update example client for rekey and sanity check on window update after read attempt

JacobBarthelmeh · JacobBarthelmeh · commit ceb41580d542 · 2025-05-13T16:01:01.000-06:00
diff --git a/examples/client/client.c b/examples/client/client.c
@@ -332,6 +332,9 @@ static THREAD_RET readInput(void* in)
         ret = wolfSSH_stream_send(args->ssh, buf, sz);
         wc_UnLockMutex(&args->lock);
         if (ret <= 0) {
+            if (ret == WS_REKEYING) {
+                continue;
+            }
             fprintf(stderr, "Couldn't send data\n");
             return THREAD_RET_SUCCESS;
         }
@@ -462,8 +465,16 @@ static THREAD_RET readPeer(void* in)
                         continue;
                     }
                     #endif /* WOLFSSH_AGENT */
+                    else if (ret == WS_REKEYING) {
+                        wolfSSH_worker(args->ssh, NULL);
+                        ret = 0;
+                    }
                 }
                 else if (ret != WS_EOF) {
+		    if (ret == 0) {
+                        bytes = 0;
+                        continue;
+		    }
                     err_sys("Stream read failed.");
                 }
             }
diff --git a/src/ssh.c b/src/ssh.c
@@ -1103,6 +1103,11 @@ int wolfSSH_stream_read(WOLFSSH* ssh, byte* buf, word32 bufSz)
         return WS_ERROR;
     }
 
+    if (ssh->isKeying) {
+        ssh->error = WS_REKEYING;
+        return WS_FATAL_ERROR;
+    }
+
     inputBuffer = &ssh->channelList->inputBuffer;
     ssh->error = WS_SUCCESS;
 
@@ -1132,7 +1137,7 @@ int wolfSSH_stream_read(WOLFSSH* ssh, byte* buf, word32 bufSz)
     }
 
     /* update internal input buffer based on data read */
-    if (ret == WS_SUCCESS) {
+    if (ret == WS_SUCCESS && !ssh->isKeying) {
         int n;
 
         n = min(bufSz, inputBuffer->length - inputBuffer->idx);
@@ -2778,6 +2783,11 @@ int wolfSSH_ChannelRead(WOLFSSH_CHANNEL* channel, byte* buf, word32 bufSz)
     if (channel == NULL || buf == NULL || bufSz == 0)
         return WS_BAD_ARGUMENT;
 
+    if (channel->ssh->isKeying) {
+        channel->ssh->error = WS_REKEYING;
+        return WS_REKEYING;
+    }
+
     bufSz = _ChannelRead(channel, buf, bufSz);
 
     WLOG(WS_LOG_DEBUG, "Leaving wolfSSH_ChannelRead(), bytesRxd = %d",

Original file line number	Diff line number	Diff line change
`@@ -332,6 +332,9 @@ static THREAD_RET readInput(void* in)`
`332`	`332`	`ret = wolfSSH_stream_send(args->ssh, buf, sz);`
`333`	`333`	`wc_UnLockMutex(&args->lock);`
`334`	`334`	`if (ret <= 0) {`
	`335`	`+ if (ret == WS_REKEYING) {`
	`336`	`+ continue;`
	`337`	`+ }`
`335`	`338`	`fprintf(stderr, "Couldn't send data\n");`
`336`	`339`	`return THREAD_RET_SUCCESS;`
`337`	`340`	`}`
`@@ -462,8 +465,16 @@ static THREAD_RET readPeer(void* in)`
`462`	`465`	`continue;`
`463`	`466`	`}`
`464`	`467`	`#endif /* WOLFSSH_AGENT */`
	`468`	`+ else if (ret == WS_REKEYING) {`
	`469`	`+ wolfSSH_worker(args->ssh, NULL);`
	`470`	`+ ret = 0;`
	`471`	`+ }`
`465`	`472`	`}`
`466`	`473`	`else if (ret != WS_EOF) {`
	`474`	`+ if (ret == 0) {`
	`475`	`+ bytes = 0;`
	`476`	`+ continue;`
	`477`	`+ }`
`467`	`478`	`err_sys("Stream read failed.");`
`468`	`479`	`}`
`469`	`480`	`}`