commit 55e9e2aa6b60dabaa5d461742cb73b1fff74324c
author Hanno Becker <hanno.becker@arm.com> Tue Aug 21 16:07:55 2018 +0100
committer Hanno Becker <hanno.becker@arm.com> Tue Aug 21 16:24:30 2018 +0100
tree 10be25bba8b4a2023205739080f675309a6de895
parent e605b196312edf5e20538386d7686d47eec13ec1

Free future buffers if next handshake messages can't be reassembled

If the next expected handshake message can't be reassembled because
buffered future messages have already used up too much of the available
space for buffering, free those future message buffers in order to
make space for the reassembly, starting with the handshake message
that's farthest in the future.

library/ssl_tls.c

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 5ab172d..d0d5d72 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -4522,6 +4522,8 @@
                 if( reassembly_buf_sz > ( MBEDTLS_SSL_DTLS_MAX_BUFFERING -
                                           hs->buffering.total_bytes_buffered ) )
                 {
+                    int offset;
+
                     if( recv_msg_seq_offset > 0 )
                     {
                         /* If we can't buffer a future message because
@@ -4532,13 +4534,34 @@
                         goto exit;
                     }
 
-                    /* TODO: Remove future messages in the attempt to make
-                     *       space for the current one. */
-                    MBEDTLS_SSL_DEBUG_MSG( 2, ( "Reassembly of next message of size %u would exceed the compile-time limit %u (already %u bytes buffered) -- fail\n",
+                    /* We don't have enough space to buffer the next expected
+                     * handshake message. Remove buffers used for future msgs
+                     * to gain space, starting with the most distant one. */
+                    for( offset = MBEDTLS_SSL_MAX_BUFFERED_HS - 1;
+                         offset >= 0; offset-- )
+                    {
+                        MBEDTLS_SSL_DEBUG_MSG( 2, ( "Free buffering slot %d to make space for reassembly of next handshake message",
+                                                    offset ) );
+
+                        ssl_buffering_free_slot( ssl, offset );
+
+                        /* Check if we have enough space available now. */
+                        if( reassembly_buf_sz <=
+                              ( MBEDTLS_SSL_DTLS_MAX_BUFFERING -
+                                hs->buffering.total_bytes_buffered ) )
+                        {
+                            break;
+                        }
+                    }
+
+                    if( offset == -1 )
+                    {
+                        MBEDTLS_SSL_DEBUG_MSG( 2, ( "Reassembly of next message of size %u would exceed the compile-time limit %u (already %u bytes buffered) -- fail\n",
                              (unsigned) msg_len, MBEDTLS_SSL_DTLS_MAX_BUFFERING,
                              (unsigned) hs->buffering.total_bytes_buffered ) );
-                    ret = MBEDTLS_ERR_SSL_ALLOC_FAILED;
-                    goto exit;
+                        ret = MBEDTLS_ERR_SSL_BUFFER_TOO_SMALL;
+                        goto exit;
+                    }
                 }
 
                 MBEDTLS_SSL_DEBUG_MSG( 2, ( "initialize reassembly, total length = %d",