boringssl

History

Matthew Braithwaite b7bc80a9a6 SSL_CONFIG: new struct for sheddable handshake configuration. \|SSL_CONFIG\| is a container for bits of configuration that are unneeded after the handshake completes. By default it is retained for the life of the \|SSL\|, but it may be shed at the caller's option by calling SSL_set_shed_handshake_config(). This is incompatible with renegotiation, and with SSL_clear(). \|SSL_CONFIG\| is reachable by \|ssl->config\| and by \|hs->config\|. The latter is always non-NULL. To avoid null checks, I've changed the signature of a number of functions from \|SSL\| arguments to \|SSL_HANDSHAKE\| arguments. When configuration has been shed, setters that touch \|SSL_CONFIG\| return an error value if that is possible. Setters that return \|void\| do nothing. Getters that request \|SSL_CONFIG\| values will fail with an \|assert\| if the configuration has been shed. When asserts are compiled out, they will return an error value. The aim of this commit is to simplify analysis of split-handshakes by making it obvious that some bits of state have no effects beyond the handshake. It also cuts down on memory usage. Of note: \|SSL_CTX\| is still reachable after the configuration has been shed, and a couple things need to be retained only for the sake of post-handshake hooks. Perhaps these can be fixed in time. Change-Id: Idf09642e0518945b81a1e9fcd7331cc9cf7cc2d6 Bug: 123 Reviewed-on: https://boringssl-review.googlesource.com/27644 Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Reviewed-by: David Benjamin <davidben@google.com>	2018-05-01 20:40:16 +00:00
..
openssl	SSL_CONFIG: new struct for sheddable handshake configuration.	2018-05-01 20:40:16 +00:00

Matthew Braithwaite b7bc80a9a6 SSL_CONFIG: new struct for sheddable handshake configuration.

|SSL_CONFIG| is a container for bits of configuration that are
unneeded after the handshake completes.  By default it is retained for
the life of the |SSL|, but it may be shed at the caller's option by
calling SSL_set_shed_handshake_config().  This is incompatible with
renegotiation, and with SSL_clear().

|SSL_CONFIG| is reachable by |ssl->config| and by |hs->config|.  The
latter is always non-NULL.  To avoid null checks, I've changed the
signature of a number of functions from |SSL*| arguments to
|SSL_HANDSHAKE*| arguments.

When configuration has been shed, setters that touch |SSL_CONFIG|
return an error value if that is possible.  Setters that return |void|
do nothing.

Getters that request |SSL_CONFIG| values will fail with an |assert| if
the configuration has been shed.  When asserts are compiled out, they
will return an error value.

The aim of this commit is to simplify analysis of split-handshakes by
making it obvious that some bits of state have no effects beyond the
handshake.  It also cuts down on memory usage.

Of note: |SSL_CTX| is still reachable after the configuration has been
shed, and a couple things need to be retained only for the sake of
post-handshake hooks.  Perhaps these can be fixed in time.

Change-Id: Idf09642e0518945b81a1e9fcd7331cc9cf7cc2d6
Bug: 123
Reviewed-on: https://boringssl-review.googlesource.com/27644
Commit-Queue: David Benjamin <davidben@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
Reviewed-by: David Benjamin <davidben@google.com>

2018-05-01 20:40:16 +00:00

openssl

SSL_CONFIG: new struct for sheddable handshake configuration.

2018-05-01 20:40:16 +00:00