1 /*
2 * Debugging routines
3 *
4 * Copyright The Mbed TLS Contributors
5 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
6 *
7 * This file is provided under the Apache License 2.0, or the
8 * GNU General Public License v2.0 or later.
9 *
10 * **********
11 * Apache License 2.0:
12 *
13 * Licensed under the Apache License, Version 2.0 (the "License"); you may
14 * not use this file except in compliance with the License.
15 * You may obtain a copy of the License at
16 *
17 * http://www.apache.org/licenses/LICENSE-2.0
18 *
19 * Unless required by applicable law or agreed to in writing, software
20 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
21 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
22 * See the License for the specific language governing permissions and
23 * limitations under the License.
24 *
25 * **********
26 *
27 * **********
28 * GNU General Public License v2.0 or later:
29 *
30 * This program is free software; you can redistribute it and/or modify
31 * it under the terms of the GNU General Public License as published by
32 * the Free Software Foundation; either version 2 of the License, or
33 * (at your option) any later version.
34 *
35 * This program is distributed in the hope that it will be useful,
36 * but WITHOUT ANY WARRANTY; without even the implied warranty of
37 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
38 * GNU General Public License for more details.
39 *
40 * You should have received a copy of the GNU General Public License along
41 * with this program; if not, write to the Free Software Foundation, Inc.,
42 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
43 *
44 * **********
45 */
46
47 #if !defined(MBEDTLS_CONFIG_FILE)
48 #include "mbedtls/config.h"
49 #else
50 #include MBEDTLS_CONFIG_FILE
51 #endif
52
53 #if defined(MBEDTLS_DEBUG_C)
54
55 #if defined(MBEDTLS_PLATFORM_C)
56 #include "mbedtls/platform.h"
57 #else
58 #include <stdlib.h>
59 #define mbedtls_calloc calloc
60 #define mbedtls_free free
61 #define mbedtls_time_t time_t
62 #define mbedtls_snprintf snprintf
63 #endif
64
65 #include "mbedtls/debug.h"
66
67 #include <stdarg.h>
68 #include <stdio.h>
69 #include <string.h>
70
71 #if ( defined(__ARMCC_VERSION) || defined(_MSC_VER) ) && \
72 !defined(inline) && !defined(__cplusplus)
73 #define inline __inline
74 #endif
75
76 #define DEBUG_BUF_SIZE 512
77
78 static int debug_threshold = 0;
79
mbedtls_debug_set_threshold(int threshold)80 void mbedtls_debug_set_threshold( int threshold )
81 {
82 debug_threshold = threshold;
83 }
84
85 /*
86 * All calls to f_dbg must be made via this function
87 */
debug_send_line(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * str)88 static inline void debug_send_line( const mbedtls_ssl_context *ssl, int level,
89 const char *file, int line,
90 const char *str )
91 {
92 /*
93 * If in a threaded environment, we need a thread identifier.
94 * Since there is no portable way to get one, use the address of the ssl
95 * context instead, as it shouldn't be shared between threads.
96 */
97 #if defined(MBEDTLS_THREADING_C)
98 char idstr[20 + DEBUG_BUF_SIZE]; /* 0x + 16 nibbles + ': ' */
99 mbedtls_snprintf( idstr, sizeof( idstr ), "%p: %s", (void*)ssl, str );
100 ssl->conf->f_dbg( ssl->conf->p_dbg, level, file, line, idstr );
101 #else
102 ssl->conf->f_dbg( ssl->conf->p_dbg, level, file, line, str );
103 #endif
104 }
105
mbedtls_debug_print_msg(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * format,...)106 void mbedtls_debug_print_msg( const mbedtls_ssl_context *ssl, int level,
107 const char *file, int line,
108 const char *format, ... )
109 {
110 va_list argp;
111 char str[DEBUG_BUF_SIZE];
112 int ret;
113
114 if( NULL == ssl ||
115 NULL == ssl->conf ||
116 NULL == ssl->conf->f_dbg ||
117 level > debug_threshold )
118 {
119 return;
120 }
121
122 va_start( argp, format );
123 #if defined(_WIN32)
124 #if defined(_TRUNCATE) && !defined(__MINGW32__)
125 ret = _vsnprintf_s( str, DEBUG_BUF_SIZE, _TRUNCATE, format, argp );
126 #else
127 ret = _vsnprintf( str, DEBUG_BUF_SIZE, format, argp );
128 if( ret < 0 || (size_t) ret == DEBUG_BUF_SIZE )
129 {
130 str[DEBUG_BUF_SIZE-1] = '\0';
131 ret = -1;
132 }
133 #endif
134 #else
135 ret = vsnprintf( str, DEBUG_BUF_SIZE, format, argp );
136 #endif
137 va_end( argp );
138
139 if( ret >= 0 && ret < DEBUG_BUF_SIZE - 1 )
140 {
141 str[ret] = '\n';
142 str[ret + 1] = '\0';
143 }
144
145 debug_send_line( ssl, level, file, line, str );
146 }
147
mbedtls_debug_print_ret(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * text,int ret)148 void mbedtls_debug_print_ret( const mbedtls_ssl_context *ssl, int level,
149 const char *file, int line,
150 const char *text, int ret )
151 {
152 char str[DEBUG_BUF_SIZE];
153
154 if( NULL == ssl ||
155 NULL == ssl->conf ||
156 NULL == ssl->conf->f_dbg ||
157 level > debug_threshold )
158 {
159 return;
160 }
161
162 /*
163 * With non-blocking I/O and examples that just retry immediately,
164 * the logs would be quickly flooded with WANT_READ, so ignore that.
165 * Don't ignore WANT_WRITE however, since is is usually rare.
166 */
167 if( ret == MBEDTLS_ERR_SSL_WANT_READ )
168 return;
169
170 mbedtls_snprintf( str, sizeof( str ), "%s() returned %d (-0x%04x)\n",
171 text, ret, -ret );
172
173 debug_send_line( ssl, level, file, line, str );
174 }
175
mbedtls_debug_print_buf(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * text,const unsigned char * buf,size_t len)176 void mbedtls_debug_print_buf( const mbedtls_ssl_context *ssl, int level,
177 const char *file, int line, const char *text,
178 const unsigned char *buf, size_t len )
179 {
180 char str[DEBUG_BUF_SIZE];
181 char txt[17];
182 size_t i, idx = 0;
183
184 if( NULL == ssl ||
185 NULL == ssl->conf ||
186 NULL == ssl->conf->f_dbg ||
187 level > debug_threshold )
188 {
189 return;
190 }
191
192 mbedtls_snprintf( str + idx, sizeof( str ) - idx, "dumping '%s' (%u bytes)\n",
193 text, (unsigned int) len );
194
195 debug_send_line( ssl, level, file, line, str );
196
197 idx = 0;
198 memset( txt, 0, sizeof( txt ) );
199 for( i = 0; i < len; i++ )
200 {
201 if( i >= 4096 )
202 break;
203
204 if( i % 16 == 0 )
205 {
206 if( i > 0 )
207 {
208 mbedtls_snprintf( str + idx, sizeof( str ) - idx, " %s\n", txt );
209 debug_send_line( ssl, level, file, line, str );
210
211 idx = 0;
212 memset( txt, 0, sizeof( txt ) );
213 }
214
215 idx += mbedtls_snprintf( str + idx, sizeof( str ) - idx, "%04x: ",
216 (unsigned int) i );
217
218 }
219
220 idx += mbedtls_snprintf( str + idx, sizeof( str ) - idx, " %02x",
221 (unsigned int) buf[i] );
222 txt[i % 16] = ( buf[i] > 31 && buf[i] < 127 ) ? buf[i] : '.' ;
223 }
224
225 if( len > 0 )
226 {
227 for( /* i = i */; i % 16 != 0; i++ )
228 idx += mbedtls_snprintf( str + idx, sizeof( str ) - idx, " " );
229
230 mbedtls_snprintf( str + idx, sizeof( str ) - idx, " %s\n", txt );
231 debug_send_line( ssl, level, file, line, str );
232 }
233 }
234
235 #if defined(MBEDTLS_ECP_C)
mbedtls_debug_print_ecp(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * text,const mbedtls_ecp_point * X)236 void mbedtls_debug_print_ecp( const mbedtls_ssl_context *ssl, int level,
237 const char *file, int line,
238 const char *text, const mbedtls_ecp_point *X )
239 {
240 char str[DEBUG_BUF_SIZE];
241
242 if( NULL == ssl ||
243 NULL == ssl->conf ||
244 NULL == ssl->conf->f_dbg ||
245 level > debug_threshold )
246 {
247 return;
248 }
249
250 mbedtls_snprintf( str, sizeof( str ), "%s(X)", text );
251 mbedtls_debug_print_mpi( ssl, level, file, line, str, &X->X );
252
253 mbedtls_snprintf( str, sizeof( str ), "%s(Y)", text );
254 mbedtls_debug_print_mpi( ssl, level, file, line, str, &X->Y );
255 }
256 #endif /* MBEDTLS_ECP_C */
257
258 #if defined(MBEDTLS_BIGNUM_C)
mbedtls_debug_print_mpi(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * text,const mbedtls_mpi * X)259 void mbedtls_debug_print_mpi( const mbedtls_ssl_context *ssl, int level,
260 const char *file, int line,
261 const char *text, const mbedtls_mpi *X )
262 {
263 char str[DEBUG_BUF_SIZE];
264 int j, k, zeros = 1;
265 size_t i, n, idx = 0;
266
267 if( NULL == ssl ||
268 NULL == ssl->conf ||
269 NULL == ssl->conf->f_dbg ||
270 NULL == X ||
271 level > debug_threshold )
272 {
273 return;
274 }
275
276 for( n = X->n - 1; n > 0; n-- )
277 if( X->p[n] != 0 )
278 break;
279
280 for( j = ( sizeof(mbedtls_mpi_uint) << 3 ) - 1; j >= 0; j-- )
281 if( ( ( X->p[n] >> j ) & 1 ) != 0 )
282 break;
283
284 mbedtls_snprintf( str + idx, sizeof( str ) - idx, "value of '%s' (%d bits) is:\n",
285 text, (int) ( ( n * ( sizeof(mbedtls_mpi_uint) << 3 ) ) + j + 1 ) );
286
287 debug_send_line( ssl, level, file, line, str );
288
289 idx = 0;
290 for( i = n + 1, j = 0; i > 0; i-- )
291 {
292 if( zeros && X->p[i - 1] == 0 )
293 continue;
294
295 for( k = sizeof( mbedtls_mpi_uint ) - 1; k >= 0; k-- )
296 {
297 if( zeros && ( ( X->p[i - 1] >> ( k << 3 ) ) & 0xFF ) == 0 )
298 continue;
299 else
300 zeros = 0;
301
302 if( j % 16 == 0 )
303 {
304 if( j > 0 )
305 {
306 mbedtls_snprintf( str + idx, sizeof( str ) - idx, "\n" );
307 debug_send_line( ssl, level, file, line, str );
308 idx = 0;
309 }
310 }
311
312 idx += mbedtls_snprintf( str + idx, sizeof( str ) - idx, " %02x", (unsigned int)
313 ( X->p[i - 1] >> ( k << 3 ) ) & 0xFF );
314
315 j++;
316 }
317
318 }
319
320 if( zeros == 1 )
321 idx += mbedtls_snprintf( str + idx, sizeof( str ) - idx, " 00" );
322
323 mbedtls_snprintf( str + idx, sizeof( str ) - idx, "\n" );
324 debug_send_line( ssl, level, file, line, str );
325 }
326 #endif /* MBEDTLS_BIGNUM_C */
327
328 #if defined(MBEDTLS_X509_CRT_PARSE_C)
debug_print_pk(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * text,const mbedtls_pk_context * pk)329 static void debug_print_pk( const mbedtls_ssl_context *ssl, int level,
330 const char *file, int line,
331 const char *text, const mbedtls_pk_context *pk )
332 {
333 size_t i;
334 mbedtls_pk_debug_item items[MBEDTLS_PK_DEBUG_MAX_ITEMS];
335 char name[16];
336
337 memset( items, 0, sizeof( items ) );
338
339 if( mbedtls_pk_debug( pk, items ) != 0 )
340 {
341 debug_send_line( ssl, level, file, line,
342 "invalid PK context\n" );
343 return;
344 }
345
346 for( i = 0; i < MBEDTLS_PK_DEBUG_MAX_ITEMS; i++ )
347 {
348 if( items[i].type == MBEDTLS_PK_DEBUG_NONE )
349 return;
350
351 mbedtls_snprintf( name, sizeof( name ), "%s%s", text, items[i].name );
352 name[sizeof( name ) - 1] = '\0';
353
354 if( items[i].type == MBEDTLS_PK_DEBUG_MPI )
355 mbedtls_debug_print_mpi( ssl, level, file, line, name, items[i].value );
356 else
357 #if defined(MBEDTLS_ECP_C)
358 if( items[i].type == MBEDTLS_PK_DEBUG_ECP )
359 mbedtls_debug_print_ecp( ssl, level, file, line, name, items[i].value );
360 else
361 #endif
362 debug_send_line( ssl, level, file, line,
363 "should not happen\n" );
364 }
365 }
366
debug_print_line_by_line(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * text)367 static void debug_print_line_by_line( const mbedtls_ssl_context *ssl, int level,
368 const char *file, int line, const char *text )
369 {
370 char str[DEBUG_BUF_SIZE];
371 const char *start, *cur;
372
373 start = text;
374 for( cur = text; *cur != '\0'; cur++ )
375 {
376 if( *cur == '\n' )
377 {
378 size_t len = cur - start + 1;
379 if( len > DEBUG_BUF_SIZE - 1 )
380 len = DEBUG_BUF_SIZE - 1;
381
382 memcpy( str, start, len );
383 str[len] = '\0';
384
385 debug_send_line( ssl, level, file, line, str );
386
387 start = cur + 1;
388 }
389 }
390 }
391
mbedtls_debug_print_crt(const mbedtls_ssl_context * ssl,int level,const char * file,int line,const char * text,const mbedtls_x509_crt * crt)392 void mbedtls_debug_print_crt( const mbedtls_ssl_context *ssl, int level,
393 const char *file, int line,
394 const char *text, const mbedtls_x509_crt *crt )
395 {
396 char str[DEBUG_BUF_SIZE];
397 int i = 0;
398
399 if( NULL == ssl ||
400 NULL == ssl->conf ||
401 NULL == ssl->conf->f_dbg ||
402 NULL == crt ||
403 level > debug_threshold )
404 {
405 return;
406 }
407
408 while( crt != NULL )
409 {
410 char buf[1024];
411
412 mbedtls_snprintf( str, sizeof( str ), "%s #%d:\n", text, ++i );
413 debug_send_line( ssl, level, file, line, str );
414
415 mbedtls_x509_crt_info( buf, sizeof( buf ) - 1, "", crt );
416 debug_print_line_by_line( ssl, level, file, line, buf );
417
418 debug_print_pk( ssl, level, file, line, "crt->", &crt->pk );
419
420 crt = crt->next;
421 }
422 }
423 #endif /* MBEDTLS_X509_CRT_PARSE_C */
424
425 #endif /* MBEDTLS_DEBUG_C */
426