Skip to content
This repository has been archived by the owner on Sep 19, 2024. It is now read-only.

Handle TLS control messages in case of kTLS (#170) #190

Merged
merged 2 commits into from
Mar 22, 2024
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 33 additions & 5 deletions socket.c
Original file line number Diff line number Diff line change
Expand Up @@ -126,6 +126,9 @@ struct camblet_socket
camblet_recvmsg_t *recvmsg;

tcp_connection_context *conn_ctx;

camblet_sendmsg_t *br_low_sendmsg;
camblet_recvmsg_t *br_low_recvmsg;
};

static int get_read_buffer_capacity(camblet_socket *s);
Expand Down Expand Up @@ -318,7 +321,7 @@ static void camblet_socket_free(camblet_socket *s)
proxywasm_unlock(s->p);
}

if (s->alpn && !s->ktls_sendmsg && !s->opa_socket_ctx.passthrough)
if (s->alpn && !s->opa_socket_ctx.passthrough)
{
// This call runs the SSL closure protocol (sending a close_notify, receiving the response close_notify).
if (br_sslio_close(&s->ioc) != BR_ERR_OK)
Expand Down Expand Up @@ -529,6 +532,12 @@ static int ensure_tls_handshake(camblet_socket *s, struct msghdr *msg)
br_ssl_client_reset(s->cc, s->hostname, false);
}

// Initialize the low_read and low_write functions
// with tcp_sendmsg and recvmsg. These will be used
// by BearSSL to read and write data to socket.
s->br_low_recvmsg = plain_recvmsg;
s->br_low_sendmsg = plain_sendmsg;

ret = br_sslio_flush(&s->ioc);
if (ret == 0)
{
Expand Down Expand Up @@ -974,8 +983,26 @@ static int configure_ktls_sock(camblet_socket *s)

WRITE_ONCE(s->sock->sk_prot, ktls_prot);

s->sendmsg = ktls_sendmsg;
s->recvmsg = ktls_recvmsg;
if (ktls_available)
{
// By default, BearSSL does not support sending application data without encryption.
// To use kTLS, we need unencrypted data, but we also want to receive all the features (e.g., control messages).
// Since the first part of the SSL handshake occurs without encryption, BearSSL has a struct called clear.
// The clear struct is used for outgoing data, so it only includes encryption and plaintext functions.
// For the decryption part and during the handshake, it utilizes a flag called 'incrypt', which is set to 1 once the handshake reaches that stage.

// Since the handshake is complete, we can utilize the clear struct for outgoing data, and kTLS will handle encryption.
// Similarly, we can disable decryption by setting the 'incrypt' field to 0 for the same reason.

br_ssl_engine_context *ec = get_ssl_engine_context(s);
ec->out.vtable = &br_sslrec_out_clear_vtable;
ec->incrypt = 0;
s->br_low_recvmsg = ktls_recvmsg;
s->br_low_sendmsg = ktls_sendmsg;
}

s->sendmsg = bearssl_sendmsg;
s->recvmsg = bearssl_recvmsg;

trace_debug(s->conn_ctx, "kTLS configured", 0);

Expand Down Expand Up @@ -1462,7 +1489,7 @@ static command_answer *prepare_opa_input(const tcp_connection_context *conn_ctx,
static int br_low_read(void *ctx, unsigned char *buf, size_t len)
{
camblet_socket *s = (camblet_socket *)ctx;
int ret = plain_recvmsg(s, buf, len, 0);
int ret = s->br_low_recvmsg(s, buf, len, 0);
// BearSSL doesn't like 0 return value, but it's not an error
// so we return -1 instead and set sock_closed to true to
// indicate that the socket is closed without errors.
Expand All @@ -1479,7 +1506,8 @@ static int br_low_read(void *ctx, unsigned char *buf, size_t len)
*/
static int br_low_write(void *ctx, const unsigned char *buf, size_t len)
{
return plain_sendmsg((camblet_socket *)ctx, buf, len);
camblet_socket *s = (camblet_socket *)ctx;
return s->br_low_sendmsg(s, buf, len);
}

opa_socket_context enriched_socket_eval(const tcp_connection_context *conn_ctx, direction direction, struct sock *sk, int port)
Expand Down