michael@0: /* This Source Code Form is subject to the terms of the Mozilla Public michael@0: * License, v. 2.0. If a copy of the MPL was not distributed with this michael@0: * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ michael@0: #include "cert.h" michael@0: #include "secitem.h" michael@0: #include "ssl.h" michael@0: #include "sslimpl.h" michael@0: #include "sslproto.h" michael@0: #include "pk11func.h" michael@0: #include "ocsp.h" michael@0: michael@0: /* NEED LOCKS IN HERE. */ michael@0: CERTCertificate * michael@0: SSL_PeerCertificate(PRFileDesc *fd) michael@0: { michael@0: sslSocket *ss; michael@0: michael@0: ss = ssl_FindSocket(fd); michael@0: if (!ss) { michael@0: SSL_DBG(("%d: SSL[%d]: bad socket in PeerCertificate", michael@0: SSL_GETPID(), fd)); michael@0: return 0; michael@0: } michael@0: if (ss->opt.useSecurity && ss->sec.peerCert) { michael@0: return CERT_DupCertificate(ss->sec.peerCert); michael@0: } michael@0: return 0; michael@0: } michael@0: michael@0: /* NEED LOCKS IN HERE. */ michael@0: CERTCertList * michael@0: SSL_PeerCertificateChain(PRFileDesc *fd) michael@0: { michael@0: sslSocket *ss; michael@0: CERTCertList *chain = NULL; michael@0: CERTCertificate *cert; michael@0: ssl3CertNode *cur; michael@0: michael@0: ss = ssl_FindSocket(fd); michael@0: if (!ss) { michael@0: SSL_DBG(("%d: SSL[%d]: bad socket in PeerCertificateChain", michael@0: SSL_GETPID(), fd)); michael@0: return NULL; michael@0: } michael@0: if (!ss->opt.useSecurity || !ss->sec.peerCert) { michael@0: PORT_SetError(SSL_ERROR_NO_CERTIFICATE); michael@0: return NULL; michael@0: } michael@0: chain = CERT_NewCertList(); michael@0: if (!chain) { michael@0: return NULL; michael@0: } michael@0: cert = CERT_DupCertificate(ss->sec.peerCert); michael@0: if (CERT_AddCertToListTail(chain, cert) != SECSuccess) { michael@0: goto loser; michael@0: } michael@0: for (cur = ss->ssl3.peerCertChain; cur; cur = cur->next) { michael@0: cert = CERT_DupCertificate(cur->cert); michael@0: if (CERT_AddCertToListTail(chain, cert) != SECSuccess) { michael@0: goto loser; michael@0: } michael@0: } michael@0: return chain; michael@0: michael@0: loser: michael@0: CERT_DestroyCertList(chain); michael@0: return NULL; michael@0: } michael@0: michael@0: /* NEED LOCKS IN HERE. */ michael@0: CERTCertificate * michael@0: SSL_LocalCertificate(PRFileDesc *fd) michael@0: { michael@0: sslSocket *ss; michael@0: michael@0: ss = ssl_FindSocket(fd); michael@0: if (!ss) { michael@0: SSL_DBG(("%d: SSL[%d]: bad socket in PeerCertificate", michael@0: SSL_GETPID(), fd)); michael@0: return NULL; michael@0: } michael@0: if (ss->opt.useSecurity) { michael@0: if (ss->sec.localCert) { michael@0: return CERT_DupCertificate(ss->sec.localCert); michael@0: } michael@0: if (ss->sec.ci.sid && ss->sec.ci.sid->localCert) { michael@0: return CERT_DupCertificate(ss->sec.ci.sid->localCert); michael@0: } michael@0: } michael@0: return NULL; michael@0: } michael@0: michael@0: michael@0: michael@0: /* NEED LOCKS IN HERE. */ michael@0: SECStatus michael@0: SSL_SecurityStatus(PRFileDesc *fd, int *op, char **cp, int *kp0, int *kp1, michael@0: char **ip, char **sp) michael@0: { michael@0: sslSocket *ss; michael@0: const char *cipherName; michael@0: PRBool isDes = PR_FALSE; michael@0: michael@0: ss = ssl_FindSocket(fd); michael@0: if (!ss) { michael@0: SSL_DBG(("%d: SSL[%d]: bad socket in SecurityStatus", michael@0: SSL_GETPID(), fd)); michael@0: return SECFailure; michael@0: } michael@0: michael@0: if (cp) *cp = 0; michael@0: if (kp0) *kp0 = 0; michael@0: if (kp1) *kp1 = 0; michael@0: if (ip) *ip = 0; michael@0: if (sp) *sp = 0; michael@0: if (op) { michael@0: *op = SSL_SECURITY_STATUS_OFF; michael@0: } michael@0: michael@0: if (ss->opt.useSecurity && ss->enoughFirstHsDone) { michael@0: if (ss->version < SSL_LIBRARY_VERSION_3_0) { michael@0: cipherName = ssl_cipherName[ss->sec.cipherType]; michael@0: } else { michael@0: cipherName = ssl3_cipherName[ss->sec.cipherType]; michael@0: } michael@0: PORT_Assert(cipherName); michael@0: if (cipherName) { michael@0: if (PORT_Strstr(cipherName, "DES")) isDes = PR_TRUE; michael@0: michael@0: if (cp) { michael@0: *cp = PORT_Strdup(cipherName); michael@0: } michael@0: } michael@0: michael@0: if (kp0) { michael@0: *kp0 = ss->sec.keyBits; michael@0: if (isDes) *kp0 = (*kp0 * 7) / 8; michael@0: } michael@0: if (kp1) { michael@0: *kp1 = ss->sec.secretKeyBits; michael@0: if (isDes) *kp1 = (*kp1 * 7) / 8; michael@0: } michael@0: if (op) { michael@0: if (ss->sec.keyBits == 0) { michael@0: *op = SSL_SECURITY_STATUS_OFF; michael@0: } else if (ss->sec.secretKeyBits < 90) { michael@0: *op = SSL_SECURITY_STATUS_ON_LOW; michael@0: michael@0: } else { michael@0: *op = SSL_SECURITY_STATUS_ON_HIGH; michael@0: } michael@0: } michael@0: michael@0: if (ip || sp) { michael@0: CERTCertificate *cert; michael@0: michael@0: cert = ss->sec.peerCert; michael@0: if (cert) { michael@0: if (ip) { michael@0: *ip = CERT_NameToAscii(&cert->issuer); michael@0: } michael@0: if (sp) { michael@0: *sp = CERT_NameToAscii(&cert->subject); michael@0: } michael@0: } else { michael@0: if (ip) { michael@0: *ip = PORT_Strdup("no certificate"); michael@0: } michael@0: if (sp) { michael@0: *sp = PORT_Strdup("no certificate"); michael@0: } michael@0: } michael@0: } michael@0: } michael@0: michael@0: return SECSuccess; michael@0: } michael@0: michael@0: /************************************************************************/ michael@0: michael@0: /* NEED LOCKS IN HERE. */ michael@0: SECStatus michael@0: SSL_AuthCertificateHook(PRFileDesc *s, SSLAuthCertificate func, void *arg) michael@0: { michael@0: sslSocket *ss; michael@0: michael@0: ss = ssl_FindSocket(s); michael@0: if (!ss) { michael@0: SSL_DBG(("%d: SSL[%d]: bad socket in AuthCertificateHook", michael@0: SSL_GETPID(), s)); michael@0: return SECFailure; michael@0: } michael@0: michael@0: ss->authCertificate = func; michael@0: ss->authCertificateArg = arg; michael@0: michael@0: return SECSuccess; michael@0: } michael@0: michael@0: /* NEED LOCKS IN HERE. */ michael@0: SECStatus michael@0: SSL_GetClientAuthDataHook(PRFileDesc *s, SSLGetClientAuthData func, michael@0: void *arg) michael@0: { michael@0: sslSocket *ss; michael@0: michael@0: ss = ssl_FindSocket(s); michael@0: if (!ss) { michael@0: SSL_DBG(("%d: SSL[%d]: bad socket in GetClientAuthDataHook", michael@0: SSL_GETPID(), s)); michael@0: return SECFailure; michael@0: } michael@0: michael@0: ss->getClientAuthData = func; michael@0: ss->getClientAuthDataArg = arg; michael@0: return SECSuccess; michael@0: } michael@0: michael@0: /* NEED LOCKS IN HERE. */ michael@0: SECStatus michael@0: SSL_SetPKCS11PinArg(PRFileDesc *s, void *arg) michael@0: { michael@0: sslSocket *ss; michael@0: michael@0: ss = ssl_FindSocket(s); michael@0: if (!ss) { michael@0: SSL_DBG(("%d: SSL[%d]: bad socket in GetClientAuthDataHook", michael@0: SSL_GETPID(), s)); michael@0: return SECFailure; michael@0: } michael@0: michael@0: ss->pkcs11PinArg = arg; michael@0: return SECSuccess; michael@0: } michael@0: michael@0: michael@0: /* This is the "default" authCert callback function. It is called when a michael@0: * certificate message is received from the peer and the local application michael@0: * has not registered an authCert callback function. michael@0: */ michael@0: SECStatus michael@0: SSL_AuthCertificate(void *arg, PRFileDesc *fd, PRBool checkSig, PRBool isServer) michael@0: { michael@0: SECStatus rv; michael@0: CERTCertDBHandle * handle; michael@0: sslSocket * ss; michael@0: SECCertUsage certUsage; michael@0: const char * hostname = NULL; michael@0: PRTime now = PR_Now(); michael@0: SECItemArray * certStatusArray; michael@0: michael@0: ss = ssl_FindSocket(fd); michael@0: PORT_Assert(ss != NULL); michael@0: if (!ss) { michael@0: return SECFailure; michael@0: } michael@0: michael@0: handle = (CERTCertDBHandle *)arg; michael@0: certStatusArray = &ss->sec.ci.sid->peerCertStatus; michael@0: michael@0: if (certStatusArray->len) { michael@0: PORT_SetError(0); michael@0: if (CERT_CacheOCSPResponseFromSideChannel(handle, ss->sec.peerCert, now, michael@0: &certStatusArray->items[0], michael@0: ss->pkcs11PinArg) michael@0: != SECSuccess) { michael@0: PRErrorCode error = PR_GetError(); michael@0: PORT_Assert(error != 0); michael@0: } michael@0: } michael@0: michael@0: /* this may seem backwards, but isn't. */ michael@0: certUsage = isServer ? certUsageSSLClient : certUsageSSLServer; michael@0: michael@0: rv = CERT_VerifyCert(handle, ss->sec.peerCert, checkSig, certUsage, michael@0: now, ss->pkcs11PinArg, NULL); michael@0: michael@0: if ( rv != SECSuccess || isServer ) michael@0: return rv; michael@0: michael@0: /* cert is OK. This is the client side of an SSL connection. michael@0: * Now check the name field in the cert against the desired hostname. michael@0: * NB: This is our only defense against Man-In-The-Middle (MITM) attacks! michael@0: */ michael@0: hostname = ss->url; michael@0: if (hostname && hostname[0]) michael@0: rv = CERT_VerifyCertName(ss->sec.peerCert, hostname); michael@0: else michael@0: rv = SECFailure; michael@0: if (rv != SECSuccess) michael@0: PORT_SetError(SSL_ERROR_BAD_CERT_DOMAIN); michael@0: michael@0: return rv; michael@0: }