1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
|
// Copyright 2014 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "net/ssl/openssl_ssl_util.h"
#include <errno.h>
#include <utility>
#include "base/lazy_instance.h"
#include "base/location.h"
#include "base/logging.h"
#include "base/notreached.h"
#include "base/values.h"
#include "build/build_config.h"
#include "crypto/openssl_util.h"
#include "net/base/net_errors.h"
#include "net/cert/x509_util.h"
#include "net/log/net_log_with_source.h"
#include "net/ssl/ssl_connection_status_flags.h"
#include "third_party/boringssl/src/include/openssl/err.h"
#include "third_party/boringssl/src/include/openssl/ssl.h"
namespace net {
SslSetClearMask::SslSetClearMask() = default;
void SslSetClearMask::ConfigureFlag(long flag, bool state) {
(state ? set_mask : clear_mask) |= flag;
// Make sure we haven't got any intersection in the set & clear options.
DCHECK_EQ(0, set_mask & clear_mask) << flag << ":" << state;
}
namespace {
class OpenSSLNetErrorLibSingleton {
public:
OpenSSLNetErrorLibSingleton() {
// Allocate a new error library value for inserting net errors into
// OpenSSL. This does not register any ERR_STRING_DATA for the errors, so
// stringifying error codes through OpenSSL will return NULL.
net_error_lib_ = ERR_get_next_error_library();
}
int net_error_lib() const { return net_error_lib_; }
private:
int net_error_lib_;
};
base::LazyInstance<OpenSSLNetErrorLibSingleton>::Leaky g_openssl_net_error_lib =
LAZY_INSTANCE_INITIALIZER;
int OpenSSLNetErrorLib() {
return g_openssl_net_error_lib.Get().net_error_lib();
}
int MapOpenSSLErrorSSL(uint32_t error_code) {
DCHECK_EQ(ERR_LIB_SSL, ERR_GET_LIB(error_code));
#if DCHECK_IS_ON()
char buf[ERR_ERROR_STRING_BUF_LEN];
ERR_error_string_n(error_code, buf, sizeof(buf));
DVLOG(1) << "OpenSSL SSL error, reason: " << ERR_GET_REASON(error_code)
<< ", name: " << buf;
#endif
switch (ERR_GET_REASON(error_code)) {
case SSL_R_READ_TIMEOUT_EXPIRED:
return ERR_TIMED_OUT;
case SSL_R_UNKNOWN_CERTIFICATE_TYPE:
case SSL_R_UNKNOWN_CIPHER_TYPE:
case SSL_R_UNKNOWN_KEY_EXCHANGE_TYPE:
case SSL_R_UNKNOWN_SSL_VERSION:
return ERR_NOT_IMPLEMENTED;
case SSL_R_NO_CIPHER_MATCH:
case SSL_R_NO_SHARED_CIPHER:
case SSL_R_TLSV1_ALERT_INSUFFICIENT_SECURITY:
case SSL_R_TLSV1_ALERT_PROTOCOL_VERSION:
case SSL_R_UNSUPPORTED_PROTOCOL:
return ERR_SSL_VERSION_OR_CIPHER_MISMATCH;
case SSL_R_SSLV3_ALERT_BAD_CERTIFICATE:
case SSL_R_SSLV3_ALERT_UNSUPPORTED_CERTIFICATE:
case SSL_R_SSLV3_ALERT_CERTIFICATE_REVOKED:
case SSL_R_SSLV3_ALERT_CERTIFICATE_EXPIRED:
case SSL_R_SSLV3_ALERT_CERTIFICATE_UNKNOWN:
case SSL_R_TLSV1_ALERT_ACCESS_DENIED:
case SSL_R_TLSV1_ALERT_CERTIFICATE_REQUIRED:
case SSL_R_TLSV1_ALERT_UNKNOWN_CA:
return ERR_BAD_SSL_CLIENT_AUTH_CERT;
case SSL_R_SSLV3_ALERT_DECOMPRESSION_FAILURE:
return ERR_SSL_DECOMPRESSION_FAILURE_ALERT;
case SSL_R_SSLV3_ALERT_BAD_RECORD_MAC:
return ERR_SSL_BAD_RECORD_MAC_ALERT;
case SSL_R_TLSV1_ALERT_DECRYPT_ERROR:
return ERR_SSL_DECRYPT_ERROR_ALERT;
case SSL_R_TLSV1_UNRECOGNIZED_NAME:
return ERR_SSL_UNRECOGNIZED_NAME_ALERT;
case SSL_R_SERVER_CERT_CHANGED:
return ERR_SSL_SERVER_CERT_CHANGED;
case SSL_R_WRONG_VERSION_ON_EARLY_DATA:
return ERR_WRONG_VERSION_ON_EARLY_DATA;
case SSL_R_TLS13_DOWNGRADE:
return ERR_TLS13_DOWNGRADE_DETECTED;
case SSL_R_ECH_REJECTED:
return ERR_ECH_NOT_NEGOTIATED;
// SSL_R_SSLV3_ALERT_HANDSHAKE_FAILURE may be returned from the server after
// receiving ClientHello if there's no common supported cipher. Map that
// specific case to ERR_SSL_VERSION_OR_CIPHER_MISMATCH to match the NSS
// implementation. See https://goo.gl/oMtZW and https://crbug.com/446505.
case SSL_R_SSLV3_ALERT_HANDSHAKE_FAILURE: {
uint32_t previous = ERR_peek_error();
if (previous != 0 && ERR_GET_LIB(previous) == ERR_LIB_SSL &&
ERR_GET_REASON(previous) == SSL_R_HANDSHAKE_FAILURE_ON_CLIENT_HELLO) {
return ERR_SSL_VERSION_OR_CIPHER_MISMATCH;
}
return ERR_SSL_PROTOCOL_ERROR;
}
case SSL_R_KEY_USAGE_BIT_INCORRECT:
return ERR_SSL_KEY_USAGE_INCOMPATIBLE;
default:
return ERR_SSL_PROTOCOL_ERROR;
}
}
base::Value::Dict NetLogOpenSSLErrorParams(int net_error,
int ssl_error,
const OpenSSLErrorInfo& error_info) {
base::Value::Dict dict;
dict.Set("net_error", net_error);
dict.Set("ssl_error", ssl_error);
if (error_info.error_code != 0) {
dict.Set("error_lib", ERR_GET_LIB(error_info.error_code));
dict.Set("error_reason", ERR_GET_REASON(error_info.error_code));
}
if (error_info.file != nullptr)
dict.Set("file", error_info.file);
if (error_info.line != 0)
dict.Set("line", error_info.line);
return dict;
}
} // namespace
void OpenSSLPutNetError(const base::Location& location, int err) {
// Net error codes are negative. Encode them as positive numbers.
err = -err;
if (err < 0 || err > 0xfff) {
// OpenSSL reserves 12 bits for the reason code.
NOTREACHED();
}
ERR_put_error(OpenSSLNetErrorLib(), 0 /* unused */, err, location.file_name(),
location.line_number());
}
int MapOpenSSLError(int err, const crypto::OpenSSLErrStackTracer& tracer) {
OpenSSLErrorInfo error_info;
return MapOpenSSLErrorWithDetails(err, tracer, &error_info);
}
int MapOpenSSLErrorWithDetails(int err,
const crypto::OpenSSLErrStackTracer& tracer,
OpenSSLErrorInfo* out_error_info) {
*out_error_info = OpenSSLErrorInfo();
switch (err) {
case SSL_ERROR_WANT_READ:
case SSL_ERROR_WANT_WRITE:
return ERR_IO_PENDING;
case SSL_ERROR_EARLY_DATA_REJECTED:
return ERR_EARLY_DATA_REJECTED;
case SSL_ERROR_SYSCALL:
PLOG(ERROR) << "OpenSSL SYSCALL error, earliest error code in "
"error queue: "
<< ERR_peek_error();
return ERR_FAILED;
case SSL_ERROR_SSL:
// Walk down the error stack to find an SSL or net error.
while (true) {
OpenSSLErrorInfo error_info;
error_info.error_code =
ERR_get_error_line(&error_info.file, &error_info.line);
if (error_info.error_code == 0) {
// Map errors to ERR_SSL_PROTOCOL_ERROR by default, reporting the most
// recent error in |*out_error_info|.
return ERR_SSL_PROTOCOL_ERROR;
}
*out_error_info = error_info;
if (ERR_GET_LIB(error_info.error_code) == ERR_LIB_SSL) {
return MapOpenSSLErrorSSL(error_info.error_code);
}
if (ERR_GET_LIB(error_info.error_code) == OpenSSLNetErrorLib()) {
// Net error codes are negative but encoded in OpenSSL as positive
// numbers.
return -ERR_GET_REASON(error_info.error_code);
}
}
default:
// TODO(joth): Implement full mapping.
LOG(WARNING) << "Unknown OpenSSL error " << err;
return ERR_SSL_PROTOCOL_ERROR;
}
}
void NetLogOpenSSLError(const NetLogWithSource& net_log,
NetLogEventType type,
int net_error,
int ssl_error,
const OpenSSLErrorInfo& error_info) {
net_log.AddEvent(type, [&] {
return NetLogOpenSSLErrorParams(net_error, ssl_error, error_info);
});
}
int GetNetSSLVersion(SSL* ssl) {
switch (SSL_version(ssl)) {
case TLS1_VERSION:
return SSL_CONNECTION_VERSION_TLS1;
case TLS1_1_VERSION:
return SSL_CONNECTION_VERSION_TLS1_1;
case TLS1_2_VERSION:
return SSL_CONNECTION_VERSION_TLS1_2;
case TLS1_3_VERSION:
return SSL_CONNECTION_VERSION_TLS1_3;
default:
NOTREACHED();
}
}
bool SetSSLChainAndKey(SSL* ssl,
X509Certificate* cert,
EVP_PKEY* pkey,
const SSL_PRIVATE_KEY_METHOD* custom_key) {
std::vector<CRYPTO_BUFFER*> chain_raw;
chain_raw.reserve(1 + cert->intermediate_buffers().size());
chain_raw.push_back(cert->cert_buffer());
for (const auto& handle : cert->intermediate_buffers())
chain_raw.push_back(handle.get());
if (!SSL_set_chain_and_key(ssl, chain_raw.data(), chain_raw.size(), pkey,
custom_key)) {
LOG(WARNING) << "Failed to set client certificate";
return false;
}
return true;
}
bool ConfigureSSLCredential(
SSL* ssl,
base::span<const bssl::UniquePtr<CRYPTO_BUFFER>> cert_chain,
EVP_PKEY* pkey,
const SSL_PRIVATE_KEY_METHOD* custom_key,
base::span<const uint16_t> signing_algorithm_prefs,
base::span<const uint8_t> ocsp_response,
base::span<const uint8_t> signed_cert_timestamp_list,
base::span<const uint8_t> trust_anchor_id) {
bssl::UniquePtr<SSL_CREDENTIAL> credential(SSL_CREDENTIAL_new_x509());
if (!credential) {
return false;
}
std::vector<CRYPTO_BUFFER*> chain_raw;
chain_raw.reserve(cert_chain.size());
for (const auto& handle : cert_chain) {
chain_raw.push_back(handle.get());
}
if (!SSL_CREDENTIAL_set1_cert_chain(credential.get(), chain_raw.data(),
chain_raw.size())) {
return false;
}
if (!signing_algorithm_prefs.empty()) {
if (!SSL_CREDENTIAL_set1_signing_algorithm_prefs(
credential.get(), signing_algorithm_prefs.data(),
signing_algorithm_prefs.size())) {
return false;
}
}
DCHECK(pkey || custom_key);
if (pkey) {
DCHECK(!custom_key);
if (!SSL_CREDENTIAL_set1_private_key(credential.get(), pkey)) {
return false;
}
} else if (custom_key) {
DCHECK(!pkey);
if (!SSL_CREDENTIAL_set_private_key_method(credential.get(), custom_key)) {
return false;
}
}
if (!ocsp_response.empty()) {
bssl::UniquePtr<CRYPTO_BUFFER> buf(
CRYPTO_BUFFER_new(ocsp_response.data(), ocsp_response.size(), nullptr));
if (!SSL_CREDENTIAL_set1_ocsp_response(credential.get(), buf.get())) {
return false;
}
}
if (!signed_cert_timestamp_list.empty()) {
bssl::UniquePtr<CRYPTO_BUFFER> buf(
CRYPTO_BUFFER_new(signed_cert_timestamp_list.data(),
signed_cert_timestamp_list.size(), nullptr));
if (!SSL_CREDENTIAL_set1_signed_cert_timestamp_list(credential.get(),
buf.get())) {
return false;
}
}
if (!trust_anchor_id.empty()) {
if (!SSL_CREDENTIAL_set1_trust_anchor_id(
credential.get(), trust_anchor_id.data(), trust_anchor_id.size())) {
return false;
}
SSL_CREDENTIAL_set_must_match_issuer(credential.get(), 1);
}
if (!SSL_add1_credential(ssl, credential.get())) {
LOG(WARNING) << "Failed to set certificate";
return false;
}
return true;
}
} // namespace net
|
