mirror of
https://github.com/php/php-src.git
synced 2024-09-22 02:17:32 +00:00
136 lines
4.7 KiB
C
136 lines
4.7 KiB
C
/*
|
|
+----------------------------------------------------------------------+
|
|
| Copyright (c) The PHP Group |
|
|
+----------------------------------------------------------------------+
|
|
| This source file is subject to version 3.01 of the PHP license, |
|
|
| that is bundled with this package in the file LICENSE, and is |
|
|
| available through the world-wide-web at the following url: |
|
|
| http://www.php.net/license/3_01.txt |
|
|
| If you did not receive a copy of the PHP license and are unable to |
|
|
| obtain it through the world-wide-web, please send a note to |
|
|
| license@php.net so we can mail you a copy immediately. |
|
|
+----------------------------------------------------------------------+
|
|
| Authors: Stig Venaas <venaas@php.net> |
|
|
| Wez Furlong <wez@thebrainroom.com |
|
|
+----------------------------------------------------------------------+
|
|
*/
|
|
|
|
#ifndef PHP_OPENSSL_H
|
|
#define PHP_OPENSSL_H
|
|
/* HAVE_OPENSSL would include SSL MySQL stuff */
|
|
#ifdef HAVE_OPENSSL_EXT
|
|
extern zend_module_entry openssl_module_entry;
|
|
#define phpext_openssl_ptr &openssl_module_entry
|
|
|
|
#include "php_version.h"
|
|
#define PHP_OPENSSL_VERSION PHP_VERSION
|
|
|
|
#include <openssl/opensslv.h>
|
|
#if defined(LIBRESSL_VERSION_NUMBER)
|
|
/* LibreSSL version check */
|
|
#if LIBRESSL_VERSION_NUMBER < 0x20700000L
|
|
#define PHP_OPENSSL_API_VERSION 0x10001
|
|
#else
|
|
#define PHP_OPENSSL_API_VERSION 0x10100
|
|
#endif
|
|
#else
|
|
/* OpenSSL version check */
|
|
#if OPENSSL_VERSION_NUMBER < 0x10002000L
|
|
#define PHP_OPENSSL_API_VERSION 0x10001
|
|
#elif OPENSSL_VERSION_NUMBER < 0x10100000L
|
|
#define PHP_OPENSSL_API_VERSION 0x10002
|
|
#else
|
|
#define PHP_OPENSSL_API_VERSION 0x10100
|
|
#endif
|
|
#endif
|
|
|
|
#define OPENSSL_RAW_DATA 1
|
|
#define OPENSSL_ZERO_PADDING 2
|
|
#define OPENSSL_DONT_ZERO_PAD_KEY 4
|
|
|
|
#define OPENSSL_ERROR_X509_PRIVATE_KEY_VALUES_MISMATCH 0x0B080074
|
|
|
|
/* Used for client-initiated handshake renegotiation DoS protection*/
|
|
#define OPENSSL_DEFAULT_RENEG_LIMIT 2
|
|
#define OPENSSL_DEFAULT_RENEG_WINDOW 300
|
|
#define OPENSSL_DEFAULT_STREAM_VERIFY_DEPTH 9
|
|
#define OPENSSL_DEFAULT_STREAM_CIPHERS "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:" \
|
|
"ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:" \
|
|
"DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:" \
|
|
"ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:" \
|
|
"ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:" \
|
|
"DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:" \
|
|
"AES256-GCM-SHA384:AES128:AES256:HIGH:!SSLv2:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!RC4:!ADH"
|
|
|
|
#include <openssl/err.h>
|
|
|
|
#ifdef PHP_WIN32
|
|
# define PHP_OPENSSL_API __declspec(dllexport)
|
|
#elif defined(__GNUC__) && __GNUC__ >= 4
|
|
# define PHP_OPENSSL_API __attribute__((visibility("default")))
|
|
#else
|
|
# define PHP_OPENSSL_API
|
|
#endif
|
|
|
|
struct php_openssl_errors {
|
|
int buffer[ERR_NUM_ERRORS];
|
|
int top;
|
|
int bottom;
|
|
};
|
|
|
|
ZEND_BEGIN_MODULE_GLOBALS(openssl)
|
|
struct php_openssl_errors *errors;
|
|
ZEND_END_MODULE_GLOBALS(openssl)
|
|
|
|
#define OPENSSL_G(v) ZEND_MODULE_GLOBALS_ACCESSOR(openssl, v)
|
|
|
|
#if defined(ZTS) && defined(COMPILE_DL_OPENSSL)
|
|
ZEND_TSRMLS_CACHE_EXTERN();
|
|
#endif
|
|
|
|
php_stream_transport_factory_func php_openssl_ssl_socket_factory;
|
|
|
|
void php_openssl_store_errors();
|
|
|
|
PHP_OPENSSL_API zend_long php_openssl_cipher_iv_length(const char *method);
|
|
PHP_OPENSSL_API zend_string* php_openssl_random_pseudo_bytes(zend_long length);
|
|
PHP_OPENSSL_API zend_string* php_openssl_encrypt(
|
|
const char *data, size_t data_len,
|
|
const char *method, size_t method_len,
|
|
const char *password, size_t password_len,
|
|
zend_long options,
|
|
const char *iv, size_t iv_len,
|
|
zval *tag, zend_long tag_len,
|
|
const char *aad, size_t aad_len);
|
|
PHP_OPENSSL_API zend_string* php_openssl_decrypt(
|
|
const char *data, size_t data_len,
|
|
const char *method, size_t method_len,
|
|
const char *password, size_t password_len,
|
|
zend_long options,
|
|
const char *iv, size_t iv_len,
|
|
const char *tag, zend_long tag_len,
|
|
const char *aad, size_t aad_len);
|
|
|
|
PHP_MINIT_FUNCTION(openssl);
|
|
PHP_MSHUTDOWN_FUNCTION(openssl);
|
|
PHP_MINFO_FUNCTION(openssl);
|
|
PHP_GINIT_FUNCTION(openssl);
|
|
PHP_GSHUTDOWN_FUNCTION(openssl);
|
|
|
|
#ifdef PHP_WIN32
|
|
#define PHP_OPENSSL_BIO_MODE_R(flags) (((flags) & PKCS7_BINARY) ? "rb" : "r")
|
|
#define PHP_OPENSSL_BIO_MODE_W(flags) (((flags) & PKCS7_BINARY) ? "wb" : "w")
|
|
#else
|
|
#define PHP_OPENSSL_BIO_MODE_R(flags) "r"
|
|
#define PHP_OPENSSL_BIO_MODE_W(flags) "w"
|
|
#endif
|
|
|
|
#else
|
|
|
|
#define phpext_openssl_ptr NULL
|
|
|
|
#endif
|
|
|
|
|
|
#endif
|