RFC 9000 s. 19.8: Enforce maximum stream size

author Hugo Landau <hlandau@openssl.org>

Tue, 6 Jun 2023 15:25:11 +0000 (16:25 +0100)

committer Pauli <pauli@openssl.org>

Sun, 16 Jul 2023 22:17:57 +0000 (08:17 +1000)
author Hugo Landau <hlandau@openssl.org>
Tue, 6 Jun 2023 15:25:11 +0000 (16:25 +0100)
committer Pauli <pauli@openssl.org>
Sun, 16 Jul 2023 22:17:57 +0000 (08:17 +1000)
diff --git a/ssl/quic/quic_rx_depack.c b/ssl/quic/quic_rx_depack.c

index 6e2067f451c995ad613ec4848b6f14edb673cd6c..c75363d03878ac3a376321e0e27d63ff267a8a24 100644 (file)
--- a/ssl/quic/quic_rx_depack.c
+++ b/ssl/quic/quic_rx_depack.c
@@ -519,6 +519,21 @@ static int depack_do_frame_stream(PACKET *pkt, QUIC_CHANNEL *ch,
          return 0;
      }
  
+    /*
+     * RFC 9000 s. 19.8: "The largest offset delivered on a stream -- the sum of
+     * the offset and data length -- cannot exceed 2**62 - 1, as it is not
+     * possible to provide flow control credit for that data. Receipt of a frame
+     * that exceeds this limit MUST be treated as a connection error of type
+     * FRAME_ENCODING_ERROR or FLOW_CONTROL_ERROR."
+     */
+    if (frame_data.offset + frame_data.len > (((uint64_t)1) << 62) - 1) {
+        ossl_quic_channel_raise_protocol_error(ch,
+                                               QUIC_ERR_FRAME_ENCODING_ERROR,
+                                               frame_type,
+                                               "oversize stream");
+        return 0;
+    }
+
      switch (stream->recv_state) {
      case QUIC_RSTREAM_STATE_RECV:
      case QUIC_RSTREAM_STATE_SIZE_KNOWN:
author	Hugo Landau <hlandau@openssl.org>
	Tue, 6 Jun 2023 15:25:11 +0000 (16:25 +0100)
committer	Pauli <pauli@openssl.org>
	Sun, 16 Jul 2023 22:17:57 +0000 (08:17 +1000)