Move the PQ-experiment signal to SSL_CTX.

agl · CQ bot account: commit-bot@chromium.org · commit 9f5c419b9fbb · 2019-07-19T23:11:44.000Z
In the case where I need it, it's easier for it to be on the context rather than on each connection. Change-Id: I5da2929ae6825d6b3151ccabb813cb8ad16416a1 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/36746 Commit-Queue: Adam Langley <agl@google.com> Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: David Benjamin <davidben@google.com>
diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h
@@ -3044,7 +3044,7 @@ OPENSSL_EXPORT const char *SSL_get_psk_identity(const SSL *ssl);
 // signaling bit. These functions should not be used without explicit permission
 // from BoringSSL-team.
 
-OPENSSL_EXPORT int SSL_enable_pq_experiment_signal(SSL *ssl);
+OPENSSL_EXPORT void SSL_CTX_enable_pq_experiment_signal(SSL_CTX *ctx);
 OPENSSL_EXPORT int SSL_pq_experiment_signal_seen(const SSL *ssl);
 
 
diff --git a/ssl/internal.h b/ssl/internal.h
@@ -2588,11 +2588,6 @@ struct SSL_CONFIG {
   // jdk11_workaround is whether to disable TLS 1.3 for JDK 11 clients, as a
   // workaround for https://bugs.openjdk.java.net/browse/JDK-8211806.
   bool jdk11_workaround : 1;
-
-  // pq_experiment_signal indicates that an empty extension should be sent
-  // (for clients) or echoed (for servers) to indicate participation in an
-  // experiment of post-quantum key exchanges.
-  bool pq_experiment_signal : 1;
 };
 
 // From RFC 8446, used in determining PSK modes.
@@ -3193,6 +3188,11 @@ struct ssl_ctx_st {
   // If enable_early_data is true, early data can be sent and accepted.
   bool enable_early_data : 1;
 
+  // pq_experiment_signal indicates that an empty extension should be sent
+  // (for clients) or echoed (for servers) to indicate participation in an
+  // experiment of post-quantum key exchanges.
+  bool pq_experiment_signal : 1;
+
  private:
   ~ssl_ctx_st();
   friend void SSL_CTX_free(SSL_CTX *);
diff --git a/ssl/ssl_lib.cc b/ssl/ssl_lib.cc
@@ -569,7 +569,8 @@ ssl_ctx_st::ssl_ctx_st(const SSL_METHOD *ssl_method)
       false_start_allowed_without_alpn(false),
       ignore_tls13_downgrade(false),
       handoff(false),
-      enable_early_data(false) {
+      enable_early_data(false),
+      pq_experiment_signal(false) {
   CRYPTO_MUTEX_init(&lock);
   CRYPTO_new_ex_data(&ex_data);
 }
@@ -734,8 +735,7 @@ SSL_CONFIG::SSL_CONFIG(SSL *ssl_arg)
       handoff(false),
       shed_handshake_config(false),
       ignore_tls13_downgrade(false),
-      jdk11_workaround(false),
-      pq_experiment_signal(false) {
+      jdk11_workaround(false) {
   assert(ssl);
 }
 
@@ -1246,12 +1246,8 @@ int SSL_send_fatal_alert(SSL *ssl, uint8_t alert) {
   return ssl_send_alert_impl(ssl, SSL3_AL_FATAL, alert);
 }
 
-int SSL_enable_pq_experiment_signal(SSL *ssl) {
-  if (!ssl->config) {
-    return 0;
-  }
-  ssl->config->pq_experiment_signal = true;
-  return 1;
+void SSL_CTX_enable_pq_experiment_signal(SSL_CTX *ctx) {
+  ctx->pq_experiment_signal = true;
 }
 
 int SSL_pq_experiment_signal_seen(const SSL *ssl) {
diff --git a/ssl/t1_lib.cc b/ssl/t1_lib.cc
@@ -2894,7 +2894,7 @@ static bool cert_compression_add_serverhello(SSL_HANDSHAKE *hs, CBB *out) {
 
 static bool ext_pq_experiment_signal_add_clienthello(SSL_HANDSHAKE *hs,
                                                      CBB *out) {
-  if (hs->config->pq_experiment_signal &&
+  if (hs->ssl->ctx->pq_experiment_signal &&
       (!CBB_add_u16(out, TLSEXT_TYPE_pq_experiment_signal) ||
        !CBB_add_u16(out, 0))) {
     return false;
@@ -2910,7 +2910,7 @@ static bool ext_pq_experiment_signal_parse_serverhello(SSL_HANDSHAKE *hs,
     return true;
   }
 
-  if (!hs->config->pq_experiment_signal || CBS_len(contents) != 0) {
+  if (!hs->ssl->ctx->pq_experiment_signal || CBS_len(contents) != 0) {
     return false;
   }
 
@@ -2929,7 +2929,7 @@ static bool ext_pq_experiment_signal_parse_clienthello(SSL_HANDSHAKE *hs,
     return false;
   }
 
-  if (hs->ssl->config->pq_experiment_signal) {
+  if (hs->ssl->ctx->pq_experiment_signal) {
     hs->ssl->s3->pq_experiment_signal_seen = true;
   }
 
diff --git a/ssl/test/test_config.cc b/ssl/test/test_config.cc
@@ -1346,6 +1346,10 @@ bssl::UniquePtr<SSL_CTX> TestConfig::SetupCtx(SSL_CTX *old_ctx) const {
     SSL_CTX_set_options(ssl_ctx.get(), SSL_OP_CIPHER_SERVER_PREFERENCE);
   }
 
+  if (enable_pq_experiment_signal) {
+    SSL_CTX_enable_pq_experiment_signal(ssl_ctx.get());
+  }
+
   return ssl_ctx;
 }
 
@@ -1716,11 +1720,5 @@ bssl::UniquePtr<SSL> TestConfig::NewSSL(
     }
   }
 
-  if (enable_pq_experiment_signal &&
-      !SSL_enable_pq_experiment_signal(ssl.get())) {
-    fprintf(stderr, "SSL_enable_pq_experiment_signal failed.\n");
-    return nullptr;
-  }
-
   return ssl;
 }

Original file line number	Diff line number	Diff line change
`@@ -2894,7 +2894,7 @@ static bool cert_compression_add_serverhello(SSL_HANDSHAKE hs, CBB out) {`
`2894`	`2894`
`2895`	`2895`	`static bool ext_pq_experiment_signal_add_clienthello(SSL_HANDSHAKE *hs,`
`2896`	`2896`	`CBB *out) {`
`2897`		`- if (hs->config->pq_experiment_signal &&`
	`2897`	`+ if (hs->ssl->ctx->pq_experiment_signal &&`
`2898`	`2898`	`(!CBB_add_u16(out, TLSEXT_TYPE_pq_experiment_signal) \|\|`
`2899`	`2899`	`!CBB_add_u16(out, 0))) {`
`2900`	`2900`	`return false;`
`@@ -2910,7 +2910,7 @@ static bool ext_pq_experiment_signal_parse_serverhello(SSL_HANDSHAKE *hs,`
`2910`	`2910`	`return true;`
`2911`	`2911`	`}`
`2912`	`2912`
`2913`		`- if (!hs->config->pq_experiment_signal \|\| CBS_len(contents) != 0) {`
	`2913`	`+ if (!hs->ssl->ctx->pq_experiment_signal \|\| CBS_len(contents) != 0) {`
`2914`	`2914`	`return false;`
`2915`	`2915`	`}`
`2916`	`2916`
`@@ -2929,7 +2929,7 @@ static bool ext_pq_experiment_signal_parse_clienthello(SSL_HANDSHAKE *hs,`
`2929`	`2929`	`return false;`
`2930`	`2930`	`}`
`2931`	`2931`
`2932`		`- if (hs->ssl->config->pq_experiment_signal) {`
	`2932`	`+ if (hs->ssl->ctx->pq_experiment_signal) {`
`2933`	`2933`	`hs->ssl->s3->pq_experiment_signal_seen = true;`
`2934`	`2934`	`}`
`2935`	`2935`
Original file line number	Diff line number	Diff line change
`@@ -1346,6 +1346,10 @@ bssl::UniquePtr<SSL_CTX> TestConfig::SetupCtx(SSL_CTX *old_ctx) const {`
`1346`	`1346`	`SSL_CTX_set_options(ssl_ctx.get(), SSL_OP_CIPHER_SERVER_PREFERENCE);`
`1347`	`1347`	`}`
`1348`	`1348`
	`1349`	`+ if (enable_pq_experiment_signal) {`
	`1350`	`+ SSL_CTX_enable_pq_experiment_signal(ssl_ctx.get());`
	`1351`	`+ }`
	`1352`	`+`
`1349`	`1353`	`return ssl_ctx;`
`1350`	`1354`	`}`
`1351`	`1355`
`@@ -1716,11 +1720,5 @@ bssl::UniquePtr<SSL> TestConfig::NewSSL(`
`1716`	`1720`	`}`
`1717`	`1721`	`}`
`1718`	`1722`
`1719`		`- if (enable_pq_experiment_signal &&`
`1720`		`- !SSL_enable_pq_experiment_signal(ssl.get())) {`
`1721`		`- fprintf(stderr, "SSL_enable_pq_experiment_signal failed.\n");`
`1722`		`- return nullptr;`
`1723`		`- }`
`1724`		`-`
`1725`	`1723`	`return ssl;`
`1726`	`1724`	`}`