Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: esp8266/Arduino
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: master
Choose a base ref
...
head repository: diegopx/Arduino
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: master
Choose a head ref
Checking mergeability… Don’t worry, you can still create the pull request.
  • 2 commits
  • 4 files changed
  • 1 contributor

Commits on Mar 3, 2017

  1. Update WiFiClientSecure to use latest version of axTLS. 

    The ssl.h header was updated to follow a newer axtls-8266 version,
which supports querying for availability.

An additional ax_port_pending() function has been added to support
this new availability querying capability. It returns the number of
bytes available in the internal ClientContext without decrypting.
This is similar to what SSL_pending() would do, but since it does not
decrypt first, its result may not be exactly the number of readable
bytes because of padding. For many operations where only the presence
of new information is interesting, this is enough.

Compared to using the currently present available() method, counting
the bytes prior to decrypting does not require touching the axTLS buffer,
which is shared between receiver and transmitter. So, using such a method
reduces the chances of read/write collisions.

As a side effect of the update, the ssl_client_new() call was modified,
since the API has changed to use an SSL_EXTENSIONS structure instead of
a direct string for the hostName.
    @diegopx
    diegopx committed Mar 3, 2017
    Configuration menu
    Copy the full SHA
    43ab7dd View commit details
    Browse the repository at this point in the history

  2. Avoid reading from invalid buffer in WiFiClientSecure. 

    Building on top of the previous axTLS update, the WiFiClientSecure
interface has been modified to avoid invalid memory access, which
could lead to any sort of application bugs (due to garbage input).

Previously, the WiFiClientSecure write() operation would directly
write to the SSL socket, disregarding the context of the object.
In particular, were there a read operation underway (i.e. a read
operation that had not finished consuming the entire axTLS's shared
receiver/transmitter buffer), the write() call would simply reuse
such buffer for its own encryption purposes, leaving any further
attempts to continue reading the buffer to fail because the read
data would be gone.

The first step to mitigate this bug risk is to make the
WiFiClientSecure explicitly state its half-duplex contract. So,
either writes to the socket should wait until any read operations are
finished, or the client should explicitly mark the read pointer as
invalid as soon as it starts writing.

In this patch, write() fails with a new SSL_ERROR_READ_LOCK error
code if there are unread bytes in the buffer, as a signal to the
calling code to try later when the buffer has been completely read.
This is the better alternative, since it is much less destructive
('write block' instead of lost data) and throwing away the data
is trivial to implement (just read until there's nothing available).
Indeed, a discardCache() method has been added to do just that.
Using discardCache() is more explicit so the user understands
the implications of their actions.
Besides, any code calling write() should already be dealing with
error values such as from connection errors.

The biggest offender in misusing the buffer is the connected()
call, which calls available(), which itself reads the whole
ssl input into axTLS's buffer. So, just checking that the client
is connected may imply any subsequent writes will fail. Instead,
a new wantRead() method has been added, which indicates whether
there's any ssl input left without reading it into axTLS's buffer,
i.e. without blocking. This heavily reduces buffer access collisions.

In summary, code that currently works with WiFiClientSecure will
continue working, possibly with more write errors if they were
using the client unsafely. Getting the previous behaviour (but
safely) just requires calling discardCache() before writing.
Use wantRead() instead of available() != 0. Unsafe situations
have been mitigated by not reading when it's not needed.
When you read, read until there's nothing left in the buffer,
otherwise explicitly discard the rest.

Other alternative solutions may be explored, such as expanding
WiFiClientSecure to be full duplex, but that might require much
more memory.
    @diegopx
    diegopx committed Mar 3, 2017
    Configuration menu
    Copy the full SHA
    252e774 View commit details
    Browse the repository at this point in the history
Loading