2 * Copyright 2022 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
10 #include "internal/quic_tserver.h"
11 #include "internal/quic_channel.h"
12 #include "internal/quic_statm.h"
13 #include "internal/common.h"
14 #include "internal/time.h"
17 * QUIC Test Server Module
18 * =======================
20 struct quic_tserver_st {
21 QUIC_TSERVER_ARGS args;
24 * The QUIC channel providing the core QUIC connection implementation.
28 /* The mutex we give to the QUIC channel. */
31 /* SSL_CTX for creating the underlying TLS connection */
34 /* SSL for the underlying TLS connection */
37 /* The current peer L4 address. AF_UNSPEC if we do not have a peer yet. */
38 BIO_ADDR cur_peer_addr;
40 /* Are we connected to a peer? */
41 unsigned int connected : 1;
44 static int alpn_select_cb(SSL *ssl, const unsigned char **out,
45 unsigned char *outlen, const unsigned char *in,
46 unsigned int inlen, void *arg)
48 QUIC_TSERVER *srv = arg;
49 static const unsigned char alpndeflt[] = {
50 8, 'o', 's', 's', 'l', 't', 'e', 's', 't'
52 static const unsigned char *alpn;
55 if (srv->args.alpn == NULL) {
57 alpnlen = sizeof(alpn);
59 alpn = srv->args.alpn;
60 alpnlen = srv->args.alpnlen;
63 if (SSL_select_next_proto((unsigned char **)out, outlen, alpn, alpnlen,
64 in, inlen) != OPENSSL_NPN_NEGOTIATED)
65 return SSL_TLSEXT_ERR_ALERT_FATAL;
67 return SSL_TLSEXT_ERR_OK;
70 QUIC_TSERVER *ossl_quic_tserver_new(const QUIC_TSERVER_ARGS *args,
71 const char *certfile, const char *keyfile)
73 QUIC_TSERVER *srv = NULL;
74 QUIC_CHANNEL_ARGS ch_args = {0};
76 if (args->net_rbio == NULL || args->net_wbio == NULL)
79 if ((srv = OPENSSL_zalloc(sizeof(*srv))) == NULL)
84 #if defined(OPENSSL_THREADS)
85 if ((srv->mutex = ossl_crypto_mutex_new()) == NULL)
89 srv->ctx = SSL_CTX_new_ex(srv->args.libctx, srv->args.propq, TLS_method());
93 if (SSL_CTX_use_certificate_file(srv->ctx, certfile, SSL_FILETYPE_PEM) <= 0)
96 if (SSL_CTX_use_PrivateKey_file(srv->ctx, keyfile, SSL_FILETYPE_PEM) <= 0)
99 SSL_CTX_set_alpn_select_cb(srv->ctx, alpn_select_cb, srv);
101 srv->tls = SSL_new(srv->ctx);
102 if (srv->tls == NULL)
105 ch_args.libctx = srv->args.libctx;
106 ch_args.propq = srv->args.propq;
107 ch_args.tls = srv->tls;
108 ch_args.mutex = srv->mutex;
109 ch_args.is_server = 1;
110 ch_args.now_cb = srv->args.now_cb;
111 ch_args.now_cb_arg = srv->args.now_cb_arg;
113 if ((srv->ch = ossl_quic_channel_new(&ch_args)) == NULL)
116 if (!ossl_quic_channel_set_net_rbio(srv->ch, srv->args.net_rbio)
117 || !ossl_quic_channel_set_net_wbio(srv->ch, srv->args.net_wbio))
124 ossl_quic_channel_free(srv->ch);
125 #if defined(OPENSSL_THREADS)
126 ossl_crypto_mutex_free(&srv->mutex);
134 void ossl_quic_tserver_free(QUIC_TSERVER *srv)
139 ossl_quic_channel_free(srv->ch);
140 BIO_free(srv->args.net_rbio);
141 BIO_free(srv->args.net_wbio);
143 SSL_CTX_free(srv->ctx);
144 #if defined(OPENSSL_THREADS)
145 ossl_crypto_mutex_free(&srv->mutex);
150 /* Set mutator callbacks for test framework support */
151 int ossl_quic_tserver_set_plain_packet_mutator(QUIC_TSERVER *srv,
152 ossl_mutate_packet_cb mutatecb,
153 ossl_finish_mutate_cb finishmutatecb,
156 return ossl_quic_channel_set_mutator(srv->ch, mutatecb, finishmutatecb,
160 int ossl_quic_tserver_set_handshake_mutator(QUIC_TSERVER *srv,
161 ossl_statem_mutate_handshake_cb mutate_handshake_cb,
162 ossl_statem_finish_mutate_handshake_cb finish_mutate_handshake_cb,
165 return ossl_statem_set_mutator(ossl_quic_channel_get0_ssl(srv->ch),
167 finish_mutate_handshake_cb,
171 int ossl_quic_tserver_tick(QUIC_TSERVER *srv)
173 ossl_quic_reactor_tick(ossl_quic_channel_get_reactor(srv->ch), 0);
175 if (ossl_quic_channel_is_active(srv->ch))
181 int ossl_quic_tserver_is_connected(QUIC_TSERVER *srv)
183 return ossl_quic_channel_is_active(srv->ch);
186 /* Returns 1 if the server is in any terminating or terminated state */
187 int ossl_quic_tserver_is_term_any(const QUIC_TSERVER *srv)
189 return ossl_quic_channel_is_term_any(srv->ch);
192 const QUIC_TERMINATE_CAUSE *
193 ossl_quic_tserver_get_terminate_cause(const QUIC_TSERVER *srv)
195 return ossl_quic_channel_get_terminate_cause(srv->ch);
198 /* Returns 1 if the server is in a terminated state */
199 int ossl_quic_tserver_is_terminated(const QUIC_TSERVER *srv)
201 return ossl_quic_channel_is_terminated(srv->ch);
204 int ossl_quic_tserver_is_handshake_confirmed(const QUIC_TSERVER *srv)
206 return ossl_quic_channel_is_handshake_confirmed(srv->ch);
209 int ossl_quic_tserver_read(QUIC_TSERVER *srv,
218 if (!ossl_quic_channel_is_active(srv->ch))
221 qs = ossl_quic_stream_map_get_by_id(ossl_quic_channel_get_qsm(srv->ch),
225 = ((stream_id & QUIC_STREAM_INITIATOR_MASK)
226 == QUIC_STREAM_INITIATOR_CLIENT);
229 * A client-initiated stream might spontaneously come into existence, so
230 * allow trying to read on a client-initiated stream before it exists.
240 if (qs->recv_fin_retired || !ossl_quic_stream_has_recv_buffer(qs))
243 if (!ossl_quic_rstream_read(qs->rstream, buf, buf_len,
244 bytes_read, &is_fin))
247 if (*bytes_read > 0) {
249 * We have read at least one byte from the stream. Inform stream-level
250 * RXFC of the retirement of controlled bytes. Update the active stream
251 * status (the RXFC may now want to emit a frame granting more credit to
254 OSSL_RTT_INFO rtt_info;
256 ossl_statm_get_rtt_info(ossl_quic_channel_get_statm(srv->ch), &rtt_info);
258 if (!ossl_quic_rxfc_on_retire(&qs->rxfc, *bytes_read,
259 rtt_info.smoothed_rtt))
264 qs->recv_fin_retired = 1;
267 ossl_quic_stream_map_update_state(ossl_quic_channel_get_qsm(srv->ch), qs);
272 int ossl_quic_tserver_has_read_ended(QUIC_TSERVER *srv, uint64_t stream_id)
275 unsigned char buf[1];
276 size_t bytes_read = 0;
279 qs = ossl_quic_stream_map_get_by_id(ossl_quic_channel_get_qsm(srv->ch),
282 if (qs == NULL || !ossl_quic_stream_has_recv_buffer(qs))
285 if (qs->recv_fin_retired)
289 * If we do not have recv_fin_retired, it is possible we should still return
290 * 1 if there is a lone FIN (but no more data) remaining to be retired from
291 * the RSTREAM, for example because ossl_quic_tserver_read() has not been
292 * called since the FIN was received.
294 if (!ossl_quic_rstream_peek(qs->rstream, buf, sizeof(buf),
295 &bytes_read, &is_fin))
298 if (is_fin && bytes_read == 0) {
299 /* If we have a FIN awaiting retirement and no data before it... */
300 /* Let RSTREAM know we've consumed this FIN. */
301 ossl_quic_rstream_read(qs->rstream, buf, sizeof(buf),
302 &bytes_read, &is_fin); /* best effort */
303 assert(is_fin && bytes_read == 0);
305 qs->recv_fin_retired = 1;
306 ossl_quic_stream_map_update_state(ossl_quic_channel_get_qsm(srv->ch), qs);
313 int ossl_quic_tserver_write(QUIC_TSERVER *srv,
315 const unsigned char *buf,
317 size_t *bytes_written)
321 if (!ossl_quic_channel_is_active(srv->ch))
324 qs = ossl_quic_stream_map_get_by_id(ossl_quic_channel_get_qsm(srv->ch),
326 if (qs == NULL || !ossl_quic_stream_has_send_buffer(qs))
329 if (!ossl_quic_sstream_append(qs->sstream,
330 buf, buf_len, bytes_written))
333 if (*bytes_written > 0)
335 * We have appended at least one byte to the stream. Potentially mark
336 * the stream as active, depending on FC.
338 ossl_quic_stream_map_update_state(ossl_quic_channel_get_qsm(srv->ch), qs);
341 ossl_quic_tserver_tick(srv);
345 int ossl_quic_tserver_conclude(QUIC_TSERVER *srv, uint64_t stream_id)
349 if (!ossl_quic_channel_is_active(srv->ch))
352 qs = ossl_quic_stream_map_get_by_id(ossl_quic_channel_get_qsm(srv->ch),
354 if (qs == NULL || !ossl_quic_stream_has_send_buffer(qs))
357 if (!ossl_quic_sstream_get_final_size(qs->sstream, NULL)) {
358 ossl_quic_sstream_fin(qs->sstream);
359 ossl_quic_stream_map_update_state(ossl_quic_channel_get_qsm(srv->ch), qs);
362 ossl_quic_tserver_tick(srv);
366 int ossl_quic_tserver_stream_new(QUIC_TSERVER *srv,
372 if (!ossl_quic_channel_is_active(srv->ch))
375 if ((qs = ossl_quic_channel_new_stream_local(srv->ch, is_uni)) == NULL)
382 BIO *ossl_quic_tserver_get0_rbio(QUIC_TSERVER *srv)
384 return srv->args.net_rbio;
387 int ossl_quic_tserver_stream_has_peer_stop_sending(QUIC_TSERVER *srv,
389 uint64_t *app_error_code)
393 qs = ossl_quic_stream_map_get_by_id(ossl_quic_channel_get_qsm(srv->ch),
398 if (qs->peer_stop_sending && app_error_code != NULL)
399 *app_error_code = qs->peer_stop_sending_aec;
401 return qs->peer_stop_sending;
404 int ossl_quic_tserver_stream_has_peer_reset_stream(QUIC_TSERVER *srv,
406 uint64_t *app_error_code)
410 qs = ossl_quic_stream_map_get_by_id(ossl_quic_channel_get_qsm(srv->ch),
415 if (ossl_quic_stream_recv_is_reset(qs) && app_error_code != NULL)
416 *app_error_code = qs->peer_reset_stream_aec;
418 return ossl_quic_stream_recv_is_reset(qs);
421 int ossl_quic_tserver_set_new_local_cid(QUIC_TSERVER *srv,
422 const QUIC_CONN_ID *conn_id)
424 /* Replace existing local connection ID in the QUIC_CHANNEL */
425 return ossl_quic_channel_replace_local_cid(srv->ch, conn_id);
428 uint64_t ossl_quic_tserver_pop_incoming_stream(QUIC_TSERVER *srv)
430 QUIC_STREAM_MAP *qsm = ossl_quic_channel_get_qsm(srv->ch);
431 QUIC_STREAM *qs = ossl_quic_stream_map_peek_accept_queue(qsm);
436 ossl_quic_stream_map_remove_from_accept_queue(qsm, qs, ossl_time_zero());
441 int ossl_quic_tserver_is_stream_totally_acked(QUIC_TSERVER *srv,
446 qs = ossl_quic_stream_map_get_by_id(ossl_quic_channel_get_qsm(srv->ch),
451 return ossl_quic_sstream_is_totally_acked(qs->sstream);
454 int ossl_quic_tserver_get_net_read_desired(QUIC_TSERVER *srv)
456 return ossl_quic_reactor_net_read_desired(
457 ossl_quic_channel_get_reactor(srv->ch));
460 int ossl_quic_tserver_get_net_write_desired(QUIC_TSERVER *srv)
462 return ossl_quic_reactor_net_write_desired(
463 ossl_quic_channel_get_reactor(srv->ch));
466 OSSL_TIME ossl_quic_tserver_get_deadline(QUIC_TSERVER *srv)
468 return ossl_quic_reactor_get_tick_deadline(
469 ossl_quic_channel_get_reactor(srv->ch));
472 int ossl_quic_tserver_shutdown(QUIC_TSERVER *srv)
474 ossl_quic_channel_local_close(srv->ch, 0);
476 /* TODO(QUIC): !SSL_SHUTDOWN_FLAG_NO_STREAM_FLUSH */
478 if (ossl_quic_channel_is_terminated(srv->ch))
481 ossl_quic_reactor_tick(ossl_quic_channel_get_reactor(srv->ch), 0);
483 return ossl_quic_channel_is_terminated(srv->ch);