source-git / gnutls

Clone
Source Code
GIT

Blame lib/sslv2_compat.c

c8 c8s master
  1.   a5833e423934687d0d6d9e22e45a4bb7a9ef30d1
  2.   lib
  3.   sslv2_compat.c
Blob History Raw
Packit aea12f 
/*
Packit aea12f 
 * Copyright (C) 2001-2012 Free Software Foundation, Inc.
Packit aea12f 
 *
Packit aea12f 
 * Author: Nikos Mavrogiannopoulos
Packit aea12f 
 *
Packit aea12f 
 * This file is part of GnuTLS.
Packit aea12f 
 *
Packit aea12f 
 * The GnuTLS is free software; you can redistribute it and/or
Packit aea12f 
 * modify it under the terms of the GNU Lesser General Public License
Packit aea12f 
 * as published by the Free Software Foundation; either version 2.1 of
Packit aea12f 
 * the License, or (at your option) any later version.
Packit aea12f 
 *
Packit aea12f 
 * This library is distributed in the hope that it will be useful, but
Packit aea12f 
 * WITHOUT ANY WARRANTY; without even the implied warranty of
Packit aea12f 
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Packit aea12f 
 * Lesser General Public License for more details.
Packit aea12f 
 *
Packit aea12f 
 * You should have received a copy of the GNU Lesser General Public License
Packit aea12f 
 * along with this program.  If not, see <https://www.gnu.org/licenses/>
Packit aea12f 
 *
Packit aea12f 
 */
Packit aea12f
Packit aea12f 
/* Functions to parse the SSLv2.0 hello message.
Packit aea12f 
 */
Packit aea12f
Packit aea12f 
#include "gnutls_int.h"
Packit aea12f 
#include "errors.h"
Packit aea12f 
#include "dh.h"
Packit aea12f 
#include "debug.h"
Packit aea12f 
#include "algorithms.h"
Packit aea12f 
#include "cipher.h"
Packit aea12f 
#include "buffers.h"
Packit aea12f 
#include "kx.h"
Packit aea12f 
#include "handshake.h"
Packit aea12f 
#include "num.h"
Packit aea12f 
#include "hash_int.h"
Packit aea12f 
#include "db.h"
Packit aea12f 
#include "hello_ext.h"
Packit aea12f 
#include "auth.h"
Packit aea12f 
#include "sslv2_compat.h"
Packit aea12f 
#include "constate.h"
Packit aea12f
Packit aea12f 
#ifdef ENABLE_SSL2
Packit aea12f 
/* This selects the best supported ciphersuite from the ones provided */
Packit aea12f 
static int
Packit aea12f 
_gnutls_handshake_select_v2_suite(gnutls_session_t session,
Packit aea12f 
				  uint8_t * data, unsigned int datalen)
Packit aea12f 
{
Packit aea12f 
	unsigned int i, j;
Packit aea12f 
	int ret;
Packit aea12f 
	uint8_t *_data;
Packit aea12f 
	int _datalen;
Packit aea12f
Packit aea12f 
	_gnutls_handshake_log
Packit aea12f 
	    ("HSK[%p]: Parsing a version 2.0 client hello.\n", session);
Packit aea12f
Packit aea12f 
	if (datalen % 3 != 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return GNUTLS_E_UNEXPECTED_PACKET_LENGTH;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	_data = gnutls_malloc(datalen);
Packit aea12f 
	if (_data == NULL) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return GNUTLS_E_MEMORY_ERROR;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	i = _datalen = 0;
Packit aea12f 
	for (j = 0; j < datalen; j += 3) {
Packit aea12f 
		if (data[j] == 0) {
Packit aea12f 
			memcpy(&_data[i], &data[j + 1], 2);
Packit aea12f 
			i += 2;
Packit aea12f 
			_datalen += 2;
Packit aea12f 
		}
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_server_select_suite(session, _data, _datalen, 0);
Packit aea12f 
	gnutls_free(_data);
Packit aea12f
Packit aea12f 
	return ret;
Packit aea12f
Packit aea12f 
}
Packit aea12f
Packit aea12f
Packit aea12f 
/* Read a v2 client hello. Some browsers still use that beast!
Packit aea12f 
 * However they set their version to 3.0 or 3.1.
Packit aea12f 
 */
Packit aea12f 
int
Packit aea12f 
_gnutls_read_client_hello_v2(gnutls_session_t session, uint8_t * data,
Packit Service 991b93 
			     unsigned int len)
Packit aea12f 
{
Packit aea12f 
	uint16_t session_id_len = 0;
Packit aea12f 
	int pos = 0;
Packit aea12f 
	int ret = 0, sret = 0;
Packit aea12f 
	uint16_t sizeOfSuites;
Packit aea12f 
	uint8_t rnd[GNUTLS_RANDOM_SIZE], major, minor;
Packit aea12f 
	int neg_version;
Packit aea12f 
	const version_entry_st *vers;
Packit aea12f 
	uint16_t challenge;
Packit aea12f 
	uint8_t session_id[GNUTLS_MAX_SESSION_ID_SIZE];
Packit aea12f
Packit aea12f 
	DECR_LEN(len, 2);
Packit aea12f
Packit aea12f 
	_gnutls_handshake_log
Packit aea12f 
	    ("HSK[%p]: SSL 2.0 Hello: Client's version: %d.%d\n", session,
Packit aea12f 
	     data[pos], data[pos + 1]);
Packit aea12f
Packit aea12f 
	major = data[pos];
Packit aea12f 
	minor = data[pos + 1];
Packit aea12f 
	set_adv_version(session, major, minor);
Packit aea12f
Packit aea12f 
	ret = _gnutls_negotiate_version(session, major, minor, 0);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return ret;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	vers = get_version(session);
Packit aea12f 
	if (vers == NULL)
Packit aea12f 
		return gnutls_assert_val(GNUTLS_E_UNSUPPORTED_VERSION_PACKET);
Packit aea12f
Packit aea12f 
	neg_version = vers->id;
Packit aea12f
Packit aea12f 
	pos += 2;
Packit aea12f
Packit aea12f 
	/* Read uint16_t cipher_spec_length */
Packit aea12f 
	DECR_LEN(len, 2);
Packit aea12f 
	sizeOfSuites = _gnutls_read_uint16(&data[pos]);
Packit aea12f 
	pos += 2;
Packit aea12f
Packit aea12f 
	/* read session id length */
Packit aea12f 
	DECR_LEN(len, 2);
Packit aea12f 
	session_id_len = _gnutls_read_uint16(&data[pos]);
Packit aea12f 
	pos += 2;
Packit aea12f
Packit aea12f 
	if (session_id_len > GNUTLS_MAX_SESSION_ID_SIZE) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return GNUTLS_E_UNEXPECTED_PACKET_LENGTH;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* read challenge length */
Packit aea12f 
	DECR_LEN(len, 2);
Packit aea12f 
	challenge = _gnutls_read_uint16(&data[pos]);
Packit aea12f 
	pos += 2;
Packit aea12f
Packit aea12f 
	if (challenge < 16 || challenge > GNUTLS_RANDOM_SIZE) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return GNUTLS_E_UNSUPPORTED_VERSION_PACKET;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* call the user hello callback
Packit aea12f 
	 */
Packit aea12f 
	ret = _gnutls_user_hello_func(session, major, minor);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		if (ret == GNUTLS_E_AGAIN || ret == GNUTLS_E_INTERRUPTED) {
Packit aea12f 
			sret = GNUTLS_E_INT_RET_0;
Packit aea12f 
		} else {
Packit aea12f 
			gnutls_assert();
Packit aea12f 
			return ret;
Packit aea12f 
		}
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* find an appropriate cipher suite */
Packit aea12f
Packit aea12f 
	DECR_LEN(len, sizeOfSuites);
Packit aea12f 
	ret =
Packit aea12f 
	    _gnutls_handshake_select_v2_suite(session, &data[pos],
Packit aea12f 
					      sizeOfSuites);
Packit aea12f
Packit aea12f 
	pos += sizeOfSuites;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return ret;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* check if the credentials (username, public key etc.) are ok
Packit aea12f 
	 */
Packit aea12f 
	if (_gnutls_get_kx_cred
Packit aea12f 
	    (session,
Packit aea12f 
	     session->security_parameters.cs->kx_algorithm) == NULL) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* set the mod_auth_st to the appropriate struct
Packit aea12f 
	 * according to the KX algorithm. This is needed since all the
Packit aea12f 
	 * handshake functions are read from there;
Packit aea12f 
	 */
Packit aea12f 
	session->internals.auth_struct =
Packit aea12f 
	    _gnutls_kx_auth_struct(session->security_parameters.
Packit aea12f 
				    cs->kx_algorithm);
Packit aea12f 
	if (session->internals.auth_struct == NULL) {
Packit aea12f
Packit aea12f 
		_gnutls_handshake_log
Packit aea12f 
		    ("HSK[%p]: SSL 2.0 Hello: Cannot find the appropriate handler for the KX algorithm\n",
Packit aea12f 
		     session);
Packit aea12f
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return GNUTLS_E_INTERNAL_ERROR;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* read random new values -skip session id for now */
Packit aea12f 
	DECR_LEN(len, session_id_len);	/* skip session id for now */
Packit aea12f 
	memcpy(session_id, &data[pos], session_id_len);
Packit aea12f 
	pos += session_id_len;
Packit aea12f
Packit aea12f 
	DECR_LEN(len, challenge);
Packit aea12f 
	memset(rnd, 0, GNUTLS_RANDOM_SIZE);
Packit aea12f
Packit aea12f 
	memcpy(&rnd[GNUTLS_RANDOM_SIZE - challenge], &data[pos],
Packit aea12f 
	       challenge);
Packit aea12f
Packit aea12f 
	_gnutls_set_client_random(session, rnd);
Packit aea12f
Packit aea12f 
	/* generate server random value */
Packit aea12f 
	ret = _gnutls_gen_server_random(session, neg_version);
Packit aea12f 
	if (ret < 0)
Packit aea12f 
		return gnutls_assert_val(ret);
Packit aea12f
Packit aea12f 
	session->security_parameters.timestamp = gnutls_time(NULL);
Packit aea12f
Packit aea12f
Packit aea12f 
	/* RESUME SESSION */
Packit aea12f
Packit aea12f 
	DECR_LEN(len, session_id_len);
Packit aea12f 
	ret =
Packit aea12f 
	    _gnutls_server_restore_session(session, session_id,
Packit aea12f 
					   session_id_len);
Packit aea12f
Packit aea12f 
	if (ret == 0) {		/* resumed! */
Packit aea12f 
		/* get the new random values */
Packit aea12f 
		memcpy(session->internals.resumed_security_parameters.
Packit aea12f 
		       server_random,
Packit aea12f 
		       session->security_parameters.server_random,
Packit aea12f 
		       GNUTLS_RANDOM_SIZE);
Packit aea12f 
		memcpy(session->internals.resumed_security_parameters.
Packit aea12f 
		       client_random,
Packit aea12f 
		       session->security_parameters.client_random,
Packit aea12f 
		       GNUTLS_RANDOM_SIZE);
Packit aea12f
Packit aea12f 
		session->internals.resumed = RESUME_TRUE;
Packit aea12f 
		return 0;
Packit aea12f 
	} else {
Packit Service 991b93 
		ret = _gnutls_generate_session_id(
Packit Service 991b93 
			session->security_parameters.session_id,
Packit Service 991b93 
			&session->security_parameters.session_id_size);
Packit Service 991b93 
		if (ret < 0)
Packit Service 991b93 
			return gnutls_assert_val(ret);
Packit Service 991b93
Packit aea12f 
		session->internals.resumed = RESUME_FALSE;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	return sret;
Packit aea12f 
}
Packit aea12f 
#endif

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation