2014-07-02 00:53:04 +01:00
|
|
|
/* Copyright (c) 2014, Google Inc.
|
|
|
|
|
*
|
|
|
|
|
* Permission to use, copy, modify, and/or distribute this software for any
|
|
|
|
|
* purpose with or without fee is hereby granted, provided that the above
|
|
|
|
|
* copyright notice and this permission notice appear in all copies.
|
|
|
|
|
*
|
|
|
|
|
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
|
|
|
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
|
|
|
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
|
|
|
|
|
* SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
|
|
|
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
|
|
|
|
|
* OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
|
|
|
|
|
* CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
|
|
|
|
|
|
2014-07-31 23:23:51 +01:00
|
|
|
#include <openssl/base.h>
|
|
|
|
|
|
|
|
|
|
#if !defined(OPENSSL_WINDOWS)
|
2014-07-02 00:53:04 +01:00
|
|
|
#include <arpa/inet.h>
|
2014-07-23 00:20:02 +01:00
|
|
|
#include <netinet/in.h>
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
#include <netinet/tcp.h>
|
2014-07-23 00:20:02 +01:00
|
|
|
#include <signal.h>
|
|
|
|
|
#include <sys/socket.h>
|
2015-12-05 02:49:53 +00:00
|
|
|
#include <sys/time.h>
|
2014-07-09 14:30:38 +01:00
|
|
|
#include <unistd.h>
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
#else
|
|
|
|
|
#include <io.h>
|
2016-06-09 21:48:33 +01:00
|
|
|
OPENSSL_MSVC_PRAGMA(warning(push, 3))
|
2015-03-20 23:32:23 +00:00
|
|
|
#include <winsock2.h>
|
|
|
|
|
#include <ws2tcpip.h>
|
2016-06-09 21:48:33 +01:00
|
|
|
OPENSSL_MSVC_PRAGMA(warning(pop))
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
|
2016-10-10 19:56:47 +01:00
|
|
|
OPENSSL_MSVC_PRAGMA(comment(lib, "Ws2_32.lib"))
|
2014-07-31 23:23:51 +01:00
|
|
|
#endif
|
|
|
|
|
|
2016-06-02 19:58:00 +01:00
|
|
|
#include <assert.h>
|
2015-12-19 19:23:26 +00:00
|
|
|
#include <inttypes.h>
|
2015-01-31 01:08:37 +00:00
|
|
|
#include <string.h>
|
2017-07-14 21:48:36 +01:00
|
|
|
#include <time.h>
|
2014-07-02 00:53:04 +01:00
|
|
|
|
2016-10-31 23:20:42 +00:00
|
|
|
#include <openssl/aead.h>
|
2014-07-02 00:53:04 +01:00
|
|
|
#include <openssl/bio.h>
|
2014-10-27 05:06:24 +00:00
|
|
|
#include <openssl/buf.h>
|
2014-07-09 14:30:38 +01:00
|
|
|
#include <openssl/bytestring.h>
|
2015-06-16 19:16:23 +01:00
|
|
|
#include <openssl/cipher.h>
|
2015-10-18 04:39:22 +01:00
|
|
|
#include <openssl/crypto.h>
|
2016-09-06 23:10:19 +01:00
|
|
|
#include <openssl/digest.h>
|
2015-04-10 03:21:10 +01:00
|
|
|
#include <openssl/err.h>
|
2016-08-18 04:10:28 +01:00
|
|
|
#include <openssl/evp.h>
|
2015-06-16 19:16:23 +01:00
|
|
|
#include <openssl/hmac.h>
|
2016-03-25 22:07:11 +00:00
|
|
|
#include <openssl/nid.h>
|
2015-06-16 19:16:23 +01:00
|
|
|
#include <openssl/rand.h>
|
2014-07-23 00:20:02 +01:00
|
|
|
#include <openssl/ssl.h>
|
2016-08-18 04:10:28 +01:00
|
|
|
#include <openssl/x509.h>
|
2014-07-23 00:20:02 +01:00
|
|
|
|
2017-10-13 00:11:47 +01:00
|
|
|
#include <functional>
|
2015-03-22 20:31:27 +00:00
|
|
|
#include <memory>
|
2015-09-04 17:41:04 +01:00
|
|
|
#include <string>
|
2015-04-03 09:06:36 +01:00
|
|
|
#include <vector>
|
2015-03-22 20:31:27 +00:00
|
|
|
|
2016-08-17 21:56:14 +01:00
|
|
|
#include "../../crypto/internal.h"
|
2017-05-09 17:12:58 +01:00
|
|
|
#include "../internal.h"
|
2014-08-05 07:28:57 +01:00
|
|
|
#include "async_bio.h"
|
2018-06-23 00:19:16 +01:00
|
|
|
#include "handshake_util.h"
|
2014-08-11 23:43:38 +01:00
|
|
|
#include "packeted_bio.h"
|
2018-06-22 22:40:15 +01:00
|
|
|
#include "settings_writer.h"
|
2014-08-12 00:51:50 +01:00
|
|
|
#include "test_config.h"
|
2018-06-22 23:53:19 +01:00
|
|
|
#include "test_state.h"
|
2014-08-05 07:28:57 +01:00
|
|
|
|
2018-08-01 16:29:48 +01:00
|
|
|
#if defined(OPENSSL_LINUX) && !defined(OPENSSL_ANDROID)
|
|
|
|
|
#define HANDSHAKER_SUPPORTED
|
|
|
|
|
#endif
|
|
|
|
|
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
|
|
|
|
|
#if !defined(OPENSSL_WINDOWS)
|
|
|
|
|
static int closesocket(int sock) {
|
|
|
|
|
return close(sock);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void PrintSocketError(const char *func) {
|
|
|
|
|
perror(func);
|
|
|
|
|
}
|
|
|
|
|
#else
|
|
|
|
|
static void PrintSocketError(const char *func) {
|
|
|
|
|
fprintf(stderr, "%s: %d\n", func, WSAGetLastError());
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2015-02-09 17:59:46 +00:00
|
|
|
static int Usage(const char *program) {
|
2015-02-09 07:37:18 +00:00
|
|
|
fprintf(stderr, "Usage: %s [flags...]\n", program);
|
2014-07-23 00:20:02 +01:00
|
|
|
return 1;
|
|
|
|
|
}
|
2014-07-02 00:53:04 +01:00
|
|
|
|
2015-09-04 17:41:04 +01:00
|
|
|
template<typename T>
|
2016-07-12 16:09:33 +01:00
|
|
|
struct Free {
|
2015-09-04 17:41:04 +01:00
|
|
|
void operator()(T *buf) {
|
|
|
|
|
free(buf);
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
// Connect returns a new socket connected to localhost on |port| or -1 on
|
|
|
|
|
// error.
|
|
|
|
|
static int Connect(uint16_t port) {
|
2017-05-20 02:13:25 +01:00
|
|
|
for (int af : { AF_INET6, AF_INET }) {
|
|
|
|
|
int sock = socket(af, SOCK_STREAM, 0);
|
|
|
|
|
if (sock == -1) {
|
|
|
|
|
PrintSocketError("socket");
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
int nodelay = 1;
|
|
|
|
|
if (setsockopt(sock, IPPROTO_TCP, TCP_NODELAY,
|
|
|
|
|
reinterpret_cast<const char*>(&nodelay), sizeof(nodelay)) != 0) {
|
|
|
|
|
PrintSocketError("setsockopt");
|
|
|
|
|
closesocket(sock);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sockaddr_storage ss;
|
|
|
|
|
OPENSSL_memset(&ss, 0, sizeof(ss));
|
|
|
|
|
ss.ss_family = af;
|
|
|
|
|
socklen_t len = 0;
|
|
|
|
|
|
|
|
|
|
if (af == AF_INET6) {
|
|
|
|
|
sockaddr_in6 *sin6 = (sockaddr_in6 *) &ss;
|
|
|
|
|
len = sizeof(*sin6);
|
|
|
|
|
sin6->sin6_port = htons(port);
|
|
|
|
|
if (!inet_pton(AF_INET6, "::1", &sin6->sin6_addr)) {
|
|
|
|
|
PrintSocketError("inet_pton");
|
|
|
|
|
closesocket(sock);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
} else if (af == AF_INET) {
|
|
|
|
|
sockaddr_in *sin = (sockaddr_in *) &ss;
|
|
|
|
|
len = sizeof(*sin);
|
|
|
|
|
sin->sin_port = htons(port);
|
|
|
|
|
if (!inet_pton(AF_INET, "127.0.0.1", &sin->sin_addr)) {
|
|
|
|
|
PrintSocketError("inet_pton");
|
|
|
|
|
closesocket(sock);
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (connect(sock, reinterpret_cast<const sockaddr*>(&ss), len) == 0) {
|
|
|
|
|
return sock;
|
|
|
|
|
}
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
closesocket(sock);
|
|
|
|
|
}
|
2017-07-14 21:48:36 +01:00
|
|
|
|
2017-07-13 23:43:51 +01:00
|
|
|
PrintSocketError("connect");
|
2017-05-20 02:13:25 +01:00
|
|
|
return -1;
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
class SocketCloser {
|
|
|
|
|
public:
|
|
|
|
|
explicit SocketCloser(int sock) : sock_(sock) {}
|
|
|
|
|
~SocketCloser() {
|
|
|
|
|
// Half-close and drain the socket before releasing it. This seems to be
|
|
|
|
|
// necessary for graceful shutdown on Windows. It will also avoid write
|
|
|
|
|
// failures in the test runner.
|
|
|
|
|
#if defined(OPENSSL_WINDOWS)
|
|
|
|
|
shutdown(sock_, SD_SEND);
|
|
|
|
|
#else
|
|
|
|
|
shutdown(sock_, SHUT_WR);
|
|
|
|
|
#endif
|
|
|
|
|
while (true) {
|
|
|
|
|
char buf[1024];
|
|
|
|
|
if (recv(sock_, buf, sizeof(buf), 0) <= 0) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
closesocket(sock_);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private:
|
|
|
|
|
const int sock_;
|
|
|
|
|
};
|
|
|
|
|
|
2015-04-03 08:47:47 +01:00
|
|
|
// DoRead reads from |ssl|, resolving any asynchronous operations. It returns
|
|
|
|
|
// the result value of the final |SSL_read| call.
|
|
|
|
|
static int DoRead(SSL *ssl, uint8_t *out, size_t max_out) {
|
2016-05-21 01:12:42 +01:00
|
|
|
const TestConfig *config = GetTestConfig(ssl);
|
2015-11-02 22:16:13 +00:00
|
|
|
TestState *test_state = GetTestState(ssl);
|
2015-04-03 08:47:47 +01:00
|
|
|
int ret;
|
|
|
|
|
do {
|
2015-11-02 22:16:13 +00:00
|
|
|
if (config->async) {
|
|
|
|
|
// The DTLS retransmit logic silently ignores write failures. So the test
|
|
|
|
|
// may progress, allow writes through synchronously. |SSL_read| may
|
|
|
|
|
// trigger a retransmit, so disconnect the write quota.
|
|
|
|
|
AsyncBioEnforceWriteQuota(test_state->async_bio, false);
|
|
|
|
|
}
|
2017-10-13 00:11:47 +01:00
|
|
|
ret = CheckIdempotentError("SSL_peek/SSL_read", ssl, [&]() -> int {
|
|
|
|
|
return config->peek_then_read ? SSL_peek(ssl, out, max_out)
|
|
|
|
|
: SSL_read(ssl, out, max_out);
|
|
|
|
|
});
|
2015-11-02 22:16:13 +00:00
|
|
|
if (config->async) {
|
|
|
|
|
AsyncBioEnforceWriteQuota(test_state->async_bio, true);
|
|
|
|
|
}
|
2016-11-01 23:45:06 +00:00
|
|
|
|
|
|
|
|
// Run the exporter after each read. This is to test that the exporter fails
|
|
|
|
|
// during a renegotiation.
|
|
|
|
|
if (config->use_exporter_between_reads) {
|
|
|
|
|
uint8_t buf;
|
|
|
|
|
if (!SSL_export_keying_material(ssl, &buf, 1, NULL, 0, NULL, 0, 0)) {
|
|
|
|
|
fprintf(stderr, "failed to export keying material\n");
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-04-03 08:47:47 +01:00
|
|
|
} while (config->async && RetryAsync(ssl, ret));
|
2016-09-19 18:08:16 +01:00
|
|
|
|
|
|
|
|
if (config->peek_then_read && ret > 0) {
|
|
|
|
|
std::unique_ptr<uint8_t[]> buf(new uint8_t[static_cast<size_t>(ret)]);
|
|
|
|
|
|
|
|
|
|
// SSL_peek should synchronously return the same data.
|
|
|
|
|
int ret2 = SSL_peek(ssl, buf.get(), ret);
|
|
|
|
|
if (ret2 != ret ||
|
2016-12-13 06:07:13 +00:00
|
|
|
OPENSSL_memcmp(buf.get(), out, ret) != 0) {
|
2016-09-19 18:08:16 +01:00
|
|
|
fprintf(stderr, "First and second SSL_peek did not match.\n");
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// SSL_read should synchronously return the same data and consume it.
|
|
|
|
|
ret2 = SSL_read(ssl, buf.get(), ret);
|
|
|
|
|
if (ret2 != ret ||
|
2016-12-13 06:07:13 +00:00
|
|
|
OPENSSL_memcmp(buf.get(), out, ret) != 0) {
|
2016-09-19 18:08:16 +01:00
|
|
|
fprintf(stderr, "SSL_peek and SSL_read did not match.\n");
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-04-03 08:47:47 +01:00
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// WriteAll writes |in_len| bytes from |in| to |ssl|, resolving any asynchronous
|
|
|
|
|
// operations. It returns the result of the final |SSL_write| call.
|
2017-04-06 17:54:12 +01:00
|
|
|
static int WriteAll(SSL *ssl, const void *in_, size_t in_len) {
|
|
|
|
|
const uint8_t *in = reinterpret_cast<const uint8_t *>(in_);
|
2016-05-21 01:12:42 +01:00
|
|
|
const TestConfig *config = GetTestConfig(ssl);
|
2015-04-03 08:47:47 +01:00
|
|
|
int ret;
|
|
|
|
|
do {
|
|
|
|
|
ret = SSL_write(ssl, in, in_len);
|
|
|
|
|
if (ret > 0) {
|
|
|
|
|
in += ret;
|
|
|
|
|
in_len -= ret;
|
|
|
|
|
}
|
|
|
|
|
} while ((config->async && RetryAsync(ssl, ret)) || (ret > 0 && in_len > 0));
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-30 03:56:45 +01:00
|
|
|
// DoShutdown calls |SSL_shutdown|, resolving any asynchronous operations. It
|
|
|
|
|
// returns the result of the final |SSL_shutdown| call.
|
|
|
|
|
static int DoShutdown(SSL *ssl) {
|
2016-05-21 01:12:42 +01:00
|
|
|
const TestConfig *config = GetTestConfig(ssl);
|
2015-08-30 03:56:45 +01:00
|
|
|
int ret;
|
|
|
|
|
do {
|
|
|
|
|
ret = SSL_shutdown(ssl);
|
|
|
|
|
} while (config->async && RetryAsync(ssl, ret));
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2016-07-26 23:03:08 +01:00
|
|
|
// DoSendFatalAlert calls |SSL_send_fatal_alert|, resolving any asynchronous
|
|
|
|
|
// operations. It returns the result of the final |SSL_send_fatal_alert| call.
|
|
|
|
|
static int DoSendFatalAlert(SSL *ssl, uint8_t alert) {
|
|
|
|
|
const TestConfig *config = GetTestConfig(ssl);
|
|
|
|
|
int ret;
|
|
|
|
|
do {
|
|
|
|
|
ret = SSL_send_fatal_alert(ssl, alert);
|
|
|
|
|
} while (config->async && RetryAsync(ssl, ret));
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2016-07-27 16:10:52 +01:00
|
|
|
static uint16_t GetProtocolVersion(const SSL *ssl) {
|
|
|
|
|
uint16_t version = SSL_version(ssl);
|
|
|
|
|
if (!SSL_is_dtls(ssl)) {
|
|
|
|
|
return version;
|
|
|
|
|
}
|
|
|
|
|
return 0x0201 + ~version;
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-24 06:09:41 +01:00
|
|
|
// CheckAuthProperties checks, after the initial handshake is completed or
|
|
|
|
|
// after a renegotiation, that authentication-related properties match |config|.
|
|
|
|
|
static bool CheckAuthProperties(SSL *ssl, bool is_resume,
|
|
|
|
|
const TestConfig *config) {
|
|
|
|
|
if (!config->expected_ocsp_response.empty()) {
|
|
|
|
|
const uint8_t *data;
|
|
|
|
|
size_t len;
|
|
|
|
|
SSL_get0_ocsp_response(ssl, &data, &len);
|
|
|
|
|
if (config->expected_ocsp_response.size() != len ||
|
|
|
|
|
OPENSSL_memcmp(config->expected_ocsp_response.data(), data, len) != 0) {
|
|
|
|
|
fprintf(stderr, "OCSP response mismatch\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!config->expected_signed_cert_timestamps.empty()) {
|
|
|
|
|
const uint8_t *data;
|
|
|
|
|
size_t len;
|
|
|
|
|
SSL_get0_signed_cert_timestamp_list(ssl, &data, &len);
|
|
|
|
|
if (config->expected_signed_cert_timestamps.size() != len ||
|
|
|
|
|
OPENSSL_memcmp(config->expected_signed_cert_timestamps.data(), data,
|
|
|
|
|
len) != 0) {
|
|
|
|
|
fprintf(stderr, "SCT list mismatch\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (config->expect_verify_result) {
|
|
|
|
|
int expected_verify_result = config->verify_fail ?
|
|
|
|
|
X509_V_ERR_APPLICATION_VERIFICATION :
|
|
|
|
|
X509_V_OK;
|
|
|
|
|
|
|
|
|
|
if (SSL_get_verify_result(ssl) != expected_verify_result) {
|
|
|
|
|
fprintf(stderr, "Wrong certificate verification result\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!config->expect_peer_cert_file.empty()) {
|
|
|
|
|
bssl::UniquePtr<X509> expect_leaf;
|
|
|
|
|
bssl::UniquePtr<STACK_OF(X509)> expect_chain;
|
|
|
|
|
if (!LoadCertificate(&expect_leaf, &expect_chain,
|
|
|
|
|
config->expect_peer_cert_file)) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// For historical reasons, clients report a chain with a leaf and servers
|
|
|
|
|
// without.
|
|
|
|
|
if (!config->is_server) {
|
|
|
|
|
if (!sk_X509_insert(expect_chain.get(), expect_leaf.get(), 0)) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2018-06-29 22:46:42 +01:00
|
|
|
X509_up_ref(expect_leaf.get()); // sk_X509_insert takes ownership.
|
2017-08-24 06:09:41 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bssl::UniquePtr<X509> leaf(SSL_get_peer_certificate(ssl));
|
|
|
|
|
STACK_OF(X509) *chain = SSL_get_peer_cert_chain(ssl);
|
|
|
|
|
if (X509_cmp(leaf.get(), expect_leaf.get()) != 0) {
|
|
|
|
|
fprintf(stderr, "Received a different leaf certificate than expected.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (sk_X509_num(chain) != sk_X509_num(expect_chain.get())) {
|
|
|
|
|
fprintf(stderr, "Received a chain of length %zu instead of %zu.\n",
|
|
|
|
|
sk_X509_num(chain), sk_X509_num(expect_chain.get()));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (size_t i = 0; i < sk_X509_num(chain); i++) {
|
|
|
|
|
if (X509_cmp(sk_X509_value(chain, i),
|
|
|
|
|
sk_X509_value(expect_chain.get(), i)) != 0) {
|
|
|
|
|
fprintf(stderr, "Chain certificate %zu did not match.\n",
|
|
|
|
|
i + 1);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-05-08 23:13:54 +01:00
|
|
|
if (!!SSL_SESSION_has_peer_sha256(SSL_get_session(ssl)) !=
|
2017-08-24 07:01:37 +01:00
|
|
|
config->expect_sha256_client_cert) {
|
2017-08-24 06:09:41 +01:00
|
|
|
fprintf(stderr,
|
|
|
|
|
"Unexpected SHA-256 client cert state: expected:%d is_resume:%d.\n",
|
2017-08-24 07:01:37 +01:00
|
|
|
config->expect_sha256_client_cert, is_resume);
|
2017-08-24 06:09:41 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-24 07:01:37 +01:00
|
|
|
if (config->expect_sha256_client_cert &&
|
2018-05-08 23:13:54 +01:00
|
|
|
SSL_SESSION_get0_peer_certificates(SSL_get_session(ssl)) != nullptr) {
|
2017-08-24 06:09:41 +01:00
|
|
|
fprintf(stderr, "Have both client cert and SHA-256 hash: is_resume:%d.\n",
|
|
|
|
|
is_resume);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2018-05-08 23:13:54 +01:00
|
|
|
const uint8_t *peer_sha256;
|
|
|
|
|
size_t peer_sha256_len;
|
|
|
|
|
SSL_SESSION_get0_peer_sha256(SSL_get_session(ssl), &peer_sha256,
|
|
|
|
|
&peer_sha256_len);
|
|
|
|
|
if (SSL_SESSION_has_peer_sha256(SSL_get_session(ssl))) {
|
|
|
|
|
if (peer_sha256_len != 32) {
|
|
|
|
|
fprintf(stderr, "Peer SHA-256 hash had length %zu instead of 32\n",
|
|
|
|
|
peer_sha256_len);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
if (peer_sha256_len != 0) {
|
|
|
|
|
fprintf(stderr, "Unexpected peer SHA-256 hash of length %zu\n",
|
|
|
|
|
peer_sha256_len);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-24 06:09:41 +01:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-18 23:35:46 +01:00
|
|
|
// CheckHandshakeProperties checks, immediately after |ssl| completes its
|
|
|
|
|
// initial handshake (or False Starts), whether all the properties are
|
|
|
|
|
// consistent with the test configuration and invariants.
|
2017-03-09 19:56:07 +00:00
|
|
|
static bool CheckHandshakeProperties(SSL *ssl, bool is_resume,
|
|
|
|
|
const TestConfig *config) {
|
2017-08-24 06:09:41 +01:00
|
|
|
if (!CheckAuthProperties(ssl, is_resume, config)) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-18 23:35:46 +01:00
|
|
|
if (SSL_get_current_cipher(ssl) == nullptr) {
|
|
|
|
|
fprintf(stderr, "null cipher after handshake\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-07-07 18:17:19 +01:00
|
|
|
if (config->expect_version != 0 &&
|
|
|
|
|
SSL_version(ssl) != config->expect_version) {
|
|
|
|
|
fprintf(stderr, "want version %04x, got %04x\n", config->expect_version,
|
|
|
|
|
SSL_version(ssl));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
bool expect_resume =
|
|
|
|
|
is_resume && (!config->expect_session_miss || SSL_in_early_data(ssl));
|
|
|
|
|
if (!!SSL_session_reused(ssl) != expect_resume) {
|
|
|
|
|
fprintf(stderr, "session unexpectedly was%s reused\n",
|
2015-06-18 23:35:46 +01:00
|
|
|
SSL_session_reused(ssl) ? "" : " not");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2016-12-19 18:19:29 +00:00
|
|
|
bool expect_handshake_done =
|
2017-03-09 19:56:07 +00:00
|
|
|
(is_resume || !config->false_start) && !SSL_in_early_data(ssl);
|
2015-06-18 23:35:46 +01:00
|
|
|
if (expect_handshake_done != GetTestState(ssl)->handshake_done) {
|
|
|
|
|
fprintf(stderr, "handshake was%s completed\n",
|
|
|
|
|
GetTestState(ssl)->handshake_done ? "" : " not");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-18 23:36:15 +01:00
|
|
|
if (expect_handshake_done && !config->is_server) {
|
|
|
|
|
bool expect_new_session =
|
|
|
|
|
!config->expect_no_session &&
|
2016-07-11 18:19:03 +01:00
|
|
|
(!SSL_session_reused(ssl) || config->expect_ticket_renewal) &&
|
2016-07-27 16:10:52 +01:00
|
|
|
// Session tickets are sent post-handshake in TLS 1.3.
|
|
|
|
|
GetProtocolVersion(ssl) < TLS1_3_VERSION;
|
2015-06-18 23:36:15 +01:00
|
|
|
if (expect_new_session != GetTestState(ssl)->got_new_session) {
|
|
|
|
|
fprintf(stderr,
|
2015-10-23 22:41:12 +01:00
|
|
|
"new session was%s cached, but we expected the opposite\n",
|
2015-06-18 23:36:15 +01:00
|
|
|
GetTestState(ssl)->got_new_session ? "" : " not");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-01-28 06:39:29 +00:00
|
|
|
if (!is_resume) {
|
|
|
|
|
if (config->expect_session_id && !GetTestState(ssl)->got_new_session) {
|
|
|
|
|
fprintf(stderr, "session was not cached on the server.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if (config->expect_no_session_id && GetTestState(ssl)->got_new_session) {
|
|
|
|
|
fprintf(stderr, "session was unexpectedly cached on the server.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-07-11 22:58:22 +01:00
|
|
|
// early_callback_called is updated in the handshaker, so we don't see it
|
|
|
|
|
// here.
|
|
|
|
|
if (!config->handoff && config->is_server &&
|
|
|
|
|
!GetTestState(ssl)->early_callback_called) {
|
2015-06-18 23:35:46 +01:00
|
|
|
fprintf(stderr, "early callback not called\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!config->expected_server_name.empty()) {
|
|
|
|
|
const char *server_name =
|
|
|
|
|
SSL_get_servername(ssl, TLSEXT_NAMETYPE_host_name);
|
2016-10-28 02:51:24 +01:00
|
|
|
if (server_name == nullptr ||
|
|
|
|
|
server_name != config->expected_server_name) {
|
2015-06-18 23:35:46 +01:00
|
|
|
fprintf(stderr, "servername mismatch (got %s; want %s)\n",
|
|
|
|
|
server_name, config->expected_server_name.c_str());
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!config->expected_next_proto.empty()) {
|
|
|
|
|
const uint8_t *next_proto;
|
|
|
|
|
unsigned next_proto_len;
|
|
|
|
|
SSL_get0_next_proto_negotiated(ssl, &next_proto, &next_proto_len);
|
|
|
|
|
if (next_proto_len != config->expected_next_proto.size() ||
|
2016-12-13 06:07:13 +00:00
|
|
|
OPENSSL_memcmp(next_proto, config->expected_next_proto.data(),
|
|
|
|
|
next_proto_len) != 0) {
|
2015-06-18 23:35:46 +01:00
|
|
|
fprintf(stderr, "negotiated next proto mismatch\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-05-09 17:12:58 +01:00
|
|
|
if (!config->is_server) {
|
2015-06-18 23:35:46 +01:00
|
|
|
const uint8_t *alpn_proto;
|
|
|
|
|
unsigned alpn_proto_len;
|
|
|
|
|
SSL_get0_alpn_selected(ssl, &alpn_proto, &alpn_proto_len);
|
2017-05-09 17:12:58 +01:00
|
|
|
if (alpn_proto_len != config->expected_alpn.size() ||
|
|
|
|
|
OPENSSL_memcmp(alpn_proto, config->expected_alpn.data(),
|
|
|
|
|
alpn_proto_len) != 0) {
|
2015-06-18 23:35:46 +01:00
|
|
|
fprintf(stderr, "negotiated alpn proto mismatch\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-12-22 23:50:43 +00:00
|
|
|
if (!config->expected_quic_transport_params.empty()) {
|
|
|
|
|
const uint8_t *peer_params;
|
|
|
|
|
size_t peer_params_len;
|
|
|
|
|
SSL_get_peer_quic_transport_params(ssl, &peer_params, &peer_params_len);
|
|
|
|
|
if (peer_params_len != config->expected_quic_transport_params.size() ||
|
|
|
|
|
OPENSSL_memcmp(peer_params,
|
|
|
|
|
config->expected_quic_transport_params.data(),
|
|
|
|
|
peer_params_len) != 0) {
|
|
|
|
|
fprintf(stderr, "QUIC transport params mismatch\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-18 23:35:46 +01:00
|
|
|
if (!config->expected_channel_id.empty()) {
|
|
|
|
|
uint8_t channel_id[64];
|
|
|
|
|
if (!SSL_get_tls_channel_id(ssl, channel_id, sizeof(channel_id))) {
|
|
|
|
|
fprintf(stderr, "no channel id negotiated\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if (config->expected_channel_id.size() != 64 ||
|
2016-12-13 06:07:13 +00:00
|
|
|
OPENSSL_memcmp(config->expected_channel_id.data(), channel_id, 64) !=
|
|
|
|
|
0) {
|
2015-06-18 23:35:46 +01:00
|
|
|
fprintf(stderr, "channel id mismatch\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-09-21 23:02:22 +01:00
|
|
|
if (config->expected_token_binding_param != -1) {
|
|
|
|
|
if (!SSL_is_token_binding_negotiated(ssl)) {
|
|
|
|
|
fprintf(stderr, "no Token Binding negotiated\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if (SSL_get_negotiated_token_binding_param(ssl) !=
|
|
|
|
|
static_cast<uint8_t>(config->expected_token_binding_param)) {
|
|
|
|
|
fprintf(stderr, "Token Binding param mismatch\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-01-03 15:49:28 +00:00
|
|
|
if (config->expect_extended_master_secret && !SSL_get_extms_support(ssl)) {
|
|
|
|
|
fprintf(stderr, "No EMS for connection when expected\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (config->expect_secure_renegotiation &&
|
|
|
|
|
!SSL_get_secure_renegotiation_support(ssl)) {
|
|
|
|
|
fprintf(stderr, "No secure renegotiation for connection when expected\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (config->expect_no_secure_renegotiation &&
|
|
|
|
|
SSL_get_secure_renegotiation_support(ssl)) {
|
|
|
|
|
fprintf(stderr,
|
|
|
|
|
"Secure renegotiation unexpectedly negotiated for connection\n");
|
|
|
|
|
return false;
|
2015-06-18 23:35:46 +01:00
|
|
|
}
|
|
|
|
|
|
2016-06-21 23:19:24 +01:00
|
|
|
if (config->expect_peer_signature_algorithm != 0 &&
|
|
|
|
|
config->expect_peer_signature_algorithm !=
|
|
|
|
|
SSL_get_peer_signature_algorithm(ssl)) {
|
|
|
|
|
fprintf(stderr, "Peer signature algorithm was %04x, wanted %04x.\n",
|
|
|
|
|
SSL_get_peer_signature_algorithm(ssl),
|
|
|
|
|
config->expect_peer_signature_algorithm);
|
2015-11-02 17:02:20 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-05-09 17:12:58 +01:00
|
|
|
if (config->expect_curve_id != 0) {
|
2016-06-30 19:55:33 +01:00
|
|
|
uint16_t curve_id = SSL_get_curve_id(ssl);
|
2017-05-09 17:12:58 +01:00
|
|
|
if (static_cast<uint16_t>(config->expect_curve_id) != curve_id) {
|
2016-06-30 19:55:33 +01:00
|
|
|
fprintf(stderr, "curve_id was %04x, wanted %04x\n", curve_id,
|
2017-05-09 17:12:58 +01:00
|
|
|
static_cast<uint16_t>(config->expect_curve_id));
|
2016-06-30 19:55:33 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-10-31 23:20:42 +00:00
|
|
|
uint16_t cipher_id =
|
|
|
|
|
static_cast<uint16_t>(SSL_CIPHER_get_id(SSL_get_current_cipher(ssl)));
|
|
|
|
|
if (config->expect_cipher_aes != 0 &&
|
|
|
|
|
EVP_has_aes_hardware() &&
|
|
|
|
|
static_cast<uint16_t>(config->expect_cipher_aes) != cipher_id) {
|
|
|
|
|
fprintf(stderr, "Cipher ID was %04x, wanted %04x (has AES hardware)\n",
|
|
|
|
|
cipher_id, static_cast<uint16_t>(config->expect_cipher_aes));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (config->expect_cipher_no_aes != 0 &&
|
|
|
|
|
!EVP_has_aes_hardware() &&
|
|
|
|
|
static_cast<uint16_t>(config->expect_cipher_no_aes) != cipher_id) {
|
|
|
|
|
fprintf(stderr, "Cipher ID was %04x, wanted %04x (no AES hardware)\n",
|
|
|
|
|
cipher_id, static_cast<uint16_t>(config->expect_cipher_no_aes));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
if (is_resume && !SSL_in_early_data(ssl)) {
|
2017-01-11 16:34:52 +00:00
|
|
|
if ((config->expect_accept_early_data && !SSL_early_data_accepted(ssl)) ||
|
|
|
|
|
(config->expect_reject_early_data && SSL_early_data_accepted(ssl))) {
|
|
|
|
|
fprintf(stderr,
|
|
|
|
|
"Early data was%s accepted, but we expected the opposite\n",
|
|
|
|
|
SSL_early_data_accepted(ssl) ? "" : " not");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
2016-10-31 23:20:42 +00:00
|
|
|
|
2016-08-03 19:14:47 +01:00
|
|
|
if (!config->psk.empty()) {
|
|
|
|
|
if (SSL_get_peer_cert_chain(ssl) != nullptr) {
|
|
|
|
|
fprintf(stderr, "Received peer certificate on a PSK cipher.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
} else if (!config->is_server || config->require_any_client_certificate) {
|
|
|
|
|
if (SSL_get_peer_cert_chain(ssl) == nullptr) {
|
|
|
|
|
fprintf(stderr, "Received no peer certificate but expected one.\n");
|
2015-06-18 23:35:46 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
2016-08-03 19:14:47 +01:00
|
|
|
|
2017-03-03 20:05:56 +00:00
|
|
|
if (is_resume && config->expect_ticket_age_skew != 0 &&
|
|
|
|
|
SSL_get_ticket_age_skew(ssl) != config->expect_ticket_age_skew) {
|
|
|
|
|
fprintf(stderr, "Ticket age skew was %" PRId32 ", wanted %d\n",
|
|
|
|
|
SSL_get_ticket_age_skew(ssl), config->expect_ticket_age_skew);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2018-08-13 15:54:48 +01:00
|
|
|
if (config->expect_tls13_downgrade != !!SSL_is_tls13_downgrade(ssl)) {
|
|
|
|
|
fprintf(stderr, "Got %s downgrade signal, but wanted the opposite.\n",
|
|
|
|
|
SSL_is_tls13_downgrade(ssl) ? "" : "no ");
|
2018-02-28 21:35:39 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-18 23:35:46 +01:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-22 18:48:33 +00:00
|
|
|
static bool DoExchange(bssl::UniquePtr<SSL_SESSION> *out_session,
|
|
|
|
|
bssl::UniquePtr<SSL> *ssl_uniqueptr,
|
2018-04-06 00:50:21 +01:00
|
|
|
const TestConfig *config, bool is_resume, bool is_retry,
|
|
|
|
|
SettingsWriter *writer);
|
2018-03-22 18:48:33 +00:00
|
|
|
|
|
|
|
|
// DoConnection tests an SSL connection against the peer. On success, it returns
|
|
|
|
|
// true and sets |*out_session| to the negotiated SSL session. If the test is a
|
|
|
|
|
// resumption attempt, |is_resume| is true and |session| is the session from the
|
|
|
|
|
// previous exchange.
|
|
|
|
|
static bool DoConnection(bssl::UniquePtr<SSL_SESSION> *out_session,
|
|
|
|
|
SSL_CTX *ssl_ctx, const TestConfig *config,
|
|
|
|
|
const TestConfig *retry_config, bool is_resume,
|
2018-04-06 00:50:21 +01:00
|
|
|
SSL_SESSION *session, SettingsWriter *writer) {
|
2018-06-22 23:53:19 +01:00
|
|
|
bssl::UniquePtr<SSL> ssl = config->NewSSL(
|
|
|
|
|
ssl_ctx, session, is_resume, std::unique_ptr<TestState>(new TestState));
|
2018-03-22 18:48:33 +00:00
|
|
|
if (!ssl) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if (config->is_server) {
|
|
|
|
|
SSL_set_accept_state(ssl.get());
|
|
|
|
|
} else {
|
|
|
|
|
SSL_set_connect_state(ssl.get());
|
|
|
|
|
}
|
|
|
|
|
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
int sock = Connect(config->port);
|
|
|
|
|
if (sock == -1) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
SocketCloser closer(sock);
|
|
|
|
|
|
2016-08-18 04:10:28 +01:00
|
|
|
bssl::UniquePtr<BIO> bio(BIO_new_socket(sock, BIO_NOCLOSE));
|
2015-02-09 07:37:18 +00:00
|
|
|
if (!bio) {
|
2015-02-20 16:23:42 +00:00
|
|
|
return false;
|
2014-08-05 07:28:57 +01:00
|
|
|
}
|
2014-08-11 23:43:38 +01:00
|
|
|
if (config->is_dtls) {
|
2018-06-22 23:53:19 +01:00
|
|
|
bssl::UniquePtr<BIO> packeted = PacketedBioCreate(GetClock());
|
2016-03-28 14:59:10 +01:00
|
|
|
if (!packeted) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2016-06-02 19:58:00 +01:00
|
|
|
GetTestState(ssl.get())->packeted_bio = packeted.get();
|
2015-02-09 07:37:18 +00:00
|
|
|
BIO_push(packeted.get(), bio.release());
|
|
|
|
|
bio = std::move(packeted);
|
2014-08-11 23:43:38 +01:00
|
|
|
}
|
2014-08-12 00:51:50 +01:00
|
|
|
if (config->async) {
|
2016-08-18 04:10:28 +01:00
|
|
|
bssl::UniquePtr<BIO> async_scoped =
|
2015-02-09 17:59:46 +00:00
|
|
|
config->is_dtls ? AsyncBioCreateDatagram() : AsyncBioCreate();
|
2016-03-28 14:59:10 +01:00
|
|
|
if (!async_scoped) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2015-02-09 07:37:18 +00:00
|
|
|
BIO_push(async_scoped.get(), bio.release());
|
2015-04-03 08:47:47 +01:00
|
|
|
GetTestState(ssl.get())->async_bio = async_scoped.get();
|
2015-02-09 07:37:18 +00:00
|
|
|
bio = std::move(async_scoped);
|
2014-08-05 07:28:57 +01:00
|
|
|
}
|
2015-02-09 07:37:18 +00:00
|
|
|
SSL_set_bio(ssl.get(), bio.get(), bio.get());
|
|
|
|
|
bio.release(); // SSL_set_bio takes ownership.
|
2014-08-05 07:28:57 +01:00
|
|
|
|
2018-04-06 00:50:21 +01:00
|
|
|
bool ret = DoExchange(out_session, &ssl, config, is_resume, false, writer);
|
2017-03-09 19:56:07 +00:00
|
|
|
if (!config->is_server && is_resume && config->expect_reject_early_data) {
|
|
|
|
|
// We must have failed due to an early data rejection.
|
|
|
|
|
if (ret) {
|
|
|
|
|
fprintf(stderr, "0-RTT exchange unexpected succeeded.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if (SSL_get_error(ssl.get(), -1) != SSL_ERROR_EARLY_DATA_REJECTED) {
|
|
|
|
|
fprintf(stderr,
|
|
|
|
|
"SSL_get_error did not signal SSL_ERROR_EARLY_DATA_REJECTED.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Before reseting, early state should still be available.
|
|
|
|
|
if (!SSL_in_early_data(ssl.get()) ||
|
|
|
|
|
!CheckHandshakeProperties(ssl.get(), is_resume, config)) {
|
|
|
|
|
fprintf(stderr, "SSL_in_early_data returned false before reset.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Reset the connection and try again at 1-RTT.
|
|
|
|
|
SSL_reset_early_data_reject(ssl.get());
|
2018-11-16 18:42:13 +00:00
|
|
|
GetTestState(ssl.get())->cert_verified = false;
|
2017-03-09 19:56:07 +00:00
|
|
|
|
|
|
|
|
// After reseting, the socket should report it is no longer in an early data
|
|
|
|
|
// state.
|
|
|
|
|
if (SSL_in_early_data(ssl.get())) {
|
|
|
|
|
fprintf(stderr, "SSL_in_early_data returned true after reset.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!SetTestConfig(ssl.get(), retry_config)) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2018-01-26 17:17:53 +00:00
|
|
|
assert(!config->handoff);
|
2018-04-06 00:50:21 +01:00
|
|
|
ret = DoExchange(out_session, &ssl, retry_config, is_resume, true, writer);
|
2017-03-09 19:56:07 +00:00
|
|
|
}
|
2017-08-01 23:38:41 +01:00
|
|
|
|
|
|
|
|
if (!ret) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!GetTestState(ssl.get())->msg_callback_ok) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!config->expect_msg_callback.empty() &&
|
|
|
|
|
GetTestState(ssl.get())->msg_callback_text !=
|
|
|
|
|
config->expect_msg_callback) {
|
|
|
|
|
fprintf(stderr, "Bad message callback trace. Wanted:\n%s\nGot:\n%s\n",
|
|
|
|
|
config->expect_msg_callback.c_str(),
|
|
|
|
|
GetTestState(ssl.get())->msg_callback_text.c_str());
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
2017-03-09 19:56:07 +00:00
|
|
|
}
|
|
|
|
|
|
2018-01-26 17:17:53 +00:00
|
|
|
static bool DoExchange(bssl::UniquePtr<SSL_SESSION> *out_session,
|
|
|
|
|
bssl::UniquePtr<SSL> *ssl_uniqueptr,
|
2018-04-06 00:50:21 +01:00
|
|
|
const TestConfig *config, bool is_resume, bool is_retry,
|
|
|
|
|
SettingsWriter *writer) {
|
2017-03-25 23:22:19 +00:00
|
|
|
int ret;
|
2018-01-26 17:17:53 +00:00
|
|
|
SSL *ssl = ssl_uniqueptr->get();
|
2018-07-03 00:47:27 +01:00
|
|
|
SSL_CTX *session_ctx = SSL_get_SSL_CTX(ssl);
|
2018-01-26 17:17:53 +00:00
|
|
|
|
2017-03-25 23:22:19 +00:00
|
|
|
if (!config->implicit_handshake) {
|
2018-01-26 17:17:53 +00:00
|
|
|
if (config->handoff) {
|
2018-08-01 16:29:48 +01:00
|
|
|
#if defined(HANDSHAKER_SUPPORTED)
|
2018-06-23 01:06:54 +01:00
|
|
|
if (!DoSplitHandshake(ssl_uniqueptr, writer, is_resume)) {
|
2018-01-26 17:17:53 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
2018-06-23 01:06:54 +01:00
|
|
|
ssl = ssl_uniqueptr->get();
|
2018-06-23 02:53:05 +01:00
|
|
|
#else
|
|
|
|
|
fprintf(stderr, "The external handshaker can only be used on Linux\n");
|
|
|
|
|
return false;
|
|
|
|
|
#endif
|
2018-01-26 17:17:53 +00:00
|
|
|
}
|
|
|
|
|
|
2015-02-09 00:33:25 +00:00
|
|
|
do {
|
2017-10-13 00:11:47 +01:00
|
|
|
ret = CheckIdempotentError("SSL_do_handshake", ssl, [&]() -> int {
|
|
|
|
|
return SSL_do_handshake(ssl);
|
|
|
|
|
});
|
2017-03-09 19:56:07 +00:00
|
|
|
} while (config->async && RetryAsync(ssl, ret));
|
2018-01-26 17:17:53 +00:00
|
|
|
|
2018-05-01 22:14:27 +01:00
|
|
|
if (config->forbid_renegotiation_after_handshake) {
|
|
|
|
|
SSL_set_renegotiate_mode(ssl, ssl_renegotiate_never);
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-22 18:48:33 +00:00
|
|
|
if (ret != 1 || !CheckHandshakeProperties(ssl, is_resume, config)) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2018-07-03 00:47:27 +01:00
|
|
|
CopySessions(session_ctx, SSL_get_SSL_CTX(ssl));
|
2018-03-22 18:48:33 +00:00
|
|
|
|
2017-10-17 20:48:46 +01:00
|
|
|
if (is_resume && !is_retry && !config->is_server &&
|
|
|
|
|
config->expect_no_offer_early_data && SSL_in_early_data(ssl)) {
|
|
|
|
|
fprintf(stderr, "Client unexpectedly offered early data.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-26 21:13:51 +01:00
|
|
|
if (config->handshake_twice) {
|
|
|
|
|
do {
|
2017-03-09 19:56:07 +00:00
|
|
|
ret = SSL_do_handshake(ssl);
|
|
|
|
|
} while (config->async && RetryAsync(ssl, ret));
|
2017-03-26 21:13:51 +01:00
|
|
|
if (ret != 1) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Skip the |config->async| logic as this should be a no-op.
|
|
|
|
|
if (config->no_op_extra_handshake &&
|
2017-03-09 19:56:07 +00:00
|
|
|
SSL_do_handshake(ssl) != 1) {
|
2017-03-26 21:13:51 +01:00
|
|
|
fprintf(stderr, "Extra SSL_do_handshake was not a no-op.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-18 23:36:15 +01:00
|
|
|
// Reset the state to assert later that the callback isn't called in
|
|
|
|
|
// renegotations.
|
2017-03-09 19:56:07 +00:00
|
|
|
GetTestState(ssl)->got_new_session = false;
|
2014-11-25 06:55:35 +00:00
|
|
|
}
|
|
|
|
|
|
2017-12-08 22:05:06 +00:00
|
|
|
if (config->export_early_keying_material > 0) {
|
|
|
|
|
std::vector<uint8_t> result(
|
|
|
|
|
static_cast<size_t>(config->export_early_keying_material));
|
|
|
|
|
if (!SSL_export_early_keying_material(
|
|
|
|
|
ssl, result.data(), result.size(), config->export_label.data(),
|
|
|
|
|
config->export_label.size(),
|
|
|
|
|
reinterpret_cast<const uint8_t *>(config->export_context.data()),
|
|
|
|
|
config->export_context.size())) {
|
|
|
|
|
fprintf(stderr, "failed to export keying material\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if (WriteAll(ssl, result.data(), result.size()) < 0) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-04-03 09:06:36 +01:00
|
|
|
if (config->export_keying_material > 0) {
|
|
|
|
|
std::vector<uint8_t> result(
|
|
|
|
|
static_cast<size_t>(config->export_keying_material));
|
|
|
|
|
if (!SSL_export_keying_material(
|
2017-03-09 19:56:07 +00:00
|
|
|
ssl, result.data(), result.size(), config->export_label.data(),
|
|
|
|
|
config->export_label.size(),
|
|
|
|
|
reinterpret_cast<const uint8_t *>(config->export_context.data()),
|
2015-04-03 09:06:36 +01:00
|
|
|
config->export_context.size(), config->use_export_context)) {
|
|
|
|
|
fprintf(stderr, "failed to export keying material\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2017-03-09 19:56:07 +00:00
|
|
|
if (WriteAll(ssl, result.data(), result.size()) < 0) {
|
2015-04-03 09:06:36 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-12-12 22:11:01 +00:00
|
|
|
if (config->export_traffic_secrets) {
|
|
|
|
|
bssl::Span<const uint8_t> read_secret, write_secret;
|
|
|
|
|
if (!SSL_get_traffic_secrets(ssl, &read_secret, &write_secret)) {
|
|
|
|
|
fprintf(stderr, "failed to export traffic secrets\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
assert(read_secret.size() <= 0xffff);
|
|
|
|
|
assert(write_secret.size() == read_secret.size());
|
|
|
|
|
const uint16_t secret_len = read_secret.size();
|
|
|
|
|
if (WriteAll(ssl, &secret_len, sizeof(secret_len)) < 0 ||
|
|
|
|
|
WriteAll(ssl, read_secret.data(), read_secret.size()) < 0 ||
|
|
|
|
|
WriteAll(ssl, write_secret.data(), write_secret.size()) < 0) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-03 17:57:23 +01:00
|
|
|
if (config->tls_unique) {
|
|
|
|
|
uint8_t tls_unique[16];
|
|
|
|
|
size_t tls_unique_len;
|
2017-03-09 19:56:07 +00:00
|
|
|
if (!SSL_get_tls_unique(ssl, tls_unique, &tls_unique_len,
|
2015-06-03 17:57:23 +01:00
|
|
|
sizeof(tls_unique))) {
|
|
|
|
|
fprintf(stderr, "failed to get tls-unique\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (tls_unique_len != 12) {
|
|
|
|
|
fprintf(stderr, "expected 12 bytes of tls-unique but got %u",
|
|
|
|
|
static_cast<unsigned>(tls_unique_len));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
if (WriteAll(ssl, tls_unique, tls_unique_len) < 0) {
|
2015-06-03 17:57:23 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-07-26 23:03:08 +01:00
|
|
|
if (config->send_alert) {
|
2017-03-09 19:56:07 +00:00
|
|
|
if (DoSendFatalAlert(ssl, SSL_AD_DECOMPRESSION_FAILURE) < 0) {
|
2016-07-26 23:03:08 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2014-08-12 00:51:50 +01:00
|
|
|
if (config->write_different_record_sizes) {
|
2014-08-11 23:43:38 +01:00
|
|
|
if (config->is_dtls) {
|
|
|
|
|
fprintf(stderr, "write_different_record_sizes not supported for DTLS\n");
|
2015-02-20 16:23:42 +00:00
|
|
|
return false;
|
2014-08-11 23:43:38 +01:00
|
|
|
}
|
2014-08-05 23:23:37 +01:00
|
|
|
// This mode writes a number of different record sizes in an attempt to
|
|
|
|
|
// trip up the CBC record splitting code.
|
2015-06-19 05:32:44 +01:00
|
|
|
static const size_t kBufLen = 32769;
|
|
|
|
|
std::unique_ptr<uint8_t[]> buf(new uint8_t[kBufLen]);
|
2016-12-13 06:07:13 +00:00
|
|
|
OPENSSL_memset(buf.get(), 0x42, kBufLen);
|
2014-08-05 23:23:37 +01:00
|
|
|
static const size_t kRecordSizes[] = {
|
|
|
|
|
0, 1, 255, 256, 257, 16383, 16384, 16385, 32767, 32768, 32769};
|
2016-08-17 21:56:14 +01:00
|
|
|
for (size_t i = 0; i < OPENSSL_ARRAY_SIZE(kRecordSizes); i++) {
|
2014-08-05 23:23:37 +01:00
|
|
|
const size_t len = kRecordSizes[i];
|
2015-06-19 05:32:44 +01:00
|
|
|
if (len > kBufLen) {
|
2014-08-05 23:23:37 +01:00
|
|
|
fprintf(stderr, "Bad kRecordSizes value.\n");
|
2015-02-20 16:23:42 +00:00
|
|
|
return false;
|
2014-08-05 23:23:37 +01:00
|
|
|
}
|
2017-03-09 19:56:07 +00:00
|
|
|
if (WriteAll(ssl, buf.get(), len) < 0) {
|
2015-02-20 16:23:42 +00:00
|
|
|
return false;
|
2014-07-02 00:53:04 +01:00
|
|
|
}
|
|
|
|
|
}
|
2014-08-05 23:23:37 +01:00
|
|
|
} else {
|
2017-04-06 17:54:12 +01:00
|
|
|
static const char kInitialWrite[] = "hello";
|
|
|
|
|
bool pending_initial_write = false;
|
2017-01-02 04:19:22 +00:00
|
|
|
if (config->read_with_unfinished_write) {
|
|
|
|
|
if (!config->async) {
|
|
|
|
|
fprintf(stderr, "-read-with-unfinished-write requires -async.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
// Let only one byte of the record through.
|
|
|
|
|
AsyncBioAllowWrite(GetTestState(ssl)->async_bio, 1);
|
2017-04-06 17:54:12 +01:00
|
|
|
int write_ret =
|
2017-03-09 19:56:07 +00:00
|
|
|
SSL_write(ssl, kInitialWrite, strlen(kInitialWrite));
|
|
|
|
|
if (SSL_get_error(ssl, write_ret) != SSL_ERROR_WANT_WRITE) {
|
2017-01-02 04:19:22 +00:00
|
|
|
fprintf(stderr, "Failed to leave unfinished write.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2017-04-06 17:54:12 +01:00
|
|
|
pending_initial_write = true;
|
|
|
|
|
} else if (config->shim_writes_first) {
|
2017-03-09 19:56:07 +00:00
|
|
|
if (WriteAll(ssl, kInitialWrite, strlen(kInitialWrite)) < 0) {
|
2015-04-03 08:47:47 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
2014-08-24 08:47:07 +01:00
|
|
|
}
|
2015-08-30 03:56:45 +01:00
|
|
|
if (!config->shim_shuts_down) {
|
|
|
|
|
for (;;) {
|
2015-09-01 15:23:00 +01:00
|
|
|
// Read only 512 bytes at a time in TLS to ensure records may be
|
|
|
|
|
// returned in multiple reads.
|
2017-01-06 21:19:28 +00:00
|
|
|
size_t read_size = config->is_dtls ? 16384 : 512;
|
|
|
|
|
if (config->read_size > 0) {
|
|
|
|
|
read_size = config->read_size;
|
|
|
|
|
}
|
|
|
|
|
std::unique_ptr<uint8_t[]> buf(new uint8_t[read_size]);
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
int n = DoRead(ssl, buf.get(), read_size);
|
|
|
|
|
int err = SSL_get_error(ssl, n);
|
2015-08-30 03:56:45 +01:00
|
|
|
if (err == SSL_ERROR_ZERO_RETURN ||
|
|
|
|
|
(n == 0 && err == SSL_ERROR_SYSCALL)) {
|
|
|
|
|
if (n != 0) {
|
|
|
|
|
fprintf(stderr, "Invalid SSL_get_error output\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
// Stop on either clean or unclean shutdown.
|
|
|
|
|
break;
|
|
|
|
|
} else if (err != SSL_ERROR_NONE) {
|
|
|
|
|
if (n > 0) {
|
|
|
|
|
fprintf(stderr, "Invalid SSL_get_error output\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2015-02-20 16:23:42 +00:00
|
|
|
return false;
|
2015-01-22 21:06:11 +00:00
|
|
|
}
|
2015-08-30 03:56:45 +01:00
|
|
|
// Successfully read data.
|
|
|
|
|
if (n <= 0) {
|
2015-01-22 21:06:11 +00:00
|
|
|
fprintf(stderr, "Invalid SSL_get_error output\n");
|
2015-02-20 16:23:42 +00:00
|
|
|
return false;
|
2015-01-22 21:06:11 +00:00
|
|
|
}
|
2015-04-03 00:57:35 +01:00
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
if (!config->is_server && is_resume && !is_retry &&
|
|
|
|
|
config->expect_reject_early_data) {
|
|
|
|
|
fprintf(stderr,
|
|
|
|
|
"Unexpectedly received data instead of 0-RTT reject.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-30 03:56:45 +01:00
|
|
|
// After a successful read, with or without False Start, the handshake
|
2016-12-19 18:19:29 +00:00
|
|
|
// must be complete unless we are doing early data.
|
2017-03-09 19:56:07 +00:00
|
|
|
if (!GetTestState(ssl)->handshake_done &&
|
|
|
|
|
!SSL_early_data_accepted(ssl)) {
|
2015-08-30 03:56:45 +01:00
|
|
|
fprintf(stderr, "handshake was not completed after SSL_read\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2015-04-03 00:57:35 +01:00
|
|
|
|
2017-04-06 17:54:12 +01:00
|
|
|
// Clear the initial write, if unfinished.
|
|
|
|
|
if (pending_initial_write) {
|
2017-03-09 19:56:07 +00:00
|
|
|
if (WriteAll(ssl, kInitialWrite, strlen(kInitialWrite)) < 0) {
|
2017-04-06 17:54:12 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
pending_initial_write = false;
|
|
|
|
|
}
|
|
|
|
|
|
2018-12-17 21:59:38 +00:00
|
|
|
if (config->key_update &&
|
|
|
|
|
!SSL_key_update(ssl, SSL_KEY_UPDATE_NOT_REQUESTED)) {
|
|
|
|
|
fprintf(stderr, "SSL_key_update failed.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-30 03:56:45 +01:00
|
|
|
for (int i = 0; i < n; i++) {
|
|
|
|
|
buf[i] ^= 0xff;
|
|
|
|
|
}
|
2017-03-09 19:56:07 +00:00
|
|
|
if (WriteAll(ssl, buf.get(), n) < 0) {
|
2015-08-30 03:56:45 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
2014-08-05 23:23:37 +01:00
|
|
|
}
|
|
|
|
|
}
|
2014-07-02 00:53:04 +01:00
|
|
|
}
|
|
|
|
|
|
2015-06-18 23:36:15 +01:00
|
|
|
if (!config->is_server && !config->false_start &&
|
|
|
|
|
!config->implicit_handshake &&
|
2016-07-27 16:10:52 +01:00
|
|
|
// Session tickets are sent post-handshake in TLS 1.3.
|
2017-03-09 19:56:07 +00:00
|
|
|
GetProtocolVersion(ssl) < TLS1_3_VERSION &&
|
|
|
|
|
GetTestState(ssl)->got_new_session) {
|
2015-06-18 23:36:15 +01:00
|
|
|
fprintf(stderr, "new session was established after the handshake\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
if (GetProtocolVersion(ssl) >= TLS1_3_VERSION && !config->is_server) {
|
2016-07-27 16:10:52 +01:00
|
|
|
bool expect_new_session =
|
|
|
|
|
!config->expect_no_session && !config->shim_shuts_down;
|
2017-03-09 19:56:07 +00:00
|
|
|
if (expect_new_session != GetTestState(ssl)->got_new_session) {
|
2016-07-27 16:10:52 +01:00
|
|
|
fprintf(stderr,
|
|
|
|
|
"new session was%s cached, but we expected the opposite\n",
|
2017-03-09 19:56:07 +00:00
|
|
|
GetTestState(ssl)->got_new_session ? "" : " not");
|
2016-07-27 16:10:52 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
2016-12-07 20:29:45 +00:00
|
|
|
|
|
|
|
|
if (expect_new_session) {
|
2017-10-11 17:29:36 +01:00
|
|
|
bool got_early_data =
|
2017-03-09 19:56:07 +00:00
|
|
|
GetTestState(ssl)->new_session->ticket_max_early_data != 0;
|
2017-10-11 17:29:36 +01:00
|
|
|
if (config->expect_ticket_supports_early_data != got_early_data) {
|
|
|
|
|
fprintf(stderr,
|
|
|
|
|
"new session did%s support early data, but we expected the "
|
|
|
|
|
"opposite\n",
|
|
|
|
|
got_early_data ? "" : " not");
|
2016-12-07 20:29:45 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
2016-07-27 16:10:52 +01:00
|
|
|
}
|
|
|
|
|
|
2014-07-23 00:20:02 +01:00
|
|
|
if (out_session) {
|
2017-03-09 19:56:07 +00:00
|
|
|
*out_session = std::move(GetTestState(ssl)->new_session);
|
2014-07-23 00:20:02 +01:00
|
|
|
}
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
ret = DoShutdown(ssl);
|
2015-08-30 03:56:45 +01:00
|
|
|
|
|
|
|
|
if (config->shim_shuts_down && config->check_close_notify) {
|
|
|
|
|
// We initiate shutdown, so |SSL_shutdown| will return in two stages. First
|
|
|
|
|
// it returns zero when our close_notify is sent, then one when the peer's
|
|
|
|
|
// is received.
|
|
|
|
|
if (ret != 0) {
|
|
|
|
|
fprintf(stderr, "Unexpected SSL_shutdown result: %d != 0\n", ret);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2017-03-09 19:56:07 +00:00
|
|
|
ret = DoShutdown(ssl);
|
2015-08-30 03:56:45 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (ret != 1) {
|
|
|
|
|
fprintf(stderr, "Unexpected SSL_shutdown result: %d != 1\n", ret);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-24 06:09:41 +01:00
|
|
|
if (SSL_total_renegotiations(ssl) > 0) {
|
|
|
|
|
if (!SSL_get_session(ssl)->not_resumable) {
|
|
|
|
|
fprintf(stderr,
|
|
|
|
|
"Renegotiations should never produce resumable sessions.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-09-06 21:46:50 +01:00
|
|
|
if (SSL_session_reused(ssl)) {
|
|
|
|
|
fprintf(stderr, "Renegotiations should never resume sessions.\n");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2017-08-24 06:09:41 +01:00
|
|
|
// Re-check authentication properties after a renegotiation. The reported
|
|
|
|
|
// values should remain unchanged even if the server sent different SCT
|
|
|
|
|
// lists.
|
|
|
|
|
if (!CheckAuthProperties(ssl, is_resume, config)) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2017-08-24 05:28:29 +01:00
|
|
|
}
|
|
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
if (SSL_total_renegotiations(ssl) != config->expect_total_renegotiations) {
|
2015-10-13 00:49:00 +01:00
|
|
|
fprintf(stderr, "Expected %d renegotiations, got %d\n",
|
2017-03-09 19:56:07 +00:00
|
|
|
config->expect_total_renegotiations, SSL_total_renegotiations(ssl));
|
2015-10-13 00:49:00 +01:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-02-20 16:23:42 +00:00
|
|
|
return true;
|
2014-07-02 00:53:04 +01:00
|
|
|
}
|
2014-07-23 00:20:02 +01:00
|
|
|
|
2016-03-02 15:12:06 +00:00
|
|
|
class StderrDelimiter {
|
|
|
|
|
public:
|
|
|
|
|
~StderrDelimiter() { fprintf(stderr, "--- DONE ---\n"); }
|
|
|
|
|
};
|
|
|
|
|
|
2016-12-07 03:35:41 +00:00
|
|
|
int main(int argc, char **argv) {
|
2016-03-02 15:12:06 +00:00
|
|
|
// To distinguish ASan's output from ours, add a trailing message to stderr.
|
|
|
|
|
// Anything following this line will be considered an error.
|
|
|
|
|
StderrDelimiter delimiter;
|
|
|
|
|
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
#if defined(OPENSSL_WINDOWS)
|
2017-08-29 21:33:21 +01:00
|
|
|
// Initialize Winsock.
|
Use TCP sockets rather than socketpairs in the SSL tests.
This involves more synchronization with child exits as the kernel no longer
closes the pre-created pipes for free, but it works on Windows. As long as
TCP_NODELAY is set, the performance seems comparable. Though it does involve
dealing with graceful socket shutdown. I couldn't get that to work on Windows
without draining the socket; not even SO_LINGER worked. Current (untested)
theory is that Windows refuses to gracefully shutdown a socket if the peer
sends data after we've stopped reading.
cmd.ExtraFiles doesn't work on Windows; it doesn't use fds natively, so you
can't pass fds 4 and 5. (stdin/stdout/stderr are special slots in
CreateProcess.) We can instead use the syscall module directly and mark handles
as inheritable (and then pass the numerical values out-of-band), but that
requires synchronizing all of our shim.Start() calls and assuming no other
thread is spawning a process.
PROC_THREAD_ATTRIBUTE_HANDLE_LIST fixes threading problems, but requires
wrapping more syscalls. exec.Cmd also doesn't let us launch the process
ourselves. Plus it still requires every handle in the list be marked
inheritable, so it doesn't help if some other thread is launching a process
with bInheritHandles TRUE but NOT using PROC_THREAD_ATTRIBUTE_HANDLE_LIST.
(Like Go, though we can take syscall.ForkLock there.)
http://blogs.msdn.com/b/oldnewthing/archive/2011/12/16/10248328.aspx
The more natively Windows option seems to be named pipes, but that too requires
wrapping more system calls. (To be fair, that isn't too painful.) They also
involve a listening server, so we'd still have to synchronize with shim.Wait()
a la net.TCPListener.
Then there's DuplicateHandle, but then we need an out-of-band signal.
All in all, one cross-platform implementation with a TCP sockets seems
simplest.
Change-Id: I38233e309a0fa6814baf61e806732138902347c0
Reviewed-on: https://boringssl-review.googlesource.com/3563
Reviewed-by: Adam Langley <agl@google.com>
2015-02-21 06:54:29 +00:00
|
|
|
WORD wsa_version = MAKEWORD(2, 2);
|
|
|
|
|
WSADATA wsa_data;
|
|
|
|
|
int wsa_err = WSAStartup(wsa_version, &wsa_data);
|
|
|
|
|
if (wsa_err != 0) {
|
|
|
|
|
fprintf(stderr, "WSAStartup failed: %d\n", wsa_err);
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
if (wsa_data.wVersion != wsa_version) {
|
|
|
|
|
fprintf(stderr, "Didn't get expected version: %x\n", wsa_data.wVersion);
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
#else
|
2014-07-23 00:20:02 +01:00
|
|
|
signal(SIGPIPE, SIG_IGN);
|
2014-07-31 23:23:51 +01:00
|
|
|
#endif
|
2014-07-23 00:20:02 +01:00
|
|
|
|
2015-10-18 04:39:22 +01:00
|
|
|
CRYPTO_library_init();
|
2014-07-23 00:20:02 +01:00
|
|
|
|
2017-03-09 19:56:07 +00:00
|
|
|
TestConfig initial_config, resume_config, retry_config;
|
|
|
|
|
if (!ParseConfig(argc - 1, argv + 1, &initial_config, &resume_config,
|
|
|
|
|
&retry_config)) {
|
2015-02-09 17:59:46 +00:00
|
|
|
return Usage(argv[0]);
|
2014-07-23 00:20:02 +01:00
|
|
|
}
|
|
|
|
|
|
2018-08-01 16:29:48 +01:00
|
|
|
if (initial_config.is_handshaker_supported) {
|
|
|
|
|
#if defined(HANDSHAKER_SUPPORTED)
|
|
|
|
|
printf("Yes\n");
|
|
|
|
|
#else
|
|
|
|
|
printf("No\n");
|
|
|
|
|
#endif
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2017-05-09 17:12:58 +01:00
|
|
|
bssl::UniquePtr<SSL_CTX> ssl_ctx;
|
2014-07-23 00:20:02 +01:00
|
|
|
|
2016-08-18 04:10:28 +01:00
|
|
|
bssl::UniquePtr<SSL_SESSION> session;
|
2017-05-09 17:12:58 +01:00
|
|
|
for (int i = 0; i < initial_config.resume_count + 1; i++) {
|
2016-08-17 05:51:00 +01:00
|
|
|
bool is_resume = i > 0;
|
2017-05-09 17:12:58 +01:00
|
|
|
TestConfig *config = is_resume ? &resume_config : &initial_config;
|
2018-06-22 23:53:19 +01:00
|
|
|
ssl_ctx = config->SetupCtx(ssl_ctx.get());
|
2017-05-09 17:12:58 +01:00
|
|
|
if (!ssl_ctx) {
|
|
|
|
|
ERR_print_errors_fp(stderr);
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (is_resume && !initial_config.is_server && !session) {
|
2016-08-17 05:51:00 +01:00
|
|
|
fprintf(stderr, "No session to offer.\n");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
2014-07-23 00:20:02 +01:00
|
|
|
|
2016-08-18 04:10:28 +01:00
|
|
|
bssl::UniquePtr<SSL_SESSION> offer_session = std::move(session);
|
2018-04-06 00:48:38 +01:00
|
|
|
SettingsWriter writer;
|
|
|
|
|
if (!writer.Init(i, config, offer_session.get())) {
|
|
|
|
|
fprintf(stderr, "Error writing settings.\n");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
bool ok = DoConnection(&session, ssl_ctx.get(), config, &retry_config,
|
2018-04-06 00:50:21 +01:00
|
|
|
is_resume, offer_session.get(), &writer);
|
2018-04-06 00:48:38 +01:00
|
|
|
if (!writer.Commit()) {
|
2017-07-01 00:11:22 +01:00
|
|
|
fprintf(stderr, "Error writing settings.\n");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
2018-04-06 00:48:38 +01:00
|
|
|
if (!ok) {
|
2016-08-17 05:51:00 +01:00
|
|
|
fprintf(stderr, "Connection %d failed.\n", i + 1);
|
|
|
|
|
ERR_print_errors_fp(stderr);
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
2016-11-01 17:39:36 +00:00
|
|
|
|
2017-05-09 17:12:58 +01:00
|
|
|
if (config->resumption_delay != 0) {
|
2018-06-22 23:53:19 +01:00
|
|
|
AdvanceClock(config->resumption_delay);
|
2016-11-01 17:39:36 +00:00
|
|
|
}
|
2014-07-23 00:20:02 +01:00
|
|
|
}
|
|
|
|
|
|
2015-02-09 07:37:18 +00:00
|
|
|
return 0;
|
2014-07-23 00:20:02 +01:00
|
|
|
}
|
