All of lore.kernel.org
 help / color / mirror / Atom feed
From: Andrew Zaborowski <andrew.zaborowski@intel.com>
To: ell@lists.01.org
Subject: Re: [PATCH 02/17] tls: Add Hello extension sending support
Date: Thu, 03 Jan 2019 12:45:43 +0100	[thread overview]
Message-ID: <CAOq732L5+-2X5-+qrx0y8MsDwrpASM=ynEr37SUDcypnxsbU9w@mail.gmail.com> (raw)
In-Reply-To: <3c99fee2-77f9-c34f-f699-a14bf17f602d@gmail.com>

[-- Attachment #1: Type: text/plain, Size: 6450 bytes --]

On Thu, 3 Jan 2019 at 01:40, Denis Kenzior <denkenz@gmail.com> wrote:
> On 01/01/2019 01:49 PM, Andrew Zaborowski wrote:
> >   static bool tls_send_client_hello(struct l_tls *tls)
> >   {
> > -     uint8_t buf[128 + L_ARRAY_SIZE(tls_compression_pref) +
> > +     uint8_t buf[1024 + L_ARRAY_SIZE(tls_compression_pref) +
> >                       2 * L_ARRAY_SIZE(tls_cipher_suite_pref)];
>
> So you're sort of depending on the buffer to be large enough, maybe not
> a great strategy long-term.

True, but there's always a fixed maximum size we need, only it's
tricky to calculate that size dynamically because we'd need to
complicate the API.
>
> >       uint8_t *ptr = buf + TLS_HANDSHAKE_HEADER_SIZE;
> >       uint8_t *len_ptr;
> > -     int i;
> > +     unsigned int i;
> > +     uint8_t *extensions_len_ptr;
> >
> >       /* Fill in the Client Hello body */
> >
> > @@ -832,7 +835,7 @@ static bool tls_send_client_hello(struct l_tls *tls)
> >       len_ptr = ptr;
> >       ptr += 2;
> >
> > -     for (i = 0; i < (int) L_ARRAY_SIZE(tls_cipher_suite_pref); i++) {
> > +     for (i = 0; i < L_ARRAY_SIZE(tls_cipher_suite_pref); i++) {
> >               if (!tls_cipher_suite_is_compatible(tls,
> >                                               &tls_cipher_suite_pref[i],
> >                                               NULL))
> > @@ -850,17 +853,58 @@ static bool tls_send_client_hello(struct l_tls *tls)
> >       l_put_be16((ptr - len_ptr - 2), len_ptr);
> >       *ptr++ = L_ARRAY_SIZE(tls_compression_pref);
> >
> > -     for (i = 0; i < (int) L_ARRAY_SIZE(tls_compression_pref); i++)
> > +     for (i = 0; i < L_ARRAY_SIZE(tls_compression_pref); i++)
> >               *ptr++ = tls_compression_pref[i].id;
> >
> > +     extensions_len_ptr = ptr;
> > +     ptr += 2;
> > +
> > +     for (i = 0; tls_extensions[i].name; i++) {
> > +             const struct tls_hello_extension *extension =
> > +                     &tls_extensions[i];
> > +             ssize_t ext_len;
> > +
> > +             /*
> > +              * Note: could handle NULL client_write with non-NULL
> > +              * server_handle or server_handle_absent as "server-oriented"
> > +              * extension (7.4.1.4) and write empty extension_data and
> > +              * simliarly require empty extension_data in
> > +              * tls_handle_client_hello if client_handle NULL.
> > +              */
> > +             if (!extension->client_write)
> > +                     continue;
> > +
> > +             ext_len = extension->client_write(tls, ptr + 4,
> > +                                             buf + sizeof(buf) - (ptr + 4));
> > +             if (ext_len == -ENOMSG)
> > +                     continue;
> > +
> > +             if (ext_len < 0) {
> > +                     TLS_DEBUG("%s extension's client_write: %s",
> > +                                     extension->name, strerror(-ext_len));
> > +                     return false;
> > +             }
> > +
> > +             l_put_be16(extension->id, ptr + 0);
> > +             l_put_be16(ext_len, ptr + 2);
> > +             ptr += 4 + ext_len;
> > +     }
> > +
> > +     if (ptr > extensions_len_ptr + 2)
> > +             l_put_be16(ptr - (extensions_len_ptr + 2), extensions_len_ptr);
> > +     else /* Skip the length if no extensions */
> > +             ptr = extensions_len_ptr;
> > +
> >       tls_tx_handshake(tls, TLS_CLIENT_HELLO, buf, ptr - buf);
> >       return true;
> >   }
> >
> > -static void tls_send_server_hello(struct l_tls *tls)
> > +static bool tls_send_server_hello(struct l_tls *tls, struct l_queue *extensions)
> >   {
> > -     uint8_t buf[128];
> > +     uint8_t buf[1024];
> >       uint8_t *ptr = buf + TLS_HANDSHAKE_HEADER_SIZE;
> > +     uint8_t *extensions_len_ptr;
> > +     const struct l_queue_entry *entry;
> >
> >       /* Fill in the Server Hello body */
> >
> > @@ -878,7 +922,49 @@ static void tls_send_server_hello(struct l_tls *tls)
> >
> >       *ptr++ = tls->pending.compression_method->id;
> >
> > +     extensions_len_ptr = ptr;
> > +     ptr += 2;
> > +
> > +     for (entry = l_queue_get_entries(extensions); entry;
> > +                     entry = entry->next) {
> > +             uint16_t ext_id = L_PTR_TO_UINT(entry->data);
> > +             const struct tls_hello_extension *extension = NULL;
> > +             unsigned int i;
> > +             ssize_t ext_len;
> > +
> > +             for (i = 0; tls_extensions[i].name; i++)
> > +                     if (tls_extensions[i].id == ext_id) {
> > +                             extension = &tls_extensions[i];
> > +                             break;
> > +                     }
> > +
> > +             if (!extension || !extension->server_write)
> > +                     continue;
> > +
> > +             ext_len = extension->server_write(tls, ptr + 4,
> > +                                             buf + sizeof(buf) - (ptr + 4));
> > +             if (ext_len == -ENOMSG)
> > +                     continue;
> > +
> > +             if (ext_len < 0) {
> > +                     TLS_DISCONNECT(TLS_ALERT_INTERNAL_ERROR, 0,
> > +                                     "%s extension's server_write: %s",
> > +                                     extension->name, strerror(-ext_len));
> > +                     return false;
> > +             }
> > +
> > +             l_put_be16(ext_id, ptr + 0);
> > +             l_put_be16(ext_len, ptr + 2);
> > +             ptr += 4 + ext_len;
> > +     }
> > +
> > +     if (ptr > extensions_len_ptr + 2)
> > +             l_put_be16(ptr - (extensions_len_ptr + 2), extensions_len_ptr);
> > +     else /* Skip the length if no extensions */
> > +             ptr = extensions_len_ptr;
> > +
> >       tls_tx_handshake(tls, TLS_SERVER_HELLO, buf, ptr - buf);
> > +     return true;
> >   }
> >
>
> So both the server and the client versions are almost the same code.
> Signatures of client_write and server_write are also identical.  Can
> these two functions be combined?

Ok.

>
> Also, don't you want the supported client extensions to also be
> dynamically configurable per tls object?

We can add this at some point but I'm not sure if there's any use for
disabling extensions (probably less than for disabling cipher suites
which we decided to have no public api for)

Best regards

  reply	other threads:[~2019-01-03 11:45 UTC|newest]

Thread overview: 27+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2019-01-01 19:49 [PATCH 01/17] tls: Only accept the Certificate Request in client mode Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 02/17] tls: Add Hello extension sending support Andrew Zaborowski
2019-01-03  0:36   ` Denis Kenzior
2019-01-03 11:45     ` Andrew Zaborowski [this message]
2019-01-01 19:49 ` [PATCH 03/17] tls: Parse and process received extensions Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 04/17] tls: Implement the Supported Elliptic Curves extension Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 05/17] tls: Implement the Supported Point Formats extension Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 06/17] tls: Allow user to set custom list of cipher suites Andrew Zaborowski
2019-01-03  0:51   ` Denis Kenzior
2019-01-01 19:49 ` [PATCH 07/17] tls: Move cipher suite definitions to tls-suites.c Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 08/17] tls: Add ServerKeyExchange callbacks to key exchange struct Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 09/17] tls: ECHDE_RSA key exchange implementation client side Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 10/17] tls: ECHDE_RSA key exchange implementation server side Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 11/17] tls: Add RFC4492 suites using the ECDHE_RSA key exchange Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 12/17] tls: Add RFC5289 " Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 13/17] key: Add l_key_validate_dh_payload Andrew Zaborowski
2019-01-02 20:47   ` Denis Kenzior
2019-01-02 22:54     ` Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 14/17] tls: DHE_RSA key exchange implementation client side Andrew Zaborowski
2019-01-02 22:32   ` Denis Kenzior
2019-01-03  3:03     ` Andrew Zaborowski
2019-01-03  3:30       ` Denis Kenzior
2019-01-03 11:36         ` Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 15/17] tls: DHE_RSA key exchange implementation server side Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 16/17] tls: Add DHE_RSA-based cipher suites Andrew Zaborowski
2019-01-01 19:49 ` [PATCH 17/17] tls: Switch state before handling Key Echange messages Andrew Zaborowski
2019-01-02 19:11 ` [PATCH 01/17] tls: Only accept the Certificate Request in client mode Denis Kenzior

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to='CAOq732L5+-2X5-+qrx0y8MsDwrpASM=ynEr37SUDcypnxsbU9w@mail.gmail.com' \
    --to=andrew.zaborowski@intel.com \
    --cc=ell@lists.01.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.