commit 34a6541ad12a80d018b67466913c4a64770cc58f
author Frederik Deweerdt <fdeweerdt@fastly.com> Tue Feb 02 10:09:28 2021 -0800
committer Frederik Deweerdt <fdeweerdt@fastly.com> Tue Feb 02 10:09:28 2021 -0800
tree 9186e51a3dd296a880630fb59006a2769677f7b6
parent d5e32519516e13520ddeffa85da97d2398197df2

Introduce a `server_cipher_preference` knob to allow changing which end
drives the cipher selection

Before this change picotls was doing client preference order selection
unconditionally.

include/picotls.h

diff --git a/include/picotls.h b/include/picotls.h
index 0162fe8..b61a5e8 100644
--- a/include/picotls.h
+++ b/include/picotls.h
@@ -708,6 +708,10 @@
      */
     unsigned omit_end_of_early_data : 1;
     /**
+     * server cipher preference
+     */
+    unsigned server_cipher_preference : 1;
+    /**
      *
      */
     ptls_encrypt_ticket_t *encrypt_ticket;

lib/picotls.c

diff --git a/lib/picotls.c b/lib/picotls.c
index 9f84120..2428239 100644
--- a/lib/picotls.c
+++ b/lib/picotls.c
@@ -1560,19 +1560,34 @@
 }
 
 static int select_cipher(ptls_cipher_suite_t **selected, ptls_cipher_suite_t **candidates, const uint8_t *src,
-                         const uint8_t *const end)
+                         const uint8_t *const end, int server_preference)
 {
     int ret;
 
-    while (src != end) {
-        uint16_t id;
-        if ((ret = ptls_decode16(&id, &src, end)) != 0)
-            goto Exit;
+    if (server_preference) {
         ptls_cipher_suite_t **c = candidates;
         for (; *c != NULL; ++c) {
-            if ((*c)->id == id) {
-                *selected = *c;
-                return 0;
+            while (src != end) {
+                uint16_t id;
+                if ((ret = ptls_decode16(&id, &src, end)) != 0)
+                    goto Exit;
+                if ((*c)->id == id) {
+                    *selected = *c;
+                    return 0;
+                }
+            }
+        }
+    } else {
+        while (src != end) {
+            uint16_t id;
+            if ((ret = ptls_decode16(&id, &src, end)) != 0)
+                goto Exit;
+            ptls_cipher_suite_t **c = candidates;
+            for (; *c != NULL; ++c) {
+                if ((*c)->id == id) {
+                    *selected = *c;
+                    return 0;
+                }
             }
         }
     }
@@ -1720,7 +1735,7 @@
     });
     /* cipher-suite */
     ptls_decode_open_block(src, end, 2, {
-        if ((ret = select_cipher(selected_cipher, ctx->cipher_suites, src, end)) != 0)
+        if ((ret = select_cipher(selected_cipher, ctx->cipher_suites, src, end, ctx->server_cipher_preference)) != 0)
             goto Exit;
         src = end;
     });
@@ -3755,7 +3770,7 @@
     { /* select (or check) cipher-suite, create key_schedule */
         ptls_cipher_suite_t *cs;
         if ((ret = select_cipher(&cs, tls->ctx->cipher_suites, ch->cipher_suites.base,
-                                 ch->cipher_suites.base + ch->cipher_suites.len)) != 0)
+                                 ch->cipher_suites.base + ch->cipher_suites.len, tls->ctx->server_cipher_preference)) != 0)
             goto Exit;
         if (!is_second_flight) {
             tls->cipher_suite = cs;