Home Explore Help
Sign In
SMusatov
/
ydb
mirror of https://github.com/ydb-platform/ydb.git
1
0
Fork 0
Files
Tree: c1baa486d9
Branches Tags
ydb
/
contrib
/
restricted
/
aws
/
s2n
/
tls
/
s2n_client_finished.c

s2n_client_finished.c 3.7 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 
  1. /*
    2. 

  2.  * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
    3. 

  3.  *
    4. 

  4.  * Licensed under the Apache License, Version 2.0 (the "License").
    5. 

  5.  * You may not use this file except in compliance with the License.
    6. 

  6.  * A copy of the License is located at
    7. 

  7.  *
    8. 

  8.  *  http://aws.amazon.com/apache2.0
    9. 

  9.  *
    10. 

  10.  * or in the "license" file accompanying this file. This file is distributed
    11. 

  11.  * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
    12. 

  12.  * express or implied. See the License for the specific language governing
    13. 

  13.  * permissions and limitations under the License.
    14. 

  14.  */
    15. 

  15. 

  16. #include <stdint.h>
    17. 

  17. 

  18. #include "error/s2n_errno.h"
    19. 

  19. #include "stuffer/s2n_stuffer.h"
    20. 

  20. #include "tls/s2n_connection.h"
    21. 

  21. #include "tls/s2n_tls.h"
    22. 

  22. #include "tls/s2n_tls13_handshake.h"
    23. 

  23. #include "utils/s2n_safety.h"
    24. 

  24. 

  25. S2N_RESULT s2n_finished_recv(struct s2n_connection *conn, uint8_t *our_version);
    26. 

  26. S2N_RESULT s2n_finished_send(struct s2n_connection *conn, uint8_t *our_version);
    27. 

  27. 

  28. int s2n_client_finished_recv(struct s2n_connection *conn)
    29. 

  29. {
    30. 

  30.     POSIX_ENSURE_REF(conn);
    31. 

  31. 

  32.     POSIX_GUARD(s2n_prf_client_finished(conn));
    33. 

  33.     uint8_t *verify_data = conn->handshake.client_finished;
    34. 

  34.     POSIX_GUARD_RESULT(s2n_finished_recv(conn, verify_data));
    35. 

  35.     POSIX_ENSURE(!conn->handshake.rsa_failed, S2N_ERR_BAD_MESSAGE);
    36. 

  36.     return S2N_SUCCESS;
    37. 

  37. }
    38. 

  38. 

  39. int s2n_client_finished_send(struct s2n_connection *conn)
    40. 

  40. {
    41. 

  41.     POSIX_ENSURE_REF(conn);
    42. 

  42. 

  43.     POSIX_GUARD(s2n_prf_client_finished(conn));
    44. 

  44.     uint8_t *verify_data = conn->handshake.client_finished;
    45. 

  45.     POSIX_GUARD_RESULT(s2n_finished_send(conn, verify_data));
    46. 

  46.     POSIX_GUARD_RESULT(s2n_crypto_parameters_switch(conn));
    47. 

  47. 

  48.     return S2N_SUCCESS;
    49. 

  49. }
    50. 

  50. 

  51. int s2n_tls13_client_finished_recv(struct s2n_connection *conn)
    52. 

  52. {
    53. 

  53.     POSIX_ENSURE_EQ(conn->actual_protocol_version, S2N_TLS13);
    54. 

  54. 

  55.     uint8_t length = s2n_stuffer_data_available(&conn->handshake.io);
    56. 

  56.     S2N_ERROR_IF(length == 0, S2N_ERR_BAD_MESSAGE);
    57. 

  57. 

  58.     /* read finished mac from handshake */
    59. 

  59.     struct s2n_blob wire_finished_mac = { 0 };
    60. 

  60.     s2n_blob_init(&wire_finished_mac, s2n_stuffer_raw_read(&conn->handshake.io, length), length);
    61. 

  61. 

  62.     /* get tls13 keys */
    63. 

  63.     s2n_tls13_connection_keys(keys, conn);
    64. 

  64. 

  65.     /* get transcript hash */
    66. 

  66.     POSIX_ENSURE_REF(conn->handshake.hashes);
    67. 

  67.     struct s2n_hash_state *hash_state = &conn->handshake.hashes->hash_workspace;
    68. 

  68.     POSIX_GUARD_RESULT(s2n_handshake_copy_hash_state(conn, keys.hash_algorithm, hash_state));
    69. 

  69. 

  70.     struct s2n_blob finished_key = { 0 };
    71. 

  71.     POSIX_GUARD(s2n_blob_init(&finished_key, conn->handshake.client_finished, keys.size));
    72. 

  72. 

  73.     s2n_tls13_key_blob(client_finished_mac, keys.size);
    74. 

  74.     POSIX_GUARD(s2n_tls13_calculate_finished_mac(&keys, &finished_key, hash_state, &client_finished_mac));
    75. 

  75. 

  76.     POSIX_GUARD(s2n_tls13_mac_verify(&keys, &client_finished_mac, &wire_finished_mac));
    77. 

  77. 

  78.     return 0;
    79. 

  79. }
    80. 

  80. 

  81. int s2n_tls13_client_finished_send(struct s2n_connection *conn)
    82. 

  82. {
    83. 

  83.     POSIX_ENSURE_EQ(conn->actual_protocol_version, S2N_TLS13);
    84. 

  84. 

  85.     /* get tls13 keys */
    86. 

  86.     s2n_tls13_connection_keys(keys, conn);
    87. 

  87. 

  88.     /* get transcript hash */
    89. 

  89.     POSIX_ENSURE_REF(conn->handshake.hashes);
    90. 

  90.     struct s2n_hash_state *hash_state = &conn->handshake.hashes->hash_workspace;
    91. 

  91.     POSIX_GUARD_RESULT(s2n_handshake_copy_hash_state(conn, keys.hash_algorithm, hash_state));
    92. 

  92. 

  93.     /* look up finished secret key */
    94. 

  94.     struct s2n_blob finished_key = { 0 };
    95. 

  95.     POSIX_GUARD(s2n_blob_init(&finished_key, conn->handshake.client_finished, keys.size));
    96. 

  96. 

  97.     /* generate the hashed message authenticated code */
    98. 

  98.     s2n_stack_blob(client_finished_mac, keys.size, S2N_TLS13_SECRET_MAX_LEN);
    99. 

  99.     POSIX_GUARD(s2n_tls13_calculate_finished_mac(&keys, &finished_key, hash_state, &client_finished_mac));
    100. 

  100. 

  101.     /* write to handshake io */
    102. 

  102.     POSIX_GUARD(s2n_stuffer_write(&conn->handshake.io, &client_finished_mac));
    103. 

  103. 

  104.     return 0;
    105. 

  105. }
    106.