Chiebot-Mirror
/
boringssl
8
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Move session ID assignment out of ssl_get_new_session.

Browse Source 
It's kind of weird that we assign a session ID, based on whether we
detect the handshake wants stateful resumption, and then erase it
afterwards.

Also remove the is_server parameter, which we can get from hs.

Change-Id: I94ac817c63abb08a457e0e0c29f5c2d2b60aa498
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/47444
Commit-Queue: David Benjamin <davidben@google.com>
Reviewed-by: Adam Langley <agl@google.com>
grpc-202302
David Benjamin 4 years ago committed by CQ bot account: commit-bot@chromium.org
parent 8349dfc87e
commit 962b375bcb
6 changed files with 18 additions and 30 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      ssl/handshake_client.cc
  2. 13
      ssl/handshake_server.cc
  3. 2
      ssl/internal.h
  4. 27
      ssl/ssl_session.cc
  5. 2
      ssl/tls13_client.cc
  6. 2
      ssl/tls13_server.cc

2
ssl/handshake_client.cc
Unescape View File

@ -663,7 +663,7 @@ static enum ssl_hs_wait_t do_read_server_hello(SSL_HANDSHAKE *hs) {
// The session wasn't resumed. Create a fresh SSL_SESSION to // The session wasn't resumed. Create a fresh SSL_SESSION to
// fill out. // fill out.
ssl_set_session(ssl, NULL); ssl_set_session(ssl, NULL);
if (!ssl_get_new_session(hs, 0 /* client */)) { if (!ssl_get_new_session(hs)) {
ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR); ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR);
return ssl_hs_error; return ssl_hs_error;
} }

13
ssl/handshake_server.cc
Unescape View File

@ -892,14 +892,17 @@ static enum ssl_hs_wait_t do_select_parameters(SSL_HANDSHAKE *hs) {
hs->can_release_private_key = true; hs->can_release_private_key = true;
} else { } else {
hs->ticket_expected = tickets_supported; hs->ticket_expected = tickets_supported;
ssl_set_session(ssl, NULL); ssl_set_session(ssl, nullptr);
if (!ssl_get_new_session(hs, 1 /* server */)) { if (!ssl_get_new_session(hs)) {
return ssl_hs_error; return ssl_hs_error;
} }
// Clear the session ID if we want the session to be single-use. // Assign a session ID if not using session tickets.
if (!(ssl->ctx->session_cache_mode & SSL_SESS_CACHE_SERVER)) { if (!hs->ticket_expected &&
hs->new_session->session_id_length = 0; (ssl->ctx->session_cache_mode & SSL_SESS_CACHE_SERVER)) {
hs->new_session->session_id_length = SSL3_SSL_SESSION_ID_LENGTH;
RAND_bytes(hs->new_session->session_id,
hs->new_session->session_id_length);
} }
} }

2
ssl/internal.h
Unescape View File

@ -2966,7 +2966,7 @@ bool ssl_is_key_type_supported(int key_type);
bool ssl_compare_public_and_private_key(const EVP_PKEY *pubkey, bool ssl_compare_public_and_private_key(const EVP_PKEY *pubkey,
const EVP_PKEY *privkey); const EVP_PKEY *privkey);
bool ssl_cert_check_private_key(const CERT *cert, const EVP_PKEY *privkey); bool ssl_cert_check_private_key(const CERT *cert, const EVP_PKEY *privkey);
int ssl_get_new_session(SSL_HANDSHAKE *hs, int is_server); bool ssl_get_new_session(SSL_HANDSHAKE *hs);
int ssl_encrypt_ticket(SSL_HANDSHAKE *hs, CBB *out, const SSL_SESSION *session); int ssl_encrypt_ticket(SSL_HANDSHAKE *hs, CBB *out, const SSL_SESSION *session);
int ssl_ctx_rotate_ticket_encryption_key(SSL_CTX *ctx); int ssl_ctx_rotate_ticket_encryption_key(SSL_CTX *ctx);

27
ssl/ssl_session.cc
Unescape View File

@ -350,19 +350,19 @@ const EVP_MD *ssl_session_get_digest(const SSL_SESSION *session) {
session->cipher); session->cipher);
} }
int ssl_get_new_session(SSL_HANDSHAKE *hs, int is_server) { bool ssl_get_new_session(SSL_HANDSHAKE *hs) {
SSL *const ssl = hs->ssl; SSL *const ssl = hs->ssl;
if (ssl->mode & SSL_MODE_NO_SESSION_CREATION) { if (ssl->mode & SSL_MODE_NO_SESSION_CREATION) {
OPENSSL_PUT_ERROR(SSL, SSL_R_SESSION_MAY_NOT_BE_CREATED); OPENSSL_PUT_ERROR(SSL, SSL_R_SESSION_MAY_NOT_BE_CREATED);
return 0; return false;
} }
UniquePtr<SSL_SESSION> session = ssl_session_new(ssl->ctx->x509_method); UniquePtr<SSL_SESSION> session = ssl_session_new(ssl->ctx->x509_method);
if (session == NULL) { if (session == NULL) {
return 0; return false;
} }
session->is_server = is_server; session->is_server = ssl->server;
session->ssl_version = ssl->version; session->ssl_version = ssl->version;
session->is_quic = ssl->quic_method != nullptr; session->is_quic = ssl->quic_method != nullptr;
@ -384,24 +384,9 @@ int ssl_get_new_session(SSL_HANDSHAKE *hs, int is_server) {
session->auth_timeout = ssl->session_ctx->session_timeout; session->auth_timeout = ssl->session_ctx->session_timeout;
} }
if (is_server) {
if (hs->ticket_expected || version >= TLS1_3_VERSION) {
// Don't set session IDs for sessions resumed with tickets. This will keep
// them out of the session cache.
session->session_id_length = 0;
} else {
session->session_id_length = SSL3_SSL_SESSION_ID_LENGTH;
if (!RAND_bytes(session->session_id, session->session_id_length)) {
return 0;
}
}
} else {
session->session_id_length = 0;
}
if (hs->config->cert->sid_ctx_length > sizeof(session->sid_ctx)) { if (hs->config->cert->sid_ctx_length > sizeof(session->sid_ctx)) {
OPENSSL_PUT_ERROR(SSL, ERR_R_INTERNAL_ERROR); OPENSSL_PUT_ERROR(SSL, ERR_R_INTERNAL_ERROR);
return 0; return false;
} }
OPENSSL_memcpy(session->sid_ctx, hs->config->cert->sid_ctx, OPENSSL_memcpy(session->sid_ctx, hs->config->cert->sid_ctx,
hs->config->cert->sid_ctx_length); hs->config->cert->sid_ctx_length);
@ -413,7 +398,7 @@ int ssl_get_new_session(SSL_HANDSHAKE *hs, int is_server) {
hs->new_session = std::move(session); hs->new_session = std::move(session);
ssl_set_session(ssl, NULL); ssl_set_session(ssl, NULL);
return 1; return true;
} }
int ssl_ctx_rotate_ticket_encryption_key(SSL_CTX *ctx) { int ssl_ctx_rotate_ticket_encryption_key(SSL_CTX *ctx) {

2
ssl/tls13_client.cc
Unescape View File

@ -401,7 +401,7 @@ static enum ssl_hs_wait_t do_read_server_hello(SSL_HANDSHAKE *hs) {
// Resumption incorporates fresh key material, so refresh the timeout. // Resumption incorporates fresh key material, so refresh the timeout.
ssl_session_renew_timeout(ssl, hs->new_session.get(), ssl_session_renew_timeout(ssl, hs->new_session.get(),
ssl->session_ctx->session_psk_dhe_timeout); ssl->session_ctx->session_psk_dhe_timeout);
} else if (!ssl_get_new_session(hs, 0)) { } else if (!ssl_get_new_session(hs)) {
ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR); ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR);
return ssl_hs_error; return ssl_hs_error;
} }

2
ssl/tls13_server.cc
Unescape View File

@ -377,7 +377,7 @@ static enum ssl_hs_wait_t do_select_session(SSL_HANDSHAKE *hs) {
&offered_ticket, msg, &client_hello)) { &offered_ticket, msg, &client_hello)) {
case ssl_ticket_aead_ignore_ticket: case ssl_ticket_aead_ignore_ticket:
assert(!session); assert(!session);
if (!ssl_get_new_session(hs, 1 /* server */)) { if (!ssl_get_new_session(hs)) {
ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR); ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR);
return ssl_hs_error; return ssl_hs_error;
} }

Write Preview
Loading…
Cancel
Save