search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
gnutls_record_check_pending functionality was divided to gnutls_record_check_pending...
[gnutls.git] / lib / gnutls_buffers.c
bloba7c00cad9223897223b7a38f512f0292856b72f1
1 /*
2 * Copyright (C) 2000-2012 Free Software Foundation, Inc.
3 *
4 * Author: Nikos Mavrogiannopoulos
5 *
6 * This file is part of GnuTLS.
7 *
8 * The GnuTLS is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public License
10 * as published by the Free Software Foundation; either version 3 of
11 * the License, or (at your option) any later version.
12 *
13 * This library is distributed in the hope that it will be useful, but
14 * WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
16 * Lesser General Public License for more details.
17 *
18 * You should have received a copy of the GNU Lesser General Public License
19 * along with this program. If not, see <http://www.gnu.org/licenses/>
20 *
21 */
22
23 /*
24 * This file holds all the buffering code used in gnutls.
25 * The buffering code works as:
26 *
27 * RECORD LAYER:
28 * 1. uses a buffer to hold data (application/handshake),
29 * we got but they were not requested, yet.
30 * (see gnutls_record_buffer_put(), gnutls_record_buffer_get_size() etc.)
31 *
32 * 2. uses a buffer to hold data that were incomplete (ie the read/write
33 * was interrupted)
34 * (see _gnutls_io_read_buffered(), _gnutls_io_write_buffered() etc.)
35 *
36 * HANDSHAKE LAYER:
37 * 1. Uses buffer to hold the last received handshake message.
38 * (see _gnutls_handshake_hash_buffer_put() etc.)
39 *
40 */
41
42 #include <gnutls_int.h>
43 #include <gnutls_errors.h>
44 #include <gnutls_num.h>
45 #include <gnutls_record.h>
46 #include <gnutls_buffers.h>
47 #include <gnutls_mbuffers.h>
48 #include <gnutls_state.h>
49 #include <gnutls_dtls.h>
50 #include <system.h>
51 #include <gnutls_constate.h> /* gnutls_epoch_get */
52 #include <errno.h>
53 #include <system.h>
54 #include "debug.h"
55
56 #ifndef EAGAIN
57 #define EAGAIN EWOULDBLOCK
58 #endif
59
60 /* this is the maximum number of messages allowed to queue.
61 */
62 #define MAX_QUEUE 32
63
64 /* Buffers received packets of type APPLICATION DATA and
65 * HANDSHAKE DATA.
66 */
67 int
68 _gnutls_record_buffer_put (gnutls_session_t session,
69 content_type_t type, uint64* seq, mbuffer_st* bufel)
70 {
71
72 bufel->type = type;
73 memcpy(&bufel->record_sequence, seq, sizeof(*seq));
74
75 _mbuffer_enqueue(&session->internals.record_buffer, bufel);
76 _gnutls_buffers_log ("BUF[REC]: Inserted %d bytes of Data(%d)\n",
77 (int) bufel->msg.size, (int) type);
78
79 return 0;
80 }
81
82 /**
83 * gnutls_record_check_pending:
84 * @session: is a #gnutls_session_t structure.
85 *
86 * This function checks if there are unread data
87 * in the gnutls buffers. If the return value is
88 * non-zero the next call to gnutls_record_recv()
89 * is guarranteed not to block.
90 *
91 * Returns: Returns the size of the data or zero.
92 **/
93 size_t
94 gnutls_record_check_pending (gnutls_session_t session)
95 {
96 return _gnutls_record_buffer_get_size (session);
97 }
98
99 /**
100 * gnutls_record_check_unprocessed:
101 * @session: is a #gnutls_session_t structure.
102 *
103 * This function checks if there are unprocessed data
104 * in the gnutls record buffers. Those data might not
105 * be complete records.
106 *
107 * Returns: Returns the size of the data or zero.
108 **/
109 size_t
110 gnutls_record_check_unprocessed (gnutls_session_t session)
111 {
112 return session->internals.record_recv_buffer.byte_length;
113 }
114
115 int
116 _gnutls_record_buffer_get (content_type_t type,
117 gnutls_session_t session, uint8_t * data,
118 size_t length, uint8_t seq[8])
119 {
120 gnutls_datum_t msg;
121 mbuffer_st* bufel;
122
123 if (length == 0 || data == NULL)
124 {
125 gnutls_assert ();
126 return GNUTLS_E_INVALID_REQUEST;
127 }
128
129 bufel = _mbuffer_head_get_first(&session->internals.record_buffer, &msg);
130 if (bufel == NULL)
131 return gnutls_assert_val(GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE);
132
133 if (type != bufel->type)
134 {
135 if (IS_DTLS(session))
136 _gnutls_audit_log(session, "Discarded unexpected %s (%d) packet (expecting: %s (%d))\n",
137 _gnutls_packet2str(bufel->type), (int)bufel->type,
138 _gnutls_packet2str(type), (int)type);
139 _mbuffer_head_remove_bytes(&session->internals.record_buffer, msg.size);
140 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_PACKET);
141 }
142
143 if (msg.size <= length)
144 length = msg.size;
145
146 if (seq)
147 memcpy(seq, bufel->record_sequence.i, 8);
148
149 memcpy(data, msg.data, length);
150 _mbuffer_head_remove_bytes(&session->internals.record_buffer, length);
151
152 return length;
153 }
154
155 inline static void
156 reset_errno (gnutls_session_t session)
157 {
158 session->internals.errnum = 0;
159 }
160
161 inline static int
162 get_errno (gnutls_session_t session)
163 {
164 int ret;
165
166 if (session->internals.errnum != 0)
167 ret = session->internals.errnum;
168 else
169 ret = session->internals.errno_func (session->
170 internals.transport_recv_ptr);
171 return ret;
172 }
173
174 static ssize_t
175 _gnutls_dgram_read (gnutls_session_t session, mbuffer_st **bufel,
176 gnutls_pull_func pull_func)
177 {
178 ssize_t i, ret;
179 uint8_t *ptr;
180 size_t max_size = _gnutls_get_max_decrypted_data(session);
181 size_t recv_size = MAX_RECV_SIZE(session);
182 gnutls_transport_ptr_t fd = session->internals.transport_recv_ptr;
183
184 if (recv_size > max_size)
185 recv_size = max_size;
186
187 *bufel = _mbuffer_alloc (0, max_size);
188 if (*bufel == NULL)
189 return gnutls_assert_val(GNUTLS_E_MEMORY_ERROR);
190
191 ptr = (*bufel)->msg.data;
192
193 session->internals.direction = 0;
194
195 reset_errno (session);
196 i = pull_func (fd, ptr, recv_size);
197
198 if (i < 0)
199 {
200 int err = get_errno (session);
201
202 _gnutls_read_log ("READ: %d returned from %p, errno=%d gerrno=%d\n",
203 (int) i, fd, errno, session->internals.errnum);
204
205 if (err == EAGAIN)
206 {
207 ret = GNUTLS_E_AGAIN;
208 goto cleanup;
209 }
210 else if (err == EINTR)
211 {
212 ret = GNUTLS_E_INTERRUPTED;
213 goto cleanup;
214 }
215 else
216 {
217 gnutls_assert ();
218 ret = GNUTLS_E_PULL_ERROR;
219 goto cleanup;
220 }
221 }
222 else
223 {
224 _gnutls_read_log ("READ: Got %d bytes from %p\n", (int) i, fd);
225 if (i == 0)
226 {
227 /* If we get here, we likely have a stream socket.
228 * FIXME: this probably breaks DCCP. */
229 gnutls_assert ();
230 ret = 0;
231 goto cleanup;
232 }
233
234 _mbuffer_set_udata_size (*bufel, i);
235 }
236
237 _gnutls_read_log ("READ: read %d bytes from %p\n", (int) i, fd);
238
239 return i;
240
241 cleanup:
242 _mbuffer_xfree(bufel);
243 return ret;
244 }
245
246 static ssize_t
247 _gnutls_stream_read (gnutls_session_t session, mbuffer_st **bufel,
248 size_t size, gnutls_pull_func pull_func)
249 {
250 size_t left;
251 ssize_t i = 0;
252 size_t max_size = _gnutls_get_max_decrypted_data(session);
253 uint8_t *ptr;
254 gnutls_transport_ptr_t fd = session->internals.transport_recv_ptr;
255
256 *bufel = _mbuffer_alloc (0, MAX(max_size, size));
257 if (!*bufel)
258 {
259 gnutls_assert ();
260 return GNUTLS_E_MEMORY_ERROR;
261 }
262 ptr = (*bufel)->msg.data;
263
264 session->internals.direction = 0;
265
266 left = size;
267 while (left > 0)
268 {
269 reset_errno (session);
270
271 i = pull_func (fd, &ptr[size - left], left);
272
273 if (i < 0)
274 {
275 int err = get_errno (session);
276
277 _gnutls_read_log ("READ: %d returned from %p, errno=%d gerrno=%d\n",
278 (int) i, fd, errno, session->internals.errnum);
279
280 if (err == EAGAIN || err == EINTR)
281 {
282 if (size - left > 0)
283 {
284
285 _gnutls_read_log ("READ: returning %d bytes from %p\n",
286 (int) (size - left), fd);
287
288 goto finish;
289 }
290
291 if (err == EAGAIN)
292 return GNUTLS_E_AGAIN;
293 return GNUTLS_E_INTERRUPTED;
294 }
295 else
296 {
297 gnutls_assert ();
298 return GNUTLS_E_PULL_ERROR;
299 }
300 }
301 else
302 {
303
304 _gnutls_read_log ("READ: Got %d bytes from %p\n", (int) i, fd);
305
306 if (i == 0)
307 break; /* EOF */
308 }
309
310 left -= i;
311 (*bufel)->msg.size += i;
312 }
313
314 finish:
315
316 _gnutls_read_log ("READ: read %d bytes from %p\n",
317 (int) (size - left), fd);
318
319 return (size - left);
320 }
321
322
323 /* This function is like read. But it does not return -1 on error.
324 * It does return gnutls_errno instead.
325 *
326 * Flags are only used if the default recv() function is being used.
327 */
328 static ssize_t
329 _gnutls_read (gnutls_session_t session, mbuffer_st **bufel,
330 size_t size, gnutls_pull_func pull_func)
331 {
332 if (IS_DTLS (session))
333 /* Size is not passed, since a whole datagram will be read. */
334 return _gnutls_dgram_read (session, bufel, pull_func);
335 else
336 return _gnutls_stream_read (session, bufel, size, pull_func);
337 }
338
339 static ssize_t
340 _gnutls_writev_emu (gnutls_session_t session, gnutls_transport_ptr_t fd, const giovec_t * giovec,
341 unsigned int giovec_cnt)
342 {
343 unsigned int j = 0;
344 size_t total = 0;
345 ssize_t ret = 0;
346
347 for (j = 0; j < giovec_cnt; j++)
348 {
349 ret = session->internals.push_func (fd, giovec[j].iov_base, giovec[j].iov_len);
350
351 if (ret == -1)
352 break;
353
354 total += ret;
355
356 if ((size_t)ret != giovec[j].iov_len)
357 break;
358 }
359
360 if (total > 0)
361 return total;
362
363 return ret;
364 }
365
366 static ssize_t
367 _gnutls_writev (gnutls_session_t session, const giovec_t * giovec,
368 int giovec_cnt)
369 {
370 int i;
371 gnutls_transport_ptr_t fd = session->internals.transport_send_ptr;
372
373 reset_errno (session);
374
375 if (session->internals.push_func != NULL)
376 i = _gnutls_writev_emu (session, fd, giovec, giovec_cnt);
377 else
378 i = session->internals.vec_push_func (fd, giovec, giovec_cnt);
379
380 if (i == -1)
381 {
382 int err = get_errno (session);
383 _gnutls_debug_log ("errno: %d\n", err);
384 if (err == EAGAIN)
385 return GNUTLS_E_AGAIN;
386 else if (err == EINTR)
387 return GNUTLS_E_INTERRUPTED;
388 else
389 {
390 gnutls_assert ();
391 return GNUTLS_E_PUSH_ERROR;
392 }
393 }
394 return i;
395 }
396
397 /* This function is like recv(with MSG_PEEK). But it does not return -1 on error.
398 * It does return gnutls_errno instead.
399 * This function reads data from the socket and keeps them in a buffer, of up to
400 * MAX_RECV_SIZE.
401 *
402 * This is not a general purpose function. It returns EXACTLY the data requested,
403 * which are stored in a local (in the session) buffer.
404 *
405 */
406 ssize_t
407 _gnutls_io_read_buffered (gnutls_session_t session, size_t total,
408 content_type_t recv_type)
409 {
410 ssize_t ret = 0;
411 size_t min;
412 mbuffer_st *bufel = NULL;
413 size_t recvdata, readsize;
414
415 if (total > MAX_RECV_SIZE(session) || total == 0)
416 {
417 gnutls_assert (); /* internal error */
418 return GNUTLS_E_INVALID_REQUEST;
419 }
420
421 /* calculate the actual size, ie. get the minimum of the
422 * buffered data and the requested data.
423 */
424 min = MIN (session->internals.record_recv_buffer.byte_length, total);
425 if (min > 0)
426 {
427 /* if we have enough buffered data
428 * then just return them.
429 */
430 if (min == total)
431 {
432 return min;
433 }
434 }
435
436 /* min is over zero. recvdata is the data we must
437 * receive in order to return the requested data.
438 */
439 recvdata = total - min;
440 readsize = recvdata;
441
442 /* Check if the previously read data plus the new data to
443 * receive are longer than the maximum receive buffer size.
444 */
445 if ((session->internals.record_recv_buffer.byte_length + recvdata) >
446 MAX_RECV_SIZE(session))
447 {
448 gnutls_assert (); /* internal error */
449 return GNUTLS_E_INVALID_REQUEST;
450 }
451
452 if (ret < 0)
453 {
454 gnutls_assert ();
455 return ret;
456 }
457
458 /* READ DATA
459 */
460 if (readsize > 0)
461 {
462 ret =
463 _gnutls_read (session, &bufel, readsize,
464 session->internals.pull_func);
465
466 /* return immediately if we got an interrupt or eagain
467 * error.
468 */
469 if (ret < 0 && gnutls_error_is_fatal (ret) == 0)
470 {
471 _mbuffer_xfree (&bufel);
472 return ret;
473 }
474 }
475
476 /* copy fresh data to our buffer.
477 */
478 if (ret > 0)
479 {
480 _gnutls_read_log
481 ("RB: Have %d bytes into buffer. Adding %d bytes.\n",
482 (int) session->internals.record_recv_buffer.byte_length, (int) ret);
483 _gnutls_read_log ("RB: Requested %d bytes\n", (int) total);
484
485 _mbuffer_enqueue (&session->internals.record_recv_buffer, bufel);
486 }
487 else
488 _mbuffer_xfree (&bufel);
489
490 if (ret < 0)
491 {
492 gnutls_assert ();
493 return ret;
494 }
495
496 if (ret == 0)
497 { /* EOF */
498 gnutls_assert ();
499 return 0;
500 }
501
502 if(IS_DTLS(session))
503 ret = MIN(total, session->internals.record_recv_buffer.byte_length);
504 else
505 ret = session->internals.record_recv_buffer.byte_length;
506
507 if ((ret > 0) && ((size_t) ret < total))
508 {
509 /* Short Read */
510 return gnutls_assert_val(GNUTLS_E_AGAIN);
511 }
512 else
513 {
514 return ret;
515 }
516 }
517
518 /* This function is like write. But it does not return -1 on error.
519 * It does return gnutls_errno instead.
520 *
521 * This function takes full responsibility of freeing msg->data.
522 *
523 * In case of E_AGAIN and E_INTERRUPTED errors, you must call
524 * gnutls_write_flush(), until it returns ok (0).
525 *
526 * We need to push exactly the data in msg->size, since we cannot send
527 * less data. In TLS the peer must receive the whole packet in order
528 * to decrypt and verify the integrity.
529 *
530 */
531 ssize_t
532 _gnutls_io_write_buffered (gnutls_session_t session,
533 mbuffer_st * bufel, unsigned int mflag)
534 {
535 mbuffer_head_st *const send_buffer = &session->internals.record_send_buffer;
536
537 /* to know where the procedure was interrupted.
538 */
539 session->internals.direction = 1;
540
541 _mbuffer_enqueue (send_buffer, bufel);
542
543 _gnutls_write_log
544 ("WRITE: enqueued %d bytes for %p. Total %d bytes.\n",
545 (int) bufel->msg.size, session->internals.transport_recv_ptr,
546 (int) send_buffer->byte_length);
547
548 if (mflag == MBUFFER_FLUSH)
549 return _gnutls_io_write_flush (session);
550 else
551 return bufel->msg.size;
552 }
553
554 typedef ssize_t (*send_func) (gnutls_session_t, const giovec_t *, int);
555
556 /* This function writes the data that are left in the
557 * TLS write buffer (ie. because the previous write was
558 * interrupted.
559 */
560 ssize_t
561 _gnutls_io_write_flush (gnutls_session_t session)
562 {
563 gnutls_datum_t msg;
564 mbuffer_head_st *send_buffer = &session->internals.record_send_buffer;
565 int ret;
566 ssize_t sent = 0, tosend = 0;
567 giovec_t iovec[MAX_QUEUE];
568 int i = 0;
569 mbuffer_st *cur;
570
571 _gnutls_write_log ("WRITE FLUSH: %d bytes in buffer.\n",
572 (int) send_buffer->byte_length);
573
574 for (cur = _mbuffer_head_get_first (send_buffer, &msg);
575 cur != NULL; cur = _mbuffer_head_get_next (cur, &msg))
576 {
577 iovec[i].iov_base = msg.data;
578 iovec[i++].iov_len = msg.size;
579 tosend += msg.size;
580
581 /* we buffer up to MAX_QUEUE messages */
582 if (i >= MAX_QUEUE)
583 {
584 gnutls_assert ();
585 return GNUTLS_E_INTERNAL_ERROR;
586 }
587 }
588
589 if (tosend == 0)
590 {
591 gnutls_assert();
592 return 0;
593 }
594
595 ret = _gnutls_writev (session, iovec, i);
596 if (ret >= 0)
597 {
598 _mbuffer_head_remove_bytes (send_buffer, ret);
599 _gnutls_write_log ("WRITE: wrote %d bytes, %d bytes left.\n",
600 ret, (int) send_buffer->byte_length);
601
602 sent += ret;
603 }
604 else if (ret == GNUTLS_E_INTERRUPTED || ret == GNUTLS_E_AGAIN)
605 {
606 _gnutls_write_log ("WRITE interrupted: %d bytes left.\n",
607 (int) send_buffer->byte_length);
608 return ret;
609 }
610 else
611 {
612 _gnutls_write_log ("WRITE error: code %d, %d bytes left.\n",
613 ret, (int) send_buffer->byte_length);
614
615 gnutls_assert ();
616 return ret;
617 }
618
619 if (sent < tosend)
620 {
621 return gnutls_assert_val(GNUTLS_E_AGAIN);
622 }
623
624 return sent;
625 }
626
627 /* Checks whether there are received data within
628 * a timeframe.
629 *
630 * Returns 0 if data were received, GNUTLS_E_TIMEDOUT
631 * on timeout and a negative error code on error.
632 */
633 int
634 _gnutls_io_check_recv (gnutls_session_t session, unsigned int ms)
635 {
636 gnutls_transport_ptr_t fd = session->internals.transport_send_ptr;
637 int ret = 0, err;
638
639 if (session->internals.pull_timeout_func == system_recv_timeout &&
640 session->internals.pull_func != system_read)
641 return gnutls_assert_val(GNUTLS_E_PULL_ERROR);
642
643 reset_errno (session);
644
645 ret = session->internals.pull_timeout_func(fd, ms);
646
647 err = get_errno (session);
648 if (ret == -1 && err == EINTR)
649 return GNUTLS_E_INTERRUPTED;
650 else if (ret == -1 && err == EAGAIN)
651 return GNUTLS_E_AGAIN;
652 else if (ret == -1)
653 return gnutls_assert_val(GNUTLS_E_PULL_ERROR);
654
655 if (ret > 0)
656 return 0;
657 else return GNUTLS_E_TIMEDOUT;
658 }
659
660 /* HANDSHAKE buffers part
661 */
662
663 /* This function writes the data that are left in the
664 * Handshake write buffer (ie. because the previous write was
665 * interrupted.
666 *
667 */
668 ssize_t
669 _gnutls_handshake_io_write_flush (gnutls_session_t session)
670 {
671 mbuffer_head_st *const send_buffer =
672 &session->internals.handshake_send_buffer;
673 gnutls_datum_t msg;
674 int ret;
675 uint16_t epoch;
676 ssize_t total = 0;
677 mbuffer_st *cur;
678
679 _gnutls_write_log ("HWRITE FLUSH: %d bytes in buffer.\n",
680 (int) send_buffer->byte_length);
681
682 if (IS_DTLS(session))
683 return _dtls_transmit(session);
684
685 for (cur = _mbuffer_head_get_first (send_buffer, &msg);
686 cur != NULL; cur = _mbuffer_head_get_first (send_buffer, &msg))
687 {
688 epoch = cur->epoch;
689
690 ret = _gnutls_send_int (session, cur->type,
691 cur->htype,
692 epoch,
693 msg.data, msg.size, 0);
694
695 if (ret >= 0)
696 {
697 total += ret;
698
699 ret = _mbuffer_head_remove_bytes (send_buffer, ret);
700 if (ret == 1)
701 _gnutls_epoch_refcount_dec(session, epoch);
702
703 _gnutls_write_log ("HWRITE: wrote %d bytes, %d bytes left.\n",
704 ret, (int) send_buffer->byte_length);
705
706 }
707 else
708 {
709 _gnutls_write_log ("HWRITE error: code %d, %d bytes left.\n",
710 ret, (int) send_buffer->byte_length);
711
712 gnutls_assert ();
713 return ret;
714 }
715 }
716
717 return _gnutls_io_write_flush (session);
718 }
719
720
721 /* This is a send function for the gnutls handshake
722 * protocol. Just makes sure that all data have been sent.
723 *
724 */
725 int
726 _gnutls_handshake_io_cache_int (gnutls_session_t session,
727 gnutls_handshake_description_t htype,
728 mbuffer_st * bufel)
729 {
730 mbuffer_head_st * send_buffer;
731
732 if (IS_DTLS(session))
733 {
734 bufel->handshake_sequence = session->internals.dtls.hsk_write_seq-1;
735 }
736
737 send_buffer =
738 &session->internals.handshake_send_buffer;
739
740 bufel->epoch = (uint16_t)_gnutls_epoch_refcount_inc(session, EPOCH_WRITE_CURRENT);
741 bufel->htype = htype;
742 if (bufel->htype == GNUTLS_HANDSHAKE_CHANGE_CIPHER_SPEC)
743 bufel->type = GNUTLS_CHANGE_CIPHER_SPEC;
744 else
745 bufel->type = GNUTLS_HANDSHAKE;
746
747 _mbuffer_enqueue (send_buffer, bufel);
748
749 _gnutls_write_log
750 ("HWRITE: enqueued [%s] %d. Total %d bytes.\n",
751 _gnutls_handshake2str (bufel->htype), (int) bufel->msg.size, (int) send_buffer->byte_length);
752
753 return 0;
754 }
755
756 static int handshake_compare(const void* _e1, const void* _e2)
757 {
758 const handshake_buffer_st* e1 = _e1;
759 const handshake_buffer_st* e2 = _e2;
760
761 if (e1->sequence <= e2->sequence)
762 return 1;
763 else
764 return -1;
765 }
766
767 #define SSL2_HEADERS 1
768 static int
769 parse_handshake_header (gnutls_session_t session, mbuffer_st* bufel,
770 handshake_buffer_st* hsk)
771 {
772 uint8_t *dataptr = NULL; /* for realloc */
773 size_t handshake_header_size = HANDSHAKE_HEADER_SIZE(session), data_size;
774
775 /* Note: SSL2_HEADERS == 1 */
776 if (_mbuffer_get_udata_size(bufel) < handshake_header_size)
777 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_PACKET_LENGTH);
778
779 dataptr = _mbuffer_get_udata_ptr(bufel);
780
781 /* if reading a client hello of SSLv2 */
782 if (!IS_DTLS(session) && bufel->htype == GNUTLS_HANDSHAKE_CLIENT_HELLO_V2)
783 {
784 handshake_header_size = SSL2_HEADERS; /* we've already read one byte */
785
786 hsk->length = _mbuffer_get_udata_size(bufel) - handshake_header_size; /* we've read the first byte */
787
788 if (dataptr[0] != GNUTLS_HANDSHAKE_CLIENT_HELLO)
789 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_PACKET);
790
791 hsk->htype = GNUTLS_HANDSHAKE_CLIENT_HELLO_V2;
792
793 hsk->sequence = 0;
794 hsk->start_offset = 0;
795 hsk->end_offset = hsk->length;
796 }
797 else /* TLS handshake headers */
798 {
799
800 hsk->htype = dataptr[0];
801
802 /* we do not use DECR_LEN because we know
803 * that the packet has enough data.
804 */
805 hsk->length = _gnutls_read_uint24 (&dataptr[1]);
806 handshake_header_size = HANDSHAKE_HEADER_SIZE(session);
807
808 if (IS_DTLS(session))
809 {
810 hsk->sequence = _gnutls_read_uint16 (&dataptr[4]);
811 hsk->start_offset = _gnutls_read_uint24 (&dataptr[6]);
812 hsk->end_offset = hsk->start_offset + _gnutls_read_uint24 (&dataptr[9]);
813 }
814 else
815 {
816 hsk->sequence = 0;
817 hsk->start_offset = 0;
818 hsk->end_offset = hsk->length;
819 }
820 }
821 data_size = _mbuffer_get_udata_size(bufel) - handshake_header_size;
822
823 /* make the length offset */
824 if (hsk->end_offset > 0) hsk->end_offset--;
825
826 _gnutls_handshake_log ("HSK[%p]: %s was received. Length %d[%d], frag offset %d, frag length: %d, sequence: %d\n",
827 session, _gnutls_handshake2str (hsk->htype),
828 (int) hsk->length, (int)data_size, hsk->start_offset, hsk->end_offset-hsk->start_offset+1, (int)hsk->sequence);
829
830 hsk->header_size = handshake_header_size;
831 memcpy(hsk->header, _mbuffer_get_udata_ptr(bufel), handshake_header_size);
832
833 if (hsk->length > 0 &&
834 (hsk->end_offset-hsk->start_offset >= data_size))
835 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_PACKET_LENGTH);
836
837 if (hsk->length > 0 && (hsk->start_offset >= hsk->end_offset ||
838 hsk->end_offset-hsk->start_offset >= data_size ||
839 hsk->end_offset >= hsk->length))
840 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_PACKET_LENGTH);
841 else if (hsk->length == 0 && hsk->end_offset != 0 && hsk->start_offset != 0)
842 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_PACKET_LENGTH);
843
844 return handshake_header_size;
845 }
846
847 static void _gnutls_handshake_buffer_move(handshake_buffer_st* dst, handshake_buffer_st* src)
848 {
849 memcpy(dst, src, sizeof(*dst));
850 memset(src, 0, sizeof(*src));
851 src->htype = -1;
852 }
853
854 /* will merge the given handshake_buffer_st to the handshake_recv_buffer
855 * list. The given hsk packet will be released in any case (success or failure).
856 * Only used in DTLS.
857 */
858 static int merge_handshake_packet(gnutls_session_t session, handshake_buffer_st* hsk)
859 {
860 int exists = 0, i, pos = 0;
861 int ret;
862
863 for (i=0;i<session->internals.handshake_recv_buffer_size;i++)
864 {
865 if (session->internals.handshake_recv_buffer[i].htype == hsk->htype)
866 {
867 exists = 1;
868 pos = i;
869 break;
870 }
871 }
872
873 if (exists == 0)
874 pos = session->internals.handshake_recv_buffer_size;
875
876 if (pos > MAX_HANDSHAKE_MSGS)
877 return gnutls_assert_val(GNUTLS_E_TOO_MANY_HANDSHAKE_PACKETS);
878
879 if (exists == 0)
880 {
881 if (hsk->length > 0 && hsk->end_offset > 0 && hsk->end_offset-hsk->start_offset+1 != hsk->length)
882 {
883 ret = _gnutls_buffer_resize(&hsk->data, hsk->length);
884 if (ret < 0)
885 return gnutls_assert_val(ret);
886
887 hsk->data.length = hsk->length;
888
889 memmove(&hsk->data.data[hsk->start_offset], hsk->data.data, hsk->end_offset-hsk->start_offset+1);
890 }
891
892 session->internals.handshake_recv_buffer_size++;
893
894 /* rewrite headers to make them look as each packet came as a single fragment */
895 _gnutls_write_uint24(hsk->length, &hsk->header[1]);
896 _gnutls_write_uint24(0, &hsk->header[6]);
897 _gnutls_write_uint24(hsk->length, &hsk->header[9]);
898
899 _gnutls_handshake_buffer_move(&session->internals.handshake_recv_buffer[pos], hsk);
900
901 }
902 else
903 {
904 if (hsk->start_offset < session->internals.handshake_recv_buffer[pos].start_offset &&
905 hsk->end_offset >= session->internals.handshake_recv_buffer[pos].start_offset)
906 {
907 memcpy(&session->internals.handshake_recv_buffer[pos].data.data[hsk->start_offset],
908 hsk->data.data, hsk->data.length);
909 session->internals.handshake_recv_buffer[pos].start_offset = hsk->start_offset;
910 session->internals.handshake_recv_buffer[pos].end_offset =
911 MIN(hsk->end_offset, session->internals.handshake_recv_buffer[pos].end_offset);
912 }
913 else if (hsk->end_offset > session->internals.handshake_recv_buffer[pos].end_offset &&
914 hsk->start_offset <= session->internals.handshake_recv_buffer[pos].end_offset+1)
915 {
916 memcpy(&session->internals.handshake_recv_buffer[pos].data.data[hsk->start_offset],
917 hsk->data.data, hsk->data.length);
918
919 session->internals.handshake_recv_buffer[pos].end_offset = hsk->end_offset;
920 session->internals.handshake_recv_buffer[pos].start_offset =
921 MIN(hsk->start_offset, session->internals.handshake_recv_buffer[pos].start_offset);
922 }
923 _gnutls_handshake_buffer_clear(hsk);
924 }
925
926 return 0;
927 }
928
929 /* returns non-zero on match and zero on mismatch
930 */
931 inline static int cmp_hsk_types(gnutls_handshake_description_t expected, gnutls_handshake_description_t recvd)
932 {
933 if ((expected != GNUTLS_HANDSHAKE_CLIENT_HELLO || recvd != GNUTLS_HANDSHAKE_CLIENT_HELLO_V2) &&
934 (expected != recvd))
935 return 0;
936
937 return 1;
938 }
939
940 #define LAST_ELEMENT (session->internals.handshake_recv_buffer_size-1)
941
942 /* returns the last stored handshake packet.
943 */
944 static int get_last_packet(gnutls_session_t session, gnutls_handshake_description_t htype,
945 handshake_buffer_st * hsk, unsigned int optional)
946 {
947 handshake_buffer_st* recv_buf = session->internals.handshake_recv_buffer;
948
949 if (IS_DTLS(session))
950 {
951 if (session->internals.handshake_recv_buffer_size == 0 ||
952 (session->internals.dtls.hsk_read_seq != recv_buf[LAST_ELEMENT].sequence))
953 goto timeout;
954
955 if (htype != recv_buf[LAST_ELEMENT].htype)
956 {
957 if (optional == 0)
958 _gnutls_audit_log(session, "Received unexpected handshake message '%s' (%d). Expected '%s' (%d)\n",
959 _gnutls_handshake2str(recv_buf[0].htype), (int)recv_buf[0].htype, _gnutls_handshake2str(htype), (int)htype);
960
961 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_HANDSHAKE_PACKET);
962 }
963
964 else if ((recv_buf[LAST_ELEMENT].start_offset == 0 &&
965 recv_buf[LAST_ELEMENT].end_offset == recv_buf[LAST_ELEMENT].length -1) ||
966 recv_buf[LAST_ELEMENT].length == 0)
967 {
968 session->internals.dtls.hsk_read_seq++;
969 _gnutls_handshake_buffer_move(hsk, &recv_buf[LAST_ELEMENT]);
970 session->internals.handshake_recv_buffer_size--;
971 return 0;
972 }
973 else
974 goto timeout;
975 }
976 else /* TLS */
977 {
978 if (session->internals.handshake_recv_buffer_size > 0 && recv_buf[0].length == recv_buf[0].data.length)
979 {
980 if (cmp_hsk_types(htype, recv_buf[0].htype) == 0)
981 {
982 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_HANDSHAKE_PACKET);
983 }
984
985 _gnutls_handshake_buffer_move(hsk, &recv_buf[0]);
986 session->internals.handshake_recv_buffer_size--;
987 return 0;
988 }
989 else
990 return gnutls_assert_val(GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE);
991 }
992
993 timeout:
994 RETURN_DTLS_EAGAIN_OR_TIMEOUT(session, 0);
995 }
996
997 /* This is a receive function for the gnutls handshake
998 * protocol. Makes sure that we have received all data.
999 *
1000 * htype is the next handshake packet expected.
1001 */
1002 int
1003 _gnutls_parse_record_buffered_msgs (gnutls_session_t session)
1004 {
1005 gnutls_datum_t msg;
1006 mbuffer_st* bufel = NULL, *prev = NULL;
1007 int ret;
1008 size_t data_size;
1009 handshake_buffer_st* recv_buf = session->internals.handshake_recv_buffer;
1010
1011 bufel = _mbuffer_head_get_first(&session->internals.record_buffer, &msg);
1012 if (bufel == NULL)
1013 return GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE;
1014
1015 if (!IS_DTLS(session))
1016 {
1017 ssize_t remain, append, header_size;
1018
1019 do
1020 {
1021 if (bufel->type != GNUTLS_HANDSHAKE)
1022 return gnutls_assert_val(GNUTLS_E_UNEXPECTED_PACKET);
1023
1024 /* if we have a half received message the complete it.
1025 */
1026 remain = recv_buf[0].length -
1027 recv_buf[0].data.length;
1028
1029 /* this is the rest of a previous message */
1030 if (session->internals.handshake_recv_buffer_size > 0 && recv_buf[0].length > 0 && remain > 0)
1031 {
1032 if (msg.size <= remain)
1033 append = msg.size;
1034 else
1035 append = remain;
1036
1037 ret = _gnutls_buffer_append_data(&recv_buf[0].data, msg.data, append);
1038 if (ret < 0)
1039 return gnutls_assert_val(ret);
1040
1041 _mbuffer_head_remove_bytes(&session->internals.record_buffer, append);
1042 }
1043 else /* received new message */
1044 {
1045 ret = parse_handshake_header(session, bufel, &recv_buf[0]);
1046 if (ret < 0)
1047 return gnutls_assert_val(ret);
1048
1049 header_size = ret;
1050 session->internals.handshake_recv_buffer_size = 1;
1051
1052 _mbuffer_set_uhead_size(bufel, header_size);
1053
1054 data_size = MIN(recv_buf[0].length, _mbuffer_get_udata_size(bufel));
1055 ret = _gnutls_buffer_append_data(&recv_buf[0].data, _mbuffer_get_udata_ptr(bufel), data_size);
1056 if (ret < 0)
1057 return gnutls_assert_val(ret);
1058 _mbuffer_set_uhead_size(bufel, 0);
1059 _mbuffer_head_remove_bytes(&session->internals.record_buffer, data_size+header_size);
1060 }
1061
1062 /* if packet is complete then return it
1063 */
1064 if (recv_buf[0].length ==
1065 recv_buf[0].data.length)
1066 {
1067 return 0;
1068 }
1069 bufel = _mbuffer_head_get_first(&session->internals.record_buffer, &msg);
1070 }
1071 while(bufel != NULL);
1072
1073 /* if we are here it means that the received packets were not
1074 * enough to complete the handshake packet.
1075 */
1076 return gnutls_assert_val(GNUTLS_E_AGAIN);
1077 }
1078 else /* DTLS */
1079 {
1080 handshake_buffer_st tmp;
1081
1082 do
1083 {
1084 /* we now
1085 * 0. parse headers
1086 * 1. insert to handshake_recv_buffer
1087 * 2. sort handshake_recv_buffer on sequence numbers
1088 * 3. return first packet if completed or GNUTLS_E_AGAIN.
1089 */
1090 do
1091 {
1092 if (bufel->type != GNUTLS_HANDSHAKE)
1093 {
1094 gnutls_assert();
1095 goto next; /* ignore packet */
1096 }
1097
1098 _gnutls_handshake_buffer_init(&tmp);
1099
1100 ret = parse_handshake_header(session, bufel, &tmp);
1101 if (ret < 0)
1102 {
1103 gnutls_assert();
1104 _gnutls_audit_log(session, "Invalid handshake packet headers. Discarding.\n");
1105 break;
1106 }
1107
1108 _mbuffer_consume(&session->internals.record_buffer, bufel, ret);
1109
1110 data_size = MIN(tmp.length, tmp.end_offset-tmp.start_offset+1);
1111
1112 ret = _gnutls_buffer_append_data(&tmp.data, _mbuffer_get_udata_ptr(bufel), data_size);
1113 if (ret < 0)
1114 return gnutls_assert_val(ret);
1115
1116 _mbuffer_consume(&session->internals.record_buffer, bufel, data_size);
1117
1118 ret = merge_handshake_packet(session, &tmp);
1119 if (ret < 0)
1120 return gnutls_assert_val(ret);
1121
1122 }
1123 while(_mbuffer_get_udata_size(bufel) > 0);
1124
1125 prev = bufel;
1126 bufel = _mbuffer_dequeue(&session->internals.record_buffer, bufel);
1127
1128 _mbuffer_xfree(&prev);
1129 continue;
1130
1131 next:
1132 bufel = _mbuffer_head_get_next(bufel, NULL);
1133 }
1134 while(bufel != NULL);
1135
1136 /* sort in descending order */
1137 if (session->internals.handshake_recv_buffer_size > 1)
1138 qsort(recv_buf, session->internals.handshake_recv_buffer_size,
1139 sizeof(recv_buf[0]), handshake_compare);
1140
1141 while(session->internals.handshake_recv_buffer_size > 0 &&
1142 recv_buf[LAST_ELEMENT].sequence < session->internals.dtls.hsk_read_seq)
1143 {
1144 _gnutls_audit_log(session, "Discarded replayed handshake packet with sequence %d\n", recv_buf[LAST_ELEMENT].sequence);
1145 _gnutls_handshake_buffer_clear(&recv_buf[LAST_ELEMENT]);
1146 session->internals.handshake_recv_buffer_size--;
1147 }
1148
1149 return 0;
1150 }
1151 }
1152
1153 /* This is a receive function for the gnutls handshake
1154 * protocol. Makes sure that we have received all data.
1155 */
1156 ssize_t
1157 _gnutls_handshake_io_recv_int (gnutls_session_t session,
1158 gnutls_handshake_description_t htype,
1159 handshake_buffer_st * hsk, unsigned int optional)
1160 {
1161 int ret;
1162
1163 ret = get_last_packet(session, htype, hsk, optional);
1164 if (ret != GNUTLS_E_AGAIN && ret != GNUTLS_E_INTERRUPTED && ret != GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE)
1165 {
1166 return gnutls_assert_val(ret);
1167 }
1168
1169 /* try using the already existing records before
1170 * trying to receive.
1171 */
1172 ret = _gnutls_parse_record_buffered_msgs(session);
1173
1174 if (ret == 0) ret = get_last_packet(session, htype, hsk, optional);
1175
1176 if (IS_DTLS(session))
1177 {
1178 if (ret >= 0)
1179 return ret;
1180 }
1181 else
1182 {
1183 if ((ret != GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && ret < 0) || ret >= 0)
1184 return gnutls_assert_val(ret);
1185 }
1186
1187 /* if we don't have a complete message waiting for us, try
1188 * receiving more */
1189 ret = _gnutls_recv_in_buffers(session, GNUTLS_HANDSHAKE, htype);
1190 if (ret < 0)
1191 return gnutls_assert_val_fatal(ret);
1192
1193 ret = _gnutls_parse_record_buffered_msgs(session);
1194 if (ret == 0) ret = get_last_packet(session, htype, hsk, optional);
1195
1196 return ret;
1197 }
Implementation of the SSL/TLS protocol