• file
• latest
• revisions
• annotate
• diff
• comparison
• raw

src/ssl.lua@f7d2d78eb424 (annotated)

src/ssl.lua

Sat, 24 Jul 2010 13:40:16 +0100

author

Matthew Wild <mwild1@gmail.com>

date

Sat, 24 Jul 2010 13:40:16 +0100

changeset 0

f7d2d78eb424

child 14

1927b7b32faf

permissions

-rw-r--r--

Initial commit (LuaSec 0.4)

0 f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	1	------------------------------------------------------------------------------
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	2	-- LuaSec 0.4
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	3	-- Copyright (C) 2006-2009 Bruno Silvestre
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	4	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	5	------------------------------------------------------------------------------
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	6
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	7	module("ssl", package.seeall)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	8
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	9	require("ssl.core")
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	10	require("ssl.context")
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	11
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	12
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	13	_VERSION = "0.4"
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	14	_COPYRIGHT = "LuaSec 0.4 - Copyright (C) 2006-2009 Bruno Silvestre\n" ..
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	15	"LuaSocket 2.0.2 - Copyright (C) 2004-2007 Diego Nehab"
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	16
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	17	-- Export functions
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	18	rawconnection = core.rawconnection
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	19	rawcontext = context.rawcontext
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	20
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	21	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	22	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	23	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	24	local function optexec(func, param, ctx)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	25	if param then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	26	if type(param) == "table" then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	27	return func(ctx, unpack(param))
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	28	else
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	29	return func(ctx, param)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	30	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	31	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	32	return true
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	33	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	34
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	35	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	36	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	37	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	38	function newcontext(cfg)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	39	local succ, msg, ctx
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	40	-- Create the context
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	41	ctx, msg = context.create(cfg.protocol)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	42	if not ctx then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	43	-- Mode
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	44	succ, msg = context.setmode(ctx, cfg.mode)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	45	if not succ then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	46	-- Load the key
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	47	if cfg.key then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	48	succ, msg = context.loadkey(ctx, cfg.key, cfg.password)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	49	if not succ then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	50	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	51	-- Load the certificate
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	52	if cfg.certificate then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	53	succ, msg = context.loadcert(ctx, cfg.certificate)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	54	if not succ then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	55	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	56	-- Load the CA certificates
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	57	if cfg.cafile or cfg.capath then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	58	succ, msg = context.locations(ctx, cfg.cafile, cfg.capath)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	59	if not succ then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	60	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	61	-- Set the verification options
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	62	succ, msg = optexec(context.setverify, cfg.verify, ctx)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	63	if not succ then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	64	-- Set SSL options
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	65	succ, msg = optexec(context.setoptions, cfg.options, ctx)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	66	if not succ then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	67	-- Set the depth for certificate verification
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	68	if cfg.depth then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	69	succ, msg = context.setdepth(ctx, cfg.depth)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	70	if not succ then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	71	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	72	return ctx
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	73	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	74
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	75	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	76	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	77	--
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	78	function wrap(sock, cfg)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	79	local ctx, msg
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	80	if type(cfg) == "table" then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	81	ctx, msg = newcontext(cfg)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	82	if not ctx then return nil, msg end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	83	else
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	84	ctx = cfg
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	85	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	86	local s, msg = core.create(ctx)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	87	if s then
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	88	core.setfd(s, sock:getfd())
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	89	sock:setfd(core.invalidfd)
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	90	return s
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	91	end
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	92	return nil, msg
f7d2d78eb424 Initial commit (LuaSec 0.4) Matthew Wild <mwild1@gmail.com> parents: diff changeset	93	end