passepartoutvpn
/
tunnelkit
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
tunnelkit/Sources/CTunnelKitOpenVPNProtocol/TLSBox.m

521 lines
16 KiB
Mathematica
Raw Normal View History

Initial commit
2018-08-23 08:19:25 +00:00
//
// TLSBox.m
Finish up renaming in headers and prefixes
2018-08-23 10:07:55 +00:00
// TunnelKit
Initial commit
2018-08-23 08:19:25 +00:00
//
// Created by Davide De Rosa on 2/3/17.
[ci skip] Update copyright
2022-02-04 11:42:58 +00:00
// Copyright (c) 2022 Davide De Rosa. All rights reserved.
Re-license with proper per-file notices Clarify explicitly the author/extent of the fork, with proper credit to the original project's license and copyright holder.
2018-08-27 18:30:09 +00:00
//
Update GitHub URL Move to passepartoutvpn org.
2019-05-14 08:58:47 +00:00
// https://github.com/passepartoutvpn
Re-license with proper per-file notices Clarify explicitly the author/extent of the fork, with proper credit to the original project's license and copyright holder.
2018-08-27 18:30:09 +00:00
//
// This file is part of TunnelKit.
//
// TunnelKit is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// TunnelKit is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with TunnelKit. If not, see <http://www.gnu.org/licenses/>.
//
// This file incorporates work covered by the following copyright and
// permission notice:
//
// Copyright (c) 2018-Present Private Internet Access
//
// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
//
// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//
Initial commit
2018-08-23 08:19:25 +00:00
Revert to OpenSSL (#233) * Use an OpenSSL binary without Bitcode * Restore TLS security level override * Disable Bitcode completely in Demo
2021-11-24 15:40:19 +00:00
#import <openssl/ssl.h>
#import <openssl/x509v3.h>
#import <openssl/err.h>
Initial commit
2018-08-23 08:19:25 +00:00
#import "TLSBox.h"
#import "Allocation.h"
#import "Errors.h"
const NSInteger TLSBoxMaxBufferLength = 16384;
NSString *const TLSBoxPeerVerificationErrorNotification = @"TLSBoxPeerVerificationErrorNotification";
Check NULL EKU and simplify OID comparison
2018-10-23 22:41:07 +00:00
//static const char *const TLSBoxClientEKU = "TLS Web Client Authentication";
static const char *const TLSBoxServerEKU = "TLS Web Server Authentication";
Initial commit
2018-08-23 08:19:25 +00:00
int TLSBoxVerifyPeer(int ok, X509_STORE_CTX *ctx) {
if (!ok) {
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
NSError *error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSCAPeerVerification);
Review/complete mapping to ProviderError Errors from TunnelKitNative were not mapped. Also, move TLS CA verification error to TLSBox domain.
2018-10-23 21:14:13 +00:00
[[NSNotificationCenter defaultCenter] postNotificationName:TLSBoxPeerVerificationErrorNotification
object:nil
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
userInfo:@{OpenVPNErrorKey: error}];
Initial commit
2018-08-23 08:19:25 +00:00
}
return ok;
}
Revert to OpenSSL (#233) * Use an OpenSSL binary without Bitcode * Restore TLS security level override * Disable Bitcode completely in Demo
2021-11-24 15:40:19 +00:00
const NSInteger TLSBoxDefaultSecurityLevel = 0;
Initial commit
2018-08-23 08:19:25 +00:00
@interface TLSBox ()
Verify CA from on-disk file (#237) * Verify CA from on-disk file Revert part of #213 again, because `SSL_CTX_load_verify_locations` is just more reliable at setting up the trust store. It looks like it's able to reference the .pem multiple times in those cases where the root issuer of the CA is also embedded in the file (which is the case with e.g. Let's Encrypt). This is better than the current implementation, and I couldn't easily find a way to do the same in-memory. I'd rather use the standard API here. See 7a85d3cac7b7332983bae5aaf9e2878277d2450b
2021-11-27 11:32:30 +00:00
@property (nonatomic, strong) NSString *caPath;
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
@property (nonatomic, strong) NSString *clientCertificatePEM;
@property (nonatomic, strong) NSString *clientKeyPEM;
Make EKU verification optional in TLSBox
2019-02-23 10:39:37 +00:00
@property (nonatomic, assign) BOOL checksEKU;
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
@property (nonatomic, assign) BOOL checksSANHost;
@property (nonatomic, strong) NSString *hostname;
Initial commit
2018-08-23 08:19:25 +00:00
@property (nonatomic, assign) BOOL isConnected;
@property (nonatomic, unsafe_unretained) SSL_CTX *ctx;
@property (nonatomic, unsafe_unretained) SSL *ssl;
@property (nonatomic, unsafe_unretained) BIO *bioPlainText;
@property (nonatomic, unsafe_unretained) BIO *bioCipherTextIn;
@property (nonatomic, unsafe_unretained) BIO *bioCipherTextOut;
@property (nonatomic, unsafe_unretained) uint8_t *bufferCipherText;
@end
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
static BIO *create_BIO_from_PEM(NSString *pem) {
return BIO_new_mem_buf([pem cStringUsingEncoding:NSASCIIStringEncoding], (int)[pem length]);
}
Initial commit
2018-08-23 08:19:25 +00:00
@implementation TLSBox
Catch errors on CA MD5 calculation (PIA only)
2019-02-25 22:29:02 +00:00
+ (NSString *)md5ForCertificatePath:(NSString *)path error:(NSError * _Nullable __autoreleasing * _Nullable)error
Add function to compute MD5 from certificate
2018-10-18 10:01:07 +00:00
{
const EVP_MD *alg = EVP_get_digestbyname("MD5");
uint8_t md[16];
unsigned int len;
FILE *pem = fopen([path cStringUsingEncoding:NSASCIIStringEncoding], "r");
Catch errors on CA MD5 calculation (PIA only)
2019-02-25 22:29:02 +00:00
if (!pem) {
return NULL;
}
Add function to compute MD5 from certificate
2018-10-18 10:01:07 +00:00
X509 *cert = PEM_read_X509(pem, NULL, NULL, NULL);
Catch errors on CA MD5 calculation (PIA only)
2019-02-25 22:29:02 +00:00
if (!cert) {
fclose(pem);
return NULL;
}
Add function to compute MD5 from certificate
2018-10-18 10:01:07 +00:00
X509_digest(cert, alg, md, &len);
X509_free(cert);
Add missing fclose() after fopen() Slip-up from #32
2018-10-20 22:22:36 +00:00
fclose(pem);
Add function to compute MD5 from certificate
2018-10-18 10:01:07 +00:00
NSCAssert2(len == sizeof(md), @"Unexpected MD5 size (%d != %lu)", len, sizeof(md));
NSMutableString *hex = [[NSMutableString alloc] initWithCapacity:2 * sizeof(md)];
for (int i = 0; i < sizeof(md); ++i) {
[hex appendFormat:@"%02x", md[i]];
}
return hex;
}
Implement RSA privkey decryption via OpenSSL
2019-03-25 15:53:38 +00:00
+ (NSString *)decryptedPrivateKeyFromPath:(NSString *)path passphrase:(NSString *)passphrase error:(NSError * _Nullable __autoreleasing *)error
{
BIO *bio;
if (!(bio = BIO_new_file([path cStringUsingEncoding:NSASCIIStringEncoding], "r"))) {
return NULL;
}
NSString *ret = [[self class] decryptedPrivateKeyFromBIO:bio passphrase:passphrase error:error];
BIO_free(bio);
return ret;
}
+ (NSString *)decryptedPrivateKeyFromPEM:(NSString *)pem passphrase:(NSString *)passphrase error:(NSError * _Nullable __autoreleasing *)error
{
BIO *bio;
if (!(bio = BIO_new_mem_buf([pem cStringUsingEncoding:NSASCIIStringEncoding], (int)[pem length]))) {
return NULL;
}
NSString *ret = [[self class] decryptedPrivateKeyFromBIO:bio passphrase:passphrase error:error];
BIO_free(bio);
return ret;
}
+ (NSString *)decryptedPrivateKeyFromBIO:(BIO *)bio passphrase:(NSString *)passphrase error:(NSError * _Nullable __autoreleasing *)error
{
Refactor to decrypt generic key
2019-04-01 22:09:18 +00:00
EVP_PKEY *evpKey;
if (!(evpKey = PEM_read_bio_PrivateKey(bio, NULL, NULL, (void *)passphrase.UTF8String))) {
Implement RSA privkey decryption via OpenSSL
2019-03-25 15:53:38 +00:00
return NULL;
}
Refactor to decrypt generic key
2019-04-01 22:09:18 +00:00
NSString *ret = [self decryptedKeyFromPrivateKey:evpKey error:error];
EVP_PKEY_free(evpKey);
return ret;
}
+ (NSString *)decryptedKeyFromPrivateKey:(EVP_PKEY *)evpKey error:(NSError * _Nullable __autoreleasing *)error
{
Implement RSA privkey decryption via OpenSSL
2019-03-25 15:53:38 +00:00
BIO *output = BIO_new(BIO_s_mem());
Decrypt generic EVP private key Why PKCS#8?
2019-04-27 08:45:55 +00:00
if (!PEM_write_bio_PrivateKey(output, evpKey, NULL, NULL, 0, NULL, NULL)) {
Implement RSA privkey decryption via OpenSSL
2019-03-25 15:53:38 +00:00
BIO_free(output);
return NULL;
}
const int decLength = (int)BIO_ctrl_pending(output);
char *decKeyBytes = malloc(decLength + 1);
if (BIO_read(output, decKeyBytes, decLength) < 0) {
BIO_free(output);
return NULL;
}
BIO_free(output);
decKeyBytes[decLength] = '\0';
return [NSString stringWithCString:decKeyBytes encoding:NSASCIIStringEncoding];
}
Initial commit
2018-08-23 08:19:25 +00:00
- (instancetype)init
{
Make CA non-optional Fix up nullability qualifiers in TLSBox. Fixes #26
2018-10-05 15:35:40 +00:00
[NSException raise:NSInvalidArgumentException format:@"Use initWithCAPath:clientCertificatePath:clientKeyPath:"];
return nil;
Initial commit
2018-08-23 08:19:25 +00:00
}
Verify CA from on-disk file (#237) * Verify CA from on-disk file Revert part of #213 again, because `SSL_CTX_load_verify_locations` is just more reliable at setting up the trust store. It looks like it's able to reference the .pem multiple times in those cases where the root issuer of the CA is also embedded in the file (which is the case with e.g. Let's Encrypt). This is better than the current implementation, and I couldn't easily find a way to do the same in-memory. I'd rather use the standard API here. See 7a85d3cac7b7332983bae5aaf9e2878277d2450b
2021-11-27 11:32:30 +00:00
- (instancetype)initWithCAPath:(nonnull NSString *)caPath
clientCertificate:(nullable NSString *)clientCertificatePEM
clientKey:(nullable NSString *)clientKeyPEM
checksEKU:(BOOL)checksEKU
checksSANHost:(BOOL)checksSANHost
hostname:(nullable NSString *)hostname
Initial commit
2018-08-23 08:19:25 +00:00
{
if ((self = [super init])) {
Verify CA from on-disk file (#237) * Verify CA from on-disk file Revert part of #213 again, because `SSL_CTX_load_verify_locations` is just more reliable at setting up the trust store. It looks like it's able to reference the .pem multiple times in those cases where the root issuer of the CA is also embedded in the file (which is the case with e.g. Let's Encrypt). This is better than the current implementation, and I couldn't easily find a way to do the same in-memory. I'd rather use the standard API here. See 7a85d3cac7b7332983bae5aaf9e2878277d2450b
2021-11-27 11:32:30 +00:00
self.caPath = caPath;
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
self.clientCertificatePEM = clientCertificatePEM;
self.clientKeyPEM = clientKeyPEM;
Make EKU verification optional in TLSBox
2019-02-23 10:39:37 +00:00
self.checksEKU = checksEKU;
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
self.checksSANHost = checksSANHost;
Initial commit
2018-08-23 08:19:25 +00:00
self.bufferCipherText = allocate_safely(TLSBoxMaxBufferLength);
Revert to OpenSSL (#233) * Use an OpenSSL binary without Bitcode * Restore TLS security level override * Disable Bitcode completely in Demo
2021-11-24 15:40:19 +00:00
self.securityLevel = TLSBoxDefaultSecurityLevel;
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
self.hostname = hostname;
Initial commit
2018-08-23 08:19:25 +00:00
}
return self;
}
- (void)dealloc
{
if (!self.ctx) {
return;
}
BIO_free_all(self.bioPlainText);
SSL_free(self.ssl);
SSL_CTX_free(self.ctx);
self.isConnected = NO;
self.ctx = NULL;
bzero(self.bufferCipherText, TLSBoxMaxBufferLength);
free(self.bufferCipherText);
}
Enforce use of non-preset CA certificates
2018-08-23 09:32:38 +00:00
- (BOOL)startWithError:(NSError *__autoreleasing *)error
Initial commit
2018-08-23 08:19:25 +00:00
{
self.ctx = SSL_CTX_new(TLS_client_method());
Drop support for redundant EC curves
2018-08-23 15:14:12 +00:00
SSL_CTX_set_options(self.ctx, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3 | SSL_OP_NO_COMPRESSION);
Make CA non-optional Fix up nullability qualifiers in TLSBox. Fixes #26
2018-10-05 15:35:40 +00:00
SSL_CTX_set_verify(self.ctx, SSL_VERIFY_PEER, TLSBoxVerifyPeer);
Revert to OpenSSL (#233) * Use an OpenSSL binary without Bitcode * Restore TLS security level override * Disable Bitcode completely in Demo
2021-11-24 15:40:19 +00:00
if (self.securityLevel != TLSBoxDefaultSecurityLevel) {
SSL_CTX_set_security_level(self.ctx, (int)self.securityLevel);
}
Verify CA from on-disk file (#237) * Verify CA from on-disk file Revert part of #213 again, because `SSL_CTX_load_verify_locations` is just more reliable at setting up the trust store. It looks like it's able to reference the .pem multiple times in those cases where the root issuer of the CA is also embedded in the file (which is the case with e.g. Let's Encrypt). This is better than the current implementation, and I couldn't easily find a way to do the same in-memory. I'd rather use the standard API here. See 7a85d3cac7b7332983bae5aaf9e2878277d2450b
2021-11-27 11:32:30 +00:00
if (self.caPath) {
if (!SSL_CTX_load_verify_locations(self.ctx, [self.caPath cStringUsingEncoding:NSASCIIStringEncoding], NULL)) {
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
ERR_print_errors_fp(stdout);
if (error) {
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSCAUse);
}
return NO;
}
Initial commit
2018-08-23 08:19:25 +00:00
}
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
if (self.clientCertificatePEM) {
BIO *bio = create_BIO_from_PEM(self.clientCertificatePEM);
if (!bio) {
if (error) {
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSClientCertificateRead);
}
return NO;
}
X509 *cert = PEM_read_bio_X509(bio, NULL, NULL, NULL);
if (!cert) {
if (error) {
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSClientCertificateRead);
}
BIO_free(bio);
return NO;
}
BIO_free(bio);
if (!SSL_CTX_use_certificate(self.ctx, cert)) {
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
ERR_print_errors_fp(stdout);
if (error) {
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSClientCertificateUse);
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
}
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
X509_free(cert);
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
return NO;
}
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
X509_free(cert);
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
if (self.clientKeyPEM) {
BIO *bio = create_BIO_from_PEM(self.clientKeyPEM);
if (!bio) {
if (error) {
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSClientKeyRead);
}
return NO;
}
EVP_PKEY *pkey = PEM_read_bio_PrivateKey(bio, NULL, NULL, NULL);
if (!pkey) {
if (error) {
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSClientKeyRead);
}
EVP_PKEY_free(pkey);
return NO;
}
BIO_free(bio);
if (!SSL_CTX_use_PrivateKey(self.ctx, pkey)) {
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
ERR_print_errors_fp(stdout);
if (error) {
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSClientKeyUse);
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
}
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
EVP_PKEY_free(pkey);
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
return NO;
}
Restore and fix former PEM caching PR (#235) This reverts commit 995009121a4ad02fb9d8a3f2980ea9dd1693e396. * Improve error handling * Trust intermediate CA * Update CHANGELOG
2021-11-25 11:36:17 +00:00
EVP_PKEY_free(pkey);
Support client certificate in TLSBox
2018-08-23 15:24:39 +00:00
}
}
Initial commit
2018-08-23 08:19:25 +00:00
self.ssl = SSL_new(self.ctx);
self.bioPlainText = BIO_new(BIO_f_ssl());
self.bioCipherTextIn = BIO_new(BIO_s_mem());
self.bioCipherTextOut = BIO_new(BIO_s_mem());
SSL_set_connect_state(self.ssl);
SSL_set_bio(self.ssl, self.bioCipherTextIn, self.bioCipherTextOut);
BIO_set_ssl(self.bioPlainText, self.ssl, BIO_NOCLOSE);
if (!SSL_do_handshake(self.ssl)) {
if (error) {
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSHandshake);
Initial commit
2018-08-23 08:19:25 +00:00
}
return NO;
}
return YES;
}
#pragma mark Pull
- (NSData *)pullCipherTextWithError:(NSError *__autoreleasing *)error
{
if (!self.isConnected && !SSL_is_init_finished(self.ssl)) {
SSL_do_handshake(self.ssl);
}
const int ret = BIO_read(self.bioCipherTextOut, self.bufferCipherText, TLSBoxMaxBufferLength);
if (!self.isConnected && SSL_is_init_finished(self.ssl)) {
self.isConnected = YES;
Verify server cert EKU Fixes #27
2018-10-23 18:44:53 +00:00
Make EKU verification optional in TLSBox
2019-02-23 10:39:37 +00:00
if (self.checksEKU && ![self verifyEKUWithSSL:self.ssl]) {
Verify server cert EKU Fixes #27
2018-10-23 18:44:53 +00:00
if (error) {
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSServerEKU);
Verify server cert EKU Fixes #27
2018-10-23 18:44:53 +00:00
}
return nil;
}
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
if (self.checksSANHost && ![self verifySANHostWithSSL:self.ssl]) {
if (error) {
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSServerHost);
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
}
return nil;
}
Initial commit
2018-08-23 08:19:25 +00:00
}
if (ret > 0) {
return [NSData dataWithBytes:self.bufferCipherText length:ret];
}
if ((ret < 0) && !BIO_should_retry(self.bioCipherTextOut)) {
if (error) {
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSHandshake);
Initial commit
2018-08-23 08:19:25 +00:00
}
}
return nil;
}
- (BOOL)pullRawPlainText:(uint8_t *)text length:(NSInteger *)length error:(NSError *__autoreleasing *)error
{
NSParameterAssert(text);
NSParameterAssert(length);
const int ret = BIO_read(self.bioPlainText, text, TLSBoxMaxBufferLength);
if (ret > 0) {
*length = ret;
return YES;
}
if ((ret < 0) && !BIO_should_retry(self.bioPlainText)) {
if (error) {
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSHandshake);
Initial commit
2018-08-23 08:19:25 +00:00
}
}
return NO;
}
#pragma mark Put
- (BOOL)putCipherText:(NSData *)text error:(NSError *__autoreleasing *)error
{
NSParameterAssert(text);
return [self putRawCipherText:(const uint8_t *)text.bytes length:text.length error:error];
}
- (BOOL)putRawCipherText:(const uint8_t *)text length:(NSInteger)length error:(NSError *__autoreleasing *)error
{
NSParameterAssert(text);
const int ret = BIO_write(self.bioCipherTextIn, text, (int)length);
if (ret != length) {
if (error) {
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSHandshake);
Initial commit
2018-08-23 08:19:25 +00:00
}
return NO;
}
return YES;
}
- (BOOL)putPlainText:(NSString *)text error:(NSError *__autoreleasing *)error
{
NSParameterAssert(text);
return [self putRawPlainText:(const uint8_t *)[text cStringUsingEncoding:NSASCIIStringEncoding] length:text.length error:error];
}
- (BOOL)putRawPlainText:(const uint8_t *)text length:(NSInteger)length error:(NSError *__autoreleasing *)error
{
NSParameterAssert(text);
const int ret = BIO_write(self.bioPlainText, text, (int)length);
if (ret != length) {
if (error) {
Move TunnelKit errors specific to OpenVPN Use local error domain in LZO to not depend on anything.
2021-11-23 17:32:59 +00:00
*error = OpenVPNErrorWithCode(OpenVPNErrorCodeTLSHandshake);
Initial commit
2018-08-23 08:19:25 +00:00
}
return NO;
}
return YES;
}
Verify server cert EKU Fixes #27
2018-10-23 18:44:53 +00:00
#pragma mark EKU
- (BOOL)verifyEKUWithSSL:(SSL *)ssl
{
X509 *cert = SSL_get_peer_certificate(self.ssl);
if (!cert) {
return NO;
}
// don't be afraid of saving some time:
//
// https://stackoverflow.com/questions/37047379/how-extract-all-oids-from-certificate-with-openssl
//
const int extIndex = X509_get_ext_by_NID(cert, NID_ext_key_usage, -1);
if (extIndex < 0) {
X509_free(cert);
return NO;
}
X509_EXTENSION *ext = X509_get_ext(cert, extIndex);
if (!ext) {
X509_free(cert);
return NO;
}
EXTENDED_KEY_USAGE *eku = X509V3_EXT_d2i(ext);
Check NULL EKU and simplify OID comparison
2018-10-23 22:41:07 +00:00
if (!eku) {
X509_free(cert);
return NO;
}
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
const int num = (int)sk_ASN1_OBJECT_num(eku);
Verify server cert EKU Fixes #27
2018-10-23 18:44:53 +00:00
char buffer[100];
BOOL isValid = NO;
for (int i = 0; i < num; ++i) {
OBJ_obj2txt(buffer, sizeof(buffer), sk_ASN1_OBJECT_value(eku, i), 1); // get OID
const char *oid = OBJ_nid2ln(OBJ_obj2nid(sk_ASN1_OBJECT_value(eku, i)));
// NSLog(@"eku flag %d: %s - %s", i, buffer, oid);
Check NULL when verifying EKU
2019-02-25 22:30:28 +00:00
if (oid && !strcmp(oid, TLSBoxServerEKU)) {
Verify server cert EKU Fixes #27
2018-10-23 18:44:53 +00:00
isValid = YES;
break;
}
}
Check NULL EKU and simplify OID comparison
2018-10-23 22:41:07 +00:00
EXTENDED_KEY_USAGE_free(eku);
Verify server cert EKU Fixes #27
2018-10-23 18:44:53 +00:00
X509_free(cert);
return isValid;
}
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
#pragma mark SAN
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
- (BOOL)verifySANHostWithSSL:(SSL *)ssl
{
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
X509 *cert = SSL_get_peer_certificate(self.ssl);
if (!cert) {
return NO;
}
GENERAL_NAMES* names = NULL;
unsigned char* utf8 = NULL;
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
names = X509_get_ext_d2i(cert, NID_subject_alt_name, 0, 0);
if (!names) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
X509_free(cert);
return NO;
}
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
int i = 0, count = (int)sk_GENERAL_NAME_num(names);
if (!count) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
X509_free(cert);
GENERAL_NAMES_free(names);
return NO;
}
BOOL isValid = NO;
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
for (i = 0; i < count; ++i) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
GENERAL_NAME* entry = sk_GENERAL_NAME_value(names, i);
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
if (!entry) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
continue;
}
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
if (GEN_DNS != entry->type) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
continue;
}
int len1 = 0, len2 = -1;
len1 = ASN1_STRING_to_UTF8(&utf8, entry->d.dNSName);
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
if (!utf8) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
continue;
}
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
len2 = (int)strlen((const char *)utf8);
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
if (len1 != len2) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
OPENSSL_free(utf8);
utf8 = NULL;
continue;
}
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
if (utf8 && len1 && len2 && (len1 == len2) && strcmp((const char *)utf8, self.hostname.UTF8String) == 0) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
isValid = YES;
break;
}
OPENSSL_free(utf8);
utf8 = NULL;
}
X509_free(cert);
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
if (names) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
GENERAL_NAMES_free(names);
}
Replace OpenSSL with BoringSSL from SwiftNIO SSL - Raise iOS target to 13 - Drop support for TLS security level - Address warnings about integer conversion (iOS)
2021-11-11 11:33:08 +00:00
if (utf8) {
SAN host check (#168) * Check if host is present in certificates SAN list * Save .tlsServerHost error as .tlsServerVerification into last error Co-authored-by: Davide De Rosa <keeshux@gmail.com>
2020-05-08 22:02:16 +00:00
OPENSSL_free(utf8);
}
return isValid;
}
Initial commit
2018-08-23 08:19:25 +00:00
@end