diff options
| author | Robert Relyea <rrelyea@redhat.com> | 2020-10-23 14:35:52 -0700 |
|---|---|---|
| committer | Robert Relyea <rrelyea@redhat.com> | 2020-10-23 14:35:52 -0700 |
| commit | 3519dda9eb2a49b6fd5aa0490b24bcdc722af63b (patch) | |
| tree | 64a915bcf0b02f7dfac07db2e950d47d248470d6 /tests | |
| parent | 8b43ef441e53342097b795c50044a33020295e20 (diff) | |
| download | nss-hg-3519dda9eb2a49b6fd5aa0490b24bcdc722af63b.tar.gz | |
Bug 1672291 libpkix OCSP failures on SHA1 self-signed root certs when SHA1 signatures are disabled.
When libpkix is checking an OCSP cert, it can't use the passed in set of trust anchors as a base because only the single root that signed the leaf can sign the OCSP request. As a result it actually checks the signature of the self-signed root when processing an OCSP request. This fails of the root cert signature is invalid for any reason (including it's a sha1 self-signed root cert and we've disabled sha1 signatures (say, by policy)).
Further investigation indicates the difference between our classic code and the current code is the classic code only checks OCSP responses on leaf certs. In the real world, those responses are signed by intermediate certificates (who won't have sha1 signed certificates anymore), so our signature processing works just fine. pkix checks OCSP on the intermediate certificates as well, which are signed by the root cert. In this case the root cert is a chain of 1, and is effectively a leaf. This patch updates the OCSP response code to not check the signatures on the single cert if that cert is a selfsigned root cert. This requires bug 391476 so we still do the other validation checking on the certs (making sure it's trusted as a CA).
Diffstat (limited to 'tests')
| -rwxr-xr-x | tests/ssl/ssl.sh | 44 |
1 files changed, 44 insertions, 0 deletions
diff --git a/tests/ssl/ssl.sh b/tests/ssl/ssl.sh index d273a29b8..3ed9c8b1d 100755 --- a/tests/ssl/ssl.sh +++ b/tests/ssl/ssl.sh @@ -906,6 +906,49 @@ ssl_policy_listsuites() html "</TABLE><BR>" } +ssl_policy_pkix_ocsp() +{ + #verbose="-v" + html_head "Check that OCSP doesn't break if we disable sha1 $NORM_EXT - server $SERVER_MODE/client $CLIENT_MODE" + + PKIX_SAVE=${NSS_ENABLE_PKIX_VERIFY-"unset"} + NSS_ENABLE_PKIX_VERIFY="1" + export NSS_ENABLE_PKIX_VERIFY + + testname="" + + if [ ! -f "${P_R_SERVERDIR}/pkcs11.txt" ] ; then + html_failed "${SCRIPTNAME}: ${P_R_SERVERDIR} is not initialized" + return 1; + fi + + echo "Saving pkcs11.txt" + cp ${P_R_SERVERDIR}/pkcs11.txt ${P_R_SERVERDIR}/pkcs11.txt.sav + + # Disallow all explicitly + setup_policy "disallow=sha1" ${P_R_SERVERDIR} + RET_EXP=0 + echo " vfyserv -o wrong.host.badssl.com -d ${P_R_SERVERDIR} 2>&1 | tee ${P_R_SERVERDIR}/vfy.out" + vfyserv -o wrong.host.badssl.com -d ${P_R_SERVERDIR} 2>&1 | tee ${P_R_SERVERDIR}/vfy.out + # make sure we have the domain mismatch, not bad signature error + echo "grep 12276 ${P_R_SERVERDIR}/vfy.out" + grep 12276 ${P_R_SERVERDIR}/vfy.out + RET=$? + html_msg $RET $RET_EXP "${testname}" \ + "produced a returncode of $RET, expected is $RET_EXP" + + if [ "${PKIX_SAVE}" = "unset" ]; then + unset NSS_ENABLE_PKIX_VERIFY + else + NSS_ENABLE_PKIX_VERIFY=${PKIX_SAVE} + export NSS_ENABLE_PKIX_VERIFY + fi + cp ${P_R_SERVERDIR}/pkcs11.txt.sav ${P_R_SERVERDIR}/pkcs11.txt + + html "</TABLE><BR>" + +} + ############################## ssl_policy_selfserv ##################### # local shell function to perform SSL Policy tests, using selfserv ######################################################################## @@ -1522,6 +1565,7 @@ ssl_run_tests() if [ "${TEST_MODE}" = "SHARED_DB" ] ; then ssl_policy_listsuites ssl_policy_selfserv + ssl_policy_pkix_ocsp ssl_policy fi ;; |