2009-07-28 04:03:57 +00:00
|
|
|
/*
|
2012-02-10 17:29:53 -05:00
|
|
|
* Copyright (c) 2009-2012 Niels Provos and Nick Mathewson
|
2009-07-28 04:03:57 +00:00
|
|
|
*
|
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
|
* modification, are permitted provided that the following conditions
|
|
|
|
|
* are met:
|
|
|
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
|
|
|
* documentation and/or other materials provided with the distribution.
|
|
|
|
|
* 3. The name of the author may not be used to endorse or promote products
|
|
|
|
|
* derived from this software without specific prior written permission.
|
|
|
|
|
*
|
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
|
|
|
|
|
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
|
|
|
|
|
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
|
|
|
|
|
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
|
|
|
|
|
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
|
|
|
|
|
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
|
|
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
|
|
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
|
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
|
|
|
|
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
|
*/
|
|
|
|
|
|
2013-12-17 13:28:23 +01:00
|
|
|
// Get rid of OSX 10.7 and greater deprecation warnings.
|
2014-01-22 13:19:49 +01:00
|
|
|
#if defined(__APPLE__) && defined(__clang__)
|
2013-12-17 13:28:23 +01:00
|
|
|
#pragma clang diagnostic ignored "-Wdeprecated-declarations"
|
2013-12-17 14:32:07 +01:00
|
|
|
#endif
|
2013-12-17 13:28:23 +01:00
|
|
|
|
2011-05-25 19:50:56 -04:00
|
|
|
#ifdef _WIN32
|
2009-07-28 04:03:57 +00:00
|
|
|
#include <winsock2.h>
|
|
|
|
|
#include <windows.h>
|
|
|
|
|
#endif
|
|
|
|
|
|
2016-12-06 13:15:27 +03:00
|
|
|
#include "util-internal.h"
|
|
|
|
|
|
2011-05-25 19:50:56 -04:00
|
|
|
#ifndef _WIN32
|
2011-06-03 17:06:17 -04:00
|
|
|
#include <sys/types.h>
|
2009-07-30 20:41:41 +00:00
|
|
|
#include <sys/socket.h>
|
|
|
|
|
#include <netinet/in.h>
|
|
|
|
|
#endif
|
|
|
|
|
|
2010-12-02 14:13:33 -05:00
|
|
|
#include "event2/event.h"
|
|
|
|
|
#include "event2/bufferevent_ssl.h"
|
2015-09-02 17:06:51 +03:00
|
|
|
#include "event2/bufferevent_struct.h"
|
2010-12-02 14:13:33 -05:00
|
|
|
#include "event2/buffer.h"
|
|
|
|
|
#include "event2/listener.h"
|
2009-07-28 04:03:57 +00:00
|
|
|
|
|
|
|
|
#include "tinytest.h"
|
|
|
|
|
#include "tinytest_macros.h"
|
|
|
|
|
|
|
|
|
|
#include <string.h>
|
2016-02-15 18:01:36 +01:00
|
|
|
#ifdef _WIN32
|
|
|
|
|
#include <io.h>
|
|
|
|
|
#define read _read
|
|
|
|
|
#define write _write
|
|
|
|
|
#else
|
2015-11-18 02:50:25 +03:00
|
|
|
#include <unistd.h>
|
2016-02-15 18:01:36 +01:00
|
|
|
#endif
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2016-10-12 17:49:10 -07:00
|
|
|
/* A pre-generated key, to save the cost of doing an RSA key generation step
|
|
|
|
|
* during the unit tests. It is published in this file, so you would have to
|
|
|
|
|
* be very foolish to consider using it in your own code. */
|
2009-07-28 04:03:57 +00:00
|
|
|
static const char KEY[] =
|
|
|
|
|
"-----BEGIN RSA PRIVATE KEY-----\n"
|
2016-10-12 17:49:10 -07:00
|
|
|
"MIIEogIBAAKCAQEAtK07Ili0dkJb79m/sFmHoVJTWyLoveXex2yX/BtUzzcvZEOu\n"
|
|
|
|
|
"QLon/++5YOA48kzZm5K9mIwZkZhui1ZgJ5Bjq0LGAWTZGIn+NXjLFshPYvTKpOCW\n"
|
|
|
|
|
"uzL0Ir0LXMsBLYJQ5A4FomLNxs4I3H/dhDSGy/rSiJB1B4w2xNiwPK08/VL3zZqk\n"
|
|
|
|
|
"V+GsSvGIIkzhTMbqPJy9K8pqyjwOU2pgORS794yXciTGxWYjTDzJPgQ35YMDATaG\n"
|
|
|
|
|
"jr4HHo1zxU/Lj0pndSUK5rKLYxYQ3Uc8B3AVYDl9CP/GbOoQ4LBzS68JjcAUyp6i\n"
|
|
|
|
|
"6NfXlc2D9S9XgqVqwI+JqgJs0eW/+zPY2UEDWwIDAQABAoIBAD2HzV66FOM9YDAD\n"
|
|
|
|
|
"2RtGskEHV2nvLpIVadRCsFPkPvK+2X3s6rgSbbLkwh4y3lHuSCGKTNVZyQ9jeSos\n"
|
|
|
|
|
"xVxT+Q2HFQW+gYyw2gj91TQyDY8mzKhv8AVaqff2p5r3a7RC8CdqexK9UVUGL9Bg\n"
|
|
|
|
|
"H2F5vfpTtkVZ5PEoGDLblNFlMiMW/t1SobUeBVx+Msco/xqk9lFv1A9nnepGy0Gi\n"
|
|
|
|
|
"D+i6YNGTBsX22YhoCZl/ICxCL8lgqPei4FvBr9dBVh/jQgjuUBm2jz55p2r7+7Aw\n"
|
|
|
|
|
"khmXHReejoVokQ2+htgSgZNKlKuDy710ZpBqnDi8ynQi82Y2qCpyg/p/xcER54B6\n"
|
|
|
|
|
"hSftaiECgYEA2RkSoxU+nWk+BClQEUZRi88QK5W/M8oo1DvUs36hvPFkw3Jk/gz0\n"
|
|
|
|
|
"fgd5bnA+MXj0Fc0QHvbddPjIkyoI/evq9GPV+JYIuH5zabrlI3Jvya8q9QpAcEDO\n"
|
|
|
|
|
"KkL/O09qXVEW52S6l05nh4PLejyI7aTyTIN5nbVLac/+M8MY/qOjZksCgYEA1Q1o\n"
|
|
|
|
|
"L8kjSavU2xhQmSgZb9W62Do60sa3e73ljrDPoiyvbExldpSdziFYxHBD/Rep0ePf\n"
|
|
|
|
|
"eVSGS3VSwevt9/jSGo2Oa83TYYns9agBm03oR/Go/DukESdI792NsEM+PRFypVNy\n"
|
|
|
|
|
"AohWRLj0UU6DV+zLKp0VBavtx0ATeLFX0eN17TECgYBI2O/3Bz7uhQ0JSm+SjFz6\n"
|
|
|
|
|
"o+2SInp5P2G57aWu4VQWWY3tQ2p+EQzNaWam10UXRrXoxtmc+ktPX9e2AgnoYoyB\n"
|
|
|
|
|
"myqGcpnUhqHlnZAb999o9r1cYidDQ4uqhLauSTSwwXAFDzjJYsa8o03Y440y6QFh\n"
|
|
|
|
|
"CVD6yYXXqLJs3g96CqDexwKBgAHxq1+0QCQt8zVElYewO/svQhMzBNJjic0RQIT6\n"
|
|
|
|
|
"zAo4yij80XgxhvcYiszQEW6/xobpw2JCCS+rFGQ8mOFIXfJsFD6blDAxp/3d2JXo\n"
|
|
|
|
|
"MhRl+hrDGI4ng5zcsqxHEMxR2m/zwPiQ8eiSn3gWdVBaEsiCwmxY00ScKxFQ3PJH\n"
|
|
|
|
|
"Vw4hAoGAdZLd8KfjjG6lg7hfpVqavstqVi9LOgkHeCfdjn7JP+76kYrgLk/XdkrP\n"
|
|
|
|
|
"N/BHhtFVFjOi/mTQfQ5YfZImkm/1ePBy7437DT8BDkOxspa50kK4HPggHnU64h1w\n"
|
|
|
|
|
"lhdEOj7mAgHwGwwVZWOgs9Lq6vfztnSuhqjha1daESY6kDscPIQ=\n"
|
2009-07-28 04:03:57 +00:00
|
|
|
"-----END RSA PRIVATE KEY-----\n";
|
|
|
|
|
|
2012-11-15 11:42:14 -05:00
|
|
|
static int disable_tls_11_and_12 = 0;
|
2018-10-27 19:34:52 +03:00
|
|
|
static int test_is_done;
|
|
|
|
|
static int n_connected;
|
|
|
|
|
static int got_close;
|
|
|
|
|
static int got_error;
|
|
|
|
|
static int got_timeout;
|
|
|
|
|
static int renegotiate_at = -1;
|
|
|
|
|
static int stop_when_connected;
|
|
|
|
|
static int pending_connect_events;
|
|
|
|
|
static struct event_base *exit_base;
|
|
|
|
|
|
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
/* ====================
|
|
|
|
|
Here's a simple test: we read a number from the input, increment it, and
|
|
|
|
|
reply, until we get to 1001.
|
|
|
|
|
*/
|
|
|
|
|
|
2015-09-02 12:26:40 +03:00
|
|
|
enum regress_openssl_type
|
|
|
|
|
{
|
|
|
|
|
REGRESS_OPENSSL_SOCKETPAIR = 1,
|
|
|
|
|
REGRESS_OPENSSL_FILTER = 2,
|
|
|
|
|
REGRESS_OPENSSL_RENEGOTIATE = 4,
|
|
|
|
|
REGRESS_OPENSSL_OPEN = 8,
|
|
|
|
|
REGRESS_OPENSSL_DIRTY_SHUTDOWN = 16,
|
2015-09-02 12:35:51 +03:00
|
|
|
REGRESS_OPENSSL_FD = 32,
|
2015-09-02 12:26:40 +03:00
|
|
|
|
|
|
|
|
REGRESS_OPENSSL_CLIENT = 64,
|
|
|
|
|
REGRESS_OPENSSL_SERVER = 128,
|
2015-09-02 17:06:51 +03:00
|
|
|
|
|
|
|
|
REGRESS_OPENSSL_FREED = 256,
|
2015-09-02 17:36:20 +03:00
|
|
|
REGRESS_OPENSSL_TIMEOUT = 512,
|
2015-11-18 02:50:25 +03:00
|
|
|
REGRESS_OPENSSL_SLEEP = 1024,
|
2016-12-02 18:32:03 +03:00
|
|
|
|
|
|
|
|
REGRESS_OPENSSL_CLIENT_WRITE = 2048,
|
2018-11-04 20:15:14 +03:00
|
|
|
|
|
|
|
|
REGRESS_DEFERRED_CALLBACKS = 4096,
|
2015-09-02 12:26:40 +03:00
|
|
|
};
|
|
|
|
|
|
2015-09-02 12:35:51 +03:00
|
|
|
static void
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_fd(struct bufferevent *bev, int filter)
|
2015-09-02 12:35:51 +03:00
|
|
|
{
|
2019-01-29 21:12:33 +03:00
|
|
|
tt_fd_op(bufferevent_getfd(bev), !=, EVUTIL_INVALID_SOCKET);
|
|
|
|
|
tt_fd_op(bufferevent_setfd(bev, EVUTIL_INVALID_SOCKET), ==, 0);
|
2015-09-02 17:17:43 +03:00
|
|
|
if (filter) {
|
2019-01-29 21:12:33 +03:00
|
|
|
tt_fd_op(bufferevent_getfd(bev), !=, EVUTIL_INVALID_SOCKET);
|
2016-12-08 02:11:22 +03:00
|
|
|
} else {
|
2019-01-29 21:12:33 +03:00
|
|
|
tt_fd_op(bufferevent_getfd(bev), ==, EVUTIL_INVALID_SOCKET);
|
2015-09-02 17:17:43 +03:00
|
|
|
}
|
2015-09-02 12:35:51 +03:00
|
|
|
|
2015-09-02 17:06:51 +03:00
|
|
|
end:
|
|
|
|
|
;
|
|
|
|
|
}
|
|
|
|
|
static void
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_freed(struct bufferevent *bev)
|
2015-09-02 17:06:51 +03:00
|
|
|
{
|
|
|
|
|
tt_int_op(event_pending(&bev->ev_read, EVLIST_ALL, NULL), ==, 0);
|
|
|
|
|
tt_int_op(event_pending(&bev->ev_write, EVLIST_ALL, NULL), ==, 0);
|
|
|
|
|
|
2015-09-02 12:35:51 +03:00
|
|
|
end:
|
|
|
|
|
;
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-27 19:34:52 +03:00
|
|
|
static void
|
|
|
|
|
free_on_cb(struct bufferevent *bev, void *ctx)
|
|
|
|
|
{
|
|
|
|
|
TT_BLATHER(("free_on_cb: %p", bev));
|
|
|
|
|
bufferevent_free(bev);
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
static void
|
|
|
|
|
respond_to_number(struct bufferevent *bev, void *ctx)
|
|
|
|
|
{
|
|
|
|
|
struct evbuffer *b = bufferevent_get_input(bev);
|
|
|
|
|
char *line;
|
|
|
|
|
int n;
|
2015-09-02 12:26:40 +03:00
|
|
|
|
|
|
|
|
enum regress_openssl_type type;
|
|
|
|
|
type = (enum regress_openssl_type)ctx;
|
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
line = evbuffer_readln(b, NULL, EVBUFFER_EOL_LF);
|
|
|
|
|
if (! line)
|
|
|
|
|
return;
|
|
|
|
|
n = atoi(line);
|
|
|
|
|
if (n <= 0)
|
|
|
|
|
TT_FAIL(("Bad number: %s", line));
|
2014-09-18 12:40:38 -04:00
|
|
|
free(line);
|
2009-07-28 04:03:57 +00:00
|
|
|
TT_BLATHER(("The number was %d", n));
|
|
|
|
|
if (n == 1001) {
|
|
|
|
|
++test_is_done;
|
|
|
|
|
bufferevent_free(bev); /* Should trigger close on other side. */
|
|
|
|
|
return;
|
|
|
|
|
}
|
2015-09-02 12:26:40 +03:00
|
|
|
if ((type & REGRESS_OPENSSL_CLIENT) && n == renegotiate_at) {
|
2020-05-28 17:14:46 +08:00
|
|
|
SSL_renegotiate(bufferevent_ssl_get_ssl(bev));
|
2009-07-30 20:41:21 +00:00
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
++n;
|
|
|
|
|
evbuffer_add_printf(bufferevent_get_output(bev),
|
|
|
|
|
"%d\n", n);
|
2010-09-09 16:01:42 -04:00
|
|
|
TT_BLATHER(("Done reading; now writing."));
|
2010-10-08 01:09:02 -04:00
|
|
|
bufferevent_enable(bev, EV_WRITE);
|
2020-05-28 17:14:46 +08:00
|
|
|
// we shouldn't disable EV_READ here, otherwise we wouldn't got close cb
|
|
|
|
|
// bufferevent_disable(bev, EV_READ);
|
2010-09-09 16:01:42 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
done_writing_cb(struct bufferevent *bev, void *ctx)
|
|
|
|
|
{
|
|
|
|
|
struct evbuffer *b = bufferevent_get_output(bev);
|
|
|
|
|
if (evbuffer_get_length(b))
|
|
|
|
|
return;
|
|
|
|
|
TT_BLATHER(("Done writing."));
|
2010-10-08 01:09:02 -04:00
|
|
|
bufferevent_disable(bev, EV_WRITE);
|
2010-09-09 16:01:42 -04:00
|
|
|
bufferevent_enable(bev, EV_READ);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
eventcb(struct bufferevent *bev, short what, void *ctx)
|
|
|
|
|
{
|
2018-10-27 19:34:52 +03:00
|
|
|
X509 *peer_cert = NULL;
|
2015-09-02 12:26:40 +03:00
|
|
|
enum regress_openssl_type type;
|
2018-10-27 19:34:52 +03:00
|
|
|
|
2015-09-02 12:26:40 +03:00
|
|
|
type = (enum regress_openssl_type)ctx;
|
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
TT_BLATHER(("Got event %d", (int)what));
|
2009-07-30 20:41:00 +00:00
|
|
|
if (what & BEV_EVENT_CONNECTED) {
|
|
|
|
|
SSL *ssl;
|
2009-07-28 04:03:57 +00:00
|
|
|
++n_connected;
|
2020-05-28 17:14:46 +08:00
|
|
|
ssl = bufferevent_ssl_get_ssl(bev);
|
2009-07-30 20:41:00 +00:00
|
|
|
tt_assert(ssl);
|
|
|
|
|
peer_cert = SSL_get_peer_certificate(ssl);
|
2015-09-02 12:26:40 +03:00
|
|
|
if (type & REGRESS_OPENSSL_SERVER) {
|
2009-07-30 20:41:00 +00:00
|
|
|
tt_assert(peer_cert == NULL);
|
|
|
|
|
} else {
|
|
|
|
|
tt_assert(peer_cert != NULL);
|
|
|
|
|
}
|
2010-10-14 11:44:32 -04:00
|
|
|
if (stop_when_connected) {
|
|
|
|
|
if (--pending_connect_events == 0)
|
|
|
|
|
event_base_loopexit(exit_base, NULL);
|
|
|
|
|
}
|
2016-12-02 18:32:03 +03:00
|
|
|
|
|
|
|
|
if ((type & REGRESS_OPENSSL_CLIENT_WRITE) && (type & REGRESS_OPENSSL_CLIENT))
|
|
|
|
|
evbuffer_add_printf(bufferevent_get_output(bev), "1\n");
|
2009-07-30 20:41:00 +00:00
|
|
|
} else if (what & BEV_EVENT_EOF) {
|
2009-07-28 04:03:57 +00:00
|
|
|
TT_BLATHER(("Got a good EOF"));
|
|
|
|
|
++got_close;
|
2015-09-02 12:35:51 +03:00
|
|
|
if (type & REGRESS_OPENSSL_FD) {
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_fd(bev, type & REGRESS_OPENSSL_FILTER);
|
2015-09-02 12:35:51 +03:00
|
|
|
}
|
2015-09-02 17:06:51 +03:00
|
|
|
if (type & REGRESS_OPENSSL_FREED) {
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_freed(bev);
|
2015-09-02 17:06:51 +03:00
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
bufferevent_free(bev);
|
|
|
|
|
} else if (what & BEV_EVENT_ERROR) {
|
|
|
|
|
TT_BLATHER(("Got an error."));
|
|
|
|
|
++got_error;
|
2015-09-02 12:35:51 +03:00
|
|
|
if (type & REGRESS_OPENSSL_FD) {
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_fd(bev, type & REGRESS_OPENSSL_FILTER);
|
2015-09-02 12:35:51 +03:00
|
|
|
}
|
2015-09-02 17:06:51 +03:00
|
|
|
if (type & REGRESS_OPENSSL_FREED) {
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_freed(bev);
|
2015-09-02 17:06:51 +03:00
|
|
|
}
|
2009-07-28 04:03:57 +00:00
|
|
|
bufferevent_free(bev);
|
2015-09-02 17:36:20 +03:00
|
|
|
} else if (what & BEV_EVENT_TIMEOUT) {
|
|
|
|
|
TT_BLATHER(("Got timeout."));
|
|
|
|
|
++got_timeout;
|
|
|
|
|
if (type & REGRESS_OPENSSL_FD) {
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_fd(bev, type & REGRESS_OPENSSL_FILTER);
|
2015-09-02 17:36:20 +03:00
|
|
|
}
|
|
|
|
|
if (type & REGRESS_OPENSSL_FREED) {
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_check_freed(bev);
|
2015-09-02 17:36:20 +03:00
|
|
|
}
|
|
|
|
|
bufferevent_free(bev);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
2018-10-27 19:34:52 +03:00
|
|
|
|
2009-07-30 20:41:00 +00:00
|
|
|
end:
|
2018-10-27 19:34:52 +03:00
|
|
|
if (peer_cert)
|
|
|
|
|
X509_free(peer_cert);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
2010-10-14 11:44:32 -04:00
|
|
|
static void
|
|
|
|
|
open_ssl_bufevs(struct bufferevent **bev1_out, struct bufferevent **bev2_out,
|
|
|
|
|
struct event_base *base, int is_open, int flags, SSL *ssl1, SSL *ssl2,
|
2015-09-02 11:34:13 +03:00
|
|
|
evutil_socket_t *fd_pair, struct bufferevent **underlying_pair,
|
2015-09-02 12:31:15 +03:00
|
|
|
enum regress_openssl_type type)
|
2010-10-14 11:44:32 -04:00
|
|
|
{
|
|
|
|
|
int state1 = is_open ? BUFFEREVENT_SSL_OPEN :BUFFEREVENT_SSL_CONNECTING;
|
|
|
|
|
int state2 = is_open ? BUFFEREVENT_SSL_OPEN :BUFFEREVENT_SSL_ACCEPTING;
|
2015-10-05 12:37:41 +02:00
|
|
|
int dirty_shutdown = type & REGRESS_OPENSSL_DIRTY_SHUTDOWN;
|
2010-10-14 11:44:32 -04:00
|
|
|
if (fd_pair) {
|
2020-05-28 17:14:46 +08:00
|
|
|
*bev1_out = bufferevent_ssl_socket_new(
|
2010-10-14 11:44:32 -04:00
|
|
|
base, fd_pair[0], ssl1, state1, flags);
|
2020-05-28 17:14:46 +08:00
|
|
|
*bev2_out = bufferevent_ssl_socket_new(
|
2010-10-14 11:44:32 -04:00
|
|
|
base, fd_pair[1], ssl2, state2, flags);
|
|
|
|
|
} else {
|
2020-05-28 17:14:46 +08:00
|
|
|
*bev1_out = bufferevent_ssl_filter_new(
|
2010-10-14 11:44:32 -04:00
|
|
|
base, underlying_pair[0], ssl1, state1, flags);
|
2020-05-28 17:14:46 +08:00
|
|
|
*bev2_out = bufferevent_ssl_filter_new(
|
2010-10-14 11:44:32 -04:00
|
|
|
base, underlying_pair[1], ssl2, state2, flags);
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
bufferevent_setcb(*bev1_out, respond_to_number, done_writing_cb,
|
2015-09-02 12:31:15 +03:00
|
|
|
eventcb, (void*)(REGRESS_OPENSSL_CLIENT | (long)type));
|
2010-10-14 11:44:32 -04:00
|
|
|
bufferevent_setcb(*bev2_out, respond_to_number, done_writing_cb,
|
2015-09-02 12:31:15 +03:00
|
|
|
eventcb, (void*)(REGRESS_OPENSSL_SERVER | (long)type));
|
2015-09-02 11:34:13 +03:00
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
bufferevent_ssl_set_allow_dirty_shutdown(*bev1_out, dirty_shutdown);
|
|
|
|
|
bufferevent_ssl_set_allow_dirty_shutdown(*bev2_out, dirty_shutdown);
|
2010-10-14 11:44:32 -04:00
|
|
|
}
|
|
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
static void
|
|
|
|
|
regress_bufferevent_openssl(void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct basic_test_data *data = arg;
|
|
|
|
|
|
|
|
|
|
struct bufferevent *bev1, *bev2;
|
|
|
|
|
SSL *ssl1, *ssl2;
|
2010-10-14 11:44:32 -04:00
|
|
|
int flags = BEV_OPT_DEFER_CALLBACKS;
|
|
|
|
|
struct bufferevent *bev_ll[2] = { NULL, NULL };
|
2012-11-01 17:38:34 -04:00
|
|
|
evutil_socket_t *fd_pair = NULL;
|
2010-10-14 11:44:32 -04:00
|
|
|
|
2015-09-02 11:22:43 +03:00
|
|
|
enum regress_openssl_type type;
|
|
|
|
|
type = (enum regress_openssl_type)data->setup_data;
|
|
|
|
|
|
|
|
|
|
if (type & REGRESS_OPENSSL_RENEGOTIATE) {
|
2020-01-05 19:02:22 +03:00
|
|
|
if (OPENSSL_VERSION_NUMBER >= 0x10001000 &&
|
|
|
|
|
OPENSSL_VERSION_NUMBER < 0x1000104f) {
|
2012-11-15 11:42:14 -05:00
|
|
|
/* 1.0.1 up to 1.0.1c has a bug where TLS1.1 and 1.2
|
|
|
|
|
* can't renegotiate with themselves. Disable. */
|
|
|
|
|
disable_tls_11_and_12 = 1;
|
|
|
|
|
}
|
|
|
|
|
renegotiate_at = 600;
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
ssl1 = SSL_new(get_ssl_ctx(SSL_IS_CLIENT));
|
|
|
|
|
ssl2 = SSL_new(get_ssl_ctx(SSL_IS_SERVER));
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2018-10-27 19:34:52 +03:00
|
|
|
SSL_use_certificate(ssl2, the_cert);
|
|
|
|
|
SSL_use_PrivateKey(ssl2, the_key);
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2015-09-02 11:22:43 +03:00
|
|
|
if (!(type & REGRESS_OPENSSL_OPEN))
|
2010-10-14 11:44:32 -04:00
|
|
|
flags |= BEV_OPT_CLOSE_ON_FREE;
|
|
|
|
|
|
2015-09-02 11:22:43 +03:00
|
|
|
if (!(type & REGRESS_OPENSSL_FILTER)) {
|
|
|
|
|
tt_assert(type & REGRESS_OPENSSL_SOCKETPAIR);
|
2010-10-14 11:44:32 -04:00
|
|
|
fd_pair = data->pair;
|
|
|
|
|
} else {
|
|
|
|
|
bev_ll[0] = bufferevent_socket_new(data->base, data->pair[0],
|
2009-07-28 04:03:57 +00:00
|
|
|
BEV_OPT_CLOSE_ON_FREE);
|
2010-10-14 11:44:32 -04:00
|
|
|
bev_ll[1] = bufferevent_socket_new(data->base, data->pair[1],
|
2009-07-28 04:03:57 +00:00
|
|
|
BEV_OPT_CLOSE_ON_FREE);
|
2010-10-14 11:44:32 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
open_ssl_bufevs(&bev1, &bev2, data->base, 0, flags, ssl1, ssl2,
|
2015-09-02 12:31:15 +03:00
|
|
|
fd_pair, bev_ll, type);
|
2010-10-14 11:44:32 -04:00
|
|
|
|
2015-09-02 11:22:43 +03:00
|
|
|
if (!(type & REGRESS_OPENSSL_FILTER)) {
|
2019-01-29 21:12:33 +03:00
|
|
|
tt_fd_op(bufferevent_getfd(bev1), ==, data->pair[0]);
|
2009-07-28 04:03:57 +00:00
|
|
|
} else {
|
2010-10-14 11:44:32 -04:00
|
|
|
tt_ptr_op(bufferevent_get_underlying(bev1), ==, bev_ll[0]);
|
|
|
|
|
}
|
|
|
|
|
|
2015-09-02 11:22:43 +03:00
|
|
|
if (type & REGRESS_OPENSSL_OPEN) {
|
2010-10-14 11:44:32 -04:00
|
|
|
pending_connect_events = 2;
|
|
|
|
|
stop_when_connected = 1;
|
|
|
|
|
exit_base = data->base;
|
|
|
|
|
event_base_dispatch(data->base);
|
|
|
|
|
/* Okay, now the renegotiation is done. Make new
|
|
|
|
|
* bufferevents to test opening in BUFFEREVENT_SSL_OPEN */
|
|
|
|
|
flags |= BEV_OPT_CLOSE_ON_FREE;
|
|
|
|
|
bufferevent_free(bev1);
|
|
|
|
|
bufferevent_free(bev2);
|
|
|
|
|
bev1 = bev2 = NULL;
|
|
|
|
|
open_ssl_bufevs(&bev1, &bev2, data->base, 1, flags, ssl1, ssl2,
|
2015-09-02 12:31:15 +03:00
|
|
|
fd_pair, bev_ll, type);
|
2009-07-28 04:03:57 +00:00
|
|
|
}
|
|
|
|
|
|
2015-09-02 17:36:20 +03:00
|
|
|
if (!(type & REGRESS_OPENSSL_TIMEOUT)) {
|
|
|
|
|
bufferevent_enable(bev1, EV_READ|EV_WRITE);
|
|
|
|
|
bufferevent_enable(bev2, EV_READ|EV_WRITE);
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2016-12-02 18:32:03 +03:00
|
|
|
if (!(type & REGRESS_OPENSSL_CLIENT_WRITE))
|
|
|
|
|
evbuffer_add_printf(bufferevent_get_output(bev1), "1\n");
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2015-09-02 17:36:20 +03:00
|
|
|
event_base_dispatch(data->base);
|
2009-07-28 04:03:57 +00:00
|
|
|
|
2015-09-02 17:36:20 +03:00
|
|
|
tt_assert(test_is_done == 1);
|
|
|
|
|
tt_assert(n_connected == 2);
|
2009-07-30 20:41:21 +00:00
|
|
|
|
2015-09-02 17:36:20 +03:00
|
|
|
/* We don't handle shutdown properly yet */
|
|
|
|
|
if (type & REGRESS_OPENSSL_DIRTY_SHUTDOWN) {
|
|
|
|
|
tt_int_op(got_close, ==, 1);
|
|
|
|
|
tt_int_op(got_error, ==, 0);
|
|
|
|
|
} else {
|
|
|
|
|
tt_int_op(got_error, ==, 1);
|
|
|
|
|
}
|
|
|
|
|
tt_int_op(got_timeout, ==, 0);
|
2015-09-02 11:34:13 +03:00
|
|
|
} else {
|
2015-10-05 12:37:41 +02:00
|
|
|
struct timeval t = { 2, 0 };
|
2015-09-02 17:36:20 +03:00
|
|
|
|
|
|
|
|
bufferevent_enable(bev1, EV_READ|EV_WRITE);
|
|
|
|
|
bufferevent_disable(bev2, EV_READ|EV_WRITE);
|
|
|
|
|
|
|
|
|
|
bufferevent_set_timeouts(bev1, &t, &t);
|
|
|
|
|
|
2016-12-02 18:32:03 +03:00
|
|
|
if (!(type & REGRESS_OPENSSL_CLIENT_WRITE))
|
|
|
|
|
evbuffer_add_printf(bufferevent_get_output(bev1), "1\n");
|
2015-09-02 17:36:20 +03:00
|
|
|
|
|
|
|
|
event_base_dispatch(data->base);
|
|
|
|
|
|
|
|
|
|
tt_assert(test_is_done == 0);
|
|
|
|
|
tt_assert(n_connected == 0);
|
|
|
|
|
|
|
|
|
|
tt_int_op(got_close, ==, 0);
|
|
|
|
|
tt_int_op(got_error, ==, 0);
|
|
|
|
|
tt_int_op(got_timeout, ==, 1);
|
2018-10-27 19:34:52 +03:00
|
|
|
|
|
|
|
|
bufferevent_free(bev2);
|
2015-09-02 11:34:13 +03:00
|
|
|
}
|
2018-10-27 19:34:52 +03:00
|
|
|
|
2009-07-28 04:03:57 +00:00
|
|
|
end:
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2015-11-18 02:50:25 +03:00
|
|
|
static void
|
|
|
|
|
acceptcb_deferred(evutil_socket_t fd, short events, void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct bufferevent *bev = arg;
|
|
|
|
|
bufferevent_enable(bev, EV_READ|EV_WRITE);
|
|
|
|
|
}
|
2009-07-30 20:41:41 +00:00
|
|
|
static void
|
|
|
|
|
acceptcb(struct evconnlistener *listener, evutil_socket_t fd,
|
|
|
|
|
struct sockaddr *addr, int socklen, void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct basic_test_data *data = arg;
|
|
|
|
|
struct bufferevent *bev;
|
2015-11-18 02:50:25 +03:00
|
|
|
enum regress_openssl_type type;
|
2020-05-28 17:14:46 +08:00
|
|
|
SSL *ssl = SSL_new(get_ssl_ctx(SSL_IS_SERVER));
|
2009-07-30 20:41:41 +00:00
|
|
|
|
2015-11-18 02:50:25 +03:00
|
|
|
type = (enum regress_openssl_type)data->setup_data;
|
|
|
|
|
|
2018-10-27 19:34:52 +03:00
|
|
|
SSL_use_certificate(ssl, the_cert);
|
|
|
|
|
SSL_use_PrivateKey(ssl, the_key);
|
2009-07-30 20:41:41 +00:00
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
bev = bufferevent_ssl_socket_new(
|
2018-10-27 19:34:52 +03:00
|
|
|
data->base, fd, ssl, BUFFEREVENT_SSL_ACCEPTING,
|
2009-07-30 20:41:41 +00:00
|
|
|
BEV_OPT_CLOSE_ON_FREE|BEV_OPT_DEFER_CALLBACKS);
|
2018-10-27 19:34:52 +03:00
|
|
|
tt_assert(bev);
|
2009-07-30 20:41:41 +00:00
|
|
|
|
|
|
|
|
bufferevent_setcb(bev, respond_to_number, NULL, eventcb,
|
2015-09-02 12:26:40 +03:00
|
|
|
(void*)(REGRESS_OPENSSL_SERVER));
|
2009-07-30 20:41:41 +00:00
|
|
|
|
2015-11-18 02:50:25 +03:00
|
|
|
if (type & REGRESS_OPENSSL_SLEEP) {
|
|
|
|
|
struct timeval when = { 1, 0 };
|
|
|
|
|
event_base_once(data->base, -1, EV_TIMEOUT,
|
|
|
|
|
acceptcb_deferred, bev, &when);
|
|
|
|
|
bufferevent_disable(bev, EV_READ|EV_WRITE);
|
|
|
|
|
} else {
|
|
|
|
|
bufferevent_enable(bev, EV_READ|EV_WRITE);
|
|
|
|
|
}
|
2009-07-30 20:41:41 +00:00
|
|
|
|
|
|
|
|
/* Only accept once, then disable ourself. */
|
|
|
|
|
evconnlistener_disable(listener);
|
2018-10-27 19:34:52 +03:00
|
|
|
|
|
|
|
|
end:
|
|
|
|
|
;
|
2009-07-30 20:41:41 +00:00
|
|
|
}
|
|
|
|
|
|
2015-11-18 02:50:25 +03:00
|
|
|
struct rwcount
|
|
|
|
|
{
|
2019-01-29 21:12:33 +03:00
|
|
|
evutil_socket_t fd;
|
2015-11-18 02:50:25 +03:00
|
|
|
size_t read;
|
|
|
|
|
size_t write;
|
|
|
|
|
};
|
|
|
|
|
|
2009-07-30 20:41:41 +00:00
|
|
|
static void
|
|
|
|
|
regress_bufferevent_openssl_connect(void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct basic_test_data *data = arg;
|
|
|
|
|
|
|
|
|
|
struct event_base *base = data->base;
|
|
|
|
|
|
|
|
|
|
struct evconnlistener *listener;
|
|
|
|
|
struct bufferevent *bev;
|
|
|
|
|
struct sockaddr_in sin;
|
|
|
|
|
struct sockaddr_storage ss;
|
|
|
|
|
ev_socklen_t slen;
|
2015-11-18 02:50:25 +03:00
|
|
|
SSL *ssl;
|
|
|
|
|
struct rwcount rw = { -1, 0, 0 };
|
|
|
|
|
enum regress_openssl_type type;
|
|
|
|
|
|
|
|
|
|
type = (enum regress_openssl_type)data->setup_data;
|
2009-07-30 20:41:41 +00:00
|
|
|
|
|
|
|
|
memset(&sin, 0, sizeof(sin));
|
|
|
|
|
sin.sin_family = AF_INET;
|
|
|
|
|
sin.sin_addr.s_addr = htonl(0x7f000001);
|
|
|
|
|
|
|
|
|
|
memset(&ss, 0, sizeof(ss));
|
|
|
|
|
slen = sizeof(ss);
|
|
|
|
|
|
|
|
|
|
listener = evconnlistener_new_bind(base, acceptcb, data,
|
|
|
|
|
LEV_OPT_CLOSE_ON_FREE|LEV_OPT_REUSEABLE,
|
|
|
|
|
-1, (struct sockaddr *)&sin, sizeof(sin));
|
|
|
|
|
|
|
|
|
|
tt_assert(listener);
|
|
|
|
|
tt_assert(evconnlistener_get_fd(listener) >= 0);
|
|
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
ssl = SSL_new(get_ssl_ctx(SSL_IS_CLIENT));
|
2015-11-18 02:50:25 +03:00
|
|
|
tt_assert(ssl);
|
|
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
bev = bufferevent_ssl_socket_new(
|
2015-11-18 02:50:25 +03:00
|
|
|
data->base, -1, ssl,
|
2009-07-30 20:41:41 +00:00
|
|
|
BUFFEREVENT_SSL_CONNECTING,
|
|
|
|
|
BEV_OPT_CLOSE_ON_FREE|BEV_OPT_DEFER_CALLBACKS);
|
|
|
|
|
tt_assert(bev);
|
|
|
|
|
|
2018-10-27 19:34:52 +03:00
|
|
|
bufferevent_setcb(bev, respond_to_number, free_on_cb, eventcb,
|
2015-09-02 12:26:40 +03:00
|
|
|
(void*)(REGRESS_OPENSSL_CLIENT));
|
2009-07-30 20:41:41 +00:00
|
|
|
|
|
|
|
|
tt_assert(getsockname(evconnlistener_get_fd(listener),
|
|
|
|
|
(struct sockaddr*)&ss, &slen) == 0);
|
|
|
|
|
tt_assert(slen == sizeof(struct sockaddr_in));
|
|
|
|
|
tt_int_op(((struct sockaddr*)&ss)->sa_family, ==, AF_INET);
|
|
|
|
|
|
|
|
|
|
tt_assert(0 ==
|
|
|
|
|
bufferevent_socket_connect(bev, (struct sockaddr*)&ss, slen));
|
2015-11-18 02:50:25 +03:00
|
|
|
/* Possible only when we have fd, since be_openssl can and will overwrite
|
|
|
|
|
* bio otherwise before */
|
|
|
|
|
if (type & REGRESS_OPENSSL_SLEEP) {
|
|
|
|
|
rw.fd = bufferevent_getfd(bev);
|
2020-05-28 17:14:46 +08:00
|
|
|
BIO_setup(ssl, &rw);
|
2015-11-18 02:50:25 +03:00
|
|
|
}
|
2009-07-30 20:41:41 +00:00
|
|
|
evbuffer_add_printf(bufferevent_get_output(bev), "1\n");
|
|
|
|
|
bufferevent_enable(bev, EV_READ|EV_WRITE);
|
|
|
|
|
|
|
|
|
|
event_base_dispatch(base);
|
2015-11-18 02:50:25 +03:00
|
|
|
|
|
|
|
|
tt_int_op(rw.read, <=, 100);
|
|
|
|
|
tt_int_op(rw.write, <=, 100);
|
2009-07-30 20:41:41 +00:00
|
|
|
end:
|
2018-10-27 19:34:52 +03:00
|
|
|
evconnlistener_free(listener);
|
2009-07-30 20:41:41 +00:00
|
|
|
}
|
|
|
|
|
|
2018-10-04 01:03:10 +03:00
|
|
|
struct wm_context
|
|
|
|
|
{
|
|
|
|
|
int server;
|
2018-11-04 20:15:14 +03:00
|
|
|
int flags;
|
2018-10-04 01:03:10 +03:00
|
|
|
struct evbuffer *data;
|
|
|
|
|
size_t to_read;
|
|
|
|
|
size_t wm_high;
|
|
|
|
|
size_t limit;
|
|
|
|
|
size_t get;
|
|
|
|
|
struct bufferevent *bev;
|
2019-02-03 18:47:14 +03:00
|
|
|
struct wm_context *neighbour;
|
2018-10-04 01:03:10 +03:00
|
|
|
};
|
|
|
|
|
static void
|
|
|
|
|
wm_transfer(struct bufferevent *bev, void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct wm_context *ctx = arg;
|
|
|
|
|
struct evbuffer *in = bufferevent_get_input(bev);
|
|
|
|
|
struct evbuffer *out = bufferevent_get_output(bev);
|
|
|
|
|
size_t len = evbuffer_get_length(in);
|
|
|
|
|
size_t drain = len < ctx->to_read ? len : ctx->to_read;
|
|
|
|
|
|
2018-11-05 22:25:15 +03:00
|
|
|
if (ctx->get >= ctx->limit) {
|
Fix ssl/bufferevent_wm_filter when bev does not reach watermark on break
For the ssl/bufferevent_wm* we have next configuration:
- payload_len = 1024
- wm_high = 5120
- limit = 40960
- to_read = 512
In this test we expect that with high watermark installed to "wm_high"
we will read "limit" bytes by reading "to_read" at a time, but adding
"payload_len" at a time (this "to_read"/"payload_len" limits is
installed to finally overflow watermark).
Once we read "limit" bytes we break, by disable EV_READ and reset
callbacks. Although this will not work if when we want to break we do
not reach watermark, this is because watermarks installs evbuffer
callback for the input buffer and if the watermark does not reached it
will enable EV_READ while be_openssl_enable() will read from the
underlying buffer (in case the openssl bufferevent created via
bufferevent_openssl_filter_new()) and call callback again (until it will
reach watermark or read al from the underlying buffer -- this is why it
stops in our caes).
And this is exactly what happened in win32, you can see this in the
following logs:
- win32 before:
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 40960
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 41472
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 41984
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 42496
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
- win32 after:
OK C:\vagrant\test\regress_ssl.c:821: wm_transfer-client(00FC26F0): break
OK C:\vagrant\test\regress_ssl.c:836: wm_transfer-client(00FC26F0): in: 4800, out: 0, got: 40960
- linux before:
OK ../test/regress_ssl.c:829: wm_transfer-client(0x55555566f5e0): in: 5120, out: 0, got: 40960
OK ../test/regress_ssl.c:834: wm_transfer-client(0x55555566f5e0): break
- linux after:
OK ../test/regress_ssl.c:821: wm_transfer-client(0x55555566f5e0): break
OK ../test/regress_ssl.c:836: wm_transfer-client(0x55555566f5e0): in: 5120, out: 0, got: 40960
(As you can see in linux case we already reach watermark hence it passed
before).
So fix the issue by breaking before draining.
But during fixing this I was thinking is this right? I.e. reading from
the be_openssl_enable(), maybe we should force deferred callbacks at
least?
2018-11-04 20:40:04 +03:00
|
|
|
TT_BLATHER(("wm_transfer-%s(%p): break",
|
|
|
|
|
ctx->server ? "server" : "client", bev));
|
|
|
|
|
bufferevent_setcb(bev, NULL, NULL, NULL, NULL);
|
|
|
|
|
bufferevent_disable(bev, EV_READ);
|
2019-02-03 18:47:14 +03:00
|
|
|
if (ctx->neighbour->get >= ctx->neighbour->limit) {
|
|
|
|
|
event_base_loopbreak(bufferevent_get_base(bev));
|
|
|
|
|
}
|
2018-11-05 22:25:15 +03:00
|
|
|
} else {
|
|
|
|
|
ctx->get += drain;
|
2018-11-08 00:36:07 +03:00
|
|
|
evbuffer_drain(in, drain);
|
Fix ssl/bufferevent_wm_filter when bev does not reach watermark on break
For the ssl/bufferevent_wm* we have next configuration:
- payload_len = 1024
- wm_high = 5120
- limit = 40960
- to_read = 512
In this test we expect that with high watermark installed to "wm_high"
we will read "limit" bytes by reading "to_read" at a time, but adding
"payload_len" at a time (this "to_read"/"payload_len" limits is
installed to finally overflow watermark).
Once we read "limit" bytes we break, by disable EV_READ and reset
callbacks. Although this will not work if when we want to break we do
not reach watermark, this is because watermarks installs evbuffer
callback for the input buffer and if the watermark does not reached it
will enable EV_READ while be_openssl_enable() will read from the
underlying buffer (in case the openssl bufferevent created via
bufferevent_openssl_filter_new()) and call callback again (until it will
reach watermark or read al from the underlying buffer -- this is why it
stops in our caes).
And this is exactly what happened in win32, you can see this in the
following logs:
- win32 before:
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 40960
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 41472
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 41984
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
OK C:\vagrant\test\regress_ssl.c:829: wm_transfer-client(00DC2750): in: 4608, out: 0, got: 42496
OK C:\vagrant\test\regress_ssl.c:834: wm_transfer-client(00DC2750): break
- win32 after:
OK C:\vagrant\test\regress_ssl.c:821: wm_transfer-client(00FC26F0): break
OK C:\vagrant\test\regress_ssl.c:836: wm_transfer-client(00FC26F0): in: 4800, out: 0, got: 40960
- linux before:
OK ../test/regress_ssl.c:829: wm_transfer-client(0x55555566f5e0): in: 5120, out: 0, got: 40960
OK ../test/regress_ssl.c:834: wm_transfer-client(0x55555566f5e0): break
- linux after:
OK ../test/regress_ssl.c:821: wm_transfer-client(0x55555566f5e0): break
OK ../test/regress_ssl.c:836: wm_transfer-client(0x55555566f5e0): in: 5120, out: 0, got: 40960
(As you can see in linux case we already reach watermark hence it passed
before).
So fix the issue by breaking before draining.
But during fixing this I was thinking is this right? I.e. reading from
the be_openssl_enable(), maybe we should force deferred callbacks at
least?
2018-11-04 20:40:04 +03:00
|
|
|
}
|
|
|
|
|
|
2018-11-04 20:03:50 +03:00
|
|
|
TT_BLATHER(("wm_transfer-%s(%p): "
|
|
|
|
|
"in: " EV_SIZE_FMT ", "
|
|
|
|
|
"out: " EV_SIZE_FMT ", "
|
|
|
|
|
"got: " EV_SIZE_FMT "",
|
|
|
|
|
ctx->server ? "server" : "client", bev,
|
2018-10-04 01:03:10 +03:00
|
|
|
evbuffer_get_length(in),
|
|
|
|
|
evbuffer_get_length(out),
|
|
|
|
|
ctx->get));
|
|
|
|
|
|
|
|
|
|
evbuffer_add_buffer_reference(out, ctx->data);
|
|
|
|
|
}
|
|
|
|
|
static void
|
|
|
|
|
wm_eventcb(struct bufferevent *bev, short what, void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct wm_context *ctx = arg;
|
2018-11-04 20:03:50 +03:00
|
|
|
TT_BLATHER(("wm_eventcb-%s(%p): %i",
|
|
|
|
|
ctx->server ? "server" : "client", bev, what));
|
2018-10-04 01:03:10 +03:00
|
|
|
if (what & BEV_EVENT_CONNECTED) {
|
|
|
|
|
} else {
|
|
|
|
|
ctx->get = 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
static void
|
|
|
|
|
wm_acceptcb(struct evconnlistener *listener, evutil_socket_t fd,
|
|
|
|
|
struct sockaddr *addr, int socklen, void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct wm_context *ctx = arg;
|
|
|
|
|
struct bufferevent *bev;
|
|
|
|
|
struct event_base *base = evconnlistener_get_base(listener);
|
2020-05-28 17:14:46 +08:00
|
|
|
SSL *ssl = SSL_new(get_ssl_ctx(SSL_IS_SERVER));
|
2018-10-04 01:03:10 +03:00
|
|
|
|
2018-10-27 19:34:52 +03:00
|
|
|
SSL_use_certificate(ssl, the_cert);
|
|
|
|
|
SSL_use_PrivateKey(ssl, the_key);
|
2018-10-04 01:03:10 +03:00
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
bev = bufferevent_ssl_socket_new(
|
2018-11-04 20:15:14 +03:00
|
|
|
base, fd, ssl, BUFFEREVENT_SSL_ACCEPTING, ctx->flags);
|
2018-10-04 01:03:10 +03:00
|
|
|
|
2018-11-04 20:03:50 +03:00
|
|
|
TT_BLATHER(("wm_transfer-%s(%p): accept",
|
|
|
|
|
ctx->server ? "server" : "client", bev));
|
|
|
|
|
|
2018-10-04 01:03:10 +03:00
|
|
|
bufferevent_setwatermark(bev, EV_READ, 0, ctx->wm_high);
|
|
|
|
|
bufferevent_setcb(bev, wm_transfer, NULL, wm_eventcb, ctx);
|
|
|
|
|
bufferevent_enable(bev, EV_READ|EV_WRITE);
|
|
|
|
|
ctx->bev = bev;
|
|
|
|
|
|
|
|
|
|
/* Only accept once, then disable ourself. */
|
|
|
|
|
evconnlistener_disable(listener);
|
|
|
|
|
}
|
|
|
|
|
static void
|
|
|
|
|
regress_bufferevent_openssl_wm(void *arg)
|
|
|
|
|
{
|
|
|
|
|
struct basic_test_data *data = arg;
|
|
|
|
|
struct event_base *base = data->base;
|
|
|
|
|
|
|
|
|
|
struct evconnlistener *listener;
|
|
|
|
|
struct bufferevent *bev;
|
|
|
|
|
struct sockaddr_in sin;
|
|
|
|
|
struct sockaddr_storage ss;
|
|
|
|
|
enum regress_openssl_type type =
|
|
|
|
|
(enum regress_openssl_type)data->setup_data;
|
|
|
|
|
int bev_flags = BEV_OPT_CLOSE_ON_FREE;
|
|
|
|
|
ev_socklen_t slen;
|
|
|
|
|
SSL *ssl;
|
|
|
|
|
struct wm_context client, server;
|
|
|
|
|
char *payload;
|
|
|
|
|
size_t payload_len = 1<<10;
|
|
|
|
|
size_t wm_high = 5<<10;
|
|
|
|
|
|
|
|
|
|
memset(&sin, 0, sizeof(sin));
|
|
|
|
|
sin.sin_family = AF_INET;
|
|
|
|
|
sin.sin_addr.s_addr = htonl(0x7f000001);
|
|
|
|
|
|
|
|
|
|
memset(&ss, 0, sizeof(ss));
|
|
|
|
|
slen = sizeof(ss);
|
|
|
|
|
|
2018-11-04 20:15:14 +03:00
|
|
|
if (type & REGRESS_DEFERRED_CALLBACKS)
|
|
|
|
|
bev_flags |= BEV_OPT_DEFER_CALLBACKS;
|
|
|
|
|
|
2018-10-04 01:03:10 +03:00
|
|
|
memset(&client, 0, sizeof(client));
|
|
|
|
|
memset(&server, 0, sizeof(server));
|
|
|
|
|
client.server = 0;
|
|
|
|
|
server.server = 1;
|
2018-11-04 20:15:14 +03:00
|
|
|
client.flags = server.flags = bev_flags;
|
2018-10-04 01:03:10 +03:00
|
|
|
client.data = evbuffer_new();
|
|
|
|
|
server.data = evbuffer_new();
|
|
|
|
|
payload = calloc(1, payload_len);
|
|
|
|
|
memset(payload, 'A', payload_len);
|
|
|
|
|
evbuffer_add(server.data, payload, payload_len);
|
|
|
|
|
evbuffer_add(client.data, payload, payload_len);
|
|
|
|
|
client.wm_high = server.wm_high = wm_high;
|
|
|
|
|
client.limit = server.limit = wm_high<<3;
|
|
|
|
|
client.to_read = server.to_read = payload_len>>1;
|
|
|
|
|
|
2018-11-04 20:03:50 +03:00
|
|
|
TT_BLATHER(("openssl_wm: "
|
|
|
|
|
"payload_len = " EV_SIZE_FMT ", "
|
|
|
|
|
"wm_high = " EV_SIZE_FMT ", "
|
|
|
|
|
"limit = " EV_SIZE_FMT ", "
|
|
|
|
|
"to_read: " EV_SIZE_FMT "",
|
|
|
|
|
payload_len,
|
|
|
|
|
wm_high,
|
|
|
|
|
server.limit,
|
|
|
|
|
server.to_read));
|
2018-10-04 01:03:10 +03:00
|
|
|
|
|
|
|
|
listener = evconnlistener_new_bind(base, wm_acceptcb, &server,
|
|
|
|
|
LEV_OPT_CLOSE_ON_FREE|LEV_OPT_REUSEABLE,
|
|
|
|
|
-1, (struct sockaddr *)&sin, sizeof(sin));
|
|
|
|
|
|
|
|
|
|
tt_assert(listener);
|
|
|
|
|
tt_assert(evconnlistener_get_fd(listener) >= 0);
|
|
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
ssl = SSL_new(get_ssl_ctx(SSL_IS_CLIENT));
|
2018-10-04 01:03:10 +03:00
|
|
|
tt_assert(ssl);
|
|
|
|
|
|
|
|
|
|
if (type & REGRESS_OPENSSL_FILTER) {
|
2018-11-04 20:15:14 +03:00
|
|
|
bev = bufferevent_socket_new(data->base, -1, client.flags);
|
2018-10-04 01:03:10 +03:00
|
|
|
tt_assert(bev);
|
2020-05-28 17:14:46 +08:00
|
|
|
bev = bufferevent_ssl_filter_new(
|
2018-11-04 20:15:14 +03:00
|
|
|
base, bev, ssl, BUFFEREVENT_SSL_CONNECTING, client.flags);
|
2018-10-04 01:03:10 +03:00
|
|
|
} else {
|
2020-05-28 17:14:46 +08:00
|
|
|
bev = bufferevent_ssl_socket_new(
|
2018-10-04 01:03:10 +03:00
|
|
|
data->base, -1, ssl,
|
|
|
|
|
BUFFEREVENT_SSL_CONNECTING,
|
2018-11-04 20:15:14 +03:00
|
|
|
client.flags);
|
2018-10-04 01:03:10 +03:00
|
|
|
}
|
|
|
|
|
tt_assert(bev);
|
|
|
|
|
client.bev = bev;
|
|
|
|
|
|
2019-02-03 18:47:14 +03:00
|
|
|
server.neighbour = &client;
|
|
|
|
|
client.neighbour = &server;
|
|
|
|
|
|
2018-10-04 01:03:10 +03:00
|
|
|
bufferevent_setwatermark(bev, EV_READ, 0, client.wm_high);
|
|
|
|
|
bufferevent_setcb(bev, wm_transfer, NULL, wm_eventcb, &client);
|
|
|
|
|
|
|
|
|
|
tt_assert(getsockname(evconnlistener_get_fd(listener),
|
|
|
|
|
(struct sockaddr*)&ss, &slen) == 0);
|
|
|
|
|
|
|
|
|
|
tt_assert(!bufferevent_socket_connect(bev, (struct sockaddr*)&ss, slen));
|
|
|
|
|
tt_assert(!evbuffer_add_buffer_reference(bufferevent_get_output(bev), client.data));
|
|
|
|
|
tt_assert(!bufferevent_enable(bev, EV_READ|EV_WRITE));
|
|
|
|
|
|
|
|
|
|
event_base_dispatch(base);
|
|
|
|
|
|
|
|
|
|
tt_int_op(client.get, ==, client.limit);
|
|
|
|
|
tt_int_op(server.get, ==, server.limit);
|
2020-06-25 21:40:40 +03:00
|
|
|
|
2018-10-04 01:03:10 +03:00
|
|
|
end:
|
|
|
|
|
free(payload);
|
|
|
|
|
evbuffer_free(client.data);
|
|
|
|
|
evbuffer_free(server.data);
|
|
|
|
|
evconnlistener_free(listener);
|
|
|
|
|
bufferevent_free(client.bev);
|
|
|
|
|
bufferevent_free(server.bev);
|
2020-06-25 21:40:40 +03:00
|
|
|
|
|
|
|
|
/* XXX: by some reason otherise there is a leak */
|
|
|
|
|
if (!(type & REGRESS_OPENSSL_FILTER))
|
|
|
|
|
event_base_loop(base, EVLOOP_ONCE);
|
2018-10-04 01:03:10 +03:00
|
|
|
}
|
|
|
|
|
|
2020-05-28 17:14:46 +08:00
|
|
|
struct testcase_t TESTCASES_NAME[] = {
|
2015-09-02 11:22:43 +03:00
|
|
|
#define T(a) ((void *)(a))
|
|
|
|
|
{ "bufferevent_socketpair", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup, T(REGRESS_OPENSSL_SOCKETPAIR) },
|
2016-12-02 18:32:03 +03:00
|
|
|
{ "bufferevent_socketpair_write_after_connect", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2016-12-02 18:32:03 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR|REGRESS_OPENSSL_CLIENT_WRITE) },
|
2009-07-28 04:03:57 +00:00
|
|
|
{ "bufferevent_filter", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup, T(REGRESS_OPENSSL_FILTER) },
|
2016-12-02 18:32:03 +03:00
|
|
|
{ "bufferevent_filter_write_after_connect", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2016-12-02 18:32:03 +03:00
|
|
|
T(REGRESS_OPENSSL_FILTER|REGRESS_OPENSSL_CLIENT_WRITE) },
|
2009-07-30 20:41:21 +00:00
|
|
|
{ "bufferevent_renegotiate_socketpair", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:22:43 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_RENEGOTIATE) },
|
2009-07-30 20:41:41 +00:00
|
|
|
{ "bufferevent_renegotiate_filter", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:22:43 +03:00
|
|
|
T(REGRESS_OPENSSL_FILTER | REGRESS_OPENSSL_RENEGOTIATE) },
|
2010-10-14 11:44:32 -04:00
|
|
|
{ "bufferevent_socketpair_startopen", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:22:43 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_OPEN) },
|
2010-10-14 11:44:32 -04:00
|
|
|
{ "bufferevent_filter_startopen", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:22:43 +03:00
|
|
|
T(REGRESS_OPENSSL_FILTER | REGRESS_OPENSSL_OPEN) },
|
2015-09-02 11:34:13 +03:00
|
|
|
|
|
|
|
|
{ "bufferevent_socketpair_dirty_shutdown", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:34:13 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_DIRTY_SHUTDOWN) },
|
|
|
|
|
{ "bufferevent_filter_dirty_shutdown", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:34:13 +03:00
|
|
|
T(REGRESS_OPENSSL_FILTER | REGRESS_OPENSSL_DIRTY_SHUTDOWN) },
|
|
|
|
|
{ "bufferevent_renegotiate_socketpair_dirty_shutdown",
|
|
|
|
|
regress_bufferevent_openssl,
|
|
|
|
|
TT_ISOLATED,
|
2018-10-27 19:34:52 +03:00
|
|
|
&ssl_setup,
|
2015-09-02 11:34:13 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_RENEGOTIATE | REGRESS_OPENSSL_DIRTY_SHUTDOWN) },
|
|
|
|
|
{ "bufferevent_renegotiate_filter_dirty_shutdown",
|
|
|
|
|
regress_bufferevent_openssl,
|
|
|
|
|
TT_ISOLATED,
|
2018-10-27 19:34:52 +03:00
|
|
|
&ssl_setup,
|
2015-09-02 11:34:13 +03:00
|
|
|
T(REGRESS_OPENSSL_FILTER | REGRESS_OPENSSL_RENEGOTIATE | REGRESS_OPENSSL_DIRTY_SHUTDOWN) },
|
|
|
|
|
{ "bufferevent_socketpair_startopen_dirty_shutdown",
|
|
|
|
|
regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:34:13 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_OPEN | REGRESS_OPENSSL_DIRTY_SHUTDOWN) },
|
|
|
|
|
{ "bufferevent_filter_startopen_dirty_shutdown",
|
|
|
|
|
regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 11:34:13 +03:00
|
|
|
T(REGRESS_OPENSSL_FILTER | REGRESS_OPENSSL_OPEN | REGRESS_OPENSSL_DIRTY_SHUTDOWN) },
|
2015-09-02 12:35:51 +03:00
|
|
|
|
|
|
|
|
{ "bufferevent_socketpair_fd", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 12:35:51 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_FD) },
|
2015-09-02 17:06:51 +03:00
|
|
|
{ "bufferevent_socketpair_freed", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 17:06:51 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_FREED) },
|
|
|
|
|
{ "bufferevent_socketpair_freed_fd", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 17:06:51 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_FREED | REGRESS_OPENSSL_FD) },
|
2015-09-02 17:17:43 +03:00
|
|
|
{ "bufferevent_filter_freed_fd", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 17:17:43 +03:00
|
|
|
T(REGRESS_OPENSSL_FILTER | REGRESS_OPENSSL_FREED | REGRESS_OPENSSL_FD) },
|
2015-09-02 17:36:20 +03:00
|
|
|
|
|
|
|
|
{ "bufferevent_socketpair_timeout", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 17:36:20 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_TIMEOUT) },
|
2015-09-02 17:49:41 +03:00
|
|
|
{ "bufferevent_socketpair_timeout_freed_fd", regress_bufferevent_openssl,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_ISOLATED, &ssl_setup,
|
2015-09-02 17:49:41 +03:00
|
|
|
T(REGRESS_OPENSSL_SOCKETPAIR | REGRESS_OPENSSL_TIMEOUT | REGRESS_OPENSSL_FREED | REGRESS_OPENSSL_FD) },
|
2009-07-30 20:41:41 +00:00
|
|
|
{ "bufferevent_connect", regress_bufferevent_openssl_connect,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_FORK|TT_NEED_BASE, &ssl_setup, NULL },
|
2015-11-18 02:50:25 +03:00
|
|
|
{ "bufferevent_connect_sleep", regress_bufferevent_openssl_connect,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_FORK|TT_NEED_BASE, &ssl_setup, T(REGRESS_OPENSSL_SLEEP) },
|
2018-10-04 01:03:10 +03:00
|
|
|
{ "bufferevent_wm", regress_bufferevent_openssl_wm,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_FORK|TT_NEED_BASE, &ssl_setup, NULL },
|
2018-10-04 01:03:10 +03:00
|
|
|
{ "bufferevent_wm_filter", regress_bufferevent_openssl_wm,
|
2018-10-27 19:34:52 +03:00
|
|
|
TT_FORK|TT_NEED_BASE, &ssl_setup, T(REGRESS_OPENSSL_FILTER) },
|
2018-11-04 20:15:14 +03:00
|
|
|
{ "bufferevent_wm_defer", regress_bufferevent_openssl_wm,
|
|
|
|
|
TT_FORK|TT_NEED_BASE, &ssl_setup, T(REGRESS_DEFERRED_CALLBACKS) },
|
|
|
|
|
{ "bufferevent_wm_filter_defer", regress_bufferevent_openssl_wm,
|
|
|
|
|
TT_FORK|TT_NEED_BASE, &ssl_setup, T(REGRESS_OPENSSL_FILTER|REGRESS_DEFERRED_CALLBACKS) },
|
2018-10-04 01:03:10 +03:00
|
|
|
|
2015-11-18 02:50:25 +03:00
|
|
|
#undef T
|
2009-07-30 20:41:41 +00:00
|
|
|
|
2010-02-18 17:41:15 -05:00
|
|
|
END_OF_TESTCASES,
|
2009-07-28 04:03:57 +00:00
|
|
|
};
|
