Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(196)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/third_party/nss/patches/paddingextension.patch

Issue 66553007: net: don't add padding extension for SSLv3. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: ... Created 7 years, 1 month ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« no previous file with comments | « no previous file | net/third_party/nss/ssl/ssl3con.c » ('j') | net/third_party/nss/ssl/ssl3con.c » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 diff --git a/nss/lib/ssl/ssl3con.c b/nss/lib/ssl/ssl3con.c 1 diff --git a/nss/lib/ssl/ssl3con.c b/nss/lib/ssl/ssl3con.c
2 index 8b8b758..567d481 100644 2 index 567d481..8eb3ab5 100644
3 --- a/nss/lib/ssl/ssl3con.c 3 --- a/nss/lib/ssl/ssl3con.c
4 +++ b/nss/lib/ssl/ssl3con.c 4 +++ b/nss/lib/ssl/ssl3con.c
5 @@ -4975,6 +4975,7 @@ ssl3_SendClientHello(sslSocket *ss, PRBool resending) 5 @@ -4975,7 +4975,7 @@ ssl3_SendClientHello(sslSocket *ss, PRBool resending)
6 PRBool isTLS = PR_FALSE; 6 PRBool isTLS = PR_FALSE;
7 PRBool requestingResume = PR_FALSE; 7 PRBool requestingResume = PR_FALSE;
8 PRInt32 total_exten_len = 0; 8 PRInt32 total_exten_len = 0;
9 + unsigned paddingExtensionLen; 9 - unsigned paddingExtensionLen;
10 + PRInt32 paddingExtensionLen;
10 unsigned numCompressionMethods; 11 unsigned numCompressionMethods;
11 PRInt32 flags; 12 PRInt32 flags;
12 13
13 @@ -5241,6 +5242,20 @@ ssl3_SendClientHello(sslSocket *ss, PRBool resending) 14 @@ -5248,7 +5248,7 @@ ssl3_SendClientHello(sslSocket *ss, PRBool resending)
14 » length += 1 + ss->ssl3.hs.cookieLen; 15 * in F5 devices.
15 } 16 *
16 17 * This is not done for DTLS nor for renegotiation. */
17 + /* A padding extension may be included to ensure that the record containing 18 - if (!IS_DTLS(ss) && !ss->firstHsDone) {
18 + * the ClientHello doesn't have a length between 256 and 511 bytes 19 + if (!IS_DTLS(ss) && isTLS && !ss->firstHsDone) {
19 + * (inclusive). Initial, ClientHello records with such lengths trigger bugs 20 paddingExtensionLen = ssl3_CalculatePaddingExtensionLength(length);
20 + * in F5 devices. 21 total_exten_len += paddingExtensionLen;
21 + * 22 length += paddingExtensionLen;
22 + * This is not done for DTLS nor for renegotiation. */
23 + if (!IS_DTLS(ss) && !ss->firstHsDone) {
24 + paddingExtensionLen = ssl3_CalculatePaddingExtensionLength(length);
25 + total_exten_len += paddingExtensionLen;
26 + length += paddingExtensionLen;
27 + } else {
28 + paddingExtensionLen = 0;
29 + }
30 +
31 rv = ssl3_AppendHandshakeHeader(ss, client_hello, length);
32 if (rv != SECSuccess) {
33 » return rv;» /* err set by ssl3_AppendHandshake* */
34 @@ -5360,6 +5375,13 @@ ssl3_SendClientHello(sslSocket *ss, PRBool resending)
35 » return SECFailure;
36 » }
37 » maxBytes -= extLen;
38 +
39 +» extLen = ssl3_AppendPaddingExtension(ss, paddingExtensionLen, maxBytes);
40 +» if (extLen < 0) {
41 +» return SECFailure;
42 +» }
43 +» maxBytes -= extLen;
44 +
45 » PORT_Assert(!maxBytes);
46 }
47 if (ss->ssl3.hs.sendingSCSV) {
48 diff --git a/nss/lib/ssl/ssl3ext.c b/nss/lib/ssl/ssl3ext.c 23 diff --git a/nss/lib/ssl/ssl3ext.c b/nss/lib/ssl/ssl3ext.c
49 index 0415770..8be042e 100644 24 index 8be042e..ea2cf7a 100644
50 --- a/nss/lib/ssl/ssl3ext.c 25 --- a/nss/lib/ssl/ssl3ext.c
51 +++ b/nss/lib/ssl/ssl3ext.c 26 +++ b/nss/lib/ssl/ssl3ext.c
52 @@ -2297,3 +2297,56 @@ ssl3_ClientSendSigAlgsXtn(sslSocket * ss, PRBool append, PRUint32 maxBytes) 27 @@ -2298,7 +2298,7 @@ loser:
53 loser:
54 return -1; 28 return -1;
55 } 29 }
56 + 30
57 +unsigned int 31 -unsigned int
58 +ssl3_CalculatePaddingExtensionLength(unsigned int clientHelloLength) 32 +PRInt32
59 +{ 33 ssl3_CalculatePaddingExtensionLength(unsigned int clientHelloLength)
60 + unsigned int recordLength = 1 /* handshake message type */ + 34 {
61 +» » » » 3 /* handshake message length */ + 35 unsigned int recordLength = 1 /* handshake message type */ +
62 +» » » » clientHelloLength;
63 + unsigned int extensionLength;
64 +
65 + if (recordLength < 256 || recordLength >= 512) {
66 +» return 0;
67 + }
68 +
69 + extensionLength = 512 - recordLength;
70 + /* Extensions take at least four bytes to encode. */
71 + if (extensionLength < 4) {
72 +» extensionLength = 4;
73 + }
74 +
75 + return extensionLength;
76 +}
77 +
78 +/* ssl3_AppendPaddingExtension possibly adds an extension which ensures that a
79 + * ClientHello record is either < 256 bytes or is >= 512 bytes. This ensures
80 + * that we don't trigger bugs in F5 products. */
81 +unsigned int
82 +ssl3_AppendPaddingExtension(sslSocket *ss, unsigned int extensionLen,
83 +» » » PRUint32 maxBytes)
84 +{
85 + unsigned int paddingLen = extensionLen - 4;
86 + unsigned char padding[256];
87 +
88 + if (extensionLen == 0) {
89 +» return 0;
90 + }
91 +
92 + if (extensionLen < 4 ||
93 +» extensionLen > maxBytes ||
94 +» paddingLen > sizeof(padding)) {
95 +» PORT_Assert(0);
96 +» return 0;
97 + }
98 +
99 + if (SECSuccess != ssl3_AppendHandshakeNumber(ss, ssl_padding_xtn, 2))
100 +» return -1;
101 + if (SECSuccess != ssl3_AppendHandshakeNumber(ss, paddingLen, 2))
102 +» return -1;
103 + memset(padding, ' ', paddingLen);
104 + if (SECSuccess != ssl3_AppendHandshake(ss, padding, paddingLen))
105 +» return -1;
106 +
107 + return extensionLen;
108 +}
109 diff --git a/nss/lib/ssl/sslimpl.h b/nss/lib/ssl/sslimpl.h 36 diff --git a/nss/lib/ssl/sslimpl.h b/nss/lib/ssl/sslimpl.h
110 index 614eed1..621f25e 100644 37 index 621f25e..fdf5b8f 100644
111 --- a/nss/lib/ssl/sslimpl.h 38 --- a/nss/lib/ssl/sslimpl.h
112 +++ b/nss/lib/ssl/sslimpl.h 39 +++ b/nss/lib/ssl/sslimpl.h
113 @@ -237,6 +237,13 @@ extern PRInt32 40 @@ -237,7 +237,7 @@ extern PRInt32
114 ssl3_CallHelloExtensionSenders(sslSocket *ss, PRBool append, PRUint32 maxBytes, 41 ssl3_CallHelloExtensionSenders(sslSocket *ss, PRBool append, PRUint32 maxBytes,
115 const ssl3HelloExtensionSender *sender); 42 const ssl3HelloExtensionSender *sender);
116 43
117 +extern unsigned int 44 -extern unsigned int
118 +ssl3_CalculatePaddingExtensionLength(unsigned int clientHelloLength); 45 +extern PRInt32
119 + 46 ssl3_CalculatePaddingExtensionLength(unsigned int clientHelloLength);
120 +extern unsigned int
121 +ssl3_AppendPaddingExtension(sslSocket *ss, unsigned int extensionLen,
122 +» » » PRUint32 maxBytes);
123 +
124 /* Socket ops */
125 struct sslSocketOpsStr {
126 int (*connect) (sslSocket *, const PRNetAddr *);
127 diff --git a/nss/lib/ssl/sslt.h b/nss/lib/ssl/sslt.h
128 index a8007d8..e4d188f 100644
129 --- a/nss/lib/ssl/sslt.h
130 +++ b/nss/lib/ssl/sslt.h
131 @@ -205,9 +205,10 @@ typedef enum {
132 ssl_session_ticket_xtn = 35,
133 ssl_next_proto_nego_xtn = 13172,
134 ssl_channel_id_xtn = 30031,
135 + ssl_padding_xtn = 35655,
136 ssl_renegotiation_info_xtn = 0xff01» /* experimental number */
137 } SSLExtensionType;
138 47
139 -#define SSL_MAX_EXTENSIONS 11 48 extern unsigned int
140 +#define SSL_MAX_EXTENSIONS 11 /* doesn't include ssl_padding_xtn. * /
141
142 #endif /* __sslt_h_ */
OLDNEW
« no previous file with comments | « no previous file | net/third_party/nss/ssl/ssl3con.c » ('j') | net/third_party/nss/ssl/ssl3con.c » ('J')

Powered by Google App Engine
This is Rietveld 408576698