sl@0: /* ssl/s23_srvr.c */ sl@0: /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) sl@0: * All rights reserved. sl@0: * sl@0: * This package is an SSL implementation written sl@0: * by Eric Young (eay@cryptsoft.com). sl@0: * The implementation was written so as to conform with Netscapes SSL. sl@0: * sl@0: * This library is free for commercial and non-commercial use as long as sl@0: * the following conditions are aheared to. The following conditions sl@0: * apply to all code found in this distribution, be it the RC4, RSA, sl@0: * lhash, DES, etc., code; not just the SSL code. The SSL documentation sl@0: * included with this distribution is covered by the same copyright terms sl@0: * except that the holder is Tim Hudson (tjh@cryptsoft.com). sl@0: * sl@0: * Copyright remains Eric Young's, and as such any Copyright notices in sl@0: * the code are not to be removed. sl@0: * If this package is used in a product, Eric Young should be given attribution sl@0: * as the author of the parts of the library used. sl@0: * This can be in the form of a textual message at program startup or sl@0: * in documentation (online or textual) provided with the package. sl@0: * sl@0: * Redistribution and use in source and binary forms, with or without sl@0: * modification, are permitted provided that the following conditions sl@0: * are met: sl@0: * 1. Redistributions of source code must retain the copyright sl@0: * notice, this list of conditions and the following disclaimer. sl@0: * 2. Redistributions in binary form must reproduce the above copyright sl@0: * notice, this list of conditions and the following disclaimer in the sl@0: * documentation and/or other materials provided with the distribution. sl@0: * 3. All advertising materials mentioning features or use of this software sl@0: * must display the following acknowledgement: sl@0: * "This product includes cryptographic software written by sl@0: * Eric Young (eay@cryptsoft.com)" sl@0: * The word 'cryptographic' can be left out if the rouines from the library sl@0: * being used are not cryptographic related :-). sl@0: * 4. If you include any Windows specific code (or a derivative thereof) from sl@0: * the apps directory (application code) you must include an acknowledgement: sl@0: * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" sl@0: * sl@0: * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND sl@0: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE sl@0: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE sl@0: * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE sl@0: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL sl@0: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS sl@0: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) sl@0: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT sl@0: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY sl@0: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF sl@0: * SUCH DAMAGE. sl@0: * sl@0: * The licence and distribution terms for any publically available version or sl@0: * derivative of this code cannot be changed. i.e. this code cannot simply be sl@0: * copied and put under another distribution licence sl@0: * [including the GNU Public Licence.] sl@0: */ sl@0: /* ==================================================================== sl@0: * Copyright (c) 1998-2001 The OpenSSL Project. All rights reserved. sl@0: * sl@0: * Redistribution and use in source and binary forms, with or without sl@0: * modification, are permitted provided that the following conditions sl@0: * are met: sl@0: * sl@0: * 1. Redistributions of source code must retain the above copyright sl@0: * notice, this list of conditions and the following disclaimer. sl@0: * sl@0: * 2. Redistributions in binary form must reproduce the above copyright sl@0: * notice, this list of conditions and the following disclaimer in sl@0: * the documentation and/or other materials provided with the sl@0: * distribution. sl@0: * sl@0: * 3. All advertising materials mentioning features or use of this sl@0: * software must display the following acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" sl@0: * sl@0: * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to sl@0: * endorse or promote products derived from this software without sl@0: * prior written permission. For written permission, please contact sl@0: * openssl-core@openssl.org. sl@0: * sl@0: * 5. Products derived from this software may not be called "OpenSSL" sl@0: * nor may "OpenSSL" appear in their names without prior written sl@0: * permission of the OpenSSL Project. sl@0: * sl@0: * 6. Redistributions of any form whatsoever must retain the following sl@0: * acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit (http://www.openssl.org/)" sl@0: * sl@0: * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY sl@0: * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE sl@0: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR sl@0: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR sl@0: * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, sl@0: * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT sl@0: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; sl@0: * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) sl@0: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, sl@0: * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) sl@0: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED sl@0: * OF THE POSSIBILITY OF SUCH DAMAGE. sl@0: * ==================================================================== sl@0: * sl@0: * This product includes cryptographic software written by Eric Young sl@0: * (eay@cryptsoft.com). This product includes software written by Tim sl@0: * Hudson (tjh@cryptsoft.com). sl@0: * sl@0: */ sl@0: /* sl@0: © Portions copyright (c) 2006 Nokia Corporation. All rights reserved. sl@0: */ sl@0: sl@0: #include sl@0: #include "ssl_locl.h" sl@0: #include sl@0: #include sl@0: #include sl@0: #include sl@0: sl@0: #if (defined(SYMBIAN) && (defined(__WINSCW__) || defined(__WINS__))) sl@0: #include "libssl_wsd.h" sl@0: #endif sl@0: sl@0: #ifdef EMULATOR sl@0: sl@0: GET_STATIC_VAR_FROM_TLS(SSLv23_server_method_data,s23_srvr,SSL_METHOD) sl@0: sl@0: #define SSLv23_server_method_data (*GET_WSD_VAR_NAME(SSLv23_server_method_data,s23_srvr,s)()) sl@0: sl@0: #endif sl@0: sl@0: static SSL_METHOD *ssl23_get_server_method(int ver); sl@0: int ssl23_get_client_hello(SSL *s); sl@0: static SSL_METHOD *ssl23_get_server_method(int ver) sl@0: { sl@0: #ifndef OPENSSL_NO_SSL2 sl@0: if (ver == SSL2_VERSION) sl@0: return(SSLv2_server_method()); sl@0: #endif sl@0: if (ver == SSL3_VERSION) sl@0: return(SSLv3_server_method()); sl@0: else if (ver == TLS1_VERSION) sl@0: return(TLSv1_server_method()); sl@0: else sl@0: return(NULL); sl@0: } sl@0: sl@0: EXPORT_C IMPLEMENT_ssl23_meth_func(SSLv23_server_method, sl@0: ssl23_accept, sl@0: ssl_undefined_function, sl@0: ssl23_get_server_method) sl@0: sl@0: int ssl23_accept(SSL *s) sl@0: { sl@0: BUF_MEM *buf; sl@0: unsigned long Time=(unsigned long)time(NULL); sl@0: void (*cb)(const SSL *ssl,int type,int val)=NULL; sl@0: int ret= -1; sl@0: int new_state,state; sl@0: sl@0: RAND_add(&Time,sizeof(Time),0); sl@0: ERR_clear_error(); sl@0: clear_sys_error(); sl@0: sl@0: if (s->info_callback != NULL) sl@0: cb=s->info_callback; sl@0: else if (s->ctx->info_callback != NULL) sl@0: cb=s->ctx->info_callback; sl@0: sl@0: s->in_handshake++; sl@0: if (!SSL_in_init(s) || SSL_in_before(s)) SSL_clear(s); sl@0: sl@0: for (;;) sl@0: { sl@0: state=s->state; sl@0: sl@0: switch(s->state) sl@0: { sl@0: case SSL_ST_BEFORE: sl@0: case SSL_ST_ACCEPT: sl@0: case SSL_ST_BEFORE|SSL_ST_ACCEPT: sl@0: case SSL_ST_OK|SSL_ST_ACCEPT: sl@0: sl@0: s->server=1; sl@0: if (cb != NULL) cb(s,SSL_CB_HANDSHAKE_START,1); sl@0: sl@0: /* s->version=SSL3_VERSION; */ sl@0: s->type=SSL_ST_ACCEPT; sl@0: sl@0: if (s->init_buf == NULL) sl@0: { sl@0: if ((buf=BUF_MEM_new()) == NULL) sl@0: { sl@0: ret= -1; sl@0: goto end; sl@0: } sl@0: if (!BUF_MEM_grow(buf,SSL3_RT_MAX_PLAIN_LENGTH)) sl@0: { sl@0: ret= -1; sl@0: goto end; sl@0: } sl@0: s->init_buf=buf; sl@0: } sl@0: sl@0: ssl3_init_finished_mac(s); sl@0: sl@0: s->state=SSL23_ST_SR_CLNT_HELLO_A; sl@0: s->ctx->stats.sess_accept++; sl@0: s->init_num=0; sl@0: break; sl@0: sl@0: case SSL23_ST_SR_CLNT_HELLO_A: sl@0: case SSL23_ST_SR_CLNT_HELLO_B: sl@0: sl@0: s->shutdown=0; sl@0: ret=ssl23_get_client_hello(s); sl@0: if (ret >= 0) cb=NULL; sl@0: goto end; sl@0: /* break; */ sl@0: sl@0: default: sl@0: SSLerr(SSL_F_SSL23_ACCEPT,SSL_R_UNKNOWN_STATE); sl@0: ret= -1; sl@0: goto end; sl@0: /* break; */ sl@0: } sl@0: sl@0: if ((cb != NULL) && (s->state != state)) sl@0: { sl@0: new_state=s->state; sl@0: s->state=state; sl@0: cb(s,SSL_CB_ACCEPT_LOOP,1); sl@0: s->state=new_state; sl@0: } sl@0: } sl@0: end: sl@0: s->in_handshake--; sl@0: if (cb != NULL) sl@0: cb(s,SSL_CB_ACCEPT_EXIT,ret); sl@0: return(ret); sl@0: } sl@0: sl@0: sl@0: int ssl23_get_client_hello(SSL *s) sl@0: { sl@0: char buf_space[11]; /* Request this many bytes in initial read. sl@0: * We can detect SSL 3.0/TLS 1.0 Client Hellos sl@0: * ('type == 3') correctly only when the following sl@0: * is in a single record, which is not guaranteed by sl@0: * the protocol specification: sl@0: * Byte Content sl@0: * 0 type \ sl@0: * 1/2 version > record header sl@0: * 3/4 length / sl@0: * 5 msg_type \ sl@0: * 6-8 length > Client Hello message sl@0: * 9/10 client_version / sl@0: */ sl@0: char *buf= &(buf_space[0]); sl@0: unsigned char *p,*d,*d_len,*dd; sl@0: unsigned int i; sl@0: unsigned int csl,sil,cl; sl@0: int n=0,j; sl@0: int type=0; sl@0: int v[2]; sl@0: sl@0: if (s->state == SSL23_ST_SR_CLNT_HELLO_A) sl@0: { sl@0: /* read the initial header */ sl@0: v[0]=v[1]=0; sl@0: sl@0: if (!ssl3_setup_buffers(s)) goto err; sl@0: sl@0: n=ssl23_read_bytes(s, sizeof buf_space); sl@0: if (n != sizeof buf_space) return(n); /* n == -1 || n == 0 */ sl@0: sl@0: p=s->packet; sl@0: sl@0: memcpy(buf,p,n); sl@0: sl@0: if ((p[0] & 0x80) && (p[2] == SSL2_MT_CLIENT_HELLO)) sl@0: { sl@0: /* sl@0: * SSLv2 header sl@0: */ sl@0: if ((p[3] == 0x00) && (p[4] == 0x02)) sl@0: { sl@0: v[0]=p[3]; v[1]=p[4]; sl@0: /* SSLv2 */ sl@0: if (!(s->options & SSL_OP_NO_SSLv2)) sl@0: type=1; sl@0: } sl@0: else if (p[3] == SSL3_VERSION_MAJOR) sl@0: { sl@0: v[0]=p[3]; v[1]=p[4]; sl@0: /* SSLv3/TLSv1 */ sl@0: if (p[4] >= TLS1_VERSION_MINOR) sl@0: { sl@0: if (!(s->options & SSL_OP_NO_TLSv1)) sl@0: { sl@0: s->version=TLS1_VERSION; sl@0: /* type=2; */ /* done later to survive restarts */ sl@0: s->state=SSL23_ST_SR_CLNT_HELLO_B; sl@0: } sl@0: else if (!(s->options & SSL_OP_NO_SSLv3)) sl@0: { sl@0: s->version=SSL3_VERSION; sl@0: /* type=2; */ sl@0: s->state=SSL23_ST_SR_CLNT_HELLO_B; sl@0: } sl@0: else if (!(s->options & SSL_OP_NO_SSLv2)) sl@0: { sl@0: type=1; sl@0: } sl@0: } sl@0: else if (!(s->options & SSL_OP_NO_SSLv3)) sl@0: { sl@0: s->version=SSL3_VERSION; sl@0: /* type=2; */ sl@0: s->state=SSL23_ST_SR_CLNT_HELLO_B; sl@0: } sl@0: else if (!(s->options & SSL_OP_NO_SSLv2)) sl@0: type=1; sl@0: sl@0: } sl@0: } sl@0: else if ((p[0] == SSL3_RT_HANDSHAKE) && sl@0: (p[1] == SSL3_VERSION_MAJOR) && sl@0: (p[5] == SSL3_MT_CLIENT_HELLO) && sl@0: ((p[3] == 0 && p[4] < 5 /* silly record length? */) sl@0: || (p[9] == p[1]))) sl@0: { sl@0: /* sl@0: * SSLv3 or tls1 header sl@0: */ sl@0: sl@0: v[0]=p[1]; /* major version (= SSL3_VERSION_MAJOR) */ sl@0: /* We must look at client_version inside the Client Hello message sl@0: * to get the correct minor version. sl@0: * However if we have only a pathologically small fragment of the sl@0: * Client Hello message, this would be difficult, and we'd have sl@0: * to read more records to find out. sl@0: * No known SSL 3.0 client fragments ClientHello like this, sl@0: * so we simply assume TLS 1.0 to avoid protocol version downgrade sl@0: * attacks. */ sl@0: if (p[3] == 0 && p[4] < 6) sl@0: { sl@0: #if 0 sl@0: SSLerr(SSL_F_SSL23_GET_CLIENT_HELLO,SSL_R_RECORD_TOO_SMALL); sl@0: goto err; sl@0: #else sl@0: v[1] = TLS1_VERSION_MINOR; sl@0: #endif sl@0: } sl@0: else sl@0: v[1]=p[10]; /* minor version according to client_version */ sl@0: if (v[1] >= TLS1_VERSION_MINOR) sl@0: { sl@0: if (!(s->options & SSL_OP_NO_TLSv1)) sl@0: { sl@0: s->version=TLS1_VERSION; sl@0: type=3; sl@0: } sl@0: else if (!(s->options & SSL_OP_NO_SSLv3)) sl@0: { sl@0: s->version=SSL3_VERSION; sl@0: type=3; sl@0: } sl@0: } sl@0: else sl@0: { sl@0: /* client requests SSL 3.0 */ sl@0: if (!(s->options & SSL_OP_NO_SSLv3)) sl@0: { sl@0: s->version=SSL3_VERSION; sl@0: type=3; sl@0: } sl@0: else if (!(s->options & SSL_OP_NO_TLSv1)) sl@0: { sl@0: /* we won't be able to use TLS of course, sl@0: * but this will send an appropriate alert */ sl@0: s->version=TLS1_VERSION; sl@0: type=3; sl@0: } sl@0: } sl@0: } sl@0: else if ((strncmp("GET ", (char *)p,4) == 0) || sl@0: (strncmp("POST ",(char *)p,5) == 0) || sl@0: (strncmp("HEAD ",(char *)p,5) == 0) || sl@0: (strncmp("PUT ", (char *)p,4) == 0)) sl@0: { sl@0: SSLerr(SSL_F_SSL23_GET_CLIENT_HELLO,SSL_R_HTTP_REQUEST); sl@0: goto err; sl@0: } sl@0: else if (strncmp("CONNECT",(char *)p,7) == 0) sl@0: { sl@0: SSLerr(SSL_F_SSL23_GET_CLIENT_HELLO,SSL_R_HTTPS_PROXY_REQUEST); sl@0: goto err; sl@0: } sl@0: } sl@0: sl@0: if (s->state == SSL23_ST_SR_CLNT_HELLO_B) sl@0: { sl@0: /* we have SSLv3/TLSv1 in an SSLv2 header sl@0: * (other cases skip this state) */ sl@0: sl@0: type=2; sl@0: p=s->packet; sl@0: v[0] = p[3]; /* == SSL3_VERSION_MAJOR */ sl@0: v[1] = p[4]; sl@0: sl@0: n=((p[0]&0x7f)<<8)|p[1]; sl@0: if (n > (1024*4)) sl@0: { sl@0: SSLerr(SSL_F_SSL23_GET_CLIENT_HELLO,SSL_R_RECORD_TOO_LARGE); sl@0: goto err; sl@0: } sl@0: sl@0: j=ssl23_read_bytes(s,n+2); sl@0: if (j <= 0) return(j); sl@0: sl@0: ssl3_finish_mac(s, s->packet+2, s->packet_length-2); sl@0: if (s->msg_callback) sl@0: s->msg_callback(0, SSL2_VERSION, 0, s->packet+2, s->packet_length-2, s, s->msg_callback_arg); /* CLIENT-HELLO */ sl@0: sl@0: p=s->packet; sl@0: p+=5; sl@0: n2s(p,csl); sl@0: n2s(p,sil); sl@0: n2s(p,cl); sl@0: d=(unsigned char *)s->init_buf->data; sl@0: if ((csl+sil+cl+11) != s->packet_length) sl@0: { sl@0: SSLerr(SSL_F_SSL23_GET_CLIENT_HELLO,SSL_R_RECORD_LENGTH_MISMATCH); sl@0: goto err; sl@0: } sl@0: sl@0: /* record header: msg_type ... */ sl@0: *(d++) = SSL3_MT_CLIENT_HELLO; sl@0: /* ... and length (actual value will be written later) */ sl@0: d_len = d; sl@0: d += 3; sl@0: sl@0: /* client_version */ sl@0: *(d++) = SSL3_VERSION_MAJOR; /* == v[0] */ sl@0: *(d++) = v[1]; sl@0: sl@0: /* lets populate the random area */ sl@0: /* get the challenge_length */ sl@0: i=(cl > SSL3_RANDOM_SIZE)?SSL3_RANDOM_SIZE:cl; sl@0: memset(d,0,SSL3_RANDOM_SIZE); sl@0: memcpy(&(d[SSL3_RANDOM_SIZE-i]),&(p[csl+sil]),i); sl@0: d+=SSL3_RANDOM_SIZE; sl@0: sl@0: /* no session-id reuse */ sl@0: *(d++)=0; sl@0: sl@0: /* ciphers */ sl@0: j=0; sl@0: dd=d; sl@0: d+=2; sl@0: for (i=0; iinit_buf->data) - 4; sl@0: l2n3((long)i, d_len); sl@0: sl@0: /* get the data reused from the init_buf */ sl@0: s->s3->tmp.reuse_message=1; sl@0: s->s3->tmp.message_type=SSL3_MT_CLIENT_HELLO; sl@0: s->s3->tmp.message_size=i; sl@0: } sl@0: sl@0: /* imaginary new state (for program structure): */ sl@0: /* s->state = SSL23_SR_CLNT_HELLO_C */ sl@0: sl@0: if (type == 1) sl@0: { sl@0: #ifdef OPENSSL_NO_SSL2 sl@0: SSLerr(SSL_F_SSL23_GET_CLIENT_HELLO,SSL_R_UNSUPPORTED_PROTOCOL); sl@0: goto err; sl@0: #else sl@0: /* we are talking sslv2 */ sl@0: /* we need to clean up the SSLv3/TLSv1 setup and put in the sl@0: * sslv2 stuff. */ sl@0: sl@0: if (s->s2 == NULL) sl@0: { sl@0: if (!ssl2_new(s)) sl@0: goto err; sl@0: } sl@0: else sl@0: ssl2_clear(s); sl@0: sl@0: if (s->s3 != NULL) ssl3_free(s); sl@0: sl@0: if (!BUF_MEM_grow_clean(s->init_buf, sl@0: SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER)) sl@0: { sl@0: goto err; sl@0: } sl@0: sl@0: s->state=SSL2_ST_GET_CLIENT_HELLO_A; sl@0: if (s->options & SSL_OP_NO_TLSv1 && s->options & SSL_OP_NO_SSLv3) sl@0: s->s2->ssl2_rollback=0; sl@0: else sl@0: /* reject SSL 2.0 session if client supports SSL 3.0 or TLS 1.0 sl@0: * (SSL 3.0 draft/RFC 2246, App. E.2) */ sl@0: s->s2->ssl2_rollback=1; sl@0: sl@0: /* setup the n bytes we have read so we get them from sl@0: * the sslv2 buffer */ sl@0: s->rstate=SSL_ST_READ_HEADER; sl@0: s->packet_length=n; sl@0: s->packet= &(s->s2->rbuf[0]); sl@0: memcpy(s->packet,buf,n); sl@0: s->s2->rbuf_left=n; sl@0: s->s2->rbuf_offs=0; sl@0: sl@0: s->method=SSLv2_server_method(); sl@0: s->handshake_func=s->method->ssl_accept; sl@0: #endif sl@0: } sl@0: sl@0: if ((type == 2) || (type == 3)) sl@0: { sl@0: /* we have SSLv3/TLSv1 (type 2: SSL2 style, type 3: SSL3/TLS style) */ sl@0: sl@0: if (!ssl_init_wbio_buffer(s,1)) goto err; sl@0: sl@0: /* we are in this state */ sl@0: s->state=SSL3_ST_SR_CLNT_HELLO_A; sl@0: sl@0: if (type == 3) sl@0: { sl@0: /* put the 'n' bytes we have read into the input buffer sl@0: * for SSLv3 */ sl@0: s->rstate=SSL_ST_READ_HEADER; sl@0: s->packet_length=n; sl@0: s->packet= &(s->s3->rbuf.buf[0]); sl@0: memcpy(s->packet,buf,n); sl@0: s->s3->rbuf.left=n; sl@0: s->s3->rbuf.offset=0; sl@0: } sl@0: else sl@0: { sl@0: s->packet_length=0; sl@0: s->s3->rbuf.left=0; sl@0: s->s3->rbuf.offset=0; sl@0: } sl@0: sl@0: if (s->version == TLS1_VERSION) sl@0: s->method = TLSv1_server_method(); sl@0: else sl@0: s->method = SSLv3_server_method(); sl@0: #if 0 /* ssl3_get_client_hello does this */ sl@0: s->client_version=(v[0]<<8)|v[1]; sl@0: #endif sl@0: s->handshake_func=s->method->ssl_accept; sl@0: } sl@0: sl@0: if ((type < 1) || (type > 3)) sl@0: { sl@0: /* bad, very bad */ sl@0: SSLerr(SSL_F_SSL23_GET_CLIENT_HELLO,SSL_R_UNKNOWN_PROTOCOL); sl@0: goto err; sl@0: } sl@0: s->init_num=0; sl@0: sl@0: if (buf != buf_space) OPENSSL_free(buf); sl@0: return(SSL_accept(s)); sl@0: err: sl@0: if (buf != buf_space) OPENSSL_free(buf); sl@0: return(-1); sl@0: }