Schannel: retain extra data after renegotiation is requested

I realized this is a potential scenario where we will have leftover data, but it wasn't covered. Change-Id: Ibaf1015bf2aee120e4a4d98888925b88ecb6ddfd Reviewed-by: Jesus Fernandez <jsfdez@gmail.com> Reviewed-by: Timur Pocheptsov <timur.pocheptsov@qt.io>
2019-09-05 09:40:09 +02:00 · 2019-09-05 09:40:09 +02:00 · e21fa577dd
commit e21fa577dd
parent 2656d3e923
1 changed files with 12 additions and 0 deletions
--- a/src/network/ssl/qsslsocket_schannel.cpp
+++ b/src/network/ssl/qsslsocket_schannel.cpp
@ -1360,6 +1360,18 @@ void QSslSocketBackendPrivate::transmit()
 #endif
                schannelState = SchannelState::Renegotiate;
                renegotiating = true;
+
+                if (dataBuffer[3].BufferType == SECBUFFER_EXTRA) {
+                    // https://docs.microsoft.com/en-us/windows/desktop/secauthn/extra-buffers-returned-by-schannel
+                    // dataBuffer[3].cbBuffer indicates the amount of bytes _NOT_ processed,
+                    // the rest need to be stored.
+#ifdef QSSLSOCKET_DEBUG
+                    qCDebug(lcSsl) << "We've got excess data, moving it to the intermediate buffer:"
+                                   << dataBuffer[3].cbBuffer << "bytes";
+#endif
+                    intermediateBuffer = ciphertext.right(int(dataBuffer[3].cbBuffer));
+                }
+
                // We need to call 'continueHandshake' or else there's no guarantee it ever gets called
                continueHandshake();
                break;