|
Packit Service |
4684c1 |
/*
|
|
Packit Service |
4684c1 |
* Copyright (C) 2016-2018 Red Hat, Inc.
|
|
Packit Service |
4684c1 |
*
|
|
Packit Service |
4684c1 |
* Author: Nikos Mavrogiannopoulos
|
|
Packit Service |
4684c1 |
*
|
|
Packit Service |
4684c1 |
* This file is part of GnuTLS.
|
|
Packit Service |
4684c1 |
*
|
|
Packit Service |
4684c1 |
* GnuTLS is free software; you can redistribute it and/or modify it
|
|
Packit Service |
4684c1 |
* under the terms of the GNU General Public License as published by
|
|
Packit Service |
4684c1 |
* the Free Software Foundation; either version 3 of the License, or
|
|
Packit Service |
4684c1 |
* (at your option) any later version.
|
|
Packit Service |
4684c1 |
*
|
|
Packit Service |
4684c1 |
* GnuTLS is distributed in the hope that it will be useful, but
|
|
Packit Service |
4684c1 |
* WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
Packit Service |
4684c1 |
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
Packit Service |
4684c1 |
* General Public License for more details.
|
|
Packit Service |
4684c1 |
*
|
|
Packit Service |
4684c1 |
* You should have received a copy of the GNU Lesser General Public License
|
|
Packit Service |
4684c1 |
* along with this program. If not, see <https://www.gnu.org/licenses/>
|
|
Packit Service |
4684c1 |
*/
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
#ifdef HAVE_CONFIG_H
|
|
Packit Service |
4684c1 |
#include <config.h>
|
|
Packit Service |
4684c1 |
#endif
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
#include <stdio.h>
|
|
Packit Service |
4684c1 |
#include <stdlib.h>
|
|
Packit Service |
4684c1 |
#include <string.h>
|
|
Packit Service |
4684c1 |
#include <errno.h>
|
|
Packit Service |
4684c1 |
#include <gnutls/gnutls.h>
|
|
Packit Service |
4684c1 |
#include <assert.h>
|
|
Packit Service |
4684c1 |
#include "utils.h"
|
|
Packit Service |
4684c1 |
#include "virt-time.h"
|
|
Packit Service |
4684c1 |
#include "eagain-common.h"
|
|
Packit Service |
4684c1 |
#include "cert-common.h"
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* This test checks whether the lifetime of a resumed session can
|
|
Packit Service |
4684c1 |
* be extended past the designated one */
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
const char *side;
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
static void tls_log_func(int level, const char *str)
|
|
Packit Service |
4684c1 |
{
|
|
Packit Service |
4684c1 |
fprintf(stderr, "%s|<%d>| %s", side, level, str);
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
struct hsk_st {
|
|
Packit Service |
4684c1 |
unsigned sent_nst; /* whether the new session ticket was sent */
|
|
Packit Service |
4684c1 |
unsigned sent_psk; /* whether the PSK extension was sent */
|
|
Packit Service |
4684c1 |
unsigned sleep_at_finished; /* how long to wait at finished message reception */
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
};
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
static int ext_hook_func(void *ctx, unsigned tls_id,
|
|
Packit Service |
4684c1 |
const unsigned char *data, unsigned size)
|
|
Packit Service |
4684c1 |
{
|
|
Packit Service |
4684c1 |
if (tls_id == 41) {
|
|
Packit Service |
4684c1 |
struct hsk_st *h = ctx;
|
|
Packit Service |
4684c1 |
h->sent_psk = 1;
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
return 0;
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
static int handshake_callback(gnutls_session_t session, unsigned int htype,
|
|
Packit Service |
4684c1 |
unsigned post, unsigned int incoming, const gnutls_datum_t *msg)
|
|
Packit Service |
4684c1 |
{
|
|
Packit Service |
4684c1 |
struct hsk_st *h = gnutls_session_get_ptr(session);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (htype == GNUTLS_HANDSHAKE_FINISHED && !incoming) {
|
|
Packit Service |
4684c1 |
if (h->sleep_at_finished)
|
|
Packit Service |
4684c1 |
virt_sec_sleep(h->sleep_at_finished);
|
|
Packit Service |
4684c1 |
return 0;
|
|
Packit Service |
4684c1 |
} else if (htype == GNUTLS_HANDSHAKE_CLIENT_HELLO) {
|
|
Packit Service |
4684c1 |
gnutls_ext_raw_parse(h, ext_hook_func, msg,
|
|
Packit Service |
4684c1 |
GNUTLS_EXT_RAW_FLAG_TLS_CLIENT_HELLO);
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (htype != GNUTLS_HANDSHAKE_NEW_SESSION_TICKET)
|
|
Packit Service |
4684c1 |
return 0;
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (h)
|
|
Packit Service |
4684c1 |
h->sent_nst = 1;
|
|
Packit Service |
4684c1 |
return 0;
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* Returns true if resumed */
|
|
Packit Service |
4684c1 |
static unsigned handshake(const char *prio, unsigned t, const gnutls_datum_t *sdata,
|
|
Packit Service |
4684c1 |
gnutls_datum_t *ndata,
|
|
Packit Service |
4684c1 |
gnutls_datum_t *skey,
|
|
Packit Service |
4684c1 |
struct hsk_st *h)
|
|
Packit Service |
4684c1 |
{
|
|
Packit Service |
4684c1 |
int ret;
|
|
Packit Service |
4684c1 |
/* Server stuff. */
|
|
Packit Service |
4684c1 |
gnutls_certificate_credentials_t serverx509cred;
|
|
Packit Service |
4684c1 |
gnutls_session_t server;
|
|
Packit Service |
4684c1 |
int sret = GNUTLS_E_AGAIN;
|
|
Packit Service |
4684c1 |
/* Client stuff. */
|
|
Packit Service |
4684c1 |
gnutls_certificate_credentials_t clientx509cred;
|
|
Packit Service |
4684c1 |
gnutls_session_t client;
|
|
Packit Service |
4684c1 |
int cret = GNUTLS_E_AGAIN;
|
|
Packit Service |
4684c1 |
char buf[128];
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_global_set_log_function(tls_log_func);
|
|
Packit Service |
4684c1 |
if (debug)
|
|
Packit Service |
4684c1 |
gnutls_global_set_log_level(6);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(gnutls_certificate_allocate_credentials(&serverx509cred)>=0);
|
|
Packit Service |
4684c1 |
assert(gnutls_certificate_set_x509_key_mem(serverx509cred,
|
|
Packit Service |
4684c1 |
&server_cert, &server_key,
|
|
Packit Service |
4684c1 |
GNUTLS_X509_FMT_PEM)>=0);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(gnutls_init(&server, GNUTLS_SERVER)>=0);
|
|
Packit Service |
4684c1 |
gnutls_credentials_set(server, GNUTLS_CRD_CERTIFICATE,
|
|
Packit Service |
4684c1 |
serverx509cred);
|
|
Packit Service |
4684c1 |
assert(gnutls_priority_set_direct(server, prio, NULL)>=0);
|
|
Packit Service |
4684c1 |
gnutls_transport_set_push_function(server, server_push);
|
|
Packit Service |
4684c1 |
gnutls_transport_set_pull_function(server, server_pull);
|
|
Packit Service |
4684c1 |
gnutls_transport_set_ptr(server, server);
|
|
Packit Service |
4684c1 |
gnutls_session_set_ptr(server, h);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_db_set_cache_expiration(server, t);
|
|
Packit Service |
4684c1 |
assert(gnutls_session_ticket_enable_server(server, skey) >= 0);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_handshake_set_hook_function(server, -1,
|
|
Packit Service |
4684c1 |
GNUTLS_HOOK_POST,
|
|
Packit Service |
4684c1 |
handshake_callback);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(gnutls_certificate_allocate_credentials(&clientx509cred)>=0);
|
|
Packit Service |
4684c1 |
assert(gnutls_certificate_set_x509_trust_mem(clientx509cred, &ca_cert, GNUTLS_X509_FMT_PEM)>=0);
|
|
Packit Service |
4684c1 |
assert(gnutls_init(&client, GNUTLS_CLIENT)>=0);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(gnutls_credentials_set(client, GNUTLS_CRD_CERTIFICATE,
|
|
Packit Service |
4684c1 |
clientx509cred)>=0);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(gnutls_priority_set_direct(client, prio, NULL)>=0);
|
|
Packit Service |
4684c1 |
gnutls_transport_set_push_function(client, client_push);
|
|
Packit Service |
4684c1 |
gnutls_transport_set_pull_function(client, client_pull);
|
|
Packit Service |
4684c1 |
gnutls_transport_set_ptr(client, client);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (sdata) {
|
|
Packit Service |
4684c1 |
assert(gnutls_session_set_data(client, sdata->data, sdata->size)>=0);
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
memset(buf, 0, sizeof(buf));
|
|
Packit Service |
4684c1 |
ret = gnutls_session_set_data(client, buf, sizeof(buf));
|
|
Packit Service |
4684c1 |
if (ret != GNUTLS_E_DB_ERROR) {
|
|
Packit Service |
4684c1 |
fail("unexpected error: %s\n", gnutls_strerror(ret));
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
HANDSHAKE(client, server);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_record_recv(client, buf, sizeof(buf));
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (ndata) {
|
|
Packit Service |
4684c1 |
ret = gnutls_session_get_data2(client, ndata);
|
|
Packit Service |
4684c1 |
if (ret < 0) {
|
|
Packit Service |
4684c1 |
fail("unexpected error: %s\n", gnutls_strerror(ret));
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
ret = gnutls_session_is_resumed(client);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_deinit(server);
|
|
Packit Service |
4684c1 |
gnutls_deinit(client);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_certificate_free_credentials(serverx509cred);
|
|
Packit Service |
4684c1 |
gnutls_certificate_free_credentials(clientx509cred);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
reset_buffers();
|
|
Packit Service |
4684c1 |
return ret;
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* @t is the lifetime of the first ticket, @s is the
|
|
Packit Service |
4684c1 |
* time to wait before asking for a ticket the last try */
|
|
Packit Service |
4684c1 |
static void start(const char *name, const char *prio, unsigned t, unsigned s)
|
|
Packit Service |
4684c1 |
{
|
|
Packit Service |
4684c1 |
gnutls_datum_t sdata, ndata, skey;
|
|
Packit Service |
4684c1 |
unsigned ret;
|
|
Packit Service |
4684c1 |
struct hsk_st h;
|
|
Packit Service |
4684c1 |
memset(&h, 0, sizeof(h));
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
success("trying %s\n", name);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(gnutls_session_ticket_key_generate(&skey)>=0);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* step1: get a fresh ticket */
|
|
Packit Service |
4684c1 |
ret = handshake(prio, t, NULL, &sdata, &skey, &h);
|
|
Packit Service |
4684c1 |
assert(ret == 0);
|
|
Packit Service |
4684c1 |
assert(h.sent_nst != 0);
|
|
Packit Service |
4684c1 |
memset(&h, 0, sizeof(h));
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (debug)
|
|
Packit Service |
4684c1 |
success("completed first handshake\n");
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (s)
|
|
Packit Service |
4684c1 |
virt_sec_sleep(s);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* step2: get a ticket from the resumed session of the first */
|
|
Packit Service |
4684c1 |
ret = handshake(prio, t, &sdata, &ndata, &skey, &h);
|
|
Packit Service |
4684c1 |
assert(ret != 0);
|
|
Packit Service |
4684c1 |
assert(h.sent_nst != 0);
|
|
Packit Service |
4684c1 |
memset(&h, 0, sizeof(h));
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* wait until the ticket we got in step1 is invalid, although
|
|
Packit Service |
4684c1 |
* the ticket we got in step2 is valid */
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (debug)
|
|
Packit Service |
4684c1 |
success("completed second handshake\n");
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (s)
|
|
Packit Service |
4684c1 |
virt_sec_sleep(s);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
ret = handshake(prio, t, &ndata, NULL, &skey, &h);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (s) {
|
|
Packit Service |
4684c1 |
if (ret != 0)
|
|
Packit Service |
4684c1 |
fail("server resumed session even if ticket expired!\n");
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* we shouldn't have sent the PSK extension as the ticket was expired */
|
|
Packit Service |
4684c1 |
assert(h.sent_psk == 0);
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_free(ndata.data);
|
|
Packit Service |
4684c1 |
gnutls_free(sdata.data);
|
|
Packit Service |
4684c1 |
gnutls_free(skey.data);
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* @t is the lifetime of the first ticket, @s is the
|
|
Packit Service |
4684c1 |
* time to wait before asking for a ticket the last try
|
|
Packit Service |
4684c1 |
*
|
|
Packit Service |
4684c1 |
* This makes the ticket to expire during handshake (after resumtion),
|
|
Packit Service |
4684c1 |
* but before the client receives the new session ticket. In that
|
|
Packit Service |
4684c1 |
* case the server shouldn't send a session ticket.
|
|
Packit Service |
4684c1 |
*/
|
|
Packit Service |
4684c1 |
static void start2(const char *name, const char *prio, unsigned t, unsigned s)
|
|
Packit Service |
4684c1 |
{
|
|
Packit Service |
4684c1 |
gnutls_datum_t sdata, ndata, skey;
|
|
Packit Service |
4684c1 |
unsigned ret;
|
|
Packit Service |
4684c1 |
struct hsk_st h;
|
|
Packit Service |
4684c1 |
memset(&h, 0, sizeof(h));
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
success("trying %s\n", name);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(gnutls_session_ticket_key_generate(&skey)>=0);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* step1: get a fresh ticket */
|
|
Packit Service |
4684c1 |
ret = handshake(prio, t, NULL, &sdata, &skey, &h);
|
|
Packit Service |
4684c1 |
assert(ret == 0);
|
|
Packit Service |
4684c1 |
assert(h.sent_nst != 0);
|
|
Packit Service |
4684c1 |
memset(&h, 0, sizeof(h));
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* step2: get a ticket from the resumed session of the first */
|
|
Packit Service |
4684c1 |
ret = handshake(prio, t, &sdata, &ndata, &skey, &h);
|
|
Packit Service |
4684c1 |
assert(ret != 0);
|
|
Packit Service |
4684c1 |
assert(h.sent_nst != 0);
|
|
Packit Service |
4684c1 |
memset(&h, 0, sizeof(h));
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
/* wait until the ticket we got in step1 is invalid, although
|
|
Packit Service |
4684c1 |
* the ticket we got in step2 is valid */
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
if (s)
|
|
Packit Service |
4684c1 |
h.sleep_at_finished = s;
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
ret = handshake(prio, t, &ndata, NULL, &skey, &h);
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
assert(ret != 0);
|
|
Packit Service |
4684c1 |
if (h.sent_nst != 0)
|
|
Packit Service |
4684c1 |
fail("server sent session ticket even if ticket expired!\n");
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
gnutls_free(ndata.data);
|
|
Packit Service |
4684c1 |
gnutls_free(sdata.data);
|
|
Packit Service |
4684c1 |
gnutls_free(skey.data);
|
|
Packit Service |
4684c1 |
}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
void doit(void)
|
|
Packit Service |
4684c1 |
{
|
|
Packit Service |
4684c1 |
virt_time_init();
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
start("TLS1.3 sanity", "NORMAL:-VERS-ALL:+VERS-TLS1.3", 64, 0);
|
|
Packit Service |
4684c1 |
start("TLS1.3 ticket extension", "NORMAL:-VERS-ALL:+VERS-TLS1.3", 5, 3);
|
|
Packit Service |
4684c1 |
start2("TLS1.3 ticket extension - expires at handshake", "NORMAL:-VERS-ALL:+VERS-TLS1.3", 2, 3);
|
|
Packit Service |
4684c1 |
}
|