Fix SSL_pending() and SSL_has_pending() with DTLS (1.1.1) by mattcaswell · Pull Request #18976 · openssl/openssl

mattcaswell · 2022-08-10T10:58:55Z

This is a backport of #18868 to the 1.1.1 branch.

If app data is received before a Finished message in DTLS then we buffer
it to return later. The function SSL_pending() is supposed to tell you
how much processed app data we have already buffered, and SSL_has_pending()
is supposed to tell you if we have any data buffered (whether processed or
not, and whether app data or not).

Neither SSL_pending() or SSL_has_pending() were taking account of this
DTLS specific app data buffer.

If app data is received before a Finished message in DTLS then we buffer it to return later. The function SSL_pending() is supposed to tell you how much processed app data we have already buffered, and SSL_has_pending() is supposed to tell you if we have any data buffered (whether processed or not, and whether app data or not). Neither SSL_pending() or SSL_has_pending() were taking account of this DTLS specific app data buffer.

If the first app data record arrives before the Finished message we should be able to buffer it and move on to the Finished message.

openssl-machine · 2022-08-17T15:00:15Z

This pull request is ready to merge

hlandau · 2022-08-17T15:43:51Z

Merged to 1.1.1. Thank you.

If app data is received before a Finished message in DTLS then we buffer it to return later. The function SSL_pending() is supposed to tell you how much processed app data we have already buffered, and SSL_has_pending() is supposed to tell you if we have any data buffered (whether processed or not, and whether app data or not). Neither SSL_pending() or SSL_has_pending() were taking account of this DTLS specific app data buffer. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #18976)

If the first app data record arrives before the Finished message we should be able to buffer it and move on to the Finished message. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #18976)

bernd-edlinger · 2022-09-09T21:48:17Z

From the commit message it seems that this change is supposed to only have an effect on DTLS,
but this loop is might have a different return value for TLS with RECORD_LAYER_get_numrpipes > 1

     for (i = 0; i < RECORD_LAYER_get_numrpipes(&s->rlayer); i++) {
         if (SSL3_RECORD_get_type(&s->rlayer.rrec[i])
             != SSL3_RT_APPLICATION_DATA)
-            return 0;
+            return num;
         num += SSL3_RECORD_get_length(&s->rlayer.rrec[i]);
     }

I mean if rrec[0] is APPLICATION_DATA and rrec[1] is not,
then num will be returned while previously 0 was returned.
Is that somehow impossible, or was this intentional?

mattcaswell · 2022-09-12T08:13:36Z

Pipelined data must always be of the same type, so if the first record is APPLICATION_DATA then the second must be too.

bernd-edlinger · 2022-09-12T11:14:13Z

Ah, okay, then something like an ossl_assert(i == 0); would make the code more clear?

mattcaswell · 2022-09-12T11:20:48Z

Yes

If app data is received before a Finished message in DTLS then we buffer it to return later. The function SSL_pending() is supposed to tell you how much processed app data we have already buffered, and SSL_has_pending() is supposed to tell you if we have any data buffered (whether processed or not, and whether app data or not). Neither SSL_pending() or SSL_has_pending() were taking account of this DTLS specific app data buffer. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#18976) (cherry picked from commit 01fc812)

If the first app data record arrives before the Finished message we should be able to buffer it and move on to the Finished message. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#18976) (cherry picked from commit d87e99d)

If app data is received before a Finished message in DTLS then we buffer it to return later. The function SSL_pending() is supposed to tell you how much processed app data we have already buffered, and SSL_has_pending() is supposed to tell you if we have any data buffered (whether processed or not, and whether app data or not). Neither SSL_pending() or SSL_has_pending() were taking account of this DTLS specific app data buffer. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#18976)

If the first app data record arrives before the Finished message we should be able to buffer it and move on to the Finished message. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#18976)

mattcaswell added 2 commits August 10, 2022 11:39

Test that swapping the first app data record with Finished msg works

94ed370

If the first app data record arrives before the Finished message we should be able to buffer it and move on to the Finished message.

mattcaswell added approval: review pending This pull request needs review by a committer branch: 1.1.1 Applies to OpenSSL_1_1_1-stable branch (EOL) approval: otc review pending labels Aug 10, 2022

mattcaswell mentioned this pull request Aug 10, 2022

Fix SSL_pending() and SSL_has_pending() with DTLS #18868

Closed

hlandau approved these changes Aug 11, 2022

View reviewed changes

hlandau removed the approval: review pending This pull request needs review by a committer label Aug 11, 2022

t8m approved these changes Aug 16, 2022

View reviewed changes

t8m added approval: done This pull request has the required number of approvals triaged: bug The issue/pr is/fixes a bug and removed approval: otc review pending labels Aug 16, 2022

openssl-machine removed the approval: done This pull request has the required number of approvals label Aug 17, 2022

openssl-machine added the approval: ready to merge The 24 hour grace period has passed, ready to merge label Aug 17, 2022

hlandau closed this Aug 17, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Comments

Fix SSL_pending() and SSL_has_pending() with DTLS (1.1.1)#18976

Fix SSL_pending() and SSL_has_pending() with DTLS (1.1.1)#18976
mattcaswell wants to merge 2 commits intoopenssl:OpenSSL_1_1_1-stablefrom
mattcaswell:fix-dtls-pending-111

mattcaswell commented Aug 10, 2022

Uh oh!

openssl-machine commented Aug 17, 2022

Uh oh!

hlandau commented Aug 17, 2022

Uh oh!

bernd-edlinger commented Sep 9, 2022

Uh oh!

mattcaswell commented Sep 12, 2022

Uh oh!

bernd-edlinger commented Sep 12, 2022

Uh oh!

mattcaswell commented Sep 12, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Uh oh!

Comments

Conversation

mattcaswell commented Aug 10, 2022

Uh oh!

openssl-machine commented Aug 17, 2022

Uh oh!

hlandau commented Aug 17, 2022

Uh oh!

bernd-edlinger commented Sep 9, 2022

Uh oh!

mattcaswell commented Sep 12, 2022

Uh oh!

bernd-edlinger commented Sep 12, 2022

Uh oh!

mattcaswell commented Sep 12, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants