
\r
517 EnterCriticalSection(&g_OpenSSLLock);
\r
522 LeaveCriticalSection(&g_OpenSSLLock);
\r
527 BOOL DetachSSL(SOCKET s)
\r
531 if(!g_bOpenSSLLoaded)
\r
534 EnterCriticalSection(&g_OpenSSLLock);
\r
535 if(ppSSL = FindSSLPointerFromSocket(s))
\r
537 p_SSL_shutdown(*ppSSL);
\r
538 p_SSL_free(*ppSSL);
\r
542 LeaveCriticalSection(&g_OpenSSLLock);
\r
546 // SSLとしてマークされているか確認
\r
547 // マークされていればTRUEを返す
\r
548 BOOL IsSSLAttached(SOCKET s)
\r
551 if(!g_bOpenSSLLoaded)
\r
553 EnterCriticalSection(&g_OpenSSLLock);
\r
554 ppSSL = FindSSLPointerFromSocket(s);
\r
555 LeaveCriticalSection(&g_OpenSSLLock);
\r
561 SOCKET FTPS_socket(int af, int type, int protocol)
\r
563 return socket(af, type, protocol);
\r
566 int FTPS_bind(SOCKET s, const struct sockaddr *addr, int namelen)
\r
568 return bind(s, addr, namelen);
\r
571 int FTPS_listen(SOCKET s, int backlog)
\r
573 return listen(s, backlog);
\r
577 // ただし初めからSSLのネゴシエーションを行う
\r
578 SOCKET FTPS_accept(SOCKET s, struct sockaddr *addr, int *addrlen)
\r
582 r = accept(s, addr, addrlen);
\r
584 if(!AttachSSL(r, INVALID_SOCKET, &bAborted))
\r
587 return INVALID_SOCKET;
\r
593 // ただし初めからSSLのネゴシエーションを行う
\r
594 int FTPS_connect(SOCKET s, const struct sockaddr *name, int namelen)
\r
598 r = connect(s, name, namelen);
\r
600 if(!AttachSSL(r, INVALID_SOCKET, &bAborted))
\r
601 return SOCKET_ERROR;
\r
605 // closesocket相当の関数
\r
606 int FTPS_closesocket(SOCKET s)
\r
609 return closesocket(s);
\r
613 int FTPS_send(SOCKET s, const char * buf, int len, int flags)
\r
616 if(!g_bOpenSSLLoaded)
\r
617 return send(s, buf, len, flags);
\r
618 EnterCriticalSection(&g_OpenSSLLock);
\r
619 ppSSL = FindSSLPointerFromSocket(s);
\r
620 LeaveCriticalSection(&g_OpenSSLLock);
\r
622 return send(s, buf, len, flags);
\r
623 return p_SSL_write(*ppSSL, buf, len);
\r
627 int FTPS_recv(SOCKET s, char * buf, int len, int flags)
\r
630 if(!g_bOpenSSLLoaded)
\r
631 return recv(s, buf, len, flags);
\r
632 EnterCriticalSection(&g_OpenSSLLock);
\r
633 ppSSL = FindSSLPointerFromSocket(s);
\r
634 LeaveCriticalSection(&g_OpenSSLLock);
\r
636 return recv(s, buf, len, flags);
\r
637 if(flags & MSG_PEEK)
\r
638 return p_SSL_peek(*ppSSL, buf, len);
\r
639 return p_SSL_read(*ppSSL, buf, len);
\r
653 } GETHOSTBYNAMEDATA;
\r
655 DWORD WINAPI WSAAsyncGetHostByNameIPv6ThreadProc(LPVOID lpParameter)
\r
657 GETHOSTBYNAMEDATA* pData;
\r
658 struct hostent* pHost;
\r
659 struct addrinfo* pAddr;
\r
660 struct addrinfo* p;
\r
662 pData = (GETHOSTBYNAMEDATA*)lpParameter;
\r
663 if(getaddrinfo(pData->name, NULL, NULL, &pAddr) == 0)
\r
668 if(p->ai_family == pData->Family)
\r
670 switch(p->ai_family)
\r
673 pHost = (struct hostent*)pData->buf;
\r
674 if((size_t)pData->buflen >= sizeof(struct hostent) + sizeof(char*) * 2 + sizeof(struct in_addr)
\r
675 && p->ai_addrlen >= sizeof(struct sockaddr_in))
\r
677 pHost->h_name = NULL;
\r
678 pHost->h_aliases = NULL;
\r
679 pHost->h_addrtype = p->ai_family;
\r
680 pHost->h_length = sizeof(struct in_addr);
\r
681 pHost->h_addr_list = (char**)(&pHost[1]);
\r
682 pHost->h_addr_list[0] = (char*)(&pHost->h_addr_list[2]);
\r
683 pHost->h_addr_list[1] = NULL;
\r
684 memcpy(pHost->h_addr_list[0], &((struct sockaddr_in*)p->ai_addr)->sin_addr, sizeof(struct in_addr));
\r
685 PostMessage(pData->hWnd, pData->wMsg, (WPARAM)pData->h, (LPARAM)(sizeof(struct hostent) + sizeof(char*) * 2 + p->ai_addrlen));
\r
688 PostMessage(pData->hWnd, pData->wMsg, (WPARAM)pData->h, (LPARAM)(WSAENOBUFS << 16));
\r
691 pHost = (struct hostent*)pData->buf;
\r
692 if((size_t)pData->buflen >= sizeof(struct hostent) + sizeof(char*) * 2 + sizeof(struct in6_addr)
\r
693 && p->ai_addrlen >= sizeof(struct sockaddr_in6))
\r
695 pHost->h_name = NULL;
\r
696 pHost->h_aliases = NULL;
\r
697 pHost->h_addrtype = p->ai_family;
\r
698 pHost->h_length = sizeof(struct in6_addr);
\r
699 pHost->h_addr_list = (char**)(&pHost[1]);
\r
700 pHost->h_addr_list[0] = (char*)(&pHost->h_addr_list[2]);
\r
701 pHost->h_addr_list[1] = NULL;
\r
702 memcpy(pHost->h_addr_list[0], &((struct sockaddr_in6*)p->ai_addr)->sin6_addr, sizeof(struct in6_addr));
\r
703 PostMessage(pData->hWnd, pData->wMsg, (WPARAM)pData->h, (LPARAM)(sizeof(struct hostent) + sizeof(char*) * 2 + p->ai_addrlen));
\r
706 PostMessage(pData->hWnd, pData->wMsg, (WPARAM)pData->h, (LPARAM)(WSAENOBUFS << 16));
\r
715 PostMessage(pData->hWnd, pData->wMsg, (WPARAM)pData->h, (LPARAM)(ERROR_INVALID_FUNCTION << 16));
\r
716 freeaddrinfo(pAddr);
\r
719 PostMessage(pData->hWnd, pData->wMsg, (WPARAM)pData->h, (LPARAM)(ERROR_INVALID_FUNCTION << 16));
\r
722 // CreateThreadが返すハンドルが重複するのを回避
\r
727 // IPv6対応のWSAAsyncGetHostByName相当の関数
\r
728 // FamilyにはAF_INETまたはAF_INET6を指定可能
\r
730 HANDLE WSAAsyncGetHostByNameIPv6(HWND hWnd, u_int wMsg, const char * name, char * buf, int buflen, short Family)
\r
733 GETHOSTBYNAMEDATA* pData;
\r
735 if(pData = malloc(sizeof(GETHOSTBYNAMEDATA)))
\r
737 pData->hWnd = hWnd;
\r
738 pData->wMsg = wMsg;
\r
739 if(pData->name = malloc(sizeof(char) * (strlen(name) + 1)))
\r
741 strcpy(pData->name, name);
\r
743 pData->buflen = buflen;
\r
744 pData->Family = Family;
\r
745 if(pData->h = CreateThread(NULL, 0, WSAAsyncGetHostByNameIPv6ThreadProc, pData, CREATE_SUSPENDED, NULL))
\r
747 ResumeThread(pData->h);
\r
748 hResult = pData->h;
\r
764 // WSAAsyncGetHostByNameIPv6用のWSACancelAsyncRequest相当の関数
\r
765 int WSACancelAsyncRequestIPv6(HANDLE hAsyncTaskHandle)
\r
768 Result = SOCKET_ERROR;
\r
769 if(TerminateThread(hAsyncTaskHandle, 0))
\r
774 char* AddressToStringIPv6(char* str, void* in6)
\r
784 p = (unsigned char*)in6;
\r
787 for(i = 0; i < 8; i++)
\r
789 for(j = i; j < 8; j++)
\r
791 if(p[j * 2] != 0 || p[j * 2 + 1] != 0)
\r
794 if(j - i > MaxZeroLen)
\r
797 MaxZeroLen = j - i;
\r
801 for(i = 0; i < 8; i++)
\r
809 else if(i < MaxZero || i >= MaxZero + MaxZeroLen)
\r
811 sprintf(Tmp, "%x", (((int)p[i * 2] & 0xff) << 8) | ((int)p[i * 2 + 1] & 0xff));
\r
820 // IPv6対応のinet_ntoa相当の関数
\r
822 char* inet6_ntoa(struct in6_addr in6)
\r
825 static char Adrs[40];
\r
827 memset(Adrs, 0, sizeof(Adrs));
\r
828 pResult = AddressToStringIPv6(Adrs, &in6);
\r
832 // IPv6対応のinet_addr相当の関数
\r
834 struct in6_addr inet6_addr(const char* cp)
\r
836 struct in6_addr Result;
\r
840 memset(&Result, 0, sizeof(Result));
\r
842 for(i = 0; i < 8; i++)
\r
846 memset(&Result, 0xff, sizeof(Result));
\r
851 if(strncmp(cp, ":", 1) == 0)
\r
854 if(i == 0 && strncmp(cp, ":", 1) == 0)
\r
858 while(p = strstr(p, ":"))
\r
866 Result.u.Word[i] = (USHORT)strtol(cp, &p, 16);
\r
867 Result.u.Word[i] = ((Result.u.Word[i] & 0xff00) >> 8) | ((Result.u.Word[i] & 0x00ff) << 8);
\r
868 if(strncmp(p, ":", 1) != 0 && strlen(p) > 0)
\r
870 memset(&Result, 0xff, sizeof(Result));
\r
873 if(cp = strstr(cp, ":"))
\r
881 BOOL ConvertDomainNameToPunycode(LPSTR Output, DWORD Count, LPCSTR Input)
\r
884 punycode_uint* pUnicode;
\r
887 LPCSTR InputString;
\r
888 punycode_uint Length;
\r
889 punycode_uint OutputLength;
\r
891 if(pUnicode = malloc(sizeof(punycode_uint) * strlen(Input)))
\r
895 InputString = Input;
\r
897 while(*InputString != '\0')
\r
899 *p = (punycode_uint)GetNextCharM(InputString, &InputString);
\r
907 if(Count >= strlen("xn--") + 1)
\r
909 strcpy(Output, "xn--");
\r
910 OutputLength = Count - strlen("xn--");
\r
911 if(punycode_encode(Length, pUnicode, NULL, (punycode_uint*)&OutputLength, Output + strlen("xn--")) == punycode_success)
\r
913 Output[strlen("xn--") + OutputLength] = '\0';
\r
922 if(Count >= strlen(Input) + 1)
\r
924 strcpy(Output, Input);
\r
931 BOOL ConvertNameToPunycode(LPSTR Output, LPCSTR Input)
\r
940 Length = strlen(Input);
\r
941 if(pm0 = AllocateStringM(Length + 1))
\r
943 if(pm1 = AllocateStringM(Length * 4 + 1))
\r
945 strcpy(pm0, Input);
\r
949 if(pNext = strchr(p, '.'))
\r
954 if(ConvertDomainNameToPunycode(pm1, Length * 4, p))
\r
955 strcat(Output, pm1);
\r
957 strcat(Output, ".");
\r
961 FreeDuplicatedString(pm1);
\r
963 FreeDuplicatedString(pm0);
\r
968 HANDLE WSAAsyncGetHostByNameM(HWND hWnd, u_int wMsg, const char * name, char * buf, int buflen)
\r
972 if(pa0 = AllocateStringA(strlen(name) * 4))
\r
974 if(ConvertNameToPunycode(pa0, name))
\r
975 r = WSAAsyncGetHostByName(hWnd, wMsg, pa0, buf, buflen);
\r
977 FreeDuplicatedString(pa0);
\r
981 HANDLE WSAAsyncGetHostByNameIPv6M(HWND hWnd, u_int wMsg, const char * name, char * buf, int buflen, short Family)
\r
985 if(pa0 = AllocateStringA(strlen(name) * 4))
\r
987 if(ConvertNameToPunycode(pa0, name))
\r
988 r = WSAAsyncGetHostByNameIPv6(hWnd, wMsg, pa0, buf, buflen, Family);
\r
990 FreeDuplicatedString(pa0);
\r
996 typedef void* (__cdecl* _SFTP_Create)();
\r
997 typedef void (__cdecl* _SFTP_Destroy)(void*);
\r
998 typedef BOOL (__cdecl* _SFTP_IsExited)(void*);
\r
999 typedef BOOL (__cdecl* _SFTP_SetTimeoutCallback)(void*, void*);
\r
1000 typedef size_t (__cdecl* _SFTP_PeekStdOut)(void*, void*, size_t);
\r
1001 typedef size_t (__cdecl* _SFTP_ReadStdOut)(void*, void*, size_t);
\r
1002 typedef size_t (__cdecl* _SFTP_WriteStdIn)(void*, const void*, size_t);
\r
1003 typedef size_t (__cdecl* _SFTP_PeekDataOut)(void*, void*, size_t);
\r
1004 typedef size_t (__cdecl* _SFTP_ReadDataOut)(void*, void*, size_t);
\r
1005 typedef size_t (__cdecl* _SFTP_WriteDataIn)(void*, const void*, size_t);
\r
1006 typedef BOOL (__cdecl* _SFTP_SetFilePosition)(void*, LONGLONG);
\r
1008 _SFTP_Create p_SFTP_Create;
\r
1009 _SFTP_Destroy p_SFTP_Destroy;
\r
1010 _SFTP_IsExited p_SFTP_IsExited;
\r
1011 _SFTP_SetTimeoutCallback p_SFTP_SetTimeoutCallback;
\r
1012 _SFTP_PeekStdOut p_SFTP_PeekStdOut;
\r
1013 _SFTP_ReadStdOut p_SFTP_ReadStdOut;
\r
1014 _SFTP_WriteStdIn p_SFTP_WriteStdIn;
\r
1015 _SFTP_PeekDataOut p_SFTP_PeekDataOut;
\r
1016 _SFTP_ReadDataOut p_SFTP_ReadDataOut;
\r
1017 _SFTP_WriteDataIn p_SFTP_WriteDataIn;
\r
1018 _SFTP_SetFilePosition p_SFTP_SetFilePosition;
\r
1028 char Password[1024];
\r
1031 #define MAX_SFTP_SOCKET 16
\r
1033 BOOL g_bPuTTYLoaded;
\r
1035 CRITICAL_SECTION g_PuTTYLock;
\r
1036 SFTPDATA g_SFTPData[MAX_SFTP_SOCKET];
\r
1042 if(g_bPuTTYLoaded)
\r
1044 #ifdef ENABLE_PROCESS_PROTECTION
\r
1045 // ビルドしたputty.dllに合わせてSHA1ハッシュ値を変更すること
\r
1046 RegisterTrustedModuleSHA1Hash("\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00");
\r
1049 // g_hPuTTY = LoadLibrary("putty.dll");
\r
1050 g_hPuTTY = LoadLibrary("C:\\SourceForge\\ffftp\\putty\\Debug\\PuTTY.dll");
\r
1052 || !(p_SFTP_Create = (_SFTP_Create)GetProcAddress(g_hPuTTY, "SFTP_Create"))
\r
1053 || !(p_SFTP_Destroy = (_SFTP_Destroy)GetProcAddress(g_hPuTTY, "SFTP_Destroy"))
\r
1054 || !(p_SFTP_IsExited = (_SFTP_IsExited)GetProcAddress(g_hPuTTY, "SFTP_IsExited"))
\r
1055 || !(p_SFTP_SetTimeoutCallback = (_SFTP_SetTimeoutCallback)GetProcAddress(g_hPuTTY, "SFTP_SetTimeoutCallback"))
\r
1056 || !(p_SFTP_PeekStdOut = (_SFTP_PeekStdOut)GetProcAddress(g_hPuTTY, "SFTP_PeekStdOut"))
\r
1057 || !(p_SFTP_ReadStdOut = (_SFTP_ReadStdOut)GetProcAddress(g_hPuTTY, "SFTP_ReadStdOut"))
\r
1058 || !(p_SFTP_WriteStdIn = (_SFTP_WriteStdIn)GetProcAddress(g_hPuTTY, "SFTP_WriteStdIn"))
\r
1059 || !(p_SFTP_PeekDataOut = (_SFTP_PeekDataOut)GetProcAddress(g_hPuTTY, "SFTP_PeekDataOut"))
\r
1060 || !(p_SFTP_ReadDataOut = (_SFTP_ReadDataOut)GetProcAddress(g_hPuTTY, "SFTP_ReadDataOut"))
\r
1061 || !(p_SFTP_WriteDataIn = (_SFTP_WriteDataIn)GetProcAddress(g_hPuTTY, "SFTP_WriteDataIn"))
\r
1062 || !(p_SFTP_SetFilePosition = (_SFTP_SetFilePosition)GetProcAddress(g_hPuTTY, "SFTP_SetFilePosition")))
\r
1065 FreeLibrary(g_hPuTTY);
\r
1069 for(i = 0; i < MAX_SFTP_SOCKET; i++)
\r
1071 g_SFTPData[i].Control = INVALID_SOCKET;
\r
1072 g_SFTPData[i].Data = INVALID_SOCKET;
\r
1074 InitializeCriticalSection(&g_PuTTYLock);
\r
1075 g_bPuTTYLoaded = TRUE;
\r
1083 if(!g_bPuTTYLoaded)
\r
1085 EnterCriticalSection(&g_PuTTYLock);
\r
1086 for(i = 0; i < MAX_SFTP_SOCKET; i++)
\r
1088 if(g_SFTPData[i].Control != INVALID_SOCKET)
\r
1090 closesocket(g_SFTPData[i].Control);
\r
1091 g_SFTPData[i].Control = INVALID_SOCKET;
\r
1092 p_SFTP_Destroy(g_SFTPData[i].Handle);
\r
1094 if(g_SFTPData[i].Data != INVALID_SOCKET)
\r
1096 closesocket(g_SFTPData[i].Data);
\r
1097 g_SFTPData[i].Data = INVALID_SOCKET;
\r
1100 FreeLibrary(g_hPuTTY);
\r
1102 LeaveCriticalSection(&g_PuTTYLock);
\r
1103 DeleteCriticalSection(&g_PuTTYLock);
\r
1104 g_bPuTTYLoaded = FALSE;
\r
1107 // PuTTYが使用可能かどうか確認
\r
1108 BOOL IsPuTTYLoaded()
\r
1110 return g_bPuTTYLoaded;
\r
1113 SFTPDATA* GetUnusedSFTPData()
\r
1116 for(i = 0; i < MAX_SFTP_SOCKET; i++)
\r
1118 if(g_SFTPData[i].Control == INVALID_SOCKET)
\r
1120 memset(&g_SFTPData[i], 0, sizeof(SFTPDATA));
\r
1121 return &g_SFTPData[i];
\r
1127 SFTPDATA* FindSFTPDataFromSocket(SOCKET s)
\r
1130 for(i = 0; i < MAX_SFTP_SOCKET; i++)
\r
1132 if(g_SFTPData[i].Control == s || g_SFTPData[i].Data == s)
\r
1133 return &g_SFTPData[i];
\r
1138 // SFTPとしてマークされているか確認
\r
1139 // マークされていればTRUEを返す
\r
1140 BOOL IsSFTPAttached(SOCKET s)
\r
1142 SFTPDATA* pSFTPData;
\r
1143 if(!g_bPuTTYLoaded)
\r
1145 EnterCriticalSection(&g_PuTTYLock);
\r
1146 pSFTPData = FindSFTPDataFromSocket(s);
\r
1147 LeaveCriticalSection(&g_PuTTYLock);
\r
1153 // コントロール用の仮想的なソケットを取得
\r
1154 // 識別子としてダミーのソケットを返す
\r
1155 SOCKET SFTP_socket(int af, int type, int protocol)
\r
1158 SFTPDATA* pSFTPData;
\r
1159 if(!g_bPuTTYLoaded)
\r
1160 return INVALID_SOCKET;
\r
1161 r = INVALID_SOCKET;
\r
1162 EnterCriticalSection(&g_PuTTYLock);
\r
1163 if(pSFTPData = GetUnusedSFTPData())
\r
1165 r = socket(af, type, protocol);
\r
1166 pSFTPData->Control = r;
\r
1167 pSFTPData->Data = INVALID_SOCKET;
\r
1168 pSFTPData->Handle = p_SFTP_Create();
\r
1170 LeaveCriticalSection(&g_PuTTYLock);
\r
1174 int SFTP_bind(SOCKET s, const struct sockaddr *addr, int namelen)
\r
1176 return SOCKET_ERROR;
\r
1179 int SFTP_listen(SOCKET s, int backlog)
\r
1181 return SOCKET_ERROR;
\r
1185 SOCKET SFTP_accept(SOCKET s, struct sockaddr *addr, int *addrlen)
\r
1187 return INVALID_SOCKET;
\r
1191 int SFTP_connect(SOCKET s, const struct sockaddr *name, int namelen)
\r
1193 SFTPDATA* pSFTPData;
\r
1194 if(!g_bPuTTYLoaded)
\r
1195 return SOCKET_ERROR;
\r
1196 EnterCriticalSection(&g_PuTTYLock);
\r
1197 pSFTPData = FindSFTPDataFromSocket(s);
\r
1198 LeaveCriticalSection(&g_PuTTYLock);
\r
1200 return SOCKET_ERROR;
\r
1201 if(namelen == sizeof(struct sockaddr_in))
\r
1204 else if(namelen == sizeof(struct sockaddr_in6))
\r
1208 return SOCKET_ERROR;
\r
1212 // closesocket相当の関数
\r
1213 int SFTP_closesocket(SOCKET s)
\r
1215 SFTPDATA* pSFTPData;
\r
1216 if(!g_bPuTTYLoaded)
\r
1217 return SOCKET_ERROR;
\r
1218 EnterCriticalSection(&g_PuTTYLock);
\r
1219 if(pSFTPData = FindSFTPDataFromSocket(s))
\r
1221 if(pSFTPData->Control == s)
\r
1223 pSFTPData->Control = INVALID_SOCKET;
\r
1224 p_SFTP_Destroy(pSFTPData->Handle);
\r
1226 if(pSFTPData->Data == s)
\r
1227 pSFTPData->Data = INVALID_SOCKET;
\r
1229 LeaveCriticalSection(&g_PuTTYLock);
\r
1230 return closesocket(s);
\r
1234 int SFTP_send(SOCKET s, const char * buf, int len, int flags)
\r
1237 SFTPDATA* pSFTPData;
\r
1238 if(!g_bPuTTYLoaded)
\r
1239 return SOCKET_ERROR;
\r
1240 EnterCriticalSection(&g_PuTTYLock);
\r
1241 pSFTPData = FindSFTPDataFromSocket(s);
\r
1242 LeaveCriticalSection(&g_PuTTYLock);
\r
1244 return SOCKET_ERROR;
\r
1245 if(p_SFTP_IsExited(pSFTPData->Handle))
\r
1246 return SOCKET_ERROR;
\r
1248 if(pSFTPData->Control == s)
\r
1249 r = (int)p_SFTP_WriteStdIn(pSFTPData->Handle, buf, len);
\r
1250 else if(pSFTPData->Data == s)
\r
1251 r = (int)p_SFTP_WriteDataIn(pSFTPData->Handle, buf, len);
\r
1256 int SFTP_recv(SOCKET s, char * buf, int len, int flags)
\r
1259 SFTPDATA* pSFTPData;
\r
1260 if(!g_bPuTTYLoaded)
\r
1261 return SOCKET_ERROR;
\r
1262 EnterCriticalSection(&g_PuTTYLock);
\r
1263 pSFTPData = FindSFTPDataFromSocket(s);
\r
1264 LeaveCriticalSection(&g_PuTTYLock);
\r
1266 return SOCKET_ERROR;
\r
1267 if(p_SFTP_IsExited(pSFTPData->Handle))
\r
1268 return SOCKET_ERROR;
\r
1270 if(pSFTPData->Control == s)
\r
1272 if(flags & MSG_PEEK)
\r
1273 r = (int)p_SFTP_PeekStdOut(pSFTPData->Handle, buf, len);
\r
1275 r = (int)p_SFTP_ReadStdOut(pSFTPData->Handle, buf, len);
\r
1277 else if(pSFTPData->Data == s)
\r
1279 if(flags & MSG_PEEK)
\r
1280 r = (int)p_SFTP_PeekDataOut(pSFTPData->Handle, buf, len);
\r
1282 r = (int)p_SFTP_ReadDataOut(pSFTPData->Handle, buf, len);
\r
1287 BOOL SFTP_SetTimeoutCallback(SOCKET s, void* pCallback)
\r
1289 SFTPDATA* pSFTPData;
\r
1290 if(!g_bPuTTYLoaded)
\r
1292 EnterCriticalSection(&g_PuTTYLock);
\r
1293 pSFTPData = FindSFTPDataFromSocket(s);
\r
1294 LeaveCriticalSection(&g_PuTTYLock);
\r
1297 return p_SFTP_SetTimeoutCallback(pSFTPData->Handle, pCallback);
\r
1300 // データ用の仮想的なソケットを取得
\r
1301 // 識別子としてダミーのソケットを返す
\r
1302 SOCKET SFTP_GetDataHandle(SOCKET s, int af, int type, int protocol)
\r
1305 SFTPDATA* pSFTPData;
\r
1306 if(!g_bPuTTYLoaded)
\r
1307 return INVALID_SOCKET;
\r
1308 r = INVALID_SOCKET;
\r
1309 EnterCriticalSection(&g_PuTTYLock);
\r
1310 if(pSFTPData = FindSFTPDataFromSocket(s))
\r
1312 r = socket(af, type, protocol);
\r
1313 pSFTPData->Data = r;
\r
1315 LeaveCriticalSection(&g_PuTTYLock);
\r
1319 BOOL SFTP_SetFilePosition(SOCKET s, LONGLONG Position)
\r
1321 SFTPDATA* pSFTPData;
\r
1322 if(!g_bPuTTYLoaded)
\r
1324 EnterCriticalSection(&g_PuTTYLock);
\r
1325 pSFTPData = FindSFTPDataFromSocket(s);
\r
1326 LeaveCriticalSection(&g_PuTTYLock);
\r
1329 return p_SFTP_SetFilePosition(pSFTPData->Handle, Position);
\r