2012-10-01 22:02:15 +04:00
|
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
2008-06-06 16:40:11 +04:00
|
|
|
#include "cert.h"
|
|
|
|
#include "secitem.h"
|
|
|
|
#include "ssl.h"
|
|
|
|
#include "sslimpl.h"
|
|
|
|
#include "sslproto.h"
|
|
|
|
#include "pk11func.h"
|
2013-04-12 03:46:53 +04:00
|
|
|
#include "ocsp.h"
|
2008-06-06 16:40:11 +04:00
|
|
|
|
|
|
|
/* NEED LOCKS IN HERE. */
|
|
|
|
CERTCertificate *
|
|
|
|
SSL_PeerCertificate(PRFileDesc *fd)
|
|
|
|
{
|
|
|
|
sslSocket *ss;
|
|
|
|
|
|
|
|
ss = ssl_FindSocket(fd);
|
|
|
|
if (!ss) {
|
|
|
|
SSL_DBG(("%d: SSL[%d]: bad socket in PeerCertificate",
|
|
|
|
SSL_GETPID(), fd));
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
if (ss->opt.useSecurity && ss->sec.peerCert) {
|
|
|
|
return CERT_DupCertificate(ss->sec.peerCert);
|
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* NEED LOCKS IN HERE. */
|
|
|
|
CERTCertificate *
|
|
|
|
SSL_LocalCertificate(PRFileDesc *fd)
|
|
|
|
{
|
|
|
|
sslSocket *ss;
|
|
|
|
|
|
|
|
ss = ssl_FindSocket(fd);
|
|
|
|
if (!ss) {
|
|
|
|
SSL_DBG(("%d: SSL[%d]: bad socket in PeerCertificate",
|
|
|
|
SSL_GETPID(), fd));
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
if (ss->opt.useSecurity) {
|
|
|
|
if (ss->sec.localCert) {
|
|
|
|
return CERT_DupCertificate(ss->sec.localCert);
|
|
|
|
}
|
|
|
|
if (ss->sec.ci.sid && ss->sec.ci.sid->localCert) {
|
|
|
|
return CERT_DupCertificate(ss->sec.ci.sid->localCert);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/* NEED LOCKS IN HERE. */
|
|
|
|
SECStatus
|
|
|
|
SSL_SecurityStatus(PRFileDesc *fd, int *op, char **cp, int *kp0, int *kp1,
|
|
|
|
char **ip, char **sp)
|
|
|
|
{
|
|
|
|
sslSocket *ss;
|
|
|
|
const char *cipherName;
|
|
|
|
PRBool isDes = PR_FALSE;
|
2010-08-04 10:36:53 +04:00
|
|
|
PRBool enoughFirstHsDone = PR_FALSE;
|
2008-06-06 16:40:11 +04:00
|
|
|
|
|
|
|
ss = ssl_FindSocket(fd);
|
|
|
|
if (!ss) {
|
|
|
|
SSL_DBG(("%d: SSL[%d]: bad socket in SecurityStatus",
|
|
|
|
SSL_GETPID(), fd));
|
|
|
|
return SECFailure;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (cp) *cp = 0;
|
|
|
|
if (kp0) *kp0 = 0;
|
|
|
|
if (kp1) *kp1 = 0;
|
|
|
|
if (ip) *ip = 0;
|
|
|
|
if (sp) *sp = 0;
|
|
|
|
if (op) {
|
|
|
|
*op = SSL_SECURITY_STATUS_OFF;
|
|
|
|
}
|
|
|
|
|
2010-08-04 10:36:53 +04:00
|
|
|
if (ss->firstHsDone) {
|
|
|
|
enoughFirstHsDone = PR_TRUE;
|
|
|
|
} else if (ss->version >= SSL_LIBRARY_VERSION_3_0 &&
|
|
|
|
ssl3_CanFalseStart(ss)) {
|
|
|
|
enoughFirstHsDone = PR_TRUE;
|
|
|
|
}
|
2008-06-06 16:40:11 +04:00
|
|
|
|
2010-08-04 10:36:53 +04:00
|
|
|
if (ss->opt.useSecurity && enoughFirstHsDone) {
|
2008-06-06 16:40:11 +04:00
|
|
|
if (ss->version < SSL_LIBRARY_VERSION_3_0) {
|
|
|
|
cipherName = ssl_cipherName[ss->sec.cipherType];
|
|
|
|
} else {
|
|
|
|
cipherName = ssl3_cipherName[ss->sec.cipherType];
|
|
|
|
}
|
|
|
|
PORT_Assert(cipherName);
|
|
|
|
if (cipherName) {
|
|
|
|
if (PORT_Strstr(cipherName, "DES")) isDes = PR_TRUE;
|
|
|
|
|
|
|
|
if (cp) {
|
|
|
|
*cp = PORT_Strdup(cipherName);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (kp0) {
|
|
|
|
*kp0 = ss->sec.keyBits;
|
|
|
|
if (isDes) *kp0 = (*kp0 * 7) / 8;
|
|
|
|
}
|
|
|
|
if (kp1) {
|
|
|
|
*kp1 = ss->sec.secretKeyBits;
|
|
|
|
if (isDes) *kp1 = (*kp1 * 7) / 8;
|
|
|
|
}
|
|
|
|
if (op) {
|
|
|
|
if (ss->sec.keyBits == 0) {
|
|
|
|
*op = SSL_SECURITY_STATUS_OFF;
|
|
|
|
} else if (ss->sec.secretKeyBits < 90) {
|
|
|
|
*op = SSL_SECURITY_STATUS_ON_LOW;
|
|
|
|
|
|
|
|
} else {
|
|
|
|
*op = SSL_SECURITY_STATUS_ON_HIGH;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (ip || sp) {
|
|
|
|
CERTCertificate *cert;
|
|
|
|
|
|
|
|
cert = ss->sec.peerCert;
|
|
|
|
if (cert) {
|
|
|
|
if (ip) {
|
|
|
|
*ip = CERT_NameToAscii(&cert->issuer);
|
|
|
|
}
|
|
|
|
if (sp) {
|
|
|
|
*sp = CERT_NameToAscii(&cert->subject);
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
if (ip) {
|
|
|
|
*ip = PORT_Strdup("no certificate");
|
|
|
|
}
|
|
|
|
if (sp) {
|
|
|
|
*sp = PORT_Strdup("no certificate");
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return SECSuccess;
|
|
|
|
}
|
|
|
|
|
|
|
|
/************************************************************************/
|
|
|
|
|
|
|
|
/* NEED LOCKS IN HERE. */
|
|
|
|
SECStatus
|
|
|
|
SSL_AuthCertificateHook(PRFileDesc *s, SSLAuthCertificate func, void *arg)
|
|
|
|
{
|
|
|
|
sslSocket *ss;
|
|
|
|
|
|
|
|
ss = ssl_FindSocket(s);
|
|
|
|
if (!ss) {
|
|
|
|
SSL_DBG(("%d: SSL[%d]: bad socket in AuthCertificateHook",
|
|
|
|
SSL_GETPID(), s));
|
|
|
|
return SECFailure;
|
|
|
|
}
|
|
|
|
|
|
|
|
ss->authCertificate = func;
|
|
|
|
ss->authCertificateArg = arg;
|
|
|
|
|
|
|
|
return SECSuccess;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* NEED LOCKS IN HERE. */
|
|
|
|
SECStatus
|
|
|
|
SSL_GetClientAuthDataHook(PRFileDesc *s, SSLGetClientAuthData func,
|
|
|
|
void *arg)
|
|
|
|
{
|
|
|
|
sslSocket *ss;
|
|
|
|
|
|
|
|
ss = ssl_FindSocket(s);
|
|
|
|
if (!ss) {
|
|
|
|
SSL_DBG(("%d: SSL[%d]: bad socket in GetClientAuthDataHook",
|
|
|
|
SSL_GETPID(), s));
|
|
|
|
return SECFailure;
|
|
|
|
}
|
|
|
|
|
|
|
|
ss->getClientAuthData = func;
|
|
|
|
ss->getClientAuthDataArg = arg;
|
|
|
|
return SECSuccess;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* NEED LOCKS IN HERE. */
|
|
|
|
SECStatus
|
|
|
|
SSL_SetPKCS11PinArg(PRFileDesc *s, void *arg)
|
|
|
|
{
|
|
|
|
sslSocket *ss;
|
|
|
|
|
|
|
|
ss = ssl_FindSocket(s);
|
|
|
|
if (!ss) {
|
|
|
|
SSL_DBG(("%d: SSL[%d]: bad socket in GetClientAuthDataHook",
|
|
|
|
SSL_GETPID(), s));
|
|
|
|
return SECFailure;
|
|
|
|
}
|
|
|
|
|
|
|
|
ss->pkcs11PinArg = arg;
|
|
|
|
return SECSuccess;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/* This is the "default" authCert callback function. It is called when a
|
|
|
|
* certificate message is received from the peer and the local application
|
|
|
|
* has not registered an authCert callback function.
|
|
|
|
*/
|
|
|
|
SECStatus
|
|
|
|
SSL_AuthCertificate(void *arg, PRFileDesc *fd, PRBool checkSig, PRBool isServer)
|
|
|
|
{
|
|
|
|
SECStatus rv;
|
|
|
|
CERTCertDBHandle * handle;
|
|
|
|
sslSocket * ss;
|
|
|
|
SECCertUsage certUsage;
|
|
|
|
const char * hostname = NULL;
|
2013-04-12 03:46:53 +04:00
|
|
|
PRTime now = PR_Now();
|
|
|
|
SECItemArray *certStatusArray;
|
|
|
|
unsigned int i;
|
2008-06-06 16:40:11 +04:00
|
|
|
|
|
|
|
ss = ssl_FindSocket(fd);
|
|
|
|
PORT_Assert(ss != NULL);
|
|
|
|
if (!ss) {
|
|
|
|
return SECFailure;
|
|
|
|
}
|
|
|
|
|
|
|
|
handle = (CERTCertDBHandle *)arg;
|
2013-04-12 03:46:53 +04:00
|
|
|
certStatusArray = &ss->sec.ci.sid->peerCertStatus;
|
|
|
|
|
|
|
|
for (i = 0; i < certStatusArray->len; ++i) {
|
|
|
|
CERT_CacheOCSPResponseFromSideChannel(handle, ss->sec.peerCert,
|
|
|
|
now, &certStatusArray->items[i], arg);
|
|
|
|
}
|
2008-06-06 16:40:11 +04:00
|
|
|
|
|
|
|
/* this may seem backwards, but isn't. */
|
|
|
|
certUsage = isServer ? certUsageSSLClient : certUsageSSLServer;
|
|
|
|
|
2013-04-12 03:46:53 +04:00
|
|
|
rv = CERT_VerifyCert(handle, ss->sec.peerCert, checkSig, certUsage,
|
|
|
|
now, ss->pkcs11PinArg, NULL);
|
2008-06-06 16:40:11 +04:00
|
|
|
|
|
|
|
if ( rv != SECSuccess || isServer )
|
|
|
|
return rv;
|
|
|
|
|
|
|
|
/* cert is OK. This is the client side of an SSL connection.
|
|
|
|
* Now check the name field in the cert against the desired hostname.
|
|
|
|
* NB: This is our only defense against Man-In-The-Middle (MITM) attacks!
|
|
|
|
*/
|
|
|
|
hostname = ss->url;
|
|
|
|
if (hostname && hostname[0])
|
|
|
|
rv = CERT_VerifyCertName(ss->sec.peerCert, hostname);
|
|
|
|
else
|
|
|
|
rv = SECFailure;
|
|
|
|
if (rv != SECSuccess)
|
|
|
|
PORT_SetError(SSL_ERROR_BAD_CERT_DOMAIN);
|
|
|
|
|
|
|
|
return rv;
|
|
|
|
}
|