This gives us the start of the buffer in use for the PACKET.
We then use this information when calculating the TLS PSK binder.
Previously we were assuming knowledge about where the buffer starts.
However, with ECH, we may be using a different buffer to normal so it is
better to ask the PACKET where the start of the buffer is.
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/27776)
typedef struct {
/* Pointer to where we are currently reading from */
const unsigned char *curr;
+ /* Pointer to the start of the message */
+ const unsigned char *msgstart;
/* Number of bytes remaining */
size_t remaining;
} PACKET;
return pkt->curr + pkt->remaining;
}
+/*
+ * Returns a pointer to the very start of the buffer. If this is a sub packet
+ * this will be the start of the buffer for the top of the PACKET tree.
+ */
+static ossl_inline const unsigned char *PACKET_msg_start(const PACKET *pkt)
+{
+ return pkt->msgstart;
+}
+
/*
* Returns a pointer to the PACKET's current position.
* For use in non-PACKETized APIs.
if (len > (size_t)(SIZE_MAX / 2))
return 0;
- pkt->curr = buf;
+ pkt->curr = pkt->msgstart = buf;
pkt->remaining = len;
return 1;
}
/* Initialize a PACKET to hold zero bytes. */
static ossl_inline void PACKET_null_init(PACKET *pkt)
{
- pkt->curr = NULL;
+ pkt->curr = pkt->msgstart = NULL;
pkt->remaining = 0;
}
if (PACKET_remaining(pkt) < len)
return 0;
- return PACKET_buf_init(subpkt, pkt->curr, len);
+ if (!PACKET_buf_init(subpkt, pkt->curr, len))
+ return 0;
+
+ subpkt->msgstart = pkt->msgstart;
+ return 1;
}
/*
*pkt = tmp;
subpkt->curr = data;
+ subpkt->msgstart = pkt->msgstart;
subpkt->remaining = length;
return 1;
*pkt = tmp;
subpkt->curr = data;
+ subpkt->msgstart = pkt->msgstart;
subpkt->remaining = length;
return 1;
*pkt = tmp;
subpkt->curr = data;
+ subpkt->msgstart = pkt->msgstart;
subpkt->remaining = length;
return 1;
*pkt = tmp;
subpkt->curr = data;
+ subpkt->msgstart = pkt->msgstart;
subpkt->remaining = length;
return 1;
*pkt = tmp;
subpkt->curr = data;
+ subpkt->msgstart = pkt->msgstart;
subpkt->remaining = length;
return 1;
if (sess == NULL)
return 1;
- binderoffset = PACKET_data(pkt) - (const unsigned char *)s->init_buf->data;
+ binderoffset = PACKET_data(pkt) - PACKET_msg_start(pkt);
hashsize = EVP_MD_get_size(md);
if (hashsize <= 0)
goto err;
SSLfatal(s, SSL_AD_DECODE_ERROR, SSL_R_BAD_EXTENSION);
goto err;
}
- if (tls_psk_do_binder(s, md, (const unsigned char *)s->init_buf->data,
- binderoffset, PACKET_data(&binder), NULL, sess, 0,
- ext) != 1) {
+ if (tls_psk_do_binder(s, md, PACKET_msg_start(pkt), binderoffset,
+ PACKET_data(&binder), NULL, sess, 0, ext) != 1) {
/* SSLfatal() already called */
goto err;
}
{
OSSL_STATEM *st = &s->statem;
int ret, mt;
- size_t len = 0;
+ size_t len = 0, headerlen;
int (*transition) (SSL_CONNECTION *s, int mt);
PACKET pkt;
MSG_PROCESS_RETURN(*process_message) (SSL_CONNECTION *s, PACKET *pkt);
}
s->first_packet = 0;
- if (!PACKET_buf_init(&pkt, s->init_msg, len)) {
+ /*
+ * We initialise the buffer including the message header, and
+ * then skip over header ready to process the message. This
+ * ensures that calls to PACKET_msg_start() gives us the whole
+ * message
+ */
+ headerlen = (char *)s->init_msg - s->init_buf->data;
+ if (!PACKET_buf_init(&pkt, (unsigned char *)s->init_buf->data,
+ len + headerlen)) {
+ SSLfatal(s, SSL_AD_INTERNAL_ERROR, ERR_R_INTERNAL_ERROR);
+ return SUB_STATE_ERROR;
+ }
+ if (!PACKET_forward(&pkt, headerlen)) {
SSLfatal(s, SSL_AD_INTERNAL_ERROR, ERR_R_INTERNAL_ERROR);
return SUB_STATE_ERROR;
}
+
ret = process_message(s, &pkt);
/* Discard the packet data */
projects / thirdparty / openssl.git / commitdiff
