From: Alan T. DeKok <aland@freeradius.org>
Date: Fri, 9 May 2025 18:29:36 +0000 (-0400)
Subject: allow memory bios to have no read buffer
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a84e728c1a4db5513dde3a124b3ba4e2b0467888;p=thirdparty%2Ffreeradius-server.git

allow memory bios to have no read buffer

in which case they are verification-only BIOs.

and do other associated cleanups, to catch corner cases, comments,
and error messages.
---

diff --git a/src/lib/bio/mem.c b/src/lib/bio/mem.c
index 432be24f978..117fe246f7e 100644
--- a/src/lib/bio/mem.c
+++ b/src/lib/bio/mem.c
@@ -28,6 +28,14 @@
 
 #include <freeradius-devel/bio/mem.h>
 
+typedef enum {
+	FR_BIO_MEM_INVALID = 0,
+	FR_BIO_MEM_SOURCE,	/* the application writes to it, something else reads */
+	FR_BIO_MEM_SINK,	/* something else writes to it, the application reads */
+	FR_BIO_MEM_VERIFY,	/* verification only, with no buffers */
+	FR_BIO_MEM_BUFFER,	/* we manage local buffers */
+} fr_bio_mem_type_t;
+
 /** The memory buffer bio
  *
  *  It is used to buffer reads / writes to a streaming socket.
@@ -35,6 +43,8 @@
 typedef struct fr_bio_mem_s {
 	FR_BIO_COMMON;
 
+	fr_bio_mem_type_t	type;	//!< source, sink, etc.
+
 	fr_bio_verify_t	verify;		//!< verify data to see if we have a packet.
 	void		*verify_ctx;	//!< verify context
 
@@ -164,7 +174,7 @@ static ssize_t fr_bio_mem_read(fr_bio_t *bio, void *packet_ctx, void *buffer, si
 /** Return data only if we have a complete packet.
  *
  */
-static ssize_t fr_bio_mem_read_verify(fr_bio_t *bio, void *packet_ctx, void *buffer, size_t size)
+static ssize_t fr_bio_mem_read_verify_stream(fr_bio_t *bio, void *packet_ctx, void *buffer, size_t size)
 {
 	ssize_t rcode;
 	size_t used, room, want;
@@ -728,34 +738,59 @@ fr_bio_t *fr_bio_mem_alloc(TALLOC_CTX *ctx, size_t read_size, size_t write_size,
 {
 	fr_bio_mem_t *my;
 
+	my = talloc_zero(ctx, fr_bio_mem_t);
+	if (!my) return NULL;
+
 	/*
-	 *	The caller has to state that the API is caching data both ways.
+	 *	We can do 0-sized buffers for read, and the application should then set the verify function.
 	 */
 	if (!read_size) {
-		fr_strerror_const("Read size must be non-zero");
-		return NULL;
-	}
+		my->type = FR_BIO_MEM_VERIFY;
+		my->bio.read = fr_bio_null_read; /* can't read anything until the verify routine is put in place */
+		my->bio.write = fr_bio_next_write;
 
-	my = talloc_zero(ctx, fr_bio_mem_t);
-	if (!my) return NULL;
+		if (write_size > 0) {
+			talloc_free(my);
+			fr_strerror_const("Invalid write size.  If read size is zero, then write size must also be zero");
+			return NULL;
+		}
 
-	if (!fr_bio_mem_buf_alloc(my, &my->read_buffer, read_size)) {
-	oom:
-		fr_strerror_const("Out of memory");
-		return NULL;
-	}
-	my->bio.read = fr_bio_mem_read;
+	} else {
+		/*
+		 *	We have a read buffer, and potentially a write buffer.
+		 */
+		my->type = FR_BIO_MEM_BUFFER;
 
-	if (write_size) {
-		if (!fr_bio_mem_buf_alloc(my, &my->write_buffer, write_size)) goto oom;
+		if (!fr_bio_mem_buf_alloc(my, &my->read_buffer, read_size)) {
+		oom:
+			fr_strerror_const("Out of memory");
+			return NULL;
+		}
+		my->bio.read = fr_bio_mem_read;
 
-		my->bio.write = fr_bio_mem_write_next;
-	} else {
-		my->bio.write = fr_bio_next_write;
+		if (write_size) {
+			if (!fr_bio_mem_buf_alloc(my, &my->write_buffer, write_size)) goto oom;
+
+			/*
+			 *     Default to passing writes straight through, but buffer them locally if the
+			 *     write blocks.
+			 *
+			 *	We also only need to resume writes if we're buffering data.
+			 */
+			my->bio.write = fr_bio_mem_write_next;
+			my->priv_cb.write_resume = fr_bio_mem_write_resume;
+
+		} else {
+			my->bio.write = fr_bio_next_write;
+		}
+
+		/*
+		 *	EOF and shutdown are needed if there's a read buffer, but not when the memory bio is
+		 *	just doing packet verification/
+		 */
+		my->priv_cb.eof = fr_bio_mem_eof;
+		my->priv_cb.shutdown = fr_bio_mem_shutdown;
 	}
-	my->priv_cb.eof = fr_bio_mem_eof;
-	my->priv_cb.write_resume = fr_bio_mem_write_resume;
-	my->priv_cb.shutdown = fr_bio_mem_shutdown;
 
 	fr_bio_chain(&my->bio, next);
 
@@ -766,8 +801,8 @@ fr_bio_t *fr_bio_mem_alloc(TALLOC_CTX *ctx, size_t read_size, size_t write_size,
 
 /** Allocate a memory buffer which sources data from the callers application into the bio system.
  *
- *  The caller writes data to the buffer, but never reads from it.  This bio will call the "next" bio to sink
- *  the data.
+ *  The caller writes data to the buffer, but never reads from it.  This bio will call the "next" bio to write
+ *  the data. somewhere.
  */
 fr_bio_t *fr_bio_mem_source_alloc(TALLOC_CTX *ctx, size_t write_size, fr_bio_t *next)
 {
@@ -786,6 +821,7 @@ fr_bio_t *fr_bio_mem_source_alloc(TALLOC_CTX *ctx, size_t write_size, fr_bio_t *
 		return NULL;
 	}
 
+	my->type = FR_BIO_MEM_SOURCE;
 	my->bio.read = fr_bio_null_read; /* reading FROM this bio is not possible */
 	my->bio.write = fr_bio_mem_write_next;
 
@@ -859,6 +895,7 @@ fr_bio_t *fr_bio_mem_sink_alloc(TALLOC_CTX *ctx, size_t read_size)
 		return NULL;
 	}
 
+	my->type = FR_BIO_MEM_SINK;
 	my->bio.read = fr_bio_mem_read_buffer;
 	my->bio.write = fr_bio_mem_write_read_buffer; /* the upstream will write to our read buffer */
 
@@ -881,16 +918,36 @@ int fr_bio_mem_set_verify(fr_bio_t *bio, fr_bio_verify_t verify, void *verify_ct
 {
 	fr_bio_mem_t *my = talloc_get_type_abort(bio, fr_bio_mem_t);
 
-	if (my->bio.read != fr_bio_mem_read) {
-		fr_strerror_const("Cannot add verify to a memory sink bio");
+	switch (my->type) {
+	case FR_BIO_MEM_INVALID:
+		fr_assert(0);
+		return -1;
+
+	case FR_BIO_MEM_SOURCE:
+	case FR_BIO_MEM_SINK:
+		fr_strerror_const("Cannot add verify to this memory BIO");
 		return fr_bio_error(GENERIC);
+
+	case FR_BIO_MEM_VERIFY:
+		fr_assert(my->bio.write == fr_bio_next_write);
+		if (!datagram) {
+			fr_strerror_const("Invalid memory BIO - we need a read buffer for verifying packets from a stream socket");
+			return -1;
+		}
+		FALL_THROUGH;
+
+	case FR_BIO_MEM_BUFFER:
+		break;
 	}
 
 	my->verify = verify;
 	my->verify_ctx = verify_ctx;
 
 	/*
-	 *	If we are writing datagrams, then we cannot buffer individual datagrams.  We must write
+	 *	For reading datagrams, we just verify the packet in place.  This works both when we have local
+	 *	buffers, and when we are verifying packets in the application-supplied buffer.
+	 *
+	 *	For writing datagrams, then we cannot buffer individual datagrams.  We must write
 	 *	either all of the datagram out, or none of it.
 	 */
 	if (datagram) {
@@ -905,7 +962,7 @@ int fr_bio_mem_set_verify(fr_bio_t *bio, fr_bio_verify_t verify, void *verify_ct
 			my->write_buffer = (fr_bio_buf_t) {};
 		}
 	} else {
-		my->bio.read = fr_bio_mem_read_verify;
+		my->bio.read = fr_bio_mem_read_verify_stream;
 		/* don't touch the write function or the write buffer. */
 	}
 
@@ -930,6 +987,8 @@ int fr_bio_mem_write_resume(fr_bio_t *bio)
 
 	if (bio->write != fr_bio_mem_write_buffer) return 1;
 
+	fr_assert(my->type == FR_BIO_MEM_BUFFER);
+
 	/*
 	 *	Flush the buffer, and then reset the write routine if we were successful.
 	 */
@@ -938,6 +997,9 @@ int fr_bio_mem_write_resume(fr_bio_t *bio)
 
 	if (fr_bio_buf_used(&my->write_buffer) > 0) return 0;
 
+	/*
+	 *	Check for an application hook to check if we can resume writes.
+	 */
 	if (!my->cb.write_resume) return 1;
 
 	return my->cb.write_resume(bio);