1 files changed, 106 insertions, 1 deletions
diff --git a/src/lib/libssl/ssl_lib.c b/src/lib/libssl/ssl_lib.c
index f0f0150d19..c0ca19c7c1 100644
--- a/src/lib/libssl/ssl_lib.c
+++ b/src/lib/libssl/ssl_lib.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_lib.c,v 1.303 2022/08/21 19:32:38 jsing Exp $ */
+/* $OpenBSD: ssl_lib.c,v 1.304 2022/08/21 19:42:15 jsing Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -2607,6 +2607,105 @@ SSL_set_quic_method(SSL *ssl, const SSL_QUIC_METHOD *quic_method)
        return 1;
 }
+size_t
+SSL_quic_max_handshake_flight_len(const SSL *ssl,
+    enum ssl_encryption_level_t level)
+{
+        size_t flight_len;
+        /* Limit flights to 16K when there are no large certificate messages. */
+        flight_len = 16384;
+        switch (level) {
+        case ssl_encryption_initial:
+                return flight_len;
+        case ssl_encryption_early_data:
+                /* QUIC does not send EndOfEarlyData. */
+                return 0;
+        case ssl_encryption_handshake:
+                if (ssl->server) {
+                        /*
+                         * Servers may receive Certificate message if configured
+                         * to request client certificates.
+                         */
+                        if ((SSL_get_verify_mode(ssl) & SSL_VERIFY_PEER) != 0 &&
+                            ssl->internal->max_cert_list > flight_len)
+                                flight_len = ssl->internal->max_cert_list;
+                } else {
+                        /*
+                         * Clients may receive both Certificate message and a
+                         * CertificateRequest message.
+                         */
+                        if (ssl->internal->max_cert_list * 2 > flight_len)
+                                flight_len = ssl->internal->max_cert_list * 2;
+                }
+                return flight_len;
+        case ssl_encryption_application:
+                /*
+                 * Note there is not actually a bound on the number of
+                 * NewSessionTickets one may send in a row. This level may need
+                 * more involved flow control.
+                 */
+                return flight_len;
+        }
+        return 0;
+}
+enum ssl_encryption_level_t
+SSL_quic_read_level(const SSL *ssl)
+{
+        return ssl->s3->hs.tls13.quic_read_level;
+}
+enum ssl_encryption_level_t
+SSL_quic_write_level(const SSL *ssl)
+{
+        return ssl->s3->hs.tls13.quic_write_level;
+}
+int
+SSL_provide_quic_data(SSL *ssl, enum ssl_encryption_level_t level,
+    const uint8_t *data, size_t len)
+{
+        if (!SSL_is_quic(ssl)) {
+                SSLerror(ssl, ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED);
+                return 0;
+        }
+        if (level != SSL_quic_read_level(ssl)) {
+                SSLerror(ssl, SSL_R_WRONG_ENCRYPTION_LEVEL_RECEIVED);
+                return 0;
+        }
+        if (ssl->s3->hs.tls13.quic_read_buffer == NULL) {
+                ssl->s3->hs.tls13.quic_read_buffer = tls_buffer_new(0);
+                if (ssl->s3->hs.tls13.quic_read_buffer == NULL) {
+                        SSLerror(ssl, ERR_R_MALLOC_FAILURE);
+                        return 0;
+                }
+        }
+        /* XXX - note that this does not currently downsize. */
+        tls_buffer_set_capacity_limit(ssl->s3->hs.tls13.quic_read_buffer,
+            SSL_quic_max_handshake_flight_len(ssl, level));
+        /*
+         * XXX - an append that fails due to exceeding capacity should set
+         * SSL_R_EXCESSIVE_MESSAGE_SIZE.
+         */
+        return tls_buffer_append(ssl->s3->hs.tls13.quic_read_buffer, data, len);
+}
+int
+SSL_process_quic_post_handshake(SSL *ssl)
+{
+        /* XXX - this needs to run PHH received. */
+        return 1;
+}
 int
 SSL_do_handshake(SSL *s)
 {
@@ -3371,6 +3470,12 @@ SSL_get_peer_quic_transport_params(const SSL *ssl, const uint8_t **out_params,
        *out_params_len = ssl->s3->peer_quic_transport_params_len;
 }
+void
+SSL_set_quic_use_legacy_codepoint(SSL *ssl, int use_legacy)
+{
+        /* Not supported. */
+}
 static int
 ssl_cipher_id_cmp_BSEARCH_CMP_FN(const void *a_, const void *b_)
 {

diff --git a/src/lib/libssl/ssl_lib.c b/src/lib/libssl/ssl_lib.c index f0f0150d19..c0ca19c7c1 100644 --- a/src/lib/libssl/ssl_lib.c +++ b/src/lib/libssl/ssl_lib.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl_lib.c,v 1.303 2022/08/21 19:32:38 jsing Exp $ */	1	/* $OpenBSD: ssl_lib.c,v 1.304 2022/08/21 19:42:15 jsing Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -2607,6 +2607,105 @@ SSL_set_quic_method(SSL ssl, const SSL_QUIC_METHOD quic_method)
2607	return 1;	2607	return 1;
2608	}	2608	}
2609		2609
		2610	size_t
		2611	SSL_quic_max_handshake_flight_len(const SSL *ssl,
		2612	enum ssl_encryption_level_t level)
		2613	{
		2614	size_t flight_len;
		2615
		2616	/* Limit flights to 16K when there are no large certificate messages. */
		2617	flight_len = 16384;
		2618
		2619	switch (level) {
		2620	case ssl_encryption_initial:
		2621	return flight_len;
		2622
		2623	case ssl_encryption_early_data:
		2624	/* QUIC does not send EndOfEarlyData. */
		2625	return 0;
		2626
		2627	case ssl_encryption_handshake:
		2628	if (ssl->server) {
		2629	/*
		2630	* Servers may receive Certificate message if configured
		2631	* to request client certificates.
		2632	*/
		2633	if ((SSL_get_verify_mode(ssl) & SSL_VERIFY_PEER) != 0 &&
		2634	ssl->internal->max_cert_list > flight_len)
		2635	flight_len = ssl->internal->max_cert_list;
		2636	} else {
		2637	/*
		2638	* Clients may receive both Certificate message and a
		2639	* CertificateRequest message.
		2640	*/
		2641	if (ssl->internal->max_cert_list * 2 > flight_len)
		2642	flight_len = ssl->internal->max_cert_list * 2;
		2643	}
		2644	return flight_len;
		2645	case ssl_encryption_application:
		2646	/*
		2647	* Note there is not actually a bound on the number of
		2648	* NewSessionTickets one may send in a row. This level may need
		2649	* more involved flow control.
		2650	*/
		2651	return flight_len;
		2652	}
		2653
		2654	return 0;
		2655	}
		2656
		2657	enum ssl_encryption_level_t
		2658	SSL_quic_read_level(const SSL *ssl)
		2659	{
		2660	return ssl->s3->hs.tls13.quic_read_level;
		2661	}
		2662
		2663	enum ssl_encryption_level_t
		2664	SSL_quic_write_level(const SSL *ssl)
		2665	{
		2666	return ssl->s3->hs.tls13.quic_write_level;
		2667	}
		2668
		2669	int
		2670	SSL_provide_quic_data(SSL *ssl, enum ssl_encryption_level_t level,
		2671	const uint8_t *data, size_t len)
		2672	{
		2673	if (!SSL_is_quic(ssl)) {
		2674	SSLerror(ssl, ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED);
		2675	return 0;
		2676	}
		2677
		2678	if (level != SSL_quic_read_level(ssl)) {
		2679	SSLerror(ssl, SSL_R_WRONG_ENCRYPTION_LEVEL_RECEIVED);
		2680	return 0;
		2681	}
		2682
		2683	if (ssl->s3->hs.tls13.quic_read_buffer == NULL) {
		2684	ssl->s3->hs.tls13.quic_read_buffer = tls_buffer_new(0);
		2685	if (ssl->s3->hs.tls13.quic_read_buffer == NULL) {
		2686	SSLerror(ssl, ERR_R_MALLOC_FAILURE);
		2687	return 0;
		2688	}
		2689	}
		2690
		2691	/* XXX - note that this does not currently downsize. */
		2692	tls_buffer_set_capacity_limit(ssl->s3->hs.tls13.quic_read_buffer,
		2693	SSL_quic_max_handshake_flight_len(ssl, level));
		2694
		2695	/*
		2696	* XXX - an append that fails due to exceeding capacity should set
		2697	* SSL_R_EXCESSIVE_MESSAGE_SIZE.
		2698	*/
		2699	return tls_buffer_append(ssl->s3->hs.tls13.quic_read_buffer, data, len);
		2700	}
		2701
		2702	int
		2703	SSL_process_quic_post_handshake(SSL *ssl)
		2704	{
		2705	/* XXX - this needs to run PHH received. */
		2706	return 1;
		2707	}
		2708
2610	int	2709	int
2611	SSL_do_handshake(SSL *s)	2710	SSL_do_handshake(SSL *s)
2612	{	2711	{
@@ -3371,6 +3470,12 @@ SSL_get_peer_quic_transport_params(const SSL ssl, const uint8_t *out_params,
3371	*out_params_len = ssl->s3->peer_quic_transport_params_len;	3470	*out_params_len = ssl->s3->peer_quic_transport_params_len;
3372	}	3471	}
3373		3472
		3473	void
		3474	SSL_set_quic_use_legacy_codepoint(SSL *ssl, int use_legacy)
		3475	{
		3476	/* Not supported. */
		3477	}
		3478
3374	static int	3479	static int
3375	ssl_cipher_id_cmp_BSEARCH_CMP_FN(const void a_, const void b_)	3480	ssl_cipher_id_cmp_BSEARCH_CMP_FN(const void a_, const void b_)
3376	{	3481	{