microsoft
/
ivy
зеркало из https://github.com/microsoft/ivy.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность

working on parsing partial TLS messages in quic14

This commit is contained in:
Ken McMillan 2018-09-26 18:40:27 -07:00
Родитель 3c914fb024
Коммит 477618e206
5 изменённых файлов: 58 добавлений и 40 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

58
doc/examples/quic/quic_connection.ivy
Просмотреть файл

@ -188,6 +188,7 @@ function establisted_1rtt_keys(E:ip.endpoint,C:cid) : bool
function crypto_data(E:ip.endpoint,C:cid,L:encryption_level) : stream_data
function crypto_data_end(E:ip.endpoint,C:cid,L:encryption_level) : stream_pos
function crypto_pos(E:ip.endpoint,C:cid,L:encryption_level) : stream_pos
function crypto_handler_pos(E:ip.endpoint,C:cid,L:encryption_level) : stream_pos
function crypto_length(E:ip.endpoint,C:cid,L:encryption_level) : stream_pos
function stream_app_data(E:ip.endpoint,C:cid,S:stream_id) : stream_data
function stream_app_data_end(E:ip.endpoint,C:cid,S:stream_id) : stream_pos
@ -236,6 +237,7 @@ after init {
cid_new_name(C) := false;
conn_enc_level(E,C) := encryption_level.initial;
establisted_1rtt_keys(E:ip.endpoint,C:cid) := false;
crypto_handler_pos(E,C,L) := 0;
}
# Ghost events
@ -342,9 +344,18 @@ after set_encryption_level {
# connection's initial transport parameters and is required.
#
before tls_send_event(src:ip.endpoint, dst:ip.endpoint, scid:cid, dcid:cid, data : stream_data) {
before tls_send_event(src:ip.endpoint, dst:ip.endpoint, scid:cid, dcid:cid, data : stream_data, e:encryption_level) {
var jdx := data.begin;
while jdx < data.end {
crypto_data(src,scid,e) :=
crypto_data(src,scid,e).append(data.value(jdx)); # [4]
jdx := jdx.next
}
crypto_data_end(src,scid,e) := crypto_data(src,scid,e).end;
# require conn_open(src,dcid); # [3]
var hs := tls.handshake_parser.deserialize(data); # [1]
var hs : tls.handshakes;
var hs,crypto_handler_pos(src,scid,e)
:= tls.handshake_parser.deserialize(data,crypto_handler_pos(src,scid,e)); # [1]
var idx := hs.begin;
while idx < hs.end {
var h := hs.value(idx);
@ -352,14 +363,6 @@ before tls_send_event(src:ip.endpoint, dst:ip.endpoint, scid:cid, dcid:cid, data
call handle_tls_handshake(src,dst,scid,dcid,h); #[2]
idx := idx.next
};
var jdx := data.begin;
var e := conn_enc_level(src,scid);
while jdx < data.end {
crypto_data(src,scid,e) :=
crypto_data(src,scid,e).append(data.value(jdx)); # [4]
crypto_data_end(src,scid,e) := crypto_data(src,scid,e).end;
jdx := jdx.next
}
}
#
@ -536,7 +539,7 @@ around packet_event(src:ip.endpoint,dst:ip.endpoint,pkt:quic_packet) {
require e = encryption_level.handshake -> pkt.hdr_long & pkt.hdr_type = 0x7d;
require e = encryption_level.other -> ~pkt.hdr_long;
var pnum := decode_packet_number(src,dst,pkt);
var pnum := decode_packet_number(src,scid,e,pkt.hdr_pkt_num);
require ~sent_pkt(src,scid,e,pnum); # [4]
@ -768,8 +771,7 @@ object frame = {
# - The connection id must have been seen at the source [9]
# and the connection between source and destination must not be initializing [10].
#
# - The connection encryption level at the source must be at least `handshake`, so
# that the 1rtt keys have been established [11].
# - The 1rtt keys have been established [11].
# Effects:
#
@ -794,7 +796,7 @@ object frame = {
action handle(f:frame.stream,src:ip.endpoint,dst:ip.endpoint,scid:cid,dcid:cid,e:encryption_level)
around handle {
require e = encryption_level.other & establisted_1rtt_keys(src,scid);
require e = encryption_level.other & establisted_1rtt_keys(src,scid); # [11]
require num_queued_frames(src,scid) > 0 -> e = queued_level(src,scid);
require ~conn_closed(src,scid); # [8]
@ -803,10 +805,8 @@ object frame = {
call show_offset_length(offset,f.length);
require f.data = stream_app_data(dst,dcid,f.id).segment(offset,offset+f.length);
require conn_enc_level(src,scid) ~= encryption_level.initial; # [11]
# var kind := get_stream_kind(f.id);
# require max_stream_set(dst,dcid,kind) -> f.id <= max_stream(dst,dcid,kind); # [6]
var kind := get_stream_kind(f.id);
require max_stream_set(dst,dcid,kind) -> f.id < max_stream(dst,dcid,kind); # [6]
# require ~stream_reset(dst,dcid,f.id); # [7]
# require conn_seen(src,scid); # [9]
# if ~stream_seen(dst,dcid,f.id) {
@ -937,19 +937,23 @@ object frame = { ...
# Requirements:
#
# - The connection must not have been closed by the source endpoint [2].
# - Max stream id frames may not occur in initial or handshake packets [3].
#
# Effects:
#
# - The maximum stream id is set [1].
#
# QUESTION: must the stream id's be less than the max or less than or equal?
# Picoquic seems to think less than, but the is not clear in the draft.
object frame = { ...
object max_stream_id = { ...
action handle(f:frame.max_stream_id,src:ip.endpoint,dst:ip.endpoint,scid:cid,dcid:cid,e:encryption_level)
around handle {
require e = encryption_level.other -> establisted_1rtt_keys(src,scid);
require e = encryption_level.other & establisted_1rtt_keys(src,scid); # [3]
require num_queued_frames(src,scid) > 0 -> e = queued_level(src,scid);
require cid_dst_to_src_set(src,scid) & cid_dst_to_src(src,scid) = dcid;
require ~conn_closed(src,scid); # [2]
var kind := get_stream_kind(f.id);
@ -1129,22 +1133,13 @@ object frame = { ...
# upper limit on the packet number if no acks have been received
# yet, but this seems questionable.
action decode_packet_number(src:ip.endpoint,dst:ip.endpoint,pkt:quic_packet) returns (pnum:pkt_num) = {
action decode_packet_number(src:ip.endpoint,scid:cid,e:encryption_level,pnum:pkt_num) returns (pnum:pkt_num) = {
var scid := pkt.hdr_cid;
if ~pkt.hdr_long {
scid := cid_dst_to_src(dst,pkt.dst_cid)
};
var e := conn_enc_level(src,scid);
var la := max_acked(src,scid,e);
pnum := pkt.hdr_pkt_num;
if conn_seen(src,scid) {
# This is a last number transmitted by the source on this connection.
# This is the last number transmitted by the source on this connection.
var last := last_pkt_num(src,scid,e);
@ -1199,9 +1194,6 @@ action handle_tls_handshake(src:ip.endpoint,dst:ip.endpoint,scid:cid,dcid:cid,hs
call map_cids(dst,dcid,scid);
call handle_tls_extensions(src,dst,scid,sh.extensions,false);
}
else if conn_enc_level(src,scid) = encryption_level.initial {
conn_enc_level(src,scid) := encryption_level.handshake
}
}
action map_cids(dst:ip.endpoint,dcid:cid,scid:cid) = {

2
doc/examples/quic/quic_infer.ivy
Просмотреть файл

@ -44,7 +44,7 @@ action infer_tls_events(src:ip.endpoint,dst:ip.endpoint,pkt:quic_packet) = {
while idx < pkt.payload.end {
var f := pkt.payload.value(idx);
if some(cf:frame.crypto) f *> cf {
call tls_send_event(src,dst,scid,dcid,cf.data)
call tls_send_event(src,dst,scid,dcid,cf.data,e)
};
if some(sf:frame.stream) f *> sf {
call app_send_event(src,dst,dcid,sf.id,sf.data)

21
doc/examples/quic/quic_server_test.ivy
Просмотреть файл

@ -29,7 +29,7 @@ action packet_event(src:ip.endpoint,dst:ip.endpoint,pkt:quic_packet) = {}
# This is a ghost action representing a TLS send event.
action tls_send_event(src:ip.endpoint,dst:ip.endpoint,scid:cid,dcid:cid,data:stream_data) = {}
action tls_send_event(src:ip.endpoint,dst:ip.endpoint,scid:cid,dcid:cid,data:stream_data,e:encryption_level) = {}
# create an UDP network instance to communicate to server with
# Note: because of packet coalescing, a single UDP datagram contains
@ -77,8 +77,10 @@ action role_to_endpoint(the_role : role) returns (ep:ip.endpoint) = {
module quic_endpoint(addr,the_role) = {
var ep : ip.endpoint
var tls_id : botan.id
var enc_level : encryption_level
after init {
ep := role_to_endpoint(the_role);
enc_level := encryption_level.initial;
}
}
@ -109,10 +111,12 @@ implement botan.lower.send(tls_id:botan.id,bytes:stream_data) {
if bytes.value(0) ~= 20 {
var msgs := bytes.segment(5,bytes.end);
if tls_id = client.tls_id {
call tls_send_event(client.ep, server.ep, the_cid, 0, msgs)
call tls_send_event(client.ep, server.ep, the_cid, 0, msgs, client.enc_level);
client.enc_level := client.enc_level.next;
};
if tls_id = server.tls_id {
call tls_send_event(server.ep, client.ep, the_cid, 0, msgs)
call tls_send_event(server.ep, client.ep, the_cid, 0, msgs, server.enc_level)'
server.enc_level := server.enc_level.next;
}
}
}
@ -274,6 +278,15 @@ before frame.rst_stream.handle(f:frame.rst_stream,src:ip.endpoint,dst:ip.endpoin
}
}
# Generate max_stream_id frames only for the client.
before frame.max_stream_id.handle(f:frame.max_stream_id,src:ip.endpoint,dst:ip.endpoint,scid:cid,dcid:cid) {
if _generating {
require src = client.ep & dst = server.ep;
require scid = the_cid;
}
}
# We allow generating application data at the client end only if the previous data have
# not been sent. This is to avoid building up a long queue. TEMPORARY: we only generate data
# for stream id 0x4.
@ -300,6 +313,8 @@ export packet_event
export app_send_event
export tls_recv_event
export frame.rst_stream.handle
export frame.max_stream_id.handle
attribute radix=16 # print in hex

7
doc/examples/quic/quic_types.ivy
Просмотреть файл

@ -77,4 +77,11 @@ object role = {
object encryption_level = {
type this = {initial,handshake,other}
action next(e:this) returns (e:this) {
if e = initial {
e := handshake;
} else {
e := other;
}
}
}

10
ivy/include/1.7/deserializer.ivy
Просмотреть файл

@ -11,19 +11,23 @@
# The type `bytes` must be an instance of `array` or `vector` for
# which the range type is interpreted as `bv[8]`.
#
# The action `deserialize` takes a data bufer and a staring posiiton in
# the buffer and returns a deserialized object of type `datatype` and
# the ending position of the object in the buffer.
module deserializer(bytes,datatype,deser) = {
module deserializer(index,bytes,datatype,deser) = {
action deserialize(x:bytes) returns (y:datatype)
action deserialize(x:bytes,pos:index) returns (y:datatype,pos:index)
implementation {
implement deserialize { <<<
std::vector<char> buf(x.size());
std::copy(x.begin(),x.end(),buf.begin());
std::copy(x.begin()+pos,x.end(),buf.begin());
`deser` ds(buf);
try {
__deser(ds,y);
pos += ds.pos;
}
// If deserialization failure, print out the packet for