haproxy/include/haproxy/ssl_utils.h

/*
 * include/haproxy/ssl_utils.h
 *
 * Utility functions for SSL:
 * Mostly generic functions that retrieve information from certificates
 *
 * Copyright (C) 2012 EXCELIANCE, Emeric Brun <ebrun@exceliance.fr>
 * Copyright (C) 2020 HAProxy Technologies, William Lallemand <wlallemand@haproxy.com>
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation, version 2.1
 * exclusively.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
 */

#ifndef _HAPROXY_SSL_UTILS_H
#define _HAPROXY_SSL_UTILS_H

#ifdef USE_OPENSSL

#include <haproxy/buf-t.h>
#include <haproxy/openssl-compat.h>

int cert_get_pkey_algo(X509 *crt, struct buffer *out);
int ssl_sock_get_serial(X509 *crt, struct buffer *out);
int ssl_sock_crt2der(X509 *crt, struct buffer *out);
int ssl_sock_get_time(ASN1_TIME *tm, struct buffer *out);
int ssl_sock_get_dn_entry(X509_NAME *a, const struct buffer *entry, int pos,
                          struct buffer *out);
int ssl_sock_get_dn_formatted(X509_NAME *a, const struct buffer *format, struct buffer *out);
int ssl_sock_get_dn_oneline(X509_NAME *a, struct buffer *out);
X509* ssl_sock_get_peer_certificate(SSL *ssl);
X509* ssl_sock_get_verified_chain_root(SSL *ssl);
unsigned int openssl_version_parser(const char *version);
void exclude_tls_grease(char *input, int len, struct buffer *output);
int x509_v_err_str_to_int(const char *str);
const char *x509_v_err_int_to_str(int code);
long asn1_generalizedtime_to_epoch(ASN1_GENERALIZEDTIME *d);
const char *x509_get_notbefore(X509 *cert);
const char *x509_get_notafter(X509 *cert);
#ifdef HAVE_ASN1_TIME_TO_TM
time_t ASN1_to_time_t(ASN1_TIME *asn1_time);
time_t x509_get_notafter_time_t(X509 *cert);
time_t x509_get_notbefore_time_t(X509 *cert);
#endif
int curves2nid(const char *curve);
const char *nid2nist(int nid);
const char *sigalg2str(int sigalg);
const char *curveid2str(int curve_id);

int aes_process(struct buffer *data, struct buffer *nonce, struct buffer *key, int key_size,
                struct buffer *aead_tag, struct buffer *aad, struct buffer *out, int decrypt, int gcm);

#endif /* _HAPROXY_SSL_UTILS_H */
#endif /* USE_OPENSSL */
REORG: ssl: move utility functions to src/ssl_utils.c These functions are mainly used to extract information from certificates. 2020-05-15 06:01:17 -04:00			`/*`
REORG: include: move ssl_utils.h to haproxy/ssl_utils.h Just added buf-t and openssl-compat for the missing types that appear in the prototypes. 2020-06-04 08:21:22 -04:00			`* include/haproxy/ssl_utils.h`
REORG: ssl: move utility functions to src/ssl_utils.c These functions are mainly used to extract information from certificates. 2020-05-15 06:01:17 -04:00			`*`
			`* Utility functions for SSL:`
			`* Mostly generic functions that retrieve information from certificates`
			`*`
			`* Copyright (C) 2012 EXCELIANCE, Emeric Brun <ebrun@exceliance.fr>`
			`* Copyright (C) 2020 HAProxy Technologies, William Lallemand <wlallemand@haproxy.com>`
			`*`
			`* This library is free software; you can redistribute it and/or`
			`* modify it under the terms of the GNU Lesser General Public`
			`* License as published by the Free Software Foundation, version 2.1`
			`* exclusively.`
			`*`
			`* This library is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU`
			`* Lesser General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Lesser General Public`
			`* License along with this library; if not, write to the Free Software`
			`* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA`
			`*/`

REORG: include: move ssl_utils.h to haproxy/ssl_utils.h Just added buf-t and openssl-compat for the missing types that appear in the prototypes. 2020-06-04 08:21:22 -04:00			`#ifndef _HAPROXY_SSL_UTILS_H`
			`#define _HAPROXY_SSL_UTILS_H`

REORG: ssl: move utility functions to src/ssl_utils.c These functions are mainly used to extract information from certificates. 2020-05-15 06:01:17 -04:00			`#ifdef USE_OPENSSL`

REORG: include: move ssl_utils.h to haproxy/ssl_utils.h Just added buf-t and openssl-compat for the missing types that appear in the prototypes. 2020-06-04 08:21:22 -04:00			`#include <haproxy/buf-t.h>`
			`#include <haproxy/openssl-compat.h>`

REORG: ssl: move utility functions to src/ssl_utils.c These functions are mainly used to extract information from certificates. 2020-05-15 06:01:17 -04:00			`int cert_get_pkey_algo(X509 crt, struct buffer out);`
			`int ssl_sock_get_serial(X509 crt, struct buffer out);`
			`int ssl_sock_crt2der(X509 crt, struct buffer out);`
			`int ssl_sock_get_time(ASN1_TIME tm, struct buffer out);`
			`int ssl_sock_get_dn_entry(X509_NAME a, const struct buffer entry, int pos,`
			`struct buffer *out);`
			`int ssl_sock_get_dn_formatted(X509_NAME a, const struct buffer format, struct buffer *out);`
			`int ssl_sock_get_dn_oneline(X509_NAME a, struct buffer out);`
MEDIUM: ssl: Keep a reference to the client's certificate for use in logs Most of the SSL sample fetches related to the client certificate were based on the SSL_get_peer_certificate function which returns NULL when the verification process failed. This made it impossible to use those fetches in a log format since they would always be empty. The patch adds a reference to the X509 object representing the client certificate in the SSL structure and makes use of this reference in the fetches. The reference can only be obtained in ssl_sock_bind_verifycbk which means that in case of an SSL error occurring before the verification process ("no shared cipher" for instance, which happens while processing the Client Hello), we won't ever start the verification process and it will be impossible to get information about the client certificate. This patch also allows most of the ssl_c_XXX fetches to return a usable value in case of connection failure (because of a verification error for instance) by making the "conn->flags & CO_FL_WAIT_XPRT" test (which requires a connection to be established) less strict. Thanks to this patch, a log-format such as the following should return usable information in case of an error occurring during the verification process : log-format "DN=%{+Q}[ssl_c_s_dn] serial=%[ssl_c_serial,hex] \ hash=%[ssl_c_sha1,hex]" It should answer to GitHub issue #693. 2021-08-19 12:06:30 -04:00			`X509* ssl_sock_get_peer_certificate(SSL *ssl);`
MINOR: ssl: add new sample ssl_c_r_dn This patch addresses #1514, adds the ability to fetch DN of the root ca that was in the chain when client certificate was verified during SSL handshake. 2023-05-13 23:04:45 -04:00			`X509* ssl_sock_get_verified_chain_root(SSL *ssl);`
MINOR: ssl: add an openssl version string parser openssl_version_parser() parse a string in the OpenSSL version format which is documented here: https://www.openssl.org/docs/man1.1.1/man3/OPENSSL_VERSION_NUMBER.html The function returns an unsigned int that could be used for comparing openssl versions. 2021-08-21 17:16:06 -04:00			`unsigned int openssl_version_parser(const char *version);`
MINOR: sample: Expose SSL captures using new fetchers To be able to provide JA3 compatible TLS Fingerprints we need to expose all Client Hello captured data using fetchers. Patch provides new and modifies existing fetchers to add ability to filter out GREASE values: - ssl_fc_cipherlist_* - ssl_fc_ecformats_bin - ssl_fc_eclist_bin - ssl_fc_extlist_bin - ssl_fc_protocol_hello_id 2021-07-13 09:14:21 -04:00			`void exclude_tls_grease(char input, int len, struct buffer output);`
MEDIUM: ssl: {ca,crt}-ignore-err can now use error constant name The ca-ignore-err and crt-ignore-err directives are now able to use the openssl X509_V_ERR constant names instead of the numerical values. This allow a configuration to survive an OpenSSL upgrade, because the numerical ID can change between versions. For example X509_V_ERR_INVALID_CA was 24 in OpenSSL 1 and is 79 in OpenSSL 3. The list of errors must be updated when a new major OpenSSL version is released. 2022-11-03 11:31:50 -04:00			`int x509_v_err_str_to_int(const char *str);`
			`const char *x509_v_err_int_to_str(int code);`
MINOR: ssl: Move OCSP code to a dedicated source file This is a simple cleanup that moves OCSP related code to a dedicated file instead of interlacing it in some pure ssl connection code. 2022-12-20 05:11:17 -05:00			`long asn1_generalizedtime_to_epoch(ASN1_GENERALIZEDTIME *d);`
MINOR: ssl: add notBefore and notAfter utility functions Extracting notBefore and notAfter as a string can be bothersome, add 2 utility functions that returns the value in a static buffer. 2024-12-06 11:42:19 -05:00			`const char x509_get_notbefore(X509 cert);`
			`const char x509_get_notafter(X509 cert);`
MINOR: ssl: add utils functions to extract X509 notAfter date Add ASN1_to_time_t() which converts an ASN1_TIME to a time_t and x509_get_notafter_time_t() which returns the notAfter date in time_t format. 2024-12-16 06:34:56 -05:00			`#ifdef HAVE_ASN1_TIME_TO_TM`
			`time_t ASN1_to_time_t(ASN1_TIME *asn1_time);`
			`time_t x509_get_notafter_time_t(X509 *cert);`
MINOR: ssl: add function to extract X509 notBefore date in time_t Add x509_get_notbefore_time_t() which returns the notBefore date in time_t format. 2025-05-02 08:42:28 -04:00			`time_t x509_get_notbefore_time_t(X509 *cert);`
MINOR: ssl: add utils functions to extract X509 notAfter date Add ASN1_to_time_t() which converts an ASN1_TIME to a time_t and x509_get_notafter_time_t() which returns the notAfter date in time_t format. 2024-12-16 06:34:56 -05:00			`#endif`
REORG: ssl: move curves2nid and nid2nist to ssl_utils curves2nid and nid2nist are generic functions that could be used outside the JWS scope, this patch put them at the right place so they can be reused. 2025-04-02 13:34:09 -04:00			`int curves2nid(const char *curve);`
			`const char *nid2nist(int nid);`
MINOR: Add "sigalg" to "sigalg name" helper function This function can be used to convert a TLSv1.3 sigAlg entry (2bytes) from the signature_agorithms client hello extension into a string. In order to ease debugging, some TLSv1.2 combinations can also be dumped. In TLSv1.2 those signature algorithms pairs were built out of a one byte signature identifier combined to a one byte hash identifier. In TLSv1.3 those identifiers are two bytes blocs that must be treated as such. 2025-04-18 11:26:49 -04:00			`const char *sigalg2str(int sigalg);`
MINOR: ssl: Add curve id to curve name table and mapping functions The SSL libraries like OpenSSL for instance do not seem to actually provide a public mapping between IANA defined curve IDs and curve names, or even a mapping between curve IDs and internal NIDs. This new table regroups all those information in a single table so that we can convert curve names (be it SECG or NIST format) to curve IDs or NIDs. The previously existing 'curves2nid' function now uses the new table, and a new 'curveid2str' one is added. 2025-07-15 04:45:08 -04:00			`const char *curveid2str(int curve_id);`
MEDIUM: ssl: Keep a reference to the client's certificate for use in logs Most of the SSL sample fetches related to the client certificate were based on the SSL_get_peer_certificate function which returns NULL when the verification process failed. This made it impossible to use those fetches in a log format since they would always be empty. The patch adds a reference to the X509 object representing the client certificate in the SSL structure and makes use of this reference in the fetches. The reference can only be obtained in ssl_sock_bind_verifycbk which means that in case of an SSL error occurring before the verification process ("no shared cipher" for instance, which happens while processing the Client Hello), we won't ever start the verification process and it will be impossible to get information about the client certificate. This patch also allows most of the ssl_c_XXX fetches to return a usable value in case of connection failure (because of a verification error for instance) by making the "conn->flags & CO_FL_WAIT_XPRT" test (which requires a connection to be established) less strict. Thanks to this patch, a log-format such as the following should return usable information in case of an error occurring during the verification process : log-format "DN=%{+Q}[ssl_c_s_dn] serial=%[ssl_c_serial,hex] \ hash=%[ssl_c_sha1,hex]" It should answer to GitHub issue #693. 2021-08-19 12:06:30 -04:00
MINOR: jwe: Add new jwt_decrypt_secret converter This converter checks the validity and decrypts the content of a JWE token that has a symetric "alg" algorithm. In such a case, we only require a secret as parameter in order to decrypt the token. 2026-01-13 05:50:56 -05:00			`int aes_process(struct buffer data, struct buffer nonce, struct buffer *key, int key_size,`
			`struct buffer aead_tag, struct buffer aad, struct buffer *out, int decrypt, int gcm);`

REORG: include: move ssl_utils.h to haproxy/ssl_utils.h Just added buf-t and openssl-compat for the missing types that appear in the prototypes. 2020-06-04 08:21:22 -04:00			`#endif /* _HAPROXY_SSL_UTILS_H */`
REORG: ssl: move utility functions to src/ssl_utils.c These functions are mainly used to extract information from certificates. 2020-05-15 06:01:17 -04:00			`#endif /* USE_OPENSSL */`