Provide an extensible buffer implementation that uses a read callback.

The read callback returns a TLS13_IO_* value on EOF, failure, want pollin or want pollout, or a positive value indicating the number of bytes read. This will be used by upcoming TLSv1.3 handshake message and record processing code, both of which need the ability to read a fixed size header, before extending the buffer to the number of bytes specified in the header. ok beck@ tb@
author: jsing <> 2019-01-17 06:32:12 +0000
committer: jsing <> 2019-01-17 06:32:12 +0000
commit: 338694cf0d2ff38a00bab7103081ffa3db2cbeca (patch)
tree: aaa2cc958ec6b223edb11b9ce2f0c7cfe55040f0
parent: cc9200b6a36a087c17fb0668d7adccb6a6261dd5 (diff)
download: openbsd-338694cf0d2ff38a00bab7103081ffa3db2cbeca.tar.gz
openbsd-338694cf0d2ff38a00bab7103081ffa3db2cbeca.tar.bz2
openbsd-338694cf0d2ff38a00bab7103081ffa3db2cbeca.zip
3 files changed, 148 insertions, 3 deletions
diff --git a/src/lib/libssl/Makefile b/src/lib/libssl/Makefile
index 8923c05bd4..a1300bc979 100644
--- a/src/lib/libssl/Makefile
+++ b/src/lib/libssl/Makefile
@@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.44 2019/01/17 00:56:57 beck Exp $
+# $OpenBSD: Makefile,v 1.45 2019/01/17 06:32:12 jsing Exp $
 .include <bsd.own.mk>
 .ifndef NOMAN
@@ -34,7 +34,8 @@ SRCS= \
        ssl_asn1.c ssl_txt.c ssl_algs.c \
        bio_ssl.c ssl_err.c ssl_methods.c \
        ssl_packet.c ssl_tlsext.c ssl_versions.c pqueue.c ssl_init.c \
-        tls13_handshake.c tls13_key_schedule.c tls13_tlsext.c ssl_sigalgs.c
+        tls13_buffer.c tls13_handshake.c tls13_key_schedule.c tls13_tlsext.c \
+        ssl_sigalgs.c
 SRCS+=  s3_cbc.c
 SRCS+=  bs_ber.c bs_cbb.c bs_cbs.c
diff --git a/src/lib/libssl/tls13_buffer.c b/src/lib/libssl/tls13_buffer.c
new file mode 100644
index 0000000000..1b490c8b46
--- /dev/null
+++ b/src/lib/libssl/tls13_buffer.c
@@ -0,0 +1,125 @@
+/* $OpenBSD: tls13_buffer.c,v 1.1 2019/01/17 06:32:12 jsing Exp $ */
+/*
+ * Copyright (c) 2018, 2019 Joel Sing <jsing@openbsd.org>
+ *
+ * Permission to use, copy, modify, and distribute this software for any
+ * purpose with or without fee is hereby granted, provided that the above
+ * copyright notice and this permission notice appear in all copies.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+ * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+ * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+ * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+ * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+ * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+ * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+ */
+#include "ssl_locl.h"
+#include "bytestring.h"
+#include "tls13_internal.h"
+struct tls13_buffer {
+        size_t capacity;
+        uint8_t *data;
+        size_t len;
+        size_t offset;
+};
+static int tls13_buffer_resize(struct tls13_buffer *buf, size_t capacity);
+struct tls13_buffer *
+tls13_buffer_new(size_t init_size)
+{
+        struct tls13_buffer *buf = NULL;
+        if ((buf = calloc(1, sizeof(struct tls13_buffer))) == NULL)
+                goto err;
+        if (!tls13_buffer_resize(buf, init_size))
+                goto err;
+        return buf;
+ err:
+        tls13_buffer_free(buf);
+        return NULL;
+}
+void
+tls13_buffer_free(struct tls13_buffer *buf)
+{
+        if (buf == NULL)
+                return;
+        freezero(buf->data, buf->capacity);
+        freezero(buf, sizeof(struct tls13_buffer));
+}
+static int
+tls13_buffer_resize(struct tls13_buffer *buf, size_t capacity)
+{
+        uint8_t *data;
+        if (buf->capacity == capacity)
+                return 1;
+        if ((data = recallocarray(buf->data, buf->capacity, capacity, 1)) == NULL)
+                return 0;
+        buf->data = data;
+        buf->capacity = capacity;
+        return 1;
+}
+ssize_t
+tls13_buffer_extend(struct tls13_buffer *buf, size_t len,
+    tls13_read_cb read_cb, void *cb_arg)
+{
+        ssize_t ret;
+        if (len == buf->len)
+                return buf->len;
+        if (len < buf->len)
+                return TLS13_IO_FAILURE;
+        if (!tls13_buffer_resize(buf, len))
+                return TLS13_IO_FAILURE;
+        for (;;) {
+                if ((ret = read_cb(&buf->data[buf->len],
+                    buf->capacity - buf->len, cb_arg)) <= 0)
+                        return ret;
+                buf->len += ret;
+                if (buf->len == buf->capacity)
+                        return buf->len;
+        }
+}
+void
+tls13_buffer_cbs(struct tls13_buffer *buf, CBS *cbs)
+{
+        CBS_init(cbs, buf->data, buf->len);
+}
+int
+tls13_buffer_finish(struct tls13_buffer *buf, uint8_t **out, size_t *out_len)
+{
+        if (out == NULL || out_len == NULL)
+                return 0;
+        *out = buf->data;
+        *out_len = buf->len;
+        buf->capacity = 0;
+        buf->data = NULL;
+        buf->len = 0;
+        return 1;
+}
diff --git a/src/lib/libssl/tls13_internal.h b/src/lib/libssl/tls13_internal.h
index 83f9988140..872aced77c 100644
--- a/src/lib/libssl/tls13_internal.h
+++ b/src/lib/libssl/tls13_internal.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: tls13_internal.h,v 1.5 2018/11/09 23:56:20 jsing Exp $ */
+/* $OpenBSD: tls13_internal.h,v 1.6 2019/01/17 06:32:12 jsing Exp $ */
 /*
 * Copyright (c) 2018 Bob Beck <beck@openbsd.org>
 * Copyright (c) 2018 Theo Buehler <tb@openbsd.org>
@@ -21,8 +21,27 @@
 #include <openssl/evp.h>
+#include "bytestring.h"
 __BEGIN_HIDDEN_DECLS
+#define TLS13_IO_EOF            0
+#define TLS13_IO_FAILURE        -1
+#define TLS13_IO_WANT_POLLIN    -2
+#define TLS13_IO_WANT_POLLOUT   -3
+typedef ssize_t (*tls13_read_cb)(void *_buf, size_t _buflen, void *_cb_arg);
+typedef ssize_t (*tls13_write_cb)(const void *_buf, size_t _buflen, void *_cb_arg);
+struct tls13_buffer;
+struct tls13_buffer *tls13_buffer_new(size_t init_size);
+void tls13_buffer_free(struct tls13_buffer *buf);
+ssize_t tls13_buffer_extend(struct tls13_buffer *buf, size_t len,
+    tls13_read_cb read_cb, void *cb_arg);
+void tls13_buffer_cbs(struct tls13_buffer *buf, CBS *cbs);
+int tls13_buffer_finish(struct tls13_buffer *buf, uint8_t **out, size_t *out_len);
 struct tls13_secret {
        uint8_t *data;
        size_t len;
author	jsing <>	2019-01-17 06:32:12 +0000
committer	jsing <>	2019-01-17 06:32:12 +0000
commit	338694cf0d2ff38a00bab7103081ffa3db2cbeca (patch)
tree	aaa2cc958ec6b223edb11b9ce2f0c7cfe55040f0
parent	cc9200b6a36a087c17fb0668d7adccb6a6261dd5 (diff)
download	openbsd-338694cf0d2ff38a00bab7103081ffa3db2cbeca.tar.gz openbsd-338694cf0d2ff38a00bab7103081ffa3db2cbeca.tar.bz2 openbsd-338694cf0d2ff38a00bab7103081ffa3db2cbeca.zip

diff --git a/src/lib/libssl/Makefile b/src/lib/libssl/Makefile index 8923c05bd4..a1300bc979 100644 --- a/src/lib/libssl/Makefile +++ b/src/lib/libssl/Makefile
@@ -1,4 +1,4 @@
1	# $OpenBSD: Makefile,v 1.44 2019/01/17 00:56:57 beck Exp $	1	# $OpenBSD: Makefile,v 1.45 2019/01/17 06:32:12 jsing Exp $
2		2
3	.include <bsd.own.mk>	3	.include <bsd.own.mk>
4	.ifndef NOMAN	4	.ifndef NOMAN
@@ -34,7 +34,8 @@ SRCS= \
34	ssl_asn1.c ssl_txt.c ssl_algs.c \	34	ssl_asn1.c ssl_txt.c ssl_algs.c \
35	bio_ssl.c ssl_err.c ssl_methods.c \	35	bio_ssl.c ssl_err.c ssl_methods.c \
36	ssl_packet.c ssl_tlsext.c ssl_versions.c pqueue.c ssl_init.c \	36	ssl_packet.c ssl_tlsext.c ssl_versions.c pqueue.c ssl_init.c \
37	tls13_handshake.c tls13_key_schedule.c tls13_tlsext.c ssl_sigalgs.c	37	tls13_buffer.c tls13_handshake.c tls13_key_schedule.c tls13_tlsext.c \
		38	ssl_sigalgs.c
38	SRCS+= s3_cbc.c	39	SRCS+= s3_cbc.c
39	SRCS+= bs_ber.c bs_cbb.c bs_cbs.c	40	SRCS+= bs_ber.c bs_cbb.c bs_cbs.c
40		41


diff --git a/src/lib/libssl/tls13_buffer.c b/src/lib/libssl/tls13_buffer.c new file mode 100644 index 0000000000..1b490c8b46 --- /dev/null +++ b/src/lib/libssl/tls13_buffer.c
@@ -0,0 +1,125 @@
		1	/* $OpenBSD: tls13_buffer.c,v 1.1 2019/01/17 06:32:12 jsing Exp $ */
		2	/*
		3	* Copyright (c) 2018, 2019 Joel Sing <jsing@openbsd.org>
		4	*
		5	* Permission to use, copy, modify, and distribute this software for any
		6	* purpose with or without fee is hereby granted, provided that the above
		7	* copyright notice and this permission notice appear in all copies.
		8	*
		9	* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
		10	* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
		11	* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
		12	* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
		13	* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
		14	* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
		15	* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
		16	*/
		17
		18	#include "ssl_locl.h"
		19
		20	#include "bytestring.h"
		21	#include "tls13_internal.h"
		22
		23	struct tls13_buffer {
		24	size_t capacity;
		25	uint8_t *data;
		26	size_t len;
		27	size_t offset;
		28	};
		29
		30	static int tls13_buffer_resize(struct tls13_buffer *buf, size_t capacity);
		31
		32	struct tls13_buffer *
		33	tls13_buffer_new(size_t init_size)
		34	{
		35	struct tls13_buffer *buf = NULL;
		36
		37	if ((buf = calloc(1, sizeof(struct tls13_buffer))) == NULL)
		38	goto err;
		39
		40	if (!tls13_buffer_resize(buf, init_size))
		41	goto err;
		42
		43	return buf;
		44
		45	err:
		46	tls13_buffer_free(buf);
		47
		48	return NULL;
		49	}
		50
		51	void
		52	tls13_buffer_free(struct tls13_buffer *buf)
		53	{
		54	if (buf == NULL)
		55	return;
		56
		57	freezero(buf->data, buf->capacity);
		58	freezero(buf, sizeof(struct tls13_buffer));
		59	}
		60
		61	static int
		62	tls13_buffer_resize(struct tls13_buffer *buf, size_t capacity)
		63	{
		64	uint8_t *data;
		65
		66	if (buf->capacity == capacity)
		67	return 1;
		68
		69	if ((data = recallocarray(buf->data, buf->capacity, capacity, 1)) == NULL)
		70	return 0;
		71
		72	buf->data = data;
		73	buf->capacity = capacity;
		74
		75	return 1;
		76	}
		77
		78	ssize_t
		79	tls13_buffer_extend(struct tls13_buffer *buf, size_t len,
		80	tls13_read_cb read_cb, void *cb_arg)
		81	{
		82	ssize_t ret;
		83
		84	if (len == buf->len)
		85	return buf->len;
		86
		87	if (len < buf->len)
		88	return TLS13_IO_FAILURE;
		89
		90	if (!tls13_buffer_resize(buf, len))
		91	return TLS13_IO_FAILURE;
		92
		93	for (;;) {
		94	if ((ret = read_cb(&buf->data[buf->len],
		95	buf->capacity - buf->len, cb_arg)) <= 0)
		96	return ret;
		97
		98	buf->len += ret;
		99
		100	if (buf->len == buf->capacity)
		101	return buf->len;
		102	}
		103	}
		104
		105	void
		106	tls13_buffer_cbs(struct tls13_buffer buf, CBS cbs)
		107	{
		108	CBS_init(cbs, buf->data, buf->len);
		109	}
		110
		111	int
		112	tls13_buffer_finish(struct tls13_buffer buf, uint8_t out, size_t out_len)
		113	{
		114	if (out == NULL \|\| out_len == NULL)
		115	return 0;
		116
		117	*out = buf->data;
		118	*out_len = buf->len;
		119
		120	buf->capacity = 0;
		121	buf->data = NULL;
		122	buf->len = 0;
		123
		124	return 1;
		125	}


diff --git a/src/lib/libssl/tls13_internal.h b/src/lib/libssl/tls13_internal.h index 83f9988140..872aced77c 100644 --- a/src/lib/libssl/tls13_internal.h +++ b/src/lib/libssl/tls13_internal.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: tls13_internal.h,v 1.5 2018/11/09 23:56:20 jsing Exp $ */	1	/* $OpenBSD: tls13_internal.h,v 1.6 2019/01/17 06:32:12 jsing Exp $ */
2	/*	2	/*
3	* Copyright (c) 2018 Bob Beck <beck@openbsd.org>	3	* Copyright (c) 2018 Bob Beck <beck@openbsd.org>
4	* Copyright (c) 2018 Theo Buehler <tb@openbsd.org>	4	* Copyright (c) 2018 Theo Buehler <tb@openbsd.org>
@@ -21,8 +21,27 @@
21		21
22	#include <openssl/evp.h>	22	#include <openssl/evp.h>
23		23
		24	#include "bytestring.h"
		25
24	__BEGIN_HIDDEN_DECLS	26	__BEGIN_HIDDEN_DECLS
25		27
		28	#define TLS13_IO_EOF 0
		29	#define TLS13_IO_FAILURE -1
		30	#define TLS13_IO_WANT_POLLIN -2
		31	#define TLS13_IO_WANT_POLLOUT -3
		32
		33	typedef ssize_t (tls13_read_cb)(void _buf, size_t _buflen, void *_cb_arg);
		34	typedef ssize_t (tls13_write_cb)(const void _buf, size_t _buflen, void *_cb_arg);
		35
		36	struct tls13_buffer;
		37
		38	struct tls13_buffer *tls13_buffer_new(size_t init_size);
		39	void tls13_buffer_free(struct tls13_buffer *buf);
		40	ssize_t tls13_buffer_extend(struct tls13_buffer *buf, size_t len,
		41	tls13_read_cb read_cb, void *cb_arg);
		42	void tls13_buffer_cbs(struct tls13_buffer buf, CBS cbs);
		43	int tls13_buffer_finish(struct tls13_buffer buf, uint8_t out, size_t out_len);
		44
26	struct tls13_secret {	45	struct tls13_secret {
27	uint8_t *data;	46	uint8_t *data;
28	size_t len;	47	size_t len;