/* * Copyright (C) 2017-2018 Red Hat, Inc. * * Author: Nikos Mavrogiannopoulos * * This file is part of GnuTLS. * * GnuTLS is free software; you can redistribute it and/or modify it * under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 3 of the License, or * (at your option) any later version. * * GnuTLS is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * General Public License for more details. * * You should have received a copy of the GNU Lesser General Public License * along with this program. If not, see */ #ifdef HAVE_CONFIG_H #include #endif #include #include #if defined(_WIN32) int main() { exit(77); } #else #include #include #include #include #include #include #include #include #include #include #include #include "cert-common.h" #include "tls13/ext-parse.h" #include "utils.h" #define MAX_AUTHS 4 /* This program tests whether the Post Handshake Auth would work * under PSK authentication. */ static void server_log_func(int level, const char *str) { fprintf(stderr, "server|<%d>| %s", level, str); } static void client_log_func(int level, const char *str) { fprintf(stderr, "client|<%d>| %s", level, str); } #define MAX_BUF 1024 static void client(int fd, unsigned send_cert, unsigned max_auths) { int ret; gnutls_certificate_credentials_t x509_cred; gnutls_psk_client_credentials_t pskcred; const gnutls_datum_t key = { (void *) "DEADBEEF", 8 }; gnutls_session_t session; char buf[64]; unsigned i; global_init(); if (debug) { gnutls_global_set_log_function(client_log_func); gnutls_global_set_log_level(7); } assert(gnutls_psk_allocate_client_credentials(&pskcred)>=0); assert(gnutls_psk_set_client_credentials(pskcred, "test", &key, GNUTLS_PSK_KEY_HEX)>=0); assert(gnutls_certificate_allocate_credentials(&x509_cred)>=0); /* Initialize TLS session */ assert(gnutls_init(&session, GNUTLS_CLIENT|GNUTLS_POST_HANDSHAKE_AUTH)>=0); gnutls_handshake_set_timeout(session, get_timeout()); ret = gnutls_priority_set_direct(session, "NORMAL:-VERS-ALL:+VERS-TLS1.3:+VERS-TLS1.2:+VERS-TLS1.0:+ECDHE-PSK:+PSK", NULL); if (ret < 0) fail("cannot set TLS 1.3 priorities\n"); if (send_cert) { assert(gnutls_certificate_set_x509_key_mem(x509_cred, &cli_ca3_cert, &cli_ca3_key, GNUTLS_X509_FMT_PEM)>=0); } gnutls_credentials_set(session, GNUTLS_CRD_CERTIFICATE, x509_cred); gnutls_credentials_set(session, GNUTLS_CRD_PSK, pskcred); gnutls_transport_set_int(session, fd); /* Perform the TLS handshake */ do { ret = gnutls_handshake(session); } while (ret < 0 && gnutls_error_is_fatal(ret) == 0); if (ret != 0) fail("handshake failed: %s\n", gnutls_strerror(ret)); if (debug) success("client handshake completed\n"); assert(gnutls_kx_get(session) == GNUTLS_KX_ECDHE_PSK); gnutls_record_set_timeout(session, 20 * 1000); for (i=0;isize != 0) { fail("error in extension length: %d\n", (int)msg->size); } } static int hellos_callback(gnutls_session_t session, unsigned int htype, unsigned post, unsigned int incoming, const gnutls_datum_t *msg) { if (htype == GNUTLS_HANDSHAKE_SERVER_HELLO && post == GNUTLS_HOOK_POST) { if (find_server_extension(msg, TLS_EXT_POST_HANDSHAKE, NULL, NULL)) { fail("Post handshake extension seen in server hello!\n"); } server_hello_ok = 1; return GNUTLS_E_INTERRUPTED; } if (htype != GNUTLS_HANDSHAKE_CLIENT_HELLO || post != GNUTLS_HOOK_PRE) return 0; if (find_client_extension(msg, TLS_EXT_POST_HANDSHAKE, NULL, parse_ext)) client_hello_ok = 1; else fail("Post handshake extension NOT seen in client hello!\n"); return 0; } static int pskfunc(gnutls_session_t session, const char *username, gnutls_datum_t * key) { if (debug) printf("psk: username %s\n", username); key->data = gnutls_malloc(4); key->data[0] = 0xDE; key->data[1] = 0xAD; key->data[2] = 0xBE; key->data[3] = 0xEF; key->size = 4; return 0; } static void server(int fd, int err, int type, unsigned max_auths) { int ret; char buffer[MAX_BUF + 1]; gnutls_session_t session; gnutls_certificate_credentials_t x509_cred; gnutls_psk_server_credentials_t server_pskcred; unsigned i; /* this must be called once in the program */ global_init(); memset(buffer, 0, sizeof(buffer)); if (debug) { gnutls_global_set_log_function(server_log_func); gnutls_global_set_log_level(6); } assert(gnutls_psk_allocate_server_credentials(&server_pskcred)>=0); gnutls_psk_set_server_credentials_function(server_pskcred, pskfunc); assert(gnutls_certificate_allocate_credentials(&x509_cred)>=0); assert(gnutls_certificate_set_x509_key_mem(x509_cred, &server_cert, &server_key, GNUTLS_X509_FMT_PEM) >= 0); assert(gnutls_init(&session, GNUTLS_SERVER|GNUTLS_POST_HANDSHAKE_AUTH)>=0); gnutls_handshake_set_timeout(session, get_timeout()); gnutls_handshake_set_hook_function(session, GNUTLS_HANDSHAKE_ANY, GNUTLS_HOOK_BOTH, hellos_callback); assert(gnutls_priority_set_direct(session, "NORMAL:-VERS-ALL:+VERS-TLS1.3:+PSK:+ECDHE-PSK", NULL)>=0); gnutls_credentials_set(session, GNUTLS_CRD_PSK, server_pskcred); gnutls_transport_set_int(session, fd); do { ret = gnutls_handshake(session); } while (ret < 0 && gnutls_error_is_fatal(ret) == 0); if (ret != 0) fail("handshake failed: %s\n", gnutls_strerror(ret)); if (!(gnutls_session_get_flags(session) & GNUTLS_SFLAGS_POST_HANDSHAKE_AUTH)) { fail("server: session flags did not contain GNUTLS_SFLAGS_POST_HANDSHAKE_AUTH\n"); } if (client_hello_ok == 0) { fail("server: did not verify the client hello\n"); } if (server_hello_ok == 0) { fail("server: did not verify the server hello contents\n"); } if (debug) success("server handshake completed\n"); gnutls_credentials_set(session, GNUTLS_CRD_CERTIFICATE, x509_cred); gnutls_certificate_server_set_request(session, type); for (i=0;i