2017-06-23 12:34:54 +02:00
|
|
|
From a33c0d811ad976561e5cb5bfc8431c1a286e796b Mon Sep 17 00:00:00 2001
|
|
|
|
|
From: Nirmoy Das <ndas@suse.de>
|
|
|
|
|
Date: Fri, 23 Jun 2017 11:00:08 +0200
|
|
|
|
|
Subject: [PATCH] fips-140
|
|
|
|
|
|
|
|
|
|
Signed-off-by: Nirmoy Das <ndas@suse.de>
|
|
|
|
|
---
|
|
|
|
|
src/openvpn/crypto.c | 2 +-
|
|
|
|
|
src/openvpn/crypto_backend.h | 3 ++-
|
|
|
|
|
src/openvpn/crypto_openssl.c | 6 +++++-
|
|
|
|
|
src/openvpn/ntlm.c | 2 +-
|
|
|
|
|
src/openvpn/options.c | 4 ++++
|
|
|
|
|
src/openvpn/ssl.c | 4 ++--
|
|
|
|
|
6 files changed, 15 insertions(+), 6 deletions(-)
|
|
|
|
|
|
2017-06-06 14:54:53 +02:00
|
|
|
diff --git a/src/openvpn/crypto.c b/src/openvpn/crypto.c
|
2017-06-23 12:34:54 +02:00
|
|
|
index 5f482d0..ff0f9a7 100644
|
2017-06-06 14:54:53 +02:00
|
|
|
--- a/src/openvpn/crypto.c
|
|
|
|
|
+++ b/src/openvpn/crypto.c
|
2017-06-23 12:34:54 +02:00
|
|
|
@@ -876,7 +876,7 @@ init_key_ctx(struct key_ctx *ctx, struct key *key,
|
2017-06-06 14:54:53 +02:00
|
|
|
if (kt->digest && kt->hmac_length > 0)
|
|
|
|
|
{
|
2017-06-23 12:34:54 +02:00
|
|
|
ctx->hmac = hmac_ctx_new();
|
2017-06-06 14:54:53 +02:00
|
|
|
- hmac_ctx_init(ctx->hmac, key->hmac, kt->hmac_length, kt->digest);
|
|
|
|
|
+ hmac_ctx_init(ctx->hmac, key->hmac, kt->hmac_length, kt->digest, 0);
|
|
|
|
|
|
|
|
|
|
msg(D_HANDSHAKE,
|
|
|
|
|
"%s: Using %d bit message hash '%s' for HMAC authentication",
|
|
|
|
|
diff --git a/src/openvpn/crypto_backend.h b/src/openvpn/crypto_backend.h
|
2017-06-23 12:34:54 +02:00
|
|
|
index b7f519b..2911248 100644
|
2017-06-06 14:54:53 +02:00
|
|
|
--- a/src/openvpn/crypto_backend.h
|
|
|
|
|
+++ b/src/openvpn/crypto_backend.h
|
2017-06-23 12:34:54 +02:00
|
|
|
@@ -604,10 +604,11 @@ void hmac_ctx_free(hmac_ctx_t *ctx);
|
2017-06-06 14:54:53 +02:00
|
|
|
* @param key The key to use for the HMAC
|
|
|
|
|
* @param key_len The key length to use
|
|
|
|
|
* @param kt Static message digest parameters
|
2017-06-23 12:34:54 +02:00
|
|
|
+ * @param prf_use Intended use for PRF in TLS protocol
|
2014-01-20 13:12:10 +01:00
|
|
|
*
|
|
|
|
|
*/
|
2017-06-06 14:54:53 +02:00
|
|
|
void hmac_ctx_init(hmac_ctx_t *ctx, const uint8_t *key, int key_length,
|
|
|
|
|
- const md_kt_t *kt);
|
|
|
|
|
+ const md_kt_t *kt, bool prf_use);
|
2014-01-20 13:12:10 +01:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Free the given HMAC context.
|
2017-06-06 14:54:53 +02:00
|
|
|
diff --git a/src/openvpn/crypto_openssl.c b/src/openvpn/crypto_openssl.c
|
2017-06-23 12:34:54 +02:00
|
|
|
index a55e65c..79f5530 100644
|
2017-06-06 14:54:53 +02:00
|
|
|
--- a/src/openvpn/crypto_openssl.c
|
|
|
|
|
+++ b/src/openvpn/crypto_openssl.c
|
2017-06-23 12:34:54 +02:00
|
|
|
@@ -926,11 +926,15 @@ hmac_ctx_free(HMAC_CTX *ctx)
|
2014-01-20 13:12:10 +01:00
|
|
|
|
|
|
|
|
void
|
2017-06-06 14:54:53 +02:00
|
|
|
hmac_ctx_init(HMAC_CTX *ctx, const uint8_t *key, int key_len,
|
|
|
|
|
- const EVP_MD *kt)
|
|
|
|
|
+ const EVP_MD *kt, bool prf_use)
|
2014-01-20 13:12:10 +01:00
|
|
|
{
|
2017-06-06 14:54:53 +02:00
|
|
|
ASSERT(NULL != kt && NULL != ctx);
|
|
|
|
|
|
|
|
|
|
HMAC_CTX_init(ctx);
|
|
|
|
|
+ /* FIPS 140-2 explicitly allows MD5 for the use in PRF although it is not
|
2017-06-23 12:34:54 +02:00
|
|
|
+ * * to be used anywhere else */
|
2017-06-06 14:54:53 +02:00
|
|
|
+ if(kt == EVP_md5() && prf_use)
|
|
|
|
|
+ HMAC_CTX_set_flags(ctx, EVP_MD_CTX_FLAG_NON_FIPS_ALLOW);
|
|
|
|
|
HMAC_Init_ex(ctx, key, key_len, kt, NULL);
|
|
|
|
|
|
|
|
|
|
/* make sure we used a big enough key */
|
|
|
|
|
diff --git a/src/openvpn/ntlm.c b/src/openvpn/ntlm.c
|
2017-06-23 12:34:54 +02:00
|
|
|
index 0b1163e..93283bc 100644
|
2017-06-06 14:54:53 +02:00
|
|
|
--- a/src/openvpn/ntlm.c
|
|
|
|
|
+++ b/src/openvpn/ntlm.c
|
2017-06-23 12:34:54 +02:00
|
|
|
@@ -87,7 +87,7 @@ gen_hmac_md5(const char *data, int data_len, const char *key, int key_len,char *
|
|
|
|
|
const md_kt_t *md5_kt = md_kt_get("MD5");
|
|
|
|
|
hmac_ctx_t *hmac_ctx = hmac_ctx_new();
|
2017-06-06 14:54:53 +02:00
|
|
|
|
2017-06-23 12:34:54 +02:00
|
|
|
- hmac_ctx_init(hmac_ctx, key, key_len, md5_kt);
|
|
|
|
|
+ hmac_ctx_init(hmac_ctx, key, key_len, md5_kt, 0);
|
|
|
|
|
hmac_ctx_update(hmac_ctx, (const unsigned char *)data, data_len);
|
|
|
|
|
hmac_ctx_final(hmac_ctx, (unsigned char *)result);
|
|
|
|
|
hmac_ctx_cleanup(hmac_ctx);
|
2017-06-06 14:54:53 +02:00
|
|
|
diff --git a/src/openvpn/options.c b/src/openvpn/options.c
|
2017-06-23 12:34:54 +02:00
|
|
|
index fef5e90..33b6976 100644
|
2017-06-06 14:54:53 +02:00
|
|
|
--- a/src/openvpn/options.c
|
|
|
|
|
+++ b/src/openvpn/options.c
|
|
|
|
|
@@ -850,6 +850,10 @@ init_options(struct options *o, const bool init_gc)
|
2014-01-20 13:12:10 +01:00
|
|
|
#endif
|
|
|
|
|
#ifdef ENABLE_CRYPTO
|
2017-06-06 14:54:53 +02:00
|
|
|
o->ciphername = "BF-CBC";
|
2015-03-02 09:27:36 +01:00
|
|
|
+#ifdef OPENSSL_FIPS
|
2017-06-06 14:54:53 +02:00
|
|
|
+ if(FIPS_mode())
|
|
|
|
|
+ o->ciphername = "AES-256-CBC";
|
2015-03-02 09:27:36 +01:00
|
|
|
+#endif
|
2017-06-06 14:54:53 +02:00
|
|
|
#ifdef HAVE_AEAD_CIPHER_MODES /* IV_NCP=2 requires GCM support */
|
|
|
|
|
o->ncp_enabled = true;
|
|
|
|
|
#else
|
|
|
|
|
diff --git a/src/openvpn/ssl.c b/src/openvpn/ssl.c
|
2017-06-23 12:34:54 +02:00
|
|
|
index 15cd94a..21f50f1 100644
|
2017-06-06 14:54:53 +02:00
|
|
|
--- a/src/openvpn/ssl.c
|
|
|
|
|
+++ b/src/openvpn/ssl.c
|
2017-06-23 12:34:54 +02:00
|
|
|
@@ -1635,8 +1635,8 @@ tls1_P_hash(const md_kt_t *md_kt,
|
2017-06-06 14:54:53 +02:00
|
|
|
chunk = md_kt_size(md_kt);
|
|
|
|
|
A1_len = md_kt_size(md_kt);
|
|
|
|
|
|
2017-06-23 12:34:54 +02:00
|
|
|
- hmac_ctx_init(ctx, sec, sec_len, md_kt);
|
|
|
|
|
- hmac_ctx_init(ctx_tmp, sec, sec_len, md_kt);
|
|
|
|
|
+ hmac_ctx_init(ctx, sec, sec_len, md_kt, 1);
|
|
|
|
|
+ hmac_ctx_init(ctx_tmp, sec, sec_len, md_kt, 1);
|
2017-06-06 14:54:53 +02:00
|
|
|
|
2017-06-23 12:34:54 +02:00
|
|
|
hmac_ctx_update(ctx,seed,seed_len);
|
|
|
|
|
hmac_ctx_final(ctx, A1);
|
|
|
|
|
--
|
|
|
|
|
2.13.1
|
|
|
|
|
|
