root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
32,497 Commits 32 Branches 398 Tags 545 MiB
Commit Graph

112 Commits

Author SHA1 Message Date
Matt Caswell e95d6e1eec Remove the user_ssl field 
The user_ssl field in an SSL_CONNECTION is no longer used - so remove it.

Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19748)
 2023-01-24 17:16:29 +00:00
Matt Caswell 4e3a55fd14 Add QUIC-TLS server support 
Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19748)
 2023-01-24 17:16:29 +00:00
Matt Caswell c28f1a8bb9 Remove the old Dummy Handshake code 
Now that we have a real TLS handshake we no longer need the dummy handshake
implementation and it can be removed.

Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19748)
 2023-01-24 17:16:29 +00:00
Matt Caswell 1d57dbac19 Add support for the msg_callback 
Having support for the msg_callback will improve debug capabilities.

For record headers we "manufacture" dummy ones so that as far as the
callback is concerned we are doing "normal" TLS.

Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19748)
 2023-01-24 17:16:29 +00:00
Matt Caswell 2723d705b5 Replace use of the Dummy Handshake Layer with the real one 
We start using the QUIC TLS implementation rather than the dummy one.

Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19748)
 2023-01-24 17:16:29 +00:00
Matt Caswell 19863d497d Add an initial QUIC-TLS implementation 
Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19748)
 2023-01-24 17:16:29 +00:00
Matt Caswell a7f41885b3 Create the SSL object for QUIC-TLS 
The "user" SSL object which represents the QUIC connection should have an
"inner" SSL object to represent the TLS connection.

Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19748)
 2023-01-24 17:16:29 +00:00
Hugo Landau 091f532e0e QUIC Test Server: Minor fixups 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:49 +00:00
Hugo Landau 64222fc027 QUIC DEMUX: Refactor list manipulation 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:40 +00:00
Hugo Landau 51a168b804 QUIC Test Server Implementation 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:40 +00:00
Hugo Landau b1b06da2a3 QUIC CHANNEL: Add basic server support for testing 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:39 +00:00
Hugo Landau 3c567a52c2 QUIC CHANNEL: Transport params: Offer reason text and add server support 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:39 +00:00
Hugo Landau 7f9d12495e QUIC TXP: Fix generation of CONNECTION_CLOSE 
CONNECTION_CLOSE frames can be generated on multiple ELs, so the TX
packetiser was generating it on multiple ELs simultaneously. This fixes
the CONNECTION_CLOSE generation logic so that the lowest non-dropped EL
is always used.

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:39 +00:00
Hugo Landau af8b52cffe QUIC Front-End I/O API: Fix WANT_READ signalling for SSL_read 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:39 +00:00
Hugo Landau 4e392f601d QUIC QRX: (Server support) Add support for manual URXE injection 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:39 +00:00
Hugo Landau b83cf3fcf1 QUIC DHS: (Server support) Add server state machine for DHS 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:39 +00:00
Hugo Landau 93e9b6cc4e QUIC DEMUX: (Server support) Add support for default handler 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19734)
 2023-01-19 13:17:39 +00:00
Hugo Landau b639475a94 QUIC API: Rename want_net_read and want_net_write 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:38 +00:00
Hugo Landau df15e990ff QUIC CHANNEL: Handle network errors as connection-fatal events 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:37 +00:00
Hugo Landau 0550829f53 QUIC QTX: Handle network errors explicitly 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:37 +00:00
Hugo Landau 66eab5e08e QUIC DEMUX: Handle network errors explicitly 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:37 +00:00
Hugo Landau 75b2920a21 QUIC CSM: Minor style fixes 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:35 +00:00
Hugo Landau 9f0ade7c47 QUIC: Minor cleanup 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:35 +00:00
Hugo Landau 05f97354bb QUIC TXP: Fix bug in send stream handling, cleanup 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:22 +00:00
Hugo Landau c41c7ee976 QUIC: Add TODO for CCM support 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:22 +00:00
Hugo Landau 3f0c310b80 QUIC Front-End I/O API: Determine read completion correctly 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:22 +00:00
Hugo Landau 79534440c5 QUIC: Use ossl_assert 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:22 +00:00
Hugo Landau 2d2fd151d4 QUIC RXDP: Different error messages for stream conditions 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:22 +00:00
Hugo Landau 81b6b43c4a QUIC: Minor comment and editorial fixes 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:22 +00:00
Hugo Landau dfc227bd24 QUIC Front End I/O API: Don't allow EPW to be enabled during AON 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:21 +00:00
Hugo Landau ca41f6b7e9 QUIC Front End I/O API: Tweaks to handshake processing 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:21 +00:00
Hugo Landau a1660c9422 QUIC Front End I/O API: Remove unnecessary code from SSL_get_tick_timeout 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:20 +00:00
Hugo Landau e28f512f04 QUIC CHANNEL: Minor cleanups and bug fix 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:20 +00:00
Hugo Landau d50e750e13 QUIC: Style fixes 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:20 +00:00
Hugo Landau 8a1a6d6d9e QUIC Front End I/O API: Wire up SSL_CTX ctrls and remove unneeded functions 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:19 +00:00
Hugo Landau 9bbc5b54b0 QUIC CHANNEL: Revise inaccurate comments 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:19 +00:00
Hugo Landau c8b3fdc2e4 QUIC: Revise and add some TODO lines 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:19 +00:00
Matt Caswell 45ecfc9b52 Separate handling of RX and TX enc level 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Hugo Landau <hlandau@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:18 +00:00
Hugo Landau 3bf4dc8c21 QUIC CHANNEL: Only pump the demuxer once per tick 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:17 +00:00
Hugo Landau 92282a17c9 QUIC CHANNEL: Only reprocess after an RX secret has been provisioned 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:17 +00:00
Hugo Landau 24c1be5cff QUIC TXP: Correct an issue with an uninitialized variable 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:17 +00:00
Hugo Landau d1ac77b1a5 QUIC Front-End I/O API: Ensure BIOs are reffed and freed correctly 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:17 +00:00
Hugo Landau 4e64437a5f QUIC_CHANNEL: Handle deferred packet processing after yielding of secrets correctly 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:17 +00:00
Hugo Landau d7668ff213 QUIC DEMUX: Allow MTU to vary over time and autodetect MTU 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:17 +00:00
Hugo Landau 6292519cd8 QUIC: Enable building with QUIC support disabled 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:16 +00:00
Hugo Landau 22d53c8883 QUIC Front-End I/O API 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:15 +00:00
Hugo Landau cbe7f586ad QUIC Stream Mapper: CSM-related changes, stream limits handling 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:15 +00:00
Hugo Landau 3a37c9235d QUIC: Complete the implementation of the RX depacketiser in terms of QUIC_CHANNEL 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:14 +00:00
Hugo Landau f538b42155 QUIC_CHANNEL: Implementation 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:14 +00:00
Hugo Landau 69523214ee QUIC: Add QUIC reactor 
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/19703)
 2023-01-13 13:20:14 +00:00