Spliting windows/linux ssl context initialization to separated sources.

Perry Werneck
1 parent 5fd336a0
Showing 18 changed files with 526 additions and 482 deletions Show diff stats
Makefile.in
lib3270.cbp
src/lib3270/Makefile.in
src/lib3270/ansi.c
src/lib3270/ctlr.c
src/lib3270/ft.c
src/lib3270/host.c
src/lib3270/html.c
src/lib3270/iocalls.c
src/lib3270/kybd.c
src/lib3270/linux/connect.c
src/lib3270/private.h
src/lib3270/rpq.c
src/lib3270/ssl/ctx_init.c
src/lib3270/ssl/linux/ctx_init.c
src/lib3270/ssl/windows/ctx_init.c
src/lib3270/telnet.c
src/lib3270/windows/connect.c
@@ -70,8 +70,12 @@ DEPENDS= \
 	Makefile \
 	src/include/*.h \
 	src/include/lib3270/*.h \
-	src/lib3270/*.h
-
+	src/lib3270/*.h \
+        $(wildcard src/lib3270/*) \
+        $(wildcard src/lib3270/@OSNAME@/*) \
+        $(wildcard src/lib3270/ssl/*) \
+        $(wildcard src/lib3270/ssl/@OSNAME@/*) \
+        $(wildcard src/@OSNAME@/*)
  
 #---[ Debug Rules ]----------------------------------------------------------------------
  
@@ -65,7 +65,6 @@
 		<Unit filename="src/include/lib3270.h" />
 		<Unit filename="src/include/lib3270/X11keysym.h" />
 		<Unit filename="src/include/lib3270/action_table.h" />
-		<Unit filename="src/include/lib3270/actions.h" />
 		<Unit filename="src/include/lib3270/charset.h" />
 		<Unit filename="src/include/lib3270/filetransfer.h" />
 		<Unit filename="src/include/lib3270/html.h" />
@@ -215,7 +214,7 @@
 		<Unit filename="src/lib3270/sf.c">
 			<Option compilerVar="CC" />
 		</Unit>
-		<Unit filename="src/lib3270/ssl/ctx_init.c">
+		<Unit filename="src/lib3270/ssl/linux/ctx_init.c">
 			<Option compilerVar="CC" />
 		</Unit>
 		<Unit filename="src/lib3270/ssl/negotiate.c">
@@ -224,6 +223,9 @@
 		<Unit filename="src/lib3270/ssl/state.c">
 			<Option compilerVar="CC" />
 		</Unit>
+		<Unit filename="src/lib3270/ssl/windows/ctx_init.c">
+			<Option compilerVar="CC" />
+		</Unit>
 		<Unit filename="src/lib3270/state.c">
 			<Option compilerVar="CC" />
 		</Unit>
@@ -30,8 +30,9 @@ LIBNAME=lib@LIB3270_NAME@
  
 SOURCES= \
 	$(wildcard *.c) \
-	$(wildcard ssl/*.c) \
 	$(wildcard @OSNAME@/*.c) \
+	$(wildcard ssl/*.c) \
+	$(wildcard ssl/@OSNAME@/*.c) \
 	$(wildcard @OSNAME@/*.rc) \
 	$(BASEDIR)/.tmp/$(LIBNAME)/fallbacks.c
  
@@ -29,11 +29,13 @@
  *
  */
  
-/*
- *	ansi.c
- *		ANSI terminal emulation.
+
+/**
+ * @brief ANSI terminal emulation.
  */
  
+#pragma GCC diagnostic ignored "-Wsign-compare"
+
 #include "private.h"
  
 #if defined(X3270_ANSI) /*[*/
@@ -30,13 +30,12 @@
  */
  
 /**
- *	@file
- *		This module handles interpretation of the 3270 data stream and
- *		maintenance of the 3270 device state.  It was split out from
- *		screen.c, which handles X operations.
+ *	@brief Handles interpretation of the 3270 data stream and maintenance of the 3270 device state.
  *
  */
  
+#pragma GCC diagnostic ignored "-Wsign-compare"
+
 #include "private.h"
 #include <errno.h>
 #include <stdlib.h>
@@ -2648,7 +2647,7 @@ void ctlr_wrapping_memmove(H3270 *hSession, int baddr_to, int baddr_from, int co
 }
  
 /**
- * Copy a block of characters in the 3270 buffer.
+ * @brief Copy a block of characters in the 3270 buffer.
  *
  * Copy a block of characters in the 3270 buffer, optionally including all of
  * the extended attributes.  (The character set, which is actually kept in the
@@ -2656,7 +2655,7 @@ void ctlr_wrapping_memmove(H3270 *hSession, int baddr_to, int baddr_from, int co
  *
  * @param hSession	Session handle
  */
-void ctlr_bcopy(H3270 *hSession, int baddr_from, int baddr_to, int count, int move_ea)
+void ctlr_bcopy(H3270 *hSession, int baddr_from, int baddr_to, int count, int move_ea unused)
 {
 	/* Move the characters. */
 	if (memcmp((char *) &hSession->ea_buf[baddr_from],(char *) &hSession->ea_buf[baddr_to],count * sizeof(struct lib3270_ea)))
@@ -2669,12 +2668,12 @@ void ctlr_bcopy(H3270 *hSession, int baddr_from, int baddr_to, int count, int mo
  
 #if defined(X3270_ANSI) /*[*/
 /**
- * Erase a region of the 3270 buffer, optionally clearing extended attributes as well.
+ * @brief Erase a region of the 3270 buffer, optionally clearing extended attributes as well.
  *
  * @param hSession	Session handle
  *
  */
-void ctlr_aclear(H3270 *hSession, int baddr, int count, int clear_ea)
+void ctlr_aclear(H3270 *hSession, int baddr, int count, int clear_ea unused)
 {
 	if (memcmp((char *) &hSession->ea_buf[baddr], (char *) hSession->zero_buf,
 		    count * sizeof(struct lib3270_ea))) {
@@ -29,6 +29,8 @@
  *
  */
  
+#pragma GCC diagnostic ignored "-Wsign-compare"
+
 #ifdef WIN32
 	#include <winsock2.h>
 	#include <windows.h>
@@ -31,13 +31,12 @@
  */
  
  
-/*
- *	host.c
- *		This module handles the ibm_hosts file, connecting to and
- *		disconnecting from hosts, and state changes on the host
- *		connection.
+/**
+ * @brief Handle connect and disconnect from hosts, and state changes on the host connection.
  */
  
+#pragma GCC diagnostic ignored "-Wsign-compare"
+
 #include <malloc.h>
 #include "private.h"
 // #include "appres.h"
@@ -124,9 +124,9 @@
  
  static void append_string(struct html_info *info, const char *text)
  {
- 	int sz = strlen(info->text)+strlen(text);
+ 	size_t sz = strlen(info->text)+strlen(text);
  
-	if(strlen(info->text)+sz <= info->szText)
+	if(strlen(info->text)+sz <= ((size_t)info->szText) )
 	{
 		info->szText	+= (100+sz);
 		info->text		 = lib3270_realloc(info->text,info->szText);
@@ -228,7 +228,7 @@ static void * internal_add_poll(H3270 *session, int fd, LIB3270_IO_FLAG flag, vo
 	ip->userdata				= userdata;
 	ip->call					= call;
  
-	ip->next					= session->inputs;
+	ip->next					= (input_t *) session->inputs;
  
 	session->inputs 			= ip;
 	session->inputs_changed 	= 1;
@@ -267,17 +267,16 @@ static void internal_remove_poll(H3270 *session, void *id)
  static void internal_set_poll_state(H3270 *session, void *id, int enabled)
  {
 	input_t *ip;
-	input_t *prev = (input_t *)NULL;
  
 	for (ip = session->inputs; ip != (input_t *) NULL; ip = (input_t *) ip->next)
 	{
 		if (ip == (input_t *)id)
 		{
 			ip->enabled = enabled ? 1 : 0;
+			session->inputs_changed = 1;
 			break;
 		}
  
-		prev = ip;
 	}
  
  }
@@ -318,7 +317,7 @@ LIB3270_EXPORT void	 lib3270_update_poll_fd(H3270 *session, int fd, LIB3270_IO_F
  
 	input_t *ip;
  
-	for (ip = session->inputs; ip != (input_t *)NULL; ip = ip->next)
+	for (ip = session->inputs; ip != (input_t *)NULL; ip = (input_t *) ip->next)
 	{
 		if(ip->fd == fd)
 		{
@@ -33,6 +33,9 @@
  *	@brief This module handles the keyboard for the 3270 emulator.
  */
  
+#pragma GCC diagnostic ignored "-Wsign-compare"
+
+
 struct ta;
  
 #define LIB3270_TA struct ta
@@ -252,7 +252,7 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 	lib3270_st_changed(hSession, LIB3270_STATE_RESOLVING, True);
  
 	// s = getaddrinfo(hSession->host.current, hSession->host.srvc, &hints, &result);
-	if(lib3270_run_task(hSession, background_connect, &host))
+	if(lib3270_run_task(hSession, background_connect, &host) || hSession->sock < 0)
 	{
 		char buffer[4096];
 		snprintf(buffer,4095,_( "Can't connect to %s:%s"), hSession->host.current, hSession->host.srvc);
@@ -265,7 +265,7 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 								host.message);
  
 		lib3270_set_disconnected(hSession);
-		return errno = ENOENT;
+		return errno = ENOTCONN;
 	}
  
 	/* don't share the socket with our children */
@@ -291,26 +291,6 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 #endif // HAVE_LIBSSL
 	}
  
-	/* connect */
-	if(hSession->sock < 0)
-	{
-		lib3270_set_disconnected(hSession);
-
-		char buffer[4096];
-		snprintf(buffer,4095,_( "Can't connect to %s:%s"), hSession->host.current, hSession->host.srvc);
-
-		lib3270_popup_dialog(
-			hSession,
-			LIB3270_NOTIFY_ERROR,
-			_( "Connection error" ),
-			buffer,
-			"%s",
-			host.message
-		);
-
-		return errno = ENOTCONN;
-	}
-
 	// set options for inline out-of-band data and keepalives
 	optval = 1;
 	if (setsockopt(hSession->sock, SOL_SOCKET, SO_OOBINLINE, (char *)&optval,sizeof(optval)) < 0)
@@ -322,6 +302,7 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 								"%s",
 								strerror(errno));
 		SOCK_CLOSE(hSession);
+		return errno = ENOTCONN;
 	}
  
 	optval = lib3270_get_toggle(hSession,LIB3270_TOGGLE_KEEP_ALIVE) ? 1 : 0;
@@ -337,6 +318,7 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 								"%s",
 								strerror(errno));
 		SOCK_CLOSE(hSession);
+		return errno = ENOTCONN;
 	}
 	else
 	{
@@ -282,7 +282,7 @@ typedef struct timeout
 typedef struct _input_t
 {
 		unsigned char	  enabled;
-        struct input	* next;
+        struct _input_t	* next;
         H3270			* session;
         int 			  fd;
         LIB3270_IO_FLAG	  flag;
@@ -30,9 +30,10 @@
  *
  */
  
-/*
- *	rpq.c
- *		RPQNAMES structured field support.
+ #pragma GCC diagnostic ignored "-Wsign-compare"
+
+/**
+ * @brief RPQNAMES structured field support.
  *
  */
  
@@ -1,186 +0,0 @@
-/*
- * "Software pw3270, desenvolvido com base nos códigos fontes do WC3270  e X3270
- * (Paul Mattes Paul.Mattes@usa.net), de emulação de terminal 3270 para acesso a
- * aplicativos mainframe. Registro no INPI sob o nome G3270.
- *
- * Copyright (C) <2008> <Banco do Brasil S.A.>
- *
- * Este programa é software livre. Você pode redistribuí-lo e/ou modificá-lo sob
- * os termos da GPL v.2 - Licença Pública Geral  GNU,  conforme  publicado  pela
- * Free Software Foundation.
- *
- * Este programa é distribuído na expectativa de  ser  útil,  mas  SEM  QUALQUER
- * GARANTIA; sem mesmo a garantia implícita de COMERCIALIZAÇÃO ou  de  ADEQUAÇÃO
- * A QUALQUER PROPÓSITO EM PARTICULAR. Consulte a Licença Pública Geral GNU para
- * obter mais detalhes.
- *
- * Você deve ter recebido uma cópia da Licença Pública Geral GNU junto com este
- * programa; se não, escreva para a Free Software Foundation, Inc., 51 Franklin
- * St, Fifth Floor, Boston, MA  02110-1301  USA
- *
- * Este programa está nomeado como ssl.c e possui - linhas de código.
- *
- * Contatos:
- *
- * perry.werneck@gmail.com	(Alexandre Perry de Souza Werneck)
- * erico.mendonca@gmail.com	(Erico Mascarenhas Mendonça)
- * licinio@bb.com.br		(Licínio Luis Branco)
- * kraucer@bb.com.br		(Kraucer Fernandes Mazuco)
- *
- *
- * References:
- *
- * http://www.openssl.org/docs/ssl/
- *
- */
-
-/**
- * @brief OpenSSL initialization.
- *
- */
-
-#include <config.h>
-#if defined(HAVE_LIBSSL)
-
-#include <openssl/ssl.h>
-#include <openssl/err.h>
-#include <openssl/x509_vfy.h>
-
-#ifndef SSL_ST_OK
-	#define SSL_ST_OK 3
-#endif // !SSL_ST_OK
-
-#include "../private.h"
-#include <errno.h>
-#include <lib3270.h>
-#include <lib3270/internals.h>
-#include <lib3270/trace.h>
-#include "trace_dsc.h"
-
-/*--[ Implement ]------------------------------------------------------------------------------------*/
-
-/**
- * @brief Initialize openssl library.
- *
- * @return 0 if ok, non zero if fails.
- *
- */
-int ssl_ctx_init(H3270 *hSession)
-{
-	debug("%s ssl_ctx=%p",__FUNCTION__,ssl_ctx);
-
-	if(!ssl_ctx)
-	{
-		trace_dsn(hSession,"Initializing SSL context.\n");
-
-		SSL_load_error_strings();
-		SSL_library_init();
-
-		ssl_ctx = SSL_CTX_new(SSLv23_method());
-		if(ssl_ctx == NULL)
-			return -1;
-
-		SSL_CTX_set_options(ssl_ctx, SSL_OP_ALL);
-		SSL_CTX_set_info_callback(ssl_ctx, ssl_info_callback);
-		SSL_CTX_set_default_verify_paths(ssl_ctx);
-
-#if defined(_WIN32)
-		{
-			HKEY hKey = 0;
-
-			if(RegOpenKeyEx(HKEY_LOCAL_MACHINE,"Software\\" PACKAGE_NAME,0,KEY_QUERY_VALUE,&hKey) == ERROR_SUCCESS)
-			{
-				char			data[4096];
-				unsigned long	datalen	= sizeof(data);		// data field length(in), data returned length(out)
-				unsigned long	datatype;					// #defined in winnt.h (predefined types 0-11)
-
-				if(RegQueryValueExA(hKey,"datadir",NULL,&datatype,(LPBYTE) data,&datalen) == ERROR_SUCCESS)
-				{
-					strncat(data,"\\certs",4095);
-
-					if(!SSL_CTX_load_verify_locations(ssl_ctx,NULL,data))
-					{
-						hSession->ssl.error = ERR_get_error();
-
-						trace_dsn(
-							hSession,
-							"Cant set default locations for trusted CA certificates to %s\n%s\m"
-								data,
-								ERR_lib_error_string(hSession->ssl.error)
-						);
-
-						lib3270_write_log(
-							hSession,
-							"ssl",
-							"Cant set default locations for trusted CA certificates to %s\n%s",
-									data,
-									ERR_lib_error_string(hSession->ssl.error)
-						);
-
-					}
-				}
-				RegCloseKey(hKey);
-			}
-
-
-		}
-#else
-
-		static const char * ssldir[] =
-		{
-#ifdef DATAROOTDIR
-			DATAROOTDIR "/" PACKAGE_NAME "/certs",
-#endif // DATAROOTDIR
-#ifdef SYSCONFDIR
-			SYSCONFDIR "/ssl/certs",
-			SYSCONFDIR "/certs",
-#endif
-			"/etc/ssl/certs"
-		};
-
-		size_t f;
-
-		for(f = 0;f < sizeof(ssldir) / sizeof(ssldir[0]);f++)
-		{
-			SSL_CTX_load_verify_locations(ssl_ctx,NULL,ssldir[f]);
-		}
-
-	#endif // _WIN32
-
-		//
-		// Initialize CUSTOM CRL CHECK
-		//
-
-	}
-
-
-
-/*
-#if defined(SSL_ENABLE_CRL_CHECK)
-	// Set up CRL validation
-	// https://stackoverflow.com/questions/4389954/does-openssl-automatically-handle-crls-certificate-revocation-lists-now
-	X509_STORE *store = SSL_CTX_get_cert_store(ssl_ctx);
-
-	// Enable CRL checking
-	X509_VERIFY_PARAM *param = X509_VERIFY_PARAM_new();
-	X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
-	X509_STORE_set1_param(store, param);
-	X509_VERIFY_PARAM_free(param);
-
-	// X509_STORE_free(store);
-
-	trace_dsn(hSession,"CRL CHECK is enabled.\n");
-
-#else
-
-	trace_dsn(hSession,"CRL CHECK is disabled.\n");
-
-#endif // SSL_ENABLE_CRL_CHECK
-*/
-
-	ssl_3270_ex_index = SSL_get_ex_new_index(0,NULL,NULL,NULL,NULL);
-
-	return 0;
-}
-
-#endif // HAVE_LIBSSL
@@ -0,0 +1,162 @@
+/*
+ * "Software pw3270, desenvolvido com base nos códigos fontes do WC3270  e X3270
+ * (Paul Mattes Paul.Mattes@usa.net), de emulação de terminal 3270 para acesso a
+ * aplicativos mainframe. Registro no INPI sob o nome G3270.
+ *
+ * Copyright (C) <2008> <Banco do Brasil S.A.>
+ *
+ * Este programa é software livre. Você pode redistribuí-lo e/ou modificá-lo sob
+ * os termos da GPL v.2 - Licença Pública Geral  GNU,  conforme  publicado  pela
+ * Free Software Foundation.
+ *
+ * Este programa é distribuído na expectativa de  ser  útil,  mas  SEM  QUALQUER
+ * GARANTIA; sem mesmo a garantia implícita de COMERCIALIZAÇÃO ou  de  ADEQUAÇÃO
+ * A QUALQUER PROPÓSITO EM PARTICULAR. Consulte a Licença Pública Geral GNU para
+ * obter mais detalhes.
+ *
+ * Você deve ter recebido uma cópia da Licença Pública Geral GNU junto com este
+ * programa; se não, escreva para a Free Software Foundation, Inc., 51 Franklin
+ * St, Fifth Floor, Boston, MA  02110-1301  USA
+ *
+ * Este programa está nomeado como - e possui - linhas de código.
+ *
+ * Contatos:
+ *
+ * perry.werneck@gmail.com	(Alexandre Perry de Souza Werneck)
+ * erico.mendonca@gmail.com	(Erico Mascarenhas Mendonça)
+ *
+ *
+ * References:
+ *
+ * http://www.openssl.org/docs/ssl/
+ * https://stackoverflow.com/questions/4389954/does-openssl-automatically-handle-crls-certificate-revocation-lists-now
+ *
+ */
+
+/**
+ * @brief OpenSSL initialization for linux.
+ *
+ */
+
+#include <config.h>
+#if defined(HAVE_LIBSSL)
+
+#include <openssl/ssl.h>
+#include <openssl/err.h>
+#include <openssl/x509_vfy.h>
+
+#ifndef SSL_ST_OK
+	#define SSL_ST_OK 3
+#endif // !SSL_ST_OK
+
+#include "../../private.h"
+#include <errno.h>
+#include <lib3270.h>
+#include <lib3270/internals.h>
+#include <lib3270/trace.h>
+#include "trace_dsc.h"
+
+/*--[ Implement ]------------------------------------------------------------------------------------*/
+
+/**
+ * @brief Initialize openssl library.
+ *
+ * @return 0 if ok, non zero if fails.
+ *
+ */
+int ssl_ctx_init(H3270 *hSession)
+{
+	debug("%s ssl_ctx=%p",__FUNCTION__,ssl_ctx);
+
+	if(ssl_ctx)
+		return 0;
+
+	trace_dsn(hSession,"Initializing SSL context.\n");
+
+	SSL_load_error_strings();
+	SSL_library_init();
+
+	ssl_ctx = SSL_CTX_new(SSLv23_method());
+	if(ssl_ctx == NULL)
+		return -1;
+
+	SSL_CTX_set_options(ssl_ctx, SSL_OP_ALL);
+	SSL_CTX_set_info_callback(ssl_ctx, ssl_info_callback);
+
+	SSL_CTX_set_default_verify_paths(ssl_ctx);
+
+	/*
+	static const char * ssldir[] =
+	{
+#ifdef DATAROOTDIR
+		DATAROOTDIR "/" PACKAGE_NAME "/certs",
+#endif // DATAROOTDIR
+#ifdef SYSCONFDIR
+		SYSCONFDIR "/ssl/certs",
+		SYSCONFDIR "/certs",
+#endif
+		"/etc/ssl/certs"
+	};
+
+	size_t f;
+
+	for(f = 0;f < sizeof(ssldir) / sizeof(ssldir[0]);f++)
+	{
+		SSL_CTX_load_verify_locations(ssl_ctx,NULL,ssldir[f]);
+	}
+	*/
+
+	ssl_3270_ex_index = SSL_get_ex_new_index(0,NULL,NULL,NULL,NULL);
+
+	//
+	// Initialize CUSTOM CRL CHECK
+	//
+
+
+	return 0;
+}
+
+#endif // HAVE_LIBSSL
+
+/*
+// Load CRLs into the `X509_STORE`
+
+X509_STORE *x509_store = SSL_CTX_get_cert_store(ctx);
+X509_STORE_add_crl(x509_store, crl);
+
+// Enable CRL checking
+X509_VERIFY_PARAM *param = X509_VERIFY_PARAM_new();
+X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
+SSL_CTX_set1_param(ctx, param);
+X509_VERIFY_PARAM_free(param);
+
+
+
+	}
+
+
+
+
+#if defined(SSL_ENABLE_CRL_CHECK)
+	// Set up CRL validation
+	// https://stackoverflow.com/questions/4389954/does-openssl-automatically-handle-crls-certificate-revocation-lists-now
+	X509_STORE *store = SSL_CTX_get_cert_store(ssl_ctx);
+
+	// Enable CRL checking
+	X509_VERIFY_PARAM *param = X509_VERIFY_PARAM_new();
+	X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
+	X509_STORE_set1_param(store, param);
+	X509_VERIFY_PARAM_free(param);
+
+	// X509_STORE_free(store);
+
+	trace_dsn(hSession,"CRL CHECK is enabled.\n");
+
+#else
+
+	trace_dsn(hSession,"CRL CHECK is disabled.\n");
+
+#endif // SSL_ENABLE_CRL_CHECK
+
+*/
+
@@ -0,0 +1,176 @@
+/*
+ * "Software pw3270, desenvolvido com base nos códigos fontes do WC3270  e X3270
+ * (Paul Mattes Paul.Mattes@usa.net), de emulação de terminal 3270 para acesso a
+ * aplicativos mainframe. Registro no INPI sob o nome G3270.
+ *
+ * Copyright (C) <2008> <Banco do Brasil S.A.>
+ *
+ * Este programa é software livre. Você pode redistribuí-lo e/ou modificá-lo sob
+ * os termos da GPL v.2 - Licença Pública Geral  GNU,  conforme  publicado  pela
+ * Free Software Foundation.
+ *
+ * Este programa é distribuído na expectativa de  ser  útil,  mas  SEM  QUALQUER
+ * GARANTIA; sem mesmo a garantia implícita de COMERCIALIZAÇÃO ou  de  ADEQUAÇÃO
+ * A QUALQUER PROPÓSITO EM PARTICULAR. Consulte a Licença Pública Geral GNU para
+ * obter mais detalhes.
+ *
+ * Você deve ter recebido uma cópia da Licença Pública Geral GNU junto com este
+ * programa; se não, escreva para a Free Software Foundation, Inc., 51 Franklin
+ * St, Fifth Floor, Boston, MA  02110-1301  USA
+ *
+ * Este programa está nomeado como - e possui - linhas de código.
+ *
+ * Contatos:
+ *
+ * perry.werneck@gmail.com	(Alexandre Perry de Souza Werneck)
+ * erico.mendonca@gmail.com	(Erico Mascarenhas Mendonça)
+ *
+ *
+ * References:
+ *
+ * http://www.openssl.org/docs/ssl/
+ * https://stackoverflow.com/questions/4389954/does-openssl-automatically-handle-crls-certificate-revocation-lists-now
+ *
+ */
+
+/**
+ * @brief OpenSSL initialization for windows.
+ *
+ */
+
+#include <config.h>
+#if defined(HAVE_LIBSSL)
+#include <openssl/ssl.h>
+#include <openssl/err.h>
+#include <openssl/x509_vfy.h>
+
+#ifndef SSL_ST_OK
+	#define SSL_ST_OK 3
+#endif // !SSL_ST_OK
+
+#include "../../private.h"
+#include <errno.h>
+#include <lib3270.h>
+#include <lib3270/internals.h>
+#include <lib3270/trace.h>
+#include "trace_dsc.h"
+
+/*--[ Implement ]------------------------------------------------------------------------------------*/
+
+/**
+ * @brief Initialize openssl library.
+ *
+ * @return 0 if ok, non zero if fails.
+ *
+ */
+int ssl_ctx_init(H3270 *hSession)
+{
+	debug("%s ssl_ctx=%p",__FUNCTION__,ssl_ctx);
+
+	if(ssl_ctx)
+		return 0;
+
+	trace_dsn(hSession,"Initializing SSL context.\n");
+
+	SSL_load_error_strings();
+	SSL_library_init();
+
+	ssl_ctx = SSL_CTX_new(SSLv23_method());
+	if(ssl_ctx == NULL)
+		return -1;
+
+	SSL_CTX_set_options(ssl_ctx, SSL_OP_ALL);
+	SSL_CTX_set_info_callback(ssl_ctx, ssl_info_callback);
+	SSL_CTX_set_default_verify_paths(ssl_ctx);
+
+	//
+	// Get path from windows registry.
+	//
+	HKEY hKey = 0;
+
+	if(RegOpenKeyEx(HKEY_LOCAL_MACHINE,"Software\\" PACKAGE_NAME,0,KEY_QUERY_VALUE,&hKey) == ERROR_SUCCESS)
+	{
+		char			data[4096];
+		unsigned long	datalen	= sizeof(data);		// data field length(in), data returned length(out)
+		unsigned long	datatype;					// #defined in winnt.h (predefined types 0-11)
+
+		if(RegQueryValueExA(hKey,"datadir",NULL,&datatype,(LPBYTE) data,&datalen) == ERROR_SUCCESS)
+		{
+			strncat(data,"\\certs",4095);
+
+			if(!SSL_CTX_load_verify_locations(ssl_ctx,NULL,data))
+			{
+				hSession->ssl.error = ERR_get_error();
+
+				trace_dsn(
+					hSession,
+					"Cant set default locations for trusted CA certificates to %s\n%s\m"
+						data,
+						ERR_lib_error_string(hSession->ssl.error)
+				);
+
+				lib3270_write_log(
+					hSession,
+					"ssl",
+					"Cant set default locations for trusted CA certificates to %s\n%s",
+							data,
+							ERR_lib_error_string(hSession->ssl.error)
+				);
+
+			}
+		}
+		RegCloseKey(hKey);
+	}
+
+	ssl_3270_ex_index = SSL_get_ex_new_index(0,NULL,NULL,NULL,NULL);
+
+	//
+	// Initialize CUSTOM CRL CHECK
+	//
+
+	return 0;
+}
+
+#endif // HAVE_LIBSSL
+
+/*
+// Load CRLs into the `X509_STORE`
+
+X509_STORE *x509_store = SSL_CTX_get_cert_store(ctx);
+X509_STORE_add_crl(x509_store, crl);
+
+// Enable CRL checking
+X509_VERIFY_PARAM *param = X509_VERIFY_PARAM_new();
+X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
+SSL_CTX_set1_param(ctx, param);
+X509_VERIFY_PARAM_free(param);
+
+
+
+	}
+
+
+
+/*
+#if defined(SSL_ENABLE_CRL_CHECK)
+	// Set up CRL validation
+	// https://stackoverflow.com/questions/4389954/does-openssl-automatically-handle-crls-certificate-revocation-lists-now
+	X509_STORE *store = SSL_CTX_get_cert_store(ssl_ctx);
+
+	// Enable CRL checking
+	X509_VERIFY_PARAM *param = X509_VERIFY_PARAM_new();
+	X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
+	X509_STORE_set1_param(store, param);
+	X509_VERIFY_PARAM_free(param);
+
+	// X509_STORE_free(store);
+
+	trace_dsn(hSession,"CRL CHECK is enabled.\n");
+
+#else
+
+	trace_dsn(hSession,"CRL CHECK is disabled.\n");
+
+#endif // SSL_ENABLE_CRL_CHECK
+*/
+
@@ -29,11 +29,11 @@
  *
  */
  
+ #pragma GCC diagnostic ignored "-Wimplicit-fallthrough"
  
-/*
- *	telnet.c
- *		This module initializes and manages a telnet socket to
- *		the given IBM host.
+
+/**
+ * @brief Initializes and manages a telnet socket to the given IBM host.
  */
  
 #if defined(_WIN32)
@@ -340,16 +340,25 @@ void popup_a_sockerr(H3270 *hSession, char *fmt, ...)
 	text = lib3270_vsprintf(fmt, args);
 	va_end(args);
  
-	lib3270_write_log(hSession, "3270", "Network error:\n%s\n%s",text,msg);
-
-	lib3270_popup_dialog(	hSession,
-							LIB3270_NOTIFY_ERROR,
-							_( "Network error" ),
-							text,
-							"%s", msg);
-
+	lib3270_write_log(
+			hSession,
+			"3270",
+			"Network error:\n%s\n%s",
+			text,
+			msg
+	);
+
+	lib3270_popup_dialog(
+			hSession,
+			LIB3270_NOTIFY_ERROR,
+			_( "Network error" ),
+			text,
+			"%s",
+			msg
+	);
  
 	lib3270_free(text);
+
 }
  
 /*
@@ -29,50 +29,32 @@
  
 #include <config.h>
  
-#if defined(_WIN32)
+// Compiling for WinXP or later: Expose getaddrinfo()/freeaddrinfo().
+#undef _WIN32_WINNT
+#define _WIN32_WINNT 0x0501
  
-	// Compiling for WinXP or later: Expose getaddrinfo()/freeaddrinfo().
-	#undef _WIN32_WINNT
-	#define _WIN32_WINNT 0x0501
-
-	#include <winsock2.h>
-	#include <windows.h>
-	#include <ws2tcpip.h>
-
-#endif
+#include <winsock2.h>
+#include <windows.h>
+#include <ws2tcpip.h>
  
 #include "private.h"
 #include <errno.h>
  
-#if defined(_WIN32)
-	#include <ws2tcpip.h>
-#else
-	#include <sys/types.h>
-	#include <sys/socket.h>
-	#include <sys/ioctl.h>
-	#include <netinet/in.h>
-	#include <netdb.h>
-	#include <unistd.h>
-	#include <fcntl.h>
-#endif
+#include <ws2tcpip.h>
  
 #ifdef HAVE_ICONV
 	#include <iconv.h>
 #endif // HAVE_ICONV
  
-#if defined(_WIN32) /*[*/
-	#define SOCK_CLOSE(s)	closesocket(s->sock); s->sock = -1;
-#else /*][*/
-	#define SOCK_CLOSE(s)	close(s->sock); s->sock = -1;
-#endif /*]*/
+#define SOCK_CLOSE(s)	closesocket(s->sock); s->sock = -1;
  
-#include <stdlib.h>
-#include "statusc.h"
+//#include "statusc.h"
 #include "hostc.h"
 #include "trace_dsc.h"
-#include "utilc.h"
+//#include "utilc.h"
 #include "telnetc.h"
 #include "screen.h"
+
 #include <lib3270/internals.h>
  
 /*---[ Implement ]-------------------------------------------------------------------------------*/
@@ -97,11 +79,7 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 								LIB3270_NOTIFY_ERROR,
 								_( "Network error" ),
 								_( "Unable to get connection state." ),
-#ifdef _WIN32
 								"%s", lib3270_win32_strerror(WSAGetLastError())
-#else
-								_( "%s" ), strerror(errno)
-#endif // _WIN32
 							);
 		return;
 	}
@@ -115,11 +93,7 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 								LIB3270_NOTIFY_ERROR,
 								_( "Connection failed" ),
 								buffer,
-#ifdef _WIN32
 								_( "%s"), lib3270_win32_strerror(err)
-#else
-								_( "%s" ), strerror(err)
-#endif // _WIN32
 							);
 		trace("%s",__FUNCTION__);
 		return;
@@ -141,11 +115,8 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
  
 }
  
-
-#if defined(_WIN32)
-
- static void sockstart(H3270 *session)
- {
+static void sockstart(H3270 *session)
+{
 	static int initted = 0;
 	WORD wVersionRequested;
 	WSADATA wsaData;
@@ -177,11 +148,10 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 								N_( "Can't use winsock version %d.%d" ), LOBYTE(wsaData.wVersion), HIBYTE(wsaData.wVersion));
 		_exit(1);
 	}
- }
-#endif // WIN32
+}
  
- LIB3270_EXPORT int lib3270_connect_url(H3270 *hSession, const char *url, int wait)
- {
+LIB3270_EXPORT int lib3270_connect_url(H3270 *hSession, const char *url, int wait)
+{
 	CHECK_SESSION_HANDLE(hSession);
  
 	if(url && *url)
@@ -191,10 +161,10 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
  
 	return lib3270_connect(hSession, wait);
  
- }
+}
  
- LIB3270_EXPORT int lib3270_connect_host(H3270 *hSession, const char *hostname, const char *srvc, LIB3270_OPTION opt)
- {
+LIB3270_EXPORT int lib3270_connect_host(H3270 *hSession, const char *hostname, const char *srvc, LIB3270_OPTION opt)
+{
 	CHECK_SESSION_HANDLE(hSession);
  
 	if(!hostname)
@@ -235,10 +205,63 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
  
 	return lib3270_connect(hSession,opt & LIB3270_OPTION_WAIT);
  
- }
+}
+
+ struct resolver
+ {
+ 	int			  convert;
+	const char 	* message;
+ };
  
- int lib3270_connect(H3270 *hSession, int seconds)
+ static int background_connect(H3270 *hSession, void *host)
  {
+	struct addrinfo	  hints;
+ 	struct addrinfo * result	= NULL;
+	struct addrinfo * rp		= NULL;
+
+	memset(&hints,0,sizeof(hints));
+	hints.ai_family 	= AF_UNSPEC;	// Allow IPv4 or IPv6
+	hints.ai_socktype	= SOCK_STREAM;	// Stream socket
+	hints.ai_flags		= AI_PASSIVE;	// For wildcard IP address
+	hints.ai_protocol	= 0;			// Any protocol
+
+ 	int rc = getaddrinfo(hSession->host.current, hSession->host.srvc, &hints, &result);
+ 	if(rc != 0)
+	{
+		((struct resolver *) host)->message = gai_strerror(rc);
+		((struct resolver *) host)->convert = 1;
+		return -1;
+	}
+
+	status_connecting(hSession,1);
+
+	for(rp = result; hSession->sock < 0 && rp != NULL; rp = rp->ai_next)
+	{
+		hSession->sock = socket(rp->ai_family, rp->ai_socktype, rp->ai_protocol);
+		if(hSession->sock < 0)
+		{
+			((struct resolver *) host)->message = strerror(errno);
+			continue;
+		}
+
+		// Connected!
+		if(connect(hSession->sock, rp->ai_addr, rp->ai_addrlen))
+		{
+			SOCK_CLOSE(hSession);
+			((struct resolver *) host)->message = strerror(errno);
+			continue;
+		}
+
+	}
+
+	freeaddrinfo(result);
+
+	return 0;
+
+}
+
+int lib3270_connect(H3270 *hSession, int seconds)
+{
  	int					  s;
 	int					  optval;
 	struct addrinfo		  hints;
@@ -255,9 +278,7 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 	if(hSession->sock > 0)
 		return errno = EBUSY;
  
-#if defined(_WIN32)
 	sockstart(hSession);
-#endif
  
 #if defined(HAVE_LIBSSL)
 	set_ssl_state(hSession,LIB3270_SSL_UNSECURE);
@@ -266,72 +287,47 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 	snprintf(hSession->full_model_name,LIB3270_FULL_MODEL_NAME_LENGTH,"IBM-327%c-%d",hSession->m3279 ? '9' : '8', hSession->model_num);
  
 	hSession->ever_3270	= False;
-
-	memset(&hints, 0, sizeof(struct addrinfo));
-	hints.ai_family 	= AF_UNSPEC;	/* Allow IPv4 or IPv6 */
-	hints.ai_socktype	= SOCK_STREAM;	/* Stream socket */
-	hints.ai_flags		= AI_PASSIVE;	/* For wildcard IP address */
-	hints.ai_protocol	= 0;			/* Any protocol */
-	hints.ai_canonname	= NULL;
-	hints.ai_addr		= NULL;
-	hints.ai_next		= NULL;
-
 	hSession->cstate = LIB3270_RESOLVING;
-	lib3270_st_changed(hSession, LIB3270_STATE_RESOLVING, True);
  
-	s = getaddrinfo(hSession->host.current, hSession->host.srvc, &hints, &result);
+	lib3270_st_changed(hSession, LIB3270_STATE_RESOLVING, True);
  
-	if(s != 0)
+	// s = getaddrinfo(hSession->host.current, hSession->host.srvc, &hints, &result);
+	if(lib3270_run_task(hSession, background_connect, &host) || hSession->sock < 0)
 	{
 		char buffer[4096];
+		char msg[4096];
  
 		snprintf(buffer,4095,_( "Can't connect to %s:%s"), hSession->host.current, hSession->host.srvc);
  
-#if defined(WIN32) && defined(HAVE_ICONV)
+		strncpy(msg,host.message,4095);
+
+#ifdef HAVE_ICONV
+		if(host.convert)
 		{
-			char 		  tmpbuffer[4096];
-			const char 	* msg 		= gai_strerror(s);
-			size_t		  in 		= strlen(msg);
-			size_t		  out 		= 4096;
-			char		* ptr		= tmpbuffer;
+			char	* ptr = msg;
+			size_t	  out = 4096;
  
 			iconv_t hConv = iconv_open(lib3270_win32_local_charset(),"UTF-8");
-
-			trace("Antes: [%s]",msg);
-			if(iconv(hConv,&msg,&in,&ptr,&out) != ((size_t) -1))
-				msg = tmpbuffer;
-			trace("Depois: [%s]",msg);
-
+			if(iconv(hConv,&host.message,&in,&ptr,&out) == ((size_t) -1))
+			{
+				strncpy(msg,host.message,4095);
+			}
 			iconv_close(hConv);
  
-			lib3270_popup_dialog(	hSession,
-									LIB3270_NOTIFY_ERROR,
-									_( "Connection error" ),
-									buffer,
-									"%s",
-									msg);
 		}
+#endif // HAVE_ICONV
  
-#else
 		lib3270_popup_dialog(	hSession,
 								LIB3270_NOTIFY_ERROR,
 								_( "Connection error" ),
 								buffer,
 								"%s",
-								gai_strerror(s));
-#endif // WIN32
-
+								msg);
  
 		lib3270_set_disconnected(hSession);
-		return errno = ENOENT;
+		return errno = ENOTCONN;
 	}
  
-
-#if !defined(_WIN32)
-	/* don't share the socket with our children */
-	(void) fcntl(hSession->sock, F_SETFD, 1);
-#endif
-
 	hSession->ever_3270 = False;
 	hSession->ssl.host  = 0;
  
@@ -353,141 +349,40 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
 	}
  
 	/* connect */
-	status_connecting(hSession,1);
-
-	for(rp = result; hSession->sock < 0 && rp != NULL; rp = rp->ai_next)
-	{
-		hSession->sock = socket(rp->ai_family, rp->ai_socktype, rp->ai_protocol);
-		if(hSession->sock < 0)
-			continue;
-
-		trace("sock=%d",hSession->sock);
-
-#ifdef WIN32
  
-		WSASetLastError(0);
-		u_long iMode=1;
-		trace("sock=%d",hSession->sock);
+	WSASetLastError(0);
+	u_long iMode=1;
  
-		optval = lib3270_get_toggle(hSession,LIB3270_TOGGLE_KEEP_ALIVE) ? 1 : 0;
-		if (setsockopt(hSession->sock, SOL_SOCKET, SO_KEEPALIVE, (char *)&optval, sizeof(optval)) < 0)
-		{
-			char buffer[4096];
-			snprintf(buffer,4095,N_( "Can't %s network keep-alive" ), optval ? _( "enable" ) : _( "disable" ));
-
-			lib3270_popup_dialog(	hSession,
-									LIB3270_NOTIFY_ERROR,
-									_( "Connection error" ),
-									buffer,
-									"%s", lib3270_win32_strerror(WSAGetLastError()));
-			SOCK_CLOSE(hSession);
-			continue;
-		}
-		else
-		{
-			trace_dsn(hSession,"Network keep-alive is %s\n",optval ? "enabled" : "disabled" );
-		}
-
-		if(ioctlsocket(hSession->sock,FIONBIO,&iMode))
-		{
-			lib3270_popup_dialog(	hSession,
-									LIB3270_NOTIFY_ERROR,
-									_( "Connection error" ),
-									_( "ioctlsocket(FIONBIO) failed." ),
-									"%s", lib3270_win32_strerror(WSAGetLastError()));
-			SOCK_CLOSE(hSession);
-			continue;
-		}
-		else if(connect(hSession->sock, rp->ai_addr, rp->ai_addrlen))
-		{
-			int err = WSAGetLastError();
-			if(err != WSAEWOULDBLOCK)
-			{
-				char buffer[4096];
-				snprintf(buffer,4095,_( "Can't connect to %s"), lib3270_get_host(hSession));
-
-				lib3270_popup_dialog(	hSession,
-										LIB3270_NOTIFY_ERROR,
-										_( "Connection error" ),
-										buffer,
-										"%s", lib3270_win32_strerror(err));
-				SOCK_CLOSE(hSession);
-				continue;
-
-			}
-		}
-
-		optval = 1;
-		if (setsockopt(hSession->sock, SOL_SOCKET, SO_OOBINLINE, (char *)&optval,sizeof(optval)) < 0)
-		{
-			lib3270_popup_dialog(	hSession,
-									LIB3270_NOTIFY_ERROR,
-									_( "Connection error" ),
-									_( "setsockopt(SO_OOBINLINE) has failed" ),
-									"%s", lib3270_win32_strerror(WSAGetLastError()));
-			SOCK_CLOSE(hSession);
-			continue;
-		}
-
-#else
-		fcntl(hSession->sock, F_SETFL,fcntl(hSession->sock,F_GETFL,0)|O_NONBLOCK);
-
-		errno = 0;
-		if(connect(hSession->sock, rp->ai_addr, rp->ai_addrlen))
-		{
-			if( errno != EINPROGRESS )
-			{
-				char buffer[4096];
-				snprintf(buffer,4095,_( "Can't connect to %s:%s"), hSession->host.current, hSession->host.srvc);
-
-				lib3270_popup_dialog(	hSession,
-										LIB3270_NOTIFY_ERROR,
-										_( "Connection error" ),
-										buffer,
-										"%s",
-										strerror(errno));
-				SOCK_CLOSE(hSession);
-				continue;
-			}
-		}
-
-		optval = 1;
-		if (setsockopt(hSession->sock, SOL_SOCKET, SO_OOBINLINE, (char *)&optval,sizeof(optval)) < 0)
-		{
-			lib3270_popup_dialog(	hSession,
-									LIB3270_NOTIFY_ERROR,
-									_( "Connection error" ),
-									_( "setsockopt(SO_OOBINLINE) has failed" ),
-									"%s",
-									strerror(errno));
-			SOCK_CLOSE(hSession);
-			continue;
-		}
-
-		optval = lib3270_get_toggle(hSession,LIB3270_TOGGLE_KEEP_ALIVE) ? 1 : 0;
-		if (setsockopt(hSession->sock, SOL_SOCKET, SO_KEEPALIVE, (char *)&optval, sizeof(optval)) < 0)
-		{
-			char buffer[4096];
-			snprintf(buffer,4095,N_( "Can't %s network keep-alive" ), optval ? _( "enable" ) : _( "disable" ));
-
-			lib3270_popup_dialog(	hSession,
-									LIB3270_NOTIFY_ERROR,
-									_( "Connection error" ),
-									buffer,
-									"%s",
-									strerror(errno));
-			SOCK_CLOSE(hSession);
-			continue;
-		}
-		else
-		{
-			trace_dsn(hSession,"Network keep-alive is %s\n",optval ? "enabled" : "disabled" );
-		}
+	optval = lib3270_get_toggle(hSession,LIB3270_TOGGLE_KEEP_ALIVE) ? 1 : 0;
+	if (setsockopt(hSession->sock, SOL_SOCKET, SO_KEEPALIVE, (char *)&optval, sizeof(optval)) < 0)
+	{
+		char buffer[4096];
+		snprintf(buffer,4095,N_( "Can't %s network keep-alive" ), optval ? _( "enable" ) : _( "disable" ));
  
-#endif // WIN32
+		lib3270_popup_dialog(	hSession,
+								LIB3270_NOTIFY_ERROR,
+								_( "Connection error" ),
+								buffer,
+								"%s", lib3270_win32_strerror(WSAGetLastError()));
+		SOCK_CLOSE(hSession);
+		return errno = ENOTCONN;
+	}
+	else
+	{
+		trace_dsn(hSession,"Network keep-alive is %s\n",optval ? "enabled" : "disabled" );
 	}
  
-	freeaddrinfo(result);
+	optval = 1;
+	if (setsockopt(hSession->sock, SOL_SOCKET, SO_OOBINLINE, (char *)&optval,sizeof(optval)) < 0)
+	{
+		lib3270_popup_dialog(	hSession,
+								LIB3270_NOTIFY_ERROR,
+								_( "Connection error" ),
+								_( "setsockopt(SO_OOBINLINE) has failed" ),
+								"%s", lib3270_win32_strerror(WSAGetLastError()));
+		SOCK_CLOSE(hSession);
+		return errno = ENOTCONN;
+	}
  
 	// set options for inline out-of-band data and keepalives
  
@@ -502,12 +397,6 @@ static void net_connected(H3270 *hSession, int fd unused, LIB3270_IO_FLAG flag u
  
 	*/
  
-	if(hSession->sock < 0)
-	{
-		lib3270_set_disconnected(hSession);
-		return errno = ENOTCONN;
-	}
-
 	// Connecting, set callbacks, wait for connection
 	hSession->cstate = LIB3270_PENDING;
 	lib3270_st_changed(hSession, LIB3270_STATE_HALF_CONNECT, True);
...	...	@@ -70,8 +70,12 @@ DEPENDS= \
70	70	Makefile \
71	71	src/include/*.h \
72	72	src/include/lib3270/*.h \
73		- src/lib3270/*.h
74		-
	73	+ src/lib3270/*.h \
	74	+ $(wildcard src/lib3270/*) \
	75	+ $(wildcard src/lib3270/@OSNAME@/*) \
	76	+ $(wildcard src/lib3270/ssl/*) \
	77	+ $(wildcard src/lib3270/ssl/@OSNAME@/*) \
	78	+ $(wildcard src/@OSNAME@/*)
75	79
76	80	#---[ Debug Rules ]----------------------------------------------------------------------
77	81
...	...
...	...	@@ -65,7 +65,6 @@
65	65	<Unit filename="src/include/lib3270.h" />
66	66	<Unit filename="src/include/lib3270/X11keysym.h" />
67	67	<Unit filename="src/include/lib3270/action_table.h" />
68		- <Unit filename="src/include/lib3270/actions.h" />
69	68	<Unit filename="src/include/lib3270/charset.h" />
70	69	<Unit filename="src/include/lib3270/filetransfer.h" />
71	70	<Unit filename="src/include/lib3270/html.h" />
...	...	@@ -215,7 +214,7 @@
215	214	<Unit filename="src/lib3270/sf.c">
216	215	<Option compilerVar="CC" />
217	216	</Unit>
218		- <Unit filename="src/lib3270/ssl/ctx_init.c">
	217	+ <Unit filename="src/lib3270/ssl/linux/ctx_init.c">
219	218	<Option compilerVar="CC" />
220	219	</Unit>
221	220	<Unit filename="src/lib3270/ssl/negotiate.c">
...	...	@@ -224,6 +223,9 @@
224	223	<Unit filename="src/lib3270/ssl/state.c">
225	224	<Option compilerVar="CC" />
226	225	</Unit>
	226	+ <Unit filename="src/lib3270/ssl/windows/ctx_init.c">
	227	+ <Option compilerVar="CC" />
	228	+ </Unit>
227	229	<Unit filename="src/lib3270/state.c">
228	230	<Option compilerVar="CC" />
229	231	</Unit>
...	...
...	...	@@ -30,8 +30,9 @@ LIBNAME=lib@LIB3270_NAME@
30	30
31	31	SOURCES= \
32	32	$(wildcard *.c) \
33		- $(wildcard ssl/*.c) \
34	33	$(wildcard @OSNAME@/*.c) \
	34	+ $(wildcard ssl/*.c) \
	35	+ $(wildcard ssl/@OSNAME@/*.c) \
35	36	$(wildcard @OSNAME@/*.rc) \
36	37	$(BASEDIR)/.tmp/$(LIBNAME)/fallbacks.c
37	38
...	...
...	...	@@ -29,11 +29,13 @@
29	29	*
30	30	*/
31	31
32		-/*
33		- * ansi.c
34		- * ANSI terminal emulation.
	32	+
	33	+/**
	34	+ * @brief ANSI terminal emulation.
35	35	*/
36	36
	37	+#pragma GCC diagnostic ignored "-Wsign-compare"
	38	+
37	39	#include "private.h"
38	40
39	41	#if defined(X3270_ANSI) /[/
...	...
...	...	@@ -30,13 +30,12 @@
30	30	*/
31	31
32	32	/**
33		- * @file
34		- * This module handles interpretation of the 3270 data stream and
35		- * maintenance of the 3270 device state. It was split out from
36		- * screen.c, which handles X operations.
	33	+ * @brief Handles interpretation of the 3270 data stream and maintenance of the 3270 device state.
37	34	*
38	35	*/
39	36
	37	+#pragma GCC diagnostic ignored "-Wsign-compare"
	38	+
40	39	#include "private.h"
41	40	#include <errno.h>
42	41	#include <stdlib.h>
...	...	@@ -2648,7 +2647,7 @@ void ctlr_wrapping_memmove(H3270 *hSession, int baddr_to, int baddr_from, int co
2648	2647	}
2649	2648
2650	2649	/**
2651		- * Copy a block of characters in the 3270 buffer.
	2650	+ * @brief Copy a block of characters in the 3270 buffer.
2652	2651	*
2653	2652	* Copy a block of characters in the 3270 buffer, optionally including all of
2654	2653	* the extended attributes. (The character set, which is actually kept in the
...	...	@@ -2656,7 +2655,7 @@ void ctlr_wrapping_memmove(H3270 *hSession, int baddr_to, int baddr_from, int co
2656	2655	*
2657	2656	* @param hSession Session handle
2658	2657	*/
2659		-void ctlr_bcopy(H3270 *hSession, int baddr_from, int baddr_to, int count, int move_ea)
	2658	+void ctlr_bcopy(H3270 *hSession, int baddr_from, int baddr_to, int count, int move_ea unused)
2660	2659	{
2661	2660	/* Move the characters. */
2662	2661	if (memcmp((char ) &hSession->ea_buf[baddr_from],(char ) &hSession->ea_buf[baddr_to],count * sizeof(struct lib3270_ea)))
...	...	@@ -2669,12 +2668,12 @@ void ctlr_bcopy(H3270 *hSession, int baddr_from, int baddr_to, int count, int mo
2669	2668
2670	2669	#if defined(X3270_ANSI) /[/
2671	2670	/**
2672		- * Erase a region of the 3270 buffer, optionally clearing extended attributes as well.
	2671	+ * @brief Erase a region of the 3270 buffer, optionally clearing extended attributes as well.
2673	2672	*
2674	2673	* @param hSession Session handle
2675	2674	*
2676	2675	*/
2677		-void ctlr_aclear(H3270 *hSession, int baddr, int count, int clear_ea)
	2676	+void ctlr_aclear(H3270 *hSession, int baddr, int count, int clear_ea unused)
2678	2677	{
2679	2678	if (memcmp((char ) &hSession->ea_buf[baddr], (char ) hSession->zero_buf,
2680	2679	count * sizeof(struct lib3270_ea))) {
...	...
...	...	@@ -29,6 +29,8 @@
29	29	*
30	30	*/
31	31
	32	+#pragma GCC diagnostic ignored "-Wsign-compare"
	33	+
32	34	#ifdef WIN32
33	35	#include <winsock2.h>
34	36	#include <windows.h>
...	...
...	...	@@ -31,13 +31,12 @@
31	31	*/
32	32
33	33
34		-/*
35		- * host.c
36		- * This module handles the ibm_hosts file, connecting to and
37		- * disconnecting from hosts, and state changes on the host
38		- * connection.
	34	+/**
	35	+ * @brief Handle connect and disconnect from hosts, and state changes on the host connection.
39	36	*/
40	37
	38	+#pragma GCC diagnostic ignored "-Wsign-compare"
	39	+
41	40	#include <malloc.h>
42	41	#include "private.h"
43	42	// #include "appres.h"
...	...
...	...	@@ -124,9 +124,9 @@
124	124
125	125	static void append_string(struct html_info info, const char text)
126	126	{
127		- int sz = strlen(info->text)+strlen(text);
	127	+ size_t sz = strlen(info->text)+strlen(text);
128	128
129		- if(strlen(info->text)+sz <= info->szText)
	129	+ if(strlen(info->text)+sz <= ((size_t)info->szText) )
130	130	{
131	131	info->szText += (100+sz);
132	132	info->text = lib3270_realloc(info->text,info->szText);
...	...
...	...	@@ -228,7 +228,7 @@ static void * internal_add_poll(H3270 *session, int fd, LIB3270_IO_FLAG flag, vo
228	228	ip->userdata = userdata;
229	229	ip->call = call;
230	230
231		- ip->next = session->inputs;
	231	+ ip->next = (input_t *) session->inputs;
232	232
233	233	session->inputs = ip;
234	234	session->inputs_changed = 1;
...	...	@@ -267,17 +267,16 @@ static void internal_remove_poll(H3270 session, void id)
267	267	static void internal_set_poll_state(H3270 session, void id, int enabled)
268	268	{
269	269	input_t *ip;
270		- input_t prev = (input_t )NULL;
271	270
272	271	for (ip = session->inputs; ip != (input_t ) NULL; ip = (input_t ) ip->next)
273	272	{
274	273	if (ip == (input_t *)id)
275	274	{
276	275	ip->enabled = enabled ? 1 : 0;
	276	+ session->inputs_changed = 1;
277	277	break;
278	278	}
279	279
280		- prev = ip;
281	280	}
282	281
283	282	}
...	...	@@ -318,7 +317,7 @@ LIB3270_EXPORT void lib3270_update_poll_fd(H3270 *session, int fd, LIB3270_IO_F
318	317
319	318	input_t *ip;
320	319
321		- for (ip = session->inputs; ip != (input_t *)NULL; ip = ip->next)
	320	+ for (ip = session->inputs; ip != (input_t )NULL; ip = (input_t ) ip->next)
322	321	{
323	322	if(ip->fd == fd)
324	323	{
...	...
...	...	@@ -33,6 +33,9 @@
33	33	* @brief This module handles the keyboard for the 3270 emulator.
34	34	*/
35	35
	36	+#pragma GCC diagnostic ignored "-Wsign-compare"
	37	+
	38	+
36	39	struct ta;
37	40
38	41	#define LIB3270_TA struct ta
...	...