Головна сторінка Огляд Довідка
Увійти
RISCI_ATOM
/
harvey
дзеркало https://github.com/Harvey-OS/harvey.git
1
0
Відгалуження 0
Файли Проблеми 0 Wiki
Дерево: a41256def3
Гілки Теги
harvey
/
sys
/
man
/
2
/
pushtls

pushtls 4.4 KB
Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177 
  1. .TH PUSHTLS 2
    2. 

  2. .SH NAME
    3. 

  3. pushtls, tlsClient, tlsServer, initThumbprints, freeThumbprints, okThumbprint, readcert \- attach TLS1 or SSL3 encryption to a communication channel
    4. 

  4. .SH SYNOPSIS
    5. 

  5. .B #include <u.h>
    6. 

  6. .br
    7. 

  7. .B #include <libc.h>
    8. 

  8. .PP
    9. 

  9. .B
    10. 

  10. int			pushtls(int fd, char *hashalg, char *encalg,
    11. 

  11. .br
    12. 

  12. .B
    13. 

  13. 				int isclient, char *secret, char *dir)
    14. 

  14. .PP
    15. 

  15. .B #include <mp.h>
    16. 

  16. .br
    17. 

  17. .B #include <libsec.h>
    18. 

  18. .PP
    19. 

  19. .B
    20. 

  20. int			tlsClient(int fd, TLSconn *conn)
    21. 

  21. .PP
    22. 

  22. .B
    23. 

  23. int			tlsServer(int fd, TLSconn *conn)
    24. 

  24. .PP
    25. 

  25. .B
    26. 

  26. uchar		*readcert(char *filename, int *pcertlen)
    27. 

  27. .PP
    28. 

  28. .B
    29. 

  29. Thumbprint*	initThumbprints(char *ok, char *crl)
    30. 

  30. .PP
    31. 

  31. .B
    32. 

  32. void			freeThumbprints(Thumbprint *table)
    33. 

  33. .PP
    34. 

  34. .B
    35. 

  35. int			okThumbprint(uchar *hash, Thumbprint *table)
    36. 

  36. .SH DESCRIPTION
    37. 

  37. Transport Layer Security (TLS) comprises a record layer protocol,
    38. 

  38. doing message digesting and encrypting in the kernel,
    39. 

  39. and a handshake protocol,
    40. 

  40. doing initial authentication and secret creation at
    41. 

  41. user level and then starting a data channel in the record protocol.
    42. 

  42. TLS is nearly the same as SSL 3.0, and the software should interoperate
    43. 

  43. with implementations of either standard.
    44. 

  44. .PP
    45. 

  45. To use just the record layer, as described in
    46. 

  46. .IR tls (3),
    47. 

  47. call
    48. 

  48. .I pushtls
    49. 

  49. to open the record layer device, connect to the communications channel
    50. 

  50. .IR fd ,
    51. 

  51. and start up encryption and message authentication as specified
    52. 

  52. in
    53. 

  53. .IR hashalg ,
    54. 

  54. .IR encalg ,
    55. 

  55. and
    56. 

  56. .IR secret .
    57. 

  57. These parameters must have been arranged at the two ends of the
    58. 

  58. conversation by other means.
    59. 

  59. For example,
    60. 

  60. .I hashalg
    61. 

  61. could be
    62. 

  62. .BR sha1 ,
    63. 

  63. .I encalg
    64. 

  64. could be
    65. 

  65. .BR rc4_128 ,
    66. 

  66. and
    67. 

  67. .I secret
    68. 

  68. could be the base-64 encoding of two (client-to-server and server-to-client)
    69. 

  69. 20-byte digest keys and two corresponding 16-byte encryption keys.
    70. 

  70. .I Pushtls
    71. 

  71. returns a file descriptor for the TLS data channel.  Anything written to this
    72. 

  72. descriptor will get encrypted and authenticated and then written to the
    73. 

  73. file descriptor,
    74. 

  74. .IR fd .
    75. 

  75. If
    76. 

  76. .I dir
    77. 

  77. is non-zero, the path name of the connection directory is copied into
    78. 

  78. .IR dir .
    79. 

  79. This path name is guaranteed to be less than 40 bytes long.
    80. 

  80. .PP
    81. 

  81. Alternatively, call
    82. 

  82. .I tlsClient
    83. 

  83. to speak the full handshake protocol,
    84. 

  84. negotiate the algorithms and secrets,
    85. 

  85. and return a new data file descriptor for the data channel.
    86. 

  86. .I Conn
    87. 

  87. points to a (caller-allocated) struct
    88. 

  88. .EX
    89. 

  89.    typedef struct TLSconn{
    90. 

  90.       char dir[40];     // OUT    connection directory
    91. 

  91.       uchar *cert;      // IN/OUT certificate
    92. 

  92.       uchar *sessionID; // IN/OUT sessionID
    93. 

  93.       int certlen, sessionIDlen;
    94. 

  94.       void (*trace)(char*fmt, ...);
    95. 

  95.    } TLSconn;
    96. 

  96. .EE
    97. 

  97. defined in
    98. 

  98. .IR tls.h .
    99. 

  99. On input, the caller can provide options such as
    100. 

  100. .IR cert ,
    101. 

  101. the local certificate, and
    102. 

  102. .IR sessionID ,
    103. 

  103. used by a client to resume a previously negotiated security association.
    104. 

  104. On output, the connection directory is set, as with
    105. 

  105. .B listen
    106. 

  106. (see
    107. 

  107. .IR dial (2)).
    108. 

  108. The input
    109. 

  109. .I cert
    110. 

  110. is freed and a freshly allocated copy of the remote's certificate
    111. 

  111. is returned in
    112. 

  112. .IR conn ,
    113. 

  113. to be checked by the caller
    114. 

  114. according to its needs.  One mechanism is supplied by
    115. 

  115. .I initThumbprints
    116. 

  116. and
    117. 

  117. .I freeThumbprints
    118. 

  118. which allocate and free, respectively, a table of hashes
    119. 

  119. from files of known trusted and revoked certificates.
    120. 

  120. .I okThumbprint
    121. 

  121. confirms that a particular hash is in the table, as computed by
    122. 

  122. .PP
    123. 

  123. .EX
    124. 

  124.    uchar hash[SHA1dlen];
    125. 

  125.    conn = (TLSconn*)mallocz(sizeof *conn, 1);
    126. 

  126.    fd = tlsClient(fd, conn);
    127. 

  127.    sha1(conn->cert, conn->certlen, hash, nil);
    128. 

  128.    if(!okThumbprint(hash,table))
    129. 

  129.       exits("suspect server");
    130. 

  130.    ...application begins...
    131. 

  131. .EE
    132. 

  132. .PP
    133. 

  133. Call
    134. 

  134. .I tlsServer
    135. 

  135. to perform the corresponding function on the server side:
    136. 

  136. .PP
    137. 

  137. .EX
    138. 

  138.    fd = accept(lcfd, ldir);
    139. 

  139.    conn = (TLSconn*)mallocz(sizeof *conn, 1);
    140. 

  140.    conn->cert = readcert("cert.pem", &conn->certlen);
    141. 

  141.    fd = tlsServer(fd, conn);
    142. 

  142.    ...application begins...
    143. 

  143. .EE
    144. 

  144. The private key corresponding to
    145. 

  145. .I cert.pem
    146. 

  146. should have been previously loaded into factotum, for example by
    147. 

  147. .EX
    148. 

  148.    auth/secretpem key.pem > /mnt/factotum/ctl
    149. 

  149. .EE
    150. 

  150. .PP
    151. 

  151. .I Conn
    152. 

  152. is not required for the ongoing conversation and may
    153. 

  153. be freed by the application whenever convenient.
    154. 

  154. .SH FILES
    155. 

  155. .TP 
    156. 

  156. .B /sys/lib/tls
    157. 

  157. thumbprints of trusted services, maintained manually
    158. 

  158. .SH SOURCE
    159. 

  159. .B /sys/src/libc/9sys/pushtls.c
    160. 

  160. .br
    161. 

  161. .B /sys/src/libsec/port
    162. 

  162. .SH "SEE ALSO"
    163. 

  163. .IR dial (2),
    164. 

  164. .IR tls (3),
    165. 

  165. .IR factotum (4),
    166. 

  166. .IR thumbprint (6)
    167. 

  167. .SH DIAGNOSTICS
    168. 

  168. return \-1 on failure.
    169. 

  169. .SH BUGS
    170. 

  170. .PP
    171. 

  171. Client certificates and client sessionIDs are not yet
    172. 

  172. implemented.
    173. 

  173. .PP
    174. 

  174. Note that in the TLS protocol
    175. 

  175. .I sessionID
    176. 

  176. itself is public;  it is used as a pointer to
    177. 

  177. secrets stored in factotum.
    178.