Suite B support for DTLS 1.2
Check for Suite B support using method flags instead of version numbers: anything supporting TLS 1.2 cipher suites will also support Suite B. Return an error if an attempt to use DTLS 1.0 is made in Suite B mode. (cherry picked from commit 4544f0a69161a37ee3edce3cc1bc34c3678a4d64)
This commit is contained in:
Dr. Stephen Henson
parent
c391a74266
commit
d307176931
@ -668,7 +668,7 @@ int dtls1_accept(SSL *s)
|
|||||||
*/
|
*/
|
||||||
if (!s->s3->handshake_buffer)
|
if (!s->s3->handshake_buffer)
|
||||||
{
|
{
|
||||||
SSLerr(SSL_F_SSL3_ACCEPT,ERR_R_INTERNAL_ERROR);
|
SSLerr(SSL_F_DTLS1_ACCEPT,ERR_R_INTERNAL_ERROR);
|
||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
s->s3->flags |= TLS1_FLAGS_KEEP_HANDSHAKE;
|
s->s3->flags |= TLS1_FLAGS_KEEP_HANDSHAKE;
|
||||||
|
|||||||
@ -701,6 +701,11 @@ int ssl3_client_hello(SSL *s)
|
|||||||
/* If DTLS 1.2 disabled correct the version number */
|
/* If DTLS 1.2 disabled correct the version number */
|
||||||
if (options & SSL_OP_NO_DTLSv1_2)
|
if (options & SSL_OP_NO_DTLSv1_2)
|
||||||
{
|
{
|
||||||
|
if (tls1_suiteb(s))
|
||||||
|
{
|
||||||
|
SSLerr(SSL_F_SSL3_CLIENT_HELLO, SSL_R_ONLY_DTLS_1_2_ALLOWED_IN_SUITEB_MODE);
|
||||||
|
goto err;
|
||||||
|
}
|
||||||
/* Disabling all versions is silly: return an
|
/* Disabling all versions is silly: return an
|
||||||
* error.
|
* error.
|
||||||
*/
|
*/
|
||||||
@ -954,11 +959,23 @@ int ssl3_get_server_hello(SSL *s)
|
|||||||
if (hversion == DTLS1_2_VERSION
|
if (hversion == DTLS1_2_VERSION
|
||||||
&& !(options & SSL_OP_NO_DTLSv1_2))
|
&& !(options & SSL_OP_NO_DTLSv1_2))
|
||||||
s->method = DTLSv1_2_client_method();
|
s->method = DTLSv1_2_client_method();
|
||||||
|
else if (tls1_suiteb(s))
|
||||||
|
{
|
||||||
|
SSLerr(SSL_F_SSL3_GET_SERVER_HELLO, SSL_R_ONLY_DTLS_1_2_ALLOWED_IN_SUITEB_MODE);
|
||||||
|
s->version = hversion;
|
||||||
|
al = SSL_AD_PROTOCOL_VERSION;
|
||||||
|
goto f_err;
|
||||||
|
}
|
||||||
else if (hversion == DTLS1_VERSION
|
else if (hversion == DTLS1_VERSION
|
||||||
&& !(options & SSL_OP_NO_DTLSv1))
|
&& !(options & SSL_OP_NO_DTLSv1))
|
||||||
s->method = DTLSv1_client_method();
|
s->method = DTLSv1_client_method();
|
||||||
else
|
else
|
||||||
|
{
|
||||||
SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_WRONG_SSL_VERSION);
|
SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_WRONG_SSL_VERSION);
|
||||||
|
s->version = hversion;
|
||||||
|
al = SSL_AD_PROTOCOL_VERSION;
|
||||||
|
goto f_err;
|
||||||
|
}
|
||||||
s->version = s->client_version = s->method->version;
|
s->version = s->client_version = s->method->version;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@ -1097,6 +1097,13 @@ int ssl3_get_client_hello(SSL *s)
|
|||||||
s->version = DTLS1_2_VERSION;
|
s->version = DTLS1_2_VERSION;
|
||||||
s->method = DTLSv1_2_server_method();
|
s->method = DTLSv1_2_server_method();
|
||||||
}
|
}
|
||||||
|
else if (tls1_suiteb(s))
|
||||||
|
{
|
||||||
|
SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO, SSL_R_ONLY_DTLS_1_2_ALLOWED_IN_SUITEB_MODE);
|
||||||
|
s->version = s->client_version;
|
||||||
|
al = SSL_AD_PROTOCOL_VERSION;
|
||||||
|
goto f_err;
|
||||||
|
}
|
||||||
else if (s->client_version <= DTLS1_VERSION &&
|
else if (s->client_version <= DTLS1_VERSION &&
|
||||||
!(s->options & SSL_OP_NO_DTLSv1))
|
!(s->options & SSL_OP_NO_DTLSv1))
|
||||||
{
|
{
|
||||||
|
|||||||
@ -2818,6 +2818,7 @@ void ERR_load_SSL_strings(void);
|
|||||||
#define SSL_R_NULL_SSL_METHOD_PASSED 196
|
#define SSL_R_NULL_SSL_METHOD_PASSED 196
|
||||||
#define SSL_R_OLD_SESSION_CIPHER_NOT_RETURNED 197
|
#define SSL_R_OLD_SESSION_CIPHER_NOT_RETURNED 197
|
||||||
#define SSL_R_OLD_SESSION_COMPRESSION_ALGORITHM_NOT_RETURNED 344
|
#define SSL_R_OLD_SESSION_COMPRESSION_ALGORITHM_NOT_RETURNED 344
|
||||||
|
#define SSL_R_ONLY_DTLS_1_2_ALLOWED_IN_SUITEB_MODE 387
|
||||||
#define SSL_R_ONLY_TLS_1_2_ALLOWED_IN_SUITEB_MODE 379
|
#define SSL_R_ONLY_TLS_1_2_ALLOWED_IN_SUITEB_MODE 379
|
||||||
#define SSL_R_ONLY_TLS_ALLOWED_IN_FIPS_MODE 297
|
#define SSL_R_ONLY_TLS_ALLOWED_IN_FIPS_MODE 297
|
||||||
#define SSL_R_OPAQUE_PRF_INPUT_TOO_LONG 327
|
#define SSL_R_OPAQUE_PRF_INPUT_TOO_LONG 327
|
||||||
|
|||||||
@ -1377,11 +1377,15 @@ static int check_suiteb_cipher_list(const SSL_METHOD *meth, CERT *c,
|
|||||||
|
|
||||||
if (!suiteb_flags)
|
if (!suiteb_flags)
|
||||||
return 1;
|
return 1;
|
||||||
/* Check version */
|
/* Check version: if TLS 1.2 ciphers allowed we can use Suite B */
|
||||||
|
|
||||||
if (meth->version != TLS1_2_VERSION)
|
if (!(meth->ssl3_enc->enc_flags & SSL_ENC_FLAG_TLS1_2_CIPHERS))
|
||||||
{
|
{
|
||||||
SSLerr(SSL_F_CHECK_SUITEB_CIPHER_LIST,
|
if (meth->ssl3_enc->enc_flags & SSL_ENC_FLAG_DTLS)
|
||||||
|
SSLerr(SSL_F_CHECK_SUITEB_CIPHER_LIST,
|
||||||
|
SSL_R_ONLY_DTLS_1_2_ALLOWED_IN_SUITEB_MODE);
|
||||||
|
else
|
||||||
|
SSLerr(SSL_F_CHECK_SUITEB_CIPHER_LIST,
|
||||||
SSL_R_ONLY_TLS_1_2_ALLOWED_IN_SUITEB_MODE);
|
SSL_R_ONLY_TLS_1_2_ALLOWED_IN_SUITEB_MODE);
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|||||||
@ -1,6 +1,6 @@
|
|||||||
/* ssl/ssl_err.c */
|
/* ssl/ssl_err.c */
|
||||||
/* ====================================================================
|
/* ====================================================================
|
||||||
* Copyright (c) 1999-2012 The OpenSSL Project. All rights reserved.
|
* Copyright (c) 1999-2013 The OpenSSL Project. All rights reserved.
|
||||||
*
|
*
|
||||||
* Redistribution and use in source and binary forms, with or without
|
* Redistribution and use in source and binary forms, with or without
|
||||||
* modification, are permitted provided that the following conditions
|
* modification, are permitted provided that the following conditions
|
||||||
@ -483,6 +483,7 @@ static ERR_STRING_DATA SSL_str_reasons[]=
|
|||||||
{ERR_REASON(SSL_R_NULL_SSL_METHOD_PASSED),"null ssl method passed"},
|
{ERR_REASON(SSL_R_NULL_SSL_METHOD_PASSED),"null ssl method passed"},
|
||||||
{ERR_REASON(SSL_R_OLD_SESSION_CIPHER_NOT_RETURNED),"old session cipher not returned"},
|
{ERR_REASON(SSL_R_OLD_SESSION_CIPHER_NOT_RETURNED),"old session cipher not returned"},
|
||||||
{ERR_REASON(SSL_R_OLD_SESSION_COMPRESSION_ALGORITHM_NOT_RETURNED),"old session compression algorithm not returned"},
|
{ERR_REASON(SSL_R_OLD_SESSION_COMPRESSION_ALGORITHM_NOT_RETURNED),"old session compression algorithm not returned"},
|
||||||
|
{ERR_REASON(SSL_R_ONLY_DTLS_1_2_ALLOWED_IN_SUITEB_MODE),"only DTLS 1.2 allowed in Suite B mode"},
|
||||||
{ERR_REASON(SSL_R_ONLY_TLS_1_2_ALLOWED_IN_SUITEB_MODE),"only TLS 1.2 allowed in Suite B mode"},
|
{ERR_REASON(SSL_R_ONLY_TLS_1_2_ALLOWED_IN_SUITEB_MODE),"only TLS 1.2 allowed in Suite B mode"},
|
||||||
{ERR_REASON(SSL_R_ONLY_TLS_ALLOWED_IN_FIPS_MODE),"only tls allowed in fips mode"},
|
{ERR_REASON(SSL_R_ONLY_TLS_ALLOWED_IN_FIPS_MODE),"only tls allowed in fips mode"},
|
||||||
{ERR_REASON(SSL_R_OPAQUE_PRF_INPUT_TOO_LONG),"opaque PRF input too long"},
|
{ERR_REASON(SSL_R_OPAQUE_PRF_INPUT_TOO_LONG),"opaque PRF input too long"},
|
||||||
|
|||||||
@ -881,7 +881,7 @@ const SSL_METHOD *func_name(void) \
|
|||||||
ssl23_get_cipher, \
|
ssl23_get_cipher, \
|
||||||
s_get_meth, \
|
s_get_meth, \
|
||||||
ssl23_default_timeout, \
|
ssl23_default_timeout, \
|
||||||
&ssl3_undef_enc_method, \
|
&TLSv1_2_enc_data, \
|
||||||
ssl_undefined_void_function, \
|
ssl_undefined_void_function, \
|
||||||
ssl3_callback_ctrl, \
|
ssl3_callback_ctrl, \
|
||||||
ssl3_ctx_callback_ctrl, \
|
ssl3_ctx_callback_ctrl, \
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user