OpenSSL: Merge OpenSSL 1.1.1o - src

diff options


context:
space:
mode:

author	Jung-uk Kim <jkim@FreeBSD.org>	2022-05-03 19:07:06 +0000
committer	Jung-uk Kim <jkim@FreeBSD.org>	2022-05-03 19:07:06 +0000
commit	34252e89a96c8d498d7537ade16d20602bf2106a (patch)
tree	f89499014f194959df94dd0bd3cf7121a0edd191 /crypto/openssl/ssl
parent	d461deeaa4a47ae71e1d8fda8b35c6faa8dabe85 (diff)
parent	cf0ffd7607ed8f39829c6951a65a55fa1eb3aafe (diff)

Diffstat (limited to 'crypto/openssl/ssl')

-rw-r--r--

crypto/openssl/ssl/s3_enc.c

-rw-r--r--

crypto/openssl/ssl/ssl_init.c

-rw-r--r--

crypto/openssl/ssl/ssl_lib.c

-rw-r--r--

crypto/openssl/ssl/ssl_txt.c

-rw-r--r--

crypto/openssl/ssl/statem/statem_clnt.c

-rw-r--r--

crypto/openssl/ssl/statem/statem_dtls.c

-rw-r--r--

crypto/openssl/ssl/statem/statem_srvr.c

-rw-r--r--

crypto/openssl/ssl/t1_enc.c

8 files changed, 40 insertions, 35 deletions

diff --git a/crypto/openssl/ssl/s3_enc.c b/crypto/openssl/ssl/s3_enc.c
index 8a89f512fe60..7b119b452fd7 100644
--- a/crypto/openssl/ssl/s3_enc.c
+++ b/crypto/openssl/ssl/s3_enc.c

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

@@ -589,6 +589,8 @@ int ssl3_alert_code(int code)

return TLS1_AD_NO_APPLICATION_PROTOCOL;

case SSL_AD_CERTIFICATE_REQUIRED:

return SSL_AD_HANDSHAKE_FAILURE;

+ case SSL_AD_MISSING_EXTENSION:

+ return SSL_AD_HANDSHAKE_FAILURE;

default:

return -1;

}

diff --git a/crypto/openssl/ssl/ssl_init.c b/crypto/openssl/ssl/ssl_init.c
index d083d9597091..a5d45480c9e0 100644
--- a/crypto/openssl/ssl/ssl_init.c
+++ b/crypto/openssl/ssl/ssl_init.c

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -116,7 +116,7 @@ DEFINE_RUN_ONCE_STATIC(ossl_init_ssl_base)

}

static CRYPTO_ONCE ssl_strings = CRYPTO_ONCE_STATIC_INIT;

-static int ssl_strings_inited = 0;

DEFINE_RUN_ONCE_STATIC(ossl_init_load_ssl_strings)

{

@@ -129,7 +129,6 @@ DEFINE_RUN_ONCE_STATIC(ossl_init_load_ssl_strings)

"ERR_load_SSL_strings()\n");

# endif

ERR_load_SSL_strings();

- ssl_strings_inited = 1;

#endif

return 1;

}

@@ -157,20 +156,6 @@ static void ssl_library_stop(void)

ssl_comp_free_compression_methods_int();

#endif

}

- if (ssl_strings_inited) {

-#ifdef OPENSSL_INIT_DEBUG

- fprintf(stderr, "OPENSSL_INIT: ssl_library_stop: "

- "err_free_strings_int()\n");

-#endif

- /*

- * If both crypto and ssl error strings are inited we will end up

- * calling err_free_strings_int() twice - but that's ok. The second

- * time will be a no-op. It's easier to do that than to try and track

- * between the two libraries whether they have both been inited.

- */

- err_free_strings_int();

- }

}

diff --git a/crypto/openssl/ssl/ssl_lib.c b/crypto/openssl/ssl/ssl_lib.c
index ff5a9e05660b..1fbad29b233c 100644
--- a/crypto/openssl/ssl/ssl_lib.c
+++ b/crypto/openssl/ssl/ssl_lib.c

@@ -1,5 +1,5 @@

@@ -2170,6 +2170,7 @@ int SSL_shutdown(SSL *s)

if ((s->mode & SSL_MODE_ASYNC) && ASYNC_get_current_job() == NULL) {

struct ssl_async_args args;

+ memset(&args, 0, sizeof(args));

args.s = s;

args.type = OTHERFUNC;

args.f.func_other = s->method->ssl_shutdown;

@@ -3799,6 +3800,7 @@ int SSL_do_handshake(SSL *s)

if ((s->mode & SSL_MODE_ASYNC) && ASYNC_get_current_job() == NULL) {

struct ssl_async_args args;

+ memset(&args, 0, sizeof(args));

args.s = s;

ret = ssl_start_async_job(s, &args, ssl_do_handshake_intern);

diff --git a/crypto/openssl/ssl/ssl_txt.c b/crypto/openssl/ssl/ssl_txt.c
index 457bc8b3c20a..759e1873e6b1 100644
--- a/crypto/openssl/ssl/ssl_txt.c
+++ b/crypto/openssl/ssl/ssl_txt.c

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

@@ -130,11 +130,11 @@ int SSL_SESSION_print(BIO *bp, const SSL_SESSION *x)

}

#endif

if (x->time != 0L) {

- if (BIO_printf(bp, "\n Start Time: %ld", x->time) <= 0)

+ if (BIO_printf(bp, "\n Start Time: %lld", (long long)x->time) <= 0)

goto err;

}

if (x->timeout != 0L) {

- if (BIO_printf(bp, "\n Timeout : %ld (sec)", x->timeout) <= 0)

+ if (BIO_printf(bp, "\n Timeout : %lld (sec)", (long long)x->timeout) <= 0)

goto err;

}

if (BIO_puts(bp, "\n") <= 0)

diff --git a/crypto/openssl/ssl/statem/statem_clnt.c b/crypto/openssl/ssl/statem/statem_clnt.c
index d1a39698124b..d19c44e8d984 100644
--- a/crypto/openssl/ssl/statem/statem_clnt.c
+++ b/crypto/openssl/ssl/statem/statem_clnt.c

@@ -1,5 +1,5 @@

@@ -1422,6 +1422,11 @@ MSG_PROCESS_RETURN tls_process_server_hello(SSL *s, PACKET *pkt)

&& sversion == TLS1_2_VERSION

&& PACKET_remaining(pkt) >= SSL3_RANDOM_SIZE

&& memcmp(hrrrandom, PACKET_data(pkt), SSL3_RANDOM_SIZE) == 0) {

+ if (s->hello_retry_request != SSL_HRR_NONE) {

+ SSLfatal(s, SSL_AD_UNEXPECTED_MESSAGE,

+ SSL_F_TLS_PROCESS_SERVER_HELLO, SSL_R_UNEXPECTED_MESSAGE);

+ goto err;

+ }

s->hello_retry_request = SSL_HRR_PENDING;

hrr = 1;

if (!PACKET_forward(pkt, SSL3_RANDOM_SIZE)) {

diff --git a/crypto/openssl/ssl/statem/statem_dtls.c b/crypto/openssl/ssl/statem/statem_dtls.c
index 8e3fb686ee27..8fe6cea72359 100644
--- a/crypto/openssl/ssl/statem/statem_dtls.c
+++ b/crypto/openssl/ssl/statem/statem_dtls.c

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

* this file except in compliance with the License. You can obtain a copy

@@ -218,8 +218,8 @@ int dtls1_do_write(SSL *s, int type)

else

len = s->init_num;

- if (len > s->max_send_fragment)

- len = s->max_send_fragment;

+ if (len > ssl_get_max_send_fragment(s))

+ len = ssl_get_max_send_fragment(s);

* XDTLS: this function is too long. split out the CCS part

@@ -241,7 +241,7 @@ int dtls1_do_write(SSL *s, int type)

ret = dtls1_write_bytes(s, type, &s->init_buf->data[s->init_off], len,

&written);

- if (ret < 0) {

+ if (ret <= 0) {

* might need to update MTU here, but we don't know which

* previous packet caused the failure -- so can't really

diff --git a/crypto/openssl/ssl/statem/statem_srvr.c b/crypto/openssl/ssl/statem/statem_srvr.c
index d701c46b43b5..43f77a58992f 100644
--- a/crypto/openssl/ssl/statem/statem_srvr.c
+++ b/crypto/openssl/ssl/statem/statem_srvr.c

@@ -1,5 +1,5 @@

@@ -3820,15 +3820,24 @@ int tls_construct_server_certificate(SSL *s, WPACKET *pkt)

static int create_ticket_prequel(SSL *s, WPACKET *pkt, uint32_t age_add,

unsigned char *tick_nonce)

{

+ uint32_t timeout = (uint32_t)s->session->timeout;

- * Ticket lifetime hint: For TLSv1.2 this is advisory only and we leave this

- * unspecified for resumed session (for simplicity).

+ * Ticket lifetime hint:

* In TLSv1.3 we reset the "time" field above, and always specify the

- * timeout.

+ * timeout, limited to a 1 week period per RFC8446.

+ * For TLSv1.2 this is advisory only and we leave this unspecified for

+ * resumed session (for simplicity).

- if (!WPACKET_put_bytes_u32(pkt,

- (s->hit && !SSL_IS_TLS13(s))

- ? 0 : s->session->timeout)) {

+#define ONE_WEEK_SEC (7 * 24 * 60 * 60)

+ if (SSL_IS_TLS13(s)) {

+ if (s->session->timeout > ONE_WEEK_SEC)

+ timeout = ONE_WEEK_SEC;

+ } else if (s->hit)

+ timeout = 0;

+ if (!WPACKET_put_bytes_u32(pkt, timeout)) {

SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_CREATE_TICKET_PREQUEL,

ERR_R_INTERNAL_ERROR);

return 0;

diff --git a/crypto/openssl/ssl/t1_enc.c b/crypto/openssl/ssl/t1_enc.c
index 7d2eb381af1a..422dde31262a 100644
--- a/crypto/openssl/ssl/t1_enc.c
+++ b/crypto/openssl/ssl/t1_enc.c

@@ -1,5 +1,5 @@

* Licensed under the OpenSSL license (the "License"). You may not use

@@ -796,6 +796,8 @@ int tls1_alert_code(int code)

return TLS1_AD_NO_APPLICATION_PROTOCOL;

case SSL_AD_CERTIFICATE_REQUIRED:

return SSL_AD_HANDSHAKE_FAILURE;

+ case SSL_AD_MISSING_EXTENSION:

+ return SSL_AD_HANDSHAKE_FAILURE;

default:

return -1;

}